1 From 74165ca9acb4060a4cd2de0095f4ff3f0885da3f Mon Sep 17 00:00:00 2001
2 From: Greg Kroah-Hartman <gregkh@suse.de>
3 Date: Wed, 25 Feb 2009 16:14:55 -0800
4 Subject: Staging: add rt3070 wireless driver
6 From: Greg Kroah-Hartman <gregkh@suse.de>
8 This is the Ralink RT3070 driver from the company that does horrible
9 things like reading a config file from /etc. However, the driver that
10 is currently under development from the wireless development community
11 is not working at all yet, so distros and users are using this version
12 instead (quite common hardware on a lot of netbook machines).
14 So here is this driver, for now, until the wireless developers get a
15 "clean" version into the main tree, or until this version is cleaned up
16 sufficiently to move out of the staging tree.
18 Ported to the Linux build system, fixed lots of build issues, forward
19 ported to the current kernel version, and other minor cleanups were all
22 Cc: Linux wireless <linux-wireless@vger.kernel.org>
23 Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
26 drivers/staging/Kconfig | 2
27 drivers/staging/Makefile | 1
28 drivers/staging/rt3070/2870_main_dev.c | 1627 ++++
29 drivers/staging/rt3070/Kconfig | 6
30 drivers/staging/rt3070/Makefile | 47
31 drivers/staging/rt3070/action.h | 68
32 drivers/staging/rt3070/aironet.h | 210
33 drivers/staging/rt3070/ap.h | 557 +
34 drivers/staging/rt3070/chlist.h | 1253 +++
35 drivers/staging/rt3070/common/2870_rtmp_init.c | 1762 ++++
36 drivers/staging/rt3070/common/action.c | 1038 ++
37 drivers/staging/rt3070/common/ba_action.c | 1810 ++++
38 drivers/staging/rt3070/common/cmm_data.c | 2827 +++++++
39 drivers/staging/rt3070/common/cmm_data_2870.c | 980 ++
40 drivers/staging/rt3070/common/cmm_info.c | 3395 +++++++++
41 drivers/staging/rt3070/common/cmm_sanity.c | 1669 ++++
42 drivers/staging/rt3070/common/cmm_sync.c | 711 +
43 drivers/staging/rt3070/common/cmm_wpa.c | 1606 ++++
44 drivers/staging/rt3070/common/dfs.c | 441 +
45 drivers/staging/rt3070/common/eeprom.c | 1498 ++++
46 drivers/staging/rt3070/common/md5.c | 1427 +++
47 drivers/staging/rt3070/common/mlme.c | 9136 +++++++++++++++++++++++++
48 drivers/staging/rt3070/common/netif_block.c | 136
49 drivers/staging/rt3070/common/rtmp_init.c | 4197 +++++++++++
50 drivers/staging/rt3070/common/rtmp_tkip.c | 1613 ++++
51 drivers/staging/rt3070/common/rtmp_wep.c | 508 +
52 drivers/staging/rt3070/common/rtusb_bulk.c | 1382 +++
53 drivers/staging/rt3070/common/rtusb_data.c | 218
54 drivers/staging/rt3070/common/rtusb_io.c | 1908 +++++
55 drivers/staging/rt3070/common/spectrum.c | 1876 +++++
56 drivers/staging/rt3070/dfs.h | 100
57 drivers/staging/rt3070/firmware.h | 558 +
58 drivers/staging/rt3070/leap.h | 215
59 drivers/staging/rt3070/link_list.h | 134
60 drivers/staging/rt3070/md4.h | 42
61 drivers/staging/rt3070/md5.h | 107
62 drivers/staging/rt3070/mlme.h | 1468 ++++
63 drivers/staging/rt3070/netif_block.h | 58
64 drivers/staging/rt3070/oid.h | 1142 +++
65 drivers/staging/rt3070/rt2870.h | 756 ++
66 drivers/staging/rt3070/rt28xx.h | 2725 +++++++
67 drivers/staging/rt3070/rt_ate.c | 6506 +++++++++++++++++
68 drivers/staging/rt3070/rt_ate.h | 294
69 drivers/staging/rt3070/rt_config.h | 121
70 drivers/staging/rt3070/rt_linux.c | 1063 ++
71 drivers/staging/rt3070/rt_linux.h | 887 ++
72 drivers/staging/rt3070/rt_main_dev.c | 1800 ++++
73 drivers/staging/rt3070/rt_profile.c | 2041 +++++
74 drivers/staging/rt3070/rtmp.h | 7728 +++++++++++++++++++++
75 drivers/staging/rt3070/rtmp_ckipmic.h | 113
76 drivers/staging/rt3070/rtmp_def.h | 1559 ++++
77 drivers/staging/rt3070/rtmp_type.h | 95
78 drivers/staging/rt3070/spectrum.h | 322
79 drivers/staging/rt3070/spectrum_def.h | 95
80 drivers/staging/rt3070/sta/aironet.c | 1312 +++
81 drivers/staging/rt3070/sta/assoc.c | 2060 +++++
82 drivers/staging/rt3070/sta/auth.c | 475 +
83 drivers/staging/rt3070/sta/auth_rsp.c | 167
84 drivers/staging/rt3070/sta/connect.c | 2857 +++++++
85 drivers/staging/rt3070/sta/dls.c | 2170 +++++
86 drivers/staging/rt3070/sta/rtmp_data.c | 2637 +++++++
87 drivers/staging/rt3070/sta/sanity.c | 420 +
88 drivers/staging/rt3070/sta/sync.c | 1755 ++++
89 drivers/staging/rt3070/sta/wpa.c | 2099 +++++
90 drivers/staging/rt3070/sta_ioctl.c | 7203 +++++++++++++++++++
91 drivers/staging/rt3070/wpa.h | 356
92 66 files changed, 97349 insertions(+)
94 --- a/drivers/staging/Kconfig
95 +++ b/drivers/staging/Kconfig
96 @@ -51,6 +51,8 @@ source "drivers/staging/rt2860/Kconfig"
98 source "drivers/staging/rt2870/Kconfig"
100 +source "drivers/staging/rt3070/Kconfig"
102 source "drivers/staging/benet/Kconfig"
104 source "drivers/staging/rtl8187se/Kconfig"
105 --- a/drivers/staging/Makefile
106 +++ b/drivers/staging/Makefile
107 @@ -17,5 +17,6 @@ obj-$(CONFIG_AGNX) += agnx/
108 obj-$(CONFIG_OTUS) += otus/
109 obj-$(CONFIG_RT2860) += rt2860/
110 obj-$(CONFIG_RT2870) += rt2870/
111 +obj-$(CONFIG_RT3070) += rt3070/
112 obj-$(CONFIG_BENET) += benet/
113 obj-$(CONFIG_RTL8187SE) += rtl8187se/
115 +++ b/drivers/staging/rt3070/2870_main_dev.c
118 + *************************************************************************
120 + * 5F., No.36, Taiyuan St., Jhubei City,
121 + * Hsinchu County 302,
124 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
126 + * This program is free software; you can redistribute it and/or modify *
127 + * it under the terms of the GNU General Public License as published by *
128 + * the Free Software Foundation; either version 2 of the License, or *
129 + * (at your option) any later version. *
131 + * This program is distributed in the hope that it will be useful, *
132 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
133 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
134 + * GNU General Public License for more details. *
136 + * You should have received a copy of the GNU General Public License *
137 + * along with this program; if not, write to the *
138 + * Free Software Foundation, Inc., *
139 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
141 + *************************************************************************
147 + main initialization routines
151 + -------- ---------- ----------------------------------------------
152 + Name Date Modification logs
153 + Jan Lee 01-10-2005 modified
154 + Sample Jun/01/07 Merge RT2870 and RT2860 drivers.
157 +#include "rt_config.h"
160 +// Following information will be show when you run 'modinfo'
161 +// *** If you have a solution for the bug in current version of driver, please mail to me.
162 +// Otherwise post to forum in ralinktech's web site(www.ralinktech.com) and let all users help you. ***
163 +MODULE_AUTHOR("Paul Lin <paul_lin@ralinktech.com>");
164 +MODULE_DESCRIPTION("RT2870 Wireless Lan Linux Driver");
165 +#ifdef CONFIG_STA_SUPPORT
166 +MODULE_LICENSE("GPL");
167 +#ifdef MODULE_VERSION
168 +MODULE_VERSION(STA_DRIVER_VERSION);
170 +#endif // CONFIG_STA_SUPPORT //
172 +#ifdef MULTIPLE_CARD_SUPPORT
173 +// record whether the card in the card list is used in the card file
174 +extern UINT8 MC_CardUsed[];
175 +#endif // MULTIPLE_CARD_SUPPORT //
177 +/* Kernel thread and vars, which handles packets that are completed. Only
178 + * packets that have a "complete" function are sent here. This way, the
179 + * completion is run out of kernel context, and doesn't block the rest of
181 +//static int mlme_kill = 0; // Mlme kernel thread
182 +//static int RTUSBCmd_kill = 0; // Command kernel thread
183 +//static int TimerFunc_kill = 0; // TimerQ kernel thread
185 +//static wait_queue_head_t timerWaitQ;
186 +//static wait_queue_t waitQ;
188 +extern INT __devinit rt28xx_probe(IN void *_dev_p, IN void *_dev_id_p,
189 + IN UINT argc, OUT PRTMP_ADAPTER *ppAd);
193 +struct usb_device_id rtusb_usb_id[] = RT2870_USB_DEVICES;
194 +INT const rtusb_usb_id_len = sizeof(rtusb_usb_id) / sizeof(struct usb_device_id);
195 +MODULE_DEVICE_TABLE(usb, rtusb_usb_id);
198 +#define PF_NOFREEZE 0
202 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,5,0)
204 +/**************************************************************************/
205 +/**************************************************************************/
206 +//tested for kernel 2.4 series
207 +/**************************************************************************/
208 +/**************************************************************************/
209 +static void *rtusb_probe(struct usb_device *dev, UINT interface,
210 + const struct usb_device_id *id_table);
211 +static void rtusb_disconnect(struct usb_device *dev, void *ptr);
213 +struct usb_driver rtusb_driver = {
216 + disconnect:rtusb_disconnect,
217 + id_table:rtusb_usb_id,
223 +static int rt2870_suspend(struct usb_interface *intf, pm_message_t state);
224 +static int rt2870_resume(struct usb_interface *intf);
225 +#endif // CONFIG_PM //
227 +/**************************************************************************/
228 +/**************************************************************************/
229 +//tested for kernel 2.6series
230 +/**************************************************************************/
231 +/**************************************************************************/
232 +static int rtusb_probe (struct usb_interface *intf,
233 + const struct usb_device_id *id);
234 +static void rtusb_disconnect(struct usb_interface *intf);
236 +struct usb_driver rtusb_driver = {
237 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,6,15)
238 + .owner = THIS_MODULE,
241 + .probe=rtusb_probe,
242 + .disconnect=rtusb_disconnect,
243 + .id_table=rtusb_usb_id,
246 + suspend: rt2870_suspend,
247 + resume: rt2870_resume,
253 +VOID RT2860RejectPendingPackets(
254 + IN PRTMP_ADAPTER pAd)
256 + // clear PS packets
257 + // clear TxSw packets
260 +static int rt2870_suspend(
261 + struct usb_interface *intf,
262 + pm_message_t state)
264 + struct net_device *net_dev;
265 + PRTMP_ADAPTER pAd = usb_get_intfdata(intf);
268 + DBGPRINT(RT_DEBUG_TRACE, ("===> rt2870_suspend()\n"));
269 + net_dev = pAd->net_dev;
270 + netif_device_detach(net_dev);
272 + pAd->PM_FlgSuspend = 1;
273 + if (netif_running(net_dev)) {
274 + RTUSBCancelPendingBulkInIRP(pAd);
275 + RTUSBCancelPendingBulkOutIRP(pAd);
277 + DBGPRINT(RT_DEBUG_TRACE, ("<=== rt2870_suspend()\n"));
281 +static int rt2870_resume(
282 + struct usb_interface *intf)
284 + struct net_device *net_dev;
285 + PRTMP_ADAPTER pAd = usb_get_intfdata(intf);
288 + DBGPRINT(RT_DEBUG_TRACE, ("===> rt2870_resume()\n"));
290 + pAd->PM_FlgSuspend = 0;
291 + net_dev = pAd->net_dev;
292 + netif_device_attach(net_dev);
293 + netif_start_queue(net_dev);
294 + netif_carrier_on(net_dev);
295 + netif_wake_queue(net_dev);
297 + DBGPRINT(RT_DEBUG_TRACE, ("<=== rt2870_resume()\n"));
300 +#endif // CONFIG_PM //
301 +#endif // LINUX_VERSION_CODE //
304 +// Init driver module
305 +INT __init rtusb_init(void)
307 + printk("rtusb init --->\n");
308 + return usb_register(&rtusb_driver);
311 +// Deinit driver module
312 +VOID __exit rtusb_exit(void)
314 + usb_deregister(&rtusb_driver);
315 + printk("<--- rtusb exit\n");
318 +module_init(rtusb_init);
319 +module_exit(rtusb_exit);
324 +/*--------------------------------------------------------------------- */
325 +/* function declarations */
326 +/*--------------------------------------------------------------------- */
329 +========================================================================
330 +Routine Description:
331 + MLME kernel thread.
334 + *Context the pAd, driver control block pointer
340 +========================================================================
345 + PRTMP_ADAPTER pAd = (PRTMP_ADAPTER)Context;
349 + pObj = (POS_COOKIE)pAd->OS_Cookie;
351 + rtmp_os_thread_init("rt2870MlmeThread", (PVOID)&(pAd->mlmeComplete));
353 + while (pAd->mlme_kill == 0)
355 + /* lock the device pointers */
356 + //down(&(pAd->mlme_semaphore));
357 + status = down_interruptible(&(pAd->mlme_semaphore));
359 + /* lock the device pointers , need to check if required*/
360 + //down(&(pAd->usbdev_semaphore));
362 + if (!pAd->PM_FlgSuspend)
365 + /* unlock the device pointers */
366 + //up(&(pAd->usbdev_semaphore));
369 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS);
374 + /* notify the exit routine that we're actually exiting now
376 + * complete()/wait_for_completion() is similar to up()/down(),
377 + * except that complete() is safe in the case where the structure
378 + * is getting deleted in a parallel mode of execution (i.e. just
379 + * after the down() -- that's necessary for the thread-shutdown
382 + * complete_and_exit() goes even further than this -- it is safe in
383 + * the case that the thread of the caller is going away (not just
384 + * the structure) -- this is necessary for the module-remove case.
385 + * This is important in preemption kernels, which transfer the flow
386 + * of execution immediately upon a complete().
388 + DBGPRINT(RT_DEBUG_TRACE,( "<---%s\n",__FUNCTION__));
390 + pObj->MLMEThr_pid = NULL;
392 + complete_and_exit (&pAd->mlmeComplete, 0);
399 +========================================================================
400 +Routine Description:
401 + USB command kernel thread.
404 + *Context the pAd, driver control block pointer
410 +========================================================================
415 + PRTMP_ADAPTER pAd = (PRTMP_ADAPTER)Context;
419 + pObj = (POS_COOKIE)pAd->OS_Cookie;
421 + rtmp_os_thread_init("rt2870CmdThread", (PVOID)&(pAd->CmdQComplete));
423 + NdisAcquireSpinLock(&pAd->CmdQLock);
424 + pAd->CmdQ.CmdQState = RT2870_THREAD_RUNNING;
425 + NdisReleaseSpinLock(&pAd->CmdQLock);
427 + while (pAd->CmdQ.CmdQState == RT2870_THREAD_RUNNING)
429 + /* lock the device pointers */
430 + //down(&(pAd->RTUSBCmd_semaphore));
431 + status = down_interruptible(&(pAd->RTUSBCmd_semaphore));
433 + if (pAd->CmdQ.CmdQState == RT2870_THREAD_STOPED)
438 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS);
441 + /* lock the device pointers , need to check if required*/
442 + //down(&(pAd->usbdev_semaphore));
444 + if (!pAd->PM_FlgSuspend)
447 + /* unlock the device pointers */
448 + //up(&(pAd->usbdev_semaphore));
451 + if (!pAd->PM_FlgSuspend)
452 + { // Clear the CmdQElements.
453 + CmdQElmt *pCmdQElmt = NULL;
455 + NdisAcquireSpinLock(&pAd->CmdQLock);
456 + pAd->CmdQ.CmdQState = RT2870_THREAD_STOPED;
457 + while(pAd->CmdQ.size)
459 + RTUSBDequeueCmd(&pAd->CmdQ, &pCmdQElmt);
462 + if (pCmdQElmt->CmdFromNdis == TRUE)
464 + if (pCmdQElmt->buffer != NULL)
465 + NdisFreeMemory(pCmdQElmt->buffer, pCmdQElmt->bufferlength, 0);
467 + NdisFreeMemory(pCmdQElmt, sizeof(CmdQElmt), 0);
471 + if ((pCmdQElmt->buffer != NULL) && (pCmdQElmt->bufferlength != 0))
472 + NdisFreeMemory(pCmdQElmt->buffer, pCmdQElmt->bufferlength, 0);
474 + NdisFreeMemory(pCmdQElmt, sizeof(CmdQElmt), 0);
480 + NdisReleaseSpinLock(&pAd->CmdQLock);
482 + /* notify the exit routine that we're actually exiting now
484 + * complete()/wait_for_completion() is similar to up()/down(),
485 + * except that complete() is safe in the case where the structure
486 + * is getting deleted in a parallel mode of execution (i.e. just
487 + * after the down() -- that's necessary for the thread-shutdown
490 + * complete_and_exit() goes even further than this -- it is safe in
491 + * the case that the thread of the caller is going away (not just
492 + * the structure) -- this is necessary for the module-remove case.
493 + * This is important in preemption kernels, which transfer the flow
494 + * of execution immediately upon a complete().
496 + DBGPRINT(RT_DEBUG_TRACE,( "<---RTUSBCmdThread\n"));
498 + pObj->RTUSBCmdThr_pid = NULL;
500 + complete_and_exit (&pAd->CmdQComplete, 0);
506 +static void RT2870_TimerQ_Handle(RTMP_ADAPTER *pAd)
509 + RALINK_TIMER_STRUCT *pTimer;
510 + RT2870_TIMER_ENTRY *pEntry;
511 + unsigned long irqFlag;
513 + while(!pAd->TimerFunc_kill)
515 +// printk("waiting for event!\n");
518 + status = down_interruptible(&(pAd->RTUSBTimer_semaphore));
520 + if (pAd->TimerQ.status == RT2870_THREAD_STOPED)
524 + while(pAd->TimerQ.pQHead)
526 + RTMP_IRQ_LOCK(&pAd->TimerQLock, irqFlag);
527 + pEntry = pAd->TimerQ.pQHead;
530 + pTimer = pEntry->pRaTimer;
533 + pAd->TimerQ.pQHead = pEntry->pNext;
534 + if (pEntry == pAd->TimerQ.pQTail)
535 + pAd->TimerQ.pQTail = NULL;
537 + // return this queue entry to timerQFreeList.
538 + pEntry->pNext = pAd->TimerQ.pQPollFreeList;
539 + pAd->TimerQ.pQPollFreeList = pEntry;
541 + RTMP_IRQ_UNLOCK(&pAd->TimerQLock, irqFlag);
545 + if (pTimer->handle != NULL)
546 + if (!pAd->PM_FlgSuspend)
547 + pTimer->handle(NULL, (PVOID) pTimer->cookie, NULL, pTimer);
548 + if ((pTimer->Repeat) && (pTimer->State == FALSE))
549 + RTMP_OS_Add_Timer(&pTimer->TimerObj, pTimer->TimerValue);
555 + pAd->TimerQ.status = RT2870_THREAD_STOPED;
556 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS);
564 + IN OUT PVOID Context)
569 + pAd = (PRTMP_ADAPTER)Context;
570 + pObj = (POS_COOKIE) pAd->OS_Cookie;
572 + rtmp_os_thread_init("rt2870TimerQHandle", (PVOID)&(pAd->TimerQComplete));
574 + RT2870_TimerQ_Handle(pAd);
576 + /* notify the exit routine that we're actually exiting now
578 + * complete()/wait_for_completion() is similar to up()/down(),
579 + * except that complete() is safe in the case where the structure
580 + * is getting deleted in a parallel mode of execution (i.e. just
581 + * after the down() -- that's necessary for the thread-shutdown
584 + * complete_and_exit() goes even further than this -- it is safe in
585 + * the case that the thread of the caller is going away (not just
586 + * the structure) -- this is necessary for the module-remove case.
587 + * This is important in preemption kernels, which transfer the flow
588 + * of execution immediately upon a complete().
590 + DBGPRINT(RT_DEBUG_TRACE,( "<---%s\n",__FUNCTION__));
592 + pObj->TimerQThr_pid = NULL;
594 + complete_and_exit(&pAd->TimerQComplete, 0);
600 +RT2870_TIMER_ENTRY *RT2870_TimerQ_Insert(
601 + IN RTMP_ADAPTER *pAd,
602 + IN RALINK_TIMER_STRUCT *pTimer)
604 + RT2870_TIMER_ENTRY *pQNode = NULL, *pQTail;
605 + unsigned long irqFlags;
608 + RTMP_IRQ_LOCK(&pAd->TimerQLock, irqFlags);
609 + if (pAd->TimerQ.status & RT2870_THREAD_CAN_DO_INSERT)
611 + if(pAd->TimerQ.pQPollFreeList)
613 + pQNode = pAd->TimerQ.pQPollFreeList;
614 + pAd->TimerQ.pQPollFreeList = pQNode->pNext;
616 + pQNode->pRaTimer = pTimer;
617 + pQNode->pNext = NULL;
619 + pQTail = pAd->TimerQ.pQTail;
620 + if (pAd->TimerQ.pQTail != NULL)
621 + pQTail->pNext = pQNode;
622 + pAd->TimerQ.pQTail = pQNode;
623 + if (pAd->TimerQ.pQHead == NULL)
624 + pAd->TimerQ.pQHead = pQNode;
626 + RTMP_IRQ_UNLOCK(&pAd->TimerQLock, irqFlags);
629 + up(&pAd->RTUSBTimer_semaphore);
630 + //wake_up(&timerWaitQ);
634 + RTMP_IRQ_UNLOCK(&pAd->TimerQLock, irqFlags);
640 +BOOLEAN RT2870_TimerQ_Remove(
641 + IN RTMP_ADAPTER *pAd,
642 + IN RALINK_TIMER_STRUCT *pTimer)
644 + RT2870_TIMER_ENTRY *pNode, *pPrev = NULL;
645 + unsigned long irqFlags;
647 + RTMP_IRQ_LOCK(&pAd->TimerQLock, irqFlags);
648 + if (pAd->TimerQ.status >= RT2870_THREAD_INITED)
650 + pNode = pAd->TimerQ.pQHead;
653 + if (pNode->pRaTimer == pTimer)
656 + pNode = pNode->pNext;
659 + // Now move it to freeList queue.
662 + if (pNode == pAd->TimerQ.pQHead)
663 + pAd->TimerQ.pQHead = pNode->pNext;
664 + if (pNode == pAd->TimerQ.pQTail)
665 + pAd->TimerQ.pQTail = pPrev;
667 + pPrev->pNext = pNode->pNext;
669 + // return this queue entry to timerQFreeList.
670 + pNode->pNext = pAd->TimerQ.pQPollFreeList;
671 + pAd->TimerQ.pQPollFreeList = pNode;
674 + RTMP_IRQ_UNLOCK(&pAd->TimerQLock, irqFlags);
680 +void RT2870_TimerQ_Exit(RTMP_ADAPTER *pAd)
682 + RT2870_TIMER_ENTRY *pTimerQ;
683 + unsigned long irqFlags;
685 + RTMP_IRQ_LOCK(&pAd->TimerQLock, irqFlags);
686 + while (pAd->TimerQ.pQHead)
688 + pTimerQ = pAd->TimerQ.pQHead;
689 + pAd->TimerQ.pQHead = pTimerQ->pNext;
690 + // remove the timeQ
692 + pAd->TimerQ.pQPollFreeList = NULL;
693 + os_free_mem(pAd, pAd->TimerQ.pTimerQPoll);
694 + pAd->TimerQ.pQTail = NULL;
695 + pAd->TimerQ.pQHead = NULL;
696 + pAd->TimerQ.status = RT2870_THREAD_STOPED;
697 + RTMP_IRQ_UNLOCK(&pAd->TimerQLock, irqFlags);
702 +void RT2870_TimerQ_Init(RTMP_ADAPTER *pAd)
705 + RT2870_TIMER_ENTRY *pQNode, *pEntry;
706 + unsigned long irqFlags;
708 + NdisAllocateSpinLock(&pAd->TimerQLock);
710 + RTMP_IRQ_LOCK(&pAd->TimerQLock, irqFlags);
711 + NdisZeroMemory(&pAd->TimerQ, sizeof(pAd->TimerQ));
712 + //InterlockedExchange(&pAd->TimerQ.count, 0);
714 + /* Initialise the wait q head */
715 + //init_waitqueue_head(&timerWaitQ);
717 + os_alloc_mem(pAd, &pAd->TimerQ.pTimerQPoll, sizeof(RT2870_TIMER_ENTRY) * TIMER_QUEUE_SIZE_MAX);
718 + if (pAd->TimerQ.pTimerQPoll)
721 + pQNode = (RT2870_TIMER_ENTRY *)pAd->TimerQ.pTimerQPoll;
722 + for (i = 0 ;i <TIMER_QUEUE_SIZE_MAX; i++)
724 + pQNode->pNext = pEntry;
728 + pAd->TimerQ.pQPollFreeList = pEntry;
729 + pAd->TimerQ.pQHead = NULL;
730 + pAd->TimerQ.pQTail = NULL;
731 + pAd->TimerQ.status = RT2870_THREAD_INITED;
733 + RTMP_IRQ_UNLOCK(&pAd->TimerQLock, irqFlags);
737 +VOID RT2870_WatchDog(IN RTMP_ADAPTER *pAd)
739 + PHT_TX_CONTEXT pHTTXContext;
743 + BOOLEAN needDumpSeq = FALSE;
748 + RTMP_IO_READ32(pAd, TXRXQ_PCNT, &MACValue);
749 + if ((MACValue & 0xff) !=0 )
751 + DBGPRINT(RT_DEBUG_TRACE, ("TX QUEUE 0 Not EMPTY(Value=0x%0x). !!!!!!!!!!!!!!!\n", MACValue));
752 + RTMP_IO_WRITE32(pAd, PBF_CFG, 0xf40012);
753 + while((MACValue &0xff) != 0 && (idx++ < 10))
755 + RTMP_IO_READ32(pAd, TXRXQ_PCNT, &MACValue);
758 + RTMP_IO_WRITE32(pAd, PBF_CFG, 0xf40006);
761 +//PS packets use HCCA queue when dequeue from PS unicast queue (WiFi WPA2 MA9_DT1 for Marvell B STA)
762 +#ifdef CONFIG_STA_SUPPORT
763 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
766 + if ((MACValue & 0xff00) !=0 )
768 + DBGPRINT(RT_DEBUG_TRACE, ("TX QUEUE 1 Not EMPTY(Value=0x%0x). !!!!!!!!!!!!!!!\n", MACValue));
769 + RTMP_IO_WRITE32(pAd, PBF_CFG, 0xf4000a);
770 + while((MACValue &0xff00) != 0 && (idx++ < 10))
772 + RTMP_IO_READ32(pAd, TXRXQ_PCNT, &MACValue);
775 + RTMP_IO_WRITE32(pAd, PBF_CFG, 0xf40006);
778 +#endif // CONFIG_STA_SUPPORT //
780 + if (pAd->watchDogRxOverFlowCnt >= 2)
782 + DBGPRINT(RT_DEBUG_TRACE, ("Maybe the Rx Bulk-In hanged! Cancel the pending Rx bulks request!\n"));
783 + if ((!RTMP_TEST_FLAG(pAd, (fRTMP_ADAPTER_RESET_IN_PROGRESS |
784 + fRTMP_ADAPTER_BULKIN_RESET |
785 + fRTMP_ADAPTER_HALT_IN_PROGRESS |
786 + fRTMP_ADAPTER_NIC_NOT_EXIST))))
788 + DBGPRINT(RT_DEBUG_TRACE, ("Call CMDTHREAD_RESET_BULK_IN to cancel the pending Rx Bulk!\n"));
789 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_BULKIN_RESET);
790 + RTUSBEnqueueInternalCmd(pAd, CMDTHREAD_RESET_BULK_IN, NULL, 0);
791 + needDumpSeq = TRUE;
793 + pAd->watchDogRxOverFlowCnt = 0;
797 + for (idx = 0; idx < NUM_OF_TX_RING; idx++)
801 + RTMP_IRQ_LOCK(&pAd->BulkOutLock[idx], irqFlags);
802 + if ((pAd->BulkOutPending[idx] == TRUE) && pAd->watchDogTxPendingCnt)
804 + pAd->watchDogTxPendingCnt[idx]++;
806 + if ((pAd->watchDogTxPendingCnt[idx] > 2) &&
807 + (!RTMP_TEST_FLAG(pAd, (fRTMP_ADAPTER_RESET_IN_PROGRESS | fRTMP_ADAPTER_HALT_IN_PROGRESS | fRTMP_ADAPTER_NIC_NOT_EXIST | fRTMP_ADAPTER_BULKOUT_RESET)))
810 + // FIXME: Following code just support single bulk out. If you wanna support multiple bulk out. Modify it!
811 + pHTTXContext = (PHT_TX_CONTEXT)(&pAd->TxContext[idx]);
812 + if (pHTTXContext->IRPPending)
813 + { // Check TxContext.
814 + pUrb = pHTTXContext->pUrb;
816 + else if (idx == MGMTPIPEIDX)
818 + PTX_CONTEXT pMLMEContext, pNULLContext, pPsPollContext;
820 + //Check MgmtContext.
821 + pMLMEContext = (PTX_CONTEXT)(pAd->MgmtRing.Cell[pAd->MgmtRing.TxDmaIdx].AllocVa);
822 + pPsPollContext = (PTX_CONTEXT)(&pAd->PsPollContext);
823 + pNULLContext = (PTX_CONTEXT)(&pAd->NullContext);
825 + if (pMLMEContext->IRPPending)
827 + ASSERT(pMLMEContext->IRPPending);
828 + pUrb = pMLMEContext->pUrb;
830 + else if (pNULLContext->IRPPending)
832 + ASSERT(pNULLContext->IRPPending);
833 + pUrb = pNULLContext->pUrb;
835 + else if (pPsPollContext->IRPPending)
837 + ASSERT(pPsPollContext->IRPPending);
838 + pUrb = pPsPollContext->pUrb;
842 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[idx], irqFlags);
844 + DBGPRINT(RT_DEBUG_TRACE, ("Maybe the Tx Bulk-Out hanged! Cancel the pending Tx bulks request of idx(%d)!\n", idx));
847 + DBGPRINT(RT_DEBUG_TRACE, ("Unlink the pending URB!\n"));
849 + RTUSB_UNLINK_URB(pUrb);
850 + // Sleep 200 microseconds to give cancellation time to work
851 + RTMPusecDelay(200);
852 + needDumpSeq = TRUE;
856 + DBGPRINT(RT_DEBUG_ERROR, ("Unkonw bulkOut URB maybe hanged!!!!!!!!!!!!\n"));
861 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[idx], irqFlags);
866 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[idx], irqFlags);
870 +#ifdef DOT11_N_SUPPORT
871 + // For Sigma debug, dump the ba_reordering sequence.
872 + if((needDumpSeq == TRUE) && (pAd->CommonCfg.bDisableReordering == 0))
875 + PBA_REC_ENTRY pBAEntry = NULL;
877 + struct reordering_mpdu *mpdu_blk;
879 + Idx = pAd->MacTab.Content[BSSID_WCID].BARecWcidArray[0];
881 + pBAEntry = &pAd->BATable.BARecEntry[Idx];
882 + if((pBAEntry->list.qlen > 0) && (pBAEntry->list.next != NULL))
884 + DBGPRINT(RT_DEBUG_TRACE, ("NICUpdateRawCounters():The Queueing pkt in reordering buffer:\n"));
885 + NdisAcquireSpinLock(&pBAEntry->RxReRingLock);
886 + mpdu_blk = pBAEntry->list.next;
889 + DBGPRINT(RT_DEBUG_TRACE, ("\t%d:Seq-%d, bAMSDU-%d!\n", count, mpdu_blk->Sequence, mpdu_blk->bAMSDU));
890 + mpdu_blk = mpdu_blk->next;
894 + DBGPRINT(RT_DEBUG_TRACE, ("\npBAEntry->LastIndSeq=%d!\n", pBAEntry->LastIndSeq));
895 + NdisReleaseSpinLock(&pBAEntry->RxReRingLock);
898 +#endif // DOT11_N_SUPPORT //
902 +========================================================================
903 +Routine Description:
904 + Release allocated resources.
907 + *dev Point to the PCI or USB device
908 + pAd driver control block pointer
914 +========================================================================
916 +static void _rtusb_disconnect(struct usb_device *dev, PRTMP_ADAPTER pAd)
918 + struct net_device *net_dev = NULL;
921 + DBGPRINT(RT_DEBUG_ERROR, ("rtusb_disconnect: unregister usbnet usb-%s-%s\n",
922 + dev->bus->bus_name, dev->devpath));
925 +#ifdef MULTIPLE_CARD_SUPPORT
926 + if ((pAd->MC_RowID >= 0) && (pAd->MC_RowID <= MAX_NUM_OF_MULTIPLE_CARD))
927 + MC_CardUsed[pAd->MC_RowID] = 0; // not clear MAC address
928 +#endif // MULTIPLE_CARD_SUPPORT //
930 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,5,0) /* kernel 2.4 series */
931 + while(MOD_IN_USE > 0)
937 +#endif // LINUX_VERSION_CODE //
939 + printk("rtusb_disconnect: pAd == NULL!\n");
942 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST);
946 + // for debug, wait to show some messages to /proc system
952 + net_dev = pAd->net_dev;
953 + if (pAd->net_dev != NULL)
955 + printk("rtusb_disconnect: unregister_netdev(), dev->name=%s!\n", net_dev->name);
956 + unregister_netdev (pAd->net_dev);
959 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,5,0) /* kernel 2.4 series */
961 + flush_scheduled_work();
962 +#endif // LINUX_VERSION_CODE //
965 + // free net_device memory
966 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,5,0) /* kernel 2.4 series */
969 + free_netdev(net_dev);
970 +#endif // LINUX_VERSION_CODE //
972 + // free adapter memory
973 + RTMPFreeAdapter(pAd);
975 + // release a use of the usb device structure
976 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,5,0) /* kernel 2.4 series */
977 + while(MOD_IN_USE > 0)
983 +#endif // LINUX_VERSION_CODE //
986 + DBGPRINT(RT_DEBUG_ERROR, (" RTUSB disconnect successfully\n"));
991 +========================================================================
992 +Routine Description:
993 + Probe RT28XX chipset.
996 + *dev Point to the PCI or USB device
998 + *id_table Point to the PCI or USB device ID
1004 +========================================================================
1006 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,5,0) /* kernel 2.4 series */
1007 +static void *rtusb_probe(struct usb_device *dev, UINT interface,
1008 + const struct usb_device_id *id)
1010 + PRTMP_ADAPTER pAd;
1011 + rt28xx_probe((void *)dev, (void *)id, interface, &pAd);
1012 + return (void *)pAd;
1015 +//Disconnect function is called within exit routine
1016 +static void rtusb_disconnect(struct usb_device *dev, void *ptr)
1018 + _rtusb_disconnect(dev, ((PRTMP_ADAPTER)ptr));
1021 +#else /* kernel 2.6 series */
1022 +static int rtusb_probe (struct usb_interface *intf,
1023 + const struct usb_device_id *id)
1025 + PRTMP_ADAPTER pAd;
1026 + return (int)rt28xx_probe((void *)intf, (void *)id, 0, &pAd);
1030 +static void rtusb_disconnect(struct usb_interface *intf)
1032 + struct usb_device *dev = interface_to_usbdev(intf);
1033 + PRTMP_ADAPTER pAd;
1036 + pAd = usb_get_intfdata(intf);
1037 + usb_set_intfdata(intf, NULL);
1039 + _rtusb_disconnect(dev, pAd);
1041 +#endif // LINUX_VERSION_CODE //
1045 +========================================================================
1046 +Routine Description:
1047 + Close kernel threads.
1050 + *pAd the raxx interface data pointer
1056 +========================================================================
1058 +VOID RT28xxThreadTerminate(
1059 + IN RTMP_ADAPTER *pAd)
1061 + POS_COOKIE pObj = (POS_COOKIE) pAd->OS_Cookie;
1065 + // Sleep 50 milliseconds so pending io might finish normally
1066 + RTMPusecDelay(50000);
1068 + // We want to wait until all pending receives and sends to the
1069 + // device object. We cancel any
1070 + // irps. Wait until sends and receives have stopped.
1071 + RTUSBCancelPendingIRPs(pAd);
1073 + // Terminate Threads
1074 + if (pObj->MLMEThr_pid)
1076 + printk("Terminate the MLMEThr_pid=%d!\n", pid_nr(pObj->MLMEThr_pid));
1078 + pAd->mlme_kill = 1;
1079 + //RT28XX_MLME_HANDLER(pAd);
1081 + ret = kill_pid(pObj->MLMEThr_pid, SIGTERM, 1);
1084 + printk (KERN_WARNING "%s: unable to Mlme thread, pid=%d, ret=%d!\n",
1085 + pAd->net_dev->name, pid_nr(pObj->MLMEThr_pid), ret);
1089 + //wait_for_completion (&pAd->notify);
1090 + wait_for_completion (&pAd->mlmeComplete);
1091 + pObj->MLMEThr_pid = NULL;
1095 + if (pObj->RTUSBCmdThr_pid >= 0)
1097 + printk("Terminate the RTUSBCmdThr_pid=%d!\n", pid_nr(pObj->RTUSBCmdThr_pid));
1099 + NdisAcquireSpinLock(&pAd->CmdQLock);
1100 + pAd->CmdQ.CmdQState = RT2870_THREAD_STOPED;
1101 + NdisReleaseSpinLock(&pAd->CmdQLock);
1103 + //RTUSBCMDUp(pAd);
1104 + ret = kill_pid(pObj->RTUSBCmdThr_pid, SIGTERM, 1);
1107 + printk(KERN_WARNING "%s: unable to RTUSBCmd thread, pid=%d, ret=%d!\n",
1108 + pAd->net_dev->name, pid_nr(pObj->RTUSBCmdThr_pid), ret);
1112 + //wait_for_completion (&pAd->notify);
1113 + wait_for_completion (&pAd->CmdQComplete);
1114 + pObj->RTUSBCmdThr_pid = NULL;
1117 + if (pObj->TimerQThr_pid >= 0)
1119 + POS_COOKIE pObj = (POS_COOKIE)pAd->OS_Cookie;
1121 + printk("Terminate the TimerQThr_pid=%d!\n", pid_nr(pObj->TimerQThr_pid));
1123 + pAd->TimerFunc_kill = 1;
1125 + ret = kill_pid(pObj->TimerQThr_pid, SIGTERM, 1);
1128 + printk(KERN_WARNING "%s: unable to stop TimerQThread, pid=%d, ret=%d!\n",
1129 + pAd->net_dev->name, pid_nr(pObj->TimerQThr_pid), ret);
1133 + printk("wait_for_completion TimerQThr\n");
1134 + wait_for_completion(&pAd->TimerQComplete);
1135 + pObj->TimerQThr_pid = NULL;
1139 + pAd->mlme_kill = 0;
1140 + pAd->CmdQ.CmdQState = RT2870_THREAD_UNKNOWN;
1141 + pAd->TimerFunc_kill = 0;
1145 +void kill_thread_task(IN PRTMP_ADAPTER pAd)
1149 + pObj = (POS_COOKIE) pAd->OS_Cookie;
1151 + tasklet_kill(&pObj->rx_done_task);
1152 + tasklet_kill(&pObj->mgmt_dma_done_task);
1153 + tasklet_kill(&pObj->ac0_dma_done_task);
1154 + tasklet_kill(&pObj->ac1_dma_done_task);
1155 + tasklet_kill(&pObj->ac2_dma_done_task);
1156 + tasklet_kill(&pObj->ac3_dma_done_task);
1157 + tasklet_kill(&pObj->hcca_dma_done_task);
1158 + tasklet_kill(&pObj->tbtt_task);
1164 +========================================================================
1165 +Routine Description:
1166 + Check the chipset vendor/product ID.
1169 + _dev_p Point to the PCI or USB device
1176 +========================================================================
1178 +BOOLEAN RT28XXChipsetCheck(
1181 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,5,0) /* kernel 2.4 series */
1182 + struct usb_device *dev_p = (struct usb_device *)_dev_p;
1184 + struct usb_interface *intf = (struct usb_interface *)_dev_p;
1185 + struct usb_device *dev_p = interface_to_usbdev(intf);
1186 +#endif // LINUX_VERSION_CODE //
1190 + for(i=0; i<rtusb_usb_id_len; i++)
1192 + if (dev_p->descriptor.idVendor == rtusb_usb_id[i].idVendor &&
1193 + dev_p->descriptor.idProduct == rtusb_usb_id[i].idProduct)
1195 + printk("rt2870: idVendor = 0x%x, idProduct = 0x%x\n",
1196 + dev_p->descriptor.idVendor, dev_p->descriptor.idProduct);
1201 + if (i == rtusb_usb_id_len)
1203 + printk("rt2870: Error! Device Descriptor not matching!\n");
1212 +========================================================================
1213 +Routine Description:
1214 + Init net device structure.
1217 + _dev_p Point to the PCI or USB device
1218 + *net_dev Point to the net device
1219 + *pAd the raxx interface data pointer
1226 +========================================================================
1228 +BOOLEAN RT28XXNetDevInit(
1230 + IN struct net_device *net_dev,
1231 + IN RTMP_ADAPTER *pAd)
1233 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,5,0) /* kernel 2.4 series */
1234 + struct usb_device *dev_p = (struct usb_device *)_dev_p;
1236 + struct usb_interface *intf = (struct usb_interface *)_dev_p;
1237 + struct usb_device *dev_p = interface_to_usbdev(intf);
1238 +#endif // LINUX_VERSION_CODE //
1241 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,5,0) /* kernel 2.4 series */
1242 + pAd->config = dev_p->config;
1244 + pAd->config = &dev_p->config->desc;
1245 +#endif // LINUX_VERSION_CODE //
1251 +========================================================================
1252 +Routine Description:
1253 + Init net device structure.
1256 + _dev_p Point to the PCI or USB device
1257 + *pAd the raxx interface data pointer
1264 +========================================================================
1266 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,5,0)
1267 +BOOLEAN RT28XXProbePostConfig(
1269 + IN RTMP_ADAPTER *pAd,
1270 + IN INT32 interface)
1272 + struct usb_device *dev_p = (struct usb_device *)_dev_p;
1273 + struct usb_interface *intf;
1274 + struct usb_interface_descriptor *iface_desc;
1275 + struct usb_endpoint_descriptor *endpoint;
1280 + /* get the active interface descriptor */
1281 + intf = &dev_p->actconfig->interface[interface];
1282 + iface_desc = &intf->altsetting[0];
1284 + /* get # of enpoints */
1285 + pAd->NumberOfPipes = iface_desc->bNumEndpoints;
1286 + DBGPRINT(RT_DEBUG_TRACE, ("NumEndpoints=%d\n", iface_desc->bNumEndpoints));
1288 + /* Configure Pipes */
1289 + endpoint = &iface_desc->endpoint[0];
1292 + for(i=0; i<pAd->NumberOfPipes; i++)
1294 + if ((endpoint[i].bmAttributes == USB_ENDPOINT_XFER_BULK) &&
1295 + ((endpoint[i].bEndpointAddress & USB_ENDPOINT_DIR_MASK) == USB_DIR_IN))
1297 + pAd->BulkInEpAddr = endpoint[i].bEndpointAddress;
1298 + pAd->BulkInMaxPacketSize = endpoint[i].wMaxPacketSize;
1300 + DBGPRINT_RAW(RT_DEBUG_TRACE,
1301 + ("BULK IN MaximumPacketSize = %d\n", pAd->BulkInMaxPacketSize));
1302 + DBGPRINT_RAW(RT_DEBUG_TRACE,
1303 + ("EP address = 0x%2x \n", endpoint[i].bEndpointAddress));
1305 + else if ((endpoint[i].bmAttributes == USB_ENDPOINT_XFER_BULK) &&
1306 + ((endpoint[i].bEndpointAddress & USB_ENDPOINT_DIR_MASK) == USB_DIR_OUT))
1308 + // There are 6 bulk out EP. EP6 highest priority.
1309 + // EP1-4 is EDCA. EP5 is HCCA.
1310 + pAd->BulkOutEpAddr[BulkOutIdx++] = endpoint[i].bEndpointAddress;
1311 + pAd->BulkOutMaxPacketSize = endpoint[i].wMaxPacketSize;
1313 + DBGPRINT_RAW(RT_DEBUG_TRACE,
1314 + ("BULK OUT MaximumPacketSize = %d\n", pAd->BulkOutMaxPacketSize));
1315 + DBGPRINT_RAW(RT_DEBUG_TRACE,
1316 + ("EP address = 0x%2x \n", endpoint[i].bEndpointAddress));
1320 + if (!(pAd->BulkInEpAddr && pAd->BulkOutEpAddr[0]))
1322 + printk("Could not find both bulk-in and bulk-out endpoints\n");
1330 +BOOLEAN RT28XXProbePostConfig(
1332 + IN RTMP_ADAPTER *pAd,
1333 + IN INT32 interface)
1335 + struct usb_interface *intf = (struct usb_interface *)_dev_p;
1336 + struct usb_host_interface *iface_desc;
1341 + /* get the active interface descriptor */
1342 + iface_desc = intf->cur_altsetting;
1344 + /* get # of enpoints */
1345 + pAd->NumberOfPipes = iface_desc->desc.bNumEndpoints;
1346 + DBGPRINT(RT_DEBUG_TRACE,
1347 + ("NumEndpoints=%d\n", iface_desc->desc.bNumEndpoints));
1349 + /* Configure Pipes */
1352 + for(i=0; i<pAd->NumberOfPipes; i++)
1354 + if ((iface_desc->endpoint[i].desc.bmAttributes ==
1355 + USB_ENDPOINT_XFER_BULK) &&
1356 + ((iface_desc->endpoint[i].desc.bEndpointAddress &
1357 + USB_ENDPOINT_DIR_MASK) == USB_DIR_IN))
1359 + pAd->BulkInEpAddr = iface_desc->endpoint[i].desc.bEndpointAddress;
1360 + pAd->BulkInMaxPacketSize = iface_desc->endpoint[i].desc.wMaxPacketSize;
1362 + DBGPRINT_RAW(RT_DEBUG_TRACE,
1363 + ("BULK IN MaximumPacketSize = %d\n", pAd->BulkInMaxPacketSize));
1364 + DBGPRINT_RAW(RT_DEBUG_TRACE,
1365 + ("EP address = 0x%2x\n", iface_desc->endpoint[i].desc.bEndpointAddress));
1367 + else if ((iface_desc->endpoint[i].desc.bmAttributes ==
1368 + USB_ENDPOINT_XFER_BULK) &&
1369 + ((iface_desc->endpoint[i].desc.bEndpointAddress &
1370 + USB_ENDPOINT_DIR_MASK) == USB_DIR_OUT))
1372 + // there are 6 bulk out EP. EP6 highest priority.
1373 + // EP1-4 is EDCA. EP5 is HCCA.
1374 + pAd->BulkOutEpAddr[BulkOutIdx++] = iface_desc->endpoint[i].desc.bEndpointAddress;
1375 + pAd->BulkOutMaxPacketSize = iface_desc->endpoint[i].desc.wMaxPacketSize;
1377 + DBGPRINT_RAW(RT_DEBUG_TRACE,
1378 + ("BULK OUT MaximumPacketSize = %d\n", pAd->BulkOutMaxPacketSize));
1379 + DBGPRINT_RAW(RT_DEBUG_TRACE,
1380 + ("EP address = 0x%2x \n", iface_desc->endpoint[i].desc.bEndpointAddress));
1384 + if (!(pAd->BulkInEpAddr && pAd->BulkOutEpAddr[0]))
1386 + printk("%s: Could not find both bulk-in and bulk-out endpoints\n", __FUNCTION__);
1392 +#endif // LINUX_VERSION_CODE //
1396 +========================================================================
1397 +Routine Description:
1401 + *pAd the raxx interface data pointer
1407 +========================================================================
1409 +VOID RT28XXDMADisable(
1410 + IN RTMP_ADAPTER *pAd)
1418 +========================================================================
1419 +Routine Description:
1423 + *pAd the raxx interface data pointer
1429 +========================================================================
1431 +VOID RT28XXDMAEnable(
1432 + IN RTMP_ADAPTER *pAd)
1434 + WPDMA_GLO_CFG_STRUC GloCfg;
1435 + USB_DMA_CFG_STRUC UsbCfg;
1439 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, 0x4);
1442 + RTMP_IO_READ32(pAd, WPDMA_GLO_CFG, &GloCfg.word);
1443 + if ((GloCfg.field.TxDMABusy == 0) && (GloCfg.field.RxDMABusy == 0))
1446 + DBGPRINT(RT_DEBUG_TRACE, ("==> DMABusy\n"));
1447 + RTMPusecDelay(1000);
1452 + RTMPusecDelay(50);
1453 + GloCfg.field.EnTXWriteBackDDONE = 1;
1454 + GloCfg.field.EnableRxDMA = 1;
1455 + GloCfg.field.EnableTxDMA = 1;
1456 + DBGPRINT(RT_DEBUG_TRACE, ("<== WRITE DMA offset 0x208 = 0x%x\n", GloCfg.word));
1457 + RTMP_IO_WRITE32(pAd, WPDMA_GLO_CFG, GloCfg.word);
1460 + UsbCfg.field.phyclear = 0;
1461 + /* usb version is 1.1,do not use bulk in aggregation */
1462 + if (pAd->BulkInMaxPacketSize == 512)
1463 + UsbCfg.field.RxBulkAggEn = 1;
1464 + /* for last packet, PBF might use more than limited, so minus 2 to prevent from error */
1465 + UsbCfg.field.RxBulkAggLmt = (MAX_RXBULK_SIZE /1024)-3;
1466 + UsbCfg.field.RxBulkAggTOut = 0x80; /* 2006-10-18 */
1467 + UsbCfg.field.RxBulkEn = 1;
1468 + UsbCfg.field.TxBulkEn = 1;
1470 + RTUSBWriteMACRegister(pAd, USB_DMA_CFG, UsbCfg.word);
1475 +========================================================================
1476 +Routine Description:
1477 + Write Beacon buffer to Asic.
1480 + *pAd the raxx interface data pointer
1486 +========================================================================
1488 +VOID RT28xx_UpdateBeaconToAsic(
1489 + IN RTMP_ADAPTER *pAd,
1491 + IN ULONG FrameLen,
1492 + IN ULONG UpdatePos)
1494 + PUCHAR pBeaconFrame = NULL;
1497 + BEACON_SYNC_STRUCT *pBeaconSync = pAd->CommonCfg.pBeaconSync;
1499 +// USHORT shortValue;
1500 + BOOLEAN bBcnReq = FALSE;
1501 + UCHAR bcn_idx = 0;
1504 + if (pBeaconFrame == NULL)
1506 + DBGPRINT(RT_DEBUG_ERROR,("pBeaconFrame is NULL!\n"));
1510 + if (pBeaconSync == NULL)
1512 + DBGPRINT(RT_DEBUG_ERROR,("pBeaconSync is NULL!\n"));
1516 + //if ((pAd->WdsTab.Mode == WDS_BRIDGE_MODE) ||
1517 + // ((pAd->ApCfg.MBSSID[apidx].MSSIDDev == NULL) || !(pAd->ApCfg.MBSSID[apidx].MSSIDDev->flags & IFF_UP))
1519 + if (bBcnReq == FALSE)
1521 + /* when the ra interface is down, do not send its beacon frame */
1522 + /* clear all zero */
1523 + for(i=0; i<TXWI_SIZE; i+=4) {
1524 + RTMP_IO_WRITE32(pAd, pAd->BeaconOffset[bcn_idx] + i, 0x00);
1526 + pBeaconSync->BeaconBitMap &= (~(BEACON_BITMAP_MASK & (1 << bcn_idx)));
1527 + NdisZeroMemory(pBeaconSync->BeaconTxWI[bcn_idx], TXWI_SIZE);
1531 + ptr = (PUCHAR)&pAd->BeaconTxWI;
1532 +#ifdef RT_BIG_ENDIAN
1533 + RTMPWIEndianChange(ptr, TYPE_TXWI);
1535 + if (NdisEqualMemory(pBeaconSync->BeaconTxWI[bcn_idx], &pAd->BeaconTxWI, TXWI_SIZE) == FALSE)
1536 + { // If BeaconTxWI changed, we need to rewrite the TxWI for the Beacon frames.
1537 + pBeaconSync->BeaconBitMap &= (~(BEACON_BITMAP_MASK & (1 << bcn_idx)));
1538 + NdisMoveMemory(pBeaconSync->BeaconTxWI[bcn_idx], &pAd->BeaconTxWI, TXWI_SIZE);
1541 + if ((pBeaconSync->BeaconBitMap & (1 << bcn_idx)) != (1 << bcn_idx))
1543 + for (i=0; i<TXWI_SIZE; i+=4) // 16-byte TXWI field
1545 + longValue = *ptr + (*(ptr+1)<<8) + (*(ptr+2)<<16) + (*(ptr+3)<<24);
1546 + RTMP_IO_WRITE32(pAd, pAd->BeaconOffset[bcn_idx] + i, longValue);
1551 + ptr = pBeaconSync->BeaconBuf[bcn_idx];
1552 + padding = (FrameLen & 0x01);
1553 + NdisZeroMemory((PUCHAR)(pBeaconFrame + FrameLen), padding);
1554 + FrameLen += padding;
1555 + for (i = 0 ; i < FrameLen /*HW_BEACON_OFFSET*/; i += 2)
1557 + if (NdisEqualMemory(ptr, pBeaconFrame, 2) == FALSE)
1559 + NdisMoveMemory(ptr, pBeaconFrame, 2);
1560 + //shortValue = *ptr + (*(ptr+1)<<8);
1561 + //RTMP_IO_WRITE8(pAd, pAd->BeaconOffset[bcn_idx] + TXWI_SIZE + i, shortValue);
1562 + RTUSBMultiWrite(pAd, pAd->BeaconOffset[bcn_idx] + TXWI_SIZE + i, ptr, 2);
1565 + pBeaconFrame += 2;
1568 + pBeaconSync->BeaconBitMap |= (1 << bcn_idx);
1570 + // For AP interface, set the DtimBitOn so that we can send Bcast/Mcast frame out after this beacon frame.
1576 +VOID RT2870_BssBeaconStop(
1577 + IN RTMP_ADAPTER *pAd)
1579 + BEACON_SYNC_STRUCT *pBeaconSync;
1581 + BOOLEAN Cancelled = TRUE;
1583 + pBeaconSync = pAd->CommonCfg.pBeaconSync;
1584 + if (pBeaconSync && pBeaconSync->EnableBeacon)
1589 +#ifdef CONFIG_STA_SUPPORT
1590 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
1592 + NumOfBcn = MAX_MESH_NUM;
1594 +#endif // CONFIG_STA_SUPPORT //
1596 + RTMPCancelTimer(&pAd->CommonCfg.BeaconUpdateTimer, &Cancelled);
1598 + for(i=0; i<NumOfBcn; i++)
1600 + NdisZeroMemory(pBeaconSync->BeaconBuf[i], HW_BEACON_OFFSET);
1601 + NdisZeroMemory(pBeaconSync->BeaconTxWI[i], TXWI_SIZE);
1603 + for (offset=0; offset<HW_BEACON_OFFSET; offset+=4)
1604 + RTMP_IO_WRITE32(pAd, pAd->BeaconOffset[i] + offset, 0x00);
1606 + pBeaconSync->CapabilityInfoLocationInBeacon[i] = 0;
1607 + pBeaconSync->TimIELocationInBeacon[i] = 0;
1609 + pBeaconSync->BeaconBitMap = 0;
1610 + pBeaconSync->DtimBitOn = 0;
1615 +VOID RT2870_BssBeaconStart(
1616 + IN RTMP_ADAPTER *pAd)
1619 + BEACON_SYNC_STRUCT *pBeaconSync;
1620 +// LARGE_INTEGER tsfTime, deltaTime;
1622 + pBeaconSync = pAd->CommonCfg.pBeaconSync;
1623 + if (pBeaconSync && pBeaconSync->EnableBeacon)
1628 +#ifdef CONFIG_STA_SUPPORT
1629 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
1631 + NumOfBcn = MAX_MESH_NUM;
1633 +#endif // CONFIG_STA_SUPPORT //
1635 + for(apidx=0; apidx<NumOfBcn; apidx++)
1637 + UCHAR CapabilityInfoLocationInBeacon = 0;
1638 + UCHAR TimIELocationInBeacon = 0;
1640 +#ifdef CONFIG_STA_SUPPORT
1641 +#endif // CONFIG_STA_SUPPORT //
1643 + NdisZeroMemory(pBeaconSync->BeaconBuf[apidx], HW_BEACON_OFFSET);
1644 + pBeaconSync->CapabilityInfoLocationInBeacon[apidx] = CapabilityInfoLocationInBeacon;
1645 + pBeaconSync->TimIELocationInBeacon[apidx] = TimIELocationInBeacon;
1646 + NdisZeroMemory(pBeaconSync->BeaconTxWI[apidx], TXWI_SIZE);
1648 + pBeaconSync->BeaconBitMap = 0;
1649 + pBeaconSync->DtimBitOn = 0;
1650 + pAd->CommonCfg.BeaconUpdateTimer.Repeat = TRUE;
1652 + pAd->CommonCfg.BeaconAdjust = 0;
1653 + pAd->CommonCfg.BeaconFactor = 0xffffffff / (pAd->CommonCfg.BeaconPeriod << 10);
1654 + pAd->CommonCfg.BeaconRemain = (0xffffffff % (pAd->CommonCfg.BeaconPeriod << 10)) + 1;
1655 + printk("RT2870_BssBeaconStart:BeaconFactor=%d, BeaconRemain=%d!\n", pAd->CommonCfg.BeaconFactor, pAd->CommonCfg.BeaconRemain);
1656 + RTMPSetTimer(&pAd->CommonCfg.BeaconUpdateTimer, pAd->CommonCfg.BeaconPeriod);
1662 +VOID RT2870_BssBeaconInit(
1663 + IN RTMP_ADAPTER *pAd)
1665 + BEACON_SYNC_STRUCT *pBeaconSync;
1668 + NdisAllocMemory(pAd->CommonCfg.pBeaconSync, sizeof(BEACON_SYNC_STRUCT), MEM_ALLOC_FLAG);
1669 + if (pAd->CommonCfg.pBeaconSync)
1671 + pBeaconSync = pAd->CommonCfg.pBeaconSync;
1672 + NdisZeroMemory(pBeaconSync, sizeof(BEACON_SYNC_STRUCT));
1673 + for(i=0; i < HW_BEACON_MAX_COUNT; i++)
1675 + NdisZeroMemory(pBeaconSync->BeaconBuf[i], HW_BEACON_OFFSET);
1676 + pBeaconSync->CapabilityInfoLocationInBeacon[i] = 0;
1677 + pBeaconSync->TimIELocationInBeacon[i] = 0;
1678 + NdisZeroMemory(pBeaconSync->BeaconTxWI[i], TXWI_SIZE);
1680 + pBeaconSync->BeaconBitMap = 0;
1682 + //RTMPInitTimer(pAd, &pAd->CommonCfg.BeaconUpdateTimer, GET_TIMER_FUNCTION(BeaconUpdateExec), pAd, TRUE);
1683 + pBeaconSync->EnableBeacon = TRUE;
1688 +VOID RT2870_BssBeaconExit(
1689 + IN RTMP_ADAPTER *pAd)
1691 + BEACON_SYNC_STRUCT *pBeaconSync;
1692 + BOOLEAN Cancelled = TRUE;
1695 + if (pAd->CommonCfg.pBeaconSync)
1697 + pBeaconSync = pAd->CommonCfg.pBeaconSync;
1698 + pBeaconSync->EnableBeacon = FALSE;
1699 + RTMPCancelTimer(&pAd->CommonCfg.BeaconUpdateTimer, &Cancelled);
1700 + pBeaconSync->BeaconBitMap = 0;
1702 + for(i=0; i<HW_BEACON_MAX_COUNT; i++)
1704 + NdisZeroMemory(pBeaconSync->BeaconBuf[i], HW_BEACON_OFFSET);
1705 + pBeaconSync->CapabilityInfoLocationInBeacon[i] = 0;
1706 + pBeaconSync->TimIELocationInBeacon[i] = 0;
1707 + NdisZeroMemory(pBeaconSync->BeaconTxWI[i], TXWI_SIZE);
1710 + NdisFreeMemory(pAd->CommonCfg.pBeaconSync, HW_BEACON_OFFSET * HW_BEACON_MAX_COUNT, 0);
1711 + pAd->CommonCfg.pBeaconSync = NULL;
1715 +VOID BeaconUpdateExec(
1716 + IN PVOID SystemSpecific1,
1717 + IN PVOID FunctionContext,
1718 + IN PVOID SystemSpecific2,
1719 + IN PVOID SystemSpecific3)
1721 + PRTMP_ADAPTER pAd = (PRTMP_ADAPTER)FunctionContext;
1722 + LARGE_INTEGER tsfTime_a;//, tsfTime_b, deltaTime_exp, deltaTime_ab;
1723 + UINT32 delta, remain, remain_low, remain_high;
1724 +// BOOLEAN positive;
1726 + ReSyncBeaconTime(pAd);
1730 + RTMP_IO_READ32(pAd, TSF_TIMER_DW0, &tsfTime_a.u.LowPart);
1731 + RTMP_IO_READ32(pAd, TSF_TIMER_DW1, &tsfTime_a.u.HighPart);
1734 + //positive=getDeltaTime(tsfTime_a, expectedTime, &deltaTime_exp);
1735 + remain_high = pAd->CommonCfg.BeaconRemain * tsfTime_a.u.HighPart;
1736 + remain_low = tsfTime_a.u.LowPart % (pAd->CommonCfg.BeaconPeriod << 10);
1737 + remain = (remain_high + remain_low)%(pAd->CommonCfg.BeaconPeriod << 10);
1738 + delta = (pAd->CommonCfg.BeaconPeriod << 10) - remain;
1740 + pAd->CommonCfg.BeaconUpdateTimer.TimerValue = (delta >> 10) + 10;
1745 +++ b/drivers/staging/rt3070/action.h
1748 + *************************************************************************
1749 + * Ralink Tech Inc.
1750 + * 5F., No.36, Taiyuan St., Jhubei City,
1751 + * Hsinchu County 302,
1754 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
1756 + * This program is free software; you can redistribute it and/or modify *
1757 + * it under the terms of the GNU General Public License as published by *
1758 + * the Free Software Foundation; either version 2 of the License, or *
1759 + * (at your option) any later version. *
1761 + * This program is distributed in the hope that it will be useful, *
1762 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
1763 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
1764 + * GNU General Public License for more details. *
1766 + * You should have received a copy of the GNU General Public License *
1767 + * along with this program; if not, write to the *
1768 + * Free Software Foundation, Inc., *
1769 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
1771 + *************************************************************************
1780 + -------- ---------- ----------------------------------------------
1781 + Name Date Modification logs
1782 + Paul Lin 04-06-15 Initial
1785 +#ifndef __ACTION_H__
1786 +#define __ACTION_H__
1788 +typedef struct PACKED __HT_INFO_OCTET
1790 +#ifdef RT_BIG_ENDIAN
1792 + UCHAR STA_Channel_Width:1;
1793 + UCHAR Forty_MHz_Intolerant:1;
1797 + UCHAR Forty_MHz_Intolerant:1;
1798 + UCHAR STA_Channel_Width:1;
1801 +} HT_INFORMATION_OCTET;
1804 +typedef struct PACKED __FRAME_HT_INFO
1806 + HEADER_802_11 Hdr;
1809 + HT_INFORMATION_OCTET HT_Info;
1810 +} FRAME_HT_INFO, *PFRAME_HT_INFO;
1812 +#endif /* __ACTION_H__ */
1816 +++ b/drivers/staging/rt3070/aironet.h
1819 + *************************************************************************
1820 + * Ralink Tech Inc.
1821 + * 5F., No.36, Taiyuan St., Jhubei City,
1822 + * Hsinchu County 302,
1825 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
1827 + * This program is free software; you can redistribute it and/or modify *
1828 + * it under the terms of the GNU General Public License as published by *
1829 + * the Free Software Foundation; either version 2 of the License, or *
1830 + * (at your option) any later version. *
1832 + * This program is distributed in the hope that it will be useful, *
1833 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
1834 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
1835 + * GNU General Public License for more details. *
1837 + * You should have received a copy of the GNU General Public License *
1838 + * along with this program; if not, write to the *
1839 + * Free Software Foundation, Inc., *
1840 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
1842 + *************************************************************************
1851 + -------- ---------- ----------------------------------------------
1852 + Name Date Modification logs
1853 + Paul Lin 04-06-15 Initial
1856 +#ifndef __AIRONET_H__
1857 +#define __AIRONET_H__
1859 +// Measurement Type definition
1860 +#define MSRN_TYPE_UNUSED 0
1861 +#define MSRN_TYPE_CHANNEL_LOAD_REQ 1
1862 +#define MSRN_TYPE_NOISE_HIST_REQ 2
1863 +#define MSRN_TYPE_BEACON_REQ 3
1864 +#define MSRN_TYPE_FRAME_REQ 4
1866 +// Scan Mode in Beacon Request
1867 +#define MSRN_SCAN_MODE_PASSIVE 0
1868 +#define MSRN_SCAN_MODE_ACTIVE 1
1869 +#define MSRN_SCAN_MODE_BEACON_TABLE 2
1871 +// PHY type definition for Aironet beacon report, CCX 2 table 36-9
1874 +#define PHY_UNUSED 3
1876 +#define PHY_HR_DSS 5
1879 +// RPI table in dBm
1880 +#define RPI_0 0 // Power <= -87
1881 +#define RPI_1 1 // -87 < Power <= -82
1882 +#define RPI_2 2 // -82 < Power <= -77
1883 +#define RPI_3 3 // -77 < Power <= -72
1884 +#define RPI_4 4 // -72 < Power <= -67
1885 +#define RPI_5 5 // -67 < Power <= -62
1886 +#define RPI_6 6 // -62 < Power <= -57
1887 +#define RPI_7 7 // -57 < Power
1889 +// Cisco Aironet IAPP definetions
1890 +#define AIRONET_IAPP_TYPE 0x32
1891 +#define AIRONET_IAPP_SUBTYPE_REQUEST 0x01
1892 +#define AIRONET_IAPP_SUBTYPE_REPORT 0x81
1894 +// Measurement Request detail format
1895 +typedef struct _MEASUREMENT_REQUEST {
1897 + UCHAR ScanMode; // Use only in beacon request, other requests did not use this field
1899 +} MEASUREMENT_REQUEST, *PMEASUREMENT_REQUEST;
1901 +// Beacon Measurement Report
1902 +// All these field might change to UCHAR, because we didn't do anything to these report.
1903 +// We copy all these beacons and report to CCX 2 AP.
1904 +typedef struct _BEACON_REPORT {
1908 + UCHAR PhyType; // Definiation is listed above table 36-9
1911 + UCHAR ParentTSF[4];
1912 + UCHAR TargetTSF[8];
1913 + USHORT BeaconInterval;
1914 + USHORT CapabilityInfo;
1915 +} BEACON_REPORT, *PBEACON_REPORT;
1917 +// Frame Measurement Report (Optional)
1918 +typedef struct _FRAME_REPORT {
1926 +} FRAME_REPORT, *PFRAME_REPORT;
1929 +// Channel Load Report
1930 +typedef struct _CHANNEL_LOAD_REPORT {
1935 +} CHANNEL_LOAD_REPORT, *PCHANNEL_LOAD_REPORT;
1938 +// Nosie Histogram Report
1939 +typedef struct _NOISE_HIST_REPORT {
1944 +} NOISE_HIST_REPORT, *PNOISE_HIST_REPORT;
1946 +// Radio Management Capability element
1947 +typedef struct _RADIO_MANAGEMENT_CAPABILITY {
1948 + UCHAR Eid; // TODO: Why the Eid is 1 byte, not normal 2 bytes???
1950 + UCHAR AironetOui[3]; // AIronet OUI (00 40 96)
1951 + UCHAR Type; // Type / Version
1952 + USHORT Status; // swap16 required
1953 +} RADIO_MANAGEMENT_CAPABILITY, *PRADIO_MANAGEMENT_CAPABILITY;
1955 +// Measurement Mode Bit definition
1956 +typedef struct _MEASUREMENT_MODE {
1962 +} MEASUREMENT_MODE, *PMEASUREMENT_MODE;
1964 +// Measurement Request element, This is little endian mode
1965 +typedef struct _MEASUREMENT_REQUEST_ELEMENT {
1967 + USHORT Length; // swap16 required
1968 + USHORT Token; // non-zero unique token
1969 + UCHAR Mode; // Measurement Mode
1970 + UCHAR Type; // Measurement type
1971 +} MEASUREMENT_REQUEST_ELEMENT, *PMEASUREMENT_REQUEST_ELEMENT;
1973 +// Measurement Report element, This is little endian mode
1974 +typedef struct _MEASUREMENT_REPORT_ELEMENT {
1976 + USHORT Length; // swap16 required
1977 + USHORT Token; // non-zero unique token
1978 + UCHAR Mode; // Measurement Mode
1979 + UCHAR Type; // Measurement type
1980 +} MEASUREMENT_REPORT_ELEMENT, *PMEASUREMENT_REPORT_ELEMENT;
1982 +// Cisco Aironet IAPP Frame Header, Network byte order used
1983 +typedef struct _AIRONET_IAPP_HEADER {
1984 + UCHAR CiscoSnapHeader[8]; // 8 bytes Cisco snap header
1985 + USHORT Length; // IAPP ID & length, remember to swap16 in LE system
1986 + UCHAR Type; // IAPP type
1987 + UCHAR SubType; // IAPP subtype
1988 + UCHAR DA[6]; // Destination MAC address
1989 + UCHAR SA[6]; // Source MAC address
1990 + USHORT Token; // Dialog token, no need to swap16 since it is for yoken usage only
1991 +} AIRONET_IAPP_HEADER, *PAIRONET_IAPP_HEADER;
1993 +// Radio Measurement Request frame
1994 +typedef struct _AIRONET_RM_REQUEST_FRAME {
1995 + AIRONET_IAPP_HEADER IAPP; // Common header
1996 + UCHAR Delay; // Activation Delay
1997 + UCHAR Offset; // Measurement offset
1998 +} AIRONET_RM_REQUEST_FRAME, *PAIRONET_RM_REQUEST_FRAME;
2000 +// Radio Measurement Report frame
2001 +typedef struct _AIRONET_RM_REPORT_FRAME {
2002 + AIRONET_IAPP_HEADER IAPP; // Common header
2003 +} AIRONET_RM_REPORT_FRAME, *PAIRONET_RM_REPORT_FRAME;
2005 +// Saved element request actions which will saved in StaCfg.
2006 +typedef struct _RM_REQUEST_ACTION {
2007 + MEASUREMENT_REQUEST_ELEMENT ReqElem; // Saved request element
2008 + MEASUREMENT_REQUEST Measurement; // Saved measurement within the request element
2009 +} RM_REQUEST_ACTION, *PRM_REQUEST_ACTION;
2011 +// CCX administration control
2012 +typedef union _CCX_CONTROL {
2014 + UINT32 Enable:1; // Enable CCX2
2015 + UINT32 LeapEnable:1; // Enable LEAP at CCX2
2016 + UINT32 RMEnable:1; // Radio Measurement Enable
2017 + UINT32 DCRMEnable:1; // Non serving channel Radio Measurement enable
2018 + UINT32 QOSEnable:1; // Enable QOS for CCX 2.0 support
2019 + UINT32 FastRoamEnable:1; // Enable fast roaming
2020 + UINT32 Rsvd:2; // Not used
2021 + UINT32 dBmToRoam:8; // the condition to roam when receiving Rssi less than this value. It's negative value.
2022 + UINT32 TuLimit:16; // Limit for different channel scan
2025 +} CCX_CONTROL, *PCCX_CONTROL;
2027 +#endif // __AIRONET_H__
2029 +++ b/drivers/staging/rt3070/ap.h
2032 + *************************************************************************
2033 + * Ralink Tech Inc.
2034 + * 5F., No.36, Taiyuan St., Jhubei City,
2035 + * Hsinchu County 302,
2038 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
2040 + * This program is free software; you can redistribute it and/or modify *
2041 + * it under the terms of the GNU General Public License as published by *
2042 + * the Free Software Foundation; either version 2 of the License, or *
2043 + * (at your option) any later version. *
2045 + * This program is distributed in the hope that it will be useful, *
2046 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
2047 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
2048 + * GNU General Public License for more details. *
2050 + * You should have received a copy of the GNU General Public License *
2051 + * along with this program; if not, write to the *
2052 + * Free Software Foundation, Inc., *
2053 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
2055 + *************************************************************************
2061 + Miniport generic portion header file
2065 + -------- ---------- ----------------------------------------------
2066 + Paul Lin 08-01-2002 created
2067 + James Tan 09-06-2002 modified (Revise NTCRegTable)
2068 + John Chang 12-22-2004 modified for RT2561/2661. merge with STA driver
2075 +// ========================= AP RTMP.h ================================
2079 +// =============================================================
2080 +// Function Prototypes
2081 +// =============================================================
2085 +BOOLEAN APBridgeToWirelessSta(
2086 + IN PRTMP_ADAPTER pAd,
2087 + IN PUCHAR pHeader,
2091 + IN ULONG fromwdsidx);
2093 +BOOLEAN APHandleRxDoneInterrupt(
2094 + IN PRTMP_ADAPTER pAd);
2096 +VOID APSendPackets(
2097 + IN NDIS_HANDLE MiniportAdapterContext,
2098 + IN PPNDIS_PACKET ppPacketArray,
2099 + IN UINT NumberOfPackets);
2101 +NDIS_STATUS APSendPacket(
2102 + IN PRTMP_ADAPTER pAd,
2103 + IN PNDIS_PACKET pPacket);
2106 +NDIS_STATUS APHardTransmit(
2107 + IN PRTMP_ADAPTER pAd,
2108 + IN TX_BLK *pTxBlk,
2111 +VOID APRxEAPOLFrameIndicate(
2112 + IN PRTMP_ADAPTER pAd,
2113 + IN MAC_TABLE_ENTRY *pEntry,
2114 + IN RX_BLK *pRxBlk,
2115 + IN UCHAR FromWhichBSSID);
2117 +NDIS_STATUS APCheckRxError(
2118 + IN PRTMP_ADAPTER pAd,
2119 + IN PRT28XX_RXD_STRUC pRxD,
2122 +BOOLEAN APCheckClass2Class3Error(
2123 + IN PRTMP_ADAPTER pAd,
2125 + IN PHEADER_802_11 pHeader);
2127 +VOID APHandleRxPsPoll(
2128 + IN PRTMP_ADAPTER pAd,
2131 + IN BOOLEAN isActive);
2133 +VOID RTMPDescriptorEndianChange(
2135 + IN ULONG DescriptorType);
2137 +VOID RTMPFrameEndianChange(
2138 + IN PRTMP_ADAPTER pAd,
2141 + IN BOOLEAN FromRxDoneInt);
2145 +VOID APAssocStateMachineInit(
2146 + IN PRTMP_ADAPTER pAd,
2147 + IN STATE_MACHINE *S,
2148 + OUT STATE_MACHINE_FUNC Trans[]);
2150 +VOID APPeerAssocReqAction(
2151 + IN PRTMP_ADAPTER pAd,
2152 + IN MLME_QUEUE_ELEM *Elem);
2154 +VOID APPeerReassocReqAction(
2155 + IN PRTMP_ADAPTER pAd,
2156 + IN MLME_QUEUE_ELEM *Elem);
2158 +VOID APPeerDisassocReqAction(
2159 + IN PRTMP_ADAPTER pAd,
2160 + IN MLME_QUEUE_ELEM *Elem);
2162 +VOID MbssKickOutStas(
2163 + IN PRTMP_ADAPTER pAd,
2165 + IN USHORT Reason);
2167 +VOID APMlmeKickOutSta(
2168 + IN PRTMP_ADAPTER pAd,
2169 + IN PUCHAR pStaAddr,
2171 + IN USHORT Reason);
2173 +VOID APMlmeDisassocReqAction(
2174 + IN PRTMP_ADAPTER pAd,
2175 + IN MLME_QUEUE_ELEM *Elem);
2177 +VOID APCls3errAction(
2178 + IN PRTMP_ADAPTER pAd,
2180 + IN PHEADER_802_11 pHeader);
2183 +USHORT APBuildAssociation(
2184 + IN PRTMP_ADAPTER pAd,
2185 + IN MAC_TABLE_ENTRY *pEntry,
2186 + IN USHORT CapabilityInfo,
2187 + IN UCHAR MaxSupportedRateIn500Kbps,
2189 + IN UCHAR *pRSNLen,
2190 + IN BOOLEAN bWmmCapable,
2191 + IN ULONG RalinkIe,
2192 +#ifdef DOT11N_DRAFT3
2193 + IN EXT_CAP_INFO_ELEMENT ExtCapInfo,
2194 +#endif // DOT11N_DRAFT3 //
2195 + IN HT_CAPABILITY_IE *pHtCapability,
2196 + IN UCHAR HtCapabilityLen,
2197 + OUT USHORT *pAid);
2200 +VOID RTMPAddClientSec(
2201 + IN PRTMP_ADAPTER pAd,
2204 + IN UCHAR CipherAlg,
2208 + IN MAC_TABLE_ENTRY *pEntry);
2213 +void APAuthStateMachineInit(
2214 + IN PRTMP_ADAPTER pAd,
2215 + IN STATE_MACHINE *Sm,
2216 + OUT STATE_MACHINE_FUNC Trans[]);
2218 +VOID APMlmeDeauthReqAction(
2219 + IN PRTMP_ADAPTER pAd,
2220 + IN MLME_QUEUE_ELEM *Elem);
2222 +VOID APCls2errAction(
2223 + IN PRTMP_ADAPTER pAd,
2225 + IN PHEADER_802_11 pHeader);
2229 +VOID APAuthRspStateMachineInit(
2230 + IN PRTMP_ADAPTER pAd,
2231 + IN PSTATE_MACHINE Sm,
2232 + IN STATE_MACHINE_FUNC Trans[]);
2234 +VOID APPeerAuthAtAuthRspIdleAction(
2235 + IN PRTMP_ADAPTER pAd,
2236 + IN MLME_QUEUE_ELEM *Elem);
2238 +VOID APPeerDeauthReqAction(
2239 + IN PRTMP_ADAPTER pAd,
2240 + IN MLME_QUEUE_ELEM *Elem);
2242 +VOID APPeerAuthSimpleRspGenAndSend(
2243 + IN PRTMP_ADAPTER pAd,
2244 + IN PHEADER_802_11 pHdr80211,
2247 + IN USHORT StatusCode);
2251 +BOOLEAN BeaconTransmitRequired(
2252 + IN PRTMP_ADAPTER pAd,
2255 +VOID APMakeBssBeacon(
2256 + IN PRTMP_ADAPTER pAd,
2259 +VOID APUpdateBeaconFrame(
2260 + IN PRTMP_ADAPTER pAd,
2263 +VOID APMakeAllBssBeacon(
2264 + IN PRTMP_ADAPTER pAd);
2266 +VOID APUpdateAllBeaconFrame(
2267 + IN PRTMP_ADAPTER pAd);
2272 +VOID APSyncStateMachineInit(
2273 + IN PRTMP_ADAPTER pAd,
2274 + IN STATE_MACHINE *Sm,
2275 + OUT STATE_MACHINE_FUNC Trans[]);
2277 +VOID APScanTimeout(
2278 + IN PVOID SystemSpecific1,
2279 + IN PVOID FunctionContext,
2280 + IN PVOID SystemSpecific2,
2281 + IN PVOID SystemSpecific3);
2283 +VOID APInvalidStateWhenScan(
2284 + IN PRTMP_ADAPTER pAd,
2285 + IN MLME_QUEUE_ELEM *Elem);
2287 +VOID APScanTimeoutAction(
2288 + IN PRTMP_ADAPTER pAd,
2289 + IN MLME_QUEUE_ELEM *Elem);
2291 +VOID APPeerProbeReqAction(
2292 + IN PRTMP_ADAPTER pAd,
2293 + IN MLME_QUEUE_ELEM *Elem);
2295 +VOID APPeerBeaconAction(
2296 + IN PRTMP_ADAPTER pAd,
2297 + IN MLME_QUEUE_ELEM *Elem);
2299 +VOID APMlmeScanReqAction(
2300 + IN PRTMP_ADAPTER pAd,
2301 + IN MLME_QUEUE_ELEM *Elem);
2303 +VOID APPeerBeaconAtScanAction(
2304 + IN PRTMP_ADAPTER pAd,
2305 + IN MLME_QUEUE_ELEM *Elem);
2307 +VOID APScanCnclAction(
2308 + IN PRTMP_ADAPTER pAd,
2309 + IN MLME_QUEUE_ELEM *Elem);
2312 + IN PRTMP_ADAPTER pAd);
2315 + IN PUCHAR SupRate,
2316 + IN UCHAR SupRateLen,
2317 + IN PUCHAR ExtRate,
2318 + IN UCHAR ExtRateLen,
2319 + OUT PUCHAR *Rates,
2320 + OUT PUCHAR RatesLen,
2321 + OUT PUCHAR pMaxSupportRate);
2324 +BOOLEAN ApScanRunning(
2325 + IN PRTMP_ADAPTER pAd);
2327 +#ifdef DOT11N_DRAFT3
2328 +VOID APOverlappingBSSScan(
2329 + IN RTMP_ADAPTER *pAd);
2330 +#endif // DOT11N_DRAFT3 //
2334 +VOID APWpaStateMachineInit(
2335 + IN PRTMP_ADAPTER pAd,
2336 + IN STATE_MACHINE *Sm,
2337 + OUT STATE_MACHINE_FUNC Trans[]);
2341 +VOID APMlmePeriodicExec(
2342 + IN PRTMP_ADAPTER pAd);
2344 +VOID APMlmeSelectTxRateTable(
2345 + IN PRTMP_ADAPTER pAd,
2346 + IN PMAC_TABLE_ENTRY pEntry,
2347 + IN PUCHAR *ppTable,
2348 + IN PUCHAR pTableSize,
2349 + IN PUCHAR pInitTxRateIdx);
2351 +VOID APMlmeSetTxRate(
2352 + IN PRTMP_ADAPTER pAd,
2353 + IN PMAC_TABLE_ENTRY pEntry,
2354 + IN PRTMP_TX_RATE_SWITCH pTxRate);
2356 +VOID APMlmeDynamicTxRateSwitching(
2357 + IN PRTMP_ADAPTER pAd);
2359 +VOID APQuickResponeForRateUpExec(
2360 + IN PVOID SystemSpecific1,
2361 + IN PVOID FunctionContext,
2362 + IN PVOID SystemSpecific2,
2363 + IN PVOID SystemSpecific3);
2365 +BOOLEAN APMsgTypeSubst(
2366 + IN PRTMP_ADAPTER pAd,
2367 + IN PFRAME_802_11 pFrame,
2369 + OUT INT *MsgType);
2371 +VOID APQuickResponeForRateUpExec(
2372 + IN PVOID SystemSpecific1,
2373 + IN PVOID FunctionContext,
2374 + IN PVOID SystemSpecific2,
2375 + IN PVOID SystemSpecific3);
2378 +VOID BeaconUpdateExec(
2379 + IN PVOID SystemSpecific1,
2380 + IN PVOID FunctionContext,
2381 + IN PVOID SystemSpecific2,
2382 + IN PVOID SystemSpecific3);
2383 +#endif // RT2870 //
2385 +VOID RTMPSetPiggyBack(
2386 + IN PRTMP_ADAPTER pAd,
2387 + IN BOOLEAN bPiggyBack);
2389 +VOID APAsicEvaluateRxAnt(
2390 + IN PRTMP_ADAPTER pAd);
2392 +VOID APAsicRxAntEvalTimeout(
2393 + IN PRTMP_ADAPTER pAd);
2397 +VOID APSwitchChannel(
2398 + IN PRTMP_ADAPTER pAd,
2401 +NDIS_STATUS APInitialize(
2402 + IN PRTMP_ADAPTER pAd);
2405 + IN PRTMP_ADAPTER pAd);
2408 + IN PRTMP_ADAPTER pAd);
2411 + IN PRTMP_ADAPTER pAd);
2413 +VOID APCleanupPsQueue(
2414 + IN PRTMP_ADAPTER pAd,
2415 + IN PQUEUE_HEADER pQueue);
2417 +VOID MacTableReset(
2418 + IN PRTMP_ADAPTER pAd);
2420 +MAC_TABLE_ENTRY *MacTableInsertEntry(
2421 + IN PRTMP_ADAPTER pAd,
2424 + IN BOOLEAN CleanAll);
2426 +BOOLEAN MacTableDeleteEntry(
2427 + IN PRTMP_ADAPTER pAd,
2431 +MAC_TABLE_ENTRY *MacTableLookup(
2432 + IN PRTMP_ADAPTER pAd,
2435 +VOID MacTableMaintenance(
2436 + IN PRTMP_ADAPTER pAd);
2438 +UINT32 MacTableAssocStaNumGet(
2439 + IN PRTMP_ADAPTER pAd);
2441 +MAC_TABLE_ENTRY *APSsPsInquiry(
2442 + IN PRTMP_ADAPTER pAd,
2446 + OUT UCHAR *PsMode,
2449 +BOOLEAN APPsIndicate(
2450 + IN PRTMP_ADAPTER pAd,
2456 + IN PRTMP_ADAPTER pAd,
2460 +#ifdef DOT11_N_SUPPORT
2461 +VOID APUpdateOperationMode(
2462 + IN PRTMP_ADAPTER pAd);
2463 +#endif // DOT11_N_SUPPORT //
2465 +VOID APUpdateCapabilityAndErpIe(
2466 + IN PRTMP_ADAPTER pAd);
2468 +BOOLEAN ApCheckAccessControlList(
2469 + IN PRTMP_ADAPTER pAd,
2473 +VOID ApUpdateAccessControlList(
2474 + IN PRTMP_ADAPTER pAd,
2477 +VOID ApEnqueueNullFrame(
2478 + IN PRTMP_ADAPTER pAd,
2483 + IN BOOLEAN bQosNull,
2488 + IN PRTMP_ADAPTER pAd,
2494 +VOID ApEnqueueAckFrame(
2495 + IN PRTMP_ADAPTER pAd,
2500 +UCHAR APAutoSelectChannel(
2501 + IN PRTMP_ADAPTER pAd,
2502 + IN BOOLEAN Optimal);
2507 +BOOLEAN PeerAssocReqCmmSanity(
2508 + IN PRTMP_ADAPTER pAd,
2509 + IN BOOLEAN isRessoc,
2512 + OUT PUCHAR pAddr2,
2513 + OUT USHORT *pCapabilityInfo,
2514 + OUT USHORT *pListenInterval,
2515 + OUT PUCHAR pApAddr,
2516 + OUT UCHAR *pSsidLen,
2518 + OUT UCHAR *pRatesLen,
2519 + OUT UCHAR Rates[],
2521 + OUT UCHAR *pRSNLen,
2522 + OUT BOOLEAN *pbWmmCapable,
2523 + OUT ULONG *pRalinkIe,
2524 +#ifdef DOT11N_DRAFT3
2525 + OUT EXT_CAP_INFO_ELEMENT *pExtCapInfo,
2526 +#endif // DOT11N_DRAFT3 //
2527 + OUT UCHAR *pHtCapabilityLen,
2528 + OUT HT_CAPABILITY_IE *pHtCapability);
2531 +BOOLEAN PeerDisassocReqSanity(
2532 + IN PRTMP_ADAPTER pAd,
2535 + OUT PUCHAR pAddr2,
2536 + OUT USHORT *Reason);
2538 +BOOLEAN PeerDeauthReqSanity(
2539 + IN PRTMP_ADAPTER pAd,
2542 + OUT PUCHAR pAddr2,
2543 + OUT USHORT *Reason);
2545 +BOOLEAN APPeerAuthSanity(
2546 + IN PRTMP_ADAPTER pAd,
2549 + OUT PUCHAR pAddr1,
2550 + OUT PUCHAR pAddr2,
2553 + OUT USHORT *Status,
2556 +BOOLEAN APPeerProbeReqSanity(
2557 + IN PRTMP_ADAPTER pAd,
2560 + OUT PUCHAR pAddr2,
2562 + OUT UCHAR *SsidLen);
2564 +BOOLEAN APPeerBeaconAndProbeRspSanity(
2565 + IN PRTMP_ADAPTER pAd,
2568 + OUT PUCHAR pAddr2,
2569 + OUT PUCHAR pBssid,
2571 + OUT UCHAR *SsidLen,
2572 + OUT UCHAR *BssType,
2573 + OUT USHORT *BeaconPeriod,
2574 + OUT UCHAR *Channel,
2575 + OUT LARGE_INTEGER *Timestamp,
2576 + OUT USHORT *CapabilityInfo,
2578 + OUT UCHAR *RateLen,
2579 + OUT BOOLEAN *ExtendedRateIeExist,
2583 +// ================== end of AP RTMP.h ========================
2589 +++ b/drivers/staging/rt3070/chlist.h
2592 + *************************************************************************
2593 + * Ralink Tech Inc.
2594 + * 5F., No.36, Taiyuan St., Jhubei City,
2595 + * Hsinchu County 302,
2598 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
2600 + * This program is free software; you can redistribute it and/or modify *
2601 + * it under the terms of the GNU General Public License as published by *
2602 + * the Free Software Foundation; either version 2 of the License, or *
2603 + * (at your option) any later version. *
2605 + * This program is distributed in the hope that it will be useful, *
2606 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
2607 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
2608 + * GNU General Public License for more details. *
2610 + * You should have received a copy of the GNU General Public License *
2611 + * along with this program; if not, write to the *
2612 + * Free Software Foundation, Inc., *
2613 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
2615 + *************************************************************************
2624 + -------- ---------- ----------------------------------------------
2625 + Fonchi Wu 2007-12-19 created
2628 +#ifndef __CHLIST_H__
2629 +#define __CHLIST_H__
2631 +#include "rtmp_type.h"
2632 +#include "rtmp_def.h"
2641 +#define BAND_BOTH 2
2643 +typedef struct _CH_DESP {
2644 + UCHAR FirstChannel;
2646 + CHAR MaxTxPwr; // dBm
2647 + UCHAR Geography; // 0:out door, 1:in door, 2:both
2648 + BOOLEAN DfsReq; // Dfs require, 0: No, 1: yes.
2649 +} CH_DESP, *PCH_DESP;
2651 +typedef struct _CH_REGION {
2652 + UCHAR CountReg[3];
2653 + UCHAR DfsType; // 0: CE, 1: FCC, 2: JAP, 3:JAP_W53, JAP_W56
2654 + CH_DESP ChDesp[10];
2655 +} CH_REGION, *PCH_REGION;
2657 +static CH_REGION ChRegion[] =
2659 + { // Antigua and Berbuda
2663 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2664 + { 36, 4, 23, BOTH, FALSE}, // 5G, ch 36~48
2665 + { 52, 4, 23, BOTH, FALSE}, // 5G, ch 52~64
2666 + { 100, 11, 30, BOTH, FALSE}, // 5G, ch 100~140
2675 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2676 + { 52, 4, 24, BOTH, FALSE}, // 5G, ch 52~64
2677 + { 149, 4, 30, BOTH, FALSE}, // 5G, ch 149~161
2686 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2687 + { 36, 4, 23, BOTH, FALSE}, // 5G, ch 36~48
2688 + { 52, 4, 23, BOTH, FALSE}, // 5G, ch 52~64
2689 + { 100, 11, 30, BOTH, FALSE}, // 5G, ch 100~140
2698 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2699 + { 36, 4, 23, BOTH, FALSE}, // 5G, ch 36~48
2700 + { 52, 4, 24, BOTH, FALSE}, // 5G, ch 52~64
2701 + { 149, 5, 30, BOTH, FALSE}, // 5G, ch 149~165
2710 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2711 + { 36, 4, 23, IDOR, TRUE}, // 5G, ch 36~48
2712 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
2713 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
2722 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2723 + { 36, 4, 23, BOTH, FALSE}, // 5G, ch 36~48
2724 + { 52, 4, 24, BOTH, FALSE}, // 5G, ch 52~64
2725 + { 149, 5, 30, BOTH, FALSE}, // 5G, ch 149~165
2734 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2735 + { 36, 4, 23, BOTH, FALSE}, // 5G, ch 36~48
2736 + { 52, 4, 24, BOTH, FALSE}, // 5G, ch 52~64
2737 + { 100, 11, 30, BOTH, FALSE}, // 5G, ch 100~140
2746 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2747 + { 36, 4, 23, BOTH, FALSE}, // 5G, ch 36~48
2748 + { 52, 4, 24, BOTH, FALSE}, // 5G, ch 52~64
2749 + { 100, 11, 30, BOTH, FALSE}, // 5G, ch 100~140
2758 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2759 + { 36, 4, 23, BOTH, FALSE}, // 5G, ch 36~48
2760 + { 52, 4, 24, BOTH, FALSE}, // 5G, ch 52~64
2761 + { 100, 11, 24, BOTH, FALSE}, // 5G, ch 100~140
2762 + { 149, 5, 30, BOTH, FALSE}, // 5G, ch 100~140
2771 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2772 + { 36, 4, 18, IDOR, FALSE}, // 5G, ch 36~48
2773 + { 52, 4, 18, IDOR, FALSE}, // 5G, ch 52~64
2782 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2783 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
2784 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
2785 + { 100, 11, 30, ODOR, TRUE}, // 5G, ch 100~140
2794 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2795 + { 36, 4, 23, BOTH, FALSE}, // 5G, ch 36~48
2796 + { 52, 4, 23, BOTH, FALSE}, // 5G, ch 52~64
2797 + { 149, 5, 30, BOTH, FALSE}, // 5G, ch 149~165
2802 + { // Cayman IsLands
2806 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2807 + { 36, 4, 23, BOTH, FALSE}, // 5G, ch 36~48
2808 + { 52, 4, 24, BOTH, FALSE}, // 5G, ch 52~64
2809 + { 100, 11, 30, BOTH, FALSE}, // 5G, ch 100~140
2818 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2819 + { 36, 4, 20, BOTH, FALSE}, // 5G, ch 36~48
2820 + { 52, 4, 20, BOTH, FALSE}, // 5G, ch 52~64
2821 + { 149, 5, 20, BOTH, FALSE}, // 5G, ch 149~165
2830 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2831 + { 149, 4, 27, BOTH, FALSE}, // 5G, ch 149~161
2840 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2841 + { 36, 4, 17, BOTH, FALSE}, // 5G, ch 36~48
2842 + { 52, 4, 24, BOTH, FALSE}, // 5G, ch 52~64
2843 + { 100, 11, 30, BOTH, FALSE}, // 5G, ch 100~140
2844 + { 149, 5, 30, BOTH, FALSE}, // 5G, ch 149~165
2853 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2854 + { 36, 4, 17, BOTH, FALSE}, // 5G, ch 36~48
2855 + { 52, 4, 24, BOTH, FALSE}, // 5G, ch 52~64
2856 + { 149, 4, 30, BOTH, FALSE}, // 5G, ch 149~161
2865 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2866 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
2867 + { 52, 4, 24, IDOR, TRUE}, // 5G, ch 52~64
2868 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
2873 + { // Czech_Republic
2877 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2878 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
2879 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
2888 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2889 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
2890 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
2891 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
2896 + { // Dominican Republic
2900 + { 1, 0, 20, BOTH, FALSE}, // 2.4 G, ch 0
2901 + { 149, 4, 20, BOTH, FALSE}, // 5G, ch 149~161
2910 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2911 + { 100, 11, 27, BOTH, FALSE}, // 5G, ch 100~140
2920 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2921 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
2922 + { 52, 4, 30, BOTH, TRUE}, // 5G, ch 52~64
2923 + { 149, 4, 36, BOTH, TRUE}, // 5G, ch 149~165
2932 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2933 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
2934 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
2935 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
2944 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2945 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
2946 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
2955 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2956 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
2957 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
2958 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
2967 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2968 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
2969 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
2970 + { 100, 11, 30, ODOR, TRUE}, // 5G, ch 100~140
2979 + { 1, 11, 20, BOTH, FALSE}, // 2.4 G, ch 1~11
2980 + { 36, 4, 17, BOTH, FALSE}, // 5G, ch 36~48
2981 + { 52, 4, 24, BOTH, FALSE}, // 5G, ch 52~64
2982 + { 100, 11, 30, BOTH, FALSE}, // 5G, ch 100~140
2983 + { 149, 5, 30, BOTH, FALSE}, // 5G, ch 149~165
2992 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
2993 + { 36, 4, 17, BOTH, FALSE}, // 5G, ch 36~48
2994 + { 52, 4, 24, BOTH, FALSE}, // 5G, ch 52~64
2995 + { 149, 4, 30, BOTH, FALSE}, // 5G, ch 149~161
3004 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3005 + { 36, 4, 17, BOTH, FALSE}, // 5G, ch 36~48
3006 + { 52, 4, 24, BOTH, FALSE}, // 5G, ch 52~64
3007 + { 149, 4, 30, BOTH, FALSE}, // 5G, ch 149~161
3016 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3017 + { 149, 4, 27, BOTH, FALSE}, // 5G, ch 149~161
3026 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3027 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
3028 + { 52, 4, 23, IDOR, FALSE}, // 5G, ch 52~64
3029 + { 149, 4, 30, BOTH, FALSE}, // 5G, ch 149~161
3038 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3039 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
3040 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
3049 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3050 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
3051 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
3052 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
3061 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3062 + { 149, 4, 24, IDOR, FALSE}, // 5G, ch 149~161
3071 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3072 + { 149, 4, 27, BOTH, FALSE}, // 5G, ch 149~161
3081 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3082 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
3083 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
3084 + { 100, 11, 30, ODOR, TRUE}, // 5G, ch 100~140
3093 + { 1, 3, 20, IDOR, FALSE}, // 2.4 G, ch 1~3
3094 + { 4, 6, 20, BOTH, FALSE}, // 2.4 G, ch 4~9
3095 + { 10, 4, 20, IDOR, FALSE}, // 2.4 G, ch 10~13
3104 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3105 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
3106 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
3107 + { 100, 11, 30, ODOR, TRUE}, // 5G, ch 100~140
3116 + { 1, 14, 20, BOTH, FALSE}, // 2.4 G, ch 1~14
3117 + { 34, 4, 23, IDOR, FALSE}, // 5G, ch 34~46
3126 + { 1, 13, 20, IDOR, FALSE}, // 2.4 G, ch 1~13
3127 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
3128 + { 149, 4, 23, IDOR, FALSE}, // 5G, ch 149~161
3137 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3138 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
3139 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
3140 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
3145 + { // Liechtenstein
3149 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3150 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
3151 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
3160 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3161 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
3162 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
3163 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
3172 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3173 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
3174 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
3175 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
3184 + { 36, 4, 23, BOTH, FALSE}, // 5G, ch 36~48
3185 + { 52, 4, 23, BOTH, FALSE}, // 5G, ch 52~64
3186 + { 149, 5, 20, BOTH, FALSE}, // 5G, ch 149~165
3195 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3196 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
3197 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
3198 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
3207 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3208 + { 36, 4, 24, IDOR, FALSE}, // 5G, ch 36~48
3217 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3218 + { 36, 4, 23, BOTH, FALSE}, // 5G, ch 36~48
3219 + { 52, 4, 24, BOTH, FALSE}, // 5G, ch 52~64
3220 + { 149, 5, 30, IDOR, FALSE}, // 5G, ch 149~165
3229 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3230 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
3231 + { 52, 4, 24, IDOR, TRUE}, // 5G, ch 52~64
3232 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
3241 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3242 + { 36, 4, 24, BOTH, FALSE}, // 5G, ch 36~48
3243 + { 52, 4, 24, BOTH, FALSE}, // 5G, ch 52~64
3244 + { 149, 4, 30, BOTH, FALSE}, // 5G, ch 149~161
3253 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3254 + { 36, 4, 24, IDOR, FALSE}, // 5G, ch 36~48
3255 + { 52, 4, 24, IDOR, TRUE}, // 5G, ch 52~64
3256 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 149~161
3265 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3266 + { 149, 4, 27, BOTH, FALSE}, // 5G, ch 149~161
3275 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3276 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
3277 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
3278 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
3287 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3288 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
3289 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
3290 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
3299 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3300 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
3301 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
3302 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
3311 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3312 + { 149, 4, 20, IDOR, FALSE}, // 5G, ch 149~161
3321 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3322 + { 36, 4, 23, BOTH, FALSE}, // 5G, ch 36~48
3323 + { 52, 4, 23, BOTH, FALSE}, // 5G, ch 52~64
3324 + { 149, 4, 23, BOTH, FALSE}, // 5G, ch 149~161
3329 + { // Serbia_and_Montenegro
3333 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3342 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3343 + { 36, 4, 23, BOTH, FALSE}, // 5G, ch 36~48
3344 + { 52, 4, 23, BOTH, FALSE}, // 5G, ch 52~64
3345 + { 149, 4, 20, BOTH, FALSE}, // 5G, ch 149~161
3354 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3355 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
3356 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
3357 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
3366 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3367 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
3368 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
3377 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3378 + { 36, 4, 23, BOTH, FALSE}, // 5G, ch 36~48
3379 + { 52, 4, 23, IDOR, FALSE}, // 5G, ch 52~64
3380 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
3381 + { 149, 4, 30, BOTH, FALSE}, // 5G, ch 149~161
3390 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3391 + { 36, 4, 20, BOTH, FALSE}, // 5G, ch 36~48
3392 + { 52, 4, 20, BOTH, FALSE}, // 5G, ch 52~64
3393 + { 100, 8, 20, BOTH, FALSE}, // 5G, ch 100~128
3394 + { 149, 4, 20, BOTH, FALSE}, // 5G, ch 149~161
3403 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3404 + { 36, 4, 17, IDOR, FALSE}, // 5G, ch 36~48
3405 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
3406 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
3415 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3416 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 36~48
3417 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
3418 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
3427 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~13
3428 + { 36, 4, 23, IDOR, TRUE}, // 5G, ch 36~48
3429 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
3438 + { 1, 11, 30, BOTH, FALSE}, // 2.4 G, ch 1~11
3439 + { 52, 4, 23, IDOR, FALSE}, // 5G, ch 52~64
3448 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~11
3449 + { 36, 4, 23, BOTH, FALSE}, // 5G, ch 36~48
3450 + { 52, 4, 23, BOTH, FALSE}, // 5G, ch 52~64
3459 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~11
3460 + { 36, 4, 23, IDOR, FALSE}, // 5G, ch 52~64
3461 + { 52, 4, 23, IDOR, TRUE}, // 5G, ch 52~64
3462 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
3471 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~11
3476 + { // United_Arab_Emirates
3480 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~11
3485 + { // United_States
3489 + { 1, 11, 30, BOTH, FALSE}, // 2.4 G, ch 1~11
3490 + { 36, 4, 17, IDOR, FALSE}, // 5G, ch 52~64
3491 + { 52, 4, 24, BOTH, TRUE}, // 5G, ch 52~64
3492 + { 100, 11, 30, BOTH, TRUE}, // 5G, ch 100~140
3493 + { 149, 5, 30, BOTH, FALSE}, // 5G, ch 149~165
3502 + { 1, 13, 20, BOTH, FALSE}, // 2.4 G, ch 1~11
3503 + { 149, 4, 27, BOTH, FALSE}, // 5G, ch 149~161
3512 + { 1, 11, 20, BOTH, FALSE}, // 2.4 G, ch 1~11
3513 + { 36, 4, 20, BOTH, FALSE}, // 5G, ch 52~64
3514 + { 52, 4, 20, BOTH, FALSE}, // 5G, ch 52~64
3515 + { 100, 11, 20, BOTH, FALSE}, // 5G, ch 100~140
3516 + { 149, 5, 20, BOTH, FALSE}, // 5G, ch 149~165
3522 +static inline PCH_REGION GetChRegion(
3523 + IN PUCHAR CntryCode)
3526 + PCH_REGION pChRegion = NULL;
3528 + while (strcmp(ChRegion[loop].CountReg, "") != 0)
3530 + if (strncmp(ChRegion[loop].CountReg, CntryCode, 2) == 0)
3532 + pChRegion = &ChRegion[loop];
3538 + if (pChRegion == NULL)
3539 + pChRegion = &ChRegion[loop];
3543 +static inline VOID ChBandCheck(
3545 + OUT PUCHAR pChType)
3550 +#ifdef DOT11_N_SUPPORT
3551 + case PHY_11AN_MIXED:
3552 +#endif // DOT11_N_SUPPORT //
3553 + *pChType = BAND_5G;
3555 + case PHY_11ABG_MIXED:
3556 +#ifdef DOT11_N_SUPPORT
3557 + case PHY_11AGN_MIXED:
3558 + case PHY_11ABGN_MIXED:
3559 +#endif // DOT11_N_SUPPORT //
3560 + *pChType = BAND_BOTH;
3564 + *pChType = BAND_24G;
3569 +static inline UCHAR FillChList(
3570 + IN PRTMP_ADAPTER pAd,
3571 + IN PCH_DESP pChDesp,
3573 + IN UCHAR increment)
3579 + for (i = 0; i < pChDesp->NumOfCh; i++)
3581 + channel = pChDesp->FirstChannel + i * increment;
3582 + for (l=0; l<MAX_NUM_OF_CHANNELS; l++)
3584 + if (channel == pAd->TxPower[l].Channel)
3586 + pAd->ChannelList[j].Power = pAd->TxPower[l].Power;
3587 + pAd->ChannelList[j].Power2 = pAd->TxPower[l].Power2;
3591 + if (l == MAX_NUM_OF_CHANNELS)
3594 + pAd->ChannelList[j].Channel = pChDesp->FirstChannel + i * increment;
3595 + pAd->ChannelList[j].MaxTxPwr = pChDesp->MaxTxPwr;
3596 + pAd->ChannelList[j].DfsReq = pChDesp->DfsReq;
3599 + pAd->ChannelListNum = j;
3604 +static inline VOID CreateChList(
3605 + IN PRTMP_ADAPTER pAd,
3606 + IN PCH_REGION pChRegion,
3607 + IN UCHAR Geography)
3615 + if (pChRegion == NULL)
3618 + ChBandCheck(pAd->CommonCfg.PhyMode, &ChType);
3620 + for (i=0; i<10; i++)
3622 + pChDesp = &pChRegion->ChDesp[i];
3623 + if (pChDesp->FirstChannel == 0)
3626 + if (ChType == BAND_5G)
3628 + if (pChDesp->FirstChannel <= 14)
3631 + else if (ChType == BAND_24G)
3633 + if (pChDesp->FirstChannel > 14)
3637 + if ((pChDesp->Geography == BOTH)
3638 + || (pChDesp->Geography == Geography))
3640 + if (pChDesp->FirstChannel > 14)
3644 + offset = FillChList(pAd, pChDesp, offset, increment);
3649 +static inline VOID BuildChannelListEx(
3650 + IN PRTMP_ADAPTER pAd)
3652 + PCH_REGION pChReg;
3654 + pChReg = GetChRegion(pAd->CommonCfg.CountryCode);
3655 + CreateChList(pAd, pChReg, pAd->CommonCfg.Geography);
3658 +static inline VOID BuildBeaconChList(
3659 + IN PRTMP_ADAPTER pAd,
3661 + OUT PULONG pBufLen)
3665 + PCH_REGION pChRegion;
3669 + pChRegion = GetChRegion(pAd->CommonCfg.CountryCode);
3671 + if (pChRegion == NULL)
3674 + ChBandCheck(pAd->CommonCfg.PhyMode, &ChType);
3677 + for (i=0; i<10; i++)
3679 + pChDesp = &pChRegion->ChDesp[i];
3680 + if (pChDesp->FirstChannel == 0)
3683 + if (ChType == BAND_5G)
3685 + if (pChDesp->FirstChannel <= 14)
3688 + else if (ChType == BAND_24G)
3690 + if (pChDesp->FirstChannel > 14)
3694 + if ((pChDesp->Geography == BOTH)
3695 + || (pChDesp->Geography == pAd->CommonCfg.Geography))
3697 + MakeOutgoingFrame(pBuf + *pBufLen, &TmpLen,
3698 + 1, &pChDesp->FirstChannel,
3699 + 1, &pChDesp->NumOfCh,
3700 + 1, &pChDesp->MaxTxPwr,
3702 + *pBufLen += TmpLen;
3708 +#ifdef DOT11_N_SUPPORT
3709 +static inline BOOLEAN IsValidChannel(
3710 + IN PRTMP_ADAPTER pAd,
3716 + for (i = 0; i < pAd->ChannelListNum; i++)
3718 + if (pAd->ChannelList[i].Channel == channel)
3722 + if (i == pAd->ChannelListNum)
3729 +static inline UCHAR GetExtCh(
3731 + IN UCHAR Direction)
3735 + if (Direction == EXTCHA_ABOVE)
3736 + ExtCh = Channel + 4;
3738 + ExtCh = (Channel - 4) > 0 ? (Channel - 4) : 0;
3744 +static inline VOID N_ChannelCheck(
3745 + IN PRTMP_ADAPTER pAd)
3747 + //UCHAR ChannelNum = pAd->ChannelListNum;
3748 + UCHAR Channel = pAd->CommonCfg.Channel;
3750 + if ((pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED) && (pAd->CommonCfg.RegTransmitSetting.field.BW == BW_40))
3754 + if ((Channel == 36) || (Channel == 44) || (Channel == 52) || (Channel == 60) || (Channel == 100) || (Channel == 108) ||
3755 + (Channel == 116) || (Channel == 124) || (Channel == 132) || (Channel == 149) || (Channel == 157))
3757 + pAd->CommonCfg.RegTransmitSetting.field.EXTCHA = EXTCHA_ABOVE;
3759 + else if ((Channel == 40) || (Channel == 48) || (Channel == 56) || (Channel == 64) || (Channel == 104) || (Channel == 112) ||
3760 + (Channel == 120) || (Channel == 128) || (Channel == 136) || (Channel == 153) || (Channel == 161))
3762 + pAd->CommonCfg.RegTransmitSetting.field.EXTCHA = EXTCHA_BELOW;
3766 + pAd->CommonCfg.RegTransmitSetting.field.BW = BW_20;
3774 + UCHAR Dir = pAd->CommonCfg.RegTransmitSetting.field.EXTCHA;
3775 + ExtCh = GetExtCh(Channel, Dir);
3776 + if (IsValidChannel(pAd, ExtCh))
3779 + Dir = (Dir == EXTCHA_ABOVE) ? EXTCHA_BELOW : EXTCHA_ABOVE;
3780 + ExtCh = GetExtCh(Channel, Dir);
3781 + if (IsValidChannel(pAd, ExtCh))
3783 + pAd->CommonCfg.RegTransmitSetting.field.EXTCHA = Dir;
3786 + pAd->CommonCfg.RegTransmitSetting.field.BW = BW_20;
3789 + if (Channel == 14)
3791 + pAd->CommonCfg.RegTransmitSetting.field.BW = BW_20;
3792 + //pAd->CommonCfg.RegTransmitSetting.field.EXTCHA = EXTCHA_NONE; // We didn't set the ExtCh as NONE due to it'll set in RTMPSetHT()
3801 +static inline VOID N_SetCenCh(
3802 + IN PRTMP_ADAPTER pAd)
3804 + if (pAd->CommonCfg.RegTransmitSetting.field.BW == BW_40)
3806 + if (pAd->CommonCfg.RegTransmitSetting.field.EXTCHA == EXTCHA_ABOVE)
3808 + pAd->CommonCfg.CentralChannel = pAd->CommonCfg.Channel + 2;
3812 + if (pAd->CommonCfg.Channel == 14)
3813 + pAd->CommonCfg.CentralChannel = pAd->CommonCfg.Channel - 1;
3815 + pAd->CommonCfg.CentralChannel = pAd->CommonCfg.Channel - 2;
3820 + pAd->CommonCfg.CentralChannel = pAd->CommonCfg.Channel;
3823 +#endif // DOT11_N_SUPPORT //
3826 +static inline UINT8 GetCuntryMaxTxPwr(
3827 + IN PRTMP_ADAPTER pAd,
3831 + for (i = 0; i < pAd->ChannelListNum; i++)
3833 + if (pAd->ChannelList[i].Channel == channel)
3837 + if (i == pAd->ChannelListNum)
3840 + return pAd->ChannelList[i].MaxTxPwr;
3842 +#endif // __CHLIST_H__
3845 +++ b/drivers/staging/rt3070/common/2870_rtmp_init.c
3848 + *************************************************************************
3849 + * Ralink Tech Inc.
3850 + * 5F., No.36, Taiyuan St., Jhubei City,
3851 + * Hsinchu County 302,
3854 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
3856 + * This program is free software; you can redistribute it and/or modify *
3857 + * it under the terms of the GNU General Public License as published by *
3858 + * the Free Software Foundation; either version 2 of the License, or *
3859 + * (at your option) any later version. *
3861 + * This program is distributed in the hope that it will be useful, *
3862 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
3863 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
3864 + * GNU General Public License for more details. *
3866 + * You should have received a copy of the GNU General Public License *
3867 + * along with this program; if not, write to the *
3868 + * Free Software Foundation, Inc., *
3869 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
3871 + *************************************************************************
3877 + Miniport generic portion header file
3881 + -------- ---------- ----------------------------------------------
3882 + Paul Lin 2002-08-01 created
3883 + John Chang 2004-08-20 RT2561/2661 use scatter-gather scheme
3884 + Jan Lee 2006-09-15 RT2860. Change for 802.11n , EEPROM, Led, BA, HT.
3885 + Sample Lin 2007-05-31 Merge RT2860 and RT2870 drivers.
3888 +#include "../rt_config.h"
3891 +static void rx_done_tasklet(unsigned long data);
3892 +static void rt2870_hcca_dma_done_tasklet(unsigned long data);
3893 +static void rt2870_ac3_dma_done_tasklet(unsigned long data);
3894 +static void rt2870_ac2_dma_done_tasklet(unsigned long data);
3895 +static void rt2870_ac1_dma_done_tasklet(unsigned long data);
3896 +static void rt2870_ac0_dma_done_tasklet(unsigned long data);
3897 +static void rt2870_mgmt_dma_done_tasklet(unsigned long data);
3898 +static void rt2870_null_frame_complete_tasklet(unsigned long data);
3899 +static void rt2870_rts_frame_complete_tasklet(unsigned long data);
3900 +static void rt2870_pspoll_frame_complete_tasklet(unsigned long data);
3901 +static void rt2870_dataout_complete_tasklet(unsigned long data);
3905 +========================================================================
3906 +Routine Description:
3907 + Initialize receive data structures.
3910 + pAd Pointer to our adapter
3913 + NDIS_STATUS_SUCCESS
3914 + NDIS_STATUS_RESOURCES
3917 + Initialize all receive releated private buffer, include those define
3918 + in RTMP_ADAPTER structure and all private data structures. The mahor
3919 + work is to allocate buffer for each packet and chain buffer to
3920 + NDIS packet descriptor.
3921 +========================================================================
3923 +NDIS_STATUS NICInitRecv(
3924 + IN PRTMP_ADAPTER pAd)
3927 + NDIS_STATUS Status = NDIS_STATUS_SUCCESS;
3928 + POS_COOKIE pObj = (POS_COOKIE) pAd->OS_Cookie;
3931 + DBGPRINT(RT_DEBUG_TRACE, ("--> NICInitRecv\n"));
3934 + //InterlockedExchange(&pAd->PendingRx, 0);
3935 + pAd->PendingRx = 0;
3936 + pAd->NextRxBulkInReadIndex = 0; // Next Rx Read index
3937 + pAd->NextRxBulkInIndex = 0 ; //RX_RING_SIZE -1; // Rx Bulk pointer
3938 + pAd->NextRxBulkInPosition = 0;
3940 + for (i = 0; i < (RX_RING_SIZE); i++)
3942 + PRX_CONTEXT pRxContext = &(pAd->RxContext[i]);
3945 + pRxContext->pUrb = RTUSB_ALLOC_URB(0);
3946 + if (pRxContext->pUrb == NULL)
3948 + Status = NDIS_STATUS_RESOURCES;
3952 + // Allocate transfer buffer
3953 + pRxContext->TransferBuffer = RTUSB_URB_ALLOC_BUFFER(pObj->pUsb_Dev, MAX_RXBULK_SIZE, &pRxContext->data_dma);
3954 + if (pRxContext->TransferBuffer == NULL)
3956 + Status = NDIS_STATUS_RESOURCES;
3960 + NdisZeroMemory(pRxContext->TransferBuffer, MAX_RXBULK_SIZE);
3962 + pRxContext->pAd = pAd;
3963 + pRxContext->pIrp = NULL;
3964 + pRxContext->InUse = FALSE;
3965 + pRxContext->IRPPending = FALSE;
3966 + pRxContext->Readable = FALSE;
3967 + //pRxContext->ReorderInUse = FALSE;
3968 + pRxContext->bRxHandling = FALSE;
3969 + pRxContext->BulkInOffset = 0;
3972 + DBGPRINT(RT_DEBUG_TRACE, ("<-- NICInitRecv\n"));
3976 + for (i = 0; i < (RX_RING_SIZE); i++)
3978 + PRX_CONTEXT pRxContext = &(pAd->RxContext[i]);
3980 + if (NULL != pRxContext->TransferBuffer)
3982 + RTUSB_URB_FREE_BUFFER(pObj->pUsb_Dev, MAX_RXBULK_SIZE,
3983 + pRxContext->TransferBuffer, pRxContext->data_dma);
3984 + pRxContext->TransferBuffer = NULL;
3987 + if (NULL != pRxContext->pUrb)
3989 + RTUSB_UNLINK_URB(pRxContext->pUrb);
3990 + RTUSB_FREE_URB(pRxContext->pUrb);
3991 + pRxContext->pUrb = NULL;
4000 +========================================================================
4001 +Routine Description:
4002 + Initialize transmit data structures.
4005 + pAd Pointer to our adapter
4008 + NDIS_STATUS_SUCCESS
4009 + NDIS_STATUS_RESOURCES
4012 +========================================================================
4014 +NDIS_STATUS NICInitTransmit(
4015 + IN PRTMP_ADAPTER pAd)
4017 +#define LM_USB_ALLOC(pObj, Context, TB_Type, BufferSize, Status, msg1, err1, msg2, err2) \
4018 + Context->pUrb = RTUSB_ALLOC_URB(0); \
4019 + if (Context->pUrb == NULL) { \
4020 + DBGPRINT(RT_DEBUG_ERROR, msg1); \
4021 + Status = NDIS_STATUS_RESOURCES; \
4024 + Context->TransferBuffer = \
4025 + (TB_Type)RTUSB_URB_ALLOC_BUFFER(pObj->pUsb_Dev, BufferSize, &Context->data_dma); \
4026 + if (Context->TransferBuffer == NULL) { \
4027 + DBGPRINT(RT_DEBUG_ERROR, msg2); \
4028 + Status = NDIS_STATUS_RESOURCES; \
4031 +#define LM_URB_FREE(pObj, Context, BufferSize) \
4032 + if (NULL != Context->pUrb) { \
4033 + RTUSB_UNLINK_URB(Context->pUrb); \
4034 + RTUSB_FREE_URB(Context->pUrb); \
4035 + Context->pUrb = NULL; } \
4036 + if (NULL != Context->TransferBuffer) { \
4037 + RTUSB_URB_FREE_BUFFER(pObj->pUsb_Dev, BufferSize, \
4038 + Context->TransferBuffer, \
4039 + Context->data_dma); \
4040 + Context->TransferBuffer = NULL; }
4043 + NDIS_STATUS Status = NDIS_STATUS_SUCCESS;
4044 + PTX_CONTEXT pNullContext = &(pAd->NullContext);
4045 + PTX_CONTEXT pPsPollContext = &(pAd->PsPollContext);
4046 + PTX_CONTEXT pRTSContext = &(pAd->RTSContext);
4047 + PTX_CONTEXT pMLMEContext = NULL;
4048 +// PHT_TX_CONTEXT pHTTXContext = NULL;
4049 + POS_COOKIE pObj = (POS_COOKIE) pAd->OS_Cookie;
4051 +// RTMP_TX_RING *pTxRing;
4052 + RTMP_MGMT_RING *pMgmtRing;
4054 + DBGPRINT(RT_DEBUG_TRACE, ("--> NICInitTransmit\n"));
4057 + // Init 4 set of Tx parameters
4058 + for(acidx = 0; acidx < NUM_OF_TX_RING; acidx++)
4060 + // Initialize all Transmit releated queues
4061 + InitializeQueueHeader(&pAd->TxSwQueue[acidx]);
4063 + // Next Local tx ring pointer waiting for buck out
4064 + pAd->NextBulkOutIndex[acidx] = acidx;
4065 + pAd->BulkOutPending[acidx] = FALSE; // Buck Out control flag
4066 + //pAd->DataBulkDoneIdx[acidx] = 0;
4069 + //pAd->NextMLMEIndex = 0;
4070 + //pAd->PushMgmtIndex = 0;
4071 + //pAd->PopMgmtIndex = 0;
4072 + //InterlockedExchange(&pAd->MgmtQueueSize, 0);
4073 + //InterlockedExchange(&pAd->TxCount, 0);
4075 + //pAd->PrioRingFirstIndex = 0;
4076 + //pAd->PrioRingTxCnt = 0;
4081 + // TX_RING_SIZE, 4 ACs
4083 +#ifdef CONFIG_STA_SUPPORT
4084 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
4085 + for(acidx=0; acidx<4; acidx++)
4086 +#endif // CONFIG_STA_SUPPORT //
4088 +#if 1 //def DOT11_N_SUPPORT
4089 + PHT_TX_CONTEXT pHTTXContext = &(pAd->TxContext[acidx]);
4091 + NdisZeroMemory(pHTTXContext, sizeof(HT_TX_CONTEXT));
4093 + LM_USB_ALLOC(pObj, pHTTXContext, PHTTX_BUFFER, sizeof(HTTX_BUFFER), Status,
4094 + ("<-- ERROR in Alloc TX TxContext[%d] urb!! \n", acidx),
4096 + ("<-- ERROR in Alloc TX TxContext[%d] HTTX_BUFFER !! \n", acidx),
4099 + NdisZeroMemory(pHTTXContext->TransferBuffer->Aggregation, 4);
4100 + pHTTXContext->pAd = pAd;
4101 + pHTTXContext->pIrp = NULL;
4102 + pHTTXContext->IRPPending = FALSE;
4103 + pHTTXContext->NextBulkOutPosition = 0;
4104 + pHTTXContext->ENextBulkOutPosition = 0;
4105 + pHTTXContext->CurWritePosition = 0;
4106 + pHTTXContext->CurWriteRealPos = 0;
4107 + pHTTXContext->BulkOutSize = 0;
4108 + pHTTXContext->BulkOutPipeId = acidx;
4109 + pHTTXContext->bRingEmpty = TRUE;
4110 + pHTTXContext->bCopySavePad = FALSE;
4111 +#endif // DOT11_N_SUPPORT //
4112 + pAd->BulkOutPending[acidx] = FALSE;
4119 + // Allocate MGMT ring descriptor's memory
4120 + pAd->MgmtDescRing.AllocSize = MGMT_RING_SIZE * sizeof(TX_CONTEXT);
4121 + RTMPAllocateMemory(&pAd->MgmtDescRing.AllocVa, pAd->MgmtDescRing.AllocSize);
4122 + if (pAd->MgmtDescRing.AllocVa == NULL)
4124 + DBGPRINT_ERR(("Failed to allocate a big buffer for MgmtDescRing!\n"));
4125 + Status = NDIS_STATUS_RESOURCES;
4128 + NdisZeroMemory(pAd->MgmtDescRing.AllocVa, pAd->MgmtDescRing.AllocSize);
4129 + RingBaseVa = pAd->MgmtDescRing.AllocVa;
4131 + // Initialize MGMT Ring and associated buffer memory
4132 + pMgmtRing = &pAd->MgmtRing;
4133 + for (i = 0; i < MGMT_RING_SIZE; i++)
4135 + // link the pre-allocated Mgmt buffer to MgmtRing.Cell
4136 + pMgmtRing->Cell[i].AllocSize = sizeof(TX_CONTEXT);
4137 + pMgmtRing->Cell[i].AllocVa = RingBaseVa;
4138 + pMgmtRing->Cell[i].pNdisPacket = NULL;
4139 + pMgmtRing->Cell[i].pNextNdisPacket = NULL;
4141 + //Allocate URB for MLMEContext
4142 + pMLMEContext = (PTX_CONTEXT) pAd->MgmtRing.Cell[i].AllocVa;
4143 + pMLMEContext->pUrb = RTUSB_ALLOC_URB(0);
4144 + if (pMLMEContext->pUrb == NULL)
4146 + DBGPRINT(RT_DEBUG_ERROR, ("<-- ERROR in Alloc TX MLMEContext[%d] urb!! \n", i));
4147 + Status = NDIS_STATUS_RESOURCES;
4150 + pMLMEContext->pAd = pAd;
4151 + pMLMEContext->pIrp = NULL;
4152 + pMLMEContext->TransferBuffer = NULL;
4153 + pMLMEContext->InUse = FALSE;
4154 + pMLMEContext->IRPPending = FALSE;
4155 + pMLMEContext->bWaitingBulkOut = FALSE;
4156 + pMLMEContext->BulkOutSize = 0;
4157 + pMLMEContext->SelfIdx = i;
4159 + // Offset to next ring descriptor address
4160 + RingBaseVa = (PUCHAR) RingBaseVa + sizeof(TX_CONTEXT);
4162 + DBGPRINT(RT_DEBUG_TRACE, ("MGMT Ring: total %d entry allocated\n", i));
4164 + //pAd->MgmtRing.TxSwFreeIdx = (MGMT_RING_SIZE - 1);
4165 + pAd->MgmtRing.TxSwFreeIdx = MGMT_RING_SIZE;
4166 + pAd->MgmtRing.TxCpuIdx = 0;
4167 + pAd->MgmtRing.TxDmaIdx = 0;
4170 + // BEACON_RING_SIZE
4172 + for(i=0; i<BEACON_RING_SIZE; i++) // 2
4174 + PTX_CONTEXT pBeaconContext = &(pAd->BeaconContext[i]);
4177 + NdisZeroMemory(pBeaconContext, sizeof(TX_CONTEXT));
4180 + LM_USB_ALLOC(pObj, pBeaconContext, PTX_BUFFER, sizeof(TX_BUFFER), Status,
4181 + ("<-- ERROR in Alloc TX BeaconContext[%d] urb!! \n", i),
4183 + ("<-- ERROR in Alloc TX BeaconContext[%d] TX_BUFFER !! \n", i),
4186 + pBeaconContext->pAd = pAd;
4187 + pBeaconContext->pIrp = NULL;
4188 + pBeaconContext->InUse = FALSE;
4189 + pBeaconContext->IRPPending = FALSE;
4195 + NdisZeroMemory(pNullContext, sizeof(TX_CONTEXT));
4198 + LM_USB_ALLOC(pObj, pNullContext, PTX_BUFFER, sizeof(TX_BUFFER), Status,
4199 + ("<-- ERROR in Alloc TX NullContext urb!! \n"),
4201 + ("<-- ERROR in Alloc TX NullContext TX_BUFFER !! \n"),
4204 + pNullContext->pAd = pAd;
4205 + pNullContext->pIrp = NULL;
4206 + pNullContext->InUse = FALSE;
4207 + pNullContext->IRPPending = FALSE;
4212 + NdisZeroMemory(pRTSContext, sizeof(TX_CONTEXT));
4215 + LM_USB_ALLOC(pObj, pRTSContext, PTX_BUFFER, sizeof(TX_BUFFER), Status,
4216 + ("<-- ERROR in Alloc TX RTSContext urb!! \n"),
4218 + ("<-- ERROR in Alloc TX RTSContext TX_BUFFER !! \n"),
4221 + pRTSContext->pAd = pAd;
4222 + pRTSContext->pIrp = NULL;
4223 + pRTSContext->InUse = FALSE;
4224 + pRTSContext->IRPPending = FALSE;
4229 + //NdisZeroMemory(pPsPollContext, sizeof(TX_CONTEXT));
4231 + LM_USB_ALLOC(pObj, pPsPollContext, PTX_BUFFER, sizeof(TX_BUFFER), Status,
4232 + ("<-- ERROR in Alloc TX PsPollContext urb!! \n"),
4234 + ("<-- ERROR in Alloc TX PsPollContext TX_BUFFER !! \n"),
4237 + pPsPollContext->pAd = pAd;
4238 + pPsPollContext->pIrp = NULL;
4239 + pPsPollContext->InUse = FALSE;
4240 + pPsPollContext->IRPPending = FALSE;
4241 + pPsPollContext->bAggregatible = FALSE;
4242 + pPsPollContext->LastOne = TRUE;
4248 + DBGPRINT(RT_DEBUG_TRACE, ("<-- NICInitTransmit\n"));
4252 + /* --------------------------- ERROR HANDLE --------------------------- */
4254 + LM_URB_FREE(pObj, pPsPollContext, sizeof(TX_BUFFER));
4257 + LM_URB_FREE(pObj, pRTSContext, sizeof(TX_BUFFER));
4260 + LM_URB_FREE(pObj, pNullContext, sizeof(TX_BUFFER));
4263 + for(i=0; i<BEACON_RING_SIZE; i++)
4265 + PTX_CONTEXT pBeaconContext = &(pAd->BeaconContext[i]);
4266 + if (pBeaconContext)
4267 + LM_URB_FREE(pObj, pBeaconContext, sizeof(TX_BUFFER));
4271 + if (pAd->MgmtDescRing.AllocVa)
4273 + pMgmtRing = &pAd->MgmtRing;
4274 + for(i=0; i<MGMT_RING_SIZE; i++)
4276 + pMLMEContext = (PTX_CONTEXT) pAd->MgmtRing.Cell[i].AllocVa;
4278 + LM_URB_FREE(pObj, pMLMEContext, sizeof(TX_BUFFER));
4280 + NdisFreeMemory(pAd->MgmtDescRing.AllocVa, pAd->MgmtDescRing.AllocSize, 0);
4281 + pAd->MgmtDescRing.AllocVa = NULL;
4285 +#ifdef CONFIG_STA_SUPPORT
4286 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
4287 + for(acidx=0; acidx<4; acidx++)
4288 +#endif // CONFIG_STA_SUPPORT //
4290 + PHT_TX_CONTEXT pTxContext = &(pAd->TxContext[acidx]);
4292 + LM_URB_FREE(pObj, pTxContext, sizeof(HTTX_BUFFER));
4295 + // Here we didn't have any pre-allocated memory need to free.
4302 +========================================================================
4303 +Routine Description:
4304 + Allocate DMA memory blocks for send, receive.
4307 + pAd Pointer to our adapter
4310 + NDIS_STATUS_SUCCESS
4311 + NDIS_STATUS_FAILURE
4312 + NDIS_STATUS_RESOURCES
4315 +========================================================================
4317 +NDIS_STATUS RTMPAllocTxRxRingMemory(
4318 + IN PRTMP_ADAPTER pAd)
4320 +// COUNTER_802_11 pCounter = &pAd->WlanCounters;
4321 + NDIS_STATUS Status;
4325 + DBGPRINT(RT_DEBUG_TRACE, ("--> RTMPAllocTxRxRingMemory\n"));
4330 + // Init the CmdQ and CmdQLock
4331 + NdisAllocateSpinLock(&pAd->CmdQLock);
4332 + NdisAcquireSpinLock(&pAd->CmdQLock);
4333 + RTUSBInitializeCmdQ(&pAd->CmdQ);
4334 + NdisReleaseSpinLock(&pAd->CmdQLock);
4337 + NdisAllocateSpinLock(&pAd->MLMEBulkOutLock);
4338 + //NdisAllocateSpinLock(&pAd->MLMEWaitQueueLock);
4339 + NdisAllocateSpinLock(&pAd->BulkOutLock[0]);
4340 + NdisAllocateSpinLock(&pAd->BulkOutLock[1]);
4341 + NdisAllocateSpinLock(&pAd->BulkOutLock[2]);
4342 + NdisAllocateSpinLock(&pAd->BulkOutLock[3]);
4343 + NdisAllocateSpinLock(&pAd->BulkOutLock[4]);
4344 + NdisAllocateSpinLock(&pAd->BulkOutLock[5]);
4345 + NdisAllocateSpinLock(&pAd->BulkInLock);
4347 + for (num = 0; num < NUM_OF_TX_RING; num++)
4349 + NdisAllocateSpinLock(&pAd->TxContextQueueLock[num]);
4353 + NdisAllocateSpinLock(&pAd->GenericLock);
4354 +#endif // RALINK_ATE //
4356 +// NdisAllocateSpinLock(&pAd->MemLock); // Not used in RT28XX
4358 +// NdisAllocateSpinLock(&pAd->MacTabLock); // init it in UserCfgInit()
4359 +// NdisAllocateSpinLock(&pAd->BATabLock); // init it in BATableInit()
4361 +// for(num=0; num<MAX_LEN_OF_BA_REC_TABLE; num++)
4363 +// NdisAllocateSpinLock(&pAd->BATable.BARecEntry[num].RxReRingLock);
4369 +// MacTableInitialize(pAd);
4372 + // Init send data structures and related parameters
4374 + Status = NICInitTransmit(pAd);
4375 + if (Status != NDIS_STATUS_SUCCESS)
4379 + // Init receive data structures and related parameters
4381 + Status = NICInitRecv(pAd);
4382 + if (Status != NDIS_STATUS_SUCCESS)
4385 + pAd->PendingIoCount = 1;
4389 + NdisZeroMemory(&pAd->FragFrame, sizeof(FRAGMENT_FRAME));
4390 + pAd->FragFrame.pFragPacket = RTMP_AllocateFragPacketBuffer(pAd, RX_BUFFER_NORMSIZE);
4392 + if (pAd->FragFrame.pFragPacket == NULL)
4394 + Status = NDIS_STATUS_RESOURCES;
4397 + DBGPRINT_S(Status, ("<-- RTMPAllocTxRxRingMemory, Status=%x\n", Status));
4403 +========================================================================
4404 +Routine Description:
4405 + Calls USB_InterfaceStop and frees memory allocated for the URBs
4406 + calls NdisMDeregisterDevice and frees the memory
4407 + allocated in VNetInitialize for the Adapter Object
4410 + *pAd the raxx interface data pointer
4416 +========================================================================
4418 +VOID RTMPFreeTxRxRingMemory(
4419 + IN PRTMP_ADAPTER pAd)
4421 +#define LM_URB_FREE(pObj, Context, BufferSize) \
4422 + if (NULL != Context->pUrb) { \
4423 + RTUSB_UNLINK_URB(Context->pUrb); \
4424 + RTUSB_FREE_URB(Context->pUrb); \
4425 + Context->pUrb = NULL; } \
4426 + if (NULL != Context->TransferBuffer) { \
4427 + RTUSB_URB_FREE_BUFFER(pObj->pUsb_Dev, BufferSize, \
4428 + Context->TransferBuffer, \
4429 + Context->data_dma); \
4430 + Context->TransferBuffer = NULL; }
4434 + PTX_CONTEXT pNullContext = &pAd->NullContext;
4435 + PTX_CONTEXT pPsPollContext = &pAd->PsPollContext;
4436 + PTX_CONTEXT pRTSContext = &pAd->RTSContext;
4437 +// PHT_TX_CONTEXT pHTTXContext;
4438 + //PRTMP_REORDERBUF pReorderBuf;
4439 + POS_COOKIE pObj = (POS_COOKIE) pAd->OS_Cookie;
4440 +// RTMP_TX_RING *pTxRing;
4442 + DBGPRINT(RT_DEBUG_ERROR, ("---> RTMPFreeTxRxRingMemory\n"));
4445 + // Free all resources for the RECEIVE buffer queue.
4446 + for(i=0; i<(RX_RING_SIZE); i++)
4448 + PRX_CONTEXT pRxContext = &(pAd->RxContext[i]);
4450 + LM_URB_FREE(pObj, pRxContext, MAX_RXBULK_SIZE);
4453 + // Free PsPoll frame resource
4454 + LM_URB_FREE(pObj, pPsPollContext, sizeof(TX_BUFFER));
4456 + // Free NULL frame resource
4457 + LM_URB_FREE(pObj, pNullContext, sizeof(TX_BUFFER));
4459 + // Free RTS frame resource
4460 + LM_URB_FREE(pObj, pRTSContext, sizeof(TX_BUFFER));
4463 + // Free beacon frame resource
4464 + for(i=0; i<BEACON_RING_SIZE; i++)
4466 + PTX_CONTEXT pBeaconContext = &(pAd->BeaconContext[i]);
4467 + if (pBeaconContext)
4468 + LM_URB_FREE(pObj, pBeaconContext, sizeof(TX_BUFFER));
4472 + // Free mgmt frame resource
4473 + for(i = 0; i < MGMT_RING_SIZE; i++)
4475 + PTX_CONTEXT pMLMEContext = (PTX_CONTEXT)pAd->MgmtRing.Cell[i].AllocVa;
4476 + //LM_URB_FREE(pObj, pMLMEContext, sizeof(TX_BUFFER));
4477 + if (NULL != pAd->MgmtRing.Cell[i].pNdisPacket)
4479 + RTMPFreeNdisPacket(pAd, pAd->MgmtRing.Cell[i].pNdisPacket);
4480 + pAd->MgmtRing.Cell[i].pNdisPacket = NULL;
4481 + pMLMEContext->TransferBuffer = NULL;
4486 + if (NULL != pMLMEContext->pUrb)
4488 + RTUSB_UNLINK_URB(pMLMEContext->pUrb);
4489 + RTUSB_FREE_URB(pMLMEContext->pUrb);
4490 + pMLMEContext->pUrb = NULL;
4494 + if (pAd->MgmtDescRing.AllocVa)
4495 + NdisFreeMemory(pAd->MgmtDescRing.AllocVa, pAd->MgmtDescRing.AllocSize, 0);
4498 + // Free Tx frame resource
4499 +#ifdef CONFIG_STA_SUPPORT
4500 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
4501 + for(acidx=0; acidx<4; acidx++)
4502 +#endif // CONFIG_STA_SUPPORT //
4504 + PHT_TX_CONTEXT pHTTXContext = &(pAd->TxContext[acidx]);
4506 + LM_URB_FREE(pObj, pHTTXContext, sizeof(HTTX_BUFFER));
4509 + if (pAd->FragFrame.pFragPacket)
4510 + RELEASE_NDIS_PACKET(pAd, pAd->FragFrame.pFragPacket, NDIS_STATUS_SUCCESS);
4512 + for(i=0; i<6; i++)
4514 + NdisFreeSpinLock(&pAd->BulkOutLock[i]);
4517 + NdisFreeSpinLock(&pAd->BulkInLock);
4518 + NdisFreeSpinLock(&pAd->MLMEBulkOutLock);
4520 + NdisFreeSpinLock(&pAd->CmdQLock);
4522 + NdisFreeSpinLock(&pAd->GenericLock);
4523 +#endif // RALINK_ATE //
4524 + // Clear all pending bulk-out request flags.
4525 + RTUSB_CLEAR_BULK_FLAG(pAd, 0xffffffff);
4527 +// NdisFreeSpinLock(&pAd->MacTabLock);
4529 +// for(i=0; i<MAX_LEN_OF_BA_REC_TABLE; i++)
4531 +// NdisFreeSpinLock(&pAd->BATable.BARecEntry[i].RxReRingLock);
4534 + DBGPRINT(RT_DEBUG_ERROR, ("<--- ReleaseAdapter\n"));
4539 +========================================================================
4540 +Routine Description:
4541 + Allocate memory for adapter control block.
4544 + pAd Pointer to our adapter
4547 + NDIS_STATUS_SUCCESS
4548 + NDIS_STATUS_FAILURE
4549 + NDIS_STATUS_RESOURCES
4552 +========================================================================
4554 +NDIS_STATUS AdapterBlockAllocateMemory(
4559 + POS_COOKIE pObj = (POS_COOKIE) handle;
4562 + usb_dev = pObj->pUsb_Dev;
4564 + pObj->MLMEThr_pid = NULL;
4565 + pObj->RTUSBCmdThr_pid = NULL;
4567 + *ppAd = (PVOID)vmalloc(sizeof(RTMP_ADAPTER));
4571 + NdisZeroMemory(*ppAd, sizeof(RTMP_ADAPTER));
4572 + ((PRTMP_ADAPTER)*ppAd)->OS_Cookie = handle;
4573 + return (NDIS_STATUS_SUCCESS);
4577 + return (NDIS_STATUS_FAILURE);
4583 +========================================================================
4584 +Routine Description:
4585 + Create kernel threads & tasklets.
4588 + *net_dev Pointer to wireless net device interface
4591 + NDIS_STATUS_SUCCESS
4592 + NDIS_STATUS_FAILURE
4595 +========================================================================
4597 +NDIS_STATUS CreateThreads(
4598 + IN struct net_device *net_dev)
4600 + PRTMP_ADAPTER pAd = net_dev->ml_priv;
4601 + POS_COOKIE pObj = (POS_COOKIE) pAd->OS_Cookie;
4604 + //init_MUTEX(&(pAd->usbdev_semaphore));
4606 + init_MUTEX_LOCKED(&(pAd->mlme_semaphore));
4607 + init_completion (&pAd->mlmeComplete);
4609 + init_MUTEX_LOCKED(&(pAd->RTUSBCmd_semaphore));
4610 + init_completion (&pAd->CmdQComplete);
4612 + init_MUTEX_LOCKED(&(pAd->RTUSBTimer_semaphore));
4613 + init_completion (&pAd->TimerQComplete);
4615 + // Creat MLME Thread
4616 + pObj->MLMEThr_pid = NULL;
4617 + pid_number = kernel_thread(MlmeThread, pAd, CLONE_VM);
4618 + if (pid_number < 0)
4620 + printk (KERN_WARNING "%s: unable to start Mlme thread\n",pAd->net_dev->name);
4621 + return NDIS_STATUS_FAILURE;
4623 + pObj->MLMEThr_pid = find_get_pid(pid_number);
4624 + // Wait for the thread to start
4625 + wait_for_completion(&(pAd->mlmeComplete));
4627 + // Creat Command Thread
4628 + pObj->RTUSBCmdThr_pid = NULL;
4629 + pid_number = kernel_thread(RTUSBCmdThread, pAd, CLONE_VM);
4630 + if (pid_number < 0)
4632 + printk (KERN_WARNING "%s: unable to start RTUSBCmd thread\n",pAd->net_dev->name);
4633 + return NDIS_STATUS_FAILURE;
4635 + pObj->RTUSBCmdThr_pid = find_get_pid(pid_number);
4636 + wait_for_completion(&(pAd->CmdQComplete));
4638 + pObj->TimerQThr_pid = NULL;
4639 + pid_number = kernel_thread(TimerQThread, pAd, CLONE_VM);
4640 + if (pid_number < 0)
4642 + printk (KERN_WARNING "%s: unable to start TimerQThread\n",pAd->net_dev->name);
4643 + return NDIS_STATUS_FAILURE;
4645 + pObj->TimerQThr_pid = find_get_pid(pid_number);
4646 + // Wait for the thread to start
4647 + wait_for_completion(&(pAd->TimerQComplete));
4649 + // Create receive tasklet
4650 + tasklet_init(&pObj->rx_done_task, rx_done_tasklet, (ULONG)pAd);
4651 + tasklet_init(&pObj->mgmt_dma_done_task, rt2870_mgmt_dma_done_tasklet, (unsigned long)pAd);
4652 + tasklet_init(&pObj->ac0_dma_done_task, rt2870_ac0_dma_done_tasklet, (unsigned long)pAd);
4653 + tasklet_init(&pObj->ac1_dma_done_task, rt2870_ac1_dma_done_tasklet, (unsigned long)pAd);
4654 + tasklet_init(&pObj->ac2_dma_done_task, rt2870_ac2_dma_done_tasklet, (unsigned long)pAd);
4655 + tasklet_init(&pObj->ac3_dma_done_task, rt2870_ac3_dma_done_tasklet, (unsigned long)pAd);
4656 + tasklet_init(&pObj->hcca_dma_done_task, rt2870_hcca_dma_done_tasklet, (unsigned long)pAd);
4657 + tasklet_init(&pObj->tbtt_task, tbtt_tasklet, (unsigned long)pAd);
4658 + tasklet_init(&pObj->null_frame_complete_task, rt2870_null_frame_complete_tasklet, (unsigned long)pAd);
4659 + tasklet_init(&pObj->rts_frame_complete_task, rt2870_rts_frame_complete_tasklet, (unsigned long)pAd);
4660 + tasklet_init(&pObj->pspoll_frame_complete_task, rt2870_pspoll_frame_complete_tasklet, (unsigned long)pAd);
4662 + return NDIS_STATUS_SUCCESS;
4666 +#ifdef CONFIG_STA_SUPPORT
4668 +========================================================================
4669 +Routine Description:
4670 + As STA's BSSID is a WC too, it uses shared key table.
4671 + This function write correct unicast TX key to ASIC WCID.
4672 + And we still make a copy in our MacTab.Content[BSSID_WCID].PairwiseKey.
4673 + Caller guarantee TKIP/AES always has keyidx = 0. (pairwise key)
4674 + Caller guarantee WEP calls this function when set Txkey, default key index=0~3.
4677 + pAd Pointer to our adapter
4678 + pKey Pointer to the where the key stored
4681 + NDIS_SUCCESS Add key successfully
4684 +========================================================================
4686 +VOID RTMPAddBSSIDCipher(
4687 + IN PRTMP_ADAPTER pAd,
4689 + IN PNDIS_802_11_KEY pKey,
4690 + IN UCHAR CipherAlg)
4692 + PUCHAR pTxMic, pRxMic;
4693 + BOOLEAN bKeyRSC, bAuthenticator; // indicate the receive SC set by KeyRSC value
4694 +// UCHAR CipherAlg;
4698 + UCHAR KeyIdx, IVEIV[8];
4701 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPAddBSSIDCipher==> Aid = %d\n",Aid));
4703 + // Bit 29 of Add-key KeyRSC
4704 + bKeyRSC = (pKey->KeyIndex & 0x20000000) ? TRUE : FALSE;
4706 + // Bit 28 of Add-key Authenticator
4707 + bAuthenticator = (pKey->KeyIndex & 0x10000000) ? TRUE : FALSE;
4708 + KeyIdx = (UCHAR)pKey->KeyIndex&0xff;
4714 + if (pAd->MacTab.Content[Aid].PairwiseKey.CipherAlg == CIPHER_TKIP)
4715 + { if (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPANone)
4717 + // for WPA-None Tx, Rx MIC is the same
4718 + pTxMic = (PUCHAR) (&pKey->KeyMaterial) + 16;
4721 + else if (bAuthenticator == TRUE)
4723 + pTxMic = (PUCHAR) (&pKey->KeyMaterial) + 16;
4724 + pRxMic = (PUCHAR) (&pKey->KeyMaterial) + 24;
4728 + pRxMic = (PUCHAR) (&pKey->KeyMaterial) + 16;
4729 + pTxMic = (PUCHAR) (&pKey->KeyMaterial) + 24;
4732 + offset = PAIRWISE_KEY_TABLE_BASE + (Aid * HW_KEY_ENTRY_SIZE) + 0x10;
4735 + Value = *(pTxMic+i);
4736 + Value += (*(pTxMic+i+1)<<8);
4737 + Value += (*(pTxMic+i+2)<<16);
4738 + Value += (*(pTxMic+i+3)<<24);
4739 + RTUSBWriteMACRegister(pAd, offset+i, Value);
4743 + offset = PAIRWISE_KEY_TABLE_BASE + (Aid * HW_KEY_ENTRY_SIZE) + 0x18;
4746 + Value = *(pRxMic+i);
4747 + Value += (*(pRxMic+i+1)<<8);
4748 + Value += (*(pRxMic+i+2)<<16);
4749 + Value += (*(pRxMic+i+3)<<24);
4750 + RTUSBWriteMACRegister(pAd, offset+i, Value);
4754 + // Only Key lenth equal to TKIP key have these
4755 + NdisMoveMemory(pAd->MacTab.Content[Aid].PairwiseKey.RxMic, pRxMic, 8);
4756 + NdisMoveMemory(pAd->MacTab.Content[Aid].PairwiseKey.TxMic, pTxMic, 8);
4758 + DBGPRINT(RT_DEBUG_TRACE,
4759 + (" TxMIC = %02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x \n",
4760 + pTxMic[0],pTxMic[1],pTxMic[2],pTxMic[3],
4761 + pTxMic[4],pTxMic[5],pTxMic[6],pTxMic[7]));
4762 + DBGPRINT(RT_DEBUG_TRACE,
4763 + (" RxMIC = %02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x \n",
4764 + pRxMic[0],pRxMic[1],pRxMic[2],pRxMic[3],
4765 + pRxMic[4],pRxMic[5],pRxMic[6],pRxMic[7]));
4768 + // 2. Record Security Key.
4769 + pAd->MacTab.Content[BSSID_WCID].PairwiseKey.KeyLen= (UCHAR)pKey->KeyLength;
4770 + NdisMoveMemory(pAd->MacTab.Content[Aid].PairwiseKey.Key, &pKey->KeyMaterial, pKey->KeyLength);
4772 + // 3. Check RxTsc. And used to init to ASIC IV.
4773 + if (bKeyRSC == TRUE)
4774 + NdisMoveMemory(pAd->MacTab.Content[Aid].PairwiseKey.RxTsc, &pKey->KeyRSC, 6);
4776 + NdisZeroMemory(pAd->MacTab.Content[Aid].PairwiseKey.RxTsc, 6);
4778 + // 4. Init TxTsc to one based on WiFi WPA specs
4779 + pAd->MacTab.Content[Aid].PairwiseKey.TxTsc[0] = 1;
4780 + pAd->MacTab.Content[Aid].PairwiseKey.TxTsc[1] = 0;
4781 + pAd->MacTab.Content[Aid].PairwiseKey.TxTsc[2] = 0;
4782 + pAd->MacTab.Content[Aid].PairwiseKey.TxTsc[3] = 0;
4783 + pAd->MacTab.Content[Aid].PairwiseKey.TxTsc[4] = 0;
4784 + pAd->MacTab.Content[Aid].PairwiseKey.TxTsc[5] = 0;
4786 + CipherAlg = pAd->MacTab.Content[Aid].PairwiseKey.CipherAlg;
4788 + offset = PAIRWISE_KEY_TABLE_BASE + (Aid * HW_KEY_ENTRY_SIZE);
4789 + RTUSBMultiWrite(pAd, (USHORT) offset, pKey->KeyMaterial,
4790 + ((pKey->KeyLength == LEN_TKIP_KEY) ? 16 : (USHORT)pKey->KeyLength));
4792 + offset = SHARED_KEY_TABLE_BASE + (KeyIdx * HW_KEY_ENTRY_SIZE);
4793 + RTUSBMultiWrite(pAd, (USHORT) offset, pKey->KeyMaterial, (USHORT)pKey->KeyLength);
4795 + offset = PAIRWISE_IVEIV_TABLE_BASE + (Aid * HW_IVEIV_ENTRY_SIZE);
4796 + NdisZeroMemory(IVEIV, 8);
4799 + if ((CipherAlg == CIPHER_TKIP) ||
4800 + (CipherAlg == CIPHER_TKIP_NO_MIC) ||
4801 + (CipherAlg == CIPHER_AES))
4803 + IVEIV[3] = 0x20; // Eiv bit on. keyid always 0 for pairwise key
4805 + // default key idx needs to set.
4806 + // in TKIP/AES KeyIdx = 0 , WEP KeyIdx is default tx key.
4809 + IVEIV[3] |= (KeyIdx<< 6);
4811 + RTUSBMultiWrite(pAd, (USHORT) offset, IVEIV, 8);
4813 + // WCID Attribute UDF:3, BSSIdx:3, Alg:3, Keytable:1=PAIRWISE KEY, BSSIdx is 0
4814 + if ((CipherAlg == CIPHER_TKIP) ||
4815 + (CipherAlg == CIPHER_TKIP_NO_MIC) ||
4816 + (CipherAlg == CIPHER_AES))
4818 + WCIDAttri = (CipherAlg<<1)|SHAREDKEYTABLE;
4821 + WCIDAttri = (CipherAlg<<1)|SHAREDKEYTABLE;
4823 + offset = MAC_WCID_ATTRIBUTE_BASE + (Aid* HW_WCID_ATTRI_SIZE);
4824 + RTUSBWriteMACRegister(pAd, offset, WCIDAttri);
4825 + RTUSBReadMACRegister(pAd, offset, &Value);
4827 + DBGPRINT(RT_DEBUG_TRACE, ("BSSID_WCID : offset = %x, WCIDAttri = %lx\n",
4828 + offset, WCIDAttri));
4831 + // Add Bssid mac address at linkup. not here. check!
4832 + /*offset = MAC_WCID_BASE + (BSSID_WCID * HW_WCID_ENTRY_SIZE);
4833 + *for (i=0; i<MAC_ADDR_LEN; i++)
4835 + RTMP_IO_WRITE8(pAd, offset+i, pKey->BSSID[i]);
4839 + DBGPRINT(RT_DEBUG_ERROR, ("AddBSSIDasWCIDEntry: Alg=%s, KeyLength = %d\n",
4840 + CipherName[CipherAlg], pKey->KeyLength));
4841 + DBGPRINT(RT_DEBUG_TRACE, ("Key [idx=%x] [KeyLen = %d]\n",
4842 + pKey->KeyIndex, pKey->KeyLength));
4843 + for(i=0; i<pKey->KeyLength; i++)
4844 + DBGPRINT_RAW(RT_DEBUG_TRACE,(" %x:", pKey->KeyMaterial[i]));
4845 + DBGPRINT(RT_DEBUG_TRACE,(" \n"));
4847 +#endif // CONFIG_STA_SUPPORT //
4850 +========================================================================
4851 +Routine Description:
4852 + Get a received packet.
4855 + pAd device control block
4856 + pSaveRxD receive descriptor information
4857 + *pbReschedule need reschedule flag
4858 + *pRxPending pending received packet flag
4861 + the recieved packet
4864 +========================================================================
4866 +#define RT2870_RXDMALEN_FIELD_SIZE 4
4867 +PNDIS_PACKET GetPacketFromRxRing(
4868 + IN PRTMP_ADAPTER pAd,
4869 + OUT PRT28XX_RXD_STRUC pSaveRxD,
4870 + OUT BOOLEAN *pbReschedule,
4871 + IN OUT UINT32 *pRxPending)
4873 + PRX_CONTEXT pRxContext;
4874 + PNDIS_PACKET pSkb;
4876 + ULONG ThisFrameLen;
4877 + ULONG RxBufferLength;
4878 + PRXWI_STRUC pRxWI;
4880 + pRxContext = &pAd->RxContext[pAd->NextRxBulkInReadIndex];
4881 + if ((pRxContext->Readable == FALSE) || (pRxContext->InUse == TRUE))
4884 + RxBufferLength = pRxContext->BulkInOffset - pAd->ReadPosition;
4885 + if (RxBufferLength < (RT2870_RXDMALEN_FIELD_SIZE + sizeof(RXWI_STRUC) + sizeof(RXINFO_STRUC)))
4890 + pData = &pRxContext->TransferBuffer[pAd->ReadPosition]; /* 4KB */
4891 + // The RXDMA field is 4 bytes, now just use the first 2 bytes. The Length including the (RXWI + MSDU + Padding)
4892 + ThisFrameLen = *pData + (*(pData+1)<<8);
4893 + if (ThisFrameLen == 0)
4895 + DBGPRINT(RT_DEBUG_TRACE, ("BIRIdx(%d): RXDMALen is zero.[%ld], BulkInBufLen = %ld)\n",
4896 + pAd->NextRxBulkInReadIndex, ThisFrameLen, pRxContext->BulkInOffset));
4899 + if ((ThisFrameLen&0x3) != 0)
4901 + DBGPRINT(RT_DEBUG_ERROR, ("BIRIdx(%d): RXDMALen not multiple of 4.[%ld], BulkInBufLen = %ld)\n",
4902 + pAd->NextRxBulkInReadIndex, ThisFrameLen, pRxContext->BulkInOffset));
4906 + if ((ThisFrameLen + 8)> RxBufferLength) // 8 for (RT2870_RXDMALEN_FIELD_SIZE + sizeof(RXINFO_STRUC))
4908 + DBGPRINT(RT_DEBUG_TRACE,("BIRIdx(%d):FrameLen(0x%lx) outranges. BulkInLen=0x%lx, remaining RxBufLen=0x%lx, ReadPos=0x%lx\n",
4909 + pAd->NextRxBulkInReadIndex, ThisFrameLen, pRxContext->BulkInOffset, RxBufferLength, pAd->ReadPosition));
4911 + // error frame. finish this loop
4915 + // skip USB frame length field
4916 + pData += RT2870_RXDMALEN_FIELD_SIZE;
4917 + pRxWI = (PRXWI_STRUC)pData;
4918 +#ifdef RT_BIG_ENDIAN
4919 + RTMPWIEndianChange(pData, TYPE_RXWI);
4920 +#endif // RT_BIG_ENDIAN //
4921 + if (pRxWI->MPDUtotalByteCount > ThisFrameLen)
4923 + DBGPRINT(RT_DEBUG_ERROR, ("%s():pRxWIMPDUtotalByteCount(%d) large than RxDMALen(%ld)\n",
4924 + __FUNCTION__, pRxWI->MPDUtotalByteCount, ThisFrameLen));
4927 +#ifdef RT_BIG_ENDIAN
4928 + RTMPWIEndianChange(pData, TYPE_RXWI);
4929 +#endif // RT_BIG_ENDIAN //
4931 + // allocate a rx packet
4932 + pSkb = dev_alloc_skb(ThisFrameLen);
4935 + DBGPRINT(RT_DEBUG_ERROR,("%s():Cannot Allocate sk buffer for this Bulk-In buffer!\n", __FUNCTION__));
4939 + // copy the rx packet
4940 + memcpy(skb_put(pSkb, ThisFrameLen), pData, ThisFrameLen);
4941 + RTPKT_TO_OSPKT(pSkb)->dev = get_netdev_from_bssid(pAd, BSS0);
4942 + RTMP_SET_PACKET_SOURCE(OSPKT_TO_RTPKT(pSkb), PKTSRC_NDIS);
4945 + *pSaveRxD = *(PRXINFO_STRUC)(pData + ThisFrameLen);
4946 +#ifdef RT_BIG_ENDIAN
4947 + RTMPDescriptorEndianChange((PUCHAR)pSaveRxD, TYPE_RXINFO);
4948 +#endif // RT_BIG_ENDIAN //
4950 + // update next packet read position.
4951 + pAd->ReadPosition += (ThisFrameLen + RT2870_RXDMALEN_FIELD_SIZE + RXINFO_SIZE); // 8 for (RT2870_RXDMALEN_FIELD_SIZE + sizeof(RXINFO_STRUC))
4962 +========================================================================
4963 +Routine Description:
4964 + Handle received packets.
4967 + data - URB information pointer
4973 +========================================================================
4975 +static void rx_done_tasklet(unsigned long data)
4978 + PRX_CONTEXT pRxContext;
4979 + PRTMP_ADAPTER pAd;
4981 + unsigned int IrqFlags;
4983 + pUrb = (purbb_t)data;
4984 + pRxContext = (PRX_CONTEXT)pUrb->context;
4985 + pAd = pRxContext->pAd;
4986 + Status = pUrb->status;
4989 + RTMP_IRQ_LOCK(&pAd->BulkInLock, IrqFlags);
4990 + pRxContext->InUse = FALSE;
4991 + pRxContext->IRPPending = FALSE;
4992 + pRxContext->BulkInOffset += pUrb->actual_length;
4993 + //NdisInterlockedDecrement(&pAd->PendingRx);
4996 + if (Status == USB_ST_NOERROR)
4998 + pAd->BulkInComplete++;
4999 + pAd->NextRxBulkInPosition = 0;
5000 + if (pRxContext->BulkInOffset) // As jan's comment, it may bulk-in success but size is zero.
5002 + pRxContext->Readable = TRUE;
5003 + INC_RING_INDEX(pAd->NextRxBulkInIndex, RX_RING_SIZE);
5005 + RTMP_IRQ_UNLOCK(&pAd->BulkInLock, IrqFlags);
5007 + else // STATUS_OTHER
5009 + pAd->BulkInCompleteFail++;
5010 + // Still read this packet although it may comtain wrong bytes.
5011 + pRxContext->Readable = FALSE;
5012 + RTMP_IRQ_UNLOCK(&pAd->BulkInLock, IrqFlags);
5014 + // Parsing all packets. because after reset, the index will reset to all zero.
5015 + if ((!RTMP_TEST_FLAG(pAd, (fRTMP_ADAPTER_RESET_IN_PROGRESS |
5016 + fRTMP_ADAPTER_BULKIN_RESET |
5017 + fRTMP_ADAPTER_HALT_IN_PROGRESS |
5018 + fRTMP_ADAPTER_NIC_NOT_EXIST))))
5021 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("Bulk In Failed. Status=%d, BIIdx=0x%x, BIRIdx=0x%x, actual_length= 0x%x\n",
5022 + Status, pAd->NextRxBulkInIndex, pAd->NextRxBulkInReadIndex, pRxContext->pUrb->actual_length));
5024 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_BULKIN_RESET);
5025 + RTUSBEnqueueInternalCmd(pAd, CMDTHREAD_RESET_BULK_IN, NULL, 0);
5029 + ASSERT((pRxContext->InUse == pRxContext->IRPPending));
5034 + // If the driver is in ATE mode and Rx frame is set into here.
5035 + if (pAd->ContinBulkIn == TRUE)
5037 + RTUSBBulkReceive(pAd);
5041 +#endif // RALINK_ATE //
5042 + RTUSBBulkReceive(pAd);
5049 +static void rt2870_mgmt_dma_done_tasklet(unsigned long data)
5051 + PRTMP_ADAPTER pAd;
5052 + PTX_CONTEXT pMLMEContext;
5054 + PNDIS_PACKET pPacket;
5057 + unsigned long IrqFlags;
5060 + pUrb = (purbb_t)data;
5061 + pMLMEContext = (PTX_CONTEXT)pUrb->context;
5062 + pAd = pMLMEContext->pAd;
5063 + Status = pUrb->status;
5064 + index = pMLMEContext->SelfIdx;
5066 + ASSERT((pAd->MgmtRing.TxDmaIdx == index));
5068 + RTMP_IRQ_LOCK(&pAd->BulkOutLock[MGMTPIPEIDX], IrqFlags);
5071 + if (Status != USB_ST_NOERROR)
5073 + //Bulk-Out fail status handle
5074 + if ((!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RESET_IN_PROGRESS)) &&
5075 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS)) &&
5076 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)) &&
5077 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET)))
5079 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("Bulk Out MLME Failed, Status=%d!\n", Status));
5080 + // TODO: How to handle about the MLMEBulkOut failed issue. Need to resend the mgmt pkt?
5081 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET);
5082 + pAd->bulkResetPipeid = (MGMTPIPEIDX | BULKOUT_MGMT_RESET_FLAG);
5086 + pAd->BulkOutPending[MGMTPIPEIDX] = FALSE;
5087 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[MGMTPIPEIDX], IrqFlags);
5089 + RTMP_IRQ_LOCK(&pAd->MLMEBulkOutLock, IrqFlags);
5090 + // Reset MLME context flags
5091 + pMLMEContext->IRPPending = FALSE;
5092 + pMLMEContext->InUse = FALSE;
5093 + pMLMEContext->bWaitingBulkOut = FALSE;
5094 + pMLMEContext->BulkOutSize = 0;
5096 + pPacket = pAd->MgmtRing.Cell[index].pNdisPacket;
5097 + pAd->MgmtRing.Cell[index].pNdisPacket = NULL;
5099 + // Increase MgmtRing Index
5100 + INC_RING_INDEX(pAd->MgmtRing.TxDmaIdx, MGMT_RING_SIZE);
5101 + pAd->MgmtRing.TxSwFreeIdx++;
5102 + RTMP_IRQ_UNLOCK(&pAd->MLMEBulkOutLock, IrqFlags);
5104 + // No-matter success or fail, we free the mgmt packet.
5106 + RTMPFreeNdisPacket(pAd, pPacket);
5108 + if ((RTMP_TEST_FLAG(pAd, (fRTMP_ADAPTER_RESET_IN_PROGRESS |
5109 + fRTMP_ADAPTER_HALT_IN_PROGRESS |
5110 + fRTMP_ADAPTER_NIC_NOT_EXIST))))
5112 + // do nothing and return directly.
5116 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET) &&
5117 + ((pAd->bulkResetPipeid & BULKOUT_MGMT_RESET_FLAG) == BULKOUT_MGMT_RESET_FLAG))
5118 + { // For Mgmt Bulk-Out failed, ignore it now.
5119 + RTUSBEnqueueInternalCmd(pAd, CMDTHREAD_RESET_BULK_OUT, NULL, 0);
5124 + // Always call Bulk routine, even reset bulk.
5125 + // The protectioon of rest bulk should be in BulkOut routine
5126 + if (pAd->MgmtRing.TxSwFreeIdx < MGMT_RING_SIZE /* pMLMEContext->bWaitingBulkOut == TRUE */)
5128 + RTUSB_SET_BULK_FLAG(pAd, fRTUSB_BULK_OUT_MLME);
5130 + RTUSBKickBulkOut(pAd);
5137 +static void rt2870_hcca_dma_done_tasklet(unsigned long data)
5139 + PRTMP_ADAPTER pAd;
5140 + PHT_TX_CONTEXT pHTTXContext;
5141 + UCHAR BulkOutPipeId = 4;
5145 + pUrb = (purbb_t)data;
5146 + pHTTXContext = (PHT_TX_CONTEXT)pUrb->context;
5147 + pAd = pHTTXContext->pAd;
5149 + rt2870_dataout_complete_tasklet((unsigned long)pUrb);
5151 + if ((RTMP_TEST_FLAG(pAd, (fRTMP_ADAPTER_RESET_IN_PROGRESS |
5152 + fRTMP_ADAPTER_HALT_IN_PROGRESS |
5153 + fRTMP_ADAPTER_NIC_NOT_EXIST))))
5155 + // do nothing and return directly.
5159 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET))
5161 + RTUSBEnqueueInternalCmd(pAd, CMDTHREAD_RESET_BULK_OUT, NULL, 0);
5164 + { pHTTXContext = &pAd->TxContext[BulkOutPipeId];
5165 + if ((pAd->TxSwQueue[BulkOutPipeId].Number > 0) &&
5166 + /*((pHTTXContext->CurWritePosition > (pHTTXContext->NextBulkOutPosition + 0x6000)) || (pHTTXContext->NextBulkOutPosition > pHTTXContext->CurWritePosition + 0x6000)) && */
5167 + (pAd->DeQueueRunning[BulkOutPipeId] == FALSE) &&
5168 + (pHTTXContext->bCurWriting == FALSE))
5170 + RTMPDeQueuePacket(pAd, FALSE, BulkOutPipeId, MAX_TX_PROCESS);
5173 + RTUSB_SET_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_NORMAL<<4);
5174 + RTUSBKickBulkOut(pAd);
5183 +static void rt2870_ac3_dma_done_tasklet(unsigned long data)
5185 + PRTMP_ADAPTER pAd;
5186 + PHT_TX_CONTEXT pHTTXContext;
5187 + UCHAR BulkOutPipeId = 3;
5191 + pUrb = (purbb_t)data;
5192 + pHTTXContext = (PHT_TX_CONTEXT)pUrb->context;
5193 + pAd = pHTTXContext->pAd;
5195 + rt2870_dataout_complete_tasklet((unsigned long)pUrb);
5197 + if ((RTMP_TEST_FLAG(pAd, (fRTMP_ADAPTER_RESET_IN_PROGRESS |
5198 + fRTMP_ADAPTER_HALT_IN_PROGRESS |
5199 + fRTMP_ADAPTER_NIC_NOT_EXIST))))
5201 + // do nothing and return directly.
5205 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET))
5207 + RTUSBEnqueueInternalCmd(pAd, CMDTHREAD_RESET_BULK_OUT, NULL, 0);
5210 + { pHTTXContext = &pAd->TxContext[BulkOutPipeId];
5211 + if ((pAd->TxSwQueue[BulkOutPipeId].Number > 0) &&
5212 + /*((pHTTXContext->CurWritePosition > (pHTTXContext->NextBulkOutPosition + 0x6000)) || (pHTTXContext->NextBulkOutPosition > pHTTXContext->CurWritePosition + 0x6000)) && */
5213 + (pAd->DeQueueRunning[BulkOutPipeId] == FALSE) &&
5214 + (pHTTXContext->bCurWriting == FALSE))
5216 + RTMPDeQueuePacket(pAd, FALSE, BulkOutPipeId, MAX_TX_PROCESS);
5219 + RTUSB_SET_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_NORMAL<<3);
5220 + RTUSBKickBulkOut(pAd);
5229 +static void rt2870_ac2_dma_done_tasklet(unsigned long data)
5231 + PRTMP_ADAPTER pAd;
5232 + PHT_TX_CONTEXT pHTTXContext;
5233 + UCHAR BulkOutPipeId = 2;
5237 + pUrb = (purbb_t)data;
5238 + pHTTXContext = (PHT_TX_CONTEXT)pUrb->context;
5239 + pAd = pHTTXContext->pAd;
5241 + rt2870_dataout_complete_tasklet((unsigned long)pUrb);
5243 + if ((RTMP_TEST_FLAG(pAd, (fRTMP_ADAPTER_RESET_IN_PROGRESS |
5244 + fRTMP_ADAPTER_HALT_IN_PROGRESS |
5245 + fRTMP_ADAPTER_NIC_NOT_EXIST))))
5247 + // do nothing and return directly.
5251 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET))
5253 + RTUSBEnqueueInternalCmd(pAd, CMDTHREAD_RESET_BULK_OUT, NULL, 0);
5256 + { pHTTXContext = &pAd->TxContext[BulkOutPipeId];
5257 + if ((pAd->TxSwQueue[BulkOutPipeId].Number > 0) &&
5258 + /*((pHTTXContext->CurWritePosition > (pHTTXContext->NextBulkOutPosition + 0x6000)) || (pHTTXContext->NextBulkOutPosition > pHTTXContext->CurWritePosition + 0x6000)) && */
5259 + (pAd->DeQueueRunning[BulkOutPipeId] == FALSE) &&
5260 + (pHTTXContext->bCurWriting == FALSE))
5262 + RTMPDeQueuePacket(pAd, FALSE, BulkOutPipeId, MAX_TX_PROCESS);
5265 + RTUSB_SET_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_NORMAL<<2);
5266 + RTUSBKickBulkOut(pAd);
5274 +static void rt2870_ac1_dma_done_tasklet(unsigned long data)
5276 + PRTMP_ADAPTER pAd;
5277 + PHT_TX_CONTEXT pHTTXContext;
5278 + UCHAR BulkOutPipeId = 1;
5282 + pUrb = (purbb_t)data;
5283 + pHTTXContext = (PHT_TX_CONTEXT)pUrb->context;
5284 + pAd = pHTTXContext->pAd;
5286 + rt2870_dataout_complete_tasklet((unsigned long)pUrb);
5288 + if ((RTMP_TEST_FLAG(pAd, (fRTMP_ADAPTER_RESET_IN_PROGRESS |
5289 + fRTMP_ADAPTER_HALT_IN_PROGRESS |
5290 + fRTMP_ADAPTER_NIC_NOT_EXIST))))
5292 + // do nothing and return directly.
5296 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET))
5298 + RTUSBEnqueueInternalCmd(pAd, CMDTHREAD_RESET_BULK_OUT, NULL, 0);
5301 + { pHTTXContext = &pAd->TxContext[BulkOutPipeId];
5302 + if ((pAd->TxSwQueue[BulkOutPipeId].Number > 0) &&
5303 + /*((pHTTXContext->CurWritePosition > (pHTTXContext->NextBulkOutPosition + 0x6000)) || (pHTTXContext->NextBulkOutPosition > pHTTXContext->CurWritePosition + 0x6000)) && */
5304 + (pAd->DeQueueRunning[BulkOutPipeId] == FALSE) &&
5305 + (pHTTXContext->bCurWriting == FALSE))
5307 + RTMPDeQueuePacket(pAd, FALSE, BulkOutPipeId, MAX_TX_PROCESS);
5310 + RTUSB_SET_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_NORMAL<<1);
5311 + RTUSBKickBulkOut(pAd);
5320 +static void rt2870_ac0_dma_done_tasklet(unsigned long data)
5322 + PRTMP_ADAPTER pAd;
5323 + PHT_TX_CONTEXT pHTTXContext;
5324 + UCHAR BulkOutPipeId = 0;
5328 + pUrb = (purbb_t)data;
5329 + pHTTXContext = (PHT_TX_CONTEXT)pUrb->context;
5330 + pAd = pHTTXContext->pAd;
5332 + rt2870_dataout_complete_tasklet((unsigned long)pUrb);
5334 + if ((RTMP_TEST_FLAG(pAd, (fRTMP_ADAPTER_RESET_IN_PROGRESS |
5335 + fRTMP_ADAPTER_HALT_IN_PROGRESS |
5336 + fRTMP_ADAPTER_NIC_NOT_EXIST))))
5338 + // do nothing and return directly.
5342 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET))
5344 + RTUSBEnqueueInternalCmd(pAd, CMDTHREAD_RESET_BULK_OUT, NULL, 0);
5347 + { pHTTXContext = &pAd->TxContext[BulkOutPipeId];
5348 + if ((pAd->TxSwQueue[BulkOutPipeId].Number > 0) &&
5349 + /* ((pHTTXContext->CurWritePosition > (pHTTXContext->NextBulkOutPosition + 0x6000)) || (pHTTXContext->NextBulkOutPosition > pHTTXContext->CurWritePosition + 0x6000)) && */
5350 + (pAd->DeQueueRunning[BulkOutPipeId] == FALSE) &&
5351 + (pHTTXContext->bCurWriting == FALSE))
5353 + RTMPDeQueuePacket(pAd, FALSE, BulkOutPipeId, MAX_TX_PROCESS);
5356 + RTUSB_SET_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_NORMAL);
5357 + RTUSBKickBulkOut(pAd);
5367 +static void rt2870_null_frame_complete_tasklet(unsigned long data)
5369 + PRTMP_ADAPTER pAd;
5370 + PTX_CONTEXT pNullContext;
5373 + unsigned long irqFlag;
5376 + pUrb = (purbb_t)data;
5377 + pNullContext = (PTX_CONTEXT)pUrb->context;
5378 + pAd = pNullContext->pAd;
5379 + Status = pUrb->status;
5381 + // Reset Null frame context flags
5382 + RTMP_IRQ_LOCK(&pAd->BulkOutLock[0], irqFlag);
5383 + pNullContext->IRPPending = FALSE;
5384 + pNullContext->InUse = FALSE;
5385 + pAd->BulkOutPending[0] = FALSE;
5386 + pAd->watchDogTxPendingCnt[0] = 0;
5388 + if (Status == USB_ST_NOERROR)
5390 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[0], irqFlag);
5392 + RTMPDeQueuePacket(pAd, FALSE, NUM_OF_TX_RING, MAX_TX_PROCESS);
5394 + else // STATUS_OTHER
5396 + if ((!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RESET_IN_PROGRESS)) &&
5397 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS)) &&
5398 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)) &&
5399 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET)))
5401 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("Bulk Out Null Frame Failed, ReasonCode=%d!\n", Status));
5402 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET);
5403 + pAd->bulkResetPipeid = (MGMTPIPEIDX | BULKOUT_MGMT_RESET_FLAG);
5404 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[0], irqFlag);
5405 + RTUSBEnqueueInternalCmd(pAd, CMDTHREAD_RESET_BULK_OUT, NULL, 0);
5409 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[0], irqFlag);
5413 + // Always call Bulk routine, even reset bulk.
5414 + // The protectioon of rest bulk should be in BulkOut routine
5415 + RTUSBKickBulkOut(pAd);
5420 +static void rt2870_rts_frame_complete_tasklet(unsigned long data)
5422 + PRTMP_ADAPTER pAd;
5423 + PTX_CONTEXT pRTSContext;
5426 + unsigned long irqFlag;
5429 + pUrb = (purbb_t)data;
5430 + pRTSContext = (PTX_CONTEXT)pUrb->context;
5431 + pAd = pRTSContext->pAd;
5432 + Status = pUrb->status;
5434 + // Reset RTS frame context flags
5435 + RTMP_IRQ_LOCK(&pAd->BulkOutLock[0], irqFlag);
5436 + pRTSContext->IRPPending = FALSE;
5437 + pRTSContext->InUse = FALSE;
5439 + if (Status == USB_ST_NOERROR)
5441 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[0], irqFlag);
5442 + RTMPDeQueuePacket(pAd, FALSE, NUM_OF_TX_RING, MAX_TX_PROCESS);
5444 + else // STATUS_OTHER
5446 + if ((!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RESET_IN_PROGRESS)) &&
5447 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS)) &&
5448 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)) &&
5449 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET)))
5451 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("Bulk Out RTS Frame Failed\n"));
5452 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET);
5453 + pAd->bulkResetPipeid = (MGMTPIPEIDX | BULKOUT_MGMT_RESET_FLAG);
5454 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[0], irqFlag);
5455 + RTUSBEnqueueInternalCmd(pAd, CMDTHREAD_RESET_BULK_OUT, NULL, 0);
5459 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[0], irqFlag);
5463 + RTMP_SEM_LOCK(&pAd->BulkOutLock[pRTSContext->BulkOutPipeId]);
5464 + pAd->BulkOutPending[pRTSContext->BulkOutPipeId] = FALSE;
5465 + RTMP_SEM_UNLOCK(&pAd->BulkOutLock[pRTSContext->BulkOutPipeId]);
5467 + // Always call Bulk routine, even reset bulk.
5468 + // The protectioon of rest bulk should be in BulkOut routine
5469 + RTUSBKickBulkOut(pAd);
5474 +static void rt2870_pspoll_frame_complete_tasklet(unsigned long data)
5476 + PRTMP_ADAPTER pAd;
5477 + PTX_CONTEXT pPsPollContext;
5482 + pUrb = (purbb_t)data;
5483 + pPsPollContext = (PTX_CONTEXT)pUrb->context;
5484 + pAd = pPsPollContext->pAd;
5485 + Status = pUrb->status;
5487 + // Reset PsPoll context flags
5488 + pPsPollContext->IRPPending = FALSE;
5489 + pPsPollContext->InUse = FALSE;
5490 + pAd->watchDogTxPendingCnt[0] = 0;
5492 + if (Status == USB_ST_NOERROR)
5494 + RTMPDeQueuePacket(pAd, FALSE, NUM_OF_TX_RING, MAX_TX_PROCESS);
5496 + else // STATUS_OTHER
5498 + if ((!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RESET_IN_PROGRESS)) &&
5499 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS)) &&
5500 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)) &&
5501 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET)))
5503 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("Bulk Out PSPoll Failed\n"));
5504 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET);
5505 + pAd->bulkResetPipeid = (MGMTPIPEIDX | BULKOUT_MGMT_RESET_FLAG);
5506 + RTUSBEnqueueInternalCmd(pAd, CMDTHREAD_RESET_BULK_OUT, NULL, 0);
5510 + RTMP_SEM_LOCK(&pAd->BulkOutLock[0]);
5511 + pAd->BulkOutPending[0] = FALSE;
5512 + RTMP_SEM_UNLOCK(&pAd->BulkOutLock[0]);
5514 + // Always call Bulk routine, even reset bulk.
5515 + // The protectioon of rest bulk should be in BulkOut routine
5516 + RTUSBKickBulkOut(pAd);
5521 +static void rt2870_dataout_complete_tasklet(unsigned long data)
5523 + PRTMP_ADAPTER pAd;
5526 + PHT_TX_CONTEXT pHTTXContext;
5527 + UCHAR BulkOutPipeId;
5529 + unsigned long IrqFlags;
5532 + pUrb = (purbb_t)data;
5533 + pHTTXContext = (PHT_TX_CONTEXT)pUrb->context;
5534 + pAd = pHTTXContext->pAd;
5535 + pObj = (POS_COOKIE) pAd->OS_Cookie;
5536 + Status = pUrb->status;
5538 + // Store BulkOut PipeId
5539 + BulkOutPipeId = pHTTXContext->BulkOutPipeId;
5540 + pAd->BulkOutDataOneSecCount++;
5542 + //DBGPRINT(RT_DEBUG_LOUD, ("Done-B(%d):I=0x%lx, CWPos=%ld, NBPos=%ld, ENBPos=%ld, bCopy=%d!\n", BulkOutPipeId, in_interrupt(), pHTTXContext->CurWritePosition,
5543 + // pHTTXContext->NextBulkOutPosition, pHTTXContext->ENextBulkOutPosition, pHTTXContext->bCopySavePad));
5545 + RTMP_IRQ_LOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
5546 + pAd->BulkOutPending[BulkOutPipeId] = FALSE;
5547 + pHTTXContext->IRPPending = FALSE;
5548 + pAd->watchDogTxPendingCnt[BulkOutPipeId] = 0;
5550 + if (Status == USB_ST_NOERROR)
5552 + pAd->BulkOutComplete++;
5554 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
5556 + pAd->Counters8023.GoodTransmits++;
5557 + //RTMP_IRQ_LOCK(&pAd->TxContextQueueLock[BulkOutPipeId], IrqFlags);
5558 + FREE_HTTX_RING(pAd, BulkOutPipeId, pHTTXContext);
5559 + //RTMP_IRQ_UNLOCK(&pAd->TxContextQueueLock[BulkOutPipeId], IrqFlags);
5563 + else // STATUS_OTHER
5567 + pAd->BulkOutCompleteOther++;
5569 + pBuf = &pHTTXContext->TransferBuffer->field.WirelessPacket[pHTTXContext->NextBulkOutPosition];
5571 + if (!RTMP_TEST_FLAG(pAd, (fRTMP_ADAPTER_RESET_IN_PROGRESS |
5572 + fRTMP_ADAPTER_HALT_IN_PROGRESS |
5573 + fRTMP_ADAPTER_NIC_NOT_EXIST |
5574 + fRTMP_ADAPTER_BULKOUT_RESET)))
5576 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET);
5577 + pAd->bulkResetPipeid = BulkOutPipeId;
5578 + pAd->bulkResetReq[BulkOutPipeId] = pAd->BulkOutReq;
5580 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
5582 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("BulkOutDataPacket failed: ReasonCode=%d!\n", Status));
5583 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("\t>>BulkOut Req=0x%lx, Complete=0x%lx, Other=0x%lx\n", pAd->BulkOutReq, pAd->BulkOutComplete, pAd->BulkOutCompleteOther));
5584 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("\t>>BulkOut Header:%x %x %x %x %x %x %x %x\n", pBuf[0], pBuf[1], pBuf[2], pBuf[3], pBuf[4], pBuf[5], pBuf[6], pBuf[7]));
5585 + //DBGPRINT_RAW(RT_DEBUG_ERROR, (">>BulkOutCompleteCancel=0x%x, BulkOutCompleteOther=0x%x\n", pAd->BulkOutCompleteCancel, pAd->BulkOutCompleteOther));
5590 + // bInUse = TRUE, means some process are filling TX data, after that must turn on bWaitingBulkOut
5591 + // bWaitingBulkOut = TRUE, means the TX data are waiting for bulk out.
5593 + //RTMP_IRQ_LOCK(&pAd->TxContextQueueLock[BulkOutPipeId], IrqFlags);
5594 + if ((pHTTXContext->ENextBulkOutPosition != pHTTXContext->CurWritePosition) &&
5595 + (pHTTXContext->ENextBulkOutPosition != (pHTTXContext->CurWritePosition+8)) &&
5596 + !RTUSB_TEST_BULK_FLAG(pAd, (fRTUSB_BULK_OUT_DATA_FRAG << BulkOutPipeId)))
5598 + // Indicate There is data avaliable
5599 + RTUSB_SET_BULK_FLAG(pAd, (fRTUSB_BULK_OUT_DATA_NORMAL << BulkOutPipeId));
5601 + //RTMP_IRQ_UNLOCK(&pAd->TxContextQueueLock[BulkOutPipeId], IrqFlags);
5603 + // Always call Bulk routine, even reset bulk.
5604 + // The protection of rest bulk should be in BulkOut routine
5605 + RTUSBKickBulkOut(pAd);
5608 +/* End of 2870_rtmp_init.c */
5610 +++ b/drivers/staging/rt3070/common/action.c
5613 + *************************************************************************
5614 + * Ralink Tech Inc.
5615 + * 5F., No.36, Taiyuan St., Jhubei City,
5616 + * Hsinchu County 302,
5619 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
5621 + * This program is free software; you can redistribute it and/or modify *
5622 + * it under the terms of the GNU General Public License as published by *
5623 + * the Free Software Foundation; either version 2 of the License, or *
5624 + * (at your option) any later version. *
5626 + * This program is distributed in the hope that it will be useful, *
5627 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
5628 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
5629 + * GNU General Public License for more details. *
5631 + * You should have received a copy of the GNU General Public License *
5632 + * along with this program; if not, write to the *
5633 + * Free Software Foundation, Inc., *
5634 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
5636 + *************************************************************************
5642 + Handle association related requests either from WSTA or from local MLME
5646 + -------- ---------- ----------------------------------------------
5647 + Jan Lee 2006 created for rt2860
5650 +#include "../rt_config.h"
5651 +#include "../action.h"
5654 +static VOID ReservedAction(
5655 + IN PRTMP_ADAPTER pAd,
5656 + IN MLME_QUEUE_ELEM *Elem);
5659 + ==========================================================================
5661 + association state machine init, including state transition and timer init
5663 + S - pointer to the association state machine
5665 + The state machine looks like the following
5668 + MT2_MLME_DISASSOC_REQ mlme_disassoc_req_action
5669 + MT2_PEER_DISASSOC_REQ peer_disassoc_action
5670 + MT2_PEER_ASSOC_REQ drop
5671 + MT2_PEER_REASSOC_REQ drop
5672 + MT2_CLS3ERR cls3err_action
5673 + ==========================================================================
5675 +VOID ActionStateMachineInit(
5676 + IN PRTMP_ADAPTER pAd,
5677 + IN STATE_MACHINE *S,
5678 + OUT STATE_MACHINE_FUNC Trans[])
5680 + StateMachineInit(S, (STATE_MACHINE_FUNC *)Trans, MAX_ACT_STATE, MAX_ACT_MSG, (STATE_MACHINE_FUNC)Drop, ACT_IDLE, ACT_MACHINE_BASE);
5682 + StateMachineSetAction(S, ACT_IDLE, MT2_PEER_SPECTRUM_CATE, (STATE_MACHINE_FUNC)PeerSpectrumAction);
5683 + StateMachineSetAction(S, ACT_IDLE, MT2_PEER_QOS_CATE, (STATE_MACHINE_FUNC)PeerQOSAction);
5685 + StateMachineSetAction(S, ACT_IDLE, MT2_PEER_DLS_CATE, (STATE_MACHINE_FUNC)ReservedAction);
5686 +#ifdef QOS_DLS_SUPPORT
5687 + StateMachineSetAction(S, ACT_IDLE, MT2_PEER_DLS_CATE, (STATE_MACHINE_FUNC)PeerDLSAction);
5688 +#endif // QOS_DLS_SUPPORT //
5690 +#ifdef DOT11_N_SUPPORT
5691 + StateMachineSetAction(S, ACT_IDLE, MT2_PEER_BA_CATE, (STATE_MACHINE_FUNC)PeerBAAction);
5692 + StateMachineSetAction(S, ACT_IDLE, MT2_PEER_HT_CATE, (STATE_MACHINE_FUNC)PeerHTAction);
5693 + StateMachineSetAction(S, ACT_IDLE, MT2_MLME_ADD_BA_CATE, (STATE_MACHINE_FUNC)MlmeADDBAAction);
5694 + StateMachineSetAction(S, ACT_IDLE, MT2_MLME_ORI_DELBA_CATE, (STATE_MACHINE_FUNC)MlmeDELBAAction);
5695 + StateMachineSetAction(S, ACT_IDLE, MT2_MLME_REC_DELBA_CATE, (STATE_MACHINE_FUNC)MlmeDELBAAction);
5696 +#endif // DOT11_N_SUPPORT //
5698 + StateMachineSetAction(S, ACT_IDLE, MT2_PEER_PUBLIC_CATE, (STATE_MACHINE_FUNC)PeerPublicAction);
5699 + StateMachineSetAction(S, ACT_IDLE, MT2_PEER_RM_CATE, (STATE_MACHINE_FUNC)PeerRMAction);
5701 + StateMachineSetAction(S, ACT_IDLE, MT2_MLME_QOS_CATE, (STATE_MACHINE_FUNC)MlmeQOSAction);
5702 + StateMachineSetAction(S, ACT_IDLE, MT2_MLME_DLS_CATE, (STATE_MACHINE_FUNC)MlmeDLSAction);
5703 + StateMachineSetAction(S, ACT_IDLE, MT2_ACT_INVALID, (STATE_MACHINE_FUNC)MlmeInvalidAction);
5706 +#ifdef DOT11_N_SUPPORT
5707 +VOID MlmeADDBAAction(
5708 + IN PRTMP_ADAPTER pAd,
5709 + IN MLME_QUEUE_ELEM *Elem)
5712 + MLME_ADDBA_REQ_STRUCT *pInfo;
5714 + PUCHAR pOutBuffer = NULL;
5715 + NDIS_STATUS NStatus;
5717 + FRAME_ADDBA_REQ Frame;
5719 + BA_ORI_ENTRY *pBAEntry = NULL;
5721 + pInfo = (MLME_ADDBA_REQ_STRUCT *)Elem->Msg;
5722 + NdisZeroMemory(&Frame, sizeof(FRAME_ADDBA_REQ));
5724 + if(MlmeAddBAReqSanity(pAd, Elem->Msg, Elem->MsgLen, Addr))
5726 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
5727 + if(NStatus != NDIS_STATUS_SUCCESS)
5729 + DBGPRINT(RT_DEBUG_TRACE,("BA - MlmeADDBAAction() allocate memory failed \n"));
5733 + Idx = pAd->MacTab.Content[pInfo->Wcid].BAOriWcidArray[pInfo->TID];
5736 + MlmeFreeMemory(pAd, pOutBuffer);
5737 + DBGPRINT(RT_DEBUG_ERROR,("BA - MlmeADDBAAction() can't find BAOriEntry \n"));
5742 + pBAEntry =&pAd->BATable.BAOriEntry[Idx];
5745 +#ifdef CONFIG_STA_SUPPORT
5746 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
5748 + if (ADHOC_ON(pAd))
5749 + ActHeaderInit(pAd, &Frame.Hdr, pInfo->pAddr, pAd->CurrentAddress, pAd->CommonCfg.Bssid);
5751 + ActHeaderInit(pAd, &Frame.Hdr, pAd->CommonCfg.Bssid, pAd->CurrentAddress, pInfo->pAddr);
5754 +#endif // CONFIG_STA_SUPPORT //
5756 + Frame.Category = CATEGORY_BA;
5757 + Frame.Action = ADDBA_REQ;
5758 + Frame.BaParm.AMSDUSupported = 0;
5759 + Frame.BaParm.BAPolicy = IMMED_BA;
5760 + Frame.BaParm.TID = pInfo->TID;
5761 + Frame.BaParm.BufSize = pInfo->BaBufSize;
5762 + Frame.Token = pInfo->Token;
5763 + Frame.TimeOutValue = pInfo->TimeOutValue;
5764 + Frame.BaStartSeq.field.FragNum = 0;
5765 + Frame.BaStartSeq.field.StartSeq = pAd->MacTab.Content[pInfo->Wcid].TxSeq[pInfo->TID];
5767 + *(USHORT *)(&Frame.BaParm) = cpu2le16(*(USHORT *)(&Frame.BaParm));
5768 + Frame.TimeOutValue = cpu2le16(Frame.TimeOutValue);
5769 + Frame.BaStartSeq.word = cpu2le16(Frame.BaStartSeq.word);
5771 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
5772 + sizeof(FRAME_ADDBA_REQ), &Frame,
5774 + MiniportMMRequest(pAd, QID_AC_BE, pOutBuffer, FrameLen);
5775 + //MiniportDataMMRequest(pAd, MapUserPriorityToAccessCategory[pInfo->TID], pOutBuffer, FrameLen);
5776 + MlmeFreeMemory(pAd, pOutBuffer);
5778 + DBGPRINT(RT_DEBUG_TRACE, ("BA - Send ADDBA request. StartSeq = %x, FrameLen = %ld. BufSize = %d\n", Frame.BaStartSeq.field.StartSeq, FrameLen, Frame.BaParm.BufSize));
5783 + ==========================================================================
5785 + send DELBA and delete BaEntry if any
5787 + Elem - MLME message MLME_DELBA_REQ_STRUCT
5789 + IRQL = DISPATCH_LEVEL
5791 + ==========================================================================
5793 +VOID MlmeDELBAAction(
5794 + IN PRTMP_ADAPTER pAd,
5795 + IN MLME_QUEUE_ELEM *Elem)
5797 + MLME_DELBA_REQ_STRUCT *pInfo;
5798 + PUCHAR pOutBuffer = NULL;
5799 + PUCHAR pOutBuffer2 = NULL;
5800 + NDIS_STATUS NStatus;
5802 + FRAME_DELBA_REQ Frame;
5804 + FRAME_BAR FrameBar;
5806 + pInfo = (MLME_DELBA_REQ_STRUCT *)Elem->Msg;
5807 + // must send back DELBA
5808 + NdisZeroMemory(&Frame, sizeof(FRAME_DELBA_REQ));
5809 + DBGPRINT(RT_DEBUG_TRACE, ("==> MlmeDELBAAction(), Initiator(%d) \n", pInfo->Initiator));
5811 + if(MlmeDelBAReqSanity(pAd, Elem->Msg, Elem->MsgLen))
5813 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
5814 + if(NStatus != NDIS_STATUS_SUCCESS)
5816 + DBGPRINT(RT_DEBUG_ERROR,("BA - MlmeDELBAAction() allocate memory failed 1. \n"));
5820 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer2); //Get an unused nonpaged memory
5821 + if(NStatus != NDIS_STATUS_SUCCESS)
5823 + MlmeFreeMemory(pAd, pOutBuffer);
5824 + DBGPRINT(RT_DEBUG_ERROR, ("BA - MlmeDELBAAction() allocate memory failed 2. \n"));
5828 + // SEND BAR (Send BAR to refresh peer reordering buffer.)
5829 + Idx = pAd->MacTab.Content[pInfo->Wcid].BAOriWcidArray[pInfo->TID];
5831 +#ifdef CONFIG_STA_SUPPORT
5832 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
5833 + BarHeaderInit(pAd, &FrameBar, pAd->MacTab.Content[pInfo->Wcid].Addr, pAd->CurrentAddress);
5834 +#endif // CONFIG_STA_SUPPORT //
5836 + FrameBar.StartingSeq.field.FragNum = 0; // make sure sequence not clear in DEL funciton.
5837 + FrameBar.StartingSeq.field.StartSeq = pAd->MacTab.Content[pInfo->Wcid].TxSeq[pInfo->TID]; // make sure sequence not clear in DEL funciton.
5838 + FrameBar.BarControl.TID = pInfo->TID; // make sure sequence not clear in DEL funciton.
5839 + FrameBar.BarControl.ACKPolicy = IMMED_BA; // make sure sequence not clear in DEL funciton.
5840 + FrameBar.BarControl.Compressed = 1; // make sure sequence not clear in DEL funciton.
5841 + FrameBar.BarControl.MTID = 0; // make sure sequence not clear in DEL funciton.
5843 + MakeOutgoingFrame(pOutBuffer2, &FrameLen,
5844 + sizeof(FRAME_BAR), &FrameBar,
5846 + MiniportMMRequest(pAd, QID_AC_BE, pOutBuffer2, FrameLen);
5847 + MlmeFreeMemory(pAd, pOutBuffer2);
5848 + DBGPRINT(RT_DEBUG_TRACE,("BA - MlmeDELBAAction() . Send BAR to refresh peer reordering buffer \n"));
5850 + // SEND DELBA FRAME
5852 +#ifdef CONFIG_STA_SUPPORT
5853 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
5855 + if (ADHOC_ON(pAd))
5856 + ActHeaderInit(pAd, &Frame.Hdr, pAd->MacTab.Content[pInfo->Wcid].Addr, pAd->CurrentAddress, pAd->CommonCfg.Bssid);
5858 + ActHeaderInit(pAd, &Frame.Hdr, pAd->CommonCfg.Bssid, pAd->CurrentAddress, pAd->MacTab.Content[pInfo->Wcid].Addr);
5860 +#endif // CONFIG_STA_SUPPORT //
5861 + Frame.Category = CATEGORY_BA;
5862 + Frame.Action = DELBA;
5863 + Frame.DelbaParm.Initiator = pInfo->Initiator;
5864 + Frame.DelbaParm.TID = pInfo->TID;
5865 + Frame.ReasonCode = 39; // Time Out
5866 + *(USHORT *)(&Frame.DelbaParm) = cpu2le16(*(USHORT *)(&Frame.DelbaParm));
5867 + Frame.ReasonCode = cpu2le16(Frame.ReasonCode);
5869 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
5870 + sizeof(FRAME_DELBA_REQ), &Frame,
5872 + MiniportMMRequest(pAd, QID_AC_BE, pOutBuffer, FrameLen);
5873 + MlmeFreeMemory(pAd, pOutBuffer);
5874 + DBGPRINT(RT_DEBUG_TRACE, ("BA - MlmeDELBAAction() . 3 DELBA sent. Initiator(%d)\n", pInfo->Initiator));
5877 +#endif // DOT11_N_SUPPORT //
5879 +VOID MlmeQOSAction(
5880 + IN PRTMP_ADAPTER pAd,
5881 + IN MLME_QUEUE_ELEM *Elem)
5885 +VOID MlmeDLSAction(
5886 + IN PRTMP_ADAPTER pAd,
5887 + IN MLME_QUEUE_ELEM *Elem)
5891 +VOID MlmeInvalidAction(
5892 + IN PRTMP_ADAPTER pAd,
5893 + IN MLME_QUEUE_ELEM *Elem)
5895 + //PUCHAR pOutBuffer = NULL;
5896 + //Return the receiving frame except the MSB of category filed set to 1. 7.3.1.11
5899 +VOID PeerQOSAction(
5900 + IN PRTMP_ADAPTER pAd,
5901 + IN MLME_QUEUE_ELEM *Elem)
5905 +#ifdef QOS_DLS_SUPPORT
5906 +VOID PeerDLSAction(
5907 + IN PRTMP_ADAPTER pAd,
5908 + IN MLME_QUEUE_ELEM *Elem)
5910 + UCHAR Action = Elem->Msg[LENGTH_802_11+1];
5914 + case ACTION_DLS_REQUEST:
5915 +#ifdef CONFIG_STA_SUPPORT
5916 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
5917 + PeerDlsReqAction(pAd, Elem);
5918 +#endif // CONFIG_STA_SUPPORT //
5921 + case ACTION_DLS_RESPONSE:
5922 +#ifdef CONFIG_STA_SUPPORT
5923 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
5924 + PeerDlsRspAction(pAd, Elem);
5925 +#endif // CONFIG_STA_SUPPORT //
5928 + case ACTION_DLS_TEARDOWN:
5929 +#ifdef CONFIG_STA_SUPPORT
5930 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
5931 + PeerDlsTearDownAction(pAd, Elem);
5932 +#endif // CONFIG_STA_SUPPORT //
5936 +#endif // QOS_DLS_SUPPORT //
5938 +#ifdef DOT11_N_SUPPORT
5940 + IN PRTMP_ADAPTER pAd,
5941 + IN MLME_QUEUE_ELEM *Elem)
5943 + UCHAR Action = Elem->Msg[LENGTH_802_11+1];
5948 + PeerAddBAReqAction(pAd,Elem);
5951 + PeerAddBARspAction(pAd,Elem);
5954 + PeerDelBAAction(pAd,Elem);
5960 +#ifdef DOT11N_DRAFT3
5962 +#ifdef CONFIG_STA_SUPPORT
5963 +VOID StaPublicAction(
5964 + IN PRTMP_ADAPTER pAd,
5965 + IN UCHAR Bss2040Coexist)
5967 + BSS_2040_COEXIST_IE BssCoexist;
5968 + MLME_SCAN_REQ_STRUCT ScanReq;
5970 + BssCoexist.word = Bss2040Coexist;
5971 + // AP asks Station to return a 20/40 BSS Coexistence mgmt frame. So we first starts a scan, then send back 20/40 BSS Coexistence mgmt frame
5972 + if ((BssCoexist.field.InfoReq == 1) && (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_SCAN_2040)))
5974 + // Clear record first. After scan , will update those bit and send back to transmiter.
5975 + pAd->CommonCfg.BSSCoexist2040.field.InfoReq = 1;
5976 + pAd->CommonCfg.BSSCoexist2040.field.Intolerant40 = 0;
5977 + pAd->CommonCfg.BSSCoexist2040.field.BSS20WidthReq = 0;
5978 + // Fill out stuff for scan request
5979 + ScanParmFill(pAd, &ScanReq, ZeroSsid, 0, BSS_ANY, SCAN_2040_BSS_COEXIST);
5980 + MlmeEnqueue(pAd, SYNC_STATE_MACHINE, MT2_MLME_SCAN_REQ, sizeof(MLME_SCAN_REQ_STRUCT), &ScanReq);
5981 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_OID_LIST_SCAN;
5987 +Description : Build Intolerant Channel Rerpot from Trigger event table.
5988 +return : how many bytes copied.
5990 +ULONG BuildIntolerantChannelRep(
5991 + IN PRTMP_ADAPTER pAd,
5994 + ULONG FrameLen = 0;
5995 + ULONG ReadOffset = 0;
5997 + UCHAR LastRegClass = 0xff;
6000 + for ( i = 0;i < MAX_TRIGGER_EVENT;i++)
6002 + if (pAd->CommonCfg.TriggerEventTab.EventA[i].bValid == TRUE)
6004 + if (pAd->CommonCfg.TriggerEventTab.EventA[i].RegClass == LastRegClass)
6006 + *(pDest + ReadOffset) = (UCHAR)pAd->CommonCfg.TriggerEventTab.EventA[i].Channel;
6013 + *(pDest + ReadOffset) = IE_2040_BSS_INTOLERANT_REPORT; // IE
6014 + *(pDest + ReadOffset + 1) = 2; // Len = RegClass byte + channel byte.
6015 + pLen = pDest + ReadOffset + 1;
6016 + LastRegClass = pAd->CommonCfg.TriggerEventTab.EventA[i].RegClass;
6017 + *(pDest + ReadOffset + 2) = LastRegClass; // Len = RegClass byte + channel byte.
6018 + *(pDest + ReadOffset + 3) = (UCHAR)pAd->CommonCfg.TriggerEventTab.EventA[i].Channel;
6030 +Description : Send 20/40 BSS Coexistence Action frame If one trigger event is triggered.
6032 +VOID Send2040CoexistAction(
6033 + IN PRTMP_ADAPTER pAd,
6035 + IN BOOLEAN bAddIntolerantCha)
6037 + PUCHAR pOutBuffer = NULL;
6038 + NDIS_STATUS NStatus;
6039 + FRAME_ACTION_HDR Frame;
6041 + ULONG IntolerantChaRepLen;
6043 + IntolerantChaRepLen = 0;
6044 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
6045 + if(NStatus != NDIS_STATUS_SUCCESS)
6047 + DBGPRINT(RT_DEBUG_ERROR,("ACT - Send2040CoexistAction() allocate memory failed \n"));
6050 + ActHeaderInit(pAd, &Frame.Hdr, pAd->MacTab.Content[Wcid].Addr, pAd->CommonCfg.Bssid);
6051 + Frame.Category = CATEGORY_PUBLIC;
6052 + Frame.Action = ACTION_BSS_2040_COEXIST;
6054 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
6055 + sizeof(FRAME_ACTION_HDR), &Frame,
6058 + *(pOutBuffer + FrameLen) = pAd->CommonCfg.BSSCoexist2040.word;
6061 + if (bAddIntolerantCha == TRUE)
6062 + IntolerantChaRepLen = BuildIntolerantChannelRep(pAd, pOutBuffer + FrameLen);
6064 + MiniportMMRequest(pAd, QID_AC_BE, pOutBuffer, FrameLen + IntolerantChaRepLen);
6065 + DBGPRINT(RT_DEBUG_ERROR,("ACT - Send2040CoexistAction( BSSCoexist2040 = 0x%x ) \n", pAd->CommonCfg.BSSCoexist2040.word));
6071 + ==========================================================================
6073 + After scan, Update 20/40 BSS Coexistence IE and send out.
6074 + According to 802.11n D3.03 11.14.10
6077 + ==========================================================================
6079 +VOID Update2040CoexistFrameAndNotify(
6080 + IN PRTMP_ADAPTER pAd,
6082 + IN BOOLEAN bAddIntolerantCha)
6084 + BSS_2040_COEXIST_IE OldValue;
6086 + OldValue.word = pAd->CommonCfg.BSSCoexist2040.word;
6087 + if ((pAd->CommonCfg.TriggerEventTab.EventANo > 0) || (pAd->CommonCfg.TriggerEventTab.EventBCountDown > 0))
6088 + pAd->CommonCfg.BSSCoexist2040.field.BSS20WidthReq = 1;
6090 + // Need to check !!!!
6091 + // How STA will set Intolerant40 if implementation dependent. Now we don't set this bit first.!!!!!
6092 + // So Only check BSS20WidthReq change.
6093 + if (OldValue.field.BSS20WidthReq != pAd->CommonCfg.BSSCoexist2040.field.BSS20WidthReq)
6095 + Send2040CoexistAction(pAd, Wcid, bAddIntolerantCha);
6098 +#endif // CONFIG_STA_SUPPORT //
6101 +BOOLEAN ChannelSwitchSanityCheck(
6102 + IN PRTMP_ADAPTER pAd,
6104 + IN UCHAR NewChannel,
6105 + IN UCHAR Secondary)
6109 + if (Wcid >= MAX_LEN_OF_MAC_TABLE)
6112 + if ((NewChannel > 7) && (Secondary == 1))
6115 + if ((NewChannel < 5) && (Secondary == 3))
6118 + // 0. Check if new channel is in the channellist.
6119 + for (i = 0;i < pAd->ChannelListNum;i++)
6121 + if (pAd->ChannelList[i].Channel == NewChannel)
6127 + if (i == pAd->ChannelListNum)
6134 +VOID ChannelSwitchAction(
6135 + IN PRTMP_ADAPTER pAd,
6137 + IN UCHAR NewChannel,
6138 + IN UCHAR Secondary)
6140 + UCHAR BBPValue = 0;
6143 + DBGPRINT(RT_DEBUG_TRACE,("SPECTRUM - ChannelSwitchAction(NewChannel = %d , Secondary = %d) \n", NewChannel, Secondary));
6145 + if (ChannelSwitchSanityCheck(pAd, Wcid, NewChannel, Secondary) == FALSE)
6148 + // 1. Switches to BW = 20.
6149 + if (Secondary == 0)
6151 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &BBPValue);
6152 + BBPValue&= (~0x18);
6153 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, BBPValue);
6154 + if (pAd->MACVersion == 0x28600100)
6156 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R69, 0x16);
6157 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R70, 0x08);
6158 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R73, 0x11);
6159 + DBGPRINT(RT_DEBUG_TRACE, ("!!!rt2860C !!! \n" ));
6161 + pAd->CommonCfg.BBPCurrentBW = BW_20;
6162 + pAd->CommonCfg.Channel = NewChannel;
6163 + pAd->CommonCfg.CentralChannel = pAd->CommonCfg.Channel;
6164 + AsicSwitchChannel(pAd, pAd->CommonCfg.Channel,FALSE);
6165 + AsicLockChannel(pAd, pAd->CommonCfg.Channel);
6166 + pAd->MacTab.Content[Wcid].HTPhyMode.field.BW = 0;
6167 + DBGPRINT(RT_DEBUG_TRACE, ("!!!20MHz !!! \n" ));
6169 + // 1. Switches to BW = 40 And Station supports BW = 40.
6170 + else if (((Secondary == 1) || (Secondary == 3)) && (pAd->CommonCfg.HtCapability.HtCapInfo.ChannelWidth == 1))
6172 + pAd->CommonCfg.Channel = NewChannel;
6174 + if (Secondary == 1)
6176 + // Secondary above.
6177 + pAd->CommonCfg.CentralChannel = pAd->CommonCfg.Channel + 2;
6178 + RTMP_IO_READ32(pAd, TX_BAND_CFG, &MACValue);
6180 + RTMP_IO_WRITE32(pAd, TX_BAND_CFG, MACValue);
6181 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &BBPValue);
6182 + BBPValue&= (~0x18);
6183 + BBPValue|= (0x10);
6184 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, BBPValue);
6185 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &BBPValue);
6186 + BBPValue&= (~0x20);
6187 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, BBPValue);
6188 + DBGPRINT(RT_DEBUG_TRACE, ("!!!40MHz Lower LINK UP !!! Control Channel at Below. Central = %d \n", pAd->CommonCfg.CentralChannel ));
6192 + // Secondary below.
6193 + pAd->CommonCfg.CentralChannel = pAd->CommonCfg.Channel - 2;
6194 + RTMP_IO_READ32(pAd, TX_BAND_CFG, &MACValue);
6197 + RTMP_IO_WRITE32(pAd, TX_BAND_CFG, MACValue);
6198 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &BBPValue);
6199 + BBPValue&= (~0x18);
6200 + BBPValue|= (0x10);
6201 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, BBPValue);
6202 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &BBPValue);
6203 + BBPValue&= (~0x20);
6204 + BBPValue|= (0x20);
6205 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, BBPValue);
6206 + DBGPRINT(RT_DEBUG_TRACE, ("!!!40MHz Upper LINK UP !!! Control Channel at UpperCentral = %d \n", pAd->CommonCfg.CentralChannel ));
6208 + pAd->CommonCfg.BBPCurrentBW = BW_40;
6209 + AsicSwitchChannel(pAd, pAd->CommonCfg.CentralChannel, FALSE);
6210 + AsicLockChannel(pAd, pAd->CommonCfg.CentralChannel);
6211 + pAd->MacTab.Content[Wcid].HTPhyMode.field.BW = 1;
6214 +#endif // DOT11N_DRAFT3 //
6215 +#endif // DOT11_N_SUPPORT //
6217 +VOID PeerPublicAction(
6218 + IN PRTMP_ADAPTER pAd,
6219 + IN MLME_QUEUE_ELEM *Elem)
6221 +#ifdef DOT11N_DRAFT3
6222 + UCHAR Action = Elem->Msg[LENGTH_802_11+1];
6223 +#endif // DOT11N_DRAFT3 //
6225 + if (Elem->Wcid >= MAX_LEN_OF_MAC_TABLE)
6228 +#ifdef DOT11N_DRAFT3
6231 + case ACTION_BSS_2040_COEXIST: // Format defined in IEEE 7.4.7a.1 in 11n Draf3.03
6233 + //UCHAR BssCoexist;
6234 + BSS_2040_COEXIST_ELEMENT *pCoexistInfo;
6235 + BSS_2040_COEXIST_IE *pBssCoexistIe;
6236 + BSS_2040_INTOLERANT_CH_REPORT *pIntolerantReport = NULL;
6238 + if (Elem->MsgLen <= (LENGTH_802_11 + sizeof(BSS_2040_COEXIST_ELEMENT)) )
6240 + DBGPRINT(RT_DEBUG_ERROR, ("ACTION - 20/40 BSS Coexistence Management Frame length too short! len = %ld!\n", Elem->MsgLen));
6243 + DBGPRINT(RT_DEBUG_TRACE, ("ACTION - 20/40 BSS Coexistence Management action----> \n"));
6244 + hex_dump("CoexistenceMgmtFrame", Elem->Msg, Elem->MsgLen);
6247 + pCoexistInfo = (BSS_2040_COEXIST_ELEMENT *) &Elem->Msg[LENGTH_802_11+2];
6248 + //hex_dump("CoexistInfo", (PUCHAR)pCoexistInfo, sizeof(BSS_2040_COEXIST_ELEMENT));
6249 + if (Elem->MsgLen >= (LENGTH_802_11 + sizeof(BSS_2040_COEXIST_ELEMENT) + sizeof(BSS_2040_INTOLERANT_CH_REPORT)))
6251 + pIntolerantReport = (BSS_2040_INTOLERANT_CH_REPORT *)((PUCHAR)pCoexistInfo + sizeof(BSS_2040_COEXIST_ELEMENT));
6253 + //hex_dump("IntolerantReport ", (PUCHAR)pIntolerantReport, sizeof(BSS_2040_INTOLERANT_CH_REPORT));
6255 + pBssCoexistIe = (BSS_2040_COEXIST_IE *)(&pCoexistInfo->BssCoexistIe);
6257 +#ifdef CONFIG_STA_SUPPORT
6258 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
6260 + if (INFRA_ON(pAd))
6262 + StaPublicAction(pAd, pCoexistInfo);
6265 +#endif // CONFIG_STA_SUPPORT //
6271 +#endif // DOT11N_DRAFT3 //
6276 +static VOID ReservedAction(
6277 + IN PRTMP_ADAPTER pAd,
6278 + IN MLME_QUEUE_ELEM *Elem)
6282 + if (Elem->MsgLen <= LENGTH_802_11)
6287 + Category = Elem->Msg[LENGTH_802_11];
6288 + DBGPRINT(RT_DEBUG_TRACE,("Rcv reserved category(%d) Action Frame\n", Category));
6289 + hex_dump("Reserved Action Frame", &Elem->Msg[0], Elem->MsgLen);
6293 + IN PRTMP_ADAPTER pAd,
6294 + IN MLME_QUEUE_ELEM *Elem)
6300 +#ifdef DOT11_N_SUPPORT
6301 +static VOID respond_ht_information_exchange_action(
6302 + IN PRTMP_ADAPTER pAd,
6303 + IN MLME_QUEUE_ELEM *Elem)
6305 + PUCHAR pOutBuffer = NULL;
6306 + NDIS_STATUS NStatus;
6308 + FRAME_HT_INFO HTINFOframe, *pFrame;
6312 + // 2. Always send back ADDBA Response
6313 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
6315 + if (NStatus != NDIS_STATUS_SUCCESS)
6317 + DBGPRINT(RT_DEBUG_TRACE,("ACTION - respond_ht_information_exchange_action() allocate memory failed \n"));
6322 + pFrame = (FRAME_HT_INFO *) &Elem->Msg[0];
6323 + pAddr = pFrame->Hdr.Addr2;
6325 + NdisZeroMemory(&HTINFOframe, sizeof(FRAME_HT_INFO));
6326 + // 2-1. Prepare ADDBA Response frame.
6327 +#ifdef CONFIG_STA_SUPPORT
6328 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
6330 + if (ADHOC_ON(pAd))
6331 + ActHeaderInit(pAd, &HTINFOframe.Hdr, pAddr, pAd->CurrentAddress, pAd->CommonCfg.Bssid);
6333 + ActHeaderInit(pAd, &HTINFOframe.Hdr, pAd->CommonCfg.Bssid, pAd->CurrentAddress, pAddr);
6335 +#endif // CONFIG_STA_SUPPORT //
6337 + HTINFOframe.Category = CATEGORY_HT;
6338 + HTINFOframe.Action = HT_INFO_EXCHANGE;
6339 + HTINFOframe.HT_Info.Request = 0;
6340 + HTINFOframe.HT_Info.Forty_MHz_Intolerant = pAd->CommonCfg.HtCapability.HtCapInfo.Forty_Mhz_Intolerant;
6341 + HTINFOframe.HT_Info.STA_Channel_Width = pAd->CommonCfg.AddHTInfo.AddHtInfo.RecomWidth;
6343 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
6344 + sizeof(FRAME_HT_INFO), &HTINFOframe,
6347 + MiniportMMRequest(pAd, QID_AC_BE, pOutBuffer, FrameLen);
6348 + MlmeFreeMemory(pAd, pOutBuffer);
6352 +#ifdef DOT11N_DRAFT3
6353 +VOID SendNotifyBWActionFrame(
6354 + IN PRTMP_ADAPTER pAd,
6358 + PUCHAR pOutBuffer = NULL;
6359 + NDIS_STATUS NStatus;
6360 + FRAME_ACTION_HDR Frame;
6365 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
6366 + if(NStatus != NDIS_STATUS_SUCCESS)
6368 + DBGPRINT(RT_DEBUG_ERROR,("ACT - SendNotifyBWAction() allocate memory failed \n"));
6372 + if (Wcid == MCAST_WCID)
6373 + pAddr1 = &BROADCAST_ADDR[0];
6375 + pAddr1 = pAd->MacTab.Content[Wcid].Addr;
6376 + ActHeaderInit(pAd, &Frame.Hdr, pAddr1, pAd->ApCfg.MBSSID[apidx].Bssid, pAd->ApCfg.MBSSID[apidx].Bssid);
6378 + Frame.Category = CATEGORY_HT;
6379 + Frame.Action = NOTIFY_BW_ACTION;
6381 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
6382 + sizeof(FRAME_ACTION_HDR), &Frame,
6385 + *(pOutBuffer + FrameLen) = pAd->CommonCfg.AddHTInfo.AddHtInfo.RecomWidth;
6389 + MiniportMMRequest(pAd, QID_AC_BE, pOutBuffer, FrameLen);
6390 + DBGPRINT(RT_DEBUG_TRACE,("ACT - SendNotifyBWAction(NotifyBW= %d)!\n", pAd->CommonCfg.AddHTInfo.AddHtInfo.RecomWidth));
6393 +#endif // DOT11N_DRAFT3 //
6397 + IN PRTMP_ADAPTER pAd,
6398 + IN MLME_QUEUE_ELEM *Elem)
6400 + UCHAR Action = Elem->Msg[LENGTH_802_11+1];
6402 + if (Elem->Wcid >= MAX_LEN_OF_MAC_TABLE)
6407 + case NOTIFY_BW_ACTION:
6408 + DBGPRINT(RT_DEBUG_TRACE,("ACTION - HT Notify Channel bandwidth action----> \n"));
6409 +#ifdef CONFIG_STA_SUPPORT
6410 + if(pAd->StaActive.SupportedPhyInfo.bHtEnable == FALSE)
6412 + // Note, this is to patch DIR-1353 AP. When the AP set to Wep, it will use legacy mode. But AP still keeps
6413 + // sending BW_Notify Action frame, and cause us to linkup and linkdown.
6414 + // In legacy mode, don't need to parse HT action frame.
6415 + DBGPRINT(RT_DEBUG_TRACE,("ACTION -Ignore HT Notify Channel BW when link as legacy mode. BW = %d---> \n",
6416 + Elem->Msg[LENGTH_802_11+2] ));
6419 +#endif // CONFIG_STA_SUPPORT //
6421 + if (Elem->Msg[LENGTH_802_11+2] == 0) // 7.4.8.2. if value is 1, keep the same as supported channel bandwidth.
6422 + pAd->MacTab.Content[Elem->Wcid].HTPhyMode.field.BW = 0;
6428 + DBGPRINT(RT_DEBUG_TRACE,("ACTION - SMPS action----> \n"));
6429 + if (((Elem->Msg[LENGTH_802_11+2]&0x1) == 0))
6431 + pAd->MacTab.Content[Elem->Wcid].MmpsMode = MMPS_ENABLE;
6433 + else if (((Elem->Msg[LENGTH_802_11+2]&0x2) == 0))
6435 + pAd->MacTab.Content[Elem->Wcid].MmpsMode = MMPS_STATIC;
6439 + pAd->MacTab.Content[Elem->Wcid].MmpsMode = MMPS_DYNAMIC;
6442 + DBGPRINT(RT_DEBUG_TRACE,("Aid(%d) MIMO PS = %d\n", Elem->Wcid, pAd->MacTab.Content[Elem->Wcid].MmpsMode));
6443 + // rt2860c : add something for smps change.
6446 + case SETPCO_ACTION:
6449 + case MIMO_CHA_MEASURE_ACTION:
6452 + case HT_INFO_EXCHANGE:
6454 + HT_INFORMATION_OCTET *pHT_info;
6456 + pHT_info = (HT_INFORMATION_OCTET *) &Elem->Msg[LENGTH_802_11+2];
6458 + DBGPRINT(RT_DEBUG_TRACE,("ACTION - HT Information Exchange action----> \n"));
6459 + if (pHT_info->Request)
6461 + respond_ht_information_exchange_action(pAd, Elem);
6470 + ==========================================================================
6472 + Retry sending ADDBA Reqest.
6474 + IRQL = DISPATCH_LEVEL
6477 + p8023Header: if this is already 802.3 format, p8023Header is NULL
6479 + Return : TRUE if put into rx reordering buffer, shouldn't indicaterxhere.
6480 + FALSE , then continue indicaterx at this moment.
6481 + ==========================================================================
6483 +VOID ORIBATimerTimeout(
6484 + IN PRTMP_ADAPTER pAd)
6486 + MAC_TABLE_ENTRY *pEntry;
6488 +// FRAME_BAR FrameBar;
6490 +// NDIS_STATUS NStatus;
6491 +// PUCHAR pOutBuffer = NULL;
6492 +// USHORT Sequence;
6498 +#endif // RALINK_ATE //
6500 + total = pAd->MacTab.Size * NUM_OF_TID;
6502 + for (i = 1; ((i <MAX_LEN_OF_BA_ORI_TABLE) && (total > 0)) ; i++)
6504 + if (pAd->BATable.BAOriEntry[i].ORI_BA_Status == Originator_Done)
6506 + pEntry = &pAd->MacTab.Content[pAd->BATable.BAOriEntry[i].Wcid];
6507 + TID = pAd->BATable.BAOriEntry[i].TID;
6509 + ASSERT(pAd->BATable.BAOriEntry[i].Wcid < MAX_LEN_OF_MAC_TABLE);
6516 +VOID SendRefreshBAR(
6517 + IN PRTMP_ADAPTER pAd,
6518 + IN MAC_TABLE_ENTRY *pEntry)
6520 + FRAME_BAR FrameBar;
6522 + NDIS_STATUS NStatus;
6523 + PUCHAR pOutBuffer = NULL;
6527 + BA_ORI_ENTRY *pBAEntry;
6529 + for (i = 0; i <NUM_OF_TID; i++)
6531 + idx = pEntry->BAOriWcidArray[i];
6536 + pBAEntry = &pAd->BATable.BAOriEntry[idx];
6538 + if (pBAEntry->ORI_BA_Status == Originator_Done)
6540 + TID = pBAEntry->TID;
6542 + ASSERT(pBAEntry->Wcid < MAX_LEN_OF_MAC_TABLE);
6544 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
6545 + if(NStatus != NDIS_STATUS_SUCCESS)
6547 + DBGPRINT(RT_DEBUG_ERROR,("BA - MlmeADDBAAction() allocate memory failed \n"));
6551 + Sequence = pEntry->TxSeq[TID];
6554 +#ifdef CONFIG_STA_SUPPORT
6555 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
6556 + BarHeaderInit(pAd, &FrameBar, pEntry->Addr, pAd->CurrentAddress);
6557 +#endif // CONFIG_STA_SUPPORT //
6559 + FrameBar.StartingSeq.field.FragNum = 0; // make sure sequence not clear in DEL function.
6560 + FrameBar.StartingSeq.field.StartSeq = Sequence; // make sure sequence not clear in DEL funciton.
6561 + FrameBar.BarControl.TID = TID; // make sure sequence not clear in DEL funciton.
6563 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
6564 + sizeof(FRAME_BAR), &FrameBar,
6566 + //if (!(CLIENT_STATUS_TEST_FLAG(pEntry, fCLIENT_STATUS_RALINK_CHIPSET)))
6567 + if (1) // Now we always send BAR.
6569 + //MiniportMMRequestUnlock(pAd, 0, pOutBuffer, FrameLen);
6570 + MiniportMMRequest(pAd, QID_AC_BE, pOutBuffer, FrameLen);
6571 + //MiniportDataMMRequest(pAd, MapUserPriorityToAccessCategory[TID], pOutBuffer, FrameLen);
6573 + MlmeFreeMemory(pAd, pOutBuffer);
6577 +#endif // DOT11_N_SUPPORT //
6579 +VOID ActHeaderInit(
6580 + IN PRTMP_ADAPTER pAd,
6581 + IN OUT PHEADER_802_11 pHdr80211,
6586 + NdisZeroMemory(pHdr80211, sizeof(HEADER_802_11));
6587 + pHdr80211->FC.Type = BTYPE_MGMT;
6588 + pHdr80211->FC.SubType = SUBTYPE_ACTION;
6590 + COPY_MAC_ADDR(pHdr80211->Addr1, Addr1);
6591 + COPY_MAC_ADDR(pHdr80211->Addr2, Addr2);
6592 + COPY_MAC_ADDR(pHdr80211->Addr3, Addr3);
6595 +VOID BarHeaderInit(
6596 + IN PRTMP_ADAPTER pAd,
6597 + IN OUT PFRAME_BAR pCntlBar,
6601 +// USHORT Duration;
6603 + NdisZeroMemory(pCntlBar, sizeof(FRAME_BAR));
6604 + pCntlBar->FC.Type = BTYPE_CNTL;
6605 + pCntlBar->FC.SubType = SUBTYPE_BLOCK_ACK_REQ;
6606 + pCntlBar->BarControl.MTID = 0;
6607 + pCntlBar->BarControl.Compressed = 1;
6608 + pCntlBar->BarControl.ACKPolicy = 0;
6611 + pCntlBar->Duration = 16 + RTMPCalcDuration(pAd, RATE_1, sizeof(FRAME_BA));
6613 + COPY_MAC_ADDR(pCntlBar->Addr1, pDA);
6614 + COPY_MAC_ADDR(pCntlBar->Addr2, pSA);
6619 + ==========================================================================
6621 + Insert Category and action code into the action frame.
6624 + 1. frame buffer pointer.
6626 + 3. category code of the frame.
6627 + 4. action code of the frame.
6630 + ==========================================================================
6632 +VOID InsertActField(
6633 + IN PRTMP_ADAPTER pAd,
6634 + OUT PUCHAR pFrameBuf,
6635 + OUT PULONG pFrameLen,
6636 + IN UINT8 Category,
6641 + MakeOutgoingFrame( pFrameBuf, &TempLen,
6646 + *pFrameLen = *pFrameLen + TempLen;
6651 +++ b/drivers/staging/rt3070/common/ba_action.c
6654 + *************************************************************************
6655 + * Ralink Tech Inc.
6656 + * 5F., No.36, Taiyuan St., Jhubei City,
6657 + * Hsinchu County 302,
6660 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
6662 + * This program is free software; you can redistribute it and/or modify *
6663 + * it under the terms of the GNU General Public License as published by *
6664 + * the Free Software Foundation; either version 2 of the License, or *
6665 + * (at your option) any later version. *
6667 + * This program is distributed in the hope that it will be useful, *
6668 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
6669 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
6670 + * GNU General Public License for more details. *
6672 + * You should have received a copy of the GNU General Public License *
6673 + * along with this program; if not, write to the *
6674 + * Free Software Foundation, Inc., *
6675 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
6677 + *************************************************************************
6681 +#ifdef DOT11_N_SUPPORT
6683 +#include "../rt_config.h"
6687 +#define BA_ORI_INIT_SEQ (pEntry->TxSeq[TID]) //1 // inital sequence number of BA session
6689 +#define ORI_SESSION_MAX_RETRY 8
6690 +#define ORI_BA_SESSION_TIMEOUT (2000) // ms
6691 +#define REC_BA_SESSION_IDLE_TIMEOUT (1000) // ms
6693 +#define REORDERING_PACKET_TIMEOUT ((100 * HZ)/1000) // system ticks -- 100 ms
6694 +#define MAX_REORDERING_PACKET_TIMEOUT ((3000 * HZ)/1000) // system ticks -- 100 ms
6696 +#define RESET_RCV_SEQ (0xFFFF)
6698 +static void ba_mpdu_blk_free(PRTMP_ADAPTER pAd, struct reordering_mpdu *mpdu_blk);
6701 +BA_ORI_ENTRY *BATableAllocOriEntry(
6702 + IN PRTMP_ADAPTER pAd,
6705 +BA_REC_ENTRY *BATableAllocRecEntry(
6706 + IN PRTMP_ADAPTER pAd,
6709 +VOID BAOriSessionSetupTimeout(
6710 + IN PVOID SystemSpecific1,
6711 + IN PVOID FunctionContext,
6712 + IN PVOID SystemSpecific2,
6713 + IN PVOID SystemSpecific3);
6715 +VOID BARecSessionIdleTimeout(
6716 + IN PVOID SystemSpecific1,
6717 + IN PVOID FunctionContext,
6718 + IN PVOID SystemSpecific2,
6719 + IN PVOID SystemSpecific3);
6722 +BUILD_TIMER_FUNCTION(BAOriSessionSetupTimeout);
6723 +BUILD_TIMER_FUNCTION(BARecSessionIdleTimeout);
6725 +#define ANNOUNCE_REORDERING_PACKET(_pAd, _mpdu_blk) \
6726 + Announce_Reordering_Packet(_pAd, _mpdu_blk);
6728 +VOID BA_MaxWinSizeReasign(
6729 + IN PRTMP_ADAPTER pAd,
6730 + IN MAC_TABLE_ENTRY *pEntryPeer,
6731 + OUT UCHAR *pWinSize)
6736 + if (pAd->MACVersion >= RALINK_2883_VERSION) // 3*3
6738 + if (pAd->MACVersion >= RALINK_3070_VERSION)
6740 + if (pEntryPeer->WepStatus != Ndis802_11EncryptionDisabled)
6741 + MaxSize = 7; // for non-open mode
6748 + else if (pAd->MACVersion >= RALINK_2880E_VERSION) // 2880 e
6750 + if (pEntryPeer->WepStatus != Ndis802_11EncryptionDisabled)
6751 + MaxSize = 7; // for non-open mode
6758 + DBGPRINT(RT_DEBUG_TRACE, ("ba> Win Size = %d, Max Size = %d\n",
6759 + *pWinSize, MaxSize));
6761 + if ((*pWinSize) > MaxSize)
6763 + DBGPRINT(RT_DEBUG_TRACE, ("ba> reassign max win size from %d to %d\n",
6764 + *pWinSize, MaxSize));
6766 + *pWinSize = MaxSize;
6770 +void Announce_Reordering_Packet(IN PRTMP_ADAPTER pAd,
6771 + IN struct reordering_mpdu *mpdu)
6773 + PNDIS_PACKET pPacket;
6775 + pPacket = mpdu->pPacket;
6780 + BA_Reorder_AMSDU_Annnounce(pAd, pPacket);
6785 + // pass this 802.3 packet to upper layer or forward this packet to WM directly
6788 +#ifdef CONFIG_STA_SUPPORT
6789 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
6790 + ANNOUNCE_OR_FORWARD_802_3_PACKET(pAd, pPacket, RTMP_GET_PACKET_IF(pPacket));
6791 +#endif // CONFIG_STA_SUPPORT //
6796 + * Insert a reordering mpdu into sorted linked list by sequence no.
6798 +BOOLEAN ba_reordering_mpdu_insertsorted(struct reordering_list *list, struct reordering_mpdu *mpdu)
6801 + struct reordering_mpdu **ppScan = &list->next;
6803 + while (*ppScan != NULL)
6805 + if (SEQ_SMALLER((*ppScan)->Sequence, mpdu->Sequence, MAXSEQ))
6807 + ppScan = &(*ppScan)->next;
6809 + else if ((*ppScan)->Sequence == mpdu->Sequence)
6811 + /* give up this duplicated frame */
6816 + /* find position */
6821 + mpdu->next = *ppScan;
6829 + * caller lock critical section if necessary
6831 +static inline void ba_enqueue(struct reordering_list *list, struct reordering_mpdu *mpdu_blk)
6834 + mpdu_blk->next = list->next;
6835 + list->next = mpdu_blk;
6839 + * caller lock critical section if necessary
6841 +static inline struct reordering_mpdu * ba_dequeue(struct reordering_list *list)
6843 + struct reordering_mpdu *mpdu_blk = NULL;
6850 + mpdu_blk = list->next;
6853 + list->next = mpdu_blk->next;
6854 + mpdu_blk->next = NULL;
6861 +static inline struct reordering_mpdu *ba_reordering_mpdu_dequeue(struct reordering_list *list)
6863 + return(ba_dequeue(list));
6867 +static inline struct reordering_mpdu *ba_reordering_mpdu_probe(struct reordering_list *list)
6871 + return(list->next);
6876 + * free all resource for reordering mechanism
6878 +void ba_reordering_resource_release(PRTMP_ADAPTER pAd)
6881 + PBA_REC_ENTRY pBAEntry;
6882 + struct reordering_mpdu *mpdu_blk;
6885 + Tab = &pAd->BATable;
6887 + /* I. release all pending reordering packet */
6888 + NdisAcquireSpinLock(&pAd->BATabLock);
6889 + for (i = 0; i < MAX_LEN_OF_BA_REC_TABLE; i++)
6891 + pBAEntry = &Tab->BARecEntry[i];
6892 + if (pBAEntry->REC_BA_Status != Recipient_NONE)
6894 + while ((mpdu_blk = ba_reordering_mpdu_dequeue(&pBAEntry->list)))
6896 + ASSERT(mpdu_blk->pPacket);
6897 + RELEASE_NDIS_PACKET(pAd, mpdu_blk->pPacket, NDIS_STATUS_FAILURE);
6898 + ba_mpdu_blk_free(pAd, mpdu_blk);
6902 + NdisReleaseSpinLock(&pAd->BATabLock);
6904 + ASSERT(pBAEntry->list.qlen == 0);
6905 + /* II. free memory of reordering mpdu table */
6906 + NdisAcquireSpinLock(&pAd->mpdu_blk_pool.lock);
6907 + os_free_mem(pAd, pAd->mpdu_blk_pool.mem);
6908 + NdisReleaseSpinLock(&pAd->mpdu_blk_pool.lock);
6914 + * Allocate all resource for reordering mechanism
6916 +BOOLEAN ba_reordering_resource_init(PRTMP_ADAPTER pAd, int num)
6920 + struct reordering_mpdu *mpdu_blk;
6921 + struct reordering_list *freelist;
6923 + /* allocate spinlock */
6924 + NdisAllocateSpinLock(&pAd->mpdu_blk_pool.lock);
6926 + /* initialize freelist */
6927 + freelist = &pAd->mpdu_blk_pool.freelist;
6928 + freelist->next = NULL;
6929 + freelist->qlen = 0;
6931 + DBGPRINT(RT_DEBUG_TRACE, ("Allocate %d memory for BA reordering\n", (UINT32)(num*sizeof(struct reordering_mpdu))));
6933 + /* allocate number of mpdu_blk memory */
6934 + os_alloc_mem(pAd, (PUCHAR *)&mem, (num*sizeof(struct reordering_mpdu)));
6936 + pAd->mpdu_blk_pool.mem = mem;
6940 + DBGPRINT(RT_DEBUG_ERROR, ("Can't Allocate Memory for BA Reordering\n"));
6944 + /* build mpdu_blk free list */
6945 + for (i=0; i<num; i++)
6947 + /* get mpdu_blk */
6948 + mpdu_blk = (struct reordering_mpdu *) mem;
6949 + /* initial mpdu_blk */
6950 + NdisZeroMemory(mpdu_blk, sizeof(struct reordering_mpdu));
6951 + /* next mpdu_blk */
6952 + mem += sizeof(struct reordering_mpdu);
6953 + /* insert mpdu_blk into freelist */
6954 + ba_enqueue(freelist, mpdu_blk);
6960 +//static int blk_count=0; // sample take off, no use
6962 +static struct reordering_mpdu *ba_mpdu_blk_alloc(PRTMP_ADAPTER pAd)
6964 + struct reordering_mpdu *mpdu_blk;
6966 + NdisAcquireSpinLock(&pAd->mpdu_blk_pool.lock);
6967 + mpdu_blk = ba_dequeue(&pAd->mpdu_blk_pool.freelist);
6971 + /* reset mpdu_blk */
6972 + NdisZeroMemory(mpdu_blk, sizeof(struct reordering_mpdu));
6974 + NdisReleaseSpinLock(&pAd->mpdu_blk_pool.lock);
6978 +static void ba_mpdu_blk_free(PRTMP_ADAPTER pAd, struct reordering_mpdu *mpdu_blk)
6982 + NdisAcquireSpinLock(&pAd->mpdu_blk_pool.lock);
6984 + ba_enqueue(&pAd->mpdu_blk_pool.freelist, mpdu_blk);
6985 + NdisReleaseSpinLock(&pAd->mpdu_blk_pool.lock);
6989 +static USHORT ba_indicate_reordering_mpdus_in_order(
6990 + IN PRTMP_ADAPTER pAd,
6991 + IN PBA_REC_ENTRY pBAEntry,
6992 + IN USHORT StartSeq)
6994 + struct reordering_mpdu *mpdu_blk;
6995 + USHORT LastIndSeq = RESET_RCV_SEQ;
6997 + NdisAcquireSpinLock(&pBAEntry->RxReRingLock);
6999 + while ((mpdu_blk = ba_reordering_mpdu_probe(&pBAEntry->list)))
7001 + /* find in-order frame */
7002 + if (!SEQ_STEPONE(mpdu_blk->Sequence, StartSeq, MAXSEQ))
7006 + /* dequeue in-order frame from reodering list */
7007 + mpdu_blk = ba_reordering_mpdu_dequeue(&pBAEntry->list);
7008 + /* pass this frame up */
7009 + ANNOUNCE_REORDERING_PACKET(pAd, mpdu_blk);
7010 + /* move to next sequence */
7011 + StartSeq = mpdu_blk->Sequence;
7012 + LastIndSeq = StartSeq;
7013 + /* free mpdu_blk */
7014 + ba_mpdu_blk_free(pAd, mpdu_blk);
7017 + NdisReleaseSpinLock(&pBAEntry->RxReRingLock);
7019 + /* update last indicated sequence */
7020 + return LastIndSeq;
7023 +static void ba_indicate_reordering_mpdus_le_seq(
7024 + IN PRTMP_ADAPTER pAd,
7025 + IN PBA_REC_ENTRY pBAEntry,
7026 + IN USHORT Sequence)
7028 + struct reordering_mpdu *mpdu_blk;
7030 + NdisAcquireSpinLock(&pBAEntry->RxReRingLock);
7031 + while ((mpdu_blk = ba_reordering_mpdu_probe(&pBAEntry->list)))
7033 + /* find in-order frame */
7034 + if ((mpdu_blk->Sequence == Sequence) || SEQ_SMALLER(mpdu_blk->Sequence, Sequence, MAXSEQ))
7036 + /* dequeue in-order frame from reodering list */
7037 + mpdu_blk = ba_reordering_mpdu_dequeue(&pBAEntry->list);
7038 + /* pass this frame up */
7039 + ANNOUNCE_REORDERING_PACKET(pAd, mpdu_blk);
7040 + /* free mpdu_blk */
7041 + ba_mpdu_blk_free(pAd, mpdu_blk);
7048 + NdisReleaseSpinLock(&pBAEntry->RxReRingLock);
7052 +static void ba_refresh_reordering_mpdus(
7053 + IN PRTMP_ADAPTER pAd,
7054 + PBA_REC_ENTRY pBAEntry)
7056 + struct reordering_mpdu *mpdu_blk;
7058 + NdisAcquireSpinLock(&pBAEntry->RxReRingLock);
7060 + /* dequeue in-order frame from reodering list */
7061 + while ((mpdu_blk = ba_reordering_mpdu_dequeue(&pBAEntry->list)))
7063 + /* pass this frame up */
7064 + ANNOUNCE_REORDERING_PACKET(pAd, mpdu_blk);
7066 + pBAEntry->LastIndSeq = mpdu_blk->Sequence;
7067 + ba_mpdu_blk_free(pAd, mpdu_blk);
7069 + /* update last indicated sequence */
7071 + ASSERT(pBAEntry->list.qlen == 0);
7072 + pBAEntry->LastIndSeq = RESET_RCV_SEQ;
7073 + NdisReleaseSpinLock(&pBAEntry->RxReRingLock);
7078 +void ba_flush_reordering_timeout_mpdus(
7079 + IN PRTMP_ADAPTER pAd,
7080 + IN PBA_REC_ENTRY pBAEntry,
7086 +// if ((RTMP_TIME_AFTER((unsigned long)Now32, (unsigned long)(pBAEntry->LastIndSeqAtTimer+REORDERING_PACKET_TIMEOUT)) &&
7087 +// (pBAEntry->list.qlen > ((pBAEntry->BAWinSize*7)/8))) //||
7088 +// (RTMP_TIME_AFTER((unsigned long)Now32, (unsigned long)(pBAEntry->LastIndSeqAtTimer+(10*REORDERING_PACKET_TIMEOUT))) &&
7089 +// (pBAEntry->list.qlen > (pBAEntry->BAWinSize/8)))
7090 + if (RTMP_TIME_AFTER((unsigned long)Now32, (unsigned long)(pBAEntry->LastIndSeqAtTimer+(MAX_REORDERING_PACKET_TIMEOUT/6)))
7091 + &&(pBAEntry->list.qlen > 1)
7094 + DBGPRINT(RT_DEBUG_TRACE,("timeout[%d] (%08lx-%08lx = %d > %d): %x, flush all!\n ", pBAEntry->list.qlen, Now32, (pBAEntry->LastIndSeqAtTimer),
7095 + (int)((long) Now32 - (long)(pBAEntry->LastIndSeqAtTimer)), MAX_REORDERING_PACKET_TIMEOUT,
7096 + pBAEntry->LastIndSeq));
7097 + ba_refresh_reordering_mpdus(pAd, pBAEntry);
7098 + pBAEntry->LastIndSeqAtTimer = Now32;
7101 + if (RTMP_TIME_AFTER((unsigned long)Now32, (unsigned long)(pBAEntry->LastIndSeqAtTimer+(REORDERING_PACKET_TIMEOUT)))
7102 + && (pBAEntry->list.qlen > 0)
7105 +// printk("timeout[%d] (%lx-%lx = %d > %d): %x, ", pBAEntry->list.qlen, Now32, (pBAEntry->LastIndSeqAtTimer),
7106 +// (int)((long) Now32 - (long)(pBAEntry->LastIndSeqAtTimer)), REORDERING_PACKET_TIMEOUT,
7107 +// pBAEntry->LastIndSeq);
7109 + // force LastIndSeq to shift to LastIndSeq+1
7111 + Sequence = (pBAEntry->LastIndSeq+1) & MAXSEQ;
7112 + ba_indicate_reordering_mpdus_le_seq(pAd, pBAEntry, Sequence);
7113 + pBAEntry->LastIndSeqAtTimer = Now32;
7114 + pBAEntry->LastIndSeq = Sequence;
7116 + // indicate in-order mpdus
7118 + Sequence = ba_indicate_reordering_mpdus_in_order(pAd, pBAEntry, Sequence);
7119 + if (Sequence != RESET_RCV_SEQ)
7121 + pBAEntry->LastIndSeq = Sequence;
7124 + //printk("%x, flush one!\n", pBAEntry->LastIndSeq);
7131 + * generate ADDBA request to
7132 + * set up BA agreement
7134 +VOID BAOriSessionSetUp(
7135 + IN PRTMP_ADAPTER pAd,
7136 + IN MAC_TABLE_ENTRY *pEntry,
7138 + IN USHORT TimeOut,
7139 + IN ULONG DelayTime,
7140 + IN BOOLEAN isForced)
7143 + //MLME_ADDBA_REQ_STRUCT AddbaReq;
7144 + BA_ORI_ENTRY *pBAEntry = NULL;
7146 + BOOLEAN Cancelled;
7148 + if ((pAd->CommonCfg.BACapability.field.AutoBA != TRUE) && (isForced == FALSE))
7151 + // if this entry is limited to use legacy tx mode, it doesn't generate BA.
7152 + if (RTMPStaFixedTxMode(pAd, pEntry) != FIXED_TXMODE_HT)
7155 + if ((pEntry->BADeclineBitmap & (1<<TID)) && (isForced == FALSE))
7157 + // try again after 3 secs
7159 +// printk("DeCline BA from Peer\n");
7164 + Idx = pEntry->BAOriWcidArray[TID];
7167 + // allocate a BA session
7168 + pBAEntry = BATableAllocOriEntry(pAd, &Idx);
7169 + if (pBAEntry == NULL)
7171 + DBGPRINT(RT_DEBUG_TRACE,("ADDBA - MlmeADDBAAction() allocate BA session failed \n"));
7177 + pBAEntry =&pAd->BATable.BAOriEntry[Idx];
7180 + if (pBAEntry->ORI_BA_Status >= Originator_WaitRes)
7185 + pEntry->BAOriWcidArray[TID] = Idx;
7187 + // Initialize BA session
7188 + pBAEntry->ORI_BA_Status = Originator_WaitRes;
7189 + pBAEntry->Wcid = pEntry->Aid;
7190 + pBAEntry->BAWinSize = pAd->CommonCfg.BACapability.field.RxBAWinLimit;
7191 + pBAEntry->Sequence = BA_ORI_INIT_SEQ;
7192 + pBAEntry->Token = 1; // (2008-01-21) Jan Lee recommends it - this token can't be 0
7193 + pBAEntry->TID = TID;
7194 + pBAEntry->TimeOutValue = TimeOut;
7195 + pBAEntry->pAdapter = pAd;
7197 + DBGPRINT(RT_DEBUG_TRACE,("Send AddBA to %02x:%02x:%02x:%02x:%02x:%02x Tid:%d isForced:%d Wcid:%d\n"
7198 + ,pEntry->Addr[0],pEntry->Addr[1],pEntry->Addr[2]
7199 + ,pEntry->Addr[3],pEntry->Addr[4],pEntry->Addr[5]
7200 + ,TID,isForced,pEntry->Aid));
7202 + if (!(pEntry->TXBAbitmap & (1<<TID)))
7204 + RTMPInitTimer(pAd, &pBAEntry->ORIBATimer, GET_TIMER_FUNCTION(BAOriSessionSetupTimeout), pBAEntry, FALSE);
7207 + RTMPCancelTimer(&pBAEntry->ORIBATimer, &Cancelled);
7209 + // set timer to send ADDBA request
7210 + RTMPSetTimer(&pBAEntry->ORIBATimer, DelayTime);
7213 +VOID BAOriSessionAdd(
7214 + IN PRTMP_ADAPTER pAd,
7215 + IN MAC_TABLE_ENTRY *pEntry,
7216 + IN PFRAME_ADDBA_RSP pFrame)
7218 + BA_ORI_ENTRY *pBAEntry = NULL;
7219 + BOOLEAN Cancelled;
7222 + PUCHAR pOutBuffer2 = NULL;
7223 + NDIS_STATUS NStatus;
7225 + FRAME_BAR FrameBar;
7227 + TID = pFrame->BaParm.TID;
7228 + Idx = pEntry->BAOriWcidArray[TID];
7229 + pBAEntry =&pAd->BATable.BAOriEntry[Idx];
7231 + // Start fill in parameters.
7232 + if ((Idx !=0) && (pBAEntry->TID == TID) && (pBAEntry->ORI_BA_Status == Originator_WaitRes))
7234 + pBAEntry->BAWinSize = min(pBAEntry->BAWinSize, ((UCHAR)pFrame->BaParm.BufSize));
7235 + BA_MaxWinSizeReasign(pAd, pEntry, &pBAEntry->BAWinSize);
7237 + pBAEntry->TimeOutValue = pFrame->TimeOutValue;
7238 + pBAEntry->ORI_BA_Status = Originator_Done;
7239 + // reset sequence number
7240 + pBAEntry->Sequence = BA_ORI_INIT_SEQ;
7241 + // Set Bitmap flag.
7242 + pEntry->TXBAbitmap |= (1<<TID);
7243 + RTMPCancelTimer(&pBAEntry->ORIBATimer, &Cancelled);
7245 + pBAEntry->ORIBATimer.TimerValue = 0; //pFrame->TimeOutValue;
7247 + DBGPRINT(RT_DEBUG_TRACE,("%s : TXBAbitmap = %x, BAWinSize = %d, TimeOut = %ld\n", __FUNCTION__, pEntry->TXBAbitmap,
7248 + pBAEntry->BAWinSize, pBAEntry->ORIBATimer.TimerValue));
7251 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer2); //Get an unused nonpaged memory
7252 + if (NStatus != NDIS_STATUS_SUCCESS)
7254 + DBGPRINT(RT_DEBUG_TRACE,("BA - BAOriSessionAdd() allocate memory failed \n"));
7259 +#ifdef CONFIG_STA_SUPPORT
7260 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
7261 + BarHeaderInit(pAd, &FrameBar, pAd->MacTab.Content[pBAEntry->Wcid].Addr, pAd->CurrentAddress);
7262 +#endif // CONFIG_STA_SUPPORT //
7264 + FrameBar.StartingSeq.field.FragNum = 0; // make sure sequence not clear in DEL function.
7265 + FrameBar.StartingSeq.field.StartSeq = pBAEntry->Sequence; // make sure sequence not clear in DEL funciton.
7266 + FrameBar.BarControl.TID = pBAEntry->TID; // make sure sequence not clear in DEL funciton.
7267 + MakeOutgoingFrame(pOutBuffer2, &FrameLen,
7268 + sizeof(FRAME_BAR), &FrameBar,
7270 + MiniportMMRequest(pAd, QID_AC_BE, pOutBuffer2, FrameLen);
7271 + MlmeFreeMemory(pAd, pOutBuffer2);
7274 + if (pBAEntry->ORIBATimer.TimerValue)
7275 + RTMPSetTimer(&pBAEntry->ORIBATimer, pBAEntry->ORIBATimer.TimerValue); // in mSec
7279 +BOOLEAN BARecSessionAdd(
7280 + IN PRTMP_ADAPTER pAd,
7281 + IN MAC_TABLE_ENTRY *pEntry,
7282 + IN PFRAME_ADDBA_REQ pFrame)
7284 + BA_REC_ENTRY *pBAEntry = NULL;
7285 + BOOLEAN Status = TRUE;
7286 + BOOLEAN Cancelled;
7297 + TID = pFrame->BaParm.TID;
7299 + BAWinSize = min(((UCHAR)pFrame->BaParm.BufSize), (UCHAR)pAd->CommonCfg.BACapability.field.RxBAWinLimit);
7302 + if (BAWinSize == 0)
7307 + Idx = pEntry->BARecWcidArray[TID];
7312 + pBAEntry = BATableAllocRecEntry(pAd, &Idx);
7316 + pBAEntry = &pAd->BATable.BARecEntry[Idx];
7317 + // flush all pending reordering mpdus
7318 + ba_refresh_reordering_mpdus(pAd, pBAEntry);
7321 + DBGPRINT(RT_DEBUG_TRACE,("%s(%ld): Idx = %d, BAWinSize(req %d) = %d\n", __FUNCTION__, pAd->BATable.numAsRecipient, Idx,
7322 + pFrame->BaParm.BufSize, BAWinSize));
7324 + // Start fill in parameters.
7325 + if (pBAEntry != NULL)
7327 + ASSERT(pBAEntry->list.qlen == 0);
7329 + pBAEntry->REC_BA_Status = Recipient_HandleRes;
7330 + pBAEntry->BAWinSize = BAWinSize;
7331 + pBAEntry->Wcid = pEntry->Aid;
7332 + pBAEntry->TID = TID;
7333 + pBAEntry->TimeOutValue = pFrame->TimeOutValue;
7334 + pBAEntry->REC_BA_Status = Recipient_Accept;
7335 + // initial sequence number
7336 + pBAEntry->LastIndSeq = RESET_RCV_SEQ; //pFrame->BaStartSeq.field.StartSeq;
7338 + printk("Start Seq = %08x\n", pFrame->BaStartSeq.field.StartSeq);
7340 + if (pEntry->RXBAbitmap & (1<<TID))
7342 + RTMPCancelTimer(&pBAEntry->RECBATimer, &Cancelled);
7346 + RTMPInitTimer(pAd, &pBAEntry->RECBATimer, GET_TIMER_FUNCTION(BARecSessionIdleTimeout), pBAEntry, TRUE);
7349 + // Set Bitmap flag.
7350 + pEntry->RXBAbitmap |= (1<<TID);
7351 + pEntry->BARecWcidArray[TID] = Idx;
7353 + pEntry->BADeclineBitmap &= ~(1<<TID);
7355 + // Set BA session mask in WCID table.
7356 + RT28XX_ADD_BA_SESSION_TO_ASIC(pAd, pEntry->Aid, TID);
7358 + DBGPRINT(RT_DEBUG_TRACE,("MACEntry[%d]RXBAbitmap = 0x%x. BARecWcidArray=%d\n",
7359 + pEntry->Aid, pEntry->RXBAbitmap, pEntry->BARecWcidArray[TID]));
7364 + DBGPRINT(RT_DEBUG_TRACE,("Can't Accept ADDBA for %02x:%02x:%02x:%02x:%02x:%02x TID = %d\n",
7365 + PRINT_MAC(pEntry->Addr), TID));
7371 +BA_REC_ENTRY *BATableAllocRecEntry(
7372 + IN PRTMP_ADAPTER pAd,
7376 + BA_REC_ENTRY *pBAEntry = NULL;
7379 + NdisAcquireSpinLock(&pAd->BATabLock);
7381 + if (pAd->BATable.numAsRecipient >= MAX_BARECI_SESSION)
7383 + printk("BA Recipeint Session (%ld) > %d\n", pAd->BATable.numAsRecipient,
7384 + MAX_BARECI_SESSION);
7388 + // reserve idx 0 to identify BAWcidArray[TID] as empty
7389 + for (i=1; i < MAX_LEN_OF_BA_REC_TABLE; i++)
7391 + pBAEntry =&pAd->BATable.BARecEntry[i];
7392 + if ((pBAEntry->REC_BA_Status == Recipient_NONE))
7395 + pAd->BATable.numAsRecipient++;
7396 + pBAEntry->REC_BA_Status = Recipient_USED;
7403 + NdisReleaseSpinLock(&pAd->BATabLock);
7407 +BA_ORI_ENTRY *BATableAllocOriEntry(
7408 + IN PRTMP_ADAPTER pAd,
7412 + BA_ORI_ENTRY *pBAEntry = NULL;
7414 + NdisAcquireSpinLock(&pAd->BATabLock);
7416 + if (pAd->BATable.numAsOriginator >= (MAX_LEN_OF_BA_ORI_TABLE))
7421 + // reserve idx 0 to identify BAWcidArray[TID] as empty
7422 + for (i=1; i<MAX_LEN_OF_BA_ORI_TABLE; i++)
7424 + pBAEntry =&pAd->BATable.BAOriEntry[i];
7425 + if ((pBAEntry->ORI_BA_Status == Originator_NONE))
7428 + pAd->BATable.numAsOriginator++;
7429 + pBAEntry->ORI_BA_Status = Originator_USED;
7430 + pBAEntry->pAdapter = pAd;
7437 + NdisReleaseSpinLock(&pAd->BATabLock);
7442 +VOID BATableFreeOriEntry(
7443 + IN PRTMP_ADAPTER pAd,
7446 + BA_ORI_ENTRY *pBAEntry = NULL;
7447 + MAC_TABLE_ENTRY *pEntry;
7450 + if ((Idx == 0) || (Idx >= MAX_LEN_OF_BA_ORI_TABLE))
7453 + pBAEntry =&pAd->BATable.BAOriEntry[Idx];
7455 + if (pBAEntry->ORI_BA_Status != Originator_NONE)
7457 + pEntry = &pAd->MacTab.Content[pBAEntry->Wcid];
7458 + pEntry->BAOriWcidArray[pBAEntry->TID] = 0;
7461 + NdisAcquireSpinLock(&pAd->BATabLock);
7462 + if (pBAEntry->ORI_BA_Status == Originator_Done)
7464 + pEntry->TXBAbitmap &= (~(1<<(pBAEntry->TID) ));
7465 + DBGPRINT(RT_DEBUG_TRACE, ("BATableFreeOriEntry numAsOriginator= %ld\n", pAd->BATable.numAsRecipient));
7466 + // Erase Bitmap flag.
7469 + ASSERT(pAd->BATable.numAsOriginator != 0);
7471 + pAd->BATable.numAsOriginator -= 1;
7473 + pBAEntry->ORI_BA_Status = Originator_NONE;
7474 + pBAEntry->Token = 0;
7475 + NdisReleaseSpinLock(&pAd->BATabLock);
7480 +VOID BATableFreeRecEntry(
7481 + IN PRTMP_ADAPTER pAd,
7484 + BA_REC_ENTRY *pBAEntry = NULL;
7485 + MAC_TABLE_ENTRY *pEntry;
7488 + if ((Idx == 0) || (Idx >= MAX_LEN_OF_BA_REC_TABLE))
7491 + pBAEntry =&pAd->BATable.BARecEntry[Idx];
7493 + if (pBAEntry->REC_BA_Status != Recipient_NONE)
7495 + pEntry = &pAd->MacTab.Content[pBAEntry->Wcid];
7496 + pEntry->BARecWcidArray[pBAEntry->TID] = 0;
7498 + NdisAcquireSpinLock(&pAd->BATabLock);
7500 + ASSERT(pAd->BATable.numAsRecipient != 0);
7502 + pAd->BATable.numAsRecipient -= 1;
7504 + pBAEntry->REC_BA_Status = Recipient_NONE;
7505 + NdisReleaseSpinLock(&pAd->BATabLock);
7510 +VOID BAOriSessionTearDown(
7511 + IN OUT PRTMP_ADAPTER pAd,
7514 + IN BOOLEAN bPassive,
7515 + IN BOOLEAN bForceSend)
7518 + BA_ORI_ENTRY *pBAEntry;
7519 + BOOLEAN Cancelled;
7521 + if (Wcid >= MAX_LEN_OF_MAC_TABLE)
7527 + // Locate corresponding BA Originator Entry in BA Table with the (pAddr,TID).
7529 + Idx = pAd->MacTab.Content[Wcid].BAOriWcidArray[TID];
7530 + if ((Idx == 0) || (Idx >= MAX_LEN_OF_BA_ORI_TABLE))
7532 + if (bForceSend == TRUE)
7534 + // force send specified TID DelBA
7535 + MLME_DELBA_REQ_STRUCT DelbaReq;
7536 + MLME_QUEUE_ELEM *Elem = (MLME_QUEUE_ELEM *) kmalloc(sizeof(MLME_QUEUE_ELEM), MEM_ALLOC_FLAG);
7538 + NdisZeroMemory(&DelbaReq, sizeof(DelbaReq));
7539 + NdisZeroMemory(Elem, sizeof(MLME_QUEUE_ELEM));
7541 + COPY_MAC_ADDR(DelbaReq.Addr, pAd->MacTab.Content[Wcid].Addr);
7542 + DelbaReq.Wcid = Wcid;
7543 + DelbaReq.TID = TID;
7544 + DelbaReq.Initiator = ORIGINATOR;
7546 + Elem->MsgLen = sizeof(DelbaReq);
7547 + NdisMoveMemory(Elem->Msg, &DelbaReq, sizeof(DelbaReq));
7548 + MlmeDELBAAction(pAd, Elem);
7551 + MlmeEnqueue(pAd, ACTION_STATE_MACHINE, MT2_MLME_ORI_DELBA_CATE, sizeof(MLME_DELBA_REQ_STRUCT), (PVOID)&DelbaReq);
7552 + RT28XX_MLME_HANDLER(pAd);
7559 + DBGPRINT(RT_DEBUG_TRACE,("%s===>Wcid=%d.TID=%d \n", __FUNCTION__, Wcid, TID));
7561 + pBAEntry = &pAd->BATable.BAOriEntry[Idx];
7562 + DBGPRINT(RT_DEBUG_TRACE,("\t===>Idx = %ld, Wcid=%d.TID=%d, ORI_BA_Status = %d \n", Idx, Wcid, TID, pBAEntry->ORI_BA_Status));
7564 + // Prepare DelBA action frame and send to the peer.
7566 + if ((bPassive == FALSE) && (TID == pBAEntry->TID) && (pBAEntry->ORI_BA_Status == Originator_Done))
7568 + MLME_DELBA_REQ_STRUCT DelbaReq;
7569 + MLME_QUEUE_ELEM *Elem = (MLME_QUEUE_ELEM *) kmalloc(sizeof(MLME_QUEUE_ELEM), MEM_ALLOC_FLAG);
7571 + NdisZeroMemory(&DelbaReq, sizeof(DelbaReq));
7572 + NdisZeroMemory(Elem, sizeof(MLME_QUEUE_ELEM));
7574 + COPY_MAC_ADDR(DelbaReq.Addr, pAd->MacTab.Content[Wcid].Addr);
7575 + DelbaReq.Wcid = Wcid;
7576 + DelbaReq.TID = pBAEntry->TID;
7577 + DelbaReq.Initiator = ORIGINATOR;
7579 + Elem->MsgLen = sizeof(DelbaReq);
7580 + NdisMoveMemory(Elem->Msg, &DelbaReq, sizeof(DelbaReq));
7581 + MlmeDELBAAction(pAd, Elem);
7584 + MlmeEnqueue(pAd, ACTION_STATE_MACHINE, MT2_MLME_ORI_DELBA_CATE, sizeof(MLME_DELBA_REQ_STRUCT), (PVOID)&DelbaReq);
7585 + RT28XX_MLME_HANDLER(pAd);
7588 + RTMPCancelTimer(&pBAEntry->ORIBATimer, &Cancelled);
7589 + BATableFreeOriEntry(pAd, Idx);
7593 + //BAOriSessionSetUp(pAd, &pAd->MacTab.Content[Wcid], TID, 0, 10000, TRUE);
7597 +VOID BARecSessionTearDown(
7598 + IN OUT PRTMP_ADAPTER pAd,
7601 + IN BOOLEAN bPassive)
7604 + BA_REC_ENTRY *pBAEntry;
7606 + if (Wcid >= MAX_LEN_OF_MAC_TABLE)
7612 + // Locate corresponding BA Originator Entry in BA Table with the (pAddr,TID).
7614 + Idx = pAd->MacTab.Content[Wcid].BARecWcidArray[TID];
7618 + DBGPRINT(RT_DEBUG_TRACE,("%s===>Wcid=%d.TID=%d \n", __FUNCTION__, Wcid, TID));
7621 + pBAEntry = &pAd->BATable.BARecEntry[Idx];
7622 + DBGPRINT(RT_DEBUG_TRACE,("\t===>Idx = %ld, Wcid=%d.TID=%d, REC_BA_Status = %d \n", Idx, Wcid, TID, pBAEntry->REC_BA_Status));
7624 + // Prepare DelBA action frame and send to the peer.
7626 + if ((TID == pBAEntry->TID) && (pBAEntry->REC_BA_Status == Recipient_Accept))
7628 + MLME_DELBA_REQ_STRUCT DelbaReq;
7629 + BOOLEAN Cancelled;
7630 + MLME_QUEUE_ELEM *Elem = (MLME_QUEUE_ELEM *) kmalloc(sizeof(MLME_QUEUE_ELEM), MEM_ALLOC_FLAG);
7634 + RTMPCancelTimer(&pBAEntry->RECBATimer, &Cancelled);
7637 + // 1. Send DELBA Action Frame
7639 + if (bPassive == FALSE)
7641 + NdisZeroMemory(&DelbaReq, sizeof(DelbaReq));
7642 + NdisZeroMemory(Elem, sizeof(MLME_QUEUE_ELEM));
7644 + COPY_MAC_ADDR(DelbaReq.Addr, pAd->MacTab.Content[Wcid].Addr);
7645 + DelbaReq.Wcid = Wcid;
7646 + DelbaReq.TID = TID;
7647 + DelbaReq.Initiator = RECIPIENT;
7649 + Elem->MsgLen = sizeof(DelbaReq);
7650 + NdisMoveMemory(Elem->Msg, &DelbaReq, sizeof(DelbaReq));
7651 + MlmeDELBAAction(pAd, Elem);
7654 + MlmeEnqueue(pAd, ACTION_STATE_MACHINE, MT2_MLME_ORI_DELBA_CATE, sizeof(MLME_DELBA_REQ_STRUCT), (PVOID)&DelbaReq);
7655 + RT28XX_MLME_HANDLER(pAd);
7661 + // 2. Free resource of BA session
7663 + // flush all pending reordering mpdus
7664 + ba_refresh_reordering_mpdus(pAd, pBAEntry);
7666 + NdisAcquireSpinLock(&pAd->BATabLock);
7668 + // Erase Bitmap flag.
7669 + pBAEntry->LastIndSeq = RESET_RCV_SEQ;
7670 + pBAEntry->BAWinSize = 0;
7671 + // Erase Bitmap flag at software mactable
7672 + pAd->MacTab.Content[Wcid].RXBAbitmap &= (~(1<<(pBAEntry->TID)));
7673 + pAd->MacTab.Content[Wcid].BARecWcidArray[TID] = 0;
7675 + RT28XX_DEL_BA_SESSION_FROM_ASIC(pAd, Wcid, TID);
7677 + NdisReleaseSpinLock(&pAd->BATabLock);
7681 + BATableFreeRecEntry(pAd, Idx);
7684 +VOID BASessionTearDownALL(
7685 + IN OUT PRTMP_ADAPTER pAd,
7690 + for (i=0; i<NUM_OF_TID; i++)
7692 + BAOriSessionTearDown(pAd, Wcid, i, FALSE, FALSE);
7693 + BARecSessionTearDown(pAd, Wcid, i, FALSE);
7699 + ==========================================================================
7701 + Retry sending ADDBA Reqest.
7703 + IRQL = DISPATCH_LEVEL
7706 + p8023Header: if this is already 802.3 format, p8023Header is NULL
7708 + Return : TRUE if put into rx reordering buffer, shouldn't indicaterxhere.
7709 + FALSE , then continue indicaterx at this moment.
7710 + ==========================================================================
7712 +VOID BAOriSessionSetupTimeout(
7713 + IN PVOID SystemSpecific1,
7714 + IN PVOID FunctionContext,
7715 + IN PVOID SystemSpecific2,
7716 + IN PVOID SystemSpecific3)
7718 + BA_ORI_ENTRY *pBAEntry = (BA_ORI_ENTRY *)FunctionContext;
7719 + MAC_TABLE_ENTRY *pEntry;
7720 + PRTMP_ADAPTER pAd;
7722 + if (pBAEntry == NULL)
7725 + pAd = pBAEntry->pAdapter;
7727 +#ifdef CONFIG_STA_SUPPORT
7728 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
7730 + // Do nothing if monitor mode is on
7731 + if (MONITOR_ON(pAd))
7734 +#endif // CONFIG_STA_SUPPORT //
7737 + // Nothing to do in ATE mode.
7740 +#endif // RALINK_ATE //
7742 + pEntry = &pAd->MacTab.Content[pBAEntry->Wcid];
7744 + if ((pBAEntry->ORI_BA_Status == Originator_WaitRes) && (pBAEntry->Token < ORI_SESSION_MAX_RETRY))
7746 + MLME_ADDBA_REQ_STRUCT AddbaReq;
7748 + NdisZeroMemory(&AddbaReq, sizeof(AddbaReq));
7749 + COPY_MAC_ADDR(AddbaReq.pAddr, pEntry->Addr);
7750 + AddbaReq.Wcid = (UCHAR)(pEntry->Aid);
7751 + AddbaReq.TID = pBAEntry->TID;
7752 + AddbaReq.BaBufSize = pAd->CommonCfg.BACapability.field.RxBAWinLimit;
7753 + AddbaReq.TimeOutValue = 0;
7754 + AddbaReq.Token = pBAEntry->Token;
7755 + MlmeEnqueue(pAd, ACTION_STATE_MACHINE, MT2_MLME_ADD_BA_CATE, sizeof(MLME_ADDBA_REQ_STRUCT), (PVOID)&AddbaReq);
7756 + RT28XX_MLME_HANDLER(pAd);
7757 + //DBGPRINT(RT_DEBUG_TRACE,("BA Ori Session Timeout(%d) : Send ADD BA again\n", pBAEntry->Token));
7759 + DBGPRINT(RT_DEBUG_TRACE,("BA Ori Session Timeout(%d) to %02x:%02x:%02x:%02x:%02x:%02x Tid:%d Wcid:%d\n"
7761 + ,pEntry->Addr[0],pEntry->Addr[1],pEntry->Addr[2]
7762 + ,pEntry->Addr[3],pEntry->Addr[4],pEntry->Addr[5]
7763 + ,pBAEntry->TID,pEntry->Aid));
7765 + pBAEntry->Token++;
7766 + RTMPSetTimer(&pBAEntry->ORIBATimer, ORI_BA_SESSION_TIMEOUT);
7770 + BATableFreeOriEntry(pAd, pEntry->BAOriWcidArray[pBAEntry->TID]);
7775 + ==========================================================================
7777 + Retry sending ADDBA Reqest.
7779 + IRQL = DISPATCH_LEVEL
7782 + p8023Header: if this is already 802.3 format, p8023Header is NULL
7784 + Return : TRUE if put into rx reordering buffer, shouldn't indicaterxhere.
7785 + FALSE , then continue indicaterx at this moment.
7786 + ==========================================================================
7788 +VOID BARecSessionIdleTimeout(
7789 + IN PVOID SystemSpecific1,
7790 + IN PVOID FunctionContext,
7791 + IN PVOID SystemSpecific2,
7792 + IN PVOID SystemSpecific3)
7795 + BA_REC_ENTRY *pBAEntry = (BA_REC_ENTRY *)FunctionContext;
7796 + PRTMP_ADAPTER pAd;
7799 + if (pBAEntry == NULL)
7802 + if ((pBAEntry->REC_BA_Status == Recipient_Accept))
7804 + NdisGetSystemUpTime(&Now32);
7806 + if (RTMP_TIME_AFTER((unsigned long)Now32, (unsigned long)(pBAEntry->LastIndSeqAtTimer + REC_BA_SESSION_IDLE_TIMEOUT)))
7808 + pAd = pBAEntry->pAdapter;
7809 + // flush all pending reordering mpdus
7810 + ba_refresh_reordering_mpdus(pAd, pBAEntry);
7811 + printk("%ld: REC BA session Timeout\n", Now32);
7817 +VOID PeerAddBAReqAction(
7818 + IN PRTMP_ADAPTER pAd,
7819 + IN MLME_QUEUE_ELEM *Elem)
7826 + FRAME_ADDBA_RSP ADDframe;
7827 + PUCHAR pOutBuffer = NULL;
7828 + NDIS_STATUS NStatus;
7829 + PFRAME_ADDBA_REQ pAddreqFrame = NULL;
7833 + PMAC_TABLE_ENTRY pMacEntry;
7835 + DBGPRINT(RT_DEBUG_TRACE, ("%s ==> (Wcid = %d)\n", __FUNCTION__, Elem->Wcid));
7837 + //hex_dump("AddBAReq", Elem->Msg, Elem->MsgLen);
7839 + //ADDBA Request from unknown peer, ignore this.
7840 + if (Elem->Wcid >= MAX_LEN_OF_MAC_TABLE)
7843 + pMacEntry = &pAd->MacTab.Content[Elem->Wcid];
7844 + DBGPRINT(RT_DEBUG_TRACE,("BA - PeerAddBAReqAction----> \n"));
7845 + ptemp = (PULONG)Elem->Msg;
7846 + //DBGPRINT_RAW(RT_DEBUG_EMU, ("%08x:: %08x:: %08x:: %08x:: %08x:: %08x:: %08x:: %08x:: %08x\n", *(ptemp), *(ptemp+1), *(ptemp+2), *(ptemp+3), *(ptemp+4), *(ptemp+5), *(ptemp+6), *(ptemp+7), *(ptemp+8)));
7848 + if (PeerAddBAReqActionSanity(pAd, Elem->Msg, Elem->MsgLen, pAddr))
7851 + if ((pAd->CommonCfg.bBADecline == FALSE) && IS_HT_STA(pMacEntry))
7853 + pAddreqFrame = (PFRAME_ADDBA_REQ)(&Elem->Msg[0]);
7854 + printk("Rcv Wcid(%d) AddBAReq\n", Elem->Wcid);
7855 + if (BARecSessionAdd(pAd, &pAd->MacTab.Content[Elem->Wcid], pAddreqFrame))
7858 + Status = 38; // more parameters have invalid values
7862 + Status = 37; // the request has been declined.
7866 + if (pAd->MacTab.Content[Elem->Wcid].ValidAsCLI)
7867 + ASSERT(pAd->MacTab.Content[Elem->Wcid].Sst == SST_ASSOC);
7869 + pAddreqFrame = (PFRAME_ADDBA_REQ)(&Elem->Msg[0]);
7870 + // 2. Always send back ADDBA Response
7871 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
7872 + if (NStatus != NDIS_STATUS_SUCCESS)
7874 + DBGPRINT(RT_DEBUG_TRACE,("ACTION - PeerBAAction() allocate memory failed \n"));
7878 + NdisZeroMemory(&ADDframe, sizeof(FRAME_ADDBA_RSP));
7879 + // 2-1. Prepare ADDBA Response frame.
7880 +#ifdef CONFIG_STA_SUPPORT
7881 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
7883 + if (ADHOC_ON(pAd))
7884 + ActHeaderInit(pAd, &ADDframe.Hdr, pAddr, pAd->CurrentAddress, pAd->CommonCfg.Bssid);
7886 + ActHeaderInit(pAd, &ADDframe.Hdr, pAd->CommonCfg.Bssid, pAd->CurrentAddress, pAddr);
7888 +#endif // CONFIG_STA_SUPPORT //
7889 + ADDframe.Category = CATEGORY_BA;
7890 + ADDframe.Action = ADDBA_RESP;
7891 + ADDframe.Token = pAddreqFrame->Token;
7892 + // What is the Status code?? need to check.
7893 + ADDframe.StatusCode = Status;
7894 + ADDframe.BaParm.BAPolicy = IMMED_BA;
7895 + ADDframe.BaParm.AMSDUSupported = 0;
7896 + ADDframe.BaParm.TID = pAddreqFrame->BaParm.TID;
7897 + ADDframe.BaParm.BufSize = min(((UCHAR)pAddreqFrame->BaParm.BufSize), (UCHAR)pAd->CommonCfg.BACapability.field.RxBAWinLimit);
7898 + if (ADDframe.BaParm.BufSize == 0)
7900 + ADDframe.BaParm.BufSize = 64;
7902 + ADDframe.TimeOutValue = 0; //pAddreqFrame->TimeOutValue;
7904 + *(USHORT *)(&ADDframe.BaParm) = cpu2le16(*(USHORT *)(&ADDframe.BaParm));
7905 + ADDframe.StatusCode = cpu2le16(ADDframe.StatusCode);
7906 + ADDframe.TimeOutValue = cpu2le16(ADDframe.TimeOutValue);
7908 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
7909 + sizeof(FRAME_ADDBA_RSP), &ADDframe,
7911 + MiniportMMRequest(pAd, QID_AC_BE, pOutBuffer, FrameLen);
7912 + MlmeFreeMemory(pAd, pOutBuffer);
7914 + DBGPRINT(RT_DEBUG_TRACE, ("%s(%d): TID(%d), BufSize(%d) <== \n", __FUNCTION__, Elem->Wcid, ADDframe.BaParm.TID,
7915 + ADDframe.BaParm.BufSize));
7919 +VOID PeerAddBARspAction(
7920 + IN PRTMP_ADAPTER pAd,
7921 + IN MLME_QUEUE_ELEM *Elem)
7925 + //PUCHAR pOutBuffer = NULL;
7926 + PFRAME_ADDBA_RSP pFrame = NULL;
7927 + //PBA_ORI_ENTRY pBAEntry;
7929 + //ADDBA Response from unknown peer, ignore this.
7930 + if (Elem->Wcid >= MAX_LEN_OF_MAC_TABLE)
7933 + DBGPRINT(RT_DEBUG_TRACE, ("%s ==> Wcid(%d)\n", __FUNCTION__, Elem->Wcid));
7935 + //hex_dump("PeerAddBARspAction()", Elem->Msg, Elem->MsgLen);
7937 + if (PeerAddBARspActionSanity(pAd, Elem->Msg, Elem->MsgLen))
7939 + pFrame = (PFRAME_ADDBA_RSP)(&Elem->Msg[0]);
7941 + DBGPRINT(RT_DEBUG_TRACE, ("\t\t StatusCode = %d\n", pFrame->StatusCode));
7942 + switch (pFrame->StatusCode)
7945 + // I want a BAsession with this peer as an originator.
7946 + BAOriSessionAdd(pAd, &pAd->MacTab.Content[Elem->Wcid], pFrame);
7949 + // check status == USED ???
7950 + BAOriSessionTearDown(pAd, Elem->Wcid, pFrame->BaParm.TID, TRUE, FALSE);
7953 + // Rcv Decline StatusCode
7954 + if ((pFrame->StatusCode == 37)
7955 +#ifdef CONFIG_STA_SUPPORT
7956 + || ((pAd->OpMode == OPMODE_STA) && STA_TGN_WIFI_ON(pAd) && (pFrame->StatusCode != 0))
7957 +#endif // CONFIG_STA_SUPPORT //
7960 + pAd->MacTab.Content[Elem->Wcid].BADeclineBitmap |= 1<<pFrame->BaParm.TID;
7965 +VOID PeerDelBAAction(
7966 + IN PRTMP_ADAPTER pAd,
7967 + IN MLME_QUEUE_ELEM *Elem)
7971 + //PUCHAR pOutBuffer = NULL;
7972 + PFRAME_DELBA_REQ pDelFrame = NULL;
7974 + DBGPRINT(RT_DEBUG_TRACE,("%s ==>\n", __FUNCTION__));
7975 + //DELBA Request from unknown peer, ignore this.
7976 + if (PeerDelBAActionSanity(pAd, Elem->Wcid, Elem->Msg, Elem->MsgLen))
7978 + pDelFrame = (PFRAME_DELBA_REQ)(&Elem->Msg[0]);
7979 + if (pDelFrame->DelbaParm.Initiator == ORIGINATOR)
7981 + DBGPRINT(RT_DEBUG_TRACE,("BA - PeerDelBAAction----> ORIGINATOR\n"));
7982 + BARecSessionTearDown(pAd, Elem->Wcid, pDelFrame->DelbaParm.TID, TRUE);
7986 + DBGPRINT(RT_DEBUG_TRACE,("BA - PeerDelBAAction----> RECIPIENT, Reason = %d\n", pDelFrame->ReasonCode));
7987 + //hex_dump("DelBA Frame", pDelFrame, Elem->MsgLen);
7988 + BAOriSessionTearDown(pAd, Elem->Wcid, pDelFrame->DelbaParm.TID, TRUE, FALSE);
7994 +BOOLEAN CntlEnqueueForRecv(
7995 + IN PRTMP_ADAPTER pAd,
7998 + IN PFRAME_BA_REQ pMsg)
8000 + PFRAME_BA_REQ pFrame = pMsg;
8001 + //PRTMP_REORDERBUF pBuffer;
8002 + //PRTMP_REORDERBUF pDmaBuf;
8003 + PBA_REC_ENTRY pBAEntry;
8009 + TID = (UCHAR)pFrame->BARControl.TID;
8011 + DBGPRINT(RT_DEBUG_TRACE, ("%s(): BAR-Wcid(%ld), Tid (%d)\n", __FUNCTION__, Wcid, TID));
8012 + //hex_dump("BAR", (PCHAR) pFrame, MsgLen);
8013 + // Do nothing if the driver is starting halt state.
8014 + // This might happen when timer already been fired before cancel timer with mlmehalt
8015 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS | fRTMP_ADAPTER_NIC_NOT_EXIST))
8018 + // First check the size, it MUST not exceed the mlme queue size
8019 + if (MsgLen > MGMT_DMA_BUFFER_SIZE)
8021 + DBGPRINT_ERR(("CntlEnqueueForRecv: frame too large, size = %ld \n", MsgLen));
8024 + else if (MsgLen != sizeof(FRAME_BA_REQ))
8026 + DBGPRINT_ERR(("CntlEnqueueForRecv: BlockAck Request frame length size = %ld incorrect\n", MsgLen));
8029 + else if (MsgLen != sizeof(FRAME_BA_REQ))
8031 + DBGPRINT_ERR(("CntlEnqueueForRecv: BlockAck Request frame length size = %ld incorrect\n", MsgLen));
8035 + if ((Wcid < MAX_LEN_OF_MAC_TABLE) && (TID < 8))
8037 + // if this receiving packet is from SA that is in our OriEntry. Since WCID <9 has direct mapping. no need search.
8038 + Idx = pAd->MacTab.Content[Wcid].BARecWcidArray[TID];
8039 + pBAEntry = &pAd->BATable.BARecEntry[Idx];
8046 + DBGPRINT(RT_DEBUG_TRACE, ("BAR(%ld) : Tid (%d) - %04x:%04x\n", Wcid, TID, pFrame->BAStartingSeq.field.StartSeq, pBAEntry->LastIndSeq ));
8048 + if (SEQ_SMALLER(pBAEntry->LastIndSeq, pFrame->BAStartingSeq.field.StartSeq, MAXSEQ))
8050 + //printk("BAR Seq = %x, LastIndSeq = %x\n", pFrame->BAStartingSeq.field.StartSeq, pBAEntry->LastIndSeq);
8051 + ba_indicate_reordering_mpdus_le_seq(pAd, pBAEntry, pFrame->BAStartingSeq.field.StartSeq);
8052 + pBAEntry->LastIndSeq = (pFrame->BAStartingSeq.field.StartSeq == 0) ? MAXSEQ :(pFrame->BAStartingSeq.field.StartSeq -1);
8054 + //ba_refresh_reordering_mpdus(pAd, pBAEntry);
8059 +Description : Send PSMP Action frame If PSMP mode switches.
8061 +VOID SendPSMPAction(
8062 + IN PRTMP_ADAPTER pAd,
8066 + PUCHAR pOutBuffer = NULL;
8067 + NDIS_STATUS NStatus;
8069 + FRAME_PSMP_ACTION Frame;
8074 +#endif // RT30xx //
8076 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
8077 + if (NStatus != NDIS_STATUS_SUCCESS)
8079 + DBGPRINT(RT_DEBUG_ERROR,("BA - MlmeADDBAAction() allocate memory failed \n"));
8082 +#ifdef CONFIG_STA_SUPPORT
8083 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
8084 + ActHeaderInit(pAd, &Frame.Hdr, pAd->CommonCfg.Bssid, pAd->CurrentAddress, pAd->MacTab.Content[Wcid].Addr);
8085 +#endif // CONFIG_STA_SUPPORT //
8087 + Frame.Category = CATEGORY_HT;
8088 + Frame.Action = SMPS_ACTION;
8093 + if (IS_RT3090(pAd))
8095 + // disable MMPS BBP control register
8096 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &bbpdata);
8097 + bbpdata &= ~(0x04); //bit 2
8098 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, bbpdata);
8100 + // disable MMPS MAC control register
8101 + RTMP_IO_READ32(pAd, 0x1210, &macdata);
8102 + macdata &= ~(0x09); //bit 0, 3
8103 + RTMP_IO_WRITE32(pAd, 0x1210, macdata);
8105 +#endif // RT30xx //
8108 + case MMPS_DYNAMIC:
8110 + if (IS_RT3090(pAd))
8112 + // enable MMPS BBP control register
8113 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &bbpdata);
8114 + bbpdata |= 0x04; //bit 2
8115 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, bbpdata);
8117 + // enable MMPS MAC control register
8118 + RTMP_IO_READ32(pAd, 0x1210, &macdata);
8119 + macdata |= 0x09; //bit 0, 3
8120 + RTMP_IO_WRITE32(pAd, 0x1210, macdata);
8122 +#endif // RT30xx //
8127 + if (IS_RT3090(pAd))
8129 + // enable MMPS BBP control register
8130 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &bbpdata);
8131 + bbpdata |= 0x04; //bit 2
8132 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, bbpdata);
8134 + // enable MMPS MAC control register
8135 + RTMP_IO_READ32(pAd, 0x1210, &macdata);
8136 + macdata |= 0x09; //bit 0, 3
8137 + RTMP_IO_WRITE32(pAd, 0x1210, macdata);
8139 +#endif // RT30xx //
8143 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
8144 + sizeof(FRAME_PSMP_ACTION), &Frame,
8146 + MiniportMMRequest(pAd, QID_AC_BE, pOutBuffer, FrameLen);
8147 + MlmeFreeMemory(pAd, pOutBuffer);
8148 + DBGPRINT(RT_DEBUG_ERROR,("HT - SendPSMPAction( %d ) \n", Frame.Psmp));
8152 +#define RADIO_MEASUREMENT_REQUEST_ACTION 0
8154 +typedef struct PACKED
8156 + UCHAR RegulatoryClass;
8157 + UCHAR ChannelNumber;
8158 + USHORT RandomInterval;
8159 + USHORT MeasurementDuration;
8160 + UCHAR MeasurementMode;
8161 + UCHAR BSSID[MAC_ADDR_LEN];
8162 + UCHAR ReportingCondition;
8164 + UCHAR SSIDIE[2]; // 2 byte
8167 +typedef struct PACKED
8172 + UCHAR RequestMode;
8179 +void convert_reordering_packet_to_preAMSDU_or_802_3_packet(
8180 + IN PRTMP_ADAPTER pAd,
8181 + IN RX_BLK *pRxBlk,
8182 + IN UCHAR FromWhichBSSID)
8184 + PNDIS_PACKET pRxPkt;
8185 + UCHAR Header802_3[LENGTH_802_3];
8187 + // 1. get 802.3 Header
8189 + // a. pointer pRxBlk->pData to payload
8190 + // b. modify pRxBlk->DataSize
8192 +#ifdef CONFIG_STA_SUPPORT
8193 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
8194 + RTMP_802_11_REMOVE_LLC_AND_CONVERT_TO_802_3(pRxBlk, Header802_3);
8195 +#endif // CONFIG_STA_SUPPORT //
8197 + ASSERT(pRxBlk->pRxPacket);
8198 + pRxPkt = RTPKT_TO_OSPKT(pRxBlk->pRxPacket);
8200 + RTPKT_TO_OSPKT(pRxPkt)->dev = get_netdev_from_bssid(pAd, FromWhichBSSID);
8201 + RTPKT_TO_OSPKT(pRxPkt)->data = pRxBlk->pData;
8202 + RTPKT_TO_OSPKT(pRxPkt)->len = pRxBlk->DataSize;
8203 + RTPKT_TO_OSPKT(pRxPkt)->tail = RTPKT_TO_OSPKT(pRxPkt)->data + RTPKT_TO_OSPKT(pRxPkt)->len;
8206 + // copy 802.3 header, if necessary
8208 + if (!RX_BLK_TEST_FLAG(pRxBlk, fRX_AMSDU))
8211 +#ifdef CONFIG_STA_SUPPORT
8212 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
8215 + NdisMoveMemory(skb_push(pRxPkt, LENGTH_802_3), Header802_3, LENGTH_802_3);
8218 + NdisMoveMemory(net_pkt_push(pRxPkt, LENGTH_802_3), Header802_3, LENGTH_802_3);
8221 +#endif // CONFIG_STA_SUPPORT //
8226 +#define INDICATE_LEGACY_OR_AMSDU(_pAd, _pRxBlk, _fromWhichBSSID) \
8229 + if (RX_BLK_TEST_FLAG(_pRxBlk, fRX_AMSDU)) \
8231 + Indicate_AMSDU_Packet(_pAd, _pRxBlk, _fromWhichBSSID); \
8233 + else if (RX_BLK_TEST_FLAG(_pRxBlk, fRX_EAP)) \
8235 + Indicate_EAPOL_Packet(_pAd, _pRxBlk, _fromWhichBSSID); \
8239 + Indicate_Legacy_Packet(_pAd, _pRxBlk, _fromWhichBSSID); \
8245 +static VOID ba_enqueue_reordering_packet(
8246 + IN PRTMP_ADAPTER pAd,
8247 + IN PBA_REC_ENTRY pBAEntry,
8248 + IN RX_BLK *pRxBlk,
8249 + IN UCHAR FromWhichBSSID)
8251 + struct reordering_mpdu *mpdu_blk;
8252 + UINT16 Sequence = (UINT16) pRxBlk->pHeader->Sequence;
8254 + mpdu_blk = ba_mpdu_blk_alloc(pAd);
8255 + if (mpdu_blk != NULL)
8257 + // Write RxD buffer address & allocated buffer length
8258 + NdisAcquireSpinLock(&pBAEntry->RxReRingLock);
8260 + mpdu_blk->Sequence = Sequence;
8262 + mpdu_blk->bAMSDU = RX_BLK_TEST_FLAG(pRxBlk, fRX_AMSDU);
8264 + convert_reordering_packet_to_preAMSDU_or_802_3_packet(pAd, pRxBlk, FromWhichBSSID);
8266 + STATS_INC_RX_PACKETS(pAd, FromWhichBSSID);
8269 + // it is necessary for reordering packet to record
8270 + // which BSS it come from
8272 + RTMP_SET_PACKET_IF(pRxBlk->pRxPacket, FromWhichBSSID);
8274 + mpdu_blk->pPacket = pRxBlk->pRxPacket;
8276 + if (ba_reordering_mpdu_insertsorted(&pBAEntry->list, mpdu_blk) == FALSE)
8278 + // had been already within reordering list
8280 + RELEASE_NDIS_PACKET(pAd, pRxBlk->pRxPacket, NDIS_STATUS_SUCCESS);
8281 + ba_mpdu_blk_free(pAd, mpdu_blk);
8284 + ASSERT((0<= pBAEntry->list.qlen) && (pBAEntry->list.qlen <= pBAEntry->BAWinSize));
8285 + NdisReleaseSpinLock(&pBAEntry->RxReRingLock);
8289 + DBGPRINT(RT_DEBUG_ERROR, ("!!! (%d) Can't allocate reordering mpdu blk\n",
8290 + pBAEntry->list.qlen));
8292 + * flush all pending reordering mpdus
8293 + * and receving mpdu to upper layer
8294 + * make tcp/ip to take care reordering mechanism
8296 + //ba_refresh_reordering_mpdus(pAd, pBAEntry);
8297 + ba_indicate_reordering_mpdus_le_seq(pAd, pBAEntry, Sequence);
8299 + pBAEntry->LastIndSeq = Sequence;
8300 + INDICATE_LEGACY_OR_AMSDU(pAd, pRxBlk, FromWhichBSSID);
8306 + ==========================================================================
8308 + Indicate this packet to upper layer or put it into reordering buffer
8311 + pRxBlk : carry necessary packet info 802.11 format
8312 + FromWhichBSSID : the packet received from which BSS
8318 + the packet queued into reordering buffer need to cover to 802.3 format
8319 + or pre_AMSDU format
8320 + ==========================================================================
8323 +VOID Indicate_AMPDU_Packet(
8324 + IN PRTMP_ADAPTER pAd,
8325 + IN RX_BLK *pRxBlk,
8326 + IN UCHAR FromWhichBSSID)
8329 + PBA_REC_ENTRY pBAEntry = NULL;
8330 + UINT16 Sequence = pRxBlk->pHeader->Sequence;
8332 + UCHAR Wcid = pRxBlk->pRxWI->WirelessCliID;
8333 + UCHAR TID = pRxBlk->pRxWI->TID;
8336 + if (!RX_BLK_TEST_FLAG(pRxBlk, fRX_AMSDU) && (pRxBlk->DataSize > MAX_RX_PKT_LEN))
8339 + RELEASE_NDIS_PACKET(pAd, pRxBlk->pRxPacket, NDIS_STATUS_FAILURE);
8343 + if (Wcid < MAX_LEN_OF_MAC_TABLE)
8345 + Idx = pAd->MacTab.Content[Wcid].BARecWcidArray[TID];
8348 + /* Rec BA Session had been torn down */
8349 + INDICATE_LEGACY_OR_AMSDU(pAd, pRxBlk, FromWhichBSSID);
8352 + pBAEntry = &pAd->BATable.BARecEntry[Idx];
8359 + RELEASE_NDIS_PACKET(pAd, pRxBlk->pRxPacket, NDIS_STATUS_FAILURE);
8365 + // update last rx time
8366 + NdisGetSystemUpTime(&Now32);
8368 + pBAEntry->rcvSeq = Sequence;
8371 + ba_flush_reordering_timeout_mpdus(pAd, pBAEntry, Now32);
8372 + pBAEntry->LastIndSeqAtTimer = Now32;
8375 + // Reset Last Indicate Sequence
8377 + if (pBAEntry->LastIndSeq == RESET_RCV_SEQ)
8379 + ASSERT((pBAEntry->list.qlen == 0) && (pBAEntry->list.next == NULL));
8381 + // reset rcv sequence of BA session
8382 + pBAEntry->LastIndSeq = Sequence;
8383 + pBAEntry->LastIndSeqAtTimer = Now32;
8384 + INDICATE_LEGACY_OR_AMSDU(pAd, pRxBlk, FromWhichBSSID);
8390 + // I. Check if in order.
8392 + if (SEQ_STEPONE(Sequence, pBAEntry->LastIndSeq, MAXSEQ))
8394 + USHORT LastIndSeq;
8396 + pBAEntry->LastIndSeq = Sequence;
8397 + INDICATE_LEGACY_OR_AMSDU(pAd, pRxBlk, FromWhichBSSID);
8398 + LastIndSeq = ba_indicate_reordering_mpdus_in_order(pAd, pBAEntry, pBAEntry->LastIndSeq);
8399 + if (LastIndSeq != RESET_RCV_SEQ)
8401 + pBAEntry->LastIndSeq = LastIndSeq;
8403 + pBAEntry->LastIndSeqAtTimer = Now32;
8406 + // II. Drop Duplicated Packet
8408 + else if (Sequence == pBAEntry->LastIndSeq)
8411 + // drop and release packet
8412 + pBAEntry->nDropPacket++;
8413 + RELEASE_NDIS_PACKET(pAd, pRxBlk->pRxPacket, NDIS_STATUS_FAILURE);
8416 + // III. Drop Old Received Packet
8418 + else if (SEQ_SMALLER(Sequence, pBAEntry->LastIndSeq, MAXSEQ))
8421 + // drop and release packet
8422 + pBAEntry->nDropPacket++;
8423 + RELEASE_NDIS_PACKET(pAd, pRxBlk->pRxPacket, NDIS_STATUS_FAILURE);
8426 + // IV. Receive Sequence within Window Size
8428 + else if (SEQ_SMALLER(Sequence, (((pBAEntry->LastIndSeq+pBAEntry->BAWinSize+1)) & MAXSEQ), MAXSEQ))
8430 + ba_enqueue_reordering_packet(pAd, pBAEntry, pRxBlk, FromWhichBSSID);
8433 + // V. Receive seq surpasses Win(lastseq + nMSDU). So refresh all reorder buffer
8437 + LONG WinStartSeq, TmpSeq;
8440 + TmpSeq = Sequence - (pBAEntry->BAWinSize) -1;
8443 + TmpSeq = (MAXSEQ+1) + TmpSeq;
8445 + WinStartSeq = (TmpSeq+1) & MAXSEQ;
8446 + ba_indicate_reordering_mpdus_le_seq(pAd, pBAEntry, WinStartSeq);
8447 + pBAEntry->LastIndSeq = WinStartSeq; //TmpSeq;
8449 + pBAEntry->LastIndSeqAtTimer = Now32;
8451 + ba_enqueue_reordering_packet(pAd, pBAEntry, pRxBlk, FromWhichBSSID);
8453 + TmpSeq = ba_indicate_reordering_mpdus_in_order(pAd, pBAEntry, pBAEntry->LastIndSeq);
8454 + if (TmpSeq != RESET_RCV_SEQ)
8456 + pBAEntry->LastIndSeq = TmpSeq;
8461 +#endif // DOT11_N_SUPPORT //
8464 +++ b/drivers/staging/rt3070/common/cmm_data_2870.c
8467 + *************************************************************************
8468 + * Ralink Tech Inc.
8469 + * 5F., No.36, Taiyuan St., Jhubei City,
8470 + * Hsinchu County 302,
8473 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
8475 + * This program is free software; you can redistribute it and/or modify *
8476 + * it under the terms of the GNU General Public License as published by *
8477 + * the Free Software Foundation; either version 2 of the License, or *
8478 + * (at your option) any later version. *
8480 + * This program is distributed in the hope that it will be useful, *
8481 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
8482 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
8483 + * GNU General Public License for more details. *
8485 + * You should have received a copy of the GNU General Public License *
8486 + * along with this program; if not, write to the *
8487 + * Free Software Foundation, Inc., *
8488 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
8490 + *************************************************************************
8493 + All functions in this file must be USB-depended, or you should out your function
8497 +#include "../rt_config.h"
8501 + We can do copy the frame into pTxContext when match following conditions.
8506 +static inline NDIS_STATUS RtmpUSBCanDoWrite(
8507 + IN RTMP_ADAPTER *pAd,
8509 + IN HT_TX_CONTEXT *pHTTXContext)
8511 + NDIS_STATUS canWrite = NDIS_STATUS_RESOURCES;
8513 + if (((pHTTXContext->CurWritePosition) < pHTTXContext->NextBulkOutPosition) && (pHTTXContext->CurWritePosition + LOCAL_TXBUF_SIZE) > pHTTXContext->NextBulkOutPosition)
8515 + DBGPRINT(RT_DEBUG_ERROR,("RtmpUSBCanDoWrite c1!\n"));
8516 + RTUSB_SET_BULK_FLAG(pAd, (fRTUSB_BULK_OUT_DATA_NORMAL << QueIdx));
8518 + else if ((pHTTXContext->CurWritePosition == 8) && (pHTTXContext->NextBulkOutPosition < LOCAL_TXBUF_SIZE))
8520 + DBGPRINT(RT_DEBUG_ERROR,("RtmpUSBCanDoWrite c2!\n"));
8521 + RTUSB_SET_BULK_FLAG(pAd, (fRTUSB_BULK_OUT_DATA_NORMAL << QueIdx));
8523 + else if (pHTTXContext->bCurWriting == TRUE)
8525 + DBGPRINT(RT_DEBUG_ERROR,("RtmpUSBCanDoWrite c3!\n"));
8529 + canWrite = NDIS_STATUS_SUCCESS;
8537 +USHORT RtmpUSB_WriteSubTxResource(
8538 + IN PRTMP_ADAPTER pAd,
8539 + IN TX_BLK *pTxBlk,
8540 + IN BOOLEAN bIsLast,
8541 + OUT USHORT *FreeNumber)
8544 + // Dummy function. Should be removed in the future.
8549 +USHORT RtmpUSB_WriteFragTxResource(
8550 + IN PRTMP_ADAPTER pAd,
8551 + IN TX_BLK *pTxBlk,
8553 + OUT USHORT *FreeNumber)
8555 + HT_TX_CONTEXT *pHTTXContext;
8556 + USHORT hwHdrLen; // The hwHdrLen consist of 802.11 header length plus the header padding length.
8557 + UINT32 fillOffset;
8558 + TXINFO_STRUC *pTxInfo;
8559 + TXWI_STRUC *pTxWI;
8560 + PUCHAR pWirelessPacket = NULL;
8562 + NDIS_STATUS Status;
8563 + unsigned long IrqFlags;
8564 + UINT32 USBDMApktLen = 0, DMAHdrLen, padding;
8565 + BOOLEAN TxQLastRound = FALSE;
8568 + // get Tx Ring Resource & Dma Buffer address
8570 + QueIdx = pTxBlk->QueIdx;
8571 + pHTTXContext = &pAd->TxContext[QueIdx];
8573 + RTMP_IRQ_LOCK(&pAd->TxContextQueueLock[QueIdx], IrqFlags);
8575 + pHTTXContext = &pAd->TxContext[QueIdx];
8576 + fillOffset = pHTTXContext->CurWritePosition;
8580 + // Check if we have enough space for this bulk-out batch.
8581 + Status = RtmpUSBCanDoWrite(pAd, QueIdx, pHTTXContext);
8582 + if (Status == NDIS_STATUS_SUCCESS)
8584 + pHTTXContext->bCurWriting = TRUE;
8586 + // Reserve space for 8 bytes padding.
8587 + if ((pHTTXContext->ENextBulkOutPosition == pHTTXContext->CurWritePosition))
8589 + pHTTXContext->ENextBulkOutPosition += 8;
8590 + pHTTXContext->CurWritePosition += 8;
8594 + pHTTXContext->CurWriteRealPos = pHTTXContext->CurWritePosition;
8598 + RTMP_IRQ_UNLOCK(&pAd->TxContextQueueLock[QueIdx], IrqFlags);
8600 + RELEASE_NDIS_PACKET(pAd, pTxBlk->pPacket, NDIS_STATUS_FAILURE);
8606 + // For sub-sequent frames of this bulk-out batch. Just copy it to our bulk-out buffer.
8607 + Status = ((pHTTXContext->bCurWriting == TRUE) ? NDIS_STATUS_SUCCESS : NDIS_STATUS_FAILURE);
8608 + if (Status == NDIS_STATUS_SUCCESS)
8610 + fillOffset += pTxBlk->Priv;
8614 + RTMP_IRQ_UNLOCK(&pAd->TxContextQueueLock[QueIdx], IrqFlags);
8616 + RELEASE_NDIS_PACKET(pAd, pTxBlk->pPacket, NDIS_STATUS_FAILURE);
8621 + NdisZeroMemory((PUCHAR)(&pTxBlk->HeaderBuf[0]), TXINFO_SIZE);
8622 + pTxInfo = (PTXINFO_STRUC)(&pTxBlk->HeaderBuf[0]);
8623 + pTxWI= (PTXWI_STRUC)(&pTxBlk->HeaderBuf[TXINFO_SIZE]);
8625 + pWirelessPacket = &pHTTXContext->TransferBuffer->field.WirelessPacket[fillOffset];
8627 + // copy TXWI + WLAN Header + LLC into DMA Header Buffer
8628 + //hwHdrLen = ROUND_UP(pTxBlk->MpduHeaderLen, 4);
8629 + hwHdrLen = pTxBlk->MpduHeaderLen + pTxBlk->HdrPadLen;
8631 + // Build our URB for USBD
8632 + DMAHdrLen = TXWI_SIZE + hwHdrLen;
8633 + USBDMApktLen = DMAHdrLen + pTxBlk->SrcBufLen;
8634 + padding = (4 - (USBDMApktLen % 4)) & 0x03; // round up to 4 byte alignment
8635 + USBDMApktLen += padding;
8637 + pTxBlk->Priv += (TXINFO_SIZE + USBDMApktLen);
8639 + // For TxInfo, the length of USBDMApktLen = TXWI_SIZE + 802.11 header + payload
8640 + RTMPWriteTxInfo(pAd, pTxInfo, (USHORT)(USBDMApktLen), FALSE, FIFO_EDCA, FALSE /*NextValid*/, FALSE);
8642 + if (fragNum == pTxBlk->TotalFragNum)
8644 + pTxInfo->USBDMATxburst = 0;
8645 + if ((pHTTXContext->CurWritePosition + pTxBlk->Priv + 3906)> MAX_TXBULK_LIMIT)
8647 + pTxInfo->SwUseLastRound = 1;
8648 + TxQLastRound = TRUE;
8653 + pTxInfo->USBDMATxburst = 1;
8656 + NdisMoveMemory(pWirelessPacket, pTxBlk->HeaderBuf, TXINFO_SIZE + TXWI_SIZE + hwHdrLen);
8657 +#ifdef RT_BIG_ENDIAN
8658 + RTMPFrameEndianChange(pAd, (PUCHAR)(pWirelessPacket + TXINFO_SIZE + TXWI_SIZE), DIR_WRITE, FALSE);
8659 +#endif // RT_BIG_ENDIAN //
8660 + pWirelessPacket += (TXINFO_SIZE + TXWI_SIZE + hwHdrLen);
8661 + pHTTXContext->CurWriteRealPos += (TXINFO_SIZE + TXWI_SIZE + hwHdrLen);
8663 + RTMP_IRQ_UNLOCK(&pAd->TxContextQueueLock[QueIdx], IrqFlags);
8665 + NdisMoveMemory(pWirelessPacket, pTxBlk->pSrcBufData, pTxBlk->SrcBufLen);
8667 + // Zero the last padding.
8668 + pWirelessPacket += pTxBlk->SrcBufLen;
8669 + NdisZeroMemory(pWirelessPacket, padding + 8);
8671 + if (fragNum == pTxBlk->TotalFragNum)
8673 + RTMP_IRQ_LOCK(&pAd->TxContextQueueLock[QueIdx], IrqFlags);
8675 + // Update the pHTTXContext->CurWritePosition. 3906 used to prevent the NextBulkOut is a A-RALINK/A-MSDU Frame.
8676 + pHTTXContext->CurWritePosition += pTxBlk->Priv;
8677 + if (TxQLastRound == TRUE)
8678 + pHTTXContext->CurWritePosition = 8;
8679 + pHTTXContext->CurWriteRealPos = pHTTXContext->CurWritePosition;
8682 + // Finally, set bCurWriting as FALSE
8683 + pHTTXContext->bCurWriting = FALSE;
8685 + RTMP_IRQ_UNLOCK(&pAd->TxContextQueueLock[QueIdx], IrqFlags);
8687 + // succeed and release the skb buffer
8688 + RELEASE_NDIS_PACKET(pAd, pTxBlk->pPacket, NDIS_STATUS_SUCCESS);
8697 +USHORT RtmpUSB_WriteSingleTxResource(
8698 + IN PRTMP_ADAPTER pAd,
8699 + IN TX_BLK *pTxBlk,
8700 + IN BOOLEAN bIsLast,
8701 + OUT USHORT *FreeNumber)
8703 + HT_TX_CONTEXT *pHTTXContext;
8705 + UINT32 fillOffset;
8706 + TXINFO_STRUC *pTxInfo;
8707 + TXWI_STRUC *pTxWI;
8708 + PUCHAR pWirelessPacket;
8710 + unsigned long IrqFlags;
8711 + NDIS_STATUS Status;
8712 + UINT32 USBDMApktLen = 0, DMAHdrLen, padding;
8713 + BOOLEAN bTxQLastRound = FALSE;
8715 + // For USB, didn't need PCI_MAP_SINGLE()
8716 + //SrcBufPA = PCI_MAP_SINGLE(pAd, (char *) pTxBlk->pSrcBufData, pTxBlk->SrcBufLen, PCI_DMA_TODEVICE);
8720 + // get Tx Ring Resource & Dma Buffer address
8722 + QueIdx = pTxBlk->QueIdx;
8724 + RTMP_IRQ_LOCK(&pAd->TxContextQueueLock[QueIdx], IrqFlags);
8725 + pHTTXContext = &pAd->TxContext[QueIdx];
8726 + fillOffset = pHTTXContext->CurWritePosition;
8730 + // Check ring full.
8731 + Status = RtmpUSBCanDoWrite(pAd, QueIdx, pHTTXContext);
8732 + if(Status == NDIS_STATUS_SUCCESS)
8734 + pHTTXContext->bCurWriting = TRUE;
8736 + pTxInfo = (PTXINFO_STRUC)(&pTxBlk->HeaderBuf[0]);
8737 + pTxWI= (PTXWI_STRUC)(&pTxBlk->HeaderBuf[TXINFO_SIZE]);
8739 + // Reserve space for 8 bytes padding.
8740 + if ((pHTTXContext->ENextBulkOutPosition == pHTTXContext->CurWritePosition))
8742 + pHTTXContext->ENextBulkOutPosition += 8;
8743 + pHTTXContext->CurWritePosition += 8;
8746 + pHTTXContext->CurWriteRealPos = pHTTXContext->CurWritePosition;
8748 + pWirelessPacket = &pHTTXContext->TransferBuffer->field.WirelessPacket[fillOffset];
8750 + // copy TXWI + WLAN Header + LLC into DMA Header Buffer
8751 + //hwHdrLen = ROUND_UP(pTxBlk->MpduHeaderLen, 4);
8752 + hwHdrLen = pTxBlk->MpduHeaderLen + pTxBlk->HdrPadLen;
8754 + // Build our URB for USBD
8755 + DMAHdrLen = TXWI_SIZE + hwHdrLen;
8756 + USBDMApktLen = DMAHdrLen + pTxBlk->SrcBufLen;
8757 + padding = (4 - (USBDMApktLen % 4)) & 0x03; // round up to 4 byte alignment
8758 + USBDMApktLen += padding;
8760 + pTxBlk->Priv = (TXINFO_SIZE + USBDMApktLen);
8762 + // For TxInfo, the length of USBDMApktLen = TXWI_SIZE + 802.11 header + payload
8763 + //PS packets use HCCA queue when dequeue from PS unicast queue (WiFi WPA2 MA9_DT1 for Marvell B STA)
8764 +#ifdef CONFIG_STA_SUPPORT
8765 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
8766 + RTMPWriteTxInfo(pAd, pTxInfo, (USHORT)(USBDMApktLen), FALSE, FIFO_EDCA, FALSE /*NextValid*/, FALSE);
8767 +#endif // CONFIG_STA_SUPPORT //
8769 + if ((pHTTXContext->CurWritePosition + 3906 + pTxBlk->Priv) > MAX_TXBULK_LIMIT)
8771 + pTxInfo->SwUseLastRound = 1;
8772 + bTxQLastRound = TRUE;
8774 + NdisMoveMemory(pWirelessPacket, pTxBlk->HeaderBuf, TXINFO_SIZE + TXWI_SIZE + hwHdrLen);
8775 +#ifdef RT_BIG_ENDIAN
8776 + RTMPFrameEndianChange(pAd, (PUCHAR)(pWirelessPacket + TXINFO_SIZE + TXWI_SIZE), DIR_WRITE, FALSE);
8777 +#endif // RT_BIG_ENDIAN //
8778 + pWirelessPacket += (TXINFO_SIZE + TXWI_SIZE + hwHdrLen);
8780 + // We unlock it here to prevent the first 8 bytes maybe over-writed issue.
8781 + // 1. First we got CurWritePosition but the first 8 bytes still not write to the pTxcontext.
8782 + // 2. An interrupt break our routine and handle bulk-out complete.
8783 + // 3. In the bulk-out compllete, it need to do another bulk-out,
8784 + // if the ENextBulkOutPosition is just the same as CurWritePosition, it will save the first 8 bytes from CurWritePosition,
8785 + // but the payload still not copyed. the pTxContext->SavedPad[] will save as allzero. and set the bCopyPad = TRUE.
8786 + // 4. Interrupt complete.
8787 + // 5. Our interrupted routine go back and fill the first 8 bytes to pTxContext.
8788 + // 6. Next time when do bulk-out, it found the bCopyPad==TRUE and will copy the SavedPad[] to pTxContext->NextBulkOutPosition.
8789 + // and the packet will wrong.
8790 + pHTTXContext->CurWriteRealPos += (TXINFO_SIZE + TXWI_SIZE + hwHdrLen);
8791 + RTMP_IRQ_UNLOCK(&pAd->TxContextQueueLock[QueIdx], IrqFlags);
8793 + NdisMoveMemory(pWirelessPacket, pTxBlk->pSrcBufData, pTxBlk->SrcBufLen);
8794 + pWirelessPacket += pTxBlk->SrcBufLen;
8795 + NdisZeroMemory(pWirelessPacket, padding + 8);
8797 + RTMP_IRQ_LOCK(&pAd->TxContextQueueLock[QueIdx], IrqFlags);
8799 + pHTTXContext->CurWritePosition += pTxBlk->Priv;
8800 + if (bTxQLastRound)
8801 + pHTTXContext->CurWritePosition = 8;
8802 + pHTTXContext->CurWriteRealPos = pHTTXContext->CurWritePosition;
8804 + pHTTXContext->bCurWriting = FALSE;
8808 + RTMP_IRQ_UNLOCK(&pAd->TxContextQueueLock[QueIdx], IrqFlags);
8811 + // succeed and release the skb buffer
8812 + RELEASE_NDIS_PACKET(pAd, pTxBlk->pPacket, NDIS_STATUS_SUCCESS);
8819 +USHORT RtmpUSB_WriteMultiTxResource(
8820 + IN PRTMP_ADAPTER pAd,
8821 + IN TX_BLK *pTxBlk,
8822 + IN UCHAR frameNum,
8823 + OUT USHORT *FreeNumber)
8825 + HT_TX_CONTEXT *pHTTXContext;
8826 + USHORT hwHdrLen; // The hwHdrLen consist of 802.11 header length plus the header padding length.
8827 + UINT32 fillOffset;
8828 + TXINFO_STRUC *pTxInfo;
8829 + TXWI_STRUC *pTxWI;
8830 + PUCHAR pWirelessPacket = NULL;
8832 + NDIS_STATUS Status;
8833 + unsigned long IrqFlags;
8834 + //UINT32 USBDMApktLen = 0, DMAHdrLen, padding;
8837 + // get Tx Ring Resource & Dma Buffer address
8839 + QueIdx = pTxBlk->QueIdx;
8840 + pHTTXContext = &pAd->TxContext[QueIdx];
8842 + RTMP_IRQ_LOCK(&pAd->TxContextQueueLock[QueIdx], IrqFlags);
8846 + // Check if we have enough space for this bulk-out batch.
8847 + Status = RtmpUSBCanDoWrite(pAd, QueIdx, pHTTXContext);
8848 + if (Status == NDIS_STATUS_SUCCESS)
8850 + pHTTXContext->bCurWriting = TRUE;
8852 + pTxInfo = (PTXINFO_STRUC)(&pTxBlk->HeaderBuf[0]);
8853 + pTxWI= (PTXWI_STRUC)(&pTxBlk->HeaderBuf[TXINFO_SIZE]);
8856 + // Reserve space for 8 bytes padding.
8857 + if ((pHTTXContext->ENextBulkOutPosition == pHTTXContext->CurWritePosition))
8860 + pHTTXContext->CurWritePosition += 8;
8861 + pHTTXContext->ENextBulkOutPosition += 8;
8863 + fillOffset = pHTTXContext->CurWritePosition;
8864 + pHTTXContext->CurWriteRealPos = pHTTXContext->CurWritePosition;
8866 + pWirelessPacket = &pHTTXContext->TransferBuffer->field.WirelessPacket[fillOffset];
8869 + // Copy TXINFO + TXWI + WLAN Header + LLC into DMA Header Buffer
8871 + if (pTxBlk->TxFrameType == TX_AMSDU_FRAME)
8872 + //hwHdrLen = ROUND_UP(pTxBlk->MpduHeaderLen-LENGTH_AMSDU_SUBFRAMEHEAD, 4)+LENGTH_AMSDU_SUBFRAMEHEAD;
8873 + hwHdrLen = pTxBlk->MpduHeaderLen-LENGTH_AMSDU_SUBFRAMEHEAD + pTxBlk->HdrPadLen + LENGTH_AMSDU_SUBFRAMEHEAD;
8874 + else if (pTxBlk->TxFrameType == TX_RALINK_FRAME)
8875 + //hwHdrLen = ROUND_UP(pTxBlk->MpduHeaderLen-LENGTH_ARALINK_HEADER_FIELD, 4)+LENGTH_ARALINK_HEADER_FIELD;
8876 + hwHdrLen = pTxBlk->MpduHeaderLen-LENGTH_ARALINK_HEADER_FIELD + pTxBlk->HdrPadLen + LENGTH_ARALINK_HEADER_FIELD;
8878 + //hwHdrLen = ROUND_UP(pTxBlk->MpduHeaderLen, 4);
8879 + hwHdrLen = pTxBlk->MpduHeaderLen + pTxBlk->HdrPadLen;
8881 + // Update the pTxBlk->Priv.
8882 + pTxBlk->Priv = TXINFO_SIZE + TXWI_SIZE + hwHdrLen;
8884 + // pTxInfo->USBDMApktLen now just a temp value and will to correct latter.
8885 + RTMPWriteTxInfo(pAd, pTxInfo, (USHORT)(pTxBlk->Priv), FALSE, FIFO_EDCA, FALSE /*NextValid*/, FALSE);
8888 + NdisMoveMemory(pWirelessPacket, pTxBlk->HeaderBuf, pTxBlk->Priv);
8889 +#ifdef RT_BIG_ENDIAN
8890 + RTMPFrameEndianChange(pAd, (PUCHAR)(pWirelessPacket+ TXINFO_SIZE + TXWI_SIZE), DIR_WRITE, FALSE);
8891 +#endif // RT_BIG_ENDIAN //
8892 + pHTTXContext->CurWriteRealPos += pTxBlk->Priv;
8893 + pWirelessPacket += pTxBlk->Priv;
8897 + { // For sub-sequent frames of this bulk-out batch. Just copy it to our bulk-out buffer.
8899 + Status = ((pHTTXContext->bCurWriting == TRUE) ? NDIS_STATUS_SUCCESS : NDIS_STATUS_FAILURE);
8900 + if (Status == NDIS_STATUS_SUCCESS)
8902 + fillOffset = (pHTTXContext->CurWritePosition + pTxBlk->Priv);
8903 + pWirelessPacket = &pHTTXContext->TransferBuffer->field.WirelessPacket[fillOffset];
8905 + //hwHdrLen = pTxBlk->MpduHeaderLen;
8906 + NdisMoveMemory(pWirelessPacket, pTxBlk->HeaderBuf, pTxBlk->MpduHeaderLen);
8907 + pWirelessPacket += (pTxBlk->MpduHeaderLen);
8908 + pTxBlk->Priv += pTxBlk->MpduHeaderLen;
8911 + { // It should not happened now unless we are going to shutdown.
8912 + DBGPRINT(RT_DEBUG_ERROR, ("WriteMultiTxResource():bCurWriting is FALSE when handle sub-sequent frames.\n"));
8913 + Status = NDIS_STATUS_FAILURE;
8918 + // We unlock it here to prevent the first 8 bytes maybe over-write issue.
8919 + // 1. First we got CurWritePosition but the first 8 bytes still not write to the pTxContext.
8920 + // 2. An interrupt break our routine and handle bulk-out complete.
8921 + // 3. In the bulk-out compllete, it need to do another bulk-out,
8922 + // if the ENextBulkOutPosition is just the same as CurWritePosition, it will save the first 8 bytes from CurWritePosition,
8923 + // but the payload still not copyed. the pTxContext->SavedPad[] will save as allzero. and set the bCopyPad = TRUE.
8924 + // 4. Interrupt complete.
8925 + // 5. Our interrupted routine go back and fill the first 8 bytes to pTxContext.
8926 + // 6. Next time when do bulk-out, it found the bCopyPad==TRUE and will copy the SavedPad[] to pTxContext->NextBulkOutPosition.
8927 + // and the packet will wrong.
8928 + RTMP_IRQ_UNLOCK(&pAd->TxContextQueueLock[QueIdx], IrqFlags);
8930 + if (Status != NDIS_STATUS_SUCCESS)
8932 + DBGPRINT(RT_DEBUG_ERROR,("WriteMultiTxResource: CWPos = %ld, NBOutPos = %ld.\n", pHTTXContext->CurWritePosition, pHTTXContext->NextBulkOutPosition));
8936 + // Copy the frame content into DMA buffer and update the pTxBlk->Priv
8937 + NdisMoveMemory(pWirelessPacket, pTxBlk->pSrcBufData, pTxBlk->SrcBufLen);
8938 + pWirelessPacket += pTxBlk->SrcBufLen;
8939 + pTxBlk->Priv += pTxBlk->SrcBufLen;
8942 + // Release the skb buffer here
8943 + RELEASE_NDIS_PACKET(pAd, pTxBlk->pPacket, NDIS_STATUS_SUCCESS);
8950 +VOID RtmpUSB_FinalWriteTxResource(
8951 + IN PRTMP_ADAPTER pAd,
8952 + IN TX_BLK *pTxBlk,
8953 + IN USHORT totalMPDUSize,
8957 + HT_TX_CONTEXT *pHTTXContext;
8958 + UINT32 fillOffset;
8959 + TXINFO_STRUC *pTxInfo;
8960 + TXWI_STRUC *pTxWI;
8961 + UINT32 USBDMApktLen, padding;
8962 + unsigned long IrqFlags;
8963 + PUCHAR pWirelessPacket;
8965 + QueIdx = pTxBlk->QueIdx;
8966 + pHTTXContext = &pAd->TxContext[QueIdx];
8968 + RTMP_IRQ_LOCK(&pAd->TxContextQueueLock[QueIdx], IrqFlags);
8970 + if (pHTTXContext->bCurWriting == TRUE)
8972 + fillOffset = pHTTXContext->CurWritePosition;
8973 + if (((pHTTXContext->ENextBulkOutPosition == pHTTXContext->CurWritePosition) || ((pHTTXContext->ENextBulkOutPosition-8) == pHTTXContext->CurWritePosition))
8974 + && (pHTTXContext->bCopySavePad == TRUE))
8975 + pWirelessPacket = (PUCHAR)(&pHTTXContext->SavedPad[0]);
8977 + pWirelessPacket = (PUCHAR)(&pHTTXContext->TransferBuffer->field.WirelessPacket[fillOffset]);
8980 + // Update TxInfo->USBDMApktLen ,
8981 + // the length = TXWI_SIZE + 802.11_hdr + 802.11_hdr_pad + payload_of_all_batch_frames + Bulk-Out-padding
8983 + pTxInfo = (PTXINFO_STRUC)(pWirelessPacket);
8985 + // Calculate the bulk-out padding
8986 + USBDMApktLen = pTxBlk->Priv - TXINFO_SIZE;
8987 + padding = (4 - (USBDMApktLen % 4)) & 0x03; // round up to 4 byte alignment
8988 + USBDMApktLen += padding;
8990 + pTxInfo->USBDMATxPktLen = USBDMApktLen;
8993 + // Update TXWI->MPDUtotalByteCount ,
8994 + // the length = 802.11 header + payload_of_all_batch_frames
8995 + pTxWI= (PTXWI_STRUC)(pWirelessPacket + TXINFO_SIZE);
8996 + pTxWI->MPDUtotalByteCount = totalMPDUSize;
8999 + // Update the pHTTXContext->CurWritePosition
9001 + pHTTXContext->CurWritePosition += (TXINFO_SIZE + USBDMApktLen);
9002 + if ((pHTTXContext->CurWritePosition + 3906)> MAX_TXBULK_LIMIT)
9003 + { // Add 3906 for prevent the NextBulkOut packet size is a A-RALINK/A-MSDU Frame.
9004 + pHTTXContext->CurWritePosition = 8;
9005 + pTxInfo->SwUseLastRound = 1;
9007 + pHTTXContext->CurWriteRealPos = pHTTXContext->CurWritePosition;
9011 + // Zero the last padding.
9013 + pWirelessPacket = (&pHTTXContext->TransferBuffer->field.WirelessPacket[fillOffset + pTxBlk->Priv]);
9014 + NdisZeroMemory(pWirelessPacket, padding + 8);
9016 + // Finally, set bCurWriting as FALSE
9017 + pHTTXContext->bCurWriting = FALSE;
9021 + { // It should not happened now unless we are going to shutdown.
9022 + DBGPRINT(RT_DEBUG_ERROR, ("FinalWriteTxResource():bCurWriting is FALSE when handle last frames.\n"));
9025 + RTMP_IRQ_UNLOCK(&pAd->TxContextQueueLock[QueIdx], IrqFlags);
9030 +VOID RtmpUSBDataLastTxIdx(
9031 + IN PRTMP_ADAPTER pAd,
9035 + // DO nothing for USB.
9040 + When can do bulk-out:
9041 + 1. TxSwFreeIdx < TX_RING_SIZE;
9042 + It means has at least one Ring entity is ready for bulk-out, kick it out.
9043 + 2. If TxSwFreeIdx == TX_RING_SIZE
9044 + Check if the CurWriting flag is FALSE, if it's FALSE, we can do kick out.
9047 +VOID RtmpUSBDataKickOut(
9048 + IN PRTMP_ADAPTER pAd,
9049 + IN TX_BLK *pTxBlk,
9052 + RTUSB_SET_BULK_FLAG(pAd, (fRTUSB_BULK_OUT_DATA_NORMAL << QueIdx));
9053 + RTUSBKickBulkOut(pAd);
9059 + Must be run in Interrupt context
9060 + This function handle RT2870 specific TxDesc and cpu index update and kick the packet out.
9062 +int RtmpUSBMgmtKickOut(
9063 + IN RTMP_ADAPTER *pAd,
9065 + IN PNDIS_PACKET pPacket,
9066 + IN PUCHAR pSrcBufVA,
9067 + IN UINT SrcBufLen)
9069 + PTXINFO_STRUC pTxInfo;
9070 + ULONG BulkOutSize;
9073 + ULONG SwIdx = pAd->MgmtRing.TxCpuIdx;
9074 + PTX_CONTEXT pMLMEContext = (PTX_CONTEXT)pAd->MgmtRing.Cell[SwIdx].AllocVa;
9075 + unsigned long IrqFlags;
9078 + pTxInfo = (PTXINFO_STRUC)(pSrcBufVA);
9080 + // Build our URB for USBD
9081 + BulkOutSize = SrcBufLen;
9082 + BulkOutSize = (BulkOutSize + 3) & (~3);
9083 + RTMPWriteTxInfo(pAd, pTxInfo, (USHORT)(BulkOutSize - TXINFO_SIZE), TRUE, EpToQueue[MGMTPIPEIDX], FALSE, FALSE);
9085 + BulkOutSize += 4; // Always add 4 extra bytes at every packet.
9087 + // If BulkOutSize is multiple of BulkOutMaxPacketSize, add extra 4 bytes again.
9088 + if ((BulkOutSize % pAd->BulkOutMaxPacketSize) == 0)
9091 + padLen = BulkOutSize - SrcBufLen;
9092 + ASSERT((padLen <= RTMP_PKT_TAIL_PADDING));
9094 + // Now memzero all extra padding bytes.
9095 + pDest = (PUCHAR)(pSrcBufVA + SrcBufLen);
9096 + skb_put(GET_OS_PKT_TYPE(pPacket), padLen);
9097 + NdisZeroMemory(pDest, padLen);
9099 + RTMP_IRQ_LOCK(&pAd->MLMEBulkOutLock, IrqFlags);
9101 + pAd->MgmtRing.Cell[pAd->MgmtRing.TxCpuIdx].pNdisPacket = pPacket;
9102 + pMLMEContext->TransferBuffer = (PTX_BUFFER)(GET_OS_PKT_DATAPTR(pPacket));
9104 + // Length in TxInfo should be 8 less than bulkout size.
9105 + pMLMEContext->BulkOutSize = BulkOutSize;
9106 + pMLMEContext->InUse = TRUE;
9107 + pMLMEContext->bWaitingBulkOut = TRUE;
9111 + //hex_dump("RtmpUSBMgmtKickOut", &pMLMEContext->TransferBuffer->field.WirelessPacket[0], (pMLMEContext->BulkOutSize > 16 ? 16 : pMLMEContext->BulkOutSize));
9113 + //pAd->RalinkCounters.KickTxCount++;
9114 + //pAd->RalinkCounters.OneSecTxDoneCount++;
9116 + //if (pAd->MgmtRing.TxSwFreeIdx == MGMT_RING_SIZE)
9117 + // needKickOut = TRUE;
9119 + // Decrease the TxSwFreeIdx and Increase the TX_CTX_IDX
9120 + pAd->MgmtRing.TxSwFreeIdx--;
9121 + INC_RING_INDEX(pAd->MgmtRing.TxCpuIdx, MGMT_RING_SIZE);
9123 + RTMP_IRQ_UNLOCK(&pAd->MLMEBulkOutLock, IrqFlags);
9125 + RTUSB_SET_BULK_FLAG(pAd, fRTUSB_BULK_OUT_MLME);
9126 + //if (needKickOut)
9127 + RTUSBKickBulkOut(pAd);
9133 +VOID RtmpUSBNullFrameKickOut(
9134 + IN RTMP_ADAPTER *pAd,
9136 + IN UCHAR *pNullFrame,
9137 + IN UINT32 frameLen)
9139 + if (pAd->NullContext.InUse == FALSE)
9141 + PTX_CONTEXT pNullContext;
9142 + PTXINFO_STRUC pTxInfo;
9143 + PTXWI_STRUC pTxWI;
9144 + PUCHAR pWirelessPkt;
9146 + pNullContext = &(pAd->NullContext);
9148 + // Set the in use bit
9149 + pNullContext->InUse = TRUE;
9150 + pWirelessPkt = (PUCHAR)&pNullContext->TransferBuffer->field.WirelessPacket[0];
9152 + RTMPZeroMemory(&pWirelessPkt[0], 100);
9153 + pTxInfo = (PTXINFO_STRUC)&pWirelessPkt[0];
9154 + RTMPWriteTxInfo(pAd, pTxInfo, (USHORT)(sizeof(HEADER_802_11)+TXWI_SIZE), TRUE, EpToQueue[MGMTPIPEIDX], FALSE, FALSE);
9155 + pTxInfo->QSEL = FIFO_EDCA;
9156 + pTxWI = (PTXWI_STRUC)&pWirelessPkt[TXINFO_SIZE];
9157 + RTMPWriteTxWI(pAd, pTxWI, FALSE, FALSE, FALSE, FALSE, TRUE, FALSE, 0, BSSID_WCID, (sizeof(HEADER_802_11)),
9158 + 0, 0, (UCHAR)pAd->CommonCfg.MlmeTransmit.field.MCS, IFS_HTTXOP, FALSE, &pAd->CommonCfg.MlmeTransmit);
9159 +#ifdef RT_BIG_ENDIAN
9160 + RTMPWIEndianChange((PUCHAR)pTxWI, TYPE_TXWI);
9161 +#endif // RT_BIG_ENDIAN //
9163 + RTMPMoveMemory(&pWirelessPkt[TXWI_SIZE+TXINFO_SIZE], &pAd->NullFrame, sizeof(HEADER_802_11));
9164 +#ifdef RT_BIG_ENDIAN
9165 + RTMPFrameEndianChange(pAd, (PUCHAR)&pWirelessPkt[TXINFO_SIZE + TXWI_SIZE], DIR_WRITE, FALSE);
9166 +#endif // RT_BIG_ENDIAN //
9167 + pAd->NullContext.BulkOutSize = TXINFO_SIZE + TXWI_SIZE + sizeof(pAd->NullFrame) + 4;
9169 + // Fill out frame length information for global Bulk out arbitor
9170 + //pNullContext->BulkOutSize = TransferBufferLength;
9171 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - send NULL Frame @%d Mbps...\n", RateIdToMbps[pAd->CommonCfg.TxRate]));
9172 + RTUSB_SET_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_NULL);
9175 + RTUSBKickBulkOut(pAd);
9180 +#ifdef CONFIG_STA_SUPPORT
9182 + ========================================================================
9184 + Routine Description:
9185 + Check Rx descriptor, return NDIS_STATUS_FAILURE if any error dound
9188 + pRxD Pointer to the Rx descriptor
9191 + NDIS_STATUS_SUCCESS No err
9192 + NDIS_STATUS_FAILURE Error
9196 + ========================================================================
9198 +NDIS_STATUS RTMPCheckRxError(
9199 + IN PRTMP_ADAPTER pAd,
9200 + IN PHEADER_802_11 pHeader,
9201 + IN PRXWI_STRUC pRxWI,
9202 + IN PRT28XX_RXD_STRUC pRxINFO)
9204 + PCIPHER_KEY pWpaKey;
9207 + if (pAd->bPromiscuous == TRUE)
9208 + return(NDIS_STATUS_SUCCESS);
9209 + if(pRxINFO == NULL)
9210 + return(NDIS_STATUS_FAILURE);
9212 + // Phy errors & CRC errors
9215 + // Check RSSI for Noise Hist statistic collection.
9216 + dBm = (INT) (pRxWI->RSSI0) - pAd->BbpRssiToDbmDelta;
9218 + pAd->StaCfg.RPIDensity[0] += 1;
9219 + else if (dBm <= -82)
9220 + pAd->StaCfg.RPIDensity[1] += 1;
9221 + else if (dBm <= -77)
9222 + pAd->StaCfg.RPIDensity[2] += 1;
9223 + else if (dBm <= -72)
9224 + pAd->StaCfg.RPIDensity[3] += 1;
9225 + else if (dBm <= -67)
9226 + pAd->StaCfg.RPIDensity[4] += 1;
9227 + else if (dBm <= -62)
9228 + pAd->StaCfg.RPIDensity[5] += 1;
9229 + else if (dBm <= -57)
9230 + pAd->StaCfg.RPIDensity[6] += 1;
9231 + else if (dBm > -57)
9232 + pAd->StaCfg.RPIDensity[7] += 1;
9234 + return(NDIS_STATUS_FAILURE);
9237 + // Add Rx size to channel load counter, we should ignore error counts
9238 + pAd->StaCfg.CLBusyBytes += (pRxWI->MPDUtotalByteCount+ 14);
9240 + // Drop ToDs promiscous frame, it is opened due to CCX 2 channel load statistics
9241 + if (pHeader->FC.ToDs)
9243 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("Err;FC.ToDs\n"));
9244 + return NDIS_STATUS_FAILURE;
9247 + // Paul 04-03 for OFDM Rx length issue
9248 + if (pRxWI->MPDUtotalByteCount > MAX_AGGREGATION_SIZE)
9250 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("received packet too long\n"));
9251 + return NDIS_STATUS_FAILURE;
9254 + // Drop not U2M frames, cant's drop here because we will drop beacon in this case
9255 + // I am kind of doubting the U2M bit operation
9256 + // if (pRxD->U2M == 0)
9257 + // return(NDIS_STATUS_FAILURE);
9259 + // drop decyption fail frame
9260 + if (pRxINFO->Decrypted && pRxINFO->CipherErr)
9266 + if ((pRxINFO->CipherErr == 2) && pRxINFO->MyBss)
9268 + pWpaKey = &pAd->SharedKey[BSS0][pRxWI->KeyIndex];
9269 + RTMPReportMicError(pAd, pWpaKey);
9270 + DBGPRINT_RAW(RT_DEBUG_ERROR,("Rx MIC Value error\n"));
9273 + if (pRxINFO->Decrypted &&
9274 + (pAd->SharedKey[BSS0][pRxWI->KeyIndex].CipherAlg == CIPHER_AES) &&
9275 + (pHeader->Sequence == pAd->FragFrame.Sequence))
9278 + // Acceptable since the First FragFrame no CipherErr problem.
9280 + return(NDIS_STATUS_SUCCESS);
9283 + return(NDIS_STATUS_FAILURE);
9286 + return(NDIS_STATUS_SUCCESS);
9289 +VOID RT28xxUsbStaAsicForceWakeup(
9290 + IN PRTMP_ADAPTER pAd,
9291 + IN BOOLEAN bFromTx)
9293 + AUTO_WAKEUP_STRUC AutoWakeupCfg;
9295 + AutoWakeupCfg.word = 0;
9296 + RTMP_IO_WRITE32(pAd, AUTO_WAKEUP_CFG, AutoWakeupCfg.word);
9298 + AsicSendCommandToMcu(pAd, 0x31, 0xff, 0x00, 0x02);
9300 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_DOZE);
9303 +VOID RT28xxUsbStaAsicSleepThenAutoWakeup(
9304 + IN PRTMP_ADAPTER pAd,
9305 + IN USHORT TbttNumToNextWakeUp)
9307 + AUTO_WAKEUP_STRUC AutoWakeupCfg;
9309 + // we have decided to SLEEP, so at least do it for a BEACON period.
9310 + if (TbttNumToNextWakeUp == 0)
9311 + TbttNumToNextWakeUp = 1;
9313 + AutoWakeupCfg.word = 0;
9314 + RTMP_IO_WRITE32(pAd, AUTO_WAKEUP_CFG, AutoWakeupCfg.word);
9316 + AutoWakeupCfg.field.NumofSleepingTbtt = TbttNumToNextWakeUp - 1;
9317 + AutoWakeupCfg.field.EnableAutoWakeup = 1;
9318 + AutoWakeupCfg.field.AutoLeadTime = 5;
9319 + RTMP_IO_WRITE32(pAd, AUTO_WAKEUP_CFG, AutoWakeupCfg.word);
9321 + AsicSendCommandToMcu(pAd, 0x30, 0xff, 0xff, 0x02); // send POWER-SAVE command to MCU. Timeout 40us.
9323 + OPSTATUS_SET_FLAG(pAd, fOP_STATUS_DOZE);
9326 +#endif // CONFIG_STA_SUPPORT //
9328 +VOID RT28xxUsbMlmeRadioOn(
9329 + IN PRTMP_ADAPTER pAd)
9331 + DBGPRINT(RT_DEBUG_TRACE,("RT28xxUsbMlmeRadioOn()\n"));
9333 + if (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RADIO_OFF))
9336 +#ifdef CONFIG_STA_SUPPORT
9337 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
9339 + AsicSendCommandToMcu(pAd, 0x31, 0xff, 0x00, 0x02);
9340 + RTMPusecDelay(10000);
9342 +#endif // CONFIG_STA_SUPPORT //
9343 + NICResetFromError(pAd);
9346 + RTMPEnableRxTx(pAd);
9349 + if (IS_RT3071(pAd))
9351 + RT30xxReverseRFSleepModeSetup(pAd);
9353 +#endif // RT3070 //
9355 + // Clear Radio off flag
9356 + RTMP_CLEAR_FLAG(pAd, fRTMP_ADAPTER_RADIO_OFF);
9358 +#ifdef CONFIG_STA_SUPPORT
9359 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
9360 + RTUSBBulkReceive(pAd);
9361 +#endif // CONFIG_STA_SUPPORT //
9364 + RTMPSetLED(pAd, LED_RADIO_ON);
9367 +VOID RT28xxUsbMlmeRadioOFF(
9368 + IN PRTMP_ADAPTER pAd)
9370 + WPDMA_GLO_CFG_STRUC GloCfg;
9373 + DBGPRINT(RT_DEBUG_TRACE,("RT28xxUsbMlmeRadioOFF()\n"));
9375 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RADIO_OFF))
9379 + RTMPSetLED(pAd, LED_RADIO_OFF);
9380 + // Set Radio off flag
9381 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_RADIO_OFF);
9383 +#ifdef CONFIG_STA_SUPPORT
9384 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
9386 + // Link down first if any association exists
9387 + if (INFRA_ON(pAd) || ADHOC_ON(pAd))
9388 + LinkDown(pAd, FALSE);
9389 + RTMPusecDelay(10000);
9391 + //==========================================
9392 + // Clean up old bss table
9393 + BssTableInit(&pAd->ScanTab);
9395 +#endif // CONFIG_STA_SUPPORT //
9398 + if (pAd->CommonCfg.BBPCurrentBW == BW_40)
9400 + // Must using 40MHz.
9401 + AsicTurnOffRFClk(pAd, pAd->CommonCfg.CentralChannel);
9405 + // Must using 20MHz.
9406 + AsicTurnOffRFClk(pAd, pAd->CommonCfg.Channel);
9409 + // Disable Tx/Rx DMA
9410 + RTUSBReadMACRegister(pAd, WPDMA_GLO_CFG, &GloCfg.word); // disable DMA
9411 + GloCfg.field.EnableTxDMA = 0;
9412 + GloCfg.field.EnableRxDMA = 0;
9413 + RTUSBWriteMACRegister(pAd, WPDMA_GLO_CFG, GloCfg.word); // abort all TX rings
9415 + // Waiting for DMA idle
9419 + RTMP_IO_READ32(pAd, WPDMA_GLO_CFG, &GloCfg.word);
9420 + if ((GloCfg.field.TxDMABusy == 0) && (GloCfg.field.RxDMABusy == 0))
9423 + RTMPusecDelay(1000);
9424 + }while (i++ < 100);
9426 + // Disable MAC Tx/Rx
9427 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
9428 + Value &= (0xfffffff3);
9429 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
9431 + // MAC_SYS_CTRL => value = 0x0 => 40mA
9432 + //RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, 0);
9434 + // PWR_PIN_CFG => value = 0x0 => 40mA
9435 + //RTMP_IO_WRITE32(pAd, PWR_PIN_CFG, 0);
9437 + // TX_PIN_CFG => value = 0x0 => 20mA
9438 + //RTMP_IO_WRITE32(pAd, TX_PIN_CFG, 0);
9440 +#ifdef CONFIG_STA_SUPPORT
9441 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
9442 + AsicSendCommandToMcu(pAd, 0x30, 0xff, 0xff, 0x02);
9443 +#endif // CONFIG_STA_SUPPORT //
9447 +++ b/drivers/staging/rt3070/common/cmm_data.c
9450 + *************************************************************************
9451 + * Ralink Tech Inc.
9452 + * 5F., No.36, Taiyuan St., Jhubei City,
9453 + * Hsinchu County 302,
9456 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
9458 + * This program is free software; you can redistribute it and/or modify *
9459 + * it under the terms of the GNU General Public License as published by *
9460 + * the Free Software Foundation; either version 2 of the License, or *
9461 + * (at your option) any later version. *
9463 + * This program is distributed in the hope that it will be useful, *
9464 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
9465 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
9466 + * GNU General Public License for more details. *
9468 + * You should have received a copy of the GNU General Public License *
9469 + * along with this program; if not, write to the *
9470 + * Free Software Foundation, Inc., *
9471 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
9473 + *************************************************************************
9476 +#include "../rt_config.h"
9478 +#define MAX_TX_IN_TBTT (16)
9481 +UCHAR SNAP_802_1H[] = {0xaa, 0xaa, 0x03, 0x00, 0x00, 0x00};
9482 +UCHAR SNAP_BRIDGE_TUNNEL[] = {0xaa, 0xaa, 0x03, 0x00, 0x00, 0xf8};
9483 +// Add Cisco Aironet SNAP heade for CCX2 support
9484 +UCHAR SNAP_AIRONET[] = {0xaa, 0xaa, 0x03, 0x00, 0x40, 0x96, 0x00, 0x00};
9485 +UCHAR CKIP_LLC_SNAP[] = {0xaa, 0xaa, 0x03, 0x00, 0x40, 0x96, 0x00, 0x02};
9486 +UCHAR EAPOL_LLC_SNAP[]= {0xaa, 0xaa, 0x03, 0x00, 0x00, 0x00, 0x88, 0x8e};
9487 +UCHAR EAPOL[] = {0x88, 0x8e};
9488 +UCHAR TPID[] = {0x81, 0x00}; /* VLAN related */
9490 +UCHAR IPX[] = {0x81, 0x37};
9491 +UCHAR APPLE_TALK[] = {0x80, 0xf3};
9492 +UCHAR RateIdToPlcpSignal[12] = {
9493 + 0, /* RATE_1 */ 1, /* RATE_2 */ 2, /* RATE_5_5 */ 3, /* RATE_11 */ // see BBP spec
9494 + 11, /* RATE_6 */ 15, /* RATE_9 */ 10, /* RATE_12 */ 14, /* RATE_18 */ // see IEEE802.11a-1999 p.14
9495 + 9, /* RATE_24 */ 13, /* RATE_36 */ 8, /* RATE_48 */ 12 /* RATE_54 */ }; // see IEEE802.11a-1999 p.14
9497 +UCHAR OfdmSignalToRateId[16] = {
9498 + RATE_54, RATE_54, RATE_54, RATE_54, // OFDM PLCP Signal = 0, 1, 2, 3 respectively
9499 + RATE_54, RATE_54, RATE_54, RATE_54, // OFDM PLCP Signal = 4, 5, 6, 7 respectively
9500 + RATE_48, RATE_24, RATE_12, RATE_6, // OFDM PLCP Signal = 8, 9, 10, 11 respectively
9501 + RATE_54, RATE_36, RATE_18, RATE_9, // OFDM PLCP Signal = 12, 13, 14, 15 respectively
9504 +UCHAR OfdmRateToRxwiMCS[12] = {
9506 + 0, 1, 2, 3, // OFDM rate 6,9,12,18 = rxwi mcs 0,1,2,3
9507 + 4, 5, 6, 7, // OFDM rate 24,36,48,54 = rxwi mcs 4,5,6,7
9509 +UCHAR RxwiMCSToOfdmRate[12] = {
9510 + RATE_6, RATE_9, RATE_12, RATE_18,
9511 + RATE_24, RATE_36, RATE_48, RATE_54, // OFDM rate 6,9,12,18 = rxwi mcs 0,1,2,3
9512 + 4, 5, 6, 7, // OFDM rate 24,36,48,54 = rxwi mcs 4,5,6,7
9515 +char* MCSToMbps[] = {"1Mbps","2Mbps","5.5Mbps","11Mbps","06Mbps","09Mbps","12Mbps","18Mbps","24Mbps","36Mbps","48Mbps","54Mbps","MM-0","MM-1","MM-2","MM-3","MM-4","MM-5","MM-6","MM-7","MM-8","MM-9","MM-10","MM-11","MM-12","MM-13","MM-14","MM-15","MM-32","ee1","ee2","ee3"};
9517 +UCHAR default_cwmin[]={CW_MIN_IN_BITS, CW_MIN_IN_BITS, CW_MIN_IN_BITS-1, CW_MIN_IN_BITS-2};
9518 +//UCHAR default_cwmax[]={CW_MAX_IN_BITS, CW_MAX_IN_BITS, CW_MIN_IN_BITS, CW_MIN_IN_BITS-1};
9519 +UCHAR default_sta_aifsn[]={3,7,2,2};
9521 +UCHAR MapUserPriorityToAccessCategory[8] = {QID_AC_BE, QID_AC_BK, QID_AC_BK, QID_AC_BE, QID_AC_VI, QID_AC_VI, QID_AC_VO, QID_AC_VO};
9525 + ========================================================================
9527 + Routine Description:
9528 + API for MLME to transmit management frame to AP (BSS Mode)
9529 + or station (IBSS Mode)
9532 + pAd Pointer to our adapter
9533 + pData Pointer to the outgoing 802.11 frame
9534 + Length Size of outgoing management frame
9537 + NDIS_STATUS_FAILURE
9538 + NDIS_STATUS_PENDING
9539 + NDIS_STATUS_SUCCESS
9541 + IRQL = PASSIVE_LEVEL
9542 + IRQL = DISPATCH_LEVEL
9546 + ========================================================================
9548 +NDIS_STATUS MiniportMMRequest(
9549 + IN PRTMP_ADAPTER pAd,
9554 + PNDIS_PACKET pPacket;
9555 + NDIS_STATUS Status = NDIS_STATUS_SUCCESS;
9558 + UCHAR rtmpHwHdr[TXINFO_SIZE + TXWI_SIZE]; //RTMP_HW_HDR_LEN];
9560 + ASSERT(Length <= MGMT_DMA_BUFFER_SIZE);
9564 + // 2860C use Tx Ring
9566 + IrqState = pAd->irq_disabled;
9570 + // Reset is in progress, stop immediately
9571 + if ( RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RESET_IN_PROGRESS) ||
9572 + RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS | fRTMP_ADAPTER_NIC_NOT_EXIST)||
9573 + !RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_START_UP))
9575 + Status = NDIS_STATUS_FAILURE;
9579 + // Check Free priority queue
9580 + // Since we use PBF Queue2 for management frame. Its corresponding DMA ring should be using TxRing.
9582 + // 2860C use Tx Ring
9583 + if (pAd->MACVersion == 0x28600100)
9585 + FreeNum = GET_TXRING_FREENO(pAd, QueIdx);
9589 + FreeNum = GET_MGMTRING_FREENO(pAd);
9592 + if ((FreeNum > 0))
9594 + // We need to reserve space for rtmp hardware header. i.e., TxWI for RT2860 and TxInfo+TxWI for RT2870
9595 + NdisZeroMemory(&rtmpHwHdr, (TXINFO_SIZE + TXWI_SIZE));
9596 + Status = RTMPAllocateNdisPacket(pAd, &pPacket, (PUCHAR)&rtmpHwHdr, (TXINFO_SIZE + TXWI_SIZE), pData, Length);
9597 + if (Status != NDIS_STATUS_SUCCESS)
9599 + DBGPRINT(RT_DEBUG_WARN, ("MiniportMMRequest (error:: can't allocate NDIS PACKET)\n"));
9603 + //pAd->CommonCfg.MlmeTransmit.field.MODE = MODE_CCK;
9604 + //pAd->CommonCfg.MlmeRate = RATE_2;
9607 + Status = MlmeHardTransmit(pAd, QueIdx, pPacket);
9608 + if (Status != NDIS_STATUS_SUCCESS)
9609 + RTMPFreeNdisPacket(pAd, pPacket);
9613 + pAd->RalinkCounters.MgmtRingFullCount++;
9614 + DBGPRINT(RT_DEBUG_ERROR, ("Qidx(%d), not enough space in MgmtRing, MgmtRingFullCount=%ld!\n",
9615 + QueIdx, pAd->RalinkCounters.MgmtRingFullCount));
9626 +NDIS_STATUS MlmeDataHardTransmit(
9627 + IN PRTMP_ADAPTER pAd,
9629 + IN PNDIS_PACKET pPacket);
9631 +#define MAX_DATAMM_RETRY 3
9633 + ========================================================================
9635 + Routine Description:
9636 + API for MLME to transmit management frame to AP (BSS Mode)
9637 + or station (IBSS Mode)
9640 + pAd Pointer to our adapter
9641 + pData Pointer to the outgoing 802.11 frame
9642 + Length Size of outgoing management frame
9645 + NDIS_STATUS_FAILURE
9646 + NDIS_STATUS_PENDING
9647 + NDIS_STATUS_SUCCESS
9649 + IRQL = PASSIVE_LEVEL
9650 + IRQL = DISPATCH_LEVEL
9654 + ========================================================================
9656 +NDIS_STATUS MiniportDataMMRequest(
9657 + IN PRTMP_ADAPTER pAd,
9662 + PNDIS_PACKET pPacket;
9663 + NDIS_STATUS Status = NDIS_STATUS_SUCCESS;
9667 + UCHAR rtmpHwHdr[TXINFO_SIZE + TXWI_SIZE]; //RTMP_HW_HDR_LEN];
9669 + ASSERT(Length <= MGMT_DMA_BUFFER_SIZE);
9671 + // 2860C use Tx Ring
9672 + IrqState = pAd->irq_disabled;
9676 + // Reset is in progress, stop immediately
9677 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RESET_IN_PROGRESS) ||
9678 + RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS | fRTMP_ADAPTER_NIC_NOT_EXIST)||
9679 + !RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_START_UP))
9681 + Status = NDIS_STATUS_FAILURE;
9685 + // Check Free priority queue
9686 + // Since we use PBF Queue2 for management frame. Its corresponding DMA ring should be using TxRing.
9688 + // 2860C use Tx Ring
9690 + // free Tx(QueIdx) resources
9691 + FreeNum = GET_TXRING_FREENO(pAd, QueIdx);
9693 + if ((FreeNum > 0))
9695 + // We need to reserve space for rtmp hardware header. i.e., TxWI for RT2860 and TxInfo+TxWI for RT2870
9696 + NdisZeroMemory(&rtmpHwHdr, (TXINFO_SIZE + TXWI_SIZE));
9697 + Status = RTMPAllocateNdisPacket(pAd, &pPacket, (PUCHAR)&rtmpHwHdr, (TXINFO_SIZE + TXWI_SIZE), pData, Length);
9698 + if (Status != NDIS_STATUS_SUCCESS)
9700 + DBGPRINT(RT_DEBUG_WARN, ("MiniportMMRequest (error:: can't allocate NDIS PACKET)\n"));
9704 + //pAd->CommonCfg.MlmeTransmit.field.MODE = MODE_CCK;
9705 + //pAd->CommonCfg.MlmeRate = RATE_2;
9708 + Status = MlmeDataHardTransmit(pAd, QueIdx, pPacket);
9709 + if (Status != NDIS_STATUS_SUCCESS)
9710 + RTMPFreeNdisPacket(pAd, pPacket);
9711 + retry = MAX_DATAMM_RETRY;
9717 + printk("retry %d\n", retry);
9718 + pAd->RalinkCounters.MgmtRingFullCount++;
9720 + if (retry >= MAX_DATAMM_RETRY)
9722 + DBGPRINT(RT_DEBUG_ERROR, ("Qidx(%d), not enough space in DataRing, MgmtRingFullCount=%ld!\n",
9723 + QueIdx, pAd->RalinkCounters.MgmtRingFullCount));
9727 + } while (retry < MAX_DATAMM_RETRY);
9739 + ========================================================================
9741 + Routine Description:
9742 + Copy frame from waiting queue into relative ring buffer and set
9743 + appropriate ASIC register to kick hardware transmit function
9746 + pAd Pointer to our adapter
9747 + pBuffer Pointer to memory of outgoing frame
9748 + Length Size of outgoing management frame
9751 + NDIS_STATUS_FAILURE
9752 + NDIS_STATUS_PENDING
9753 + NDIS_STATUS_SUCCESS
9755 + IRQL = PASSIVE_LEVEL
9756 + IRQL = DISPATCH_LEVEL
9760 + ========================================================================
9762 +NDIS_STATUS MlmeHardTransmit(
9763 + IN PRTMP_ADAPTER pAd,
9765 + IN PNDIS_PACKET pPacket)
9767 + if ((pAd->CommonCfg.RadarDetect.RDMode != RD_NORMAL_MODE)
9768 +#ifdef CARRIER_DETECTION_SUPPORT
9769 +#endif // CARRIER_DETECTION_SUPPORT //
9772 + return NDIS_STATUS_FAILURE;
9775 + return MlmeHardTransmitMgmtRing(pAd,QueIdx,pPacket);
9779 +NDIS_STATUS MlmeDataHardTransmit(
9780 + IN PRTMP_ADAPTER pAd,
9782 + IN PNDIS_PACKET pPacket)
9784 + if ((pAd->CommonCfg.RadarDetect.RDMode != RD_NORMAL_MODE)
9785 +#ifdef CARRIER_DETECTION_SUPPORT
9786 +#endif // CARRIER_DETECTION_SUPPORT //
9789 + return NDIS_STATUS_FAILURE;
9793 + return MlmeHardTransmitMgmtRing(pAd,QueIdx,pPacket);
9794 +#endif // RT2870 //
9801 +NDIS_STATUS MlmeHardTransmitMgmtRing(
9802 + IN PRTMP_ADAPTER pAd,
9804 + IN PNDIS_PACKET pPacket)
9806 + PACKET_INFO PacketInfo;
9809 + PHEADER_802_11 pHeader_802_11;
9810 + BOOLEAN bAckRequired, bInsertTimestamp;
9812 + PTXWI_STRUC pFirstTxWI;
9813 + MAC_TABLE_ENTRY *pMacEntry = NULL;
9815 + RTMP_QueryPacketInfo(pPacket, &PacketInfo, &pSrcBufVA, &SrcBufLen);
9817 + // Make sure MGMT ring resource won't be used by other threads
9818 +// sample, for IRQ LOCK -> SEM LOCK
9819 +// IrqState = pAd->irq_disabled;
9821 + RTMP_SEM_LOCK(&pAd->MgmtRingLock);
9824 + if (pSrcBufVA == NULL)
9826 + // The buffer shouldn't be NULL
9828 + RTMP_SEM_UNLOCK(&pAd->MgmtRingLock);
9829 + return NDIS_STATUS_FAILURE;
9832 +#ifdef CONFIG_STA_SUPPORT
9833 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
9835 + // outgoing frame always wakeup PHY to prevent frame lost
9836 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_DOZE))
9837 + AsicForceWakeup(pAd, TRUE);
9839 +#endif // CONFIG_STA_SUPPORT //
9841 + pFirstTxWI = (PTXWI_STRUC)(pSrcBufVA + TXINFO_SIZE);
9842 + pHeader_802_11 = (PHEADER_802_11) (pSrcBufVA + TXINFO_SIZE + TXWI_SIZE); //TXWI_SIZE);
9844 + if (pHeader_802_11->Addr1[0] & 0x01)
9846 + MlmeRate = pAd->CommonCfg.BasicMlmeRate;
9850 + MlmeRate = pAd->CommonCfg.MlmeRate;
9853 + // Verify Mlme rate for a / g bands.
9854 + if ((pAd->LatchRfRegs.Channel > 14) && (MlmeRate < RATE_6)) // 11A band
9855 + MlmeRate = RATE_6;
9857 + if ((pHeader_802_11->FC.Type == BTYPE_DATA) &&
9858 + (pHeader_802_11->FC.SubType == SUBTYPE_QOS_NULL))
9860 + pMacEntry = MacTableLookup(pAd, pHeader_802_11->Addr1);
9863 +#ifdef CONFIG_STA_SUPPORT
9864 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
9866 + // Fixed W52 with Activity scan issue in ABG_MIXED and ABGN_MIXED mode.
9867 + if (pAd->CommonCfg.PhyMode == PHY_11ABG_MIXED
9868 +#ifdef DOT11_N_SUPPORT
9869 + || pAd->CommonCfg.PhyMode == PHY_11ABGN_MIXED
9870 +#endif // DOT11_N_SUPPORT //
9873 + if (pAd->LatchRfRegs.Channel > 14)
9874 + pAd->CommonCfg.MlmeTransmit.field.MODE = 1;
9876 + pAd->CommonCfg.MlmeTransmit.field.MODE = 0;
9879 +#endif // CONFIG_STA_SUPPORT //
9882 + // Should not be hard code to set PwrMgmt to 0 (PWR_ACTIVE)
9883 + // Snice it's been set to 0 while on MgtMacHeaderInit
9884 + // By the way this will cause frame to be send on PWR_SAVE failed.
9886 + // pHeader_802_11->FC.PwrMgmt = 0; // (pAd->StaCfg.Psm == PWR_SAVE);
9888 + // In WMM-UAPSD, mlme frame should be set psm as power saving but probe request frame
9889 +#ifdef CONFIG_STA_SUPPORT
9890 + // Data-Null packets alse pass through MMRequest in RT2860, however, we hope control the psm bit to pass APSD
9891 + if ((pHeader_802_11->FC.Type != BTYPE_DATA) && (pHeader_802_11->FC.Type != BTYPE_CNTL))
9893 + if ((pAd->StaCfg.Psm == PWR_SAVE) &&
9894 + (pHeader_802_11->FC.SubType == SUBTYPE_ACTION))
9895 + pHeader_802_11->FC.PwrMgmt = PWR_SAVE;
9897 + pHeader_802_11->FC.PwrMgmt = PWR_ACTIVE;
9899 +#endif // CONFIG_STA_SUPPORT //
9901 + bInsertTimestamp = FALSE;
9902 + if (pHeader_802_11->FC.Type == BTYPE_CNTL) // must be PS-POLL
9904 +#ifdef CONFIG_STA_SUPPORT
9905 + //Set PM bit in ps-poll, to fix WLK 1.2 PowerSaveMode_ext failure issue.
9906 + if ((pAd->OpMode == OPMODE_STA) && (pHeader_802_11->FC.SubType == SUBTYPE_PS_POLL))
9908 + pHeader_802_11->FC.PwrMgmt = PWR_SAVE;
9910 +#endif // CONFIG_STA_SUPPORT //
9911 + bAckRequired = FALSE;
9913 + else // BTYPE_MGMT or BTYPE_DATA(must be NULL frame)
9915 + //pAd->Sequence++;
9916 + //pHeader_802_11->Sequence = pAd->Sequence;
9918 + if (pHeader_802_11->Addr1[0] & 0x01) // MULTICAST, BROADCAST
9920 + bAckRequired = FALSE;
9921 + pHeader_802_11->Duration = 0;
9925 + bAckRequired = TRUE;
9926 + pHeader_802_11->Duration = RTMPCalcDuration(pAd, MlmeRate, 14);
9927 + if (pHeader_802_11->FC.SubType == SUBTYPE_PROBE_RSP)
9929 + bInsertTimestamp = TRUE;
9934 + pHeader_802_11->Sequence = pAd->Sequence++;
9935 + if (pAd->Sequence >0xfff)
9936 + pAd->Sequence = 0;
9938 + // Before radar detection done, mgmt frame can not be sent but probe req
9939 + // Because we need to use probe req to trigger driver to send probe req in passive scan
9940 + if ((pHeader_802_11->FC.SubType != SUBTYPE_PROBE_REQ)
9941 + && (pAd->CommonCfg.bIEEE80211H == 1)
9942 + && (pAd->CommonCfg.RadarDetect.RDMode != RD_NORMAL_MODE))
9944 + DBGPRINT(RT_DEBUG_ERROR,("MlmeHardTransmit --> radar detect not in normal mode !!!\n"));
9946 + RTMP_SEM_UNLOCK(&pAd->MgmtRingLock);
9947 + return (NDIS_STATUS_FAILURE);
9950 +#ifdef RT_BIG_ENDIAN
9951 + RTMPFrameEndianChange(pAd, (PUCHAR)pHeader_802_11, DIR_WRITE, FALSE);
9955 + // fill scatter-and-gather buffer list into TXD. Internally created NDIS PACKET
9956 + // should always has only one ohysical buffer, and the whole frame size equals
9957 + // to the first scatter buffer size
9960 + // Initialize TX Descriptor
9961 + // For inter-frame gap, the number is for this frame and next frame
9962 + // For MLME rate, we will fix as 2Mb to match other vendor's implement
9963 +// pAd->CommonCfg.MlmeTransmit.field.MODE = 1;
9965 +// management frame doesn't need encryption. so use RESERVED_WCID no matter u are sending to specific wcid or not.
9966 + if (pMacEntry == NULL)
9968 + RTMPWriteTxWI(pAd, pFirstTxWI, FALSE, FALSE, bInsertTimestamp, FALSE, bAckRequired, FALSE,
9969 + 0, RESERVED_WCID, (SrcBufLen - TXINFO_SIZE - TXWI_SIZE), PID_MGMT, 0, (UCHAR)pAd->CommonCfg.MlmeTransmit.field.MCS, IFS_BACKOFF, FALSE, &pAd->CommonCfg.MlmeTransmit);
9973 + RTMPWriteTxWI(pAd, pFirstTxWI, FALSE, FALSE,
9974 + bInsertTimestamp, FALSE, bAckRequired, FALSE,
9975 + 0, pMacEntry->Aid, (SrcBufLen - TXINFO_SIZE - TXWI_SIZE),
9976 + pMacEntry->MaxHTPhyMode.field.MCS, 0,
9977 + (UCHAR)pMacEntry->MaxHTPhyMode.field.MCS,
9978 + IFS_BACKOFF, FALSE, &pMacEntry->MaxHTPhyMode);
9981 +#ifdef RT_BIG_ENDIAN
9982 + RTMPWIEndianChange((PUCHAR)pFirstTxWI, TYPE_TXWI);
9985 + // Now do hardware-depened kick out.
9986 + HAL_KickOutMgmtTx(pAd, QueIdx, pPacket, pSrcBufVA, SrcBufLen);
9988 + // Make sure to release MGMT ring resource
9990 + RTMP_SEM_UNLOCK(&pAd->MgmtRingLock);
9991 + return NDIS_STATUS_SUCCESS;
9995 +/********************************************************************************
9997 + New DeQueue Procedures.
9999 + ********************************************************************************/
10001 +#define DEQUEUE_LOCK(lock, bIntContext, IrqFlags) \
10003 + if (bIntContext == FALSE) \
10004 + RTMP_IRQ_LOCK((lock), IrqFlags); \
10007 +#define DEQUEUE_UNLOCK(lock, bIntContext, IrqFlags) \
10009 + if (bIntContext == FALSE) \
10010 + RTMP_IRQ_UNLOCK((lock), IrqFlags); \
10015 + ========================================================================
10016 + Tx Path design algorithm:
10017 + Basically, we divide the packets into four types, Broadcast/Multicast, 11N Rate(AMPDU, AMSDU, Normal), B/G Rate(ARALINK, Normal),
10018 + Specific Packet Type. Following show the classification rule and policy for each kinds of packets.
10019 + Classification Rule=>
10020 + Multicast: (*addr1 & 0x01) == 0x01
10021 + Specific : bDHCPFrame, bARPFrame, bEAPOLFrame, etc.
10022 + 11N Rate : If peer support HT
10023 + (1).AMPDU -- If TXBA is negotiated.
10024 + (2).AMSDU -- If AMSDU is capable for both peer and ourself.
10025 + *). AMSDU can embedded in a AMPDU, but now we didn't support it.
10026 + (3).Normal -- Other packets which send as 11n rate.
10028 + B/G Rate : If peer is b/g only.
10029 + (1).ARALINK-- If both of peer/us supprot Ralink proprietary Aggregation and the TxRate is large than RATE_6
10030 + (2).Normal -- Other packets which send as b/g rate.
10032 + The packet must be unicast, NOT A-RALINK, NOT A-MSDU, NOT 11n, then can consider about fragment.
10034 + Classified Packet Handle Rule=>
10036 + No ACK, //pTxBlk->bAckRequired = FALSE;
10037 + No WMM, //pTxBlk->bWMM = FALSE;
10038 + No piggyback, //pTxBlk->bPiggyBack = FALSE;
10039 + Force LowRate, //pTxBlk->bForceLowRate = TRUE;
10040 + Specific : Basically, for specific packet, we should handle it specifically, but now all specific packets are use
10041 + the same policy to handle it.
10042 + Force LowRate, //pTxBlk->bForceLowRate = TRUE;
10045 + No piggyback, //pTxBlk->bPiggyBack = FALSE;
10048 + pTxBlk->bWMM = TRUE;
10050 + pTxBlk->bWMM = TRUE;
10057 + ========================================================================
10059 +static UCHAR TxPktClassification(
10060 + IN RTMP_ADAPTER *pAd,
10061 + IN PNDIS_PACKET pPacket)
10063 + UCHAR TxFrameType = TX_UNKOWN_FRAME;
10065 + MAC_TABLE_ENTRY *pMacEntry = NULL;
10066 +#ifdef DOT11_N_SUPPORT
10067 + BOOLEAN bHTRate = FALSE;
10068 +#endif // DOT11_N_SUPPORT //
10070 + Wcid = RTMP_GET_PACKET_WCID(pPacket);
10071 + if (Wcid == MCAST_WCID)
10072 + { // Handle for RA is Broadcast/Multicast Address.
10073 + return TX_MCAST_FRAME;
10076 + // Handle for unicast packets
10077 + pMacEntry = &pAd->MacTab.Content[Wcid];
10078 + if (RTMP_GET_PACKET_LOWRATE(pPacket))
10079 + { // It's a specific packet need to force low rate, i.e., bDHCPFrame, bEAPOLFrame, bWAIFrame
10080 + TxFrameType = TX_LEGACY_FRAME;
10082 +#ifdef DOT11_N_SUPPORT
10083 + else if (IS_HT_RATE(pMacEntry))
10084 + { // it's a 11n capable packet
10086 + // Depends on HTPhyMode to check if the peer support the HTRate transmission.
10087 + // Currently didn't support A-MSDU embedded in A-MPDU
10089 + if (RTMP_GET_PACKET_MOREDATA(pPacket) || (pMacEntry->PsMode == PWR_SAVE))
10090 + TxFrameType = TX_LEGACY_FRAME;
10091 +#ifdef UAPSD_AP_SUPPORT
10092 + else if (RTMP_GET_PACKET_EOSP(pPacket))
10093 + TxFrameType = TX_LEGACY_FRAME;
10094 +#endif // UAPSD_AP_SUPPORT //
10095 + else if((pMacEntry->TXBAbitmap & (1<<(RTMP_GET_PACKET_UP(pPacket)))) != 0)
10096 + return TX_AMPDU_FRAME;
10097 + else if(CLIENT_STATUS_TEST_FLAG(pMacEntry, fCLIENT_STATUS_AMSDU_INUSED))
10098 + return TX_AMSDU_FRAME;
10100 + TxFrameType = TX_LEGACY_FRAME;
10102 +#endif // DOT11_N_SUPPORT //
10104 + { // it's a legacy b/g packet.
10105 + if ((CLIENT_STATUS_TEST_FLAG(pMacEntry, fCLIENT_STATUS_AGGREGATION_CAPABLE) && pAd->CommonCfg.bAggregationCapable) &&
10106 + (RTMP_GET_PACKET_TXRATE(pPacket) >= RATE_6) &&
10107 + (!(OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_WMM_INUSED) && CLIENT_STATUS_TEST_FLAG(pMacEntry, fCLIENT_STATUS_WMM_CAPABLE))))
10108 + { // if peer support Ralink Aggregation, we use it.
10109 + TxFrameType = TX_RALINK_FRAME;
10113 + TxFrameType = TX_LEGACY_FRAME;
10117 + // Currently, our fragment only support when a unicast packet send as NOT-ARALINK, NOT-AMSDU and NOT-AMPDU.
10118 + if ((RTMP_GET_PACKET_FRAGMENTS(pPacket) > 1) && (TxFrameType == TX_LEGACY_FRAME))
10119 + TxFrameType = TX_FRAG_FRAME;
10121 + return TxFrameType;
10125 +BOOLEAN RTMP_FillTxBlkInfo(
10126 + IN RTMP_ADAPTER *pAd,
10127 + IN TX_BLK *pTxBlk)
10129 + PACKET_INFO PacketInfo;
10130 + PNDIS_PACKET pPacket;
10131 + PMAC_TABLE_ENTRY pMacEntry = NULL;
10133 + pPacket = pTxBlk->pPacket;
10134 + RTMP_QueryPacketInfo(pPacket, &PacketInfo, &pTxBlk->pSrcBufHeader, &pTxBlk->SrcBufLen);
10136 + pTxBlk->Wcid = RTMP_GET_PACKET_WCID(pPacket);
10137 + pTxBlk->apidx = RTMP_GET_PACKET_IF(pPacket);
10138 + pTxBlk->UserPriority = RTMP_GET_PACKET_UP(pPacket);
10139 + pTxBlk->FrameGap = IFS_HTTXOP; // ASIC determine Frame Gap
10141 + if (RTMP_GET_PACKET_CLEAR_EAP_FRAME(pTxBlk->pPacket))
10142 + TX_BLK_SET_FLAG(pTxBlk, fTX_bClearEAPFrame);
10144 + TX_BLK_CLEAR_FLAG(pTxBlk, fTX_bClearEAPFrame);
10146 + // Default to clear this flag
10147 + TX_BLK_CLEAR_FLAG(pTxBlk, fTX_bForceNonQoS);
10150 + if (pTxBlk->Wcid == MCAST_WCID)
10152 + pTxBlk->pMacEntry = NULL;
10154 +#ifdef MCAST_RATE_SPECIFIC
10155 + PUCHAR pDA = GET_OS_PKT_DATAPTR(pPacket);
10156 + if (((*pDA & 0x01) == 0x01) && (*pDA != 0xff))
10157 + pTxBlk->pTransmit = &pAd->CommonCfg.MCastPhyMode;
10159 +#endif // MCAST_RATE_SPECIFIC //
10160 + pTxBlk->pTransmit = &pAd->MacTab.Content[MCAST_WCID].HTPhyMode;
10163 + TX_BLK_CLEAR_FLAG(pTxBlk, fTX_bAckRequired); // AckRequired = FALSE, when broadcast packet in Adhoc mode.
10164 + //TX_BLK_SET_FLAG(pTxBlk, fTX_bForceLowRate);
10165 + TX_BLK_CLEAR_FLAG(pTxBlk, fTX_bAllowFrag);
10166 + TX_BLK_CLEAR_FLAG(pTxBlk, fTX_bWMM);
10167 + if (RTMP_GET_PACKET_MOREDATA(pPacket))
10169 + TX_BLK_SET_FLAG(pTxBlk, fTX_bMoreData);
10175 + pTxBlk->pMacEntry = &pAd->MacTab.Content[pTxBlk->Wcid];
10176 + pTxBlk->pTransmit = &pTxBlk->pMacEntry->HTPhyMode;
10178 + pMacEntry = pTxBlk->pMacEntry;
10181 + // For all unicast packets, need Ack unless the Ack Policy is not set as NORMAL_ACK.
10182 + if (pAd->CommonCfg.AckPolicy[pTxBlk->QueIdx] != NORMAL_ACK)
10183 + TX_BLK_CLEAR_FLAG(pTxBlk, fTX_bAckRequired);
10185 + TX_BLK_SET_FLAG(pTxBlk, fTX_bAckRequired);
10189 +#ifdef CONFIG_STA_SUPPORT
10190 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
10193 + // If support WMM, enable it.
10194 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_WMM_INUSED) &&
10195 + CLIENT_STATUS_TEST_FLAG(pMacEntry, fCLIENT_STATUS_WMM_CAPABLE))
10196 + TX_BLK_SET_FLAG(pTxBlk, fTX_bWMM);
10198 +// if (pAd->StaCfg.bAutoTxRateSwitch)
10199 +// TX_BLK_SET_FLAG(pTxBlk, fTX_AutoRateSwitch);
10201 +#endif // CONFIG_STA_SUPPORT //
10204 + if (pTxBlk->TxFrameType == TX_LEGACY_FRAME)
10206 + if ( (RTMP_GET_PACKET_LOWRATE(pPacket)) ||
10207 + ((pAd->OpMode == OPMODE_AP) && (pMacEntry->MaxHTPhyMode.field.MODE == MODE_CCK) && (pMacEntry->MaxHTPhyMode.field.MCS == RATE_1)))
10208 + { // Specific packet, i.e., bDHCPFrame, bEAPOLFrame, bWAIFrame, need force low rate.
10209 + pTxBlk->pTransmit = &pAd->MacTab.Content[MCAST_WCID].HTPhyMode;
10210 +#ifdef DOT11_N_SUPPORT
10211 + // Modify the WMM bit for ICV issue. If we have a packet with EOSP field need to set as 1, how to handle it???
10212 + if (IS_HT_STA(pTxBlk->pMacEntry) &&
10213 + (CLIENT_STATUS_TEST_FLAG(pMacEntry, fCLIENT_STATUS_RALINK_CHIPSET)) &&
10214 + ((pAd->CommonCfg.bRdg == TRUE) && CLIENT_STATUS_TEST_FLAG(pMacEntry, fCLIENT_STATUS_RDG_CAPABLE)))
10216 + TX_BLK_CLEAR_FLAG(pTxBlk, fTX_bWMM);
10217 + TX_BLK_SET_FLAG(pTxBlk, fTX_bForceNonQoS);
10219 +#endif // DOT11_N_SUPPORT //
10222 +#ifdef DOT11_N_SUPPORT
10223 + if ( (IS_HT_RATE(pMacEntry) == FALSE) &&
10224 + (CLIENT_STATUS_TEST_FLAG(pMacEntry, fCLIENT_STATUS_PIGGYBACK_CAPABLE)))
10225 + { // Currently piggy-back only support when peer is operate in b/g mode.
10226 + TX_BLK_SET_FLAG(pTxBlk, fTX_bPiggyBack);
10228 +#endif // DOT11_N_SUPPORT //
10230 + if (RTMP_GET_PACKET_MOREDATA(pPacket))
10232 + TX_BLK_SET_FLAG(pTxBlk, fTX_bMoreData);
10234 +#ifdef UAPSD_AP_SUPPORT
10235 + if (RTMP_GET_PACKET_EOSP(pPacket))
10237 + TX_BLK_SET_FLAG(pTxBlk, fTX_bWMM_UAPSD_EOSP);
10239 +#endif // UAPSD_AP_SUPPORT //
10241 + else if (pTxBlk->TxFrameType == TX_FRAG_FRAME)
10243 + TX_BLK_SET_FLAG(pTxBlk, fTX_bAllowFrag);
10246 + pMacEntry->DebugTxCount++;
10256 +BOOLEAN CanDoAggregateTransmit(
10257 + IN RTMP_ADAPTER *pAd,
10258 + IN NDIS_PACKET *pPacket,
10259 + IN TX_BLK *pTxBlk)
10262 + //printk("Check if can do aggregation! TxFrameType=%d!\n", pTxBlk->TxFrameType);
10264 + if (RTMP_GET_PACKET_WCID(pPacket) == MCAST_WCID)
10267 + if (RTMP_GET_PACKET_DHCP(pPacket) ||
10268 + RTMP_GET_PACKET_EAPOL(pPacket) ||
10269 + RTMP_GET_PACKET_WAI(pPacket))
10272 + if ((pTxBlk->TxFrameType == TX_AMSDU_FRAME) &&
10273 + ((pTxBlk->TotalFrameLen + GET_OS_PKT_LEN(pPacket))> (RX_BUFFER_AGGRESIZE - 100)))
10274 + { // For AMSDU, allow the packets with total length < max-amsdu size
10278 + if ((pTxBlk->TxFrameType == TX_RALINK_FRAME) &&
10279 + (pTxBlk->TxPacketList.Number == 2))
10280 + { // For RALINK-Aggregation, allow two frames in one batch.
10284 +#ifdef CONFIG_STA_SUPPORT
10285 + if ((INFRA_ON(pAd)) && (pAd->OpMode == OPMODE_STA)) // must be unicast to AP
10288 +#endif // CONFIG_STA_SUPPORT //
10295 + ========================================================================
10297 + Routine Description:
10298 + To do the enqueue operation and extract the first item of waiting
10299 + list. If a number of available shared memory segments could meet
10300 + the request of extracted item, the extracted item will be fragmented
10301 + into shared memory segments.
10304 + pAd Pointer to our adapter
10305 + pQueue Pointer to Waiting Queue
10310 + IRQL = DISPATCH_LEVEL
10314 + ========================================================================
10316 +VOID RTMPDeQueuePacket(
10317 + IN PRTMP_ADAPTER pAd,
10318 + IN BOOLEAN bIntContext,
10319 + IN UCHAR QIdx, /* BulkOutPipeId */
10320 + IN UCHAR Max_Tx_Packets)
10322 + PQUEUE_ENTRY pEntry = NULL;
10323 + PNDIS_PACKET pPacket;
10324 + NDIS_STATUS Status = NDIS_STATUS_SUCCESS;
10326 + PQUEUE_HEADER pQueue;
10327 + ULONG FreeNumber[NUM_OF_TX_RING];
10328 + UCHAR QueIdx, sQIdx, eQIdx;
10329 + unsigned long IrqFlags = 0;
10330 + BOOLEAN hasTxDesc = FALSE;
10334 +#ifdef DBG_DIAGNOSE
10335 + BOOLEAN firstRound;
10336 + RtmpDiagStruct *pDiagStruct = &pAd->DiagStruct;
10340 + if (QIdx == NUM_OF_TX_RING)
10343 +//PS packets use HCCA queue when dequeue from PS unicast queue (WiFi WPA2 MA9_DT1 for Marvell B STA)
10344 +#ifdef CONFIG_STA_SUPPORT
10345 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
10346 + eQIdx = 3; // 4 ACs, start from 0.
10347 +#endif // CONFIG_STA_SUPPORT //
10351 + sQIdx = eQIdx = QIdx;
10354 + for (QueIdx=sQIdx; QueIdx <= eQIdx; QueIdx++)
10358 + RT28XX_START_DEQUEUE(pAd, QueIdx, IrqFlags);
10360 +#ifdef DBG_DIAGNOSE
10361 + firstRound = ((QueIdx == 0) ? TRUE : FALSE);
10362 +#endif // DBG_DIAGNOSE //
10366 + if ((RTMP_TEST_FLAG(pAd, (fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS |
10367 + fRTMP_ADAPTER_RADIO_OFF |
10368 + fRTMP_ADAPTER_RESET_IN_PROGRESS |
10369 + fRTMP_ADAPTER_HALT_IN_PROGRESS |
10370 + fRTMP_ADAPTER_NIC_NOT_EXIST))))
10372 + RT28XX_STOP_DEQUEUE(pAd, QueIdx, IrqFlags);
10376 + if (Count >= Max_Tx_Packets)
10379 + DEQUEUE_LOCK(&pAd->irq_lock, bIntContext, IrqFlags);
10380 + if (&pAd->TxSwQueue[QueIdx] == NULL)
10382 +#ifdef DBG_DIAGNOSE
10383 + if (firstRound == TRUE)
10384 + pDiagStruct->TxSWQueCnt[pDiagStruct->ArrayCurIdx][0]++;
10385 +#endif // DBG_DIAGNOSE //
10386 + DEQUEUE_UNLOCK(&pAd->irq_lock, bIntContext, IrqFlags);
10391 + // probe the Queue Head
10392 + pQueue = &pAd->TxSwQueue[QueIdx];
10393 + if ((pEntry = pQueue->Head) == NULL)
10395 + DEQUEUE_UNLOCK(&pAd->irq_lock, bIntContext, IrqFlags);
10400 + NdisZeroMemory((PUCHAR)pTxBlk, sizeof(TX_BLK));
10401 + //InitializeQueueHeader(&pTxBlk->TxPacketList); // Didn't need it because we already memzero it.
10402 + pTxBlk->QueIdx = QueIdx;
10404 + pPacket = QUEUE_ENTRY_TO_PKT(pEntry);
10406 + // Early check to make sure we have enoguh Tx Resource.
10407 + hasTxDesc = RT28XX_HAS_ENOUGH_FREE_DESC(pAd, pTxBlk, FreeNumber[QueIdx], pPacket);
10410 + pAd->PrivateInfo.TxRingFullCnt++;
10412 + DEQUEUE_UNLOCK(&pAd->irq_lock, bIntContext, IrqFlags);
10417 + pTxBlk->TxFrameType = TxPktClassification(pAd, pPacket);
10418 + pEntry = RemoveHeadQueue(pQueue);
10419 + pTxBlk->TotalFrameNum++;
10420 + pTxBlk->TotalFragNum += RTMP_GET_PACKET_FRAGMENTS(pPacket); // The real fragment number maybe vary
10421 + pTxBlk->TotalFrameLen += GET_OS_PKT_LEN(pPacket);
10422 + pTxBlk->pPacket = pPacket;
10423 + InsertTailQueue(&pTxBlk->TxPacketList, PACKET_TO_QUEUE_ENTRY(pPacket));
10425 + if (pTxBlk->TxFrameType == TX_RALINK_FRAME || pTxBlk->TxFrameType == TX_AMSDU_FRAME)
10427 + // Enhance SW Aggregation Mechanism
10428 + if (NEED_QUEUE_BACK_FOR_AGG(pAd, QueIdx, FreeNumber[QueIdx], pTxBlk->TxFrameType))
10430 + InsertHeadQueue(pQueue, PACKET_TO_QUEUE_ENTRY(pPacket));
10431 + DEQUEUE_UNLOCK(&pAd->irq_lock, bIntContext, IrqFlags);
10436 + if((pEntry = pQueue->Head) == NULL)
10439 + // For TX_AMSDU_FRAME/TX_RALINK_FRAME, Need to check if next pakcet can do aggregation.
10440 + pPacket = QUEUE_ENTRY_TO_PKT(pEntry);
10441 + FreeNumber[QueIdx] = GET_TXRING_FREENO(pAd, QueIdx);
10442 + hasTxDesc = RT28XX_HAS_ENOUGH_FREE_DESC(pAd, pTxBlk, FreeNumber[QueIdx], pPacket);
10443 + if ((hasTxDesc == FALSE) || (CanDoAggregateTransmit(pAd, pPacket, pTxBlk) == FALSE))
10446 + //Remove the packet from the TxSwQueue and insert into pTxBlk
10447 + pEntry = RemoveHeadQueue(pQueue);
10449 + pPacket = QUEUE_ENTRY_TO_PKT(pEntry);
10450 + pTxBlk->TotalFrameNum++;
10451 + pTxBlk->TotalFragNum += RTMP_GET_PACKET_FRAGMENTS(pPacket); // The real fragment number maybe vary
10452 + pTxBlk->TotalFrameLen += GET_OS_PKT_LEN(pPacket);
10453 + InsertTailQueue(&pTxBlk->TxPacketList, PACKET_TO_QUEUE_ENTRY(pPacket));
10456 + if (pTxBlk->TxPacketList.Number == 1)
10457 + pTxBlk->TxFrameType = TX_LEGACY_FRAME;
10461 + DEQUEUE_UNLOCK(&pAd->irq_lock, bIntContext, IrqFlags);
10462 +#endif // RT2870 //
10464 + Count += pTxBlk->TxPacketList.Number;
10466 + // Do HardTransmit now.
10467 +#ifdef CONFIG_STA_SUPPORT
10468 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
10469 + Status = STAHardTransmit(pAd, pTxBlk, QueIdx);
10470 +#endif // CONFIG_STA_SUPPORT //
10473 + RT28XX_STOP_DEQUEUE(pAd, QueIdx, IrqFlags);
10477 + RTUSBKickBulkOut(pAd);
10478 +#endif // RT2870 //
10480 +#ifdef BLOCK_NET_IF
10481 + if ((pAd->blockQueueTab[QueIdx].SwTxQueueBlockFlag == TRUE)
10482 + && (pAd->TxSwQueue[QueIdx].Number < 1))
10484 + releaseNetIf(&pAd->blockQueueTab[QueIdx]);
10486 +#endif // BLOCK_NET_IF //
10494 + ========================================================================
10496 + Routine Description:
10497 + Calculates the duration which is required to transmit out frames
10498 + with given size and specified rate.
10501 + pAd Pointer to our adapter
10502 + Rate Transmit rate
10503 + Size Frame size in units of byte
10506 + Duration number in units of usec
10508 + IRQL = PASSIVE_LEVEL
10509 + IRQL = DISPATCH_LEVEL
10513 + ========================================================================
10515 +USHORT RTMPCalcDuration(
10516 + IN PRTMP_ADAPTER pAd,
10520 + ULONG Duration = 0;
10522 + if (Rate < RATE_FIRST_OFDM_RATE) // CCK
10524 + if ((Rate > RATE_1) && OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_SHORT_PREAMBLE_INUSED))
10525 + Duration = 96; // 72+24 preamble+plcp
10527 + Duration = 192; // 144+48 preamble+plcp
10529 + Duration += (USHORT)((Size << 4) / RateIdTo500Kbps[Rate]);
10530 + if ((Size << 4) % RateIdTo500Kbps[Rate])
10533 + else if (Rate <= RATE_LAST_OFDM_RATE)// OFDM rates
10535 + Duration = 20 + 6; // 16+4 preamble+plcp + Signal Extension
10536 + Duration += 4 * (USHORT)((11 + Size * 4) / RateIdTo500Kbps[Rate]);
10537 + if ((11 + Size * 4) % RateIdTo500Kbps[Rate])
10542 + Duration = 20 + 6; // 16+4 preamble+plcp + Signal Extension
10545 + return (USHORT)Duration;
10550 + ========================================================================
10552 + Routine Description:
10553 + Calculates the duration which is required to transmit out frames
10554 + with given size and specified rate.
10557 + pTxWI Pointer to head of each MPDU to HW.
10558 + Ack Setting for Ack requirement bit
10559 + Fragment Setting for Fragment bit
10560 + RetryMode Setting for retry mode
10561 + Ifs Setting for IFS gap
10562 + Rate Setting for transmit rate
10563 + Service Setting for service
10564 + Length Frame length
10565 + TxPreamble Short or Long preamble when using CCK rates
10566 + QueIdx - 0-3, according to 802.11e/d4.4 June/2003
10571 + IRQL = PASSIVE_LEVEL
10572 + IRQL = DISPATCH_LEVEL
10574 + See also : BASmartHardTransmit() !!!
10576 + ========================================================================
10578 +VOID RTMPWriteTxWI(
10579 + IN PRTMP_ADAPTER pAd,
10580 + IN PTXWI_STRUC pOutTxWI,
10582 + IN BOOLEAN CFACK,
10583 + IN BOOLEAN InsTimestamp,
10584 + IN BOOLEAN AMPDU,
10586 + IN BOOLEAN NSeq, // HW new a sequence.
10593 + IN UCHAR Txopmode,
10594 + IN BOOLEAN CfAck,
10595 + IN HTTRANSMIT_SETTING *pTransmit)
10597 + PMAC_TABLE_ENTRY pMac = NULL;
10599 + PTXWI_STRUC pTxWI;
10601 + if (WCID < MAX_LEN_OF_MAC_TABLE)
10602 + pMac = &pAd->MacTab.Content[WCID];
10605 + // Always use Long preamble before verifiation short preamble functionality works well.
10606 + // Todo: remove the following line if short preamble functionality works
10608 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_SHORT_PREAMBLE_INUSED);
10609 + NdisZeroMemory(&TxWI, TXWI_SIZE);
10612 + pTxWI->FRAG= FRAG;
10614 + pTxWI->CFACK = CFACK;
10615 + pTxWI->TS= InsTimestamp;
10616 + pTxWI->AMPDU = AMPDU;
10617 + pTxWI->ACK = Ack;
10618 + pTxWI->txop= Txopmode;
10620 + pTxWI->NSEQ = NSeq;
10621 + // John tune the performace with Intel Client in 20 MHz performance
10622 +#ifdef DOT11_N_SUPPORT
10623 + BASize = pAd->CommonCfg.TxBASize;
10627 + pTxWI->BAWinSize = BASize;
10628 + pTxWI->ShortGI = pTransmit->field.ShortGI;
10629 + pTxWI->STBC = pTransmit->field.STBC;
10630 +#endif // DOT11_N_SUPPORT //
10632 + pTxWI->WirelessCliID = WCID;
10633 + pTxWI->MPDUtotalByteCount = Length;
10634 + pTxWI->PacketId = PID;
10636 + // If CCK or OFDM, BW must be 20
10637 + pTxWI->BW = (pTransmit->field.MODE <= MODE_OFDM) ? (BW_20) : (pTransmit->field.BW);
10638 +#ifdef DOT11N_DRAFT3
10640 + pTxWI->BW = (pAd->CommonCfg.AddHTInfo.AddHtInfo.RecomWidth == 0) ? (BW_20) : (pTransmit->field.BW);
10641 +#endif // DOT11N_DRAFT3 //
10643 + pTxWI->MCS = pTransmit->field.MCS;
10644 + pTxWI->PHYMODE = pTransmit->field.MODE;
10645 + pTxWI->CFACK = CfAck;
10647 +#ifdef DOT11_N_SUPPORT
10650 + if (pAd->CommonCfg.bMIMOPSEnable)
10652 + if ((pMac->MmpsMode == MMPS_DYNAMIC) && (pTransmit->field.MCS > 7))
10654 + // Dynamic MIMO Power Save Mode
10655 + pTxWI->MIMOps = 1;
10657 + else if (pMac->MmpsMode == MMPS_STATIC)
10659 + // Static MIMO Power Save Mode
10660 + if (pTransmit->field.MODE >= MODE_HTMIX && pTransmit->field.MCS > 7)
10663 + pTxWI->MIMOps = 0;
10667 + //pTxWI->MIMOps = (pMac->PsMode == PWR_MMPS)? 1:0;
10668 + if (pMac->bIAmBadAtheros && (pMac->WepStatus != Ndis802_11WEPDisabled))
10670 + pTxWI->MpduDensity = 7;
10674 + pTxWI->MpduDensity = pMac->MpduDensity;
10677 +#endif // DOT11_N_SUPPORT //
10679 + pTxWI->PacketId = pTxWI->MCS;
10680 + NdisMoveMemory(pOutTxWI, &TxWI, sizeof(TXWI_STRUC));
10684 +VOID RTMPWriteTxWI_Data(
10685 + IN PRTMP_ADAPTER pAd,
10686 + IN OUT PTXWI_STRUC pTxWI,
10687 + IN TX_BLK *pTxBlk)
10689 + HTTRANSMIT_SETTING *pTransmit;
10690 + PMAC_TABLE_ENTRY pMacEntry;
10691 +#ifdef DOT11_N_SUPPORT
10693 +#endif // DOT11_N_SUPPORT //
10698 + pTransmit = pTxBlk->pTransmit;
10699 + pMacEntry = pTxBlk->pMacEntry;
10703 + // Always use Long preamble before verifiation short preamble functionality works well.
10704 + // Todo: remove the following line if short preamble functionality works
10706 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_SHORT_PREAMBLE_INUSED);
10707 + NdisZeroMemory(pTxWI, TXWI_SIZE);
10709 + pTxWI->FRAG = TX_BLK_TEST_FLAG(pTxBlk, fTX_bAllowFrag);
10710 + pTxWI->ACK = TX_BLK_TEST_FLAG(pTxBlk, fTX_bAckRequired);
10711 + pTxWI->txop = pTxBlk->FrameGap;
10713 +#ifdef CONFIG_STA_SUPPORT
10714 +#ifdef QOS_DLS_SUPPORT
10716 + (pAd->StaCfg.BssType == BSS_INFRA) &&
10717 + (pMacEntry->ValidAsDls == TRUE))
10718 + pTxWI->WirelessCliID = BSSID_WCID;
10720 +#endif // QOS_DLS_SUPPORT //
10721 +#endif // CONFIG_STA_SUPPORT //
10722 + pTxWI->WirelessCliID = pTxBlk->Wcid;
10724 + pTxWI->MPDUtotalByteCount = pTxBlk->MpduHeaderLen + pTxBlk->SrcBufLen;
10725 + pTxWI->CFACK = TX_BLK_TEST_FLAG(pTxBlk, fTX_bPiggyBack);
10727 + // If CCK or OFDM, BW must be 20
10728 + pTxWI->BW = (pTransmit->field.MODE <= MODE_OFDM) ? (BW_20) : (pTransmit->field.BW);
10729 +#ifdef DOT11_N_SUPPORT
10730 +#ifdef DOT11N_DRAFT3
10732 + pTxWI->BW = (pAd->CommonCfg.AddHTInfo.AddHtInfo.RecomWidth == 0) ? (BW_20) : (pTransmit->field.BW);
10733 +#endif // DOT11N_DRAFT3 //
10734 + pTxWI->AMPDU = ((pTxBlk->TxFrameType == TX_AMPDU_FRAME) ? TRUE : FALSE);
10736 + // John tune the performace with Intel Client in 20 MHz performance
10737 + BASize = pAd->CommonCfg.TxBASize;
10738 + if((pTxBlk->TxFrameType == TX_AMPDU_FRAME) && (pMacEntry))
10740 + UCHAR RABAOriIdx = 0; //The RA's BA Originator table index.
10742 + RABAOriIdx = pTxBlk->pMacEntry->BAOriWcidArray[pTxBlk->UserPriority];
10743 + BASize = pAd->BATable.BAOriEntry[RABAOriIdx].BAWinSize;
10746 + pTxWI->TxBF = pTransmit->field.TxBF;
10747 + pTxWI->BAWinSize = BASize;
10748 + pTxWI->ShortGI = pTransmit->field.ShortGI;
10749 + pTxWI->STBC = pTransmit->field.STBC;
10750 +#endif // DOT11_N_SUPPORT //
10752 + pTxWI->MCS = pTransmit->field.MCS;
10753 + pTxWI->PHYMODE = pTransmit->field.MODE;
10755 +#ifdef DOT11_N_SUPPORT
10758 + if ((pMacEntry->MmpsMode == MMPS_DYNAMIC) && (pTransmit->field.MCS > 7))
10760 + // Dynamic MIMO Power Save Mode
10761 + pTxWI->MIMOps = 1;
10763 + else if (pMacEntry->MmpsMode == MMPS_STATIC)
10765 + // Static MIMO Power Save Mode
10766 + if (pTransmit->field.MODE >= MODE_HTMIX && pTransmit->field.MCS > 7)
10769 + pTxWI->MIMOps = 0;
10773 + if (pMacEntry->bIAmBadAtheros && (pMacEntry->WepStatus != Ndis802_11WEPDisabled))
10775 + pTxWI->MpduDensity = 7;
10779 + pTxWI->MpduDensity = pMacEntry->MpduDensity;
10782 +#endif // DOT11_N_SUPPORT //
10784 +#ifdef DBG_DIAGNOSE
10785 + if (pTxBlk->QueIdx== 0)
10787 + pAd->DiagStruct.TxDataCnt[pAd->DiagStruct.ArrayCurIdx]++;
10788 + pAd->DiagStruct.TxMcsCnt[pAd->DiagStruct.ArrayCurIdx][pTxWI->MCS]++;
10790 +#endif // DBG_DIAGNOSE //
10792 + // for rate adapation
10793 + pTxWI->PacketId = pTxWI->MCS;
10794 +#ifdef INF_AMAZON_SE
10795 +/*Iverson patch for WMM A5-T07 ,WirelessStaToWirelessSta do not bulk out aggregate */
10796 + if( RTMP_GET_PACKET_NOBULKOUT(pTxBlk->pPacket))
10798 + if(pTxWI->PHYMODE == MODE_CCK)
10800 + pTxWI->PacketId = 6;
10803 +#endif // INF_AMAZON_SE //
10807 +VOID RTMPWriteTxWI_Cache(
10808 + IN PRTMP_ADAPTER pAd,
10809 + IN OUT PTXWI_STRUC pTxWI,
10810 + IN TX_BLK *pTxBlk)
10812 + PHTTRANSMIT_SETTING /*pTxHTPhyMode,*/ pTransmit;
10813 + PMAC_TABLE_ENTRY pMacEntry;
10818 + pMacEntry = pTxBlk->pMacEntry;
10819 + pTransmit = pTxBlk->pTransmit;
10821 + //if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_TX_RATE_SWITCH_ENABLED))
10822 + //if (RTMPCheckEntryEnableAutoRateSwitch(pAd, pMacEntry))
10823 + //if (TX_BLK_TEST_FLAG(pTxBlk, fTX_AutoRateSwitch))
10824 + if (pMacEntry->bAutoTxRateSwitch)
10826 + pTxWI->txop = IFS_HTTXOP;
10828 + // If CCK or OFDM, BW must be 20
10829 + pTxWI->BW = (pTransmit->field.MODE <= MODE_OFDM) ? (BW_20) : (pTransmit->field.BW);
10830 + pTxWI->ShortGI = pTransmit->field.ShortGI;
10831 + pTxWI->STBC = pTransmit->field.STBC;
10833 + pTxWI->MCS = pTransmit->field.MCS;
10834 + pTxWI->PHYMODE = pTransmit->field.MODE;
10836 + // set PID for TxRateSwitching
10837 + pTxWI->PacketId = pTransmit->field.MCS;
10840 +#ifdef DOT11_N_SUPPORT
10841 + pTxWI->AMPDU = ((pMacEntry->NoBADataCountDown == 0) ? TRUE: FALSE);
10842 + pTxWI->MIMOps = 0;
10844 +#ifdef DOT11N_DRAFT3
10846 + pTxWI->BW = (pAd->CommonCfg.AddHTInfo.AddHtInfo.RecomWidth == 0) ? (BW_20) : (pTransmit->field.BW);
10847 +#endif // DOT11N_DRAFT3 //
10849 + if (pAd->CommonCfg.bMIMOPSEnable)
10851 + // MIMO Power Save Mode
10852 + if ((pMacEntry->MmpsMode == MMPS_DYNAMIC) && (pTransmit->field.MCS > 7))
10854 + // Dynamic MIMO Power Save Mode
10855 + pTxWI->MIMOps = 1;
10857 + else if (pMacEntry->MmpsMode == MMPS_STATIC)
10859 + // Static MIMO Power Save Mode
10860 + if ((pTransmit->field.MODE >= MODE_HTMIX) && (pTransmit->field.MCS > 7))
10863 + pTxWI->MIMOps = 0;
10867 +#endif // DOT11_N_SUPPORT //
10869 +#ifdef DBG_DIAGNOSE
10870 + if (pTxBlk->QueIdx== 0)
10872 + pAd->DiagStruct.TxDataCnt[pAd->DiagStruct.ArrayCurIdx]++;
10873 + pAd->DiagStruct.TxMcsCnt[pAd->DiagStruct.ArrayCurIdx][pTxWI->MCS]++;
10875 +#endif // DBG_DIAGNOSE //
10877 + pTxWI->MPDUtotalByteCount = pTxBlk->MpduHeaderLen + pTxBlk->SrcBufLen;
10883 + ========================================================================
10885 + Routine Description:
10886 + Calculates the duration which is required to transmit out frames
10887 + with given size and specified rate.
10890 + pTxD Pointer to transmit descriptor
10891 + Ack Setting for Ack requirement bit
10892 + Fragment Setting for Fragment bit
10893 + RetryMode Setting for retry mode
10894 + Ifs Setting for IFS gap
10895 + Rate Setting for transmit rate
10896 + Service Setting for service
10897 + Length Frame length
10898 + TxPreamble Short or Long preamble when using CCK rates
10899 + QueIdx - 0-3, according to 802.11e/d4.4 June/2003
10904 + IRQL = PASSIVE_LEVEL
10905 + IRQL = DISPATCH_LEVEL
10907 + ========================================================================
10909 +VOID RTMPWriteTxDescriptor(
10910 + IN PRTMP_ADAPTER pAd,
10911 + IN PTXD_STRUC pTxD,
10913 + IN UCHAR QueueSEL)
10916 + // Always use Long preamble before verifiation short preamble functionality works well.
10917 + // Todo: remove the following line if short preamble functionality works
10919 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_SHORT_PREAMBLE_INUSED);
10921 + pTxD->WIV = (bWIV) ? 1: 0;
10922 + pTxD->QSEL= (QueueSEL);
10923 + if (pAd->bGenOneHCCA == TRUE)
10924 + pTxD->QSEL= FIFO_HCCA;
10925 + pTxD->DMADONE = 0;
10929 +// should be called only when -
10930 +// 1. MEADIA_CONNECTED
10931 +// 2. AGGREGATION_IN_USED
10932 +// 3. Fragmentation not in used
10933 +// 4. either no previous frame (pPrevAddr1=NULL) .OR. previoud frame is aggregatible
10934 +BOOLEAN TxFrameIsAggregatible(
10935 + IN PRTMP_ADAPTER pAd,
10936 + IN PUCHAR pPrevAddr1,
10937 + IN PUCHAR p8023hdr)
10940 + // can't aggregate EAPOL (802.1x) frame
10941 + if ((p8023hdr[12] == 0x88) && (p8023hdr[13] == 0x8e))
10944 + // can't aggregate multicast/broadcast frame
10945 + if (p8023hdr[0] & 0x01)
10948 + if (INFRA_ON(pAd)) // must be unicast to AP
10950 + else if ((pPrevAddr1 == NULL) || MAC_ADDR_EQUAL(pPrevAddr1, p8023hdr)) // unicast to same STA
10958 + ========================================================================
10960 + Routine Description:
10961 + Check the MSDU Aggregation policy
10962 + 1.HT aggregation is A-MSDU
10963 + 2.legaacy rate aggregation is software aggregation by Ralink.
10971 + ========================================================================
10973 +BOOLEAN PeerIsAggreOn(
10974 + IN PRTMP_ADAPTER pAd,
10976 + IN PMAC_TABLE_ENTRY pMacEntry)
10978 + ULONG AFlags = (fCLIENT_STATUS_AMSDU_INUSED | fCLIENT_STATUS_AGGREGATION_CAPABLE);
10980 + if (pMacEntry != NULL && CLIENT_STATUS_TEST_FLAG(pMacEntry, AFlags))
10982 +#ifdef DOT11_N_SUPPORT
10983 + if (pMacEntry->HTPhyMode.field.MODE >= MODE_HTMIX)
10987 +#endif // DOT11_N_SUPPORT //
10989 +#ifdef AGGREGATION_SUPPORT
10990 + if (TxRate >= RATE_6 && pAd->CommonCfg.bAggregationCapable && (!(OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_WMM_INUSED) && CLIENT_STATUS_TEST_FLAG(pMacEntry, fCLIENT_STATUS_WMM_CAPABLE))))
10991 + { // legacy Ralink Aggregation support
10994 +#endif // AGGREGATION_SUPPORT //
11003 + ========================================================================
11005 + Routine Description:
11006 + Check and fine the packet waiting in SW queue with highest priority
11009 + pAd Pointer to our adapter
11012 + pQueue Pointer to Waiting Queue
11014 + IRQL = DISPATCH_LEVEL
11018 + ========================================================================
11020 +PQUEUE_HEADER RTMPCheckTxSwQueue(
11021 + IN PRTMP_ADAPTER pAd,
11022 + OUT PUCHAR pQueIdx)
11026 + // 2004-11-15 to be removed. test aggregation only
11027 +// if ((OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_AGGREGATION_INUSED)) && (*pNumber < 2))
11030 + Number = pAd->TxSwQueue[QID_AC_BK].Number
11031 + + pAd->TxSwQueue[QID_AC_BE].Number
11032 + + pAd->TxSwQueue[QID_AC_VI].Number
11033 + + pAd->TxSwQueue[QID_AC_VO].Number
11034 + + pAd->TxSwQueue[QID_HCCA].Number;
11036 + if (pAd->TxSwQueue[QID_AC_VO].Head != NULL)
11038 + *pQueIdx = QID_AC_VO;
11039 + return (&pAd->TxSwQueue[QID_AC_VO]);
11041 + else if (pAd->TxSwQueue[QID_AC_VI].Head != NULL)
11043 + *pQueIdx = QID_AC_VI;
11044 + return (&pAd->TxSwQueue[QID_AC_VI]);
11046 + else if (pAd->TxSwQueue[QID_AC_BE].Head != NULL)
11048 + *pQueIdx = QID_AC_BE;
11049 + return (&pAd->TxSwQueue[QID_AC_BE]);
11051 + else if (pAd->TxSwQueue[QID_AC_BK].Head != NULL)
11053 + *pQueIdx = QID_AC_BK;
11054 + return (&pAd->TxSwQueue[QID_AC_BK]);
11056 + else if (pAd->TxSwQueue[QID_HCCA].Head != NULL)
11058 + *pQueIdx = QID_HCCA;
11059 + return (&pAd->TxSwQueue[QID_HCCA]);
11062 + // No packet pending in Tx Sw queue
11063 + *pQueIdx = QID_AC_BK;
11071 + ========================================================================
11073 + Routine Description:
11074 + Suspend MSDU transmission
11077 + pAd Pointer to our adapter
11084 + ========================================================================
11086 +VOID RTMPSuspendMsduTransmission(
11087 + IN PRTMP_ADAPTER pAd)
11089 + DBGPRINT(RT_DEBUG_TRACE,("SCANNING, suspend MSDU transmission ...\n"));
11093 + // Before BSS_SCAN_IN_PROGRESS, we need to keep Current R66 value and
11094 + // use Lowbound as R66 value on ScanNextChannel(...)
11096 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R66, &pAd->BbpTuning.R66CurrentValue);
11098 + // set BBP_R66 to 0x30/0x40 when scanning (AsicSwitchChannel will set R66 according to channel when scanning)
11099 + //RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, (0x26 + GET_LNA_GAIN(pAd)));
11100 + RTMPSetAGCInitValue(pAd, BW_20);
11102 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS);
11103 + //RTMP_IO_WRITE32(pAd, TX_CNTL_CSR, 0x000f0000); // abort all TX rings
11108 + ========================================================================
11110 + Routine Description:
11111 + Resume MSDU transmission
11114 + pAd Pointer to our adapter
11119 + IRQL = DISPATCH_LEVEL
11123 + ========================================================================
11125 +VOID RTMPResumeMsduTransmission(
11126 + IN PRTMP_ADAPTER pAd)
11128 +// UCHAR IrqState;
11130 + DBGPRINT(RT_DEBUG_TRACE,("SCAN done, resume MSDU transmission ...\n"));
11133 + // After finish BSS_SCAN_IN_PROGRESS, we need to restore Current R66 value
11134 + // R66 should not be 0
11135 + if (pAd->BbpTuning.R66CurrentValue == 0)
11137 + pAd->BbpTuning.R66CurrentValue = 0x38;
11138 + DBGPRINT_ERR(("RTMPResumeMsduTransmission, R66CurrentValue=0...\n"));
11140 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, pAd->BbpTuning.R66CurrentValue);
11142 + RTMP_CLEAR_FLAG(pAd, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS);
11143 +// sample, for IRQ LOCK to SEM LOCK
11144 +// IrqState = pAd->irq_disabled;
11146 +// RTMPDeQueuePacket(pAd, TRUE, NUM_OF_TX_RING, MAX_TX_PROCESS);
11148 + RTMPDeQueuePacket(pAd, FALSE, NUM_OF_TX_RING, MAX_TX_PROCESS);
11152 +UINT deaggregate_AMSDU_announce(
11153 + IN PRTMP_ADAPTER pAd,
11154 + PNDIS_PACKET pPacket,
11156 + IN ULONG DataSize)
11158 + USHORT PayloadSize;
11159 + USHORT SubFrameSize;
11160 + PHEADER_802_3 pAMSDUsubheader;
11162 + UCHAR Header802_3[14];
11164 + PUCHAR pPayload, pDA, pSA, pRemovedLLCSNAP;
11165 + PNDIS_PACKET pClonePacket;
11171 + while (DataSize > LENGTH_802_3)
11176 + //hex_dump("subheader", pData, 64);
11177 + pAMSDUsubheader = (PHEADER_802_3)pData;
11178 + //pData += LENGTH_802_3;
11179 + PayloadSize = pAMSDUsubheader->Octet[1] + (pAMSDUsubheader->Octet[0]<<8);
11180 + SubFrameSize = PayloadSize + LENGTH_802_3;
11183 + if ((DataSize < SubFrameSize) || (PayloadSize > 1518 ))
11188 + //printk("%d subframe: Size = %d\n", nMSDU, PayloadSize);
11190 + pPayload = pData + LENGTH_802_3;
11192 + pSA = pData + MAC_ADDR_LEN;
11194 + // convert to 802.3 header
11195 + CONVERT_TO_802_3(Header802_3, pDA, pSA, pPayload, PayloadSize, pRemovedLLCSNAP);
11197 +#ifdef CONFIG_STA_SUPPORT
11198 + if ((Header802_3[12] == 0x88) && (Header802_3[13] == 0x8E) )
11200 + // avoid local heap overflow, use dyanamic allocation
11201 + MLME_QUEUE_ELEM *Elem = (MLME_QUEUE_ELEM *) kmalloc(sizeof(MLME_QUEUE_ELEM), MEM_ALLOC_FLAG);
11202 + memmove(Elem->Msg+(LENGTH_802_11 + LENGTH_802_1_H), pPayload, PayloadSize);
11203 + Elem->MsgLen = LENGTH_802_11 + LENGTH_802_1_H + PayloadSize;
11204 + WpaEAPOLKeyAction(pAd, Elem);
11207 +#endif // CONFIG_STA_SUPPORT //
11209 +#ifdef CONFIG_STA_SUPPORT
11210 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
11212 + if (pRemovedLLCSNAP)
11214 + pPayload -= LENGTH_802_3;
11215 + PayloadSize += LENGTH_802_3;
11216 + NdisMoveMemory(pPayload, &Header802_3[0], LENGTH_802_3);
11219 +#endif // CONFIG_STA_SUPPORT //
11221 + pClonePacket = ClonePacket(pAd, pPacket, pPayload, PayloadSize);
11222 + if (pClonePacket)
11224 +#ifdef CONFIG_STA_SUPPORT
11225 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
11226 + ANNOUNCE_OR_FORWARD_802_3_PACKET(pAd, pClonePacket, RTMP_GET_PACKET_IF(pPacket));
11227 +#endif // CONFIG_STA_SUPPORT //
11231 + // A-MSDU has padding to multiple of 4 including subframe header.
11232 + // align SubFrameSize up to multiple of 4
11233 + SubFrameSize = (SubFrameSize+3)&(~0x3);
11236 + if (SubFrameSize > 1528 || SubFrameSize < 32)
11241 + if (DataSize > SubFrameSize)
11243 + pData += SubFrameSize;
11244 + DataSize -= SubFrameSize;
11253 + // finally release original rx packet
11254 + RELEASE_NDIS_PACKET(pAd, pPacket, NDIS_STATUS_SUCCESS);
11260 +UINT BA_Reorder_AMSDU_Annnounce(
11261 + IN PRTMP_ADAPTER pAd,
11262 + IN PNDIS_PACKET pPacket)
11268 + pData = (PUCHAR) GET_OS_PKT_DATAPTR(pPacket);
11269 + DataSize = (USHORT) GET_OS_PKT_LEN(pPacket);
11271 + nMSDU = deaggregate_AMSDU_announce(pAd, pPacket, pData, DataSize);
11278 + ==========================================================================
11280 + Look up the MAC address in the MAC table. Return NULL if not found.
11282 + pEntry - pointer to the MAC entry; NULL is not found
11283 + ==========================================================================
11285 +MAC_TABLE_ENTRY *MacTableLookup(
11286 + IN PRTMP_ADAPTER pAd,
11290 + MAC_TABLE_ENTRY *pEntry = NULL;
11292 + HashIdx = MAC_ADDR_HASH_INDEX(pAddr);
11293 + pEntry = pAd->MacTab.Hash[HashIdx];
11295 + while (pEntry && (pEntry->ValidAsCLI || pEntry->ValidAsWDS || pEntry->ValidAsApCli || pEntry->ValidAsMesh))
11297 + if (MAC_ADDR_EQUAL(pEntry->Addr, pAddr))
11302 + pEntry = pEntry->pNext;
11308 +MAC_TABLE_ENTRY *MacTableInsertEntry(
11309 + IN PRTMP_ADAPTER pAd,
11312 + IN BOOLEAN CleanAll)
11315 + int i, FirstWcid;
11316 + MAC_TABLE_ENTRY *pEntry = NULL, *pCurrEntry;
11320 + // if FULL, return
11321 + if (pAd->MacTab.Size >= MAX_LEN_OF_MAC_TABLE)
11325 +#ifdef CONFIG_STA_SUPPORT
11326 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
11327 + if (pAd->StaCfg.BssType == BSS_INFRA)
11329 +#endif // CONFIG_STA_SUPPORT //
11331 + // allocate one MAC entry
11332 + NdisAcquireSpinLock(&pAd->MacTabLock);
11333 + for (i = FirstWcid; i< MAX_LEN_OF_MAC_TABLE; i++) // skip entry#0 so that "entry index == AID" for fast lookup
11335 + // pick up the first available vacancy
11336 + if ((pAd->MacTab.Content[i].ValidAsCLI == FALSE) &&
11337 + (pAd->MacTab.Content[i].ValidAsWDS == FALSE) &&
11338 + (pAd->MacTab.Content[i].ValidAsApCli== FALSE) &&
11339 + (pAd->MacTab.Content[i].ValidAsMesh == FALSE)
11340 +#ifdef CONFIG_STA_SUPPORT
11341 +#ifdef QOS_DLS_SUPPORT
11342 + && (pAd->MacTab.Content[i].ValidAsDls == FALSE)
11343 +#endif // QOS_DLS_SUPPORT //
11344 +#endif // CONFIG_STA_SUPPORT //
11347 + pEntry = &pAd->MacTab.Content[i];
11348 + if (CleanAll == TRUE)
11350 + pEntry->MaxSupportedRate = RATE_11;
11351 + pEntry->CurrTxRate = RATE_11;
11352 + NdisZeroMemory(pEntry, sizeof(MAC_TABLE_ENTRY));
11353 + pEntry->PairwiseKey.KeyLen = 0;
11354 + pEntry->PairwiseKey.CipherAlg = CIPHER_NONE;
11356 +#ifdef CONFIG_STA_SUPPORT
11357 +#ifdef QOS_DLS_SUPPORT
11358 + if (apidx >= MIN_NET_DEVICE_FOR_DLS)
11360 + pEntry->ValidAsCLI = FALSE;
11361 + pEntry->ValidAsWDS = FALSE;
11362 + pEntry->ValidAsApCli = FALSE;
11363 + pEntry->ValidAsMesh = FALSE;
11364 + pEntry->ValidAsDls = TRUE;
11365 + pEntry->isCached = FALSE;
11368 +#endif // QOS_DLS_SUPPORT //
11369 +#endif // CONFIG_STA_SUPPORT //
11372 +#ifdef CONFIG_STA_SUPPORT
11373 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
11375 + pEntry->ValidAsCLI = TRUE;
11376 + pEntry->ValidAsWDS = FALSE;
11377 + pEntry->ValidAsApCli = FALSE;
11378 + pEntry->ValidAsMesh = FALSE;
11379 + pEntry->ValidAsDls = FALSE;
11381 +#endif // CONFIG_STA_SUPPORT //
11384 + pEntry->bIAmBadAtheros = FALSE;
11385 + pEntry->pAd = pAd;
11386 + pEntry->CMTimerRunning = FALSE;
11387 + pEntry->EnqueueEapolStartTimerRunning = EAPOL_START_DISABLE;
11388 + pEntry->RSNIE_Len = 0;
11389 + NdisZeroMemory(pEntry->R_Counter, sizeof(pEntry->R_Counter));
11390 + pEntry->ReTryCounter = PEER_MSG1_RETRY_TIMER_CTR;
11392 + if (pEntry->ValidAsMesh)
11393 + pEntry->apidx = (apidx - MIN_NET_DEVICE_FOR_MESH);
11394 + else if (pEntry->ValidAsApCli)
11395 + pEntry->apidx = (apidx - MIN_NET_DEVICE_FOR_APCLI);
11396 + else if (pEntry->ValidAsWDS)
11397 + pEntry->apidx = (apidx - MIN_NET_DEVICE_FOR_WDS);
11398 +#ifdef CONFIG_STA_SUPPORT
11399 +#ifdef QOS_DLS_SUPPORT
11400 + else if (pEntry->ValidAsDls)
11401 + pEntry->apidx = (apidx - MIN_NET_DEVICE_FOR_DLS);
11402 +#endif // QOS_DLS_SUPPORT //
11403 +#endif // CONFIG_STA_SUPPORT //
11405 + pEntry->apidx = apidx;
11409 +#ifdef CONFIG_STA_SUPPORT
11410 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
11412 + pEntry->AuthMode = pAd->StaCfg.AuthMode;
11413 + pEntry->WepStatus = pAd->StaCfg.WepStatus;
11414 + pEntry->PrivacyFilter = Ndis802_11PrivFilterAcceptAll;
11416 +#endif // CONFIG_STA_SUPPORT //
11419 + pEntry->GTKState = REKEY_NEGOTIATING;
11420 + pEntry->PairwiseKey.KeyLen = 0;
11421 + pEntry->PairwiseKey.CipherAlg = CIPHER_NONE;
11422 +#ifdef CONFIG_STA_SUPPORT
11423 +#ifdef QOS_DLS_SUPPORT
11424 + if (pEntry->ValidAsDls == TRUE)
11425 + pEntry->PortSecured = WPA_802_1X_PORT_SECURED;
11427 +#endif //QOS_DLS_SUPPORT
11428 +#endif // CONFIG_STA_SUPPORT //
11429 + pEntry->PortSecured = WPA_802_1X_PORT_NOT_SECURED;
11430 + pEntry->PMKID_CacheIdx = ENTRY_NOT_FOUND;
11431 + COPY_MAC_ADDR(pEntry->Addr, pAddr);
11432 + pEntry->Sst = SST_NOT_AUTH;
11433 + pEntry->AuthState = AS_NOT_AUTH;
11434 + pEntry->Aid = (USHORT)i; //0;
11435 + pEntry->CapabilityInfo = 0;
11436 + pEntry->PsMode = PWR_ACTIVE;
11437 + pEntry->PsQIdleCount = 0;
11438 + pEntry->NoDataIdleCount = 0;
11439 + pEntry->ContinueTxFailCnt = 0;
11440 + InitializeQueueHeader(&pEntry->PsQueue);
11443 + pAd->MacTab.Size ++;
11445 + // Add this entry into ASIC RX WCID search table
11446 + RT28XX_STA_ENTRY_ADD(pAd, pEntry);
11450 + DBGPRINT(RT_DEBUG_TRACE, ("MacTableInsertEntry - allocate entry #%d, Total= %d\n",i, pAd->MacTab.Size));
11455 + // add this MAC entry into HASH table
11458 + HashIdx = MAC_ADDR_HASH_INDEX(pAddr);
11459 + if (pAd->MacTab.Hash[HashIdx] == NULL)
11461 + pAd->MacTab.Hash[HashIdx] = pEntry;
11465 + pCurrEntry = pAd->MacTab.Hash[HashIdx];
11466 + while (pCurrEntry->pNext != NULL)
11467 + pCurrEntry = pCurrEntry->pNext;
11468 + pCurrEntry->pNext = pEntry;
11472 + NdisReleaseSpinLock(&pAd->MacTabLock);
11477 + ==========================================================================
11479 + Delete a specified client from MAC table
11480 + ==========================================================================
11482 +BOOLEAN MacTableDeleteEntry(
11483 + IN PRTMP_ADAPTER pAd,
11488 + MAC_TABLE_ENTRY *pEntry, *pPrevEntry, *pProbeEntry;
11489 + BOOLEAN Cancelled;
11490 + //USHORT offset; // unused variable
11491 + //UCHAR j; // unused variable
11493 + if (wcid >= MAX_LEN_OF_MAC_TABLE)
11496 + NdisAcquireSpinLock(&pAd->MacTabLock);
11498 + HashIdx = MAC_ADDR_HASH_INDEX(pAddr);
11499 + //pEntry = pAd->MacTab.Hash[HashIdx];
11500 + pEntry = &pAd->MacTab.Content[wcid];
11502 + if (pEntry && (pEntry->ValidAsCLI || pEntry->ValidAsApCli || pEntry->ValidAsWDS || pEntry->ValidAsMesh
11503 +#ifdef CONFIG_STA_SUPPORT
11504 +#ifdef QOS_DLS_SUPPORT
11505 + || pEntry->ValidAsDls
11506 +#endif // QOS_DLS_SUPPORT //
11507 +#endif // CONFIG_STA_SUPPORT //
11510 + if (MAC_ADDR_EQUAL(pEntry->Addr, pAddr))
11513 + // Delete this entry from ASIC on-chip WCID Table
11514 + RT28XX_STA_ENTRY_MAC_RESET(pAd, wcid);
11516 +#ifdef DOT11_N_SUPPORT
11517 + // free resources of BA
11518 + BASessionTearDownALL(pAd, pEntry->Aid);
11519 +#endif // DOT11_N_SUPPORT //
11522 + pPrevEntry = NULL;
11523 + pProbeEntry = pAd->MacTab.Hash[HashIdx];
11524 + ASSERT(pProbeEntry);
11526 + // update Hash list
11529 + if (pProbeEntry == pEntry)
11531 + if (pPrevEntry == NULL)
11533 + pAd->MacTab.Hash[HashIdx] = pEntry->pNext;
11537 + pPrevEntry->pNext = pEntry->pNext;
11542 + pPrevEntry = pProbeEntry;
11543 + pProbeEntry = pProbeEntry->pNext;
11544 + } while (pProbeEntry);
11547 + ASSERT(pProbeEntry != NULL);
11549 + RT28XX_STA_ENTRY_KEY_DEL(pAd, BSS0, wcid);
11552 + if (pEntry->EnqueueEapolStartTimerRunning != EAPOL_START_DISABLE)
11554 + RTMPCancelTimer(&pEntry->EnqueueStartForPSKTimer, &Cancelled);
11555 + pEntry->EnqueueEapolStartTimerRunning = EAPOL_START_DISABLE;
11559 + NdisZeroMemory(pEntry, sizeof(MAC_TABLE_ENTRY));
11560 + pAd->MacTab.Size --;
11561 + DBGPRINT(RT_DEBUG_TRACE, ("MacTableDeleteEntry1 - Total= %d\n", pAd->MacTab.Size));
11565 + printk("\n%s: Impossible Wcid = %d !!!!!\n", __FUNCTION__, wcid);
11569 + NdisReleaseSpinLock(&pAd->MacTabLock);
11571 + //Reset operating mode when no Sta.
11572 + if (pAd->MacTab.Size == 0)
11574 +#ifdef DOT11_N_SUPPORT
11575 + pAd->CommonCfg.AddHTInfo.AddHtInfo2.OperaionMode = 0;
11576 +#endif // DOT11_N_SUPPORT //
11577 + //AsicUpdateProtect(pAd, 0 /*pAd->CommonCfg.AddHTInfo.AddHtInfo2.OperaionMode*/, (ALLN_SETPROTECT), TRUE, 0 /*pAd->MacTab.fAnyStationNonGF*/);
11578 + RT28XX_UPDATE_PROTECT(pAd); // edit by johnli, fix "in_interrupt" error when call "MacTableDeleteEntry" in Rx tasklet
11586 + ==========================================================================
11588 + This routine reset the entire MAC table. All packets pending in
11589 + the power-saving queues are freed here.
11590 + ==========================================================================
11592 +VOID MacTableReset(
11593 + IN PRTMP_ADAPTER pAd)
11597 + DBGPRINT(RT_DEBUG_TRACE, ("MacTableReset\n"));
11598 + //NdisAcquireSpinLock(&pAd->MacTabLock);
11600 + for (i=1; i<MAX_LEN_OF_MAC_TABLE; i++)
11602 + if (pAd->MacTab.Content[i].ValidAsCLI == TRUE)
11605 +#ifdef DOT11_N_SUPPORT
11606 + // free resources of BA
11607 + BASessionTearDownALL(pAd, i);
11608 +#endif // DOT11_N_SUPPORT //
11610 + pAd->MacTab.Content[i].ValidAsCLI = FALSE;
11615 + NdisZeroMemory(pAd->MacTab.Content[i].Addr, 6);
11616 + RT28XX_STA_ENTRY_MAC_RESET(pAd, i);
11617 +#endif // RT2870 //
11619 + //AsicDelWcidTab(pAd, i);
11627 + ==========================================================================
11630 + IRQL = DISPATCH_LEVEL
11632 + ==========================================================================
11634 +VOID AssocParmFill(
11635 + IN PRTMP_ADAPTER pAd,
11636 + IN OUT MLME_ASSOC_REQ_STRUCT *AssocReq,
11638 + IN USHORT CapabilityInfo,
11639 + IN ULONG Timeout,
11640 + IN USHORT ListenIntv)
11642 + COPY_MAC_ADDR(AssocReq->Addr, pAddr);
11643 + // Add mask to support 802.11b mode only
11644 + AssocReq->CapabilityInfo = CapabilityInfo & SUPPORTED_CAPABILITY_INFO; // not cf-pollable, not cf-poll-request
11645 + AssocReq->Timeout = Timeout;
11646 + AssocReq->ListenIntv = ListenIntv;
11651 + ==========================================================================
11654 + IRQL = DISPATCH_LEVEL
11656 + ==========================================================================
11658 +VOID DisassocParmFill(
11659 + IN PRTMP_ADAPTER pAd,
11660 + IN OUT MLME_DISASSOC_REQ_STRUCT *DisassocReq,
11662 + IN USHORT Reason)
11664 + COPY_MAC_ADDR(DisassocReq->Addr, pAddr);
11665 + DisassocReq->Reason = Reason;
11670 + ========================================================================
11672 + Routine Description:
11673 + Check the out going frame, if this is an DHCP or ARP datagram
11674 + will be duplicate another frame at low data rate transmit.
11677 + pAd Pointer to our adapter
11678 + pPacket Pointer to outgoing Ndis frame
11681 + TRUE To be duplicate at Low data rate transmit. (1mb)
11682 + FALSE Do nothing.
11684 + IRQL = DISPATCH_LEVEL
11688 + MAC header + IP Header + UDP Header
11689 + 14 Bytes 20 Bytes
11692 + 00|01|02|03|04|05|06|07|08|09|10|11|12|13|14|15|
11694 + 16|17|18|19|20|21|22|23|24|25|26|27|28|29|30|31|
11697 + port 0x43 means Bootstrap Protocol, server.
11698 + Port 0x44 means Bootstrap Protocol, client.
11700 + ========================================================================
11703 +BOOLEAN RTMPCheckDHCPFrame(
11704 + IN PRTMP_ADAPTER pAd,
11705 + IN PNDIS_PACKET pPacket)
11707 + PACKET_INFO PacketInfo;
11708 + ULONG NumberOfBytesRead = 0;
11709 + ULONG CurrentOffset = 0;
11710 + PVOID pVirtualAddress = NULL;
11711 + UINT NdisBufferLength;
11714 + UCHAR ByteOffset36 = 0;
11715 + UCHAR ByteOffset38 = 0;
11716 + BOOLEAN ReadFirstParm = TRUE;
11718 + RTMP_QueryPacketInfo(pPacket, &PacketInfo, (PUCHAR *)&pVirtualAddress, &NdisBufferLength);
11720 + NumberOfBytesRead += NdisBufferLength;
11721 + pSrc = (PUCHAR) pVirtualAddress;
11722 + Protocol = *(pSrc + 12) * 256 + *(pSrc + 13);
11725 + // Check DHCP & BOOTP protocol
11727 + while (NumberOfBytesRead <= PacketInfo.TotalPacketLength)
11729 + if ((NumberOfBytesRead >= 35) && (ReadFirstParm == TRUE))
11731 + CurrentOffset = 35 - (NumberOfBytesRead - NdisBufferLength);
11732 + ByteOffset36 = *(pSrc + CurrentOffset);
11733 + ReadFirstParm = FALSE;
11736 + if (NumberOfBytesRead >= 37)
11738 + CurrentOffset = 37 - (NumberOfBytesRead - NdisBufferLength);
11739 + ByteOffset38 = *(pSrc + CurrentOffset);
11746 + // Check for DHCP & BOOTP protocol
11747 + if ((ByteOffset36 != 0x44) || (ByteOffset38 != 0x43))
11750 + // 2054 (hex 0806) for ARP datagrams
11751 + // if this packet is not ARP datagrams, then do nothing
11752 + // ARP datagrams will also be duplicate at 1mb broadcast frames
11754 + if (Protocol != 0x0806 )
11762 +BOOLEAN RTMPCheckEtherType(
11763 + IN PRTMP_ADAPTER pAd,
11764 + IN PNDIS_PACKET pPacket)
11767 + UCHAR Byte0, Byte1;
11770 + UINT16 srcPort, dstPort;
11771 + BOOLEAN status = TRUE;
11774 + pSrcBuf = GET_OS_PKT_DATAPTR(pPacket);
11775 + pktLen = GET_OS_PKT_LEN(pPacket);
11779 + RTMP_SET_PACKET_SPECIFIC(pPacket, 0);
11781 + // get Ethernet protocol field
11782 + TypeLen = (pSrcBuf[12] << 8) + pSrcBuf[13];
11784 + pSrcBuf += LENGTH_802_3; // Skip the Ethernet Header.
11786 + if (TypeLen <= 1500)
11787 + { // 802.3, 802.3 LLC
11789 + DestMAC(6) + SrcMAC(6) + Lenght(2) +
11790 + DSAP(1) + SSAP(1) + Control(1) +
11791 + if the DSAP = 0xAA, SSAP=0xAA, Contorl = 0x03, it has a 5-bytes SNAP header.
11792 + => + SNAP (5, OriginationID(3) + etherType(2))
11794 + if (pSrcBuf[0] == 0xAA && pSrcBuf[1] == 0xAA && pSrcBuf[2] == 0x03)
11796 + Sniff2BytesFromNdisBuffer(pSrcBuf, 6, &Byte0, &Byte1);
11797 + RTMP_SET_PACKET_LLCSNAP(pPacket, 1);
11798 + TypeLen = (USHORT)((Byte0 << 8) + Byte1);
11799 + pSrcBuf += 8; // Skip this LLC/SNAP header
11803 + //It just has 3-byte LLC header, maybe a legacy ether type frame. we didn't handle it.
11807 + // If it's a VLAN packet, get the real Type/Length field.
11808 + if (TypeLen == 0x8100)
11810 + /* 0x8100 means VLAN packets */
11812 + /* Dest. MAC Address (6-bytes) +
11813 + Source MAC Address (6-bytes) +
11814 + Length/Type = 802.1Q Tag Type (2-byte) +
11815 + Tag Control Information (2-bytes) +
11816 + Length / Type (2-bytes) +
11817 + data payload (0-n bytes) +
11818 + Pad (0-p bytes) +
11819 + Frame Check Sequence (4-bytes) */
11821 + RTMP_SET_PACKET_VLAN(pPacket, 1);
11822 + Sniff2BytesFromNdisBuffer(pSrcBuf, 2, &Byte0, &Byte1);
11823 + TypeLen = (USHORT)((Byte0 << 8) + Byte1);
11825 + pSrcBuf += 4; // Skip the VLAN Header.
11832 + ASSERT((pktLen > 34));
11833 + if (*(pSrcBuf + 9) == 0x11)
11835 + ASSERT((pktLen > 34)); // 14 for ethernet header, 20 for IP header
11837 + pSrcBuf += 20; // Skip the IP header
11838 + srcPort = OS_NTOHS(*((UINT16 *)pSrcBuf));
11839 + dstPort = OS_NTOHS(*((UINT16 *)(pSrcBuf +2)));
11841 + if ((srcPort==0x44 && dstPort==0x43) || (srcPort==0x43 && dstPort==0x44))
11842 + { //It's a BOOTP/DHCP packet
11843 + RTMP_SET_PACKET_DHCP(pPacket, 1);
11851 + RTMP_SET_PACKET_DHCP(pPacket, 1);
11857 + RTMP_SET_PACKET_EAPOL(pPacket, 1);
11871 +VOID Update_Rssi_Sample(
11872 + IN PRTMP_ADAPTER pAd,
11873 + IN RSSI_SAMPLE *pRssi,
11874 + IN PRXWI_STRUC pRxWI)
11876 + CHAR rssi0 = pRxWI->RSSI0;
11877 + CHAR rssi1 = pRxWI->RSSI1;
11878 + CHAR rssi2 = pRxWI->RSSI2;
11882 + pRssi->LastRssi0 = ConvertToRssi(pAd, (CHAR)rssi0, RSSI_0);
11883 + pRssi->AvgRssi0X8 = (pRssi->AvgRssi0X8 - pRssi->AvgRssi0) + pRssi->LastRssi0;
11884 + pRssi->AvgRssi0 = pRssi->AvgRssi0X8 >> 3;
11889 + pRssi->LastRssi1 = ConvertToRssi(pAd, (CHAR)rssi1, RSSI_1);
11890 + pRssi->AvgRssi1X8 = (pRssi->AvgRssi1X8 - pRssi->AvgRssi1) + pRssi->LastRssi1;
11891 + pRssi->AvgRssi1 = pRssi->AvgRssi1X8 >> 3;
11896 + pRssi->LastRssi2 = ConvertToRssi(pAd, (CHAR)rssi2, RSSI_2);
11897 + pRssi->AvgRssi2X8 = (pRssi->AvgRssi2X8 - pRssi->AvgRssi2) + pRssi->LastRssi2;
11898 + pRssi->AvgRssi2 = pRssi->AvgRssi2X8 >> 3;
11904 +// Normal legacy Rx packet indication
11905 +VOID Indicate_Legacy_Packet(
11906 + IN PRTMP_ADAPTER pAd,
11907 + IN RX_BLK *pRxBlk,
11908 + IN UCHAR FromWhichBSSID)
11910 + PNDIS_PACKET pRxPacket = pRxBlk->pRxPacket;
11911 + UCHAR Header802_3[LENGTH_802_3];
11913 + // 1. get 802.3 Header
11915 + // a. pointer pRxBlk->pData to payload
11916 + // b. modify pRxBlk->DataSize
11917 +#ifdef CONFIG_STA_SUPPORT
11918 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
11919 + RTMP_802_11_REMOVE_LLC_AND_CONVERT_TO_802_3(pRxBlk, Header802_3);
11920 +#endif // CONFIG_STA_SUPPORT //
11922 + if (pRxBlk->DataSize > MAX_RX_PKT_LEN)
11924 + // release packet
11925 + RELEASE_NDIS_PACKET(pAd, pRxPacket, NDIS_STATUS_FAILURE);
11930 + STATS_INC_RX_PACKETS(pAd, FromWhichBSSID);
11933 +#ifdef DOT11_N_SUPPORT
11934 + if (pAd->CommonCfg.bDisableReordering == 0)
11936 + PBA_REC_ENTRY pBAEntry;
11938 + UCHAR Wcid = pRxBlk->pRxWI->WirelessCliID;
11939 + UCHAR TID = pRxBlk->pRxWI->TID;
11942 +#define REORDERING_PACKET_TIMEOUT ((100 * HZ)/1000) // system ticks -- 100 ms
11944 + if (Wcid < MAX_LEN_OF_MAC_TABLE)
11946 + Idx = pAd->MacTab.Content[Wcid].BARecWcidArray[TID];
11949 + pBAEntry = &pAd->BATable.BARecEntry[Idx];
11950 + // update last rx time
11951 + NdisGetSystemUpTime(&Now32);
11952 + if ((pBAEntry->list.qlen > 0) &&
11953 + RTMP_TIME_AFTER((unsigned long)Now32, (unsigned long)(pBAEntry->LastIndSeqAtTimer+(REORDERING_PACKET_TIMEOUT)))
11956 + printk("Indicate_Legacy_Packet():flush reordering_timeout_mpdus! RxWI->Flags=%d, pRxWI.TID=%d, RxD->AMPDU=%d!\n", pRxBlk->Flags, pRxBlk->pRxWI->TID, pRxBlk->RxD.AMPDU);
11957 + hex_dump("Dump the legacy Packet:", GET_OS_PKT_DATAPTR(pRxBlk->pRxPacket), 64);
11958 + ba_flush_reordering_timeout_mpdus(pAd, pBAEntry, Now32);
11963 +#endif // DOT11_N_SUPPORT //
11964 +#endif // RT2870 //
11966 + wlan_802_11_to_802_3_packet(pAd, pRxBlk, Header802_3, FromWhichBSSID);
11969 + // pass this 802.3 packet to upper layer or forward this packet to WM directly
11971 +#ifdef CONFIG_STA_SUPPORT
11972 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
11973 + ANNOUNCE_OR_FORWARD_802_3_PACKET(pAd, pRxPacket, FromWhichBSSID);
11974 +#endif // CONFIG_STA_SUPPORT //
11979 +// Normal, AMPDU or AMSDU
11980 +VOID CmmRxnonRalinkFrameIndicate(
11981 + IN PRTMP_ADAPTER pAd,
11982 + IN RX_BLK *pRxBlk,
11983 + IN UCHAR FromWhichBSSID)
11985 +#ifdef DOT11_N_SUPPORT
11986 + if (RX_BLK_TEST_FLAG(pRxBlk, fRX_AMPDU) && (pAd->CommonCfg.bDisableReordering == 0))
11988 + Indicate_AMPDU_Packet(pAd, pRxBlk, FromWhichBSSID);
11991 +#endif // DOT11_N_SUPPORT //
11993 +#ifdef DOT11_N_SUPPORT
11994 + if (RX_BLK_TEST_FLAG(pRxBlk, fRX_AMSDU))
11997 + Indicate_AMSDU_Packet(pAd, pRxBlk, FromWhichBSSID);
12000 +#endif // DOT11_N_SUPPORT //
12002 + Indicate_Legacy_Packet(pAd, pRxBlk, FromWhichBSSID);
12008 +VOID CmmRxRalinkFrameIndicate(
12009 + IN PRTMP_ADAPTER pAd,
12010 + IN MAC_TABLE_ENTRY *pEntry,
12011 + IN RX_BLK *pRxBlk,
12012 + IN UCHAR FromWhichBSSID)
12014 + UCHAR Header802_3[LENGTH_802_3];
12015 + UINT16 Msdu2Size;
12016 + UINT16 Payload1Size, Payload2Size;
12018 + PNDIS_PACKET pPacket2 = NULL;
12022 + Msdu2Size = *(pRxBlk->pData) + (*(pRxBlk->pData+1) << 8);
12024 + if ((Msdu2Size <= 1536) && (Msdu2Size < pRxBlk->DataSize))
12026 + /* skip two byte MSDU2 len */
12027 + pRxBlk->pData += 2;
12028 + pRxBlk->DataSize -= 2;
12032 + // release packet
12033 + RELEASE_NDIS_PACKET(pAd, pRxBlk->pRxPacket, NDIS_STATUS_FAILURE);
12037 + // get 802.3 Header and remove LLC
12038 +#ifdef CONFIG_STA_SUPPORT
12039 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
12040 + RTMP_802_11_REMOVE_LLC_AND_CONVERT_TO_802_3(pRxBlk, Header802_3);
12041 +#endif // CONFIG_STA_SUPPORT //
12044 + ASSERT(pRxBlk->pRxPacket);
12046 + // Ralink Aggregation frame
12047 + pAd->RalinkCounters.OneSecRxAggregationCount ++;
12048 + Payload1Size = pRxBlk->DataSize - Msdu2Size;
12049 + Payload2Size = Msdu2Size - LENGTH_802_3;
12051 + pData2 = pRxBlk->pData + Payload1Size + LENGTH_802_3;
12052 +#ifdef CONFIG_STA_SUPPORT
12053 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
12054 + pPacket2 = duplicate_pkt(pAd, (pData2-LENGTH_802_3), LENGTH_802_3, pData2, Payload2Size, FromWhichBSSID);
12055 +#endif // CONFIG_STA_SUPPORT //
12059 + // release packet
12060 + RELEASE_NDIS_PACKET(pAd, pRxBlk->pRxPacket, NDIS_STATUS_FAILURE);
12064 + // update payload size of 1st packet
12065 + pRxBlk->DataSize = Payload1Size;
12066 + wlan_802_11_to_802_3_packet(pAd, pRxBlk, Header802_3, FromWhichBSSID);
12068 +#ifdef CONFIG_STA_SUPPORT
12069 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
12070 + ANNOUNCE_OR_FORWARD_802_3_PACKET(pAd, pRxBlk->pRxPacket, FromWhichBSSID);
12071 +#endif // CONFIG_STA_SUPPORT //
12075 +#ifdef CONFIG_STA_SUPPORT
12076 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
12077 + ANNOUNCE_OR_FORWARD_802_3_PACKET(pAd, pPacket2, FromWhichBSSID);
12078 +#endif // CONFIG_STA_SUPPORT //
12083 +#define RESET_FRAGFRAME(_fragFrame) \
12085 + _fragFrame.RxSize = 0; \
12086 + _fragFrame.Sequence = 0; \
12087 + _fragFrame.LastFrag = 0; \
12088 + _fragFrame.Flags = 0; \
12092 +PNDIS_PACKET RTMPDeFragmentDataFrame(
12093 + IN PRTMP_ADAPTER pAd,
12094 + IN RX_BLK *pRxBlk)
12096 + PHEADER_802_11 pHeader = pRxBlk->pHeader;
12097 + PNDIS_PACKET pRxPacket = pRxBlk->pRxPacket;
12098 + UCHAR *pData = pRxBlk->pData;
12099 + USHORT DataSize = pRxBlk->DataSize;
12100 + PNDIS_PACKET pRetPacket = NULL;
12101 + UCHAR *pFragBuffer = NULL;
12102 + BOOLEAN bReassDone = FALSE;
12103 + UCHAR HeaderRoom = 0;
12108 + HeaderRoom = pData - (UCHAR *)pHeader;
12110 + // Re-assemble the fragmented packets
12111 + if (pHeader->Frag == 0) // Frag. Number is 0 : First frag or only one pkt
12113 + // the first pkt of fragment, record it.
12114 + if (pHeader->FC.MoreFrag)
12116 + ASSERT(pAd->FragFrame.pFragPacket);
12117 + pFragBuffer = GET_OS_PKT_DATAPTR(pAd->FragFrame.pFragPacket);
12118 + pAd->FragFrame.RxSize = DataSize + HeaderRoom;
12119 + NdisMoveMemory(pFragBuffer, pHeader, pAd->FragFrame.RxSize);
12120 + pAd->FragFrame.Sequence = pHeader->Sequence;
12121 + pAd->FragFrame.LastFrag = pHeader->Frag; // Should be 0
12122 + ASSERT(pAd->FragFrame.LastFrag == 0);
12123 + goto done; // end of processing this frame
12126 + else //Middle & End of fragment
12128 + if ((pHeader->Sequence != pAd->FragFrame.Sequence) ||
12129 + (pHeader->Frag != (pAd->FragFrame.LastFrag + 1)))
12131 + // Fragment is not the same sequence or out of fragment number order
12132 + // Reset Fragment control blk
12133 + RESET_FRAGFRAME(pAd->FragFrame);
12134 + DBGPRINT(RT_DEBUG_ERROR, ("Fragment is not the same sequence or out of fragment number order.\n"));
12135 + goto done; // give up this frame
12137 + else if ((pAd->FragFrame.RxSize + DataSize) > MAX_FRAME_SIZE)
12139 + // Fragment frame is too large, it exeeds the maximum frame size.
12140 + // Reset Fragment control blk
12141 + RESET_FRAGFRAME(pAd->FragFrame);
12142 + DBGPRINT(RT_DEBUG_ERROR, ("Fragment frame is too large, it exeeds the maximum frame size.\n"));
12143 + goto done; // give up this frame
12147 + // Broadcom AP(BCM94704AGR) will send out LLC in fragment's packet, LLC only can accpet at first fragment.
12148 + // In this case, we will dropt it.
12150 + if (NdisEqualMemory(pData, SNAP_802_1H, sizeof(SNAP_802_1H)))
12152 + DBGPRINT(RT_DEBUG_ERROR, ("Find another LLC at Middle or End fragment(SN=%d, Frag=%d)\n", pHeader->Sequence, pHeader->Frag));
12153 + goto done; // give up this frame
12156 + pFragBuffer = GET_OS_PKT_DATAPTR(pAd->FragFrame.pFragPacket);
12158 + // concatenate this fragment into the re-assembly buffer
12159 + NdisMoveMemory((pFragBuffer + pAd->FragFrame.RxSize), pData, DataSize);
12160 + pAd->FragFrame.RxSize += DataSize;
12161 + pAd->FragFrame.LastFrag = pHeader->Frag; // Update fragment number
12164 + if (pHeader->FC.MoreFrag == FALSE)
12166 + bReassDone = TRUE;
12171 + // always release rx fragmented packet
12172 + RELEASE_NDIS_PACKET(pAd, pRxPacket, NDIS_STATUS_FAILURE);
12174 + // return defragmented packet if packet is reassembled completely
12175 + // otherwise return NULL
12178 + PNDIS_PACKET pNewFragPacket;
12180 + // allocate a new packet buffer for fragment
12181 + pNewFragPacket = RTMP_AllocateFragPacketBuffer(pAd, RX_BUFFER_NORMSIZE);
12182 + if (pNewFragPacket)
12185 + pRetPacket = pAd->FragFrame.pFragPacket;
12186 + pAd->FragFrame.pFragPacket = pNewFragPacket;
12187 + pRxBlk->pHeader = (PHEADER_802_11) GET_OS_PKT_DATAPTR(pRetPacket);
12188 + pRxBlk->pData = (UCHAR *)pRxBlk->pHeader + HeaderRoom;
12189 + pRxBlk->DataSize = pAd->FragFrame.RxSize - HeaderRoom;
12190 + pRxBlk->pRxPacket = pRetPacket;
12194 + RESET_FRAGFRAME(pAd->FragFrame);
12198 + return pRetPacket;
12202 +VOID Indicate_AMSDU_Packet(
12203 + IN PRTMP_ADAPTER pAd,
12204 + IN RX_BLK *pRxBlk,
12205 + IN UCHAR FromWhichBSSID)
12209 + update_os_packet_info(pAd, pRxBlk, FromWhichBSSID);
12210 + RTMP_SET_PACKET_IF(pRxBlk->pRxPacket, FromWhichBSSID);
12211 + nMSDU = deaggregate_AMSDU_announce(pAd, pRxBlk->pRxPacket, pRxBlk->pData, pRxBlk->DataSize);
12214 +VOID Indicate_EAPOL_Packet(
12215 + IN PRTMP_ADAPTER pAd,
12216 + IN RX_BLK *pRxBlk,
12217 + IN UCHAR FromWhichBSSID)
12219 + MAC_TABLE_ENTRY *pEntry = NULL;
12222 +#ifdef CONFIG_STA_SUPPORT
12223 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
12225 + pEntry = &pAd->MacTab.Content[BSSID_WCID];
12226 + STARxEAPOLFrameIndicate(pAd, pEntry, pRxBlk, FromWhichBSSID);
12229 +#endif // CONFIG_STA_SUPPORT //
12231 + if (pEntry == NULL)
12233 + DBGPRINT(RT_DEBUG_WARN, ("Indicate_EAPOL_Packet: drop and release the invalid packet.\n"));
12234 + // release packet
12235 + RELEASE_NDIS_PACKET(pAd, pRxBlk->pRxPacket, NDIS_STATUS_FAILURE);
12240 +#define BCN_TBTT_OFFSET 64 //defer 64 us
12241 +VOID ReSyncBeaconTime(
12242 + IN PRTMP_ADAPTER pAd)
12248 + Offset = (pAd->TbttTickCount) % (BCN_TBTT_OFFSET);
12250 + pAd->TbttTickCount++;
12253 + // The updated BeaconInterval Value will affect Beacon Interval after two TBTT
12254 + // beacasue the original BeaconInterval had been loaded into next TBTT_TIMER
12256 + if (Offset == (BCN_TBTT_OFFSET-2))
12258 + BCN_TIME_CFG_STRUC csr;
12259 + RTMP_IO_READ32(pAd, BCN_TIME_CFG, &csr.word);
12260 + csr.field.BeaconInterval = (pAd->CommonCfg.BeaconPeriod << 4) - 1 ; // ASIC register in units of 1/16 TU = 64us
12261 + RTMP_IO_WRITE32(pAd, BCN_TIME_CFG, csr.word);
12265 + if (Offset == (BCN_TBTT_OFFSET-1))
12267 + BCN_TIME_CFG_STRUC csr;
12269 + RTMP_IO_READ32(pAd, BCN_TIME_CFG, &csr.word);
12270 + csr.field.BeaconInterval = (pAd->CommonCfg.BeaconPeriod) << 4; // ASIC register in units of 1/16 TU
12271 + RTMP_IO_WRITE32(pAd, BCN_TIME_CFG, csr.word);
12277 +++ b/drivers/staging/rt3070/common/cmm_info.c
12280 + *************************************************************************
12281 + * Ralink Tech Inc.
12282 + * 5F., No.36, Taiyuan St., Jhubei City,
12283 + * Hsinchu County 302,
12286 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
12288 + * This program is free software; you can redistribute it and/or modify *
12289 + * it under the terms of the GNU General Public License as published by *
12290 + * the Free Software Foundation; either version 2 of the License, or *
12291 + * (at your option) any later version. *
12293 + * This program is distributed in the hope that it will be useful, *
12294 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
12295 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
12296 + * GNU General Public License for more details. *
12298 + * You should have received a copy of the GNU General Public License *
12299 + * along with this program; if not, write to the *
12300 + * Free Software Foundation, Inc., *
12301 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
12303 + *************************************************************************
12306 +#include "../rt_config.h"
12308 +INT Show_SSID_Proc(
12309 + IN PRTMP_ADAPTER pAd,
12310 + OUT PUCHAR pBuf);
12312 +INT Show_WirelessMode_Proc(
12313 + IN PRTMP_ADAPTER pAd,
12314 + OUT PUCHAR pBuf);
12316 +INT Show_TxBurst_Proc(
12317 + IN PRTMP_ADAPTER pAd,
12318 + OUT PUCHAR pBuf);
12320 +INT Show_TxPreamble_Proc(
12321 + IN PRTMP_ADAPTER pAd,
12322 + OUT PUCHAR pBuf);
12324 +INT Show_TxPower_Proc(
12325 + IN PRTMP_ADAPTER pAd,
12326 + OUT PUCHAR pBuf);
12328 +INT Show_Channel_Proc(
12329 + IN PRTMP_ADAPTER pAd,
12330 + OUT PUCHAR pBuf);
12332 +INT Show_BGProtection_Proc(
12333 + IN PRTMP_ADAPTER pAd,
12334 + OUT PUCHAR pBuf);
12336 +INT Show_RTSThreshold_Proc(
12337 + IN PRTMP_ADAPTER pAd,
12338 + OUT PUCHAR pBuf);
12340 +INT Show_FragThreshold_Proc(
12341 + IN PRTMP_ADAPTER pAd,
12342 + OUT PUCHAR pBuf);
12344 +#ifdef DOT11_N_SUPPORT
12345 +INT Show_HtBw_Proc(
12346 + IN PRTMP_ADAPTER pAd,
12347 + OUT PUCHAR pBuf);
12349 +INT Show_HtMcs_Proc(
12350 + IN PRTMP_ADAPTER pAd,
12351 + OUT PUCHAR pBuf);
12353 +INT Show_HtGi_Proc(
12354 + IN PRTMP_ADAPTER pAd,
12355 + OUT PUCHAR pBuf);
12357 +INT Show_HtOpMode_Proc(
12358 + IN PRTMP_ADAPTER pAd,
12359 + OUT PUCHAR pBuf);
12361 +INT Show_HtExtcha_Proc(
12362 + IN PRTMP_ADAPTER pAd,
12363 + OUT PUCHAR pBuf);
12365 +INT Show_HtMpduDensity_Proc(
12366 + IN PRTMP_ADAPTER pAd,
12367 + OUT PUCHAR pBuf);
12369 +INT Show_HtBaWinSize_Proc(
12370 + IN PRTMP_ADAPTER pAd,
12371 + OUT PUCHAR pBuf);
12373 +INT Show_HtRdg_Proc(
12374 + IN PRTMP_ADAPTER pAd,
12375 + OUT PUCHAR pBuf);
12377 +INT Show_HtAmsdu_Proc(
12378 + IN PRTMP_ADAPTER pAd,
12379 + OUT PUCHAR pBuf);
12381 +INT Show_HtAutoBa_Proc(
12382 + IN PRTMP_ADAPTER pAd,
12383 + OUT PUCHAR pBuf);
12384 +#endif // DOT11_N_SUPPORT //
12386 +INT Show_CountryRegion_Proc(
12387 + IN PRTMP_ADAPTER pAd,
12388 + OUT PUCHAR pBuf);
12390 +INT Show_CountryRegionABand_Proc(
12391 + IN PRTMP_ADAPTER pAd,
12392 + OUT PUCHAR pBuf);
12394 +INT Show_CountryCode_Proc(
12395 + IN PRTMP_ADAPTER pAd,
12396 + OUT PUCHAR pBuf);
12398 +#ifdef AGGREGATION_SUPPORT
12399 +INT Show_PktAggregate_Proc(
12400 + IN PRTMP_ADAPTER pAd,
12401 + OUT PUCHAR pBuf);
12402 +#endif // AGGREGATION_SUPPORT //
12404 +#ifdef WMM_SUPPORT
12405 +INT Show_WmmCapable_Proc(
12406 + IN PRTMP_ADAPTER pAd,
12407 + OUT PUCHAR pBuf);
12408 +#endif // WMM_SUPPORT //
12410 +INT Show_IEEE80211H_Proc(
12411 + IN PRTMP_ADAPTER pAd,
12412 + OUT PUCHAR pBuf);
12414 +#ifdef CONFIG_STA_SUPPORT
12415 +INT Show_NetworkType_Proc(
12416 + IN PRTMP_ADAPTER pAd,
12417 + OUT PUCHAR pBuf);
12418 +#endif // CONFIG_STA_SUPPORT //
12420 +INT Show_AuthMode_Proc(
12421 + IN PRTMP_ADAPTER pAd,
12422 + OUT PUCHAR pBuf);
12424 +INT Show_EncrypType_Proc(
12425 + IN PRTMP_ADAPTER pAd,
12426 + OUT PUCHAR pBuf);
12428 +INT Show_DefaultKeyID_Proc(
12429 + IN PRTMP_ADAPTER pAd,
12430 + OUT PUCHAR pBuf);
12432 +INT Show_Key1_Proc(
12433 + IN PRTMP_ADAPTER pAd,
12434 + OUT PUCHAR pBuf);
12436 +INT Show_Key2_Proc(
12437 + IN PRTMP_ADAPTER pAd,
12438 + OUT PUCHAR pBuf);
12440 +INT Show_Key3_Proc(
12441 + IN PRTMP_ADAPTER pAd,
12442 + OUT PUCHAR pBuf);
12444 +INT Show_Key4_Proc(
12445 + IN PRTMP_ADAPTER pAd,
12446 + OUT PUCHAR pBuf);
12448 +INT Show_WPAPSK_Proc(
12449 + IN PRTMP_ADAPTER pAd,
12450 + OUT PUCHAR pBuf);
12454 + INT (*show_proc)(PRTMP_ADAPTER pAdapter, PUCHAR arg);
12455 +} *PRTMP_PRIVATE_STA_SHOW_CFG_VALUE_PROC, RTMP_PRIVATE_STA_SHOW_CFG_VALUE_PROC[] = {
12456 + {"SSID", Show_SSID_Proc},
12457 + {"WirelessMode", Show_WirelessMode_Proc},
12458 + {"TxBurst", Show_TxBurst_Proc},
12459 + {"TxPreamble", Show_TxPreamble_Proc},
12460 + {"TxPower", Show_TxPower_Proc},
12461 + {"Channel", Show_Channel_Proc},
12462 + {"BGProtection", Show_BGProtection_Proc},
12463 + {"RTSThreshold", Show_RTSThreshold_Proc},
12464 + {"FragThreshold", Show_FragThreshold_Proc},
12465 +#ifdef DOT11_N_SUPPORT
12466 + {"HtBw", Show_HtBw_Proc},
12467 + {"HtMcs", Show_HtMcs_Proc},
12468 + {"HtGi", Show_HtGi_Proc},
12469 + {"HtOpMode", Show_HtOpMode_Proc},
12470 + {"HtExtcha", Show_HtExtcha_Proc},
12471 + {"HtMpduDensity", Show_HtMpduDensity_Proc},
12472 + {"HtBaWinSize", Show_HtBaWinSize_Proc},
12473 + {"HtRdg", Show_HtRdg_Proc},
12474 + {"HtAmsdu", Show_HtAmsdu_Proc},
12475 + {"HtAutoBa", Show_HtAutoBa_Proc},
12476 +#endif // DOT11_N_SUPPORT //
12477 + {"CountryRegion", Show_CountryRegion_Proc},
12478 + {"CountryRegionABand", Show_CountryRegionABand_Proc},
12479 + {"CountryCode", Show_CountryCode_Proc},
12480 +#ifdef AGGREGATION_SUPPORT
12481 + {"PktAggregate", Show_PktAggregate_Proc},
12484 +#ifdef WMM_SUPPORT
12485 + {"WmmCapable", Show_WmmCapable_Proc},
12487 + {"IEEE80211H", Show_IEEE80211H_Proc},
12488 +#ifdef CONFIG_STA_SUPPORT
12489 + {"NetworkType", Show_NetworkType_Proc},
12490 +#endif // CONFIG_STA_SUPPORT //
12491 + {"AuthMode", Show_AuthMode_Proc},
12492 + {"EncrypType", Show_EncrypType_Proc},
12493 + {"DefaultKeyID", Show_DefaultKeyID_Proc},
12494 + {"Key1", Show_Key1_Proc},
12495 + {"Key2", Show_Key2_Proc},
12496 + {"Key3", Show_Key3_Proc},
12497 + {"Key4", Show_Key4_Proc},
12498 + {"WPAPSK", Show_WPAPSK_Proc},
12503 + ==========================================================================
12505 + Get Driver version.
12508 + ==========================================================================
12510 +INT Set_DriverVersion_Proc(
12511 + IN PRTMP_ADAPTER pAd,
12515 +#ifdef CONFIG_STA_SUPPORT
12516 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
12517 + DBGPRINT(RT_DEBUG_TRACE, ("Driver version-%s\n", STA_DRIVER_VERSION));
12518 +#endif // CONFIG_STA_SUPPORT //
12524 + ==========================================================================
12526 + Set Country Region.
12527 + This command will not work, if the field of CountryRegion in eeprom is programmed.
12529 + TRUE if all parameters are OK, FALSE otherwise
12530 + ==========================================================================
12532 +INT Set_CountryRegion_Proc(
12533 + IN PRTMP_ADAPTER pAd,
12538 + region = simple_strtol(arg, 0, 10);
12540 +#ifdef EXT_BUILD_CHANNEL_LIST
12541 + return -EOPNOTSUPP;
12542 +#endif // EXT_BUILD_CHANNEL_LIST //
12544 + // Country can be set only when EEPROM not programmed
12545 + if (pAd->CommonCfg.CountryRegion & 0x80)
12547 + DBGPRINT(RT_DEBUG_ERROR, ("Set_CountryRegion_Proc::parameter of CountryRegion in eeprom is programmed \n"));
12551 + if((region >= 0) && (region <= REGION_MAXIMUM_BG_BAND))
12553 + pAd->CommonCfg.CountryRegion = (UCHAR) region;
12555 + else if (region == REGION_31_BG_BAND)
12557 + pAd->CommonCfg.CountryRegion = (UCHAR) region;
12561 + DBGPRINT(RT_DEBUG_ERROR, ("Set_CountryRegion_Proc::parameters out of range\n"));
12565 + // if set country region, driver needs to be reset
12566 + BuildChannelList(pAd);
12568 + DBGPRINT(RT_DEBUG_TRACE, ("Set_CountryRegion_Proc::(CountryRegion=%d)\n", pAd->CommonCfg.CountryRegion));
12574 + ==========================================================================
12576 + Set Country Region for A band.
12577 + This command will not work, if the field of CountryRegion in eeprom is programmed.
12579 + TRUE if all parameters are OK, FALSE otherwise
12580 + ==========================================================================
12582 +INT Set_CountryRegionABand_Proc(
12583 + IN PRTMP_ADAPTER pAd,
12588 + region = simple_strtol(arg, 0, 10);
12590 +#ifdef EXT_BUILD_CHANNEL_LIST
12591 + return -EOPNOTSUPP;
12592 +#endif // EXT_BUILD_CHANNEL_LIST //
12594 + // Country can be set only when EEPROM not programmed
12595 + if (pAd->CommonCfg.CountryRegionForABand & 0x80)
12597 + DBGPRINT(RT_DEBUG_ERROR, ("Set_CountryRegionABand_Proc::parameter of CountryRegion in eeprom is programmed \n"));
12601 + if((region >= 0) && (region <= REGION_MAXIMUM_A_BAND))
12603 + pAd->CommonCfg.CountryRegionForABand = (UCHAR) region;
12607 + DBGPRINT(RT_DEBUG_ERROR, ("Set_CountryRegionABand_Proc::parameters out of range\n"));
12611 + // if set country region, driver needs to be reset
12612 + BuildChannelList(pAd);
12614 + DBGPRINT(RT_DEBUG_TRACE, ("Set_CountryRegionABand_Proc::(CountryRegion=%d)\n", pAd->CommonCfg.CountryRegionForABand));
12620 + ==========================================================================
12622 + Set Wireless Mode
12624 + TRUE if all parameters are OK, FALSE otherwise
12625 + ==========================================================================
12627 +INT Set_WirelessMode_Proc(
12628 + IN PRTMP_ADAPTER pAd,
12631 + ULONG WirelessMode;
12632 + INT success = TRUE;
12634 + WirelessMode = simple_strtol(arg, 0, 10);
12637 +#ifdef CONFIG_STA_SUPPORT
12638 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
12640 + INT MaxPhyMode = PHY_11G;
12642 +#ifdef DOT11_N_SUPPORT
12643 + MaxPhyMode = PHY_11N_5G;
12644 +#endif // DOT11_N_SUPPORT //
12646 + if (WirelessMode <= MaxPhyMode)
12648 + RTMPSetPhyMode(pAd, WirelessMode);
12649 +#ifdef DOT11_N_SUPPORT
12650 + if (WirelessMode >= PHY_11ABGN_MIXED)
12652 + pAd->CommonCfg.BACapability.field.AutoBA = TRUE;
12653 + pAd->CommonCfg.REGBACapability.field.AutoBA = TRUE;
12657 + pAd->CommonCfg.BACapability.field.AutoBA = FALSE;
12658 + pAd->CommonCfg.REGBACapability.field.AutoBA = FALSE;
12660 +#endif // DOT11_N_SUPPORT //
12661 + // Set AdhocMode rates
12662 + if (pAd->StaCfg.BssType == BSS_ADHOC)
12664 + MlmeUpdateTxRates(pAd, FALSE, 0);
12665 + MakeIbssBeacon(pAd); // re-build BEACON frame
12666 + AsicEnableIbssSync(pAd); // copy to on-chip memory
12674 +#endif // CONFIG_STA_SUPPORT //
12676 + // it is needed to set SSID to take effect
12677 + if (success == TRUE)
12679 +#ifdef DOT11_N_SUPPORT
12680 + SetCommonHT(pAd);
12681 +#endif // DOT11_N_SUPPORT //
12682 + DBGPRINT(RT_DEBUG_TRACE, ("Set_WirelessMode_Proc::(=%ld)\n", WirelessMode));
12686 + DBGPRINT(RT_DEBUG_ERROR, ("Set_WirelessMode_Proc::parameters out of range\n"));
12693 + ==========================================================================
12697 + TRUE if all parameters are OK, FALSE otherwise
12698 + ==========================================================================
12700 +INT Set_Channel_Proc(
12701 + IN PRTMP_ADAPTER pAd,
12704 + INT success = TRUE;
12707 + Channel = (UCHAR) simple_strtol(arg, 0, 10);
12709 + // check if this channel is valid
12710 + if (ChannelSanity(pAd, Channel) == TRUE)
12712 +#ifdef CONFIG_STA_SUPPORT
12713 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
12715 + pAd->CommonCfg.Channel = Channel;
12717 + if (MONITOR_ON(pAd))
12719 +#ifdef DOT11_N_SUPPORT
12720 + N_ChannelCheck(pAd);
12721 + if (pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED &&
12722 + pAd->CommonCfg.RegTransmitSetting.field.BW == BW_40)
12725 + AsicSwitchChannel(pAd, pAd->CommonCfg.CentralChannel, FALSE);
12726 + AsicLockChannel(pAd, pAd->CommonCfg.CentralChannel);
12727 + DBGPRINT(RT_DEBUG_TRACE, ("BW_40, control_channel(%d), CentralChannel(%d) \n",
12728 + pAd->CommonCfg.Channel, pAd->CommonCfg.CentralChannel));
12731 +#endif // DOT11_N_SUPPORT //
12733 + AsicSwitchChannel(pAd, pAd->CommonCfg.Channel, FALSE);
12734 + AsicLockChannel(pAd, pAd->CommonCfg.Channel);
12735 + DBGPRINT(RT_DEBUG_TRACE, ("BW_20, Channel(%d)\n", pAd->CommonCfg.Channel));
12739 +#endif // CONFIG_STA_SUPPORT //
12745 +#ifdef CONFIG_STA_SUPPORT
12746 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
12748 +#endif // CONFIG_STA_SUPPORT //
12752 + if (success == TRUE)
12753 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Channel_Proc::(Channel=%d)\n", pAd->CommonCfg.Channel));
12759 + ==========================================================================
12761 + Set Short Slot Time Enable or Disable
12763 + TRUE if all parameters are OK, FALSE otherwise
12764 + ==========================================================================
12766 +INT Set_ShortSlot_Proc(
12767 + IN PRTMP_ADAPTER pAd,
12772 + ShortSlot = simple_strtol(arg, 0, 10);
12774 + if (ShortSlot == 1)
12775 + pAd->CommonCfg.bUseShortSlotTime = TRUE;
12776 + else if (ShortSlot == 0)
12777 + pAd->CommonCfg.bUseShortSlotTime = FALSE;
12779 + return FALSE; //Invalid argument
12781 + DBGPRINT(RT_DEBUG_TRACE, ("Set_ShortSlot_Proc::(ShortSlot=%d)\n", pAd->CommonCfg.bUseShortSlotTime));
12787 + ==========================================================================
12791 + TRUE if all parameters are OK, FALSE otherwise
12792 + ==========================================================================
12794 +INT Set_TxPower_Proc(
12795 + IN PRTMP_ADAPTER pAd,
12799 + INT success = FALSE;
12801 + TxPower = (ULONG) simple_strtol(arg, 0, 10);
12802 + if (TxPower <= 100)
12805 +#ifdef CONFIG_STA_SUPPORT
12806 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
12808 + pAd->CommonCfg.TxPowerDefault = TxPower;
12809 + pAd->CommonCfg.TxPowerPercentage = pAd->CommonCfg.TxPowerDefault;
12811 +#endif // CONFIG_STA_SUPPORT //
12817 + DBGPRINT(RT_DEBUG_TRACE, ("Set_TxPower_Proc::(TxPowerPercentage=%ld)\n", pAd->CommonCfg.TxPowerPercentage));
12823 + ==========================================================================
12825 + Set 11B/11G Protection
12827 + TRUE if all parameters are OK, FALSE otherwise
12828 + ==========================================================================
12830 +INT Set_BGProtection_Proc(
12831 + IN PRTMP_ADAPTER pAd,
12834 + switch (simple_strtol(arg, 0, 10))
12837 + pAd->CommonCfg.UseBGProtection = 0;
12839 + case 1: //Always On
12840 + pAd->CommonCfg.UseBGProtection = 1;
12842 + case 2: //Always OFF
12843 + pAd->CommonCfg.UseBGProtection = 2;
12845 + default: //Invalid argument
12850 + DBGPRINT(RT_DEBUG_TRACE, ("Set_BGProtection_Proc::(BGProtection=%ld)\n", pAd->CommonCfg.UseBGProtection));
12856 + ==========================================================================
12860 + TRUE if all parameters are OK, FALSE otherwise
12861 + ==========================================================================
12863 +INT Set_TxPreamble_Proc(
12864 + IN PRTMP_ADAPTER pAd,
12867 + RT_802_11_PREAMBLE Preamble;
12869 + Preamble = simple_strtol(arg, 0, 10);
12872 + switch (Preamble)
12874 + case Rt802_11PreambleShort:
12875 + pAd->CommonCfg.TxPreamble = Preamble;
12876 +#ifdef CONFIG_STA_SUPPORT
12877 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
12878 + MlmeSetTxPreamble(pAd, Rt802_11PreambleShort);
12879 +#endif // CONFIG_STA_SUPPORT //
12881 + case Rt802_11PreambleLong:
12882 +#ifdef CONFIG_STA_SUPPORT
12883 + case Rt802_11PreambleAuto:
12884 + // if user wants AUTO, initialize to LONG here, then change according to AP's
12885 + // capability upon association.
12886 +#endif // CONFIG_STA_SUPPORT //
12887 + pAd->CommonCfg.TxPreamble = Preamble;
12888 +#ifdef CONFIG_STA_SUPPORT
12889 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
12890 + MlmeSetTxPreamble(pAd, Rt802_11PreambleLong);
12891 +#endif // CONFIG_STA_SUPPORT //
12893 + default: //Invalid argument
12897 + DBGPRINT(RT_DEBUG_TRACE, ("Set_TxPreamble_Proc::(TxPreamble=%ld)\n", pAd->CommonCfg.TxPreamble));
12903 + ==========================================================================
12905 + Set RTS Threshold
12907 + TRUE if all parameters are OK, FALSE otherwise
12908 + ==========================================================================
12910 +INT Set_RTSThreshold_Proc(
12911 + IN PRTMP_ADAPTER pAd,
12914 + NDIS_802_11_RTS_THRESHOLD RtsThresh;
12916 + RtsThresh = simple_strtol(arg, 0, 10);
12918 + if((RtsThresh > 0) && (RtsThresh <= MAX_RTS_THRESHOLD))
12919 + pAd->CommonCfg.RtsThreshold = (USHORT)RtsThresh;
12920 +#ifdef CONFIG_STA_SUPPORT
12921 + else if (RtsThresh == 0)
12922 + pAd->CommonCfg.RtsThreshold = MAX_RTS_THRESHOLD;
12923 +#endif // CONFIG_STA_SUPPORT //
12925 + return FALSE; //Invalid argument
12927 + DBGPRINT(RT_DEBUG_TRACE, ("Set_RTSThreshold_Proc::(RTSThreshold=%d)\n", pAd->CommonCfg.RtsThreshold));
12933 + ==========================================================================
12935 + Set Fragment Threshold
12937 + TRUE if all parameters are OK, FALSE otherwise
12938 + ==========================================================================
12940 +INT Set_FragThreshold_Proc(
12941 + IN PRTMP_ADAPTER pAd,
12944 + NDIS_802_11_FRAGMENTATION_THRESHOLD FragThresh;
12946 + FragThresh = simple_strtol(arg, 0, 10);
12948 + if (FragThresh > MAX_FRAG_THRESHOLD || FragThresh < MIN_FRAG_THRESHOLD)
12950 + //Illegal FragThresh so we set it to default
12951 + pAd->CommonCfg.FragmentThreshold = MAX_FRAG_THRESHOLD;
12953 + else if (FragThresh % 2 == 1)
12955 + // The length of each fragment shall always be an even number of octets, except for the last fragment
12956 + // of an MSDU or MMPDU, which may be either an even or an odd number of octets.
12957 + pAd->CommonCfg.FragmentThreshold = (USHORT)(FragThresh - 1);
12961 + pAd->CommonCfg.FragmentThreshold = (USHORT)FragThresh;
12964 +#ifdef CONFIG_STA_SUPPORT
12965 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
12967 + if (pAd->CommonCfg.FragmentThreshold == MAX_FRAG_THRESHOLD)
12968 + pAd->CommonCfg.bUseZeroToDisableFragment = TRUE;
12970 + pAd->CommonCfg.bUseZeroToDisableFragment = FALSE;
12972 +#endif // CONFIG_STA_SUPPORT //
12974 + DBGPRINT(RT_DEBUG_TRACE, ("Set_FragThreshold_Proc::(FragThreshold=%d)\n", pAd->CommonCfg.FragmentThreshold));
12980 + ==========================================================================
12984 + TRUE if all parameters are OK, FALSE otherwise
12985 + ==========================================================================
12987 +INT Set_TxBurst_Proc(
12988 + IN PRTMP_ADAPTER pAd,
12993 + TxBurst = simple_strtol(arg, 0, 10);
12994 + if (TxBurst == 1)
12995 + pAd->CommonCfg.bEnableTxBurst = TRUE;
12996 + else if (TxBurst == 0)
12997 + pAd->CommonCfg.bEnableTxBurst = FALSE;
12999 + return FALSE; //Invalid argument
13001 + DBGPRINT(RT_DEBUG_TRACE, ("Set_TxBurst_Proc::(TxBurst=%d)\n", pAd->CommonCfg.bEnableTxBurst));
13006 +#ifdef AGGREGATION_SUPPORT
13008 + ==========================================================================
13012 + TRUE if all parameters are OK, FALSE otherwise
13013 + ==========================================================================
13015 +INT Set_PktAggregate_Proc(
13016 + IN PRTMP_ADAPTER pAd,
13021 + aggre = simple_strtol(arg, 0, 10);
13024 + pAd->CommonCfg.bAggregationCapable = TRUE;
13025 + else if (aggre == 0)
13026 + pAd->CommonCfg.bAggregationCapable = FALSE;
13028 + return FALSE; //Invalid argument
13031 + DBGPRINT(RT_DEBUG_TRACE, ("Set_PktAggregate_Proc::(AGGRE=%d)\n", pAd->CommonCfg.bAggregationCapable));
13038 + ==========================================================================
13041 + This parameter is 1 when needs radar detection, otherwise 0
13043 + TRUE if all parameters are OK, FALSE otherwise
13044 + ==========================================================================
13046 +INT Set_IEEE80211H_Proc(
13047 + IN PRTMP_ADAPTER pAd,
13050 + ULONG ieee80211h;
13052 + ieee80211h = simple_strtol(arg, 0, 10);
13054 + if (ieee80211h == 1)
13055 + pAd->CommonCfg.bIEEE80211H = TRUE;
13056 + else if (ieee80211h == 0)
13057 + pAd->CommonCfg.bIEEE80211H = FALSE;
13059 + return FALSE; //Invalid argument
13061 + DBGPRINT(RT_DEBUG_TRACE, ("Set_IEEE80211H_Proc::(IEEE80211H=%d)\n", pAd->CommonCfg.bIEEE80211H));
13069 + ==========================================================================
13071 + For Debug information
13073 + TRUE if all parameters are OK, FALSE otherwise
13074 + ==========================================================================
13076 +INT Set_Debug_Proc(
13077 + IN PRTMP_ADAPTER pAd,
13080 + DBGPRINT(RT_DEBUG_TRACE, ("==> Set_Debug_Proc *******************\n"));
13082 + if(simple_strtol(arg, 0, 10) <= RT_DEBUG_LOUD)
13083 + RTDebugLevel = simple_strtol(arg, 0, 10);
13085 + DBGPRINT(RT_DEBUG_TRACE, ("<== Set_Debug_Proc(RTDebugLevel = %ld)\n", RTDebugLevel));
13091 +INT Show_DescInfo_Proc(
13092 + IN PRTMP_ADAPTER pAd,
13100 + ==========================================================================
13102 + Reset statistics counter
13105 + pAdapter Pointer to our adapter
13109 + TRUE if all parameters are OK, FALSE otherwise
13110 + ==========================================================================
13112 +INT Set_ResetStatCounter_Proc(
13113 + IN PRTMP_ADAPTER pAd,
13117 + //MAC_TABLE_ENTRY *pEntry;
13119 + DBGPRINT(RT_DEBUG_TRACE, ("==>Set_ResetStatCounter_Proc\n"));
13121 + // add the most up-to-date h/w raw counters into software counters
13122 + NICUpdateRawCounters(pAd);
13124 + NdisZeroMemory(&pAd->WlanCounters, sizeof(COUNTER_802_11));
13125 + NdisZeroMemory(&pAd->Counters8023, sizeof(COUNTER_802_3));
13126 + NdisZeroMemory(&pAd->RalinkCounters, sizeof(COUNTER_RALINK));
13131 +BOOLEAN RTMPCheckStrPrintAble(
13132 + IN CHAR *pInPutStr,
13137 + for (i=0; i<strLen; i++)
13139 + if ((pInPutStr[i] < 0x21) ||
13140 + (pInPutStr[i] > 0x7E))
13148 + ========================================================================
13150 + Routine Description:
13151 + Remove WPA Key process
13154 + pAd Pointer to our adapter
13155 + pBuf Pointer to the where the key stored
13158 + NDIS_SUCCESS Add key successfully
13160 + IRQL = DISPATCH_LEVEL
13164 + ========================================================================
13166 +#ifdef CONFIG_STA_SUPPORT
13167 +VOID RTMPSetDesiredRates(
13168 + IN PRTMP_ADAPTER pAdapter,
13171 + NDIS_802_11_RATES aryRates;
13173 + memset(&aryRates, 0x00, sizeof(NDIS_802_11_RATES));
13174 + switch (pAdapter->CommonCfg.PhyMode)
13176 + case PHY_11A: // A only
13179 + case 6000000: //6M
13180 + aryRates[0] = 0x0c; // 6M
13181 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_0;
13183 + case 9000000: //9M
13184 + aryRates[0] = 0x12; // 9M
13185 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_1;
13187 + case 12000000: //12M
13188 + aryRates[0] = 0x18; // 12M
13189 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_2;
13191 + case 18000000: //18M
13192 + aryRates[0] = 0x24; // 18M
13193 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_3;
13195 + case 24000000: //24M
13196 + aryRates[0] = 0x30; // 24M
13197 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_4;
13199 + case 36000000: //36M
13200 + aryRates[0] = 0x48; // 36M
13201 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_5;
13203 + case 48000000: //48M
13204 + aryRates[0] = 0x60; // 48M
13205 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_6;
13207 + case 54000000: //54M
13208 + aryRates[0] = 0x6c; // 54M
13209 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_7;
13213 + aryRates[0] = 0x6c; // 54Mbps
13214 + aryRates[1] = 0x60; // 48Mbps
13215 + aryRates[2] = 0x48; // 36Mbps
13216 + aryRates[3] = 0x30; // 24Mbps
13217 + aryRates[4] = 0x24; // 18M
13218 + aryRates[5] = 0x18; // 12M
13219 + aryRates[6] = 0x12; // 9M
13220 + aryRates[7] = 0x0c; // 6M
13221 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_AUTO;
13225 + case PHY_11BG_MIXED: // B/G Mixed
13226 + case PHY_11B: // B only
13227 + case PHY_11ABG_MIXED: // A/B/G Mixed
13231 + case 1000000: //1M
13232 + aryRates[0] = 0x02;
13233 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_0;
13235 + case 2000000: //2M
13236 + aryRates[0] = 0x04;
13237 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_1;
13239 + case 5000000: //5.5M
13240 + aryRates[0] = 0x0b; // 5.5M
13241 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_2;
13243 + case 11000000: //11M
13244 + aryRates[0] = 0x16; // 11M
13245 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_3;
13247 + case 6000000: //6M
13248 + aryRates[0] = 0x0c; // 6M
13249 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_0;
13251 + case 9000000: //9M
13252 + aryRates[0] = 0x12; // 9M
13253 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_1;
13255 + case 12000000: //12M
13256 + aryRates[0] = 0x18; // 12M
13257 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_2;
13259 + case 18000000: //18M
13260 + aryRates[0] = 0x24; // 18M
13261 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_3;
13263 + case 24000000: //24M
13264 + aryRates[0] = 0x30; // 24M
13265 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_4;
13267 + case 36000000: //36M
13268 + aryRates[0] = 0x48; // 36M
13269 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_5;
13271 + case 48000000: //48M
13272 + aryRates[0] = 0x60; // 48M
13273 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_6;
13275 + case 54000000: //54M
13276 + aryRates[0] = 0x6c; // 54M
13277 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_7;
13281 + if (pAdapter->CommonCfg.PhyMode == PHY_11B)
13283 + aryRates[0] = 0x16; // 11Mbps
13284 + aryRates[1] = 0x0b; // 5.5Mbps
13285 + aryRates[2] = 0x04; // 2Mbps
13286 + aryRates[3] = 0x02; // 1Mbps
13289 + { //(B/G) Mixed or (A/B/G) Mixed
13290 + aryRates[0] = 0x6c; // 54Mbps
13291 + aryRates[1] = 0x60; // 48Mbps
13292 + aryRates[2] = 0x48; // 36Mbps
13293 + aryRates[3] = 0x30; // 24Mbps
13294 + aryRates[4] = 0x16; // 11Mbps
13295 + aryRates[5] = 0x0b; // 5.5Mbps
13296 + aryRates[6] = 0x04; // 2Mbps
13297 + aryRates[7] = 0x02; // 1Mbps
13299 + pAdapter->StaCfg.DesiredTransmitSetting.field.MCS = MCS_AUTO;
13305 + NdisZeroMemory(pAdapter->CommonCfg.DesireRate, MAX_LEN_OF_SUPPORTED_RATES);
13306 + NdisMoveMemory(pAdapter->CommonCfg.DesireRate, &aryRates, sizeof(NDIS_802_11_RATES));
13307 + DBGPRINT(RT_DEBUG_TRACE, (" RTMPSetDesiredRates (%02x,%02x,%02x,%02x,%02x,%02x,%02x,%02x)\n",
13308 + pAdapter->CommonCfg.DesireRate[0],pAdapter->CommonCfg.DesireRate[1],
13309 + pAdapter->CommonCfg.DesireRate[2],pAdapter->CommonCfg.DesireRate[3],
13310 + pAdapter->CommonCfg.DesireRate[4],pAdapter->CommonCfg.DesireRate[5],
13311 + pAdapter->CommonCfg.DesireRate[6],pAdapter->CommonCfg.DesireRate[7] ));
13312 + // Changing DesiredRate may affect the MAX TX rate we used to TX frames out
13313 + MlmeUpdateTxRates(pAdapter, FALSE, 0);
13316 +NDIS_STATUS RTMPWPARemoveKeyProc(
13317 + IN PRTMP_ADAPTER pAd,
13320 + PNDIS_802_11_REMOVE_KEY pKey;
13322 + NDIS_STATUS Status = NDIS_STATUS_FAILURE;
13323 + BOOLEAN bTxKey; // Set the key as transmit key
13324 + BOOLEAN bPairwise; // Indicate the key is pairwise key
13325 + BOOLEAN bKeyRSC; // indicate the receive SC set by KeyRSC value.
13326 + // Otherwise, it will set by the NIC.
13327 + BOOLEAN bAuthenticator; // indicate key is set by authenticator.
13330 + DBGPRINT(RT_DEBUG_TRACE,("---> RTMPWPARemoveKeyProc\n"));
13332 + pKey = (PNDIS_802_11_REMOVE_KEY) pBuf;
13333 + KeyIdx = pKey->KeyIndex & 0xff;
13334 + // Bit 31 of Add-key, Tx Key
13335 + bTxKey = (pKey->KeyIndex & 0x80000000) ? TRUE : FALSE;
13336 + // Bit 30 of Add-key PairwiseKey
13337 + bPairwise = (pKey->KeyIndex & 0x40000000) ? TRUE : FALSE;
13338 + // Bit 29 of Add-key KeyRSC
13339 + bKeyRSC = (pKey->KeyIndex & 0x20000000) ? TRUE : FALSE;
13340 + // Bit 28 of Add-key Authenticator
13341 + bAuthenticator = (pKey->KeyIndex & 0x10000000) ? TRUE : FALSE;
13343 + // 1. If bTx is TRUE, return failure information
13344 + if (bTxKey == TRUE)
13345 + return(NDIS_STATUS_INVALID_DATA);
13347 + // 2. Check Pairwise Key
13350 + // a. If BSSID is broadcast, remove all pairwise keys.
13351 + // b. If not broadcast, remove the pairwise specified by BSSID
13352 + for (i = 0; i < SHARE_KEY_NUM; i++)
13354 + if (MAC_ADDR_EQUAL(pAd->SharedKey[BSS0][i].BssId, pKey->BSSID))
13356 + DBGPRINT(RT_DEBUG_TRACE,("RTMPWPARemoveKeyProc(KeyIdx=%d)\n", i));
13357 + pAd->SharedKey[BSS0][i].KeyLen = 0;
13358 + pAd->SharedKey[BSS0][i].CipherAlg = CIPHER_NONE;
13359 + AsicRemoveSharedKeyEntry(pAd, BSS0, (UCHAR)i);
13360 + Status = NDIS_STATUS_SUCCESS;
13368 + // a. If BSSID is broadcast, remove all group keys indexed
13369 + // b. If BSSID matched, delete the group key indexed.
13370 + DBGPRINT(RT_DEBUG_TRACE,("RTMPWPARemoveKeyProc(KeyIdx=%ld)\n", KeyIdx));
13371 + pAd->SharedKey[BSS0][KeyIdx].KeyLen = 0;
13372 + pAd->SharedKey[BSS0][KeyIdx].CipherAlg = CIPHER_NONE;
13373 + AsicRemoveSharedKeyEntry(pAd, BSS0, (UCHAR)KeyIdx);
13374 + Status = NDIS_STATUS_SUCCESS;
13379 +#endif // CONFIG_STA_SUPPORT //
13382 +#ifdef CONFIG_STA_SUPPORT
13384 + ========================================================================
13386 + Routine Description:
13387 + Remove All WPA Keys
13390 + pAd Pointer to our adapter
13395 + IRQL = DISPATCH_LEVEL
13399 + ========================================================================
13401 +VOID RTMPWPARemoveAllKeys(
13402 + IN PRTMP_ADAPTER pAd)
13407 + DBGPRINT(RT_DEBUG_TRACE,("RTMPWPARemoveAllKeys(AuthMode=%d, WepStatus=%d)\n", pAd->StaCfg.AuthMode, pAd->StaCfg.WepStatus));
13409 + // For WEP/CKIP, there is no need to remove it, since WinXP won't set it again after
13410 + // Link up. And it will be replaced if user changed it.
13411 + if (pAd->StaCfg.AuthMode < Ndis802_11AuthModeWPA)
13414 + // For WPA-None, there is no need to remove it, since WinXP won't set it again after
13415 + // Link up. And it will be replaced if user changed it.
13416 + if (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPANone)
13419 + // set BSSID wcid entry of the Pair-wise Key table as no-security mode
13420 + AsicRemovePairwiseKeyEntry(pAd, BSS0, BSSID_WCID);
13422 + // set all shared key mode as no-security.
13423 + for (i = 0; i < SHARE_KEY_NUM; i++)
13425 + DBGPRINT(RT_DEBUG_TRACE,("remove %s key #%d\n", CipherName[pAd->SharedKey[BSS0][i].CipherAlg], i));
13426 + NdisZeroMemory(&pAd->SharedKey[BSS0][i], sizeof(CIPHER_KEY));
13428 + AsicRemoveSharedKeyEntry(pAd, BSS0, i);
13432 +#endif // CONFIG_STA_SUPPORT //
13435 + ========================================================================
13436 + Routine Description:
13437 + Change NIC PHY mode. Re-association may be necessary. possible settings
13438 + include - PHY_11B, PHY_11BG_MIXED, PHY_11A, and PHY_11ABG_MIXED
13441 + pAd - Pointer to our adapter
13444 + IRQL = PASSIVE_LEVEL
13445 + IRQL = DISPATCH_LEVEL
13447 + ========================================================================
13449 +VOID RTMPSetPhyMode(
13450 + IN PRTMP_ADAPTER pAd,
13451 + IN ULONG phymode)
13454 + // the selected phymode must be supported by the RF IC encoded in E2PROM
13456 + pAd->CommonCfg.PhyMode = (UCHAR)phymode;
13458 + DBGPRINT(RT_DEBUG_TRACE,("RTMPSetPhyMode : PhyMode=%d, channel=%d \n", pAd->CommonCfg.PhyMode, pAd->CommonCfg.Channel));
13459 +#ifdef EXT_BUILD_CHANNEL_LIST
13460 + BuildChannelListEx(pAd);
13462 + BuildChannelList(pAd);
13463 +#endif // EXT_BUILD_CHANNEL_LIST //
13465 + // sanity check user setting
13466 + for (i = 0; i < pAd->ChannelListNum; i++)
13468 + if (pAd->CommonCfg.Channel == pAd->ChannelList[i].Channel)
13472 + if (i == pAd->ChannelListNum)
13474 +#ifdef CONFIG_STA_SUPPORT
13475 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
13476 + pAd->CommonCfg.Channel = FirstChannel(pAd);
13477 +#endif // CONFIG_STA_SUPPORT //
13478 + DBGPRINT(RT_DEBUG_ERROR, ("RTMPSetPhyMode: channel is out of range, use first channel=%d \n", pAd->CommonCfg.Channel));
13481 + NdisZeroMemory(pAd->CommonCfg.SupRate, MAX_LEN_OF_SUPPORTED_RATES);
13482 + NdisZeroMemory(pAd->CommonCfg.ExtRate, MAX_LEN_OF_SUPPORTED_RATES);
13483 + NdisZeroMemory(pAd->CommonCfg.DesireRate, MAX_LEN_OF_SUPPORTED_RATES);
13484 + switch (phymode) {
13486 + pAd->CommonCfg.SupRate[0] = 0x82; // 1 mbps, in units of 0.5 Mbps, basic rate
13487 + pAd->CommonCfg.SupRate[1] = 0x84; // 2 mbps, in units of 0.5 Mbps, basic rate
13488 + pAd->CommonCfg.SupRate[2] = 0x8B; // 5.5 mbps, in units of 0.5 Mbps, basic rate
13489 + pAd->CommonCfg.SupRate[3] = 0x96; // 11 mbps, in units of 0.5 Mbps, basic rate
13490 + pAd->CommonCfg.SupRateLen = 4;
13491 + pAd->CommonCfg.ExtRateLen = 0;
13492 + pAd->CommonCfg.DesireRate[0] = 2; // 1 mbps, in units of 0.5 Mbps
13493 + pAd->CommonCfg.DesireRate[1] = 4; // 2 mbps, in units of 0.5 Mbps
13494 + pAd->CommonCfg.DesireRate[2] = 11; // 5.5 mbps, in units of 0.5 Mbps
13495 + pAd->CommonCfg.DesireRate[3] = 22; // 11 mbps, in units of 0.5 Mbps
13496 + //pAd->CommonCfg.HTPhyMode.field.MODE = MODE_CCK; // This MODE is only FYI. not use
13500 + case PHY_11BG_MIXED:
13501 + case PHY_11ABG_MIXED:
13502 +#ifdef DOT11_N_SUPPORT
13503 + case PHY_11N_2_4G:
13504 + case PHY_11ABGN_MIXED:
13505 + case PHY_11BGN_MIXED:
13506 + case PHY_11GN_MIXED:
13507 +#endif // DOT11_N_SUPPORT //
13508 + pAd->CommonCfg.SupRate[0] = 0x82; // 1 mbps, in units of 0.5 Mbps, basic rate
13509 + pAd->CommonCfg.SupRate[1] = 0x84; // 2 mbps, in units of 0.5 Mbps, basic rate
13510 + pAd->CommonCfg.SupRate[2] = 0x8B; // 5.5 mbps, in units of 0.5 Mbps, basic rate
13511 + pAd->CommonCfg.SupRate[3] = 0x96; // 11 mbps, in units of 0.5 Mbps, basic rate
13512 + pAd->CommonCfg.SupRate[4] = 0x12; // 9 mbps, in units of 0.5 Mbps
13513 + pAd->CommonCfg.SupRate[5] = 0x24; // 18 mbps, in units of 0.5 Mbps
13514 + pAd->CommonCfg.SupRate[6] = 0x48; // 36 mbps, in units of 0.5 Mbps
13515 + pAd->CommonCfg.SupRate[7] = 0x6c; // 54 mbps, in units of 0.5 Mbps
13516 + pAd->CommonCfg.SupRateLen = 8;
13517 + pAd->CommonCfg.ExtRate[0] = 0x0C; // 6 mbps, in units of 0.5 Mbps
13518 + pAd->CommonCfg.ExtRate[1] = 0x18; // 12 mbps, in units of 0.5 Mbps
13519 + pAd->CommonCfg.ExtRate[2] = 0x30; // 24 mbps, in units of 0.5 Mbps
13520 + pAd->CommonCfg.ExtRate[3] = 0x60; // 48 mbps, in units of 0.5 Mbps
13521 + pAd->CommonCfg.ExtRateLen = 4;
13522 + pAd->CommonCfg.DesireRate[0] = 2; // 1 mbps, in units of 0.5 Mbps
13523 + pAd->CommonCfg.DesireRate[1] = 4; // 2 mbps, in units of 0.5 Mbps
13524 + pAd->CommonCfg.DesireRate[2] = 11; // 5.5 mbps, in units of 0.5 Mbps
13525 + pAd->CommonCfg.DesireRate[3] = 22; // 11 mbps, in units of 0.5 Mbps
13526 + pAd->CommonCfg.DesireRate[4] = 12; // 6 mbps, in units of 0.5 Mbps
13527 + pAd->CommonCfg.DesireRate[5] = 18; // 9 mbps, in units of 0.5 Mbps
13528 + pAd->CommonCfg.DesireRate[6] = 24; // 12 mbps, in units of 0.5 Mbps
13529 + pAd->CommonCfg.DesireRate[7] = 36; // 18 mbps, in units of 0.5 Mbps
13530 + pAd->CommonCfg.DesireRate[8] = 48; // 24 mbps, in units of 0.5 Mbps
13531 + pAd->CommonCfg.DesireRate[9] = 72; // 36 mbps, in units of 0.5 Mbps
13532 + pAd->CommonCfg.DesireRate[10] = 96; // 48 mbps, in units of 0.5 Mbps
13533 + pAd->CommonCfg.DesireRate[11] = 108; // 54 mbps, in units of 0.5 Mbps
13537 +#ifdef DOT11_N_SUPPORT
13538 + case PHY_11AN_MIXED:
13539 + case PHY_11AGN_MIXED:
13541 +#endif // DOT11_N_SUPPORT //
13542 + pAd->CommonCfg.SupRate[0] = 0x8C; // 6 mbps, in units of 0.5 Mbps, basic rate
13543 + pAd->CommonCfg.SupRate[1] = 0x12; // 9 mbps, in units of 0.5 Mbps
13544 + pAd->CommonCfg.SupRate[2] = 0x98; // 12 mbps, in units of 0.5 Mbps, basic rate
13545 + pAd->CommonCfg.SupRate[3] = 0x24; // 18 mbps, in units of 0.5 Mbps
13546 + pAd->CommonCfg.SupRate[4] = 0xb0; // 24 mbps, in units of 0.5 Mbps, basic rate
13547 + pAd->CommonCfg.SupRate[5] = 0x48; // 36 mbps, in units of 0.5 Mbps
13548 + pAd->CommonCfg.SupRate[6] = 0x60; // 48 mbps, in units of 0.5 Mbps
13549 + pAd->CommonCfg.SupRate[7] = 0x6c; // 54 mbps, in units of 0.5 Mbps
13550 + pAd->CommonCfg.SupRateLen = 8;
13551 + pAd->CommonCfg.ExtRateLen = 0;
13552 + pAd->CommonCfg.DesireRate[0] = 12; // 6 mbps, in units of 0.5 Mbps
13553 + pAd->CommonCfg.DesireRate[1] = 18; // 9 mbps, in units of 0.5 Mbps
13554 + pAd->CommonCfg.DesireRate[2] = 24; // 12 mbps, in units of 0.5 Mbps
13555 + pAd->CommonCfg.DesireRate[3] = 36; // 18 mbps, in units of 0.5 Mbps
13556 + pAd->CommonCfg.DesireRate[4] = 48; // 24 mbps, in units of 0.5 Mbps
13557 + pAd->CommonCfg.DesireRate[5] = 72; // 36 mbps, in units of 0.5 Mbps
13558 + pAd->CommonCfg.DesireRate[6] = 96; // 48 mbps, in units of 0.5 Mbps
13559 + pAd->CommonCfg.DesireRate[7] = 108; // 54 mbps, in units of 0.5 Mbps
13560 + //pAd->CommonCfg.HTPhyMode.field.MODE = MODE_OFDM; // This MODE is only FYI. not use
13568 + pAd->CommonCfg.BandState = UNKNOWN_BAND;
13572 +#ifdef DOT11_N_SUPPORT
13574 + ========================================================================
13575 + Routine Description:
13576 + Caller ensures we has 802.11n support.
13577 + Calls at setting HT from AP/STASetinformation
13580 + pAd - Pointer to our adapter
13583 + ========================================================================
13586 + IN PRTMP_ADAPTER pAd,
13587 + IN OID_SET_HT_PHYMODE *pHTPhyMode)
13590 + UINT32 Value = 0;
13591 + UCHAR BBPValue = 0;
13592 + UCHAR BBP3Value = 0;
13593 + UCHAR RxStream = pAd->CommonCfg.RxStream;
13595 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPSetHT : HT_mode(%d), ExtOffset(%d), MCS(%d), BW(%d), STBC(%d), SHORTGI(%d)\n",
13596 + pHTPhyMode->HtMode, pHTPhyMode->ExtOffset,
13597 + pHTPhyMode->MCS, pHTPhyMode->BW,
13598 + pHTPhyMode->STBC, pHTPhyMode->SHORTGI));
13600 + // Don't zero supportedHyPhy structure.
13601 + RTMPZeroMemory(&pAd->CommonCfg.HtCapability, sizeof(pAd->CommonCfg.HtCapability));
13602 + RTMPZeroMemory(&pAd->CommonCfg.AddHTInfo, sizeof(pAd->CommonCfg.AddHTInfo));
13603 + RTMPZeroMemory(&pAd->CommonCfg.NewExtChanOffset, sizeof(pAd->CommonCfg.NewExtChanOffset));
13604 + RTMPZeroMemory(&pAd->CommonCfg.DesiredHtPhy, sizeof(pAd->CommonCfg.DesiredHtPhy));
13606 + if (pAd->CommonCfg.bRdg)
13608 + pAd->CommonCfg.HtCapability.ExtHtCapInfo.PlusHTC = 1;
13609 + pAd->CommonCfg.HtCapability.ExtHtCapInfo.RDGSupport = 1;
13613 + pAd->CommonCfg.HtCapability.ExtHtCapInfo.PlusHTC = 0;
13614 + pAd->CommonCfg.HtCapability.ExtHtCapInfo.RDGSupport = 0;
13617 + pAd->CommonCfg.HtCapability.HtCapParm.MaxRAmpduFactor = 3;
13618 + pAd->CommonCfg.DesiredHtPhy.MaxRAmpduFactor = 3;
13620 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPSetHT : RxBAWinLimit = %d\n", pAd->CommonCfg.BACapability.field.RxBAWinLimit));
13622 + // Mimo power save, A-MSDU size,
13623 + pAd->CommonCfg.DesiredHtPhy.AmsduEnable = (USHORT)pAd->CommonCfg.BACapability.field.AmsduEnable;
13624 + pAd->CommonCfg.DesiredHtPhy.AmsduSize = (UCHAR)pAd->CommonCfg.BACapability.field.AmsduSize;
13625 + pAd->CommonCfg.DesiredHtPhy.MimoPs = (UCHAR)pAd->CommonCfg.BACapability.field.MMPSmode;
13626 + pAd->CommonCfg.DesiredHtPhy.MpduDensity = (UCHAR)pAd->CommonCfg.BACapability.field.MpduDensity;
13628 + pAd->CommonCfg.HtCapability.HtCapInfo.AMsduSize = (USHORT)pAd->CommonCfg.BACapability.field.AmsduSize;
13629 + pAd->CommonCfg.HtCapability.HtCapInfo.MimoPs = (USHORT)pAd->CommonCfg.BACapability.field.MMPSmode;
13630 + pAd->CommonCfg.HtCapability.HtCapParm.MpduDensity = (UCHAR)pAd->CommonCfg.BACapability.field.MpduDensity;
13632 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPSetHT : AMsduSize = %d, MimoPs = %d, MpduDensity = %d, MaxRAmpduFactor = %d\n",
13633 + pAd->CommonCfg.DesiredHtPhy.AmsduSize,
13634 + pAd->CommonCfg.DesiredHtPhy.MimoPs,
13635 + pAd->CommonCfg.DesiredHtPhy.MpduDensity,
13636 + pAd->CommonCfg.DesiredHtPhy.MaxRAmpduFactor));
13638 + if(pHTPhyMode->HtMode == HTMODE_GF)
13640 + pAd->CommonCfg.HtCapability.HtCapInfo.GF = 1;
13641 + pAd->CommonCfg.DesiredHtPhy.GF = 1;
13644 + pAd->CommonCfg.DesiredHtPhy.GF = 0;
13646 + // Decide Rx MCSSet
13647 + switch (RxStream)
13650 + pAd->CommonCfg.HtCapability.MCSSet[0] = 0xff;
13651 + pAd->CommonCfg.HtCapability.MCSSet[1] = 0x00;
13655 + pAd->CommonCfg.HtCapability.MCSSet[0] = 0xff;
13656 + pAd->CommonCfg.HtCapability.MCSSet[1] = 0xff;
13660 + pAd->CommonCfg.HtCapability.MCSSet[0] = 0xff;
13661 + pAd->CommonCfg.HtCapability.MCSSet[1] = 0xff;
13662 + pAd->CommonCfg.HtCapability.MCSSet[2] = 0xff;
13666 + if (pAd->CommonCfg.bForty_Mhz_Intolerant && (pAd->CommonCfg.Channel <= 14) && (pHTPhyMode->BW == BW_40) )
13668 + pHTPhyMode->BW = BW_20;
13669 + pAd->CommonCfg.HtCapability.HtCapInfo.Forty_Mhz_Intolerant = 1;
13672 + if(pHTPhyMode->BW == BW_40)
13674 + pAd->CommonCfg.HtCapability.MCSSet[4] = 0x1; // MCS 32
13675 + pAd->CommonCfg.HtCapability.HtCapInfo.ChannelWidth = 1;
13676 + if (pAd->CommonCfg.Channel <= 14)
13677 + pAd->CommonCfg.HtCapability.HtCapInfo.CCKmodein40 = 1;
13679 + pAd->CommonCfg.DesiredHtPhy.ChannelWidth = 1;
13680 + pAd->CommonCfg.AddHTInfo.AddHtInfo.RecomWidth = 1;
13681 + pAd->CommonCfg.AddHTInfo.AddHtInfo.ExtChanOffset = (pHTPhyMode->ExtOffset == EXTCHA_BELOW)? (EXTCHA_BELOW): EXTCHA_ABOVE;
13682 + // Set Regsiter for extension channel position.
13683 + RTMP_IO_READ32(pAd, TX_BAND_CFG, &Value);
13684 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &BBP3Value);
13685 + if ((pHTPhyMode->ExtOffset == EXTCHA_BELOW))
13688 + BBP3Value |= (0x20);
13689 + RTMP_IO_WRITE32(pAd, TX_BAND_CFG, Value);
13691 + else if ((pHTPhyMode->ExtOffset == EXTCHA_ABOVE))
13694 + BBP3Value &= (~0x20);
13695 + RTMP_IO_WRITE32(pAd, TX_BAND_CFG, Value);
13698 + // Turn on BBP 40MHz mode now only as AP .
13699 + // Sta can turn on BBP 40MHz after connection with 40MHz AP. Sta only broadcast 40MHz capability before connection.
13700 + if ((pAd->OpMode == OPMODE_AP) || INFRA_ON(pAd) || ADHOC_ON(pAd)
13703 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &BBPValue);
13704 + BBPValue &= (~0x18);
13705 + BBPValue |= 0x10;
13706 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, BBPValue);
13708 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, BBP3Value);
13709 + pAd->CommonCfg.BBPCurrentBW = BW_40;
13714 + pAd->CommonCfg.HtCapability.HtCapInfo.ChannelWidth = 0;
13715 + pAd->CommonCfg.DesiredHtPhy.ChannelWidth = 0;
13716 + pAd->CommonCfg.AddHTInfo.AddHtInfo.RecomWidth = 0;
13717 + pAd->CommonCfg.AddHTInfo.AddHtInfo.ExtChanOffset = EXTCHA_NONE;
13718 + pAd->CommonCfg.CentralChannel = pAd->CommonCfg.Channel;
13719 + // Turn on BBP 20MHz mode by request here.
13721 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &BBPValue);
13722 + BBPValue &= (~0x18);
13723 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, BBPValue);
13724 + pAd->CommonCfg.BBPCurrentBW = BW_20;
13728 + if(pHTPhyMode->STBC == STBC_USE)
13730 + pAd->CommonCfg.HtCapability.HtCapInfo.TxSTBC = 1;
13731 + pAd->CommonCfg.DesiredHtPhy.TxSTBC = 1;
13732 + pAd->CommonCfg.HtCapability.HtCapInfo.RxSTBC = 1;
13733 + pAd->CommonCfg.DesiredHtPhy.RxSTBC = 1;
13737 + pAd->CommonCfg.DesiredHtPhy.TxSTBC = 0;
13738 + pAd->CommonCfg.DesiredHtPhy.RxSTBC = 0;
13741 + if(pHTPhyMode->SHORTGI == GI_400)
13743 + pAd->CommonCfg.HtCapability.HtCapInfo.ShortGIfor20 = 1;
13744 + pAd->CommonCfg.HtCapability.HtCapInfo.ShortGIfor40 = 1;
13745 + pAd->CommonCfg.DesiredHtPhy.ShortGIfor20 = 1;
13746 + pAd->CommonCfg.DesiredHtPhy.ShortGIfor40 = 1;
13750 + pAd->CommonCfg.HtCapability.HtCapInfo.ShortGIfor20 = 0;
13751 + pAd->CommonCfg.HtCapability.HtCapInfo.ShortGIfor40 = 0;
13752 + pAd->CommonCfg.DesiredHtPhy.ShortGIfor20 = 0;
13753 + pAd->CommonCfg.DesiredHtPhy.ShortGIfor40 = 0;
13756 + // We support link adaptation for unsolicit MCS feedback, set to 2.
13757 + pAd->CommonCfg.HtCapability.ExtHtCapInfo.MCSFeedback = MCSFBK_NONE; //MCSFBK_UNSOLICIT;
13758 + pAd->CommonCfg.AddHTInfo.ControlChan = pAd->CommonCfg.Channel;
13759 + // 1, the extension channel above the control channel.
13761 + // EDCA parameters used for AP's own transmission
13762 + if (pAd->CommonCfg.APEdcaParm.bValid == FALSE)
13764 + pAd->CommonCfg.APEdcaParm.bValid = TRUE;
13765 + pAd->CommonCfg.APEdcaParm.Aifsn[0] = 3;
13766 + pAd->CommonCfg.APEdcaParm.Aifsn[1] = 7;
13767 + pAd->CommonCfg.APEdcaParm.Aifsn[2] = 1;
13768 + pAd->CommonCfg.APEdcaParm.Aifsn[3] = 1;
13770 + pAd->CommonCfg.APEdcaParm.Cwmin[0] = 4;
13771 + pAd->CommonCfg.APEdcaParm.Cwmin[1] = 4;
13772 + pAd->CommonCfg.APEdcaParm.Cwmin[2] = 3;
13773 + pAd->CommonCfg.APEdcaParm.Cwmin[3] = 2;
13775 + pAd->CommonCfg.APEdcaParm.Cwmax[0] = 6;
13776 + pAd->CommonCfg.APEdcaParm.Cwmax[1] = 10;
13777 + pAd->CommonCfg.APEdcaParm.Cwmax[2] = 4;
13778 + pAd->CommonCfg.APEdcaParm.Cwmax[3] = 3;
13780 + pAd->CommonCfg.APEdcaParm.Txop[0] = 0;
13781 + pAd->CommonCfg.APEdcaParm.Txop[1] = 0;
13782 + pAd->CommonCfg.APEdcaParm.Txop[2] = 94;
13783 + pAd->CommonCfg.APEdcaParm.Txop[3] = 47;
13785 + AsicSetEdcaParm(pAd, &pAd->CommonCfg.APEdcaParm);
13788 +#ifdef CONFIG_STA_SUPPORT
13789 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
13791 + RTMPSetIndividualHT(pAd, 0);
13793 +#endif // CONFIG_STA_SUPPORT //
13798 + ========================================================================
13799 + Routine Description:
13800 + Caller ensures we has 802.11n support.
13801 + Calls at setting HT from AP/STASetinformation
13804 + pAd - Pointer to our adapter
13807 + ========================================================================
13809 +VOID RTMPSetIndividualHT(
13810 + IN PRTMP_ADAPTER pAd,
13813 + PRT_HT_PHY_INFO pDesired_ht_phy = NULL;
13814 + UCHAR TxStream = pAd->CommonCfg.TxStream;
13815 + UCHAR DesiredMcs = MCS_AUTO;
13820 +#ifdef CONFIG_STA_SUPPORT
13821 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
13823 + pDesired_ht_phy = &pAd->StaCfg.DesiredHtPhyInfo;
13824 + DesiredMcs = pAd->StaCfg.DesiredTransmitSetting.field.MCS;
13825 + //pAd->StaCfg.bAutoTxRateSwitch = (DesiredMcs == MCS_AUTO) ? TRUE : FALSE;
13828 +#endif // CONFIG_STA_SUPPORT //
13831 + if (pDesired_ht_phy == NULL)
13833 + DBGPRINT(RT_DEBUG_ERROR, ("RTMPSetIndividualHT: invalid apidx(%d)\n", apidx));
13836 + RTMPZeroMemory(pDesired_ht_phy, sizeof(RT_HT_PHY_INFO));
13838 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPSetIndividualHT : Desired MCS = %d\n", DesiredMcs));
13839 + // Check the validity of MCS
13840 + if ((TxStream == 1) && ((DesiredMcs >= MCS_8) && (DesiredMcs <= MCS_15)))
13842 + DBGPRINT(RT_DEBUG_WARN, ("RTMPSetIndividualHT: MCS(%d) is invalid in 1S, reset it as MCS_7\n", DesiredMcs));
13843 + DesiredMcs = MCS_7;
13846 + if ((pAd->CommonCfg.DesiredHtPhy.ChannelWidth == BW_20) && (DesiredMcs == MCS_32))
13848 + DBGPRINT(RT_DEBUG_WARN, ("RTMPSetIndividualHT: MCS_32 is only supported in 40-MHz, reset it as MCS_0\n"));
13849 + DesiredMcs = MCS_0;
13852 + pDesired_ht_phy->bHtEnable = TRUE;
13854 + // Decide desired Tx MCS
13855 + switch (TxStream)
13858 + if (DesiredMcs == MCS_AUTO)
13860 + pDesired_ht_phy->MCSSet[0]= 0xff;
13861 + pDesired_ht_phy->MCSSet[1]= 0x00;
13863 + else if (DesiredMcs <= MCS_7)
13865 + pDesired_ht_phy->MCSSet[0]= 1<<DesiredMcs;
13866 + pDesired_ht_phy->MCSSet[1]= 0x00;
13871 + if (DesiredMcs == MCS_AUTO)
13873 + pDesired_ht_phy->MCSSet[0]= 0xff;
13874 + pDesired_ht_phy->MCSSet[1]= 0xff;
13876 + else if (DesiredMcs <= MCS_15)
13880 + mode = DesiredMcs / 8;
13882 + pDesired_ht_phy->MCSSet[mode] = (1 << (DesiredMcs - mode * 8));
13887 + if (DesiredMcs == MCS_AUTO)
13889 + /* MCS0 ~ MCS23, 3 bytes */
13890 + pDesired_ht_phy->MCSSet[0]= 0xff;
13891 + pDesired_ht_phy->MCSSet[1]= 0xff;
13892 + pDesired_ht_phy->MCSSet[2]= 0xff;
13894 + else if (DesiredMcs <= MCS_23)
13898 + mode = DesiredMcs / 8;
13900 + pDesired_ht_phy->MCSSet[mode] = (1 << (DesiredMcs - mode * 8));
13905 + if(pAd->CommonCfg.DesiredHtPhy.ChannelWidth == BW_40)
13907 + if (DesiredMcs == MCS_AUTO || DesiredMcs == MCS_32)
13908 + pDesired_ht_phy->MCSSet[4] = 0x1;
13911 + // update HT Rate setting
13912 + if (pAd->OpMode == OPMODE_STA)
13913 + MlmeUpdateHtTxRates(pAd, BSS0);
13915 + MlmeUpdateHtTxRates(pAd, apidx);
13920 + ========================================================================
13921 + Routine Description:
13922 + Update HT IE from our capability.
13925 + Send all HT IE in beacon/probe rsp/assoc rsp/action frame.
13928 + ========================================================================
13930 +VOID RTMPUpdateHTIE(
13931 + IN RT_HT_CAPABILITY *pRtHt,
13932 + IN UCHAR *pMcsSet,
13933 + OUT HT_CAPABILITY_IE *pHtCapability,
13934 + OUT ADD_HT_INFO_IE *pAddHtInfo)
13936 + RTMPZeroMemory(pHtCapability, sizeof(HT_CAPABILITY_IE));
13937 + RTMPZeroMemory(pAddHtInfo, sizeof(ADD_HT_INFO_IE));
13939 + pHtCapability->HtCapInfo.ChannelWidth = pRtHt->ChannelWidth;
13940 + pHtCapability->HtCapInfo.MimoPs = pRtHt->MimoPs;
13941 + pHtCapability->HtCapInfo.GF = pRtHt->GF;
13942 + pHtCapability->HtCapInfo.ShortGIfor20 = pRtHt->ShortGIfor20;
13943 + pHtCapability->HtCapInfo.ShortGIfor40 = pRtHt->ShortGIfor40;
13944 + pHtCapability->HtCapInfo.TxSTBC = pRtHt->TxSTBC;
13945 + pHtCapability->HtCapInfo.RxSTBC = pRtHt->RxSTBC;
13946 + pHtCapability->HtCapInfo.AMsduSize = pRtHt->AmsduSize;
13947 + pHtCapability->HtCapParm.MaxRAmpduFactor = pRtHt->MaxRAmpduFactor;
13948 + pHtCapability->HtCapParm.MpduDensity = pRtHt->MpduDensity;
13950 + pAddHtInfo->AddHtInfo.ExtChanOffset = pRtHt->ExtChanOffset ;
13951 + pAddHtInfo->AddHtInfo.RecomWidth = pRtHt->RecomWidth;
13952 + pAddHtInfo->AddHtInfo2.OperaionMode = pRtHt->OperaionMode;
13953 + pAddHtInfo->AddHtInfo2.NonGfPresent = pRtHt->NonGfPresent;
13954 + RTMPMoveMemory(pAddHtInfo->MCSSet, /*pRtHt->MCSSet*/pMcsSet, 4); // rt2860 only support MCS max=32, no need to copy all 16 uchar.
13956 + DBGPRINT(RT_DEBUG_TRACE,("RTMPUpdateHTIE <== \n"));
13958 +#endif // DOT11_N_SUPPORT //
13961 + ========================================================================
13963 + Add Client security information into ASIC WCID table and IVEIV table.
13965 + ========================================================================
13967 +VOID RTMPAddWcidAttributeEntry(
13968 + IN PRTMP_ADAPTER pAd,
13971 + IN UCHAR CipherAlg,
13972 + IN MAC_TABLE_ENTRY *pEntry)
13974 + UINT32 WCIDAttri = 0;
13980 +#ifdef CONFIG_STA_SUPPORT
13981 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
13983 + if (BssIdx > BSS0)
13985 + DBGPRINT(RT_DEBUG_ERROR, ("RTMPAddWcidAttributeEntry: The BSS-index(%d) is out of range for Infra link. \n", BssIdx));
13989 + // 1. In ADHOC mode, the AID is wcid number. And NO mesh link exists.
13990 + // 2. In Infra mode, the AID:1 MUST be wcid of infra STA.
13991 + // the AID:2~ assign to mesh link entry.
13992 + if (pEntry && ADHOC_ON(pAd))
13993 + Wcid = pEntry->Aid;
13994 + else if (pEntry && INFRA_ON(pAd))
13996 +#ifdef QOS_DLS_SUPPORT
13997 + if (pEntry->ValidAsDls == TRUE)
13998 + Wcid = pEntry->Aid;
14000 +#endif // QOS_DLS_SUPPORT //
14001 + Wcid = BSSID_WCID;
14004 + Wcid = MCAST_WCID;
14006 +#endif // CONFIG_STA_SUPPORT //
14009 + // Update WCID attribute table
14010 + offset = MAC_WCID_ATTRIBUTE_BASE + (Wcid * HW_WCID_ATTRI_SIZE);
14012 +#ifdef CONFIG_STA_SUPPORT
14013 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
14015 + if (pEntry && pEntry->ValidAsMesh)
14016 + WCIDAttri = (CipherAlg<<1) | PAIRWISEKEYTABLE;
14017 +#ifdef QOS_DLS_SUPPORT
14018 + else if ((pEntry) && (pEntry->ValidAsDls) &&
14019 + ((CipherAlg == CIPHER_TKIP) ||
14020 + (CipherAlg == CIPHER_TKIP_NO_MIC) ||
14021 + (CipherAlg == CIPHER_AES) ||
14022 + (CipherAlg == CIPHER_NONE)))
14023 + WCIDAttri = (CipherAlg<<1) | PAIRWISEKEYTABLE;
14024 +#endif // QOS_DLS_SUPPORT //
14026 + WCIDAttri = (CipherAlg<<1) | SHAREDKEYTABLE;
14028 +#endif // CONFIG_STA_SUPPORT //
14030 + RTMP_IO_WRITE32(pAd, offset, WCIDAttri);
14033 + // Update IV/EIV table
14034 + offset = MAC_IVEIV_TABLE_BASE + (Wcid * HW_IVEIV_ENTRY_SIZE);
14037 + if ((CipherAlg == CIPHER_TKIP) || (CipherAlg == CIPHER_TKIP_NO_MIC) || (CipherAlg == CIPHER_AES))
14039 + // Eiv bit on. keyid always is 0 for pairwise key
14040 + IVEIV = (KeyIdx <<6) | 0x20;
14044 + // WEP KeyIdx is default tx key.
14045 + IVEIV = (KeyIdx << 6);
14048 + // For key index and ext IV bit, so only need to update the position(offset+3).
14050 + RTUSBMultiWrite_OneByte(pAd, offset+3, &IVEIV);
14051 +#endif // RT2870 //
14053 + DBGPRINT(RT_DEBUG_TRACE,("RTMPAddWcidAttributeEntry: WCID #%d, KeyIndex #%d, Alg=%s\n",Wcid, KeyIdx, CipherName[CipherAlg]));
14054 + DBGPRINT(RT_DEBUG_TRACE,(" WCIDAttri = 0x%x \n", WCIDAttri));
14059 + ==========================================================================
14061 + Parse encryption type
14063 + pAdapter Pointer to our adapter
14064 + wrq Pointer to the ioctl argument
14070 + ==========================================================================
14072 +CHAR *GetEncryptType(CHAR enc)
14074 + if(enc == Ndis802_11WEPDisabled)
14076 + if(enc == Ndis802_11WEPEnabled)
14078 + if(enc == Ndis802_11Encryption2Enabled)
14080 + if(enc == Ndis802_11Encryption3Enabled)
14082 + if(enc == Ndis802_11Encryption4Enabled)
14083 + return "TKIPAES";
14088 +CHAR *GetAuthMode(CHAR auth)
14090 + if(auth == Ndis802_11AuthModeOpen)
14092 + if(auth == Ndis802_11AuthModeShared)
14094 + if(auth == Ndis802_11AuthModeAutoSwitch)
14095 + return "AUTOWEP";
14096 + if(auth == Ndis802_11AuthModeWPA)
14098 + if(auth == Ndis802_11AuthModeWPAPSK)
14100 + if(auth == Ndis802_11AuthModeWPANone)
14101 + return "WPANONE";
14102 + if(auth == Ndis802_11AuthModeWPA2)
14104 + if(auth == Ndis802_11AuthModeWPA2PSK)
14105 + return "WPA2PSK";
14106 + if(auth == Ndis802_11AuthModeWPA1WPA2)
14107 + return "WPA1WPA2";
14108 + if(auth == Ndis802_11AuthModeWPA1PSKWPA2PSK)
14109 + return "WPA1PSKWPA2PSK";
14114 +#if 1 //#ifndef UCOS
14116 + ==========================================================================
14118 + Get site survey results
14120 + pAdapter Pointer to our adapter
14121 + wrq Pointer to the ioctl argument
14128 + 1.) UI needs to wait 4 seconds after issue a site survey command
14129 + 2.) iwpriv ra0 get_site_survey
14130 + 3.) UI needs to prepare at least 4096bytes to get the results
14131 + ==========================================================================
14133 +#define LINE_LEN (4+33+20+8+10+9+7+3) // Channel+SSID+Bssid+WepStatus+AuthMode+Signal+WiressMode+NetworkType
14134 +#ifdef CONFIG_STA_SUPPORT
14135 +#endif // CONFIG_STA_SUPPORT //
14136 +VOID RTMPIoctlGetSiteSurvey(
14137 + IN PRTMP_ADAPTER pAdapter,
14138 + IN struct iwreq *wrq)
14144 + CHAR Ssid[MAX_LEN_OF_SSID +1];
14145 + INT Rssi = 0, max_len = LINE_LEN;
14146 + UINT Rssi_Quality = 0;
14147 + NDIS_802_11_NETWORK_TYPE wireless_mode;
14149 + os_alloc_mem(NULL, (PUCHAR *)&msg, sizeof(CHAR)*((MAX_LEN_OF_BSS_TABLE)*max_len));
14153 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPIoctlGetSiteSurvey - msg memory alloc fail.\n"));
14157 + memset(msg, 0 ,(MAX_LEN_OF_BSS_TABLE)*max_len );
14158 + memset(Ssid, 0 ,(MAX_LEN_OF_SSID +1));
14159 + sprintf(msg,"%s","\n");
14160 + sprintf(msg+strlen(msg),"%-4s%-33s%-20s%-8s%-10s%-9s%-7s%-3s\n",
14161 + "Ch", "SSID", "BSSID", "Enc", "Auth", "Siganl(%)", "W-Mode", " NT");
14163 +#ifdef CONFIG_STA_SUPPORT
14164 +#endif // CONFIG_STA_SUPPORT //
14167 +#ifdef CONFIG_STA_SUPPORT
14168 + pAdapter->StaCfg.bScanReqIsFromWebUI = TRUE;
14169 + while ((ScanRunning(pAdapter) == TRUE) && (WaitCnt++ < 200))
14171 +#endif // CONFIG_STA_SUPPORT //
14173 + for(i=0; i<pAdapter->ScanTab.BssNr ;i++)
14175 + if( pAdapter->ScanTab.BssEntry[i].Channel==0)
14178 + if((strlen(msg)+max_len ) >= IW_SCAN_MAX_DATA)
14182 + sprintf(msg+strlen(msg),"%-4d", pAdapter->ScanTab.BssEntry[i].Channel);
14184 + memcpy(Ssid, pAdapter->ScanTab.BssEntry[i].Ssid, pAdapter->ScanTab.BssEntry[i].SsidLen);
14185 + Ssid[pAdapter->ScanTab.BssEntry[i].SsidLen] = '\0';
14186 + sprintf(msg+strlen(msg),"%-33s", Ssid);
14188 + sprintf(msg+strlen(msg),"%02x:%02x:%02x:%02x:%02x:%02x ",
14189 + pAdapter->ScanTab.BssEntry[i].Bssid[0],
14190 + pAdapter->ScanTab.BssEntry[i].Bssid[1],
14191 + pAdapter->ScanTab.BssEntry[i].Bssid[2],
14192 + pAdapter->ScanTab.BssEntry[i].Bssid[3],
14193 + pAdapter->ScanTab.BssEntry[i].Bssid[4],
14194 + pAdapter->ScanTab.BssEntry[i].Bssid[5]);
14195 + //Encryption Type
14196 + sprintf(msg+strlen(msg),"%-8s",GetEncryptType(pAdapter->ScanTab.BssEntry[i].WepStatus));
14197 + //Authentication Mode
14198 + if (pAdapter->ScanTab.BssEntry[i].WepStatus == Ndis802_11WEPEnabled)
14199 + sprintf(msg+strlen(msg),"%-10s", "UNKNOW");
14201 + sprintf(msg+strlen(msg),"%-10s",GetAuthMode(pAdapter->ScanTab.BssEntry[i].AuthMode));
14203 + Rssi = (INT)pAdapter->ScanTab.BssEntry[i].Rssi;
14205 + Rssi_Quality = 100;
14206 + else if (Rssi >= -80) // between -50 ~ -80dbm
14207 + Rssi_Quality = (UINT)(24 + ((Rssi + 80) * 26)/10);
14208 + else if (Rssi >= -90) // between -80 ~ -90dbm
14209 + Rssi_Quality = (UINT)(((Rssi + 90) * 26)/10);
14210 + else // < -84 dbm
14211 + Rssi_Quality = 0;
14212 + sprintf(msg+strlen(msg),"%-9d", Rssi_Quality);
14214 + wireless_mode = NetworkTypeInUseSanity(&pAdapter->ScanTab.BssEntry[i]);
14215 + if (wireless_mode == Ndis802_11FH ||
14216 + wireless_mode == Ndis802_11DS)
14217 + sprintf(msg+strlen(msg),"%-7s", "11b");
14218 + else if (wireless_mode == Ndis802_11OFDM5)
14219 + sprintf(msg+strlen(msg),"%-7s", "11a");
14220 + else if (wireless_mode == Ndis802_11OFDM5_N)
14221 + sprintf(msg+strlen(msg),"%-7s", "11a/n");
14222 + else if (wireless_mode == Ndis802_11OFDM24)
14223 + sprintf(msg+strlen(msg),"%-7s", "11b/g");
14224 + else if (wireless_mode == Ndis802_11OFDM24_N)
14225 + sprintf(msg+strlen(msg),"%-7s", "11b/g/n");
14227 + sprintf(msg+strlen(msg),"%-7s", "unknow");
14229 + if (pAdapter->ScanTab.BssEntry[i].BssType == BSS_ADHOC)
14230 + sprintf(msg+strlen(msg),"%-3s", " Ad");
14232 + sprintf(msg+strlen(msg),"%-3s", " In");
14234 + sprintf(msg+strlen(msg),"\n");
14235 +#ifdef CONFIG_STA_SUPPORT
14236 +#endif // CONFIG_STA_SUPPORT //
14239 +#ifdef CONFIG_STA_SUPPORT
14240 + pAdapter->StaCfg.bScanReqIsFromWebUI = FALSE;
14241 +#endif // CONFIG_STA_SUPPORT //
14242 + wrq->u.data.length = strlen(msg);
14243 + Status = copy_to_user(wrq->u.data.pointer, msg, wrq->u.data.length);
14245 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPIoctlGetSiteSurvey - wrq->u.data.length = %d\n", wrq->u.data.length));
14246 + os_free_mem(NULL, (PUCHAR)msg);
14250 +#define MAC_LINE_LEN (14+4+4+10+10+10+6+6) // Addr+aid+psm+datatime+rxbyte+txbyte+current tx rate+last tx rate
14251 +VOID RTMPIoctlGetMacTable(
14252 + IN PRTMP_ADAPTER pAd,
14253 + IN struct iwreq *wrq)
14256 + RT_802_11_MAC_TABLE MacTab;
14260 + for (i=0; i<MAX_LEN_OF_MAC_TABLE; i++)
14262 + if (pAd->MacTab.Content[i].ValidAsCLI && (pAd->MacTab.Content[i].Sst == SST_ASSOC))
14264 + COPY_MAC_ADDR(MacTab.Entry[MacTab.Num].Addr, &pAd->MacTab.Content[i].Addr);
14265 + MacTab.Entry[MacTab.Num].Aid = (UCHAR)pAd->MacTab.Content[i].Aid;
14266 + MacTab.Entry[MacTab.Num].Psm = pAd->MacTab.Content[i].PsMode;
14267 +#ifdef DOT11_N_SUPPORT
14268 + MacTab.Entry[MacTab.Num].MimoPs = pAd->MacTab.Content[i].MmpsMode;
14269 +#endif // DOT11_N_SUPPORT //
14271 + // Fill in RSSI per entry
14272 + MacTab.Entry[MacTab.Num].AvgRssi0 = pAd->MacTab.Content[i].RssiSample.AvgRssi0;
14273 + MacTab.Entry[MacTab.Num].AvgRssi1 = pAd->MacTab.Content[i].RssiSample.AvgRssi1;
14274 + MacTab.Entry[MacTab.Num].AvgRssi2 = pAd->MacTab.Content[i].RssiSample.AvgRssi2;
14276 + // the connected time per entry
14277 + MacTab.Entry[MacTab.Num].ConnectedTime = pAd->MacTab.Content[i].StaConnectTime;
14278 + MacTab.Entry[MacTab.Num].TxRate.field.MCS = pAd->MacTab.Content[i].HTPhyMode.field.MCS;
14279 + MacTab.Entry[MacTab.Num].TxRate.field.BW = pAd->MacTab.Content[i].HTPhyMode.field.BW;
14280 + MacTab.Entry[MacTab.Num].TxRate.field.ShortGI = pAd->MacTab.Content[i].HTPhyMode.field.ShortGI;
14281 + MacTab.Entry[MacTab.Num].TxRate.field.STBC = pAd->MacTab.Content[i].HTPhyMode.field.STBC;
14282 + MacTab.Entry[MacTab.Num].TxRate.field.rsv = pAd->MacTab.Content[i].HTPhyMode.field.rsv;
14283 + MacTab.Entry[MacTab.Num].TxRate.field.MODE = pAd->MacTab.Content[i].HTPhyMode.field.MODE;
14284 + MacTab.Entry[MacTab.Num].TxRate.word = pAd->MacTab.Content[i].HTPhyMode.word;
14289 + wrq->u.data.length = sizeof(RT_802_11_MAC_TABLE);
14290 + if (copy_to_user(wrq->u.data.pointer, &MacTab, wrq->u.data.length))
14292 + DBGPRINT(RT_DEBUG_TRACE, ("%s: copy_to_user() fail\n", __FUNCTION__));
14295 + msg = (CHAR *) kmalloc(sizeof(CHAR)*(MAX_LEN_OF_MAC_TABLE*MAC_LINE_LEN), MEM_ALLOC_FLAG);
14296 + memset(msg, 0 ,MAX_LEN_OF_MAC_TABLE*MAC_LINE_LEN );
14297 + sprintf(msg,"%s","\n");
14298 + sprintf(msg+strlen(msg),"%-14s%-4s%-4s%-10s%-10s%-10s%-6s%-6s\n",
14299 + "MAC", "AID", "PSM", "LDT", "RxB", "TxB","CTxR", "LTxR");
14301 + for (i=0; i<MAX_LEN_OF_MAC_TABLE; i++)
14303 + PMAC_TABLE_ENTRY pEntry = &pAd->MacTab.Content[i];
14304 + if (pEntry->ValidAsCLI && (pEntry->Sst == SST_ASSOC))
14306 + if((strlen(msg)+MAC_LINE_LEN ) >= (MAX_LEN_OF_MAC_TABLE*MAC_LINE_LEN) )
14308 + sprintf(msg+strlen(msg),"%02x%02x%02x%02x%02x%02x ",
14309 + pEntry->Addr[0], pEntry->Addr[1], pEntry->Addr[2],
14310 + pEntry->Addr[3], pEntry->Addr[4], pEntry->Addr[5]);
14311 + sprintf(msg+strlen(msg),"%-4d", (int)pEntry->Aid);
14312 + sprintf(msg+strlen(msg),"%-4d", (int)pEntry->PsMode);
14313 + sprintf(msg+strlen(msg),"%-10d",0/*pAd->MacTab.Content[i].HSCounter.LastDataPacketTime*/); // ToDo
14314 + sprintf(msg+strlen(msg),"%-10d",0/*pAd->MacTab.Content[i].HSCounter.TotalRxByteCount*/); // ToDo
14315 + sprintf(msg+strlen(msg),"%-10d",0/*pAd->MacTab.Content[i].HSCounter.TotalTxByteCount*/); // ToDo
14316 + sprintf(msg+strlen(msg),"%-6d",RateIdToMbps[pAd->MacTab.Content[i].CurrTxRate]);
14317 + sprintf(msg+strlen(msg),"%-6d\n",0/*RateIdToMbps[pAd->MacTab.Content[i].LastTxRate]*/); // ToDo
14320 + // for compatible with old API just do the printk to console
14321 + //wrq->u.data.length = strlen(msg);
14322 + //if (copy_to_user(wrq->u.data.pointer, msg, wrq->u.data.length))
14324 + DBGPRINT(RT_DEBUG_TRACE, ("%s", msg));
14331 +#ifdef DOT11_N_SUPPORT
14332 +INT Set_BASetup_Proc(
14333 + IN PRTMP_ADAPTER pAd,
14336 + UCHAR mac[6], tid;
14337 + char *token, sepValue[] = ":", DASH = '-';
14339 + MAC_TABLE_ENTRY *pEntry;
14342 + The BASetup inupt string format should be xx:xx:xx:xx:xx:xx-d,
14343 + =>The six 2 digit hex-decimal number previous are the Mac address,
14344 + =>The seventh decimal number is the tid value.
14346 + //printk("\n%s\n", arg);
14348 + if(strlen(arg) < 19) //Mac address acceptable format 01:02:03:04:05:06 length 17 plus the "-" and tid value in decimal format.
14351 + token = strchr(arg, DASH);
14352 + if ((token != NULL) && (strlen(token)>1))
14354 + tid = simple_strtol((token+1), 0, 10);
14359 + for (i = 0, token = rstrtok(arg, &sepValue[0]); token; token = rstrtok(NULL, &sepValue[0]), i++)
14361 + if((strlen(token) != 2) || (!isxdigit(*token)) || (!isxdigit(*(token+1))))
14363 + AtoH(token, (PUCHAR)(&mac[i]), 1);
14368 + printk("\n%02x:%02x:%02x:%02x:%02x:%02x-%02x\n", mac[0], mac[1],
14369 + mac[2], mac[3], mac[4], mac[5], tid);
14371 + pEntry = MacTableLookup(pAd, mac);
14374 + printk("\nSetup BA Session: Tid = %d\n", tid);
14375 + BAOriSessionSetUp(pAd, pEntry, tid, 0, 100, TRUE);
14385 +INT Set_BADecline_Proc(
14386 + IN PRTMP_ADAPTER pAd,
14389 + ULONG bBADecline;
14391 + bBADecline = simple_strtol(arg, 0, 10);
14393 + if (bBADecline == 0)
14395 + pAd->CommonCfg.bBADecline = FALSE;
14397 + else if (bBADecline == 1)
14399 + pAd->CommonCfg.bBADecline = TRUE;
14403 + return FALSE; //Invalid argument
14406 + DBGPRINT(RT_DEBUG_TRACE, ("Set_BADecline_Proc::(BADecline=%d)\n", pAd->CommonCfg.bBADecline));
14411 +INT Set_BAOriTearDown_Proc(
14412 + IN PRTMP_ADAPTER pAd,
14415 + UCHAR mac[6], tid;
14416 + char *token, sepValue[] = ":", DASH = '-';
14418 + MAC_TABLE_ENTRY *pEntry;
14420 + //printk("\n%s\n", arg);
14422 + The BAOriTearDown inupt string format should be xx:xx:xx:xx:xx:xx-d,
14423 + =>The six 2 digit hex-decimal number previous are the Mac address,
14424 + =>The seventh decimal number is the tid value.
14426 + if(strlen(arg) < 19) //Mac address acceptable format 01:02:03:04:05:06 length 17 plus the "-" and tid value in decimal format.
14429 + token = strchr(arg, DASH);
14430 + if ((token != NULL) && (strlen(token)>1))
14432 + tid = simple_strtol((token+1), 0, 10);
14433 + if (tid > NUM_OF_TID)
14437 + for (i = 0, token = rstrtok(arg, &sepValue[0]); token; token = rstrtok(NULL, &sepValue[0]), i++)
14439 + if((strlen(token) != 2) || (!isxdigit(*token)) || (!isxdigit(*(token+1))))
14441 + AtoH(token, (PUCHAR)(&mac[i]), 1);
14446 + printk("\n%02x:%02x:%02x:%02x:%02x:%02x-%02x", mac[0], mac[1],
14447 + mac[2], mac[3], mac[4], mac[5], tid);
14449 + pEntry = MacTableLookup(pAd, mac);
14452 + printk("\nTear down Ori BA Session: Tid = %d\n", tid);
14453 + BAOriSessionTearDown(pAd, pEntry->Aid, tid, FALSE, TRUE);
14463 +INT Set_BARecTearDown_Proc(
14464 + IN PRTMP_ADAPTER pAd,
14467 + UCHAR mac[6], tid;
14468 + char *token, sepValue[] = ":", DASH = '-';
14470 + MAC_TABLE_ENTRY *pEntry;
14472 + //printk("\n%s\n", arg);
14474 + The BARecTearDown inupt string format should be xx:xx:xx:xx:xx:xx-d,
14475 + =>The six 2 digit hex-decimal number previous are the Mac address,
14476 + =>The seventh decimal number is the tid value.
14478 + if(strlen(arg) < 19) //Mac address acceptable format 01:02:03:04:05:06 length 17 plus the "-" and tid value in decimal format.
14481 + token = strchr(arg, DASH);
14482 + if ((token != NULL) && (strlen(token)>1))
14484 + tid = simple_strtol((token+1), 0, 10);
14485 + if (tid > NUM_OF_TID)
14489 + for (i = 0, token = rstrtok(arg, &sepValue[0]); token; token = rstrtok(NULL, &sepValue[0]), i++)
14491 + if((strlen(token) != 2) || (!isxdigit(*token)) || (!isxdigit(*(token+1))))
14493 + AtoH(token, (PUCHAR)(&mac[i]), 1);
14498 + printk("\n%02x:%02x:%02x:%02x:%02x:%02x-%02x", mac[0], mac[1],
14499 + mac[2], mac[3], mac[4], mac[5], tid);
14501 + pEntry = MacTableLookup(pAd, mac);
14504 + printk("\nTear down Rec BA Session: Tid = %d\n", tid);
14505 + BARecSessionTearDown(pAd, pEntry->Aid, tid, FALSE);
14515 +INT Set_HtBw_Proc(
14516 + IN PRTMP_ADAPTER pAd,
14521 + HtBw = simple_strtol(arg, 0, 10);
14522 + if (HtBw == BW_40)
14523 + pAd->CommonCfg.RegTransmitSetting.field.BW = BW_40;
14524 + else if (HtBw == BW_20)
14525 + pAd->CommonCfg.RegTransmitSetting.field.BW = BW_20;
14527 + return FALSE; //Invalid argument
14529 + SetCommonHT(pAd);
14531 + DBGPRINT(RT_DEBUG_TRACE, ("Set_HtBw_Proc::(HtBw=%d)\n", pAd->CommonCfg.RegTransmitSetting.field.BW));
14536 +INT Set_HtMcs_Proc(
14537 + IN PRTMP_ADAPTER pAd,
14540 + ULONG HtMcs, Mcs_tmp;
14541 +#ifdef CONFIG_STA_SUPPORT
14542 + BOOLEAN bAutoRate = FALSE;
14543 +#endif // CONFIG_STA_SUPPORT //
14545 + Mcs_tmp = simple_strtol(arg, 0, 10);
14547 + if (Mcs_tmp <= 15 || Mcs_tmp == 32)
14550 + HtMcs = MCS_AUTO;
14552 +#ifdef CONFIG_STA_SUPPORT
14553 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
14555 + pAd->StaCfg.DesiredTransmitSetting.field.MCS = HtMcs;
14556 + pAd->StaCfg.bAutoTxRateSwitch = (HtMcs == MCS_AUTO) ? TRUE:FALSE;
14557 + DBGPRINT(RT_DEBUG_TRACE, ("Set_HtMcs_Proc::(HtMcs=%d, bAutoTxRateSwitch = %d)\n",
14558 + pAd->StaCfg.DesiredTransmitSetting.field.MCS, pAd->StaCfg.bAutoTxRateSwitch));
14560 + if ((pAd->CommonCfg.PhyMode < PHY_11ABGN_MIXED) ||
14561 + (pAd->MacTab.Content[BSSID_WCID].HTPhyMode.field.MODE < MODE_HTMIX))
14563 + if ((pAd->StaCfg.DesiredTransmitSetting.field.MCS != MCS_AUTO) &&
14564 + (HtMcs >= 0 && HtMcs <= 3) &&
14565 + (pAd->StaCfg.DesiredTransmitSetting.field.FixedTxMode == FIXED_TXMODE_CCK))
14567 + RTMPSetDesiredRates(pAd, (LONG) (RateIdToMbps[HtMcs] * 1000000));
14569 + else if ((pAd->StaCfg.DesiredTransmitSetting.field.MCS != MCS_AUTO) &&
14570 + (HtMcs >= 0 && HtMcs <= 7) &&
14571 + (pAd->StaCfg.DesiredTransmitSetting.field.FixedTxMode == FIXED_TXMODE_OFDM))
14573 + RTMPSetDesiredRates(pAd, (LONG) (RateIdToMbps[HtMcs+4] * 1000000));
14576 + bAutoRate = TRUE;
14580 + pAd->StaCfg.DesiredTransmitSetting.field.MCS = MCS_AUTO;
14581 + RTMPSetDesiredRates(pAd, -1);
14583 + DBGPRINT(RT_DEBUG_TRACE, ("Set_HtMcs_Proc::(FixedTxMode=%d)\n",pAd->StaCfg.DesiredTransmitSetting.field.FixedTxMode));
14585 + if (ADHOC_ON(pAd))
14588 +#endif // CONFIG_STA_SUPPORT //
14590 + SetCommonHT(pAd);
14595 +INT Set_HtGi_Proc(
14596 + IN PRTMP_ADAPTER pAd,
14601 + HtGi = simple_strtol(arg, 0, 10);
14603 + if ( HtGi == GI_400)
14604 + pAd->CommonCfg.RegTransmitSetting.field.ShortGI = GI_400;
14605 + else if ( HtGi == GI_800 )
14606 + pAd->CommonCfg.RegTransmitSetting.field.ShortGI = GI_800;
14608 + return FALSE; //Invalid argument
14610 + SetCommonHT(pAd);
14612 + DBGPRINT(RT_DEBUG_TRACE, ("Set_HtGi_Proc::(ShortGI=%d)\n",pAd->CommonCfg.RegTransmitSetting.field.ShortGI));
14618 +INT Set_HtTxBASize_Proc(
14619 + IN PRTMP_ADAPTER pAd,
14624 + Size = simple_strtol(arg, 0, 10);
14626 + if (Size <=0 || Size >=64)
14630 + pAd->CommonCfg.TxBASize = Size-1;
14631 + DBGPRINT(RT_DEBUG_ERROR, ("Set_HtTxBASize ::(TxBASize= %d)\n", Size));
14637 +INT Set_HtOpMode_Proc(
14638 + IN PRTMP_ADAPTER pAd,
14644 + Value = simple_strtol(arg, 0, 10);
14646 + if (Value == HTMODE_GF)
14647 + pAd->CommonCfg.RegTransmitSetting.field.HTMODE = HTMODE_GF;
14648 + else if ( Value == HTMODE_MM )
14649 + pAd->CommonCfg.RegTransmitSetting.field.HTMODE = HTMODE_MM;
14651 + return FALSE; //Invalid argument
14653 + SetCommonHT(pAd);
14655 + DBGPRINT(RT_DEBUG_TRACE, ("Set_HtOpMode_Proc::(HtOpMode=%d)\n",pAd->CommonCfg.RegTransmitSetting.field.HTMODE));
14661 +INT Set_HtStbc_Proc(
14662 + IN PRTMP_ADAPTER pAd,
14668 + Value = simple_strtol(arg, 0, 10);
14670 + if (Value == STBC_USE)
14671 + pAd->CommonCfg.RegTransmitSetting.field.STBC = STBC_USE;
14672 + else if ( Value == STBC_NONE )
14673 + pAd->CommonCfg.RegTransmitSetting.field.STBC = STBC_NONE;
14675 + return FALSE; //Invalid argument
14677 + SetCommonHT(pAd);
14679 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Stbc_Proc::(HtStbc=%d)\n",pAd->CommonCfg.RegTransmitSetting.field.STBC));
14684 +INT Set_HtHtc_Proc(
14685 + IN PRTMP_ADAPTER pAd,
14691 + Value = simple_strtol(arg, 0, 10);
14693 + pAd->HTCEnable = FALSE;
14694 + else if ( Value ==1 )
14695 + pAd->HTCEnable = TRUE;
14697 + return FALSE; //Invalid argument
14699 + DBGPRINT(RT_DEBUG_TRACE, ("Set_HtHtc_Proc::(HtHtc=%d)\n",pAd->HTCEnable));
14704 +INT Set_HtExtcha_Proc(
14705 + IN PRTMP_ADAPTER pAd,
14711 + Value = simple_strtol(arg, 0, 10);
14714 + pAd->CommonCfg.RegTransmitSetting.field.EXTCHA = EXTCHA_BELOW;
14715 + else if ( Value ==1 )
14716 + pAd->CommonCfg.RegTransmitSetting.field.EXTCHA = EXTCHA_ABOVE;
14718 + return FALSE; //Invalid argument
14720 + SetCommonHT(pAd);
14722 + DBGPRINT(RT_DEBUG_TRACE, ("Set_HtExtcha_Proc::(HtExtcha=%d)\n",pAd->CommonCfg.RegTransmitSetting.field.EXTCHA));
14727 +INT Set_HtMpduDensity_Proc(
14728 + IN PRTMP_ADAPTER pAd,
14733 + Value = simple_strtol(arg, 0, 10);
14735 + if (Value <=7 && Value >= 0)
14736 + pAd->CommonCfg.BACapability.field.MpduDensity = Value;
14738 + pAd->CommonCfg.BACapability.field.MpduDensity = 4;
14740 + SetCommonHT(pAd);
14742 + DBGPRINT(RT_DEBUG_TRACE, ("Set_HtMpduDensity_Proc::(HtMpduDensity=%d)\n",pAd->CommonCfg.BACapability.field.MpduDensity));
14747 +INT Set_HtBaWinSize_Proc(
14748 + IN PRTMP_ADAPTER pAd,
14753 + Value = simple_strtol(arg, 0, 10);
14756 + if (Value >=1 && Value <= 64)
14758 + pAd->CommonCfg.REGBACapability.field.RxBAWinLimit = Value;
14759 + pAd->CommonCfg.BACapability.field.RxBAWinLimit = Value;
14763 + pAd->CommonCfg.REGBACapability.field.RxBAWinLimit = 64;
14764 + pAd->CommonCfg.BACapability.field.RxBAWinLimit = 64;
14767 + SetCommonHT(pAd);
14769 + DBGPRINT(RT_DEBUG_TRACE, ("Set_HtBaWinSize_Proc::(HtBaWinSize=%d)\n",pAd->CommonCfg.BACapability.field.RxBAWinLimit));
14774 +INT Set_HtRdg_Proc(
14775 + IN PRTMP_ADAPTER pAd,
14780 + Value = simple_strtol(arg, 0, 10);
14783 + pAd->CommonCfg.bRdg = FALSE;
14784 + else if ( Value ==1 )
14786 + pAd->HTCEnable = TRUE;
14787 + pAd->CommonCfg.bRdg = TRUE;
14790 + return FALSE; //Invalid argument
14792 + SetCommonHT(pAd);
14794 + DBGPRINT(RT_DEBUG_TRACE, ("Set_HtRdg_Proc::(HtRdg=%d)\n",pAd->CommonCfg.bRdg));
14799 +INT Set_HtLinkAdapt_Proc(
14800 + IN PRTMP_ADAPTER pAd,
14805 + Value = simple_strtol(arg, 0, 10);
14807 + pAd->bLinkAdapt = FALSE;
14808 + else if ( Value ==1 )
14810 + pAd->HTCEnable = TRUE;
14811 + pAd->bLinkAdapt = TRUE;
14814 + return FALSE; //Invalid argument
14816 + DBGPRINT(RT_DEBUG_TRACE, ("Set_HtLinkAdapt_Proc::(HtLinkAdapt=%d)\n",pAd->bLinkAdapt));
14821 +INT Set_HtAmsdu_Proc(
14822 + IN PRTMP_ADAPTER pAd,
14827 + Value = simple_strtol(arg, 0, 10);
14829 + pAd->CommonCfg.BACapability.field.AmsduEnable = FALSE;
14830 + else if ( Value == 1 )
14831 + pAd->CommonCfg.BACapability.field.AmsduEnable = TRUE;
14833 + return FALSE; //Invalid argument
14835 + SetCommonHT(pAd);
14837 + DBGPRINT(RT_DEBUG_TRACE, ("Set_HtAmsdu_Proc::(HtAmsdu=%d)\n",pAd->CommonCfg.BACapability.field.AmsduEnable));
14842 +INT Set_HtAutoBa_Proc(
14843 + IN PRTMP_ADAPTER pAd,
14848 + Value = simple_strtol(arg, 0, 10);
14851 + pAd->CommonCfg.BACapability.field.AutoBA = FALSE;
14852 + pAd->CommonCfg.BACapability.field.Policy = BA_NOTUSE;
14854 + else if (Value == 1)
14856 + pAd->CommonCfg.BACapability.field.AutoBA = TRUE;
14857 + pAd->CommonCfg.BACapability.field.Policy = IMMED_BA;
14860 + return FALSE; //Invalid argument
14862 + pAd->CommonCfg.REGBACapability.field.AutoBA = pAd->CommonCfg.BACapability.field.AutoBA;
14863 + pAd->CommonCfg.REGBACapability.field.Policy = pAd->CommonCfg.BACapability.field.Policy;
14864 + SetCommonHT(pAd);
14866 + DBGPRINT(RT_DEBUG_TRACE, ("Set_HtAutoBa_Proc::(HtAutoBa=%d)\n",pAd->CommonCfg.BACapability.field.AutoBA));
14872 +INT Set_HtProtect_Proc(
14873 + IN PRTMP_ADAPTER pAd,
14878 + Value = simple_strtol(arg, 0, 10);
14880 + pAd->CommonCfg.bHTProtect = FALSE;
14881 + else if (Value == 1)
14882 + pAd->CommonCfg.bHTProtect = TRUE;
14884 + return FALSE; //Invalid argument
14886 + DBGPRINT(RT_DEBUG_TRACE, ("Set_HtProtect_Proc::(HtProtect=%d)\n",pAd->CommonCfg.bHTProtect));
14891 +INT Set_SendPSMPAction_Proc(
14892 + IN PRTMP_ADAPTER pAd,
14895 + UCHAR mac[6], mode;
14896 + char *token, sepValue[] = ":", DASH = '-';
14898 + MAC_TABLE_ENTRY *pEntry;
14900 + //printk("\n%s\n", arg);
14902 + The BARecTearDown inupt string format should be xx:xx:xx:xx:xx:xx-d,
14903 + =>The six 2 digit hex-decimal number previous are the Mac address,
14904 + =>The seventh decimal number is the mode value.
14906 + if(strlen(arg) < 19) //Mac address acceptable format 01:02:03:04:05:06 length 17 plus the "-" and mode value in decimal format.
14909 + token = strchr(arg, DASH);
14910 + if ((token != NULL) && (strlen(token)>1))
14912 + mode = simple_strtol((token+1), 0, 10);
14913 + if (mode > MMPS_ENABLE)
14917 + for (i = 0, token = rstrtok(arg, &sepValue[0]); token; token = rstrtok(NULL, &sepValue[0]), i++)
14919 + if((strlen(token) != 2) || (!isxdigit(*token)) || (!isxdigit(*(token+1))))
14921 + AtoH(token, (PUCHAR)(&mac[i]), 1);
14926 + printk("\n%02x:%02x:%02x:%02x:%02x:%02x-%02x", mac[0], mac[1],
14927 + mac[2], mac[3], mac[4], mac[5], mode);
14929 + pEntry = MacTableLookup(pAd, mac);
14932 + printk("\nSendPSMPAction MIPS mode = %d\n", mode);
14933 + SendPSMPAction(pAd, pEntry->Aid, mode);
14944 +INT Set_HtMIMOPSmode_Proc(
14945 + IN PRTMP_ADAPTER pAd,
14950 + Value = simple_strtol(arg, 0, 10);
14952 + if (Value <=3 && Value >= 0)
14953 + pAd->CommonCfg.BACapability.field.MMPSmode = Value;
14955 + pAd->CommonCfg.BACapability.field.MMPSmode = 3;
14957 + SetCommonHT(pAd);
14959 + DBGPRINT(RT_DEBUG_TRACE, ("Set_HtMIMOPSmode_Proc::(MIMOPS mode=%d)\n",pAd->CommonCfg.BACapability.field.MMPSmode));
14965 +INT Set_ForceShortGI_Proc(
14966 + IN PRTMP_ADAPTER pAd,
14971 + Value = simple_strtol(arg, 0, 10);
14973 + pAd->WIFItestbed.bShortGI = FALSE;
14974 + else if (Value == 1)
14975 + pAd->WIFItestbed.bShortGI = TRUE;
14977 + return FALSE; //Invalid argument
14979 + SetCommonHT(pAd);
14981 + DBGPRINT(RT_DEBUG_TRACE, ("Set_ForceShortGI_Proc::(ForceShortGI=%d)\n", pAd->WIFItestbed.bShortGI));
14988 +INT Set_ForceGF_Proc(
14989 + IN PRTMP_ADAPTER pAd,
14994 + Value = simple_strtol(arg, 0, 10);
14996 + pAd->WIFItestbed.bGreenField = FALSE;
14997 + else if (Value == 1)
14998 + pAd->WIFItestbed.bGreenField = TRUE;
15000 + return FALSE; //Invalid argument
15002 + SetCommonHT(pAd);
15004 + DBGPRINT(RT_DEBUG_TRACE, ("Set_ForceGF_Proc::(ForceGF=%d)\n", pAd->WIFItestbed.bGreenField));
15009 +INT Set_HtMimoPs_Proc(
15010 + IN PRTMP_ADAPTER pAd,
15015 + Value = simple_strtol(arg, 0, 10);
15017 + pAd->CommonCfg.bMIMOPSEnable = FALSE;
15018 + else if (Value == 1)
15019 + pAd->CommonCfg.bMIMOPSEnable = TRUE;
15021 + return FALSE; //Invalid argument
15023 + DBGPRINT(RT_DEBUG_TRACE, ("Set_HtMimoPs_Proc::(HtMimoPs=%d)\n",pAd->CommonCfg.bMIMOPSEnable));
15027 +#endif // DOT11_N_SUPPORT //
15030 +#ifdef DOT11_N_SUPPORT
15032 + IN PRTMP_ADAPTER pAd)
15034 + OID_SET_HT_PHYMODE SetHT;
15036 + if (pAd->CommonCfg.PhyMode < PHY_11ABGN_MIXED)
15039 + SetHT.PhyMode = pAd->CommonCfg.PhyMode;
15040 + SetHT.TransmitNo = ((UCHAR)pAd->Antenna.field.TxPath);
15041 + SetHT.HtMode = (UCHAR)pAd->CommonCfg.RegTransmitSetting.field.HTMODE;
15042 + SetHT.ExtOffset = (UCHAR)pAd->CommonCfg.RegTransmitSetting.field.EXTCHA;
15043 + SetHT.MCS = MCS_AUTO;
15044 + SetHT.BW = (UCHAR)pAd->CommonCfg.RegTransmitSetting.field.BW;
15045 + SetHT.STBC = (UCHAR)pAd->CommonCfg.RegTransmitSetting.field.STBC;
15046 + SetHT.SHORTGI = (UCHAR)pAd->CommonCfg.RegTransmitSetting.field.ShortGI;
15048 + RTMPSetHT(pAd, &SetHT);
15052 +#endif // DOT11_N_SUPPORT //
15054 +INT Set_FixedTxMode_Proc(
15055 + IN PRTMP_ADAPTER pAd,
15058 + UCHAR fix_tx_mode = FIXED_TXMODE_HT;
15060 + if (strcmp(arg, "OFDM") == 0 || strcmp(arg, "ofdm") == 0)
15062 + fix_tx_mode = FIXED_TXMODE_OFDM;
15064 + else if (strcmp(arg, "CCK") == 0 || strcmp(arg, "cck") == 0)
15066 + fix_tx_mode = FIXED_TXMODE_CCK;
15069 +#ifdef CONFIG_STA_SUPPORT
15070 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
15071 + pAd->StaCfg.DesiredTransmitSetting.field.FixedTxMode = fix_tx_mode;
15072 +#endif // CONFIG_STA_SUPPORT //
15074 + DBGPRINT(RT_DEBUG_TRACE, ("Set_FixedTxMode_Proc::(FixedTxMode=%d)\n", fix_tx_mode));
15079 +#ifdef CONFIG_APSTA_MIXED_SUPPORT
15080 +INT Set_OpMode_Proc(
15081 + IN PRTMP_ADAPTER pAd,
15086 + Value = simple_strtol(arg, 0, 10);
15089 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_START_UP))
15090 +#endif // RT2870 //
15092 + DBGPRINT(RT_DEBUG_ERROR, ("Can not switch operate mode on interface up !! \n"));
15097 + pAd->OpMode = OPMODE_STA;
15098 + else if (Value == 1)
15099 + pAd->OpMode = OPMODE_AP;
15101 + return FALSE; //Invalid argument
15103 + DBGPRINT(RT_DEBUG_TRACE, ("Set_OpMode_Proc::(OpMode=%s)\n", pAd->OpMode == 1 ? "AP Mode" : "STA Mode"));
15107 +#endif // CONFIG_APSTA_MIXED_SUPPORT //
15110 +/////////////////////////////////////////////////////////////////////////
15111 +PCHAR RTMPGetRalinkAuthModeStr(
15112 + IN NDIS_802_11_AUTHENTICATION_MODE authMode)
15116 + case Ndis802_11AuthModeOpen:
15119 + case Ndis802_11AuthModeWPAPSK:
15121 + case Ndis802_11AuthModeShared:
15123 + case Ndis802_11AuthModeWPA:
15125 + case Ndis802_11AuthModeWPA2:
15127 + case Ndis802_11AuthModeWPA2PSK:
15128 + return "WPA2PSK";
15129 + case Ndis802_11AuthModeWPA1PSKWPA2PSK:
15130 + return "WPAPSKWPA2PSK";
15131 + case Ndis802_11AuthModeWPA1WPA2:
15132 + return "WPA1WPA2";
15136 +PCHAR RTMPGetRalinkEncryModeStr(
15137 + IN USHORT encryMode)
15139 + switch(encryMode)
15142 + case Ndis802_11WEPDisabled:
15144 + case Ndis802_11WEPEnabled:
15146 + case Ndis802_11Encryption2Enabled:
15148 + case Ndis802_11Encryption3Enabled:
15150 + case Ndis802_11Encryption4Enabled:
15151 + return "TKIPAES";
15155 +INT RTMPShowCfgValue(
15156 + IN PRTMP_ADAPTER pAd,
15162 + for (PRTMP_PRIVATE_STA_SHOW_CFG_VALUE_PROC = RTMP_PRIVATE_STA_SHOW_CFG_VALUE_PROC; PRTMP_PRIVATE_STA_SHOW_CFG_VALUE_PROC->name; PRTMP_PRIVATE_STA_SHOW_CFG_VALUE_PROC++)
15164 + if (!strcmp(pName, PRTMP_PRIVATE_STA_SHOW_CFG_VALUE_PROC->name))
15166 + if(PRTMP_PRIVATE_STA_SHOW_CFG_VALUE_PROC->show_proc(pAd, pBuf))
15167 + Status = -EINVAL;
15168 + break; //Exit for loop.
15172 + if(PRTMP_PRIVATE_STA_SHOW_CFG_VALUE_PROC->name == NULL)
15174 + sprintf(pBuf, "\n");
15175 + for (PRTMP_PRIVATE_STA_SHOW_CFG_VALUE_PROC = RTMP_PRIVATE_STA_SHOW_CFG_VALUE_PROC; PRTMP_PRIVATE_STA_SHOW_CFG_VALUE_PROC->name; PRTMP_PRIVATE_STA_SHOW_CFG_VALUE_PROC++)
15176 + sprintf(pBuf, "%s%s\n", pBuf, PRTMP_PRIVATE_STA_SHOW_CFG_VALUE_PROC->name);
15182 +INT Show_SSID_Proc(
15183 + IN PRTMP_ADAPTER pAd,
15187 +#ifdef CONFIG_STA_SUPPORT
15188 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
15189 + sprintf(pBuf, "\t%s", pAd->CommonCfg.Ssid);
15190 +#endif // CONFIG_STA_SUPPORT //
15194 +INT Show_WirelessMode_Proc(
15195 + IN PRTMP_ADAPTER pAd,
15198 + switch(pAd->CommonCfg.PhyMode)
15200 + case PHY_11BG_MIXED:
15201 + sprintf(pBuf, "\t11B/G");
15204 + sprintf(pBuf, "\t11B");
15207 + sprintf(pBuf, "\t11A");
15209 + case PHY_11ABG_MIXED:
15210 + sprintf(pBuf, "\t11A/B/G");
15213 + sprintf(pBuf, "\t11G");
15215 +#ifdef DOT11_N_SUPPORT
15216 + case PHY_11ABGN_MIXED:
15217 + sprintf(pBuf, "\t11A/B/G/N");
15219 + case PHY_11N_2_4G:
15220 + sprintf(pBuf, "\t11N only with 2.4G");
15222 + case PHY_11GN_MIXED:
15223 + sprintf(pBuf, "\t11G/N");
15225 + case PHY_11AN_MIXED:
15226 + sprintf(pBuf, "\t11A/N");
15228 + case PHY_11BGN_MIXED:
15229 + sprintf(pBuf, "\t11B/G/N");
15231 + case PHY_11AGN_MIXED:
15232 + sprintf(pBuf, "\t11A/G/N");
15235 + sprintf(pBuf, "\t11N only with 5G");
15237 +#endif // DOT11_N_SUPPORT //
15239 + sprintf(pBuf, "\tUnknow Value(%d)", pAd->CommonCfg.PhyMode);
15246 +INT Show_TxBurst_Proc(
15247 + IN PRTMP_ADAPTER pAd,
15250 + sprintf(pBuf, "\t%s", pAd->CommonCfg.bEnableTxBurst ? "TRUE":"FALSE");
15254 +INT Show_TxPreamble_Proc(
15255 + IN PRTMP_ADAPTER pAd,
15258 + switch(pAd->CommonCfg.TxPreamble)
15260 + case Rt802_11PreambleShort:
15261 + sprintf(pBuf, "\tShort");
15263 + case Rt802_11PreambleLong:
15264 + sprintf(pBuf, "\tLong");
15266 + case Rt802_11PreambleAuto:
15267 + sprintf(pBuf, "\tAuto");
15270 + sprintf(pBuf, "\tUnknow Value(%lu)", pAd->CommonCfg.TxPreamble);
15277 +INT Show_TxPower_Proc(
15278 + IN PRTMP_ADAPTER pAd,
15281 + sprintf(pBuf, "\t%lu", pAd->CommonCfg.TxPowerPercentage);
15285 +INT Show_Channel_Proc(
15286 + IN PRTMP_ADAPTER pAd,
15289 + sprintf(pBuf, "\t%d", pAd->CommonCfg.Channel);
15293 +INT Show_BGProtection_Proc(
15294 + IN PRTMP_ADAPTER pAd,
15297 + switch(pAd->CommonCfg.UseBGProtection)
15299 + case 1: //Always On
15300 + sprintf(pBuf, "\tON");
15302 + case 2: //Always OFF
15303 + sprintf(pBuf, "\tOFF");
15306 + sprintf(pBuf, "\tAuto");
15309 + sprintf(pBuf, "\tUnknow Value(%lu)", pAd->CommonCfg.UseBGProtection);
15315 +INT Show_RTSThreshold_Proc(
15316 + IN PRTMP_ADAPTER pAd,
15319 + sprintf(pBuf, "\t%u", pAd->CommonCfg.RtsThreshold);
15323 +INT Show_FragThreshold_Proc(
15324 + IN PRTMP_ADAPTER pAd,
15327 + sprintf(pBuf, "\t%u", pAd->CommonCfg.FragmentThreshold);
15331 +#ifdef DOT11_N_SUPPORT
15332 +INT Show_HtBw_Proc(
15333 + IN PRTMP_ADAPTER pAd,
15336 + if (pAd->CommonCfg.RegTransmitSetting.field.BW == BW_40)
15338 + sprintf(pBuf, "\t40 MHz");
15342 + sprintf(pBuf, "\t20 MHz");
15347 +INT Show_HtMcs_Proc(
15348 + IN PRTMP_ADAPTER pAd,
15352 +#ifdef CONFIG_STA_SUPPORT
15353 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
15354 + sprintf(pBuf, "\t%u", pAd->StaCfg.DesiredTransmitSetting.field.MCS);
15355 +#endif // CONFIG_STA_SUPPORT //
15359 +INT Show_HtGi_Proc(
15360 + IN PRTMP_ADAPTER pAd,
15363 + switch(pAd->CommonCfg.RegTransmitSetting.field.ShortGI)
15366 + sprintf(pBuf, "\tGI_400");
15369 + sprintf(pBuf, "\tGI_800");
15372 + sprintf(pBuf, "\tUnknow Value(%u)", pAd->CommonCfg.RegTransmitSetting.field.ShortGI);
15378 +INT Show_HtOpMode_Proc(
15379 + IN PRTMP_ADAPTER pAd,
15382 + switch(pAd->CommonCfg.RegTransmitSetting.field.HTMODE)
15385 + sprintf(pBuf, "\tGF");
15388 + sprintf(pBuf, "\tMM");
15391 + sprintf(pBuf, "\tUnknow Value(%u)", pAd->CommonCfg.RegTransmitSetting.field.HTMODE);
15397 +INT Show_HtExtcha_Proc(
15398 + IN PRTMP_ADAPTER pAd,
15401 + switch(pAd->CommonCfg.RegTransmitSetting.field.EXTCHA)
15403 + case EXTCHA_BELOW:
15404 + sprintf(pBuf, "\tBelow");
15406 + case EXTCHA_ABOVE:
15407 + sprintf(pBuf, "\tAbove");
15410 + sprintf(pBuf, "\tUnknow Value(%u)", pAd->CommonCfg.RegTransmitSetting.field.EXTCHA);
15417 +INT Show_HtMpduDensity_Proc(
15418 + IN PRTMP_ADAPTER pAd,
15421 + sprintf(pBuf, "\t%u", pAd->CommonCfg.BACapability.field.MpduDensity);
15425 +INT Show_HtBaWinSize_Proc(
15426 + IN PRTMP_ADAPTER pAd,
15429 + sprintf(pBuf, "\t%u", pAd->CommonCfg.BACapability.field.RxBAWinLimit);
15433 +INT Show_HtRdg_Proc(
15434 + IN PRTMP_ADAPTER pAd,
15437 + sprintf(pBuf, "\t%s", pAd->CommonCfg.bRdg ? "TRUE":"FALSE");
15441 +INT Show_HtAmsdu_Proc(
15442 + IN PRTMP_ADAPTER pAd,
15445 + sprintf(pBuf, "\t%s", pAd->CommonCfg.BACapability.field.AmsduEnable ? "TRUE":"FALSE");
15449 +INT Show_HtAutoBa_Proc(
15450 + IN PRTMP_ADAPTER pAd,
15453 + sprintf(pBuf, "\t%s", pAd->CommonCfg.BACapability.field.AutoBA ? "TRUE":"FALSE");
15456 +#endif // DOT11_N_SUPPORT //
15458 +INT Show_CountryRegion_Proc(
15459 + IN PRTMP_ADAPTER pAd,
15462 + sprintf(pBuf, "\t%d", pAd->CommonCfg.CountryRegion);
15466 +INT Show_CountryRegionABand_Proc(
15467 + IN PRTMP_ADAPTER pAd,
15470 + sprintf(pBuf, "\t%d", pAd->CommonCfg.CountryRegionForABand);
15474 +INT Show_CountryCode_Proc(
15475 + IN PRTMP_ADAPTER pAd,
15478 + sprintf(pBuf, "\t%s", pAd->CommonCfg.CountryCode);
15482 +#ifdef AGGREGATION_SUPPORT
15483 +INT Show_PktAggregate_Proc(
15484 + IN PRTMP_ADAPTER pAd,
15487 + sprintf(pBuf, "\t%s", pAd->CommonCfg.bAggregationCapable ? "TRUE":"FALSE");
15490 +#endif // AGGREGATION_SUPPORT //
15492 +#ifdef WMM_SUPPORT
15493 +INT Show_WmmCapable_Proc(
15494 + IN PRTMP_ADAPTER pAd,
15498 +#ifdef CONFIG_STA_SUPPORT
15499 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
15500 + sprintf(pBuf, "\t%s", pAd->CommonCfg.bWmmCapable ? "TRUE":"FALSE");
15501 +#endif // CONFIG_STA_SUPPORT //
15505 +#endif // WMM_SUPPORT //
15507 +INT Show_IEEE80211H_Proc(
15508 + IN PRTMP_ADAPTER pAd,
15511 + sprintf(pBuf, "\t%s", pAd->CommonCfg.bIEEE80211H ? "TRUE":"FALSE");
15515 +#ifdef CONFIG_STA_SUPPORT
15516 +INT Show_NetworkType_Proc(
15517 + IN PRTMP_ADAPTER pAd,
15520 + switch(pAd->StaCfg.BssType)
15523 + sprintf(pBuf, "\tAdhoc");
15526 + sprintf(pBuf, "\tInfra");
15529 + sprintf(pBuf, "\tAny");
15531 + case BSS_MONITOR:
15532 + sprintf(pBuf, "\tMonitor");
15535 + sprintf(pBuf, "\tUnknow Value(%d)", pAd->StaCfg.BssType);
15540 +#endif // CONFIG_STA_SUPPORT //
15542 +INT Show_AuthMode_Proc(
15543 + IN PRTMP_ADAPTER pAd,
15546 + NDIS_802_11_AUTHENTICATION_MODE AuthMode = Ndis802_11AuthModeOpen;
15548 +#ifdef CONFIG_STA_SUPPORT
15549 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
15550 + AuthMode = pAd->StaCfg.AuthMode;
15551 +#endif // CONFIG_STA_SUPPORT //
15553 + if ((AuthMode >= Ndis802_11AuthModeOpen) &&
15554 + (AuthMode <= Ndis802_11AuthModeWPA1PSKWPA2PSK))
15555 + sprintf(pBuf, "\t%s", RTMPGetRalinkAuthModeStr(AuthMode));
15557 + sprintf(pBuf, "\tUnknow Value(%d)", AuthMode);
15562 +INT Show_EncrypType_Proc(
15563 + IN PRTMP_ADAPTER pAd,
15566 + NDIS_802_11_WEP_STATUS WepStatus = Ndis802_11WEPDisabled;
15568 +#ifdef CONFIG_STA_SUPPORT
15569 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
15570 + WepStatus = pAd->StaCfg.WepStatus;
15571 +#endif // CONFIG_STA_SUPPORT //
15573 + if ((WepStatus >= Ndis802_11WEPEnabled) &&
15574 + (WepStatus <= Ndis802_11Encryption4KeyAbsent))
15575 + sprintf(pBuf, "\t%s", RTMPGetRalinkEncryModeStr(WepStatus));
15577 + sprintf(pBuf, "\tUnknow Value(%d)", WepStatus);
15582 +INT Show_DefaultKeyID_Proc(
15583 + IN PRTMP_ADAPTER pAd,
15586 + UCHAR DefaultKeyId = 0;
15588 +#ifdef CONFIG_STA_SUPPORT
15589 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
15590 + DefaultKeyId = pAd->StaCfg.DefaultKeyId;
15591 +#endif // CONFIG_STA_SUPPORT //
15593 + sprintf(pBuf, "\t%d", DefaultKeyId);
15598 +INT Show_WepKey_Proc(
15599 + IN PRTMP_ADAPTER pAd,
15603 + UCHAR Key[16] = {0}, KeyLength = 0;
15604 + INT index = BSS0;
15606 + KeyLength = pAd->SharedKey[index][KeyIdx].KeyLen;
15607 + NdisMoveMemory(Key, pAd->SharedKey[index][KeyIdx].Key, KeyLength);
15609 + //check key string is ASCII or not
15610 + if (RTMPCheckStrPrintAble(Key, KeyLength))
15611 + sprintf(pBuf, "\t%s", Key);
15615 + sprintf(pBuf, "\t");
15616 + for (idx = 0; idx < KeyLength; idx++)
15617 + sprintf(pBuf+strlen(pBuf), "%02X", Key[idx]);
15622 +INT Show_Key1_Proc(
15623 + IN PRTMP_ADAPTER pAd,
15626 + Show_WepKey_Proc(pAd, 0, pBuf);
15630 +INT Show_Key2_Proc(
15631 + IN PRTMP_ADAPTER pAd,
15634 + Show_WepKey_Proc(pAd, 1, pBuf);
15638 +INT Show_Key3_Proc(
15639 + IN PRTMP_ADAPTER pAd,
15642 + Show_WepKey_Proc(pAd, 2, pBuf);
15646 +INT Show_Key4_Proc(
15647 + IN PRTMP_ADAPTER pAd,
15650 + Show_WepKey_Proc(pAd, 3, pBuf);
15654 +INT Show_WPAPSK_Proc(
15655 + IN PRTMP_ADAPTER pAd,
15659 + UCHAR PMK[32] = {0};
15662 +#ifdef CONFIG_STA_SUPPORT
15663 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
15664 + NdisMoveMemory(PMK, pAd->StaCfg.PMK, 32);
15665 +#endif // CONFIG_STA_SUPPORT //
15667 + sprintf(pBuf, "\tPMK = ");
15668 + for (idx = 0; idx < 32; idx++)
15669 + sprintf(pBuf+strlen(pBuf), "%02X", PMK[idx]);
15675 +++ b/drivers/staging/rt3070/common/cmm_sanity.c
15678 + *************************************************************************
15679 + * Ralink Tech Inc.
15680 + * 5F., No.36, Taiyuan St., Jhubei City,
15681 + * Hsinchu County 302,
15684 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
15686 + * This program is free software; you can redistribute it and/or modify *
15687 + * it under the terms of the GNU General Public License as published by *
15688 + * the Free Software Foundation; either version 2 of the License, or *
15689 + * (at your option) any later version. *
15691 + * This program is distributed in the hope that it will be useful, *
15692 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
15693 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
15694 + * GNU General Public License for more details. *
15696 + * You should have received a copy of the GNU General Public License *
15697 + * along with this program; if not, write to the *
15698 + * Free Software Foundation, Inc., *
15699 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
15701 + *************************************************************************
15708 + Revision History:
15710 + -------- ---------- ----------------------------------------------
15711 + John Chang 2004-09-01 add WMM support
15713 +#include "../rt_config.h"
15716 +extern UCHAR CISCO_OUI[];
15718 +extern UCHAR WPA_OUI[];
15719 +extern UCHAR RSN_OUI[];
15720 +extern UCHAR WME_INFO_ELEM[];
15721 +extern UCHAR WME_PARM_ELEM[];
15722 +extern UCHAR Ccx2QosInfo[];
15723 +extern UCHAR RALINK_OUI[];
15724 +extern UCHAR BROADCOM_OUI[];
15725 +extern UCHAR WPS_OUI[];
15728 + ==========================================================================
15730 + MLME message sanity check
15732 + TRUE if all parameters are OK, FALSE otherwise
15734 + IRQL = DISPATCH_LEVEL
15736 + ==========================================================================
15738 +BOOLEAN MlmeAddBAReqSanity(
15739 + IN PRTMP_ADAPTER pAd,
15742 + OUT PUCHAR pAddr2)
15744 + PMLME_ADDBA_REQ_STRUCT pInfo;
15746 + pInfo = (MLME_ADDBA_REQ_STRUCT *)Msg;
15748 + if ((MsgLen != sizeof(MLME_ADDBA_REQ_STRUCT)))
15750 + DBGPRINT(RT_DEBUG_TRACE, ("MlmeAddBAReqSanity fail - message lenght not correct.\n"));
15754 + if ((pInfo->Wcid >= MAX_LEN_OF_MAC_TABLE))
15756 + DBGPRINT(RT_DEBUG_TRACE, ("MlmeAddBAReqSanity fail - The peer Mac is not associated yet.\n"));
15761 + if ((pInfo->BaBufSize > MAX_RX_REORDERBUF) || (pInfo->BaBufSize < 2))
15763 + DBGPRINT(RT_DEBUG_TRACE, ("MlmeAddBAReqSanity fail - Rx Reordering buffer too big or too small\n"));
15768 + if ((pInfo->pAddr[0]&0x01) == 0x01)
15770 + DBGPRINT(RT_DEBUG_TRACE, ("MlmeAddBAReqSanity fail - broadcast address not support BA\n"));
15778 + ==========================================================================
15780 + MLME message sanity check
15782 + TRUE if all parameters are OK, FALSE otherwise
15784 + IRQL = DISPATCH_LEVEL
15786 + ==========================================================================
15788 +BOOLEAN MlmeDelBAReqSanity(
15789 + IN PRTMP_ADAPTER pAd,
15793 + MLME_DELBA_REQ_STRUCT *pInfo;
15794 + pInfo = (MLME_DELBA_REQ_STRUCT *)Msg;
15796 + if ((MsgLen != sizeof(MLME_DELBA_REQ_STRUCT)))
15798 + DBGPRINT(RT_DEBUG_ERROR, ("MlmeDelBAReqSanity fail - message lenght not correct.\n"));
15802 + if ((pInfo->Wcid >= MAX_LEN_OF_MAC_TABLE))
15804 + DBGPRINT(RT_DEBUG_ERROR, ("MlmeDelBAReqSanity fail - The peer Mac is not associated yet.\n"));
15808 + if ((pInfo->TID & 0xf0))
15810 + DBGPRINT(RT_DEBUG_ERROR, ("MlmeDelBAReqSanity fail - The peer TID is incorrect.\n"));
15814 + if (NdisEqualMemory(pAd->MacTab.Content[pInfo->Wcid].Addr, pInfo->Addr, MAC_ADDR_LEN) == 0)
15816 + DBGPRINT(RT_DEBUG_ERROR, ("MlmeDelBAReqSanity fail - the peer addr dosen't exist.\n"));
15823 +BOOLEAN PeerAddBAReqActionSanity(
15824 + IN PRTMP_ADAPTER pAd,
15827 + OUT PUCHAR pAddr2)
15829 + PFRAME_802_11 pFrame = (PFRAME_802_11)pMsg;
15830 + PFRAME_ADDBA_REQ pAddFrame;
15831 + pAddFrame = (PFRAME_ADDBA_REQ)(pMsg);
15832 + if (MsgLen < (sizeof(FRAME_ADDBA_REQ)))
15834 + DBGPRINT(RT_DEBUG_ERROR,("PeerAddBAReqActionSanity: ADDBA Request frame length size = %ld incorrect\n", MsgLen));
15837 + // we support immediate BA.
15838 + *(USHORT *)(&pAddFrame->BaParm) = cpu2le16(*(USHORT *)(&pAddFrame->BaParm));
15839 + pAddFrame->TimeOutValue = cpu2le16(pAddFrame->TimeOutValue);
15840 + pAddFrame->BaStartSeq.word = cpu2le16(pAddFrame->BaStartSeq.word);
15842 + if (pAddFrame->BaParm.BAPolicy != IMMED_BA)
15844 + DBGPRINT(RT_DEBUG_ERROR,("PeerAddBAReqActionSanity: ADDBA Request Ba Policy[%d] not support\n", pAddFrame->BaParm.BAPolicy));
15845 + DBGPRINT(RT_DEBUG_ERROR,("ADDBA Request. tid=%x, Bufsize=%x, AMSDUSupported=%x \n", pAddFrame->BaParm.TID, pAddFrame->BaParm.BufSize, pAddFrame->BaParm.AMSDUSupported));
15849 + // we support immediate BA.
15850 + if (pAddFrame->BaParm.TID &0xfff0)
15852 + DBGPRINT(RT_DEBUG_ERROR,("PeerAddBAReqActionSanity: ADDBA Request incorrect TID = %d\n", pAddFrame->BaParm.TID));
15855 + COPY_MAC_ADDR(pAddr2, pFrame->Hdr.Addr2);
15859 +BOOLEAN PeerAddBARspActionSanity(
15860 + IN PRTMP_ADAPTER pAd,
15864 + //PFRAME_802_11 pFrame = (PFRAME_802_11)pMsg;
15865 + PFRAME_ADDBA_RSP pAddFrame;
15867 + pAddFrame = (PFRAME_ADDBA_RSP)(pMsg);
15868 + if (MsgLen < (sizeof(FRAME_ADDBA_RSP)))
15870 + DBGPRINT(RT_DEBUG_ERROR,("PeerAddBARspActionSanity: ADDBA Response frame length size = %ld incorrect\n", MsgLen));
15873 + // we support immediate BA.
15874 + *(USHORT *)(&pAddFrame->BaParm) = cpu2le16(*(USHORT *)(&pAddFrame->BaParm));
15875 + pAddFrame->StatusCode = cpu2le16(pAddFrame->StatusCode);
15876 + pAddFrame->TimeOutValue = cpu2le16(pAddFrame->TimeOutValue);
15878 + if (pAddFrame->BaParm.BAPolicy != IMMED_BA)
15880 + DBGPRINT(RT_DEBUG_ERROR,("PeerAddBAReqActionSanity: ADDBA Response Ba Policy[%d] not support\n", pAddFrame->BaParm.BAPolicy));
15884 + // we support immediate BA.
15885 + if (pAddFrame->BaParm.TID &0xfff0)
15887 + DBGPRINT(RT_DEBUG_ERROR,("PeerAddBARspActionSanity: ADDBA Response incorrect TID = %d\n", pAddFrame->BaParm.TID));
15894 +BOOLEAN PeerDelBAActionSanity(
15895 + IN PRTMP_ADAPTER pAd,
15898 + IN ULONG MsgLen )
15900 + //PFRAME_802_11 pFrame = (PFRAME_802_11)pMsg;
15901 + PFRAME_DELBA_REQ pDelFrame;
15902 + if (MsgLen != (sizeof(FRAME_DELBA_REQ)))
15905 + if (Wcid >= MAX_LEN_OF_MAC_TABLE)
15908 + pDelFrame = (PFRAME_DELBA_REQ)(pMsg);
15910 + *(USHORT *)(&pDelFrame->DelbaParm) = cpu2le16(*(USHORT *)(&pDelFrame->DelbaParm));
15911 + pDelFrame->ReasonCode = cpu2le16(pDelFrame->ReasonCode);
15913 + if (pDelFrame->DelbaParm.TID &0xfff0)
15920 + ==========================================================================
15922 + MLME message sanity check
15924 + TRUE if all parameters are OK, FALSE otherwise
15926 + IRQL = DISPATCH_LEVEL
15928 + ==========================================================================
15930 +BOOLEAN PeerBeaconAndProbeRspSanity(
15931 + IN PRTMP_ADAPTER pAd,
15934 + IN UCHAR MsgChannel,
15935 + OUT PUCHAR pAddr2,
15936 + OUT PUCHAR pBssid,
15938 + OUT UCHAR *pSsidLen,
15939 + OUT UCHAR *pBssType,
15940 + OUT USHORT *pBeaconPeriod,
15941 + OUT UCHAR *pChannel,
15942 + OUT UCHAR *pNewChannel,
15943 + OUT LARGE_INTEGER *pTimestamp,
15944 + OUT CF_PARM *pCfParm,
15945 + OUT USHORT *pAtimWin,
15946 + OUT USHORT *pCapabilityInfo,
15948 + OUT UCHAR *pDtimCount,
15949 + OUT UCHAR *pDtimPeriod,
15950 + OUT UCHAR *pBcastFlag,
15951 + OUT UCHAR *pMessageToMe,
15952 + OUT UCHAR SupRate[],
15953 + OUT UCHAR *pSupRateLen,
15954 + OUT UCHAR ExtRate[],
15955 + OUT UCHAR *pExtRateLen,
15956 + OUT UCHAR *pCkipFlag,
15957 + OUT UCHAR *pAironetCellPowerLimit,
15958 + OUT PEDCA_PARM pEdcaParm,
15959 + OUT PQBSS_LOAD_PARM pQbssLoad,
15960 + OUT PQOS_CAPABILITY_PARM pQosCapability,
15961 + OUT ULONG *pRalinkIe,
15962 + OUT UCHAR *pHtCapabilityLen,
15963 +#ifdef CONFIG_STA_SUPPORT
15964 + OUT UCHAR *pPreNHtCapabilityLen,
15965 +#endif // CONFIG_STA_SUPPORT //
15966 + OUT HT_CAPABILITY_IE *pHtCapability,
15967 + OUT UCHAR *AddHtInfoLen,
15968 + OUT ADD_HT_INFO_IE *AddHtInfo,
15969 + OUT UCHAR *NewExtChannelOffset, // Ht extension channel offset(above or below)
15970 + OUT USHORT *LengthVIE,
15971 + OUT PNDIS_802_11_VARIABLE_IEs pVIE)
15974 +#ifdef CONFIG_STA_SUPPORT
15976 +#endif // CONFIG_STA_SUPPORT //
15977 + PFRAME_802_11 pFrame;
15978 + PEID_STRUCT pEid;
15981 + //UCHAR ECWMin, ECWMax;
15982 + //MAC_CSR9_STRUC Csr9;
15983 + ULONG Length = 0;
15985 + // For some 11a AP which didn't have DS_IE, we use two conditions to decide the channel
15986 + // 1. If the AP is 11n enabled, then check the control channel.
15987 + // 2. If the AP didn't have any info about channel, use the channel we received this frame as the channel. (May inaccuracy!!)
15988 + UCHAR CtrlChannel = 0;
15990 + // Add for 3 necessary EID field check
15996 + *pDtimPeriod = 0;
15998 + *pMessageToMe = 0;
15999 + *pExtRateLen = 0;
16000 + *pCkipFlag = 0; // Default of CkipFlag is 0
16001 + *pAironetCellPowerLimit = 0xFF; // Default of AironetCellPowerLimit is 0xFF
16002 + *LengthVIE = 0; // Set the length of VIE to init value 0
16003 + *pHtCapabilityLen = 0; // Set the length of VIE to init value 0
16004 +#ifdef CONFIG_STA_SUPPORT
16005 + if (pAd->OpMode == OPMODE_STA)
16006 + *pPreNHtCapabilityLen = 0; // Set the length of VIE to init value 0
16007 +#endif // CONFIG_STA_SUPPORT //
16008 + *AddHtInfoLen = 0; // Set the length of VIE to init value 0
16010 + *pNewChannel = 0;
16011 + *NewExtChannelOffset = 0xff; //Default 0xff means no such IE
16012 + pCfParm->bValid = FALSE; // default: no IE_CF found
16013 + pQbssLoad->bValid = FALSE; // default: no IE_QBSS_LOAD found
16014 + pEdcaParm->bValid = FALSE; // default: no IE_EDCA_PARAMETER found
16015 + pQosCapability->bValid = FALSE; // default: no IE_QOS_CAPABILITY found
16017 + pFrame = (PFRAME_802_11)Msg;
16019 + // get subtype from header
16020 + SubType = (UCHAR)pFrame->Hdr.FC.SubType;
16022 + // get Addr2 and BSSID from header
16023 + COPY_MAC_ADDR(pAddr2, pFrame->Hdr.Addr2);
16024 + COPY_MAC_ADDR(pBssid, pFrame->Hdr.Addr3);
16026 +// hex_dump("Beacon", Msg, MsgLen);
16028 + Ptr = pFrame->Octet;
16029 + Length += LENGTH_802_11;
16031 + // get timestamp from payload and advance the pointer
16032 + NdisMoveMemory(pTimestamp, Ptr, TIMESTAMP_LEN);
16034 + pTimestamp->u.LowPart = cpu2le32(pTimestamp->u.LowPart);
16035 + pTimestamp->u.HighPart = cpu2le32(pTimestamp->u.HighPart);
16037 + Ptr += TIMESTAMP_LEN;
16038 + Length += TIMESTAMP_LEN;
16040 + // get beacon interval from payload and advance the pointer
16041 + NdisMoveMemory(pBeaconPeriod, Ptr, 2);
16045 + // get capability info from payload and advance the pointer
16046 + NdisMoveMemory(pCapabilityInfo, Ptr, 2);
16050 + if (CAP_IS_ESS_ON(*pCapabilityInfo))
16051 + *pBssType = BSS_INFRA;
16053 + *pBssType = BSS_ADHOC;
16055 + pEid = (PEID_STRUCT) Ptr;
16057 + // get variable fields from payload and advance the pointer
16058 + while ((Length + 2 + pEid->Len) <= MsgLen)
16061 + // Secure copy VIE to VarIE[MAX_VIE_LEN] didn't overflow.
16063 + if ((*LengthVIE + pEid->Len + 2) >= MAX_VIE_LEN)
16065 + DBGPRINT(RT_DEBUG_WARN, ("PeerBeaconAndProbeRspSanity - Variable IEs out of resource [len(=%d) > MAX_VIE_LEN(=%d)]\n",
16066 + (*LengthVIE + pEid->Len + 2), MAX_VIE_LEN));
16070 + switch(pEid->Eid)
16073 + // Already has one SSID EID in this beacon, ignore the second one
16074 + if (Sanity & 0x1)
16076 + if(pEid->Len <= MAX_LEN_OF_SSID)
16078 + NdisMoveMemory(Ssid, pEid->Octet, pEid->Len);
16079 + *pSsidLen = pEid->Len;
16084 + DBGPRINT(RT_DEBUG_TRACE, ("PeerBeaconAndProbeRspSanity - wrong IE_SSID (len=%d)\n",pEid->Len));
16089 + case IE_SUPP_RATES:
16090 + if(pEid->Len <= MAX_LEN_OF_SUPPORTED_RATES)
16093 + NdisMoveMemory(SupRate, pEid->Octet, pEid->Len);
16094 + *pSupRateLen = pEid->Len;
16096 + // TODO: 2004-09-14 not a good design here, cause it exclude extra rates
16097 + // from ScanTab. We should report as is. And filter out unsupported
16098 + // rates in MlmeAux.
16099 + // Check against the supported rates
16100 + // RTMPCheckRates(pAd, SupRate, pSupRateLen);
16104 + DBGPRINT(RT_DEBUG_TRACE, ("PeerBeaconAndProbeRspSanity - wrong IE_SUPP_RATES (len=%d)\n",pEid->Len));
16110 + if (pEid->Len >= SIZE_HT_CAP_IE) //Note: allow extension.!!
16112 + NdisMoveMemory(pHtCapability, pEid->Octet, sizeof(HT_CAPABILITY_IE));
16113 + *pHtCapabilityLen = SIZE_HT_CAP_IE; // Nnow we only support 26 bytes.
16115 + *(USHORT *)(&pHtCapability->HtCapInfo) = cpu2le16(*(USHORT *)(&pHtCapability->HtCapInfo));
16116 + *(USHORT *)(&pHtCapability->ExtHtCapInfo) = cpu2le16(*(USHORT *)(&pHtCapability->ExtHtCapInfo));
16118 +#ifdef CONFIG_STA_SUPPORT
16119 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
16121 + *pPreNHtCapabilityLen = 0; // Nnow we only support 26 bytes.
16123 + Ptr = (PUCHAR) pVIE;
16124 + NdisMoveMemory(Ptr + *LengthVIE, &pEid->Eid, pEid->Len + 2);
16125 + *LengthVIE += (pEid->Len + 2);
16127 +#endif // CONFIG_STA_SUPPORT //
16131 + DBGPRINT(RT_DEBUG_WARN, ("PeerBeaconAndProbeRspSanity - wrong IE_HT_CAP. pEid->Len = %d\n", pEid->Len));
16136 + if (pEid->Len >= sizeof(ADD_HT_INFO_IE))
16138 + // This IE allows extension, but we can ignore extra bytes beyond our knowledge , so only
16139 + // copy first sizeof(ADD_HT_INFO_IE)
16140 + NdisMoveMemory(AddHtInfo, pEid->Octet, sizeof(ADD_HT_INFO_IE));
16141 + *AddHtInfoLen = SIZE_ADD_HT_INFO_IE;
16143 + CtrlChannel = AddHtInfo->ControlChan;
16145 + *(USHORT *)(&AddHtInfo->AddHtInfo2) = cpu2le16(*(USHORT *)(&AddHtInfo->AddHtInfo2));
16146 + *(USHORT *)(&AddHtInfo->AddHtInfo3) = cpu2le16(*(USHORT *)(&AddHtInfo->AddHtInfo3));
16148 +#ifdef CONFIG_STA_SUPPORT
16149 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
16151 + Ptr = (PUCHAR) pVIE;
16152 + NdisMoveMemory(Ptr + *LengthVIE, &pEid->Eid, pEid->Len + 2);
16153 + *LengthVIE += (pEid->Len + 2);
16155 +#endif // CONFIG_STA_SUPPORT //
16159 + DBGPRINT(RT_DEBUG_WARN, ("PeerBeaconAndProbeRspSanity - wrong IE_ADD_HT. \n"));
16163 + case IE_SECONDARY_CH_OFFSET:
16164 + if (pEid->Len == 1)
16166 + *NewExtChannelOffset = pEid->Octet[0];
16170 + DBGPRINT(RT_DEBUG_WARN, ("PeerBeaconAndProbeRspSanity - wrong IE_SECONDARY_CH_OFFSET. \n"));
16175 + DBGPRINT(RT_DEBUG_TRACE, ("PeerBeaconAndProbeRspSanity(IE_FH_PARM) \n"));
16179 + if(pEid->Len == 1)
16181 + *pChannel = *pEid->Octet;
16182 +#ifdef CONFIG_STA_SUPPORT
16183 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
16185 + if (ChannelSanity(pAd, *pChannel) == 0)
16191 +#endif // CONFIG_STA_SUPPORT //
16196 + DBGPRINT(RT_DEBUG_TRACE, ("PeerBeaconAndProbeRspSanity - wrong IE_DS_PARM (len=%d)\n",pEid->Len));
16202 + if(pEid->Len == 6)
16204 + pCfParm->bValid = TRUE;
16205 + pCfParm->CfpCount = pEid->Octet[0];
16206 + pCfParm->CfpPeriod = pEid->Octet[1];
16207 + pCfParm->CfpMaxDuration = pEid->Octet[2] + 256 * pEid->Octet[3];
16208 + pCfParm->CfpDurRemaining = pEid->Octet[4] + 256 * pEid->Octet[5];
16212 + DBGPRINT(RT_DEBUG_TRACE, ("PeerBeaconAndProbeRspSanity - wrong IE_CF_PARM\n"));
16217 + case IE_IBSS_PARM:
16218 + if(pEid->Len == 2)
16220 + NdisMoveMemory(pAtimWin, pEid->Octet, pEid->Len);
16224 + DBGPRINT(RT_DEBUG_TRACE, ("PeerBeaconAndProbeRspSanity - wrong IE_IBSS_PARM\n"));
16229 +#ifdef CONFIG_STA_SUPPORT
16231 + if(INFRA_ON(pAd) && SubType == SUBTYPE_BEACON)
16233 + GetTimBit((PUCHAR)pEid, pAd->StaActive.Aid, &TimLen, pBcastFlag, pDtimCount, pDtimPeriod, pMessageToMe);
16236 +#endif // CONFIG_STA_SUPPORT //
16237 + case IE_CHANNEL_SWITCH_ANNOUNCEMENT:
16238 + if(pEid->Len == 3)
16240 + *pNewChannel = pEid->Octet[1]; //extract new channel number
16245 + // CCX v2 has the same IE, we need to parse that too
16246 + // Wifi WMM use the same IE vale, need to parse that too
16248 + case IE_VENDOR_SPECIFIC:
16249 + // Check Broadcom/Atheros 802.11n OUI version, for HT Capability IE.
16250 + // This HT IE is before IEEE draft set HT IE value.2006-09-28 by Jan.
16251 + /*if (NdisEqualMemory(pEid->Octet, BROADCOM_OUI, 3) && (pEid->Len >= 4))
16253 + if ((pEid->Octet[3] == OUI_BROADCOM_HT) && (pEid->Len >= 30))
16256 + NdisMoveMemory(pHtCapability, &pEid->Octet[4], sizeof(HT_CAPABILITY_IE));
16257 + *pHtCapabilityLen = SIZE_HT_CAP_IE; // Nnow we only support 26 bytes.
16260 + if ((pEid->Octet[3] == OUI_BROADCOM_HT) && (pEid->Len >= 26))
16263 + NdisMoveMemory(AddHtInfo, &pEid->Octet[4], sizeof(ADD_HT_INFO_IE));
16264 + *AddHtInfoLen = SIZE_ADD_HT_INFO_IE; // Nnow we only support 26 bytes.
16269 + // Check the OUI version, filter out non-standard usage
16270 + if (NdisEqualMemory(pEid->Octet, RALINK_OUI, 3) && (pEid->Len == 7))
16272 + //*pRalinkIe = pEid->Octet[3];
16273 + if (pEid->Octet[3] != 0)
16274 + *pRalinkIe = pEid->Octet[3];
16276 + *pRalinkIe = 0xf0000000; // Set to non-zero value (can't set bit0-2) to represent this is Ralink Chip. So at linkup, we will set ralinkchip flag.
16278 +#ifdef CONFIG_STA_SUPPORT
16279 +#ifdef DOT11_N_SUPPORT
16280 + // This HT IE is before IEEE draft set HT IE value.2006-09-28 by Jan.
16282 + // Other vendors had production before IE_HT_CAP value is assigned. To backward support those old-firmware AP,
16283 + // Check broadcom-defiend pre-802.11nD1.0 OUI for HT related IE, including HT Capatilities IE and HT Information IE
16284 + else if ((*pHtCapabilityLen == 0) && NdisEqualMemory(pEid->Octet, PRE_N_HT_OUI, 3) && (pEid->Len >= 4) && (pAd->OpMode == OPMODE_STA))
16286 + if ((pEid->Octet[3] == OUI_PREN_HT_CAP) && (pEid->Len >= 30) && (*pHtCapabilityLen == 0))
16288 + NdisMoveMemory(pHtCapability, &pEid->Octet[4], sizeof(HT_CAPABILITY_IE));
16289 + *pPreNHtCapabilityLen = SIZE_HT_CAP_IE;
16292 + if ((pEid->Octet[3] == OUI_PREN_ADD_HT) && (pEid->Len >= 26))
16294 + NdisMoveMemory(AddHtInfo, &pEid->Octet[4], sizeof(ADD_HT_INFO_IE));
16295 + *AddHtInfoLen = SIZE_ADD_HT_INFO_IE;
16298 +#endif // DOT11_N_SUPPORT //
16299 +#endif // CONFIG_STA_SUPPORT //
16300 + else if (NdisEqualMemory(pEid->Octet, WPA_OUI, 4))
16302 + // Copy to pVIE which will report to microsoft bssid list.
16303 + Ptr = (PUCHAR) pVIE;
16304 + NdisMoveMemory(Ptr + *LengthVIE, &pEid->Eid, pEid->Len + 2);
16305 + *LengthVIE += (pEid->Len + 2);
16307 + else if (NdisEqualMemory(pEid->Octet, WME_PARM_ELEM, 6) && (pEid->Len == 24))
16312 + // parsing EDCA parameters
16313 + pEdcaParm->bValid = TRUE;
16314 + pEdcaParm->bQAck = FALSE; // pEid->Octet[0] & 0x10;
16315 + pEdcaParm->bQueueRequest = FALSE; // pEid->Octet[0] & 0x20;
16316 + pEdcaParm->bTxopRequest = FALSE; // pEid->Octet[0] & 0x40;
16317 + pEdcaParm->EdcaUpdateCount = pEid->Octet[6] & 0x0f;
16318 + pEdcaParm->bAPSDCapable = (pEid->Octet[6] & 0x80) ? 1 : 0;
16319 + ptr = &pEid->Octet[8];
16320 + for (i=0; i<4; i++)
16322 + UCHAR aci = (*ptr & 0x60) >> 5; // b5~6 is AC INDEX
16323 + pEdcaParm->bACM[aci] = (((*ptr) & 0x10) == 0x10); // b5 is ACM
16324 + pEdcaParm->Aifsn[aci] = (*ptr) & 0x0f; // b0~3 is AIFSN
16325 + pEdcaParm->Cwmin[aci] = *(ptr+1) & 0x0f; // b0~4 is Cwmin
16326 + pEdcaParm->Cwmax[aci] = *(ptr+1) >> 4; // b5~8 is Cwmax
16327 + pEdcaParm->Txop[aci] = *(ptr+2) + 256 * (*(ptr+3)); // in unit of 32-us
16328 + ptr += 4; // point to next AC
16331 + else if (NdisEqualMemory(pEid->Octet, WME_INFO_ELEM, 6) && (pEid->Len == 7))
16333 + // parsing EDCA parameters
16334 + pEdcaParm->bValid = TRUE;
16335 + pEdcaParm->bQAck = FALSE; // pEid->Octet[0] & 0x10;
16336 + pEdcaParm->bQueueRequest = FALSE; // pEid->Octet[0] & 0x20;
16337 + pEdcaParm->bTxopRequest = FALSE; // pEid->Octet[0] & 0x40;
16338 + pEdcaParm->EdcaUpdateCount = pEid->Octet[6] & 0x0f;
16339 + pEdcaParm->bAPSDCapable = (pEid->Octet[6] & 0x80) ? 1 : 0;
16341 + // use default EDCA parameter
16342 + pEdcaParm->bACM[QID_AC_BE] = 0;
16343 + pEdcaParm->Aifsn[QID_AC_BE] = 3;
16344 + pEdcaParm->Cwmin[QID_AC_BE] = CW_MIN_IN_BITS;
16345 + pEdcaParm->Cwmax[QID_AC_BE] = CW_MAX_IN_BITS;
16346 + pEdcaParm->Txop[QID_AC_BE] = 0;
16348 + pEdcaParm->bACM[QID_AC_BK] = 0;
16349 + pEdcaParm->Aifsn[QID_AC_BK] = 7;
16350 + pEdcaParm->Cwmin[QID_AC_BK] = CW_MIN_IN_BITS;
16351 + pEdcaParm->Cwmax[QID_AC_BK] = CW_MAX_IN_BITS;
16352 + pEdcaParm->Txop[QID_AC_BK] = 0;
16354 + pEdcaParm->bACM[QID_AC_VI] = 0;
16355 + pEdcaParm->Aifsn[QID_AC_VI] = 2;
16356 + pEdcaParm->Cwmin[QID_AC_VI] = CW_MIN_IN_BITS-1;
16357 + pEdcaParm->Cwmax[QID_AC_VI] = CW_MAX_IN_BITS;
16358 + pEdcaParm->Txop[QID_AC_VI] = 96; // AC_VI: 96*32us ~= 3ms
16360 + pEdcaParm->bACM[QID_AC_VO] = 0;
16361 + pEdcaParm->Aifsn[QID_AC_VO] = 2;
16362 + pEdcaParm->Cwmin[QID_AC_VO] = CW_MIN_IN_BITS-2;
16363 + pEdcaParm->Cwmax[QID_AC_VO] = CW_MAX_IN_BITS-1;
16364 + pEdcaParm->Txop[QID_AC_VO] = 48; // AC_VO: 48*32us ~= 1.5ms
16366 +#ifdef CONFIG_STA_SUPPORT
16367 +#endif // CONFIG_STA_SUPPORT //
16374 + case IE_EXT_SUPP_RATES:
16375 + if (pEid->Len <= MAX_LEN_OF_SUPPORTED_RATES)
16377 + NdisMoveMemory(ExtRate, pEid->Octet, pEid->Len);
16378 + *pExtRateLen = pEid->Len;
16380 + // TODO: 2004-09-14 not a good design here, cause it exclude extra rates
16381 + // from ScanTab. We should report as is. And filter out unsupported
16382 + // rates in MlmeAux.
16383 + // Check against the supported rates
16384 + // RTMPCheckRates(pAd, ExtRate, pExtRateLen);
16389 + if (pEid->Len == 1)
16391 + *pErp = (UCHAR)pEid->Octet[0];
16395 + case IE_AIRONET_CKIP:
16396 + // 0. Check Aironet IE length, it must be larger or equal to 28
16397 + // Cisco AP350 used length as 28
16398 + // Cisco AP12XX used length as 30
16399 + if (pEid->Len < (CKIP_NEGOTIATION_LENGTH - 2))
16402 + // 1. Copy CKIP flag byte to buffer for process
16403 + *pCkipFlag = *(pEid->Octet + 8);
16406 + case IE_AP_TX_POWER:
16407 + // AP Control of Client Transmit Power
16408 + //0. Check Aironet IE length, it must be 6
16409 + if (pEid->Len != 0x06)
16412 + // Get cell power limit in dBm
16413 + if (NdisEqualMemory(pEid->Octet, CISCO_OUI, 3) == 1)
16414 + *pAironetCellPowerLimit = *(pEid->Octet + 4);
16417 + // WPA2 & 802.11i RSN
16419 + // There is no OUI for version anymore, check the group cipher OUI before copying
16420 + if (RTMPEqualMemory(pEid->Octet + 2, RSN_OUI, 3))
16422 + // Copy to pVIE which will report to microsoft bssid list.
16423 + Ptr = (PUCHAR) pVIE;
16424 + NdisMoveMemory(Ptr + *LengthVIE, &pEid->Eid, pEid->Len + 2);
16425 + *LengthVIE += (pEid->Len + 2);
16428 +#ifdef CONFIG_STA_SUPPORT
16429 +#ifdef EXT_BUILD_CHANNEL_LIST
16431 + Ptr = (PUCHAR) pVIE;
16432 + NdisMoveMemory(Ptr + *LengthVIE, &pEid->Eid, pEid->Len + 2);
16433 + *LengthVIE += (pEid->Len + 2);
16435 +#endif // EXT_BUILD_CHANNEL_LIST //
16436 +#endif // CONFIG_STA_SUPPORT //
16441 + Length = Length + 2 + pEid->Len; // Eid[1] + Len[1]+ content[Len]
16442 + pEid = (PEID_STRUCT)((UCHAR*)pEid + 2 + pEid->Len);
16445 + // For some 11a AP. it did not have the channel EID, patch here
16446 +#ifdef CONFIG_STA_SUPPORT
16447 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
16449 + UCHAR LatchRfChannel = MsgChannel;
16450 + if ((pAd->LatchRfRegs.Channel > 14) && ((Sanity & 0x4) == 0))
16452 + if (CtrlChannel != 0)
16453 + *pChannel = CtrlChannel;
16455 + *pChannel = LatchRfChannel;
16459 +#endif // CONFIG_STA_SUPPORT //
16461 + if (Sanity != 0x7)
16463 + DBGPRINT(RT_DEBUG_WARN, ("PeerBeaconAndProbeRspSanity - missing field, Sanity=0x%02x\n", Sanity));
16473 +#ifdef DOT11N_DRAFT3
16475 + ==========================================================================
16477 + MLME message sanity check for some IE addressed in 802.11n d3.03.
16479 + TRUE if all parameters are OK, FALSE otherwise
16481 + IRQL = DISPATCH_LEVEL
16483 + ==========================================================================
16485 +BOOLEAN PeerBeaconAndProbeRspSanity2(
16486 + IN PRTMP_ADAPTER pAd,
16489 + OUT UCHAR *RegClass)
16492 + PFRAME_802_11 pFrame;
16493 + PEID_STRUCT pEid;
16494 + ULONG Length = 0;
16496 + pFrame = (PFRAME_802_11)Msg;
16499 + Ptr = pFrame->Octet;
16500 + Length += LENGTH_802_11;
16502 + // get timestamp from payload and advance the pointer
16503 + Ptr += TIMESTAMP_LEN;
16504 + Length += TIMESTAMP_LEN;
16506 + // get beacon interval from payload and advance the pointer
16510 + // get capability info from payload and advance the pointer
16514 + pEid = (PEID_STRUCT) Ptr;
16516 + // get variable fields from payload and advance the pointer
16517 + while ((Length + 2 + pEid->Len) <= MsgLen)
16519 + switch(pEid->Eid)
16521 + case IE_SUPP_REG_CLASS:
16522 + if(pEid->Len > 0)
16524 + *RegClass = *pEid->Octet;
16528 + DBGPRINT(RT_DEBUG_TRACE, ("PeerBeaconAndProbeRspSanity - wrong IE_SSID (len=%d)\n",pEid->Len));
16534 + Length = Length + 2 + pEid->Len; // Eid[1] + Len[1]+ content[Len]
16535 + pEid = (PEID_STRUCT)((UCHAR*)pEid + 2 + pEid->Len);
16541 +#endif // DOT11N_DRAFT3 //
16544 + ==========================================================================
16546 + MLME message sanity check
16548 + TRUE if all parameters are OK, FALSE otherwise
16549 + ==========================================================================
16551 +BOOLEAN MlmeScanReqSanity(
16552 + IN PRTMP_ADAPTER pAd,
16555 + OUT UCHAR *pBssType,
16557 + OUT UCHAR *pSsidLen,
16558 + OUT UCHAR *pScanType)
16560 + MLME_SCAN_REQ_STRUCT *Info;
16562 + Info = (MLME_SCAN_REQ_STRUCT *)(Msg);
16563 + *pBssType = Info->BssType;
16564 + *pSsidLen = Info->SsidLen;
16565 + NdisMoveMemory(Ssid, Info->Ssid, *pSsidLen);
16566 + *pScanType = Info->ScanType;
16568 + if ((*pBssType == BSS_INFRA || *pBssType == BSS_ADHOC || *pBssType == BSS_ANY)
16569 + && (*pScanType == SCAN_ACTIVE || *pScanType == SCAN_PASSIVE
16570 +#ifdef CONFIG_STA_SUPPORT
16571 + || *pScanType == SCAN_CISCO_PASSIVE || *pScanType == SCAN_CISCO_ACTIVE
16572 + || *pScanType == SCAN_CISCO_CHANNEL_LOAD || *pScanType == SCAN_CISCO_NOISE
16573 +#endif // CONFIG_STA_SUPPORT //
16580 + DBGPRINT(RT_DEBUG_TRACE, ("MlmeScanReqSanity fail - wrong BssType or ScanType\n"));
16585 +// IRQL = DISPATCH_LEVEL
16586 +UCHAR ChannelSanity(
16587 + IN PRTMP_ADAPTER pAd,
16588 + IN UCHAR channel)
16592 + for (i = 0; i < pAd->ChannelListNum; i ++)
16594 + if (channel == pAd->ChannelList[i].Channel)
16601 + ==========================================================================
16603 + MLME message sanity check
16605 + TRUE if all parameters are OK, FALSE otherwise
16607 + IRQL = DISPATCH_LEVEL
16609 + ==========================================================================
16611 +BOOLEAN PeerDeauthSanity(
16612 + IN PRTMP_ADAPTER pAd,
16615 + OUT PUCHAR pAddr2,
16616 + OUT USHORT *pReason)
16618 + PFRAME_802_11 pFrame = (PFRAME_802_11)Msg;
16620 + COPY_MAC_ADDR(pAddr2, pFrame->Hdr.Addr2);
16621 + NdisMoveMemory(pReason, &pFrame->Octet[0], 2);
16627 + ==========================================================================
16629 + MLME message sanity check
16631 + TRUE if all parameters are OK, FALSE otherwise
16633 + IRQL = DISPATCH_LEVEL
16635 + ==========================================================================
16637 +BOOLEAN PeerAuthSanity(
16638 + IN PRTMP_ADAPTER pAd,
16641 + OUT PUCHAR pAddr,
16642 + OUT USHORT *pAlg,
16643 + OUT USHORT *pSeq,
16644 + OUT USHORT *pStatus,
16647 + PFRAME_802_11 pFrame = (PFRAME_802_11)Msg;
16649 + COPY_MAC_ADDR(pAddr, pFrame->Hdr.Addr2);
16650 + NdisMoveMemory(pAlg, &pFrame->Octet[0], 2);
16651 + NdisMoveMemory(pSeq, &pFrame->Octet[2], 2);
16652 + NdisMoveMemory(pStatus, &pFrame->Octet[4], 2);
16654 + if ((*pAlg == Ndis802_11AuthModeOpen)
16655 +#ifdef LEAP_SUPPORT
16656 + || (*pAlg == CISCO_AuthModeLEAP)
16657 +#endif // LEAP_SUPPORT //
16660 + if (*pSeq == 1 || *pSeq == 2)
16666 + DBGPRINT(RT_DEBUG_TRACE, ("PeerAuthSanity fail - wrong Seg#\n"));
16670 + else if (*pAlg == Ndis802_11AuthModeShared)
16672 + if (*pSeq == 1 || *pSeq == 4)
16676 + else if (*pSeq == 2 || *pSeq == 3)
16678 + NdisMoveMemory(pChlgText, &pFrame->Octet[8], CIPHER_TEXT_LEN);
16683 + DBGPRINT(RT_DEBUG_TRACE, ("PeerAuthSanity fail - wrong Seg#\n"));
16689 + DBGPRINT(RT_DEBUG_TRACE, ("PeerAuthSanity fail - wrong algorithm\n"));
16695 + ==========================================================================
16697 + MLME message sanity check
16699 + TRUE if all parameters are OK, FALSE otherwise
16700 + ==========================================================================
16702 +BOOLEAN MlmeAuthReqSanity(
16703 + IN PRTMP_ADAPTER pAd,
16706 + OUT PUCHAR pAddr,
16707 + OUT ULONG *pTimeout,
16708 + OUT USHORT *pAlg)
16710 + MLME_AUTH_REQ_STRUCT *pInfo;
16712 + pInfo = (MLME_AUTH_REQ_STRUCT *)Msg;
16713 + COPY_MAC_ADDR(pAddr, pInfo->Addr);
16714 + *pTimeout = pInfo->Timeout;
16715 + *pAlg = pInfo->Alg;
16717 + if (((*pAlg == Ndis802_11AuthModeShared) ||(*pAlg == Ndis802_11AuthModeOpen)
16718 +#ifdef LEAP_SUPPORT
16719 + || (*pAlg == CISCO_AuthModeLEAP)
16720 +#endif // LEAP_SUPPORT //
16722 + ((*pAddr & 0x01) == 0))
16728 + DBGPRINT(RT_DEBUG_TRACE, ("MlmeAuthReqSanity fail - wrong algorithm\n"));
16734 + ==========================================================================
16736 + MLME message sanity check
16738 + TRUE if all parameters are OK, FALSE otherwise
16740 + IRQL = DISPATCH_LEVEL
16742 + ==========================================================================
16744 +BOOLEAN MlmeAssocReqSanity(
16745 + IN PRTMP_ADAPTER pAd,
16748 + OUT PUCHAR pApAddr,
16749 + OUT USHORT *pCapabilityInfo,
16750 + OUT ULONG *pTimeout,
16751 + OUT USHORT *pListenIntv)
16753 + MLME_ASSOC_REQ_STRUCT *pInfo;
16755 + pInfo = (MLME_ASSOC_REQ_STRUCT *)Msg;
16756 + *pTimeout = pInfo->Timeout; // timeout
16757 + COPY_MAC_ADDR(pApAddr, pInfo->Addr); // AP address
16758 + *pCapabilityInfo = pInfo->CapabilityInfo; // capability info
16759 + *pListenIntv = pInfo->ListenIntv;
16765 + ==========================================================================
16767 + MLME message sanity check
16769 + TRUE if all parameters are OK, FALSE otherwise
16771 + IRQL = DISPATCH_LEVEL
16773 + ==========================================================================
16775 +BOOLEAN PeerDisassocSanity(
16776 + IN PRTMP_ADAPTER pAd,
16779 + OUT PUCHAR pAddr2,
16780 + OUT USHORT *pReason)
16782 + PFRAME_802_11 pFrame = (PFRAME_802_11)Msg;
16784 + COPY_MAC_ADDR(pAddr2, pFrame->Hdr.Addr2);
16785 + NdisMoveMemory(pReason, &pFrame->Octet[0], 2);
16791 + ========================================================================
16792 + Routine Description:
16793 + Sanity check NetworkType (11b, 11g or 11a)
16796 + pBss - Pointer to BSS table.
16799 + Ndis802_11DS .......(11b)
16800 + Ndis802_11OFDM24....(11g)
16801 + Ndis802_11OFDM5.....(11a)
16803 + IRQL = DISPATCH_LEVEL
16805 + ========================================================================
16807 +NDIS_802_11_NETWORK_TYPE NetworkTypeInUseSanity(
16808 + IN PBSS_ENTRY pBss)
16810 + NDIS_802_11_NETWORK_TYPE NetWorkType;
16813 + NetWorkType = Ndis802_11DS;
16815 + if (pBss->Channel <= 14)
16818 + // First check support Rate.
16820 + for (i = 0; i < pBss->SupRateLen; i++)
16822 + rate = pBss->SupRate[i] & 0x7f; // Mask out basic rate set bit
16823 + if ((rate == 2) || (rate == 4) || (rate == 11) || (rate == 22))
16830 + // Otherwise (even rate > 108) means Ndis802_11OFDM24
16832 + NetWorkType = Ndis802_11OFDM24;
16838 + // Second check Extend Rate.
16840 + if (NetWorkType != Ndis802_11OFDM24)
16842 + for (i = 0; i < pBss->ExtRateLen; i++)
16844 + rate = pBss->SupRate[i] & 0x7f; // Mask out basic rate set bit
16845 + if ((rate == 2) || (rate == 4) || (rate == 11) || (rate == 22))
16852 + // Otherwise (even rate > 108) means Ndis802_11OFDM24
16854 + NetWorkType = Ndis802_11OFDM24;
16862 + NetWorkType = Ndis802_11OFDM5;
16865 + if (pBss->HtCapabilityLen != 0)
16867 + if (NetWorkType == Ndis802_11OFDM5)
16868 + NetWorkType = Ndis802_11OFDM5_N;
16870 + NetWorkType = Ndis802_11OFDM24_N;
16873 + return NetWorkType;
16877 + ==========================================================================
16879 + WPA message sanity check
16881 + TRUE if all parameters are OK, FALSE otherwise
16882 + ==========================================================================
16884 +BOOLEAN PeerWpaMessageSanity(
16885 + IN PRTMP_ADAPTER pAd,
16886 + IN PEAPOL_PACKET pMsg,
16888 + IN UCHAR MsgType,
16889 + IN MAC_TABLE_ENTRY *pEntry)
16891 + UCHAR mic[LEN_KEY_DESC_MIC], digest[80], KEYDATA[MAX_LEN_OF_RSNIE];
16892 + BOOLEAN bReplayDiff = FALSE;
16893 + BOOLEAN bWPA2 = FALSE;
16894 + KEY_INFO EapolKeyInfo;
16895 + UCHAR GroupKeyIndex = 0;
16898 + NdisZeroMemory(mic, sizeof(mic));
16899 + NdisZeroMemory(digest, sizeof(digest));
16900 + NdisZeroMemory(KEYDATA, sizeof(KEYDATA));
16901 + NdisZeroMemory((PUCHAR)&EapolKeyInfo, sizeof(EapolKeyInfo));
16903 + NdisMoveMemory((PUCHAR)&EapolKeyInfo, (PUCHAR)&pMsg->KeyDesc.KeyInfo, sizeof(KEY_INFO));
16905 + *((USHORT *)&EapolKeyInfo) = cpu2le16(*((USHORT *)&EapolKeyInfo));
16907 + // Choose WPA2 or not
16908 + if ((pEntry->AuthMode == Ndis802_11AuthModeWPA2) || (pEntry->AuthMode == Ndis802_11AuthModeWPA2PSK))
16911 + // 0. Check MsgType
16912 + if ((MsgType > EAPOL_GROUP_MSG_2) || (MsgType < EAPOL_PAIR_MSG_1))
16914 + DBGPRINT(RT_DEBUG_ERROR, ("The message type is invalid(%d)! \n", MsgType));
16918 + // 1. Replay counter check
16919 + if (MsgType == EAPOL_PAIR_MSG_1 || MsgType == EAPOL_PAIR_MSG_3 || MsgType == EAPOL_GROUP_MSG_1) // For supplicant
16921 + // First validate replay counter, only accept message with larger replay counter.
16922 + // Let equal pass, some AP start with all zero replay counter
16923 + UCHAR ZeroReplay[LEN_KEY_DESC_REPLAY];
16925 + NdisZeroMemory(ZeroReplay, LEN_KEY_DESC_REPLAY);
16926 + if ((RTMPCompareMemory(pMsg->KeyDesc.ReplayCounter, pEntry->R_Counter, LEN_KEY_DESC_REPLAY) != 1) &&
16927 + (RTMPCompareMemory(pMsg->KeyDesc.ReplayCounter, ZeroReplay, LEN_KEY_DESC_REPLAY) != 0))
16929 + bReplayDiff = TRUE;
16932 + else if (MsgType == EAPOL_PAIR_MSG_2 || MsgType == EAPOL_PAIR_MSG_4 || MsgType == EAPOL_GROUP_MSG_2) // For authenticator
16934 + // check Replay Counter coresponds to MSG from authenticator, otherwise discard
16935 + if (!NdisEqualMemory(pMsg->KeyDesc.ReplayCounter, pEntry->R_Counter, LEN_KEY_DESC_REPLAY))
16937 + bReplayDiff = TRUE;
16941 + // Replay Counter different condition
16944 + // send wireless event - for replay counter different
16945 + if (pAd->CommonCfg.bWirelessEvent)
16946 + RTMPSendWirelessEvent(pAd, IW_REPLAY_COUNTER_DIFF_EVENT_FLAG, pEntry->Addr, pEntry->apidx, 0);
16948 + if (MsgType < EAPOL_GROUP_MSG_1)
16950 + DBGPRINT(RT_DEBUG_ERROR, ("Replay Counter Different in pairwise msg %d of 4-way handshake!\n", MsgType));
16954 + DBGPRINT(RT_DEBUG_ERROR, ("Replay Counter Different in group msg %d of 2-way handshake!\n", (MsgType - EAPOL_PAIR_MSG_4)));
16957 + hex_dump("Receive replay counter ", pMsg->KeyDesc.ReplayCounter, LEN_KEY_DESC_REPLAY);
16958 + hex_dump("Current replay counter ", pEntry->R_Counter, LEN_KEY_DESC_REPLAY);
16962 + // 2. Verify MIC except Pairwise Msg1
16963 + if (MsgType != EAPOL_PAIR_MSG_1)
16965 + UCHAR rcvd_mic[LEN_KEY_DESC_MIC];
16967 + // Record the received MIC for check later
16968 + NdisMoveMemory(rcvd_mic, pMsg->KeyDesc.KeyMic, LEN_KEY_DESC_MIC);
16969 + NdisZeroMemory(pMsg->KeyDesc.KeyMic, LEN_KEY_DESC_MIC);
16971 + if (pEntry->WepStatus == Ndis802_11Encryption2Enabled) // TKIP
16973 + hmac_md5(pEntry->PTK, LEN_EAP_MICK, (PUCHAR)pMsg, MsgLen, mic);
16975 + else if (pEntry->WepStatus == Ndis802_11Encryption3Enabled) // AES
16977 + HMAC_SHA1((PUCHAR)pMsg, MsgLen, pEntry->PTK, LEN_EAP_MICK, digest);
16978 + NdisMoveMemory(mic, digest, LEN_KEY_DESC_MIC);
16981 + if (!NdisEqualMemory(rcvd_mic, mic, LEN_KEY_DESC_MIC))
16983 + // send wireless event - for MIC different
16984 + if (pAd->CommonCfg.bWirelessEvent)
16985 + RTMPSendWirelessEvent(pAd, IW_MIC_DIFF_EVENT_FLAG, pEntry->Addr, pEntry->apidx, 0);
16987 + if (MsgType < EAPOL_GROUP_MSG_1)
16989 + DBGPRINT(RT_DEBUG_ERROR, ("MIC Different in pairwise msg %d of 4-way handshake!\n", MsgType));
16993 + DBGPRINT(RT_DEBUG_ERROR, ("MIC Different in group msg %d of 2-way handshake!\n", (MsgType - EAPOL_PAIR_MSG_4)));
16996 + hex_dump("Received MIC", rcvd_mic, LEN_KEY_DESC_MIC);
16997 + hex_dump("Desired MIC", mic, LEN_KEY_DESC_MIC);
17003 + // Extract the context of the Key Data field if it exist
17004 + // The field in pairwise_msg_2_WPA1(WPA2) & pairwise_msg_3_WPA1 is un-encrypted.
17005 + // The field in group_msg_1_WPA1(WPA2) & pairwise_msg_3_WPA2 is encrypted.
17006 + if (pMsg->KeyDesc.KeyDataLen[1] > 0)
17008 + // Decrypt this field
17009 + if ((MsgType == EAPOL_PAIR_MSG_3 && bWPA2) || (MsgType == EAPOL_GROUP_MSG_1))
17011 + if(pEntry->WepStatus == Ndis802_11Encryption3Enabled)
17014 + AES_GTK_KEY_UNWRAP(&pEntry->PTK[16], KEYDATA, pMsg->KeyDesc.KeyDataLen[1],pMsg->KeyDesc.KeyData);
17020 + // Decrypt TKIP GTK
17021 + // Construct 32 bytes RC4 Key
17022 + NdisMoveMemory(Key, pMsg->KeyDesc.KeyIv, 16);
17023 + NdisMoveMemory(&Key[16], &pEntry->PTK[16], 16);
17024 + ARCFOUR_INIT(&pAd->PrivateInfo.WEPCONTEXT, Key, 32);
17025 + //discard first 256 bytes
17026 + for(i = 0; i < 256; i++)
17027 + ARCFOUR_BYTE(&pAd->PrivateInfo.WEPCONTEXT);
17028 + // Decrypt GTK. Becareful, there is no ICV to check the result is correct or not
17029 + ARCFOUR_DECRYPT(&pAd->PrivateInfo.WEPCONTEXT, KEYDATA, pMsg->KeyDesc.KeyData, pMsg->KeyDesc.KeyDataLen[1]);
17032 + if (!bWPA2 && (MsgType == EAPOL_GROUP_MSG_1))
17033 + GroupKeyIndex = EapolKeyInfo.KeyIndex;
17036 + else if ((MsgType == EAPOL_PAIR_MSG_2) || (MsgType == EAPOL_PAIR_MSG_3 && !bWPA2))
17038 + NdisMoveMemory(KEYDATA, pMsg->KeyDesc.KeyData, pMsg->KeyDesc.KeyDataLen[1]);
17046 + // Parse Key Data field to
17047 + // 1. verify RSN IE for pairwise_msg_2_WPA1(WPA2) ,pairwise_msg_3_WPA1(WPA2)
17048 + // 2. verify KDE format for pairwise_msg_3_WPA2, group_msg_1_WPA2
17049 + // 3. update shared key for pairwise_msg_3_WPA2, group_msg_1_WPA1(WPA2)
17050 + if (!RTMPParseEapolKeyData(pAd, KEYDATA, pMsg->KeyDesc.KeyDataLen[1], GroupKeyIndex, MsgType, bWPA2, pEntry))
17060 +#ifdef CONFIG_STA_SUPPORT
17061 +#ifdef QOS_DLS_SUPPORT
17062 +BOOLEAN MlmeDlsReqSanity(
17063 + IN PRTMP_ADAPTER pAd,
17066 + OUT PRT_802_11_DLS *pDLS,
17067 + OUT PUSHORT pReason)
17069 + MLME_DLS_REQ_STRUCT *pInfo;
17071 + pInfo = (MLME_DLS_REQ_STRUCT *)Msg;
17073 + *pDLS = pInfo->pDLS;
17074 + *pReason = pInfo->Reason;
17078 +#endif // QOS_DLS_SUPPORT //
17079 +#endif // CONFIG_STA_SUPPORT //
17081 +#ifdef QOS_DLS_SUPPORT
17082 +BOOLEAN PeerDlsReqSanity(
17083 + IN PRTMP_ADAPTER pAd,
17088 + OUT USHORT *pCapabilityInfo,
17089 + OUT USHORT *pDlsTimeout,
17090 + OUT UCHAR *pRatesLen,
17091 + OUT UCHAR Rates[],
17092 + OUT UCHAR *pHtCapabilityLen,
17093 + OUT HT_CAPABILITY_IE *pHtCapability)
17096 + PFRAME_802_11 Fr = (PFRAME_802_11)Msg;
17097 + PEID_STRUCT eid_ptr;
17099 + // to prevent caller from using garbage output value
17100 + *pCapabilityInfo = 0;
17101 + *pDlsTimeout = 0;
17102 + *pHtCapabilityLen = 0;
17106 + // offset to destination MAC address (Category and Action field)
17109 + // get DA from payload and advance the pointer
17110 + NdisMoveMemory(pDA, Ptr, MAC_ADDR_LEN);
17111 + Ptr += MAC_ADDR_LEN;
17113 + // get SA from payload and advance the pointer
17114 + NdisMoveMemory(pSA, Ptr, MAC_ADDR_LEN);
17115 + Ptr += MAC_ADDR_LEN;
17117 + // get capability info from payload and advance the pointer
17118 + NdisMoveMemory(pCapabilityInfo, Ptr, 2);
17121 + // get capability info from payload and advance the pointer
17122 + NdisMoveMemory(pDlsTimeout, Ptr, 2);
17125 + // Category and Action field + DA + SA + capability + Timeout
17126 + eid_ptr = (PEID_STRUCT) &Fr->Octet[18];
17128 + while (((UCHAR*)eid_ptr + eid_ptr->Len + 1) < ((UCHAR*)Fr + MsgLen))
17130 + switch(eid_ptr->Eid)
17132 + case IE_SUPP_RATES:
17133 + if ((eid_ptr->Len <= MAX_LEN_OF_SUPPORTED_RATES) && (eid_ptr->Len > 0))
17135 + NdisMoveMemory(Rates, eid_ptr->Octet, eid_ptr->Len);
17136 + DBGPRINT(RT_DEBUG_TRACE, ("PeerDlsReqSanity - IE_SUPP_RATES., Len=%d. Rates[0]=%x\n",eid_ptr->Len, Rates[0]));
17137 + DBGPRINT(RT_DEBUG_TRACE, ("Rates[1]=%x %x %x %x %x %x %x\n", Rates[1], Rates[2], Rates[3], Rates[4], Rates[5], Rates[6], Rates[7]));
17138 + *pRatesLen = eid_ptr->Len;
17151 + DBGPRINT(RT_DEBUG_TRACE, ("PeerDlsReqSanity - wrong IE_SUPP_RATES., Len=%d\n",eid_ptr->Len));
17155 + case IE_EXT_SUPP_RATES:
17156 + if (eid_ptr->Len + *pRatesLen <= MAX_LEN_OF_SUPPORTED_RATES)
17158 + NdisMoveMemory(&Rates[*pRatesLen], eid_ptr->Octet, eid_ptr->Len);
17159 + *pRatesLen = (*pRatesLen) + eid_ptr->Len;
17163 + NdisMoveMemory(&Rates[*pRatesLen], eid_ptr->Octet, MAX_LEN_OF_SUPPORTED_RATES - (*pRatesLen));
17164 + *pRatesLen = MAX_LEN_OF_SUPPORTED_RATES;
17169 + if (eid_ptr->Len >= sizeof(HT_CAPABILITY_IE))
17171 + NdisMoveMemory(pHtCapability, eid_ptr->Octet, sizeof(HT_CAPABILITY_IE));
17173 + *(USHORT *)(&pHtCapability->HtCapInfo) = cpu2le16(*(USHORT *)(&pHtCapability->HtCapInfo));
17174 + *(USHORT *)(&pHtCapability->ExtHtCapInfo) = cpu2le16(*(USHORT *)(&pHtCapability->ExtHtCapInfo));
17175 + *pHtCapabilityLen = sizeof(HT_CAPABILITY_IE);
17177 + DBGPRINT(RT_DEBUG_TRACE, ("PeerDlsReqSanity - IE_HT_CAP\n"));
17181 + DBGPRINT(RT_DEBUG_TRACE, ("PeerDlsReqSanity - wrong IE_HT_CAP.eid_ptr->Len = %d\n", eid_ptr->Len));
17189 + eid_ptr = (PEID_STRUCT)((UCHAR*)eid_ptr + 2 + eid_ptr->Len);
17195 +BOOLEAN PeerDlsRspSanity(
17196 + IN PRTMP_ADAPTER pAd,
17201 + OUT USHORT *pCapabilityInfo,
17202 + OUT USHORT *pStatus,
17203 + OUT UCHAR *pRatesLen,
17204 + OUT UCHAR Rates[],
17205 + OUT UCHAR *pHtCapabilityLen,
17206 + OUT HT_CAPABILITY_IE *pHtCapability)
17209 + PFRAME_802_11 Fr = (PFRAME_802_11)Msg;
17210 + PEID_STRUCT eid_ptr;
17212 + // to prevent caller from using garbage output value
17214 + *pCapabilityInfo = 0;
17215 + *pHtCapabilityLen = 0;
17219 + // offset to destination MAC address (Category and Action field)
17222 + // get status code from payload and advance the pointer
17223 + NdisMoveMemory(pStatus, Ptr, 2);
17226 + // get DA from payload and advance the pointer
17227 + NdisMoveMemory(pDA, Ptr, MAC_ADDR_LEN);
17228 + Ptr += MAC_ADDR_LEN;
17230 + // get SA from payload and advance the pointer
17231 + NdisMoveMemory(pSA, Ptr, MAC_ADDR_LEN);
17232 + Ptr += MAC_ADDR_LEN;
17234 + if (pStatus == 0)
17236 + // get capability info from payload and advance the pointer
17237 + NdisMoveMemory(pCapabilityInfo, Ptr, 2);
17241 + // Category and Action field + status code + DA + SA + capability
17242 + eid_ptr = (PEID_STRUCT) &Fr->Octet[18];
17244 + while (((UCHAR*)eid_ptr + eid_ptr->Len + 1) < ((UCHAR*)Fr + MsgLen))
17246 + switch(eid_ptr->Eid)
17248 + case IE_SUPP_RATES:
17249 + if ((eid_ptr->Len <= MAX_LEN_OF_SUPPORTED_RATES) && (eid_ptr->Len > 0))
17251 + NdisMoveMemory(Rates, eid_ptr->Octet, eid_ptr->Len);
17252 + DBGPRINT(RT_DEBUG_TRACE, ("PeerDlsRspSanity - IE_SUPP_RATES., Len=%d. Rates[0]=%x\n",eid_ptr->Len, Rates[0]));
17253 + DBGPRINT(RT_DEBUG_TRACE, ("Rates[1]=%x %x %x %x %x %x %x\n", Rates[1], Rates[2], Rates[3], Rates[4], Rates[5], Rates[6], Rates[7]));
17254 + *pRatesLen = eid_ptr->Len;
17267 + DBGPRINT(RT_DEBUG_TRACE, ("PeerDlsRspSanity - wrong IE_SUPP_RATES., Len=%d\n",eid_ptr->Len));
17271 + case IE_EXT_SUPP_RATES:
17272 + if (eid_ptr->Len + *pRatesLen <= MAX_LEN_OF_SUPPORTED_RATES)
17274 + NdisMoveMemory(&Rates[*pRatesLen], eid_ptr->Octet, eid_ptr->Len);
17275 + *pRatesLen = (*pRatesLen) + eid_ptr->Len;
17279 + NdisMoveMemory(&Rates[*pRatesLen], eid_ptr->Octet, MAX_LEN_OF_SUPPORTED_RATES - (*pRatesLen));
17280 + *pRatesLen = MAX_LEN_OF_SUPPORTED_RATES;
17285 + if (eid_ptr->Len >= sizeof(HT_CAPABILITY_IE))
17287 + NdisMoveMemory(pHtCapability, eid_ptr->Octet, sizeof(HT_CAPABILITY_IE));
17289 + *(USHORT *)(&pHtCapability->HtCapInfo) = cpu2le16(*(USHORT *)(&pHtCapability->HtCapInfo));
17290 + *(USHORT *)(&pHtCapability->ExtHtCapInfo) = cpu2le16(*(USHORT *)(&pHtCapability->ExtHtCapInfo));
17291 + *pHtCapabilityLen = sizeof(HT_CAPABILITY_IE);
17293 + DBGPRINT(RT_DEBUG_TRACE, ("PeerDlsRspSanity - IE_HT_CAP\n"));
17297 + DBGPRINT(RT_DEBUG_TRACE, ("PeerDlsRspSanity - wrong IE_HT_CAP.eid_ptr->Len = %d\n", eid_ptr->Len));
17305 + eid_ptr = (PEID_STRUCT)((UCHAR*)eid_ptr + 2 + eid_ptr->Len);
17311 +BOOLEAN PeerDlsTearDownSanity(
17312 + IN PRTMP_ADAPTER pAd,
17317 + OUT USHORT *pReason)
17320 + PFRAME_802_11 Fr = (PFRAME_802_11)Msg;
17322 + // to prevent caller from using garbage output value
17327 + // offset to destination MAC address (Category and Action field)
17330 + // get DA from payload and advance the pointer
17331 + NdisMoveMemory(pDA, Ptr, MAC_ADDR_LEN);
17332 + Ptr += MAC_ADDR_LEN;
17334 + // get SA from payload and advance the pointer
17335 + NdisMoveMemory(pSA, Ptr, MAC_ADDR_LEN);
17336 + Ptr += MAC_ADDR_LEN;
17338 + // get reason code from payload and advance the pointer
17339 + NdisMoveMemory(pReason, Ptr, 2);
17344 +#endif // QOS_DLS_SUPPORT //
17347 +++ b/drivers/staging/rt3070/common/cmm_sync.c
17350 + *************************************************************************
17351 + * Ralink Tech Inc.
17352 + * 5F., No.36, Taiyuan St., Jhubei City,
17353 + * Hsinchu County 302,
17356 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
17358 + * This program is free software; you can redistribute it and/or modify *
17359 + * it under the terms of the GNU General Public License as published by *
17360 + * the Free Software Foundation; either version 2 of the License, or *
17361 + * (at your option) any later version. *
17363 + * This program is distributed in the hope that it will be useful, *
17364 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
17365 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
17366 + * GNU General Public License for more details. *
17368 + * You should have received a copy of the GNU General Public License *
17369 + * along with this program; if not, write to the *
17370 + * Free Software Foundation, Inc., *
17371 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
17373 + *************************************************************************
17380 + Revision History:
17382 + -------- ---------- ----------------------------------------------
17383 + John Chang 2004-09-01 modified for rt2561/2661
17385 +#include "../rt_config.h"
17387 +// 2.4 Ghz channel plan index in the TxPower arrays.
17388 +#define BG_BAND_REGION_0_START 0 // 1,2,3,4,5,6,7,8,9,10,11
17389 +#define BG_BAND_REGION_0_SIZE 11
17390 +#define BG_BAND_REGION_1_START 0 // 1,2,3,4,5,6,7,8,9,10,11,12,13
17391 +#define BG_BAND_REGION_1_SIZE 13
17392 +#define BG_BAND_REGION_2_START 9 // 10,11
17393 +#define BG_BAND_REGION_2_SIZE 2
17394 +#define BG_BAND_REGION_3_START 9 // 10,11,12,13
17395 +#define BG_BAND_REGION_3_SIZE 4
17396 +#define BG_BAND_REGION_4_START 13 // 14
17397 +#define BG_BAND_REGION_4_SIZE 1
17398 +#define BG_BAND_REGION_5_START 0 // 1,2,3,4,5,6,7,8,9,10,11,12,13,14
17399 +#define BG_BAND_REGION_5_SIZE 14
17400 +#define BG_BAND_REGION_6_START 2 // 3,4,5,6,7,8,9
17401 +#define BG_BAND_REGION_6_SIZE 7
17402 +#define BG_BAND_REGION_7_START 4 // 5,6,7,8,9,10,11,12,13
17403 +#define BG_BAND_REGION_7_SIZE 9
17404 +#define BG_BAND_REGION_31_START 0 // 1,2,3,4,5,6,7,8,9,10,11,12,13,14
17405 +#define BG_BAND_REGION_31_SIZE 14
17407 +// 5 Ghz channel plan index in the TxPower arrays.
17408 +UCHAR A_BAND_REGION_0_CHANNEL_LIST[]={36, 40, 44, 48, 52, 56, 60, 64, 149, 153, 157, 161, 165};
17409 +UCHAR A_BAND_REGION_1_CHANNEL_LIST[]={36, 40, 44, 48, 52, 56, 60, 64, 100, 104, 108, 112, 116, 120, 124, 128, 132, 136, 140};
17410 +UCHAR A_BAND_REGION_2_CHANNEL_LIST[]={36, 40, 44, 48, 52, 56, 60, 64};
17411 +UCHAR A_BAND_REGION_3_CHANNEL_LIST[]={52, 56, 60, 64, 149, 153, 157, 161};
17412 +UCHAR A_BAND_REGION_4_CHANNEL_LIST[]={149, 153, 157, 161, 165};
17413 +UCHAR A_BAND_REGION_5_CHANNEL_LIST[]={149, 153, 157, 161};
17414 +UCHAR A_BAND_REGION_6_CHANNEL_LIST[]={36, 40, 44, 48};
17415 +UCHAR A_BAND_REGION_7_CHANNEL_LIST[]={36, 40, 44, 48, 52, 56, 60, 64, 100, 104, 108, 112, 116, 120, 124, 128, 132, 136, 140, 149, 153, 157, 161, 165};
17416 +UCHAR A_BAND_REGION_8_CHANNEL_LIST[]={52, 56, 60, 64};
17417 +UCHAR A_BAND_REGION_9_CHANNEL_LIST[]={36, 40, 44, 48, 52, 56, 60, 64, 100, 104, 108, 112, 116, 132, 136, 140, 149, 153, 157, 161, 165};
17418 +UCHAR A_BAND_REGION_10_CHANNEL_LIST[]={36, 40, 44, 48, 149, 153, 157, 161, 165};
17419 +UCHAR A_BAND_REGION_11_CHANNEL_LIST[]={36, 40, 44, 48, 52, 56, 60, 64, 100, 104, 108, 112, 116, 120, 149, 153, 157, 161};
17421 +//BaSizeArray follows the 802.11n definition as MaxRxFactor. 2^(13+factor) bytes. When factor =0, it's about Ba buffer size =8.
17422 +UCHAR BaSizeArray[4] = {8,16,32,64};
17425 + ==========================================================================
17427 + Update StaCfg->ChannelList[] according to 1) Country Region 2) RF IC type,
17428 + and 3) PHY-mode user selected.
17429 + The outcome is used by driver when doing site survey.
17431 + IRQL = PASSIVE_LEVEL
17432 + IRQL = DISPATCH_LEVEL
17434 + ==========================================================================
17436 +VOID BuildChannelList(
17437 + IN PRTMP_ADAPTER pAd)
17439 + UCHAR i, j, index=0, num=0;
17440 + PUCHAR pChannelList = NULL;
17442 + NdisZeroMemory(pAd->ChannelList, MAX_NUM_OF_CHANNELS * sizeof(CHANNEL_TX_POWER));
17444 + // if not 11a-only mode, channel list starts from 2.4Ghz band
17445 + if ((pAd->CommonCfg.PhyMode != PHY_11A)
17446 +#ifdef DOT11_N_SUPPORT
17447 + && (pAd->CommonCfg.PhyMode != PHY_11AN_MIXED) && (pAd->CommonCfg.PhyMode != PHY_11N_5G)
17448 +#endif // DOT11_N_SUPPORT //
17451 + switch (pAd->CommonCfg.CountryRegion & 0x7f)
17453 + case REGION_0_BG_BAND: // 1 -11
17454 + NdisMoveMemory(&pAd->ChannelList[index], &pAd->TxPower[BG_BAND_REGION_0_START], sizeof(CHANNEL_TX_POWER) * BG_BAND_REGION_0_SIZE);
17455 + index += BG_BAND_REGION_0_SIZE;
17457 + case REGION_1_BG_BAND: // 1 - 13
17458 + NdisMoveMemory(&pAd->ChannelList[index], &pAd->TxPower[BG_BAND_REGION_1_START], sizeof(CHANNEL_TX_POWER) * BG_BAND_REGION_1_SIZE);
17459 + index += BG_BAND_REGION_1_SIZE;
17461 + case REGION_2_BG_BAND: // 10 - 11
17462 + NdisMoveMemory(&pAd->ChannelList[index], &pAd->TxPower[BG_BAND_REGION_2_START], sizeof(CHANNEL_TX_POWER) * BG_BAND_REGION_2_SIZE);
17463 + index += BG_BAND_REGION_2_SIZE;
17465 + case REGION_3_BG_BAND: // 10 - 13
17466 + NdisMoveMemory(&pAd->ChannelList[index], &pAd->TxPower[BG_BAND_REGION_3_START], sizeof(CHANNEL_TX_POWER) * BG_BAND_REGION_3_SIZE);
17467 + index += BG_BAND_REGION_3_SIZE;
17469 + case REGION_4_BG_BAND: // 14
17470 + NdisMoveMemory(&pAd->ChannelList[index], &pAd->TxPower[BG_BAND_REGION_4_START], sizeof(CHANNEL_TX_POWER) * BG_BAND_REGION_4_SIZE);
17471 + index += BG_BAND_REGION_4_SIZE;
17473 + case REGION_5_BG_BAND: // 1 - 14
17474 + NdisMoveMemory(&pAd->ChannelList[index], &pAd->TxPower[BG_BAND_REGION_5_START], sizeof(CHANNEL_TX_POWER) * BG_BAND_REGION_5_SIZE);
17475 + index += BG_BAND_REGION_5_SIZE;
17477 + case REGION_6_BG_BAND: // 3 - 9
17478 + NdisMoveMemory(&pAd->ChannelList[index], &pAd->TxPower[BG_BAND_REGION_6_START], sizeof(CHANNEL_TX_POWER) * BG_BAND_REGION_6_SIZE);
17479 + index += BG_BAND_REGION_6_SIZE;
17481 + case REGION_7_BG_BAND: // 5 - 13
17482 + NdisMoveMemory(&pAd->ChannelList[index], &pAd->TxPower[BG_BAND_REGION_7_START], sizeof(CHANNEL_TX_POWER) * BG_BAND_REGION_7_SIZE);
17483 + index += BG_BAND_REGION_7_SIZE;
17485 + case REGION_31_BG_BAND: // 1 - 14
17486 + NdisMoveMemory(&pAd->ChannelList[index], &pAd->TxPower[BG_BAND_REGION_31_START], sizeof(CHANNEL_TX_POWER) * BG_BAND_REGION_31_SIZE);
17487 + index += BG_BAND_REGION_31_SIZE;
17489 + default: // Error. should never happen
17492 + for (i=0; i<index; i++)
17493 + pAd->ChannelList[i].MaxTxPwr = 20;
17496 + if ((pAd->CommonCfg.PhyMode == PHY_11A) || (pAd->CommonCfg.PhyMode == PHY_11ABG_MIXED)
17497 +#ifdef DOT11_N_SUPPORT
17498 + || (pAd->CommonCfg.PhyMode == PHY_11ABGN_MIXED) || (pAd->CommonCfg.PhyMode == PHY_11AN_MIXED)
17499 + || (pAd->CommonCfg.PhyMode == PHY_11AGN_MIXED) || (pAd->CommonCfg.PhyMode == PHY_11N_5G)
17500 +#endif // DOT11_N_SUPPORT //
17503 + switch (pAd->CommonCfg.CountryRegionForABand & 0x7f)
17505 + case REGION_0_A_BAND:
17506 + num = sizeof(A_BAND_REGION_0_CHANNEL_LIST)/sizeof(UCHAR);
17507 + pChannelList = A_BAND_REGION_0_CHANNEL_LIST;
17509 + case REGION_1_A_BAND:
17510 + num = sizeof(A_BAND_REGION_1_CHANNEL_LIST)/sizeof(UCHAR);
17511 + pChannelList = A_BAND_REGION_1_CHANNEL_LIST;
17513 + case REGION_2_A_BAND:
17514 + num = sizeof(A_BAND_REGION_2_CHANNEL_LIST)/sizeof(UCHAR);
17515 + pChannelList = A_BAND_REGION_2_CHANNEL_LIST;
17517 + case REGION_3_A_BAND:
17518 + num = sizeof(A_BAND_REGION_3_CHANNEL_LIST)/sizeof(UCHAR);
17519 + pChannelList = A_BAND_REGION_3_CHANNEL_LIST;
17521 + case REGION_4_A_BAND:
17522 + num = sizeof(A_BAND_REGION_4_CHANNEL_LIST)/sizeof(UCHAR);
17523 + pChannelList = A_BAND_REGION_4_CHANNEL_LIST;
17525 + case REGION_5_A_BAND:
17526 + num = sizeof(A_BAND_REGION_5_CHANNEL_LIST)/sizeof(UCHAR);
17527 + pChannelList = A_BAND_REGION_5_CHANNEL_LIST;
17529 + case REGION_6_A_BAND:
17530 + num = sizeof(A_BAND_REGION_6_CHANNEL_LIST)/sizeof(UCHAR);
17531 + pChannelList = A_BAND_REGION_6_CHANNEL_LIST;
17533 + case REGION_7_A_BAND:
17534 + num = sizeof(A_BAND_REGION_7_CHANNEL_LIST)/sizeof(UCHAR);
17535 + pChannelList = A_BAND_REGION_7_CHANNEL_LIST;
17537 + case REGION_8_A_BAND:
17538 + num = sizeof(A_BAND_REGION_8_CHANNEL_LIST)/sizeof(UCHAR);
17539 + pChannelList = A_BAND_REGION_8_CHANNEL_LIST;
17541 + case REGION_9_A_BAND:
17542 + num = sizeof(A_BAND_REGION_9_CHANNEL_LIST)/sizeof(UCHAR);
17543 + pChannelList = A_BAND_REGION_9_CHANNEL_LIST;
17546 + case REGION_10_A_BAND:
17547 + num = sizeof(A_BAND_REGION_10_CHANNEL_LIST)/sizeof(UCHAR);
17548 + pChannelList = A_BAND_REGION_10_CHANNEL_LIST;
17551 + case REGION_11_A_BAND:
17552 + num = sizeof(A_BAND_REGION_11_CHANNEL_LIST)/sizeof(UCHAR);
17553 + pChannelList = A_BAND_REGION_11_CHANNEL_LIST;
17556 + default: // Error. should never happen
17557 + DBGPRINT(RT_DEBUG_WARN,("countryregion=%d not support", pAd->CommonCfg.CountryRegionForABand));
17563 + UCHAR RadarCh[15]={52, 56, 60, 64, 100, 104, 108, 112, 116, 120, 124, 128, 132, 136, 140};
17564 + for (i=0; i<num; i++)
17566 + for (j=0; j<MAX_NUM_OF_CHANNELS; j++)
17568 + if (pChannelList[i] == pAd->TxPower[j].Channel)
17569 + NdisMoveMemory(&pAd->ChannelList[index+i], &pAd->TxPower[j], sizeof(CHANNEL_TX_POWER));
17571 + for (j=0; j<15; j++)
17573 + if (pChannelList[i] == RadarCh[j])
17574 + pAd->ChannelList[index+i].DfsReq = TRUE;
17576 + pAd->ChannelList[index+i].MaxTxPwr = 20;
17582 + pAd->ChannelListNum = index;
17583 + DBGPRINT(RT_DEBUG_TRACE,("country code=%d/%d, RFIC=%d, PHY mode=%d, support %d channels\n",
17584 + pAd->CommonCfg.CountryRegion, pAd->CommonCfg.CountryRegionForABand, pAd->RfIcType, pAd->CommonCfg.PhyMode, pAd->ChannelListNum));
17586 + for (i=0;i<pAd->ChannelListNum;i++)
17588 + DBGPRINT_RAW(RT_DEBUG_TRACE,("BuildChannel # %d :: Pwr0 = %d, Pwr1 =%d, \n ", pAd->ChannelList[i].Channel, pAd->ChannelList[i].Power, pAd->ChannelList[i].Power2));
17594 + ==========================================================================
17596 + This routine return the first channel number according to the country
17597 + code selection and RF IC selection (signal band or dual band). It is called
17598 + whenever driver need to start a site survey of all supported channels.
17600 + ch - the first channel number of current country code setting
17602 + IRQL = PASSIVE_LEVEL
17604 + ==========================================================================
17606 +UCHAR FirstChannel(
17607 + IN PRTMP_ADAPTER pAd)
17609 + return pAd->ChannelList[0].Channel;
17613 + ==========================================================================
17615 + This routine returns the next channel number. This routine is called
17616 + during driver need to start a site survey of all supported channels.
17618 + next_channel - the next channel number valid in current country code setting.
17620 + return 0 if no more next channel
17621 + ==========================================================================
17623 +UCHAR NextChannel(
17624 + IN PRTMP_ADAPTER pAd,
17625 + IN UCHAR channel)
17628 + UCHAR next_channel = 0;
17630 + for (i = 0; i < (pAd->ChannelListNum - 1); i++)
17631 + if (channel == pAd->ChannelList[i].Channel)
17633 + next_channel = pAd->ChannelList[i+1].Channel;
17636 + return next_channel;
17640 + ==========================================================================
17642 + This routine is for Cisco Compatible Extensions 2.X
17643 + Spec31. AP Control of Client Transmit Power
17647 + Required by Aironet dBm(mW)
17648 + 0dBm(1mW), 1dBm(5mW), 13dBm(20mW), 15dBm(30mW),
17649 + 17dBm(50mw), 20dBm(100mW)
17652 + 3dBm(Lowest), 6dBm(10%), 9dBm(25%), 12dBm(50%),
17653 + 14dBm(75%), 15dBm(100%)
17655 + The client station's actual transmit power shall be within +/- 5dB of
17656 + the minimum value or next lower value.
17657 + ==========================================================================
17659 +VOID ChangeToCellPowerLimit(
17660 + IN PRTMP_ADAPTER pAd,
17661 + IN UCHAR AironetCellPowerLimit)
17663 + //valud 0xFF means that hasn't found power limit information
17664 + //from the AP's Beacon/Probe response.
17665 + if (AironetCellPowerLimit == 0xFF)
17668 + if (AironetCellPowerLimit < 6) //Used Lowest Power Percentage.
17669 + pAd->CommonCfg.TxPowerPercentage = 6;
17670 + else if (AironetCellPowerLimit < 9)
17671 + pAd->CommonCfg.TxPowerPercentage = 10;
17672 + else if (AironetCellPowerLimit < 12)
17673 + pAd->CommonCfg.TxPowerPercentage = 25;
17674 + else if (AironetCellPowerLimit < 14)
17675 + pAd->CommonCfg.TxPowerPercentage = 50;
17676 + else if (AironetCellPowerLimit < 15)
17677 + pAd->CommonCfg.TxPowerPercentage = 75;
17679 + pAd->CommonCfg.TxPowerPercentage = 100; //else used maximum
17681 + if (pAd->CommonCfg.TxPowerPercentage > pAd->CommonCfg.TxPowerDefault)
17682 + pAd->CommonCfg.TxPowerPercentage = pAd->CommonCfg.TxPowerDefault;
17686 +CHAR ConvertToRssi(
17687 + IN PRTMP_ADAPTER pAd,
17689 + IN UCHAR RssiNumber)
17691 + UCHAR RssiOffset, LNAGain;
17693 + // Rssi equals to zero should be an invalid value
17697 + LNAGain = GET_LNA_GAIN(pAd);
17698 + if (pAd->LatchRfRegs.Channel > 14)
17700 + if (RssiNumber == 0)
17701 + RssiOffset = pAd->ARssiOffset0;
17702 + else if (RssiNumber == 1)
17703 + RssiOffset = pAd->ARssiOffset1;
17705 + RssiOffset = pAd->ARssiOffset2;
17709 + if (RssiNumber == 0)
17710 + RssiOffset = pAd->BGRssiOffset0;
17711 + else if (RssiNumber == 1)
17712 + RssiOffset = pAd->BGRssiOffset1;
17714 + RssiOffset = pAd->BGRssiOffset2;
17717 + return (-12 - RssiOffset - LNAGain - Rssi);
17721 + ==========================================================================
17723 + Scan next channel
17724 + ==========================================================================
17726 +VOID ScanNextChannel(
17727 + IN PRTMP_ADAPTER pAd)
17729 + HEADER_802_11 Hdr80211;
17730 + PUCHAR pOutBuffer = NULL;
17731 + NDIS_STATUS NStatus;
17732 + ULONG FrameLen = 0;
17733 + UCHAR SsidLen = 0, ScanType = pAd->MlmeAux.ScanType, BBPValue = 0;
17734 +#ifdef CONFIG_STA_SUPPORT
17736 + PHEADER_802_11 pHdr80211;
17737 +#endif // CONFIG_STA_SUPPORT //
17738 + UINT ScanTimeIn5gChannel = SHORT_CHANNEL_TIME;
17740 +#ifdef CONFIG_STA_SUPPORT
17741 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
17743 + if (MONITOR_ON(pAd))
17746 +#endif // CONFIG_STA_SUPPORT //
17749 + // Nothing to do in ATE mode.
17752 +#endif // RALINK_ATE //
17754 + if (pAd->MlmeAux.Channel == 0)
17756 + if ((pAd->CommonCfg.BBPCurrentBW == BW_40)
17757 +#ifdef CONFIG_STA_SUPPORT
17758 + && (INFRA_ON(pAd)
17759 + || (pAd->OpMode == OPMODE_AP))
17760 +#endif // CONFIG_STA_SUPPORT //
17763 + AsicSwitchChannel(pAd, pAd->CommonCfg.CentralChannel, FALSE);
17764 + AsicLockChannel(pAd, pAd->CommonCfg.CentralChannel);
17765 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &BBPValue);
17766 + BBPValue &= (~0x18);
17767 + BBPValue |= 0x10;
17768 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, BBPValue);
17769 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - End of SCAN, restore to 40MHz channel %d, Total BSS[%02d]\n",pAd->CommonCfg.CentralChannel, pAd->ScanTab.BssNr));
17773 + AsicSwitchChannel(pAd, pAd->CommonCfg.Channel, FALSE);
17774 + AsicLockChannel(pAd, pAd->CommonCfg.Channel);
17775 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - End of SCAN, restore to channel %d, Total BSS[%02d]\n",pAd->CommonCfg.Channel, pAd->ScanTab.BssNr));
17778 +#ifdef CONFIG_STA_SUPPORT
17779 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
17782 + // To prevent data lost.
17783 + // Send an NULL data with turned PSM bit on to current associated AP before SCAN progress.
17784 + // Now, we need to send an NULL data with turned PSM bit off to AP, when scan progress done
17786 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED) && (INFRA_ON(pAd)))
17788 + NStatus = MlmeAllocateMemory(pAd, (PVOID)&pOutBuffer);
17789 + if (NStatus == NDIS_STATUS_SUCCESS)
17791 + pHdr80211 = (PHEADER_802_11) pOutBuffer;
17792 + MgtMacHeaderInit(pAd, pHdr80211, SUBTYPE_NULL_FUNC, 1, pAd->CommonCfg.Bssid, pAd->CommonCfg.Bssid);
17793 + pHdr80211->Duration = 0;
17794 + pHdr80211->FC.Type = BTYPE_DATA;
17795 + pHdr80211->FC.PwrMgmt = (pAd->StaCfg.Psm == PWR_SAVE);
17797 + // Send using priority queue
17798 + MiniportMMRequest(pAd, 0, pOutBuffer, sizeof(HEADER_802_11));
17799 + DBGPRINT(RT_DEBUG_TRACE, ("MlmeScanReqAction -- Send PSM Data frame\n"));
17800 + MlmeFreeMemory(pAd, pOutBuffer);
17801 + RTMPusecDelay(5000);
17805 + pAd->Mlme.SyncMachine.CurrState = SYNC_IDLE;
17806 + Status = MLME_SUCCESS;
17807 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_SCAN_CONF, 2, &Status);
17809 +#endif // CONFIG_STA_SUPPORT //
17812 + RTMP_CLEAR_FLAG(pAd, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS);
17815 +#ifdef CONFIG_STA_SUPPORT
17816 + else if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST) && (pAd->OpMode == OPMODE_STA))
17818 + pAd->Mlme.SyncMachine.CurrState = SYNC_IDLE;
17819 + MlmeCntlConfirm(pAd, MT2_SCAN_CONF, MLME_FAIL_NO_RESOURCE);
17821 +#endif // CONFIG_STA_SUPPORT //
17822 +#endif // RT2870 //
17825 +#ifdef CONFIG_STA_SUPPORT
17826 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
17828 + // BBP and RF are not accessible in PS mode, we has to wake them up first
17829 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_DOZE))
17830 + AsicForceWakeup(pAd, TRUE);
17832 + // leave PSM during scanning. otherwise we may lost ProbeRsp & BEACON
17833 + if (pAd->StaCfg.Psm == PWR_SAVE)
17834 + MlmeSetPsmBit(pAd, PWR_ACTIVE);
17836 +#endif // CONFIG_STA_SUPPORT //
17838 + AsicSwitchChannel(pAd, pAd->MlmeAux.Channel, TRUE);
17839 + AsicLockChannel(pAd, pAd->MlmeAux.Channel);
17841 +#ifdef CONFIG_STA_SUPPORT
17842 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
17844 + if (pAd->MlmeAux.Channel > 14)
17846 + if ((pAd->CommonCfg.bIEEE80211H == 1) && RadarChannelCheck(pAd, pAd->MlmeAux.Channel))
17848 + ScanType = SCAN_PASSIVE;
17849 + ScanTimeIn5gChannel = MIN_CHANNEL_TIME;
17853 +#ifdef CARRIER_DETECTION_SUPPORT // Roger sync Carrier
17854 + // carrier detection
17855 + if (pAd->CommonCfg.CarrierDetect.Enable == TRUE)
17857 + ScanType = SCAN_PASSIVE;
17858 + ScanTimeIn5gChannel = MIN_CHANNEL_TIME;
17860 +#endif // CARRIER_DETECTION_SUPPORT //
17863 +#endif // CONFIG_STA_SUPPORT //
17865 + //Global country domain(ch1-11:active scan, ch12-14 passive scan)
17866 + if ((pAd->MlmeAux.Channel <= 14) && (pAd->MlmeAux.Channel >= 12) && ((pAd->CommonCfg.CountryRegion & 0x7f) == REGION_31_BG_BAND))
17868 + ScanType = SCAN_PASSIVE;
17871 + // We need to shorten active scan time in order for WZC connect issue
17872 + // Chnage the channel scan time for CISCO stuff based on its IAPP announcement
17873 + if (ScanType == FAST_SCAN_ACTIVE)
17874 + RTMPSetTimer(&pAd->MlmeAux.ScanTimer, FAST_ACTIVE_SCAN_TIME);
17875 +#ifdef CONFIG_STA_SUPPORT
17876 + else if (((ScanType == SCAN_CISCO_ACTIVE) ||
17877 + (ScanType == SCAN_CISCO_PASSIVE) ||
17878 + (ScanType == SCAN_CISCO_CHANNEL_LOAD) ||
17879 + (ScanType == SCAN_CISCO_NOISE)) && (pAd->OpMode == OPMODE_STA))
17881 + if (pAd->StaCfg.CCXScanTime < 25)
17882 + RTMPSetTimer(&pAd->MlmeAux.ScanTimer, pAd->StaCfg.CCXScanTime * 2);
17884 + RTMPSetTimer(&pAd->MlmeAux.ScanTimer, pAd->StaCfg.CCXScanTime);
17886 +#endif // CONFIG_STA_SUPPORT //
17887 + else // must be SCAN_PASSIVE or SCAN_ACTIVE
17889 + if ((pAd->CommonCfg.PhyMode == PHY_11ABG_MIXED)
17890 +#ifdef DOT11_N_SUPPORT
17891 + || (pAd->CommonCfg.PhyMode == PHY_11ABGN_MIXED) || (pAd->CommonCfg.PhyMode == PHY_11AGN_MIXED)
17892 +#endif // DOT11_N_SUPPORT //
17895 + if (pAd->MlmeAux.Channel > 14)
17896 + RTMPSetTimer(&pAd->MlmeAux.ScanTimer, ScanTimeIn5gChannel);
17898 + RTMPSetTimer(&pAd->MlmeAux.ScanTimer, MIN_CHANNEL_TIME);
17901 + RTMPSetTimer(&pAd->MlmeAux.ScanTimer, MAX_CHANNEL_TIME);
17904 + if ((ScanType == SCAN_ACTIVE) || (ScanType == FAST_SCAN_ACTIVE) ||
17905 + (ScanType == SCAN_CISCO_ACTIVE))
17907 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
17908 + if (NStatus != NDIS_STATUS_SUCCESS)
17910 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - ScanNextChannel() allocate memory fail\n"));
17911 +#ifdef CONFIG_STA_SUPPORT
17912 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
17914 + pAd->Mlme.SyncMachine.CurrState = SYNC_IDLE;
17915 + Status = MLME_FAIL_NO_RESOURCE;
17916 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_SCAN_CONF, 2, &Status);
17918 +#endif // CONFIG_STA_SUPPORT //
17923 + // There is no need to send broadcast probe request if active scan is in effect.
17924 + if ((ScanType == SCAN_ACTIVE) || (ScanType == FAST_SCAN_ACTIVE)
17926 + SsidLen = pAd->MlmeAux.SsidLen;
17930 + MgtMacHeaderInit(pAd, &Hdr80211, SUBTYPE_PROBE_REQ, 0, BROADCAST_ADDR, BROADCAST_ADDR);
17931 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
17932 + sizeof(HEADER_802_11), &Hdr80211,
17935 + SsidLen, pAd->MlmeAux.Ssid,
17937 + 1, &pAd->CommonCfg.SupRateLen,
17938 + pAd->CommonCfg.SupRateLen, pAd->CommonCfg.SupRate,
17941 + if (pAd->CommonCfg.ExtRateLen)
17944 + MakeOutgoingFrame(pOutBuffer + FrameLen, &Tmp,
17946 + 1, &pAd->CommonCfg.ExtRateLen,
17947 + pAd->CommonCfg.ExtRateLen, pAd->CommonCfg.ExtRate,
17952 +#ifdef DOT11_N_SUPPORT
17953 + if (pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED)
17957 + UCHAR BROADCOM[4] = {0x0, 0x90, 0x4c, 0x33};
17958 +#ifdef RT_BIG_ENDIAN
17959 + HT_CAPABILITY_IE HtCapabilityTmp;
17961 + if (pAd->bBroadComHT == TRUE)
17963 + HtLen = pAd->MlmeAux.HtCapabilityLen + 4;
17964 +#ifdef RT_BIG_ENDIAN
17965 + NdisMoveMemory(&HtCapabilityTmp, &pAd->MlmeAux.HtCapability, SIZE_HT_CAP_IE);
17966 + *(USHORT *)(&HtCapabilityTmp.HtCapInfo) = SWAP16(*(USHORT *)(&HtCapabilityTmp.HtCapInfo));
17967 + *(USHORT *)(&HtCapabilityTmp.ExtHtCapInfo) = SWAP16(*(USHORT *)(&HtCapabilityTmp.ExtHtCapInfo));
17969 + MakeOutgoingFrame(pOutBuffer + FrameLen, &Tmp,
17973 + pAd->MlmeAux.HtCapabilityLen, &HtCapabilityTmp,
17976 + MakeOutgoingFrame(pOutBuffer + FrameLen, &Tmp,
17980 + pAd->MlmeAux.HtCapabilityLen, &pAd->MlmeAux.HtCapability,
17982 +#endif // RT_BIG_ENDIAN //
17986 + HtLen = pAd->MlmeAux.HtCapabilityLen;
17987 +#ifdef RT_BIG_ENDIAN
17988 + NdisMoveMemory(&HtCapabilityTmp, &pAd->CommonCfg.HtCapability, SIZE_HT_CAP_IE);
17989 + *(USHORT *)(&HtCapabilityTmp.HtCapInfo) = SWAP16(*(USHORT *)(&HtCapabilityTmp.HtCapInfo));
17990 + *(USHORT *)(&HtCapabilityTmp.ExtHtCapInfo) = SWAP16(*(USHORT *)(&HtCapabilityTmp.ExtHtCapInfo));
17992 + MakeOutgoingFrame(pOutBuffer + FrameLen, &Tmp,
17995 + HtLen, &HtCapabilityTmp,
17998 + MakeOutgoingFrame(pOutBuffer + FrameLen, &Tmp,
18001 + HtLen, &pAd->CommonCfg.HtCapability,
18003 +#endif // RT_BIG_ENDIAN //
18007 +#ifdef DOT11N_DRAFT3
18008 + if (pAd->CommonCfg.BACapability.field.b2040CoexistScanSup == 1)
18012 + MakeOutgoingFrame(pOutBuffer + FrameLen, &Tmp,
18015 + 1, &pAd->CommonCfg.BSSCoexist2040.word,
18020 +#endif // DOT11N_DRAFT3 //
18022 +#endif // DOT11_N_SUPPORT //
18025 + MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
18026 + MlmeFreeMemory(pAd, pOutBuffer);
18029 + // For SCAN_CISCO_PASSIVE, do nothing and silently wait for beacon or other probe reponse
18031 +#ifdef CONFIG_STA_SUPPORT
18032 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
18033 + pAd->Mlme.SyncMachine.CurrState = SCAN_LISTEN;
18034 +#endif // CONFIG_STA_SUPPORT //
18039 +VOID MgtProbReqMacHeaderInit(
18040 + IN PRTMP_ADAPTER pAd,
18041 + IN OUT PHEADER_802_11 pHdr80211,
18042 + IN UCHAR SubType,
18045 + IN PUCHAR pBssid)
18047 + NdisZeroMemory(pHdr80211, sizeof(HEADER_802_11));
18049 + pHdr80211->FC.Type = BTYPE_MGMT;
18050 + pHdr80211->FC.SubType = SubType;
18051 + if (SubType == SUBTYPE_ACK)
18052 + pHdr80211->FC.Type = BTYPE_CNTL;
18053 + pHdr80211->FC.ToDs = ToDs;
18054 + COPY_MAC_ADDR(pHdr80211->Addr1, pDA);
18055 + COPY_MAC_ADDR(pHdr80211->Addr2, pAd->CurrentAddress);
18056 + COPY_MAC_ADDR(pHdr80211->Addr3, pBssid);
18061 +++ b/drivers/staging/rt3070/common/cmm_wpa.c
18064 + *************************************************************************
18065 + * Ralink Tech Inc.
18066 + * 5F., No.36, Taiyuan St., Jhubei City,
18067 + * Hsinchu County 302,
18070 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
18072 + * This program is free software; you can redistribute it and/or modify *
18073 + * it under the terms of the GNU General Public License as published by *
18074 + * the Free Software Foundation; either version 2 of the License, or *
18075 + * (at your option) any later version. *
18077 + * This program is distributed in the hope that it will be useful, *
18078 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
18079 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
18080 + * GNU General Public License for more details. *
18082 + * You should have received a copy of the GNU General Public License *
18083 + * along with this program; if not, write to the *
18084 + * Free Software Foundation, Inc., *
18085 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
18087 + *************************************************************************
18094 + Revision History:
18096 + -------- ---------- ----------------------------------------------
18097 + Jan Lee 03-07-22 Initial
18098 + Paul Lin 03-11-28 Modify for supplicant
18100 +#include "../rt_config.h"
18102 +UCHAR OUI_WPA_NONE_AKM[4] = {0x00, 0x50, 0xF2, 0x00};
18103 +UCHAR OUI_WPA_VERSION[4] = {0x00, 0x50, 0xF2, 0x01};
18104 +UCHAR OUI_WPA_TKIP[4] = {0x00, 0x50, 0xF2, 0x02};
18105 +UCHAR OUI_WPA_CCMP[4] = {0x00, 0x50, 0xF2, 0x04};
18106 +UCHAR OUI_WPA_8021X_AKM[4] = {0x00, 0x50, 0xF2, 0x01};
18107 +UCHAR OUI_WPA_PSK_AKM[4] = {0x00, 0x50, 0xF2, 0x02};
18109 +UCHAR OUI_WPA2_WEP40[4] = {0x00, 0x0F, 0xAC, 0x01};
18110 +UCHAR OUI_WPA2_TKIP[4] = {0x00, 0x0F, 0xAC, 0x02};
18111 +UCHAR OUI_WPA2_CCMP[4] = {0x00, 0x0F, 0xAC, 0x04};
18112 +UCHAR OUI_WPA2_8021X_AKM[4] = {0x00, 0x0F, 0xAC, 0x01};
18113 +UCHAR OUI_WPA2_PSK_AKM[4] = {0x00, 0x0F, 0xAC, 0x02};
18115 +UCHAR OUI_MSA_8021X_AKM[4] = {0x00, 0x0F, 0xAC, 0x05}; // Not yet final - IEEE 802.11s-D1.06
18116 +UCHAR OUI_MSA_PSK_AKM[4] = {0x00, 0x0F, 0xAC, 0x06}; // Not yet final - IEEE 802.11s-D1.06
18119 + ========================================================================
18121 + Routine Description:
18122 + The pseudo-random function(PRF) that hashes various inputs to
18123 + derive a pseudo-random value. To add liveness to the pseudo-random
18124 + value, a nonce should be one of the inputs.
18126 + It is used to generate PTK, GTK or some specific random value.
18129 + UCHAR *key, - the key material for HMAC_SHA1 use
18130 + INT key_len - the length of key
18131 + UCHAR *prefix - a prefix label
18132 + INT prefix_len - the length of the label
18133 + UCHAR *data - a specific data with variable length
18134 + INT data_len - the length of a specific data
18135 + INT len - the output lenght
18138 + UCHAR *output - the calculated result
18141 + 802.11i-2004 Annex H.3
18143 + ========================================================================
18148 + IN UCHAR *prefix,
18149 + IN INT prefix_len,
18152 + OUT UCHAR *output,
18157 + INT currentindex = 0;
18160 + // Allocate memory for input
18161 + os_alloc_mem(NULL, (PUCHAR *)&input, 1024);
18163 + if (input == NULL)
18165 + DBGPRINT(RT_DEBUG_ERROR, ("!!!PRF: no memory!!!\n"));
18169 + // Generate concatenation input
18170 + NdisMoveMemory(input, prefix, prefix_len);
18172 + // Concatenate a single octet containing 0
18173 + input[prefix_len] = 0;
18175 + // Concatenate specific data
18176 + NdisMoveMemory(&input[prefix_len + 1], data, data_len);
18177 + total_len = prefix_len + 1 + data_len;
18179 + // Concatenate a single octet containing 0
18180 + // This octet shall be update later
18181 + input[total_len] = 0;
18184 + // Iterate to calculate the result by hmac-sha-1
18185 + // Then concatenate to last result
18186 + for (i = 0; i < (len + 19) / 20; i++)
18188 + HMAC_SHA1(input, total_len, key, key_len, &output[currentindex]);
18189 + currentindex += 20;
18191 + // update the last octet
18192 + input[total_len - 1]++;
18194 + os_free_mem(NULL, input);
18198 + ========================================================================
18200 + Routine Description:
18201 + It utilizes PRF-384 or PRF-512 to derive session-specific keys from a PMK.
18202 + It shall be called by 4-way handshake processing.
18205 + pAd - pointer to our pAdapter context
18206 + PMK - pointer to PMK
18207 + ANonce - pointer to ANonce
18208 + AA - pointer to Authenticator Address
18209 + SNonce - pointer to SNonce
18210 + SA - pointer to Supplicant Address
18211 + len - indicate the length of PTK (octet)
18214 + Output pointer to the PTK
18217 + Refer to IEEE 802.11i-2004 8.5.1.2
18219 + ========================================================================
18222 + IN PRTMP_ADAPTER pAd,
18224 + IN UCHAR *ANonce,
18226 + IN UCHAR *SNonce,
18228 + OUT UCHAR *output,
18231 + UCHAR concatenation[76];
18232 + UINT CurrPos = 0;
18234 + UCHAR Prefix[] = {'P', 'a', 'i', 'r', 'w', 'i', 's', 'e', ' ', 'k', 'e', 'y', ' ',
18235 + 'e', 'x', 'p', 'a', 'n', 's', 'i', 'o', 'n'};
18237 + // initiate the concatenation input
18238 + NdisZeroMemory(temp, sizeof(temp));
18239 + NdisZeroMemory(concatenation, 76);
18241 + // Get smaller address
18242 + if (RTMPCompareMemory(SA, AA, 6) == 1)
18243 + NdisMoveMemory(concatenation, AA, 6);
18245 + NdisMoveMemory(concatenation, SA, 6);
18248 + // Get larger address
18249 + if (RTMPCompareMemory(SA, AA, 6) == 1)
18250 + NdisMoveMemory(&concatenation[CurrPos], SA, 6);
18252 + NdisMoveMemory(&concatenation[CurrPos], AA, 6);
18254 + // store the larger mac address for backward compatible of
18255 + // ralink proprietary STA-key issue
18256 + NdisMoveMemory(temp, &concatenation[CurrPos], MAC_ADDR_LEN);
18259 + // Get smaller Nonce
18260 + if (RTMPCompareMemory(ANonce, SNonce, 32) == 0)
18261 + NdisMoveMemory(&concatenation[CurrPos], temp, 32); // patch for ralink proprietary STA-key issue
18262 + else if (RTMPCompareMemory(ANonce, SNonce, 32) == 1)
18263 + NdisMoveMemory(&concatenation[CurrPos], SNonce, 32);
18265 + NdisMoveMemory(&concatenation[CurrPos], ANonce, 32);
18268 + // Get larger Nonce
18269 + if (RTMPCompareMemory(ANonce, SNonce, 32) == 0)
18270 + NdisMoveMemory(&concatenation[CurrPos], temp, 32); // patch for ralink proprietary STA-key issue
18271 + else if (RTMPCompareMemory(ANonce, SNonce, 32) == 1)
18272 + NdisMoveMemory(&concatenation[CurrPos], ANonce, 32);
18274 + NdisMoveMemory(&concatenation[CurrPos], SNonce, 32);
18277 + hex_dump("concatenation=", concatenation, 76);
18279 + // Use PRF to generate PTK
18280 + PRF(PMK, LEN_MASTER_KEY, Prefix, 22, concatenation, 76, output, len);
18285 + ========================================================================
18287 + Routine Description:
18288 + Generate random number by software.
18291 + pAd - pointer to our pAdapter context
18292 + macAddr - pointer to local MAC address
18297 + 802.1ii-2004 Annex H.5
18299 + ========================================================================
18302 + IN PRTMP_ADAPTER pAd,
18303 + IN UCHAR *macAddr,
18304 + OUT UCHAR *random)
18307 + UCHAR local[80], KeyCounter[32];
18308 + UCHAR result[80];
18309 + ULONG CurrentTime;
18310 + UCHAR prefix[] = {'I', 'n', 'i', 't', ' ', 'C', 'o', 'u', 'n', 't', 'e', 'r'};
18312 + // Zero the related information
18313 + NdisZeroMemory(result, 80);
18314 + NdisZeroMemory(local, 80);
18315 + NdisZeroMemory(KeyCounter, 32);
18317 + for (i = 0; i < 32; i++)
18319 + // copy the local MAC address
18320 + COPY_MAC_ADDR(local, macAddr);
18321 + curr = MAC_ADDR_LEN;
18323 + // concatenate the current time
18324 + NdisGetSystemUpTime(&CurrentTime);
18325 + NdisMoveMemory(&local[curr], &CurrentTime, sizeof(CurrentTime));
18326 + curr += sizeof(CurrentTime);
18328 + // concatenate the last result
18329 + NdisMoveMemory(&local[curr], result, 32);
18332 + // concatenate a variable
18333 + NdisMoveMemory(&local[curr], &i, 2);
18336 + // calculate the result
18337 + PRF(KeyCounter, 32, prefix,12, local, curr, result, 32);
18340 + NdisMoveMemory(random, result, 32);
18344 + ========================================================================
18346 + Routine Description:
18347 + Build cipher suite in RSN-IE.
18348 + It only shall be called by RTMPMakeRSNIE.
18351 + pAd - pointer to our pAdapter context
18352 + ElementID - indicate the WPA1 or WPA2
18353 + WepStatus - indicate the encryption type
18354 + bMixCipher - a boolean to indicate the pairwise cipher and group
18355 + cipher are the same or not
18361 + ========================================================================
18363 +static VOID RTMPInsertRsnIeCipher(
18364 + IN PRTMP_ADAPTER pAd,
18365 + IN UCHAR ElementID,
18366 + IN UINT WepStatus,
18367 + IN BOOLEAN bMixCipher,
18368 + IN UCHAR FlexibleCipher,
18369 + OUT PUCHAR pRsnIe,
18370 + OUT UCHAR *rsn_len)
18372 + UCHAR PairwiseCnt;
18376 + // decide WPA2 or WPA1
18377 + if (ElementID == Wpa2Ie)
18379 + RSNIE2 *pRsnie_cipher = (RSNIE2*)pRsnIe;
18381 + // Assign the verson as 1
18382 + pRsnie_cipher->version = 1;
18384 + switch (WepStatus)
18387 + case Ndis802_11Encryption2Enabled:
18388 + NdisMoveMemory(pRsnie_cipher->mcast, OUI_WPA2_TKIP, 4);
18389 + pRsnie_cipher->ucount = 1;
18390 + NdisMoveMemory(pRsnie_cipher->ucast[0].oui, OUI_WPA2_TKIP, 4);
18391 + *rsn_len = sizeof(RSNIE2);
18395 + case Ndis802_11Encryption3Enabled:
18397 + NdisMoveMemory(pRsnie_cipher->mcast, OUI_WPA2_TKIP, 4);
18399 + NdisMoveMemory(pRsnie_cipher->mcast, OUI_WPA2_CCMP, 4);
18400 + pRsnie_cipher->ucount = 1;
18401 + NdisMoveMemory(pRsnie_cipher->ucast[0].oui, OUI_WPA2_CCMP, 4);
18402 + *rsn_len = sizeof(RSNIE2);
18405 + // TKIP-AES mix mode
18406 + case Ndis802_11Encryption4Enabled:
18407 + NdisMoveMemory(pRsnie_cipher->mcast, OUI_WPA2_TKIP, 4);
18410 + // Insert WPA2 TKIP as the first pairwise cipher
18411 + if (MIX_CIPHER_WPA2_TKIP_ON(FlexibleCipher))
18413 + NdisMoveMemory(pRsnie_cipher->ucast[0].oui, OUI_WPA2_TKIP, 4);
18414 + // Insert WPA2 AES as the secondary pairwise cipher
18415 + if (MIX_CIPHER_WPA2_AES_ON(FlexibleCipher))
18417 + NdisMoveMemory(pRsnie_cipher->ucast[0].oui + 4, OUI_WPA2_CCMP, 4);
18423 + // Insert WPA2 AES as the first pairwise cipher
18424 + NdisMoveMemory(pRsnie_cipher->ucast[0].oui, OUI_WPA2_CCMP, 4);
18427 + pRsnie_cipher->ucount = PairwiseCnt;
18428 + *rsn_len = sizeof(RSNIE2) + (4 * (PairwiseCnt - 1));
18432 + // swap for big-endian platform
18433 + pRsnie_cipher->version = cpu2le16(pRsnie_cipher->version);
18434 + pRsnie_cipher->ucount = cpu2le16(pRsnie_cipher->ucount);
18438 + RSNIE *pRsnie_cipher = (RSNIE*)pRsnIe;
18440 + // Assign OUI and version
18441 + NdisMoveMemory(pRsnie_cipher->oui, OUI_WPA_VERSION, 4);
18442 + pRsnie_cipher->version = 1;
18444 + switch (WepStatus)
18447 + case Ndis802_11Encryption2Enabled:
18448 + NdisMoveMemory(pRsnie_cipher->mcast, OUI_WPA_TKIP, 4);
18449 + pRsnie_cipher->ucount = 1;
18450 + NdisMoveMemory(pRsnie_cipher->ucast[0].oui, OUI_WPA_TKIP, 4);
18451 + *rsn_len = sizeof(RSNIE);
18455 + case Ndis802_11Encryption3Enabled:
18457 + NdisMoveMemory(pRsnie_cipher->mcast, OUI_WPA_TKIP, 4);
18459 + NdisMoveMemory(pRsnie_cipher->mcast, OUI_WPA_CCMP, 4);
18460 + pRsnie_cipher->ucount = 1;
18461 + NdisMoveMemory(pRsnie_cipher->ucast[0].oui, OUI_WPA_CCMP, 4);
18462 + *rsn_len = sizeof(RSNIE);
18465 + // TKIP-AES mix mode
18466 + case Ndis802_11Encryption4Enabled:
18467 + NdisMoveMemory(pRsnie_cipher->mcast, OUI_WPA_TKIP, 4);
18470 + // Insert WPA TKIP as the first pairwise cipher
18471 + if (MIX_CIPHER_WPA_TKIP_ON(FlexibleCipher))
18473 + NdisMoveMemory(pRsnie_cipher->ucast[0].oui, OUI_WPA_TKIP, 4);
18474 + // Insert WPA AES as the secondary pairwise cipher
18475 + if (MIX_CIPHER_WPA_AES_ON(FlexibleCipher))
18477 + NdisMoveMemory(pRsnie_cipher->ucast[0].oui + 4, OUI_WPA_CCMP, 4);
18483 + // Insert WPA AES as the first pairwise cipher
18484 + NdisMoveMemory(pRsnie_cipher->ucast[0].oui, OUI_WPA_CCMP, 4);
18487 + pRsnie_cipher->ucount = PairwiseCnt;
18488 + *rsn_len = sizeof(RSNIE) + (4 * (PairwiseCnt - 1));
18492 + // swap for big-endian platform
18493 + pRsnie_cipher->version = cpu2le16(pRsnie_cipher->version);
18494 + pRsnie_cipher->ucount = cpu2le16(pRsnie_cipher->ucount);
18500 + ========================================================================
18502 + Routine Description:
18503 + Build AKM suite in RSN-IE.
18504 + It only shall be called by RTMPMakeRSNIE.
18507 + pAd - pointer to our pAdapter context
18508 + ElementID - indicate the WPA1 or WPA2
18509 + AuthMode - indicate the authentication mode
18510 + apidx - indicate the interface index
18516 + ========================================================================
18518 +static VOID RTMPInsertRsnIeAKM(
18519 + IN PRTMP_ADAPTER pAd,
18520 + IN UCHAR ElementID,
18521 + IN UINT AuthMode,
18523 + OUT PUCHAR pRsnIe,
18524 + OUT UCHAR *rsn_len)
18526 + RSNIE_AUTH *pRsnie_auth;
18528 + pRsnie_auth = (RSNIE_AUTH*)(pRsnIe + (*rsn_len));
18530 + // decide WPA2 or WPA1
18531 + if (ElementID == Wpa2Ie)
18533 + switch (AuthMode)
18535 + case Ndis802_11AuthModeWPA2:
18536 + case Ndis802_11AuthModeWPA1WPA2:
18537 + pRsnie_auth->acount = 1;
18538 + NdisMoveMemory(pRsnie_auth->auth[0].oui, OUI_WPA2_8021X_AKM, 4);
18541 + case Ndis802_11AuthModeWPA2PSK:
18542 + case Ndis802_11AuthModeWPA1PSKWPA2PSK:
18543 + pRsnie_auth->acount = 1;
18544 + NdisMoveMemory(pRsnie_auth->auth[0].oui, OUI_WPA2_PSK_AKM, 4);
18550 + switch (AuthMode)
18552 + case Ndis802_11AuthModeWPA:
18553 + case Ndis802_11AuthModeWPA1WPA2:
18554 + pRsnie_auth->acount = 1;
18555 + NdisMoveMemory(pRsnie_auth->auth[0].oui, OUI_WPA_8021X_AKM, 4);
18558 + case Ndis802_11AuthModeWPAPSK:
18559 + case Ndis802_11AuthModeWPA1PSKWPA2PSK:
18560 + pRsnie_auth->acount = 1;
18561 + NdisMoveMemory(pRsnie_auth->auth[0].oui, OUI_WPA_PSK_AKM, 4);
18564 + case Ndis802_11AuthModeWPANone:
18565 + pRsnie_auth->acount = 1;
18566 + NdisMoveMemory(pRsnie_auth->auth[0].oui, OUI_WPA_NONE_AKM, 4);
18571 + pRsnie_auth->acount = cpu2le16(pRsnie_auth->acount);
18573 + (*rsn_len) += sizeof(RSNIE_AUTH); // update current RSNIE length
18578 + ========================================================================
18580 + Routine Description:
18581 + Build capability in RSN-IE.
18582 + It only shall be called by RTMPMakeRSNIE.
18585 + pAd - pointer to our pAdapter context
18586 + ElementID - indicate the WPA1 or WPA2
18587 + apidx - indicate the interface index
18593 + ========================================================================
18595 +static VOID RTMPInsertRsnIeCap(
18596 + IN PRTMP_ADAPTER pAd,
18597 + IN UCHAR ElementID,
18599 + OUT PUCHAR pRsnIe,
18600 + OUT UCHAR *rsn_len)
18602 + RSN_CAPABILITIES *pRSN_Cap;
18604 + // it could be ignored in WPA1 mode
18605 + if (ElementID == WpaIe)
18608 + pRSN_Cap = (RSN_CAPABILITIES*)(pRsnIe + (*rsn_len));
18611 + pRSN_Cap->word = cpu2le16(pRSN_Cap->word);
18613 + (*rsn_len) += sizeof(RSN_CAPABILITIES); // update current RSNIE length
18619 + ========================================================================
18621 + Routine Description:
18622 + Build RSN IE context. It is not included element-ID and length.
18625 + pAd - pointer to our pAdapter context
18626 + AuthMode - indicate the authentication mode
18627 + WepStatus - indicate the encryption type
18628 + apidx - indicate the interface index
18634 + ========================================================================
18636 +VOID RTMPMakeRSNIE(
18637 + IN PRTMP_ADAPTER pAd,
18638 + IN UINT AuthMode,
18639 + IN UINT WepStatus,
18642 + PUCHAR pRsnIe = NULL; // primary RSNIE
18643 + UCHAR *rsnielen_cur_p = 0; // the length of the primary RSNIE
18644 + UCHAR *rsnielen_ex_cur_p = 0; // the length of the secondary RSNIE
18645 + UCHAR PrimaryRsnie;
18646 + BOOLEAN bMixCipher = FALSE; // indicate the pairwise and group cipher are different
18648 + WPA_MIX_PAIR_CIPHER FlexibleCipher = MIX_CIPHER_NOTUSE; // it provide the more flexible cipher combination in WPA-WPA2 and TKIPAES mode
18650 + rsnielen_cur_p = NULL;
18651 + rsnielen_ex_cur_p = NULL;
18654 +#ifdef CONFIG_STA_SUPPORT
18655 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
18657 +#ifdef WPA_SUPPLICANT_SUPPORT
18658 + if (pAd->StaCfg.WpaSupplicantUP != WPA_SUPPLICANT_DISABLE)
18660 + if (AuthMode < Ndis802_11AuthModeWPA)
18664 +#endif // WPA_SUPPLICANT_SUPPORT //
18666 + // Support WPAPSK or WPA2PSK in STA-Infra mode
18667 + // Support WPANone in STA-Adhoc mode
18668 + if ((AuthMode != Ndis802_11AuthModeWPAPSK) &&
18669 + (AuthMode != Ndis802_11AuthModeWPA2PSK) &&
18670 + (AuthMode != Ndis802_11AuthModeWPANone)
18675 + DBGPRINT(RT_DEBUG_TRACE,("==> RTMPMakeRSNIE(STA)\n"));
18677 + // Zero RSNIE context
18678 + pAd->StaCfg.RSNIE_Len = 0;
18679 + NdisZeroMemory(pAd->StaCfg.RSN_IE, MAX_LEN_OF_RSNIE);
18681 + // Pointer to RSNIE
18682 + rsnielen_cur_p = &pAd->StaCfg.RSNIE_Len;
18683 + pRsnIe = pAd->StaCfg.RSN_IE;
18685 + bMixCipher = pAd->StaCfg.bMixCipher;
18687 +#endif // CONFIG_STA_SUPPORT //
18690 + // indicate primary RSNIE as WPA or WPA2
18691 + if ((AuthMode == Ndis802_11AuthModeWPA) ||
18692 + (AuthMode == Ndis802_11AuthModeWPAPSK) ||
18693 + (AuthMode == Ndis802_11AuthModeWPANone) ||
18694 + (AuthMode == Ndis802_11AuthModeWPA1WPA2) ||
18695 + (AuthMode == Ndis802_11AuthModeWPA1PSKWPA2PSK))
18696 + PrimaryRsnie = WpaIe;
18698 + PrimaryRsnie = Wpa2Ie;
18701 + // Build the primary RSNIE
18702 + // 1. insert cipher suite
18703 + RTMPInsertRsnIeCipher(pAd, PrimaryRsnie, WepStatus, bMixCipher, FlexibleCipher, pRsnIe, &p_offset);
18706 + RTMPInsertRsnIeAKM(pAd, PrimaryRsnie, AuthMode, apidx, pRsnIe, &p_offset);
18708 + // 3. insert capability
18709 + RTMPInsertRsnIeCap(pAd, PrimaryRsnie, apidx, pRsnIe, &p_offset);
18712 + // 4. update the RSNIE length
18713 + *rsnielen_cur_p = p_offset;
18715 + hex_dump("The primary RSNIE", pRsnIe, (*rsnielen_cur_p));
18721 + ==========================================================================
18723 + Check whether the received frame is EAP frame.
18726 + pAd - pointer to our pAdapter context
18727 + pEntry - pointer to active entry
18728 + pData - the received frame
18729 + DataByteCount - the received frame's length
18730 + FromWhichBSSID - indicate the interface index
18733 + TRUE - This frame is EAP frame
18734 + FALSE - otherwise
18735 + ==========================================================================
18737 +BOOLEAN RTMPCheckWPAframe(
18738 + IN PRTMP_ADAPTER pAd,
18739 + IN PMAC_TABLE_ENTRY pEntry,
18741 + IN ULONG DataByteCount,
18742 + IN UCHAR FromWhichBSSID)
18745 + BOOLEAN Cancelled;
18748 + if(DataByteCount < (LENGTH_802_1_H + LENGTH_EAPOL_H))
18752 + // Skip LLC header
18753 + if (NdisEqualMemory(SNAP_802_1H, pData, 6) ||
18754 + // Cisco 1200 AP may send packet with SNAP_BRIDGE_TUNNEL
18755 + NdisEqualMemory(SNAP_BRIDGE_TUNNEL, pData, 6))
18759 + // Skip 2-bytes EAPoL type
18760 + if (NdisEqualMemory(EAPOL, pData, 2))
18767 + switch (*(pData+1))
18770 + Body_len = (*(pData+2)<<8) | (*(pData+3));
18771 + DBGPRINT(RT_DEBUG_TRACE, ("Receive EAP-Packet frame, TYPE = 0, Length = %ld\n", Body_len));
18774 + DBGPRINT(RT_DEBUG_TRACE, ("Receive EAPOL-Start frame, TYPE = 1 \n"));
18775 + if (pEntry->EnqueueEapolStartTimerRunning != EAPOL_START_DISABLE)
18777 + DBGPRINT(RT_DEBUG_TRACE, ("Cancel the EnqueueEapolStartTimerRunning \n"));
18778 + RTMPCancelTimer(&pEntry->EnqueueStartForPSKTimer, &Cancelled);
18779 + pEntry->EnqueueEapolStartTimerRunning = EAPOL_START_DISABLE;
18782 + case EAPOLLogoff:
18783 + DBGPRINT(RT_DEBUG_TRACE, ("Receive EAPOLLogoff frame, TYPE = 2 \n"));
18786 + Body_len = (*(pData+2)<<8) | (*(pData+3));
18787 + DBGPRINT(RT_DEBUG_TRACE, ("Receive EAPOL-Key frame, TYPE = 3, Length = %ld\n", Body_len));
18789 + case EAPOLASFAlert:
18790 + DBGPRINT(RT_DEBUG_TRACE, ("Receive EAPOLASFAlert frame, TYPE = 4 \n"));
18801 + ==========================================================================
18803 + ENCRYPT AES GTK before sending in EAPOL frame.
18804 + AES GTK length = 128 bit, so fix blocks for aes-key-wrap as 2 in this function.
18805 + This function references to RFC 3394 for aes key wrap algorithm.
18807 + ==========================================================================
18809 +VOID AES_GTK_KEY_WRAP(
18811 + IN UCHAR *plaintext,
18813 + OUT UCHAR *ciphertext)
18815 + UCHAR A[8], BIN[16], BOUT[16];
18817 + INT num_blocks = p_len/8; // unit:64bits
18819 + aes_context aesctx;
18822 + rtmp_aes_set_key(&aesctx, key, 128);
18825 + for (i = 0; i < 8; i++)
18828 + //Input plaintext
18829 + for (i = 0; i < num_blocks; i++)
18831 + for (j = 0 ; j < 8; j++)
18832 + R[8 * (i + 1) + j] = plaintext[8 * i + j];
18836 + for (j = 0; j < 6; j++)
18838 + for(i = 1; i <= num_blocks; i++)
18841 + NdisMoveMemory(BIN, A, 8);
18842 + NdisMoveMemory(&BIN[8], &R[8 * i], 8);
18843 + rtmp_aes_encrypt(&aesctx, BIN, BOUT);
18845 + NdisMoveMemory(A, &BOUT[0], 8);
18846 + xor = num_blocks * j + i;
18847 + A[7] = BOUT[7] ^ xor;
18848 + NdisMoveMemory(&R[8 * i], &BOUT[8], 8);
18852 + // Output ciphertext
18853 + NdisMoveMemory(ciphertext, A, 8);
18855 + for (i = 1; i <= num_blocks; i++)
18857 + for (j = 0 ; j < 8; j++)
18858 + ciphertext[8 * i + j] = R[8 * i + j];
18864 + ========================================================================
18866 + Routine Description:
18867 + Misc function to decrypt AES body
18874 + This function references to RFC 3394 for aes key unwrap algorithm.
18876 + ========================================================================
18878 +VOID AES_GTK_KEY_UNWRAP(
18880 + OUT UCHAR *plaintext,
18882 + IN UCHAR *ciphertext)
18885 + UCHAR A[8], BIN[16], BOUT[16];
18888 + aes_context aesctx;
18890 + INT num_blocks = c_len/8; // unit:64bits
18893 + os_alloc_mem(NULL, (PUCHAR *)&R, 512);
18897 + DBGPRINT(RT_DEBUG_ERROR, ("!!!AES_GTK_KEY_UNWRAP: no memory!!!\n"));
18899 + } /* End of if */
18902 + NdisMoveMemory(A, ciphertext, 8);
18903 + //Input plaintext
18904 + for(i = 0; i < (c_len-8); i++)
18906 + R[ i] = ciphertext[i + 8];
18909 + rtmp_aes_set_key(&aesctx, key, 128);
18911 + for(j = 5; j >= 0; j--)
18913 + for(i = (num_blocks-1); i > 0; i--)
18915 + xor = (num_blocks -1 )* j + i;
18916 + NdisMoveMemory(BIN, A, 8);
18917 + BIN[7] = A[7] ^ xor;
18918 + NdisMoveMemory(&BIN[8], &R[(i-1)*8], 8);
18919 + rtmp_aes_decrypt(&aesctx, BIN, BOUT);
18920 + NdisMoveMemory(A, &BOUT[0], 8);
18921 + NdisMoveMemory(&R[(i-1)*8], &BOUT[8], 8);
18926 + for(i = 0; i < c_len; i++)
18928 + plaintext[i] = R[i];
18932 + os_free_mem(NULL, R);
18936 + ==========================================================================
18938 + Report the EAP message type
18941 + msg - EAPOL_PAIR_MSG_1
18945 + EAPOL_GROUP_MSG_1
18946 + EAPOL_GROUP_MSG_2
18949 + message type string
18951 + ==========================================================================
18953 +CHAR *GetEapolMsgType(CHAR msg)
18955 + if(msg == EAPOL_PAIR_MSG_1)
18956 + return "Pairwise Message 1";
18957 + else if(msg == EAPOL_PAIR_MSG_2)
18958 + return "Pairwise Message 2";
18959 + else if(msg == EAPOL_PAIR_MSG_3)
18960 + return "Pairwise Message 3";
18961 + else if(msg == EAPOL_PAIR_MSG_4)
18962 + return "Pairwise Message 4";
18963 + else if(msg == EAPOL_GROUP_MSG_1)
18964 + return "Group Message 1";
18965 + else if(msg == EAPOL_GROUP_MSG_2)
18966 + return "Group Message 2";
18968 + return "Invalid Message";
18973 + ========================================================================
18975 + Routine Description:
18976 + Check Sanity RSN IE of EAPoL message
18983 + ========================================================================
18985 +BOOLEAN RTMPCheckRSNIE(
18986 + IN PRTMP_ADAPTER pAd,
18988 + IN UCHAR DataLen,
18989 + IN MAC_TABLE_ENTRY *pEntry,
18990 + OUT UCHAR *Offset)
18994 + PEID_STRUCT pEid;
18995 + BOOLEAN result = FALSE;
19001 + while (len > sizeof(RSNIE2))
19003 + pEid = (PEID_STRUCT) pVIE;
19005 + if ((pEid->Eid == IE_WPA) && (NdisEqualMemory(pEid->Octet, WPA_OUI, 4)))
19007 + if ((pEntry->AuthMode == Ndis802_11AuthModeWPA || pEntry->AuthMode == Ndis802_11AuthModeWPAPSK) &&
19008 + (NdisEqualMemory(pVIE, pEntry->RSN_IE, pEntry->RSNIE_Len)) &&
19009 + (pEntry->RSNIE_Len == (pEid->Len + 2)))
19014 + *Offset += (pEid->Len + 2);
19017 + else if ((pEid->Eid == IE_RSN) && (NdisEqualMemory(pEid->Octet + 2, RSN_OUI, 3)))
19019 + if ((pEntry->AuthMode == Ndis802_11AuthModeWPA2 || pEntry->AuthMode == Ndis802_11AuthModeWPA2PSK) &&
19020 + (NdisEqualMemory(pVIE, pEntry->RSN_IE, pEntry->RSNIE_Len)) &&
19021 + (pEntry->RSNIE_Len == (pEid->Len + 2))/* ToDo-AlbertY for mesh*/)
19026 + *Offset += (pEid->Len + 2);
19033 + pVIE += (pEid->Len + 2);
19034 + len -= (pEid->Len + 2);
19044 + ========================================================================
19046 + Routine Description:
19047 + Parse KEYDATA field. KEYDATA[] May contain 2 RSN IE and optionally GTK.
19048 + GTK is encaptulated in KDE format at p.83 802.11i D10
19057 + ========================================================================
19059 +BOOLEAN RTMPParseEapolKeyData(
19060 + IN PRTMP_ADAPTER pAd,
19061 + IN PUCHAR pKeyData,
19062 + IN UCHAR KeyDataLen,
19063 + IN UCHAR GroupKeyIndex,
19064 + IN UCHAR MsgType,
19065 + IN BOOLEAN bWPA2,
19066 + IN MAC_TABLE_ENTRY *pEntry)
19068 + PKDE_ENCAP pKDE = NULL;
19069 + PUCHAR pMyKeyData = pKeyData;
19070 + UCHAR KeyDataLength = KeyDataLen;
19071 + UCHAR GTKLEN = 0;
19072 + UCHAR DefaultIdx = 0;
19073 + UCHAR skip_offset;
19075 + // Verify The RSN IE contained in pairewise_msg_2 && pairewise_msg_3 and skip it
19076 + if (MsgType == EAPOL_PAIR_MSG_2 || MsgType == EAPOL_PAIR_MSG_3)
19078 + // Check RSN IE whether it is WPA2/WPA2PSK
19079 + if (!RTMPCheckRSNIE(pAd, pKeyData, KeyDataLen, pEntry, &skip_offset))
19081 + // send wireless event - for RSN IE different
19082 + if (pAd->CommonCfg.bWirelessEvent)
19083 + RTMPSendWirelessEvent(pAd, IW_RSNIE_DIFF_EVENT_FLAG, pEntry->Addr, pEntry->apidx, 0);
19085 + DBGPRINT(RT_DEBUG_ERROR, ("RSN_IE Different in msg %d of 4-way handshake!\n", MsgType));
19086 + hex_dump("Receive RSN_IE ", pKeyData, KeyDataLen);
19087 + hex_dump("Desired RSN_IE ", pEntry->RSN_IE, pEntry->RSNIE_Len);
19093 + if (bWPA2 && MsgType == EAPOL_PAIR_MSG_3)
19096 + pMyKeyData += skip_offset;
19097 + KeyDataLength -= skip_offset;
19098 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPParseEapolKeyData ==> WPA2/WPA2PSK RSN IE matched in Msg 3, Length(%d) \n", skip_offset));
19105 + DBGPRINT(RT_DEBUG_TRACE,("RTMPParseEapolKeyData ==> KeyDataLength %d without RSN_IE \n", KeyDataLength));
19107 + // Parse EKD format in pairwise_msg_3_WPA2 && group_msg_1_WPA2
19108 + if (bWPA2 && (MsgType == EAPOL_PAIR_MSG_3 || MsgType == EAPOL_GROUP_MSG_1))
19110 + if (KeyDataLength >= 8) // KDE format exclude GTK length
19112 + pKDE = (PKDE_ENCAP) pMyKeyData;
19115 + DefaultIdx = pKDE->GTKEncap.Kid;
19117 + // Sanity check - KED length
19118 + if (KeyDataLength < (pKDE->Len + 2))
19120 + DBGPRINT(RT_DEBUG_ERROR, ("ERROR: The len from KDE is too short \n"));
19124 + // Get GTK length - refer to IEEE 802.11i-2004 p.82
19125 + GTKLEN = pKDE->Len -6;
19126 + if (GTKLEN < LEN_AES_KEY)
19128 + DBGPRINT(RT_DEBUG_ERROR, ("ERROR: GTK Key length is too short (%d) \n", GTKLEN));
19135 + DBGPRINT(RT_DEBUG_ERROR, ("ERROR: KDE format length is too short \n"));
19139 + DBGPRINT(RT_DEBUG_TRACE, ("GTK in KDE format ,DefaultKeyID=%d, KeyLen=%d \n", DefaultIdx, GTKLEN));
19142 + KeyDataLength -= 8;
19145 + else if (!bWPA2 && MsgType == EAPOL_GROUP_MSG_1)
19147 + DefaultIdx = GroupKeyIndex;
19148 + DBGPRINT(RT_DEBUG_TRACE, ("GTK DefaultKeyID=%d \n", DefaultIdx));
19151 + // Sanity check - shared key index must be 1 ~ 3
19152 + if (DefaultIdx < 1 || DefaultIdx > 3)
19154 + DBGPRINT(RT_DEBUG_ERROR, ("ERROR: GTK Key index(%d) is invalid in %s %s \n", DefaultIdx, ((bWPA2) ? "WPA2" : "WPA"), GetEapolMsgType(MsgType)));
19159 +#ifdef CONFIG_STA_SUPPORT
19161 +#endif // CONFIG_STA_SUPPORT //
19169 + ========================================================================
19171 + Routine Description:
19172 + Construct EAPoL message for WPA handshaking
19173 + Its format is below,
19175 + +--------------------+
19176 + | Protocol Version | 1 octet
19177 + +--------------------+
19178 + | Protocol Type | 1 octet
19179 + +--------------------+
19180 + | Body Length | 2 octets
19181 + +--------------------+
19182 + | Descriptor Type | 1 octet
19183 + +--------------------+
19184 + | Key Information | 2 octets
19185 + +--------------------+
19186 + | Key Length | 1 octet
19187 + +--------------------+
19188 + | Key Repaly Counter | 8 octets
19189 + +--------------------+
19190 + | Key Nonce | 32 octets
19191 + +--------------------+
19192 + | Key IV | 16 octets
19193 + +--------------------+
19194 + | Key RSC | 8 octets
19195 + +--------------------+
19196 + | Key ID or Reserved | 8 octets
19197 + +--------------------+
19198 + | Key MIC | 16 octets
19199 + +--------------------+
19200 + | Key Data Length | 2 octets
19201 + +--------------------+
19202 + | Key Data | n octets
19203 + +--------------------+
19207 + pAd Pointer to our adapter
19214 + ========================================================================
19216 +VOID ConstructEapolMsg(
19217 + IN PRTMP_ADAPTER pAd,
19218 + IN UCHAR AuthMode,
19219 + IN UCHAR WepStatus,
19220 + IN UCHAR GroupKeyWepStatus,
19221 + IN UCHAR MsgType,
19222 + IN UCHAR DefaultKeyIdx,
19223 + IN UCHAR *ReplayCounter,
19224 + IN UCHAR *KeyNonce,
19229 + IN UCHAR RSNIE_Len,
19230 + OUT PEAPOL_PACKET pMsg)
19232 + BOOLEAN bWPA2 = FALSE;
19234 + // Choose WPA2 or not
19235 + if ((AuthMode == Ndis802_11AuthModeWPA2) || (AuthMode == Ndis802_11AuthModeWPA2PSK))
19238 + // Init Packet and Fill header
19239 + pMsg->ProVer = EAPOL_VER;
19240 + pMsg->ProType = EAPOLKey;
19242 + // Default 95 bytes, the EAPoL-Key descriptor exclude Key-data field
19243 + pMsg->Body_Len[1] = LEN_EAPOL_KEY_MSG;
19245 + // Fill in EAPoL descriptor
19247 + pMsg->KeyDesc.Type = WPA2_KEY_DESC;
19249 + pMsg->KeyDesc.Type = WPA1_KEY_DESC;
19251 + // Fill in Key information, refer to IEEE Std 802.11i-2004 page 78
19252 + // When either the pairwise or the group cipher is AES, the DESC_TYPE_AES(2) shall be used.
19253 + pMsg->KeyDesc.KeyInfo.KeyDescVer =
19254 + (((WepStatus == Ndis802_11Encryption3Enabled) || (GroupKeyWepStatus == Ndis802_11Encryption3Enabled)) ? (DESC_TYPE_AES) : (DESC_TYPE_TKIP));
19256 + // Specify Key Type as Group(0) or Pairwise(1)
19257 + if (MsgType >= EAPOL_GROUP_MSG_1)
19258 + pMsg->KeyDesc.KeyInfo.KeyType = GROUPKEY;
19260 + pMsg->KeyDesc.KeyInfo.KeyType = PAIRWISEKEY;
19262 + // Specify Key Index, only group_msg1_WPA1
19263 + if (!bWPA2 && (MsgType >= EAPOL_GROUP_MSG_1))
19264 + pMsg->KeyDesc.KeyInfo.KeyIndex = DefaultKeyIdx;
19266 + if (MsgType == EAPOL_PAIR_MSG_3)
19267 + pMsg->KeyDesc.KeyInfo.Install = 1;
19269 + if ((MsgType == EAPOL_PAIR_MSG_1) || (MsgType == EAPOL_PAIR_MSG_3) || (MsgType == EAPOL_GROUP_MSG_1))
19270 + pMsg->KeyDesc.KeyInfo.KeyAck = 1;
19272 + if (MsgType != EAPOL_PAIR_MSG_1)
19273 + pMsg->KeyDesc.KeyInfo.KeyMic = 1;
19275 + if ((bWPA2 && (MsgType >= EAPOL_PAIR_MSG_3)) || (!bWPA2 && (MsgType >= EAPOL_GROUP_MSG_1)))
19277 + pMsg->KeyDesc.KeyInfo.Secure = 1;
19280 + if (bWPA2 && ((MsgType == EAPOL_PAIR_MSG_3) || (MsgType == EAPOL_GROUP_MSG_1)))
19282 + pMsg->KeyDesc.KeyInfo.EKD_DL = 1;
19285 + // key Information element has done.
19286 + *(USHORT *)(&pMsg->KeyDesc.KeyInfo) = cpu2le16(*(USHORT *)(&pMsg->KeyDesc.KeyInfo));
19288 + // Fill in Key Length
19290 + if (MsgType >= EAPOL_GROUP_MSG_1)
19292 + // the length of group key cipher
19293 + pMsg->KeyDesc.KeyLength[1] = ((GroupKeyWepStatus == Ndis802_11Encryption2Enabled) ? TKIP_GTK_LENGTH : LEN_AES_KEY);
19297 + // the length of pairwise key cipher
19298 + pMsg->KeyDesc.KeyLength[1] = ((WepStatus == Ndis802_11Encryption2Enabled) ? LEN_TKIP_KEY : LEN_AES_KEY);
19302 + // Fill in replay counter
19303 + NdisMoveMemory(pMsg->KeyDesc.ReplayCounter, ReplayCounter, LEN_KEY_DESC_REPLAY);
19305 + // Fill Key Nonce field
19306 + // ANonce : pairwise_msg1 & pairwise_msg3
19307 + // SNonce : pairwise_msg2
19308 + // GNonce : group_msg1_wpa1
19309 + if ((MsgType <= EAPOL_PAIR_MSG_3) || ((!bWPA2 && (MsgType == EAPOL_GROUP_MSG_1))))
19310 + NdisMoveMemory(pMsg->KeyDesc.KeyNonce, KeyNonce, LEN_KEY_DESC_NONCE);
19312 + // Fill key IV - WPA2 as 0, WPA1 as random
19313 + if (!bWPA2 && (MsgType == EAPOL_GROUP_MSG_1))
19315 + // Suggest IV be random number plus some number,
19316 + NdisMoveMemory(pMsg->KeyDesc.KeyIv, &KeyNonce[16], LEN_KEY_DESC_IV);
19317 + pMsg->KeyDesc.KeyIv[15] += 2;
19320 + // Fill Key RSC field
19321 + // It contains the RSC for the GTK being installed.
19322 + if ((MsgType == EAPOL_PAIR_MSG_3 && bWPA2) || (MsgType == EAPOL_GROUP_MSG_1))
19324 + NdisMoveMemory(pMsg->KeyDesc.KeyRsc, TxRSC, 6);
19327 + // Clear Key MIC field for MIC calculation later
19328 + NdisZeroMemory(pMsg->KeyDesc.KeyMic, LEN_KEY_DESC_MIC);
19330 + ConstructEapolKeyData(pAd,
19333 + GroupKeyWepStatus,
19343 + // Calculate MIC and fill in KeyMic Field except Pairwise Msg 1.
19344 + if (MsgType != EAPOL_PAIR_MSG_1)
19346 + CalculateMIC(pAd, WepStatus, PTK, pMsg);
19349 + DBGPRINT(RT_DEBUG_TRACE, ("===> ConstructEapolMsg for %s %s\n", ((bWPA2) ? "WPA2" : "WPA"), GetEapolMsgType(MsgType)));
19350 + DBGPRINT(RT_DEBUG_TRACE, (" Body length = %d \n", pMsg->Body_Len[1]));
19351 + DBGPRINT(RT_DEBUG_TRACE, (" Key length = %d \n", pMsg->KeyDesc.KeyLength[1]));
19357 + ========================================================================
19359 + Routine Description:
19360 + Construct the Key Data field of EAPoL message
19363 + pAd Pointer to our adapter
19364 + Elem Message body
19371 + ========================================================================
19373 +VOID ConstructEapolKeyData(
19374 + IN PRTMP_ADAPTER pAd,
19375 + IN UCHAR AuthMode,
19376 + IN UCHAR WepStatus,
19377 + IN UCHAR GroupKeyWepStatus,
19378 + IN UCHAR MsgType,
19379 + IN UCHAR DefaultKeyIdx,
19380 + IN BOOLEAN bWPA2Capable,
19384 + IN UCHAR RSNIE_LEN,
19385 + OUT PEAPOL_PACKET pMsg)
19387 + UCHAR *mpool, *Key_Data, *Rc4GTK;
19388 + UCHAR ekey[(LEN_KEY_DESC_IV+LEN_EAP_EK)];
19389 + UCHAR data_offset;
19392 + if (MsgType == EAPOL_PAIR_MSG_1 || MsgType == EAPOL_PAIR_MSG_4 || MsgType == EAPOL_GROUP_MSG_2)
19395 + // allocate memory pool
19396 + os_alloc_mem(pAd, (PUCHAR *)&mpool, 1500);
19398 + if (mpool == NULL)
19401 + /* Rc4GTK Len = 512 */
19402 + Rc4GTK = (UCHAR *) ROUND_UP(mpool, 4);
19403 + /* Key_Data Len = 512 */
19404 + Key_Data = (UCHAR *) ROUND_UP(Rc4GTK + 512, 4);
19406 + NdisZeroMemory(Key_Data, 512);
19407 + pMsg->KeyDesc.KeyDataLen[1] = 0;
19410 + // Encapsulate RSNIE in pairwise_msg2 & pairwise_msg3
19411 + if (RSNIE_LEN && ((MsgType == EAPOL_PAIR_MSG_2) || (MsgType == EAPOL_PAIR_MSG_3)))
19413 + if (bWPA2Capable)
19414 + Key_Data[data_offset + 0] = IE_WPA2;
19416 + Key_Data[data_offset + 0] = IE_WPA;
19418 + Key_Data[data_offset + 1] = RSNIE_LEN;
19419 + NdisMoveMemory(&Key_Data[data_offset + 2], RSNIE, RSNIE_LEN);
19420 + data_offset += (2 + RSNIE_LEN);
19423 + // Encapsulate KDE format in pairwise_msg3_WPA2 & group_msg1_WPA2
19424 + if (bWPA2Capable && ((MsgType == EAPOL_PAIR_MSG_3) || (MsgType == EAPOL_GROUP_MSG_1)))
19426 + // Key Data Encapsulation (KDE) format - 802.11i-2004 Figure-43w and Table-20h
19427 + Key_Data[data_offset + 0] = 0xDD;
19429 + if (GroupKeyWepStatus == Ndis802_11Encryption3Enabled)
19431 + Key_Data[data_offset + 1] = 0x16;// 4+2+16(OUI+DataType+DataField)
19435 + Key_Data[data_offset + 1] = 0x26;// 4+2+32(OUI+DataType+DataField)
19438 + Key_Data[data_offset + 2] = 0x00;
19439 + Key_Data[data_offset + 3] = 0x0F;
19440 + Key_Data[data_offset + 4] = 0xAC;
19441 + Key_Data[data_offset + 5] = 0x01;
19443 + // GTK KDE format - 802.11i-2004 Figure-43x
19444 + Key_Data[data_offset + 6] = (DefaultKeyIdx & 0x03);
19445 + Key_Data[data_offset + 7] = 0x00; // Reserved Byte
19447 + data_offset += 8;
19451 + // Encapsulate GTK and encrypt the key-data field with KEK.
19452 + // Only for pairwise_msg3_WPA2 and group_msg1
19453 + if ((MsgType == EAPOL_PAIR_MSG_3 && bWPA2Capable) || (MsgType == EAPOL_GROUP_MSG_1))
19456 + if (GroupKeyWepStatus == Ndis802_11Encryption3Enabled)
19458 + NdisMoveMemory(&Key_Data[data_offset], GTK, LEN_AES_KEY);
19459 + data_offset += LEN_AES_KEY;
19463 + NdisMoveMemory(&Key_Data[data_offset], GTK, TKIP_GTK_LENGTH);
19464 + data_offset += TKIP_GTK_LENGTH;
19467 + // Still dont know why, but if not append will occur "GTK not include in MSG3"
19468 + // Patch for compatibility between zero config and funk
19469 + if (MsgType == EAPOL_PAIR_MSG_3 && bWPA2Capable)
19471 + if (GroupKeyWepStatus == Ndis802_11Encryption3Enabled)
19473 + Key_Data[data_offset + 0] = 0xDD;
19474 + Key_Data[data_offset + 1] = 0;
19475 + data_offset += 2;
19479 + Key_Data[data_offset + 0] = 0xDD;
19480 + Key_Data[data_offset + 1] = 0;
19481 + Key_Data[data_offset + 2] = 0;
19482 + Key_Data[data_offset + 3] = 0;
19483 + Key_Data[data_offset + 4] = 0;
19484 + Key_Data[data_offset + 5] = 0;
19485 + data_offset += 6;
19489 + // Encrypt the data material in key data field
19490 + if (WepStatus == Ndis802_11Encryption3Enabled)
19492 + AES_GTK_KEY_WRAP(&PTK[16], Key_Data, data_offset, Rc4GTK);
19493 + // AES wrap function will grow 8 bytes in length
19494 + data_offset += 8;
19498 + // PREPARE Encrypted "Key DATA" field. (Encrypt GTK with RC4, usinf PTK[16]->[31] as Key, IV-field as IV)
19499 + // put TxTsc in Key RSC field
19500 + pAd->PrivateInfo.FCSCRC32 = PPPINITFCS32; //Init crc32.
19502 + // ekey is the contanetion of IV-field, and PTK[16]->PTK[31]
19503 + NdisMoveMemory(ekey, pMsg->KeyDesc.KeyIv, LEN_KEY_DESC_IV);
19504 + NdisMoveMemory(&ekey[LEN_KEY_DESC_IV], &PTK[16], LEN_EAP_EK);
19505 + ARCFOUR_INIT(&pAd->PrivateInfo.WEPCONTEXT, ekey, sizeof(ekey)); //INIT SBOX, KEYLEN+3(IV)
19506 + pAd->PrivateInfo.FCSCRC32 = RTMP_CALC_FCS32(pAd->PrivateInfo.FCSCRC32, Key_Data, data_offset);
19507 + WPAARCFOUR_ENCRYPT(&pAd->PrivateInfo.WEPCONTEXT, Rc4GTK, Key_Data, data_offset);
19510 + NdisMoveMemory(pMsg->KeyDesc.KeyData, Rc4GTK, data_offset);
19514 + NdisMoveMemory(pMsg->KeyDesc.KeyData, Key_Data, data_offset);
19517 + // set key data length field and total length
19518 + pMsg->KeyDesc.KeyDataLen[1] = data_offset;
19519 + pMsg->Body_Len[1] += data_offset;
19521 + os_free_mem(pAd, mpool);
19526 + ========================================================================
19528 + Routine Description:
19529 + Calcaulate MIC. It is used during 4-ways handsharking.
19532 + pAd - pointer to our pAdapter context
19533 + PeerWepStatus - indicate the encryption type
19539 + ========================================================================
19541 +VOID CalculateMIC(
19542 + IN PRTMP_ADAPTER pAd,
19543 + IN UCHAR PeerWepStatus,
19545 + OUT PEAPOL_PACKET pMsg)
19547 + UCHAR *OutBuffer;
19548 + ULONG FrameLen = 0;
19549 + UCHAR mic[LEN_KEY_DESC_MIC];
19550 + UCHAR digest[80];
19552 + // allocate memory for MIC calculation
19553 + os_alloc_mem(pAd, (PUCHAR *)&OutBuffer, 512);
19555 + if (OutBuffer == NULL)
19557 + DBGPRINT(RT_DEBUG_ERROR, ("!!!CalculateMIC: no memory!!!\n"));
19561 + // make a frame for calculating MIC.
19562 + MakeOutgoingFrame(OutBuffer, &FrameLen,
19563 + pMsg->Body_Len[1] + 4, pMsg,
19566 + NdisZeroMemory(mic, sizeof(mic));
19569 + if (PeerWepStatus == Ndis802_11Encryption3Enabled)
19571 + HMAC_SHA1(OutBuffer, FrameLen, PTK, LEN_EAP_MICK, digest);
19572 + NdisMoveMemory(mic, digest, LEN_KEY_DESC_MIC);
19576 + hmac_md5(PTK, LEN_EAP_MICK, OutBuffer, FrameLen, mic);
19579 + // store the calculated MIC
19580 + NdisMoveMemory(pMsg->KeyDesc.KeyMic, mic, LEN_KEY_DESC_MIC);
19582 + os_free_mem(pAd, OutBuffer);
19586 + ========================================================================
19588 + Routine Description:
19589 + Some received frames can't decrypt by Asic, so decrypt them by software.
19592 + pAd - pointer to our pAdapter context
19593 + PeerWepStatus - indicate the encryption type
19596 + NDIS_STATUS_SUCCESS - decryption successful
19597 + NDIS_STATUS_FAILURE - decryption failure
19599 + ========================================================================
19601 +NDIS_STATUS RTMPSoftDecryptBroadCastData(
19602 + IN PRTMP_ADAPTER pAd,
19603 + IN RX_BLK *pRxBlk,
19604 + IN NDIS_802_11_ENCRYPTION_STATUS GroupCipher,
19605 + IN PCIPHER_KEY pShard_key)
19607 + PRXWI_STRUC pRxWI = pRxBlk->pRxWI;
19611 + // handle WEP decryption
19612 + if (GroupCipher == Ndis802_11Encryption1Enabled)
19614 + if (RTMPSoftDecryptWEP(pAd, pRxBlk->pData, pRxWI->MPDUtotalByteCount, pShard_key))
19617 + //Minus IV[4] & ICV[4]
19618 + pRxWI->MPDUtotalByteCount -= 8;
19622 + DBGPRINT(RT_DEBUG_ERROR, ("ERROR : Software decrypt WEP data fails.\n"));
19623 + // give up this frame
19624 + return NDIS_STATUS_FAILURE;
19627 + // handle TKIP decryption
19628 + else if (GroupCipher == Ndis802_11Encryption2Enabled)
19630 + if (RTMPSoftDecryptTKIP(pAd, pRxBlk->pData, pRxWI->MPDUtotalByteCount, 0, pShard_key))
19633 + //Minus 8 bytes MIC, 8 bytes IV/EIV, 4 bytes ICV
19634 + pRxWI->MPDUtotalByteCount -= 20;
19638 + DBGPRINT(RT_DEBUG_ERROR, ("ERROR : RTMPSoftDecryptTKIP Failed\n"));
19639 + // give up this frame
19640 + return NDIS_STATUS_FAILURE;
19643 + // handle AES decryption
19644 + else if (GroupCipher == Ndis802_11Encryption3Enabled)
19646 + if (RTMPSoftDecryptAES(pAd, pRxBlk->pData, pRxWI->MPDUtotalByteCount , pShard_key))
19649 + //8 bytes MIC, 8 bytes IV/EIV (CCMP Header)
19650 + pRxWI->MPDUtotalByteCount -= 16;
19654 + DBGPRINT(RT_DEBUG_ERROR, ("ERROR : RTMPSoftDecryptAES Failed\n"));
19655 + // give up this frame
19656 + return NDIS_STATUS_FAILURE;
19661 + // give up this frame
19662 + return NDIS_STATUS_FAILURE;
19665 + return NDIS_STATUS_SUCCESS;
19670 +++ b/drivers/staging/rt3070/common/dfs.c
19673 + *************************************************************************
19674 + * Ralink Tech Inc.
19675 + * 5F., No.36, Taiyuan St., Jhubei City,
19676 + * Hsinchu County 302,
19679 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
19681 + * This program is free software; you can redistribute it and/or modify *
19682 + * it under the terms of the GNU General Public License as published by *
19683 + * the Free Software Foundation; either version 2 of the License, or *
19684 + * (at your option) any later version. *
19686 + * This program is distributed in the hope that it will be useful, *
19687 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
19688 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
19689 + * GNU General Public License for more details. *
19691 + * You should have received a copy of the GNU General Public License *
19692 + * along with this program; if not, write to the *
19693 + * Free Software Foundation, Inc., *
19694 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
19696 + *************************************************************************
19702 + Support DFS function.
19704 + Revision History:
19706 + -------- ---------- ----------------------------------------------
19707 + Fonchi 03-12-2007 created
19710 +#include "../rt_config.h"
19712 +typedef struct _RADAR_DURATION_TABLE
19714 + ULONG RDDurRegion;
19715 + ULONG RadarSignalDuration;
19717 +} RADAR_DURATION_TABLE, *PRADAR_DURATION_TABLE;
19720 +static UCHAR RdIdleTimeTable[MAX_RD_REGION][4] =
19722 + {9, 250, 250, 250}, // CE
19723 + {4, 250, 250, 250}, // FCC
19724 + {4, 250, 250, 250}, // JAP
19725 + {15, 250, 250, 250}, // JAP_W53
19726 + {4, 250, 250, 250} // JAP_W56
19730 + ========================================================================
19732 + Routine Description:
19733 + Bbp Radar detection routine
19736 + pAd Pointer to our adapter
19740 + ========================================================================
19742 +VOID BbpRadarDetectionStart(
19743 + IN PRTMP_ADAPTER pAd)
19745 + UINT8 RadarPeriod;
19747 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, 114, 0x02);
19748 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, 121, 0x20);
19749 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, 122, 0x00);
19750 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, 123, 0x08/*0x80*/);
19751 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, 124, 0x28);
19752 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, 125, 0xff);
19754 + RadarPeriod = ((UINT)RdIdleTimeTable[pAd->CommonCfg.RadarDetect.RDDurRegion][0] + (UINT)pAd->CommonCfg.RadarDetect.DfsSessionTime) < 250 ?
19755 + (RdIdleTimeTable[pAd->CommonCfg.RadarDetect.RDDurRegion][0] + pAd->CommonCfg.RadarDetect.DfsSessionTime) : 250;
19757 + RTMP_IO_WRITE8(pAd, 0x7020, 0x1d);
19758 + RTMP_IO_WRITE8(pAd, 0x7021, 0x40);
19760 + RadarDetectionStart(pAd, 0, RadarPeriod);
19765 + ========================================================================
19767 + Routine Description:
19768 + Bbp Radar detection routine
19771 + pAd Pointer to our adapter
19775 + ========================================================================
19777 +VOID BbpRadarDetectionStop(
19778 + IN PRTMP_ADAPTER pAd)
19780 + RTMP_IO_WRITE8(pAd, 0x7020, 0x1d);
19781 + RTMP_IO_WRITE8(pAd, 0x7021, 0x60);
19783 + RadarDetectionStop(pAd);
19788 + ========================================================================
19790 + Routine Description:
19791 + Radar detection routine
19794 + pAd Pointer to our adapter
19798 + ========================================================================
19800 +VOID RadarDetectionStart(
19801 + IN PRTMP_ADAPTER pAd,
19802 + IN BOOLEAN CTSProtect,
19803 + IN UINT8 CTSPeriod)
19805 + UINT8 DfsActiveTime = (pAd->CommonCfg.RadarDetect.DfsSessionTime & 0x1f);
19806 + UINT8 CtsProtect = (CTSProtect == 1) ? 0x02 : 0x01; // CTS protect.
19808 + if (CTSProtect != 0)
19810 + switch(pAd->CommonCfg.RadarDetect.RDDurRegion)
19814 + CtsProtect = 0x03;
19820 + CtsProtect = 0x02;
19825 + CtsProtect = 0x01;
19828 + // send start-RD with CTS protection command to MCU
19829 + // highbyte [7] reserve
19830 + // highbyte [6:5] 0x: stop Carrier/Radar detection
19831 + // highbyte [10]: Start Carrier/Radar detection without CTS protection, 11: Start Carrier/Radar detection with CTS protection
19832 + // highbyte [4:0] Radar/carrier detection duration. In 1ms.
19834 + // lowbyte [7:0] Radar/carrier detection period, in 1ms.
19835 + AsicSendCommandToMcu(pAd, 0x60, 0xff, CTSPeriod, DfsActiveTime | (CtsProtect << 5));
19836 + //AsicSendCommandToMcu(pAd, 0x63, 0xff, 10, 0);
19842 + ========================================================================
19844 + Routine Description:
19845 + Radar detection routine
19848 + pAd Pointer to our adapter
19851 + TRUE Found radar signal
19852 + FALSE Not found radar signal
19854 + ========================================================================
19856 +VOID RadarDetectionStop(
19857 + IN PRTMP_ADAPTER pAd)
19859 + DBGPRINT(RT_DEBUG_TRACE,("RadarDetectionStop.\n"));
19860 + AsicSendCommandToMcu(pAd, 0x60, 0xff, 0x00, 0x00); // send start-RD with CTS protection command to MCU
19866 + ========================================================================
19868 + Routine Description:
19869 + Radar channel check routine
19872 + pAd Pointer to our adapter
19875 + TRUE need to do radar detect
19876 + FALSE need not to do radar detect
19878 + ========================================================================
19880 +BOOLEAN RadarChannelCheck(
19881 + IN PRTMP_ADAPTER pAd,
19886 + BOOLEAN result = FALSE;
19888 + for (i=0; i<pAd->ChannelListNum; i++)
19890 + if (Ch == pAd->ChannelList[i].Channel)
19892 + result = pAd->ChannelList[i].DfsReq;
19900 + UCHAR Channel[15]={52, 56, 60, 64, 100, 104, 108, 112, 116, 120, 124, 128, 132, 136, 140};
19902 + for (i=0; i<15; i++)
19904 + if (Ch == Channel[i])
19917 +ULONG JapRadarType(
19918 + IN PRTMP_ADAPTER pAd)
19921 + const UCHAR Channel[15]={52, 56, 60, 64, 100, 104, 108, 112, 116, 120, 124, 128, 132, 136, 140};
19923 + if (pAd->CommonCfg.RadarDetect.RDDurRegion != JAP)
19925 + return pAd->CommonCfg.RadarDetect.RDDurRegion;
19928 + for (i=0; i<15; i++)
19930 + if (pAd->CommonCfg.Channel == Channel[i])
19941 + return JAP; // W52
19945 +ULONG RTMPBbpReadRadarDuration(
19946 + IN PRTMP_ADAPTER pAd)
19948 + UINT8 byteValue = 0;
19951 + BBP_IO_READ8_BY_REG_ID(pAd, BBP_R115, &byteValue);
19954 + switch (byteValue)
19956 + case 1: // radar signal detected by pulse mode.
19957 + case 2: // radar signal detected by width mode.
19958 + result = RTMPReadRadarDuration(pAd);
19961 + case 0: // No radar signal.
19971 +ULONG RTMPReadRadarDuration(
19972 + IN PRTMP_ADAPTER pAd)
19974 + ULONG result = 0;
19976 +#ifdef DFS_SUPPORT
19977 + UINT8 duration1 = 0, duration2 = 0, duration3 = 0;
19979 + BBP_IO_READ8_BY_REG_ID(pAd, BBP_R116, &duration1);
19980 + BBP_IO_READ8_BY_REG_ID(pAd, BBP_R117, &duration2);
19981 + BBP_IO_READ8_BY_REG_ID(pAd, BBP_R118, &duration3);
19982 + result = (duration1 << 16) + (duration2 << 8) + duration3;
19983 +#endif // DFS_SUPPORT //
19989 +VOID RTMPCleanRadarDuration(
19990 + IN PRTMP_ADAPTER pAd)
19996 + ========================================================================
19997 + Routine Description:
19998 + Radar wave detection. The API should be invoke each second.
20001 + pAd - Adapter pointer
20006 + ========================================================================
20008 +VOID ApRadarDetectPeriodic(
20009 + IN PRTMP_ADAPTER pAd)
20013 + pAd->CommonCfg.RadarDetect.InServiceMonitorCount++;
20015 + for (i=0; i<pAd->ChannelListNum; i++)
20017 + if (pAd->ChannelList[i].RemainingTimeForUse > 0)
20019 + pAd->ChannelList[i].RemainingTimeForUse --;
20020 + if ((pAd->Mlme.PeriodicRound%5) == 0)
20022 + DBGPRINT(RT_DEBUG_TRACE, ("RadarDetectPeriodic - ch=%d, RemainingTimeForUse=%d\n", pAd->ChannelList[i].Channel, pAd->ChannelList[i].RemainingTimeForUse));
20028 + if ((pAd->CommonCfg.Channel > 14)
20029 + && (pAd->CommonCfg.bIEEE80211H == 1)
20030 + && RadarChannelCheck(pAd, pAd->CommonCfg.Channel))
20032 + RadarDetectPeriodic(pAd);
20038 +// Periodic Radar detection, switch channel will occur in RTMPHandleTBTTInterrupt()
20039 +// Before switch channel, driver needs doing channel switch announcement.
20040 +VOID RadarDetectPeriodic(
20041 + IN PRTMP_ADAPTER pAd)
20043 + // need to check channel availability, after switch channel
20044 + if (pAd->CommonCfg.RadarDetect.RDMode != RD_SILENCE_MODE)
20047 + // channel availability check time is 60sec, use 65 for assurance
20048 + if (pAd->CommonCfg.RadarDetect.RDCount++ > pAd->CommonCfg.RadarDetect.ChMovingTime)
20050 + DBGPRINT(RT_DEBUG_TRACE, ("Not found radar signal, start send beacon and radar detection in service monitor\n\n"));
20051 + BbpRadarDetectionStop(pAd);
20052 + AsicEnableBssSync(pAd);
20053 + pAd->CommonCfg.RadarDetect.RDMode = RD_NORMAL_MODE;
20064 + ==========================================================================
20066 + change channel moving time for DFS testing.
20069 + pAdapter Pointer to our adapter
20070 + wrq Pointer to the ioctl argument
20077 + 1.) iwpriv ra0 set ChMovTime=[value]
20078 + ==========================================================================
20080 +INT Set_ChMovingTime_Proc(
20081 + IN PRTMP_ADAPTER pAd,
20086 + Value = simple_strtol(arg, 0, 10);
20088 + pAd->CommonCfg.RadarDetect.ChMovingTime = Value;
20090 + DBGPRINT(RT_DEBUG_TRACE, ("%s:: %d\n", __FUNCTION__,
20091 + pAd->CommonCfg.RadarDetect.ChMovingTime));
20096 +INT Set_LongPulseRadarTh_Proc(
20097 + IN PRTMP_ADAPTER pAd,
20102 + Value = simple_strtol(arg, 0, 10) > 10 ? 10 : simple_strtol(arg, 0, 10);
20104 + pAd->CommonCfg.RadarDetect.LongPulseRadarTh = Value;
20106 + DBGPRINT(RT_DEBUG_TRACE, ("%s:: %d\n", __FUNCTION__,
20107 + pAd->CommonCfg.RadarDetect.LongPulseRadarTh));
20114 +++ b/drivers/staging/rt3070/common/eeprom.c
20117 + *************************************************************************
20118 + * Ralink Tech Inc.
20119 + * 5F., No.36, Taiyuan St., Jhubei City,
20120 + * Hsinchu County 302,
20123 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
20125 + * This program is free software; you can redistribute it and/or modify *
20126 + * it under the terms of the GNU General Public License as published by *
20127 + * the Free Software Foundation; either version 2 of the License, or *
20128 + * (at your option) any later version. *
20130 + * This program is distributed in the hope that it will be useful, *
20131 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
20132 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
20133 + * GNU General Public License for more details. *
20135 + * You should have received a copy of the GNU General Public License *
20136 + * along with this program; if not, write to the *
20137 + * Free Software Foundation, Inc., *
20138 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
20140 + *************************************************************************
20147 + Revision History:
20149 + -------- ---------- ----------------------------------------------
20150 + Name Date Modification logs
20152 +#include "../rt_config.h"
20154 +// IRQL = PASSIVE_LEVEL
20156 + IN PRTMP_ADAPTER pAd,
20160 + RTMP_IO_WRITE32(pAd, E2PROM_CSR, *x);
20161 + RTMPusecDelay(1); // Max frequency = 1MHz in Spec. definition
20164 +// IRQL = PASSIVE_LEVEL
20166 + IN PRTMP_ADAPTER pAd,
20170 + RTMP_IO_WRITE32(pAd, E2PROM_CSR, *x);
20171 + RTMPusecDelay(1);
20174 +// IRQL = PASSIVE_LEVEL
20175 +USHORT ShiftInBits(
20176 + IN PRTMP_ADAPTER pAd)
20181 + RTMP_IO_READ32(pAd, E2PROM_CSR, &x);
20183 + x &= ~( EEDO | EEDI);
20185 + for(i=0; i<16; i++)
20187 + data = data << 1;
20188 + RaiseClock(pAd, &x);
20190 + RTMP_IO_READ32(pAd, E2PROM_CSR, &x);
20191 + LowerClock(pAd, &x); //prevent read failed
20201 +// IRQL = PASSIVE_LEVEL
20202 +VOID ShiftOutBits(
20203 + IN PRTMP_ADAPTER pAd,
20209 + mask = 0x01 << (count - 1);
20210 + RTMP_IO_READ32(pAd, E2PROM_CSR, &x);
20212 + x &= ~(EEDO | EEDI);
20217 + if(data & mask) x |= EEDI;
20219 + RTMP_IO_WRITE32(pAd, E2PROM_CSR, x);
20221 + RaiseClock(pAd, &x);
20222 + LowerClock(pAd, &x);
20224 + mask = mask >> 1;
20228 + RTMP_IO_WRITE32(pAd, E2PROM_CSR, x);
20231 +// IRQL = PASSIVE_LEVEL
20232 +VOID EEpromCleanup(
20233 + IN PRTMP_ADAPTER pAd)
20237 + RTMP_IO_READ32(pAd, E2PROM_CSR, &x);
20239 + x &= ~(EECS | EEDI);
20240 + RTMP_IO_WRITE32(pAd, E2PROM_CSR, x);
20242 + RaiseClock(pAd, &x);
20243 + LowerClock(pAd, &x);
20247 + IN PRTMP_ADAPTER pAd)
20251 + // reset bits and set EECS
20252 + RTMP_IO_READ32(pAd, E2PROM_CSR, &x);
20253 + x &= ~(EEDI | EEDO | EESK);
20255 + RTMP_IO_WRITE32(pAd, E2PROM_CSR, x);
20258 + RaiseClock(pAd, &x);
20259 + LowerClock(pAd, &x);
20261 + // output the read_opcode and six pulse in that order
20262 + ShiftOutBits(pAd, EEPROM_EWEN_OPCODE, 5);
20263 + ShiftOutBits(pAd, 0, 6);
20265 + EEpromCleanup(pAd);
20269 + IN PRTMP_ADAPTER pAd)
20273 + // reset bits and set EECS
20274 + RTMP_IO_READ32(pAd, E2PROM_CSR, &x);
20275 + x &= ~(EEDI | EEDO | EESK);
20277 + RTMP_IO_WRITE32(pAd, E2PROM_CSR, x);
20280 + RaiseClock(pAd, &x);
20281 + LowerClock(pAd, &x);
20283 + // output the read_opcode and six pulse in that order
20284 + ShiftOutBits(pAd, EEPROM_EWDS_OPCODE, 5);
20285 + ShiftOutBits(pAd, 0, 6);
20287 + EEpromCleanup(pAd);
20290 +// IRQL = PASSIVE_LEVEL
20291 +USHORT RTMP_EEPROM_READ16(
20292 + IN PRTMP_ADAPTER pAd,
20293 + IN USHORT Offset)
20298 + if (pAd->NicConfig2.field.AntDiversity)
20300 + pAd->EepromAccess = TRUE;
20302 +//2008/09/11:KH add to support efuse<--
20303 +//2008/09/11:KH add to support efuse-->
20306 + // reset bits and set EECS
20307 + RTMP_IO_READ32(pAd, E2PROM_CSR, &x);
20308 + x &= ~(EEDI | EEDO | EESK);
20310 + RTMP_IO_WRITE32(pAd, E2PROM_CSR, x);
20312 + // patch can not access e-Fuse issue
20313 + if (!IS_RT3090(pAd))
20316 + RaiseClock(pAd, &x);
20317 + LowerClock(pAd, &x);
20320 + // output the read_opcode and register number in that order
20321 + ShiftOutBits(pAd, EEPROM_READ_OPCODE, 3);
20322 + ShiftOutBits(pAd, Offset, pAd->EEPROMAddressNum);
20324 + // Now read the data (16 bits) in from the selected EEPROM word
20325 + data = ShiftInBits(pAd);
20327 + EEpromCleanup(pAd);
20329 + // Antenna and EEPROM access are both using EESK pin,
20330 + // Therefor we should avoid accessing EESK at the same time
20331 + // Then restore antenna after EEPROM access
20332 + if ((pAd->NicConfig2.field.AntDiversity) || (pAd->RfIcType == RFIC_3020))
20334 + pAd->EepromAccess = FALSE;
20335 + AsicSetRxAnt(pAd, pAd->RxAnt.Pair1PrimaryRxAnt);
20341 +VOID RTMP_EEPROM_WRITE16(
20342 + IN PRTMP_ADAPTER pAd,
20343 + IN USHORT Offset,
20348 + if (pAd->NicConfig2.field.AntDiversity)
20350 + pAd->EepromAccess = TRUE;
20352 + //2008/09/11:KH add to support efuse<--
20353 +//2008/09/11:KH add to support efuse-->
20359 + // reset bits and set EECS
20360 + RTMP_IO_READ32(pAd, E2PROM_CSR, &x);
20361 + x &= ~(EEDI | EEDO | EESK);
20363 + RTMP_IO_WRITE32(pAd, E2PROM_CSR, x);
20365 + // patch can not access e-Fuse issue
20366 + if (!IS_RT3090(pAd))
20369 + RaiseClock(pAd, &x);
20370 + LowerClock(pAd, &x);
20373 + // output the read_opcode ,register number and data in that order
20374 + ShiftOutBits(pAd, EEPROM_WRITE_OPCODE, 3);
20375 + ShiftOutBits(pAd, Offset, pAd->EEPROMAddressNum);
20376 + ShiftOutBits(pAd, Data, 16); // 16-bit access
20378 + // read DO status
20379 + RTMP_IO_READ32(pAd, E2PROM_CSR, &x);
20381 + EEpromCleanup(pAd);
20383 + RTMPusecDelay(10000); //delay for twp(MAX)=10ms
20387 + EEpromCleanup(pAd);
20389 + // Antenna and EEPROM access are both using EESK pin,
20390 + // Therefor we should avoid accessing EESK at the same time
20391 + // Then restore antenna after EEPROM access
20392 + if ((pAd->NicConfig2.field.AntDiversity) || (pAd->RfIcType == RFIC_3020))
20394 + pAd->EepromAccess = FALSE;
20395 + AsicSetRxAnt(pAd, pAd->RxAnt.Pair1PrimaryRxAnt);
20400 +//2008/09/11:KH add to support efuse<--
20403 + ========================================================================
20405 + Routine Description:
20415 + ========================================================================
20417 +UCHAR eFuseReadRegisters(
20418 + IN PRTMP_ADAPTER pAd,
20419 + IN USHORT Offset,
20420 + IN USHORT Length,
20421 + OUT USHORT* pData)
20423 + EFUSE_CTRL_STRUC eFuseCtrlStruc;
20425 + USHORT efuseDataOffset;
20428 + RTMP_IO_READ32(pAd, EFUSE_CTRL, (PUINT32) &eFuseCtrlStruc);
20430 + //Step0. Write 10-bit of address to EFSROM_AIN (0x580, bit25:bit16). The address must be 16-byte alignment.
20431 + //Use the eeprom logical address and covert to address to block number
20432 + eFuseCtrlStruc.field.EFSROM_AIN = Offset & 0xfff0;
20434 + //Step1. Write EFSROM_MODE (0x580, bit7:bit6) to 0.
20435 + eFuseCtrlStruc.field.EFSROM_MODE = 0;
20437 + //Step2. Write EFSROM_KICK (0x580, bit30) to 1 to kick-off physical read procedure.
20438 + eFuseCtrlStruc.field.EFSROM_KICK = 1;
20440 + NdisMoveMemory(&data, &eFuseCtrlStruc, 4);
20441 + RTMP_IO_WRITE32(pAd, EFUSE_CTRL, data);
20443 + //Step3. Polling EFSROM_KICK(0x580, bit30) until it become 0 again.
20447 + //rtmp.HwMemoryReadDword(EFUSE_CTRL, (DWORD *) &eFuseCtrlStruc, 4);
20448 + RTMP_IO_READ32(pAd, EFUSE_CTRL, (PUINT32) &eFuseCtrlStruc);
20449 + if(eFuseCtrlStruc.field.EFSROM_KICK == 0)
20453 + RTMPusecDelay(2);
20457 + //if EFSROM_AOUT is not found in physical address, write 0xffff
20458 + if (eFuseCtrlStruc.field.EFSROM_AOUT == 0x3f)
20460 + for(i=0; i<Length/2; i++)
20461 + *(pData+2*i) = 0xffff;
20465 + //Step4. Read 16-byte of data from EFUSE_DATA0-3 (0x590-0x59C)
20466 + efuseDataOffset = EFUSE_DATA3 - (Offset & 0xC) ;
20467 + //data hold 4 bytes data.
20468 + //In RTMP_IO_READ32 will automatically execute 32-bytes swapping
20469 + RTMP_IO_READ32(pAd, efuseDataOffset, &data);
20470 + //Decide the upper 2 bytes or the bottom 2 bytes.
20471 + // Little-endian S | S Big-endian
20472 + // addr 3 2 1 0 | 0 1 2 3
20473 + // Ori-V D C B A | A B C D
20475 + // D C B A | D C B A
20477 + //The return byte statrs from S. Therefore, the little-endian will return BA, the Big-endian will return DC.
20478 + //For returning the bottom 2 bytes, the Big-endian should shift right 2-bytes.
20479 +#ifdef RT_BIG_ENDIAN
20480 + data = data << (8*((Offset & 0x3)^0x2));
20482 + data = data >> (8*(Offset & 0x3));
20485 + NdisMoveMemory(pData, &data, Length);
20488 + return (UCHAR) eFuseCtrlStruc.field.EFSROM_AOUT;
20493 + ========================================================================
20495 + Routine Description:
20505 + ========================================================================
20507 +VOID eFusePhysicalReadRegisters(
20508 + IN PRTMP_ADAPTER pAd,
20509 + IN USHORT Offset,
20510 + IN USHORT Length,
20511 + OUT USHORT* pData)
20513 + EFUSE_CTRL_STRUC eFuseCtrlStruc;
20515 + USHORT efuseDataOffset;
20518 + RTMP_IO_READ32(pAd, EFUSE_CTRL, (PUINT32) &eFuseCtrlStruc);
20520 + //Step0. Write 10-bit of address to EFSROM_AIN (0x580, bit25:bit16). The address must be 16-byte alignment.
20521 + eFuseCtrlStruc.field.EFSROM_AIN = Offset & 0xfff0;
20523 + //Step1. Write EFSROM_MODE (0x580, bit7:bit6) to 1.
20524 + //Read in physical view
20525 + eFuseCtrlStruc.field.EFSROM_MODE = 1;
20527 + //Step2. Write EFSROM_KICK (0x580, bit30) to 1 to kick-off physical read procedure.
20528 + eFuseCtrlStruc.field.EFSROM_KICK = 1;
20530 + NdisMoveMemory(&data, &eFuseCtrlStruc, 4);
20531 + RTMP_IO_WRITE32(pAd, EFUSE_CTRL, data);
20533 + //Step3. Polling EFSROM_KICK(0x580, bit30) until it become 0 again.
20537 + RTMP_IO_READ32(pAd, EFUSE_CTRL, (PUINT32) &eFuseCtrlStruc);
20538 + if(eFuseCtrlStruc.field.EFSROM_KICK == 0)
20540 + RTMPusecDelay(2);
20544 + //Step4. Read 16-byte of data from EFUSE_DATA0-3 (0x59C-0x590)
20545 + //Because the size of each EFUSE_DATA is 4 Bytes, the size of address of each is 2 bits.
20546 + //The previous 2 bits is the EFUSE_DATA number, the last 2 bits is used to decide which bytes
20547 + //Decide which EFUSE_DATA to read
20552 + efuseDataOffset = EFUSE_DATA3 - (Offset & 0xC) ;
20554 + RTMP_IO_READ32(pAd, efuseDataOffset, &data);
20556 +#ifdef RT_BIG_ENDIAN
20557 + data = data << (8*((Offset & 0x3)^0x2));
20559 + data = data >> (8*(Offset & 0x3));
20562 + NdisMoveMemory(pData, &data, Length);
20567 + ========================================================================
20569 + Routine Description:
20579 + ========================================================================
20581 +VOID eFuseReadPhysical(
20582 + IN PRTMP_ADAPTER pAd,
20583 + IN PUSHORT lpInBuffer,
20584 + IN ULONG nInBufferSize,
20585 + OUT PUSHORT lpOutBuffer,
20586 + IN ULONG nOutBufferSize
20589 + USHORT* pInBuf = (USHORT*)lpInBuffer;
20590 + USHORT* pOutBuf = (USHORT*)lpOutBuffer;
20592 + USHORT Offset = pInBuf[0]; //addr
20593 + USHORT Length = pInBuf[1]; //length
20596 + for(i=0; i<Length; i+=2)
20598 + eFusePhysicalReadRegisters(pAd,Offset+i, 2, &pOutBuf[i/2]);
20603 + ========================================================================
20605 + Routine Description:
20615 + ========================================================================
20617 +NTSTATUS eFuseRead(
20618 + IN PRTMP_ADAPTER pAd,
20619 + IN USHORT Offset,
20620 + OUT PUCHAR pData,
20621 + IN USHORT Length)
20623 + USHORT* pOutBuf = (USHORT*)pData;
20624 + NTSTATUS Status = STATUS_SUCCESS;
20625 + UCHAR EFSROM_AOUT;
20628 + for(i=0; i<Length; i+=2)
20630 + EFSROM_AOUT = eFuseReadRegisters(pAd, Offset+i, 2, &pOutBuf[i/2]);
20636 + ========================================================================
20638 + Routine Description:
20648 + ========================================================================
20650 +VOID eFusePhysicalWriteRegisters(
20651 + IN PRTMP_ADAPTER pAd,
20652 + IN USHORT Offset,
20653 + IN USHORT Length,
20654 + OUT USHORT* pData)
20656 + EFUSE_CTRL_STRUC eFuseCtrlStruc;
20658 + USHORT efuseDataOffset;
20659 + UINT32 data, eFuseDataBuffer[4];
20661 + //Step0. Write 16-byte of data to EFUSE_DATA0-3 (0x590-0x59C), where EFUSE_DATA0 is the LSB DW, EFUSE_DATA3 is the MSB DW.
20663 + /////////////////////////////////////////////////////////////////
20664 + //read current values of 16-byte block
20665 + RTMP_IO_READ32(pAd, EFUSE_CTRL, (PUINT32) &eFuseCtrlStruc);
20667 + //Step0. Write 10-bit of address to EFSROM_AIN (0x580, bit25:bit16). The address must be 16-byte alignment.
20668 + eFuseCtrlStruc.field.EFSROM_AIN = Offset & 0xfff0;
20670 + //Step1. Write EFSROM_MODE (0x580, bit7:bit6) to 1.
20671 + eFuseCtrlStruc.field.EFSROM_MODE = 1;
20673 + //Step2. Write EFSROM_KICK (0x580, bit30) to 1 to kick-off physical read procedure.
20674 + eFuseCtrlStruc.field.EFSROM_KICK = 1;
20676 + NdisMoveMemory(&data, &eFuseCtrlStruc, 4);
20677 + RTMP_IO_WRITE32(pAd, EFUSE_CTRL, data);
20679 + //Step3. Polling EFSROM_KICK(0x580, bit30) until it become 0 again.
20683 + RTMP_IO_READ32(pAd, EFUSE_CTRL, (PUINT32) &eFuseCtrlStruc);
20685 + if(eFuseCtrlStruc.field.EFSROM_KICK == 0)
20687 + RTMPusecDelay(2);
20691 + //Step4. Read 16-byte of data from EFUSE_DATA0-3 (0x59C-0x590)
20692 + efuseDataOffset = EFUSE_DATA3;
20693 + for(i=0; i< 4; i++)
20695 + RTMP_IO_READ32(pAd, efuseDataOffset, (PUINT32) &eFuseDataBuffer[i]);
20696 + efuseDataOffset -= 4;
20699 + //Update the value, the offset is multiple of 2, length is 2
20700 + efuseDataOffset = (Offset & 0xc) >> 2;
20701 + data = pData[0] & 0xffff;
20702 + //The offset should be 0x***10 or 0x***00
20703 + if((Offset % 4) != 0)
20705 + eFuseDataBuffer[efuseDataOffset] = (eFuseDataBuffer[efuseDataOffset] & 0xffff) | (data << 16);
20709 + eFuseDataBuffer[efuseDataOffset] = (eFuseDataBuffer[efuseDataOffset] & 0xffff0000) | data;
20712 + efuseDataOffset = EFUSE_DATA3;
20713 + for(i=0; i< 4; i++)
20715 + RTMP_IO_WRITE32(pAd, efuseDataOffset, eFuseDataBuffer[i]);
20716 + efuseDataOffset -= 4;
20718 + /////////////////////////////////////////////////////////////////
20720 + //Step1. Write 10-bit of address to EFSROM_AIN (0x580, bit25:bit16). The address must be 16-byte alignment.
20721 + eFuseCtrlStruc.field.EFSROM_AIN = Offset & 0xfff0;
20723 + //Step2. Write EFSROM_MODE (0x580, bit7:bit6) to 3.
20724 + eFuseCtrlStruc.field.EFSROM_MODE = 3;
20726 + //Step3. Write EFSROM_KICK (0x580, bit30) to 1 to kick-off physical write procedure.
20727 + eFuseCtrlStruc.field.EFSROM_KICK = 1;
20729 + NdisMoveMemory(&data, &eFuseCtrlStruc, 4);
20730 + RTMP_IO_WRITE32(pAd, EFUSE_CTRL, data);
20732 + //Step4. Polling EFSROM_KICK(0x580, bit30) until it become 0 again. It¡¦s done.
20736 + RTMP_IO_READ32(pAd, EFUSE_CTRL, (PUINT32) &eFuseCtrlStruc);
20738 + if(eFuseCtrlStruc.field.EFSROM_KICK == 0)
20741 + RTMPusecDelay(2);
20747 + ========================================================================
20749 + Routine Description:
20759 + ========================================================================
20761 +NTSTATUS eFuseWriteRegisters(
20762 + IN PRTMP_ADAPTER pAd,
20763 + IN USHORT Offset,
20764 + IN USHORT Length,
20765 + IN USHORT* pData)
20768 + USHORT eFuseData;
20769 + USHORT LogicalAddress, BlkNum = 0xffff;
20770 + UCHAR EFSROM_AOUT;
20772 + USHORT addr,tmpaddr, InBuf[3], tmpOffset;
20773 + USHORT buffer[8];
20774 + BOOLEAN bWriteSuccess = TRUE;
20776 + DBGPRINT(RT_DEBUG_TRACE, ("eFuseWriteRegisters Offset=%x, pData=%x\n", Offset, *pData));
20778 + //Step 0. find the entry in the mapping table
20779 + //The address of EEPROM is 2-bytes alignment.
20780 + //The last bit is used for alignment, so it must be 0.
20781 + tmpOffset = Offset & 0xfffe;
20782 + EFSROM_AOUT = eFuseReadRegisters(pAd, tmpOffset, 2, &eFuseData);
20784 + if( EFSROM_AOUT == 0x3f)
20785 + { //find available logical address pointer
20786 + //the logical address does not exist, find an empty one
20787 + //from the first address of block 45=16*45=0x2d0 to the last address of block 47
20788 + //==>48*16-3(reserved)=2FC
20789 + for (i=EFUSE_USAGE_MAP_START; i<=EFUSE_USAGE_MAP_END; i+=2)
20791 + //Retrive the logical block nubmer form each logical address pointer
20792 + //It will access two logical address pointer each time.
20793 + eFusePhysicalReadRegisters(pAd, i, 2, &LogicalAddress);
20794 + if( (LogicalAddress & 0xff) == 0)
20795 + {//Not used logical address pointer
20796 + BlkNum = i-EFUSE_USAGE_MAP_START;
20799 + else if(( (LogicalAddress >> 8) & 0xff) == 0)
20800 + {//Not used logical address pointer
20801 + if (i != EFUSE_USAGE_MAP_END)
20803 + BlkNum = i-EFUSE_USAGE_MAP_START+1;
20811 + BlkNum = EFSROM_AOUT;
20814 + DBGPRINT(RT_DEBUG_TRACE, ("eFuseWriteRegisters BlkNum = %d \n", BlkNum));
20816 + if(BlkNum == 0xffff)
20818 + DBGPRINT(RT_DEBUG_TRACE, ("eFuseWriteRegisters: out of free E-fuse space!!!\n"));
20822 + //Step 1. Save data of this block which is pointed by the avaible logical address pointer
20823 + // read and save the original block data
20824 + for(i =0; i<8; i++)
20826 + addr = BlkNum * 0x10 ;
20828 + InBuf[0] = addr+2*i;
20832 + eFuseReadPhysical(pAd, &InBuf[0], 4, &InBuf[2], 2);
20834 + buffer[i] = InBuf[2];
20837 + //Step 2. Update the data in buffer, and write the data to Efuse
20838 + buffer[ (Offset >> 1) % 8] = pData[0];
20842 + //Step 3. Write the data to Efuse
20843 + if(!bWriteSuccess)
20845 + for(i =0; i<8; i++)
20847 + addr = BlkNum * 0x10 ;
20849 + InBuf[0] = addr+2*i;
20851 + InBuf[2] = buffer[i];
20853 + eFuseWritePhysical(pAd, &InBuf[0], 6, NULL, 2);
20858 + addr = BlkNum * 0x10 ;
20860 + InBuf[0] = addr+(Offset % 16);
20862 + InBuf[2] = pData[0];
20864 + eFuseWritePhysical(pAd, &InBuf[0], 6, NULL, 2);
20867 + //Step 4. Write mapping table
20868 + addr = EFUSE_USAGE_MAP_START+BlkNum;
20872 + if(addr % 2 != 0)
20877 + //convert the address from 10 to 8 bit ( bit7, 6 = parity and bit5 ~ 0 = bit9~4), and write to logical map entry
20878 + tmpOffset = Offset;
20880 + tmpOffset |= ((~((tmpOffset & 0x01) ^ ( tmpOffset >> 1 & 0x01) ^ (tmpOffset >> 2 & 0x01) ^ (tmpOffset >> 3 & 0x01))) << 6) & 0x40;
20881 + tmpOffset |= ((~( (tmpOffset >> 2 & 0x01) ^ (tmpOffset >> 3 & 0x01) ^ (tmpOffset >> 4 & 0x01) ^ ( tmpOffset >> 5 & 0x01))) << 7) & 0x80;
20883 + // write the logical address
20884 + if(tmpaddr%2 != 0)
20885 + InBuf[2] = tmpOffset<<8;
20887 + InBuf[2] = tmpOffset;
20889 + eFuseWritePhysical(pAd,&InBuf[0], 6, NULL, 0);
20891 + //Step 5. Compare data if not the same, invalidate the mapping entry, then re-write the data until E-fuse is exhausted
20892 + bWriteSuccess = TRUE;
20893 + for(i =0; i<8; i++)
20895 + addr = BlkNum * 0x10 ;
20897 + InBuf[0] = addr+2*i;
20901 + eFuseReadPhysical(pAd, &InBuf[0], 4, &InBuf[2], 2);
20903 + if(buffer[i] != InBuf[2])
20905 + bWriteSuccess = FALSE;
20910 + //Step 6. invlidate mapping entry and find a free mapping entry if not succeed
20911 + if (!bWriteSuccess)
20913 + DBGPRINT(RT_DEBUG_TRACE, ("Not bWriteSuccess BlkNum = %d\n", BlkNum));
20915 + // the offset of current mapping entry
20916 + addr = EFUSE_USAGE_MAP_START+BlkNum;
20918 + //find a new mapping entry
20920 + for (i=EFUSE_USAGE_MAP_START; i<=EFUSE_USAGE_MAP_END; i+=2)
20922 + eFusePhysicalReadRegisters(pAd, i, 2, &LogicalAddress);
20923 + if( (LogicalAddress & 0xff) == 0)
20925 + BlkNum = i-EFUSE_USAGE_MAP_START;
20928 + else if(( (LogicalAddress >> 8) & 0xff) == 0)
20930 + if (i != EFUSE_USAGE_MAP_END)
20932 + BlkNum = i+1-EFUSE_USAGE_MAP_START;
20937 + DBGPRINT(RT_DEBUG_TRACE, ("Not bWriteSuccess new BlkNum = %d\n", BlkNum));
20938 + if(BlkNum == 0xffff)
20940 + DBGPRINT(RT_DEBUG_TRACE, ("eFuseWriteRegisters: out of free E-fuse space!!!\n"));
20944 + //invalidate the original mapping entry if new entry is not found
20947 + if(addr % 2 != 0)
20952 + eFuseReadPhysical(pAd, &InBuf[0], 4, &InBuf[2], 2);
20954 + // write the logical address
20955 + if(tmpaddr%2 != 0)
20957 + // Invalidate the high byte
20958 + for (i=8; i<15; i++)
20960 + if( ( (InBuf[2] >> i) & 0x01) == 0)
20962 + InBuf[2] |= (0x1 <<i);
20969 + // invalidate the low byte
20970 + for (i=0; i<8; i++)
20972 + if( ( (InBuf[2] >> i) & 0x01) == 0)
20974 + InBuf[2] |= (0x1 <<i);
20979 + eFuseWritePhysical(pAd, &InBuf[0], 6, NULL, 0);
20982 + while(!bWriteSuccess);
20988 + ========================================================================
20990 + Routine Description:
21000 + ========================================================================
21002 +VOID eFuseWritePhysical(
21003 + IN PRTMP_ADAPTER pAd,
21004 + PUSHORT lpInBuffer,
21005 + ULONG nInBufferSize,
21006 + PUCHAR lpOutBuffer,
21007 + ULONG nOutBufferSize
21010 + USHORT* pInBuf = (USHORT*)lpInBuffer;
21012 + //USHORT* pOutBuf = (USHORT*)ioBuffer;
21014 + USHORT Offset = pInBuf[0]; //addr
21015 + USHORT Length = pInBuf[1]; //length
21016 + USHORT* pValueX = &pInBuf[2]; //value ...
21017 + // Little-endian S | S Big-endian
21018 + // addr 3 2 1 0 | 0 1 2 3
21019 + // Ori-V D C B A | A B C D
21021 + // D C B A | D C B A
21022 + //Both the little and big-endian use the same sequence to write data.
21023 + //Therefore, we only need swap data when read the data.
21024 + for(i=0; i<Length; i+=2)
21026 + eFusePhysicalWriteRegisters(pAd, Offset+i, 2, &pValueX[i/2]);
21032 + ========================================================================
21034 + Routine Description:
21044 + ========================================================================
21046 +NTSTATUS eFuseWrite(
21047 + IN PRTMP_ADAPTER pAd,
21048 + IN USHORT Offset,
21050 + IN USHORT length)
21054 + USHORT* pValueX = (PUSHORT) pData; //value ...
21055 + //The input value=3070 will be stored as following
21056 + // Little-endian S | S Big-endian
21057 + // addr 1 0 | 0 1
21058 + // Ori-V 30 70 | 30 70
21062 + // 3070 | 7030 (x)
21063 + //The swapping should be removed for big-endian
21064 + for(i=0; i<length; i+=2)
21066 + eFuseWriteRegisters(pAd, Offset+i, 2, &pValueX[i/2]);
21073 + ========================================================================
21075 + Routine Description:
21085 + ========================================================================
21087 +INT set_eFuseGetFreeBlockCount_Proc(
21088 + IN PRTMP_ADAPTER pAd,
21092 + USHORT LogicalAddress;
21093 + USHORT efusefreenum=0;
21094 + if(!pAd->bUseEfuse)
21096 + for (i = EFUSE_USAGE_MAP_START; i <= EFUSE_USAGE_MAP_END; i+=2)
21098 + eFusePhysicalReadRegisters(pAd, i, 2, &LogicalAddress);
21099 + if( (LogicalAddress & 0xff) == 0)
21101 + efusefreenum= (UCHAR) (EFUSE_USAGE_MAP_END-i+1);
21104 + else if(( (LogicalAddress >> 8) & 0xff) == 0)
21106 + efusefreenum = (UCHAR) (EFUSE_USAGE_MAP_END-i);
21110 + if(i == EFUSE_USAGE_MAP_END)
21111 + efusefreenum = 0;
21113 + printk("efuseFreeNumber is %d\n",efusefreenum);
21116 +INT set_eFusedump_Proc(
21117 + IN PRTMP_ADAPTER pAd,
21122 + if(!pAd->bUseEfuse)
21124 + for(i =0; i<EFUSE_USAGE_MAP_END/2; i++)
21130 + eFuseReadPhysical(pAd, &InBuf[0], 4, &InBuf[2], 2);
21132 + printk("\nBlock %x:",i/8);
21133 + printk("%04x ",InBuf[2]);
21137 +INT set_eFuseLoadFromBin_Proc(
21138 + IN PRTMP_ADAPTER pAd,
21142 + struct file *srcf;
21143 + INT retval, orgfsuid, orgfsgid;
21144 + mm_segment_t orgfs;
21146 + UCHAR BinFileSize=0;
21147 + INT i = 0,j=0,k=1;
21150 + BinFileSize=strlen("RT30xxEEPROM.bin");
21151 + src = kmalloc(128, MEM_ALLOC_FLAG);
21152 + NdisZeroMemory(src, 128);
21154 + if(strlen(arg)>0)
21157 + NdisMoveMemory(src, arg, strlen(arg));
21163 + NdisMoveMemory(src, "RT30xxEEPROM.bin", BinFileSize);
21166 + DBGPRINT(RT_DEBUG_TRACE, ("FileName=%s\n",src));
21167 + buffer = kmalloc(MAX_EEPROM_BIN_FILE_SIZE, MEM_ALLOC_FLAG);
21169 + if(buffer == NULL)
21174 + PDATA=kmalloc(sizeof(USHORT)*8,MEM_ALLOC_FLAG);
21183 + /* Don't change to uid 0, let the file be opened as the "normal" user */
21185 + orgfsuid = current->fsuid;
21186 + orgfsgid = current->fsgid;
21187 + current->fsuid=current->fsgid = 0;
21189 + orgfs = get_fs();
21190 + set_fs(KERNEL_DS);
21194 + srcf = filp_open(src, O_RDONLY, 0);
21195 + if (IS_ERR(srcf))
21197 + DBGPRINT(RT_DEBUG_ERROR, ("--> Error %ld opening %s\n", -PTR_ERR(srcf),src));
21202 + // The object must have a read method
21203 + if (srcf->f_op && srcf->f_op->read)
21205 + memset(buffer, 0x00, MAX_EEPROM_BIN_FILE_SIZE);
21206 + while(srcf->f_op->read(srcf, &buffer[i], 1, &srcf->f_pos)==1)
21208 + DBGPRINT(RT_DEBUG_TRACE, ("%02X ",buffer[i]));
21210 + DBGPRINT(RT_DEBUG_TRACE, ("\n"));
21212 + if(i>=MAX_EEPROM_BIN_FILE_SIZE)
21214 + DBGPRINT(RT_DEBUG_ERROR, ("--> Error %ld reading %s, The file is too large[1024]\n", -PTR_ERR(srcf),src));
21224 + DBGPRINT(RT_DEBUG_ERROR, ("--> Error!! System doest not support read function\n"));
21236 + DBGPRINT(RT_DEBUG_ERROR, ("--> Error src or srcf is null\n"));
21244 + retval=filp_close(srcf,NULL);
21248 + DBGPRINT(RT_DEBUG_TRACE, ("--> Error %d closing %s\n", -retval, src));
21252 + current->fsuid = orgfsuid;
21253 + current->fsgid = orgfsgid;
21257 + DBGPRINT(RT_DEBUG_TRACE, ("%02X ",buffer[j]));
21259 + PDATA[j/2%8]=((buffer[j]<<8)&0xff00)|(buffer[j-1]&0xff);
21270 + DBGPRINT(RT_DEBUG_TRACE, (" result=%02X,blk=%02x\n",k,j/16));
21273 + eFuseWriteRegistersFromBin(pAd,(USHORT)j-15, 16, PDATA);
21276 + if(eFuseReadRegisters(pAd,j, 2,(PUSHORT)&DATA)!=0x3f)
21277 + eFuseWriteRegistersFromBin(pAd,(USHORT)j-15, 16, PDATA);
21281 + printk("%04x ",PDATA[l]);
21284 + NdisZeroMemory(PDATA,16);
21299 +NTSTATUS eFuseWriteRegistersFromBin(
21300 + IN PRTMP_ADAPTER pAd,
21301 + IN USHORT Offset,
21302 + IN USHORT Length,
21303 + IN USHORT* pData)
21306 + USHORT eFuseData;
21307 + USHORT LogicalAddress, BlkNum = 0xffff;
21308 + UCHAR EFSROM_AOUT,Loop=0;
21309 + EFUSE_CTRL_STRUC eFuseCtrlStruc;
21310 + USHORT efuseDataOffset;
21311 + UINT32 data,tempbuffer;
21312 + USHORT addr,tmpaddr, InBuf[3], tmpOffset;
21313 + UINT32 buffer[4];
21314 + BOOLEAN bWriteSuccess = TRUE;
21315 + BOOLEAN bNotWrite=TRUE;
21316 + BOOLEAN bAllocateNewBlk=TRUE;
21318 + DBGPRINT(RT_DEBUG_TRACE, ("eFuseWriteRegistersFromBin Offset=%x, pData=%04x:%04x:%04x:%04x\n", Offset, *pData,*(pData+1),*(pData+2),*(pData+3)));
21322 + //Step 0. find the entry in the mapping table
21323 + //The address of EEPROM is 2-bytes alignment.
21324 + //The last bit is used for alignment, so it must be 0.
21326 + tmpOffset = Offset & 0xfffe;
21327 + EFSROM_AOUT = eFuseReadRegisters(pAd, tmpOffset, 2, &eFuseData);
21329 + if( EFSROM_AOUT == 0x3f)
21330 + { //find available logical address pointer
21331 + //the logical address does not exist, find an empty one
21332 + //from the first address of block 45=16*45=0x2d0 to the last address of block 47
21333 + //==>48*16-3(reserved)=2FC
21334 + bAllocateNewBlk=TRUE;
21335 + for (i=EFUSE_USAGE_MAP_START; i<=EFUSE_USAGE_MAP_END; i+=2)
21337 + //Retrive the logical block nubmer form each logical address pointer
21338 + //It will access two logical address pointer each time.
21339 + eFusePhysicalReadRegisters(pAd, i, 2, &LogicalAddress);
21340 + if( (LogicalAddress & 0xff) == 0)
21341 + {//Not used logical address pointer
21342 + BlkNum = i-EFUSE_USAGE_MAP_START;
21345 + else if(( (LogicalAddress >> 8) & 0xff) == 0)
21346 + {//Not used logical address pointer
21347 + if (i != EFUSE_USAGE_MAP_END)
21349 + BlkNum = i-EFUSE_USAGE_MAP_START+1;
21357 + bAllocateNewBlk=FALSE;
21358 + BlkNum = EFSROM_AOUT;
21361 + DBGPRINT(RT_DEBUG_TRACE, ("eFuseWriteRegisters BlkNum = %d \n", BlkNum));
21363 + if(BlkNum == 0xffff)
21365 + DBGPRINT(RT_DEBUG_TRACE, ("eFuseWriteRegisters: out of free E-fuse space!!!\n"));
21369 + //If the block is not existing in mapping table, create one
21370 + //and write down the 16-bytes data to the new block
21371 + if(bAllocateNewBlk)
21373 + DBGPRINT(RT_DEBUG_TRACE, ("Allocate New Blk\n"));
21374 + efuseDataOffset = EFUSE_DATA3;
21375 + for(i=0; i< 4; i++)
21377 + DBGPRINT(RT_DEBUG_TRACE, ("Allocate New Blk, Data%d=%04x%04x\n",3-i,pData[2*i+1],pData[2*i]));
21378 + tempbuffer=((pData[2*i+1]<<16)&0xffff0000)|pData[2*i];
21381 + RTMP_IO_WRITE32(pAd, efuseDataOffset,tempbuffer);
21382 + efuseDataOffset -= 4;
21385 + /////////////////////////////////////////////////////////////////
21387 + //Step1.1.1. Write 10-bit of address to EFSROM_AIN (0x580, bit25:bit16). The address must be 16-byte alignment.
21388 + eFuseCtrlStruc.field.EFSROM_AIN = BlkNum* 0x10 ;
21390 + //Step1.1.2. Write EFSROM_MODE (0x580, bit7:bit6) to 3.
21391 + eFuseCtrlStruc.field.EFSROM_MODE = 3;
21393 + //Step1.1.3. Write EFSROM_KICK (0x580, bit30) to 1 to kick-off physical write procedure.
21394 + eFuseCtrlStruc.field.EFSROM_KICK = 1;
21396 + NdisMoveMemory(&data, &eFuseCtrlStruc, 4);
21398 + RTMP_IO_WRITE32(pAd, EFUSE_CTRL, data);
21400 + //Step1.1.4. Polling EFSROM_KICK(0x580, bit30) until it become 0 again. It¡¦s done.
21404 + RTMP_IO_READ32(pAd, EFUSE_CTRL, (PUINT32) &eFuseCtrlStruc);
21406 + if(eFuseCtrlStruc.field.EFSROM_KICK == 0)
21409 + RTMPusecDelay(2);
21416 + //If the same logical number is existing, check if the writting data and the data
21417 + //saving in this block are the same.
21418 + /////////////////////////////////////////////////////////////////
21419 + //read current values of 16-byte block
21420 + RTMP_IO_READ32(pAd, EFUSE_CTRL, (PUINT32) &eFuseCtrlStruc);
21422 + //Step1.2.0. Write 10-bit of address to EFSROM_AIN (0x580, bit25:bit16). The address must be 16-byte alignment.
21423 + eFuseCtrlStruc.field.EFSROM_AIN = Offset & 0xfff0;
21425 + //Step1.2.1. Write EFSROM_MODE (0x580, bit7:bit6) to 1.
21426 + eFuseCtrlStruc.field.EFSROM_MODE = 0;
21428 + //Step1.2.2. Write EFSROM_KICK (0x580, bit30) to 1 to kick-off physical read procedure.
21429 + eFuseCtrlStruc.field.EFSROM_KICK = 1;
21431 + NdisMoveMemory(&data, &eFuseCtrlStruc, 4);
21432 + RTMP_IO_WRITE32(pAd, EFUSE_CTRL, data);
21434 + //Step1.2.3. Polling EFSROM_KICK(0x580, bit30) until it become 0 again.
21438 + RTMP_IO_READ32(pAd, EFUSE_CTRL, (PUINT32) &eFuseCtrlStruc);
21440 + if(eFuseCtrlStruc.field.EFSROM_KICK == 0)
21442 + RTMPusecDelay(2);
21446 + //Step1.2.4. Read 16-byte of data from EFUSE_DATA0-3 (0x59C-0x590)
21447 + efuseDataOffset = EFUSE_DATA3;
21448 + for(i=0; i< 4; i++)
21450 + RTMP_IO_READ32(pAd, efuseDataOffset, (PUINT32) &buffer[i]);
21451 + efuseDataOffset -= 4;
21453 + //Step1.2.5. Check if the data of efuse and the writing data are the same.
21454 + for(i =0; i<4; i++)
21456 + tempbuffer=((pData[2*i+1]<<16)&0xffff0000)|pData[2*i];
21457 + DBGPRINT(RT_DEBUG_TRACE, ("buffer[%d]=%x,pData[%d]=%x,pData[%d]=%x,tempbuffer=%x\n",i,buffer[i],2*i,pData[2*i],2*i+1,pData[2*i+1],tempbuffer));
21459 + if(((buffer[i]&0xffff0000)==(pData[2*i+1]<<16))&&((buffer[i]&0xffff)==pData[2*i]))
21463 + bNotWrite&=FALSE;
21469 + printk("The data is not the same\n");
21471 + for(i =0; i<8; i++)
21473 + addr = BlkNum * 0x10 ;
21475 + InBuf[0] = addr+2*i;
21477 + InBuf[2] = pData[i];
21479 + eFuseWritePhysical(pAd, &InBuf[0], 6, NULL, 2);
21489 + //Step 2. Write mapping table
21490 + addr = EFUSE_USAGE_MAP_START+BlkNum;
21494 + if(addr % 2 != 0)
21499 + //convert the address from 10 to 8 bit ( bit7, 6 = parity and bit5 ~ 0 = bit9~4), and write to logical map entry
21500 + tmpOffset = Offset;
21502 + tmpOffset |= ((~((tmpOffset & 0x01) ^ ( tmpOffset >> 1 & 0x01) ^ (tmpOffset >> 2 & 0x01) ^ (tmpOffset >> 3 & 0x01))) << 6) & 0x40;
21503 + tmpOffset |= ((~( (tmpOffset >> 2 & 0x01) ^ (tmpOffset >> 3 & 0x01) ^ (tmpOffset >> 4 & 0x01) ^ ( tmpOffset >> 5 & 0x01))) << 7) & 0x80;
21505 + // write the logical address
21506 + if(tmpaddr%2 != 0)
21507 + InBuf[2] = tmpOffset<<8;
21509 + InBuf[2] = tmpOffset;
21511 + eFuseWritePhysical(pAd,&InBuf[0], 6, NULL, 0);
21513 + //Step 3. Compare data if not the same, invalidate the mapping entry, then re-write the data until E-fuse is exhausted
21514 + bWriteSuccess = TRUE;
21515 + for(i =0; i<8; i++)
21517 + addr = BlkNum * 0x10 ;
21519 + InBuf[0] = addr+2*i;
21523 + eFuseReadPhysical(pAd, &InBuf[0], 4, &InBuf[2], 2);
21524 + DBGPRINT(RT_DEBUG_TRACE, ("addr=%x, buffer[i]=%x,InBuf[2]=%x\n",InBuf[0],pData[i],InBuf[2]));
21525 + if(pData[i] != InBuf[2])
21527 + bWriteSuccess = FALSE;
21532 + //Step 4. invlidate mapping entry and find a free mapping entry if not succeed
21534 + if (!bWriteSuccess&&Loop<2)
21536 + DBGPRINT(RT_DEBUG_TRACE, ("eFuseWriteRegistersFromBin::Not bWriteSuccess BlkNum = %d\n", BlkNum));
21538 + // the offset of current mapping entry
21539 + addr = EFUSE_USAGE_MAP_START+BlkNum;
21541 + //find a new mapping entry
21543 + for (i=EFUSE_USAGE_MAP_START; i<=EFUSE_USAGE_MAP_END; i+=2)
21545 + eFusePhysicalReadRegisters(pAd, i, 2, &LogicalAddress);
21546 + if( (LogicalAddress & 0xff) == 0)
21548 + BlkNum = i-EFUSE_USAGE_MAP_START;
21551 + else if(( (LogicalAddress >> 8) & 0xff) == 0)
21553 + if (i != EFUSE_USAGE_MAP_END)
21555 + BlkNum = i+1-EFUSE_USAGE_MAP_START;
21560 + DBGPRINT(RT_DEBUG_TRACE, ("eFuseWriteRegistersFromBin::Not bWriteSuccess new BlkNum = %d\n", BlkNum));
21561 + if(BlkNum == 0xffff)
21563 + DBGPRINT(RT_DEBUG_TRACE, ("eFuseWriteRegistersFromBin: out of free E-fuse space!!!\n"));
21567 + //invalidate the original mapping entry if new entry is not found
21570 + if(addr % 2 != 0)
21575 + eFuseReadPhysical(pAd, &InBuf[0], 4, &InBuf[2], 2);
21577 + // write the logical address
21578 + if(tmpaddr%2 != 0)
21580 + // Invalidate the high byte
21581 + for (i=8; i<15; i++)
21583 + if( ( (InBuf[2] >> i) & 0x01) == 0)
21585 + InBuf[2] |= (0x1 <<i);
21592 + // invalidate the low byte
21593 + for (i=0; i<8; i++)
21595 + if( ( (InBuf[2] >> i) & 0x01) == 0)
21597 + InBuf[2] |= (0x1 <<i);
21602 + eFuseWritePhysical(pAd, &InBuf[0], 6, NULL, 0);
21606 + while(!bWriteSuccess&&Loop<2);
21611 +#endif // RT30xx //
21612 +//2008/09/11:KH add to support efuse-->
21615 +++ b/drivers/staging/rt3070/common/md5.c
21618 + *************************************************************************
21619 + * Ralink Tech Inc.
21620 + * 5F., No.36, Taiyuan St., Jhubei City,
21621 + * Hsinchu County 302,
21624 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
21626 + * This program is free software; you can redistribute it and/or modify *
21627 + * it under the terms of the GNU General Public License as published by *
21628 + * the Free Software Foundation; either version 2 of the License, or *
21629 + * (at your option) any later version. *
21631 + * This program is distributed in the hope that it will be useful, *
21632 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
21633 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
21634 + * GNU General Public License for more details. *
21636 + * You should have received a copy of the GNU General Public License *
21637 + * along with this program; if not, write to the *
21638 + * Free Software Foundation, Inc., *
21639 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
21641 + *************************************************************************
21648 + Revision History:
21650 + -------- ---------- ----------------------------------------------
21651 + Name Date Modification logs
21652 + jan 10-28-03 Initial
21653 + Rita 11-23-04 Modify MD5 and SHA-1
21654 + Rita 10-14-05 Modify SHA-1 in big-endian platform
21656 +#include "../rt_config.h"
21660 + * @key: pointer to the key used for MAC generation
21661 + * @key_len: length of the key in bytes
21662 + * @data: pointer to the data area for which the MAC is generated
21663 + * @data_len: length of the data in bytes
21664 + * @mac: pointer to the buffer holding space for the MAC; the buffer should
21665 + * have space for 128-bit (16 bytes) MD5 hash value
21667 + * md5_mac() determines the message authentication code by using secure hash
21668 + * MD5(key | data | key).
21670 +void md5_mac(u8 *key, size_t key_len, u8 *data, size_t data_len, u8 *mac)
21674 + MD5Init(&context);
21675 + MD5Update(&context, key, key_len);
21676 + MD5Update(&context, data, data_len);
21677 + MD5Update(&context, key, key_len);
21678 + MD5Final(mac, &context);
21683 + * @key: pointer to the key used for MAC generation
21684 + * @key_len: length of the key in bytes
21685 + * @data: pointer to the data area for which the MAC is generated
21686 + * @data_len: length of the data in bytes
21687 + * @mac: pointer to the buffer holding space for the MAC; the buffer should
21688 + * have space for 128-bit (16 bytes) MD5 hash value
21690 + * hmac_md5() determines the message authentication code using HMAC-MD5.
21691 + * This implementation is based on the sample code presented in RFC 2104.
21693 +void hmac_md5(u8 *key, size_t key_len, u8 *data, size_t data_len, u8 *mac)
21696 + u8 k_ipad[65]; /* inner padding - key XORd with ipad */
21697 + u8 k_opad[65]; /* outer padding - key XORd with opad */
21701 + //assert(key != NULL && data != NULL && mac != NULL);
21703 + /* if key is longer than 64 bytes reset it to key = MD5(key) */
21704 + if (key_len > 64) {
21705 + MD5_CTX ttcontext;
21707 + MD5Init(&ttcontext);
21708 + MD5Update(&ttcontext, key, key_len);
21709 + MD5Final(tk, &ttcontext);
21710 + //key=(PUCHAR)ttcontext.buf;
21715 + /* the HMAC_MD5 transform looks like:
21717 + * MD5(K XOR opad, MD5(K XOR ipad, text))
21719 + * where K is an n byte key
21720 + * ipad is the byte 0x36 repeated 64 times
21721 + * opad is the byte 0x5c repeated 64 times
21722 + * and text is the data being protected */
21724 + /* start out by storing key in pads */
21725 + NdisZeroMemory(k_ipad, sizeof(k_ipad));
21726 + NdisZeroMemory(k_opad, sizeof(k_opad));
21727 + //assert(key_len < sizeof(k_ipad));
21728 + NdisMoveMemory(k_ipad, key, key_len);
21729 + NdisMoveMemory(k_opad, key, key_len);
21731 + /* XOR key with ipad and opad values */
21732 + for (i = 0; i < 64; i++) {
21733 + k_ipad[i] ^= 0x36;
21734 + k_opad[i] ^= 0x5c;
21737 + /* perform inner MD5 */
21738 + MD5Init(&context); /* init context for 1st pass */
21739 + MD5Update(&context, k_ipad, 64); /* start with inner pad */
21740 + MD5Update(&context, data, data_len); /* then text of datagram */
21741 + MD5Final(mac, &context); /* finish up 1st pass */
21743 + /* perform outer MD5 */
21744 + MD5Init(&context); /* init context for 2nd pass */
21745 + MD5Update(&context, k_opad, 64); /* start with outer pad */
21746 + MD5Update(&context, mac, 16); /* then results of 1st hash */
21747 + MD5Final(mac, &context); /* finish up 2nd pass */
21750 +#ifndef RT_BIG_ENDIAN
21751 +#define byteReverse(buf, len) /* Nothing */
21753 +void byteReverse(unsigned char *buf, unsigned longs);
21754 +void byteReverse(unsigned char *buf, unsigned longs)
21757 + *(UINT32 *)buf = SWAP32(*(UINT32 *)buf);
21759 + } while (--longs);
21764 +/* ========================== MD5 implementation =========================== */
21765 +// four base functions for MD5
21766 +#define MD5_F1(x, y, z) (((x) & (y)) | ((~x) & (z)))
21767 +#define MD5_F2(x, y, z) (((x) & (z)) | ((y) & (~z)))
21768 +#define MD5_F3(x, y, z) ((x) ^ (y) ^ (z))
21769 +#define MD5_F4(x, y, z) ((y) ^ ((x) | (~z)))
21770 +#define CYCLIC_LEFT_SHIFT(w, s) (((w) << (s)) | ((w) >> (32-(s))))
21772 +#define MD5Step(f, w, x, y, z, data, t, s) \
21773 + ( w += f(x, y, z) + data + t, w = (CYCLIC_LEFT_SHIFT(w, s)) & 0xffffffff, w += x )
21777 + * Function Description:
21778 + * Initiate MD5 Context satisfied in RFC 1321
21781 + * pCtx Pointer to MD5 context
21786 +VOID MD5Init(MD5_CTX *pCtx)
21788 + pCtx->Buf[0]=0x67452301;
21789 + pCtx->Buf[1]=0xefcdab89;
21790 + pCtx->Buf[2]=0x98badcfe;
21791 + pCtx->Buf[3]=0x10325476;
21793 + pCtx->LenInBitCount[0]=0;
21794 + pCtx->LenInBitCount[1]=0;
21799 + * Function Description:
21800 + * Update MD5 Context, allow of an arrary of octets as the next portion
21804 + * pCtx Pointer to MD5 context
21805 + * pData Pointer to input data
21806 + * LenInBytes The length of input data (unit: byte)
21812 + * Called after MD5Init or MD5Update(itself)
21814 +VOID MD5Update(MD5_CTX *pCtx, UCHAR *pData, UINT32 LenInBytes)
21821 + temp = pCtx->LenInBitCount[0];
21823 + pCtx->LenInBitCount[0] = (UINT32) (pCtx->LenInBitCount[0] + (LenInBytes << 3));
21825 + if (pCtx->LenInBitCount[0] < temp)
21826 + pCtx->LenInBitCount[1]++; //carry in
21828 + pCtx->LenInBitCount[1] += LenInBytes >> 29;
21831 + temp = (temp >> 3) & 0x3f;
21833 + // process lacks of 64-byte data
21836 + UCHAR *pAds = (UCHAR *) pCtx->Input + temp;
21838 + if ((temp+LenInBytes) < 64)
21840 + NdisMoveMemory(pAds, (UCHAR *)pData, LenInBytes);
21844 + NdisMoveMemory(pAds, (UCHAR *)pData, 64-temp);
21845 + byteReverse(pCtx->Input, 16);
21846 + MD5Transform(pCtx->Buf, (UINT32 *)pCtx->Input);
21848 + pData += 64-temp;
21849 + LenInBytes -= 64-temp;
21850 + } // end of if (temp)
21853 + TfTimes = (LenInBytes >> 6);
21855 + for (i=TfTimes; i>0; i--)
21857 + NdisMoveMemory(pCtx->Input, (UCHAR *)pData, 64);
21858 + byteReverse(pCtx->Input, 16);
21859 + MD5Transform(pCtx->Buf, (UINT32 *)pCtx->Input);
21861 + LenInBytes -= 64;
21864 + // buffering lacks of 64-byte data
21866 + NdisMoveMemory(pCtx->Input, (UCHAR *)pData, LenInBytes);
21872 + * Function Description:
21873 + * Append padding bits and length of original message in the tail
21874 + * The message digest has to be completed in the end
21877 + * Digest Output of Digest-Message for MD5
21878 + * pCtx Pointer to MD5 context
21884 + * Called after MD5Update
21886 +VOID MD5Final(UCHAR Digest[16], MD5_CTX *pCtx)
21889 + UCHAR PadLenInBytes;
21890 + UCHAR *pAppend=0;
21893 + Remainder = (UCHAR)((pCtx->LenInBitCount[0] >> 3) & 0x3f);
21895 + PadLenInBytes = (Remainder < 56) ? (56-Remainder) : (120-Remainder);
21897 + pAppend = (UCHAR *)pCtx->Input + Remainder;
21899 + // padding bits without crossing block(64-byte based) boundary
21900 + if (Remainder < 56)
21903 + PadLenInBytes --;
21905 + NdisZeroMemory((UCHAR *)pCtx->Input + Remainder+1, PadLenInBytes);
21907 + // add data-length field, from low to high
21908 + for (i=0; i<4; i++)
21910 + pCtx->Input[56+i] = (UCHAR)((pCtx->LenInBitCount[0] >> (i << 3)) & 0xff);
21911 + pCtx->Input[60+i] = (UCHAR)((pCtx->LenInBitCount[1] >> (i << 3)) & 0xff);
21914 + byteReverse(pCtx->Input, 16);
21915 + MD5Transform(pCtx->Buf, (UINT32 *)pCtx->Input);
21918 + // padding bits with crossing block(64-byte based) boundary
21921 + // the first block ===
21923 + PadLenInBytes --;
21925 + NdisZeroMemory((UCHAR *)pCtx->Input + Remainder+1, (64-Remainder-1));
21926 + PadLenInBytes -= (64 - Remainder - 1);
21928 + byteReverse(pCtx->Input, 16);
21929 + MD5Transform(pCtx->Buf, (UINT32 *)pCtx->Input);
21932 + // the second block ===
21933 + NdisZeroMemory((UCHAR *)pCtx->Input, PadLenInBytes);
21935 + // add data-length field
21936 + for (i=0; i<4; i++)
21938 + pCtx->Input[56+i] = (UCHAR)((pCtx->LenInBitCount[0] >> (i << 3)) & 0xff);
21939 + pCtx->Input[60+i] = (UCHAR)((pCtx->LenInBitCount[1] >> (i << 3)) & 0xff);
21942 + byteReverse(pCtx->Input, 16);
21943 + MD5Transform(pCtx->Buf, (UINT32 *)pCtx->Input);
21947 + NdisMoveMemory((UCHAR *)Digest, (UINT32 *)pCtx->Buf, 16); // output
21948 + byteReverse((UCHAR *)Digest, 4);
21949 + NdisZeroMemory(pCtx, sizeof(pCtx)); // memory free
21954 + * Function Description:
21955 + * The central algorithm of MD5, consists of four rounds and sixteen
21956 + * steps per round
21959 + * Buf Buffers of four states (output: 16 bytes)
21960 + * Mes Input data (input: 64 bytes)
21966 + * Called by MD5Update or MD5Final
21968 +VOID MD5Transform(UINT32 Buf[4], UINT32 Mes[16])
21970 + UINT32 Reg[4], Temp;
21973 + static UCHAR LShiftVal[16] =
21982 + // [equal to 4294967296*abs(sin(index))]
21983 + static UINT32 MD5Table[64] =
21985 + 0xd76aa478, 0xe8c7b756, 0x242070db, 0xc1bdceee,
21986 + 0xf57c0faf, 0x4787c62a, 0xa8304613, 0xfd469501,
21987 + 0x698098d8, 0x8b44f7af, 0xffff5bb1, 0x895cd7be,
21988 + 0x6b901122, 0xfd987193, 0xa679438e, 0x49b40821,
21990 + 0xf61e2562, 0xc040b340, 0x265e5a51, 0xe9b6c7aa,
21991 + 0xd62f105d, 0x02441453, 0xd8a1e681, 0xe7d3fbc8,
21992 + 0x21e1cde6, 0xc33707d6, 0xf4d50d87, 0x455a14ed,
21993 + 0xa9e3e905, 0xfcefa3f8, 0x676f02d9, 0x8d2a4c8a,
21995 + 0xfffa3942, 0x8771f681, 0x6d9d6122, 0xfde5380c,
21996 + 0xa4beea44, 0x4bdecfa9, 0xf6bb4b60, 0xbebfbc70,
21997 + 0x289b7ec6, 0xeaa127fa, 0xd4ef3085, 0x04881d05,
21998 + 0xd9d4d039, 0xe6db99e5, 0x1fa27cf8, 0xc4ac5665,
22000 + 0xf4292244, 0x432aff97, 0xab9423a7, 0xfc93a039,
22001 + 0x655b59c3, 0x8f0ccc92, 0xffeff47d, 0x85845dd1,
22002 + 0x6fa87e4f, 0xfe2ce6e0, 0xa3014314, 0x4e0811a1,
22003 + 0xf7537e82, 0xbd3af235, 0x2ad7d2bb, 0xeb86d391
22007 + for (i=0; i<4; i++)
22011 + // 64 steps in MD5 algorithm
22012 + for (i=0; i<16; i++)
22014 + MD5Step(MD5_F1, Reg[0], Reg[1], Reg[2], Reg[3], Mes[i],
22015 + MD5Table[i], LShiftVal[i & 0x3]);
22017 + // one-word right shift
22024 + for (i=16; i<32; i++)
22026 + MD5Step(MD5_F2, Reg[0], Reg[1], Reg[2], Reg[3], Mes[(5*(i & 0xf)+1) & 0xf],
22027 + MD5Table[i], LShiftVal[(0x1 << 2)+(i & 0x3)]);
22029 + // one-word right shift
22036 + for (i=32; i<48; i++)
22038 + MD5Step(MD5_F3, Reg[0], Reg[1], Reg[2], Reg[3], Mes[(3*(i & 0xf)+5) & 0xf],
22039 + MD5Table[i], LShiftVal[(0x1 << 3)+(i & 0x3)]);
22041 + // one-word right shift
22048 + for (i=48; i<64; i++)
22050 + MD5Step(MD5_F4, Reg[0], Reg[1], Reg[2], Reg[3], Mes[(7*(i & 0xf)) & 0xf],
22051 + MD5Table[i], LShiftVal[(0x3 << 2)+(i & 0x3)]);
22053 + // one-word right shift
22062 + // (temporary)output
22063 + for (i=0; i<4; i++)
22064 + Buf[i] += Reg[i];
22070 +/* ========================= SHA-1 implementation ========================== */
22071 +// four base functions for SHA-1
22072 +#define SHA1_F1(b, c, d) (((b) & (c)) | ((~b) & (d)))
22073 +#define SHA1_F2(b, c, d) ((b) ^ (c) ^ (d))
22074 +#define SHA1_F3(b, c, d) (((b) & (c)) | ((b) & (d)) | ((c) & (d)))
22077 +#define SHA1Step(f, a, b, c, d, e, w, k) \
22078 + ( e += ( f(b, c, d) + w + k + CYCLIC_LEFT_SHIFT(a, 5)) & 0xffffffff, \
22079 + b = CYCLIC_LEFT_SHIFT(b, 30) )
22081 +//Initiate SHA-1 Context satisfied in RFC 3174
22082 +VOID SHAInit(SHA_CTX *pCtx)
22084 + pCtx->Buf[0]=0x67452301;
22085 + pCtx->Buf[1]=0xefcdab89;
22086 + pCtx->Buf[2]=0x98badcfe;
22087 + pCtx->Buf[3]=0x10325476;
22088 + pCtx->Buf[4]=0xc3d2e1f0;
22090 + pCtx->LenInBitCount[0]=0;
22091 + pCtx->LenInBitCount[1]=0;
22095 + * Function Description:
22096 + * Update SHA-1 Context, allow of an arrary of octets as the next
22097 + * portion of the message
22100 + * pCtx Pointer to SHA-1 context
22101 + * pData Pointer to input data
22102 + * LenInBytes The length of input data (unit: byte)
22105 + * error indicate more than pow(2,64) bits of data
22108 + * Called after SHAInit or SHAUpdate(itself)
22110 +UCHAR SHAUpdate(SHA_CTX *pCtx, UCHAR *pData, UINT32 LenInBytes)
22113 + UINT32 temp1,temp2;
22117 + temp1 = pCtx->LenInBitCount[0];
22118 + temp2 = pCtx->LenInBitCount[1];
22120 + pCtx->LenInBitCount[0] = (UINT32) (pCtx->LenInBitCount[0] + (LenInBytes << 3));
22121 + if (pCtx->LenInBitCount[0] < temp1)
22122 + pCtx->LenInBitCount[1]++; //carry in
22125 + pCtx->LenInBitCount[1] = (UINT32) (pCtx->LenInBitCount[1] +(LenInBytes >> 29));
22126 + if (pCtx->LenInBitCount[1] < temp2)
22127 + return (err); //check total length of original data
22131 + temp1 = (temp1 >> 3) & 0x3f;
22133 + // process lacks of 64-byte data
22136 + UCHAR *pAds = (UCHAR *) pCtx->Input + temp1;
22138 + if ((temp1+LenInBytes) < 64)
22140 + NdisMoveMemory(pAds, (UCHAR *)pData, LenInBytes);
22144 + NdisMoveMemory(pAds, (UCHAR *)pData, 64-temp1);
22145 + byteReverse((UCHAR *)pCtx->Input, 16);
22147 + NdisZeroMemory((UCHAR *)pCtx->Input + 64, 16);
22148 + SHATransform(pCtx->Buf, (UINT32 *)pCtx->Input);
22150 + pData += 64-temp1;
22151 + LenInBytes -= 64-temp1;
22152 + } // end of if (temp1)
22155 + TfTimes = (LenInBytes >> 6);
22157 + for (i=TfTimes; i>0; i--)
22159 + NdisMoveMemory(pCtx->Input, (UCHAR *)pData, 64);
22160 + byteReverse((UCHAR *)pCtx->Input, 16);
22162 + NdisZeroMemory((UCHAR *)pCtx->Input + 64, 16);
22163 + SHATransform(pCtx->Buf, (UINT32 *)pCtx->Input);
22165 + LenInBytes -= 64;
22168 + // buffering lacks of 64-byte data
22170 + NdisMoveMemory(pCtx->Input, (UCHAR *)pData, LenInBytes);
22176 +// Append padding bits and length of original message in the tail
22177 +// The message digest has to be completed in the end
22178 +VOID SHAFinal(SHA_CTX *pCtx, UCHAR Digest[20])
22181 + UCHAR PadLenInBytes;
22182 + UCHAR *pAppend=0;
22185 + Remainder = (UCHAR)((pCtx->LenInBitCount[0] >> 3) & 0x3f);
22187 + pAppend = (UCHAR *)pCtx->Input + Remainder;
22189 + PadLenInBytes = (Remainder < 56) ? (56-Remainder) : (120-Remainder);
22191 + // padding bits without crossing block(64-byte based) boundary
22192 + if (Remainder < 56)
22195 + PadLenInBytes --;
22197 + NdisZeroMemory((UCHAR *)pCtx->Input + Remainder+1, PadLenInBytes);
22199 + // add data-length field, from high to low
22200 + for (i=0; i<4; i++)
22202 + pCtx->Input[56+i] = (UCHAR)((pCtx->LenInBitCount[1] >> ((3-i) << 3)) & 0xff);
22203 + pCtx->Input[60+i] = (UCHAR)((pCtx->LenInBitCount[0] >> ((3-i) << 3)) & 0xff);
22206 + byteReverse((UCHAR *)pCtx->Input, 16);
22207 + NdisZeroMemory((UCHAR *)pCtx->Input + 64, 14);
22208 + SHATransform(pCtx->Buf, (UINT32 *)pCtx->Input);
22211 + // padding bits with crossing block(64-byte based) boundary
22214 + // the first block ===
22216 + PadLenInBytes --;
22218 + NdisZeroMemory((UCHAR *)pCtx->Input + Remainder+1, (64-Remainder-1));
22219 + PadLenInBytes -= (64 - Remainder - 1);
22221 + byteReverse((UCHAR *)pCtx->Input, 16);
22222 + NdisZeroMemory((UCHAR *)pCtx->Input + 64, 16);
22223 + SHATransform(pCtx->Buf, (UINT32 *)pCtx->Input);
22226 + // the second block ===
22227 + NdisZeroMemory((UCHAR *)pCtx->Input, PadLenInBytes);
22229 + // add data-length field
22230 + for (i=0; i<4; i++)
22232 + pCtx->Input[56+i] = (UCHAR)((pCtx->LenInBitCount[1] >> ((3-i) << 3)) & 0xff);
22233 + pCtx->Input[60+i] = (UCHAR)((pCtx->LenInBitCount[0] >> ((3-i) << 3)) & 0xff);
22236 + byteReverse((UCHAR *)pCtx->Input, 16);
22237 + NdisZeroMemory((UCHAR *)pCtx->Input + 64, 16);
22238 + SHATransform(pCtx->Buf, (UINT32 *)pCtx->Input);
22242 + //Output, bytereverse
22243 + for (i=0; i<20; i++)
22245 + Digest [i] = (UCHAR)(pCtx->Buf[i>>2] >> 8*(3-(i & 0x3)));
22248 + NdisZeroMemory(pCtx, sizeof(pCtx)); // memory free
22252 +// The central algorithm of SHA-1, consists of four rounds and
22253 +// twenty steps per round
22254 +VOID SHATransform(UINT32 Buf[5], UINT32 Mes[20])
22256 + UINT32 Reg[5],Temp;
22260 + static UINT32 SHA1Table[4] = { 0x5a827999, 0x6ed9eba1,
22261 + 0x8f1bbcdc, 0xca62c1d6 };
22269 + //the first octet of a word is stored in the 0th element, bytereverse
22270 + for(i = 0; i < 16; i++)
22272 + W[i] = (Mes[i] >> 24) & 0xff;
22273 + W[i] |= (Mes[i] >> 8 ) & 0xff00;
22274 + W[i] |= (Mes[i] << 8 ) & 0xff0000;
22275 + W[i] |= (Mes[i] << 24) & 0xff000000;
22279 + for (i = 0; i < 64; i++)
22280 + W[16+i] = CYCLIC_LEFT_SHIFT(W[i] ^ W[2+i] ^ W[8+i] ^ W[13+i], 1);
22283 + // 80 steps in SHA-1 algorithm
22284 + for (i=0; i<80; i++)
22287 + SHA1Step(SHA1_F1, Reg[0], Reg[1], Reg[2], Reg[3], Reg[4],
22288 + W[i], SHA1Table[0]);
22290 + else if (i>=20 && i<40)
22291 + SHA1Step(SHA1_F2, Reg[0], Reg[1], Reg[2], Reg[3], Reg[4],
22292 + W[i], SHA1Table[1]);
22294 + else if (i>=40 && i<60)
22295 + SHA1Step(SHA1_F3, Reg[0], Reg[1], Reg[2], Reg[3], Reg[4],
22296 + W[i], SHA1Table[2]);
22299 + SHA1Step(SHA1_F2, Reg[0], Reg[1], Reg[2], Reg[3], Reg[4],
22300 + W[i], SHA1Table[3]);
22303 + // one-word right shift
22311 + } // end of for-loop
22314 + // (temporary)output
22315 + for (i=0; i<5; i++)
22316 + Buf[i] += Reg[i];
22321 +/* ========================= AES En/Decryption ========================== */
22323 +/* forward S-box */
22324 +static uint32 FSb[256] =
22326 + 0x63, 0x7C, 0x77, 0x7B, 0xF2, 0x6B, 0x6F, 0xC5,
22327 + 0x30, 0x01, 0x67, 0x2B, 0xFE, 0xD7, 0xAB, 0x76,
22328 + 0xCA, 0x82, 0xC9, 0x7D, 0xFA, 0x59, 0x47, 0xF0,
22329 + 0xAD, 0xD4, 0xA2, 0xAF, 0x9C, 0xA4, 0x72, 0xC0,
22330 + 0xB7, 0xFD, 0x93, 0x26, 0x36, 0x3F, 0xF7, 0xCC,
22331 + 0x34, 0xA5, 0xE5, 0xF1, 0x71, 0xD8, 0x31, 0x15,
22332 + 0x04, 0xC7, 0x23, 0xC3, 0x18, 0x96, 0x05, 0x9A,
22333 + 0x07, 0x12, 0x80, 0xE2, 0xEB, 0x27, 0xB2, 0x75,
22334 + 0x09, 0x83, 0x2C, 0x1A, 0x1B, 0x6E, 0x5A, 0xA0,
22335 + 0x52, 0x3B, 0xD6, 0xB3, 0x29, 0xE3, 0x2F, 0x84,
22336 + 0x53, 0xD1, 0x00, 0xED, 0x20, 0xFC, 0xB1, 0x5B,
22337 + 0x6A, 0xCB, 0xBE, 0x39, 0x4A, 0x4C, 0x58, 0xCF,
22338 + 0xD0, 0xEF, 0xAA, 0xFB, 0x43, 0x4D, 0x33, 0x85,
22339 + 0x45, 0xF9, 0x02, 0x7F, 0x50, 0x3C, 0x9F, 0xA8,
22340 + 0x51, 0xA3, 0x40, 0x8F, 0x92, 0x9D, 0x38, 0xF5,
22341 + 0xBC, 0xB6, 0xDA, 0x21, 0x10, 0xFF, 0xF3, 0xD2,
22342 + 0xCD, 0x0C, 0x13, 0xEC, 0x5F, 0x97, 0x44, 0x17,
22343 + 0xC4, 0xA7, 0x7E, 0x3D, 0x64, 0x5D, 0x19, 0x73,
22344 + 0x60, 0x81, 0x4F, 0xDC, 0x22, 0x2A, 0x90, 0x88,
22345 + 0x46, 0xEE, 0xB8, 0x14, 0xDE, 0x5E, 0x0B, 0xDB,
22346 + 0xE0, 0x32, 0x3A, 0x0A, 0x49, 0x06, 0x24, 0x5C,
22347 + 0xC2, 0xD3, 0xAC, 0x62, 0x91, 0x95, 0xE4, 0x79,
22348 + 0xE7, 0xC8, 0x37, 0x6D, 0x8D, 0xD5, 0x4E, 0xA9,
22349 + 0x6C, 0x56, 0xF4, 0xEA, 0x65, 0x7A, 0xAE, 0x08,
22350 + 0xBA, 0x78, 0x25, 0x2E, 0x1C, 0xA6, 0xB4, 0xC6,
22351 + 0xE8, 0xDD, 0x74, 0x1F, 0x4B, 0xBD, 0x8B, 0x8A,
22352 + 0x70, 0x3E, 0xB5, 0x66, 0x48, 0x03, 0xF6, 0x0E,
22353 + 0x61, 0x35, 0x57, 0xB9, 0x86, 0xC1, 0x1D, 0x9E,
22354 + 0xE1, 0xF8, 0x98, 0x11, 0x69, 0xD9, 0x8E, 0x94,
22355 + 0x9B, 0x1E, 0x87, 0xE9, 0xCE, 0x55, 0x28, 0xDF,
22356 + 0x8C, 0xA1, 0x89, 0x0D, 0xBF, 0xE6, 0x42, 0x68,
22357 + 0x41, 0x99, 0x2D, 0x0F, 0xB0, 0x54, 0xBB, 0x16
22360 +/* forward table */
22363 + V(C6,63,63,A5), V(F8,7C,7C,84), V(EE,77,77,99), V(F6,7B,7B,8D), \
22364 + V(FF,F2,F2,0D), V(D6,6B,6B,BD), V(DE,6F,6F,B1), V(91,C5,C5,54), \
22365 + V(60,30,30,50), V(02,01,01,03), V(CE,67,67,A9), V(56,2B,2B,7D), \
22366 + V(E7,FE,FE,19), V(B5,D7,D7,62), V(4D,AB,AB,E6), V(EC,76,76,9A), \
22367 + V(8F,CA,CA,45), V(1F,82,82,9D), V(89,C9,C9,40), V(FA,7D,7D,87), \
22368 + V(EF,FA,FA,15), V(B2,59,59,EB), V(8E,47,47,C9), V(FB,F0,F0,0B), \
22369 + V(41,AD,AD,EC), V(B3,D4,D4,67), V(5F,A2,A2,FD), V(45,AF,AF,EA), \
22370 + V(23,9C,9C,BF), V(53,A4,A4,F7), V(E4,72,72,96), V(9B,C0,C0,5B), \
22371 + V(75,B7,B7,C2), V(E1,FD,FD,1C), V(3D,93,93,AE), V(4C,26,26,6A), \
22372 + V(6C,36,36,5A), V(7E,3F,3F,41), V(F5,F7,F7,02), V(83,CC,CC,4F), \
22373 + V(68,34,34,5C), V(51,A5,A5,F4), V(D1,E5,E5,34), V(F9,F1,F1,08), \
22374 + V(E2,71,71,93), V(AB,D8,D8,73), V(62,31,31,53), V(2A,15,15,3F), \
22375 + V(08,04,04,0C), V(95,C7,C7,52), V(46,23,23,65), V(9D,C3,C3,5E), \
22376 + V(30,18,18,28), V(37,96,96,A1), V(0A,05,05,0F), V(2F,9A,9A,B5), \
22377 + V(0E,07,07,09), V(24,12,12,36), V(1B,80,80,9B), V(DF,E2,E2,3D), \
22378 + V(CD,EB,EB,26), V(4E,27,27,69), V(7F,B2,B2,CD), V(EA,75,75,9F), \
22379 + V(12,09,09,1B), V(1D,83,83,9E), V(58,2C,2C,74), V(34,1A,1A,2E), \
22380 + V(36,1B,1B,2D), V(DC,6E,6E,B2), V(B4,5A,5A,EE), V(5B,A0,A0,FB), \
22381 + V(A4,52,52,F6), V(76,3B,3B,4D), V(B7,D6,D6,61), V(7D,B3,B3,CE), \
22382 + V(52,29,29,7B), V(DD,E3,E3,3E), V(5E,2F,2F,71), V(13,84,84,97), \
22383 + V(A6,53,53,F5), V(B9,D1,D1,68), V(00,00,00,00), V(C1,ED,ED,2C), \
22384 + V(40,20,20,60), V(E3,FC,FC,1F), V(79,B1,B1,C8), V(B6,5B,5B,ED), \
22385 + V(D4,6A,6A,BE), V(8D,CB,CB,46), V(67,BE,BE,D9), V(72,39,39,4B), \
22386 + V(94,4A,4A,DE), V(98,4C,4C,D4), V(B0,58,58,E8), V(85,CF,CF,4A), \
22387 + V(BB,D0,D0,6B), V(C5,EF,EF,2A), V(4F,AA,AA,E5), V(ED,FB,FB,16), \
22388 + V(86,43,43,C5), V(9A,4D,4D,D7), V(66,33,33,55), V(11,85,85,94), \
22389 + V(8A,45,45,CF), V(E9,F9,F9,10), V(04,02,02,06), V(FE,7F,7F,81), \
22390 + V(A0,50,50,F0), V(78,3C,3C,44), V(25,9F,9F,BA), V(4B,A8,A8,E3), \
22391 + V(A2,51,51,F3), V(5D,A3,A3,FE), V(80,40,40,C0), V(05,8F,8F,8A), \
22392 + V(3F,92,92,AD), V(21,9D,9D,BC), V(70,38,38,48), V(F1,F5,F5,04), \
22393 + V(63,BC,BC,DF), V(77,B6,B6,C1), V(AF,DA,DA,75), V(42,21,21,63), \
22394 + V(20,10,10,30), V(E5,FF,FF,1A), V(FD,F3,F3,0E), V(BF,D2,D2,6D), \
22395 + V(81,CD,CD,4C), V(18,0C,0C,14), V(26,13,13,35), V(C3,EC,EC,2F), \
22396 + V(BE,5F,5F,E1), V(35,97,97,A2), V(88,44,44,CC), V(2E,17,17,39), \
22397 + V(93,C4,C4,57), V(55,A7,A7,F2), V(FC,7E,7E,82), V(7A,3D,3D,47), \
22398 + V(C8,64,64,AC), V(BA,5D,5D,E7), V(32,19,19,2B), V(E6,73,73,95), \
22399 + V(C0,60,60,A0), V(19,81,81,98), V(9E,4F,4F,D1), V(A3,DC,DC,7F), \
22400 + V(44,22,22,66), V(54,2A,2A,7E), V(3B,90,90,AB), V(0B,88,88,83), \
22401 + V(8C,46,46,CA), V(C7,EE,EE,29), V(6B,B8,B8,D3), V(28,14,14,3C), \
22402 + V(A7,DE,DE,79), V(BC,5E,5E,E2), V(16,0B,0B,1D), V(AD,DB,DB,76), \
22403 + V(DB,E0,E0,3B), V(64,32,32,56), V(74,3A,3A,4E), V(14,0A,0A,1E), \
22404 + V(92,49,49,DB), V(0C,06,06,0A), V(48,24,24,6C), V(B8,5C,5C,E4), \
22405 + V(9F,C2,C2,5D), V(BD,D3,D3,6E), V(43,AC,AC,EF), V(C4,62,62,A6), \
22406 + V(39,91,91,A8), V(31,95,95,A4), V(D3,E4,E4,37), V(F2,79,79,8B), \
22407 + V(D5,E7,E7,32), V(8B,C8,C8,43), V(6E,37,37,59), V(DA,6D,6D,B7), \
22408 + V(01,8D,8D,8C), V(B1,D5,D5,64), V(9C,4E,4E,D2), V(49,A9,A9,E0), \
22409 + V(D8,6C,6C,B4), V(AC,56,56,FA), V(F3,F4,F4,07), V(CF,EA,EA,25), \
22410 + V(CA,65,65,AF), V(F4,7A,7A,8E), V(47,AE,AE,E9), V(10,08,08,18), \
22411 + V(6F,BA,BA,D5), V(F0,78,78,88), V(4A,25,25,6F), V(5C,2E,2E,72), \
22412 + V(38,1C,1C,24), V(57,A6,A6,F1), V(73,B4,B4,C7), V(97,C6,C6,51), \
22413 + V(CB,E8,E8,23), V(A1,DD,DD,7C), V(E8,74,74,9C), V(3E,1F,1F,21), \
22414 + V(96,4B,4B,DD), V(61,BD,BD,DC), V(0D,8B,8B,86), V(0F,8A,8A,85), \
22415 + V(E0,70,70,90), V(7C,3E,3E,42), V(71,B5,B5,C4), V(CC,66,66,AA), \
22416 + V(90,48,48,D8), V(06,03,03,05), V(F7,F6,F6,01), V(1C,0E,0E,12), \
22417 + V(C2,61,61,A3), V(6A,35,35,5F), V(AE,57,57,F9), V(69,B9,B9,D0), \
22418 + V(17,86,86,91), V(99,C1,C1,58), V(3A,1D,1D,27), V(27,9E,9E,B9), \
22419 + V(D9,E1,E1,38), V(EB,F8,F8,13), V(2B,98,98,B3), V(22,11,11,33), \
22420 + V(D2,69,69,BB), V(A9,D9,D9,70), V(07,8E,8E,89), V(33,94,94,A7), \
22421 + V(2D,9B,9B,B6), V(3C,1E,1E,22), V(15,87,87,92), V(C9,E9,E9,20), \
22422 + V(87,CE,CE,49), V(AA,55,55,FF), V(50,28,28,78), V(A5,DF,DF,7A), \
22423 + V(03,8C,8C,8F), V(59,A1,A1,F8), V(09,89,89,80), V(1A,0D,0D,17), \
22424 + V(65,BF,BF,DA), V(D7,E6,E6,31), V(84,42,42,C6), V(D0,68,68,B8), \
22425 + V(82,41,41,C3), V(29,99,99,B0), V(5A,2D,2D,77), V(1E,0F,0F,11), \
22426 + V(7B,B0,B0,CB), V(A8,54,54,FC), V(6D,BB,BB,D6), V(2C,16,16,3A)
22428 +#define V(a,b,c,d) 0x##a##b##c##d
22429 +static uint32 FT0[256] = { FT };
22432 +#define V(a,b,c,d) 0x##d##a##b##c
22433 +static uint32 FT1[256] = { FT };
22436 +#define V(a,b,c,d) 0x##c##d##a##b
22437 +static uint32 FT2[256] = { FT };
22440 +#define V(a,b,c,d) 0x##b##c##d##a
22441 +static uint32 FT3[256] = { FT };
22446 +/* reverse S-box */
22448 +static uint32 RSb[256] =
22450 + 0x52, 0x09, 0x6A, 0xD5, 0x30, 0x36, 0xA5, 0x38,
22451 + 0xBF, 0x40, 0xA3, 0x9E, 0x81, 0xF3, 0xD7, 0xFB,
22452 + 0x7C, 0xE3, 0x39, 0x82, 0x9B, 0x2F, 0xFF, 0x87,
22453 + 0x34, 0x8E, 0x43, 0x44, 0xC4, 0xDE, 0xE9, 0xCB,
22454 + 0x54, 0x7B, 0x94, 0x32, 0xA6, 0xC2, 0x23, 0x3D,
22455 + 0xEE, 0x4C, 0x95, 0x0B, 0x42, 0xFA, 0xC3, 0x4E,
22456 + 0x08, 0x2E, 0xA1, 0x66, 0x28, 0xD9, 0x24, 0xB2,
22457 + 0x76, 0x5B, 0xA2, 0x49, 0x6D, 0x8B, 0xD1, 0x25,
22458 + 0x72, 0xF8, 0xF6, 0x64, 0x86, 0x68, 0x98, 0x16,
22459 + 0xD4, 0xA4, 0x5C, 0xCC, 0x5D, 0x65, 0xB6, 0x92,
22460 + 0x6C, 0x70, 0x48, 0x50, 0xFD, 0xED, 0xB9, 0xDA,
22461 + 0x5E, 0x15, 0x46, 0x57, 0xA7, 0x8D, 0x9D, 0x84,
22462 + 0x90, 0xD8, 0xAB, 0x00, 0x8C, 0xBC, 0xD3, 0x0A,
22463 + 0xF7, 0xE4, 0x58, 0x05, 0xB8, 0xB3, 0x45, 0x06,
22464 + 0xD0, 0x2C, 0x1E, 0x8F, 0xCA, 0x3F, 0x0F, 0x02,
22465 + 0xC1, 0xAF, 0xBD, 0x03, 0x01, 0x13, 0x8A, 0x6B,
22466 + 0x3A, 0x91, 0x11, 0x41, 0x4F, 0x67, 0xDC, 0xEA,
22467 + 0x97, 0xF2, 0xCF, 0xCE, 0xF0, 0xB4, 0xE6, 0x73,
22468 + 0x96, 0xAC, 0x74, 0x22, 0xE7, 0xAD, 0x35, 0x85,
22469 + 0xE2, 0xF9, 0x37, 0xE8, 0x1C, 0x75, 0xDF, 0x6E,
22470 + 0x47, 0xF1, 0x1A, 0x71, 0x1D, 0x29, 0xC5, 0x89,
22471 + 0x6F, 0xB7, 0x62, 0x0E, 0xAA, 0x18, 0xBE, 0x1B,
22472 + 0xFC, 0x56, 0x3E, 0x4B, 0xC6, 0xD2, 0x79, 0x20,
22473 + 0x9A, 0xDB, 0xC0, 0xFE, 0x78, 0xCD, 0x5A, 0xF4,
22474 + 0x1F, 0xDD, 0xA8, 0x33, 0x88, 0x07, 0xC7, 0x31,
22475 + 0xB1, 0x12, 0x10, 0x59, 0x27, 0x80, 0xEC, 0x5F,
22476 + 0x60, 0x51, 0x7F, 0xA9, 0x19, 0xB5, 0x4A, 0x0D,
22477 + 0x2D, 0xE5, 0x7A, 0x9F, 0x93, 0xC9, 0x9C, 0xEF,
22478 + 0xA0, 0xE0, 0x3B, 0x4D, 0xAE, 0x2A, 0xF5, 0xB0,
22479 + 0xC8, 0xEB, 0xBB, 0x3C, 0x83, 0x53, 0x99, 0x61,
22480 + 0x17, 0x2B, 0x04, 0x7E, 0xBA, 0x77, 0xD6, 0x26,
22481 + 0xE1, 0x69, 0x14, 0x63, 0x55, 0x21, 0x0C, 0x7D
22484 +/* reverse table */
22488 + V(51,F4,A7,50), V(7E,41,65,53), V(1A,17,A4,C3), V(3A,27,5E,96), \
22489 + V(3B,AB,6B,CB), V(1F,9D,45,F1), V(AC,FA,58,AB), V(4B,E3,03,93), \
22490 + V(20,30,FA,55), V(AD,76,6D,F6), V(88,CC,76,91), V(F5,02,4C,25), \
22491 + V(4F,E5,D7,FC), V(C5,2A,CB,D7), V(26,35,44,80), V(B5,62,A3,8F), \
22492 + V(DE,B1,5A,49), V(25,BA,1B,67), V(45,EA,0E,98), V(5D,FE,C0,E1), \
22493 + V(C3,2F,75,02), V(81,4C,F0,12), V(8D,46,97,A3), V(6B,D3,F9,C6), \
22494 + V(03,8F,5F,E7), V(15,92,9C,95), V(BF,6D,7A,EB), V(95,52,59,DA), \
22495 + V(D4,BE,83,2D), V(58,74,21,D3), V(49,E0,69,29), V(8E,C9,C8,44), \
22496 + V(75,C2,89,6A), V(F4,8E,79,78), V(99,58,3E,6B), V(27,B9,71,DD), \
22497 + V(BE,E1,4F,B6), V(F0,88,AD,17), V(C9,20,AC,66), V(7D,CE,3A,B4), \
22498 + V(63,DF,4A,18), V(E5,1A,31,82), V(97,51,33,60), V(62,53,7F,45), \
22499 + V(B1,64,77,E0), V(BB,6B,AE,84), V(FE,81,A0,1C), V(F9,08,2B,94), \
22500 + V(70,48,68,58), V(8F,45,FD,19), V(94,DE,6C,87), V(52,7B,F8,B7), \
22501 + V(AB,73,D3,23), V(72,4B,02,E2), V(E3,1F,8F,57), V(66,55,AB,2A), \
22502 + V(B2,EB,28,07), V(2F,B5,C2,03), V(86,C5,7B,9A), V(D3,37,08,A5), \
22503 + V(30,28,87,F2), V(23,BF,A5,B2), V(02,03,6A,BA), V(ED,16,82,5C), \
22504 + V(8A,CF,1C,2B), V(A7,79,B4,92), V(F3,07,F2,F0), V(4E,69,E2,A1), \
22505 + V(65,DA,F4,CD), V(06,05,BE,D5), V(D1,34,62,1F), V(C4,A6,FE,8A), \
22506 + V(34,2E,53,9D), V(A2,F3,55,A0), V(05,8A,E1,32), V(A4,F6,EB,75), \
22507 + V(0B,83,EC,39), V(40,60,EF,AA), V(5E,71,9F,06), V(BD,6E,10,51), \
22508 + V(3E,21,8A,F9), V(96,DD,06,3D), V(DD,3E,05,AE), V(4D,E6,BD,46), \
22509 + V(91,54,8D,B5), V(71,C4,5D,05), V(04,06,D4,6F), V(60,50,15,FF), \
22510 + V(19,98,FB,24), V(D6,BD,E9,97), V(89,40,43,CC), V(67,D9,9E,77), \
22511 + V(B0,E8,42,BD), V(07,89,8B,88), V(E7,19,5B,38), V(79,C8,EE,DB), \
22512 + V(A1,7C,0A,47), V(7C,42,0F,E9), V(F8,84,1E,C9), V(00,00,00,00), \
22513 + V(09,80,86,83), V(32,2B,ED,48), V(1E,11,70,AC), V(6C,5A,72,4E), \
22514 + V(FD,0E,FF,FB), V(0F,85,38,56), V(3D,AE,D5,1E), V(36,2D,39,27), \
22515 + V(0A,0F,D9,64), V(68,5C,A6,21), V(9B,5B,54,D1), V(24,36,2E,3A), \
22516 + V(0C,0A,67,B1), V(93,57,E7,0F), V(B4,EE,96,D2), V(1B,9B,91,9E), \
22517 + V(80,C0,C5,4F), V(61,DC,20,A2), V(5A,77,4B,69), V(1C,12,1A,16), \
22518 + V(E2,93,BA,0A), V(C0,A0,2A,E5), V(3C,22,E0,43), V(12,1B,17,1D), \
22519 + V(0E,09,0D,0B), V(F2,8B,C7,AD), V(2D,B6,A8,B9), V(14,1E,A9,C8), \
22520 + V(57,F1,19,85), V(AF,75,07,4C), V(EE,99,DD,BB), V(A3,7F,60,FD), \
22521 + V(F7,01,26,9F), V(5C,72,F5,BC), V(44,66,3B,C5), V(5B,FB,7E,34), \
22522 + V(8B,43,29,76), V(CB,23,C6,DC), V(B6,ED,FC,68), V(B8,E4,F1,63), \
22523 + V(D7,31,DC,CA), V(42,63,85,10), V(13,97,22,40), V(84,C6,11,20), \
22524 + V(85,4A,24,7D), V(D2,BB,3D,F8), V(AE,F9,32,11), V(C7,29,A1,6D), \
22525 + V(1D,9E,2F,4B), V(DC,B2,30,F3), V(0D,86,52,EC), V(77,C1,E3,D0), \
22526 + V(2B,B3,16,6C), V(A9,70,B9,99), V(11,94,48,FA), V(47,E9,64,22), \
22527 + V(A8,FC,8C,C4), V(A0,F0,3F,1A), V(56,7D,2C,D8), V(22,33,90,EF), \
22528 + V(87,49,4E,C7), V(D9,38,D1,C1), V(8C,CA,A2,FE), V(98,D4,0B,36), \
22529 + V(A6,F5,81,CF), V(A5,7A,DE,28), V(DA,B7,8E,26), V(3F,AD,BF,A4), \
22530 + V(2C,3A,9D,E4), V(50,78,92,0D), V(6A,5F,CC,9B), V(54,7E,46,62), \
22531 + V(F6,8D,13,C2), V(90,D8,B8,E8), V(2E,39,F7,5E), V(82,C3,AF,F5), \
22532 + V(9F,5D,80,BE), V(69,D0,93,7C), V(6F,D5,2D,A9), V(CF,25,12,B3), \
22533 + V(C8,AC,99,3B), V(10,18,7D,A7), V(E8,9C,63,6E), V(DB,3B,BB,7B), \
22534 + V(CD,26,78,09), V(6E,59,18,F4), V(EC,9A,B7,01), V(83,4F,9A,A8), \
22535 + V(E6,95,6E,65), V(AA,FF,E6,7E), V(21,BC,CF,08), V(EF,15,E8,E6), \
22536 + V(BA,E7,9B,D9), V(4A,6F,36,CE), V(EA,9F,09,D4), V(29,B0,7C,D6), \
22537 + V(31,A4,B2,AF), V(2A,3F,23,31), V(C6,A5,94,30), V(35,A2,66,C0), \
22538 + V(74,4E,BC,37), V(FC,82,CA,A6), V(E0,90,D0,B0), V(33,A7,D8,15), \
22539 + V(F1,04,98,4A), V(41,EC,DA,F7), V(7F,CD,50,0E), V(17,91,F6,2F), \
22540 + V(76,4D,D6,8D), V(43,EF,B0,4D), V(CC,AA,4D,54), V(E4,96,04,DF), \
22541 + V(9E,D1,B5,E3), V(4C,6A,88,1B), V(C1,2C,1F,B8), V(46,65,51,7F), \
22542 + V(9D,5E,EA,04), V(01,8C,35,5D), V(FA,87,74,73), V(FB,0B,41,2E), \
22543 + V(B3,67,1D,5A), V(92,DB,D2,52), V(E9,10,56,33), V(6D,D6,47,13), \
22544 + V(9A,D7,61,8C), V(37,A1,0C,7A), V(59,F8,14,8E), V(EB,13,3C,89), \
22545 + V(CE,A9,27,EE), V(B7,61,C9,35), V(E1,1C,E5,ED), V(7A,47,B1,3C), \
22546 + V(9C,D2,DF,59), V(55,F2,73,3F), V(18,14,CE,79), V(73,C7,37,BF), \
22547 + V(53,F7,CD,EA), V(5F,FD,AA,5B), V(DF,3D,6F,14), V(78,44,DB,86), \
22548 + V(CA,AF,F3,81), V(B9,68,C4,3E), V(38,24,34,2C), V(C2,A3,40,5F), \
22549 + V(16,1D,C3,72), V(BC,E2,25,0C), V(28,3C,49,8B), V(FF,0D,95,41), \
22550 + V(39,A8,01,71), V(08,0C,B3,DE), V(D8,B4,E4,9C), V(64,56,C1,90), \
22551 + V(7B,CB,84,61), V(D5,32,B6,70), V(48,6C,5C,74), V(D0,B8,57,42)
22553 +#define V(a,b,c,d) 0x##a##b##c##d
22554 +static uint32 RT0[256] = { RT };
22557 +#define V(a,b,c,d) 0x##d##a##b##c
22558 +static uint32 RT1[256] = { RT };
22561 +#define V(a,b,c,d) 0x##c##d##a##b
22562 +static uint32 RT2[256] = { RT };
22565 +#define V(a,b,c,d) 0x##b##c##d##a
22566 +static uint32 RT3[256] = { RT };
22571 +/* round constants */
22573 +static uint32 RCON[10] =
22575 + 0x01000000, 0x02000000, 0x04000000, 0x08000000,
22576 + 0x10000000, 0x20000000, 0x40000000, 0x80000000,
22577 + 0x1B000000, 0x36000000
22580 +/* key schedule tables */
22582 +static int KT_init = 1;
22584 +static uint32 KT0[256];
22585 +static uint32 KT1[256];
22586 +static uint32 KT2[256];
22587 +static uint32 KT3[256];
22589 +/* platform-independant 32-bit integer manipulation macros */
22591 +#define GET_UINT32(n,b,i) \
22593 + (n) = ( (uint32) (b)[(i) ] << 24 ) \
22594 + | ( (uint32) (b)[(i) + 1] << 16 ) \
22595 + | ( (uint32) (b)[(i) + 2] << 8 ) \
22596 + | ( (uint32) (b)[(i) + 3] ); \
22599 +#define PUT_UINT32(n,b,i) \
22601 + (b)[(i) ] = (uint8) ( (n) >> 24 ); \
22602 + (b)[(i) + 1] = (uint8) ( (n) >> 16 ); \
22603 + (b)[(i) + 2] = (uint8) ( (n) >> 8 ); \
22604 + (b)[(i) + 3] = (uint8) ( (n) ); \
22607 +/* AES key scheduling routine */
22609 +int rtmp_aes_set_key( aes_context *ctx, uint8 *key, int nbits )
22616 + case 128: ctx->nr = 10; break;
22617 + case 192: ctx->nr = 12; break;
22618 + case 256: ctx->nr = 14; break;
22619 + default : return( 1 );
22624 + for( i = 0; i < (nbits >> 5); i++ )
22626 + GET_UINT32( RK[i], key, i * 4 );
22629 + /* setup encryption round keys */
22635 + for( i = 0; i < 10; i++, RK += 4 )
22637 + RK[4] = RK[0] ^ RCON[i] ^
22638 + ( FSb[ (uint8) ( RK[3] >> 16 ) ] << 24 ) ^
22639 + ( FSb[ (uint8) ( RK[3] >> 8 ) ] << 16 ) ^
22640 + ( FSb[ (uint8) ( RK[3] ) ] << 8 ) ^
22641 + ( FSb[ (uint8) ( RK[3] >> 24 ) ] );
22643 + RK[5] = RK[1] ^ RK[4];
22644 + RK[6] = RK[2] ^ RK[5];
22645 + RK[7] = RK[3] ^ RK[6];
22651 + for( i = 0; i < 8; i++, RK += 6 )
22653 + RK[6] = RK[0] ^ RCON[i] ^
22654 + ( FSb[ (uint8) ( RK[5] >> 16 ) ] << 24 ) ^
22655 + ( FSb[ (uint8) ( RK[5] >> 8 ) ] << 16 ) ^
22656 + ( FSb[ (uint8) ( RK[5] ) ] << 8 ) ^
22657 + ( FSb[ (uint8) ( RK[5] >> 24 ) ] );
22659 + RK[7] = RK[1] ^ RK[6];
22660 + RK[8] = RK[2] ^ RK[7];
22661 + RK[9] = RK[3] ^ RK[8];
22662 + RK[10] = RK[4] ^ RK[9];
22663 + RK[11] = RK[5] ^ RK[10];
22669 + for( i = 0; i < 7; i++, RK += 8 )
22671 + RK[8] = RK[0] ^ RCON[i] ^
22672 + ( FSb[ (uint8) ( RK[7] >> 16 ) ] << 24 ) ^
22673 + ( FSb[ (uint8) ( RK[7] >> 8 ) ] << 16 ) ^
22674 + ( FSb[ (uint8) ( RK[7] ) ] << 8 ) ^
22675 + ( FSb[ (uint8) ( RK[7] >> 24 ) ] );
22677 + RK[9] = RK[1] ^ RK[8];
22678 + RK[10] = RK[2] ^ RK[9];
22679 + RK[11] = RK[3] ^ RK[10];
22682 + ( FSb[ (uint8) ( RK[11] >> 24 ) ] << 24 ) ^
22683 + ( FSb[ (uint8) ( RK[11] >> 16 ) ] << 16 ) ^
22684 + ( FSb[ (uint8) ( RK[11] >> 8 ) ] << 8 ) ^
22685 + ( FSb[ (uint8) ( RK[11] ) ] );
22687 + RK[13] = RK[5] ^ RK[12];
22688 + RK[14] = RK[6] ^ RK[13];
22689 + RK[15] = RK[7] ^ RK[14];
22694 + /* setup decryption round keys */
22698 + for( i = 0; i < 256; i++ )
22700 + KT0[i] = RT0[ FSb[i] ];
22701 + KT1[i] = RT1[ FSb[i] ];
22702 + KT2[i] = RT2[ FSb[i] ];
22703 + KT3[i] = RT3[ FSb[i] ];
22716 + for( i = 1; i < ctx->nr; i++ )
22720 + *SK++ = KT0[ (uint8) ( *RK >> 24 ) ] ^
22721 + KT1[ (uint8) ( *RK >> 16 ) ] ^
22722 + KT2[ (uint8) ( *RK >> 8 ) ] ^
22723 + KT3[ (uint8) ( *RK ) ]; RK++;
22725 + *SK++ = KT0[ (uint8) ( *RK >> 24 ) ] ^
22726 + KT1[ (uint8) ( *RK >> 16 ) ] ^
22727 + KT2[ (uint8) ( *RK >> 8 ) ] ^
22728 + KT3[ (uint8) ( *RK ) ]; RK++;
22730 + *SK++ = KT0[ (uint8) ( *RK >> 24 ) ] ^
22731 + KT1[ (uint8) ( *RK >> 16 ) ] ^
22732 + KT2[ (uint8) ( *RK >> 8 ) ] ^
22733 + KT3[ (uint8) ( *RK ) ]; RK++;
22735 + *SK++ = KT0[ (uint8) ( *RK >> 24 ) ] ^
22736 + KT1[ (uint8) ( *RK >> 16 ) ] ^
22737 + KT2[ (uint8) ( *RK >> 8 ) ] ^
22738 + KT3[ (uint8) ( *RK ) ]; RK++;
22751 +/* AES 128-bit block encryption routine */
22753 +void rtmp_aes_encrypt(aes_context *ctx, uint8 input[16], uint8 output[16] )
22755 + uint32 *RK, X0, X1, X2, X3, Y0, Y1, Y2, Y3;
22758 + GET_UINT32( X0, input, 0 ); X0 ^= RK[0];
22759 + GET_UINT32( X1, input, 4 ); X1 ^= RK[1];
22760 + GET_UINT32( X2, input, 8 ); X2 ^= RK[2];
22761 + GET_UINT32( X3, input, 12 ); X3 ^= RK[3];
22763 +#define AES_FROUND(X0,X1,X2,X3,Y0,Y1,Y2,Y3) \
22767 + X0 = RK[0] ^ FT0[ (uint8) ( Y0 >> 24 ) ] ^ \
22768 + FT1[ (uint8) ( Y1 >> 16 ) ] ^ \
22769 + FT2[ (uint8) ( Y2 >> 8 ) ] ^ \
22770 + FT3[ (uint8) ( Y3 ) ]; \
22772 + X1 = RK[1] ^ FT0[ (uint8) ( Y1 >> 24 ) ] ^ \
22773 + FT1[ (uint8) ( Y2 >> 16 ) ] ^ \
22774 + FT2[ (uint8) ( Y3 >> 8 ) ] ^ \
22775 + FT3[ (uint8) ( Y0 ) ]; \
22777 + X2 = RK[2] ^ FT0[ (uint8) ( Y2 >> 24 ) ] ^ \
22778 + FT1[ (uint8) ( Y3 >> 16 ) ] ^ \
22779 + FT2[ (uint8) ( Y0 >> 8 ) ] ^ \
22780 + FT3[ (uint8) ( Y1 ) ]; \
22782 + X3 = RK[3] ^ FT0[ (uint8) ( Y3 >> 24 ) ] ^ \
22783 + FT1[ (uint8) ( Y0 >> 16 ) ] ^ \
22784 + FT2[ (uint8) ( Y1 >> 8 ) ] ^ \
22785 + FT3[ (uint8) ( Y2 ) ]; \
22788 + AES_FROUND( Y0, Y1, Y2, Y3, X0, X1, X2, X3 ); /* round 1 */
22789 + AES_FROUND( X0, X1, X2, X3, Y0, Y1, Y2, Y3 ); /* round 2 */
22790 + AES_FROUND( Y0, Y1, Y2, Y3, X0, X1, X2, X3 ); /* round 3 */
22791 + AES_FROUND( X0, X1, X2, X3, Y0, Y1, Y2, Y3 ); /* round 4 */
22792 + AES_FROUND( Y0, Y1, Y2, Y3, X0, X1, X2, X3 ); /* round 5 */
22793 + AES_FROUND( X0, X1, X2, X3, Y0, Y1, Y2, Y3 ); /* round 6 */
22794 + AES_FROUND( Y0, Y1, Y2, Y3, X0, X1, X2, X3 ); /* round 7 */
22795 + AES_FROUND( X0, X1, X2, X3, Y0, Y1, Y2, Y3 ); /* round 8 */
22796 + AES_FROUND( Y0, Y1, Y2, Y3, X0, X1, X2, X3 ); /* round 9 */
22798 + if( ctx->nr > 10 )
22800 + AES_FROUND( X0, X1, X2, X3, Y0, Y1, Y2, Y3 ); /* round 10 */
22801 + AES_FROUND( Y0, Y1, Y2, Y3, X0, X1, X2, X3 ); /* round 11 */
22804 + if( ctx->nr > 12 )
22806 + AES_FROUND( X0, X1, X2, X3, Y0, Y1, Y2, Y3 ); /* round 12 */
22807 + AES_FROUND( Y0, Y1, Y2, Y3, X0, X1, X2, X3 ); /* round 13 */
22814 + X0 = RK[0] ^ ( FSb[ (uint8) ( Y0 >> 24 ) ] << 24 ) ^
22815 + ( FSb[ (uint8) ( Y1 >> 16 ) ] << 16 ) ^
22816 + ( FSb[ (uint8) ( Y2 >> 8 ) ] << 8 ) ^
22817 + ( FSb[ (uint8) ( Y3 ) ] );
22819 + X1 = RK[1] ^ ( FSb[ (uint8) ( Y1 >> 24 ) ] << 24 ) ^
22820 + ( FSb[ (uint8) ( Y2 >> 16 ) ] << 16 ) ^
22821 + ( FSb[ (uint8) ( Y3 >> 8 ) ] << 8 ) ^
22822 + ( FSb[ (uint8) ( Y0 ) ] );
22824 + X2 = RK[2] ^ ( FSb[ (uint8) ( Y2 >> 24 ) ] << 24 ) ^
22825 + ( FSb[ (uint8) ( Y3 >> 16 ) ] << 16 ) ^
22826 + ( FSb[ (uint8) ( Y0 >> 8 ) ] << 8 ) ^
22827 + ( FSb[ (uint8) ( Y1 ) ] );
22829 + X3 = RK[3] ^ ( FSb[ (uint8) ( Y3 >> 24 ) ] << 24 ) ^
22830 + ( FSb[ (uint8) ( Y0 >> 16 ) ] << 16 ) ^
22831 + ( FSb[ (uint8) ( Y1 >> 8 ) ] << 8 ) ^
22832 + ( FSb[ (uint8) ( Y2 ) ] );
22834 + PUT_UINT32( X0, output, 0 );
22835 + PUT_UINT32( X1, output, 4 );
22836 + PUT_UINT32( X2, output, 8 );
22837 + PUT_UINT32( X3, output, 12 );
22840 +/* AES 128-bit block decryption routine */
22842 +void rtmp_aes_decrypt( aes_context *ctx, uint8 input[16], uint8 output[16] )
22844 + uint32 *RK, X0, X1, X2, X3, Y0, Y1, Y2, Y3;
22848 + GET_UINT32( X0, input, 0 ); X0 ^= RK[0];
22849 + GET_UINT32( X1, input, 4 ); X1 ^= RK[1];
22850 + GET_UINT32( X2, input, 8 ); X2 ^= RK[2];
22851 + GET_UINT32( X3, input, 12 ); X3 ^= RK[3];
22853 +#define AES_RROUND(X0,X1,X2,X3,Y0,Y1,Y2,Y3) \
22857 + X0 = RK[0] ^ RT0[ (uint8) ( Y0 >> 24 ) ] ^ \
22858 + RT1[ (uint8) ( Y3 >> 16 ) ] ^ \
22859 + RT2[ (uint8) ( Y2 >> 8 ) ] ^ \
22860 + RT3[ (uint8) ( Y1 ) ]; \
22862 + X1 = RK[1] ^ RT0[ (uint8) ( Y1 >> 24 ) ] ^ \
22863 + RT1[ (uint8) ( Y0 >> 16 ) ] ^ \
22864 + RT2[ (uint8) ( Y3 >> 8 ) ] ^ \
22865 + RT3[ (uint8) ( Y2 ) ]; \
22867 + X2 = RK[2] ^ RT0[ (uint8) ( Y2 >> 24 ) ] ^ \
22868 + RT1[ (uint8) ( Y1 >> 16 ) ] ^ \
22869 + RT2[ (uint8) ( Y0 >> 8 ) ] ^ \
22870 + RT3[ (uint8) ( Y3 ) ]; \
22872 + X3 = RK[3] ^ RT0[ (uint8) ( Y3 >> 24 ) ] ^ \
22873 + RT1[ (uint8) ( Y2 >> 16 ) ] ^ \
22874 + RT2[ (uint8) ( Y1 >> 8 ) ] ^ \
22875 + RT3[ (uint8) ( Y0 ) ]; \
22878 + AES_RROUND( Y0, Y1, Y2, Y3, X0, X1, X2, X3 ); /* round 1 */
22879 + AES_RROUND( X0, X1, X2, X3, Y0, Y1, Y2, Y3 ); /* round 2 */
22880 + AES_RROUND( Y0, Y1, Y2, Y3, X0, X1, X2, X3 ); /* round 3 */
22881 + AES_RROUND( X0, X1, X2, X3, Y0, Y1, Y2, Y3 ); /* round 4 */
22882 + AES_RROUND( Y0, Y1, Y2, Y3, X0, X1, X2, X3 ); /* round 5 */
22883 + AES_RROUND( X0, X1, X2, X3, Y0, Y1, Y2, Y3 ); /* round 6 */
22884 + AES_RROUND( Y0, Y1, Y2, Y3, X0, X1, X2, X3 ); /* round 7 */
22885 + AES_RROUND( X0, X1, X2, X3, Y0, Y1, Y2, Y3 ); /* round 8 */
22886 + AES_RROUND( Y0, Y1, Y2, Y3, X0, X1, X2, X3 ); /* round 9 */
22888 + if( ctx->nr > 10 )
22890 + AES_RROUND( X0, X1, X2, X3, Y0, Y1, Y2, Y3 ); /* round 10 */
22891 + AES_RROUND( Y0, Y1, Y2, Y3, X0, X1, X2, X3 ); /* round 11 */
22894 + if( ctx->nr > 12 )
22896 + AES_RROUND( X0, X1, X2, X3, Y0, Y1, Y2, Y3 ); /* round 12 */
22897 + AES_RROUND( Y0, Y1, Y2, Y3, X0, X1, X2, X3 ); /* round 13 */
22904 + X0 = RK[0] ^ ( RSb[ (uint8) ( Y0 >> 24 ) ] << 24 ) ^
22905 + ( RSb[ (uint8) ( Y3 >> 16 ) ] << 16 ) ^
22906 + ( RSb[ (uint8) ( Y2 >> 8 ) ] << 8 ) ^
22907 + ( RSb[ (uint8) ( Y1 ) ] );
22909 + X1 = RK[1] ^ ( RSb[ (uint8) ( Y1 >> 24 ) ] << 24 ) ^
22910 + ( RSb[ (uint8) ( Y0 >> 16 ) ] << 16 ) ^
22911 + ( RSb[ (uint8) ( Y3 >> 8 ) ] << 8 ) ^
22912 + ( RSb[ (uint8) ( Y2 ) ] );
22914 + X2 = RK[2] ^ ( RSb[ (uint8) ( Y2 >> 24 ) ] << 24 ) ^
22915 + ( RSb[ (uint8) ( Y1 >> 16 ) ] << 16 ) ^
22916 + ( RSb[ (uint8) ( Y0 >> 8 ) ] << 8 ) ^
22917 + ( RSb[ (uint8) ( Y3 ) ] );
22919 + X3 = RK[3] ^ ( RSb[ (uint8) ( Y3 >> 24 ) ] << 24 ) ^
22920 + ( RSb[ (uint8) ( Y2 >> 16 ) ] << 16 ) ^
22921 + ( RSb[ (uint8) ( Y1 >> 8 ) ] << 8 ) ^
22922 + ( RSb[ (uint8) ( Y0 ) ] );
22924 + PUT_UINT32( X0, output, 0 );
22925 + PUT_UINT32( X1, output, 4 );
22926 + PUT_UINT32( X2, output, 8 );
22927 + PUT_UINT32( X3, output, 12 );
22931 + ========================================================================
22933 + Routine Description:
22942 + ========================================================================
22946 + IN UINT text_len,
22949 + IN UCHAR *digest)
22952 + UCHAR k_ipad[65]; /* inner padding - key XORd with ipad */
22953 + UCHAR k_opad[65]; /* outer padding - key XORd with opad */
22956 + // if key is longer than 64 bytes reset it to key=SHA1(key)
22957 + if (key_len > 64)
22961 + SHAUpdate(&tctx, key, key_len);
22962 + SHAFinal(&tctx, key);
22965 + NdisZeroMemory(k_ipad, sizeof(k_ipad));
22966 + NdisZeroMemory(k_opad, sizeof(k_opad));
22967 + NdisMoveMemory(k_ipad, key, key_len);
22968 + NdisMoveMemory(k_opad, key, key_len);
22970 + // XOR key with ipad and opad values
22971 + for (i = 0; i < 64; i++)
22973 + k_ipad[i] ^= 0x36;
22974 + k_opad[i] ^= 0x5c;
22977 + // perform inner SHA1
22978 + SHAInit(&context); /* init context for 1st pass */
22979 + SHAUpdate(&context, k_ipad, 64); /* start with inner pad */
22980 + SHAUpdate(&context, text, text_len); /* then text of datagram */
22981 + SHAFinal(&context, digest); /* finish up 1st pass */
22983 + //perform outer SHA1
22984 + SHAInit(&context); /* init context for 2nd pass */
22985 + SHAUpdate(&context, k_opad, 64); /* start with outer pad */
22986 + SHAUpdate(&context, digest, 20); /* then results of 1st hash */
22987 + SHAFinal(&context, digest); /* finish up 2nd pass */
22992 +* F(P, S, c, i) = U1 xor U2 xor ... Uc
22993 +* U1 = PRF(P, S || Int(i))
22995 +* Uc = PRF(P, Uc-1)
22998 +void F(char *password, unsigned char *ssid, int ssidlength, int iterations, int count, unsigned char *output)
23000 + unsigned char digest[36], digest1[SHA_DIGEST_LEN];
23003 + /* U1 = PRF(P, S || int(i)) */
23004 + memcpy(digest, ssid, ssidlength);
23005 + digest[ssidlength] = (unsigned char)((count>>24) & 0xff);
23006 + digest[ssidlength+1] = (unsigned char)((count>>16) & 0xff);
23007 + digest[ssidlength+2] = (unsigned char)((count>>8) & 0xff);
23008 + digest[ssidlength+3] = (unsigned char)(count & 0xff);
23009 + HMAC_SHA1(digest, ssidlength+4, (unsigned char*) password, (int) strlen(password), digest1); // for WPA update
23011 + /* output = U1 */
23012 + memcpy(output, digest1, SHA_DIGEST_LEN);
23014 + for (i = 1; i < iterations; i++)
23016 + /* Un = PRF(P, Un-1) */
23017 + HMAC_SHA1(digest1, SHA_DIGEST_LEN, (unsigned char*) password, (int) strlen(password), digest); // for WPA update
23018 + memcpy(digest1, digest, SHA_DIGEST_LEN);
23020 + /* output = output xor Un */
23021 + for (j = 0; j < SHA_DIGEST_LEN; j++)
23023 + output[j] ^= digest[j];
23028 +* password - ascii string up to 63 characters in length
23029 +* ssid - octet string up to 32 octets
23030 +* ssidlength - length of ssid in octets
23031 +* output must be 40 octets in length and outputs 256 bits of key
23033 +int PasswordHash(char *password, unsigned char *ssid, int ssidlength, unsigned char *output)
23035 + if ((strlen(password) > 63) || (ssidlength > 32))
23038 + F(password, ssid, ssidlength, 4096, 1, output);
23039 + F(password, ssid, ssidlength, 4096, 2, &output[SHA_DIGEST_LEN]);
23045 +++ b/drivers/staging/rt3070/common/mlme.c
23048 + *************************************************************************
23049 + * Ralink Tech Inc.
23050 + * 5F., No.36, Taiyuan St., Jhubei City,
23051 + * Hsinchu County 302,
23054 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
23056 + * This program is free software; you can redistribute it and/or modify *
23057 + * it under the terms of the GNU General Public License as published by *
23058 + * the Free Software Foundation; either version 2 of the License, or *
23059 + * (at your option) any later version. *
23061 + * This program is distributed in the hope that it will be useful, *
23062 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
23063 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
23064 + * GNU General Public License for more details. *
23066 + * You should have received a copy of the GNU General Public License *
23067 + * along with this program; if not, write to the *
23068 + * Free Software Foundation, Inc., *
23069 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
23071 + *************************************************************************
23078 + Revision History:
23080 + -------- ---------- ----------------------------------------------
23081 + John Chang 2004-08-25 Modify from RT2500 code base
23082 + John Chang 2004-09-06 modified for RT2600
23085 +#include "../rt_config.h"
23086 +#include <stdarg.h>
23088 +UCHAR CISCO_OUI[] = {0x00, 0x40, 0x96};
23090 +UCHAR WPA_OUI[] = {0x00, 0x50, 0xf2, 0x01};
23091 +UCHAR RSN_OUI[] = {0x00, 0x0f, 0xac};
23092 +UCHAR WAPI_OUI[] = {0x00, 0x14, 0x72};
23093 +UCHAR WME_INFO_ELEM[] = {0x00, 0x50, 0xf2, 0x02, 0x00, 0x01};
23094 +UCHAR WME_PARM_ELEM[] = {0x00, 0x50, 0xf2, 0x02, 0x01, 0x01};
23095 +UCHAR Ccx2QosInfo[] = {0x00, 0x40, 0x96, 0x04};
23096 +UCHAR RALINK_OUI[] = {0x00, 0x0c, 0x43};
23097 +UCHAR BROADCOM_OUI[] = {0x00, 0x90, 0x4c};
23098 +UCHAR WPS_OUI[] = {0x00, 0x50, 0xf2, 0x04};
23099 +#ifdef CONFIG_STA_SUPPORT
23100 +#ifdef DOT11_N_SUPPORT
23101 +UCHAR PRE_N_HT_OUI[] = {0x00, 0x90, 0x4c};
23102 +#endif // DOT11_N_SUPPORT //
23103 +#endif // CONFIG_STA_SUPPORT //
23105 +UCHAR RateSwitchTable[] = {
23106 +// Item No. Mode Curr-MCS TrainUp TrainDown // Mode- Bit0: STBC, Bit1: Short GI, Bit4,5: Mode(0:CCK, 1:OFDM, 2:HT Mix, 3:HT GF)
23107 + 0x11, 0x00, 0, 0, 0, // Initial used item after association
23108 + 0x00, 0x00, 0, 40, 101,
23109 + 0x01, 0x00, 1, 40, 50,
23110 + 0x02, 0x00, 2, 35, 45,
23111 + 0x03, 0x00, 3, 20, 45,
23112 + 0x04, 0x21, 0, 30, 50,
23113 + 0x05, 0x21, 1, 20, 50,
23114 + 0x06, 0x21, 2, 20, 50,
23115 + 0x07, 0x21, 3, 15, 50,
23116 + 0x08, 0x21, 4, 15, 30,
23117 + 0x09, 0x21, 5, 10, 25,
23118 + 0x0a, 0x21, 6, 8, 25,
23119 + 0x0b, 0x21, 7, 8, 25,
23120 + 0x0c, 0x20, 12, 15, 30,
23121 + 0x0d, 0x20, 13, 8, 20,
23122 + 0x0e, 0x20, 14, 8, 20,
23123 + 0x0f, 0x20, 15, 8, 25,
23124 + 0x10, 0x22, 15, 8, 25,
23125 + 0x11, 0x00, 0, 0, 0,
23126 + 0x12, 0x00, 0, 0, 0,
23127 + 0x13, 0x00, 0, 0, 0,
23128 + 0x14, 0x00, 0, 0, 0,
23129 + 0x15, 0x00, 0, 0, 0,
23130 + 0x16, 0x00, 0, 0, 0,
23131 + 0x17, 0x00, 0, 0, 0,
23132 + 0x18, 0x00, 0, 0, 0,
23133 + 0x19, 0x00, 0, 0, 0,
23134 + 0x1a, 0x00, 0, 0, 0,
23135 + 0x1b, 0x00, 0, 0, 0,
23136 + 0x1c, 0x00, 0, 0, 0,
23137 + 0x1d, 0x00, 0, 0, 0,
23138 + 0x1e, 0x00, 0, 0, 0,
23139 + 0x1f, 0x00, 0, 0, 0,
23142 +UCHAR RateSwitchTable11B[] = {
23143 +// Item No. Mode Curr-MCS TrainUp TrainDown // Mode- Bit0: STBC, Bit1: Short GI, Bit4,5: Mode(0:CCK, 1:OFDM, 2:HT Mix, 3:HT GF)
23144 + 0x04, 0x03, 0, 0, 0, // Initial used item after association
23145 + 0x00, 0x00, 0, 40, 101,
23146 + 0x01, 0x00, 1, 40, 50,
23147 + 0x02, 0x00, 2, 35, 45,
23148 + 0x03, 0x00, 3, 20, 45,
23151 +UCHAR RateSwitchTable11BG[] = {
23152 +// Item No. Mode Curr-MCS TrainUp TrainDown // Mode- Bit0: STBC, Bit1: Short GI, Bit4,5: Mode(0:CCK, 1:OFDM, 2:HT Mix, 3:HT GF)
23153 + 0x0a, 0x00, 0, 0, 0, // Initial used item after association
23154 + 0x00, 0x00, 0, 40, 101,
23155 + 0x01, 0x00, 1, 40, 50,
23156 + 0x02, 0x00, 2, 35, 45,
23157 + 0x03, 0x00, 3, 20, 45,
23158 + 0x04, 0x10, 2, 20, 35,
23159 + 0x05, 0x10, 3, 16, 35,
23160 + 0x06, 0x10, 4, 10, 25,
23161 + 0x07, 0x10, 5, 16, 25,
23162 + 0x08, 0x10, 6, 10, 25,
23163 + 0x09, 0x10, 7, 10, 13,
23166 +UCHAR RateSwitchTable11G[] = {
23167 +// Item No. Mode Curr-MCS TrainUp TrainDown // Mode- Bit0: STBC, Bit1: Short GI, Bit4,5: Mode(0:CCK, 1:OFDM, 2:HT Mix, 3:HT GF)
23168 + 0x08, 0x00, 0, 0, 0, // Initial used item after association
23169 + 0x00, 0x10, 0, 20, 101,
23170 + 0x01, 0x10, 1, 20, 35,
23171 + 0x02, 0x10, 2, 20, 35,
23172 + 0x03, 0x10, 3, 16, 35,
23173 + 0x04, 0x10, 4, 10, 25,
23174 + 0x05, 0x10, 5, 16, 25,
23175 + 0x06, 0x10, 6, 10, 25,
23176 + 0x07, 0x10, 7, 10, 13,
23179 +#ifdef DOT11_N_SUPPORT
23180 +UCHAR RateSwitchTable11N1S[] = {
23181 +// Item No. Mode Curr-MCS TrainUp TrainDown // Mode- Bit0: STBC, Bit1: Short GI, Bit4,5: Mode(0:CCK, 1:OFDM, 2:HT Mix, 3:HT GF)
23182 + 0x09, 0x00, 0, 0, 0, // Initial used item after association
23183 + 0x00, 0x21, 0, 30, 101,
23184 + 0x01, 0x21, 1, 20, 50,
23185 + 0x02, 0x21, 2, 20, 50,
23186 + 0x03, 0x21, 3, 15, 50,
23187 + 0x04, 0x21, 4, 15, 30,
23188 + 0x05, 0x21, 5, 10, 25,
23189 + 0x06, 0x21, 6, 8, 14,
23190 + 0x07, 0x21, 7, 8, 14,
23191 + 0x08, 0x23, 7, 8, 14,
23194 +UCHAR RateSwitchTable11N2S[] = {
23195 +// Item No. Mode Curr-MCS TrainUp TrainDown // Mode- Bit0: STBC, Bit1: Short GI, Bit4,5: Mode(0:CCK, 1:OFDM, 2:HT Mix, 3:HT GF)
23196 + 0x0a, 0x00, 0, 0, 0, // Initial used item after association
23197 + 0x00, 0x21, 0, 30, 101,
23198 + 0x01, 0x21, 1, 20, 50,
23199 + 0x02, 0x21, 2, 20, 50,
23200 + 0x03, 0x21, 3, 15, 50,
23201 + 0x04, 0x21, 4, 15, 30,
23202 + 0x05, 0x20, 12, 15, 30,
23203 + 0x06, 0x20, 13, 8, 20,
23204 + 0x07, 0x20, 14, 8, 20,
23205 + 0x08, 0x20, 15, 8, 25,
23206 + 0x09, 0x22, 15, 8, 25,
23209 +UCHAR RateSwitchTable11N3S[] = {
23210 +// Item No. Mode Curr-MCS TrainUp TrainDown // Mode- Bit0: STBC, Bit1: Short GI, Bit4,5: Mode(0:CCK, 1:OFDM, 2:HT Mix, 3:HT GF)
23211 + 0x0a, 0x00, 0, 0, 0, // Initial used item after association
23212 + 0x00, 0x21, 0, 30, 101,
23213 + 0x01, 0x21, 1, 20, 50,
23214 + 0x02, 0x21, 2, 20, 50,
23215 + 0x03, 0x21, 3, 15, 50,
23216 + 0x04, 0x21, 4, 15, 30,
23217 + 0x05, 0x20, 12, 15, 30,
23218 + 0x06, 0x20, 13, 8, 20,
23219 + 0x07, 0x20, 14, 8, 20,
23220 + 0x08, 0x20, 15, 8, 25,
23221 + 0x09, 0x22, 15, 8, 25,
23224 +UCHAR RateSwitchTable11N2SForABand[] = {
23225 +// Item No. Mode Curr-MCS TrainUp TrainDown // Mode- Bit0: STBC, Bit1: Short GI, Bit4,5: Mode(0:CCK, 1:OFDM, 2:HT Mix, 3:HT GF)
23226 + 0x0b, 0x09, 0, 0, 0, // Initial used item after association
23227 + 0x00, 0x21, 0, 30, 101,
23228 + 0x01, 0x21, 1, 20, 50,
23229 + 0x02, 0x21, 2, 20, 50,
23230 + 0x03, 0x21, 3, 15, 50,
23231 + 0x04, 0x21, 4, 15, 30,
23232 + 0x05, 0x21, 5, 15, 30,
23233 + 0x06, 0x20, 12, 15, 30,
23234 + 0x07, 0x20, 13, 8, 20,
23235 + 0x08, 0x20, 14, 8, 20,
23236 + 0x09, 0x20, 15, 8, 25,
23237 + 0x0a, 0x22, 15, 8, 25,
23240 +UCHAR RateSwitchTable11N3SForABand[] = { // 3*3
23241 +// Item No. Mode Curr-MCS TrainUp TrainDown // Mode- Bit0: STBC, Bit1: Short GI, Bit4,5: Mode(0:CCK, 1:OFDM, 2:HT Mix, 3:HT GF)
23242 + 0x0b, 0x09, 0, 0, 0, // Initial used item after association
23243 + 0x00, 0x21, 0, 30, 101,
23244 + 0x01, 0x21, 1, 20, 50,
23245 + 0x02, 0x21, 2, 20, 50,
23246 + 0x03, 0x21, 3, 15, 50,
23247 + 0x04, 0x21, 4, 15, 30,
23248 + 0x05, 0x21, 5, 15, 30,
23249 + 0x06, 0x20, 12, 15, 30,
23250 + 0x07, 0x20, 13, 8, 20,
23251 + 0x08, 0x20, 14, 8, 20,
23252 + 0x09, 0x20, 15, 8, 25,
23253 + 0x0a, 0x22, 15, 8, 25,
23256 +UCHAR RateSwitchTable11BGN1S[] = {
23257 +// Item No. Mode Curr-MCS TrainUp TrainDown // Mode- Bit0: STBC, Bit1: Short GI, Bit4,5: Mode(0:CCK, 1:OFDM, 2:HT Mix, 3:HT GF)
23258 + 0x0d, 0x00, 0, 0, 0, // Initial used item after association
23259 + 0x00, 0x00, 0, 40, 101,
23260 + 0x01, 0x00, 1, 40, 50,
23261 + 0x02, 0x00, 2, 35, 45,
23262 + 0x03, 0x00, 3, 20, 45,
23263 + 0x04, 0x21, 0, 30,101, //50
23264 + 0x05, 0x21, 1, 20, 50,
23265 + 0x06, 0x21, 2, 20, 50,
23266 + 0x07, 0x21, 3, 15, 50,
23267 + 0x08, 0x21, 4, 15, 30,
23268 + 0x09, 0x21, 5, 10, 25,
23269 + 0x0a, 0x21, 6, 8, 14,
23270 + 0x0b, 0x21, 7, 8, 14,
23271 + 0x0c, 0x23, 7, 8, 14,
23274 +UCHAR RateSwitchTable11BGN2S[] = {
23275 +// Item No. Mode Curr-MCS TrainUp TrainDown // Mode- Bit0: STBC, Bit1: Short GI, Bit4,5: Mode(0:CCK, 1:OFDM, 2:HT Mix, 3:HT GF)
23276 + 0x0a, 0x00, 0, 0, 0, // Initial used item after association
23277 + 0x00, 0x21, 0, 30,101, //50
23278 + 0x01, 0x21, 1, 20, 50,
23279 + 0x02, 0x21, 2, 20, 50,
23280 + 0x03, 0x21, 3, 15, 50,
23281 + 0x04, 0x21, 4, 15, 30,
23282 + 0x05, 0x20, 12, 15, 30,
23283 + 0x06, 0x20, 13, 8, 20,
23284 + 0x07, 0x20, 14, 8, 20,
23285 + 0x08, 0x20, 15, 8, 25,
23286 + 0x09, 0x22, 15, 8, 25,
23289 +UCHAR RateSwitchTable11BGN3S[] = { // 3*3
23290 +// Item No. Mode Curr-MCS TrainUp TrainDown // Mode- Bit0: STBC, Bit1: Short GI, Bit4,5: Mode(0:CCK, 1:OFDM, 2:HT Mix, 3:HT GF)
23291 + 0x0a, 0x00, 0, 0, 0, // Initial used item after association
23292 + 0x00, 0x21, 0, 30,101, //50
23293 + 0x01, 0x21, 1, 20, 50,
23294 + 0x02, 0x21, 2, 20, 50,
23295 + 0x03, 0x21, 3, 20, 50,
23296 + 0x04, 0x21, 4, 15, 50,
23298 + 0x05, 0x20, 20, 15, 30,
23299 + 0x06, 0x20, 21, 8, 20,
23300 + 0x07, 0x20, 22, 8, 20,
23301 + 0x08, 0x20, 23, 8, 25,
23302 + 0x09, 0x22, 23, 8, 25,
23303 +#else // for RT2860 2*3 test
23304 + 0x05, 0x20, 12, 15, 30,
23305 + 0x06, 0x20, 13, 8, 20,
23306 + 0x07, 0x20, 14, 8, 20,
23307 + 0x08, 0x20, 15, 8, 25,
23308 + 0x09, 0x22, 15, 8, 25,
23312 +UCHAR RateSwitchTable11BGN2SForABand[] = {
23313 +// Item No. Mode Curr-MCS TrainUp TrainDown // Mode- Bit0: STBC, Bit1: Short GI, Bit4,5: Mode(0:CCK, 1:OFDM, 2:HT Mix, 3:HT GF)
23314 + 0x0b, 0x09, 0, 0, 0, // Initial used item after association
23315 + 0x00, 0x21, 0, 30,101, //50
23316 + 0x01, 0x21, 1, 20, 50,
23317 + 0x02, 0x21, 2, 20, 50,
23318 + 0x03, 0x21, 3, 15, 50,
23319 + 0x04, 0x21, 4, 15, 30,
23320 + 0x05, 0x21, 5, 15, 30,
23321 + 0x06, 0x20, 12, 15, 30,
23322 + 0x07, 0x20, 13, 8, 20,
23323 + 0x08, 0x20, 14, 8, 20,
23324 + 0x09, 0x20, 15, 8, 25,
23325 + 0x0a, 0x22, 15, 8, 25,
23328 +UCHAR RateSwitchTable11BGN3SForABand[] = { // 3*3
23329 +// Item No. Mode Curr-MCS TrainUp TrainDown // Mode- Bit0: STBC, Bit1: Short GI, Bit4,5: Mode(0:CCK, 1:OFDM, 2:HT Mix, 3:HT GF)
23330 + 0x0c, 0x09, 0, 0, 0, // Initial used item after association
23331 + 0x00, 0x21, 0, 30,101, //50
23332 + 0x01, 0x21, 1, 20, 50,
23333 + 0x02, 0x21, 2, 20, 50,
23334 + 0x03, 0x21, 3, 15, 50,
23335 + 0x04, 0x21, 4, 15, 30,
23336 + 0x05, 0x21, 5, 15, 30,
23337 + 0x06, 0x21, 12, 15, 30,
23338 + 0x07, 0x20, 20, 15, 30,
23339 + 0x08, 0x20, 21, 8, 20,
23340 + 0x09, 0x20, 22, 8, 20,
23341 + 0x0a, 0x20, 23, 8, 25,
23342 + 0x0b, 0x22, 23, 8, 25,
23344 +#endif // DOT11_N_SUPPORT //
23346 +PUCHAR ReasonString[] = {
23347 + /* 0 */ "Reserved",
23348 + /* 1 */ "Unspecified Reason",
23349 + /* 2 */ "Previous Auth no longer valid",
23350 + /* 3 */ "STA is leaving / has left",
23351 + /* 4 */ "DIS-ASSOC due to inactivity",
23352 + /* 5 */ "AP unable to hanle all associations",
23353 + /* 6 */ "class 2 error",
23354 + /* 7 */ "class 3 error",
23355 + /* 8 */ "STA is leaving / has left",
23356 + /* 9 */ "require auth before assoc/re-assoc",
23357 + /* 10 */ "Reserved",
23358 + /* 11 */ "Reserved",
23359 + /* 12 */ "Reserved",
23360 + /* 13 */ "invalid IE",
23361 + /* 14 */ "MIC error",
23362 + /* 15 */ "4-way handshake timeout",
23363 + /* 16 */ "2-way (group key) handshake timeout",
23364 + /* 17 */ "4-way handshake IE diff among AssosReq/Rsp/Beacon",
23368 +extern UCHAR OfdmRateToRxwiMCS[];
23369 +// since RT61 has better RX sensibility, we have to limit TX ACK rate not to exceed our normal data TX rate.
23370 +// otherwise the WLAN peer may not be able to receive the ACK thus downgrade its data TX rate
23371 +ULONG BasicRateMask[12] = {0xfffff001 /* 1-Mbps */, 0xfffff003 /* 2 Mbps */, 0xfffff007 /* 5.5 */, 0xfffff00f /* 11 */,
23372 + 0xfffff01f /* 6 */ , 0xfffff03f /* 9 */ , 0xfffff07f /* 12 */ , 0xfffff0ff /* 18 */,
23373 + 0xfffff1ff /* 24 */ , 0xfffff3ff /* 36 */ , 0xfffff7ff /* 48 */ , 0xffffffff /* 54 */};
23375 +UCHAR MULTICAST_ADDR[MAC_ADDR_LEN] = {0x1, 0x00, 0x00, 0x00, 0x00, 0x00};
23376 +UCHAR BROADCAST_ADDR[MAC_ADDR_LEN] = {0xff, 0xff, 0xff, 0xff, 0xff, 0xff};
23377 +UCHAR ZERO_MAC_ADDR[MAC_ADDR_LEN] = {0x00, 0x00, 0x00, 0x00, 0x00, 0x00};
23379 +// e.g. RssiSafeLevelForTxRate[RATE_36]" means if the current RSSI is greater than
23380 +// this value, then it's quaranteed capable of operating in 36 mbps TX rate in
23381 +// clean environment.
23382 +// TxRate: 1 2 5.5 11 6 9 12 18 24 36 48 54 72 100
23383 +CHAR RssiSafeLevelForTxRate[] ={ -92, -91, -90, -87, -88, -86, -85, -83, -81, -78, -72, -71, -40, -40 };
23385 +UCHAR RateIdToMbps[] = { 1, 2, 5, 11, 6, 9, 12, 18, 24, 36, 48, 54, 72, 100};
23386 +USHORT RateIdTo500Kbps[] = { 2, 4, 11, 22, 12, 18, 24, 36, 48, 72, 96, 108, 144, 200};
23388 +UCHAR SsidIe = IE_SSID;
23389 +UCHAR SupRateIe = IE_SUPP_RATES;
23390 +UCHAR ExtRateIe = IE_EXT_SUPP_RATES;
23391 +#ifdef DOT11_N_SUPPORT
23392 +UCHAR HtCapIe = IE_HT_CAP;
23393 +UCHAR AddHtInfoIe = IE_ADD_HT;
23394 +UCHAR NewExtChanIe = IE_SECONDARY_CH_OFFSET;
23395 +#ifdef DOT11N_DRAFT3
23396 +UCHAR ExtHtCapIe = IE_EXT_CAPABILITY;
23397 +#endif // DOT11N_DRAFT3 //
23398 +#endif // DOT11_N_SUPPORT //
23399 +UCHAR ErpIe = IE_ERP;
23400 +UCHAR DsIe = IE_DS_PARM;
23401 +UCHAR TimIe = IE_TIM;
23402 +UCHAR WpaIe = IE_WPA;
23403 +UCHAR Wpa2Ie = IE_WPA2;
23404 +UCHAR IbssIe = IE_IBSS_PARM;
23405 +UCHAR Ccx2Ie = IE_CCX_V2;
23406 +UCHAR WapiIe = IE_WAPI;
23408 +extern UCHAR WPA_OUI[];
23410 +UCHAR SES_OUI[] = {0x00, 0x90, 0x4c};
23412 +UCHAR ZeroSsid[32] = {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
23413 + 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00};
23415 +// Reset the RFIC setting to new series
23416 +RTMP_RF_REGS RF2850RegTable[] = {
23417 +// ch R1 R2 R3(TX0~4=0) R4
23418 + {1, 0x98402ecc, 0x984c0786, 0x9816b455, 0x9800510b},
23419 + {2, 0x98402ecc, 0x984c0786, 0x98168a55, 0x9800519f},
23420 + {3, 0x98402ecc, 0x984c078a, 0x98168a55, 0x9800518b},
23421 + {4, 0x98402ecc, 0x984c078a, 0x98168a55, 0x9800519f},
23422 + {5, 0x98402ecc, 0x984c078e, 0x98168a55, 0x9800518b},
23423 + {6, 0x98402ecc, 0x984c078e, 0x98168a55, 0x9800519f},
23424 + {7, 0x98402ecc, 0x984c0792, 0x98168a55, 0x9800518b},
23425 + {8, 0x98402ecc, 0x984c0792, 0x98168a55, 0x9800519f},
23426 + {9, 0x98402ecc, 0x984c0796, 0x98168a55, 0x9800518b},
23427 + {10, 0x98402ecc, 0x984c0796, 0x98168a55, 0x9800519f},
23428 + {11, 0x98402ecc, 0x984c079a, 0x98168a55, 0x9800518b},
23429 + {12, 0x98402ecc, 0x984c079a, 0x98168a55, 0x9800519f},
23430 + {13, 0x98402ecc, 0x984c079e, 0x98168a55, 0x9800518b},
23431 + {14, 0x98402ecc, 0x984c07a2, 0x98168a55, 0x98005193},
23433 + // 802.11 UNI / HyperLan 2
23434 + {36, 0x98402ecc, 0x984c099a, 0x98158a55, 0x980ed1a3},
23435 + {38, 0x98402ecc, 0x984c099e, 0x98158a55, 0x980ed193},
23436 + {40, 0x98402ec8, 0x984c0682, 0x98158a55, 0x980ed183},
23437 + {44, 0x98402ec8, 0x984c0682, 0x98158a55, 0x980ed1a3},
23438 + {46, 0x98402ec8, 0x984c0686, 0x98158a55, 0x980ed18b},
23439 + {48, 0x98402ec8, 0x984c0686, 0x98158a55, 0x980ed19b},
23440 + {52, 0x98402ec8, 0x984c068a, 0x98158a55, 0x980ed193},
23441 + {54, 0x98402ec8, 0x984c068a, 0x98158a55, 0x980ed1a3},
23442 + {56, 0x98402ec8, 0x984c068e, 0x98158a55, 0x980ed18b},
23443 + {60, 0x98402ec8, 0x984c0692, 0x98158a55, 0x980ed183},
23444 + {62, 0x98402ec8, 0x984c0692, 0x98158a55, 0x980ed193},
23445 + {64, 0x98402ec8, 0x984c0692, 0x98158a55, 0x980ed1a3}, // Plugfest#4, Day4, change RFR3 left4th 9->5.
23447 + // 802.11 HyperLan 2
23448 + {100, 0x98402ec8, 0x984c06b2, 0x98178a55, 0x980ed783},
23450 + // 2008.04.30 modified
23451 + // The system team has AN to improve the EVM value
23452 + // for channel 102 to 108 for the RT2850/RT2750 dual band solution.
23453 + {102, 0x98402ec8, 0x985c06b2, 0x98578a55, 0x980ed793},
23454 + {104, 0x98402ec8, 0x985c06b2, 0x98578a55, 0x980ed1a3},
23455 + {108, 0x98402ecc, 0x985c0a32, 0x98578a55, 0x980ed193},
23457 + {110, 0x98402ecc, 0x984c0a36, 0x98178a55, 0x980ed183},
23458 + {112, 0x98402ecc, 0x984c0a36, 0x98178a55, 0x980ed19b},
23459 + {116, 0x98402ecc, 0x984c0a3a, 0x98178a55, 0x980ed1a3},
23460 + {118, 0x98402ecc, 0x984c0a3e, 0x98178a55, 0x980ed193},
23461 + {120, 0x98402ec4, 0x984c0382, 0x98178a55, 0x980ed183},
23462 + {124, 0x98402ec4, 0x984c0382, 0x98178a55, 0x980ed193},
23463 + {126, 0x98402ec4, 0x984c0382, 0x98178a55, 0x980ed15b}, // 0x980ed1bb->0x980ed15b required by Rory 20070927
23464 + {128, 0x98402ec4, 0x984c0382, 0x98178a55, 0x980ed1a3},
23465 + {132, 0x98402ec4, 0x984c0386, 0x98178a55, 0x980ed18b},
23466 + {134, 0x98402ec4, 0x984c0386, 0x98178a55, 0x980ed193},
23467 + {136, 0x98402ec4, 0x984c0386, 0x98178a55, 0x980ed19b},
23468 + {140, 0x98402ec4, 0x984c038a, 0x98178a55, 0x980ed183},
23471 + {149, 0x98402ec4, 0x984c038a, 0x98178a55, 0x980ed1a7},
23472 + {151, 0x98402ec4, 0x984c038e, 0x98178a55, 0x980ed187},
23473 + {153, 0x98402ec4, 0x984c038e, 0x98178a55, 0x980ed18f},
23474 + {157, 0x98402ec4, 0x984c038e, 0x98178a55, 0x980ed19f},
23475 + {159, 0x98402ec4, 0x984c038e, 0x98178a55, 0x980ed1a7},
23476 + {161, 0x98402ec4, 0x984c0392, 0x98178a55, 0x980ed187},
23477 + {165, 0x98402ec4, 0x984c0392, 0x98178a55, 0x980ed197},
23480 + {184, 0x95002ccc, 0x9500491e, 0x9509be55, 0x950c0a0b},
23481 + {188, 0x95002ccc, 0x95004922, 0x9509be55, 0x950c0a13},
23482 + {192, 0x95002ccc, 0x95004926, 0x9509be55, 0x950c0a1b},
23483 + {196, 0x95002ccc, 0x9500492a, 0x9509be55, 0x950c0a23},
23484 + {208, 0x95002ccc, 0x9500493a, 0x9509be55, 0x950c0a13},
23485 + {212, 0x95002ccc, 0x9500493e, 0x9509be55, 0x950c0a1b},
23486 + {216, 0x95002ccc, 0x95004982, 0x9509be55, 0x950c0a23},
23488 + // still lack of MMAC(Japan) ch 34,38,42,46
23490 +UCHAR NUM_OF_2850_CHNL = (sizeof(RF2850RegTable) / sizeof(RTMP_RF_REGS));
23492 +FREQUENCY_ITEM FreqItems3020[] =
23494 + /**************************************************/
23495 + // ISM : 2.4 to 2.483 GHz //
23496 + /**************************************************/
23498 + /**************************************************/
23499 + //-CH---N-------R---K-----------
23515 +//2008/07/10:KH Modified to share this variable
23516 +UCHAR NUM_OF_3020_CHNL=(sizeof(FreqItems3020) / sizeof(FREQUENCY_ITEM));
23519 + ==========================================================================
23521 + initialize the MLME task and its data structure (queue, spinlock,
23522 + timer, state machines).
23524 + IRQL = PASSIVE_LEVEL
23527 + always return NDIS_STATUS_SUCCESS
23529 + ==========================================================================
23531 +NDIS_STATUS MlmeInit(
23532 + IN PRTMP_ADAPTER pAd)
23534 + NDIS_STATUS Status = NDIS_STATUS_SUCCESS;
23536 + DBGPRINT(RT_DEBUG_TRACE, ("--> MLME Initialize\n"));
23540 + Status = MlmeQueueInit(&pAd->Mlme.Queue);
23541 + if(Status != NDIS_STATUS_SUCCESS)
23544 + pAd->Mlme.bRunning = FALSE;
23545 + NdisAllocateSpinLock(&pAd->Mlme.TaskLock);
23547 +#ifdef CONFIG_STA_SUPPORT
23548 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
23550 + BssTableInit(&pAd->ScanTab);
23552 + // init STA state machines
23553 + AssocStateMachineInit(pAd, &pAd->Mlme.AssocMachine, pAd->Mlme.AssocFunc);
23554 + AuthStateMachineInit(pAd, &pAd->Mlme.AuthMachine, pAd->Mlme.AuthFunc);
23555 + AuthRspStateMachineInit(pAd, &pAd->Mlme.AuthRspMachine, pAd->Mlme.AuthRspFunc);
23556 + SyncStateMachineInit(pAd, &pAd->Mlme.SyncMachine, pAd->Mlme.SyncFunc);
23557 + WpaPskStateMachineInit(pAd, &pAd->Mlme.WpaPskMachine, pAd->Mlme.WpaPskFunc);
23558 + AironetStateMachineInit(pAd, &pAd->Mlme.AironetMachine, pAd->Mlme.AironetFunc);
23560 +#ifdef QOS_DLS_SUPPORT
23561 + DlsStateMachineInit(pAd, &pAd->Mlme.DlsMachine, pAd->Mlme.DlsFunc);
23562 +#endif // QOS_DLS_SUPPORT //
23565 + // Since we are using switch/case to implement it, the init is different from the above
23566 + // state machine init
23567 + MlmeCntlInit(pAd, &pAd->Mlme.CntlMachine, NULL);
23569 +#endif // CONFIG_STA_SUPPORT //
23573 + ActionStateMachineInit(pAd, &pAd->Mlme.ActMachine, pAd->Mlme.ActFunc);
23575 + // Init mlme periodic timer
23576 + RTMPInitTimer(pAd, &pAd->Mlme.PeriodicTimer, GET_TIMER_FUNCTION(MlmePeriodicExec), pAd, TRUE);
23578 + // Set mlme periodic timer
23579 + RTMPSetTimer(&pAd->Mlme.PeriodicTimer, MLME_TASK_EXEC_INTV);
23581 + // software-based RX Antenna diversity
23582 + RTMPInitTimer(pAd, &pAd->Mlme.RxAntEvalTimer, GET_TIMER_FUNCTION(AsicRxAntEvalTimeout), pAd, FALSE);
23585 +#ifdef CONFIG_STA_SUPPORT
23586 +#endif // CONFIG_STA_SUPPORT //
23590 + DBGPRINT(RT_DEBUG_TRACE, ("<-- MLME Initialize\n"));
23596 + ==========================================================================
23598 + main loop of the MLME
23600 + Mlme has to be initialized, and there are something inside the queue
23602 + This function is invoked from MPSetInformation and MPReceive;
23603 + This task guarantee only one MlmeHandler will run.
23605 + IRQL = DISPATCH_LEVEL
23607 + ==========================================================================
23610 + IN PRTMP_ADAPTER pAd)
23612 + MLME_QUEUE_ELEM *Elem = NULL;
23614 + // Only accept MLME and Frame from peer side, no other (control/data) frame should
23615 + // get into this state machine
23617 + NdisAcquireSpinLock(&pAd->Mlme.TaskLock);
23618 + if(pAd->Mlme.bRunning)
23620 + NdisReleaseSpinLock(&pAd->Mlme.TaskLock);
23625 + pAd->Mlme.bRunning = TRUE;
23627 + NdisReleaseSpinLock(&pAd->Mlme.TaskLock);
23629 + while (!MlmeQueueEmpty(&pAd->Mlme.Queue))
23631 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_MLME_RESET_IN_PROGRESS) ||
23632 + RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS) ||
23633 + RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST))
23635 + DBGPRINT(RT_DEBUG_TRACE, ("Device Halted or Removed or MlmeRest, exit MlmeHandler! (queue num = %ld)\n", pAd->Mlme.Queue.Num));
23642 + DBGPRINT(RT_DEBUG_TRACE, ("The driver is in ATE mode now in MlmeHandler\n"));
23645 +#endif // RALINK_ATE //
23647 + //From message type, determine which state machine I should drive
23648 + if (MlmeDequeue(&pAd->Mlme.Queue, &Elem))
23651 + if (Elem->MsgType == MT2_RESET_CONF)
23653 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("!!! reset MLME state machine !!!\n"));
23654 + MlmeRestartStateMachine(pAd);
23655 + Elem->Occupied = FALSE;
23656 + Elem->MsgLen = 0;
23659 +#endif // RT2870 //
23661 + // if dequeue success
23662 + switch (Elem->Machine)
23664 + // STA state machines
23665 +#ifdef CONFIG_STA_SUPPORT
23666 + case ASSOC_STATE_MACHINE:
23667 + StateMachinePerformAction(pAd, &pAd->Mlme.AssocMachine, Elem);
23669 + case AUTH_STATE_MACHINE:
23670 + StateMachinePerformAction(pAd, &pAd->Mlme.AuthMachine, Elem);
23672 + case AUTH_RSP_STATE_MACHINE:
23673 + StateMachinePerformAction(pAd, &pAd->Mlme.AuthRspMachine, Elem);
23675 + case SYNC_STATE_MACHINE:
23676 + StateMachinePerformAction(pAd, &pAd->Mlme.SyncMachine, Elem);
23678 + case MLME_CNTL_STATE_MACHINE:
23679 + MlmeCntlMachinePerformAction(pAd, &pAd->Mlme.CntlMachine, Elem);
23681 + case WPA_PSK_STATE_MACHINE:
23682 + StateMachinePerformAction(pAd, &pAd->Mlme.WpaPskMachine, Elem);
23684 +#ifdef LEAP_SUPPORT
23685 + case LEAP_STATE_MACHINE:
23686 + LeapMachinePerformAction(pAd, &pAd->Mlme.LeapMachine, Elem);
23689 + case AIRONET_STATE_MACHINE:
23690 + StateMachinePerformAction(pAd, &pAd->Mlme.AironetMachine, Elem);
23693 +#ifdef QOS_DLS_SUPPORT
23694 + case DLS_STATE_MACHINE:
23695 + StateMachinePerformAction(pAd, &pAd->Mlme.DlsMachine, Elem);
23697 +#endif // QOS_DLS_SUPPORT //
23698 +#endif // CONFIG_STA_SUPPORT //
23700 + case ACTION_STATE_MACHINE:
23701 + StateMachinePerformAction(pAd, &pAd->Mlme.ActMachine, Elem);
23708 + DBGPRINT(RT_DEBUG_TRACE, ("ERROR: Illegal machine %ld in MlmeHandler()\n", Elem->Machine));
23710 + } // end of switch
23712 + // free MLME element
23713 + Elem->Occupied = FALSE;
23714 + Elem->MsgLen = 0;
23718 + DBGPRINT_ERR(("MlmeHandler: MlmeQueue empty\n"));
23722 + NdisAcquireSpinLock(&pAd->Mlme.TaskLock);
23723 + pAd->Mlme.bRunning = FALSE;
23724 + NdisReleaseSpinLock(&pAd->Mlme.TaskLock);
23728 + ==========================================================================
23730 + Destructor of MLME (Destroy queue, state machine, spin lock and timer)
23732 + Adapter - NIC Adapter pointer
23734 + The MLME task will no longer work properly
23736 + IRQL = PASSIVE_LEVEL
23738 + ==========================================================================
23741 + IN PRTMP_ADAPTER pAd)
23743 + BOOLEAN Cancelled;
23745 + UINT32 TxPinCfg = 0x00050F0F;
23746 +#endif // RT3070 //
23748 + DBGPRINT(RT_DEBUG_TRACE, ("==> MlmeHalt\n"));
23750 + if (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST))
23752 + // disable BEACON generation and other BEACON related hardware timers
23753 + AsicDisableSync(pAd);
23756 +#ifdef CONFIG_STA_SUPPORT
23757 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
23759 +#ifdef QOS_DLS_SUPPORT
23761 +#endif // QOS_DLS_SUPPORT //
23762 + // Cancel pending timers
23763 + RTMPCancelTimer(&pAd->MlmeAux.AssocTimer, &Cancelled);
23764 + RTMPCancelTimer(&pAd->MlmeAux.ReassocTimer, &Cancelled);
23765 + RTMPCancelTimer(&pAd->MlmeAux.DisassocTimer, &Cancelled);
23766 + RTMPCancelTimer(&pAd->MlmeAux.AuthTimer, &Cancelled);
23767 + RTMPCancelTimer(&pAd->MlmeAux.BeaconTimer, &Cancelled);
23768 + RTMPCancelTimer(&pAd->MlmeAux.ScanTimer, &Cancelled);
23770 +#ifdef QOS_DLS_SUPPORT
23771 + for (i=0; i<MAX_NUM_OF_DLS_ENTRY; i++)
23773 + RTMPCancelTimer(&pAd->StaCfg.DLSEntry[i].Timer, &Cancelled);
23775 +#endif // QOS_DLS_SUPPORT //
23777 +#endif // CONFIG_STA_SUPPORT //
23779 + RTMPCancelTimer(&pAd->Mlme.PeriodicTimer, &Cancelled);
23780 + RTMPCancelTimer(&pAd->Mlme.RxAntEvalTimer, &Cancelled);
23784 + if (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST))
23787 + RTMPSetLED(pAd, LED_HALT);
23788 + RTMPSetSignalLED(pAd, -100); // Force signal strength Led to be turned off, firmware is not done it.
23791 + LED_CFG_STRUC LedCfg;
23792 + RTMP_IO_READ32(pAd, LED_CFG, &LedCfg.word);
23793 + LedCfg.field.LedPolar = 0;
23794 + LedCfg.field.RLedMode = 0;
23795 + LedCfg.field.GLedMode = 0;
23796 + LedCfg.field.YLedMode = 0;
23797 + RTMP_IO_WRITE32(pAd, LED_CFG, LedCfg.word);
23799 +#endif // RT2870 //
23802 + // Turn off LNA_PE
23804 + if (IS_RT3070(pAd) || IS_RT3071(pAd))
23806 + TxPinCfg &= 0xFFFFF0F0;
23807 + RTUSBWriteMACRegister(pAd, TX_PIN_CFG, TxPinCfg);
23809 +#endif // RT3070 //
23812 + RTMPusecDelay(5000); // 5 msec to gurantee Ant Diversity timer canceled
23814 + MlmeQueueDestroy(&pAd->Mlme.Queue);
23815 + NdisFreeSpinLock(&pAd->Mlme.TaskLock);
23817 + DBGPRINT(RT_DEBUG_TRACE, ("<== MlmeHalt\n"));
23820 +VOID MlmeResetRalinkCounters(
23821 + IN PRTMP_ADAPTER pAd)
23823 + pAd->RalinkCounters.LastOneSecRxOkDataCnt = pAd->RalinkCounters.OneSecRxOkDataCnt;
23824 + // clear all OneSecxxx counters.
23825 + pAd->RalinkCounters.OneSecBeaconSentCnt = 0;
23826 + pAd->RalinkCounters.OneSecFalseCCACnt = 0;
23827 + pAd->RalinkCounters.OneSecRxFcsErrCnt = 0;
23828 + pAd->RalinkCounters.OneSecRxOkCnt = 0;
23829 + pAd->RalinkCounters.OneSecTxFailCount = 0;
23830 + pAd->RalinkCounters.OneSecTxNoRetryOkCount = 0;
23831 + pAd->RalinkCounters.OneSecTxRetryOkCount = 0;
23832 + pAd->RalinkCounters.OneSecRxOkDataCnt = 0;
23834 + // TODO: for debug only. to be removed
23835 + pAd->RalinkCounters.OneSecOsTxCount[QID_AC_BE] = 0;
23836 + pAd->RalinkCounters.OneSecOsTxCount[QID_AC_BK] = 0;
23837 + pAd->RalinkCounters.OneSecOsTxCount[QID_AC_VI] = 0;
23838 + pAd->RalinkCounters.OneSecOsTxCount[QID_AC_VO] = 0;
23839 + pAd->RalinkCounters.OneSecDmaDoneCount[QID_AC_BE] = 0;
23840 + pAd->RalinkCounters.OneSecDmaDoneCount[QID_AC_BK] = 0;
23841 + pAd->RalinkCounters.OneSecDmaDoneCount[QID_AC_VI] = 0;
23842 + pAd->RalinkCounters.OneSecDmaDoneCount[QID_AC_VO] = 0;
23843 + pAd->RalinkCounters.OneSecTxDoneCount = 0;
23844 + pAd->RalinkCounters.OneSecRxCount = 0;
23845 + pAd->RalinkCounters.OneSecTxAggregationCount = 0;
23846 + pAd->RalinkCounters.OneSecRxAggregationCount = 0;
23851 +unsigned long rx_AMSDU;
23852 +unsigned long rx_Total;
23855 + ==========================================================================
23857 + This routine is executed periodically to -
23858 + 1. Decide if it's a right time to turn on PwrMgmt bit of all
23860 + 2. Calculate ChannelQuality based on statistics of the last
23861 + period, so that TX rate won't toggling very frequently between a
23862 + successful TX and a failed TX.
23863 + 3. If the calculated ChannelQuality indicated current connection not
23864 + healthy, then a ROAMing attempt is tried here.
23866 + IRQL = DISPATCH_LEVEL
23868 + ==========================================================================
23870 +#define ADHOC_BEACON_LOST_TIME (8*OS_HZ) // 8 sec
23871 +VOID MlmePeriodicExec(
23872 + IN PVOID SystemSpecific1,
23873 + IN PVOID FunctionContext,
23874 + IN PVOID SystemSpecific2,
23875 + IN PVOID SystemSpecific3)
23877 + ULONG TxTotalCnt;
23878 + PRTMP_ADAPTER pAd = (RTMP_ADAPTER *)FunctionContext;
23880 +#ifdef CONFIG_STA_SUPPORT
23881 +#endif // CONFIG_STA_SUPPORT //
23883 + // Do nothing if the driver is starting halt state.
23884 + // This might happen when timer already been fired before cancel timer with mlmehalt
23885 + if ((RTMP_TEST_FLAG(pAd, (fRTMP_ADAPTER_HALT_IN_PROGRESS |
23886 + fRTMP_ADAPTER_RADIO_OFF |
23887 + fRTMP_ADAPTER_RADIO_MEASUREMENT |
23888 + fRTMP_ADAPTER_RESET_IN_PROGRESS))))
23891 + RT28XX_MLME_PRE_SANITY_CHECK(pAd);
23894 + /* Do not show RSSI until "Normal 1 second Mlme PeriodicExec". */
23897 + if (pAd->Mlme.PeriodicRound % MLME_TASK_EXEC_MULTIPLE != (MLME_TASK_EXEC_MULTIPLE - 1))
23899 + pAd->Mlme.PeriodicRound ++;
23903 +#endif // RALINK_ATE //
23905 +#ifdef CONFIG_STA_SUPPORT
23906 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
23908 + // Do nothing if monitor mode is on
23909 + if (MONITOR_ON(pAd))
23912 + if (pAd->Mlme.PeriodicRound & 0x1)
23914 + // This is the fix for wifi 11n extension channel overlapping test case. for 2860D
23915 + if (((pAd->MACVersion & 0xffff) == 0x0101) &&
23916 + (STA_TGN_WIFI_ON(pAd)) &&
23917 + (pAd->CommonCfg.IOTestParm.bToggle == FALSE))
23920 + RTMP_IO_WRITE32(pAd, TXOP_CTRL_CFG, 0x24Bf);
23921 + pAd->CommonCfg.IOTestParm.bToggle = TRUE;
23923 + else if ((STA_TGN_WIFI_ON(pAd)) &&
23924 + ((pAd->MACVersion & 0xffff) == 0x0101))
23926 + RTMP_IO_WRITE32(pAd, TXOP_CTRL_CFG, 0x243f);
23927 + pAd->CommonCfg.IOTestParm.bToggle = FALSE;
23931 +#endif // CONFIG_STA_SUPPORT //
23933 + pAd->bUpdateBcnCntDone = FALSE;
23935 +// RECBATimerTimeout(SystemSpecific1,FunctionContext,SystemSpecific2,SystemSpecific3);
23936 + pAd->Mlme.PeriodicRound ++;
23939 + // execute every 100ms, update the Tx FIFO Cnt for update Tx Rate.
23940 + NICUpdateFifoStaCounters(pAd);
23941 +#endif // RT2870 //
23942 + // execute every 500ms
23943 + if ((pAd->Mlme.PeriodicRound % 5 == 0) && RTMPAutoRateSwitchCheck(pAd)/*(OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_TX_RATE_SWITCH_ENABLED))*/)
23945 +#ifdef CONFIG_STA_SUPPORT
23946 + // perform dynamic tx rate switching based on past TX history
23947 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
23949 + if ((OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED)
23951 + && (!OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_DOZE)))
23952 + MlmeDynamicTxRateSwitching(pAd);
23954 +#endif // CONFIG_STA_SUPPORT //
23957 + // Normal 1 second Mlme PeriodicExec.
23958 + if (pAd->Mlme.PeriodicRound %MLME_TASK_EXEC_MULTIPLE == 0)
23960 + pAd->Mlme.OneSecPeriodicRound ++;
23965 + /* request from Baron : move this routine from later to here */
23966 + /* for showing Rx error count in ATE RXFRAME */
23967 + NICUpdateRawCounters(pAd);
23968 + if (pAd->ate.bRxFer == 1)
23970 + pAd->ate.RxTotalCnt += pAd->ate.RxCntPerSec;
23971 + ate_print(KERN_EMERG "MlmePeriodicExec: Rx packet cnt = %d/%d\n", pAd->ate.RxCntPerSec, pAd->ate.RxTotalCnt);
23972 + pAd->ate.RxCntPerSec = 0;
23974 + if (pAd->ate.RxAntennaSel == 0)
23975 + ate_print(KERN_EMERG "MlmePeriodicExec: Rx AvgRssi0=%d, AvgRssi1=%d, AvgRssi2=%d\n\n",
23976 + pAd->ate.AvgRssi0, pAd->ate.AvgRssi1, pAd->ate.AvgRssi2);
23978 + ate_print(KERN_EMERG "MlmePeriodicExec: Rx AvgRssi=%d\n\n", pAd->ate.AvgRssi0);
23980 + MlmeResetRalinkCounters(pAd);
23983 +#endif // RALINK_ATE //
23989 + // reset counters
23994 + //ORIBATimerTimeout(pAd);
23996 + // Media status changed, report to NDIS
23997 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_MEDIA_STATE_CHANGE))
23999 + RTMP_CLEAR_FLAG(pAd, fRTMP_ADAPTER_MEDIA_STATE_CHANGE);
24000 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED))
24002 + pAd->IndicateMediaState = NdisMediaStateConnected;
24003 + RTMP_IndicateMediaState(pAd);
24008 + pAd->IndicateMediaState = NdisMediaStateDisconnected;
24009 + RTMP_IndicateMediaState(pAd);
24013 + NdisGetSystemUpTime(&pAd->Mlme.Now32);
24015 + // add the most up-to-date h/w raw counters into software variable, so that
24016 + // the dynamic tuning mechanism below are based on most up-to-date information
24017 + NICUpdateRawCounters(pAd);
24020 + RT2870_WatchDog(pAd);
24021 +#endif // RT2870 //
24023 +#ifdef DOT11_N_SUPPORT
24024 + // Need statistics after read counter. So put after NICUpdateRawCounters
24025 + ORIBATimerTimeout(pAd);
24026 +#endif // DOT11_N_SUPPORT //
24028 + // The time period for checking antenna is according to traffic
24030 + if (pAd->Mlme.bEnableAutoAntennaCheck)
24032 + TxTotalCnt = pAd->RalinkCounters.OneSecTxNoRetryOkCount +
24033 + pAd->RalinkCounters.OneSecTxRetryOkCount +
24034 + pAd->RalinkCounters.OneSecTxFailCount;
24036 + // dynamic adjust antenna evaluation period according to the traffic
24037 + if (TxTotalCnt > 50)
24039 + if (pAd->Mlme.OneSecPeriodicRound % 10 == 0)
24041 + AsicEvaluateRxAnt(pAd);
24046 + if (pAd->Mlme.OneSecPeriodicRound % 3 == 0)
24048 + AsicEvaluateRxAnt(pAd);
24054 +#ifdef CONFIG_STA_SUPPORT
24055 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
24056 + STAMlmePeriodicExec(pAd);
24057 +#endif // CONFIG_STA_SUPPORT //
24059 + MlmeResetRalinkCounters(pAd);
24061 +#ifdef CONFIG_STA_SUPPORT
24062 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
24065 + // When Adhoc beacon is enabled and RTS/CTS is enabled, there is a chance that hardware MAC FSM will run into a deadlock
24066 + // and sending CTS-to-self over and over.
24067 + // Software Patch Solution:
24068 + // 1. Polling debug state register 0x10F4 every one second.
24069 + // 2. If in 0x10F4 the ((bit29==1) && (bit7==1)) OR ((bit29==1) && (bit5==1)), it means the deadlock has occurred.
24070 + // 3. If the deadlock occurred, reset MAC/BBP by setting 0x1004 to 0x0001 for a while then setting it back to 0x000C again.
24072 + UINT32 MacReg = 0;
24074 + RTMP_IO_READ32(pAd, 0x10F4, &MacReg);
24075 + if (((MacReg & 0x20000000) && (MacReg & 0x80)) || ((MacReg & 0x20000000) && (MacReg & 0x20)))
24077 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, 0x1);
24078 + RTMPusecDelay(1);
24079 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, 0xC);
24081 + DBGPRINT(RT_DEBUG_WARN,("Warning, MAC specific condition occurs \n"));
24085 +#endif // CONFIG_STA_SUPPORT //
24087 + RT28XX_MLME_HANDLER(pAd);
24091 + pAd->bUpdateBcnCntDone = FALSE;
24094 +#ifdef CONFIG_STA_SUPPORT
24095 +VOID STAMlmePeriodicExec(
24096 + PRTMP_ADAPTER pAd)
24098 + ULONG TxTotalCnt;
24102 +// We return here in ATE mode, because the statistics
24103 +// that ATE needs are not collected via this routine.
24106 + // It is supposed that we will never reach here in ATE mode.
24107 + ASSERT(!(ATE_ON(pAd)));
24110 +#endif // RALINK_ATE //
24112 +#ifdef WPA_SUPPLICANT_SUPPORT
24113 + if (pAd->StaCfg.WpaSupplicantUP == WPA_SUPPLICANT_DISABLE)
24114 +#endif // WPA_SUPPLICANT_SUPPORT //
24116 + // WPA MIC error should block association attempt for 60 seconds
24117 + if (pAd->StaCfg.bBlockAssoc && (pAd->StaCfg.LastMicErrorTime + (60 * OS_HZ) < pAd->Mlme.Now32))
24118 + pAd->StaCfg.bBlockAssoc = FALSE;
24121 + if ((pAd->PreMediaState != pAd->IndicateMediaState) && (pAd->CommonCfg.bWirelessEvent))
24123 + if (pAd->IndicateMediaState == NdisMediaStateConnected)
24125 + RTMPSendWirelessEvent(pAd, IW_STA_LINKUP_EVENT_FLAG, pAd->MacTab.Content[BSSID_WCID].Addr, BSS0, 0);
24127 + pAd->PreMediaState = pAd->IndicateMediaState;
24133 + AsicStaBbpTuning(pAd);
24135 + TxTotalCnt = pAd->RalinkCounters.OneSecTxNoRetryOkCount +
24136 + pAd->RalinkCounters.OneSecTxRetryOkCount +
24137 + pAd->RalinkCounters.OneSecTxFailCount;
24139 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED))
24141 + // update channel quality for Roaming and UI LinkQuality display
24142 + MlmeCalculateChannelQuality(pAd, pAd->Mlme.Now32);
24145 + // must be AFTER MlmeDynamicTxRateSwitching() because it needs to know if
24146 + // Radio is currently in noisy environment
24147 + if (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS))
24148 + AsicAdjustTxPower(pAd);
24150 + if (INFRA_ON(pAd))
24152 +#ifdef QOS_DLS_SUPPORT
24153 + // Check DLS time out, then tear down those session
24154 + RTMPCheckDLSTimeOut(pAd);
24155 +#endif // QOS_DLS_SUPPORT //
24157 + // Is PSM bit consistent with user power management policy?
24158 + // This is the only place that will set PSM bit ON.
24159 + if (!OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_DOZE))
24160 + MlmeCheckPsmChange(pAd, pAd->Mlme.Now32);
24162 + pAd->RalinkCounters.LastOneSecTotalTxCount = TxTotalCnt;
24164 + if ((pAd->StaCfg.LastBeaconRxTime + 1*OS_HZ < pAd->Mlme.Now32) &&
24165 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS)) &&
24166 + ((TxTotalCnt + pAd->RalinkCounters.OneSecRxOkCnt < 600)))
24168 + RTMPSetAGCInitValue(pAd, BW_20);
24169 + DBGPRINT(RT_DEBUG_TRACE, ("MMCHK - No BEACON. restore R66 to the low bound(%d) \n", (0x2E + GET_LNA_GAIN(pAd))));
24172 + //if ((pAd->RalinkCounters.OneSecTxNoRetryOkCount == 0) &&
24173 + // (pAd->RalinkCounters.OneSecTxRetryOkCount == 0))
24175 + if (pAd->CommonCfg.bAPSDCapable && pAd->CommonCfg.APEdcaParm.bAPSDCapable)
24177 + // When APSD is enabled, the period changes as 20 sec
24178 + if ((pAd->Mlme.OneSecPeriodicRound % 20) == 8)
24179 + RTMPSendNullFrame(pAd, pAd->CommonCfg.TxRate, TRUE);
24183 + // Send out a NULL frame every 10 sec to inform AP that STA is still alive (Avoid being age out)
24184 + if ((pAd->Mlme.OneSecPeriodicRound % 10) == 8)
24186 + if (pAd->CommonCfg.bWmmCapable)
24187 + RTMPSendNullFrame(pAd, pAd->CommonCfg.TxRate, TRUE);
24189 + RTMPSendNullFrame(pAd, pAd->CommonCfg.TxRate, FALSE);
24194 + if (CQI_IS_DEAD(pAd->Mlme.ChannelQuality))
24196 + DBGPRINT(RT_DEBUG_TRACE, ("MMCHK - No BEACON. Dead CQI. Auto Recovery attempt #%ld\n", pAd->RalinkCounters.BadCQIAutoRecoveryCount));
24197 + pAd->StaCfg.CCXAdjacentAPReportFlag = TRUE;
24198 + pAd->StaCfg.CCXAdjacentAPLinkDownTime = pAd->StaCfg.LastBeaconRxTime;
24200 + // Lost AP, send disconnect & link down event
24201 + LinkDown(pAd, FALSE);
24203 +#ifdef WPA_SUPPLICANT_SUPPORT
24204 +#ifndef NATIVE_WPA_SUPPLICANT_SUPPORT
24205 + if (pAd->StaCfg.WpaSupplicantUP)
24207 + union iwreq_data wrqu;
24208 + //send disassociate event to wpa_supplicant
24209 + memset(&wrqu, 0, sizeof(wrqu));
24210 + wrqu.data.flags = RT_DISASSOC_EVENT_FLAG;
24211 + wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, NULL);
24213 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
24214 +#endif // WPA_SUPPLICANT_SUPPORT //
24216 +#ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
24218 + union iwreq_data wrqu;
24219 + memset(wrqu.ap_addr.sa_data, 0, MAC_ADDR_LEN);
24220 + wireless_send_event(pAd->net_dev, SIOCGIWAP, &wrqu, NULL);
24222 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
24224 + // RTMPPatchMacBbpBug(pAd);
24225 + MlmeAutoReconnectLastSSID(pAd);
24227 + else if (CQI_IS_BAD(pAd->Mlme.ChannelQuality))
24229 + pAd->RalinkCounters.BadCQIAutoRecoveryCount ++;
24230 + DBGPRINT(RT_DEBUG_TRACE, ("MMCHK - Bad CQI. Auto Recovery attempt #%ld\n", pAd->RalinkCounters.BadCQIAutoRecoveryCount));
24231 + MlmeAutoReconnectLastSSID(pAd);
24234 + // Add auto seamless roaming
24235 + if (pAd->StaCfg.bFastRoaming)
24237 + SHORT dBmToRoam = (SHORT)pAd->StaCfg.dBmToRoam;
24239 + DBGPRINT(RT_DEBUG_TRACE, ("Rssi=%d, dBmToRoam=%d\n", RTMPMaxRssi(pAd, pAd->StaCfg.RssiSample.LastRssi0, pAd->StaCfg.RssiSample.LastRssi1, pAd->StaCfg.RssiSample.LastRssi2), (CHAR)dBmToRoam));
24241 + if (RTMPMaxRssi(pAd, pAd->StaCfg.RssiSample.LastRssi0, pAd->StaCfg.RssiSample.LastRssi1, pAd->StaCfg.RssiSample.LastRssi2) <= (CHAR)dBmToRoam)
24243 + MlmeCheckForFastRoaming(pAd, pAd->Mlme.Now32);
24247 + else if (ADHOC_ON(pAd))
24250 + if ((pAd->CommonCfg.Channel > 14)
24251 + && (pAd->CommonCfg.bIEEE80211H == 1)
24252 + && RadarChannelCheck(pAd, pAd->CommonCfg.Channel))
24254 + RadarDetectPeriodic(pAd);
24257 + // If all peers leave, and this STA becomes the last one in this IBSS, then change MediaState
24258 + // to DISCONNECTED. But still holding this IBSS (i.e. sending BEACON) so that other STAs can
24260 + if ((pAd->StaCfg.LastBeaconRxTime + ADHOC_BEACON_LOST_TIME < pAd->Mlme.Now32) &&
24261 + OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED))
24263 + MLME_START_REQ_STRUCT StartReq;
24265 + DBGPRINT(RT_DEBUG_TRACE, ("MMCHK - excessive BEACON lost, last STA in this IBSS, MediaState=Disconnected\n"));
24266 + LinkDown(pAd, FALSE);
24268 + StartParmFill(pAd, &StartReq, pAd->MlmeAux.Ssid, pAd->MlmeAux.SsidLen);
24269 + MlmeEnqueue(pAd, SYNC_STATE_MACHINE, MT2_MLME_START_REQ, sizeof(MLME_START_REQ_STRUCT), &StartReq);
24270 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_START;
24273 + for (i = 1; i < MAX_LEN_OF_MAC_TABLE; i++)
24275 + MAC_TABLE_ENTRY *pEntry = &pAd->MacTab.Content[i];
24277 + if (pEntry->ValidAsCLI == FALSE)
24280 + if (pEntry->LastBeaconRxTime + ADHOC_BEACON_LOST_TIME < pAd->Mlme.Now32)
24281 + MacTableDeleteEntry(pAd, pEntry->Aid, pEntry->Addr);
24284 + else // no INFRA nor ADHOC connection
24287 + if (pAd->StaCfg.bScanReqIsFromWebUI &&
24288 + ((pAd->StaCfg.LastScanTime + 30 * OS_HZ) > pAd->Mlme.Now32))
24289 + goto SKIP_AUTO_SCAN_CONN;
24291 + pAd->StaCfg.bScanReqIsFromWebUI = FALSE;
24293 + if ((pAd->StaCfg.bAutoReconnect == TRUE)
24294 + && RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_START_UP)
24295 + && (MlmeValidateSSID(pAd->MlmeAux.AutoReconnectSsid, pAd->MlmeAux.AutoReconnectSsidLen) == TRUE))
24297 + if ((pAd->ScanTab.BssNr==0) && (pAd->Mlme.CntlMachine.CurrState == CNTL_IDLE))
24299 + MLME_SCAN_REQ_STRUCT ScanReq;
24301 + if ((pAd->StaCfg.LastScanTime + 10 * OS_HZ) < pAd->Mlme.Now32)
24303 + DBGPRINT(RT_DEBUG_TRACE, ("STAMlmePeriodicExec():CNTL - ScanTab.BssNr==0, start a new ACTIVE scan SSID[%s]\n", pAd->MlmeAux.AutoReconnectSsid));
24304 + ScanParmFill(pAd, &ScanReq, pAd->MlmeAux.AutoReconnectSsid, pAd->MlmeAux.AutoReconnectSsidLen, BSS_ANY, SCAN_ACTIVE);
24305 + MlmeEnqueue(pAd, SYNC_STATE_MACHINE, MT2_MLME_SCAN_REQ, sizeof(MLME_SCAN_REQ_STRUCT), &ScanReq);
24306 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_OID_LIST_SCAN;
24307 + // Reset Missed scan number
24308 + pAd->StaCfg.LastScanTime = pAd->Mlme.Now32;
24310 + else if (pAd->StaCfg.BssType == BSS_ADHOC) // Quit the forever scan when in a very clean room
24311 + MlmeAutoReconnectLastSSID(pAd);
24313 + else if (pAd->Mlme.CntlMachine.CurrState == CNTL_IDLE)
24315 + if ((pAd->Mlme.OneSecPeriodicRound % 7) == 0)
24317 + MlmeAutoScan(pAd);
24318 + pAd->StaCfg.LastScanTime = pAd->Mlme.Now32;
24322 +#ifdef CARRIER_DETECTION_SUPPORT // Roger sync Carrier
24323 + if (pAd->CommonCfg.CarrierDetect.Enable == TRUE)
24325 + if ((pAd->Mlme.OneSecPeriodicRound % 5) == 1)
24326 + MlmeAutoReconnectLastSSID(pAd);
24329 +#endif // CARRIER_DETECTION_SUPPORT //
24330 + MlmeAutoReconnectLastSSID(pAd);
24336 +SKIP_AUTO_SCAN_CONN:
24338 +#ifdef DOT11_N_SUPPORT
24339 + if ((pAd->MacTab.Content[BSSID_WCID].TXBAbitmap !=0) && (pAd->MacTab.fAnyBASession == FALSE))
24341 + pAd->MacTab.fAnyBASession = TRUE;
24342 + AsicUpdateProtect(pAd, HT_FORCERTSCTS, ALLN_SETPROTECT, FALSE, FALSE);
24344 + else if ((pAd->MacTab.Content[BSSID_WCID].TXBAbitmap ==0) && (pAd->MacTab.fAnyBASession == TRUE))
24346 + pAd->MacTab.fAnyBASession = FALSE;
24347 + AsicUpdateProtect(pAd, pAd->MlmeAux.AddHtInfo.AddHtInfo2.OperaionMode, ALLN_SETPROTECT, FALSE, FALSE);
24349 +#endif // DOT11_N_SUPPORT //
24352 +#ifdef DOT11_N_SUPPORT
24353 +#ifdef DOT11N_DRAFT3
24354 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_SCAN_2040))
24355 + TriEventCounterMaintenance(pAd);
24356 +#endif // DOT11N_DRAFT3 //
24357 +#endif // DOT11_N_SUPPORT //
24362 +// Link down report
24363 +VOID LinkDownExec(
24364 + IN PVOID SystemSpecific1,
24365 + IN PVOID FunctionContext,
24366 + IN PVOID SystemSpecific2,
24367 + IN PVOID SystemSpecific3)
24370 + RTMP_ADAPTER *pAd = (RTMP_ADAPTER *)FunctionContext;
24372 + pAd->IndicateMediaState = NdisMediaStateDisconnected;
24373 + RTMP_IndicateMediaState(pAd);
24374 + pAd->ExtraInfo = GENERAL_LINK_DOWN;
24377 +// IRQL = DISPATCH_LEVEL
24378 +VOID MlmeAutoScan(
24379 + IN PRTMP_ADAPTER pAd)
24381 + // check CntlMachine.CurrState to avoid collision with NDIS SetOID request
24382 + if (pAd->Mlme.CntlMachine.CurrState == CNTL_IDLE)
24384 + DBGPRINT(RT_DEBUG_TRACE, ("MMCHK - Driver auto scan\n"));
24386 + MLME_CNTL_STATE_MACHINE,
24387 + OID_802_11_BSSID_LIST_SCAN,
24390 + RT28XX_MLME_HANDLER(pAd);
24394 +// IRQL = DISPATCH_LEVEL
24395 +VOID MlmeAutoReconnectLastSSID(
24396 + IN PRTMP_ADAPTER pAd)
24400 + // check CntlMachine.CurrState to avoid collision with NDIS SetOID request
24401 + if ((pAd->Mlme.CntlMachine.CurrState == CNTL_IDLE) &&
24402 + (MlmeValidateSSID(pAd->MlmeAux.AutoReconnectSsid, pAd->MlmeAux.AutoReconnectSsidLen) == TRUE))
24404 + NDIS_802_11_SSID OidSsid;
24405 + OidSsid.SsidLength = pAd->MlmeAux.AutoReconnectSsidLen;
24406 + NdisMoveMemory(OidSsid.Ssid, pAd->MlmeAux.AutoReconnectSsid, pAd->MlmeAux.AutoReconnectSsidLen);
24408 + DBGPRINT(RT_DEBUG_TRACE, ("Driver auto reconnect to last OID_802_11_SSID setting - %s, len - %d\n", pAd->MlmeAux.AutoReconnectSsid, pAd->MlmeAux.AutoReconnectSsidLen));
24410 + MLME_CNTL_STATE_MACHINE,
24412 + sizeof(NDIS_802_11_SSID),
24414 + RT28XX_MLME_HANDLER(pAd);
24417 +#endif // CONFIG_STA_SUPPORT //
24420 + ==========================================================================
24421 + Validate SSID for connection try and rescan purpose
24422 + Valid SSID will have visible chars only.
24423 + The valid length is from 0 to 32.
24424 + IRQL = DISPATCH_LEVEL
24425 + ==========================================================================
24427 +BOOLEAN MlmeValidateSSID(
24429 + IN UCHAR SsidLen)
24433 + if (SsidLen > MAX_LEN_OF_SSID)
24436 + // Check each character value
24437 + for (index = 0; index < SsidLen; index++)
24439 + if (pSsid[index] < 0x20)
24447 +VOID MlmeSelectTxRateTable(
24448 + IN PRTMP_ADAPTER pAd,
24449 + IN PMAC_TABLE_ENTRY pEntry,
24450 + IN PUCHAR *ppTable,
24451 + IN PUCHAR pTableSize,
24452 + IN PUCHAR pInitTxRateIdx)
24456 + // decide the rate table for tuning
24457 + if (pAd->CommonCfg.TxRateTableSize > 0)
24459 + *ppTable = RateSwitchTable;
24460 + *pTableSize = RateSwitchTable[0];
24461 + *pInitTxRateIdx = RateSwitchTable[1];
24466 +#ifdef CONFIG_STA_SUPPORT
24467 + if ((pAd->OpMode == OPMODE_STA) && ADHOC_ON(pAd))
24469 +#ifdef DOT11_N_SUPPORT
24470 + if ((pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED) &&
24471 + (pEntry->HTCapability.MCSSet[0] == 0xff) &&
24472 + ((pEntry->HTCapability.MCSSet[1] == 0x00) || (pAd->Antenna.field.TxPath == 1)))
24474 + *ppTable = RateSwitchTable11N1S;
24475 + *pTableSize = RateSwitchTable11N1S[0];
24476 + *pInitTxRateIdx = RateSwitchTable11N1S[1];
24479 + else if ((pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED) &&
24480 + (pEntry->HTCapability.MCSSet[0] == 0xff) &&
24481 + (pEntry->HTCapability.MCSSet[1] == 0xff) &&
24482 + (pAd->Antenna.field.TxPath == 2))
24484 + if (pAd->LatchRfRegs.Channel <= 14)
24486 + *ppTable = RateSwitchTable11N2S;
24487 + *pTableSize = RateSwitchTable11N2S[0];
24488 + *pInitTxRateIdx = RateSwitchTable11N2S[1];
24492 + *ppTable = RateSwitchTable11N2SForABand;
24493 + *pTableSize = RateSwitchTable11N2SForABand[0];
24494 + *pInitTxRateIdx = RateSwitchTable11N2SForABand[1];
24499 +#endif // DOT11_N_SUPPORT //
24500 + if ((pEntry->RateLen == 4)
24501 +#ifdef DOT11_N_SUPPORT
24502 + && (pEntry->HTCapability.MCSSet[0] == 0) && (pEntry->HTCapability.MCSSet[1] == 0)
24503 +#endif // DOT11_N_SUPPORT //
24506 + *ppTable = RateSwitchTable11B;
24507 + *pTableSize = RateSwitchTable11B[0];
24508 + *pInitTxRateIdx = RateSwitchTable11B[1];
24511 + else if (pAd->LatchRfRegs.Channel <= 14)
24513 + *ppTable = RateSwitchTable11BG;
24514 + *pTableSize = RateSwitchTable11BG[0];
24515 + *pInitTxRateIdx = RateSwitchTable11BG[1];
24520 + *ppTable = RateSwitchTable11G;
24521 + *pTableSize = RateSwitchTable11G[0];
24522 + *pInitTxRateIdx = RateSwitchTable11G[1];
24527 +#endif // CONFIG_STA_SUPPORT //
24529 +#ifdef DOT11_N_SUPPORT
24530 + //if ((pAd->StaActive.SupRateLen + pAd->StaActive.ExtRateLen == 12) && (pAd->StaActive.SupportedPhyInfo.MCSSet[0] == 0xff) &&
24531 + // ((pAd->StaActive.SupportedPhyInfo.MCSSet[1] == 0x00) || (pAd->Antenna.field.TxPath == 1)))
24532 + if ((pEntry->RateLen == 12) && (pEntry->HTCapability.MCSSet[0] == 0xff) &&
24533 + ((pEntry->HTCapability.MCSSet[1] == 0x00) || (pAd->CommonCfg.TxStream == 1)))
24535 + *ppTable = RateSwitchTable11BGN1S;
24536 + *pTableSize = RateSwitchTable11BGN1S[0];
24537 + *pInitTxRateIdx = RateSwitchTable11BGN1S[1];
24542 + //else if ((pAd->StaActive.SupRateLen + pAd->StaActive.ExtRateLen == 12) && (pAd->StaActive.SupportedPhyInfo.MCSSet[0] == 0xff) &&
24543 + // (pAd->StaActive.SupportedPhyInfo.MCSSet[1] == 0xff) && (pAd->Antenna.field.TxPath == 2))
24544 + if ((pEntry->RateLen == 12) && (pEntry->HTCapability.MCSSet[0] == 0xff) &&
24545 + (pEntry->HTCapability.MCSSet[1] == 0xff) && (pAd->CommonCfg.TxStream == 2))
24547 + if (pAd->LatchRfRegs.Channel <= 14)
24549 + *ppTable = RateSwitchTable11BGN2S;
24550 + *pTableSize = RateSwitchTable11BGN2S[0];
24551 + *pInitTxRateIdx = RateSwitchTable11BGN2S[1];
24556 + *ppTable = RateSwitchTable11BGN2SForABand;
24557 + *pTableSize = RateSwitchTable11BGN2SForABand[0];
24558 + *pInitTxRateIdx = RateSwitchTable11BGN2SForABand[1];
24564 + //else if ((pAd->StaActive.SupportedPhyInfo.MCSSet[0] == 0xff) && ((pAd->StaActive.SupportedPhyInfo.MCSSet[1] == 0x00) || (pAd->Antenna.field.TxPath == 1)))
24565 + if ((pEntry->HTCapability.MCSSet[0] == 0xff) && ((pEntry->HTCapability.MCSSet[1] == 0x00) || (pAd->CommonCfg.TxStream == 1)))
24567 + *ppTable = RateSwitchTable11N1S;
24568 + *pTableSize = RateSwitchTable11N1S[0];
24569 + *pInitTxRateIdx = RateSwitchTable11N1S[1];
24574 + //else if ((pAd->StaActive.SupportedPhyInfo.MCSSet[0] == 0xff) && (pAd->StaActive.SupportedPhyInfo.MCSSet[1] == 0xff) && (pAd->Antenna.field.TxPath == 2))
24575 + if ((pEntry->HTCapability.MCSSet[0] == 0xff) && (pEntry->HTCapability.MCSSet[1] == 0xff) && (pAd->CommonCfg.TxStream == 2))
24577 + if (pAd->LatchRfRegs.Channel <= 14)
24579 + *ppTable = RateSwitchTable11N2S;
24580 + *pTableSize = RateSwitchTable11N2S[0];
24581 + *pInitTxRateIdx = RateSwitchTable11N2S[1];
24585 + *ppTable = RateSwitchTable11N2SForABand;
24586 + *pTableSize = RateSwitchTable11N2SForABand[0];
24587 + *pInitTxRateIdx = RateSwitchTable11N2SForABand[1];
24592 +#endif // DOT11_N_SUPPORT //
24593 + //else if ((pAd->StaActive.SupRateLen == 4) && (pAd->StaActive.ExtRateLen == 0) && (pAd->StaActive.SupportedPhyInfo.MCSSet[0] == 0) && (pAd->StaActive.SupportedPhyInfo.MCSSet[1] == 0))
24594 + if ((pEntry->RateLen == 4)
24595 +#ifdef DOT11_N_SUPPORT
24596 +//Iverson mark for Adhoc b mode,sta will use rate 54 Mbps when connect with sta b/g/n mode
24597 +// && (pEntry->HTCapability.MCSSet[0] == 0) && (pEntry->HTCapability.MCSSet[1] == 0)
24598 +#endif // DOT11_N_SUPPORT //
24601 + *ppTable = RateSwitchTable11B;
24602 + *pTableSize = RateSwitchTable11B[0];
24603 + *pInitTxRateIdx = RateSwitchTable11B[1];
24608 + //else if ((pAd->StaActive.SupRateLen + pAd->StaActive.ExtRateLen > 8) && (pAd->StaActive.SupportedPhyInfo.MCSSet[0] == 0) && (pAd->StaActive.SupportedPhyInfo.MCSSet[1] == 0))
24609 + if ((pEntry->RateLen > 8)
24610 +#ifdef DOT11_N_SUPPORT
24611 + && (pEntry->HTCapability.MCSSet[0] == 0) && (pEntry->HTCapability.MCSSet[1] == 0)
24612 +#endif // DOT11_N_SUPPORT //
24615 + *ppTable = RateSwitchTable11BG;
24616 + *pTableSize = RateSwitchTable11BG[0];
24617 + *pInitTxRateIdx = RateSwitchTable11BG[1];
24622 + //else if ((pAd->StaActive.SupRateLen + pAd->StaActive.ExtRateLen == 8) && (pAd->StaActive.SupportedPhyInfo.MCSSet[0] == 0) && (pAd->StaActive.SupportedPhyInfo.MCSSet[1] == 0))
24623 + if ((pEntry->RateLen == 8)
24624 +#ifdef DOT11_N_SUPPORT
24625 + && (pEntry->HTCapability.MCSSet[0] == 0) && (pEntry->HTCapability.MCSSet[1] == 0)
24626 +#endif // DOT11_N_SUPPORT //
24629 + *ppTable = RateSwitchTable11G;
24630 + *pTableSize = RateSwitchTable11G[0];
24631 + *pInitTxRateIdx = RateSwitchTable11G[1];
24635 +#ifdef DOT11_N_SUPPORT
24636 +#endif // DOT11_N_SUPPORT //
24638 +#ifdef CONFIG_STA_SUPPORT
24639 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
24641 +#ifdef DOT11_N_SUPPORT
24642 + //else if ((pAd->StaActive.SupportedPhyInfo.MCSSet[0] == 0) && (pAd->StaActive.SupportedPhyInfo.MCSSet[1] == 0))
24643 + if ((pEntry->HTCapability.MCSSet[0] == 0) && (pEntry->HTCapability.MCSSet[1] == 0))
24644 +#endif // DOT11_N_SUPPORT //
24646 + if (pAd->CommonCfg.MaxTxRate <= RATE_11)
24648 + *ppTable = RateSwitchTable11B;
24649 + *pTableSize = RateSwitchTable11B[0];
24650 + *pInitTxRateIdx = RateSwitchTable11B[1];
24652 + else if ((pAd->CommonCfg.MaxTxRate > RATE_11) && (pAd->CommonCfg.MinTxRate > RATE_11))
24654 + *ppTable = RateSwitchTable11G;
24655 + *pTableSize = RateSwitchTable11G[0];
24656 + *pInitTxRateIdx = RateSwitchTable11G[1];
24661 + *ppTable = RateSwitchTable11BG;
24662 + *pTableSize = RateSwitchTable11BG[0];
24663 + *pInitTxRateIdx = RateSwitchTable11BG[1];
24667 +#ifdef DOT11_N_SUPPORT
24668 + if (pAd->LatchRfRegs.Channel <= 14)
24670 + if (pAd->CommonCfg.TxStream == 1)
24672 + *ppTable = RateSwitchTable11N1S;
24673 + *pTableSize = RateSwitchTable11N1S[0];
24674 + *pInitTxRateIdx = RateSwitchTable11N1S[1];
24675 + DBGPRINT_RAW(RT_DEBUG_ERROR,("DRS: unkown mode,default use 11N 1S AP \n"));
24679 + *ppTable = RateSwitchTable11N2S;
24680 + *pTableSize = RateSwitchTable11N2S[0];
24681 + *pInitTxRateIdx = RateSwitchTable11N2S[1];
24682 + DBGPRINT_RAW(RT_DEBUG_ERROR,("DRS: unkown mode,default use 11N 2S AP \n"));
24687 + if (pAd->CommonCfg.TxStream == 1)
24689 + *ppTable = RateSwitchTable11N1S;
24690 + *pTableSize = RateSwitchTable11N1S[0];
24691 + *pInitTxRateIdx = RateSwitchTable11N1S[1];
24692 + DBGPRINT_RAW(RT_DEBUG_ERROR,("DRS: unkown mode,default use 11N 1S AP \n"));
24696 + *ppTable = RateSwitchTable11N2SForABand;
24697 + *pTableSize = RateSwitchTable11N2SForABand[0];
24698 + *pInitTxRateIdx = RateSwitchTable11N2SForABand[1];
24699 + DBGPRINT_RAW(RT_DEBUG_ERROR,("DRS: unkown mode,default use 11N 2S AP \n"));
24702 +#endif // DOT11_N_SUPPORT //
24703 + DBGPRINT_RAW(RT_DEBUG_ERROR,("DRS: unkown mode (SupRateLen=%d, ExtRateLen=%d, MCSSet[0]=0x%x, MCSSet[1]=0x%x)\n",
24704 + pAd->StaActive.SupRateLen, pAd->StaActive.ExtRateLen, pAd->StaActive.SupportedPhyInfo.MCSSet[0], pAd->StaActive.SupportedPhyInfo.MCSSet[1]));
24706 +#endif // CONFIG_STA_SUPPORT //
24710 +#ifdef CONFIG_STA_SUPPORT
24712 + ==========================================================================
24714 + This routine checks if there're other APs out there capable for
24715 + roaming. Caller should call this routine only when Link up in INFRA mode
24716 + and channel quality is below CQI_GOOD_THRESHOLD.
24718 + IRQL = DISPATCH_LEVEL
24721 + ==========================================================================
24723 +VOID MlmeCheckForRoaming(
24724 + IN PRTMP_ADAPTER pAd,
24728 + BSS_TABLE *pRoamTab = &pAd->MlmeAux.RoamTab;
24731 + DBGPRINT(RT_DEBUG_TRACE, ("==> MlmeCheckForRoaming\n"));
24732 + // put all roaming candidates into RoamTab, and sort in RSSI order
24733 + BssTableInit(pRoamTab);
24734 + for (i = 0; i < pAd->ScanTab.BssNr; i++)
24736 + pBss = &pAd->ScanTab.BssEntry[i];
24738 + if ((pBss->LastBeaconRxTime + BEACON_LOST_TIME) < Now32)
24739 + continue; // AP disappear
24740 + if (pBss->Rssi <= RSSI_THRESHOLD_FOR_ROAMING)
24741 + continue; // RSSI too weak. forget it.
24742 + if (MAC_ADDR_EQUAL(pBss->Bssid, pAd->CommonCfg.Bssid))
24743 + continue; // skip current AP
24744 + if (pBss->Rssi < (pAd->StaCfg.RssiSample.LastRssi0 + RSSI_DELTA))
24745 + continue; // only AP with stronger RSSI is eligible for roaming
24747 + // AP passing all above rules is put into roaming candidate table
24748 + NdisMoveMemory(&pRoamTab->BssEntry[pRoamTab->BssNr], pBss, sizeof(BSS_ENTRY));
24749 + pRoamTab->BssNr += 1;
24752 + if (pRoamTab->BssNr > 0)
24754 + // check CntlMachine.CurrState to avoid collision with NDIS SetOID request
24755 + if (pAd->Mlme.CntlMachine.CurrState == CNTL_IDLE)
24757 + pAd->RalinkCounters.PoorCQIRoamingCount ++;
24758 + DBGPRINT(RT_DEBUG_TRACE, ("MMCHK - Roaming attempt #%ld\n", pAd->RalinkCounters.PoorCQIRoamingCount));
24759 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_MLME_ROAMING_REQ, 0, NULL);
24760 + RT28XX_MLME_HANDLER(pAd);
24763 + DBGPRINT(RT_DEBUG_TRACE, ("<== MlmeCheckForRoaming(# of candidate= %d)\n",pRoamTab->BssNr));
24767 + ==========================================================================
24769 + This routine checks if there're other APs out there capable for
24770 + roaming. Caller should call this routine only when link up in INFRA mode
24771 + and channel quality is below CQI_GOOD_THRESHOLD.
24773 + IRQL = DISPATCH_LEVEL
24776 + ==========================================================================
24778 +VOID MlmeCheckForFastRoaming(
24779 + IN PRTMP_ADAPTER pAd,
24783 + BSS_TABLE *pRoamTab = &pAd->MlmeAux.RoamTab;
24786 + DBGPRINT(RT_DEBUG_TRACE, ("==> MlmeCheckForFastRoaming\n"));
24787 + // put all roaming candidates into RoamTab, and sort in RSSI order
24788 + BssTableInit(pRoamTab);
24789 + for (i = 0; i < pAd->ScanTab.BssNr; i++)
24791 + pBss = &pAd->ScanTab.BssEntry[i];
24793 + if ((pBss->Rssi <= -50) && (pBss->Channel == pAd->CommonCfg.Channel))
24794 + continue; // RSSI too weak. forget it.
24795 + if (MAC_ADDR_EQUAL(pBss->Bssid, pAd->CommonCfg.Bssid))
24796 + continue; // skip current AP
24797 + if (!SSID_EQUAL(pBss->Ssid, pBss->SsidLen, pAd->CommonCfg.Ssid, pAd->CommonCfg.SsidLen))
24798 + continue; // skip different SSID
24799 + if (pBss->Rssi < (RTMPMaxRssi(pAd, pAd->StaCfg.RssiSample.LastRssi0, pAd->StaCfg.RssiSample.LastRssi1, pAd->StaCfg.RssiSample.LastRssi2) + RSSI_DELTA))
24800 + continue; // skip AP without better RSSI
24802 + DBGPRINT(RT_DEBUG_TRACE, ("LastRssi0 = %d, pBss->Rssi = %d\n", RTMPMaxRssi(pAd, pAd->StaCfg.RssiSample.LastRssi0, pAd->StaCfg.RssiSample.LastRssi1, pAd->StaCfg.RssiSample.LastRssi2), pBss->Rssi));
24803 + // AP passing all above rules is put into roaming candidate table
24804 + NdisMoveMemory(&pRoamTab->BssEntry[pRoamTab->BssNr], pBss, sizeof(BSS_ENTRY));
24805 + pRoamTab->BssNr += 1;
24808 + if (pRoamTab->BssNr > 0)
24810 + // check CntlMachine.CurrState to avoid collision with NDIS SetOID request
24811 + if (pAd->Mlme.CntlMachine.CurrState == CNTL_IDLE)
24813 + pAd->RalinkCounters.PoorCQIRoamingCount ++;
24814 + DBGPRINT(RT_DEBUG_TRACE, ("MMCHK - Roaming attempt #%ld\n", pAd->RalinkCounters.PoorCQIRoamingCount));
24815 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_MLME_ROAMING_REQ, 0, NULL);
24816 + RT28XX_MLME_HANDLER(pAd);
24819 + // Maybe site survey required
24822 + if ((pAd->StaCfg.LastScanTime + 10 * 1000) < Now)
24824 + // check CntlMachine.CurrState to avoid collision with NDIS SetOID request
24825 + DBGPRINT(RT_DEBUG_TRACE, ("MMCHK - Roaming, No eligable entry, try new scan!\n"));
24826 + pAd->StaCfg.ScanCnt = 2;
24827 + pAd->StaCfg.LastScanTime = Now;
24828 + MlmeAutoScan(pAd);
24832 + DBGPRINT(RT_DEBUG_TRACE, ("<== MlmeCheckForFastRoaming (BssNr=%d)\n", pRoamTab->BssNr));
24836 + ==========================================================================
24838 + This routine calculates TxPER, RxPER of the past N-sec period. And
24839 + according to the calculation result, ChannelQuality is calculated here
24840 + to decide if current AP is still doing the job.
24842 + If ChannelQuality is not good, a ROAMing attempt may be tried later.
24844 + StaCfg.ChannelQuality - 0..100
24846 + IRQL = DISPATCH_LEVEL
24848 + NOTE: This routine decide channle quality based on RX CRC error ratio.
24849 + Caller should make sure a function call to NICUpdateRawCounters(pAd)
24850 + is performed right before this routine, so that this routine can decide
24851 + channel quality based on the most up-to-date information
24852 + ==========================================================================
24854 +VOID MlmeCalculateChannelQuality(
24855 + IN PRTMP_ADAPTER pAd,
24858 + ULONG TxOkCnt, TxCnt, TxPER, TxPRR;
24859 + ULONG RxCnt, RxPER;
24862 + ULONG BeaconLostTime = BEACON_LOST_TIME;
24864 +#ifdef CARRIER_DETECTION_SUPPORT // Roger sync Carrier
24865 + // longer beacon lost time when carrier detection enabled
24866 + if (pAd->CommonCfg.CarrierDetect.Enable == TRUE)
24868 + BeaconLostTime = BEACON_LOST_TIME + BEACON_LOST_TIME/2;
24870 +#endif // CARRIER_DETECTION_SUPPORT //
24872 + MaxRssi = RTMPMaxRssi(pAd, pAd->StaCfg.RssiSample.LastRssi0, pAd->StaCfg.RssiSample.LastRssi1, pAd->StaCfg.RssiSample.LastRssi2);
24875 + // calculate TX packet error ratio and TX retry ratio - if too few TX samples, skip TX related statistics
24877 + TxOkCnt = pAd->RalinkCounters.OneSecTxNoRetryOkCount + pAd->RalinkCounters.OneSecTxRetryOkCount;
24878 + TxCnt = TxOkCnt + pAd->RalinkCounters.OneSecTxFailCount;
24886 + TxPER = (pAd->RalinkCounters.OneSecTxFailCount * 100) / TxCnt;
24887 + TxPRR = ((TxCnt - pAd->RalinkCounters.OneSecTxNoRetryOkCount) * 100) / TxCnt;
24891 + // calculate RX PER - don't take RxPER into consideration if too few sample
24893 + RxCnt = pAd->RalinkCounters.OneSecRxOkCnt + pAd->RalinkCounters.OneSecRxFcsErrCnt;
24897 + RxPER = (pAd->RalinkCounters.OneSecRxFcsErrCnt * 100) / RxCnt;
24900 + // decide ChannelQuality based on: 1)last BEACON received time, 2)last RSSI, 3)TxPER, and 4)RxPER
24902 + if (INFRA_ON(pAd) &&
24903 + (pAd->RalinkCounters.OneSecTxNoRetryOkCount < 2) && // no heavy traffic
24904 + (pAd->StaCfg.LastBeaconRxTime + BeaconLostTime < Now32))
24906 + DBGPRINT(RT_DEBUG_TRACE, ("BEACON lost > %ld msec with TxOkCnt=%ld -> CQI=0\n", BeaconLostTime, TxOkCnt));
24907 + pAd->Mlme.ChannelQuality = 0;
24911 + // Normalize Rssi
24912 + if (MaxRssi > -40)
24914 + else if (MaxRssi < -90)
24917 + NorRssi = (MaxRssi + 90) * 2;
24919 + // ChannelQuality = W1*RSSI + W2*TxPRR + W3*RxPER (RSSI 0..100), (TxPER 100..0), (RxPER 100..0)
24920 + pAd->Mlme.ChannelQuality = (RSSI_WEIGHTING * NorRssi +
24921 + TX_WEIGHTING * (100 - TxPRR) +
24922 + RX_WEIGHTING* (100 - RxPER)) / 100;
24923 + if (pAd->Mlme.ChannelQuality >= 100)
24924 + pAd->Mlme.ChannelQuality = 100;
24929 +VOID MlmeSetTxRate(
24930 + IN PRTMP_ADAPTER pAd,
24931 + IN PMAC_TABLE_ENTRY pEntry,
24932 + IN PRTMP_TX_RATE_SWITCH pTxRate)
24934 + UCHAR MaxMode = MODE_OFDM;
24936 +#ifdef DOT11_N_SUPPORT
24937 + MaxMode = MODE_HTGREENFIELD;
24939 + if (pTxRate->STBC && (pAd->StaCfg.MaxHTPhyMode.field.STBC) && (pAd->Antenna.field.TxPath == 2))
24940 + pAd->StaCfg.HTPhyMode.field.STBC = STBC_USE;
24942 +#endif // DOT11_N_SUPPORT //
24943 + pAd->StaCfg.HTPhyMode.field.STBC = STBC_NONE;
24945 + if (pTxRate->CurrMCS < MCS_AUTO)
24946 + pAd->StaCfg.HTPhyMode.field.MCS = pTxRate->CurrMCS;
24948 + if (pAd->StaCfg.HTPhyMode.field.MCS > 7)
24949 + pAd->StaCfg.HTPhyMode.field.STBC = STBC_NONE;
24951 + if (ADHOC_ON(pAd))
24953 + // If peer adhoc is b-only mode, we can't send 11g rate.
24954 + pAd->StaCfg.HTPhyMode.field.ShortGI = GI_800;
24955 + pEntry->HTPhyMode.field.STBC = STBC_NONE;
24958 + // For Adhoc MODE_CCK, driver will use AdhocBOnlyJoined flag to roll back to B only if necessary
24960 + pEntry->HTPhyMode.field.MODE = pTxRate->Mode;
24961 + pEntry->HTPhyMode.field.ShortGI = pAd->StaCfg.HTPhyMode.field.ShortGI;
24962 + pEntry->HTPhyMode.field.MCS = pAd->StaCfg.HTPhyMode.field.MCS;
24964 + // Patch speed error in status page
24965 + pAd->StaCfg.HTPhyMode.field.MODE = pEntry->HTPhyMode.field.MODE;
24969 + if (pTxRate->Mode <= MaxMode)
24970 + pAd->StaCfg.HTPhyMode.field.MODE = pTxRate->Mode;
24972 +#ifdef DOT11_N_SUPPORT
24973 + if (pTxRate->ShortGI && (pAd->StaCfg.MaxHTPhyMode.field.ShortGI))
24974 + pAd->StaCfg.HTPhyMode.field.ShortGI = GI_400;
24976 +#endif // DOT11_N_SUPPORT //
24977 + pAd->StaCfg.HTPhyMode.field.ShortGI = GI_800;
24979 +#ifdef DOT11_N_SUPPORT
24980 + // Reexam each bandwidth's SGI support.
24981 + if (pAd->StaCfg.HTPhyMode.field.ShortGI == GI_400)
24983 + if ((pEntry->HTPhyMode.field.BW == BW_20) && (!CLIENT_STATUS_TEST_FLAG(pEntry, fCLIENT_STATUS_SGI20_CAPABLE)))
24984 + pAd->StaCfg.HTPhyMode.field.ShortGI = GI_800;
24985 + if ((pEntry->HTPhyMode.field.BW == BW_40) && (!CLIENT_STATUS_TEST_FLAG(pEntry, fCLIENT_STATUS_SGI40_CAPABLE)))
24986 + pAd->StaCfg.HTPhyMode.field.ShortGI = GI_800;
24989 + // Turn RTS/CTS rate to 6Mbps.
24990 + if ((pEntry->HTPhyMode.field.MCS == 0) && (pAd->StaCfg.HTPhyMode.field.MCS != 0))
24992 + pEntry->HTPhyMode.field.MCS = pAd->StaCfg.HTPhyMode.field.MCS;
24993 + if (pAd->MacTab.fAnyBASession)
24995 + AsicUpdateProtect(pAd, HT_FORCERTSCTS, ALLN_SETPROTECT, TRUE, (BOOLEAN)pAd->MlmeAux.AddHtInfo.AddHtInfo2.NonGfPresent);
24999 + AsicUpdateProtect(pAd, pAd->MlmeAux.AddHtInfo.AddHtInfo2.OperaionMode, ALLN_SETPROTECT, TRUE, (BOOLEAN)pAd->MlmeAux.AddHtInfo.AddHtInfo2.NonGfPresent);
25002 + else if ((pEntry->HTPhyMode.field.MCS == 8) && (pAd->StaCfg.HTPhyMode.field.MCS != 8))
25004 + pEntry->HTPhyMode.field.MCS = pAd->StaCfg.HTPhyMode.field.MCS;
25005 + if (pAd->MacTab.fAnyBASession)
25007 + AsicUpdateProtect(pAd, HT_FORCERTSCTS, ALLN_SETPROTECT, TRUE, (BOOLEAN)pAd->MlmeAux.AddHtInfo.AddHtInfo2.NonGfPresent);
25011 + AsicUpdateProtect(pAd, pAd->MlmeAux.AddHtInfo.AddHtInfo2.OperaionMode, ALLN_SETPROTECT, TRUE, (BOOLEAN)pAd->MlmeAux.AddHtInfo.AddHtInfo2.NonGfPresent);
25014 + else if ((pEntry->HTPhyMode.field.MCS != 0) && (pAd->StaCfg.HTPhyMode.field.MCS == 0))
25016 + AsicUpdateProtect(pAd, HT_RTSCTS_6M, ALLN_SETPROTECT, TRUE, (BOOLEAN)pAd->MlmeAux.AddHtInfo.AddHtInfo2.NonGfPresent);
25019 + else if ((pEntry->HTPhyMode.field.MCS != 8) && (pAd->StaCfg.HTPhyMode.field.MCS == 8))
25021 + AsicUpdateProtect(pAd, HT_RTSCTS_6M, ALLN_SETPROTECT, TRUE, (BOOLEAN)pAd->MlmeAux.AddHtInfo.AddHtInfo2.NonGfPresent);
25023 +#endif // DOT11_N_SUPPORT //
25025 + pEntry->HTPhyMode.field.STBC = pAd->StaCfg.HTPhyMode.field.STBC;
25026 + pEntry->HTPhyMode.field.ShortGI = pAd->StaCfg.HTPhyMode.field.ShortGI;
25027 + pEntry->HTPhyMode.field.MCS = pAd->StaCfg.HTPhyMode.field.MCS;
25028 + pEntry->HTPhyMode.field.MODE = pAd->StaCfg.HTPhyMode.field.MODE;
25029 +#ifdef DOT11_N_SUPPORT
25030 + if ((pAd->StaCfg.MaxHTPhyMode.field.MODE == MODE_HTGREENFIELD) &&
25031 + pAd->WIFItestbed.bGreenField)
25032 + pEntry->HTPhyMode.field.MODE = MODE_HTGREENFIELD;
25033 +#endif // DOT11_N_SUPPORT //
25036 + pAd->LastTxRate = (USHORT)(pEntry->HTPhyMode.word);
25040 + ==========================================================================
25042 + This routine calculates the acumulated TxPER of eaxh TxRate. And
25043 + according to the calculation result, change CommonCfg.TxRate which
25044 + is the stable TX Rate we expect the Radio situation could sustained.
25046 + CommonCfg.TxRate will change dynamically within {RATE_1/RATE_6, MaxTxRate}
25048 + CommonCfg.TxRate -
25050 + IRQL = DISPATCH_LEVEL
25053 + call this routine every second
25054 + ==========================================================================
25056 +VOID MlmeDynamicTxRateSwitching(
25057 + IN PRTMP_ADAPTER pAd)
25059 + UCHAR UpRateIdx = 0, DownRateIdx = 0, CurrRateIdx;
25060 + ULONG i, AccuTxTotalCnt = 0, TxTotalCnt;
25061 + ULONG TxErrorRatio = 0;
25062 + BOOLEAN bTxRateChanged, bUpgradeQuality = FALSE;
25063 + PRTMP_TX_RATE_SWITCH pCurrTxRate, pNextTxRate = NULL;
25065 + UCHAR TableSize = 0;
25066 + UCHAR InitTxRateIdx = 0, TrainUp, TrainDown;
25067 + CHAR Rssi, RssiOffset = 0;
25068 + TX_STA_CNT1_STRUC StaTx1;
25069 + TX_STA_CNT0_STRUC TxStaCnt0;
25070 + ULONG TxRetransmit = 0, TxSuccess = 0, TxFailCount = 0;
25071 + MAC_TABLE_ENTRY *pEntry;
25078 +#endif // RALINK_ATE //
25081 + // walk through MAC table, see if need to change AP's TX rate toward each entry
25083 + for (i = 1; i < MAX_LEN_OF_MAC_TABLE; i++)
25085 + pEntry = &pAd->MacTab.Content[i];
25087 + // check if this entry need to switch rate automatically
25088 + if (RTMPCheckEntryEnableAutoRateSwitch(pAd, pEntry) == FALSE)
25091 + if ((pAd->MacTab.Size == 1) || (pEntry->ValidAsDls))
25093 + Rssi = RTMPMaxRssi(pAd,
25094 + pAd->StaCfg.RssiSample.AvgRssi0,
25095 + pAd->StaCfg.RssiSample.AvgRssi1,
25096 + pAd->StaCfg.RssiSample.AvgRssi2);
25098 + // Update statistic counter
25099 + RTMP_IO_READ32(pAd, TX_STA_CNT0, &TxStaCnt0.word);
25100 + RTMP_IO_READ32(pAd, TX_STA_CNT1, &StaTx1.word);
25101 + pAd->bUpdateBcnCntDone = TRUE;
25102 + TxRetransmit = StaTx1.field.TxRetransmit;
25103 + TxSuccess = StaTx1.field.TxSuccess;
25104 + TxFailCount = TxStaCnt0.field.TxFailCount;
25105 + TxTotalCnt = TxRetransmit + TxSuccess + TxFailCount;
25107 + pAd->RalinkCounters.OneSecTxRetryOkCount += StaTx1.field.TxRetransmit;
25108 + pAd->RalinkCounters.OneSecTxNoRetryOkCount += StaTx1.field.TxSuccess;
25109 + pAd->RalinkCounters.OneSecTxFailCount += TxStaCnt0.field.TxFailCount;
25110 + pAd->WlanCounters.TransmittedFragmentCount.u.LowPart += StaTx1.field.TxSuccess;
25111 + pAd->WlanCounters.RetryCount.u.LowPart += StaTx1.field.TxRetransmit;
25112 + pAd->WlanCounters.FailedCount.u.LowPart += TxStaCnt0.field.TxFailCount;
25114 + // if no traffic in the past 1-sec period, don't change TX rate,
25115 + // but clear all bad history. because the bad history may affect the next
25116 + // Chariot throughput test
25117 + AccuTxTotalCnt = pAd->RalinkCounters.OneSecTxNoRetryOkCount +
25118 + pAd->RalinkCounters.OneSecTxRetryOkCount +
25119 + pAd->RalinkCounters.OneSecTxFailCount;
25122 + TxErrorRatio = ((TxRetransmit + TxFailCount) * 100) / TxTotalCnt;
25126 + if (INFRA_ON(pAd) && (i == 1))
25127 + Rssi = RTMPMaxRssi(pAd,
25128 + pAd->StaCfg.RssiSample.AvgRssi0,
25129 + pAd->StaCfg.RssiSample.AvgRssi1,
25130 + pAd->StaCfg.RssiSample.AvgRssi2);
25132 + Rssi = RTMPMaxRssi(pAd,
25133 + pEntry->RssiSample.AvgRssi0,
25134 + pEntry->RssiSample.AvgRssi1,
25135 + pEntry->RssiSample.AvgRssi2);
25137 + TxTotalCnt = pEntry->OneSecTxNoRetryOkCount +
25138 + pEntry->OneSecTxRetryOkCount +
25139 + pEntry->OneSecTxFailCount;
25142 + TxErrorRatio = ((pEntry->OneSecTxRetryOkCount + pEntry->OneSecTxFailCount) * 100) / TxTotalCnt;
25145 + CurrRateIdx = pEntry->CurrTxRateIndex;
25147 + MlmeSelectTxRateTable(pAd, pEntry, &pTable, &TableSize, &InitTxRateIdx);
25149 + if (CurrRateIdx >= TableSize)
25151 + CurrRateIdx = TableSize - 1;
25154 + // When switch from Fixed rate -> auto rate, the REAL TX rate might be different from pAd->CommonCfg.TxRateIndex.
25155 + // So need to sync here.
25156 + pCurrTxRate = (PRTMP_TX_RATE_SWITCH) &pTable[(CurrRateIdx+1)*5];
25157 + if ((pEntry->HTPhyMode.field.MCS != pCurrTxRate->CurrMCS)
25158 + //&& (pAd->StaCfg.bAutoTxRateSwitch == TRUE)
25162 + // Need to sync Real Tx rate and our record.
25163 + // Then return for next DRS.
25164 + pCurrTxRate = (PRTMP_TX_RATE_SWITCH) &pTable[(InitTxRateIdx+1)*5];
25165 + pEntry->CurrTxRateIndex = InitTxRateIdx;
25166 + MlmeSetTxRate(pAd, pEntry, pCurrTxRate);
25168 + // reset all OneSecTx counters
25169 + RESET_ONE_SEC_TX_CNT(pEntry);
25173 + // decide the next upgrade rate and downgrade rate, if any
25174 + if ((CurrRateIdx > 0) && (CurrRateIdx < (TableSize - 1)))
25176 + UpRateIdx = CurrRateIdx + 1;
25177 + DownRateIdx = CurrRateIdx -1;
25179 + else if (CurrRateIdx == 0)
25181 + UpRateIdx = CurrRateIdx + 1;
25182 + DownRateIdx = CurrRateIdx;
25184 + else if (CurrRateIdx == (TableSize - 1))
25186 + UpRateIdx = CurrRateIdx;
25187 + DownRateIdx = CurrRateIdx - 1;
25190 + pCurrTxRate = (PRTMP_TX_RATE_SWITCH) &pTable[(CurrRateIdx+1)*5];
25192 +#ifdef DOT11_N_SUPPORT
25193 + if ((Rssi > -65) && (pCurrTxRate->Mode >= MODE_HTMIX))
25195 + TrainUp = (pCurrTxRate->TrainUp + (pCurrTxRate->TrainUp >> 1));
25196 + TrainDown = (pCurrTxRate->TrainDown + (pCurrTxRate->TrainDown >> 1));
25199 +#endif // DOT11_N_SUPPORT //
25201 + TrainUp = pCurrTxRate->TrainUp;
25202 + TrainDown = pCurrTxRate->TrainDown;
25205 + //pAd->DrsCounters.LastTimeTxRateChangeAction = pAd->DrsCounters.LastSecTxRateChangeAction;
25208 + // Keep the last time TxRateChangeAction status.
25210 + pEntry->LastTimeTxRateChangeAction = pEntry->LastSecTxRateChangeAction;
25215 + // CASE 1. when TX samples are fewer than 15, then decide TX rate solely on RSSI
25216 + // (criteria copied from RT2500 for Netopia case)
25218 + if (TxTotalCnt <= 15)
25222 + //UCHAR MCS0 = 0, MCS1 = 0, MCS2 = 0, MCS3 = 0, MCS4 = 0, MCS7 = 0, MCS12 = 0, MCS13 = 0, MCS14 = 0, MCS15 = 0;
25223 + UCHAR MCS0 = 0, MCS1 = 0, MCS2 = 0, MCS3 = 0, MCS4 = 0, MCS5 =0, MCS6 = 0, MCS7 = 0;
25224 + UCHAR MCS12 = 0, MCS13 = 0, MCS14 = 0, MCS15 = 0;
25225 + UCHAR MCS20 = 0, MCS21 = 0, MCS22 = 0, MCS23 = 0; // 3*3
25227 + // check the existence and index of each needed MCS
25228 + while (idx < pTable[0])
25230 + pCurrTxRate = (PRTMP_TX_RATE_SWITCH) &pTable[(idx+1)*5];
25232 + if (pCurrTxRate->CurrMCS == MCS_0)
25236 + else if (pCurrTxRate->CurrMCS == MCS_1)
25240 + else if (pCurrTxRate->CurrMCS == MCS_2)
25244 + else if (pCurrTxRate->CurrMCS == MCS_3)
25248 + else if (pCurrTxRate->CurrMCS == MCS_4)
25252 + else if (pCurrTxRate->CurrMCS == MCS_5)
25256 + else if (pCurrTxRate->CurrMCS == MCS_6)
25260 + //else if (pCurrTxRate->CurrMCS == MCS_7)
25261 + else if ((pCurrTxRate->CurrMCS == MCS_7) && (pCurrTxRate->ShortGI == GI_800)) // prevent the highest MCS using short GI when 1T and low throughput
25265 + else if (pCurrTxRate->CurrMCS == MCS_12)
25269 + else if (pCurrTxRate->CurrMCS == MCS_13)
25273 + else if (pCurrTxRate->CurrMCS == MCS_14)
25277 + else if ((pCurrTxRate->CurrMCS == MCS_15) && (pCurrTxRate->ShortGI == GI_800))
25281 + else if (pCurrTxRate->CurrMCS == MCS_20) // 3*3
25285 + else if (pCurrTxRate->CurrMCS == MCS_21)
25289 + else if (pCurrTxRate->CurrMCS == MCS_22)
25293 + else if (pCurrTxRate->CurrMCS == MCS_23)
25300 + if (pAd->LatchRfRegs.Channel <= 14)
25302 + if (pAd->NicConfig2.field.ExternalLNAForG)
25313 + if (pAd->NicConfig2.field.ExternalLNAForA)
25322 +#ifdef DOT11_N_SUPPORT
25324 + if ((pTable == RateSwitchTable11BGN3S) ||
25325 + (pTable == RateSwitchTable11N3S) ||
25326 + (pTable == RateSwitchTable))
25327 + {// N mode with 3 stream // 3*3
25328 + if (MCS23 && (Rssi >= -70))
25329 + TxRateIdx = MCS15;
25330 + else if (MCS22 && (Rssi >= -72))
25331 + TxRateIdx = MCS14;
25332 + else if (MCS21 && (Rssi >= -76))
25333 + TxRateIdx = MCS13;
25334 + else if (MCS20 && (Rssi >= -78))
25335 + TxRateIdx = MCS12;
25336 + else if (MCS4 && (Rssi >= -82))
25337 + TxRateIdx = MCS4;
25338 + else if (MCS3 && (Rssi >= -84))
25339 + TxRateIdx = MCS3;
25340 + else if (MCS2 && (Rssi >= -86))
25341 + TxRateIdx = MCS2;
25342 + else if (MCS1 && (Rssi >= -88))
25343 + TxRateIdx = MCS1;
25345 + TxRateIdx = MCS0;
25347 +// else if ((pTable == RateSwitchTable11BGN2S) || (pTable == RateSwitchTable11BGN2SForABand) ||(pTable == RateSwitchTable11N2S) ||(pTable == RateSwitchTable11N2SForABand) || (pTable == RateSwitchTable))
25348 + else if ((pTable == RateSwitchTable11BGN2S) || (pTable == RateSwitchTable11BGN2SForABand) ||(pTable == RateSwitchTable11N2S) ||(pTable == RateSwitchTable11N2SForABand)) // 3*3
25349 + {// N mode with 2 stream
25350 + if (MCS15 && (Rssi >= (-70+RssiOffset)))
25351 + TxRateIdx = MCS15;
25352 + else if (MCS14 && (Rssi >= (-72+RssiOffset)))
25353 + TxRateIdx = MCS14;
25354 + else if (MCS13 && (Rssi >= (-76+RssiOffset)))
25355 + TxRateIdx = MCS13;
25356 + else if (MCS12 && (Rssi >= (-78+RssiOffset)))
25357 + TxRateIdx = MCS12;
25358 + else if (MCS4 && (Rssi >= (-82+RssiOffset)))
25359 + TxRateIdx = MCS4;
25360 + else if (MCS3 && (Rssi >= (-84+RssiOffset)))
25361 + TxRateIdx = MCS3;
25362 + else if (MCS2 && (Rssi >= (-86+RssiOffset)))
25363 + TxRateIdx = MCS2;
25364 + else if (MCS1 && (Rssi >= (-88+RssiOffset)))
25365 + TxRateIdx = MCS1;
25367 + TxRateIdx = MCS0;
25369 + else if ((pTable == RateSwitchTable11BGN1S) || (pTable == RateSwitchTable11N1S))
25370 + {// N mode with 1 stream
25371 + if (MCS7 && (Rssi > (-72+RssiOffset)))
25372 + TxRateIdx = MCS7;
25373 + else if (MCS6 && (Rssi > (-74+RssiOffset)))
25374 + TxRateIdx = MCS6;
25375 + else if (MCS5 && (Rssi > (-77+RssiOffset)))
25376 + TxRateIdx = MCS5;
25377 + else if (MCS4 && (Rssi > (-79+RssiOffset)))
25378 + TxRateIdx = MCS4;
25379 + else if (MCS3 && (Rssi > (-81+RssiOffset)))
25380 + TxRateIdx = MCS3;
25381 + else if (MCS2 && (Rssi > (-83+RssiOffset)))
25382 + TxRateIdx = MCS2;
25383 + else if (MCS1 && (Rssi > (-86+RssiOffset)))
25384 + TxRateIdx = MCS1;
25386 + TxRateIdx = MCS0;
25389 +#endif // DOT11_N_SUPPORT //
25391 + if (MCS7 && (Rssi > -70))
25392 + TxRateIdx = MCS7;
25393 + else if (MCS6 && (Rssi > -74))
25394 + TxRateIdx = MCS6;
25395 + else if (MCS5 && (Rssi > -78))
25396 + TxRateIdx = MCS5;
25397 + else if (MCS4 && (Rssi > -82))
25398 + TxRateIdx = MCS4;
25399 + else if (MCS4 == 0) // for B-only mode
25400 + TxRateIdx = MCS3;
25401 + else if (MCS3 && (Rssi > -85))
25402 + TxRateIdx = MCS3;
25403 + else if (MCS2 && (Rssi > -87))
25404 + TxRateIdx = MCS2;
25405 + else if (MCS1 && (Rssi > -90))
25406 + TxRateIdx = MCS1;
25408 + TxRateIdx = MCS0;
25411 + // if (TxRateIdx != pAd->CommonCfg.TxRateIndex)
25413 + pEntry->CurrTxRateIndex = TxRateIdx;
25414 + pNextTxRate = (PRTMP_TX_RATE_SWITCH) &pTable[(pEntry->CurrTxRateIndex+1)*5];
25415 + MlmeSetTxRate(pAd, pEntry, pNextTxRate);
25418 + NdisZeroMemory(pEntry->TxQuality, sizeof(USHORT) * MAX_STEP_OF_TX_RATE_SWITCH);
25419 + NdisZeroMemory(pEntry->PER, sizeof(UCHAR) * MAX_STEP_OF_TX_RATE_SWITCH);
25420 + pEntry->fLastSecAccordingRSSI = TRUE;
25421 + // reset all OneSecTx counters
25422 + RESET_ONE_SEC_TX_CNT(pEntry);
25427 + if (pEntry->fLastSecAccordingRSSI == TRUE)
25429 + pEntry->fLastSecAccordingRSSI = FALSE;
25430 + pEntry->LastSecTxRateChangeAction = 0;
25431 + // reset all OneSecTx counters
25432 + RESET_ONE_SEC_TX_CNT(pEntry);
25439 + BOOLEAN bTrainUpDown = FALSE;
25441 + pEntry->CurrTxRateStableTime ++;
25443 + // downgrade TX quality if PER >= Rate-Down threshold
25444 + if (TxErrorRatio >= TrainDown)
25446 + bTrainUpDown = TRUE;
25447 + pEntry->TxQuality[CurrRateIdx] = DRS_TX_QUALITY_WORST_BOUND;
25449 + // upgrade TX quality if PER <= Rate-Up threshold
25450 + else if (TxErrorRatio <= TrainUp)
25452 + bTrainUpDown = TRUE;
25453 + bUpgradeQuality = TRUE;
25454 + if (pEntry->TxQuality[CurrRateIdx])
25455 + pEntry->TxQuality[CurrRateIdx] --; // quality very good in CurrRate
25457 + if (pEntry->TxRateUpPenalty)
25458 + pEntry->TxRateUpPenalty --;
25459 + else if (pEntry->TxQuality[UpRateIdx])
25460 + pEntry->TxQuality[UpRateIdx] --; // may improve next UP rate's quality
25463 + pEntry->PER[CurrRateIdx] = (UCHAR)TxErrorRatio;
25465 + if (bTrainUpDown)
25467 + // perform DRS - consider TxRate Down first, then rate up.
25468 + if ((CurrRateIdx != DownRateIdx) && (pEntry->TxQuality[CurrRateIdx] >= DRS_TX_QUALITY_WORST_BOUND))
25470 + pEntry->CurrTxRateIndex = DownRateIdx;
25472 + else if ((CurrRateIdx != UpRateIdx) && (pEntry->TxQuality[UpRateIdx] <= 0))
25474 + pEntry->CurrTxRateIndex = UpRateIdx;
25479 + // if rate-up happen, clear all bad history of all TX rates
25480 + if (pEntry->CurrTxRateIndex > CurrRateIdx)
25482 + pEntry->CurrTxRateStableTime = 0;
25483 + pEntry->TxRateUpPenalty = 0;
25484 + pEntry->LastSecTxRateChangeAction = 1; // rate UP
25485 + NdisZeroMemory(pEntry->TxQuality, sizeof(USHORT) * MAX_STEP_OF_TX_RATE_SWITCH);
25486 + NdisZeroMemory(pEntry->PER, sizeof(UCHAR) * MAX_STEP_OF_TX_RATE_SWITCH);
25489 + // For TxRate fast train up
25491 + if (!pAd->StaCfg.StaQuickResponeForRateUpTimerRunning)
25493 + RTMPSetTimer(&pAd->StaCfg.StaQuickResponeForRateUpTimer, 100);
25495 + pAd->StaCfg.StaQuickResponeForRateUpTimerRunning = TRUE;
25497 + bTxRateChanged = TRUE;
25499 + // if rate-down happen, only clear DownRate's bad history
25500 + else if (pEntry->CurrTxRateIndex < CurrRateIdx)
25502 + pEntry->CurrTxRateStableTime = 0;
25503 + pEntry->TxRateUpPenalty = 0; // no penalty
25504 + pEntry->LastSecTxRateChangeAction = 2; // rate DOWN
25505 + pEntry->TxQuality[pEntry->CurrTxRateIndex] = 0;
25506 + pEntry->PER[pEntry->CurrTxRateIndex] = 0;
25509 + // For TxRate fast train down
25511 + if (!pAd->StaCfg.StaQuickResponeForRateUpTimerRunning)
25513 + RTMPSetTimer(&pAd->StaCfg.StaQuickResponeForRateUpTimer, 100);
25515 + pAd->StaCfg.StaQuickResponeForRateUpTimerRunning = TRUE;
25517 + bTxRateChanged = TRUE;
25521 + pEntry->LastSecTxRateChangeAction = 0; // rate no change
25522 + bTxRateChanged = FALSE;
25525 + pEntry->LastTxOkCount = TxSuccess;
25527 + // reset all OneSecTx counters
25528 + RESET_ONE_SEC_TX_CNT(pEntry);
25530 + pNextTxRate = (PRTMP_TX_RATE_SWITCH) &pTable[(pEntry->CurrTxRateIndex+1)*5];
25531 + if (bTxRateChanged && pNextTxRate)
25533 + MlmeSetTxRate(pAd, pEntry, pNextTxRate);
25539 + ========================================================================
25540 + Routine Description:
25541 + Station side, Auto TxRate faster train up timer call back function.
25544 + SystemSpecific1 - Not used.
25545 + FunctionContext - Pointer to our Adapter context.
25546 + SystemSpecific2 - Not used.
25547 + SystemSpecific3 - Not used.
25552 + ========================================================================
25554 +VOID StaQuickResponeForRateUpExec(
25555 + IN PVOID SystemSpecific1,
25556 + IN PVOID FunctionContext,
25557 + IN PVOID SystemSpecific2,
25558 + IN PVOID SystemSpecific3)
25560 + PRTMP_ADAPTER pAd = (PRTMP_ADAPTER)FunctionContext;
25561 + UCHAR UpRateIdx = 0, DownRateIdx = 0, CurrRateIdx = 0;
25562 + ULONG TxTotalCnt;
25563 + ULONG TxErrorRatio = 0;
25564 + BOOLEAN bTxRateChanged; //, bUpgradeQuality = FALSE;
25565 + PRTMP_TX_RATE_SWITCH pCurrTxRate, pNextTxRate = NULL;
25567 + UCHAR TableSize = 0;
25568 + UCHAR InitTxRateIdx = 0, TrainUp, TrainDown;
25569 + TX_STA_CNT1_STRUC StaTx1;
25570 + TX_STA_CNT0_STRUC TxStaCnt0;
25571 + CHAR Rssi, ratio;
25572 + ULONG TxRetransmit = 0, TxSuccess = 0, TxFailCount = 0;
25573 + MAC_TABLE_ENTRY *pEntry;
25576 + pAd->StaCfg.StaQuickResponeForRateUpTimerRunning = FALSE;
25579 + // walk through MAC table, see if need to change AP's TX rate toward each entry
25581 + for (i = 1; i < MAX_LEN_OF_MAC_TABLE; i++)
25583 + pEntry = &pAd->MacTab.Content[i];
25585 + // check if this entry need to switch rate automatically
25586 + if (RTMPCheckEntryEnableAutoRateSwitch(pAd, pEntry) == FALSE)
25589 + if (INFRA_ON(pAd) && (i == 1))
25590 + Rssi = RTMPMaxRssi(pAd,
25591 + pAd->StaCfg.RssiSample.AvgRssi0,
25592 + pAd->StaCfg.RssiSample.AvgRssi1,
25593 + pAd->StaCfg.RssiSample.AvgRssi2);
25595 + Rssi = RTMPMaxRssi(pAd,
25596 + pEntry->RssiSample.AvgRssi0,
25597 + pEntry->RssiSample.AvgRssi1,
25598 + pEntry->RssiSample.AvgRssi2);
25600 + CurrRateIdx = pAd->CommonCfg.TxRateIndex;
25602 + MlmeSelectTxRateTable(pAd, pEntry, &pTable, &TableSize, &InitTxRateIdx);
25604 + // decide the next upgrade rate and downgrade rate, if any
25605 + if ((CurrRateIdx > 0) && (CurrRateIdx < (TableSize - 1)))
25607 + UpRateIdx = CurrRateIdx + 1;
25608 + DownRateIdx = CurrRateIdx -1;
25610 + else if (CurrRateIdx == 0)
25612 + UpRateIdx = CurrRateIdx + 1;
25613 + DownRateIdx = CurrRateIdx;
25615 + else if (CurrRateIdx == (TableSize - 1))
25617 + UpRateIdx = CurrRateIdx;
25618 + DownRateIdx = CurrRateIdx - 1;
25621 + pCurrTxRate = (PRTMP_TX_RATE_SWITCH) &pTable[(CurrRateIdx+1)*5];
25623 +#ifdef DOT11_N_SUPPORT
25624 + if ((Rssi > -65) && (pCurrTxRate->Mode >= MODE_HTMIX))
25626 + TrainUp = (pCurrTxRate->TrainUp + (pCurrTxRate->TrainUp >> 1));
25627 + TrainDown = (pCurrTxRate->TrainDown + (pCurrTxRate->TrainDown >> 1));
25630 +#endif // DOT11_N_SUPPORT //
25632 + TrainUp = pCurrTxRate->TrainUp;
25633 + TrainDown = pCurrTxRate->TrainDown;
25636 + if (pAd->MacTab.Size == 1)
25638 + // Update statistic counter
25639 + RTMP_IO_READ32(pAd, TX_STA_CNT0, &TxStaCnt0.word);
25640 + RTMP_IO_READ32(pAd, TX_STA_CNT1, &StaTx1.word);
25642 + TxRetransmit = StaTx1.field.TxRetransmit;
25643 + TxSuccess = StaTx1.field.TxSuccess;
25644 + TxFailCount = TxStaCnt0.field.TxFailCount;
25645 + TxTotalCnt = TxRetransmit + TxSuccess + TxFailCount;
25647 + pAd->RalinkCounters.OneSecTxRetryOkCount += StaTx1.field.TxRetransmit;
25648 + pAd->RalinkCounters.OneSecTxNoRetryOkCount += StaTx1.field.TxSuccess;
25649 + pAd->RalinkCounters.OneSecTxFailCount += TxStaCnt0.field.TxFailCount;
25650 + pAd->WlanCounters.TransmittedFragmentCount.u.LowPart += StaTx1.field.TxSuccess;
25651 + pAd->WlanCounters.RetryCount.u.LowPart += StaTx1.field.TxRetransmit;
25652 + pAd->WlanCounters.FailedCount.u.LowPart += TxStaCnt0.field.TxFailCount;
25655 + TxErrorRatio = ((TxRetransmit + TxFailCount) * 100) / TxTotalCnt;
25659 + TxTotalCnt = pEntry->OneSecTxNoRetryOkCount +
25660 + pEntry->OneSecTxRetryOkCount +
25661 + pEntry->OneSecTxFailCount;
25664 + TxErrorRatio = ((pEntry->OneSecTxRetryOkCount + pEntry->OneSecTxFailCount) * 100) / TxTotalCnt;
25669 + // CASE 1. when TX samples are fewer than 15, then decide TX rate solely on RSSI
25670 + // (criteria copied from RT2500 for Netopia case)
25672 + if (TxTotalCnt <= 12)
25674 + NdisZeroMemory(pAd->DrsCounters.TxQuality, sizeof(USHORT) * MAX_STEP_OF_TX_RATE_SWITCH);
25675 + NdisZeroMemory(pAd->DrsCounters.PER, sizeof(UCHAR) * MAX_STEP_OF_TX_RATE_SWITCH);
25677 + if ((pAd->DrsCounters.LastSecTxRateChangeAction == 1) && (CurrRateIdx != DownRateIdx))
25679 + pAd->CommonCfg.TxRateIndex = DownRateIdx;
25680 + pAd->DrsCounters.TxQuality[CurrRateIdx] = DRS_TX_QUALITY_WORST_BOUND;
25682 + else if ((pAd->DrsCounters.LastSecTxRateChangeAction == 2) && (CurrRateIdx != UpRateIdx))
25684 + pAd->CommonCfg.TxRateIndex = UpRateIdx;
25687 + DBGPRINT_RAW(RT_DEBUG_TRACE,("QuickDRS: TxTotalCnt <= 15, train back to original rate \n"));
25693 + ULONG OneSecTxNoRetryOKRationCount;
25695 + if (pAd->DrsCounters.LastTimeTxRateChangeAction == 0)
25700 + // downgrade TX quality if PER >= Rate-Down threshold
25701 + if (TxErrorRatio >= TrainDown)
25703 + pAd->DrsCounters.TxQuality[CurrRateIdx] = DRS_TX_QUALITY_WORST_BOUND;
25706 + pAd->DrsCounters.PER[CurrRateIdx] = (UCHAR)TxErrorRatio;
25708 + OneSecTxNoRetryOKRationCount = (TxSuccess * ratio);
25710 + // perform DRS - consider TxRate Down first, then rate up.
25711 + if ((pAd->DrsCounters.LastSecTxRateChangeAction == 1) && (CurrRateIdx != DownRateIdx))
25713 + if ((pAd->DrsCounters.LastTxOkCount + 2) >= OneSecTxNoRetryOKRationCount)
25715 + pAd->CommonCfg.TxRateIndex = DownRateIdx;
25716 + pAd->DrsCounters.TxQuality[CurrRateIdx] = DRS_TX_QUALITY_WORST_BOUND;
25721 + else if ((pAd->DrsCounters.LastSecTxRateChangeAction == 2) && (CurrRateIdx != UpRateIdx))
25723 + if ((TxErrorRatio >= 50) || (TxErrorRatio >= TrainDown))
25727 + else if ((pAd->DrsCounters.LastTxOkCount + 2) >= OneSecTxNoRetryOKRationCount)
25729 + pAd->CommonCfg.TxRateIndex = UpRateIdx;
25734 + // if rate-up happen, clear all bad history of all TX rates
25735 + if (pAd->CommonCfg.TxRateIndex > CurrRateIdx)
25737 + pAd->DrsCounters.TxRateUpPenalty = 0;
25738 + NdisZeroMemory(pAd->DrsCounters.TxQuality, sizeof(USHORT) * MAX_STEP_OF_TX_RATE_SWITCH);
25739 + NdisZeroMemory(pAd->DrsCounters.PER, sizeof(UCHAR) * MAX_STEP_OF_TX_RATE_SWITCH);
25740 + bTxRateChanged = TRUE;
25742 + // if rate-down happen, only clear DownRate's bad history
25743 + else if (pAd->CommonCfg.TxRateIndex < CurrRateIdx)
25745 + DBGPRINT_RAW(RT_DEBUG_TRACE,("QuickDRS: --TX rate from %d to %d \n", CurrRateIdx, pAd->CommonCfg.TxRateIndex));
25747 + pAd->DrsCounters.TxRateUpPenalty = 0; // no penalty
25748 + pAd->DrsCounters.TxQuality[pAd->CommonCfg.TxRateIndex] = 0;
25749 + pAd->DrsCounters.PER[pAd->CommonCfg.TxRateIndex] = 0;
25750 + bTxRateChanged = TRUE;
25754 + bTxRateChanged = FALSE;
25757 + pNextTxRate = (PRTMP_TX_RATE_SWITCH) &pTable[(pAd->CommonCfg.TxRateIndex+1)*5];
25758 + if (bTxRateChanged && pNextTxRate)
25760 + MlmeSetTxRate(pAd, pEntry, pNextTxRate);
25766 + ==========================================================================
25768 + This routine is executed periodically inside MlmePeriodicExec() after
25769 + association with an AP.
25770 + It checks if StaCfg.Psm is consistent with user policy (recorded in
25771 + StaCfg.WindowsPowerMode). If not, enforce user policy. However,
25772 + there're some conditions to consider:
25773 + 1. we don't support power-saving in ADHOC mode, so Psm=PWR_ACTIVE all
25774 + the time when Mibss==TRUE
25775 + 2. When link up in INFRA mode, Psm should not be switch to PWR_SAVE
25776 + if outgoing traffic available in TxRing or MgmtRing.
25778 + 1. change pAd->StaCfg.Psm to PWR_SAVE or leave it untouched
25780 + IRQL = DISPATCH_LEVEL
25782 + ==========================================================================
25784 +VOID MlmeCheckPsmChange(
25785 + IN PRTMP_ADAPTER pAd,
25791 + // 1. Psm maybe ON only happen in INFRASTRUCTURE mode
25792 + // 2. user wants either MAX_PSP or FAST_PSP
25793 + // 3. but current psm is not in PWR_SAVE
25794 + // 4. CNTL state machine is not doing SCANning
25795 + // 5. no TX SUCCESS event for the past 1-sec period
25796 +#ifdef NDIS51_MINIPORT
25797 + if (pAd->StaCfg.WindowsPowerProfile == NdisPowerProfileBattery)
25798 + PowerMode = pAd->StaCfg.WindowsBatteryPowerMode;
25801 + PowerMode = pAd->StaCfg.WindowsPowerMode;
25803 + if (INFRA_ON(pAd) &&
25804 + (PowerMode != Ndis802_11PowerModeCAM) &&
25805 + (pAd->StaCfg.Psm == PWR_ACTIVE) &&
25806 +// (! RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS))
25807 + (pAd->Mlme.CntlMachine.CurrState == CNTL_IDLE) /*&&
25808 + (pAd->RalinkCounters.OneSecTxNoRetryOkCount == 0) &&
25809 + (pAd->RalinkCounters.OneSecTxRetryOkCount == 0)*/)
25811 + // add by johnli, use Rx OK data count per second to calculate throughput
25812 + // If Ttraffic is too high ( > 400 Rx per second), don't go to sleep mode. If tx rate is low, use low criteria
25813 + // Mode=CCK/MCS=3 => 11 Mbps, Mode=OFDM/MCS=3 => 18 Mbps
25814 + if (((pAd->StaCfg.HTPhyMode.field.MCS <= 3) &&
25816 + (pAd->StaCfg.HTPhyMode.field.MODE <= MODE_OFDM) &&
25818 + (pAd->RalinkCounters.OneSecRxOkDataCnt < (ULONG)100)) ||
25819 + ((pAd->StaCfg.HTPhyMode.field.MCS > 3) &&
25821 + (pAd->StaCfg.HTPhyMode.field.MODE > MODE_OFDM) &&
25823 + (pAd->RalinkCounters.OneSecRxOkDataCnt < (ULONG)400)))
25826 + NdisGetSystemUpTime(&pAd->Mlme.LastSendNULLpsmTime);
25827 + pAd->RalinkCounters.RxCountSinceLastNULL = 0;
25828 + MlmeSetPsmBit(pAd, PWR_SAVE);
25829 + if (!(pAd->CommonCfg.bAPSDCapable && pAd->CommonCfg.APEdcaParm.bAPSDCapable))
25831 + RTMPSendNullFrame(pAd, pAd->CommonCfg.TxRate, FALSE);
25835 + RTMPSendNullFrame(pAd, pAd->CommonCfg.TxRate, TRUE);
25841 +// IRQL = PASSIVE_LEVEL
25842 +// IRQL = DISPATCH_LEVEL
25843 +VOID MlmeSetPsmBit(
25844 + IN PRTMP_ADAPTER pAd,
25847 + AUTO_RSP_CFG_STRUC csr4;
25849 + pAd->StaCfg.Psm = psm;
25850 + RTMP_IO_READ32(pAd, AUTO_RSP_CFG, &csr4.word);
25851 + csr4.field.AckCtsPsmBit = (psm == PWR_SAVE)? 1:0;
25852 + RTMP_IO_WRITE32(pAd, AUTO_RSP_CFG, csr4.word);
25854 +#endif // CONFIG_STA_SUPPORT //
25857 +// IRQL = DISPATCH_LEVEL
25858 +VOID MlmeSetTxPreamble(
25859 + IN PRTMP_ADAPTER pAd,
25860 + IN USHORT TxPreamble)
25862 + AUTO_RSP_CFG_STRUC csr4;
25865 + // Always use Long preamble before verifiation short preamble functionality works well.
25866 + // Todo: remove the following line if short preamble functionality works
25868 + //TxPreamble = Rt802_11PreambleLong;
25870 + RTMP_IO_READ32(pAd, AUTO_RSP_CFG, &csr4.word);
25871 + if (TxPreamble == Rt802_11PreambleLong)
25873 + DBGPRINT(RT_DEBUG_TRACE, ("MlmeSetTxPreamble (= LONG PREAMBLE)\n"));
25874 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_SHORT_PREAMBLE_INUSED);
25875 + csr4.field.AutoResponderPreamble = 0;
25879 + // NOTE: 1Mbps should always use long preamble
25880 + DBGPRINT(RT_DEBUG_TRACE, ("MlmeSetTxPreamble (= SHORT PREAMBLE)\n"));
25881 + OPSTATUS_SET_FLAG(pAd, fOP_STATUS_SHORT_PREAMBLE_INUSED);
25882 + csr4.field.AutoResponderPreamble = 1;
25885 + RTMP_IO_WRITE32(pAd, AUTO_RSP_CFG, csr4.word);
25889 + ==========================================================================
25891 + Update basic rate bitmap
25892 + ==========================================================================
25895 +VOID UpdateBasicRateBitmap(
25896 + IN PRTMP_ADAPTER pAdapter)
25899 + /* 1 2 5.5, 11, 6, 9, 12, 18, 24, 36, 48, 54 */
25900 + UCHAR rate[] = { 2, 4, 11, 22, 12, 18, 24, 36, 48, 72, 96, 108 };
25901 + UCHAR *sup_p = pAdapter->CommonCfg.SupRate;
25902 + UCHAR *ext_p = pAdapter->CommonCfg.ExtRate;
25903 + ULONG bitmap = pAdapter->CommonCfg.BasicRateBitmap;
25906 + /* if A mode, always use fix BasicRateBitMap */
25907 + //if (pAdapter->CommonCfg.Channel == PHY_11A)
25908 + if (pAdapter->CommonCfg.Channel > 14)
25909 + pAdapter->CommonCfg.BasicRateBitmap = 0x150; /* 6, 12, 24M */
25912 + if (pAdapter->CommonCfg.BasicRateBitmap > 4095)
25914 + /* (2 ^ MAX_LEN_OF_SUPPORTED_RATES) -1 */
25916 + } /* End of if */
25918 + for(i=0; i<MAX_LEN_OF_SUPPORTED_RATES; i++)
25920 + sup_p[i] &= 0x7f;
25921 + ext_p[i] &= 0x7f;
25922 + } /* End of for */
25924 + for(i=0; i<MAX_LEN_OF_SUPPORTED_RATES; i++)
25926 + if (bitmap & (1 << i))
25928 + for(j=0; j<MAX_LEN_OF_SUPPORTED_RATES; j++)
25930 + if (sup_p[j] == rate[i])
25931 + sup_p[j] |= 0x80;
25933 + } /* End of for */
25935 + for(j=0; j<MAX_LEN_OF_SUPPORTED_RATES; j++)
25937 + if (ext_p[j] == rate[i])
25938 + ext_p[j] |= 0x80;
25940 + } /* End of for */
25941 + } /* End of if */
25942 + } /* End of for */
25943 +} /* End of UpdateBasicRateBitmap */
25945 +// IRQL = PASSIVE_LEVEL
25946 +// IRQL = DISPATCH_LEVEL
25947 +// bLinkUp is to identify the inital link speed.
25948 +// TRUE indicates the rate update at linkup, we should not try to set the rate at 54Mbps.
25949 +VOID MlmeUpdateTxRates(
25950 + IN PRTMP_ADAPTER pAd,
25951 + IN BOOLEAN bLinkUp,
25955 + UCHAR Rate = RATE_6, MaxDesire = RATE_1, MaxSupport = RATE_1;
25956 + UCHAR MinSupport = RATE_54;
25957 + ULONG BasicRateBitmap = 0;
25958 + UCHAR CurrBasicRate = RATE_1;
25959 + UCHAR *pSupRate, SupRateLen, *pExtRate, ExtRateLen;
25960 + PHTTRANSMIT_SETTING pHtPhy = NULL;
25961 + PHTTRANSMIT_SETTING pMaxHtPhy = NULL;
25962 + PHTTRANSMIT_SETTING pMinHtPhy = NULL;
25963 + BOOLEAN *auto_rate_cur_p;
25964 + UCHAR HtMcs = MCS_AUTO;
25966 + // find max desired rate
25967 + UpdateBasicRateBitmap(pAd);
25970 + auto_rate_cur_p = NULL;
25971 + for (i=0; i<MAX_LEN_OF_SUPPORTED_RATES; i++)
25973 + switch (pAd->CommonCfg.DesireRate[i] & 0x7f)
25975 + case 2: Rate = RATE_1; num++; break;
25976 + case 4: Rate = RATE_2; num++; break;
25977 + case 11: Rate = RATE_5_5; num++; break;
25978 + case 22: Rate = RATE_11; num++; break;
25979 + case 12: Rate = RATE_6; num++; break;
25980 + case 18: Rate = RATE_9; num++; break;
25981 + case 24: Rate = RATE_12; num++; break;
25982 + case 36: Rate = RATE_18; num++; break;
25983 + case 48: Rate = RATE_24; num++; break;
25984 + case 72: Rate = RATE_36; num++; break;
25985 + case 96: Rate = RATE_48; num++; break;
25986 + case 108: Rate = RATE_54; num++; break;
25987 + //default: Rate = RATE_1; break;
25989 + if (MaxDesire < Rate) MaxDesire = Rate;
25992 +//===========================================================================
25993 +//===========================================================================
25995 +#ifdef CONFIG_STA_SUPPORT
25996 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
25998 + pHtPhy = &pAd->StaCfg.HTPhyMode;
25999 + pMaxHtPhy = &pAd->StaCfg.MaxHTPhyMode;
26000 + pMinHtPhy = &pAd->StaCfg.MinHTPhyMode;
26002 + auto_rate_cur_p = &pAd->StaCfg.bAutoTxRateSwitch;
26003 + HtMcs = pAd->StaCfg.DesiredTransmitSetting.field.MCS;
26005 + if ((pAd->StaCfg.BssType == BSS_ADHOC) &&
26006 + (pAd->CommonCfg.PhyMode == PHY_11B) &&
26007 + (MaxDesire > RATE_11))
26009 + MaxDesire = RATE_11;
26012 +#endif // CONFIG_STA_SUPPORT //
26014 + pAd->CommonCfg.MaxDesiredRate = MaxDesire;
26015 + pMinHtPhy->word = 0;
26016 + pMaxHtPhy->word = 0;
26017 + pHtPhy->word = 0;
26019 + // Auto rate switching is enabled only if more than one DESIRED RATES are
26020 + // specified; otherwise disabled
26023 + //OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_TX_RATE_SWITCH_ENABLED);
26024 + //pAd->CommonCfg.bAutoTxRateSwitch = FALSE;
26025 + *auto_rate_cur_p = FALSE;
26029 + //OPSTATUS_SET_FLAG(pAd, fOP_STATUS_TX_RATE_SWITCH_ENABLED);
26030 + //pAd->CommonCfg.bAutoTxRateSwitch = TRUE;
26031 + *auto_rate_cur_p = TRUE;
26035 + if (HtMcs != MCS_AUTO)
26037 + //OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_TX_RATE_SWITCH_ENABLED);
26038 + //pAd->CommonCfg.bAutoTxRateSwitch = FALSE;
26039 + *auto_rate_cur_p = FALSE;
26043 + //OPSTATUS_SET_FLAG(pAd, fOP_STATUS_TX_RATE_SWITCH_ENABLED);
26044 + //pAd->CommonCfg.bAutoTxRateSwitch = TRUE;
26045 + *auto_rate_cur_p = TRUE;
26049 +#ifdef CONFIG_STA_SUPPORT
26050 + if ((ADHOC_ON(pAd) || INFRA_ON(pAd)) && (pAd->OpMode == OPMODE_STA))
26052 + pSupRate = &pAd->StaActive.SupRate[0];
26053 + pExtRate = &pAd->StaActive.ExtRate[0];
26054 + SupRateLen = pAd->StaActive.SupRateLen;
26055 + ExtRateLen = pAd->StaActive.ExtRateLen;
26058 +#endif // CONFIG_STA_SUPPORT //
26060 + pSupRate = &pAd->CommonCfg.SupRate[0];
26061 + pExtRate = &pAd->CommonCfg.ExtRate[0];
26062 + SupRateLen = pAd->CommonCfg.SupRateLen;
26063 + ExtRateLen = pAd->CommonCfg.ExtRateLen;
26066 + // find max supported rate
26067 + for (i=0; i<SupRateLen; i++)
26069 + switch (pSupRate[i] & 0x7f)
26071 + case 2: Rate = RATE_1; if (pSupRate[i] & 0x80) BasicRateBitmap |= 0x0001; break;
26072 + case 4: Rate = RATE_2; if (pSupRate[i] & 0x80) BasicRateBitmap |= 0x0002; break;
26073 + case 11: Rate = RATE_5_5; if (pSupRate[i] & 0x80) BasicRateBitmap |= 0x0004; break;
26074 + case 22: Rate = RATE_11; if (pSupRate[i] & 0x80) BasicRateBitmap |= 0x0008; break;
26075 + case 12: Rate = RATE_6; /*if (pSupRate[i] & 0x80)*/ BasicRateBitmap |= 0x0010; break;
26076 + case 18: Rate = RATE_9; if (pSupRate[i] & 0x80) BasicRateBitmap |= 0x0020; break;
26077 + case 24: Rate = RATE_12; /*if (pSupRate[i] & 0x80)*/ BasicRateBitmap |= 0x0040; break;
26078 + case 36: Rate = RATE_18; if (pSupRate[i] & 0x80) BasicRateBitmap |= 0x0080; break;
26079 + case 48: Rate = RATE_24; /*if (pSupRate[i] & 0x80)*/ BasicRateBitmap |= 0x0100; break;
26080 + case 72: Rate = RATE_36; if (pSupRate[i] & 0x80) BasicRateBitmap |= 0x0200; break;
26081 + case 96: Rate = RATE_48; if (pSupRate[i] & 0x80) BasicRateBitmap |= 0x0400; break;
26082 + case 108: Rate = RATE_54; if (pSupRate[i] & 0x80) BasicRateBitmap |= 0x0800; break;
26083 + default: Rate = RATE_1; break;
26085 + if (MaxSupport < Rate) MaxSupport = Rate;
26087 + if (MinSupport > Rate) MinSupport = Rate;
26090 + for (i=0; i<ExtRateLen; i++)
26092 + switch (pExtRate[i] & 0x7f)
26094 + case 2: Rate = RATE_1; if (pExtRate[i] & 0x80) BasicRateBitmap |= 0x0001; break;
26095 + case 4: Rate = RATE_2; if (pExtRate[i] & 0x80) BasicRateBitmap |= 0x0002; break;
26096 + case 11: Rate = RATE_5_5; if (pExtRate[i] & 0x80) BasicRateBitmap |= 0x0004; break;
26097 + case 22: Rate = RATE_11; if (pExtRate[i] & 0x80) BasicRateBitmap |= 0x0008; break;
26098 + case 12: Rate = RATE_6; /*if (pExtRate[i] & 0x80)*/ BasicRateBitmap |= 0x0010; break;
26099 + case 18: Rate = RATE_9; if (pExtRate[i] & 0x80) BasicRateBitmap |= 0x0020; break;
26100 + case 24: Rate = RATE_12; /*if (pExtRate[i] & 0x80)*/ BasicRateBitmap |= 0x0040; break;
26101 + case 36: Rate = RATE_18; if (pExtRate[i] & 0x80) BasicRateBitmap |= 0x0080; break;
26102 + case 48: Rate = RATE_24; /*if (pExtRate[i] & 0x80)*/ BasicRateBitmap |= 0x0100; break;
26103 + case 72: Rate = RATE_36; if (pExtRate[i] & 0x80) BasicRateBitmap |= 0x0200; break;
26104 + case 96: Rate = RATE_48; if (pExtRate[i] & 0x80) BasicRateBitmap |= 0x0400; break;
26105 + case 108: Rate = RATE_54; if (pExtRate[i] & 0x80) BasicRateBitmap |= 0x0800; break;
26106 + default: Rate = RATE_1; break;
26108 + if (MaxSupport < Rate) MaxSupport = Rate;
26110 + if (MinSupport > Rate) MinSupport = Rate;
26113 + RTMP_IO_WRITE32(pAd, LEGACY_BASIC_RATE, BasicRateBitmap);
26115 + // calculate the exptected ACK rate for each TX rate. This info is used to caculate
26116 + // the DURATION field of outgoing uniicast DATA/MGMT frame
26117 + for (i=0; i<MAX_LEN_OF_SUPPORTED_RATES; i++)
26119 + if (BasicRateBitmap & (0x01 << i))
26120 + CurrBasicRate = (UCHAR)i;
26121 + pAd->CommonCfg.ExpectedACKRate[i] = CurrBasicRate;
26124 + DBGPRINT(RT_DEBUG_TRACE,("MlmeUpdateTxRates[MaxSupport = %d] = MaxDesire %d Mbps\n", RateIdToMbps[MaxSupport], RateIdToMbps[MaxDesire]));
26125 + // max tx rate = min {max desire rate, max supported rate}
26126 + if (MaxSupport < MaxDesire)
26127 + pAd->CommonCfg.MaxTxRate = MaxSupport;
26129 + pAd->CommonCfg.MaxTxRate = MaxDesire;
26131 + pAd->CommonCfg.MinTxRate = MinSupport;
26132 + // 2003-07-31 john - 2500 doesn't have good sensitivity at high OFDM rates. to increase the success
26133 + // ratio of initial DHCP packet exchange, TX rate starts from a lower rate depending
26134 + // on average RSSI
26135 + // 1. RSSI >= -70db, start at 54 Mbps (short distance)
26136 + // 2. -70 > RSSI >= -75, start at 24 Mbps (mid distance)
26137 + // 3. -75 > RSSI, start at 11 Mbps (long distance)
26138 + //if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_TX_RATE_SWITCH_ENABLED)/* &&
26139 + // OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED)*/)
26140 + if (*auto_rate_cur_p)
26143 +#ifdef CONFIG_STA_SUPPORT
26144 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
26145 + dbm = pAd->StaCfg.RssiSample.AvgRssi0 - pAd->BbpRssiToDbmDelta;
26146 +#endif // CONFIG_STA_SUPPORT //
26147 + if (bLinkUp == TRUE)
26148 + pAd->CommonCfg.TxRate = RATE_24;
26150 + pAd->CommonCfg.TxRate = pAd->CommonCfg.MaxTxRate;
26153 + pAd->CommonCfg.TxRate = RATE_11;
26154 + else if (dbm < -70)
26155 + pAd->CommonCfg.TxRate = RATE_24;
26157 + // should never exceed MaxTxRate (consider 11B-only mode)
26158 + if (pAd->CommonCfg.TxRate > pAd->CommonCfg.MaxTxRate)
26159 + pAd->CommonCfg.TxRate = pAd->CommonCfg.MaxTxRate;
26161 + pAd->CommonCfg.TxRateIndex = 0;
26165 + pAd->CommonCfg.TxRate = pAd->CommonCfg.MaxTxRate;
26166 + pHtPhy->field.MCS = (pAd->CommonCfg.MaxTxRate > 3) ? (pAd->CommonCfg.MaxTxRate - 4) : pAd->CommonCfg.MaxTxRate;
26167 + pHtPhy->field.MODE = (pAd->CommonCfg.MaxTxRate > 3) ? MODE_OFDM : MODE_CCK;
26169 + pAd->MacTab.Content[BSSID_WCID].HTPhyMode.field.STBC = pHtPhy->field.STBC;
26170 + pAd->MacTab.Content[BSSID_WCID].HTPhyMode.field.ShortGI = pHtPhy->field.ShortGI;
26171 + pAd->MacTab.Content[BSSID_WCID].HTPhyMode.field.MCS = pHtPhy->field.MCS;
26172 + pAd->MacTab.Content[BSSID_WCID].HTPhyMode.field.MODE = pHtPhy->field.MODE;
26175 + if (pAd->CommonCfg.TxRate <= RATE_11)
26177 + pMaxHtPhy->field.MODE = MODE_CCK;
26178 + pMaxHtPhy->field.MCS = pAd->CommonCfg.TxRate;
26179 + pMinHtPhy->field.MCS = pAd->CommonCfg.MinTxRate;
26183 + pMaxHtPhy->field.MODE = MODE_OFDM;
26184 + pMaxHtPhy->field.MCS = OfdmRateToRxwiMCS[pAd->CommonCfg.TxRate];
26185 + if (pAd->CommonCfg.MinTxRate >= RATE_6 && (pAd->CommonCfg.MinTxRate <= RATE_54))
26186 + {pMinHtPhy->field.MCS = OfdmRateToRxwiMCS[pAd->CommonCfg.MinTxRate];}
26188 + {pMinHtPhy->field.MCS = pAd->CommonCfg.MinTxRate;}
26191 + pHtPhy->word = (pMaxHtPhy->word);
26192 + if (bLinkUp && (pAd->OpMode == OPMODE_STA))
26194 + pAd->MacTab.Content[BSSID_WCID].HTPhyMode.word = pHtPhy->word;
26195 + pAd->MacTab.Content[BSSID_WCID].MaxHTPhyMode.word = pMaxHtPhy->word;
26196 + pAd->MacTab.Content[BSSID_WCID].MinHTPhyMode.word = pMinHtPhy->word;
26200 + switch (pAd->CommonCfg.PhyMode)
26202 + case PHY_11BG_MIXED:
26204 +#ifdef DOT11_N_SUPPORT
26205 + case PHY_11BGN_MIXED:
26206 +#endif // DOT11_N_SUPPORT //
26207 + pAd->CommonCfg.MlmeRate = RATE_1;
26208 + pAd->CommonCfg.MlmeTransmit.field.MODE = MODE_CCK;
26209 + pAd->CommonCfg.MlmeTransmit.field.MCS = RATE_1;
26211 +//#ifdef WIFI_TEST
26212 + pAd->CommonCfg.RtsRate = RATE_11;
26214 +// pAd->CommonCfg.RtsRate = RATE_1;
26219 +#ifdef DOT11_N_SUPPORT
26220 + case PHY_11AGN_MIXED:
26221 + case PHY_11GN_MIXED:
26222 + case PHY_11N_2_4G:
26223 + case PHY_11AN_MIXED:
26225 +#endif // DOT11_N_SUPPORT //
26226 + pAd->CommonCfg.MlmeRate = RATE_6;
26227 + pAd->CommonCfg.RtsRate = RATE_6;
26228 + pAd->CommonCfg.MlmeTransmit.field.MODE = MODE_OFDM;
26229 + pAd->CommonCfg.MlmeTransmit.field.MCS = OfdmRateToRxwiMCS[pAd->CommonCfg.MlmeRate];
26231 + case PHY_11ABG_MIXED:
26232 +#ifdef DOT11_N_SUPPORT
26233 + case PHY_11ABGN_MIXED:
26234 +#endif // DOT11_N_SUPPORT //
26235 + if (pAd->CommonCfg.Channel <= 14)
26237 + pAd->CommonCfg.MlmeRate = RATE_1;
26238 + pAd->CommonCfg.RtsRate = RATE_1;
26239 + pAd->CommonCfg.MlmeTransmit.field.MODE = MODE_CCK;
26240 + pAd->CommonCfg.MlmeTransmit.field.MCS = RATE_1;
26244 + pAd->CommonCfg.MlmeRate = RATE_6;
26245 + pAd->CommonCfg.RtsRate = RATE_6;
26246 + pAd->CommonCfg.MlmeTransmit.field.MODE = MODE_OFDM;
26247 + pAd->CommonCfg.MlmeTransmit.field.MCS = OfdmRateToRxwiMCS[pAd->CommonCfg.MlmeRate];
26250 + default: // error
26251 + pAd->CommonCfg.MlmeRate = RATE_6;
26252 + pAd->CommonCfg.MlmeTransmit.field.MODE = MODE_OFDM;
26253 + pAd->CommonCfg.MlmeTransmit.field.MCS = OfdmRateToRxwiMCS[pAd->CommonCfg.MlmeRate];
26254 + pAd->CommonCfg.RtsRate = RATE_1;
26258 + // Keep Basic Mlme Rate.
26260 + pAd->MacTab.Content[MCAST_WCID].HTPhyMode.word = pAd->CommonCfg.MlmeTransmit.word;
26261 + if (pAd->CommonCfg.MlmeTransmit.field.MODE == MODE_OFDM)
26262 + pAd->MacTab.Content[MCAST_WCID].HTPhyMode.field.MCS = OfdmRateToRxwiMCS[RATE_24];
26264 + pAd->MacTab.Content[MCAST_WCID].HTPhyMode.field.MCS = RATE_1;
26265 + pAd->CommonCfg.BasicMlmeRate = pAd->CommonCfg.MlmeRate;
26268 + DBGPRINT(RT_DEBUG_TRACE, (" MlmeUpdateTxRates (MaxDesire=%d, MaxSupport=%d, MaxTxRate=%d, MinRate=%d, Rate Switching =%d)\n",
26269 + RateIdToMbps[MaxDesire], RateIdToMbps[MaxSupport], RateIdToMbps[pAd->CommonCfg.MaxTxRate], RateIdToMbps[pAd->CommonCfg.MinTxRate],
26270 + /*OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_TX_RATE_SWITCH_ENABLED)*/*auto_rate_cur_p));
26271 + DBGPRINT(RT_DEBUG_TRACE, (" MlmeUpdateTxRates (TxRate=%d, RtsRate=%d, BasicRateBitmap=0x%04lx)\n",
26272 + RateIdToMbps[pAd->CommonCfg.TxRate], RateIdToMbps[pAd->CommonCfg.RtsRate], BasicRateBitmap));
26273 + DBGPRINT(RT_DEBUG_TRACE, ("MlmeUpdateTxRates (MlmeTransmit=0x%x, MinHTPhyMode=%x, MaxHTPhyMode=0x%x, HTPhyMode=0x%x)\n",
26274 + pAd->CommonCfg.MlmeTransmit.word, pAd->MacTab.Content[BSSID_WCID].MinHTPhyMode.word ,pAd->MacTab.Content[BSSID_WCID].MaxHTPhyMode.word ,pAd->MacTab.Content[BSSID_WCID].HTPhyMode.word ));
26277 +#ifdef DOT11_N_SUPPORT
26279 + ==========================================================================
26281 + This function update HT Rate setting.
26282 + Input Wcid value is valid for 2 case :
26283 + 1. it's used for Station in infra mode that copy AP rate to Mactable.
26284 + 2. OR Station in adhoc mode to copy peer's HT rate to Mactable.
26286 + IRQL = DISPATCH_LEVEL
26288 + ==========================================================================
26290 +VOID MlmeUpdateHtTxRates(
26291 + IN PRTMP_ADAPTER pAd,
26294 + UCHAR StbcMcs; //j, StbcMcs, bitmask;
26296 + RT_HT_CAPABILITY *pRtHtCap = NULL;
26297 + RT_HT_PHY_INFO *pActiveHtPhy = NULL;
26299 + UCHAR j, bitmask;
26300 + PRT_HT_PHY_INFO pDesireHtPhy = NULL;
26301 + PHTTRANSMIT_SETTING pHtPhy = NULL;
26302 + PHTTRANSMIT_SETTING pMaxHtPhy = NULL;
26303 + PHTTRANSMIT_SETTING pMinHtPhy = NULL;
26304 + BOOLEAN *auto_rate_cur_p;
26306 + DBGPRINT(RT_DEBUG_TRACE,("MlmeUpdateHtTxRates===> \n"));
26308 + auto_rate_cur_p = NULL;
26310 +#ifdef CONFIG_STA_SUPPORT
26311 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
26313 + pDesireHtPhy = &pAd->StaCfg.DesiredHtPhyInfo;
26314 + pActiveHtPhy = &pAd->StaCfg.DesiredHtPhyInfo;
26315 + pHtPhy = &pAd->StaCfg.HTPhyMode;
26316 + pMaxHtPhy = &pAd->StaCfg.MaxHTPhyMode;
26317 + pMinHtPhy = &pAd->StaCfg.MinHTPhyMode;
26319 + auto_rate_cur_p = &pAd->StaCfg.bAutoTxRateSwitch;
26321 +#endif // CONFIG_STA_SUPPORT //
26323 +#ifdef CONFIG_STA_SUPPORT
26324 + if ((ADHOC_ON(pAd) || INFRA_ON(pAd)) && (pAd->OpMode == OPMODE_STA))
26326 + if (pAd->StaActive.SupportedPhyInfo.bHtEnable == FALSE)
26329 + pRtHtCap = &pAd->StaActive.SupportedHtPhy;
26330 + pActiveHtPhy = &pAd->StaActive.SupportedPhyInfo;
26331 + StbcMcs = (UCHAR)pAd->MlmeAux.AddHtInfo.AddHtInfo3.StbcMcs;
26332 + BasicMCS =pAd->MlmeAux.AddHtInfo.MCSSet[0]+(pAd->MlmeAux.AddHtInfo.MCSSet[1]<<8)+(StbcMcs<<16);
26333 + if ((pAd->CommonCfg.DesiredHtPhy.TxSTBC) && (pRtHtCap->RxSTBC) && (pAd->Antenna.field.TxPath == 2))
26334 + pMaxHtPhy->field.STBC = STBC_USE;
26336 + pMaxHtPhy->field.STBC = STBC_NONE;
26339 +#endif // CONFIG_STA_SUPPORT //
26341 + if (pDesireHtPhy->bHtEnable == FALSE)
26344 + pRtHtCap = &pAd->CommonCfg.DesiredHtPhy;
26345 + StbcMcs = (UCHAR)pAd->CommonCfg.AddHTInfo.AddHtInfo3.StbcMcs;
26346 + BasicMCS = pAd->CommonCfg.AddHTInfo.MCSSet[0]+(pAd->CommonCfg.AddHTInfo.MCSSet[1]<<8)+(StbcMcs<<16);
26347 + if ((pAd->CommonCfg.DesiredHtPhy.TxSTBC) && (pRtHtCap->RxSTBC) && (pAd->Antenna.field.TxPath == 2))
26348 + pMaxHtPhy->field.STBC = STBC_USE;
26350 + pMaxHtPhy->field.STBC = STBC_NONE;
26353 + // Decide MAX ht rate.
26354 + if ((pRtHtCap->GF) && (pAd->CommonCfg.DesiredHtPhy.GF))
26355 + pMaxHtPhy->field.MODE = MODE_HTGREENFIELD;
26357 + pMaxHtPhy->field.MODE = MODE_HTMIX;
26359 + if ((pAd->CommonCfg.DesiredHtPhy.ChannelWidth) && (pRtHtCap->ChannelWidth))
26360 + pMaxHtPhy->field.BW = BW_40;
26362 + pMaxHtPhy->field.BW = BW_20;
26364 + if (pMaxHtPhy->field.BW == BW_20)
26365 + pMaxHtPhy->field.ShortGI = (pAd->CommonCfg.DesiredHtPhy.ShortGIfor20 & pRtHtCap->ShortGIfor20);
26367 + pMaxHtPhy->field.ShortGI = (pAd->CommonCfg.DesiredHtPhy.ShortGIfor40 & pRtHtCap->ShortGIfor40);
26369 + for (i=23; i>=0; i--) // 3*3
26372 + bitmask = (1<<(i-(j*8)));
26374 + if ((pActiveHtPhy->MCSSet[j] & bitmask) && (pDesireHtPhy->MCSSet[j] & bitmask))
26376 + pMaxHtPhy->field.MCS = i;
26384 + // Copy MIN ht rate. rt2860???
26385 + pMinHtPhy->field.BW = BW_20;
26386 + pMinHtPhy->field.MCS = 0;
26387 + pMinHtPhy->field.STBC = 0;
26388 + pMinHtPhy->field.ShortGI = 0;
26389 + //If STA assigns fixed rate. update to fixed here.
26390 +#ifdef CONFIG_STA_SUPPORT
26391 + if ( (pAd->OpMode == OPMODE_STA) && (pDesireHtPhy->MCSSet[0] != 0xff))
26393 + if (pDesireHtPhy->MCSSet[4] != 0)
26395 + pMaxHtPhy->field.MCS = 32;
26396 + pMinHtPhy->field.MCS = 32;
26397 + DBGPRINT(RT_DEBUG_TRACE,("MlmeUpdateHtTxRates<=== Use Fixed MCS = %d\n",pMinHtPhy->field.MCS));
26400 + for (i=23; (CHAR)i >= 0; i--) // 3*3
26403 + bitmask = (1<<(i-(j*8)));
26404 + if ( (pDesireHtPhy->MCSSet[j] & bitmask) && (pActiveHtPhy->MCSSet[j] & bitmask))
26406 + pMaxHtPhy->field.MCS = i;
26407 + pMinHtPhy->field.MCS = i;
26414 +#endif // CONFIG_STA_SUPPORT //
26417 + // Decide ht rate
26418 + pHtPhy->field.STBC = pMaxHtPhy->field.STBC;
26419 + pHtPhy->field.BW = pMaxHtPhy->field.BW;
26420 + pHtPhy->field.MODE = pMaxHtPhy->field.MODE;
26421 + pHtPhy->field.MCS = pMaxHtPhy->field.MCS;
26422 + pHtPhy->field.ShortGI = pMaxHtPhy->field.ShortGI;
26424 + // use default now. rt2860
26425 + if (pDesireHtPhy->MCSSet[0] != 0xff)
26426 + *auto_rate_cur_p = FALSE;
26428 + *auto_rate_cur_p = TRUE;
26430 + DBGPRINT(RT_DEBUG_TRACE, (" MlmeUpdateHtTxRates<---.AMsduSize = %d \n", pAd->CommonCfg.DesiredHtPhy.AmsduSize ));
26431 + DBGPRINT(RT_DEBUG_TRACE,("TX: MCS[0] = %x (choose %d), BW = %d, ShortGI = %d, MODE = %d, \n", pActiveHtPhy->MCSSet[0],pHtPhy->field.MCS,
26432 + pHtPhy->field.BW, pHtPhy->field.ShortGI, pHtPhy->field.MODE));
26433 + DBGPRINT(RT_DEBUG_TRACE,("MlmeUpdateHtTxRates<=== \n"));
26435 +#endif // DOT11_N_SUPPORT //
26437 +// IRQL = DISPATCH_LEVEL
26438 +VOID MlmeRadioOff(
26439 + IN PRTMP_ADAPTER pAd)
26441 + RT28XX_MLME_RADIO_OFF(pAd);
26444 +// IRQL = DISPATCH_LEVEL
26446 + IN PRTMP_ADAPTER pAd)
26448 + RT28XX_MLME_RADIO_ON(pAd);
26451 +// ===========================================================================================
26453 +// ===========================================================================================
26456 +/*! \brief initialize BSS table
26457 + * \param p_tab pointer to the table
26462 + IRQL = PASSIVE_LEVEL
26463 + IRQL = DISPATCH_LEVEL
26466 +VOID BssTableInit(
26467 + IN BSS_TABLE *Tab)
26472 + Tab->BssOverlapNr = 0;
26473 + for (i = 0; i < MAX_LEN_OF_BSS_TABLE; i++)
26475 + NdisZeroMemory(&Tab->BssEntry[i], sizeof(BSS_ENTRY));
26476 + Tab->BssEntry[i].Rssi = -127; // initial the rssi as a minimum value
26480 +#ifdef DOT11_N_SUPPORT
26482 + IN PRTMP_ADAPTER pAd,
26483 + IN BA_TABLE *Tab)
26487 + Tab->numAsOriginator = 0;
26488 + Tab->numAsRecipient = 0;
26489 + NdisAllocateSpinLock(&pAd->BATabLock);
26490 + for (i = 0; i < MAX_LEN_OF_BA_REC_TABLE; i++)
26492 + Tab->BARecEntry[i].REC_BA_Status = Recipient_NONE;
26493 + NdisAllocateSpinLock(&(Tab->BARecEntry[i].RxReRingLock));
26495 + for (i = 0; i < MAX_LEN_OF_BA_ORI_TABLE; i++)
26497 + Tab->BAOriEntry[i].ORI_BA_Status = Originator_NONE;
26500 +#endif // DOT11_N_SUPPORT //
26502 +/*! \brief search the BSS table by SSID
26503 + * \param p_tab pointer to the bss table
26504 + * \param ssid SSID string
26505 + * \return index of the table, BSS_NOT_FOUND if not in the table
26508 + * \note search by sequential search
26510 + IRQL = DISPATCH_LEVEL
26513 +ULONG BssTableSearch(
26514 + IN BSS_TABLE *Tab,
26515 + IN PUCHAR pBssid,
26516 + IN UCHAR Channel)
26520 + for (i = 0; i < Tab->BssNr; i++)
26523 + // Some AP that support A/B/G mode that may used the same BSSID on 11A and 11B/G.
26524 + // We should distinguish this case.
26526 + if ((((Tab->BssEntry[i].Channel <= 14) && (Channel <= 14)) ||
26527 + ((Tab->BssEntry[i].Channel > 14) && (Channel > 14))) &&
26528 + MAC_ADDR_EQUAL(Tab->BssEntry[i].Bssid, pBssid))
26533 + return (ULONG)BSS_NOT_FOUND;
26536 +ULONG BssSsidTableSearch(
26537 + IN BSS_TABLE *Tab,
26538 + IN PUCHAR pBssid,
26540 + IN UCHAR SsidLen,
26541 + IN UCHAR Channel)
26545 + for (i = 0; i < Tab->BssNr; i++)
26548 + // Some AP that support A/B/G mode that may used the same BSSID on 11A and 11B/G.
26549 + // We should distinguish this case.
26551 + if ((((Tab->BssEntry[i].Channel <= 14) && (Channel <= 14)) ||
26552 + ((Tab->BssEntry[i].Channel > 14) && (Channel > 14))) &&
26553 + MAC_ADDR_EQUAL(Tab->BssEntry[i].Bssid, pBssid) &&
26554 + SSID_EQUAL(pSsid, SsidLen, Tab->BssEntry[i].Ssid, Tab->BssEntry[i].SsidLen))
26559 + return (ULONG)BSS_NOT_FOUND;
26562 +ULONG BssTableSearchWithSSID(
26563 + IN BSS_TABLE *Tab,
26566 + IN UCHAR SsidLen,
26567 + IN UCHAR Channel)
26571 + for (i = 0; i < Tab->BssNr; i++)
26573 + if ((((Tab->BssEntry[i].Channel <= 14) && (Channel <= 14)) ||
26574 + ((Tab->BssEntry[i].Channel > 14) && (Channel > 14))) &&
26575 + MAC_ADDR_EQUAL(&(Tab->BssEntry[i].Bssid), Bssid) &&
26576 + (SSID_EQUAL(pSsid, SsidLen, Tab->BssEntry[i].Ssid, Tab->BssEntry[i].SsidLen) ||
26577 + (NdisEqualMemory(pSsid, ZeroSsid, SsidLen)) ||
26578 + (NdisEqualMemory(Tab->BssEntry[i].Ssid, ZeroSsid, Tab->BssEntry[i].SsidLen))))
26583 + return (ULONG)BSS_NOT_FOUND;
26586 +// IRQL = DISPATCH_LEVEL
26587 +VOID BssTableDeleteEntry(
26588 + IN OUT BSS_TABLE *Tab,
26589 + IN PUCHAR pBssid,
26590 + IN UCHAR Channel)
26594 + for (i = 0; i < Tab->BssNr; i++)
26596 + if ((Tab->BssEntry[i].Channel == Channel) &&
26597 + (MAC_ADDR_EQUAL(Tab->BssEntry[i].Bssid, pBssid)))
26599 + for (j = i; j < Tab->BssNr - 1; j++)
26601 + NdisMoveMemory(&(Tab->BssEntry[j]), &(Tab->BssEntry[j + 1]), sizeof(BSS_ENTRY));
26603 + NdisZeroMemory(&(Tab->BssEntry[Tab->BssNr - 1]), sizeof(BSS_ENTRY));
26610 +#ifdef DOT11_N_SUPPORT
26612 + ========================================================================
26613 + Routine Description:
26614 + Delete the Originator Entry in BAtable. Or decrease numAs Originator by 1 if needed.
26617 + // IRQL = DISPATCH_LEVEL
26618 + ========================================================================
26620 +VOID BATableDeleteORIEntry(
26621 + IN OUT PRTMP_ADAPTER pAd,
26622 + IN BA_ORI_ENTRY *pBAORIEntry)
26625 + if (pBAORIEntry->ORI_BA_Status != Originator_NONE)
26627 + NdisAcquireSpinLock(&pAd->BATabLock);
26628 + if (pBAORIEntry->ORI_BA_Status == Originator_Done)
26630 + pAd->BATable.numAsOriginator -= 1;
26631 + DBGPRINT(RT_DEBUG_TRACE, ("BATableDeleteORIEntry numAsOriginator= %ld\n", pAd->BATable.numAsRecipient));
26632 + // Erase Bitmap flag.
26634 + pAd->MacTab.Content[pBAORIEntry->Wcid].TXBAbitmap &= (~(1<<(pBAORIEntry->TID) )); // If STA mode, erase flag here
26635 + pAd->MacTab.Content[pBAORIEntry->Wcid].BAOriWcidArray[pBAORIEntry->TID] = 0; // If STA mode, erase flag here
26636 + pBAORIEntry->ORI_BA_Status = Originator_NONE;
26637 + pBAORIEntry->Token = 1;
26638 + // Not clear Sequence here.
26639 + NdisReleaseSpinLock(&pAd->BATabLock);
26642 +#endif // DOT11_N_SUPPORT //
26650 + IRQL = DISPATCH_LEVEL
26654 + IN PRTMP_ADAPTER pAd,
26655 + OUT BSS_ENTRY *pBss,
26656 + IN PUCHAR pBssid,
26658 + IN UCHAR SsidLen,
26659 + IN UCHAR BssType,
26660 + IN USHORT BeaconPeriod,
26661 + IN PCF_PARM pCfParm,
26662 + IN USHORT AtimWin,
26663 + IN USHORT CapabilityInfo,
26664 + IN UCHAR SupRate[],
26665 + IN UCHAR SupRateLen,
26666 + IN UCHAR ExtRate[],
26667 + IN UCHAR ExtRateLen,
26668 + IN HT_CAPABILITY_IE *pHtCapability,
26669 + IN ADD_HT_INFO_IE *pAddHtInfo, // AP might use this additional ht info IE
26670 + IN UCHAR HtCapabilityLen,
26671 + IN UCHAR AddHtInfoLen,
26672 + IN UCHAR NewExtChanOffset,
26673 + IN UCHAR Channel,
26675 + IN LARGE_INTEGER TimeStamp,
26676 + IN UCHAR CkipFlag,
26677 + IN PEDCA_PARM pEdcaParm,
26678 + IN PQOS_CAPABILITY_PARM pQosCapability,
26679 + IN PQBSS_LOAD_PARM pQbssLoad,
26680 + IN USHORT LengthVIE,
26681 + IN PNDIS_802_11_VARIABLE_IEs pVIE)
26683 + COPY_MAC_ADDR(pBss->Bssid, pBssid);
26684 + // Default Hidden SSID to be TRUE, it will be turned to FALSE after coping SSID
26685 + pBss->Hidden = 1;
26688 + // For hidden SSID AP, it might send beacon with SSID len equal to 0
26689 + // Or send beacon /probe response with SSID len matching real SSID length,
26690 + // but SSID is all zero. such as "00-00-00-00" with length 4.
26691 + // We have to prevent this case overwrite correct table
26692 + if (NdisEqualMemory(Ssid, ZeroSsid, SsidLen) == 0)
26694 + NdisZeroMemory(pBss->Ssid, MAX_LEN_OF_SSID);
26695 + NdisMoveMemory(pBss->Ssid, Ssid, SsidLen);
26696 + pBss->SsidLen = SsidLen;
26697 + pBss->Hidden = 0;
26701 + pBss->SsidLen = 0;
26702 + pBss->BssType = BssType;
26703 + pBss->BeaconPeriod = BeaconPeriod;
26704 + if (BssType == BSS_INFRA)
26706 + if (pCfParm->bValid)
26708 + pBss->CfpCount = pCfParm->CfpCount;
26709 + pBss->CfpPeriod = pCfParm->CfpPeriod;
26710 + pBss->CfpMaxDuration = pCfParm->CfpMaxDuration;
26711 + pBss->CfpDurRemaining = pCfParm->CfpDurRemaining;
26716 + pBss->AtimWin = AtimWin;
26719 + pBss->CapabilityInfo = CapabilityInfo;
26720 + // The privacy bit indicate security is ON, it maight be WEP, TKIP or AES
26721 + // Combine with AuthMode, they will decide the connection methods.
26722 + pBss->Privacy = CAP_IS_PRIVACY_ON(pBss->CapabilityInfo);
26723 + ASSERT(SupRateLen <= MAX_LEN_OF_SUPPORTED_RATES);
26724 + if (SupRateLen <= MAX_LEN_OF_SUPPORTED_RATES)
26725 + NdisMoveMemory(pBss->SupRate, SupRate, SupRateLen);
26727 + NdisMoveMemory(pBss->SupRate, SupRate, MAX_LEN_OF_SUPPORTED_RATES);
26728 + pBss->SupRateLen = SupRateLen;
26729 + ASSERT(ExtRateLen <= MAX_LEN_OF_SUPPORTED_RATES);
26730 + NdisMoveMemory(pBss->ExtRate, ExtRate, ExtRateLen);
26731 + NdisMoveMemory(&pBss->HtCapability, pHtCapability, HtCapabilityLen);
26732 + NdisMoveMemory(&pBss->AddHtInfo, pAddHtInfo, AddHtInfoLen);
26733 + pBss->NewExtChanOffset = NewExtChanOffset;
26734 + pBss->ExtRateLen = ExtRateLen;
26735 + pBss->Channel = Channel;
26736 + pBss->CentralChannel = Channel;
26737 + pBss->Rssi = Rssi;
26738 + // Update CkipFlag. if not exists, the value is 0x0
26739 + pBss->CkipFlag = CkipFlag;
26741 + // New for microsoft Fixed IEs
26742 + NdisMoveMemory(pBss->FixIEs.Timestamp, &TimeStamp, 8);
26743 + pBss->FixIEs.BeaconInterval = BeaconPeriod;
26744 + pBss->FixIEs.Capabilities = CapabilityInfo;
26746 + // New for microsoft Variable IEs
26747 + if (LengthVIE != 0)
26749 + pBss->VarIELen = LengthVIE;
26750 + NdisMoveMemory(pBss->VarIEs, pVIE, pBss->VarIELen);
26754 + pBss->VarIELen = 0;
26757 + pBss->AddHtInfoLen = 0;
26758 + pBss->HtCapabilityLen = 0;
26759 +#ifdef DOT11_N_SUPPORT
26760 + if (HtCapabilityLen> 0)
26762 + pBss->HtCapabilityLen = HtCapabilityLen;
26763 + NdisMoveMemory(&pBss->HtCapability, pHtCapability, HtCapabilityLen);
26764 + if (AddHtInfoLen > 0)
26766 + pBss->AddHtInfoLen = AddHtInfoLen;
26767 + NdisMoveMemory(&pBss->AddHtInfo, pAddHtInfo, AddHtInfoLen);
26769 + if ((pAddHtInfo->ControlChan > 2)&& (pAddHtInfo->AddHtInfo.ExtChanOffset == EXTCHA_BELOW) && (pHtCapability->HtCapInfo.ChannelWidth == BW_40))
26771 + pBss->CentralChannel = pAddHtInfo->ControlChan - 2;
26773 + else if ((pAddHtInfo->AddHtInfo.ExtChanOffset == EXTCHA_ABOVE) && (pHtCapability->HtCapInfo.ChannelWidth == BW_40))
26775 + pBss->CentralChannel = pAddHtInfo->ControlChan + 2;
26779 +#endif // DOT11_N_SUPPORT //
26781 + BssCipherParse(pBss);
26785 + NdisMoveMemory(&pBss->EdcaParm, pEdcaParm, sizeof(EDCA_PARM));
26787 + pBss->EdcaParm.bValid = FALSE;
26788 + if (pQosCapability)
26789 + NdisMoveMemory(&pBss->QosCapability, pQosCapability, sizeof(QOS_CAPABILITY_PARM));
26791 + pBss->QosCapability.bValid = FALSE;
26793 + NdisMoveMemory(&pBss->QbssLoad, pQbssLoad, sizeof(QBSS_LOAD_PARM));
26795 + pBss->QbssLoad.bValid = FALSE;
26797 +#ifdef CONFIG_STA_SUPPORT
26798 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
26800 + PEID_STRUCT pEid;
26801 + USHORT Length = 0;
26804 + NdisZeroMemory(&pBss->WpaIE.IE[0], MAX_CUSTOM_LEN);
26805 + NdisZeroMemory(&pBss->RsnIE.IE[0], MAX_CUSTOM_LEN);
26806 +#ifdef EXT_BUILD_CHANNEL_LIST
26807 + NdisZeroMemory(&pBss->CountryString[0], 3);
26808 + pBss->bHasCountryIE = FALSE;
26809 +#endif // EXT_BUILD_CHANNEL_LIST //
26810 + pEid = (PEID_STRUCT) pVIE;
26811 + while ((Length + 2 + (USHORT)pEid->Len) <= LengthVIE)
26813 + switch(pEid->Eid)
26816 + if (NdisEqualMemory(pEid->Octet, WPA_OUI, 4))
26818 + if ((pEid->Len + 2) > MAX_CUSTOM_LEN)
26820 + pBss->WpaIE.IELen = 0;
26823 + pBss->WpaIE.IELen = pEid->Len + 2;
26824 + NdisMoveMemory(pBss->WpaIE.IE, pEid, pBss->WpaIE.IELen);
26828 + if (NdisEqualMemory(pEid->Octet + 2, RSN_OUI, 3))
26830 + if ((pEid->Len + 2) > MAX_CUSTOM_LEN)
26832 + pBss->RsnIE.IELen = 0;
26835 + pBss->RsnIE.IELen = pEid->Len + 2;
26836 + NdisMoveMemory(pBss->RsnIE.IE, pEid, pBss->RsnIE.IELen);
26839 +#ifdef EXT_BUILD_CHANNEL_LIST
26841 + NdisMoveMemory(&pBss->CountryString[0], pEid->Octet, 3);
26842 + pBss->bHasCountryIE = TRUE;
26844 +#endif // EXT_BUILD_CHANNEL_LIST //
26846 + Length = Length + 2 + (USHORT)pEid->Len; // Eid[1] + Len[1]+ content[Len]
26847 + pEid = (PEID_STRUCT)((UCHAR*)pEid + 2 + pEid->Len);
26850 +#endif // CONFIG_STA_SUPPORT //
26854 + * \brief insert an entry into the bss table
26855 + * \param p_tab The BSS table
26856 + * \param Bssid BSSID
26857 + * \param ssid SSID
26858 + * \param ssid_len Length of SSID
26859 + * \param bss_type
26860 + * \param beacon_period
26861 + * \param timestamp
26863 + * \param atim_win
26866 + * \param rates_len
26867 + * \param channel_idx
26871 + * \note If SSID is identical, the old entry will be replaced by the new one
26873 + IRQL = DISPATCH_LEVEL
26876 +ULONG BssTableSetEntry(
26877 + IN PRTMP_ADAPTER pAd,
26878 + OUT BSS_TABLE *Tab,
26879 + IN PUCHAR pBssid,
26881 + IN UCHAR SsidLen,
26882 + IN UCHAR BssType,
26883 + IN USHORT BeaconPeriod,
26884 + IN CF_PARM *CfParm,
26885 + IN USHORT AtimWin,
26886 + IN USHORT CapabilityInfo,
26887 + IN UCHAR SupRate[],
26888 + IN UCHAR SupRateLen,
26889 + IN UCHAR ExtRate[],
26890 + IN UCHAR ExtRateLen,
26891 + IN HT_CAPABILITY_IE *pHtCapability,
26892 + IN ADD_HT_INFO_IE *pAddHtInfo, // AP might use this additional ht info IE
26893 + IN UCHAR HtCapabilityLen,
26894 + IN UCHAR AddHtInfoLen,
26895 + IN UCHAR NewExtChanOffset,
26896 + IN UCHAR ChannelNo,
26898 + IN LARGE_INTEGER TimeStamp,
26899 + IN UCHAR CkipFlag,
26900 + IN PEDCA_PARM pEdcaParm,
26901 + IN PQOS_CAPABILITY_PARM pQosCapability,
26902 + IN PQBSS_LOAD_PARM pQbssLoad,
26903 + IN USHORT LengthVIE,
26904 + IN PNDIS_802_11_VARIABLE_IEs pVIE)
26908 + Idx = BssTableSearchWithSSID(Tab, pBssid, Ssid, SsidLen, ChannelNo);
26909 + if (Idx == BSS_NOT_FOUND)
26911 + if (Tab->BssNr >= MAX_LEN_OF_BSS_TABLE)
26914 + // It may happen when BSS Table was full.
26915 + // The desired AP will not be added into BSS Table
26916 + // In this case, if we found the desired AP then overwrite BSS Table.
26918 + if(!OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED))
26920 + if (MAC_ADDR_EQUAL(pAd->MlmeAux.Bssid, pBssid) ||
26921 + SSID_EQUAL(pAd->MlmeAux.Ssid, pAd->MlmeAux.SsidLen, Ssid, SsidLen))
26923 + Idx = Tab->BssOverlapNr;
26924 + BssEntrySet(pAd, &Tab->BssEntry[Idx], pBssid, Ssid, SsidLen, BssType, BeaconPeriod, CfParm, AtimWin,
26925 + CapabilityInfo, SupRate, SupRateLen, ExtRate, ExtRateLen,pHtCapability, pAddHtInfo,HtCapabilityLen, AddHtInfoLen,
26926 + NewExtChanOffset, ChannelNo, Rssi, TimeStamp, CkipFlag, pEdcaParm, pQosCapability, pQbssLoad, LengthVIE, pVIE);
26927 + Tab->BssOverlapNr = (Tab->BssOverlapNr++) % MAX_LEN_OF_BSS_TABLE;
26933 + return BSS_NOT_FOUND;
26936 + Idx = Tab->BssNr;
26937 + BssEntrySet(pAd, &Tab->BssEntry[Idx], pBssid, Ssid, SsidLen, BssType, BeaconPeriod, CfParm, AtimWin,
26938 + CapabilityInfo, SupRate, SupRateLen, ExtRate, ExtRateLen,pHtCapability, pAddHtInfo,HtCapabilityLen, AddHtInfoLen,
26939 + NewExtChanOffset, ChannelNo, Rssi, TimeStamp, CkipFlag, pEdcaParm, pQosCapability, pQbssLoad, LengthVIE, pVIE);
26944 + /* avoid Hidden SSID form beacon to overwirite correct SSID from probe response */
26945 + if ((SSID_EQUAL(Ssid, SsidLen, Tab->BssEntry[Idx].Ssid, Tab->BssEntry[Idx].SsidLen)) ||
26946 + (NdisEqualMemory(Tab->BssEntry[Idx].Ssid, ZeroSsid, Tab->BssEntry[Idx].SsidLen)))
26948 + BssEntrySet(pAd, &Tab->BssEntry[Idx], pBssid, Ssid, SsidLen, BssType, BeaconPeriod,CfParm, AtimWin,
26949 + CapabilityInfo, SupRate, SupRateLen, ExtRate, ExtRateLen,pHtCapability, pAddHtInfo,HtCapabilityLen, AddHtInfoLen,
26950 + NewExtChanOffset, ChannelNo, Rssi, TimeStamp, CkipFlag, pEdcaParm, pQosCapability, pQbssLoad, LengthVIE, pVIE);
26957 +#ifdef CONFIG_STA_SUPPORT
26958 +#ifdef DOT11_N_SUPPORT
26959 +#ifdef DOT11N_DRAFT3
26960 +VOID TriEventInit(
26961 + IN PRTMP_ADAPTER pAd)
26965 + for (i = 0;i < MAX_TRIGGER_EVENT;i++)
26966 + pAd->CommonCfg.TriggerEventTab.EventA[i].bValid = FALSE;
26968 + pAd->CommonCfg.TriggerEventTab.EventANo = 0;
26969 + pAd->CommonCfg.TriggerEventTab.EventBCountDown = 0;
26972 +ULONG TriEventTableSetEntry(
26973 + IN PRTMP_ADAPTER pAd,
26974 + OUT TRIGGER_EVENT_TAB *Tab,
26975 + IN PUCHAR pBssid,
26976 + IN HT_CAPABILITY_IE *pHtCapability,
26977 + IN UCHAR HtCapabilityLen,
26978 + IN UCHAR RegClass,
26979 + IN UCHAR ChannelNo)
26982 + if (HtCapabilityLen == 0)
26984 + if (Tab->EventANo < MAX_TRIGGER_EVENT)
26986 + RTMPMoveMemory(Tab->EventA[Tab->EventANo].BSSID, pBssid, 6);
26987 + Tab->EventA[Tab->EventANo].bValid = TRUE;
26988 + Tab->EventA[Tab->EventANo].Channel = ChannelNo;
26989 + Tab->EventA[Tab->EventANo].CDCounter = pAd->CommonCfg.Dot11BssWidthChanTranDelay;
26990 + if (RegClass != 0)
26992 + // Beacon has Regulatory class IE. So use beacon's
26993 + Tab->EventA[Tab->EventANo].RegClass = RegClass;
26997 + // Use Station's Regulatory class instead.
26998 + if (pAd->StaActive.SupportedHtPhy.bHtEnable == TRUE)
27000 + if (pAd->CommonCfg.CentralChannel > pAd->CommonCfg.Channel)
27002 + Tab->EventA[Tab->EventANo].RegClass = 32;
27004 + else if (pAd->CommonCfg.CentralChannel < pAd->CommonCfg.Channel)
27005 + Tab->EventA[Tab->EventANo].RegClass = 33;
27008 + Tab->EventA[Tab->EventANo].RegClass = ??;
27012 + Tab->EventANo ++;
27015 + else if (pHtCapability->HtCapInfo.Intolerant40)
27017 + Tab->EventBCountDown = pAd->CommonCfg.Dot11BssWidthChanTranDelay;
27023 + ========================================================================
27024 + Routine Description:
27025 + Trigger Event table Maintainence called once every second.
27028 + // IRQL = DISPATCH_LEVEL
27029 + ========================================================================
27031 +VOID TriEventCounterMaintenance(
27032 + IN PRTMP_ADAPTER pAd)
27035 + BOOLEAN bNotify = FALSE;
27036 + for (i = 0;i < MAX_TRIGGER_EVENT;i++)
27038 + if (pAd->CommonCfg.TriggerEventTab.EventA[i].bValid && (pAd->CommonCfg.TriggerEventTab.EventA[i].CDCounter > 0))
27040 + pAd->CommonCfg.TriggerEventTab.EventA[i].CDCounter--;
27041 + if (pAd->CommonCfg.TriggerEventTab.EventA[i].CDCounter == 0)
27043 + pAd->CommonCfg.TriggerEventTab.EventA[i].bValid = FALSE;
27044 + pAd->CommonCfg.TriggerEventTab.EventANo --;
27045 + // Need to send 20/40 Coexistence Notify frame if has status change.
27050 + if (pAd->CommonCfg.TriggerEventTab.EventBCountDown > 0)
27052 + pAd->CommonCfg.TriggerEventTab.EventBCountDown--;
27053 + if (pAd->CommonCfg.TriggerEventTab.EventBCountDown == 0)
27057 + if (bNotify == TRUE)
27058 + Update2040CoexistFrameAndNotify(pAd, BSSID_WCID, TRUE);
27060 +#endif // DOT11N_DRAFT3 //
27061 +#endif // DOT11_N_SUPPORT //
27063 +// IRQL = DISPATCH_LEVEL
27064 +VOID BssTableSsidSort(
27065 + IN PRTMP_ADAPTER pAd,
27066 + OUT BSS_TABLE *OutTab,
27068 + IN UCHAR SsidLen)
27071 + BssTableInit(OutTab);
27073 + for (i = 0; i < pAd->ScanTab.BssNr; i++)
27075 + BSS_ENTRY *pInBss = &pAd->ScanTab.BssEntry[i];
27076 + BOOLEAN bIsHiddenApIncluded = FALSE;
27078 + if (((pAd->CommonCfg.bIEEE80211H == 1) &&
27079 + (pAd->MlmeAux.Channel > 14) &&
27080 + RadarChannelCheck(pAd, pInBss->Channel))
27081 +#ifdef CARRIER_DETECTION_SUPPORT // Roger sync Carrier
27082 + || (pAd->CommonCfg.CarrierDetect.Enable == TRUE)
27083 +#endif // CARRIER_DETECTION_SUPPORT //
27086 + if (pInBss->Hidden)
27087 + bIsHiddenApIncluded = TRUE;
27090 + if ((pInBss->BssType == pAd->StaCfg.BssType) &&
27091 + (SSID_EQUAL(Ssid, SsidLen, pInBss->Ssid, pInBss->SsidLen) || bIsHiddenApIncluded))
27093 + BSS_ENTRY *pOutBss = &OutTab->BssEntry[OutTab->BssNr];
27096 +#ifdef EXT_BUILD_CHANNEL_LIST
27097 + // If no Country IE exists no Connection will be established when IEEE80211dClientMode is strict.
27098 + if ((pAd->StaCfg.IEEE80211dClientMode == Rt802_11_D_Strict) &&
27099 + (pInBss->bHasCountryIE == FALSE))
27101 + DBGPRINT(RT_DEBUG_TRACE,("StaCfg.IEEE80211dClientMode == Rt802_11_D_Strict, but this AP doesn't have country IE.\n"));
27104 +#endif // EXT_BUILD_CHANNEL_LIST //
27106 +#ifdef DOT11_N_SUPPORT
27107 + // 2.4G/5G N only mode
27108 + if ((pInBss->HtCapabilityLen == 0) &&
27109 + ((pAd->CommonCfg.PhyMode == PHY_11N_2_4G) || (pAd->CommonCfg.PhyMode == PHY_11N_5G)))
27111 + DBGPRINT(RT_DEBUG_TRACE,("STA is in N-only Mode, this AP don't have Ht capability in Beacon.\n"));
27114 +#endif // DOT11_N_SUPPORT //
27117 + // Check the Authmode first
27118 + if (pAd->StaCfg.AuthMode >= Ndis802_11AuthModeWPA)
27120 + // Check AuthMode and AuthModeAux for matching, in case AP support dual-mode
27121 + if ((pAd->StaCfg.AuthMode != pInBss->AuthMode) && (pAd->StaCfg.AuthMode != pInBss->AuthModeAux))
27125 + // Check cipher suite, AP must have more secured cipher than station setting
27126 + if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA) || (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK))
27128 + // If it's not mixed mode, we should only let BSS pass with the same encryption
27129 + if (pInBss->WPA.bMixMode == FALSE)
27130 + if (pAd->StaCfg.WepStatus != pInBss->WPA.GroupCipher)
27133 + // check group cipher
27134 + if (pAd->StaCfg.WepStatus < pInBss->WPA.GroupCipher)
27137 + // check pairwise cipher, skip if none matched
27138 + // If profile set to AES, let it pass without question.
27139 + // If profile set to TKIP, we must find one mateched
27140 + if ((pAd->StaCfg.WepStatus == Ndis802_11Encryption2Enabled) &&
27141 + (pAd->StaCfg.WepStatus != pInBss->WPA.PairCipher) &&
27142 + (pAd->StaCfg.WepStatus != pInBss->WPA.PairCipherAux))
27145 + else if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2) || (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK))
27147 + // If it's not mixed mode, we should only let BSS pass with the same encryption
27148 + if (pInBss->WPA2.bMixMode == FALSE)
27149 + if (pAd->StaCfg.WepStatus != pInBss->WPA2.GroupCipher)
27152 + // check group cipher
27153 + if (pAd->StaCfg.WepStatus < pInBss->WPA2.GroupCipher)
27156 + // check pairwise cipher, skip if none matched
27157 + // If profile set to AES, let it pass without question.
27158 + // If profile set to TKIP, we must find one mateched
27159 + if ((pAd->StaCfg.WepStatus == Ndis802_11Encryption2Enabled) &&
27160 + (pAd->StaCfg.WepStatus != pInBss->WPA2.PairCipher) &&
27161 + (pAd->StaCfg.WepStatus != pInBss->WPA2.PairCipherAux))
27165 + // Bss Type matched, SSID matched.
27166 + // We will check wepstatus for qualification Bss
27167 + else if (pAd->StaCfg.WepStatus != pInBss->WepStatus)
27169 + DBGPRINT(RT_DEBUG_TRACE,("StaCfg.WepStatus=%d, while pInBss->WepStatus=%d\n", pAd->StaCfg.WepStatus, pInBss->WepStatus));
27171 + // For the SESv2 case, we will not qualify WepStatus.
27173 + if (!pInBss->bSES)
27177 + // Since the AP is using hidden SSID, and we are trying to connect to ANY
27178 + // It definitely will fail. So, skip it.
27179 + // CCX also require not even try to connect it!!
27180 + if (SsidLen == 0)
27183 +#ifdef DOT11_N_SUPPORT
27184 + // If both station and AP use 40MHz, still need to check if the 40MHZ band's legality in my country region
27185 + // If this 40MHz wideband is not allowed in my country list, use bandwidth 20MHZ instead,
27186 + if ((pInBss->CentralChannel != pInBss->Channel) &&
27187 + (pAd->CommonCfg.RegTransmitSetting.field.BW == BW_40))
27189 + if (RTMPCheckChannel(pAd, pInBss->CentralChannel, pInBss->Channel) == FALSE)
27191 + pAd->CommonCfg.RegTransmitSetting.field.BW = BW_20;
27192 + SetCommonHT(pAd);
27193 + pAd->CommonCfg.RegTransmitSetting.field.BW = BW_40;
27197 + if (pAd->CommonCfg.DesiredHtPhy.ChannelWidth == BAND_WIDTH_20)
27199 + SetCommonHT(pAd);
27203 +#endif // DOT11_N_SUPPORT //
27205 + // copy matching BSS from InTab to OutTab
27206 + NdisMoveMemory(pOutBss, pInBss, sizeof(BSS_ENTRY));
27210 + else if ((pInBss->BssType == pAd->StaCfg.BssType) && (SsidLen == 0))
27212 + BSS_ENTRY *pOutBss = &OutTab->BssEntry[OutTab->BssNr];
27215 +#ifdef DOT11_N_SUPPORT
27216 + // 2.4G/5G N only mode
27217 + if ((pInBss->HtCapabilityLen == 0) &&
27218 + ((pAd->CommonCfg.PhyMode == PHY_11N_2_4G) || (pAd->CommonCfg.PhyMode == PHY_11N_5G)))
27220 + DBGPRINT(RT_DEBUG_TRACE,("STA is in N-only Mode, this AP don't have Ht capability in Beacon.\n"));
27223 +#endif // DOT11_N_SUPPORT //
27226 + // Check the Authmode first
27227 + if (pAd->StaCfg.AuthMode >= Ndis802_11AuthModeWPA)
27229 + // Check AuthMode and AuthModeAux for matching, in case AP support dual-mode
27230 + if ((pAd->StaCfg.AuthMode != pInBss->AuthMode) && (pAd->StaCfg.AuthMode != pInBss->AuthModeAux))
27234 + // Check cipher suite, AP must have more secured cipher than station setting
27235 + if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA) || (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK))
27237 + // If it's not mixed mode, we should only let BSS pass with the same encryption
27238 + if (pInBss->WPA.bMixMode == FALSE)
27239 + if (pAd->StaCfg.WepStatus != pInBss->WPA.GroupCipher)
27242 + // check group cipher
27243 + if (pAd->StaCfg.WepStatus < pInBss->WPA.GroupCipher)
27246 + // check pairwise cipher, skip if none matched
27247 + // If profile set to AES, let it pass without question.
27248 + // If profile set to TKIP, we must find one mateched
27249 + if ((pAd->StaCfg.WepStatus == Ndis802_11Encryption2Enabled) &&
27250 + (pAd->StaCfg.WepStatus != pInBss->WPA.PairCipher) &&
27251 + (pAd->StaCfg.WepStatus != pInBss->WPA.PairCipherAux))
27254 + else if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2) || (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK))
27256 + // If it's not mixed mode, we should only let BSS pass with the same encryption
27257 + if (pInBss->WPA2.bMixMode == FALSE)
27258 + if (pAd->StaCfg.WepStatus != pInBss->WPA2.GroupCipher)
27261 + // check group cipher
27262 + if (pAd->StaCfg.WepStatus < pInBss->WPA2.GroupCipher)
27265 + // check pairwise cipher, skip if none matched
27266 + // If profile set to AES, let it pass without question.
27267 + // If profile set to TKIP, we must find one mateched
27268 + if ((pAd->StaCfg.WepStatus == Ndis802_11Encryption2Enabled) &&
27269 + (pAd->StaCfg.WepStatus != pInBss->WPA2.PairCipher) &&
27270 + (pAd->StaCfg.WepStatus != pInBss->WPA2.PairCipherAux))
27274 + // Bss Type matched, SSID matched.
27275 + // We will check wepstatus for qualification Bss
27276 + else if (pAd->StaCfg.WepStatus != pInBss->WepStatus)
27279 +#ifdef DOT11_N_SUPPORT
27280 + // If both station and AP use 40MHz, still need to check if the 40MHZ band's legality in my country region
27281 + // If this 40MHz wideband is not allowed in my country list, use bandwidth 20MHZ instead,
27282 + if ((pInBss->CentralChannel != pInBss->Channel) &&
27283 + (pAd->CommonCfg.RegTransmitSetting.field.BW == BW_40))
27285 + if (RTMPCheckChannel(pAd, pInBss->CentralChannel, pInBss->Channel) == FALSE)
27287 + pAd->CommonCfg.RegTransmitSetting.field.BW = BW_20;
27288 + SetCommonHT(pAd);
27289 + pAd->CommonCfg.RegTransmitSetting.field.BW = BW_40;
27292 +#endif // DOT11_N_SUPPORT //
27294 + // copy matching BSS from InTab to OutTab
27295 + NdisMoveMemory(pOutBss, pInBss, sizeof(BSS_ENTRY));
27300 + if (OutTab->BssNr >= MAX_LEN_OF_BSS_TABLE)
27304 + BssTableSortByRssi(OutTab);
27308 +// IRQL = DISPATCH_LEVEL
27309 +VOID BssTableSortByRssi(
27310 + IN OUT BSS_TABLE *OutTab)
27313 + BSS_ENTRY TmpBss;
27315 + for (i = 0; i < OutTab->BssNr - 1; i++)
27317 + for (j = i+1; j < OutTab->BssNr; j++)
27319 + if (OutTab->BssEntry[j].Rssi > OutTab->BssEntry[i].Rssi)
27321 + NdisMoveMemory(&TmpBss, &OutTab->BssEntry[j], sizeof(BSS_ENTRY));
27322 + NdisMoveMemory(&OutTab->BssEntry[j], &OutTab->BssEntry[i], sizeof(BSS_ENTRY));
27323 + NdisMoveMemory(&OutTab->BssEntry[i], &TmpBss, sizeof(BSS_ENTRY));
27328 +#endif // CONFIG_STA_SUPPORT //
27331 +VOID BssCipherParse(
27332 + IN OUT PBSS_ENTRY pBss)
27334 + PEID_STRUCT pEid;
27336 + PRSN_IE_HEADER_STRUCT pRsnHeader;
27337 + PCIPHER_SUITE_STRUCT pCipher;
27338 + PAKM_SUITE_STRUCT pAKM;
27341 + NDIS_802_11_ENCRYPTION_STATUS TmpCipher;
27344 + // WepStatus will be reset later, if AP announce TKIP or AES on the beacon frame.
27346 + if (pBss->Privacy)
27348 + pBss->WepStatus = Ndis802_11WEPEnabled;
27352 + pBss->WepStatus = Ndis802_11WEPDisabled;
27354 + // Set default to disable & open authentication before parsing variable IE
27355 + pBss->AuthMode = Ndis802_11AuthModeOpen;
27356 + pBss->AuthModeAux = Ndis802_11AuthModeOpen;
27358 + // Init WPA setting
27359 + pBss->WPA.PairCipher = Ndis802_11WEPDisabled;
27360 + pBss->WPA.PairCipherAux = Ndis802_11WEPDisabled;
27361 + pBss->WPA.GroupCipher = Ndis802_11WEPDisabled;
27362 + pBss->WPA.RsnCapability = 0;
27363 + pBss->WPA.bMixMode = FALSE;
27365 + // Init WPA2 setting
27366 + pBss->WPA2.PairCipher = Ndis802_11WEPDisabled;
27367 + pBss->WPA2.PairCipherAux = Ndis802_11WEPDisabled;
27368 + pBss->WPA2.GroupCipher = Ndis802_11WEPDisabled;
27369 + pBss->WPA2.RsnCapability = 0;
27370 + pBss->WPA2.bMixMode = FALSE;
27373 + Length = (INT) pBss->VarIELen;
27375 + while (Length > 0)
27377 + // Parse cipher suite base on WPA1 & WPA2, they should be parsed differently
27378 + pTmp = ((PUCHAR) pBss->VarIEs) + pBss->VarIELen - Length;
27379 + pEid = (PEID_STRUCT) pTmp;
27380 + switch (pEid->Eid)
27383 + //Parse Cisco IE_WPA (LEAP, CCKM, etc.)
27384 + if ( NdisEqualMemory((pTmp+8), CISCO_OUI, 3))
27390 + case 5: // Although WEP is not allowed in WPA related auth mode, we parse it anyway
27391 + pBss->WepStatus = Ndis802_11Encryption1Enabled;
27392 + pBss->WPA.PairCipher = Ndis802_11Encryption1Enabled;
27393 + pBss->WPA.GroupCipher = Ndis802_11Encryption1Enabled;
27396 + pBss->WepStatus = Ndis802_11Encryption2Enabled;
27397 + pBss->WPA.PairCipher = Ndis802_11Encryption1Enabled;
27398 + pBss->WPA.GroupCipher = Ndis802_11Encryption1Enabled;
27401 + pBss->WepStatus = Ndis802_11Encryption3Enabled;
27402 + pBss->WPA.PairCipher = Ndis802_11Encryption1Enabled;
27403 + pBss->WPA.GroupCipher = Ndis802_11Encryption1Enabled;
27409 + // if Cisco IE_WPA, break
27412 + else if (NdisEqualMemory(pEid->Octet, SES_OUI, 3) && (pEid->Len == 7))
27414 + pBss->bSES = TRUE;
27417 + else if (NdisEqualMemory(pEid->Octet, WPA_OUI, 4) != 1)
27419 + // if unsupported vendor specific IE
27422 + // Skip OUI, version, and multicast suite
27423 + // This part should be improved in the future when AP supported multiple cipher suite.
27424 + // For now, it's OK since almost all APs have fixed cipher suite supported.
27425 + // pTmp = (PUCHAR) pEid->Octet;
27428 + // Cipher Suite Selectors from Spec P802.11i/D3.2 P26.
27436 + // Parse group cipher
27440 + case 5: // Although WEP is not allowed in WPA related auth mode, we parse it anyway
27441 + pBss->WPA.GroupCipher = Ndis802_11Encryption1Enabled;
27444 + pBss->WPA.GroupCipher = Ndis802_11Encryption2Enabled;
27447 + pBss->WPA.GroupCipher = Ndis802_11Encryption3Enabled;
27452 + // number of unicast suite
27455 + // skip all unicast cipher suites
27456 + //Count = *(PUSHORT) pTmp;
27457 + Count = (pTmp[1]<<8) + pTmp[0];
27458 + pTmp += sizeof(USHORT);
27460 + // Parsing all unicast cipher suite
27461 + while (Count > 0)
27465 + TmpCipher = Ndis802_11WEPDisabled;
27469 + case 5: // Although WEP is not allowed in WPA related auth mode, we parse it anyway
27470 + TmpCipher = Ndis802_11Encryption1Enabled;
27473 + TmpCipher = Ndis802_11Encryption2Enabled;
27476 + TmpCipher = Ndis802_11Encryption3Enabled;
27481 + if (TmpCipher > pBss->WPA.PairCipher)
27483 + // Move the lower cipher suite to PairCipherAux
27484 + pBss->WPA.PairCipherAux = pBss->WPA.PairCipher;
27485 + pBss->WPA.PairCipher = TmpCipher;
27489 + pBss->WPA.PairCipherAux = TmpCipher;
27495 + // 4. get AKM suite counts
27496 + //Count = *(PUSHORT) pTmp;
27497 + Count = (pTmp[1]<<8) + pTmp[0];
27498 + pTmp += sizeof(USHORT);
27504 + // Set AP support WPA mode
27505 + if (pBss->AuthMode == Ndis802_11AuthModeOpen)
27506 + pBss->AuthMode = Ndis802_11AuthModeWPA;
27508 + pBss->AuthModeAux = Ndis802_11AuthModeWPA;
27511 + // Set AP support WPA mode
27512 + if (pBss->AuthMode == Ndis802_11AuthModeOpen)
27513 + pBss->AuthMode = Ndis802_11AuthModeWPAPSK;
27515 + pBss->AuthModeAux = Ndis802_11AuthModeWPAPSK;
27522 + // Fixed for WPA-None
27523 + if (pBss->BssType == BSS_ADHOC)
27525 + pBss->AuthMode = Ndis802_11AuthModeWPANone;
27526 + pBss->AuthModeAux = Ndis802_11AuthModeWPANone;
27527 + pBss->WepStatus = pBss->WPA.GroupCipher;
27528 + if (pBss->WPA.PairCipherAux == Ndis802_11WEPDisabled)
27529 + pBss->WPA.PairCipherAux = pBss->WPA.GroupCipher;
27532 + pBss->WepStatus = pBss->WPA.PairCipher;
27534 + // Check the Pair & Group, if different, turn on mixed mode flag
27535 + if (pBss->WPA.GroupCipher != pBss->WPA.PairCipher)
27536 + pBss->WPA.bMixMode = TRUE;
27541 + pRsnHeader = (PRSN_IE_HEADER_STRUCT) pTmp;
27543 + // 0. Version must be 1
27544 + if (le2cpu16(pRsnHeader->Version) != 1)
27546 + pTmp += sizeof(RSN_IE_HEADER_STRUCT);
27548 + // 1. Check group cipher
27549 + pCipher = (PCIPHER_SUITE_STRUCT) pTmp;
27550 + if (!RTMPEqualMemory(pTmp, RSN_OUI, 3))
27553 + // Parse group cipher
27554 + switch (pCipher->Type)
27557 + case 5: // Although WEP is not allowed in WPA related auth mode, we parse it anyway
27558 + pBss->WPA2.GroupCipher = Ndis802_11Encryption1Enabled;
27561 + pBss->WPA2.GroupCipher = Ndis802_11Encryption2Enabled;
27564 + pBss->WPA2.GroupCipher = Ndis802_11Encryption3Enabled;
27569 + // set to correct offset for next parsing
27570 + pTmp += sizeof(CIPHER_SUITE_STRUCT);
27572 + // 2. Get pairwise cipher counts
27573 + //Count = *(PUSHORT) pTmp;
27574 + Count = (pTmp[1]<<8) + pTmp[0];
27575 + pTmp += sizeof(USHORT);
27577 + // 3. Get pairwise cipher
27578 + // Parsing all unicast cipher suite
27579 + while (Count > 0)
27582 + pCipher = (PCIPHER_SUITE_STRUCT) pTmp;
27583 + TmpCipher = Ndis802_11WEPDisabled;
27584 + switch (pCipher->Type)
27587 + case 5: // Although WEP is not allowed in WPA related auth mode, we parse it anyway
27588 + TmpCipher = Ndis802_11Encryption1Enabled;
27591 + TmpCipher = Ndis802_11Encryption2Enabled;
27594 + TmpCipher = Ndis802_11Encryption3Enabled;
27599 + if (TmpCipher > pBss->WPA2.PairCipher)
27601 + // Move the lower cipher suite to PairCipherAux
27602 + pBss->WPA2.PairCipherAux = pBss->WPA2.PairCipher;
27603 + pBss->WPA2.PairCipher = TmpCipher;
27607 + pBss->WPA2.PairCipherAux = TmpCipher;
27609 + pTmp += sizeof(CIPHER_SUITE_STRUCT);
27613 + // 4. get AKM suite counts
27614 + //Count = *(PUSHORT) pTmp;
27615 + Count = (pTmp[1]<<8) + pTmp[0];
27616 + pTmp += sizeof(USHORT);
27618 + // 5. Get AKM ciphers
27619 + pAKM = (PAKM_SUITE_STRUCT) pTmp;
27620 + if (!RTMPEqualMemory(pTmp, RSN_OUI, 3))
27623 + switch (pAKM->Type)
27626 + // Set AP support WPA mode
27627 + if (pBss->AuthMode == Ndis802_11AuthModeOpen)
27628 + pBss->AuthMode = Ndis802_11AuthModeWPA2;
27630 + pBss->AuthModeAux = Ndis802_11AuthModeWPA2;
27633 + // Set AP support WPA mode
27634 + if (pBss->AuthMode == Ndis802_11AuthModeOpen)
27635 + pBss->AuthMode = Ndis802_11AuthModeWPA2PSK;
27637 + pBss->AuthModeAux = Ndis802_11AuthModeWPA2PSK;
27642 + pTmp += (Count * sizeof(AKM_SUITE_STRUCT));
27644 + // Fixed for WPA-None
27645 + if (pBss->BssType == BSS_ADHOC)
27647 + pBss->AuthMode = Ndis802_11AuthModeWPANone;
27648 + pBss->AuthModeAux = Ndis802_11AuthModeWPANone;
27649 + pBss->WPA.PairCipherAux = pBss->WPA2.PairCipherAux;
27650 + pBss->WPA.GroupCipher = pBss->WPA2.GroupCipher;
27651 + pBss->WepStatus = pBss->WPA.GroupCipher;
27652 + if (pBss->WPA.PairCipherAux == Ndis802_11WEPDisabled)
27653 + pBss->WPA.PairCipherAux = pBss->WPA.GroupCipher;
27655 + pBss->WepStatus = pBss->WPA2.PairCipher;
27657 + // 6. Get RSN capability
27658 + //pBss->WPA2.RsnCapability = *(PUSHORT) pTmp;
27659 + pBss->WPA2.RsnCapability = (pTmp[1]<<8) + pTmp[0];
27660 + pTmp += sizeof(USHORT);
27662 + // Check the Pair & Group, if different, turn on mixed mode flag
27663 + if (pBss->WPA2.GroupCipher != pBss->WPA2.PairCipher)
27664 + pBss->WPA2.bMixMode = TRUE;
27670 + Length -= (pEid->Len + 2);
27674 +// ===========================================================================================
27676 +// ===========================================================================================
27678 +/*! \brief generates a random mac address value for IBSS BSSID
27679 + * \param Addr the bssid location
27684 +VOID MacAddrRandomBssid(
27685 + IN PRTMP_ADAPTER pAd,
27686 + OUT PUCHAR pAddr)
27690 + for (i = 0; i < MAC_ADDR_LEN; i++)
27692 + pAddr[i] = RandomByte(pAd);
27695 + pAddr[0] = (pAddr[0] & 0xfe) | 0x02; // the first 2 bits must be 01xxxxxxxx
27698 +/*! \brief init the management mac frame header
27699 + * \param p_hdr mac header
27700 + * \param subtype subtype of the frame
27701 + * \param p_ds destination address, don't care if it is a broadcast address
27703 + * \pre the station has the following information in the pAd->StaCfg
27705 + * - station address
27707 + * \note this function initializes the following field
27709 + IRQL = PASSIVE_LEVEL
27710 + IRQL = DISPATCH_LEVEL
27713 +VOID MgtMacHeaderInit(
27714 + IN PRTMP_ADAPTER pAd,
27715 + IN OUT PHEADER_802_11 pHdr80211,
27716 + IN UCHAR SubType,
27719 + IN PUCHAR pBssid)
27721 + NdisZeroMemory(pHdr80211, sizeof(HEADER_802_11));
27723 + pHdr80211->FC.Type = BTYPE_MGMT;
27724 + pHdr80211->FC.SubType = SubType;
27725 +// if (SubType == SUBTYPE_ACK) // sample, no use, it will conflict with ACTION frame sub type
27726 +// pHdr80211->FC.Type = BTYPE_CNTL;
27727 + pHdr80211->FC.ToDs = ToDs;
27728 + COPY_MAC_ADDR(pHdr80211->Addr1, pDA);
27729 +#ifdef CONFIG_STA_SUPPORT
27730 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
27731 + COPY_MAC_ADDR(pHdr80211->Addr2, pAd->CurrentAddress);
27732 +#endif // CONFIG_STA_SUPPORT //
27733 + COPY_MAC_ADDR(pHdr80211->Addr3, pBssid);
27736 +// ===========================================================================================
27738 +// ===========================================================================================
27740 +/*!***************************************************************************
27741 + * This routine build an outgoing frame, and fill all information specified
27742 + * in argument list to the frame body. The actual frame size is the summation
27743 + * of all arguments.
27745 + * Buffer - pointer to a pre-allocated memory segment
27746 + * args - a list of <int arg_size, arg> pairs.
27747 + * NOTE NOTE NOTE!!!! the last argument must be NULL, otherwise this
27748 + * function will FAIL!!!
27750 + * Size of the buffer
27752 + * MakeOutgoingFrame(Buffer, output_length, 2, &fc, 2, &dur, 6, p_addr1, 6,p_addr2, END_OF_ARGS);
27754 + IRQL = PASSIVE_LEVEL
27755 + IRQL = DISPATCH_LEVEL
27757 + ****************************************************************************/
27758 +ULONG MakeOutgoingFrame(
27759 + OUT CHAR *Buffer,
27760 + OUT ULONG *FrameLen, ...)
27767 + // calculates the total length
27769 + va_start(Args, FrameLen);
27772 + leng = va_arg(Args, int);
27773 + if (leng == END_OF_ARGS)
27777 + p = va_arg(Args, PVOID);
27778 + NdisMoveMemory(&Buffer[TotLeng], p, leng);
27779 + TotLeng = TotLeng + leng;
27782 + va_end(Args); /* clean up */
27783 + *FrameLen = TotLeng;
27787 +// ===========================================================================================
27789 +// ===========================================================================================
27791 +/*! \brief Initialize The MLME Queue, used by MLME Functions
27792 + * \param *Queue The MLME Queue
27793 + * \return Always Return NDIS_STATE_SUCCESS in this implementation
27796 + * \note Because this is done only once (at the init stage), no need to be locked
27798 + IRQL = PASSIVE_LEVEL
27801 +NDIS_STATUS MlmeQueueInit(
27802 + IN MLME_QUEUE *Queue)
27806 + NdisAllocateSpinLock(&Queue->Lock);
27812 + for (i = 0; i < MAX_LEN_OF_MLME_QUEUE; i++)
27814 + Queue->Entry[i].Occupied = FALSE;
27815 + Queue->Entry[i].MsgLen = 0;
27816 + NdisZeroMemory(Queue->Entry[i].Msg, MGMT_DMA_BUFFER_SIZE);
27819 + return NDIS_STATUS_SUCCESS;
27822 +/*! \brief Enqueue a message for other threads, if they want to send messages to MLME thread
27823 + * \param *Queue The MLME Queue
27824 + * \param Machine The State Machine Id
27825 + * \param MsgType The Message Type
27826 + * \param MsgLen The Message length
27827 + * \param *Msg The message pointer
27828 + * \return TRUE if enqueue is successful, FALSE if the queue is full
27831 + * \note The message has to be initialized
27833 + IRQL = PASSIVE_LEVEL
27834 + IRQL = DISPATCH_LEVEL
27837 +BOOLEAN MlmeEnqueue(
27838 + IN PRTMP_ADAPTER pAd,
27839 + IN ULONG Machine,
27840 + IN ULONG MsgType,
27845 + MLME_QUEUE *Queue = (MLME_QUEUE *)&pAd->Mlme.Queue;
27847 + // Do nothing if the driver is starting halt state.
27848 + // This might happen when timer already been fired before cancel timer with mlmehalt
27849 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS | fRTMP_ADAPTER_NIC_NOT_EXIST))
27852 + // First check the size, it MUST not exceed the mlme queue size
27853 + if (MsgLen > MGMT_DMA_BUFFER_SIZE)
27855 + DBGPRINT_ERR(("MlmeEnqueue: msg too large, size = %ld \n", MsgLen));
27859 + if (MlmeQueueFull(Queue))
27864 + NdisAcquireSpinLock(&(Queue->Lock));
27865 + Tail = Queue->Tail;
27868 + if (Queue->Tail == MAX_LEN_OF_MLME_QUEUE)
27873 + Queue->Entry[Tail].Wcid = RESERVED_WCID;
27874 + Queue->Entry[Tail].Occupied = TRUE;
27875 + Queue->Entry[Tail].Machine = Machine;
27876 + Queue->Entry[Tail].MsgType = MsgType;
27877 + Queue->Entry[Tail].MsgLen = MsgLen;
27881 + NdisMoveMemory(Queue->Entry[Tail].Msg, Msg, MsgLen);
27884 + NdisReleaseSpinLock(&(Queue->Lock));
27888 +/*! \brief This function is used when Recv gets a MLME message
27889 + * \param *Queue The MLME Queue
27890 + * \param TimeStampHigh The upper 32 bit of timestamp
27891 + * \param TimeStampLow The lower 32 bit of timestamp
27892 + * \param Rssi The receiving RSSI strength
27893 + * \param MsgLen The length of the message
27894 + * \param *Msg The message pointer
27895 + * \return TRUE if everything ok, FALSE otherwise (like Queue Full)
27899 + IRQL = DISPATCH_LEVEL
27902 +BOOLEAN MlmeEnqueueForRecv(
27903 + IN PRTMP_ADAPTER pAd,
27905 + IN ULONG TimeStampHigh,
27906 + IN ULONG TimeStampLow,
27914 + INT Tail, Machine;
27915 + PFRAME_802_11 pFrame = (PFRAME_802_11)Msg;
27917 + MLME_QUEUE *Queue = (MLME_QUEUE *)&pAd->Mlme.Queue;
27920 + /* Nothing to do in ATE mode */
27923 +#endif // RALINK_ATE //
27925 + // Do nothing if the driver is starting halt state.
27926 + // This might happen when timer already been fired before cancel timer with mlmehalt
27927 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS | fRTMP_ADAPTER_NIC_NOT_EXIST))
27929 + DBGPRINT_ERR(("MlmeEnqueueForRecv: fRTMP_ADAPTER_HALT_IN_PROGRESS\n"));
27933 + // First check the size, it MUST not exceed the mlme queue size
27934 + if (MsgLen > MGMT_DMA_BUFFER_SIZE)
27936 + DBGPRINT_ERR(("MlmeEnqueueForRecv: frame too large, size = %ld \n", MsgLen));
27940 + if (MlmeQueueFull(Queue))
27945 +#ifdef CONFIG_STA_SUPPORT
27946 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
27948 + if (!MsgTypeSubst(pAd, pFrame, &Machine, &MsgType))
27950 + DBGPRINT_ERR(("MlmeEnqueueForRecv: un-recongnized mgmt->subtype=%d\n",pFrame->Hdr.FC.SubType));
27954 +#endif // CONFIG_STA_SUPPORT //
27956 + // OK, we got all the informations, it is time to put things into queue
27957 + NdisAcquireSpinLock(&(Queue->Lock));
27958 + Tail = Queue->Tail;
27961 + if (Queue->Tail == MAX_LEN_OF_MLME_QUEUE)
27965 + Queue->Entry[Tail].Occupied = TRUE;
27966 + Queue->Entry[Tail].Machine = Machine;
27967 + Queue->Entry[Tail].MsgType = MsgType;
27968 + Queue->Entry[Tail].MsgLen = MsgLen;
27969 + Queue->Entry[Tail].TimeStamp.u.LowPart = TimeStampLow;
27970 + Queue->Entry[Tail].TimeStamp.u.HighPart = TimeStampHigh;
27971 + Queue->Entry[Tail].Rssi0 = Rssi0;
27972 + Queue->Entry[Tail].Rssi1 = Rssi1;
27973 + Queue->Entry[Tail].Rssi2 = Rssi2;
27974 + Queue->Entry[Tail].Signal = Signal;
27975 + Queue->Entry[Tail].Wcid = (UCHAR)Wcid;
27977 + Queue->Entry[Tail].Channel = pAd->LatchRfRegs.Channel;
27981 + NdisMoveMemory(Queue->Entry[Tail].Msg, Msg, MsgLen);
27984 + NdisReleaseSpinLock(&(Queue->Lock));
27986 + RT28XX_MLME_HANDLER(pAd);
27992 +/*! \brief Dequeue a message from the MLME Queue
27993 + * \param *Queue The MLME Queue
27994 + * \param *Elem The message dequeued from MLME Queue
27995 + * \return TRUE if the Elem contains something, FALSE otherwise
27999 + IRQL = DISPATCH_LEVEL
28002 +BOOLEAN MlmeDequeue(
28003 + IN MLME_QUEUE *Queue,
28004 + OUT MLME_QUEUE_ELEM **Elem)
28006 + NdisAcquireSpinLock(&(Queue->Lock));
28007 + *Elem = &(Queue->Entry[Queue->Head]);
28010 + if (Queue->Head == MAX_LEN_OF_MLME_QUEUE)
28014 + NdisReleaseSpinLock(&(Queue->Lock));
28018 +// IRQL = DISPATCH_LEVEL
28019 +VOID MlmeRestartStateMachine(
28020 + IN PRTMP_ADAPTER pAd)
28022 +#ifdef CONFIG_STA_SUPPORT
28023 + BOOLEAN Cancelled;
28024 +#endif // CONFIG_STA_SUPPORT //
28026 + DBGPRINT(RT_DEBUG_TRACE, ("MlmeRestartStateMachine \n"));
28029 +#ifdef CONFIG_STA_SUPPORT
28030 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
28032 +#ifdef QOS_DLS_SUPPORT
28034 +#endif // QOS_DLS_SUPPORT //
28035 + // Cancel all timer events
28036 + // Be careful to cancel new added timer
28037 + RTMPCancelTimer(&pAd->MlmeAux.AssocTimer, &Cancelled);
28038 + RTMPCancelTimer(&pAd->MlmeAux.ReassocTimer, &Cancelled);
28039 + RTMPCancelTimer(&pAd->MlmeAux.DisassocTimer, &Cancelled);
28040 + RTMPCancelTimer(&pAd->MlmeAux.AuthTimer, &Cancelled);
28041 + RTMPCancelTimer(&pAd->MlmeAux.BeaconTimer, &Cancelled);
28042 + RTMPCancelTimer(&pAd->MlmeAux.ScanTimer, &Cancelled);
28044 +#ifdef QOS_DLS_SUPPORT
28045 + for (i=0; i<MAX_NUM_OF_DLS_ENTRY; i++)
28047 + RTMPCancelTimer(&pAd->StaCfg.DLSEntry[i].Timer, &Cancelled);
28049 +#endif // QOS_DLS_SUPPORT //
28051 +#endif // CONFIG_STA_SUPPORT //
28053 + // Change back to original channel in case of doing scan
28054 + AsicSwitchChannel(pAd, pAd->CommonCfg.Channel, FALSE);
28055 + AsicLockChannel(pAd, pAd->CommonCfg.Channel);
28057 + // Resume MSDU which is turned off durning scan
28058 + RTMPResumeMsduTransmission(pAd);
28060 +#ifdef CONFIG_STA_SUPPORT
28061 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
28063 + // Set all state machines back IDLE
28064 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
28065 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
28066 + pAd->Mlme.AuthMachine.CurrState = AUTH_REQ_IDLE;
28067 + pAd->Mlme.AuthRspMachine.CurrState = AUTH_RSP_IDLE;
28068 + pAd->Mlme.SyncMachine.CurrState = SYNC_IDLE;
28069 + pAd->Mlme.ActMachine.CurrState = ACT_IDLE;
28070 +#ifdef QOS_DLS_SUPPORT
28071 + pAd->Mlme.DlsMachine.CurrState = DLS_IDLE;
28072 +#endif // QOS_DLS_SUPPORT //
28074 +#endif // CONFIG_STA_SUPPORT //
28078 +/*! \brief test if the MLME Queue is empty
28079 + * \param *Queue The MLME Queue
28080 + * \return TRUE if the Queue is empty, FALSE otherwise
28084 + IRQL = DISPATCH_LEVEL
28087 +BOOLEAN MlmeQueueEmpty(
28088 + IN MLME_QUEUE *Queue)
28092 + NdisAcquireSpinLock(&(Queue->Lock));
28093 + Ans = (Queue->Num == 0);
28094 + NdisReleaseSpinLock(&(Queue->Lock));
28099 +/*! \brief test if the MLME Queue is full
28100 + * \param *Queue The MLME Queue
28101 + * \return TRUE if the Queue is empty, FALSE otherwise
28105 + IRQL = PASSIVE_LEVEL
28106 + IRQL = DISPATCH_LEVEL
28109 +BOOLEAN MlmeQueueFull(
28110 + IN MLME_QUEUE *Queue)
28114 + NdisAcquireSpinLock(&(Queue->Lock));
28115 + Ans = (Queue->Num == MAX_LEN_OF_MLME_QUEUE || Queue->Entry[Queue->Tail].Occupied);
28116 + NdisReleaseSpinLock(&(Queue->Lock));
28121 +/*! \brief The destructor of MLME Queue
28126 + * \note Clear Mlme Queue, Set Queue->Num to Zero.
28128 + IRQL = PASSIVE_LEVEL
28131 +VOID MlmeQueueDestroy(
28132 + IN MLME_QUEUE *pQueue)
28134 + NdisAcquireSpinLock(&(pQueue->Lock));
28136 + pQueue->Head = 0;
28137 + pQueue->Tail = 0;
28138 + NdisReleaseSpinLock(&(pQueue->Lock));
28139 + NdisFreeSpinLock(&(pQueue->Lock));
28142 +/*! \brief To substitute the message type if the message is coming from external
28143 + * \param pFrame The frame received
28144 + * \param *Machine The state machine
28145 + * \param *MsgType the message type for the state machine
28146 + * \return TRUE if the substitution is successful, FALSE otherwise
28150 + IRQL = DISPATCH_LEVEL
28153 +#ifdef CONFIG_STA_SUPPORT
28154 +BOOLEAN MsgTypeSubst(
28155 + IN PRTMP_ADAPTER pAd,
28156 + IN PFRAME_802_11 pFrame,
28157 + OUT INT *Machine,
28158 + OUT INT *MsgType)
28164 + // Pointer to start of data frames including SNAP header
28165 + pData = (PUCHAR) pFrame + LENGTH_802_11;
28167 + // The only data type will pass to this function is EAPOL frame
28168 + if (pFrame->Hdr.FC.Type == BTYPE_DATA)
28170 + if (NdisEqualMemory(SNAP_AIRONET, pData, LENGTH_802_1_H))
28172 + // Cisco Aironet SNAP header
28173 + *Machine = AIRONET_STATE_MACHINE;
28174 + *MsgType = MT2_AIRONET_MSG;
28177 +#ifdef LEAP_SUPPORT
28178 + if ( pAd->StaCfg.LeapAuthMode == CISCO_AuthModeLEAP ) //LEAP
28181 + *Machine = LEAP_STATE_MACHINE;
28182 + EAPType = *((UCHAR*)pFrame + LENGTH_802_11 + LENGTH_802_1_H + 1);
28183 + return (LeapMsgTypeSubst(EAPType, MsgType));
28186 +#endif // LEAP_SUPPORT //
28188 + *Machine = WPA_PSK_STATE_MACHINE;
28189 + EAPType = *((UCHAR*)pFrame + LENGTH_802_11 + LENGTH_802_1_H + 1);
28190 + return(WpaMsgTypeSubst(EAPType, MsgType));
28194 + switch (pFrame->Hdr.FC.SubType)
28196 + case SUBTYPE_ASSOC_REQ:
28197 + *Machine = ASSOC_STATE_MACHINE;
28198 + *MsgType = MT2_PEER_ASSOC_REQ;
28200 + case SUBTYPE_ASSOC_RSP:
28201 + *Machine = ASSOC_STATE_MACHINE;
28202 + *MsgType = MT2_PEER_ASSOC_RSP;
28204 + case SUBTYPE_REASSOC_REQ:
28205 + *Machine = ASSOC_STATE_MACHINE;
28206 + *MsgType = MT2_PEER_REASSOC_REQ;
28208 + case SUBTYPE_REASSOC_RSP:
28209 + *Machine = ASSOC_STATE_MACHINE;
28210 + *MsgType = MT2_PEER_REASSOC_RSP;
28212 + case SUBTYPE_PROBE_REQ:
28213 + *Machine = SYNC_STATE_MACHINE;
28214 + *MsgType = MT2_PEER_PROBE_REQ;
28216 + case SUBTYPE_PROBE_RSP:
28217 + *Machine = SYNC_STATE_MACHINE;
28218 + *MsgType = MT2_PEER_PROBE_RSP;
28220 + case SUBTYPE_BEACON:
28221 + *Machine = SYNC_STATE_MACHINE;
28222 + *MsgType = MT2_PEER_BEACON;
28224 + case SUBTYPE_ATIM:
28225 + *Machine = SYNC_STATE_MACHINE;
28226 + *MsgType = MT2_PEER_ATIM;
28228 + case SUBTYPE_DISASSOC:
28229 + *Machine = ASSOC_STATE_MACHINE;
28230 + *MsgType = MT2_PEER_DISASSOC_REQ;
28232 + case SUBTYPE_AUTH:
28233 + // get the sequence number from payload 24 Mac Header + 2 bytes algorithm
28234 + NdisMoveMemory(&Seq, &pFrame->Octet[2], sizeof(USHORT));
28235 + if (Seq == 1 || Seq == 3)
28237 + *Machine = AUTH_RSP_STATE_MACHINE;
28238 + *MsgType = MT2_PEER_AUTH_ODD;
28240 + else if (Seq == 2 || Seq == 4)
28242 + *Machine = AUTH_STATE_MACHINE;
28243 + *MsgType = MT2_PEER_AUTH_EVEN;
28250 + case SUBTYPE_DEAUTH:
28251 + *Machine = AUTH_RSP_STATE_MACHINE;
28252 + *MsgType = MT2_PEER_DEAUTH;
28254 + case SUBTYPE_ACTION:
28255 + *Machine = ACTION_STATE_MACHINE;
28256 + // Sometimes Sta will return with category bytes with MSB = 1, if they receive catogory out of their support
28257 + if ((pFrame->Octet[0]&0x7F) > MAX_PEER_CATE_MSG)
28259 + *MsgType = MT2_ACT_INVALID;
28263 + *MsgType = (pFrame->Octet[0]&0x7F);
28273 +#endif // CONFIG_STA_SUPPORT //
28275 +// ===========================================================================================
28276 +// state_machine.c
28277 +// ===========================================================================================
28279 +/*! \brief Initialize the state machine.
28280 + * \param *S pointer to the state machine
28281 + * \param Trans State machine transition function
28282 + * \param StNr number of states
28283 + * \param MsgNr number of messages
28284 + * \param DefFunc default function, when there is invalid state/message combination
28285 + * \param InitState initial state of the state machine
28286 + * \param Base StateMachine base, internal use only
28287 + * \pre p_sm should be a legal pointer
28290 + IRQL = PASSIVE_LEVEL
28293 +VOID StateMachineInit(
28294 + IN STATE_MACHINE *S,
28295 + IN STATE_MACHINE_FUNC Trans[],
28298 + IN STATE_MACHINE_FUNC DefFunc,
28299 + IN ULONG InitState,
28304 + // set number of states and messages
28305 + S->NrState = StNr;
28306 + S->NrMsg = MsgNr;
28309 + S->TransFunc = Trans;
28311 + // init all state transition to default function
28312 + for (i = 0; i < StNr; i++)
28314 + for (j = 0; j < MsgNr; j++)
28316 + S->TransFunc[i * MsgNr + j] = DefFunc;
28320 + // set the starting state
28321 + S->CurrState = InitState;
28324 +/*! \brief This function fills in the function pointer into the cell in the state machine
28325 + * \param *S pointer to the state machine
28326 + * \param St state
28327 + * \param Msg incoming message
28328 + * \param f the function to be executed when (state, message) combination occurs at the state machine
28329 + * \pre *S should be a legal pointer to the state machine, st, msg, should be all within the range, Base should be set in the initial state
28332 + IRQL = PASSIVE_LEVEL
28335 +VOID StateMachineSetAction(
28336 + IN STATE_MACHINE *S,
28339 + IN STATE_MACHINE_FUNC Func)
28343 + MsgIdx = Msg - S->Base;
28345 + if (St < S->NrState && MsgIdx < S->NrMsg)
28347 + // boundary checking before setting the action
28348 + S->TransFunc[St * S->NrMsg + MsgIdx] = Func;
28352 +/*! \brief This function does the state transition
28353 + * \param *Adapter the NIC adapter pointer
28354 + * \param *S the state machine
28355 + * \param *Elem the message to be executed
28358 + IRQL = DISPATCH_LEVEL
28361 +VOID StateMachinePerformAction(
28362 + IN PRTMP_ADAPTER pAd,
28363 + IN STATE_MACHINE *S,
28364 + IN MLME_QUEUE_ELEM *Elem)
28366 + (*(S->TransFunc[S->CurrState * S->NrMsg + Elem->MsgType - S->Base]))(pAd, Elem);
28370 + ==========================================================================
28372 + The drop function, when machine executes this, the message is simply
28373 + ignored. This function does nothing, the message is freed in
28374 + StateMachinePerformAction()
28375 + ==========================================================================
28378 + IN PRTMP_ADAPTER pAd,
28379 + IN MLME_QUEUE_ELEM *Elem)
28383 +// ===========================================================================================
28385 +// ===========================================================================================
28388 + ==========================================================================
28391 + IRQL = PASSIVE_LEVEL
28393 + ==========================================================================
28396 + IN PRTMP_ADAPTER pAd,
28400 + pAd->Mlme.ShiftReg = 1;
28402 + pAd->Mlme.ShiftReg = Seed;
28406 + ==========================================================================
28408 + ==========================================================================
28411 + IN PRTMP_ADAPTER pAd)
28418 + if (pAd->Mlme.ShiftReg == 0)
28419 + NdisGetSystemUpTime((ULONG *)&pAd->Mlme.ShiftReg);
28421 + for (i = 0; i < 8; i++)
28423 + if (pAd->Mlme.ShiftReg & 0x00000001)
28425 + pAd->Mlme.ShiftReg = ((pAd->Mlme.ShiftReg ^ LFSR_MASK) >> 1) | 0x80000000;
28430 + pAd->Mlme.ShiftReg = pAd->Mlme.ShiftReg >> 1;
28433 + R = (R << 1) | Result;
28439 +VOID AsicUpdateAutoFallBackTable(
28440 + IN PRTMP_ADAPTER pAd,
28441 + IN PUCHAR pRateTable)
28444 + HT_FBK_CFG0_STRUC HtCfg0;
28445 + HT_FBK_CFG1_STRUC HtCfg1;
28446 + LG_FBK_CFG0_STRUC LgCfg0;
28447 + LG_FBK_CFG1_STRUC LgCfg1;
28448 + PRTMP_TX_RATE_SWITCH pCurrTxRate, pNextTxRate;
28450 + // set to initial value
28451 + HtCfg0.word = 0x65432100;
28452 + HtCfg1.word = 0xedcba988;
28453 + LgCfg0.word = 0xedcba988;
28454 + LgCfg1.word = 0x00002100;
28456 + pNextTxRate = (PRTMP_TX_RATE_SWITCH)pRateTable+1;
28457 + for (i = 1; i < *((PUCHAR) pRateTable); i++)
28459 + pCurrTxRate = (PRTMP_TX_RATE_SWITCH)pRateTable+1+i;
28460 + switch (pCurrTxRate->Mode)
28466 + switch(pCurrTxRate->CurrMCS)
28469 + LgCfg0.field.OFDMMCS0FBK = (pNextTxRate->Mode == MODE_OFDM) ? (pNextTxRate->CurrMCS+8): pNextTxRate->CurrMCS;
28472 + LgCfg0.field.OFDMMCS1FBK = (pNextTxRate->Mode == MODE_OFDM) ? (pNextTxRate->CurrMCS+8): pNextTxRate->CurrMCS;
28475 + LgCfg0.field.OFDMMCS2FBK = (pNextTxRate->Mode == MODE_OFDM) ? (pNextTxRate->CurrMCS+8): pNextTxRate->CurrMCS;
28478 + LgCfg0.field.OFDMMCS3FBK = (pNextTxRate->Mode == MODE_OFDM) ? (pNextTxRate->CurrMCS+8): pNextTxRate->CurrMCS;
28481 + LgCfg0.field.OFDMMCS4FBK = (pNextTxRate->Mode == MODE_OFDM) ? (pNextTxRate->CurrMCS+8): pNextTxRate->CurrMCS;
28484 + LgCfg0.field.OFDMMCS5FBK = (pNextTxRate->Mode == MODE_OFDM) ? (pNextTxRate->CurrMCS+8): pNextTxRate->CurrMCS;
28487 + LgCfg0.field.OFDMMCS6FBK = (pNextTxRate->Mode == MODE_OFDM) ? (pNextTxRate->CurrMCS+8): pNextTxRate->CurrMCS;
28490 + LgCfg0.field.OFDMMCS7FBK = (pNextTxRate->Mode == MODE_OFDM) ? (pNextTxRate->CurrMCS+8): pNextTxRate->CurrMCS;
28495 +#ifdef DOT11_N_SUPPORT
28499 + if ((pNextTxRate->Mode >= MODE_HTMIX) && (pCurrTxRate->CurrMCS != pNextTxRate->CurrMCS))
28501 + switch(pCurrTxRate->CurrMCS)
28504 + HtCfg0.field.HTMCS0FBK = pNextTxRate->CurrMCS;
28507 + HtCfg0.field.HTMCS1FBK = pNextTxRate->CurrMCS;
28510 + HtCfg0.field.HTMCS2FBK = pNextTxRate->CurrMCS;
28513 + HtCfg0.field.HTMCS3FBK = pNextTxRate->CurrMCS;
28516 + HtCfg0.field.HTMCS4FBK = pNextTxRate->CurrMCS;
28519 + HtCfg0.field.HTMCS5FBK = pNextTxRate->CurrMCS;
28522 + HtCfg0.field.HTMCS6FBK = pNextTxRate->CurrMCS;
28525 + HtCfg0.field.HTMCS7FBK = pNextTxRate->CurrMCS;
28528 + HtCfg1.field.HTMCS8FBK = pNextTxRate->CurrMCS;
28531 + HtCfg1.field.HTMCS9FBK = pNextTxRate->CurrMCS;
28534 + HtCfg1.field.HTMCS10FBK = pNextTxRate->CurrMCS;
28537 + HtCfg1.field.HTMCS11FBK = pNextTxRate->CurrMCS;
28540 + HtCfg1.field.HTMCS12FBK = pNextTxRate->CurrMCS;
28543 + HtCfg1.field.HTMCS13FBK = pNextTxRate->CurrMCS;
28546 + HtCfg1.field.HTMCS14FBK = pNextTxRate->CurrMCS;
28549 + HtCfg1.field.HTMCS15FBK = pNextTxRate->CurrMCS;
28552 + DBGPRINT(RT_DEBUG_ERROR, ("AsicUpdateAutoFallBackTable: not support CurrMCS=%d\n", pCurrTxRate->CurrMCS));
28557 +#endif // DOT11_N_SUPPORT //
28560 + pNextTxRate = pCurrTxRate;
28563 + RTMP_IO_WRITE32(pAd, HT_FBK_CFG0, HtCfg0.word);
28564 + RTMP_IO_WRITE32(pAd, HT_FBK_CFG1, HtCfg1.word);
28565 + RTMP_IO_WRITE32(pAd, LG_FBK_CFG0, LgCfg0.word);
28566 + RTMP_IO_WRITE32(pAd, LG_FBK_CFG1, LgCfg1.word);
28570 + ========================================================================
28572 + Routine Description:
28573 + Set MAC register value according operation mode.
28574 + OperationMode AND bNonGFExist are for MM and GF Proteciton.
28575 + If MM or GF mask is not set, those passing argument doesn't not take effect.
28577 + Operation mode meaning:
28578 + = 0 : Pure HT, no preotection.
28579 + = 0x01; there may be non-HT devices in both the control and extension channel, protection is optional in BSS.
28580 + = 0x10: No Transmission in 40M is protected.
28581 + = 0x11: Transmission in both 40M and 20M shall be protected
28583 + we should choose not to use GF. But still set correct ASIC registers.
28584 + ========================================================================
28586 +VOID AsicUpdateProtect(
28587 + IN PRTMP_ADAPTER pAd,
28588 + IN USHORT OperationMode,
28589 + IN UCHAR SetMask,
28590 + IN BOOLEAN bDisableBGProtect,
28591 + IN BOOLEAN bNonGFExist)
28593 + PROT_CFG_STRUC ProtCfg, ProtCfg4;
28594 + UINT32 Protect[6];
28597 + UINT32 MacReg = 0;
28602 +#endif // RALINK_ATE //
28604 +#ifdef DOT11_N_SUPPORT
28605 + if (!(pAd->CommonCfg.bHTProtect) && (OperationMode != 8))
28610 + if (pAd->BATable.numAsOriginator)
28613 + // enable the RTS/CTS to avoid channel collision
28615 + SetMask = ALLN_SETPROTECT;
28616 + OperationMode = 8;
28618 +#endif // DOT11_N_SUPPORT //
28620 + // Config ASIC RTS threshold register
28621 + RTMP_IO_READ32(pAd, TX_RTS_CFG, &MacReg);
28622 + MacReg &= 0xFF0000FF;
28624 + // If the user want disable RtsThreshold and enbale Amsdu/Ralink-Aggregation, set the RtsThreshold as 4096
28626 +#ifdef DOT11_N_SUPPORT
28627 + (pAd->CommonCfg.BACapability.field.AmsduEnable) ||
28628 +#endif // DOT11_N_SUPPORT //
28629 + (pAd->CommonCfg.bAggregationCapable == TRUE))
28630 + && pAd->CommonCfg.RtsThreshold == MAX_RTS_THRESHOLD)
28632 + MacReg |= (0x1000 << 8);
28636 + MacReg |= (pAd->CommonCfg.RtsThreshold << 8);
28639 + RTMP_IO_WRITE32(pAd, TX_RTS_CFG, MacReg);
28641 + // Initial common protection settings
28642 + RTMPZeroMemory(Protect, sizeof(Protect));
28643 + ProtCfg4.word = 0;
28644 + ProtCfg.word = 0;
28645 + ProtCfg.field.TxopAllowGF40 = 1;
28646 + ProtCfg.field.TxopAllowGF20 = 1;
28647 + ProtCfg.field.TxopAllowMM40 = 1;
28648 + ProtCfg.field.TxopAllowMM20 = 1;
28649 + ProtCfg.field.TxopAllowOfdm = 1;
28650 + ProtCfg.field.TxopAllowCck = 1;
28651 + ProtCfg.field.RTSThEn = 1;
28652 + ProtCfg.field.ProtectNav = ASIC_SHORTNAV;
28654 + // update PHY mode and rate
28655 + if (pAd->CommonCfg.Channel > 14)
28656 + ProtCfg.field.ProtectRate = 0x4000;
28657 + ProtCfg.field.ProtectRate |= pAd->CommonCfg.RtsRate;
28659 + // Handle legacy(B/G) protection
28660 + if (bDisableBGProtect)
28662 + //ProtCfg.field.ProtectRate = pAd->CommonCfg.RtsRate;
28663 + ProtCfg.field.ProtectCtrl = 0;
28664 + Protect[0] = ProtCfg.word;
28665 + Protect[1] = ProtCfg.word;
28669 + //ProtCfg.field.ProtectRate = pAd->CommonCfg.RtsRate;
28670 + ProtCfg.field.ProtectCtrl = 0; // CCK do not need to be protected
28671 + Protect[0] = ProtCfg.word;
28672 + ProtCfg.field.ProtectCtrl = ASIC_CTS; // OFDM needs using CCK to protect
28673 + Protect[1] = ProtCfg.word;
28676 +#ifdef DOT11_N_SUPPORT
28677 + // Decide HT frame protection.
28678 + if ((SetMask & ALLN_SETPROTECT) != 0)
28680 + switch(OperationMode)
28684 + // 1.All STAs in the BSS are 20/40 MHz HT
28685 + // 2. in ai 20/40MHz BSS
28686 + // 3. all STAs are 20MHz in a 20MHz BSS
28687 + // Pure HT. no protection.
28690 + // Reserved (31:27)
28691 + // PROT_TXOP(25:20) -- 010111
28692 + // PROT_NAV(19:18) -- 01 (Short NAV protection)
28693 + // PROT_CTRL(17:16) -- 00 (None)
28694 + // PROT_RATE(15:0) -- 0x4004 (OFDM 24M)
28695 + Protect[2] = 0x01744004;
28698 + // Reserved (31:27)
28699 + // PROT_TXOP(25:20) -- 111111
28700 + // PROT_NAV(19:18) -- 01 (Short NAV protection)
28701 + // PROT_CTRL(17:16) -- 00 (None)
28702 + // PROT_RATE(15:0) -- 0x4084 (duplicate OFDM 24M)
28703 + Protect[3] = 0x03f44084;
28706 + // Reserved (31:27)
28707 + // PROT_TXOP(25:20) -- 010111
28708 + // PROT_NAV(19:18) -- 01 (Short NAV protection)
28709 + // PROT_CTRL(17:16) -- 00 (None)
28710 + // PROT_RATE(15:0) -- 0x4004 (OFDM 24M)
28711 + Protect[4] = 0x01744004;
28714 + // Reserved (31:27)
28715 + // PROT_TXOP(25:20) -- 111111
28716 + // PROT_NAV(19:18) -- 01 (Short NAV protection)
28717 + // PROT_CTRL(17:16) -- 00 (None)
28718 + // PROT_RATE(15:0) -- 0x4084 (duplicate OFDM 24M)
28719 + Protect[5] = 0x03f44084;
28723 + // PROT_NAV(19:18) -- 01 (Short NAV protectiion)
28724 + // PROT_CTRL(17:16) -- 01 (RTS/CTS)
28725 + Protect[4] = 0x01754004;
28726 + Protect[5] = 0x03f54084;
28728 + pAd->CommonCfg.IOTestParm.bRTSLongProtOn = FALSE;
28732 + // This is "HT non-member protection mode."
28733 + // If there may be non-HT STAs my BSS
28734 + ProtCfg.word = 0x01744004; // PROT_CTRL(17:16) : 0 (None)
28735 + ProtCfg4.word = 0x03f44084; // duplicaet legacy 24M. BW set 1.
28736 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_BG_PROTECTION_INUSED))
28738 + ProtCfg.word = 0x01740003; //ERP use Protection bit is set, use protection rate at Clause 18..
28739 + ProtCfg4.word = 0x03f40003; // Don't duplicate RTS/CTS in CCK mode. 0x03f40083;
28741 + //Assign Protection method for 20&40 MHz packets
28742 + ProtCfg.field.ProtectCtrl = ASIC_RTS;
28743 + ProtCfg.field.ProtectNav = ASIC_SHORTNAV;
28744 + ProtCfg4.field.ProtectCtrl = ASIC_RTS;
28745 + ProtCfg4.field.ProtectNav = ASIC_SHORTNAV;
28746 + Protect[2] = ProtCfg.word;
28747 + Protect[3] = ProtCfg4.word;
28748 + Protect[4] = ProtCfg.word;
28749 + Protect[5] = ProtCfg4.word;
28750 + pAd->CommonCfg.IOTestParm.bRTSLongProtOn = TRUE;
28754 + // If only HT STAs are in BSS. at least one is 20MHz. Only protect 40MHz packets
28755 + ProtCfg.word = 0x01744004; // PROT_CTRL(17:16) : 0 (None)
28756 + ProtCfg4.word = 0x03f44084; // duplicaet legacy 24M. BW set 1.
28758 + //Assign Protection method for 40MHz packets
28759 + ProtCfg4.field.ProtectCtrl = ASIC_RTS;
28760 + ProtCfg4.field.ProtectNav = ASIC_SHORTNAV;
28761 + Protect[2] = ProtCfg.word;
28762 + Protect[3] = ProtCfg4.word;
28765 + ProtCfg.field.ProtectCtrl = ASIC_RTS;
28766 + ProtCfg.field.ProtectNav = ASIC_SHORTNAV;
28768 + Protect[4] = ProtCfg.word;
28769 + Protect[5] = ProtCfg4.word;
28771 + pAd->CommonCfg.IOTestParm.bRTSLongProtOn = FALSE;
28775 + // HT mixed mode. PROTECT ALL!
28777 + ProtCfg.word = 0x01744004; //duplicaet legacy 24M. BW set 1.
28778 + ProtCfg4.word = 0x03f44084;
28779 + // both 20MHz and 40MHz are protected. Whether use RTS or CTS-to-self depends on the
28780 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_BG_PROTECTION_INUSED))
28782 + ProtCfg.word = 0x01740003; //ERP use Protection bit is set, use protection rate at Clause 18..
28783 + ProtCfg4.word = 0x03f40003; // Don't duplicate RTS/CTS in CCK mode. 0x03f40083
28785 + //Assign Protection method for 20&40 MHz packets
28786 + ProtCfg.field.ProtectCtrl = ASIC_RTS;
28787 + ProtCfg.field.ProtectNav = ASIC_SHORTNAV;
28788 + ProtCfg4.field.ProtectCtrl = ASIC_RTS;
28789 + ProtCfg4.field.ProtectNav = ASIC_SHORTNAV;
28790 + Protect[2] = ProtCfg.word;
28791 + Protect[3] = ProtCfg4.word;
28792 + Protect[4] = ProtCfg.word;
28793 + Protect[5] = ProtCfg4.word;
28794 + pAd->CommonCfg.IOTestParm.bRTSLongProtOn = TRUE;
28798 + Protect[2] = 0x01754004;
28799 + Protect[3] = 0x03f54084;
28800 + Protect[4] = 0x01754004;
28801 + Protect[5] = 0x03f54084;
28802 + pAd->CommonCfg.IOTestParm.bRTSLongProtOn = TRUE;
28806 +#endif // DOT11_N_SUPPORT //
28808 + offset = CCK_PROT_CFG;
28809 + for (i = 0;i < 6;i++)
28811 + if ((SetMask & (1<< i)))
28813 + RTMP_IO_WRITE32(pAd, offset + i*4, Protect[i]);
28821 + ========================================================================
28823 + Routine Description: Write RT30xx RF register through MAC
28833 + ========================================================================
28835 +NTSTATUS RT30xxWriteRFRegister(
28836 + IN PRTMP_ADAPTER pAd,
28840 + RF_CSR_CFG_STRUC rfcsr;
28845 + RTMP_IO_READ32(pAd, RF_CSR_CFG, &rfcsr.word);
28847 + if (!rfcsr.field.RF_CSR_KICK)
28851 + while ((i < RETRY_LIMIT) && (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)));
28853 + if ((i == RETRY_LIMIT) || (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)))
28855 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("Retry count exhausted or device removed!!!\n"));
28856 + return STATUS_UNSUCCESSFUL;
28859 + rfcsr.field.RF_CSR_WR = 1;
28860 + rfcsr.field.RF_CSR_KICK = 1;
28861 + rfcsr.field.TESTCSR_RFACC_REGNUM = RegID;
28862 + rfcsr.field.RF_CSR_DATA = Value;
28864 + RTMP_IO_WRITE32(pAd, RF_CSR_CFG, rfcsr.word);
28866 + return STATUS_SUCCESS;
28871 + ========================================================================
28873 + Routine Description: Read RT30xx RF register through MAC
28883 + ========================================================================
28885 +NTSTATUS RT30xxReadRFRegister(
28886 + IN PRTMP_ADAPTER pAd,
28888 + IN PUCHAR pValue)
28890 + RF_CSR_CFG_STRUC rfcsr;
28893 + for (i=0; i<MAX_BUSY_COUNT; i++)
28895 + RTMP_IO_READ32(pAd, RF_CSR_CFG, &rfcsr.word);
28897 + if (rfcsr.field.RF_CSR_KICK == BUSY)
28902 + rfcsr.field.RF_CSR_WR = 0;
28903 + rfcsr.field.RF_CSR_KICK = 1;
28904 + rfcsr.field.TESTCSR_RFACC_REGNUM = RegID;
28905 + RTMP_IO_WRITE32(pAd, RF_CSR_CFG, rfcsr.word);
28906 + for (k=0; k<MAX_BUSY_COUNT; k++)
28908 + RTMP_IO_READ32(pAd, RF_CSR_CFG, &rfcsr.word);
28910 + if (rfcsr.field.RF_CSR_KICK == IDLE)
28913 + if ((rfcsr.field.RF_CSR_KICK == IDLE) &&
28914 + (rfcsr.field.TESTCSR_RFACC_REGNUM == RegID))
28916 + *pValue = (UCHAR)rfcsr.field.RF_CSR_DATA;
28920 + if (rfcsr.field.RF_CSR_KICK == BUSY)
28922 + DBGPRINT_ERR(("RF read R%d=0x%x fail, i[%d], k[%d]\n", RegID, rfcsr.word,i,k));
28923 + return STATUS_UNSUCCESSFUL;
28926 + return STATUS_SUCCESS;
28928 +#endif // RT30xx //
28931 +// add by johnli, RF power sequence setup
28933 + ==========================================================================
28936 + Load RF normal operation-mode setup
28938 + ==========================================================================
28940 +VOID RT30xxLoadRFNormalModeSetup(
28941 + IN PRTMP_ADAPTER pAd)
28945 + // RX0_PD & TX0_PD, RF R1 register Bit 2 & Bit 3 to 0 and RF_BLOCK_en,RX1_PD & TX1_PD, Bit0, Bit 4 & Bit5 to 1
28946 + RT30xxReadRFRegister(pAd, RF_R01, &RFValue);
28947 + RFValue = (RFValue & (~0x0C)) | 0x31;
28948 + RT30xxWriteRFRegister(pAd, RF_R01, RFValue);
28950 + // TX_LO2_en, RF R15 register Bit 3 to 0
28951 + RT30xxReadRFRegister(pAd, RF_R15, &RFValue);
28952 + RFValue &= (~0x08);
28953 + RT30xxWriteRFRegister(pAd, RF_R15, RFValue);
28955 + // TX_LO1_en, RF R17 register Bit 3 to 0
28956 + RT30xxReadRFRegister(pAd, RF_R17, &RFValue);
28957 + RFValue &= (~0x08);
28958 + // to fix rx long range issue
28959 + if (((pAd->MACVersion & 0xffff) >= 0x0211) && (pAd->NicConfig2.field.ExternalLNAForG == 0))
28963 + RT30xxWriteRFRegister(pAd, RF_R17, RFValue);
28965 + // RX_LO1_en, RF R20 register Bit 3 to 0
28966 + RT30xxReadRFRegister(pAd, RF_R20, &RFValue);
28967 + RFValue &= (~0x08);
28968 + RT30xxWriteRFRegister(pAd, RF_R20, RFValue);
28970 + // RX_LO2_en, RF R21 register Bit 3 to 0
28971 + RT30xxReadRFRegister(pAd, RF_R21, &RFValue);
28972 + RFValue &= (~0x08);
28973 + RT30xxWriteRFRegister(pAd, RF_R21, RFValue);
28975 + // LDORF_VC, RF R27 register Bit 2 to 0
28976 + RT30xxReadRFRegister(pAd, RF_R27, &RFValue);
28977 + if ((pAd->MACVersion & 0xffff) < 0x0211)
28978 + RFValue = (RFValue & (~0x77)) | 0x3;
28980 + RFValue = (RFValue & (~0x77));
28981 + RT30xxWriteRFRegister(pAd, RF_R27, RFValue);
28986 + ==========================================================================
28989 + Load RF sleep-mode setup
28991 + ==========================================================================
28993 +VOID RT30xxLoadRFSleepModeSetup(
28994 + IN PRTMP_ADAPTER pAd)
28999 + // RF_BLOCK_en. RF R1 register Bit 0 to 0
29000 + RT30xxReadRFRegister(pAd, RF_R01, &RFValue);
29001 + RFValue &= (~0x01);
29002 + RT30xxWriteRFRegister(pAd, RF_R01, RFValue);
29004 + // VCO_IC, RF R7 register Bit 4 & Bit 5 to 0
29005 + RT30xxReadRFRegister(pAd, RF_R07, &RFValue);
29006 + RFValue &= (~0x30);
29007 + RT30xxWriteRFRegister(pAd, RF_R07, RFValue);
29009 + // Idoh, RF R9 register Bit 1, Bit 2 & Bit 3 to 0
29010 + RT30xxReadRFRegister(pAd, RF_R09, &RFValue);
29011 + RFValue &= (~0x0E);
29012 + RT30xxWriteRFRegister(pAd, RF_R09, RFValue);
29014 + // RX_CTB_en, RF R21 register Bit 7 to 0
29015 + RT30xxReadRFRegister(pAd, RF_R21, &RFValue);
29016 + RFValue &= (~0x80);
29017 + RT30xxWriteRFRegister(pAd, RF_R21, RFValue);
29019 + // LDORF_VC, RF R27 register Bit 0, Bit 1 & Bit 2 to 1
29020 + RT30xxReadRFRegister(pAd, RF_R27, &RFValue);
29022 + RT30xxWriteRFRegister(pAd, RF_R27, RFValue);
29024 + RTMP_IO_READ32(pAd, LDO_CFG0, &MACValue);
29025 + MACValue |= 0x1D000000;
29026 + RTMP_IO_WRITE32(pAd, LDO_CFG0, MACValue);
29030 + ==========================================================================
29033 + Reverse RF sleep-mode setup
29035 + ==========================================================================
29037 +VOID RT30xxReverseRFSleepModeSetup(
29038 + IN PRTMP_ADAPTER pAd)
29043 + // RF_BLOCK_en, RF R1 register Bit 0 to 1
29044 + RT30xxReadRFRegister(pAd, RF_R01, &RFValue);
29046 + RT30xxWriteRFRegister(pAd, RF_R01, RFValue);
29048 + // VCO_IC, RF R7 register Bit 4 & Bit 5 to 1
29049 + RT30xxReadRFRegister(pAd, RF_R07, &RFValue);
29051 + RT30xxWriteRFRegister(pAd, RF_R07, RFValue);
29053 + // Idoh, RF R9 register Bit 1, Bit 2 & Bit 3 to 1
29054 + RT30xxReadRFRegister(pAd, RF_R09, &RFValue);
29056 + RT30xxWriteRFRegister(pAd, RF_R09, RFValue);
29058 + // RX_CTB_en, RF R21 register Bit 7 to 1
29059 + RT30xxReadRFRegister(pAd, RF_R21, &RFValue);
29061 + RT30xxWriteRFRegister(pAd, RF_R21, RFValue);
29063 + // LDORF_VC, RF R27 register Bit 2 to 0
29064 + RT30xxReadRFRegister(pAd, RF_R27, &RFValue);
29065 + if ((pAd->MACVersion & 0xffff) < 0x0211)
29066 + RFValue = (RFValue & (~0x77)) | 0x3;
29068 + RFValue = (RFValue & (~0x77));
29069 + RT30xxWriteRFRegister(pAd, RF_R27, RFValue);
29071 + // RT3071 version E has fixed this issue
29072 + if ((pAd->NicConfig2.field.DACTestBit == 1) && ((pAd->MACVersion & 0xffff) < 0x0211))
29074 + // patch tx EVM issue temporarily
29075 + RTMP_IO_READ32(pAd, LDO_CFG0, &MACValue);
29076 + MACValue = ((MACValue & 0xE0FFFFFF) | 0x0D000000);
29077 + RTMP_IO_WRITE32(pAd, LDO_CFG0, MACValue);
29081 + RTMP_IO_READ32(pAd, LDO_CFG0, &MACValue);
29082 + MACValue = ((MACValue & 0xE0FFFFFF) | 0x01000000);
29083 + RTMP_IO_WRITE32(pAd, LDO_CFG0, MACValue);
29087 +#endif // RT30xx //
29090 + ==========================================================================
29093 + IRQL = PASSIVE_LEVEL
29094 + IRQL = DISPATCH_LEVEL
29096 + ==========================================================================
29098 +VOID AsicSwitchChannel(
29099 + IN PRTMP_ADAPTER pAd,
29100 + IN UCHAR Channel,
29101 + IN BOOLEAN bScan)
29103 + ULONG R2 = 0, R3 = DEFAULT_RF_TX_POWER, R4 = 0;
29104 + CHAR TxPwer = 0, TxPwer2 = DEFAULT_RF_TX_POWER; //Bbp94 = BBPR94_DEFAULT, TxPwer2 = DEFAULT_RF_TX_POWER;
29106 + UINT32 Value = 0; //BbpReg, Value;
29107 + RTMP_RF_REGS *RFRegTable;
29109 + // Search Tx power value
29111 + // We can't use ChannelList to search channel, since some central channl's txpowr doesn't list
29112 + // in ChannelList, so use TxPower array instead.
29114 + for (index = 0; index < MAX_NUM_OF_CHANNELS; index++)
29116 + if (Channel == pAd->TxPower[index].Channel)
29118 + TxPwer = pAd->TxPower[index].Power;
29119 + TxPwer2 = pAd->TxPower[index].Power2;
29124 + for (index = 0; index < pAd->ChannelListNum; index++)
29126 + if (Channel == pAd->ChannelList[index].Channel)
29128 + TxPwer = pAd->ChannelList[index].Power;
29129 + TxPwer2 = pAd->ChannelList[index].Power2;
29135 + if (index == MAX_NUM_OF_CHANNELS)
29137 + DBGPRINT(RT_DEBUG_ERROR, ("AsicSwitchChannel: Can't find the Channel#%d \n", Channel));
29141 + // The RF programming sequence is difference between 3xxx and 2xxx
29142 + if ((IS_RT3070(pAd) || IS_RT3090(pAd)) && ((pAd->RfIcType == RFIC_3020) || (pAd->RfIcType == RFIC_2020) ||
29143 + (pAd->RfIcType == RFIC_3021) || (pAd->RfIcType == RFIC_3022)))
29145 + /* modify by WY for Read RF Reg. error */
29148 + for (index = 0; index < NUM_OF_3020_CHNL; index++)
29150 + if (Channel == FreqItems3020[index].Channel)
29152 + // Programming channel parameters
29153 + RT30xxWriteRFRegister(pAd, RF_R02, FreqItems3020[index].N);
29154 + RT30xxWriteRFRegister(pAd, RF_R03, FreqItems3020[index].K);
29155 + RT30xxReadRFRegister(pAd, RF_R06, &RFValue);
29156 + RFValue = (RFValue & 0xFC) | FreqItems3020[index].R;
29157 + RT30xxWriteRFRegister(pAd, RF_R06, RFValue);
29160 + RT30xxReadRFRegister(pAd, RF_R12, &RFValue);
29161 + RFValue = (RFValue & 0xE0) | TxPwer;
29162 + RT30xxWriteRFRegister(pAd, RF_R12, RFValue);
29165 + RT30xxReadRFRegister(pAd, RF_R13, &RFValue);
29166 + RFValue = (RFValue & 0xE0) | TxPwer2;
29167 + RT30xxWriteRFRegister(pAd, RF_R13, RFValue);
29169 + // Tx/Rx Stream setting
29170 + RT30xxReadRFRegister(pAd, RF_R01, &RFValue);
29171 + //if (IS_RT3090(pAd))
29172 + // RFValue |= 0x01; // Enable RF block.
29173 + RFValue &= 0x03; //clear bit[7~2]
29174 + if (pAd->Antenna.field.TxPath == 1)
29176 + else if (pAd->Antenna.field.TxPath == 2)
29178 + if (pAd->Antenna.field.RxPath == 1)
29180 + else if (pAd->Antenna.field.RxPath == 2)
29182 + RT30xxWriteRFRegister(pAd, RF_R01, RFValue);
29185 + RT30xxReadRFRegister(pAd, RF_R23, &RFValue);
29186 + RFValue = (RFValue & 0x80) | pAd->RfFreqOffset;
29187 + RT30xxWriteRFRegister(pAd, RF_R23, RFValue);
29190 + if (!bScan && (pAd->CommonCfg.BBPCurrentBW == BW_40))
29192 + RFValue = pAd->Mlme.CaliBW40RfR24;
29193 + //DISABLE_11N_CHECK(pAd);
29197 + RFValue = pAd->Mlme.CaliBW20RfR24;
29199 + RT30xxWriteRFRegister(pAd, RF_R24, RFValue);
29200 + RT30xxWriteRFRegister(pAd, RF_R31, RFValue);
29202 + // Enable RF tuning
29203 + RT30xxReadRFRegister(pAd, RF_R07, &RFValue);
29204 + RFValue = RFValue | 0x1;
29205 + RT30xxWriteRFRegister(pAd, RF_R07, RFValue);
29207 + // latch channel for future usage.
29208 + pAd->LatchRfRegs.Channel = Channel;
29210 + DBGPRINT(RT_DEBUG_TRACE, ("SwitchChannel#%d(RF=%d, Pwr0=%d, Pwr1=%d, %dT), N=0x%02X, K=0x%02X, R=0x%02X\n",
29215 + pAd->Antenna.field.TxPath,
29216 + FreqItems3020[index].N,
29217 + FreqItems3020[index].K,
29218 + FreqItems3020[index].R));
29225 +#endif // RT30xx //
29228 + RFRegTable = RF2850RegTable;
29230 + switch (pAd->RfIcType)
29237 + for (index = 0; index < NUM_OF_2850_CHNL; index++)
29239 + if (Channel == RFRegTable[index].Channel)
29241 + R2 = RFRegTable[index].R2;
29242 + if (pAd->Antenna.field.TxPath == 1)
29244 + R2 |= 0x4000; // If TXpath is 1, bit 14 = 1;
29247 + if (pAd->Antenna.field.RxPath == 2)
29249 + R2 |= 0x40; // write 1 to off Rxpath.
29251 + else if (pAd->Antenna.field.RxPath == 1)
29253 + R2 |= 0x20040; // write 1 to off RxPath
29256 + if (Channel > 14)
29258 + // initialize R3, R4
29259 + R3 = (RFRegTable[index].R3 & 0xffffc1ff);
29260 + R4 = (RFRegTable[index].R4 & (~0x001f87c0)) | (pAd->RfFreqOffset << 15);
29262 + // 5G band power range: 0xF9~0X0F, TX0 Reg3 bit9/TX1 Reg4 bit6="0" means the TX power reduce 7dB
29264 + if ((TxPwer >= -7) && (TxPwer < 0))
29266 + TxPwer = (7+TxPwer);
29267 + TxPwer = (TxPwer > 0xF) ? (0xF) : (TxPwer);
29268 + R3 |= (TxPwer << 10);
29269 + DBGPRINT(RT_DEBUG_ERROR, ("AsicSwitchChannel: TxPwer=%d \n", TxPwer));
29273 + TxPwer = (TxPwer > 0xF) ? (0xF) : (TxPwer);
29274 + R3 |= (TxPwer << 10) | (1 << 9);
29278 + if ((TxPwer2 >= -7) && (TxPwer2 < 0))
29280 + TxPwer2 = (7+TxPwer2);
29281 + TxPwer2 = (TxPwer2 > 0xF) ? (0xF) : (TxPwer2);
29282 + R4 |= (TxPwer2 << 7);
29283 + DBGPRINT(RT_DEBUG_ERROR, ("AsicSwitchChannel: TxPwer2=%d \n", TxPwer2));
29287 + TxPwer2 = (TxPwer2 > 0xF) ? (0xF) : (TxPwer2);
29288 + R4 |= (TxPwer2 << 7) | (1 << 6);
29293 + R3 = (RFRegTable[index].R3 & 0xffffc1ff) | (TxPwer << 9); // set TX power0
29294 + R4 = (RFRegTable[index].R4 & (~0x001f87c0)) | (pAd->RfFreqOffset << 15) | (TxPwer2 <<6);// Set freq Offset & TxPwr1
29297 + // Based on BBP current mode before changing RF channel.
29298 + if (!bScan && (pAd->CommonCfg.BBPCurrentBW == BW_40))
29303 + // Update variables
29304 + pAd->LatchRfRegs.Channel = Channel;
29305 + pAd->LatchRfRegs.R1 = RFRegTable[index].R1;
29306 + pAd->LatchRfRegs.R2 = R2;
29307 + pAd->LatchRfRegs.R3 = R3;
29308 + pAd->LatchRfRegs.R4 = R4;
29310 + // Set RF value 1's set R3[bit2] = [0]
29311 + RTMP_RF_IO_WRITE32(pAd, pAd->LatchRfRegs.R1);
29312 + RTMP_RF_IO_WRITE32(pAd, pAd->LatchRfRegs.R2);
29313 + RTMP_RF_IO_WRITE32(pAd, (pAd->LatchRfRegs.R3 & (~0x04)));
29314 + RTMP_RF_IO_WRITE32(pAd, pAd->LatchRfRegs.R4);
29316 + RTMPusecDelay(200);
29318 + // Set RF value 2's set R3[bit2] = [1]
29319 + RTMP_RF_IO_WRITE32(pAd, pAd->LatchRfRegs.R1);
29320 + RTMP_RF_IO_WRITE32(pAd, pAd->LatchRfRegs.R2);
29321 + RTMP_RF_IO_WRITE32(pAd, (pAd->LatchRfRegs.R3 | 0x04));
29322 + RTMP_RF_IO_WRITE32(pAd, pAd->LatchRfRegs.R4);
29324 + RTMPusecDelay(200);
29326 + // Set RF value 3's set R3[bit2] = [0]
29327 + RTMP_RF_IO_WRITE32(pAd, pAd->LatchRfRegs.R1);
29328 + RTMP_RF_IO_WRITE32(pAd, pAd->LatchRfRegs.R2);
29329 + RTMP_RF_IO_WRITE32(pAd, (pAd->LatchRfRegs.R3 & (~0x04)));
29330 + RTMP_RF_IO_WRITE32(pAd, pAd->LatchRfRegs.R4);
29342 + // Change BBP setting during siwtch from a->g, g->a
29343 + if (Channel <= 14)
29345 + ULONG TxPinCfg = 0x00050F0A;//Gary 2007/08/09 0x050A0A
29347 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R62, (0x37 - GET_LNA_GAIN(pAd)));
29348 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R63, (0x37 - GET_LNA_GAIN(pAd)));
29349 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R64, (0x37 - GET_LNA_GAIN(pAd)));
29350 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R86, 0);//(0x44 - GET_LNA_GAIN(pAd))); // According the Rory's suggestion to solve the middle range issue.
29351 + //RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R82, 0x62);
29353 + // Rx High power VGA offset for LNA select
29354 + if (pAd->NicConfig2.field.ExternalLNAForG)
29356 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R82, 0x62);
29357 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R75, 0x46);
29361 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R82, 0x84);
29362 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R75, 0x50);
29365 + // 5G band selection PIN, bit1 and bit2 are complement
29366 + RTMP_IO_READ32(pAd, TX_BAND_CFG, &Value);
29369 + RTMP_IO_WRITE32(pAd, TX_BAND_CFG, Value);
29371 + // Turn off unused PA or LNA when only 1T or 1R
29372 + if (pAd->Antenna.field.TxPath == 1)
29374 + TxPinCfg &= 0xFFFFFFF3;
29376 + if (pAd->Antenna.field.RxPath == 1)
29378 + TxPinCfg &= 0xFFFFF3FF;
29381 + RTMP_IO_WRITE32(pAd, TX_PIN_CFG, TxPinCfg);
29385 + ULONG TxPinCfg = 0x00050F05;//Gary 2007/8/9 0x050505
29387 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R62, (0x37 - GET_LNA_GAIN(pAd)));
29388 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R63, (0x37 - GET_LNA_GAIN(pAd)));
29389 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R64, (0x37 - GET_LNA_GAIN(pAd)));
29390 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R86, 0);//(0x44 - GET_LNA_GAIN(pAd))); // According the Rory's suggestion to solve the middle range issue.
29391 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R82, 0xF2);
29393 + // Rx High power VGA offset for LNA select
29394 + if (pAd->NicConfig2.field.ExternalLNAForA)
29396 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R75, 0x46);
29400 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R75, 0x50);
29403 + // 5G band selection PIN, bit1 and bit2 are complement
29404 + RTMP_IO_READ32(pAd, TX_BAND_CFG, &Value);
29407 + RTMP_IO_WRITE32(pAd, TX_BAND_CFG, Value);
29409 + // Turn off unused PA or LNA when only 1T or 1R
29410 + if (pAd->Antenna.field.TxPath == 1)
29412 + TxPinCfg &= 0xFFFFFFF3;
29414 + if (pAd->Antenna.field.RxPath == 1)
29416 + TxPinCfg &= 0xFFFFF3FF;
29419 + RTMP_IO_WRITE32(pAd, TX_PIN_CFG, TxPinCfg);
29422 + // R66 should be set according to Channel and use 20MHz when scanning
29423 + //RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, (0x2E + GET_LNA_GAIN(pAd)));
29425 + RTMPSetAGCInitValue(pAd, BW_20);
29427 + RTMPSetAGCInitValue(pAd, pAd->CommonCfg.BBPCurrentBW);
29430 + // On 11A, We should delay and wait RF/BBP to be stable
29431 + // and the appropriate time should be 1000 micro seconds
29432 + // 2005/06/05 - On 11G, We also need this delay time. Otherwise it's difficult to pass the WHQL.
29434 + RTMPusecDelay(1000);
29436 + DBGPRINT(RT_DEBUG_TRACE, ("SwitchChannel#%d(RF=%d, Pwr0=%lu, Pwr1=%lu, %dT) to , R1=0x%08lx, R2=0x%08lx, R3=0x%08lx, R4=0x%08lx\n",
29439 + (R3 & 0x00003e00) >> 9,
29440 + (R4 & 0x000007c0) >> 6,
29441 + pAd->Antenna.field.TxPath,
29442 + pAd->LatchRfRegs.R1,
29443 + pAd->LatchRfRegs.R2,
29444 + pAd->LatchRfRegs.R3,
29445 + pAd->LatchRfRegs.R4));
29449 + ==========================================================================
29451 + This function is required for 2421 only, and should not be used during
29452 + site survey. It's only required after NIC decided to stay at a channel
29453 + for a longer period.
29454 + When this function is called, it's always after AsicSwitchChannel().
29456 + IRQL = PASSIVE_LEVEL
29457 + IRQL = DISPATCH_LEVEL
29459 + ==========================================================================
29461 +VOID AsicLockChannel(
29462 + IN PRTMP_ADAPTER pAd,
29463 + IN UCHAR Channel)
29468 + ==========================================================================
29471 + IRQL = PASSIVE_LEVEL
29472 + IRQL = DISPATCH_LEVEL
29474 + ==========================================================================
29476 +VOID AsicAntennaSelect(
29477 + IN PRTMP_ADAPTER pAd,
29478 + IN UCHAR Channel)
29480 + if (pAd->Mlme.OneSecPeriodicRound % 2 == 1)
29482 + // patch for AsicSetRxAnt failed
29483 + pAd->RxAnt.EvaluatePeriod = 0;
29485 + // check every 2 second. If rcv-beacon less than 5 in the past 2 second, then AvgRSSI is no longer a
29486 + // valid indication of the distance between this AP and its clients.
29487 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED))
29489 + SHORT realavgrssi1;
29491 + // if no traffic then reset average rssi to trigger evaluation
29492 +#ifdef CONFIG_STA_SUPPORT
29493 + if (pAd->StaCfg.NumOfAvgRssiSample < 5)
29495 + pAd->RxAnt.Pair1LastAvgRssi = (-99);
29496 + pAd->RxAnt.Pair2LastAvgRssi = (-99);
29497 + DBGPRINT(RT_DEBUG_TRACE, ("MlmePeriodicExec: no traffic/beacon, reset RSSI\n"));
29500 + pAd->StaCfg.NumOfAvgRssiSample = 0;
29501 +#endif // CONFIG_STA_SUPPORT //
29502 + realavgrssi1 = (pAd->RxAnt.Pair1AvgRssi[pAd->RxAnt.Pair1PrimaryRxAnt] >> 3);
29504 + DBGPRINT(RT_DEBUG_TRACE,("Ant-realrssi0(%d), Lastrssi0(%d), EvaluateStableCnt=%d\n", realavgrssi1, pAd->RxAnt.Pair1LastAvgRssi, pAd->RxAnt.EvaluateStableCnt));
29506 + // if the difference between two rssi is larger or less than 5, then evaluate the other antenna
29507 + if ((pAd->RxAnt.EvaluateStableCnt < 2) || (realavgrssi1 > (pAd->RxAnt.Pair1LastAvgRssi + 5)) || (realavgrssi1 < (pAd->RxAnt.Pair1LastAvgRssi - 5)))
29509 + pAd->RxAnt.Pair1LastAvgRssi = realavgrssi1;
29510 + AsicEvaluateRxAnt(pAd);
29515 + // if not connected, always switch antenna to try to connect
29518 + temp = pAd->RxAnt.Pair1PrimaryRxAnt;
29519 + pAd->RxAnt.Pair1PrimaryRxAnt = pAd->RxAnt.Pair1SecondaryRxAnt;
29520 + pAd->RxAnt.Pair1SecondaryRxAnt = temp;
29522 + DBGPRINT(RT_DEBUG_TRACE, ("MlmePeriodicExec: no connect, switch to another one to try connection\n"));
29524 + AsicSetRxAnt(pAd, pAd->RxAnt.Pair1PrimaryRxAnt);
29530 + ========================================================================
29532 + Routine Description:
29533 + Antenna miscellaneous setting.
29536 + pAd Pointer to our adapter
29537 + BandState Indicate current Band State.
29542 + IRQL <= DISPATCH_LEVEL
29545 + 1.) Frame End type control
29546 + only valid for G only (RF_2527 & RF_2529)
29547 + 0: means DPDT, set BBP R4 bit 5 to 1
29548 + 1: means SPDT, set BBP R4 bit 5 to 0
29551 + ========================================================================
29553 +VOID AsicAntennaSetting(
29554 + IN PRTMP_ADAPTER pAd,
29555 + IN ABGBAND_STATE BandState)
29559 +VOID AsicRfTuningExec(
29560 + IN PVOID SystemSpecific1,
29561 + IN PVOID FunctionContext,
29562 + IN PVOID SystemSpecific2,
29563 + IN PVOID SystemSpecific3)
29568 + ==========================================================================
29570 + Gives CCK TX rate 2 more dB TX power.
29571 + This routine works only in LINK UP in INFRASTRUCTURE mode.
29573 + calculate desired Tx power in RF R3.Tx0~5, should consider -
29574 + 0. if current radio is a noisy environment (pAd->DrsCounters.fNoisyEnvironment)
29575 + 1. TxPowerPercentage
29576 + 2. auto calibration based on TSSI feedback
29577 + 3. extra 2 db for CCK
29578 + 4. -10 db upon very-short distance (AvgRSSI >= -40db) to AP
29580 + NOTE: Since this routine requires the value of (pAd->DrsCounters.fNoisyEnvironment),
29581 + it should be called AFTER MlmeDynamicTxRatSwitching()
29582 + ==========================================================================
29584 +VOID AsicAdjustTxPower(
29585 + IN PRTMP_ADAPTER pAd)
29588 + CHAR DeltaPwr = 0;
29589 + BOOLEAN bAutoTxAgc = FALSE;
29590 + UCHAR TssiRef, *pTssiMinusBoundary, *pTssiPlusBoundary, TxAgcStep;
29591 + UCHAR BbpR1 = 0, BbpR49 = 0, idx;
29592 + PCHAR pTxAgcCompensate;
29598 + if (pAd->CommonCfg.BBPCurrentBW == BW_40)
29600 + if (pAd->CommonCfg.CentralChannel > 14)
29602 + TxPwr[0] = pAd->Tx40MPwrCfgABand[0];
29603 + TxPwr[1] = pAd->Tx40MPwrCfgABand[1];
29604 + TxPwr[2] = pAd->Tx40MPwrCfgABand[2];
29605 + TxPwr[3] = pAd->Tx40MPwrCfgABand[3];
29606 + TxPwr[4] = pAd->Tx40MPwrCfgABand[4];
29610 + TxPwr[0] = pAd->Tx40MPwrCfgGBand[0];
29611 + TxPwr[1] = pAd->Tx40MPwrCfgGBand[1];
29612 + TxPwr[2] = pAd->Tx40MPwrCfgGBand[2];
29613 + TxPwr[3] = pAd->Tx40MPwrCfgGBand[3];
29614 + TxPwr[4] = pAd->Tx40MPwrCfgGBand[4];
29619 + if (pAd->CommonCfg.Channel > 14)
29621 + TxPwr[0] = pAd->Tx20MPwrCfgABand[0];
29622 + TxPwr[1] = pAd->Tx20MPwrCfgABand[1];
29623 + TxPwr[2] = pAd->Tx20MPwrCfgABand[2];
29624 + TxPwr[3] = pAd->Tx20MPwrCfgABand[3];
29625 + TxPwr[4] = pAd->Tx20MPwrCfgABand[4];
29629 + TxPwr[0] = pAd->Tx20MPwrCfgGBand[0];
29630 + TxPwr[1] = pAd->Tx20MPwrCfgGBand[1];
29631 + TxPwr[2] = pAd->Tx20MPwrCfgGBand[2];
29632 + TxPwr[3] = pAd->Tx20MPwrCfgGBand[3];
29633 + TxPwr[4] = pAd->Tx20MPwrCfgGBand[4];
29637 + // TX power compensation for temperature variation based on TSSI. try every 4 second
29638 + if (pAd->Mlme.OneSecPeriodicRound % 4 == 0)
29640 + if (pAd->CommonCfg.Channel <= 14)
29643 + bAutoTxAgc = pAd->bAutoTxAgcG;
29644 + TssiRef = pAd->TssiRefG;
29645 + pTssiMinusBoundary = &pAd->TssiMinusBoundaryG[0];
29646 + pTssiPlusBoundary = &pAd->TssiPlusBoundaryG[0];
29647 + TxAgcStep = pAd->TxAgcStepG;
29648 + pTxAgcCompensate = &pAd->TxAgcCompensateG;
29653 + bAutoTxAgc = pAd->bAutoTxAgcA;
29654 + TssiRef = pAd->TssiRefA;
29655 + pTssiMinusBoundary = &pAd->TssiMinusBoundaryA[0];
29656 + pTssiPlusBoundary = &pAd->TssiPlusBoundaryA[0];
29657 + TxAgcStep = pAd->TxAgcStepA;
29658 + pTxAgcCompensate = &pAd->TxAgcCompensateA;
29663 + /* BbpR1 is unsigned char */
29664 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R49, &BbpR49);
29666 + /* (p) TssiPlusBoundaryG[0] = 0 = (m) TssiMinusBoundaryG[0] */
29667 + /* compensate: +4 +3 +2 +1 0 -1 -2 -3 -4 * steps */
29668 + /* step value is defined in pAd->TxAgcStepG for tx power value */
29670 + /* [4]+1+[4] p4 p3 p2 p1 o1 m1 m2 m3 m4 */
29671 + /* ex: 0x00 0x15 0x25 0x45 0x88 0xA0 0xB5 0xD0 0xF0
29672 + above value are examined in mass factory production */
29673 + /* [4] [3] [2] [1] [0] [1] [2] [3] [4] */
29675 + /* plus (+) is 0x00 ~ 0x45, minus (-) is 0xa0 ~ 0xf0 */
29676 + /* if value is between p1 ~ o1 or o1 ~ s1, no need to adjust tx power */
29677 + /* if value is 0xa5, tx power will be -= TxAgcStep*(2-1) */
29679 + if (BbpR49 > pTssiMinusBoundary[1])
29681 + // Reading is larger than the reference value
29682 + // check for how large we need to decrease the Tx power
29683 + for (idx = 1; idx < 5; idx++)
29685 + if (BbpR49 <= pTssiMinusBoundary[idx]) // Found the range
29688 + // The index is the step we should decrease, idx = 0 means there is nothing to compensate
29689 +// if (R3 > (ULONG) (TxAgcStep * (idx-1)))
29690 + *pTxAgcCompensate = -(TxAgcStep * (idx-1));
29692 +// *pTxAgcCompensate = -((UCHAR)R3);
29694 + DeltaPwr += (*pTxAgcCompensate);
29695 + DBGPRINT(RT_DEBUG_TRACE, ("-- Tx Power, BBP R1=%x, TssiRef=%x, TxAgcStep=%x, step = -%d\n",
29696 + BbpR49, TssiRef, TxAgcStep, idx-1));
29698 + else if (BbpR49 < pTssiPlusBoundary[1])
29700 + // Reading is smaller than the reference value
29701 + // check for how large we need to increase the Tx power
29702 + for (idx = 1; idx < 5; idx++)
29704 + if (BbpR49 >= pTssiPlusBoundary[idx]) // Found the range
29707 + // The index is the step we should increase, idx = 0 means there is nothing to compensate
29708 + *pTxAgcCompensate = TxAgcStep * (idx-1);
29709 + DeltaPwr += (*pTxAgcCompensate);
29710 + DBGPRINT(RT_DEBUG_TRACE, ("++ Tx Power, BBP R1=%x, TssiRef=%x, TxAgcStep=%x, step = +%d\n",
29711 + BbpR49, TssiRef, TxAgcStep, idx-1));
29715 + *pTxAgcCompensate = 0;
29716 + DBGPRINT(RT_DEBUG_TRACE, (" Tx Power, BBP R49=%x, TssiRef=%x, TxAgcStep=%x, step = +%d\n",
29717 + BbpR49, TssiRef, TxAgcStep, 0));
29723 + if (pAd->CommonCfg.Channel <= 14)
29725 + bAutoTxAgc = pAd->bAutoTxAgcG;
29726 + pTxAgcCompensate = &pAd->TxAgcCompensateG;
29730 + bAutoTxAgc = pAd->bAutoTxAgcA;
29731 + pTxAgcCompensate = &pAd->TxAgcCompensateA;
29735 + DeltaPwr += (*pTxAgcCompensate);
29738 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R1, &BbpR1);
29742 + // Handle regulatory max tx power constrain
29745 + UCHAR TxPwrInEEPROM = 0xFF, CountryTxPwr = 0xFF, criterion;
29746 + UCHAR AdjustMaxTxPwr[40];
29748 + if (pAd->CommonCfg.Channel > 14) // 5G band
29749 + TxPwrInEEPROM = ((pAd->CommonCfg.DefineMaxTxPwr & 0xFF00) >> 8);
29750 + else // 2.4G band
29751 + TxPwrInEEPROM = (pAd->CommonCfg.DefineMaxTxPwr & 0x00FF);
29752 + CountryTxPwr = GetCuntryMaxTxPwr(pAd, pAd->CommonCfg.Channel);
29754 + // error handling, range check
29755 + if ((TxPwrInEEPROM > 0x50) || (CountryTxPwr > 0x50))
29757 + DBGPRINT(RT_DEBUG_ERROR,("AsicAdjustTxPower - Invalid max tx power (=0x%02x), CountryTxPwr=%d\n", TxPwrInEEPROM, CountryTxPwr));
29761 + criterion = *((PUCHAR)TxPwr + 2) & 0xF; // FAE use OFDM 6M as criterion
29763 + DBGPRINT_RAW(RT_DEBUG_TRACE,("AsicAdjustTxPower (criterion=%d, TxPwrInEEPROM=%d, CountryTxPwr=%d)\n", criterion, TxPwrInEEPROM, CountryTxPwr));
29765 + // Adjust max tx power according to the relationship of tx power in E2PROM
29766 + for (i=0; i<5; i++)
29768 + // CCK will have 4dBm larger than OFDM
29769 + // Therefore, we should separate to parse the tx power field
29772 + for (j=0; j<8; j++)
29774 + Value = (CHAR)((TxPwr[i] >> j*4) & 0x0F);
29778 + // CCK will have 4dBm larger than OFDM
29779 + AdjustMaxTxPwr[i*8+j] = TxPwrInEEPROM + (Value - criterion) + 4;
29783 + AdjustMaxTxPwr[i*8+j] = TxPwrInEEPROM + (Value - criterion);
29785 + DBGPRINT_RAW(RT_DEBUG_TRACE,("AsicAdjustTxPower (i/j=%d/%d, Value=%d, %d)\n", i, j, Value, AdjustMaxTxPwr[i*8+j]));
29790 + for (j=0; j<8; j++)
29792 + Value = (CHAR)((TxPwr[i] >> j*4) & 0x0F);
29794 + AdjustMaxTxPwr[i*8+j] = TxPwrInEEPROM + (Value - criterion);
29795 + DBGPRINT_RAW(RT_DEBUG_TRACE,("AsicAdjustTxPower (i/j=%d/%d, Value=%d, %d)\n", i, j, Value, AdjustMaxTxPwr[i*8+j]));
29800 + // Adjust tx power according to the relationship
29801 + for (i=0; i<5; i++)
29803 + if (TxPwr[i] != 0xffffffff)
29805 + for (j=0; j<8; j++)
29807 + Value = (CHAR)((TxPwr[i] >> j*4) & 0x0F);
29809 + // The system tx power is larger than the regulatory, the power should be restrain
29810 + if (AdjustMaxTxPwr[i*8+j] > CountryTxPwr)
29812 + // decrease to zero and don't need to take care BBPR1
29813 + if ((Value - (AdjustMaxTxPwr[i*8+j] - CountryTxPwr)) > 0)
29814 + Value -= (AdjustMaxTxPwr[i*8+j] - CountryTxPwr);
29818 + DBGPRINT_RAW(RT_DEBUG_TRACE,("AsicAdjustTxPower (i/j=%d/%d, Value=%d, %d)\n", i, j, Value, AdjustMaxTxPwr[i*8+j]));
29821 + DBGPRINT_RAW(RT_DEBUG_TRACE,("AsicAdjustTxPower (i/j=%d/%d, Value=%d, %d, no change)\n", i, j, Value, AdjustMaxTxPwr[i*8+j]));
29823 + TxPwr[i] = (TxPwr[i] & ~(0x0000000F << j*4)) | (Value << j*4);
29828 +#endif // SINGLE_SKU //
29830 + /* calculate delta power based on the percentage specified from UI */
29831 + // E2PROM setting is calibrated for maximum TX power (i.e. 100%)
29832 + // We lower TX power here according to the percentage specified from UI
29833 + if (pAd->CommonCfg.TxPowerPercentage == 0xffffffff) // AUTO TX POWER control
29835 + else if (pAd->CommonCfg.TxPowerPercentage > 90) // 91 ~ 100% & AUTO, treat as 100% in terms of mW
29837 + else if (pAd->CommonCfg.TxPowerPercentage > 60) // 61 ~ 90%, treat as 75% in terms of mW // DeltaPwr -= 1;
29841 + else if (pAd->CommonCfg.TxPowerPercentage > 30) // 31 ~ 60%, treat as 50% in terms of mW // DeltaPwr -= 3;
29845 + else if (pAd->CommonCfg.TxPowerPercentage > 15) // 16 ~ 30%, treat as 25% in terms of mW // DeltaPwr -= 6;
29849 + else if (pAd->CommonCfg.TxPowerPercentage > 9) // 10 ~ 15%, treat as 12.5% in terms of mW // DeltaPwr -= 9;
29854 + else // 0 ~ 9 %, treat as MIN(~3%) in terms of mW // DeltaPwr -= 12;
29859 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R1, BbpR1);
29861 + /* reset different new tx power for different TX rate */
29862 + for(i=0; i<5; i++)
29864 + if (TxPwr[i] != 0xffffffff)
29866 + for (j=0; j<8; j++)
29868 + Value = (CHAR)((TxPwr[i] >> j*4) & 0x0F); /* 0 ~ 15 */
29870 + if ((Value + DeltaPwr) < 0)
29872 + Value = 0; /* min */
29874 + else if ((Value + DeltaPwr) > 0xF)
29876 + Value = 0xF; /* max */
29880 + Value += DeltaPwr; /* temperature compensation */
29883 + /* fill new value to CSR offset */
29884 + TxPwr[i] = (TxPwr[i] & ~(0x0000000F << j*4)) | (Value << j*4);
29887 + /* write tx power value to CSR */
29888 + /* TX_PWR_CFG_0 (8 tx rate) for TX power for OFDM 12M/18M
29889 + TX power for OFDM 6M/9M
29890 + TX power for CCK5.5M/11M
29891 + TX power for CCK1M/2M */
29892 + /* TX_PWR_CFG_1 ~ TX_PWR_CFG_4 */
29893 + RTMP_IO_WRITE32(pAd, TX_PWR_CFG_0 + i*4, TxPwr[i]);
29900 +#ifdef CONFIG_STA_SUPPORT
29902 + ==========================================================================
29904 + put PHY to sleep here, and set next wakeup timer. PHY doesn't not wakeup
29905 + automatically. Instead, MCU will issue a TwakeUpInterrupt to host after
29906 + the wakeup timer timeout. Driver has to issue a separate command to wake
29909 + IRQL = DISPATCH_LEVEL
29911 + ==========================================================================
29913 +VOID AsicSleepThenAutoWakeup(
29914 + IN PRTMP_ADAPTER pAd,
29915 + IN USHORT TbttNumToNextWakeUp)
29917 + RT28XX_STA_SLEEP_THEN_AUTO_WAKEUP(pAd, TbttNumToNextWakeUp);
29921 + ==========================================================================
29923 + AsicForceWakeup() is used whenever manual wakeup is required
29924 + AsicForceSleep() should only be used when not in INFRA BSS. When
29925 + in INFRA BSS, we should use AsicSleepThenAutoWakeup() instead.
29926 + ==========================================================================
29928 +VOID AsicForceSleep(
29929 + IN PRTMP_ADAPTER pAd)
29935 + ==========================================================================
29937 + AsicForceWakeup() is used whenever Twakeup timer (set via AsicSleepThenAutoWakeup)
29940 + IRQL = PASSIVE_LEVEL
29941 + IRQL = DISPATCH_LEVEL
29942 + ==========================================================================
29944 +VOID AsicForceWakeup(
29945 + IN PRTMP_ADAPTER pAd,
29946 + IN BOOLEAN bFromTx)
29948 + DBGPRINT(RT_DEBUG_TRACE, ("--> AsicForceWakeup \n"));
29949 + RT28XX_STA_FORCE_WAKEUP(pAd, bFromTx);
29951 +#endif // CONFIG_STA_SUPPORT //
29953 + ==========================================================================
29957 + IRQL = DISPATCH_LEVEL
29959 + ==========================================================================
29961 +VOID AsicSetBssid(
29962 + IN PRTMP_ADAPTER pAd,
29963 + IN PUCHAR pBssid)
29966 + DBGPRINT(RT_DEBUG_TRACE, ("==============> AsicSetBssid %x:%x:%x:%x:%x:%x\n",
29967 + pBssid[0],pBssid[1],pBssid[2],pBssid[3], pBssid[4],pBssid[5]));
29969 + Addr4 = (ULONG)(pBssid[0]) |
29970 + (ULONG)(pBssid[1] << 8) |
29971 + (ULONG)(pBssid[2] << 16) |
29972 + (ULONG)(pBssid[3] << 24);
29973 + RTMP_IO_WRITE32(pAd, MAC_BSSID_DW0, Addr4);
29976 + // always one BSSID in STA mode
29977 + Addr4 = (ULONG)(pBssid[4]) | (ULONG)(pBssid[5] << 8);
29979 + RTMP_IO_WRITE32(pAd, MAC_BSSID_DW1, Addr4);
29982 +VOID AsicSetMcastWC(
29983 + IN PRTMP_ADAPTER pAd)
29985 + MAC_TABLE_ENTRY *pEntry = &pAd->MacTab.Content[MCAST_WCID];
29988 + pEntry->Sst = SST_ASSOC;
29989 + pEntry->Aid = MCAST_WCID; // Softap supports 1 BSSID and use WCID=0 as multicast Wcid index
29990 + pEntry->PsMode = PWR_ACTIVE;
29991 + pEntry->CurrTxRate = pAd->CommonCfg.MlmeRate;
29992 + offset = MAC_WCID_BASE + BSS0Mcast_WCID * HW_WCID_ENTRY_SIZE;
29996 + ==========================================================================
29999 + IRQL = DISPATCH_LEVEL
30001 + ==========================================================================
30003 +VOID AsicDelWcidTab(
30004 + IN PRTMP_ADAPTER pAd,
30007 + ULONG Addr0 = 0x0, Addr1 = 0x0;
30010 + DBGPRINT(RT_DEBUG_TRACE, ("AsicDelWcidTab==>Wcid = 0x%x\n",Wcid));
30011 + offset = MAC_WCID_BASE + Wcid * HW_WCID_ENTRY_SIZE;
30012 + RTMP_IO_WRITE32(pAd, offset, Addr0);
30014 + RTMP_IO_WRITE32(pAd, offset, Addr1);
30018 + ==========================================================================
30021 + IRQL = DISPATCH_LEVEL
30023 + ==========================================================================
30025 +VOID AsicEnableRDG(
30026 + IN PRTMP_ADAPTER pAd)
30028 + TX_LINK_CFG_STRUC TxLinkCfg;
30031 + RTMP_IO_READ32(pAd, TX_LINK_CFG, &TxLinkCfg.word);
30032 + TxLinkCfg.field.TxRDGEn = 1;
30033 + RTMP_IO_WRITE32(pAd, TX_LINK_CFG, TxLinkCfg.word);
30035 + RTMP_IO_READ32(pAd, EDCA_AC0_CFG, &Data);
30036 + Data &= 0xFFFFFF00;
30038 + RTMP_IO_WRITE32(pAd, EDCA_AC0_CFG, Data);
30040 + //OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_AGGREGATION_INUSED);
30044 + ==========================================================================
30047 + IRQL = DISPATCH_LEVEL
30049 + ==========================================================================
30051 +VOID AsicDisableRDG(
30052 + IN PRTMP_ADAPTER pAd)
30054 + TX_LINK_CFG_STRUC TxLinkCfg;
30058 + RTMP_IO_READ32(pAd, TX_LINK_CFG, &TxLinkCfg.word);
30059 + TxLinkCfg.field.TxRDGEn = 0;
30060 + RTMP_IO_WRITE32(pAd, TX_LINK_CFG, TxLinkCfg.word);
30062 + RTMP_IO_READ32(pAd, EDCA_AC0_CFG, &Data);
30064 + Data &= 0xFFFFFF00;
30067 + //if ( pAd->CommonCfg.bEnableTxBurst )
30068 + // Data |= 0x60; // for performance issue not set the TXOP to 0
30070 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_DYNAMIC_BE_TXOP_ACTIVE)
30071 +#ifdef DOT11_N_SUPPORT
30072 + && (pAd->MacTab.fAnyStationMIMOPSDynamic == FALSE)
30073 +#endif // DOT11_N_SUPPORT //
30076 + // For CWC test, change txop from 0x30 to 0x20 in TxBurst mode
30077 + if (pAd->CommonCfg.bEnableTxBurst)
30080 + RTMP_IO_WRITE32(pAd, EDCA_AC0_CFG, Data);
30084 + ==========================================================================
30087 + IRQL = PASSIVE_LEVEL
30088 + IRQL = DISPATCH_LEVEL
30090 + ==========================================================================
30092 +VOID AsicDisableSync(
30093 + IN PRTMP_ADAPTER pAd)
30095 + BCN_TIME_CFG_STRUC csr;
30097 + DBGPRINT(RT_DEBUG_TRACE, ("--->Disable TSF synchronization\n"));
30099 + // 2003-12-20 disable TSF and TBTT while NIC in power-saving have side effect
30100 + // that NIC will never wakes up because TSF stops and no more
30101 + // TBTT interrupts
30102 + pAd->TbttTickCount = 0;
30103 + RTMP_IO_READ32(pAd, BCN_TIME_CFG, &csr.word);
30104 + csr.field.bBeaconGen = 0;
30105 + csr.field.bTBTTEnable = 0;
30106 + csr.field.TsfSyncMode = 0;
30107 + csr.field.bTsfTicking = 0;
30108 + RTMP_IO_WRITE32(pAd, BCN_TIME_CFG, csr.word);
30113 + ==========================================================================
30116 + IRQL = DISPATCH_LEVEL
30118 + ==========================================================================
30120 +VOID AsicEnableBssSync(
30121 + IN PRTMP_ADAPTER pAd)
30123 + BCN_TIME_CFG_STRUC csr;
30125 + DBGPRINT(RT_DEBUG_TRACE, ("--->AsicEnableBssSync(INFRA mode)\n"));
30127 + RTMP_IO_READ32(pAd, BCN_TIME_CFG, &csr.word);
30128 +// RTMP_IO_WRITE32(pAd, BCN_TIME_CFG, 0x00000000);
30129 +#ifdef CONFIG_STA_SUPPORT
30130 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
30132 + csr.field.BeaconInterval = pAd->CommonCfg.BeaconPeriod << 4; // ASIC register in units of 1/16 TU
30133 + csr.field.bTsfTicking = 1;
30134 + csr.field.TsfSyncMode = 1; // sync TSF in INFRASTRUCTURE mode
30135 + csr.field.bBeaconGen = 0; // do NOT generate BEACON
30136 + csr.field.bTBTTEnable = 1;
30138 +#endif // CONFIG_STA_SUPPORT //
30139 + RTMP_IO_WRITE32(pAd, BCN_TIME_CFG, csr.word);
30143 + ==========================================================================
30146 + BEACON frame in shared memory should be built ok before this routine
30147 + can be called. Otherwise, a garbage frame maybe transmitted out every
30150 + IRQL = DISPATCH_LEVEL
30152 + ==========================================================================
30154 +VOID AsicEnableIbssSync(
30155 + IN PRTMP_ADAPTER pAd)
30157 + BCN_TIME_CFG_STRUC csr9;
30161 + DBGPRINT(RT_DEBUG_TRACE, ("--->AsicEnableIbssSync(ADHOC mode. MPDUtotalByteCount = %d)\n", pAd->BeaconTxWI.MPDUtotalByteCount));
30163 + RTMP_IO_READ32(pAd, BCN_TIME_CFG, &csr9.word);
30164 + csr9.field.bBeaconGen = 0;
30165 + csr9.field.bTBTTEnable = 0;
30166 + csr9.field.bTsfTicking = 0;
30167 + RTMP_IO_WRITE32(pAd, BCN_TIME_CFG, csr9.word);
30171 + // move BEACON TXD and frame content to on-chip memory
30172 + ptr = (PUCHAR)&pAd->BeaconTxWI;
30173 + for (i=0; i<TXWI_SIZE; i+=2) // 16-byte TXWI field
30175 + //UINT32 longptr = *ptr + (*(ptr+1)<<8) + (*(ptr+2)<<16) + (*(ptr+3)<<24);
30176 + //RTMP_IO_WRITE32(pAd, HW_BEACON_BASE0 + i, longptr);
30177 + RTUSBMultiWrite(pAd, HW_BEACON_BASE0 + i, ptr, 2);
30181 + // start right after the 16-byte TXWI field
30182 + ptr = pAd->BeaconBuf;
30183 + for (i=0; i< pAd->BeaconTxWI.MPDUtotalByteCount; i+=2)
30185 + //UINT32 longptr = *ptr + (*(ptr+1)<<8) + (*(ptr+2)<<16) + (*(ptr+3)<<24);
30186 + //RTMP_IO_WRITE32(pAd, HW_BEACON_BASE0 + TXWI_SIZE + i, longptr);
30187 + RTUSBMultiWrite(pAd, HW_BEACON_BASE0 + TXWI_SIZE + i, ptr, 2);
30190 +#endif // RT2870 //
30193 + // For Wi-Fi faily generated beacons between participating stations.
30194 + // Set TBTT phase adaptive adjustment step to 8us (default 16us)
30195 + // don't change settings 2006-5- by Jerry
30196 + //RTMP_IO_WRITE32(pAd, TBTT_SYNC_CFG, 0x00001010);
30198 + // start sending BEACON
30199 + csr9.field.BeaconInterval = pAd->CommonCfg.BeaconPeriod << 4; // ASIC register in units of 1/16 TU
30200 + csr9.field.bTsfTicking = 1;
30201 + csr9.field.TsfSyncMode = 2; // sync TSF in IBSS mode
30202 + csr9.field.bTBTTEnable = 1;
30203 + csr9.field.bBeaconGen = 1;
30204 + RTMP_IO_WRITE32(pAd, BCN_TIME_CFG, csr9.word);
30208 + ==========================================================================
30211 + IRQL = PASSIVE_LEVEL
30212 + IRQL = DISPATCH_LEVEL
30214 + ==========================================================================
30216 +VOID AsicSetEdcaParm(
30217 + IN PRTMP_ADAPTER pAd,
30218 + IN PEDCA_PARM pEdcaParm)
30220 + EDCA_AC_CFG_STRUC Ac0Cfg, Ac1Cfg, Ac2Cfg, Ac3Cfg;
30221 + AC_TXOP_CSR0_STRUC csr0;
30222 + AC_TXOP_CSR1_STRUC csr1;
30223 + AIFSN_CSR_STRUC AifsnCsr;
30224 + CWMIN_CSR_STRUC CwminCsr;
30225 + CWMAX_CSR_STRUC CwmaxCsr;
30232 + if ((pEdcaParm == NULL) || (pEdcaParm->bValid == FALSE))
30234 + DBGPRINT(RT_DEBUG_TRACE,("AsicSetEdcaParm\n"));
30235 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_WMM_INUSED);
30236 + for (i=0; i<MAX_LEN_OF_MAC_TABLE; i++)
30238 + if (pAd->MacTab.Content[i].ValidAsCLI || pAd->MacTab.Content[i].ValidAsApCli)
30239 + CLIENT_STATUS_CLEAR_FLAG(&pAd->MacTab.Content[i], fCLIENT_STATUS_WMM_CAPABLE);
30242 + //========================================================
30243 + // MAC Register has a copy .
30244 + //========================================================
30245 +//#ifndef WIFI_TEST
30246 + if( pAd->CommonCfg.bEnableTxBurst )
30248 + // For CWC test, change txop from 0x30 to 0x20 in TxBurst mode
30249 + Ac0Cfg.field.AcTxop = 0x20; // Suggest by John for TxBurst in HT Mode
30252 + Ac0Cfg.field.AcTxop = 0; // QID_AC_BE
30254 +// Ac0Cfg.field.AcTxop = 0; // QID_AC_BE
30256 + Ac0Cfg.field.Cwmin = CW_MIN_IN_BITS;
30257 + Ac0Cfg.field.Cwmax = CW_MAX_IN_BITS;
30258 + Ac0Cfg.field.Aifsn = 2;
30259 + RTMP_IO_WRITE32(pAd, EDCA_AC0_CFG, Ac0Cfg.word);
30261 + Ac1Cfg.field.AcTxop = 0; // QID_AC_BK
30262 + Ac1Cfg.field.Cwmin = CW_MIN_IN_BITS;
30263 + Ac1Cfg.field.Cwmax = CW_MAX_IN_BITS;
30264 + Ac1Cfg.field.Aifsn = 2;
30265 + RTMP_IO_WRITE32(pAd, EDCA_AC1_CFG, Ac1Cfg.word);
30267 + if (pAd->CommonCfg.PhyMode == PHY_11B)
30269 + Ac2Cfg.field.AcTxop = 192; // AC_VI: 192*32us ~= 6ms
30270 + Ac3Cfg.field.AcTxop = 96; // AC_VO: 96*32us ~= 3ms
30274 + Ac2Cfg.field.AcTxop = 96; // AC_VI: 96*32us ~= 3ms
30275 + Ac3Cfg.field.AcTxop = 48; // AC_VO: 48*32us ~= 1.5ms
30277 + Ac2Cfg.field.Cwmin = CW_MIN_IN_BITS;
30278 + Ac2Cfg.field.Cwmax = CW_MAX_IN_BITS;
30279 + Ac2Cfg.field.Aifsn = 2;
30280 + RTMP_IO_WRITE32(pAd, EDCA_AC2_CFG, Ac2Cfg.word);
30281 + Ac3Cfg.field.Cwmin = CW_MIN_IN_BITS;
30282 + Ac3Cfg.field.Cwmax = CW_MAX_IN_BITS;
30283 + Ac3Cfg.field.Aifsn = 2;
30284 + RTMP_IO_WRITE32(pAd, EDCA_AC3_CFG, Ac3Cfg.word);
30286 + //========================================================
30287 + // DMA Register has a copy too.
30288 + //========================================================
30289 + csr0.field.Ac0Txop = 0; // QID_AC_BE
30290 + csr0.field.Ac1Txop = 0; // QID_AC_BK
30291 + RTMP_IO_WRITE32(pAd, WMM_TXOP0_CFG, csr0.word);
30292 + if (pAd->CommonCfg.PhyMode == PHY_11B)
30294 + csr1.field.Ac2Txop = 192; // AC_VI: 192*32us ~= 6ms
30295 + csr1.field.Ac3Txop = 96; // AC_VO: 96*32us ~= 3ms
30299 + csr1.field.Ac2Txop = 96; // AC_VI: 96*32us ~= 3ms
30300 + csr1.field.Ac3Txop = 48; // AC_VO: 48*32us ~= 1.5ms
30302 + RTMP_IO_WRITE32(pAd, WMM_TXOP1_CFG, csr1.word);
30304 + CwminCsr.word = 0;
30305 + CwminCsr.field.Cwmin0 = CW_MIN_IN_BITS;
30306 + CwminCsr.field.Cwmin1 = CW_MIN_IN_BITS;
30307 + CwminCsr.field.Cwmin2 = CW_MIN_IN_BITS;
30308 + CwminCsr.field.Cwmin3 = CW_MIN_IN_BITS;
30309 + RTMP_IO_WRITE32(pAd, WMM_CWMIN_CFG, CwminCsr.word);
30311 + CwmaxCsr.word = 0;
30312 + CwmaxCsr.field.Cwmax0 = CW_MAX_IN_BITS;
30313 + CwmaxCsr.field.Cwmax1 = CW_MAX_IN_BITS;
30314 + CwmaxCsr.field.Cwmax2 = CW_MAX_IN_BITS;
30315 + CwmaxCsr.field.Cwmax3 = CW_MAX_IN_BITS;
30316 + RTMP_IO_WRITE32(pAd, WMM_CWMAX_CFG, CwmaxCsr.word);
30318 + RTMP_IO_WRITE32(pAd, WMM_AIFSN_CFG, 0x00002222);
30320 + NdisZeroMemory(&pAd->CommonCfg.APEdcaParm, sizeof(EDCA_PARM));
30324 + OPSTATUS_SET_FLAG(pAd, fOP_STATUS_WMM_INUSED);
30325 + //========================================================
30326 + // MAC Register has a copy.
30327 + //========================================================
30329 + // Modify Cwmin/Cwmax/Txop on queue[QID_AC_VI], Recommend by Jerry 2005/07/27
30330 + // To degrade our VIDO Queue's throughput for WiFi WMM S3T07 Issue.
30332 + //pEdcaParm->Txop[QID_AC_VI] = pEdcaParm->Txop[QID_AC_VI] * 7 / 10; // rt2860c need this
30334 + Ac0Cfg.field.AcTxop = pEdcaParm->Txop[QID_AC_BE];
30335 + Ac0Cfg.field.Cwmin= pEdcaParm->Cwmin[QID_AC_BE];
30336 + Ac0Cfg.field.Cwmax = pEdcaParm->Cwmax[QID_AC_BE];
30337 + Ac0Cfg.field.Aifsn = pEdcaParm->Aifsn[QID_AC_BE]; //+1;
30339 + Ac1Cfg.field.AcTxop = pEdcaParm->Txop[QID_AC_BK];
30340 + Ac1Cfg.field.Cwmin = pEdcaParm->Cwmin[QID_AC_BK]; //+2;
30341 + Ac1Cfg.field.Cwmax = pEdcaParm->Cwmax[QID_AC_BK];
30342 + Ac1Cfg.field.Aifsn = pEdcaParm->Aifsn[QID_AC_BK]; //+1;
30344 + Ac2Cfg.field.AcTxop = (pEdcaParm->Txop[QID_AC_VI] * 6) / 10;
30345 + Ac2Cfg.field.Cwmin = pEdcaParm->Cwmin[QID_AC_VI];
30346 + Ac2Cfg.field.Cwmax = pEdcaParm->Cwmax[QID_AC_VI];
30347 + Ac2Cfg.field.Aifsn = pEdcaParm->Aifsn[QID_AC_VI];
30348 +#ifdef INF_AMAZON_SE
30349 +#endif // INF_AMAZON_SE //
30352 +#ifdef CONFIG_STA_SUPPORT
30353 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
30355 + // Tuning for Wi-Fi WMM S06
30356 + if (pAd->CommonCfg.bWiFiTest &&
30357 + pEdcaParm->Aifsn[QID_AC_VI] == 10)
30358 + Ac2Cfg.field.Aifsn -= 1;
30360 + // Tuning for TGn Wi-Fi 5.2.32
30361 + // STA TestBed changes in this item: conexant legacy sta ==> broadcom 11n sta
30362 + if (STA_TGN_WIFI_ON(pAd) &&
30363 + pEdcaParm->Aifsn[QID_AC_VI] == 10)
30365 + Ac0Cfg.field.Aifsn = 3;
30366 + Ac2Cfg.field.AcTxop = 5;
30370 + if (pAd->RfIcType == RFIC_3020 || pAd->RfIcType == RFIC_2020)
30372 + // Tuning for WiFi WMM S3-T07: connexant legacy sta ==> broadcom 11n sta.
30373 + Ac2Cfg.field.Aifsn = 5;
30375 +#endif // RT30xx //
30377 +#endif // CONFIG_STA_SUPPORT //
30379 + Ac3Cfg.field.AcTxop = pEdcaParm->Txop[QID_AC_VO];
30380 + Ac3Cfg.field.Cwmin = pEdcaParm->Cwmin[QID_AC_VO];
30381 + Ac3Cfg.field.Cwmax = pEdcaParm->Cwmax[QID_AC_VO];
30382 + Ac3Cfg.field.Aifsn = pEdcaParm->Aifsn[QID_AC_VO];
30384 +//#ifdef WIFI_TEST
30385 + if (pAd->CommonCfg.bWiFiTest)
30387 + if (Ac3Cfg.field.AcTxop == 102)
30389 + Ac0Cfg.field.AcTxop = pEdcaParm->Txop[QID_AC_BE] ? pEdcaParm->Txop[QID_AC_BE] : 10;
30390 + Ac0Cfg.field.Aifsn = pEdcaParm->Aifsn[QID_AC_BE]-1; /* AIFSN must >= 1 */
30391 + Ac1Cfg.field.AcTxop = pEdcaParm->Txop[QID_AC_BK];
30392 + Ac1Cfg.field.Aifsn = pEdcaParm->Aifsn[QID_AC_BK];
30393 + Ac2Cfg.field.AcTxop = pEdcaParm->Txop[QID_AC_VI];
30394 + } /* End of if */
30396 +//#endif // WIFI_TEST //
30398 + RTMP_IO_WRITE32(pAd, EDCA_AC0_CFG, Ac0Cfg.word);
30399 + RTMP_IO_WRITE32(pAd, EDCA_AC1_CFG, Ac1Cfg.word);
30400 + RTMP_IO_WRITE32(pAd, EDCA_AC2_CFG, Ac2Cfg.word);
30401 + RTMP_IO_WRITE32(pAd, EDCA_AC3_CFG, Ac3Cfg.word);
30404 + //========================================================
30405 + // DMA Register has a copy too.
30406 + //========================================================
30407 + csr0.field.Ac0Txop = Ac0Cfg.field.AcTxop;
30408 + csr0.field.Ac1Txop = Ac1Cfg.field.AcTxop;
30409 + RTMP_IO_WRITE32(pAd, WMM_TXOP0_CFG, csr0.word);
30411 + csr1.field.Ac2Txop = Ac2Cfg.field.AcTxop;
30412 + csr1.field.Ac3Txop = Ac3Cfg.field.AcTxop;
30413 + RTMP_IO_WRITE32(pAd, WMM_TXOP1_CFG, csr1.word);
30415 + CwminCsr.word = 0;
30416 + CwminCsr.field.Cwmin0 = pEdcaParm->Cwmin[QID_AC_BE];
30417 + CwminCsr.field.Cwmin1 = pEdcaParm->Cwmin[QID_AC_BK];
30418 + CwminCsr.field.Cwmin2 = pEdcaParm->Cwmin[QID_AC_VI];
30419 +#ifdef CONFIG_STA_SUPPORT
30420 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
30421 + CwminCsr.field.Cwmin3 = pEdcaParm->Cwmin[QID_AC_VO] - 1; //for TGn wifi test
30422 +#endif // CONFIG_STA_SUPPORT //
30423 + RTMP_IO_WRITE32(pAd, WMM_CWMIN_CFG, CwminCsr.word);
30425 + CwmaxCsr.word = 0;
30426 + CwmaxCsr.field.Cwmax0 = pEdcaParm->Cwmax[QID_AC_BE];
30427 + CwmaxCsr.field.Cwmax1 = pEdcaParm->Cwmax[QID_AC_BK];
30428 + CwmaxCsr.field.Cwmax2 = pEdcaParm->Cwmax[QID_AC_VI];
30429 + CwmaxCsr.field.Cwmax3 = pEdcaParm->Cwmax[QID_AC_VO];
30430 + RTMP_IO_WRITE32(pAd, WMM_CWMAX_CFG, CwmaxCsr.word);
30432 + AifsnCsr.word = 0;
30433 + AifsnCsr.field.Aifsn0 = Ac0Cfg.field.Aifsn; //pEdcaParm->Aifsn[QID_AC_BE];
30434 + AifsnCsr.field.Aifsn1 = Ac1Cfg.field.Aifsn; //pEdcaParm->Aifsn[QID_AC_BK];
30435 + AifsnCsr.field.Aifsn2 = Ac2Cfg.field.Aifsn; //pEdcaParm->Aifsn[QID_AC_VI];
30436 +#ifdef INF_AMAZON_SE
30437 +#endif // INF_AMAZON_SE //
30440 +#ifdef CONFIG_STA_SUPPORT
30441 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
30443 + // Tuning for Wi-Fi WMM S06
30444 + if (pAd->CommonCfg.bWiFiTest &&
30445 + pEdcaParm->Aifsn[QID_AC_VI] == 10)
30446 + AifsnCsr.field.Aifsn2 = Ac2Cfg.field.Aifsn - 4;
30448 + // Tuning for TGn Wi-Fi 5.2.32
30449 + // STA TestBed changes in this item: connexant legacy sta ==> broadcom 11n sta
30450 + if (STA_TGN_WIFI_ON(pAd) &&
30451 + pEdcaParm->Aifsn[QID_AC_VI] == 10)
30453 + AifsnCsr.field.Aifsn0 = 3;
30454 + AifsnCsr.field.Aifsn2 = 7;
30457 + if (INFRA_ON(pAd))
30458 + CLIENT_STATUS_SET_FLAG(&pAd->MacTab.Content[BSSID_WCID], fCLIENT_STATUS_WMM_CAPABLE);
30460 +#endif // CONFIG_STA_SUPPORT //
30462 +#ifdef CONFIG_STA_SUPPORT
30463 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
30464 + AifsnCsr.field.Aifsn3 = Ac3Cfg.field.Aifsn - 1; //pEdcaParm->Aifsn[QID_AC_VO]; //for TGn wifi test
30466 + if (pAd->RfIcType == RFIC_3020 || pAd->RfIcType == RFIC_2020)
30468 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
30469 + AifsnCsr.field.Aifsn2 = 0x2; //pEdcaParm->Aifsn[QID_AC_VI]; //for WiFi WMM S4-T04.
30471 +#endif // RT30xx //
30472 +#endif // CONFIG_STA_SUPPORT //
30473 + RTMP_IO_WRITE32(pAd, WMM_AIFSN_CFG, AifsnCsr.word);
30475 + NdisMoveMemory(&pAd->CommonCfg.APEdcaParm, pEdcaParm, sizeof(EDCA_PARM));
30476 + if (!ADHOC_ON(pAd))
30478 + DBGPRINT(RT_DEBUG_TRACE,("EDCA [#%d]: AIFSN CWmin CWmax TXOP(us) ACM\n", pEdcaParm->EdcaUpdateCount));
30479 + DBGPRINT(RT_DEBUG_TRACE,(" AC_BE %2d %2d %2d %4d %d\n",
30480 + pEdcaParm->Aifsn[0],
30481 + pEdcaParm->Cwmin[0],
30482 + pEdcaParm->Cwmax[0],
30483 + pEdcaParm->Txop[0]<<5,
30484 + pEdcaParm->bACM[0]));
30485 + DBGPRINT(RT_DEBUG_TRACE,(" AC_BK %2d %2d %2d %4d %d\n",
30486 + pEdcaParm->Aifsn[1],
30487 + pEdcaParm->Cwmin[1],
30488 + pEdcaParm->Cwmax[1],
30489 + pEdcaParm->Txop[1]<<5,
30490 + pEdcaParm->bACM[1]));
30491 + DBGPRINT(RT_DEBUG_TRACE,(" AC_VI %2d %2d %2d %4d %d\n",
30492 + pEdcaParm->Aifsn[2],
30493 + pEdcaParm->Cwmin[2],
30494 + pEdcaParm->Cwmax[2],
30495 + pEdcaParm->Txop[2]<<5,
30496 + pEdcaParm->bACM[2]));
30497 + DBGPRINT(RT_DEBUG_TRACE,(" AC_VO %2d %2d %2d %4d %d\n",
30498 + pEdcaParm->Aifsn[3],
30499 + pEdcaParm->Cwmin[3],
30500 + pEdcaParm->Cwmax[3],
30501 + pEdcaParm->Txop[3]<<5,
30502 + pEdcaParm->bACM[3]));
30508 + ==========================================================================
30511 + IRQL = PASSIVE_LEVEL
30512 + IRQL = DISPATCH_LEVEL
30514 + ==========================================================================
30516 +VOID AsicSetSlotTime(
30517 + IN PRTMP_ADAPTER pAd,
30518 + IN BOOLEAN bUseShortSlotTime)
30521 + UINT32 RegValue = 0;
30523 +#ifdef CONFIG_STA_SUPPORT
30524 + if (pAd->CommonCfg.Channel > 14)
30525 + bUseShortSlotTime = TRUE;
30526 +#endif // CONFIG_STA_SUPPORT //
30528 + if (bUseShortSlotTime)
30529 + OPSTATUS_SET_FLAG(pAd, fOP_STATUS_SHORT_SLOT_INUSED);
30531 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_SHORT_SLOT_INUSED);
30533 + SlotTime = (bUseShortSlotTime)? 9 : 20;
30535 +#ifdef CONFIG_STA_SUPPORT
30536 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
30538 + // force using short SLOT time for FAE to demo performance when TxBurst is ON
30539 + if (pAd->CommonCfg.bEnableTxBurst)
30542 +#endif // CONFIG_STA_SUPPORT //
30545 + // For some reasons, always set it to short slot time.
30547 + // ToDo: Should consider capability with 11B
30549 +#ifdef CONFIG_STA_SUPPORT
30550 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
30552 + if (pAd->StaCfg.BssType == BSS_ADHOC)
30555 +#endif // CONFIG_STA_SUPPORT //
30557 + RTMP_IO_READ32(pAd, BKOFF_SLOT_CFG, &RegValue);
30558 + RegValue = RegValue & 0xFFFFFF00;
30560 + RegValue |= SlotTime;
30562 + RTMP_IO_WRITE32(pAd, BKOFF_SLOT_CFG, RegValue);
30566 + ========================================================================
30568 + Add Shared key information into ASIC.
30569 + Update shared key, TxMic and RxMic to Asic Shared key table
30570 + Update its cipherAlg to Asic Shared key Mode.
30573 + ========================================================================
30575 +VOID AsicAddSharedKeyEntry(
30576 + IN PRTMP_ADAPTER pAd,
30577 + IN UCHAR BssIndex,
30579 + IN UCHAR CipherAlg,
30581 + IN PUCHAR pTxMic,
30582 + IN PUCHAR pRxMic)
30584 + ULONG offset; //, csr0;
30585 + SHAREDKEY_MODE_STRUC csr1;
30587 + DBGPRINT(RT_DEBUG_TRACE, ("AsicAddSharedKeyEntry BssIndex=%d, KeyIdx=%d\n", BssIndex,KeyIdx));
30588 +//============================================================================================
30590 + DBGPRINT(RT_DEBUG_TRACE,("AsicAddSharedKeyEntry: %s key #%d\n", CipherName[CipherAlg], BssIndex*4 + KeyIdx));
30591 + DBGPRINT_RAW(RT_DEBUG_TRACE, (" Key = %02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x\n",
30592 + pKey[0],pKey[1],pKey[2],pKey[3],pKey[4],pKey[5],pKey[6],pKey[7],pKey[8],pKey[9],pKey[10],pKey[11],pKey[12],pKey[13],pKey[14],pKey[15]));
30595 + DBGPRINT_RAW(RT_DEBUG_TRACE, (" Rx MIC Key = %02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x\n",
30596 + pRxMic[0],pRxMic[1],pRxMic[2],pRxMic[3],pRxMic[4],pRxMic[5],pRxMic[6],pRxMic[7]));
30600 + DBGPRINT_RAW(RT_DEBUG_TRACE, (" Tx MIC Key = %02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x\n",
30601 + pTxMic[0],pTxMic[1],pTxMic[2],pTxMic[3],pTxMic[4],pTxMic[5],pTxMic[6],pTxMic[7]));
30603 +//============================================================================================
30605 + // fill key material - key + TX MIC + RX MIC
30610 + offset = SHARED_KEY_TABLE_BASE + (4*BssIndex + KeyIdx)*HW_KEY_ENTRY_SIZE;
30611 + RTUSBMultiWrite(pAd, offset, pKey, MAX_LEN_OF_SHARE_KEY);
30613 + offset += MAX_LEN_OF_SHARE_KEY;
30616 + RTUSBMultiWrite(pAd, offset, pTxMic, 8);
30622 + RTUSBMultiWrite(pAd, offset, pRxMic, 8);
30625 +#endif // RT2870 //
30628 + // Update cipher algorithm. WSTA always use BSS0
30630 + RTMP_IO_READ32(pAd, SHARED_KEY_MODE_BASE+4*(BssIndex/2), &csr1.word);
30631 + DBGPRINT(RT_DEBUG_TRACE,("Read: SHARED_KEY_MODE_BASE at this Bss[%d] KeyIdx[%d]= 0x%x \n", BssIndex,KeyIdx, csr1.word));
30632 + if ((BssIndex%2) == 0)
30635 + csr1.field.Bss0Key0CipherAlg = CipherAlg;
30636 + else if (KeyIdx == 1)
30637 + csr1.field.Bss0Key1CipherAlg = CipherAlg;
30638 + else if (KeyIdx == 2)
30639 + csr1.field.Bss0Key2CipherAlg = CipherAlg;
30641 + csr1.field.Bss0Key3CipherAlg = CipherAlg;
30646 + csr1.field.Bss1Key0CipherAlg = CipherAlg;
30647 + else if (KeyIdx == 1)
30648 + csr1.field.Bss1Key1CipherAlg = CipherAlg;
30649 + else if (KeyIdx == 2)
30650 + csr1.field.Bss1Key2CipherAlg = CipherAlg;
30652 + csr1.field.Bss1Key3CipherAlg = CipherAlg;
30654 + DBGPRINT(RT_DEBUG_TRACE,("Write: SHARED_KEY_MODE_BASE at this Bss[%d] = 0x%x \n", BssIndex, csr1.word));
30655 + RTMP_IO_WRITE32(pAd, SHARED_KEY_MODE_BASE+4*(BssIndex/2), csr1.word);
30659 +// IRQL = DISPATCH_LEVEL
30660 +VOID AsicRemoveSharedKeyEntry(
30661 + IN PRTMP_ADAPTER pAd,
30662 + IN UCHAR BssIndex,
30666 + SHAREDKEY_MODE_STRUC csr1;
30668 + DBGPRINT(RT_DEBUG_TRACE,("AsicRemoveSharedKeyEntry: #%d \n", BssIndex*4 + KeyIdx));
30670 + RTMP_IO_READ32(pAd, SHARED_KEY_MODE_BASE+4*(BssIndex/2), &csr1.word);
30671 + if ((BssIndex%2) == 0)
30674 + csr1.field.Bss0Key0CipherAlg = 0;
30675 + else if (KeyIdx == 1)
30676 + csr1.field.Bss0Key1CipherAlg = 0;
30677 + else if (KeyIdx == 2)
30678 + csr1.field.Bss0Key2CipherAlg = 0;
30680 + csr1.field.Bss0Key3CipherAlg = 0;
30685 + csr1.field.Bss1Key0CipherAlg = 0;
30686 + else if (KeyIdx == 1)
30687 + csr1.field.Bss1Key1CipherAlg = 0;
30688 + else if (KeyIdx == 2)
30689 + csr1.field.Bss1Key2CipherAlg = 0;
30691 + csr1.field.Bss1Key3CipherAlg = 0;
30693 + DBGPRINT(RT_DEBUG_TRACE,("Write: SHARED_KEY_MODE_BASE at this Bss[%d] = 0x%x \n", BssIndex, csr1.word));
30694 + RTMP_IO_WRITE32(pAd, SHARED_KEY_MODE_BASE+4*(BssIndex/2), csr1.word);
30695 + ASSERT(BssIndex < 4);
30696 + ASSERT(KeyIdx < 4);
30701 +VOID AsicUpdateWCIDAttribute(
30702 + IN PRTMP_ADAPTER pAd,
30704 + IN UCHAR BssIndex,
30705 + IN UCHAR CipherAlg,
30706 + IN BOOLEAN bUsePairewiseKeyTable)
30708 + ULONG WCIDAttri = 0, offset;
30711 + // Update WCID attribute.
30712 + // Only TxKey could update WCID attribute.
30714 + offset = MAC_WCID_ATTRIBUTE_BASE + (WCID * HW_WCID_ATTRI_SIZE);
30715 + WCIDAttri = (BssIndex << 4) | (CipherAlg << 1) | (bUsePairewiseKeyTable);
30716 + RTMP_IO_WRITE32(pAd, offset, WCIDAttri);
30719 +VOID AsicUpdateWCIDIVEIV(
30720 + IN PRTMP_ADAPTER pAd,
30727 + offset = MAC_IVEIV_TABLE_BASE + (WCID * HW_IVEIV_ENTRY_SIZE);
30729 + RTMP_IO_WRITE32(pAd, offset, uIV);
30730 + RTMP_IO_WRITE32(pAd, offset + 4, uEIV);
30733 +VOID AsicUpdateRxWCIDTable(
30734 + IN PRTMP_ADAPTER pAd,
30741 + offset = MAC_WCID_BASE + (WCID * HW_WCID_ENTRY_SIZE);
30742 + Addr = pAddr[0] + (pAddr[1] << 8) +(pAddr[2] << 16) +(pAddr[3] << 24);
30743 + RTMP_IO_WRITE32(pAd, offset, Addr);
30744 + Addr = pAddr[4] + (pAddr[5] << 8);
30745 + RTMP_IO_WRITE32(pAd, offset + 4, Addr);
30750 + ========================================================================
30752 + Routine Description:
30753 + Set Cipher Key, Cipher algorithm, IV/EIV to Asic
30756 + pAd Pointer to our adapter
30757 + WCID WCID Entry number.
30758 + BssIndex BSSID index, station or none multiple BSSID support
30759 + this value should be 0.
30760 + KeyIdx This KeyIdx will set to IV's KeyID if bTxKey enabled
30761 + pCipherKey Pointer to Cipher Key.
30762 + bUsePairewiseKeyTable TRUE means saved the key in SharedKey table,
30763 + otherwise PairewiseKey table
30764 + bTxKey This is the transmit key if enabled.
30770 + This routine will set the relative key stuff to Asic including WCID attribute,
30771 + Cipher Key, Cipher algorithm and IV/EIV.
30773 + IV/EIV will be update if this CipherKey is the transmission key because
30774 + ASIC will base on IV's KeyID value to select Cipher Key.
30776 + If bTxKey sets to FALSE, this is not the TX key, but it could be
30779 + For AP mode bTxKey must be always set to TRUE.
30780 + ========================================================================
30782 +VOID AsicAddKeyEntry(
30783 + IN PRTMP_ADAPTER pAd,
30785 + IN UCHAR BssIndex,
30787 + IN PCIPHER_KEY pCipherKey,
30788 + IN BOOLEAN bUsePairewiseKeyTable,
30789 + IN BOOLEAN bTxKey)
30792 +// ULONG WCIDAttri = 0;
30794 + PUCHAR pKey = pCipherKey->Key;
30795 +// ULONG KeyLen = pCipherKey->KeyLen;
30796 + PUCHAR pTxMic = pCipherKey->TxMic;
30797 + PUCHAR pRxMic = pCipherKey->RxMic;
30798 + PUCHAR pTxtsc = pCipherKey->TxTsc;
30799 + UCHAR CipherAlg = pCipherKey->CipherAlg;
30800 + SHAREDKEY_MODE_STRUC csr1;
30802 +// ASSERT(KeyLen <= MAX_LEN_OF_PEER_KEY);
30804 + DBGPRINT(RT_DEBUG_TRACE, ("==> AsicAddKeyEntry\n"));
30806 + // 1.) decide key table offset
30808 + if (bUsePairewiseKeyTable)
30809 + offset = PAIRWISE_KEY_TABLE_BASE + (WCID * HW_KEY_ENTRY_SIZE);
30811 + offset = SHARED_KEY_TABLE_BASE + (4 * BssIndex + KeyIdx) * HW_KEY_ENTRY_SIZE;
30814 + // 2.) Set Key to Asic
30816 + //for (i = 0; i < KeyLen; i++)
30819 + RTUSBMultiWrite(pAd, offset, pKey, MAX_LEN_OF_PEER_KEY);
30820 + offset += MAX_LEN_OF_PEER_KEY;
30823 + // 3.) Set MIC key if available
30827 + RTUSBMultiWrite(pAd, offset, pTxMic, 8);
30829 + offset += LEN_TKIP_TXMICK;
30833 + RTUSBMultiWrite(pAd, offset, pRxMic, 8);
30835 +#endif // RT2870 //
30838 + // 4.) Modify IV/EIV if needs
30839 + // This will force Asic to use this key ID by setting IV.
30850 + IV4 = (KeyIdx << 6);
30851 + if ((CipherAlg == CIPHER_TKIP) || (CipherAlg == CIPHER_TKIP_NO_MIC) ||(CipherAlg == CIPHER_AES))
30852 + IV4 |= 0x20; // turn on extension bit means EIV existence
30854 + tmpVal = pTxtsc[1] + (((pTxtsc[1] | 0x20) & 0x7f) << 8) + (pTxtsc[0] << 16) + (IV4 << 24);
30855 + RTMP_IO_WRITE32(pAd, offset, tmpVal);
30861 + RTMP_IO_WRITE32(pAd, offset, *(PUINT32)&pCipherKey->TxTsc[2]);
30862 +#endif // RT2870 //
30863 + AsicUpdateWCIDAttribute(pAd, WCID, BssIndex, CipherAlg, bUsePairewiseKeyTable);
30866 + if (!bUsePairewiseKeyTable)
30869 + // Only update the shared key security mode
30871 + RTMP_IO_READ32(pAd, SHARED_KEY_MODE_BASE + 4 * (BssIndex / 2), &csr1.word);
30872 + if ((BssIndex % 2) == 0)
30875 + csr1.field.Bss0Key0CipherAlg = CipherAlg;
30876 + else if (KeyIdx == 1)
30877 + csr1.field.Bss0Key1CipherAlg = CipherAlg;
30878 + else if (KeyIdx == 2)
30879 + csr1.field.Bss0Key2CipherAlg = CipherAlg;
30881 + csr1.field.Bss0Key3CipherAlg = CipherAlg;
30886 + csr1.field.Bss1Key0CipherAlg = CipherAlg;
30887 + else if (KeyIdx == 1)
30888 + csr1.field.Bss1Key1CipherAlg = CipherAlg;
30889 + else if (KeyIdx == 2)
30890 + csr1.field.Bss1Key2CipherAlg = CipherAlg;
30892 + csr1.field.Bss1Key3CipherAlg = CipherAlg;
30894 + RTMP_IO_WRITE32(pAd, SHARED_KEY_MODE_BASE + 4 * (BssIndex / 2), csr1.word);
30897 + DBGPRINT(RT_DEBUG_TRACE, ("<== AsicAddKeyEntry\n"));
30902 + ========================================================================
30904 + Add Pair-wise key material into ASIC.
30905 + Update pairwise key, TxMic and RxMic to Asic Pair-wise key table
30908 + ========================================================================
30910 +VOID AsicAddPairwiseKeyEntry(
30911 + IN PRTMP_ADAPTER pAd,
30914 + IN CIPHER_KEY *pCipherKey)
30918 + PUCHAR pKey = pCipherKey->Key;
30919 + PUCHAR pTxMic = pCipherKey->TxMic;
30920 + PUCHAR pRxMic = pCipherKey->RxMic;
30922 + UCHAR CipherAlg = pCipherKey->CipherAlg;
30926 + offset = PAIRWISE_KEY_TABLE_BASE + (WCID * HW_KEY_ENTRY_SIZE);
30928 + RTUSBMultiWrite(pAd, offset, &pCipherKey->Key[0], MAX_LEN_OF_PEER_KEY);
30929 +#endif // RT2870 //
30930 + for (i=0; i<MAX_LEN_OF_PEER_KEY; i+=4)
30933 + RTMP_IO_READ32(pAd, offset + i, &Value);
30936 + offset += MAX_LEN_OF_PEER_KEY;
30942 + RTUSBMultiWrite(pAd, offset, &pCipherKey->TxMic[0], 8);
30943 +#endif // RT2870 //
30949 + RTUSBMultiWrite(pAd, offset, &pCipherKey->RxMic[0], 8);
30950 +#endif // RT2870 //
30953 + DBGPRINT(RT_DEBUG_TRACE,("AsicAddPairwiseKeyEntry: WCID #%d Alg=%s\n",WCID, CipherName[CipherAlg]));
30954 + DBGPRINT(RT_DEBUG_TRACE,(" Key = %02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x\n",
30955 + pKey[0],pKey[1],pKey[2],pKey[3],pKey[4],pKey[5],pKey[6],pKey[7],pKey[8],pKey[9],pKey[10],pKey[11],pKey[12],pKey[13],pKey[14],pKey[15]));
30958 + DBGPRINT(RT_DEBUG_TRACE, (" Rx MIC Key = %02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x\n",
30959 + pRxMic[0],pRxMic[1],pRxMic[2],pRxMic[3],pRxMic[4],pRxMic[5],pRxMic[6],pRxMic[7]));
30963 + DBGPRINT(RT_DEBUG_TRACE, (" Tx MIC Key = %02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x\n",
30964 + pTxMic[0],pTxMic[1],pTxMic[2],pTxMic[3],pTxMic[4],pTxMic[5],pTxMic[6],pTxMic[7]));
30968 + ========================================================================
30970 + Remove Pair-wise key material from ASIC.
30973 + ========================================================================
30975 +VOID AsicRemovePairwiseKeyEntry(
30976 + IN PRTMP_ADAPTER pAd,
30983 + // re-set the entry's WCID attribute as OPEN-NONE.
30984 + offset = MAC_WCID_ATTRIBUTE_BASE + (Wcid * HW_WCID_ATTRI_SIZE);
30985 + WCIDAttri = (BssIdx<<4) | PAIRWISEKEYTABLE;
30986 + RTMP_IO_WRITE32(pAd, offset, WCIDAttri);
30989 +BOOLEAN AsicSendCommandToMcu(
30990 + IN PRTMP_ADAPTER pAd,
30991 + IN UCHAR Command,
30996 + HOST_CMD_CSR_STRUC H2MCmd;
30997 + H2M_MAILBOX_STRUC H2MMailbox;
31001 + RTMP_IO_READ32(pAd, H2M_MAILBOX_CSR, &H2MMailbox.word);
31002 + if (H2MMailbox.field.Owner == 0)
31005 + RTMPusecDelay(2);
31006 + } while(i++ < 100);
31011 + DBGPRINT_ERR(("H2M_MAILBOX still hold by MCU. command fail\n"));
31017 + H2MMailbox.field.Owner = 1; // pass ownership to MCU
31018 + H2MMailbox.field.CmdToken = Token;
31019 + H2MMailbox.field.HighByte = Arg1;
31020 + H2MMailbox.field.LowByte = Arg0;
31021 + RTMP_IO_WRITE32(pAd, H2M_MAILBOX_CSR, H2MMailbox.word);
31024 + H2MCmd.field.HostCommand = Command;
31025 + RTMP_IO_WRITE32(pAd, HOST_CMD_CSR, H2MCmd.word);
31027 + if (Command != 0x80)
31036 + ========================================================================
31038 + Routine Description:
31039 + Verify the support rate for different PHY type
31042 + pAd Pointer to our adapter
31047 + IRQL = PASSIVE_LEVEL
31049 + ========================================================================
31051 +VOID RTMPCheckRates(
31052 + IN PRTMP_ADAPTER pAd,
31053 + IN OUT UCHAR SupRate[],
31054 + IN OUT UCHAR *SupRateLen)
31056 + UCHAR RateIdx, i, j;
31057 + UCHAR NewRate[12], NewRateLen;
31061 + if (pAd->CommonCfg.PhyMode == PHY_11B)
31066 + // Check for support rates exclude basic rate bit
31067 + for (i = 0; i < *SupRateLen; i++)
31068 + for (j = 0; j < RateIdx; j++)
31069 + if ((SupRate[i] & 0x7f) == RateIdTo500Kbps[j])
31070 + NewRate[NewRateLen++] = SupRate[i];
31072 + *SupRateLen = NewRateLen;
31073 + NdisMoveMemory(SupRate, NewRate, NewRateLen);
31076 +#ifdef CONFIG_STA_SUPPORT
31077 +#ifdef DOT11_N_SUPPORT
31078 +BOOLEAN RTMPCheckChannel(
31079 + IN PRTMP_ADAPTER pAd,
31080 + IN UCHAR CentralChannel,
31081 + IN UCHAR Channel)
31084 + UCHAR UpperChannel = 0, LowerChannel = 0;
31085 + UCHAR NoEffectChannelinList = 0;
31087 + // Find upper and lower channel according to 40MHz current operation.
31088 + if (CentralChannel < Channel)
31090 + UpperChannel = Channel;
31091 + if (CentralChannel > 2)
31092 + LowerChannel = CentralChannel - 2;
31096 + else if (CentralChannel > Channel)
31098 + UpperChannel = CentralChannel + 2;
31099 + LowerChannel = Channel;
31102 + for (k = 0;k < pAd->ChannelListNum;k++)
31104 + if (pAd->ChannelList[k].Channel == UpperChannel)
31106 + NoEffectChannelinList ++;
31108 + if (pAd->ChannelList[k].Channel == LowerChannel)
31110 + NoEffectChannelinList ++;
31114 + DBGPRINT(RT_DEBUG_TRACE,("Total Channel in Channel List = [%d]\n", NoEffectChannelinList));
31115 + if (NoEffectChannelinList == 2)
31122 + ========================================================================
31124 + Routine Description:
31125 + Verify the support rate for HT phy type
31128 + pAd Pointer to our adapter
31131 + FALSE if pAd->CommonCfg.SupportedHtPhy doesn't accept the pHtCapability. (AP Mode)
31133 + IRQL = PASSIVE_LEVEL
31135 + ========================================================================
31137 +BOOLEAN RTMPCheckHt(
31138 + IN PRTMP_ADAPTER pAd,
31140 + IN HT_CAPABILITY_IE *pHtCapability,
31141 + IN ADD_HT_INFO_IE *pAddHtInfo)
31143 + if (Wcid >= MAX_LEN_OF_MAC_TABLE)
31146 + // If use AMSDU, set flag.
31147 + if (pAd->CommonCfg.DesiredHtPhy.AmsduEnable)
31148 + CLIENT_STATUS_SET_FLAG(&pAd->MacTab.Content[Wcid], fCLIENT_STATUS_AMSDU_INUSED);
31149 + // Save Peer Capability
31150 + if (pHtCapability->HtCapInfo.ShortGIfor20)
31151 + CLIENT_STATUS_SET_FLAG(&pAd->MacTab.Content[Wcid], fCLIENT_STATUS_SGI20_CAPABLE);
31152 + if (pHtCapability->HtCapInfo.ShortGIfor40)
31153 + CLIENT_STATUS_SET_FLAG(&pAd->MacTab.Content[Wcid], fCLIENT_STATUS_SGI40_CAPABLE);
31154 + if (pHtCapability->HtCapInfo.TxSTBC)
31155 + CLIENT_STATUS_SET_FLAG(&pAd->MacTab.Content[Wcid], fCLIENT_STATUS_TxSTBC_CAPABLE);
31156 + if (pHtCapability->HtCapInfo.RxSTBC)
31157 + CLIENT_STATUS_SET_FLAG(&pAd->MacTab.Content[Wcid], fCLIENT_STATUS_RxSTBC_CAPABLE);
31158 + if (pAd->CommonCfg.bRdg && pHtCapability->ExtHtCapInfo.RDGSupport)
31160 + CLIENT_STATUS_SET_FLAG(&pAd->MacTab.Content[Wcid], fCLIENT_STATUS_RDG_CAPABLE);
31163 + if (Wcid < MAX_LEN_OF_MAC_TABLE)
31165 + pAd->MacTab.Content[Wcid].MpduDensity = pHtCapability->HtCapParm.MpduDensity;
31168 + // Will check ChannelWidth for MCSSet[4] below
31169 + pAd->MlmeAux.HtCapability.MCSSet[4] = 0x1;
31170 + switch (pAd->CommonCfg.RxStream)
31173 + pAd->MlmeAux.HtCapability.MCSSet[0] = 0xff;
31174 + pAd->MlmeAux.HtCapability.MCSSet[1] = 0x00;
31175 + pAd->MlmeAux.HtCapability.MCSSet[2] = 0x00;
31176 + pAd->MlmeAux.HtCapability.MCSSet[3] = 0x00;
31179 + pAd->MlmeAux.HtCapability.MCSSet[0] = 0xff;
31180 + pAd->MlmeAux.HtCapability.MCSSet[1] = 0xff;
31181 + pAd->MlmeAux.HtCapability.MCSSet[2] = 0x00;
31182 + pAd->MlmeAux.HtCapability.MCSSet[3] = 0x00;
31185 + pAd->MlmeAux.HtCapability.MCSSet[0] = 0xff;
31186 + pAd->MlmeAux.HtCapability.MCSSet[1] = 0xff;
31187 + pAd->MlmeAux.HtCapability.MCSSet[2] = 0xff;
31188 + pAd->MlmeAux.HtCapability.MCSSet[3] = 0x00;
31192 + pAd->MlmeAux.HtCapability.HtCapInfo.ChannelWidth = pAddHtInfo->AddHtInfo.RecomWidth & pAd->CommonCfg.DesiredHtPhy.ChannelWidth;
31194 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPCheckHt:: HtCapInfo.ChannelWidth=%d, RecomWidth=%d, DesiredHtPhy.ChannelWidth=%d, BW40MAvailForA/G=%d/%d, PhyMode=%d \n",
31195 + pAd->MlmeAux.HtCapability.HtCapInfo.ChannelWidth, pAddHtInfo->AddHtInfo.RecomWidth, pAd->CommonCfg.DesiredHtPhy.ChannelWidth,
31196 + pAd->NicConfig2.field.BW40MAvailForA, pAd->NicConfig2.field.BW40MAvailForG, pAd->CommonCfg.PhyMode));
31198 + pAd->MlmeAux.HtCapability.HtCapInfo.GF = pHtCapability->HtCapInfo.GF &pAd->CommonCfg.DesiredHtPhy.GF;
31200 + // Send Assoc Req with my HT capability.
31201 + pAd->MlmeAux.HtCapability.HtCapInfo.AMsduSize = pAd->CommonCfg.DesiredHtPhy.AmsduSize;
31202 + pAd->MlmeAux.HtCapability.HtCapInfo.MimoPs = pAd->CommonCfg.DesiredHtPhy.MimoPs;
31203 + pAd->MlmeAux.HtCapability.HtCapInfo.ShortGIfor20 = (pAd->CommonCfg.DesiredHtPhy.ShortGIfor20) & (pHtCapability->HtCapInfo.ShortGIfor20);
31204 + pAd->MlmeAux.HtCapability.HtCapInfo.ShortGIfor40 = (pAd->CommonCfg.DesiredHtPhy.ShortGIfor40) & (pHtCapability->HtCapInfo.ShortGIfor40);
31205 + pAd->MlmeAux.HtCapability.HtCapInfo.TxSTBC = (pAd->CommonCfg.DesiredHtPhy.TxSTBC)&(pHtCapability->HtCapInfo.RxSTBC);
31206 + pAd->MlmeAux.HtCapability.HtCapInfo.RxSTBC = (pAd->CommonCfg.DesiredHtPhy.RxSTBC)&(pHtCapability->HtCapInfo.TxSTBC);
31207 + pAd->MlmeAux.HtCapability.HtCapParm.MaxRAmpduFactor = pAd->CommonCfg.DesiredHtPhy.MaxRAmpduFactor;
31208 + pAd->MlmeAux.HtCapability.HtCapParm.MpduDensity = pAd->CommonCfg.HtCapability.HtCapParm.MpduDensity;
31209 + pAd->MlmeAux.HtCapability.ExtHtCapInfo.PlusHTC = pHtCapability->ExtHtCapInfo.PlusHTC;
31210 + pAd->MacTab.Content[Wcid].HTCapability.ExtHtCapInfo.PlusHTC = pHtCapability->ExtHtCapInfo.PlusHTC;
31211 + if (pAd->CommonCfg.bRdg)
31213 + pAd->MlmeAux.HtCapability.ExtHtCapInfo.RDGSupport = pHtCapability->ExtHtCapInfo.RDGSupport;
31214 + pAd->MlmeAux.HtCapability.ExtHtCapInfo.PlusHTC = 1;
31217 + if (pAd->MlmeAux.HtCapability.HtCapInfo.ChannelWidth == BW_20)
31218 + pAd->MlmeAux.HtCapability.MCSSet[4] = 0x0; // BW20 can't transmit MCS32
31220 + COPY_AP_HTSETTINGS_FROM_BEACON(pAd, pHtCapability);
31223 +#endif // DOT11_N_SUPPORT //
31224 +#endif // CONFIG_STA_SUPPORT //
31227 + ========================================================================
31229 + Routine Description:
31230 + Verify the support rate for different PHY type
31233 + pAd Pointer to our adapter
31238 + IRQL = PASSIVE_LEVEL
31240 + ========================================================================
31242 +VOID RTMPUpdateMlmeRate(
31243 + IN PRTMP_ADAPTER pAd)
31245 + UCHAR MinimumRate;
31246 + UCHAR ProperMlmeRate; //= RATE_54;
31247 + UCHAR i, j, RateIdx = 12; //1, 2, 5.5, 11, 6, 9, 12, 18, 24, 36, 48, 54
31248 + BOOLEAN bMatch = FALSE;
31250 + switch (pAd->CommonCfg.PhyMode)
31253 + ProperMlmeRate = RATE_11;
31254 + MinimumRate = RATE_1;
31256 + case PHY_11BG_MIXED:
31257 +#ifdef DOT11_N_SUPPORT
31258 + case PHY_11ABGN_MIXED:
31259 + case PHY_11BGN_MIXED:
31260 +#endif // DOT11_N_SUPPORT //
31261 + if ((pAd->MlmeAux.SupRateLen == 4) &&
31262 + (pAd->MlmeAux.ExtRateLen == 0))
31264 + ProperMlmeRate = RATE_11;
31266 + ProperMlmeRate = RATE_24;
31268 + if (pAd->MlmeAux.Channel <= 14)
31269 + MinimumRate = RATE_1;
31271 + MinimumRate = RATE_6;
31274 +#ifdef DOT11_N_SUPPORT
31275 + case PHY_11N_2_4G: // rt2860 need to check mlmerate for 802.11n
31276 + case PHY_11GN_MIXED:
31277 + case PHY_11AGN_MIXED:
31278 + case PHY_11AN_MIXED:
31280 +#endif // DOT11_N_SUPPORT //
31281 + ProperMlmeRate = RATE_24;
31282 + MinimumRate = RATE_6;
31284 + case PHY_11ABG_MIXED:
31285 + ProperMlmeRate = RATE_24;
31286 + if (pAd->MlmeAux.Channel <= 14)
31287 + MinimumRate = RATE_1;
31289 + MinimumRate = RATE_6;
31291 + default: // error
31292 + ProperMlmeRate = RATE_1;
31293 + MinimumRate = RATE_1;
31297 + for (i = 0; i < pAd->MlmeAux.SupRateLen; i++)
31299 + for (j = 0; j < RateIdx; j++)
31301 + if ((pAd->MlmeAux.SupRate[i] & 0x7f) == RateIdTo500Kbps[j])
31303 + if (j == ProperMlmeRate)
31315 + if (bMatch == FALSE)
31317 + for (i = 0; i < pAd->MlmeAux.ExtRateLen; i++)
31319 + for (j = 0; j < RateIdx; j++)
31321 + if ((pAd->MlmeAux.ExtRate[i] & 0x7f) == RateIdTo500Kbps[j])
31323 + if (j == ProperMlmeRate)
31336 + if (bMatch == FALSE)
31338 + ProperMlmeRate = MinimumRate;
31341 + pAd->CommonCfg.MlmeRate = MinimumRate;
31342 + pAd->CommonCfg.RtsRate = ProperMlmeRate;
31343 + if (pAd->CommonCfg.MlmeRate >= RATE_6)
31345 + pAd->CommonCfg.MlmeTransmit.field.MODE = MODE_OFDM;
31346 + pAd->CommonCfg.MlmeTransmit.field.MCS = OfdmRateToRxwiMCS[pAd->CommonCfg.MlmeRate];
31347 + pAd->MacTab.Content[BSS0Mcast_WCID].HTPhyMode.field.MODE = MODE_OFDM;
31348 + pAd->MacTab.Content[BSS0Mcast_WCID].HTPhyMode.field.MCS = OfdmRateToRxwiMCS[pAd->CommonCfg.MlmeRate];
31352 + pAd->CommonCfg.MlmeTransmit.field.MODE = MODE_CCK;
31353 + pAd->CommonCfg.MlmeTransmit.field.MCS = pAd->CommonCfg.MlmeRate;
31354 + pAd->MacTab.Content[BSS0Mcast_WCID].HTPhyMode.field.MODE = MODE_CCK;
31355 + pAd->MacTab.Content[BSS0Mcast_WCID].HTPhyMode.field.MCS = pAd->CommonCfg.MlmeRate;
31358 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPUpdateMlmeRate ==> MlmeTransmit = 0x%x \n" , pAd->CommonCfg.MlmeTransmit.word));
31362 + IN PRTMP_ADAPTER pAd,
31367 + CHAR larger = -127;
31369 + if ((pAd->Antenna.field.RxPath == 1) && (Rssi0 != 0))
31374 + if ((pAd->Antenna.field.RxPath >= 2) && (Rssi1 != 0))
31376 + larger = max(Rssi0, Rssi1);
31379 + if ((pAd->Antenna.field.RxPath == 3) && (Rssi2 != 0))
31381 + larger = max(larger, Rssi2);
31384 + if (larger == -127)
31391 +// Antenna divesity use GPIO3 and EESK pin for control
31392 +// Antenna and EEPROM access are both using EESK pin,
31393 +// Therefor we should avoid accessing EESK at the same time
31394 +// Then restore antenna after EEPROM access
31395 +VOID AsicSetRxAnt(
31396 + IN PRTMP_ADAPTER pAd,
31403 + if ((pAd->EepromAccess) ||
31404 + (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RESET_IN_PROGRESS)) ||
31405 + (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS)) ||
31406 + (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RADIO_OFF)) ||
31407 + (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)))
31412 + // the antenna selection is through firmware and MAC register(GPIO3)
31416 + RTMP_IO_READ32(pAd, E2PROM_CSR, &x);
31418 + RTMP_IO_WRITE32(pAd, E2PROM_CSR, x);
31420 + RTMP_IO_READ32(pAd, GPIO_CTRL_CFG, &Value);
31421 + Value &= ~(0x0808);
31422 + RTMP_IO_WRITE32(pAd, GPIO_CTRL_CFG, Value);
31423 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("AsicSetRxAnt, switch to main antenna\n"));
31428 + RTMP_IO_READ32(pAd, E2PROM_CSR, &x);
31430 + RTMP_IO_WRITE32(pAd, E2PROM_CSR, x);
31432 + RTMP_IO_READ32(pAd, GPIO_CTRL_CFG, &Value);
31433 + Value &= ~(0x0808);
31435 + RTMP_IO_WRITE32(pAd, GPIO_CTRL_CFG, Value);
31436 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("AsicSetRxAnt, switch to aux antenna\n"));
31438 +#endif // RT30xx //
31443 + ========================================================================
31444 + Routine Description:
31445 + Periodic evaluate antenna link status
31448 + pAd - Adapter pointer
31453 + ========================================================================
31455 +VOID AsicEvaluateRxAnt(
31456 + IN PRTMP_ADAPTER pAd)
31463 +#endif // RALINK_ATE //
31465 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RESET_IN_PROGRESS |
31466 + fRTMP_ADAPTER_HALT_IN_PROGRESS |
31467 + fRTMP_ADAPTER_RADIO_OFF |
31468 + fRTMP_ADAPTER_NIC_NOT_EXIST |
31469 + fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS) ||
31470 + OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_DOZE)
31472 + || (pAd->EepromAccess)
31473 +#endif // RT30xx //
31478 +#ifdef CONFIG_STA_SUPPORT
31479 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
31481 + //if (pAd->StaCfg.Psm == PWR_SAVE)
31484 +#endif // CONFIG_STA_SUPPORT //
31486 + // two antenna selection mechanism- one is antenna diversity, the other is failed antenna remove
31487 + // one is antenna diversity:there is only one antenna can rx and tx
31488 + // the other is failed antenna remove:two physical antenna can rx and tx
31489 + if (pAd->NicConfig2.field.AntDiversity)
31491 + DBGPRINT(RT_DEBUG_TRACE,("AntDiv - before evaluate Pair1-Ant (%d,%d)\n",
31492 + pAd->RxAnt.Pair1PrimaryRxAnt, pAd->RxAnt.Pair1SecondaryRxAnt));
31494 + AsicSetRxAnt(pAd, pAd->RxAnt.Pair1SecondaryRxAnt);
31496 + pAd->RxAnt.EvaluatePeriod = 1; // 1:Means switch to SecondaryRxAnt, 0:Means switch to Pair1PrimaryRxAnt
31497 + pAd->RxAnt.FirstPktArrivedWhenEvaluate = FALSE;
31498 + pAd->RxAnt.RcvPktNumWhenEvaluate = 0;
31500 + // a one-shot timer to end the evalution
31501 + // dynamic adjust antenna evaluation period according to the traffic
31502 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED))
31503 + RTMPSetTimer(&pAd->Mlme.RxAntEvalTimer, 100);
31505 + RTMPSetTimer(&pAd->Mlme.RxAntEvalTimer, 300);
31510 +#ifdef CONFIG_STA_SUPPORT
31511 + if (pAd->StaCfg.Psm == PWR_SAVE)
31513 +#endif // CONFIG_STA_SUPPORT //
31515 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &BBPR3);
31516 + BBPR3 &= (~0x18);
31517 + if(pAd->Antenna.field.RxPath == 3)
31521 + else if(pAd->Antenna.field.RxPath == 2)
31525 + else if(pAd->Antenna.field.RxPath == 1)
31529 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, BBPR3);
31530 +#ifdef CONFIG_STA_SUPPORT
31531 +#endif // CONFIG_STA_SUPPORT //
31532 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED)
31535 + ULONG TxTotalCnt = pAd->RalinkCounters.OneSecTxNoRetryOkCount +
31536 + pAd->RalinkCounters.OneSecTxRetryOkCount +
31537 + pAd->RalinkCounters.OneSecTxFailCount;
31539 + // dynamic adjust antenna evaluation period according to the traffic
31540 + if (TxTotalCnt > 50)
31542 + RTMPSetTimer(&pAd->Mlme.RxAntEvalTimer, 20);
31543 + pAd->Mlme.bLowThroughput = FALSE;
31547 + RTMPSetTimer(&pAd->Mlme.RxAntEvalTimer, 300);
31548 + pAd->Mlme.bLowThroughput = TRUE;
31555 + ========================================================================
31556 + Routine Description:
31557 + After evaluation, check antenna link status
31560 + pAd - Adapter pointer
31565 + ========================================================================
31567 +VOID AsicRxAntEvalTimeout(
31568 + IN PVOID SystemSpecific1,
31569 + IN PVOID FunctionContext,
31570 + IN PVOID SystemSpecific2,
31571 + IN PVOID SystemSpecific3)
31573 + RTMP_ADAPTER *pAd = (RTMP_ADAPTER *)FunctionContext;
31574 +#ifdef CONFIG_STA_SUPPORT
31576 + CHAR larger = -127, rssi0, rssi1, rssi2;
31577 +#endif // CONFIG_STA_SUPPORT //
31582 +#endif // RALINK_ATE //
31584 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RESET_IN_PROGRESS |
31585 + fRTMP_ADAPTER_HALT_IN_PROGRESS |
31586 + fRTMP_ADAPTER_RADIO_OFF |
31587 + fRTMP_ADAPTER_NIC_NOT_EXIST) ||
31588 + OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_DOZE)
31590 + || (pAd->EepromAccess)
31591 +#endif // RT30xx //
31596 +#ifdef CONFIG_STA_SUPPORT
31597 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
31599 + //if (pAd->StaCfg.Psm == PWR_SAVE)
31602 + if (pAd->NicConfig2.field.AntDiversity)
31604 + if ((pAd->RxAnt.RcvPktNumWhenEvaluate != 0) && (pAd->RxAnt.Pair1AvgRssi[pAd->RxAnt.Pair1SecondaryRxAnt] >= pAd->RxAnt.Pair1AvgRssi[pAd->RxAnt.Pair1PrimaryRxAnt]))
31609 + // select PrimaryRxAntPair
31610 + // Role change, Used Pair1SecondaryRxAnt as PrimaryRxAntPair.
31611 + // Since Pair1SecondaryRxAnt Quality good than Pair1PrimaryRxAnt
31613 + temp = pAd->RxAnt.Pair1PrimaryRxAnt;
31614 + pAd->RxAnt.Pair1PrimaryRxAnt = pAd->RxAnt.Pair1SecondaryRxAnt;
31615 + pAd->RxAnt.Pair1SecondaryRxAnt = temp;
31617 + pAd->RxAnt.Pair1LastAvgRssi = (pAd->RxAnt.Pair1AvgRssi[pAd->RxAnt.Pair1SecondaryRxAnt] >> 3);
31618 + pAd->RxAnt.EvaluateStableCnt = 0;
31622 + // if the evaluated antenna is not better than original, switch back to original antenna
31623 + AsicSetRxAnt(pAd, pAd->RxAnt.Pair1PrimaryRxAnt);
31624 + pAd->RxAnt.EvaluateStableCnt ++;
31627 + pAd->RxAnt.EvaluatePeriod = 0; // 1:Means switch to SecondaryRxAnt, 0:Means switch to Pair1PrimaryRxAnt
31629 + DBGPRINT(RT_DEBUG_TRACE,("AsicRxAntEvalAction::After Eval(fix in #%d), <%d, %d>, RcvPktNumWhenEvaluate=%ld\n",
31630 + pAd->RxAnt.Pair1PrimaryRxAnt, (pAd->RxAnt.Pair1AvgRssi[0] >> 3), (pAd->RxAnt.Pair1AvgRssi[1] >> 3), pAd->RxAnt.RcvPktNumWhenEvaluate));
31634 + if (pAd->StaCfg.Psm == PWR_SAVE)
31637 + // if the traffic is low, use average rssi as the criteria
31638 + if (pAd->Mlme.bLowThroughput == TRUE)
31640 + rssi0 = pAd->StaCfg.RssiSample.LastRssi0;
31641 + rssi1 = pAd->StaCfg.RssiSample.LastRssi1;
31642 + rssi2 = pAd->StaCfg.RssiSample.LastRssi2;
31646 + rssi0 = pAd->StaCfg.RssiSample.AvgRssi0;
31647 + rssi1 = pAd->StaCfg.RssiSample.AvgRssi1;
31648 + rssi2 = pAd->StaCfg.RssiSample.AvgRssi2;
31651 + if(pAd->Antenna.field.RxPath == 3)
31653 + larger = max(rssi0, rssi1);
31655 + if (larger > (rssi2 + 20))
31656 + pAd->Mlme.RealRxPath = 2;
31658 + pAd->Mlme.RealRxPath = 3;
31660 + else if(pAd->Antenna.field.RxPath == 2)
31662 + if (rssi0 > (rssi1 + 20))
31663 + pAd->Mlme.RealRxPath = 1;
31665 + pAd->Mlme.RealRxPath = 2;
31668 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &BBPR3);
31669 + BBPR3 &= (~0x18);
31670 + if(pAd->Mlme.RealRxPath == 3)
31674 + else if(pAd->Mlme.RealRxPath == 2)
31678 + else if(pAd->Mlme.RealRxPath == 1)
31682 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, BBPR3);
31686 +#endif // CONFIG_STA_SUPPORT //
31692 +VOID APSDPeriodicExec(
31693 + IN PVOID SystemSpecific1,
31694 + IN PVOID FunctionContext,
31695 + IN PVOID SystemSpecific2,
31696 + IN PVOID SystemSpecific3)
31698 + RTMP_ADAPTER *pAd = (RTMP_ADAPTER *)FunctionContext;
31700 + if (!OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED))
31703 + pAd->CommonCfg.TriggerTimerCount++;
31705 +// Driver should not send trigger frame, it should be send by application layer
31707 + if (pAd->CommonCfg.bAPSDCapable && pAd->CommonCfg.APEdcaParm.bAPSDCapable
31708 + && (pAd->CommonCfg.bNeedSendTriggerFrame ||
31709 + (((pAd->CommonCfg.TriggerTimerCount%20) == 19) && (!pAd->CommonCfg.bAPSDAC_BE || !pAd->CommonCfg.bAPSDAC_BK || !pAd->CommonCfg.bAPSDAC_VI || !pAd->CommonCfg.bAPSDAC_VO))))
31711 + DBGPRINT(RT_DEBUG_TRACE,("Sending trigger frame and enter service period when support APSD\n"));
31712 + RTMPSendNullFrame(pAd, pAd->CommonCfg.TxRate, TRUE);
31713 + pAd->CommonCfg.bNeedSendTriggerFrame = FALSE;
31714 + pAd->CommonCfg.TriggerTimerCount = 0;
31715 + pAd->CommonCfg.bInServicePeriod = TRUE;
31720 + ========================================================================
31721 + Routine Description:
31722 + Set/reset MAC registers according to bPiggyBack parameter
31725 + pAd - Adapter pointer
31726 + bPiggyBack - Enable / Disable Piggy-Back
31731 + ========================================================================
31733 +VOID RTMPSetPiggyBack(
31734 + IN PRTMP_ADAPTER pAd,
31735 + IN BOOLEAN bPiggyBack)
31737 + TX_LINK_CFG_STRUC TxLinkCfg;
31739 + RTMP_IO_READ32(pAd, TX_LINK_CFG, &TxLinkCfg.word);
31741 + TxLinkCfg.field.TxCFAckEn = bPiggyBack;
31742 + RTMP_IO_WRITE32(pAd, TX_LINK_CFG, TxLinkCfg.word);
31746 + ========================================================================
31747 + Routine Description:
31748 + check if this entry need to switch rate automatically
31758 + ========================================================================
31760 +BOOLEAN RTMPCheckEntryEnableAutoRateSwitch(
31761 + IN PRTMP_ADAPTER pAd,
31762 + IN PMAC_TABLE_ENTRY pEntry)
31764 + BOOLEAN result = TRUE;
31767 +#ifdef CONFIG_STA_SUPPORT
31768 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
31770 + // only associated STA counts
31771 + if (pEntry && (pEntry->ValidAsCLI) && (pEntry->Sst == SST_ASSOC))
31773 + result = pAd->StaCfg.bAutoTxRateSwitch;
31778 +#endif // CONFIG_STA_SUPPORT //
31786 +BOOLEAN RTMPAutoRateSwitchCheck(
31787 + IN PRTMP_ADAPTER pAd)
31790 +#ifdef CONFIG_STA_SUPPORT
31791 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
31793 + if (pAd->StaCfg.bAutoTxRateSwitch)
31796 +#endif // CONFIG_STA_SUPPORT //
31802 + ========================================================================
31803 + Routine Description:
31804 + check if this entry need to fix tx legacy rate
31814 + ========================================================================
31816 +UCHAR RTMPStaFixedTxMode(
31817 + IN PRTMP_ADAPTER pAd,
31818 + IN PMAC_TABLE_ENTRY pEntry)
31820 + UCHAR tx_mode = FIXED_TXMODE_HT;
31823 +#ifdef CONFIG_STA_SUPPORT
31824 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
31826 + tx_mode = (UCHAR)pAd->StaCfg.DesiredTransmitSetting.field.FixedTxMode;
31828 +#endif // CONFIG_STA_SUPPORT //
31834 + ========================================================================
31835 + Routine Description:
31836 + Overwrite HT Tx Mode by Fixed Legency Tx Mode, if specified.
31846 + ========================================================================
31848 +VOID RTMPUpdateLegacyTxSetting(
31849 + UCHAR fixed_tx_mode,
31850 + PMAC_TABLE_ENTRY pEntry)
31852 + HTTRANSMIT_SETTING TransmitSetting;
31854 + if (fixed_tx_mode == FIXED_TXMODE_HT)
31857 + TransmitSetting.word = 0;
31859 + TransmitSetting.field.MODE = pEntry->HTPhyMode.field.MODE;
31860 + TransmitSetting.field.MCS = pEntry->HTPhyMode.field.MCS;
31862 + if (fixed_tx_mode == FIXED_TXMODE_CCK)
31864 + TransmitSetting.field.MODE = MODE_CCK;
31865 + // CCK mode allow MCS 0~3
31866 + if (TransmitSetting.field.MCS > MCS_3)
31867 + TransmitSetting.field.MCS = MCS_3;
31871 + TransmitSetting.field.MODE = MODE_OFDM;
31872 + // OFDM mode allow MCS 0~7
31873 + if (TransmitSetting.field.MCS > MCS_7)
31874 + TransmitSetting.field.MCS = MCS_7;
31877 + if (pEntry->HTPhyMode.field.MODE >= TransmitSetting.field.MODE)
31879 + pEntry->HTPhyMode.word = TransmitSetting.word;
31880 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPUpdateLegacyTxSetting : wcid-%d, MODE=%s, MCS=%d \n",
31881 + pEntry->Aid, GetPhyMode(pEntry->HTPhyMode.field.MODE), pEntry->HTPhyMode.field.MCS));
31885 +#ifdef CONFIG_STA_SUPPORT
31887 + ==========================================================================
31889 + dynamic tune BBP R66 to find a balance between sensibility and
31892 + IRQL = DISPATCH_LEVEL
31894 + ==========================================================================
31896 +VOID AsicStaBbpTuning(
31897 + IN PRTMP_ADAPTER pAd)
31899 + UCHAR OrigR66Value = 0, R66;//, R66UpperBound = 0x30, R66LowerBound = 0x30;
31902 + // 2860C did not support Fase CCA, therefore can't tune
31903 + if (pAd->MACVersion == 0x28600100)
31909 + if (pAd->Mlme.CntlMachine.CurrState != CNTL_IDLE) // no R66 tuning when SCANNING
31912 + if ((pAd->OpMode == OPMODE_STA)
31913 + && (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED)
31915 + && !(OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_DOZE))
31918 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R66, &OrigR66Value);
31919 + R66 = OrigR66Value;
31921 + if (pAd->Antenna.field.RxPath > 1)
31922 + Rssi = (pAd->StaCfg.RssiSample.AvgRssi0 + pAd->StaCfg.RssiSample.AvgRssi1) >> 1;
31924 + Rssi = pAd->StaCfg.RssiSample.AvgRssi0;
31926 + if (pAd->LatchRfRegs.Channel <= 14)
31929 + // RT3070 is a no LNA solution, it should have different control regarding to AGC gain control
31930 + // Otherwise, it will have some throughput side effect when low RSSI
31931 + if (IS_RT30xx(pAd))
31933 + if (Rssi > RSSI_FOR_MID_LOW_SENSIBILITY)
31935 + R66 = 0x1C + 2*GET_LNA_GAIN(pAd) + 0x20;
31936 + if (OrigR66Value != R66)
31938 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, R66);
31943 + R66 = 0x1C + 2*GET_LNA_GAIN(pAd);
31944 + if (OrigR66Value != R66)
31946 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, R66);
31951 +#endif // RT30xx //
31953 + if (Rssi > RSSI_FOR_MID_LOW_SENSIBILITY)
31955 + R66 = (0x2E + GET_LNA_GAIN(pAd)) + 0x10;
31956 + if (OrigR66Value != R66)
31958 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, R66);
31963 + R66 = 0x2E + GET_LNA_GAIN(pAd);
31964 + if (OrigR66Value != R66)
31966 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, R66);
31974 + if (pAd->CommonCfg.BBPCurrentBW == BW_20)
31976 + if (Rssi > RSSI_FOR_MID_LOW_SENSIBILITY)
31978 + R66 = 0x32 + (GET_LNA_GAIN(pAd)*5)/3 + 0x10;
31979 + if (OrigR66Value != R66)
31981 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, R66);
31986 + R66 = 0x32 + (GET_LNA_GAIN(pAd)*5)/3;
31987 + if (OrigR66Value != R66)
31989 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, R66);
31995 + if (Rssi > RSSI_FOR_MID_LOW_SENSIBILITY)
31997 + R66 = 0x3A + (GET_LNA_GAIN(pAd)*5)/3 + 0x10;
31998 + if (OrigR66Value != R66)
32000 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, R66);
32005 + R66 = 0x3A + (GET_LNA_GAIN(pAd)*5)/3;
32006 + if (OrigR66Value != R66)
32008 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, R66);
32017 +#endif // CONFIG_STA_SUPPORT //
32019 +VOID RTMPSetAGCInitValue(
32020 + IN PRTMP_ADAPTER pAd,
32021 + IN UCHAR BandWidth)
32023 + UCHAR R66 = 0x30;
32025 + if (pAd->LatchRfRegs.Channel <= 14)
32027 + R66 = 0x2E + GET_LNA_GAIN(pAd);
32028 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, R66);
32032 + if (BandWidth == BW_20)
32034 + R66 = (UCHAR)(0x32 + (GET_LNA_GAIN(pAd)*5)/3);
32035 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, R66);
32037 +#ifdef DOT11_N_SUPPORT
32040 + R66 = (UCHAR)(0x3A + (GET_LNA_GAIN(pAd)*5)/3);
32041 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, R66);
32043 +#endif // DOT11_N_SUPPORT //
32048 +VOID AsicTurnOffRFClk(
32049 + IN PRTMP_ADAPTER pAd,
32050 + IN UCHAR Channel)
32052 + // RF R2 bit 18 = 0
32053 + UINT32 R1 = 0, R2 = 0, R3 = 0;
32055 + RTMP_RF_REGS *RFRegTable;
32058 + // The RF programming sequence is difference between 3xxx and 2xxx
32059 + if (IS_RT3090(pAd))
32061 + RT30xxLoadRFSleepModeSetup(pAd); // add by johnli, RF power sequence setup, load RF sleep-mode setup
32065 +#endif // RT30xx //
32066 + RFRegTable = RF2850RegTable;
32068 + switch (pAd->RfIcType)
32075 + for (index = 0; index < NUM_OF_2850_CHNL; index++)
32077 + if (Channel == RFRegTable[index].Channel)
32079 + R1 = RFRegTable[index].R1 & 0xffffdfff;
32080 + R2 = RFRegTable[index].R2 & 0xfffbffff;
32081 + R3 = RFRegTable[index].R3 & 0xfff3ffff;
32083 + RTMP_RF_IO_WRITE32(pAd, R1);
32084 + RTMP_RF_IO_WRITE32(pAd, R2);
32086 + // Program R1b13 to 1, R3/b18,19 to 0, R2b18 to 0.
32087 + // Set RF R2 bit18=0, R3 bit[18:19]=0
32088 + //if (pAd->StaCfg.bRadio == FALSE)
32091 + RTMP_RF_IO_WRITE32(pAd, R3);
32093 + DBGPRINT(RT_DEBUG_TRACE, ("AsicTurnOffRFClk#%d(RF=%d, ) , R2=0x%08x, R3 = 0x%08x \n",
32094 + Channel, pAd->RfIcType, R2, R3));
32097 + DBGPRINT(RT_DEBUG_TRACE, ("AsicTurnOffRFClk#%d(RF=%d, ) , R2=0x%08x \n",
32098 + Channel, pAd->RfIcType, R2));
32109 +#endif // RT30xx //
32114 +VOID AsicTurnOnRFClk(
32115 + IN PRTMP_ADAPTER pAd,
32116 + IN UCHAR Channel)
32118 + // RF R2 bit 18 = 0
32119 + UINT32 R1 = 0, R2 = 0, R3 = 0;
32121 + RTMP_RF_REGS *RFRegTable;
32124 + // The RF programming sequence is difference between 3xxx and 2xxx
32125 + if (IS_RT3090(pAd))
32130 +#endif // RT30xx //
32131 + RFRegTable = RF2850RegTable;
32133 + switch (pAd->RfIcType)
32140 + for (index = 0; index < NUM_OF_2850_CHNL; index++)
32142 + if (Channel == RFRegTable[index].Channel)
32144 + R3 = pAd->LatchRfRegs.R3;
32145 + R3 &= 0xfff3ffff;
32146 + R3 |= 0x00080000;
32147 + RTMP_RF_IO_WRITE32(pAd, R3);
32149 + R1 = RFRegTable[index].R1;
32150 + RTMP_RF_IO_WRITE32(pAd, R1);
32152 + R2 = RFRegTable[index].R2;
32153 + if (pAd->Antenna.field.TxPath == 1)
32155 + R2 |= 0x4000; // If TXpath is 1, bit 14 = 1;
32158 + if (pAd->Antenna.field.RxPath == 2)
32160 + R2 |= 0x40; // write 1 to off Rxpath.
32162 + else if (pAd->Antenna.field.RxPath == 1)
32164 + R2 |= 0x20040; // write 1 to off RxPath
32166 + RTMP_RF_IO_WRITE32(pAd, R2);
32179 +#endif // RT30xx //
32184 +++ b/drivers/staging/rt3070/common/netif_block.c
32187 + *************************************************************************
32188 + * Ralink Tech Inc.
32189 + * 5F., No.36, Taiyuan St., Jhubei City,
32190 + * Hsinchu County 302,
32193 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
32195 + * This program is free software; you can redistribute it and/or modify *
32196 + * it under the terms of the GNU General Public License as published by *
32197 + * the Free Software Foundation; either version 2 of the License, or *
32198 + * (at your option) any later version. *
32200 + * This program is distributed in the hope that it will be useful, *
32201 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
32202 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
32203 + * GNU General Public License for more details. *
32205 + * You should have received a copy of the GNU General Public License *
32206 + * along with this program; if not, write to the *
32207 + * Free Software Foundation, Inc., *
32208 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
32210 + *************************************************************************
32213 +#include "../rt_config.h"
32214 +#include "netif_block.h"
32216 +static NETIF_ENTRY freeNetIfEntryPool[FREE_NETIF_POOL_SIZE];
32217 +static LIST_HEADER freeNetIfEntryList;
32219 +void initblockQueueTab(
32220 + IN PRTMP_ADAPTER pAd)
32224 + initList(&freeNetIfEntryList);
32225 + for (i = 0; i < FREE_NETIF_POOL_SIZE; i++)
32226 + insertTailList(&freeNetIfEntryList, (PLIST_ENTRY)&freeNetIfEntryPool[i]);
32228 + for (i=0; i < NUM_OF_TX_RING; i++)
32229 + initList(&pAd->blockQueueTab[i].NetIfList);
32234 +BOOLEAN blockNetIf(
32235 + IN PBLOCK_QUEUE_ENTRY pBlockQueueEntry,
32236 + IN PNET_DEV pNetDev)
32238 + PNETIF_ENTRY pNetIfEntry = NULL;
32240 + if ((pNetIfEntry = (PNETIF_ENTRY)removeHeadList(&freeNetIfEntryList)) != NULL)
32242 + netif_stop_queue(pNetDev);
32243 + pNetIfEntry->pNetDev = pNetDev;
32244 + insertTailList(&pBlockQueueEntry->NetIfList, (PLIST_ENTRY)pNetIfEntry);
32246 + pBlockQueueEntry->SwTxQueueBlockFlag = TRUE;
32247 + DBGPRINT(RT_DEBUG_TRACE, ("netif_stop_queue(%s)\n", pNetDev->name));
32255 +VOID releaseNetIf(
32256 + IN PBLOCK_QUEUE_ENTRY pBlockQueueEntry)
32258 + PNETIF_ENTRY pNetIfEntry = NULL;
32259 + PLIST_HEADER pNetIfList = &pBlockQueueEntry->NetIfList;
32261 + while((pNetIfEntry = (PNETIF_ENTRY)removeHeadList(pNetIfList)) != NULL)
32263 + PNET_DEV pNetDev = pNetIfEntry->pNetDev;
32264 + netif_wake_queue(pNetDev);
32265 + insertTailList(&freeNetIfEntryList, (PLIST_ENTRY)pNetIfEntry);
32267 + DBGPRINT(RT_DEBUG_TRACE, ("netif_wake_queue(%s)\n", pNetDev->name));
32269 + pBlockQueueEntry->SwTxQueueBlockFlag = FALSE;
32274 +VOID StopNetIfQueue(
32275 + IN PRTMP_ADAPTER pAd,
32277 + IN PNDIS_PACKET pPacket)
32279 + PNET_DEV NetDev = NULL;
32281 + BOOLEAN valid = FALSE;
32283 +#ifdef WDS_SUPPORT
32284 + if (RTMP_GET_PACKET_NET_DEVICE(pPacket) >= MIN_NET_DEVICE_FOR_WDS)
32286 + IfIdx = (RTMP_GET_PACKET_NET_DEVICE(pPacket) - MIN_NET_DEVICE_FOR_WDS) % MAX_WDS_ENTRY;
32287 + NetDev = pAd->WdsTab.WdsEntry[IfIdx].dev;
32290 +#endif // WDS_SUPPORT //
32292 +#ifdef MBSS_SUPPORT
32293 + if (pAd->OpMode == OPMODE_AP)
32295 + IfIdx = (RTMP_GET_PACKET_NET_DEVICE(pPacket) - MIN_NET_DEVICE_FOR_MBSSID) % MAX_MBSSID_NUM;
32296 + NetDev = pAd->ApCfg.MBSSID[IfIdx].MSSIDDev;
32300 + IfIdx = MAIN_MBSSID;
32301 + NetDev = pAd->net_dev;
32304 + IfIdx = MAIN_MBSSID;
32305 + NetDev = pAd->net_dev;
32309 + // WMM support 4 software queues.
32310 + // One software queue full doesn't mean device have no capbility to transmit packet.
32311 + // So disable block Net-If queue function while WMM enable.
32312 +#ifdef CONFIG_STA_SUPPORT
32313 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
32314 + valid = (pAd->CommonCfg.bWmmCapable == TRUE) ? FALSE : TRUE;
32315 +#endif // CONFIG_STA_SUPPORT //
32318 + blockNetIf(&pAd->blockQueueTab[QueIdx], NetDev);
32323 +++ b/drivers/staging/rt3070/common/rtmp_init.c
32326 + *************************************************************************
32327 + * Ralink Tech Inc.
32328 + * 5F., No.36, Taiyuan St., Jhubei City,
32329 + * Hsinchu County 302,
32332 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
32334 + * This program is free software; you can redistribute it and/or modify *
32335 + * it under the terms of the GNU General Public License as published by *
32336 + * the Free Software Foundation; either version 2 of the License, or *
32337 + * (at your option) any later version. *
32339 + * This program is distributed in the hope that it will be useful, *
32340 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
32341 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
32342 + * GNU General Public License for more details. *
32344 + * You should have received a copy of the GNU General Public License *
32345 + * along with this program; if not, write to the *
32346 + * Free Software Foundation, Inc., *
32347 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
32349 + *************************************************************************
32355 + Miniport generic portion header file
32357 + Revision History:
32359 + -------- ---------- ----------------------------------------------
32360 + Paul Lin 2002-08-01 created
32361 + John Chang 2004-08-20 RT2561/2661 use scatter-gather scheme
32362 + Jan Lee 2006-09-15 RT2860. Change for 802.11n , EEPROM, Led, BA, HT.
32364 +#include "../rt_config.h"
32365 +#include "../firmware.h"
32367 +//#define BIN_IN_FILE /* use *.bin firmware */
32369 +UCHAR BIT8[] = {0x01, 0x02, 0x04, 0x08, 0x10, 0x20, 0x40, 0x80};
32370 +ULONG BIT32[] = {0x00000001, 0x00000002, 0x00000004, 0x00000008,
32371 + 0x00000010, 0x00000020, 0x00000040, 0x00000080,
32372 + 0x00000100, 0x00000200, 0x00000400, 0x00000800,
32373 + 0x00001000, 0x00002000, 0x00004000, 0x00008000,
32374 + 0x00010000, 0x00020000, 0x00040000, 0x00080000,
32375 + 0x00100000, 0x00200000, 0x00400000, 0x00800000,
32376 + 0x01000000, 0x02000000, 0x04000000, 0x08000000,
32377 + 0x10000000, 0x20000000, 0x40000000, 0x80000000};
32379 +char* CipherName[] = {"none","wep64","wep128","TKIP","AES","CKIP64","CKIP128"};
32381 +const unsigned short ccitt_16Table[] = {
32382 + 0x0000, 0x1021, 0x2042, 0x3063, 0x4084, 0x50A5, 0x60C6, 0x70E7,
32383 + 0x8108, 0x9129, 0xA14A, 0xB16B, 0xC18C, 0xD1AD, 0xE1CE, 0xF1EF,
32384 + 0x1231, 0x0210, 0x3273, 0x2252, 0x52B5, 0x4294, 0x72F7, 0x62D6,
32385 + 0x9339, 0x8318, 0xB37B, 0xA35A, 0xD3BD, 0xC39C, 0xF3FF, 0xE3DE,
32386 + 0x2462, 0x3443, 0x0420, 0x1401, 0x64E6, 0x74C7, 0x44A4, 0x5485,
32387 + 0xA56A, 0xB54B, 0x8528, 0x9509, 0xE5EE, 0xF5CF, 0xC5AC, 0xD58D,
32388 + 0x3653, 0x2672, 0x1611, 0x0630, 0x76D7, 0x66F6, 0x5695, 0x46B4,
32389 + 0xB75B, 0xA77A, 0x9719, 0x8738, 0xF7DF, 0xE7FE, 0xD79D, 0xC7BC,
32390 + 0x48C4, 0x58E5, 0x6886, 0x78A7, 0x0840, 0x1861, 0x2802, 0x3823,
32391 + 0xC9CC, 0xD9ED, 0xE98E, 0xF9AF, 0x8948, 0x9969, 0xA90A, 0xB92B,
32392 + 0x5AF5, 0x4AD4, 0x7AB7, 0x6A96, 0x1A71, 0x0A50, 0x3A33, 0x2A12,
32393 + 0xDBFD, 0xCBDC, 0xFBBF, 0xEB9E, 0x9B79, 0x8B58, 0xBB3B, 0xAB1A,
32394 + 0x6CA6, 0x7C87, 0x4CE4, 0x5CC5, 0x2C22, 0x3C03, 0x0C60, 0x1C41,
32395 + 0xEDAE, 0xFD8F, 0xCDEC, 0xDDCD, 0xAD2A, 0xBD0B, 0x8D68, 0x9D49,
32396 + 0x7E97, 0x6EB6, 0x5ED5, 0x4EF4, 0x3E13, 0x2E32, 0x1E51, 0x0E70,
32397 + 0xFF9F, 0xEFBE, 0xDFDD, 0xCFFC, 0xBF1B, 0xAF3A, 0x9F59, 0x8F78,
32398 + 0x9188, 0x81A9, 0xB1CA, 0xA1EB, 0xD10C, 0xC12D, 0xF14E, 0xE16F,
32399 + 0x1080, 0x00A1, 0x30C2, 0x20E3, 0x5004, 0x4025, 0x7046, 0x6067,
32400 + 0x83B9, 0x9398, 0xA3FB, 0xB3DA, 0xC33D, 0xD31C, 0xE37F, 0xF35E,
32401 + 0x02B1, 0x1290, 0x22F3, 0x32D2, 0x4235, 0x5214, 0x6277, 0x7256,
32402 + 0xB5EA, 0xA5CB, 0x95A8, 0x8589, 0xF56E, 0xE54F, 0xD52C, 0xC50D,
32403 + 0x34E2, 0x24C3, 0x14A0, 0x0481, 0x7466, 0x6447, 0x5424, 0x4405,
32404 + 0xA7DB, 0xB7FA, 0x8799, 0x97B8, 0xE75F, 0xF77E, 0xC71D, 0xD73C,
32405 + 0x26D3, 0x36F2, 0x0691, 0x16B0, 0x6657, 0x7676, 0x4615, 0x5634,
32406 + 0xD94C, 0xC96D, 0xF90E, 0xE92F, 0x99C8, 0x89E9, 0xB98A, 0xA9AB,
32407 + 0x5844, 0x4865, 0x7806, 0x6827, 0x18C0, 0x08E1, 0x3882, 0x28A3,
32408 + 0xCB7D, 0xDB5C, 0xEB3F, 0xFB1E, 0x8BF9, 0x9BD8, 0xABBB, 0xBB9A,
32409 + 0x4A75, 0x5A54, 0x6A37, 0x7A16, 0x0AF1, 0x1AD0, 0x2AB3, 0x3A92,
32410 + 0xFD2E, 0xED0F, 0xDD6C, 0xCD4D, 0xBDAA, 0xAD8B, 0x9DE8, 0x8DC9,
32411 + 0x7C26, 0x6C07, 0x5C64, 0x4C45, 0x3CA2, 0x2C83, 0x1CE0, 0x0CC1,
32412 + 0xEF1F, 0xFF3E, 0xCF5D, 0xDF7C, 0xAF9B, 0xBFBA, 0x8FD9, 0x9FF8,
32413 + 0x6E17, 0x7E36, 0x4E55, 0x5E74, 0x2E93, 0x3EB2, 0x0ED1, 0x1EF0
32415 +#define ByteCRC16(v, crc) \
32416 + (unsigned short)((crc << 8) ^ ccitt_16Table[((crc >> 8) ^ (v)) & 255])
32418 +unsigned char BitReverse(unsigned char x)
32421 + unsigned char Temp=0;
32424 + if(x & 0x80) Temp |= 0x80;
32433 +// BBP register initialization set
32435 +REG_PAIR BBPRegTable[] = {
32436 + {BBP_R65, 0x2C}, // fix rssi issue
32437 + {BBP_R66, 0x38}, // Also set this default value to pAd->BbpTuning.R66CurrentValue at initial
32439 + {BBP_R70, 0xa}, // BBP_R70 will change to 0x8 in ApStartUp and LinkUp for rt2860C, otherwise value is 0xa
32444 + {BBP_R84, 0x99}, // 0x19 is for rt2860E and after. This is for extension channel overlapping IOT. 0x99 is for rt2860D and before
32445 + {BBP_R86, 0x00}, // middle range issue, Rory @2008-01-28
32446 + {BBP_R91, 0x04}, // middle range issue, Rory @2008-01-28
32447 + {BBP_R92, 0x00}, // middle range issue, Rory @2008-01-28
32448 + {BBP_R103, 0x00}, // near range high-power issue, requested from Gary @2008-0528
32449 + {BBP_R105, 0x05}, // 0x05 is for rt2860E to turn on FEQ control. It is safe for rt2860D and before, because Bit 7:2 are reserved in rt2860D and before.
32451 +#define NUM_BBP_REG_PARMS (sizeof(BBPRegTable) / sizeof(REG_PAIR))
32454 +// RF register initialization set
32457 +REG_PAIR RT30xx_RFRegTable[] = {
32478 +#define NUM_RF_REG_PARMS (sizeof(RT30xx_RFRegTable) / sizeof(REG_PAIR))
32479 +#endif // RT30xx //
32482 +// ASIC register initialization sets
32485 +RTMP_REG_PAIR MACRegTable[] = {
32486 +#if defined(HW_BEACON_OFFSET) && (HW_BEACON_OFFSET == 0x200)
32487 + {BCN_OFFSET0, 0xf8f0e8e0}, /* 0x3800(e0), 0x3A00(e8), 0x3C00(f0), 0x3E00(f8), 512B for each beacon */
32488 + {BCN_OFFSET1, 0x6f77d0c8}, /* 0x3200(c8), 0x3400(d0), 0x1DC0(77), 0x1BC0(6f), 512B for each beacon */
32489 +#elif defined(HW_BEACON_OFFSET) && (HW_BEACON_OFFSET == 0x100)
32490 + {BCN_OFFSET0, 0xece8e4e0}, /* 0x3800, 0x3A00, 0x3C00, 0x3E00, 512B for each beacon */
32491 + {BCN_OFFSET1, 0xfcf8f4f0}, /* 0x3800, 0x3A00, 0x3C00, 0x3E00, 512B for each beacon */
32493 + #error You must re-calculate new value for BCN_OFFSET0 & BCN_OFFSET1 in MACRegTable[]!!!
32494 +#endif // HW_BEACON_OFFSET //
32496 + {LEGACY_BASIC_RATE, 0x0000013f}, // Basic rate set bitmap
32497 + {HT_BASIC_RATE, 0x00008003}, // Basic HT rate set , 20M, MCS=3, MM. Format is the same as in TXWI.
32498 + {MAC_SYS_CTRL, 0x00}, // 0x1004, , default Disable RX
32499 + {RX_FILTR_CFG, 0x17f97}, //0x1400 , RX filter control,
32500 + {BKOFF_SLOT_CFG, 0x209}, // default set short slot time, CC_DELAY_TIME should be 2
32501 + //{TX_SW_CFG0, 0x40a06}, // Gary,2006-08-23
32502 + {TX_SW_CFG0, 0x0}, // Gary,2008-05-21 for CWC test
32503 + {TX_SW_CFG1, 0x80606}, // Gary,2006-08-23
32504 + {TX_LINK_CFG, 0x1020}, // Gary,2006-08-23
32505 + {TX_TIMEOUT_CFG, 0x000a2090},
32506 + {MAX_LEN_CFG, MAX_AGGREGATION_SIZE | 0x00001000}, // 0x3018, MAX frame length. Max PSDU = 16kbytes.
32507 + {LED_CFG, 0x7f031e46}, // Gary, 2006-08-23
32509 +//#ifdef CONFIG_STA_SUPPORT
32510 +// {WMM_AIFSN_CFG, 0x00002273},
32511 +// {WMM_CWMIN_CFG, 0x00002344},
32512 +// {WMM_CWMAX_CFG, 0x000034aa},
32513 +//#endif // CONFIG_STA_SUPPORT //
32514 +#ifdef INF_AMAZON_SE
32515 + {PBF_MAX_PCNT, 0x1F3F6F6F}, //iverson modify for usb issue, 2008/09/19
32516 + // 6F + 6F < total page count FE
32517 + // so that RX doesn't occupy TX's buffer space when WMM congestion.
32519 + {PBF_MAX_PCNT, 0x1F3FBF9F}, //0x1F3f7f9f}, //Jan, 2006/04/20
32520 +#endif // INF_AMAZON_SE //
32521 + //{TX_RTY_CFG, 0x6bb80408}, // Jan, 2006/11/16
32522 + {TX_RTY_CFG, 0x47d01f0f}, // Jan, 2006/11/16, Set TxWI->ACK =0 in Probe Rsp Modify for 2860E ,2007-08-03
32523 + {AUTO_RSP_CFG, 0x00000013}, // Initial Auto_Responder, because QA will turn off Auto-Responder
32524 + {CCK_PROT_CFG, 0x05740003 /*0x01740003*/}, // Initial Auto_Responder, because QA will turn off Auto-Responder. And RTS threshold is enabled.
32525 + {OFDM_PROT_CFG, 0x05740003 /*0x01740003*/}, // Initial Auto_Responder, because QA will turn off Auto-Responder. And RTS threshold is enabled.
32526 +//PS packets use Tx1Q (for HCCA) when dequeue from PS unicast queue (WiFi WPA2 MA9_DT1 for Marvell B STA)
32528 +#ifdef CONFIG_STA_SUPPORT
32529 + {PBF_CFG, 0xf40006}, // Only enable Queue 2
32530 +#endif // CONFIG_STA_SUPPORT //
32531 + {MM40_PROT_CFG, 0x3F44084}, // Initial Auto_Responder, because QA will turn off Auto-Responder
32532 + {WPDMA_GLO_CFG, 0x00000030},
32533 +#endif // RT2870 //
32534 + {GF20_PROT_CFG, 0x01744004}, // set 19:18 --> Short NAV for MIMO PS
32535 + {GF40_PROT_CFG, 0x03F44084},
32536 + {MM20_PROT_CFG, 0x01744004},
32537 + {TXOP_CTRL_CFG, 0x0000583f, /*0x0000243f*/ /*0x000024bf*/}, //Extension channel backoff.
32538 + {TX_RTS_CFG, 0x00092b20},
32539 +//#ifdef WIFI_TEST
32540 + {EXP_ACK_TIME, 0x002400ca}, // default value
32542 +// {EXP_ACK_TIME, 0x005400ca}, // suggested by Gray @ 20070323 for 11n intel-sta throughput
32543 +//#endif // end - WIFI_TEST //
32544 + {TXOP_HLDR_ET, 0x00000002},
32546 + /* Jerry comments 2008/01/16: we use SIFS = 10us in CCK defaultly, but it seems that 10us
32547 + is too small for INTEL 2200bg card, so in MBSS mode, the delta time between beacon0
32548 + and beacon1 is SIFS (10us), so if INTEL 2200bg card connects to BSS0, the ping
32549 + will always lost. So we change the SIFS of CCK from 10us to 16us. */
32550 + {XIFS_TIME_CFG, 0x33a41010},
32551 + {PWR_PIN_CFG, 0x00000003}, // patch for 2880-E
32555 +#ifdef CONFIG_STA_SUPPORT
32556 +RTMP_REG_PAIR STAMACRegTable[] = {
32557 + {WMM_AIFSN_CFG, 0x00002273},
32558 + {WMM_CWMIN_CFG, 0x00002344},
32559 + {WMM_CWMAX_CFG, 0x000034aa},
32561 +#endif // CONFIG_STA_SUPPORT //
32563 +#define NUM_MAC_REG_PARMS (sizeof(MACRegTable) / sizeof(RTMP_REG_PAIR))
32564 +#ifdef CONFIG_STA_SUPPORT
32565 +#define NUM_STA_MAC_REG_PARMS (sizeof(STAMACRegTable) / sizeof(RTMP_REG_PAIR))
32566 +#endif // CONFIG_STA_SUPPORT //
32570 +// RT2870 Firmware Spec only used 1 oct for version expression
32572 +#define FIRMWARE_MINOR_VERSION 7
32574 +#endif // RT2870 //
32576 +// New 8k byte firmware size for RT3071/RT3072
32577 +#define FIRMWAREIMAGE_MAX_LENGTH 0x2000
32578 +#define FIRMWAREIMAGE_LENGTH (sizeof (FirmwareImage) / sizeof(UCHAR))
32579 +#define FIRMWARE_MAJOR_VERSION 0
32581 +#define FIRMWAREIMAGEV1_LENGTH 0x1000
32582 +#define FIRMWAREIMAGEV2_LENGTH 0x1000
32587 + ========================================================================
32589 + Routine Description:
32590 + Allocate RTMP_ADAPTER data block and do some initialization
32593 + Adapter Pointer to our adapter
32596 + NDIS_STATUS_SUCCESS
32597 + NDIS_STATUS_FAILURE
32599 + IRQL = PASSIVE_LEVEL
32603 + ========================================================================
32605 +NDIS_STATUS RTMPAllocAdapterBlock(
32607 + OUT PRTMP_ADAPTER *ppAdapter)
32609 + PRTMP_ADAPTER pAd;
32610 + NDIS_STATUS Status;
32612 + UCHAR *pBeaconBuf = NULL;
32614 + DBGPRINT(RT_DEBUG_TRACE, ("--> RTMPAllocAdapterBlock\n"));
32616 + *ppAdapter = NULL;
32620 + // Allocate RTMP_ADAPTER memory block
32621 + pBeaconBuf = kmalloc(MAX_BEACON_SIZE, MEM_ALLOC_FLAG);
32622 + if (pBeaconBuf == NULL)
32624 + Status = NDIS_STATUS_FAILURE;
32625 + DBGPRINT_ERR(("Failed to allocate memory - BeaconBuf!\n"));
32629 + Status = AdapterBlockAllocateMemory(handle, (PVOID *)&pAd);
32630 + if (Status != NDIS_STATUS_SUCCESS)
32632 + DBGPRINT_ERR(("Failed to allocate memory - ADAPTER\n"));
32635 + pAd->BeaconBuf = pBeaconBuf;
32636 + printk("\n\n=== pAd = %p, size = %d ===\n\n", pAd, (UINT32)sizeof(RTMP_ADAPTER));
32639 + // Init spin locks
32640 + NdisAllocateSpinLock(&pAd->MgmtRingLock);
32642 + for (index =0 ; index < NUM_OF_TX_RING; index++)
32644 + NdisAllocateSpinLock(&pAd->TxSwQueueLock[index]);
32645 + NdisAllocateSpinLock(&pAd->DeQueueLock[index]);
32646 + pAd->DeQueueRunning[index] = FALSE;
32649 + NdisAllocateSpinLock(&pAd->irq_lock);
32653 + if ((Status != NDIS_STATUS_SUCCESS) && (pBeaconBuf))
32654 + kfree(pBeaconBuf);
32656 + *ppAdapter = pAd;
32658 + DBGPRINT_S(Status, ("<-- RTMPAllocAdapterBlock, Status=%x\n", Status));
32663 + ========================================================================
32665 + Routine Description:
32666 + Read initial Tx power per MCS and BW from EEPROM
32669 + Adapter Pointer to our adapter
32674 + IRQL = PASSIVE_LEVEL
32678 + ========================================================================
32680 +VOID RTMPReadTxPwrPerRate(
32681 + IN PRTMP_ADAPTER pAd)
32683 + ULONG data, Adata, Gdata;
32684 + USHORT i, value, value2;
32685 + INT Apwrdelta, Gpwrdelta;
32686 + UCHAR t1,t2,t3,t4;
32687 + BOOLEAN bValid, bApwrdeltaMinus = TRUE, bGpwrdeltaMinus = TRUE;
32690 + // Get power delta for 20MHz and 40MHz.
32692 + DBGPRINT(RT_DEBUG_TRACE, ("Txpower per Rate\n"));
32693 + RT28xx_EEPROM_READ16(pAd, EEPROM_TXPOWER_DELTA, value2);
32697 + if ((value2 & 0xff) != 0xff)
32699 + if ((value2 & 0x80))
32700 + Gpwrdelta = (value2&0xf);
32702 + if ((value2 & 0x40))
32703 + bGpwrdeltaMinus = FALSE;
32705 + bGpwrdeltaMinus = TRUE;
32707 + if ((value2 & 0xff00) != 0xff00)
32709 + if ((value2 & 0x8000))
32710 + Apwrdelta = ((value2&0xf00)>>8);
32712 + if ((value2 & 0x4000))
32713 + bApwrdeltaMinus = FALSE;
32715 + bApwrdeltaMinus = TRUE;
32717 + DBGPRINT(RT_DEBUG_TRACE, ("Gpwrdelta = %x, Apwrdelta = %x .\n", Gpwrdelta, Apwrdelta));
32720 + // Get Txpower per MCS for 20MHz in 2.4G.
32722 + for (i=0; i<5; i++)
32724 + RT28xx_EEPROM_READ16(pAd, EEPROM_TXPOWER_BYRATE_20MHZ_2_4G + i*4, value);
32726 + if (bApwrdeltaMinus == FALSE)
32728 + t1 = (value&0xf)+(Apwrdelta);
32731 + t2 = ((value&0xf0)>>4)+(Apwrdelta);
32734 + t3 = ((value&0xf00)>>8)+(Apwrdelta);
32737 + t4 = ((value&0xf000)>>12)+(Apwrdelta);
32743 + if ((value&0xf) > Apwrdelta)
32744 + t1 = (value&0xf)-(Apwrdelta);
32747 + if (((value&0xf0)>>4) > Apwrdelta)
32748 + t2 = ((value&0xf0)>>4)-(Apwrdelta);
32751 + if (((value&0xf00)>>8) > Apwrdelta)
32752 + t3 = ((value&0xf00)>>8)-(Apwrdelta);
32755 + if (((value&0xf000)>>12) > Apwrdelta)
32756 + t4 = ((value&0xf000)>>12)-(Apwrdelta);
32760 + Adata = t1 + (t2<<4) + (t3<<8) + (t4<<12);
32761 + if (bGpwrdeltaMinus == FALSE)
32763 + t1 = (value&0xf)+(Gpwrdelta);
32766 + t2 = ((value&0xf0)>>4)+(Gpwrdelta);
32769 + t3 = ((value&0xf00)>>8)+(Gpwrdelta);
32772 + t4 = ((value&0xf000)>>12)+(Gpwrdelta);
32778 + if ((value&0xf) > Gpwrdelta)
32779 + t1 = (value&0xf)-(Gpwrdelta);
32782 + if (((value&0xf0)>>4) > Gpwrdelta)
32783 + t2 = ((value&0xf0)>>4)-(Gpwrdelta);
32786 + if (((value&0xf00)>>8) > Gpwrdelta)
32787 + t3 = ((value&0xf00)>>8)-(Gpwrdelta);
32790 + if (((value&0xf000)>>12) > Gpwrdelta)
32791 + t4 = ((value&0xf000)>>12)-(Gpwrdelta);
32795 + Gdata = t1 + (t2<<4) + (t3<<8) + (t4<<12);
32797 + RT28xx_EEPROM_READ16(pAd, EEPROM_TXPOWER_BYRATE_20MHZ_2_4G + i*4 + 2, value);
32798 + if (bApwrdeltaMinus == FALSE)
32800 + t1 = (value&0xf)+(Apwrdelta);
32803 + t2 = ((value&0xf0)>>4)+(Apwrdelta);
32806 + t3 = ((value&0xf00)>>8)+(Apwrdelta);
32809 + t4 = ((value&0xf000)>>12)+(Apwrdelta);
32815 + if ((value&0xf) > Apwrdelta)
32816 + t1 = (value&0xf)-(Apwrdelta);
32819 + if (((value&0xf0)>>4) > Apwrdelta)
32820 + t2 = ((value&0xf0)>>4)-(Apwrdelta);
32823 + if (((value&0xf00)>>8) > Apwrdelta)
32824 + t3 = ((value&0xf00)>>8)-(Apwrdelta);
32827 + if (((value&0xf000)>>12) > Apwrdelta)
32828 + t4 = ((value&0xf000)>>12)-(Apwrdelta);
32832 + Adata |= ((t1<<16) + (t2<<20) + (t3<<24) + (t4<<28));
32833 + if (bGpwrdeltaMinus == FALSE)
32835 + t1 = (value&0xf)+(Gpwrdelta);
32838 + t2 = ((value&0xf0)>>4)+(Gpwrdelta);
32841 + t3 = ((value&0xf00)>>8)+(Gpwrdelta);
32844 + t4 = ((value&0xf000)>>12)+(Gpwrdelta);
32850 + if ((value&0xf) > Gpwrdelta)
32851 + t1 = (value&0xf)-(Gpwrdelta);
32854 + if (((value&0xf0)>>4) > Gpwrdelta)
32855 + t2 = ((value&0xf0)>>4)-(Gpwrdelta);
32858 + if (((value&0xf00)>>8) > Gpwrdelta)
32859 + t3 = ((value&0xf00)>>8)-(Gpwrdelta);
32862 + if (((value&0xf000)>>12) > Gpwrdelta)
32863 + t4 = ((value&0xf000)>>12)-(Gpwrdelta);
32867 + Gdata |= ((t1<<16) + (t2<<20) + (t3<<24) + (t4<<28));
32868 + data |= (value<<16);
32870 + pAd->Tx20MPwrCfgABand[i] = pAd->Tx40MPwrCfgABand[i] = Adata;
32871 + pAd->Tx20MPwrCfgGBand[i] = pAd->Tx40MPwrCfgGBand[i] = Gdata;
32873 + if (data != 0xffffffff)
32874 + RTMP_IO_WRITE32(pAd, TX_PWR_CFG_0 + i*4, data);
32875 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("20MHz BW, 2.4G band-%lx, Adata = %lx, Gdata = %lx \n", data, Adata, Gdata));
32879 + // Check this block is valid for 40MHz in 2.4G. If invalid, use parameter for 20MHz in 2.4G
32882 + for (i=0; i<6; i++)
32884 + RT28xx_EEPROM_READ16(pAd, EEPROM_TXPOWER_BYRATE_40MHZ_2_4G + 2 + i*2, value);
32885 + if (((value & 0x00FF) == 0x00FF) || ((value & 0xFF00) == 0xFF00))
32893 + // Get Txpower per MCS for 40MHz in 2.4G.
32897 + for (i=0; i<4; i++)
32899 + RT28xx_EEPROM_READ16(pAd, EEPROM_TXPOWER_BYRATE_40MHZ_2_4G + i*4, value);
32900 + if (bGpwrdeltaMinus == FALSE)
32902 + t1 = (value&0xf)+(Gpwrdelta);
32905 + t2 = ((value&0xf0)>>4)+(Gpwrdelta);
32908 + t3 = ((value&0xf00)>>8)+(Gpwrdelta);
32911 + t4 = ((value&0xf000)>>12)+(Gpwrdelta);
32917 + if ((value&0xf) > Gpwrdelta)
32918 + t1 = (value&0xf)-(Gpwrdelta);
32921 + if (((value&0xf0)>>4) > Gpwrdelta)
32922 + t2 = ((value&0xf0)>>4)-(Gpwrdelta);
32925 + if (((value&0xf00)>>8) > Gpwrdelta)
32926 + t3 = ((value&0xf00)>>8)-(Gpwrdelta);
32929 + if (((value&0xf000)>>12) > Gpwrdelta)
32930 + t4 = ((value&0xf000)>>12)-(Gpwrdelta);
32934 + Gdata = t1 + (t2<<4) + (t3<<8) + (t4<<12);
32936 + RT28xx_EEPROM_READ16(pAd, EEPROM_TXPOWER_BYRATE_40MHZ_2_4G + i*4 + 2, value);
32937 + if (bGpwrdeltaMinus == FALSE)
32939 + t1 = (value&0xf)+(Gpwrdelta);
32942 + t2 = ((value&0xf0)>>4)+(Gpwrdelta);
32945 + t3 = ((value&0xf00)>>8)+(Gpwrdelta);
32948 + t4 = ((value&0xf000)>>12)+(Gpwrdelta);
32954 + if ((value&0xf) > Gpwrdelta)
32955 + t1 = (value&0xf)-(Gpwrdelta);
32958 + if (((value&0xf0)>>4) > Gpwrdelta)
32959 + t2 = ((value&0xf0)>>4)-(Gpwrdelta);
32962 + if (((value&0xf00)>>8) > Gpwrdelta)
32963 + t3 = ((value&0xf00)>>8)-(Gpwrdelta);
32966 + if (((value&0xf000)>>12) > Gpwrdelta)
32967 + t4 = ((value&0xf000)>>12)-(Gpwrdelta);
32971 + Gdata |= ((t1<<16) + (t2<<20) + (t3<<24) + (t4<<28));
32974 + pAd->Tx40MPwrCfgGBand[i+1] = (pAd->Tx40MPwrCfgGBand[i+1] & 0x0000FFFF) | (Gdata & 0xFFFF0000);
32976 + pAd->Tx40MPwrCfgGBand[i+1] = Gdata;
32978 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("40MHz BW, 2.4G band, Gdata = %lx \n", Gdata));
32983 + // Check this block is valid for 20MHz in 5G. If invalid, use parameter for 20MHz in 2.4G
32986 + for (i=0; i<8; i++)
32988 + RT28xx_EEPROM_READ16(pAd, EEPROM_TXPOWER_BYRATE_20MHZ_5G + 2 + i*2, value);
32989 + if (((value & 0x00FF) == 0x00FF) || ((value & 0xFF00) == 0xFF00))
32997 + // Get Txpower per MCS for 20MHz in 5G.
33001 + for (i=0; i<5; i++)
33003 + RT28xx_EEPROM_READ16(pAd, EEPROM_TXPOWER_BYRATE_20MHZ_5G + i*4, value);
33004 + if (bApwrdeltaMinus == FALSE)
33006 + t1 = (value&0xf)+(Apwrdelta);
33009 + t2 = ((value&0xf0)>>4)+(Apwrdelta);
33012 + t3 = ((value&0xf00)>>8)+(Apwrdelta);
33015 + t4 = ((value&0xf000)>>12)+(Apwrdelta);
33021 + if ((value&0xf) > Apwrdelta)
33022 + t1 = (value&0xf)-(Apwrdelta);
33025 + if (((value&0xf0)>>4) > Apwrdelta)
33026 + t2 = ((value&0xf0)>>4)-(Apwrdelta);
33029 + if (((value&0xf00)>>8) > Apwrdelta)
33030 + t3 = ((value&0xf00)>>8)-(Apwrdelta);
33033 + if (((value&0xf000)>>12) > Apwrdelta)
33034 + t4 = ((value&0xf000)>>12)-(Apwrdelta);
33038 + Adata = t1 + (t2<<4) + (t3<<8) + (t4<<12);
33040 + RT28xx_EEPROM_READ16(pAd, EEPROM_TXPOWER_BYRATE_20MHZ_5G + i*4 + 2, value);
33041 + if (bApwrdeltaMinus == FALSE)
33043 + t1 = (value&0xf)+(Apwrdelta);
33046 + t2 = ((value&0xf0)>>4)+(Apwrdelta);
33049 + t3 = ((value&0xf00)>>8)+(Apwrdelta);
33052 + t4 = ((value&0xf000)>>12)+(Apwrdelta);
33058 + if ((value&0xf) > Apwrdelta)
33059 + t1 = (value&0xf)-(Apwrdelta);
33062 + if (((value&0xf0)>>4) > Apwrdelta)
33063 + t2 = ((value&0xf0)>>4)-(Apwrdelta);
33066 + if (((value&0xf00)>>8) > Apwrdelta)
33067 + t3 = ((value&0xf00)>>8)-(Apwrdelta);
33070 + if (((value&0xf000)>>12) > Apwrdelta)
33071 + t4 = ((value&0xf000)>>12)-(Apwrdelta);
33075 + Adata |= ((t1<<16) + (t2<<20) + (t3<<24) + (t4<<28));
33078 + pAd->Tx20MPwrCfgABand[i] = (pAd->Tx20MPwrCfgABand[i] & 0x0000FFFF) | (Adata & 0xFFFF0000);
33080 + pAd->Tx20MPwrCfgABand[i] = Adata;
33082 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("20MHz BW, 5GHz band, Adata = %lx \n", Adata));
33087 + // Check this block is valid for 40MHz in 5G. If invalid, use parameter for 20MHz in 2.4G
33090 + for (i=0; i<6; i++)
33092 + RT28xx_EEPROM_READ16(pAd, EEPROM_TXPOWER_BYRATE_40MHZ_5G + 2 + i*2, value);
33093 + if (((value & 0x00FF) == 0x00FF) || ((value & 0xFF00) == 0xFF00))
33101 + // Get Txpower per MCS for 40MHz in 5G.
33105 + for (i=0; i<4; i++)
33107 + RT28xx_EEPROM_READ16(pAd, EEPROM_TXPOWER_BYRATE_40MHZ_5G + i*4, value);
33108 + if (bApwrdeltaMinus == FALSE)
33110 + t1 = (value&0xf)+(Apwrdelta);
33113 + t2 = ((value&0xf0)>>4)+(Apwrdelta);
33116 + t3 = ((value&0xf00)>>8)+(Apwrdelta);
33119 + t4 = ((value&0xf000)>>12)+(Apwrdelta);
33125 + if ((value&0xf) > Apwrdelta)
33126 + t1 = (value&0xf)-(Apwrdelta);
33129 + if (((value&0xf0)>>4) > Apwrdelta)
33130 + t2 = ((value&0xf0)>>4)-(Apwrdelta);
33133 + if (((value&0xf00)>>8) > Apwrdelta)
33134 + t3 = ((value&0xf00)>>8)-(Apwrdelta);
33137 + if (((value&0xf000)>>12) > Apwrdelta)
33138 + t4 = ((value&0xf000)>>12)-(Apwrdelta);
33142 + Adata = t1 + (t2<<4) + (t3<<8) + (t4<<12);
33144 + RT28xx_EEPROM_READ16(pAd, EEPROM_TXPOWER_BYRATE_40MHZ_5G + i*4 + 2, value);
33145 + if (bApwrdeltaMinus == FALSE)
33147 + t1 = (value&0xf)+(Apwrdelta);
33150 + t2 = ((value&0xf0)>>4)+(Apwrdelta);
33153 + t3 = ((value&0xf00)>>8)+(Apwrdelta);
33156 + t4 = ((value&0xf000)>>12)+(Apwrdelta);
33162 + if ((value&0xf) > Apwrdelta)
33163 + t1 = (value&0xf)-(Apwrdelta);
33166 + if (((value&0xf0)>>4) > Apwrdelta)
33167 + t2 = ((value&0xf0)>>4)-(Apwrdelta);
33170 + if (((value&0xf00)>>8) > Apwrdelta)
33171 + t3 = ((value&0xf00)>>8)-(Apwrdelta);
33174 + if (((value&0xf000)>>12) > Apwrdelta)
33175 + t4 = ((value&0xf000)>>12)-(Apwrdelta);
33179 + Adata |= ((t1<<16) + (t2<<20) + (t3<<24) + (t4<<28));
33182 + pAd->Tx40MPwrCfgABand[i+1] = (pAd->Tx40MPwrCfgABand[i+1] & 0x0000FFFF) | (Adata & 0xFFFF0000);
33184 + pAd->Tx40MPwrCfgABand[i+1] = Adata;
33186 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("40MHz BW, 5GHz band, Adata = %lx \n", Adata));
33193 + ========================================================================
33195 + Routine Description:
33196 + Read initial channel power parameters from EEPROM
33199 + Adapter Pointer to our adapter
33204 + IRQL = PASSIVE_LEVEL
33208 + ========================================================================
33210 +VOID RTMPReadChannelPwr(
33211 + IN PRTMP_ADAPTER pAd)
33213 + UCHAR i, choffset;
33214 + EEPROM_TX_PWR_STRUC Power;
33215 + EEPROM_TX_PWR_STRUC Power2;
33217 + // Read Tx power value for all channels
33218 + // Value from 1 - 0x7f. Default value is 24.
33219 + // Power value : 2.4G 0x00 (0) ~ 0x1F (31)
33220 + // : 5.5G 0xF9 (-7) ~ 0x0F (15)
33222 + // 0. 11b/g, ch1 - ch 14
33223 + for (i = 0; i < 7; i++)
33225 +// Power.word = RTMP_EEPROM_READ16(pAd, EEPROM_G_TX_PWR_OFFSET + i * 2);
33226 +// Power2.word = RTMP_EEPROM_READ16(pAd, EEPROM_G_TX2_PWR_OFFSET + i * 2);
33227 + RT28xx_EEPROM_READ16(pAd, EEPROM_G_TX_PWR_OFFSET + i * 2, Power.word);
33228 + RT28xx_EEPROM_READ16(pAd, EEPROM_G_TX2_PWR_OFFSET + i * 2, Power2.word);
33229 + pAd->TxPower[i * 2].Channel = i * 2 + 1;
33230 + pAd->TxPower[i * 2 + 1].Channel = i * 2 + 2;
33232 + if ((Power.field.Byte0 > 31) || (Power.field.Byte0 < 0))
33233 + pAd->TxPower[i * 2].Power = DEFAULT_RF_TX_POWER;
33235 + pAd->TxPower[i * 2].Power = Power.field.Byte0;
33237 + if ((Power.field.Byte1 > 31) || (Power.field.Byte1 < 0))
33238 + pAd->TxPower[i * 2 + 1].Power = DEFAULT_RF_TX_POWER;
33240 + pAd->TxPower[i * 2 + 1].Power = Power.field.Byte1;
33242 + if ((Power2.field.Byte0 > 31) || (Power2.field.Byte0 < 0))
33243 + pAd->TxPower[i * 2].Power2 = DEFAULT_RF_TX_POWER;
33245 + pAd->TxPower[i * 2].Power2 = Power2.field.Byte0;
33247 + if ((Power2.field.Byte1 > 31) || (Power2.field.Byte1 < 0))
33248 + pAd->TxPower[i * 2 + 1].Power2 = DEFAULT_RF_TX_POWER;
33250 + pAd->TxPower[i * 2 + 1].Power2 = Power2.field.Byte1;
33253 + // 1. U-NII lower/middle band: 36, 38, 40; 44, 46, 48; 52, 54, 56; 60, 62, 64 (including central frequency in BW 40MHz)
33254 + // 1.1 Fill up channel
33256 + for (i = 0; i < 4; i++)
33258 + pAd->TxPower[3 * i + choffset + 0].Channel = 36 + i * 8 + 0;
33259 + pAd->TxPower[3 * i + choffset + 0].Power = DEFAULT_RF_TX_POWER;
33260 + pAd->TxPower[3 * i + choffset + 0].Power2 = DEFAULT_RF_TX_POWER;
33262 + pAd->TxPower[3 * i + choffset + 1].Channel = 36 + i * 8 + 2;
33263 + pAd->TxPower[3 * i + choffset + 1].Power = DEFAULT_RF_TX_POWER;
33264 + pAd->TxPower[3 * i + choffset + 1].Power2 = DEFAULT_RF_TX_POWER;
33266 + pAd->TxPower[3 * i + choffset + 2].Channel = 36 + i * 8 + 4;
33267 + pAd->TxPower[3 * i + choffset + 2].Power = DEFAULT_RF_TX_POWER;
33268 + pAd->TxPower[3 * i + choffset + 2].Power2 = DEFAULT_RF_TX_POWER;
33271 + // 1.2 Fill up power
33272 + for (i = 0; i < 6; i++)
33274 +// Power.word = RTMP_EEPROM_READ16(pAd, EEPROM_A_TX_PWR_OFFSET + i * 2);
33275 +// Power2.word = RTMP_EEPROM_READ16(pAd, EEPROM_A_TX2_PWR_OFFSET + i * 2);
33276 + RT28xx_EEPROM_READ16(pAd, EEPROM_A_TX_PWR_OFFSET + i * 2, Power.word);
33277 + RT28xx_EEPROM_READ16(pAd, EEPROM_A_TX2_PWR_OFFSET + i * 2, Power2.word);
33279 + if ((Power.field.Byte0 < 16) && (Power.field.Byte0 >= -7))
33280 + pAd->TxPower[i * 2 + choffset + 0].Power = Power.field.Byte0;
33282 + if ((Power.field.Byte1 < 16) && (Power.field.Byte1 >= -7))
33283 + pAd->TxPower[i * 2 + choffset + 1].Power = Power.field.Byte1;
33285 + if ((Power2.field.Byte0 < 16) && (Power2.field.Byte0 >= -7))
33286 + pAd->TxPower[i * 2 + choffset + 0].Power2 = Power2.field.Byte0;
33288 + if ((Power2.field.Byte1 < 16) && (Power2.field.Byte1 >= -7))
33289 + pAd->TxPower[i * 2 + choffset + 1].Power2 = Power2.field.Byte1;
33292 + // 2. HipperLAN 2 100, 102 ,104; 108, 110, 112; 116, 118, 120; 124, 126, 128; 132, 134, 136; 140 (including central frequency in BW 40MHz)
33293 + // 2.1 Fill up channel
33294 + choffset = 14 + 12;
33295 + for (i = 0; i < 5; i++)
33297 + pAd->TxPower[3 * i + choffset + 0].Channel = 100 + i * 8 + 0;
33298 + pAd->TxPower[3 * i + choffset + 0].Power = DEFAULT_RF_TX_POWER;
33299 + pAd->TxPower[3 * i + choffset + 0].Power2 = DEFAULT_RF_TX_POWER;
33301 + pAd->TxPower[3 * i + choffset + 1].Channel = 100 + i * 8 + 2;
33302 + pAd->TxPower[3 * i + choffset + 1].Power = DEFAULT_RF_TX_POWER;
33303 + pAd->TxPower[3 * i + choffset + 1].Power2 = DEFAULT_RF_TX_POWER;
33305 + pAd->TxPower[3 * i + choffset + 2].Channel = 100 + i * 8 + 4;
33306 + pAd->TxPower[3 * i + choffset + 2].Power = DEFAULT_RF_TX_POWER;
33307 + pAd->TxPower[3 * i + choffset + 2].Power2 = DEFAULT_RF_TX_POWER;
33309 + pAd->TxPower[3 * 5 + choffset + 0].Channel = 140;
33310 + pAd->TxPower[3 * 5 + choffset + 0].Power = DEFAULT_RF_TX_POWER;
33311 + pAd->TxPower[3 * 5 + choffset + 0].Power2 = DEFAULT_RF_TX_POWER;
33313 + // 2.2 Fill up power
33314 + for (i = 0; i < 8; i++)
33316 +// Power.word = RTMP_EEPROM_READ16(pAd, EEPROM_A_TX_PWR_OFFSET + (choffset - 14) + i * 2);
33317 +// Power2.word = RTMP_EEPROM_READ16(pAd, EEPROM_A_TX2_PWR_OFFSET + (choffset - 14) + i * 2);
33318 + RT28xx_EEPROM_READ16(pAd, EEPROM_A_TX_PWR_OFFSET + (choffset - 14) + i * 2, Power.word);
33319 + RT28xx_EEPROM_READ16(pAd, EEPROM_A_TX2_PWR_OFFSET + (choffset - 14) + i * 2, Power2.word);
33321 + if ((Power.field.Byte0 < 16) && (Power.field.Byte0 >= -7))
33322 + pAd->TxPower[i * 2 + choffset + 0].Power = Power.field.Byte0;
33324 + if ((Power.field.Byte1 < 16) && (Power.field.Byte1 >= -7))
33325 + pAd->TxPower[i * 2 + choffset + 1].Power = Power.field.Byte1;
33327 + if ((Power2.field.Byte0 < 16) && (Power2.field.Byte0 >= -7))
33328 + pAd->TxPower[i * 2 + choffset + 0].Power2 = Power2.field.Byte0;
33330 + if ((Power2.field.Byte1 < 16) && (Power2.field.Byte1 >= -7))
33331 + pAd->TxPower[i * 2 + choffset + 1].Power2 = Power2.field.Byte1;
33334 + // 3. U-NII upper band: 149, 151, 153; 157, 159, 161; 165 (including central frequency in BW 40MHz)
33335 + // 3.1 Fill up channel
33336 + choffset = 14 + 12 + 16;
33337 + for (i = 0; i < 2; i++)
33339 + pAd->TxPower[3 * i + choffset + 0].Channel = 149 + i * 8 + 0;
33340 + pAd->TxPower[3 * i + choffset + 0].Power = DEFAULT_RF_TX_POWER;
33341 + pAd->TxPower[3 * i + choffset + 0].Power2 = DEFAULT_RF_TX_POWER;
33343 + pAd->TxPower[3 * i + choffset + 1].Channel = 149 + i * 8 + 2;
33344 + pAd->TxPower[3 * i + choffset + 1].Power = DEFAULT_RF_TX_POWER;
33345 + pAd->TxPower[3 * i + choffset + 1].Power2 = DEFAULT_RF_TX_POWER;
33347 + pAd->TxPower[3 * i + choffset + 2].Channel = 149 + i * 8 + 4;
33348 + pAd->TxPower[3 * i + choffset + 2].Power = DEFAULT_RF_TX_POWER;
33349 + pAd->TxPower[3 * i + choffset + 2].Power2 = DEFAULT_RF_TX_POWER;
33351 + pAd->TxPower[3 * 2 + choffset + 0].Channel = 165;
33352 + pAd->TxPower[3 * 2 + choffset + 0].Power = DEFAULT_RF_TX_POWER;
33353 + pAd->TxPower[3 * 2 + choffset + 0].Power2 = DEFAULT_RF_TX_POWER;
33355 + // 3.2 Fill up power
33356 + for (i = 0; i < 4; i++)
33358 +// Power.word = RTMP_EEPROM_READ16(pAd, EEPROM_A_TX_PWR_OFFSET + (choffset - 14) + i * 2);
33359 +// Power2.word = RTMP_EEPROM_READ16(pAd, EEPROM_A_TX2_PWR_OFFSET + (choffset - 14) + i * 2);
33360 + RT28xx_EEPROM_READ16(pAd, EEPROM_A_TX_PWR_OFFSET + (choffset - 14) + i * 2, Power.word);
33361 + RT28xx_EEPROM_READ16(pAd, EEPROM_A_TX2_PWR_OFFSET + (choffset - 14) + i * 2, Power2.word);
33363 + if ((Power.field.Byte0 < 16) && (Power.field.Byte0 >= -7))
33364 + pAd->TxPower[i * 2 + choffset + 0].Power = Power.field.Byte0;
33366 + if ((Power.field.Byte1 < 16) && (Power.field.Byte1 >= -7))
33367 + pAd->TxPower[i * 2 + choffset + 1].Power = Power.field.Byte1;
33369 + if ((Power2.field.Byte0 < 16) && (Power2.field.Byte0 >= -7))
33370 + pAd->TxPower[i * 2 + choffset + 0].Power2 = Power2.field.Byte0;
33372 + if ((Power2.field.Byte1 < 16) && (Power2.field.Byte1 >= -7))
33373 + pAd->TxPower[i * 2 + choffset + 1].Power2 = Power2.field.Byte1;
33376 + // 4. Print and Debug
33377 + choffset = 14 + 12 + 16 + 7;
33382 + ========================================================================
33384 + Routine Description:
33385 + Read the following from the registry
33386 + 1. All the parameters
33390 + Adapter Pointer to our adapter
33391 + WrapperConfigurationContext For use by NdisOpenConfiguration
33394 + NDIS_STATUS_SUCCESS
33395 + NDIS_STATUS_FAILURE
33396 + NDIS_STATUS_RESOURCES
33398 + IRQL = PASSIVE_LEVEL
33402 + ========================================================================
33404 +NDIS_STATUS NICReadRegParameters(
33405 + IN PRTMP_ADAPTER pAd,
33406 + IN NDIS_HANDLE WrapperConfigurationContext
33409 + NDIS_STATUS Status = NDIS_STATUS_SUCCESS;
33410 + DBGPRINT_S(Status, ("<-- NICReadRegParameters, Status=%x\n", Status));
33417 + ========================================================================
33419 + Routine Description:
33420 + For RF filter calibration purpose
33423 + pAd Pointer to our adapter
33428 + IRQL = PASSIVE_LEVEL
33430 + ========================================================================
33432 +VOID RTMPFilterCalibration(
33433 + IN PRTMP_ADAPTER pAd)
33435 + UCHAR R55x = 0, value, FilterTarget = 0x1E, BBPValue=0;
33436 + UINT loop = 0, count = 0, loopcnt = 0, ReTry = 0;
33437 + UCHAR RF_R24_Value = 0;
33439 + // Give bbp filter initial value
33440 + pAd->Mlme.CaliBW20RfR24 = 0x1F;
33441 + pAd->Mlme.CaliBW40RfR24 = 0x2F; //Bit[5] must be 1 for BW 40
33445 + if (loop == 1) //BandWidth = 40 MHz
33447 + // Write 0x27 to RF_R24 to program filter
33448 + RF_R24_Value = 0x27;
33449 + RT30xxWriteRFRegister(pAd, RF_R24, RF_R24_Value);
33450 + if (IS_RT3090(pAd))
33451 + FilterTarget = 0x15;
33453 + FilterTarget = 0x19;
33455 + // when calibrate BW40, BBP mask must set to BW40.
33456 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &BBPValue);
33457 + BBPValue&= (~0x18);
33458 + BBPValue|= (0x10);
33459 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, BBPValue);
33462 + RT30xxReadRFRegister(pAd, RF_R31, &value);
33464 + RT30xxWriteRFRegister(pAd, RF_R31, value);
33466 + else //BandWidth = 20 MHz
33468 + // Write 0x07 to RF_R24 to program filter
33469 + RF_R24_Value = 0x07;
33470 + RT30xxWriteRFRegister(pAd, RF_R24, RF_R24_Value);
33471 + if (IS_RT3090(pAd))
33472 + FilterTarget = 0x13;
33474 + FilterTarget = 0x16;
33477 + RT30xxReadRFRegister(pAd, RF_R31, &value);
33478 + value &= (~0x20);
33479 + RT30xxWriteRFRegister(pAd, RF_R31, value);
33482 + // Write 0x01 to RF_R22 to enable baseband loopback mode
33483 + RT30xxReadRFRegister(pAd, RF_R22, &value);
33485 + RT30xxWriteRFRegister(pAd, RF_R22, value);
33487 + // Write 0x00 to BBP_R24 to set power & frequency of passband test tone
33488 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R24, 0);
33492 + // Write 0x90 to BBP_R25 to transmit test tone
33493 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R25, 0x90);
33495 + RTMPusecDelay(1000);
33496 + // Read BBP_R55[6:0] for received power, set R55x = BBP_R55[6:0]
33497 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R55, &value);
33498 + R55x = value & 0xFF;
33500 + } while ((ReTry++ < 100) && (R55x == 0));
33502 + // Write 0x06 to BBP_R24 to set power & frequency of stopband test tone
33503 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R24, 0x06);
33507 + // Write 0x90 to BBP_R25 to transmit test tone
33508 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R25, 0x90);
33510 + //We need to wait for calibration
33511 + RTMPusecDelay(1000);
33512 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R55, &value);
33514 + if ((R55x - value) < FilterTarget)
33518 + else if ((R55x - value) == FilterTarget)
33528 + // prevent infinite loop cause driver hang.
33529 + if (loopcnt++ > 100)
33531 + DBGPRINT(RT_DEBUG_ERROR, ("RTMPFilterCalibration - can't find a valid value, loopcnt=%d stop calibrating", loopcnt));
33535 + // Write RF_R24 to program filter
33536 + RT30xxWriteRFRegister(pAd, RF_R24, RF_R24_Value);
33541 + RF_R24_Value = RF_R24_Value - ((count) ? (1) : (0));
33544 + // Store for future usage
33545 + if (loopcnt < 100)
33549 + //BandWidth = 20 MHz
33550 + pAd->Mlme.CaliBW20RfR24 = (UCHAR)RF_R24_Value;
33554 + //BandWidth = 40 MHz
33555 + pAd->Mlme.CaliBW40RfR24 = (UCHAR)RF_R24_Value;
33562 + RT30xxWriteRFRegister(pAd, RF_R24, RF_R24_Value);
33569 + // Set back to initial state
33571 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R24, 0);
33573 + RT30xxReadRFRegister(pAd, RF_R22, &value);
33574 + value &= ~(0x01);
33575 + RT30xxWriteRFRegister(pAd, RF_R22, value);
33577 + // set BBP back to BW20
33578 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &BBPValue);
33579 + BBPValue&= (~0x18);
33580 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, BBPValue);
33582 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPFilterCalibration - CaliBW20RfR24=0x%x, CaliBW40RfR24=0x%x\n", pAd->Mlme.CaliBW20RfR24, pAd->Mlme.CaliBW40RfR24));
33584 +#endif // RT30xx //
33588 +VOID NICInitRT30xxRFRegisters(IN PRTMP_ADAPTER pAd)
33591 + // Driver must read EEPROM to get RfIcType before initial RF registers
33592 + // Initialize RF register to default value
33593 + if (IS_RT3070(pAd) || IS_RT3071(pAd))
33595 + // Init RF calibration
33596 + // Driver should toggle RF R30 bit7 before init RF registers
33597 + UINT32 RfReg = 0;
33600 + RT30xxReadRFRegister(pAd, RF_R30, (PUCHAR)&RfReg);
33602 + RT30xxWriteRFRegister(pAd, RF_R30, (UCHAR)RfReg);
33603 + RTMPusecDelay(1000);
33605 + RT30xxWriteRFRegister(pAd, RF_R30, (UCHAR)RfReg);
33607 + // Initialize RF register to default value
33608 + for (i = 0; i < NUM_RF_REG_PARMS; i++)
33610 + RT30xxWriteRFRegister(pAd, RT30xx_RFRegTable[i].Register, RT30xx_RFRegTable[i].Value);
33614 + if (IS_RT3070(pAd))
33616 + // Update MAC 0x05D4 from 01xxxxxx to 0Dxxxxxx (voltage 1.2V to 1.35V) for RT3070 to improve yield rate
33617 + RTUSBReadMACRegister(pAd, LDO_CFG0, &data);
33618 + data = ((data & 0xF0FFFFFF) | 0x0D000000);
33619 + RTUSBWriteMACRegister(pAd, LDO_CFG0, data);
33621 + else if (IS_RT3071(pAd))
33623 + // Driver should set RF R6 bit6 on before init RF registers
33624 + RT30xxReadRFRegister(pAd, RF_R06, (PUCHAR)&RfReg);
33626 + RT30xxWriteRFRegister(pAd, RF_R06, (UCHAR)RfReg);
33629 + RT30xxWriteRFRegister(pAd, RF_R31, 0x14);
33631 + // RT3071 version E has fixed this issue
33632 + if ((pAd->NicConfig2.field.DACTestBit == 1) && ((pAd->MACVersion & 0xffff) < 0x0211))
33634 + // patch tx EVM issue temporarily
33635 + RTUSBReadMACRegister(pAd, LDO_CFG0, &data);
33636 + data = ((data & 0xE0FFFFFF) | 0x0D000000);
33637 + RTUSBWriteMACRegister(pAd, LDO_CFG0, data);
33641 + RTMP_IO_READ32(pAd, LDO_CFG0, &data);
33642 + data = ((data & 0xE0FFFFFF) | 0x01000000);
33643 + RTMP_IO_WRITE32(pAd, LDO_CFG0, data);
33646 + // patch LNA_PE_G1 failed issue
33647 + RTUSBReadMACRegister(pAd, GPIO_SWITCH, &data);
33649 + RTUSBWriteMACRegister(pAd, GPIO_SWITCH, data);
33652 + //For RF filter Calibration
33653 + RTMPFilterCalibration(pAd);
33655 + // Initialize RF R27 register, set RF R27 must be behind RTMPFilterCalibration()
33656 + if ((pAd->MACVersion & 0xffff) < 0x0211)
33657 + RT30xxWriteRFRegister(pAd, RF_R27, 0x3);
33659 + // set led open drain enable
33660 + RTUSBReadMACRegister(pAd, OPT_14, &data);
33662 + RTUSBWriteMACRegister(pAd, OPT_14, data);
33664 + if (IS_RT3071(pAd))
33666 + // add by johnli, RF power sequence setup, load RF normal operation-mode setup
33667 + RT30xxLoadRFNormalModeSetup(pAd);
33672 +#endif // RT3070 //
33676 + ========================================================================
33678 + Routine Description:
33679 + Read initial parameters from EEPROM
33682 + Adapter Pointer to our adapter
33687 + IRQL = PASSIVE_LEVEL
33691 + ========================================================================
33693 +VOID NICReadEEPROMParameters(
33694 + IN PRTMP_ADAPTER pAd,
33695 + IN PUCHAR mac_addr)
33698 + USHORT i, value, value2;
33700 + EEPROM_TX_PWR_STRUC Power;
33701 + EEPROM_VERSION_STRUC Version;
33702 + EEPROM_ANTENNA_STRUC Antenna;
33703 + EEPROM_NIC_CONFIG2_STRUC NicConfig2;
33705 + DBGPRINT(RT_DEBUG_TRACE, ("--> NICReadEEPROMParameters\n"));
33707 + // Init EEPROM Address Number, before access EEPROM; if 93c46, EEPROMAddressNum=6, else if 93c66, EEPROMAddressNum=8
33708 + RTMP_IO_READ32(pAd, E2PROM_CSR, &data);
33709 + DBGPRINT(RT_DEBUG_TRACE, ("--> E2PROM_CSR = 0x%x\n", data));
33711 + if((data & 0x30) == 0)
33712 + pAd->EEPROMAddressNum = 6; // 93C46
33713 + else if((data & 0x30) == 0x10)
33714 + pAd->EEPROMAddressNum = 8; // 93C66
33716 + pAd->EEPROMAddressNum = 8; // 93C86
33717 + DBGPRINT(RT_DEBUG_TRACE, ("--> EEPROMAddressNum = %d\n", pAd->EEPROMAddressNum ));
33719 + // RT2860 MAC no longer auto load MAC address from E2PROM. Driver has to intialize
33720 + // MAC address registers according to E2PROM setting
33721 + if (mac_addr == NULL ||
33722 + strlen(mac_addr) != 17 ||
33723 + mac_addr[2] != ':' || mac_addr[5] != ':' || mac_addr[8] != ':' ||
33724 + mac_addr[11] != ':' || mac_addr[14] != ':')
33726 + USHORT Addr01,Addr23,Addr45 ;
33728 + RT28xx_EEPROM_READ16(pAd, 0x04, Addr01);
33729 + RT28xx_EEPROM_READ16(pAd, 0x06, Addr23);
33730 + RT28xx_EEPROM_READ16(pAd, 0x08, Addr45);
33732 + pAd->PermanentAddress[0] = (UCHAR)(Addr01 & 0xff);
33733 + pAd->PermanentAddress[1] = (UCHAR)(Addr01 >> 8);
33734 + pAd->PermanentAddress[2] = (UCHAR)(Addr23 & 0xff);
33735 + pAd->PermanentAddress[3] = (UCHAR)(Addr23 >> 8);
33736 + pAd->PermanentAddress[4] = (UCHAR)(Addr45 & 0xff);
33737 + pAd->PermanentAddress[5] = (UCHAR)(Addr45 >> 8);
33739 + DBGPRINT(RT_DEBUG_TRACE, ("Initialize MAC Address from E2PROM \n"));
33746 + macptr = mac_addr;
33748 + for (j=0; j<MAC_ADDR_LEN; j++)
33750 + AtoH(macptr, &pAd->PermanentAddress[j], 1);
33754 + DBGPRINT(RT_DEBUG_TRACE, ("Initialize MAC Address from module parameter \n"));
33759 + //more conveninet to test mbssid, so ap's bssid &0xf1
33760 + if (pAd->PermanentAddress[0] == 0xff)
33761 + pAd->PermanentAddress[0] = RandomByte(pAd)&0xf8;
33763 + //if (pAd->PermanentAddress[5] == 0xff)
33764 + // pAd->PermanentAddress[5] = RandomByte(pAd)&0xf8;
33766 + DBGPRINT_RAW(RT_DEBUG_TRACE,("E2PROM MAC: =%02x:%02x:%02x:%02x:%02x:%02x\n",
33767 + pAd->PermanentAddress[0], pAd->PermanentAddress[1],
33768 + pAd->PermanentAddress[2], pAd->PermanentAddress[3],
33769 + pAd->PermanentAddress[4], pAd->PermanentAddress[5]));
33770 + if (pAd->bLocalAdminMAC == FALSE)
33772 + MAC_DW0_STRUC csr2;
33773 + MAC_DW1_STRUC csr3;
33774 + COPY_MAC_ADDR(pAd->CurrentAddress, pAd->PermanentAddress);
33775 + csr2.field.Byte0 = pAd->CurrentAddress[0];
33776 + csr2.field.Byte1 = pAd->CurrentAddress[1];
33777 + csr2.field.Byte2 = pAd->CurrentAddress[2];
33778 + csr2.field.Byte3 = pAd->CurrentAddress[3];
33779 + RTMP_IO_WRITE32(pAd, MAC_ADDR_DW0, csr2.word);
33781 + csr3.field.Byte4 = pAd->CurrentAddress[4];
33782 + csr3.field.Byte5 = pAd->CurrentAddress[5];
33783 + csr3.field.U2MeMask = 0xff;
33784 + RTMP_IO_WRITE32(pAd, MAC_ADDR_DW1, csr3.word);
33785 + DBGPRINT_RAW(RT_DEBUG_TRACE,("E2PROM MAC: =%02x:%02x:%02x:%02x:%02x:%02x\n",
33786 + pAd->PermanentAddress[0], pAd->PermanentAddress[1],
33787 + pAd->PermanentAddress[2], pAd->PermanentAddress[3],
33788 + pAd->PermanentAddress[4], pAd->PermanentAddress[5]));
33792 + // if not return early. cause fail at emulation.
33793 + // Init the channel number for TX channel power
33794 + RTMPReadChannelPwr(pAd);
33796 + // if E2PROM version mismatch with driver's expectation, then skip
33797 + // all subsequent E2RPOM retieval and set a system error bit to notify GUI
33798 + RT28xx_EEPROM_READ16(pAd, EEPROM_VERSION_OFFSET, Version.word);
33799 + pAd->EepromVersion = Version.field.Version + Version.field.FaeReleaseNumber * 256;
33800 + DBGPRINT(RT_DEBUG_TRACE, ("E2PROM: Version = %d, FAE release #%d\n", Version.field.Version, Version.field.FaeReleaseNumber));
33802 + if (Version.field.Version > VALID_EEPROM_VERSION)
33804 + DBGPRINT_ERR(("E2PROM: WRONG VERSION 0x%x, should be %d\n",Version.field.Version, VALID_EEPROM_VERSION));
33805 + /*pAd->SystemErrorBitmap |= 0x00000001;
33807 + // hard-code default value when no proper E2PROM installed
33808 + pAd->bAutoTxAgcA = FALSE;
33809 + pAd->bAutoTxAgcG = FALSE;
33811 + // Default the channel power
33812 + for (i = 0; i < MAX_NUM_OF_CHANNELS; i++)
33813 + pAd->TxPower[i].Power = DEFAULT_RF_TX_POWER;
33815 + // Default the channel power
33816 + for (i = 0; i < MAX_NUM_OF_11JCHANNELS; i++)
33817 + pAd->TxPower11J[i].Power = DEFAULT_RF_TX_POWER;
33819 + for(i = 0; i < NUM_EEPROM_BBP_PARMS; i++)
33820 + pAd->EEPROMDefaultValue[i] = 0xffff;
33824 + // Read BBP default value from EEPROM and store to array(EEPROMDefaultValue) in pAd
33825 + RT28xx_EEPROM_READ16(pAd, EEPROM_NIC1_OFFSET, value);
33826 + pAd->EEPROMDefaultValue[0] = value;
33828 + RT28xx_EEPROM_READ16(pAd, EEPROM_NIC2_OFFSET, value);
33829 + pAd->EEPROMDefaultValue[1] = value;
33831 + RT28xx_EEPROM_READ16(pAd, 0x38, value); // Country Region
33832 + pAd->EEPROMDefaultValue[2] = value;
33834 + for(i = 0; i < 8; i++)
33836 + RT28xx_EEPROM_READ16(pAd, EEPROM_BBP_BASE_OFFSET + i*2, value);
33837 + pAd->EEPROMDefaultValue[i+3] = value;
33840 + // We have to parse NIC configuration 0 at here.
33841 + // If TSSI did not have preloaded value, it should reset the TxAutoAgc to false
33842 + // Therefore, we have to read TxAutoAgc control beforehand.
33843 + // Read Tx AGC control bit
33844 + Antenna.word = pAd->EEPROMDefaultValue[0];
33845 + if (Antenna.word == 0xFFFF)
33848 + if(IS_RT3090(pAd))
33850 + Antenna.word = 0;
33851 + Antenna.field.RfIcType = RFIC_3020;
33852 + Antenna.field.TxPath = 1;
33853 + Antenna.field.RxPath = 1;
33857 +#endif // RT30xx //
33858 + Antenna.word = 0;
33859 + Antenna.field.RfIcType = RFIC_2820;
33860 + Antenna.field.TxPath = 1;
33861 + Antenna.field.RxPath = 2;
33862 + DBGPRINT(RT_DEBUG_WARN, ("E2PROM error, hard code as 0x%04x\n", Antenna.word));
33865 +#endif // RT30xx //
33868 + // Choose the desired Tx&Rx stream.
33869 + if ((pAd->CommonCfg.TxStream == 0) || (pAd->CommonCfg.TxStream > Antenna.field.TxPath))
33870 + pAd->CommonCfg.TxStream = Antenna.field.TxPath;
33872 + if ((pAd->CommonCfg.RxStream == 0) || (pAd->CommonCfg.RxStream > Antenna.field.RxPath))
33874 + pAd->CommonCfg.RxStream = Antenna.field.RxPath;
33876 + if ((pAd->MACVersion < RALINK_2883_VERSION) &&
33877 + (pAd->CommonCfg.RxStream > 2))
33879 + // only 2 Rx streams for RT2860 series
33880 + pAd->CommonCfg.RxStream = 2;
33885 + // read value from EEPROM and set them to CSR174 ~ 177 in chain0 ~ chain2
33887 + for(i=0; i<3; i++)
33891 + NicConfig2.word = pAd->EEPROMDefaultValue[1];
33895 +#ifdef CONFIG_STA_SUPPORT
33896 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
33898 + if ((NicConfig2.word & 0x00ff) == 0xff)
33900 + NicConfig2.word &= 0xff00;
33903 + if ((NicConfig2.word >> 8) == 0xff)
33905 + NicConfig2.word &= 0x00ff;
33908 +#endif // CONFIG_STA_SUPPORT //
33910 + if (NicConfig2.field.DynamicTxAgcControl == 1)
33911 + pAd->bAutoTxAgcA = pAd->bAutoTxAgcG = TRUE;
33913 + pAd->bAutoTxAgcA = pAd->bAutoTxAgcG = FALSE;
33915 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("NICReadEEPROMParameters: RxPath = %d, TxPath = %d\n", Antenna.field.RxPath, Antenna.field.TxPath));
33917 + // Save the antenna for future use
33918 + pAd->Antenna.word = Antenna.word;
33921 + // Reset PhyMode if we don't support 802.11a
33922 + // Only RFIC_2850 & RFIC_2750 support 802.11a
33924 + if ((Antenna.field.RfIcType != RFIC_2850) && (Antenna.field.RfIcType != RFIC_2750))
33926 + if ((pAd->CommonCfg.PhyMode == PHY_11ABG_MIXED) ||
33927 + (pAd->CommonCfg.PhyMode == PHY_11A))
33928 + pAd->CommonCfg.PhyMode = PHY_11BG_MIXED;
33929 +#ifdef DOT11_N_SUPPORT
33930 + else if ((pAd->CommonCfg.PhyMode == PHY_11ABGN_MIXED) ||
33931 + (pAd->CommonCfg.PhyMode == PHY_11AN_MIXED) ||
33932 + (pAd->CommonCfg.PhyMode == PHY_11AGN_MIXED) ||
33933 + (pAd->CommonCfg.PhyMode == PHY_11N_5G))
33934 + pAd->CommonCfg.PhyMode = PHY_11BGN_MIXED;
33935 +#endif // DOT11_N_SUPPORT //
33938 + // Read TSSI reference and TSSI boundary for temperature compensation. This is ugly
33941 + /* these are tempature reference value (0x00 ~ 0xFE)
33942 + ex: 0x00 0x15 0x25 0x45 0x88 0xA0 0xB5 0xD0 0xF0
33943 + TssiPlusBoundaryG [4] [3] [2] [1] [0] (smaller) +
33944 + TssiMinusBoundaryG[0] [1] [2] [3] [4] (larger) */
33945 + RT28xx_EEPROM_READ16(pAd, 0x6E, Power.word);
33946 + pAd->TssiMinusBoundaryG[4] = Power.field.Byte0;
33947 + pAd->TssiMinusBoundaryG[3] = Power.field.Byte1;
33948 + RT28xx_EEPROM_READ16(pAd, 0x70, Power.word);
33949 + pAd->TssiMinusBoundaryG[2] = Power.field.Byte0;
33950 + pAd->TssiMinusBoundaryG[1] = Power.field.Byte1;
33951 + RT28xx_EEPROM_READ16(pAd, 0x72, Power.word);
33952 + pAd->TssiRefG = Power.field.Byte0; /* reference value [0] */
33953 + pAd->TssiPlusBoundaryG[1] = Power.field.Byte1;
33954 + RT28xx_EEPROM_READ16(pAd, 0x74, Power.word);
33955 + pAd->TssiPlusBoundaryG[2] = Power.field.Byte0;
33956 + pAd->TssiPlusBoundaryG[3] = Power.field.Byte1;
33957 + RT28xx_EEPROM_READ16(pAd, 0x76, Power.word);
33958 + pAd->TssiPlusBoundaryG[4] = Power.field.Byte0;
33959 + pAd->TxAgcStepG = Power.field.Byte1;
33960 + pAd->TxAgcCompensateG = 0;
33961 + pAd->TssiMinusBoundaryG[0] = pAd->TssiRefG;
33962 + pAd->TssiPlusBoundaryG[0] = pAd->TssiRefG;
33964 + // Disable TxAgc if the based value is not right
33965 + if (pAd->TssiRefG == 0xff)
33966 + pAd->bAutoTxAgcG = FALSE;
33968 + DBGPRINT(RT_DEBUG_TRACE,("E2PROM: G Tssi[-4 .. +4] = %d %d %d %d - %d -%d %d %d %d, step=%d, tuning=%d\n",
33969 + pAd->TssiMinusBoundaryG[4], pAd->TssiMinusBoundaryG[3], pAd->TssiMinusBoundaryG[2], pAd->TssiMinusBoundaryG[1],
33971 + pAd->TssiPlusBoundaryG[1], pAd->TssiPlusBoundaryG[2], pAd->TssiPlusBoundaryG[3], pAd->TssiPlusBoundaryG[4],
33972 + pAd->TxAgcStepG, pAd->bAutoTxAgcG));
33976 + RT28xx_EEPROM_READ16(pAd, 0xD4, Power.word);
33977 + pAd->TssiMinusBoundaryA[4] = Power.field.Byte0;
33978 + pAd->TssiMinusBoundaryA[3] = Power.field.Byte1;
33979 + RT28xx_EEPROM_READ16(pAd, 0xD6, Power.word);
33980 + pAd->TssiMinusBoundaryA[2] = Power.field.Byte0;
33981 + pAd->TssiMinusBoundaryA[1] = Power.field.Byte1;
33982 + RT28xx_EEPROM_READ16(pAd, 0xD8, Power.word);
33983 + pAd->TssiRefA = Power.field.Byte0;
33984 + pAd->TssiPlusBoundaryA[1] = Power.field.Byte1;
33985 + RT28xx_EEPROM_READ16(pAd, 0xDA, Power.word);
33986 + pAd->TssiPlusBoundaryA[2] = Power.field.Byte0;
33987 + pAd->TssiPlusBoundaryA[3] = Power.field.Byte1;
33988 + RT28xx_EEPROM_READ16(pAd, 0xDC, Power.word);
33989 + pAd->TssiPlusBoundaryA[4] = Power.field.Byte0;
33990 + pAd->TxAgcStepA = Power.field.Byte1;
33991 + pAd->TxAgcCompensateA = 0;
33992 + pAd->TssiMinusBoundaryA[0] = pAd->TssiRefA;
33993 + pAd->TssiPlusBoundaryA[0] = pAd->TssiRefA;
33995 + // Disable TxAgc if the based value is not right
33996 + if (pAd->TssiRefA == 0xff)
33997 + pAd->bAutoTxAgcA = FALSE;
33999 + DBGPRINT(RT_DEBUG_TRACE,("E2PROM: A Tssi[-4 .. +4] = %d %d %d %d - %d -%d %d %d %d, step=%d, tuning=%d\n",
34000 + pAd->TssiMinusBoundaryA[4], pAd->TssiMinusBoundaryA[3], pAd->TssiMinusBoundaryA[2], pAd->TssiMinusBoundaryA[1],
34002 + pAd->TssiPlusBoundaryA[1], pAd->TssiPlusBoundaryA[2], pAd->TssiPlusBoundaryA[3], pAd->TssiPlusBoundaryA[4],
34003 + pAd->TxAgcStepA, pAd->bAutoTxAgcA));
34005 + pAd->BbpRssiToDbmDelta = 0x0;
34007 + // Read frequency offset setting for RF
34008 + RT28xx_EEPROM_READ16(pAd, EEPROM_FREQ_OFFSET, value);
34009 + if ((value & 0x00FF) != 0x00FF)
34010 + pAd->RfFreqOffset = (ULONG) (value & 0x00FF);
34012 + pAd->RfFreqOffset = 0;
34013 + DBGPRINT(RT_DEBUG_TRACE, ("E2PROM: RF FreqOffset=0x%lx \n", pAd->RfFreqOffset));
34015 + //CountryRegion byte offset (38h)
34016 + value = pAd->EEPROMDefaultValue[2] >> 8; // 2.4G band
34017 + value2 = pAd->EEPROMDefaultValue[2] & 0x00FF; // 5G band
34019 + if ((value <= REGION_MAXIMUM_BG_BAND) && (value2 <= REGION_MAXIMUM_A_BAND))
34021 + pAd->CommonCfg.CountryRegion = ((UCHAR) value) | 0x80;
34022 + pAd->CommonCfg.CountryRegionForABand = ((UCHAR) value2) | 0x80;
34023 + TmpPhy = pAd->CommonCfg.PhyMode;
34024 + pAd->CommonCfg.PhyMode = 0xff;
34025 + RTMPSetPhyMode(pAd, TmpPhy);
34026 +#ifdef DOT11_N_SUPPORT
34027 + SetCommonHT(pAd);
34028 +#endif // DOT11_N_SUPPORT //
34032 + // Get RSSI Offset on EEPROM 0x9Ah & 0x9Ch.
34033 + // The valid value are (-10 ~ 10)
34035 + RT28xx_EEPROM_READ16(pAd, EEPROM_RSSI_BG_OFFSET, value);
34036 + pAd->BGRssiOffset0 = value & 0x00ff;
34037 + pAd->BGRssiOffset1 = (value >> 8);
34038 + RT28xx_EEPROM_READ16(pAd, EEPROM_RSSI_BG_OFFSET+2, value);
34039 + pAd->BGRssiOffset2 = value & 0x00ff;
34040 + pAd->ALNAGain1 = (value >> 8);
34041 + RT28xx_EEPROM_READ16(pAd, EEPROM_LNA_OFFSET, value);
34042 + pAd->BLNAGain = value & 0x00ff;
34043 + pAd->ALNAGain0 = (value >> 8);
34045 + // Validate 11b/g RSSI_0 offset.
34046 + if ((pAd->BGRssiOffset0 < -10) || (pAd->BGRssiOffset0 > 10))
34047 + pAd->BGRssiOffset0 = 0;
34049 + // Validate 11b/g RSSI_1 offset.
34050 + if ((pAd->BGRssiOffset1 < -10) || (pAd->BGRssiOffset1 > 10))
34051 + pAd->BGRssiOffset1 = 0;
34053 + // Validate 11b/g RSSI_2 offset.
34054 + if ((pAd->BGRssiOffset2 < -10) || (pAd->BGRssiOffset2 > 10))
34055 + pAd->BGRssiOffset2 = 0;
34057 + RT28xx_EEPROM_READ16(pAd, EEPROM_RSSI_A_OFFSET, value);
34058 + pAd->ARssiOffset0 = value & 0x00ff;
34059 + pAd->ARssiOffset1 = (value >> 8);
34060 + RT28xx_EEPROM_READ16(pAd, (EEPROM_RSSI_A_OFFSET+2), value);
34061 + pAd->ARssiOffset2 = value & 0x00ff;
34062 + pAd->ALNAGain2 = (value >> 8);
34064 + if (((UCHAR)pAd->ALNAGain1 == 0xFF) || (pAd->ALNAGain1 == 0x00))
34065 + pAd->ALNAGain1 = pAd->ALNAGain0;
34066 + if (((UCHAR)pAd->ALNAGain2 == 0xFF) || (pAd->ALNAGain2 == 0x00))
34067 + pAd->ALNAGain2 = pAd->ALNAGain0;
34069 + // Validate 11a RSSI_0 offset.
34070 + if ((pAd->ARssiOffset0 < -10) || (pAd->ARssiOffset0 > 10))
34071 + pAd->ARssiOffset0 = 0;
34073 + // Validate 11a RSSI_1 offset.
34074 + if ((pAd->ARssiOffset1 < -10) || (pAd->ARssiOffset1 > 10))
34075 + pAd->ARssiOffset1 = 0;
34077 + //Validate 11a RSSI_2 offset.
34078 + if ((pAd->ARssiOffset2 < -10) || (pAd->ARssiOffset2 > 10))
34079 + pAd->ARssiOffset2 = 0;
34082 + // Get LED Setting.
34084 + RT28xx_EEPROM_READ16(pAd, 0x3a, value);
34085 + pAd->LedCntl.word = (value&0xff00) >> 8;
34086 + RT28xx_EEPROM_READ16(pAd, EEPROM_LED1_OFFSET, value);
34087 + pAd->Led1 = value;
34088 + RT28xx_EEPROM_READ16(pAd, EEPROM_LED2_OFFSET, value);
34089 + pAd->Led2 = value;
34090 + RT28xx_EEPROM_READ16(pAd, EEPROM_LED3_OFFSET, value);
34091 + pAd->Led3 = value;
34093 + RTMPReadTxPwrPerRate(pAd);
34096 + //pAd->CommonCfg.DefineMaxTxPwr = RTMP_EEPROM_READ16(pAd, EEPROM_DEFINE_MAX_TXPWR);
34097 + RT28xx_EEPROM_READ16(pAd, EEPROM_DEFINE_MAX_TXPWR, pAd->CommonCfg.DefineMaxTxPwr);
34098 +#endif // SINGLE_SKU //
34100 + if (IS_RT30xx(pAd))
34102 + eFusePhysicalReadRegisters(pAd, EFUSE_TAG, 2, &value);
34103 + pAd->EFuseTag = (value & 0xff);
34105 +#endif // RT30xx //
34107 + DBGPRINT(RT_DEBUG_TRACE, ("<-- NICReadEEPROMParameters\n"));
34111 + ========================================================================
34113 + Routine Description:
34114 + Set default value from EEPROM
34117 + Adapter Pointer to our adapter
34122 + IRQL = PASSIVE_LEVEL
34126 + ========================================================================
34128 +VOID NICInitAsicFromEEPROM(
34129 + IN PRTMP_ADAPTER pAd)
34131 +#ifdef CONFIG_STA_SUPPORT
34134 +#endif // CONFIG_STA_SUPPORT //
34136 + EEPROM_ANTENNA_STRUC Antenna;
34137 + EEPROM_NIC_CONFIG2_STRUC NicConfig2;
34140 + DBGPRINT(RT_DEBUG_TRACE, ("--> NICInitAsicFromEEPROM\n"));
34141 + for(i = 3; i < NUM_EEPROM_BBP_PARMS; i++)
34143 + UCHAR BbpRegIdx, BbpValue;
34145 + if ((pAd->EEPROMDefaultValue[i] != 0xFFFF) && (pAd->EEPROMDefaultValue[i] != 0))
34147 + BbpRegIdx = (UCHAR)(pAd->EEPROMDefaultValue[i] >> 8);
34148 + BbpValue = (UCHAR)(pAd->EEPROMDefaultValue[i] & 0xff);
34149 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BbpRegIdx, BbpValue);
34153 + Antenna.word = pAd->EEPROMDefaultValue[0];
34154 + if (Antenna.word == 0xFFFF)
34156 + DBGPRINT(RT_DEBUG_ERROR, ("E2PROM error, hard code as 0x%04x\n", Antenna.word));
34157 + BUG_ON(Antenna.word == 0xFFFF);
34159 + pAd->Mlme.RealRxPath = (UCHAR) Antenna.field.RxPath;
34160 + pAd->RfIcType = (UCHAR) Antenna.field.RfIcType;
34162 + DBGPRINT(RT_DEBUG_WARN, ("pAd->RfIcType = %d, RealRxPath=%d, TxPath = %d\n", pAd->RfIcType, pAd->Mlme.RealRxPath,Antenna.field.TxPath));
34164 + // Save the antenna for future use
34165 + pAd->Antenna.word = Antenna.word;
34167 + NicConfig2.word = pAd->EEPROMDefaultValue[1];
34170 +#ifdef CONFIG_STA_SUPPORT
34171 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
34173 + if ((NicConfig2.word & 0x00ff) == 0xff)
34175 + NicConfig2.word &= 0xff00;
34178 + if ((NicConfig2.word >> 8) == 0xff)
34180 + NicConfig2.word &= 0x00ff;
34183 +#endif // CONFIG_STA_SUPPORT //
34185 + // Save the antenna for future use
34186 + pAd->NicConfig2.word = NicConfig2.word;
34188 + // set default antenna as main
34189 + if (pAd->RfIcType == RFIC_3020)
34190 + AsicSetRxAnt(pAd, pAd->RxAnt.Pair1PrimaryRxAnt);
34193 + // Send LED Setting to MCU.
34195 + if (pAd->LedCntl.word == 0xFF)
34197 + pAd->LedCntl.word = 0x01;
34198 + pAd->Led1 = 0x5555;
34199 + pAd->Led2 = 0x2221;
34202 + pAd->Led3 = 0x5627;
34203 +#endif // RT2870 //
34206 + AsicSendCommandToMcu(pAd, 0x52, 0xff, (UCHAR)pAd->Led1, (UCHAR)(pAd->Led1 >> 8));
34207 + AsicSendCommandToMcu(pAd, 0x53, 0xff, (UCHAR)pAd->Led2, (UCHAR)(pAd->Led2 >> 8));
34208 + AsicSendCommandToMcu(pAd, 0x54, 0xff, (UCHAR)pAd->Led3, (UCHAR)(pAd->Led3 >> 8));
34209 + pAd->LedIndicatorStregth = 0xFF;
34210 + RTMPSetSignalLED(pAd, -100); // Force signal strength Led to be turned off, before link up
34212 +#ifdef CONFIG_STA_SUPPORT
34213 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
34215 + // Read Hardware controlled Radio state enable bit
34216 + if (NicConfig2.field.HardwareRadioControl == 1)
34218 + pAd->StaCfg.bHardwareRadio = TRUE;
34220 + // Read GPIO pin2 as Hardware controlled radio state
34221 + RTMP_IO_READ32(pAd, GPIO_CTRL_CFG, &data);
34222 + if ((data & 0x04) == 0)
34224 + pAd->StaCfg.bHwRadio = FALSE;
34225 + pAd->StaCfg.bRadio = FALSE;
34226 +// RTMP_IO_WRITE32(pAd, PWR_PIN_CFG, 0x00001818);
34227 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_RADIO_OFF);
34231 + pAd->StaCfg.bHardwareRadio = FALSE;
34233 + if (pAd->StaCfg.bRadio == FALSE)
34235 + RTMPSetLED(pAd, LED_RADIO_OFF);
34239 + RTMPSetLED(pAd, LED_RADIO_ON);
34242 +#endif // CONFIG_STA_SUPPORT //
34244 + // Turn off patching for cardbus controller
34245 + if (NicConfig2.field.CardbusAcceleration == 1)
34247 +// pAd->bTest1 = TRUE;
34250 + if (NicConfig2.field.DynamicTxAgcControl == 1)
34251 + pAd->bAutoTxAgcA = pAd->bAutoTxAgcG = TRUE;
34253 + pAd->bAutoTxAgcA = pAd->bAutoTxAgcG = FALSE;
34255 + // Since BBP has been progamed, to make sure BBP setting will be
34256 + // upate inside of AsicAntennaSelect, so reset to UNKNOWN_BAND!!
34258 + pAd->CommonCfg.BandState = UNKNOWN_BAND;
34260 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &BBPR3);
34261 + BBPR3 &= (~0x18);
34262 + if(pAd->Antenna.field.RxPath == 3)
34266 + else if(pAd->Antenna.field.RxPath == 2)
34270 + else if(pAd->Antenna.field.RxPath == 1)
34274 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, BBPR3);
34276 +#ifdef CONFIG_STA_SUPPORT
34277 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
34279 + // Handle the difference when 1T
34280 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R1, &BBPR1);
34281 + if(pAd->Antenna.field.TxPath == 1)
34283 + BBPR1 &= (~0x18);
34285 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R1, BBPR1);
34287 + DBGPRINT(RT_DEBUG_TRACE, ("Use Hw Radio Control Pin=%d; if used Pin=%d;\n", pAd->CommonCfg.bHardwareRadio, pAd->CommonCfg.bHardwareRadio));
34289 +#endif // CONFIG_STA_SUPPORT //
34290 + DBGPRINT(RT_DEBUG_TRACE, ("TxPath = %d, RxPath = %d, RFIC=%d, Polar+LED mode=%x\n", pAd->Antenna.field.TxPath, pAd->Antenna.field.RxPath, pAd->RfIcType, pAd->LedCntl.word));
34291 + DBGPRINT(RT_DEBUG_TRACE, ("<-- NICInitAsicFromEEPROM\n"));
34295 + ========================================================================
34297 + Routine Description:
34298 + Initialize NIC hardware
34301 + Adapter Pointer to our adapter
34306 + IRQL = PASSIVE_LEVEL
34310 + ========================================================================
34312 +NDIS_STATUS NICInitializeAdapter(
34313 + IN PRTMP_ADAPTER pAd,
34314 + IN BOOLEAN bHardReset)
34316 + NDIS_STATUS Status = NDIS_STATUS_SUCCESS;
34317 + WPDMA_GLO_CFG_STRUC GloCfg;
34318 +// INT_MASK_CSR_STRUC IntMask;
34320 + AC_TXOP_CSR0_STRUC csr0;
34322 + DBGPRINT(RT_DEBUG_TRACE, ("--> NICInitializeAdapter\n"));
34324 + // 3. Set DMA global configuration except TX_DMA_EN and RX_DMA_EN bits:
34329 + RTMP_IO_READ32(pAd, WPDMA_GLO_CFG, &GloCfg.word);
34330 + if ((GloCfg.field.TxDMABusy == 0) && (GloCfg.field.RxDMABusy == 0))
34333 + RTMPusecDelay(1000);
34336 + DBGPRINT(RT_DEBUG_TRACE, ("<== DMA offset 0x208 = 0x%x\n", GloCfg.word));
34337 + GloCfg.word &= 0xff0;
34338 + GloCfg.field.EnTXWriteBackDDONE =1;
34339 + RTMP_IO_WRITE32(pAd, WPDMA_GLO_CFG, GloCfg.word);
34341 + // Record HW Beacon offset
34342 + pAd->BeaconOffset[0] = HW_BEACON_BASE0;
34343 + pAd->BeaconOffset[1] = HW_BEACON_BASE1;
34344 + pAd->BeaconOffset[2] = HW_BEACON_BASE2;
34345 + pAd->BeaconOffset[3] = HW_BEACON_BASE3;
34346 + pAd->BeaconOffset[4] = HW_BEACON_BASE4;
34347 + pAd->BeaconOffset[5] = HW_BEACON_BASE5;
34348 + pAd->BeaconOffset[6] = HW_BEACON_BASE6;
34349 + pAd->BeaconOffset[7] = HW_BEACON_BASE7;
34352 + // write all shared Ring's base address into ASIC
34355 + // asic simulation sequence put this ahead before loading firmware.
34356 + // pbf hardware reset
34358 + // Initialze ASIC for TX & Rx operation
34359 + if (NICInitializeAsic(pAd , bHardReset) != NDIS_STATUS_SUCCESS)
34363 + NICLoadFirmware(pAd);
34366 + return NDIS_STATUS_FAILURE;
34374 + RTMP_IO_WRITE32(pAd, WMM_TXOP0_CFG, csr0.word);
34375 + if (pAd->CommonCfg.PhyMode == PHY_11B)
34377 + csr0.field.Ac0Txop = 192; // AC_VI: 192*32us ~= 6ms
34378 + csr0.field.Ac1Txop = 96; // AC_VO: 96*32us ~= 3ms
34382 + csr0.field.Ac0Txop = 96; // AC_VI: 96*32us ~= 3ms
34383 + csr0.field.Ac1Txop = 48; // AC_VO: 48*32us ~= 1.5ms
34385 + RTMP_IO_WRITE32(pAd, WMM_TXOP1_CFG, csr0.word);
34392 + // Status = NICLoadFirmware(pAd);
34394 + DBGPRINT(RT_DEBUG_TRACE, ("<-- NICInitializeAdapter\n"));
34399 + ========================================================================
34401 + Routine Description:
34405 + Adapter Pointer to our adapter
34410 + IRQL = PASSIVE_LEVEL
34414 + ========================================================================
34416 +NDIS_STATUS NICInitializeAsic(
34417 + IN PRTMP_ADAPTER pAd,
34418 + IN BOOLEAN bHardReset)
34422 + UINT32 MacCsr12 = 0, Counter = 0;
34424 + UINT32 MacCsr0 = 0;
34426 + UCHAR Value = 0xff;
34427 +#endif // RT2870 //
34429 + UINT32 eFuseCtrl;
34430 +#endif // RT30xx //
34434 + DBGPRINT(RT_DEBUG_TRACE, ("--> NICInitializeAsic\n"));
34439 + // Make sure MAC gets ready after NICLoadFirmware().
34443 + //To avoid hang-on issue when interface up in kernel 2.4,
34444 + //we use a local variable "MacCsr0" instead of using "pAd->MACVersion" directly.
34447 + RTMP_IO_READ32(pAd, MAC_CSR0, &MacCsr0);
34449 + if ((MacCsr0 != 0x00) && (MacCsr0 != 0xFFFFFFFF))
34452 + RTMPusecDelay(10);
34453 + } while (Index++ < 100);
34455 + pAd->MACVersion = MacCsr0;
34456 + DBGPRINT(RT_DEBUG_TRACE, ("MAC_CSR0 [ Ver:Rev=0x%08x]\n", pAd->MACVersion));
34457 + // turn on bit13 (set to zero) after rt2860D. This is to solve high-current issue.
34458 + RTMP_IO_READ32(pAd, PBF_SYS_CTRL, &MacCsr12);
34459 + MacCsr12 &= (~0x2000);
34460 + RTMP_IO_WRITE32(pAd, PBF_SYS_CTRL, MacCsr12);
34462 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, 0x3);
34463 + RTMP_IO_WRITE32(pAd, USB_DMA_CFG, 0x0);
34464 + Status = RTUSBVenderReset(pAd);
34466 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, 0x0);
34468 + // Initialize MAC register to default value
34469 + for(Index=0; Index<NUM_MAC_REG_PARMS; Index++)
34472 + if ((MACRegTable[Index].Register == TX_SW_CFG0) && (IS_RT3070(pAd) || IS_RT3071(pAd)))
34474 + MACRegTable[Index].Value = 0x00000400;
34476 +#endif // RT3070 //
34477 + RTMP_IO_WRITE32(pAd, (USHORT)MACRegTable[Index].Register, MACRegTable[Index].Value);
34481 +#ifdef CONFIG_STA_SUPPORT
34482 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
34484 + for (Index = 0; Index < NUM_STA_MAC_REG_PARMS; Index++)
34486 + RTMP_IO_WRITE32(pAd, (USHORT)STAMACRegTable[Index].Register, STAMACRegTable[Index].Value);
34489 +#endif // CONFIG_STA_SUPPORT //
34490 +#endif // RT2870 //
34493 + // Initialize RT3070 serial MAc registers which is different from RT2870 serial
34494 + if (IS_RT3090(pAd))
34496 + RTMP_IO_WRITE32(pAd, TX_SW_CFG1, 0);
34498 + // RT3071 version E has fixed this issue
34499 + if ((pAd->MACVersion & 0xffff) < 0x0211)
34501 + if (pAd->NicConfig2.field.DACTestBit == 1)
34503 + RTMP_IO_WRITE32(pAd, TX_SW_CFG2, 0x1F); // To fix throughput drop drastically
34507 + RTMP_IO_WRITE32(pAd, TX_SW_CFG2, 0x0F); // To fix throughput drop drastically
34512 + RTMP_IO_WRITE32(pAd, TX_SW_CFG2, 0x0);
34515 + else if (IS_RT3070(pAd))
34517 + RTMP_IO_WRITE32(pAd, TX_SW_CFG1, 0);
34518 + RTMP_IO_WRITE32(pAd, TX_SW_CFG2, 0x1F); // To fix throughput drop drastically
34520 +#endif // RT30xx //
34523 + // Before program BBP, we need to wait BBP/RF get wake up.
34528 + RTMP_IO_READ32(pAd, MAC_STATUS_CFG, &MacCsr12);
34530 + if ((MacCsr12 & 0x03) == 0) // if BB.RF is stable
34533 + DBGPRINT(RT_DEBUG_TRACE, ("Check MAC_STATUS_CFG = Busy = %x\n", MacCsr12));
34534 + RTMPusecDelay(1000);
34535 + } while (Index++ < 100);
34537 + // The commands to firmware should be after these commands, these commands will init firmware
34538 + // PCI and USB are not the same because PCI driver needs to wait for PCI bus ready
34539 + RTMP_IO_WRITE32(pAd, H2M_BBP_AGENT, 0); // initialize BBP R/W access agent
34540 + RTMP_IO_WRITE32(pAd, H2M_MAILBOX_CSR, 0);
34541 + RTMPusecDelay(1000);
34543 + // Read BBP register, make sure BBP is up and running before write new data
34547 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R0, &R0);
34548 + DBGPRINT(RT_DEBUG_TRACE, ("BBP version = %x\n", R0));
34549 + } while ((++Index < 20) && ((R0 == 0xff) || (R0 == 0x00)));
34550 + //ASSERT(Index < 20); //this will cause BSOD on Check-build driver
34552 + if ((R0 == 0xff) || (R0 == 0x00))
34553 + return NDIS_STATUS_FAILURE;
34555 + // Initialize BBP register to default value
34556 + for (Index = 0; Index < NUM_BBP_REG_PARMS; Index++)
34558 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBPRegTable[Index].Register, BBPRegTable[Index].Value);
34561 + // for rt2860E and after, init BBP_R84 with 0x19. This is for extension channel overlapping IOT.
34562 + // RT3090 should not program BBP R84 to 0x19, otherwise TX will block.
34563 + if (((pAd->MACVersion&0xffff) != 0x0101) && (!IS_RT30xx(pAd)))
34564 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R84, 0x19);
34566 +// add by johnli, RF power sequence setup
34568 + if (IS_RT30xx(pAd))
34569 + { //update for RT3070/71/72/90/91/92.
34570 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R79, 0x13);
34571 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R80, 0x05);
34572 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R81, 0x33);
34575 + if (IS_RT3090(pAd))
34579 + // enable DC filter
34580 + if ((pAd->MACVersion & 0xffff) >= 0x0211)
34582 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R103, 0xc0);
34585 + // improve power consumption
34586 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R138, &bbpreg);
34587 + if (pAd->Antenna.field.TxPath == 1)
34589 + // turn off tx DAC_1
34590 + bbpreg = (bbpreg | 0x20);
34593 + if (pAd->Antenna.field.RxPath == 1)
34595 + // turn off tx ADC_1
34596 + bbpreg &= (~0x2);
34598 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R138, bbpreg);
34600 + // improve power consumption in RT3071 Ver.E
34601 + if ((pAd->MACVersion & 0xffff) >= 0x0211)
34603 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R31, &bbpreg);
34604 + bbpreg &= (~0x3);
34605 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R31, bbpreg);
34608 +#endif // RT30xx //
34611 + if (pAd->MACVersion == 0x28600100)
34613 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R69, 0x16);
34614 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R73, 0x12);
34617 + if (pAd->MACVersion >= RALINK_2880E_VERSION && pAd->MACVersion < RALINK_3070_VERSION) // 3*3
34619 + // enlarge MAX_LEN_CFG
34621 + RTMP_IO_READ32(pAd, MAX_LEN_CFG, &csr);
34624 + RTMP_IO_WRITE32(pAd, MAX_LEN_CFG, csr);
34629 + UCHAR MAC_Value[]={0xff,0xff,0xff,0xff,0xff,0xff,0xff,0,0};
34631 + //Initialize WCID table
34633 + for(Index =0 ;Index < 254;Index++)
34635 + RTUSBMultiWrite(pAd, (USHORT)(MAC_WCID_BASE + Index * 8), MAC_Value, 8);
34638 +#endif // RT2870 //
34640 + // Add radio off control
34641 +#ifdef CONFIG_STA_SUPPORT
34642 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
34644 + if (pAd->StaCfg.bRadio == FALSE)
34646 +// RTMP_IO_WRITE32(pAd, PWR_PIN_CFG, 0x00001818);
34647 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_RADIO_OFF);
34648 + DBGPRINT(RT_DEBUG_TRACE, ("Set Radio Off\n"));
34651 +#endif // CONFIG_STA_SUPPORT //
34653 + // Clear raw counters
34654 + RTMP_IO_READ32(pAd, RX_STA_CNT0, &Counter);
34655 + RTMP_IO_READ32(pAd, RX_STA_CNT1, &Counter);
34656 + RTMP_IO_READ32(pAd, RX_STA_CNT2, &Counter);
34657 + RTMP_IO_READ32(pAd, TX_STA_CNT0, &Counter);
34658 + RTMP_IO_READ32(pAd, TX_STA_CNT1, &Counter);
34659 + RTMP_IO_READ32(pAd, TX_STA_CNT2, &Counter);
34661 + // ASIC will keep garbage value after boot
34662 + // Clear all seared key table when initial
34663 + // This routine can be ignored in radio-ON/OFF operation.
34666 + for (KeyIdx = 0; KeyIdx < 4; KeyIdx++)
34668 + RTMP_IO_WRITE32(pAd, SHARED_KEY_MODE_BASE + 4*KeyIdx, 0);
34671 + // Clear all pairwise key table when initial
34672 + for (KeyIdx = 0; KeyIdx < 256; KeyIdx++)
34674 + RTMP_IO_WRITE32(pAd, MAC_WCID_ATTRIBUTE_BASE + (KeyIdx * HW_WCID_ATTRI_SIZE), 1);
34678 + // assert HOST ready bit
34679 +// RTMP_IO_WRITE32(pAd, MAC_CSR1, 0x0); // 2004-09-14 asked by Mark
34680 +// RTMP_IO_WRITE32(pAd, MAC_CSR1, 0x4);
34682 + // It isn't necessary to clear this space when not hard reset.
34683 + if (bHardReset == TRUE)
34685 + // clear all on-chip BEACON frame space
34686 + for (apidx = 0; apidx < HW_BEACON_MAX_COUNT; apidx++)
34688 + for (i = 0; i < HW_BEACON_OFFSET>>2; i+=4)
34689 + RTMP_IO_WRITE32(pAd, pAd->BeaconOffset[apidx] + i, 0x00);
34693 + AsicDisableSync(pAd);
34694 + // Clear raw counters
34695 + RTMP_IO_READ32(pAd, RX_STA_CNT0, &Counter);
34696 + RTMP_IO_READ32(pAd, RX_STA_CNT1, &Counter);
34697 + RTMP_IO_READ32(pAd, RX_STA_CNT2, &Counter);
34698 + RTMP_IO_READ32(pAd, TX_STA_CNT0, &Counter);
34699 + RTMP_IO_READ32(pAd, TX_STA_CNT1, &Counter);
34700 + RTMP_IO_READ32(pAd, TX_STA_CNT2, &Counter);
34701 + // Default PCI clock cycle per ms is different as default setting, which is based on PCI.
34702 + RTMP_IO_READ32(pAd, USB_CYC_CFG, &Counter);
34703 + Counter&=0xffffff00;
34704 + Counter|=0x000001e;
34705 + RTMP_IO_WRITE32(pAd, USB_CYC_CFG, Counter);
34706 +#endif // RT2870 //
34708 + pAd->bUseEfuse=FALSE;
34709 + RTMP_IO_READ32(pAd, EFUSE_CTRL, &eFuseCtrl);
34710 + pAd->bUseEfuse = ( (eFuseCtrl & 0x80000000) == 0x80000000) ? 1 : 0;
34711 + if(pAd->bUseEfuse)
34713 + DBGPRINT(RT_DEBUG_TRACE, ("NVM is Efuse\n"));
34717 + DBGPRINT(RT_DEBUG_TRACE, ("NVM is EEPROM\n"));
34720 +#endif // RT30xx //
34722 +#ifdef CONFIG_STA_SUPPORT
34723 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
34725 + // for rt2860E and after, init TXOP_CTRL_CFG with 0x583f. This is for extension channel overlapping IOT.
34726 + if ((pAd->MACVersion&0xffff) != 0x0101)
34727 + RTMP_IO_WRITE32(pAd, TXOP_CTRL_CFG, 0x583f);
34729 +#endif // CONFIG_STA_SUPPORT //
34731 + DBGPRINT(RT_DEBUG_TRACE, ("<-- NICInitializeAsic\n"));
34732 + return NDIS_STATUS_SUCCESS;
34736 + ========================================================================
34738 + Routine Description:
34742 + Adapter Pointer to our adapter
34747 + IRQL = PASSIVE_LEVEL
34750 + Reset NIC to initial state AS IS system boot up time.
34752 + ========================================================================
34754 +VOID NICIssueReset(
34755 + IN PRTMP_ADAPTER pAd)
34757 + UINT32 Value = 0;
34758 + DBGPRINT(RT_DEBUG_TRACE, ("--> NICIssueReset\n"));
34760 + // Abort Tx, prevent ASIC from writing to Host memory
34761 + //RTMP_IO_WRITE32(pAd, TX_CNTL_CSR, 0x001f0000);
34763 + // Disable Rx, register value supposed will remain after reset
34764 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
34765 + Value &= (0xfffffff3);
34766 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
34768 + // Issue reset and clear from reset state
34769 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, 0x03); // 2004-09-17 change from 0x01
34770 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, 0x00);
34772 + DBGPRINT(RT_DEBUG_TRACE, ("<-- NICIssueReset\n"));
34776 + ========================================================================
34778 + Routine Description:
34779 + Check ASIC registers and find any reason the system might hang
34782 + Adapter Pointer to our adapter
34787 + IRQL = DISPATCH_LEVEL
34789 + ========================================================================
34791 +BOOLEAN NICCheckForHang(
34792 + IN PRTMP_ADAPTER pAd)
34797 +VOID NICUpdateFifoStaCounters(
34798 + IN PRTMP_ADAPTER pAd)
34800 + TX_STA_FIFO_STRUC StaFifo;
34801 + MAC_TABLE_ENTRY *pEntry;
34803 + UCHAR pid = 0, wcid = 0;
34808 + /* Nothing to do in ATE mode */
34811 +#endif // RALINK_ATE //
34815 + RTMP_IO_READ32(pAd, TX_STA_FIFO, &StaFifo.word);
34817 + if (StaFifo.field.bValid == 0)
34820 + wcid = (UCHAR)StaFifo.field.wcid;
34823 + /* ignore NoACK and MGMT frame use 0xFF as WCID */
34824 + if ((StaFifo.field.TxAckRequired == 0) || (wcid >= MAX_LEN_OF_MAC_TABLE))
34830 + /* PID store Tx MCS Rate */
34831 + pid = (UCHAR)StaFifo.field.PidType;
34833 + pEntry = &pAd->MacTab.Content[wcid];
34835 + pEntry->DebugFIFOCount++;
34837 +#ifdef DOT11_N_SUPPORT
34838 + if (StaFifo.field.TxBF) // 3*3
34839 + pEntry->TxBFCount++;
34840 +#endif // DOT11_N_SUPPORT //
34842 +#ifdef UAPSD_AP_SUPPORT
34843 + UAPSD_SP_AUE_Handle(pAd, pEntry, StaFifo.field.TxSuccess);
34844 +#endif // UAPSD_AP_SUPPORT //
34846 + if (!StaFifo.field.TxSuccess)
34848 + pEntry->FIFOCount++;
34849 + pEntry->OneSecTxFailCount++;
34851 + if (pEntry->FIFOCount >= 1)
34853 + DBGPRINT(RT_DEBUG_TRACE, ("#"));
34854 +#ifdef DOT11_N_SUPPORT
34855 + pEntry->NoBADataCountDown = 64;
34856 +#endif // DOT11_N_SUPPORT //
34858 + if(pEntry->PsMode == PWR_ACTIVE)
34860 +#ifdef DOT11_N_SUPPORT
34862 + for (tid=0; tid<NUM_OF_TID; tid++)
34864 + BAOriSessionTearDown(pAd, pEntry->Aid, tid, FALSE, FALSE);
34866 +#endif // DOT11_N_SUPPORT //
34868 + // Update the continuous transmission counter except PS mode
34869 + pEntry->ContinueTxFailCnt++;
34873 + // Clear the FIFOCount when sta in Power Save mode. Basically we assume
34874 + // this tx error happened due to sta just go to sleep.
34875 + pEntry->FIFOCount = 0;
34876 + pEntry->ContinueTxFailCnt = 0;
34878 + //pEntry->FIFOCount = 0;
34880 + //pEntry->bSendBAR = TRUE;
34884 +#ifdef DOT11_N_SUPPORT
34885 + if ((pEntry->PsMode != PWR_SAVE) && (pEntry->NoBADataCountDown > 0))
34887 + pEntry->NoBADataCountDown--;
34888 + if (pEntry->NoBADataCountDown==0)
34890 + DBGPRINT(RT_DEBUG_TRACE, ("@\n"));
34893 +#endif // DOT11_N_SUPPORT //
34894 + pEntry->FIFOCount = 0;
34895 + pEntry->OneSecTxNoRetryOkCount++;
34896 + // update NoDataIdleCount when sucessful send packet to STA.
34897 + pEntry->NoDataIdleCount = 0;
34898 + pEntry->ContinueTxFailCnt = 0;
34901 + succMCS = StaFifo.field.SuccessRate & 0x7F;
34903 + reTry = pid - succMCS;
34905 + if (StaFifo.field.TxSuccess)
34907 + pEntry->TXMCSExpected[pid]++;
34908 + if (pid == succMCS)
34910 + pEntry->TXMCSSuccessful[pid]++;
34914 + pEntry->TXMCSAutoFallBack[pid][succMCS]++;
34919 + pEntry->TXMCSFailed[pid]++;
34924 + if ((pid >= 12) && succMCS <=7)
34928 + pEntry->OneSecTxRetryOkCount += reTry;
34932 + // ASIC store 16 stack
34933 + } while ( i < (2*TX_RING_SIZE) );
34938 + ========================================================================
34940 + Routine Description:
34941 + Read statistical counters from hardware registers and record them
34942 + in software variables for later on query
34945 + pAd Pointer to our adapter
34950 + IRQL = DISPATCH_LEVEL
34952 + ========================================================================
34954 +VOID NICUpdateRawCounters(
34955 + IN PRTMP_ADAPTER pAd)
34957 + UINT32 OldValue;//, Value2;
34958 + //ULONG PageSum, OneSecTransmitCount;
34959 + //ULONG TxErrorRatio, Retry, Fail;
34960 + RX_STA_CNT0_STRUC RxStaCnt0;
34961 + RX_STA_CNT1_STRUC RxStaCnt1;
34962 + RX_STA_CNT2_STRUC RxStaCnt2;
34963 + TX_STA_CNT0_STRUC TxStaCnt0;
34964 + TX_STA_CNT1_STRUC StaTx1;
34965 + TX_STA_CNT2_STRUC StaTx2;
34966 + TX_AGG_CNT_STRUC TxAggCnt;
34967 + TX_AGG_CNT0_STRUC TxAggCnt0;
34968 + TX_AGG_CNT1_STRUC TxAggCnt1;
34969 + TX_AGG_CNT2_STRUC TxAggCnt2;
34970 + TX_AGG_CNT3_STRUC TxAggCnt3;
34971 + TX_AGG_CNT4_STRUC TxAggCnt4;
34972 + TX_AGG_CNT5_STRUC TxAggCnt5;
34973 + TX_AGG_CNT6_STRUC TxAggCnt6;
34974 + TX_AGG_CNT7_STRUC TxAggCnt7;
34976 + RTMP_IO_READ32(pAd, RX_STA_CNT0, &RxStaCnt0.word);
34977 + RTMP_IO_READ32(pAd, RX_STA_CNT2, &RxStaCnt2.word);
34980 + RTMP_IO_READ32(pAd, RX_STA_CNT1, &RxStaCnt1.word);
34981 + // Update RX PLCP error counter
34982 + pAd->PrivateInfo.PhyRxErrCnt += RxStaCnt1.field.PlcpErr;
34983 + // Update False CCA counter
34984 + pAd->RalinkCounters.OneSecFalseCCACnt += RxStaCnt1.field.FalseCca;
34987 + // Update FCS counters
34988 + OldValue= pAd->WlanCounters.FCSErrorCount.u.LowPart;
34989 + pAd->WlanCounters.FCSErrorCount.u.LowPart += (RxStaCnt0.field.CrcErr); // >> 7);
34990 + if (pAd->WlanCounters.FCSErrorCount.u.LowPart < OldValue)
34991 + pAd->WlanCounters.FCSErrorCount.u.HighPart++;
34993 + // Add FCS error count to private counters
34994 + pAd->RalinkCounters.OneSecRxFcsErrCnt += RxStaCnt0.field.CrcErr;
34995 + OldValue = pAd->RalinkCounters.RealFcsErrCount.u.LowPart;
34996 + pAd->RalinkCounters.RealFcsErrCount.u.LowPart += RxStaCnt0.field.CrcErr;
34997 + if (pAd->RalinkCounters.RealFcsErrCount.u.LowPart < OldValue)
34998 + pAd->RalinkCounters.RealFcsErrCount.u.HighPart++;
35000 + // Update Duplicate Rcv check
35001 + pAd->RalinkCounters.DuplicateRcv += RxStaCnt2.field.RxDupliCount;
35002 + pAd->WlanCounters.FrameDuplicateCount.u.LowPart += RxStaCnt2.field.RxDupliCount;
35003 + // Update RX Overflow counter
35004 + pAd->Counters8023.RxNoBuffer += (RxStaCnt2.field.RxFifoOverflowCount);
35006 + //pAd->RalinkCounters.RxCount = 0;
35008 + if (pAd->RalinkCounters.RxCount != pAd->watchDogRxCnt)
35010 + pAd->watchDogRxCnt = pAd->RalinkCounters.RxCount;
35011 + pAd->watchDogRxOverFlowCnt = 0;
35015 + if (RxStaCnt2.field.RxFifoOverflowCount)
35016 + pAd->watchDogRxOverFlowCnt++;
35018 + pAd->watchDogRxOverFlowCnt = 0;
35020 +#endif // RT2870 //
35023 + //if (!OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_TX_RATE_SWITCH_ENABLED) ||
35024 + // (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_TX_RATE_SWITCH_ENABLED) && (pAd->MacTab.Size != 1)))
35025 + if (!pAd->bUpdateBcnCntDone)
35027 + // Update BEACON sent count
35028 + RTMP_IO_READ32(pAd, TX_STA_CNT0, &TxStaCnt0.word);
35029 + RTMP_IO_READ32(pAd, TX_STA_CNT1, &StaTx1.word);
35030 + RTMP_IO_READ32(pAd, TX_STA_CNT2, &StaTx2.word);
35031 + pAd->RalinkCounters.OneSecBeaconSentCnt += TxStaCnt0.field.TxBeaconCount;
35032 + pAd->RalinkCounters.OneSecTxRetryOkCount += StaTx1.field.TxRetransmit;
35033 + pAd->RalinkCounters.OneSecTxNoRetryOkCount += StaTx1.field.TxSuccess;
35034 + pAd->RalinkCounters.OneSecTxFailCount += TxStaCnt0.field.TxFailCount;
35035 + pAd->WlanCounters.TransmittedFragmentCount.u.LowPart += StaTx1.field.TxSuccess;
35036 + pAd->WlanCounters.RetryCount.u.LowPart += StaTx1.field.TxRetransmit;
35037 + pAd->WlanCounters.FailedCount.u.LowPart += TxStaCnt0.field.TxFailCount;
35040 + //if (pAd->bStaFifoTest == TRUE)
35042 + RTMP_IO_READ32(pAd, TX_AGG_CNT, &TxAggCnt.word);
35043 + RTMP_IO_READ32(pAd, TX_AGG_CNT0, &TxAggCnt0.word);
35044 + RTMP_IO_READ32(pAd, TX_AGG_CNT1, &TxAggCnt1.word);
35045 + RTMP_IO_READ32(pAd, TX_AGG_CNT2, &TxAggCnt2.word);
35046 + RTMP_IO_READ32(pAd, TX_AGG_CNT3, &TxAggCnt3.word);
35047 + RTMP_IO_READ32(pAd, TX_AGG_CNT4, &TxAggCnt4.word);
35048 + RTMP_IO_READ32(pAd, TX_AGG_CNT5, &TxAggCnt5.word);
35049 + RTMP_IO_READ32(pAd, TX_AGG_CNT6, &TxAggCnt6.word);
35050 + RTMP_IO_READ32(pAd, TX_AGG_CNT7, &TxAggCnt7.word);
35051 + pAd->RalinkCounters.TxAggCount += TxAggCnt.field.AggTxCount;
35052 + pAd->RalinkCounters.TxNonAggCount += TxAggCnt.field.NonAggTxCount;
35053 + pAd->RalinkCounters.TxAgg1MPDUCount += TxAggCnt0.field.AggSize1Count;
35054 + pAd->RalinkCounters.TxAgg2MPDUCount += TxAggCnt0.field.AggSize2Count;
35056 + pAd->RalinkCounters.TxAgg3MPDUCount += TxAggCnt1.field.AggSize3Count;
35057 + pAd->RalinkCounters.TxAgg4MPDUCount += TxAggCnt1.field.AggSize4Count;
35058 + pAd->RalinkCounters.TxAgg5MPDUCount += TxAggCnt2.field.AggSize5Count;
35059 + pAd->RalinkCounters.TxAgg6MPDUCount += TxAggCnt2.field.AggSize6Count;
35061 + pAd->RalinkCounters.TxAgg7MPDUCount += TxAggCnt3.field.AggSize7Count;
35062 + pAd->RalinkCounters.TxAgg8MPDUCount += TxAggCnt3.field.AggSize8Count;
35063 + pAd->RalinkCounters.TxAgg9MPDUCount += TxAggCnt4.field.AggSize9Count;
35064 + pAd->RalinkCounters.TxAgg10MPDUCount += TxAggCnt4.field.AggSize10Count;
35066 + pAd->RalinkCounters.TxAgg11MPDUCount += TxAggCnt5.field.AggSize11Count;
35067 + pAd->RalinkCounters.TxAgg12MPDUCount += TxAggCnt5.field.AggSize12Count;
35068 + pAd->RalinkCounters.TxAgg13MPDUCount += TxAggCnt6.field.AggSize13Count;
35069 + pAd->RalinkCounters.TxAgg14MPDUCount += TxAggCnt6.field.AggSize14Count;
35071 + pAd->RalinkCounters.TxAgg15MPDUCount += TxAggCnt7.field.AggSize15Count;
35072 + pAd->RalinkCounters.TxAgg16MPDUCount += TxAggCnt7.field.AggSize16Count;
35074 + // Calculate the transmitted A-MPDU count
35075 + pAd->RalinkCounters.TransmittedAMPDUCount.u.LowPart += TxAggCnt0.field.AggSize1Count;
35076 + pAd->RalinkCounters.TransmittedAMPDUCount.u.LowPart += (TxAggCnt0.field.AggSize2Count / 2);
35078 + pAd->RalinkCounters.TransmittedAMPDUCount.u.LowPart += (TxAggCnt1.field.AggSize3Count / 3);
35079 + pAd->RalinkCounters.TransmittedAMPDUCount.u.LowPart += (TxAggCnt1.field.AggSize4Count / 4);
35081 + pAd->RalinkCounters.TransmittedAMPDUCount.u.LowPart += (TxAggCnt2.field.AggSize5Count / 5);
35082 + pAd->RalinkCounters.TransmittedAMPDUCount.u.LowPart += (TxAggCnt2.field.AggSize6Count / 6);
35084 + pAd->RalinkCounters.TransmittedAMPDUCount.u.LowPart += (TxAggCnt3.field.AggSize7Count / 7);
35085 + pAd->RalinkCounters.TransmittedAMPDUCount.u.LowPart += (TxAggCnt3.field.AggSize8Count / 8);
35087 + pAd->RalinkCounters.TransmittedAMPDUCount.u.LowPart += (TxAggCnt4.field.AggSize9Count / 9);
35088 + pAd->RalinkCounters.TransmittedAMPDUCount.u.LowPart += (TxAggCnt4.field.AggSize10Count / 10);
35090 + pAd->RalinkCounters.TransmittedAMPDUCount.u.LowPart += (TxAggCnt5.field.AggSize11Count / 11);
35091 + pAd->RalinkCounters.TransmittedAMPDUCount.u.LowPart += (TxAggCnt5.field.AggSize12Count / 12);
35093 + pAd->RalinkCounters.TransmittedAMPDUCount.u.LowPart += (TxAggCnt6.field.AggSize13Count / 13);
35094 + pAd->RalinkCounters.TransmittedAMPDUCount.u.LowPart += (TxAggCnt6.field.AggSize14Count / 14);
35096 + pAd->RalinkCounters.TransmittedAMPDUCount.u.LowPart += (TxAggCnt7.field.AggSize15Count / 15);
35097 + pAd->RalinkCounters.TransmittedAMPDUCount.u.LowPart += (TxAggCnt7.field.AggSize16Count / 16);
35100 +#ifdef DBG_DIAGNOSE
35102 + RtmpDiagStruct *pDiag;
35103 + COUNTER_RALINK *pRalinkCounters;
35104 + UCHAR ArrayCurIdx, i;
35106 + pDiag = &pAd->DiagStruct;
35107 + pRalinkCounters = &pAd->RalinkCounters;
35108 + ArrayCurIdx = pDiag->ArrayCurIdx;
35110 + if (pDiag->inited == 0)
35112 + NdisZeroMemory(pDiag, sizeof(struct _RtmpDiagStrcut_));
35113 + pDiag->ArrayStartIdx = pDiag->ArrayCurIdx = 0;
35114 + pDiag->inited = 1;
35119 + pDiag->TxFailCnt[ArrayCurIdx] = TxStaCnt0.field.TxFailCount;
35120 + pDiag->TxAggCnt[ArrayCurIdx] = TxAggCnt.field.AggTxCount;
35121 + pDiag->TxNonAggCnt[ArrayCurIdx] = TxAggCnt.field.NonAggTxCount;
35122 + pDiag->TxAMPDUCnt[ArrayCurIdx][0] = TxAggCnt0.field.AggSize1Count;
35123 + pDiag->TxAMPDUCnt[ArrayCurIdx][1] = TxAggCnt0.field.AggSize2Count;
35124 + pDiag->TxAMPDUCnt[ArrayCurIdx][2] = TxAggCnt1.field.AggSize3Count;
35125 + pDiag->TxAMPDUCnt[ArrayCurIdx][3] = TxAggCnt1.field.AggSize4Count;
35126 + pDiag->TxAMPDUCnt[ArrayCurIdx][4] = TxAggCnt2.field.AggSize5Count;
35127 + pDiag->TxAMPDUCnt[ArrayCurIdx][5] = TxAggCnt2.field.AggSize6Count;
35128 + pDiag->TxAMPDUCnt[ArrayCurIdx][6] = TxAggCnt3.field.AggSize7Count;
35129 + pDiag->TxAMPDUCnt[ArrayCurIdx][7] = TxAggCnt3.field.AggSize8Count;
35130 + pDiag->TxAMPDUCnt[ArrayCurIdx][8] = TxAggCnt4.field.AggSize9Count;
35131 + pDiag->TxAMPDUCnt[ArrayCurIdx][9] = TxAggCnt4.field.AggSize10Count;
35132 + pDiag->TxAMPDUCnt[ArrayCurIdx][10] = TxAggCnt5.field.AggSize11Count;
35133 + pDiag->TxAMPDUCnt[ArrayCurIdx][11] = TxAggCnt5.field.AggSize12Count;
35134 + pDiag->TxAMPDUCnt[ArrayCurIdx][12] = TxAggCnt6.field.AggSize13Count;
35135 + pDiag->TxAMPDUCnt[ArrayCurIdx][13] = TxAggCnt6.field.AggSize14Count;
35136 + pDiag->TxAMPDUCnt[ArrayCurIdx][14] = TxAggCnt7.field.AggSize15Count;
35137 + pDiag->TxAMPDUCnt[ArrayCurIdx][15] = TxAggCnt7.field.AggSize16Count;
35139 + pDiag->RxCrcErrCnt[ArrayCurIdx] = RxStaCnt0.field.CrcErr;
35141 + INC_RING_INDEX(pDiag->ArrayCurIdx, DIAGNOSE_TIME);
35142 + ArrayCurIdx = pDiag->ArrayCurIdx;
35143 + for (i =0; i < 9; i++)
35145 + pDiag->TxDescCnt[ArrayCurIdx][i]= 0;
35146 + pDiag->TxSWQueCnt[ArrayCurIdx][i] =0;
35147 + pDiag->TxMcsCnt[ArrayCurIdx][i] = 0;
35148 + pDiag->RxMcsCnt[ArrayCurIdx][i] = 0;
35150 + pDiag->TxDataCnt[ArrayCurIdx] = 0;
35151 + pDiag->TxFailCnt[ArrayCurIdx] = 0;
35152 + pDiag->RxDataCnt[ArrayCurIdx] = 0;
35153 + pDiag->RxCrcErrCnt[ArrayCurIdx] = 0;
35154 +// for (i = 9; i < 16; i++)
35155 + for (i = 9; i < 24; i++) // 3*3
35157 + pDiag->TxDescCnt[ArrayCurIdx][i] = 0;
35158 + pDiag->TxMcsCnt[ArrayCurIdx][i] = 0;
35159 + pDiag->RxMcsCnt[ArrayCurIdx][i] = 0;
35162 + if (pDiag->ArrayCurIdx == pDiag->ArrayStartIdx)
35163 + INC_RING_INDEX(pDiag->ArrayStartIdx, DIAGNOSE_TIME);
35167 +#endif // DBG_DIAGNOSE //
35174 + ========================================================================
35176 + Routine Description:
35177 + Reset NIC from error
35180 + Adapter Pointer to our adapter
35185 + IRQL = PASSIVE_LEVEL
35188 + Reset NIC from error state
35190 + ========================================================================
35192 +VOID NICResetFromError(
35193 + IN PRTMP_ADAPTER pAd)
35195 + // Reset BBP (according to alex, reset ASIC will force reset BBP
35196 + // Therefore, skip the reset BBP
35197 + // RTMP_IO_WRITE32(pAd, MAC_CSR1, 0x2);
35199 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, 0x1);
35200 + // Remove ASIC from reset state
35201 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, 0x0);
35203 + NICInitializeAdapter(pAd, FALSE);
35204 + NICInitAsicFromEEPROM(pAd);
35206 + // Switch to current channel, since during reset process, the connection should remains on.
35207 + AsicSwitchChannel(pAd, pAd->CommonCfg.CentralChannel, FALSE);
35208 + AsicLockChannel(pAd, pAd->CommonCfg.CentralChannel);
35212 + ========================================================================
35214 + Routine Description:
35215 + erase 8051 firmware image in MAC ASIC
35218 + Adapter Pointer to our adapter
35220 + IRQL = PASSIVE_LEVEL
35222 + ========================================================================
35224 +VOID NICEraseFirmware(
35225 + IN PRTMP_ADAPTER pAd)
35229 + for(i=0; i<MAX_FIRMWARE_IMAGE_SIZE; i+=4)
35230 + RTMP_IO_WRITE32(pAd, FIRMWARE_IMAGE_BASE + i, 0);
35232 +}/* End of NICEraseFirmware */
35235 + ========================================================================
35237 + Routine Description:
35238 + Load 8051 firmware RT2561.BIN file into MAC ASIC
35241 + Adapter Pointer to our adapter
35244 + NDIS_STATUS_SUCCESS firmware image load ok
35245 + NDIS_STATUS_FAILURE image not found
35247 + IRQL = PASSIVE_LEVEL
35249 + ========================================================================
35251 +NDIS_STATUS NICLoadFirmware(
35252 + IN PRTMP_ADAPTER pAd)
35254 +#ifdef BIN_IN_FILE
35255 +#define NICLF_DEFAULT_USE() \
35256 + flg_default_firm_use = TRUE; \
35257 + printk("%s - Use default firmware!\n", __FUNCTION__);
35259 + NDIS_STATUS Status = NDIS_STATUS_SUCCESS;
35261 + struct file *srcf;
35262 + INT retval, orgfsuid, orgfsgid, i;
35263 + mm_segment_t orgfs;
35264 + PUCHAR pFirmwareImage;
35265 + UINT FileLength = 0;
35269 + BOOLEAN flg_default_firm_use = FALSE;
35272 + DBGPRINT(RT_DEBUG_TRACE, ("===> %s\n", __FUNCTION__));
35275 + pFirmwareImage = NULL;
35276 + src = RTMP_FIRMWARE_FILE_NAME;
35278 + /* save uid and gid used for filesystem access.
35279 + set user and group to 0 (root) */
35280 + orgfsuid = current->fsuid;
35281 + orgfsgid = current->fsgid;
35282 + current->fsuid = current->fsgid = 0;
35283 + orgfs = get_fs();
35284 + set_fs(KERNEL_DS);
35286 + pAd->FirmwareVersion = (FIRMWARE_MAJOR_VERSION << 8) + \
35287 + FIRMWARE_MINOR_VERSION;
35290 + /* allocate firmware buffer */
35291 + pFirmwareImage = kmalloc(MAX_FIRMWARE_IMAGE_SIZE, MEM_ALLOC_FLAG);
35292 + if (pFirmwareImage == NULL)
35294 + /* allocate fail, use default firmware array in firmware.h */
35295 + printk("%s - Allocate memory fail!\n", __FUNCTION__);
35296 + NICLF_DEFAULT_USE();
35300 + /* allocate ok! zero the firmware buffer */
35301 + memset(pFirmwareImage, 0x00, MAX_FIRMWARE_IMAGE_SIZE);
35302 + } /* End of if */
35305 + /* if ok, read firmware file from *.bin file */
35306 + if (flg_default_firm_use == FALSE)
35310 + /* open the bin file */
35311 + srcf = filp_open(src, O_RDONLY, 0);
35313 + if (IS_ERR(srcf))
35315 + printk("%s - Error %ld opening %s\n",
35316 + __FUNCTION__, -PTR_ERR(srcf), src);
35317 + NICLF_DEFAULT_USE();
35319 + } /* End of if */
35321 + /* the object must have a read method */
35322 + if ((srcf->f_op == NULL) || (srcf->f_op->read == NULL))
35324 + printk("%s - %s does not have a write method\n", __FUNCTION__, src);
35325 + NICLF_DEFAULT_USE();
35327 + } /* End of if */
35329 + /* read the firmware from the file *.bin */
35330 + FileLength = srcf->f_op->read(srcf,
35332 + MAX_FIRMWARE_IMAGE_SIZE,
35335 + if (FileLength != MAX_FIRMWARE_IMAGE_SIZE)
35337 + printk("%s: error file length (=%d) in RT2860AP.BIN\n",
35338 + __FUNCTION__, FileLength);
35339 + NICLF_DEFAULT_USE();
35344 + PUCHAR ptr = pFirmwareImage;
35345 + USHORT crc = 0xffff;
35348 + /* calculate firmware CRC */
35349 + for(i=0; i<(MAX_FIRMWARE_IMAGE_SIZE-2); i++, ptr++)
35350 + crc = ByteCRC16(BitReverse(*ptr), crc);
35353 + if ((pFirmwareImage[MAX_FIRMWARE_IMAGE_SIZE-2] != \
35354 + (UCHAR)BitReverse((UCHAR)(crc>>8))) ||
35355 + (pFirmwareImage[MAX_FIRMWARE_IMAGE_SIZE-1] != \
35356 + (UCHAR)BitReverse((UCHAR)crc)))
35359 + printk("%s: CRC = 0x%02x 0x%02x "
35360 + "error, should be 0x%02x 0x%02x\n",
35362 + pFirmwareImage[MAX_FIRMWARE_IMAGE_SIZE-2],
35363 + pFirmwareImage[MAX_FIRMWARE_IMAGE_SIZE-1],
35364 + (UCHAR)(crc>>8), (UCHAR)(crc));
35365 + NICLF_DEFAULT_USE();
35370 + /* firmware is ok */
35371 + pAd->FirmwareVersion = \
35372 + (pFirmwareImage[MAX_FIRMWARE_IMAGE_SIZE-4] << 8) +
35373 + pFirmwareImage[MAX_FIRMWARE_IMAGE_SIZE-3];
35375 + /* check if firmware version of the file is too old */
35376 + if ((pAd->FirmwareVersion) < \
35377 + ((FIRMWARE_MAJOR_VERSION << 8) +
35378 + FIRMWARE_MINOR_VERSION))
35380 + printk("%s: firmware version too old!\n", __FUNCTION__);
35381 + NICLF_DEFAULT_USE();
35383 + } /* End of if */
35384 + } /* End of if */
35386 + DBGPRINT(RT_DEBUG_TRACE,
35387 + ("NICLoadFirmware: CRC ok, ver=%d.%d\n",
35388 + pFirmwareImage[MAX_FIRMWARE_IMAGE_SIZE-4],
35389 + pFirmwareImage[MAX_FIRMWARE_IMAGE_SIZE-3]));
35390 + } /* End of if (FileLength == MAX_FIRMWARE_IMAGE_SIZE) */
35394 + /* close firmware file */
35395 + if (IS_ERR(srcf))
35399 + retval = filp_close(srcf, NULL);
35402 + DBGPRINT(RT_DEBUG_ERROR,
35403 + ("--> Error %d closing %s\n", -retval, src));
35404 + } /* End of if */
35405 + } /* End of if */
35406 + } /* End of if */
35409 + /* write firmware to ASIC */
35410 + if (flg_default_firm_use == TRUE)
35412 + /* use default fimeware, free allocated buffer */
35413 + if (pFirmwareImage != NULL)
35414 + kfree(pFirmwareImage);
35417 + /* use default *.bin array */
35418 + pFirmwareImage = FirmwareImage;
35419 + FileLength = sizeof(FirmwareImage);
35420 + } /* End of if */
35422 + /* enable Host program ram write selection */
35423 + RTMP_IO_WRITE32(pAd, PBF_SYS_CTRL, 0x10000);
35425 + for(i=0; i<FileLength; i+=4)
35427 + firm = pFirmwareImage[i] +
35428 + (pFirmwareImage[i+3] << 24) +
35429 + (pFirmwareImage[i+2] << 16) +
35430 + (pFirmwareImage[i+1] << 8);
35432 + RTMP_IO_WRITE32(pAd, FIRMWARE_IMAGE_BASE + i, firm);
35433 + } /* End of for */
35435 + RTMP_IO_WRITE32(pAd, PBF_SYS_CTRL, 0x00000);
35436 + RTMP_IO_WRITE32(pAd, PBF_SYS_CTRL, 0x00001);
35438 + /* initialize BBP R/W access agent */
35439 + RTMP_IO_WRITE32(pAd, H2M_BBP_AGENT, 0);
35440 + RTMP_IO_WRITE32(pAd, H2M_MAILBOX_CSR, 0);
35442 + if (flg_default_firm_use == FALSE)
35444 + /* use file firmware, free allocated buffer */
35445 + if (pFirmwareImage != NULL)
35446 + kfree(pFirmwareImage);
35448 + } /* End of if */
35451 + current->fsuid = orgfsuid;
35452 + current->fsgid = orgfsgid;
35455 + NDIS_STATUS Status = NDIS_STATUS_SUCCESS;
35456 + PUCHAR pFirmwareImage;
35457 + ULONG FileLength, Index;
35459 + UINT32 MacReg = 0;
35460 + UINT32 Version = (pAd->MACVersion >> 16);
35462 + pFirmwareImage = FirmwareImage;
35463 + FileLength = sizeof(FirmwareImage);
35465 + // New 8k byte firmware size for RT3071/RT3072
35466 + //printk("Usb Chip\n");
35467 + if (FIRMWAREIMAGE_LENGTH == FIRMWAREIMAGE_MAX_LENGTH)
35468 + //The firmware image consists of two parts. One is the origianl and the other is the new.
35469 + //Use Second Part
35472 + if ((Version != 0x2860) && (Version != 0x2872) && (Version != 0x3070))
35473 + { // Use Firmware V2.
35474 + //printk("KH:Use New Version,part2\n");
35475 + pFirmwareImage = (PUCHAR)&FirmwareImage[FIRMWAREIMAGEV1_LENGTH];
35476 + FileLength = FIRMWAREIMAGEV2_LENGTH;
35480 + //printk("KH:Use New Version,part1\n");
35481 + pFirmwareImage = FirmwareImage;
35482 + FileLength = FIRMWAREIMAGEV1_LENGTH;
35484 +#endif // RT2870 //
35488 + DBGPRINT(RT_DEBUG_ERROR, ("KH: bin file should be 8KB.\n"));
35489 + Status = NDIS_STATUS_FAILURE;
35492 + RT28XX_WRITE_FIRMWARE(pAd, pFirmwareImage, FileLength);
35496 + /* check if MCU is ready */
35500 + RTMP_IO_READ32(pAd, PBF_SYS_CTRL, &MacReg);
35502 + if (MacReg & 0x80)
35505 + RTMPusecDelay(1000);
35506 + } while (Index++ < 1000);
35508 + if (Index >= 1000)
35510 + Status = NDIS_STATUS_FAILURE;
35511 + DBGPRINT(RT_DEBUG_ERROR, ("NICLoadFirmware: MCU is not ready\n\n\n"));
35512 + } /* End of if */
35514 + DBGPRINT(RT_DEBUG_TRACE,
35515 + ("<=== %s (status=%d)\n", __FUNCTION__, Status));
35517 +} /* End of NICLoadFirmware */
35521 + ========================================================================
35523 + Routine Description:
35524 + Load Tx rate switching parameters
35527 + Adapter Pointer to our adapter
35530 + NDIS_STATUS_SUCCESS firmware image load ok
35531 + NDIS_STATUS_FAILURE image not found
35533 + IRQL = PASSIVE_LEVEL
35535 + Rate Table Format:
35536 + 1. (B0: Valid Item number) (B1:Initial item from zero)
35537 + 2. Item Number(Dec) Mode(Hex) Current MCS(Dec) TrainUp(Dec) TrainDown(Dec)
35539 + ========================================================================
35541 +NDIS_STATUS NICLoadRateSwitchingParams(
35542 + IN PRTMP_ADAPTER pAd)
35544 + return NDIS_STATUS_SUCCESS;
35548 + ========================================================================
35550 + Routine Description:
35551 + if pSrc1 all zero with length Length, return 0.
35552 + If not all zero, return 1
35561 + IRQL = DISPATCH_LEVEL
35565 + ========================================================================
35567 +ULONG RTMPNotAllZero(
35574 + pMem1 = (PUCHAR) pSrc1;
35576 + for (Index = 0; Index < Length; Index++)
35578 + if (pMem1[Index] != 0x0)
35584 + if (Index == Length)
35595 + ========================================================================
35597 + Routine Description:
35598 + Compare two memory block
35601 + pSrc1 Pointer to first memory address
35602 + pSrc2 Pointer to second memory address
35605 + 0: memory is equal
35606 + 1: pSrc1 memory is larger
35607 + 2: pSrc2 memory is larger
35609 + IRQL = DISPATCH_LEVEL
35613 + ========================================================================
35615 +ULONG RTMPCompareMemory(
35624 + pMem1 = (PUCHAR) pSrc1;
35625 + pMem2 = (PUCHAR) pSrc2;
35627 + for (Index = 0; Index < Length; Index++)
35629 + if (pMem1[Index] > pMem2[Index])
35631 + else if (pMem1[Index] < pMem2[Index])
35640 + ========================================================================
35642 + Routine Description:
35643 + Zero out memory block
35646 + pSrc1 Pointer to memory address
35652 + IRQL = PASSIVE_LEVEL
35653 + IRQL = DISPATCH_LEVEL
35657 + ========================================================================
35659 +VOID RTMPZeroMemory(
35666 + pMem = (PUCHAR) pSrc;
35668 + for (Index = 0; Index < Length; Index++)
35670 + pMem[Index] = 0x00;
35674 +VOID RTMPFillMemory(
35682 + pMem = (PUCHAR) pSrc;
35684 + for (Index = 0; Index < Length; Index++)
35686 + pMem[Index] = Fill;
35691 + ========================================================================
35693 + Routine Description:
35694 + Copy data from memory block 1 to memory block 2
35697 + pDest Pointer to destination memory address
35698 + pSrc Pointer to source memory address
35704 + IRQL = PASSIVE_LEVEL
35705 + IRQL = DISPATCH_LEVEL
35709 + ========================================================================
35711 +VOID RTMPMoveMemory(
35720 + ASSERT((Length==0) || (pDest && pSrc));
35722 + pMem1 = (PUCHAR) pDest;
35723 + pMem2 = (PUCHAR) pSrc;
35725 + for (Index = 0; Index < Length; Index++)
35727 + pMem1[Index] = pMem2[Index];
35732 + ========================================================================
35734 + Routine Description:
35735 + Initialize port configuration structure
35738 + Adapter Pointer to our adapter
35743 + IRQL = PASSIVE_LEVEL
35747 + ========================================================================
35750 + IN PRTMP_ADAPTER pAd)
35752 +// EDCA_PARM DefaultEdcaParm;
35753 + UINT key_index, bss_index;
35755 + DBGPRINT(RT_DEBUG_TRACE, ("--> UserCfgInit\n"));
35758 + // part I. intialize common configuration
35761 + pAd->BulkOutReq = 0;
35763 + pAd->BulkOutComplete = 0;
35764 + pAd->BulkOutCompleteOther = 0;
35765 + pAd->BulkOutCompleteCancel = 0;
35766 + pAd->BulkInReq = 0;
35767 + pAd->BulkInComplete = 0;
35768 + pAd->BulkInCompleteFail = 0;
35770 + //pAd->QuickTimerP = 100;
35771 + //pAd->TurnAggrBulkInCount = 0;
35772 + pAd->bUsbTxBulkAggre = 0;
35774 + // init as unsed value to ensure driver will set to MCU once.
35775 + pAd->LedIndicatorStregth = 0xFF;
35777 + pAd->CommonCfg.MaxPktOneTxBulk = 2;
35778 + pAd->CommonCfg.TxBulkFactor = 1;
35779 + pAd->CommonCfg.RxBulkFactor =1;
35781 + pAd->CommonCfg.TxPower = 100; //mW
35783 + NdisZeroMemory(&pAd->CommonCfg.IOTestParm, sizeof(pAd->CommonCfg.IOTestParm));
35784 +#endif // RT2870 //
35786 + for(key_index=0; key_index<SHARE_KEY_NUM; key_index++)
35788 + for(bss_index = 0; bss_index < MAX_MBSSID_NUM; bss_index++)
35790 + pAd->SharedKey[bss_index][key_index].KeyLen = 0;
35791 + pAd->SharedKey[bss_index][key_index].CipherAlg = CIPHER_NONE;
35792 + } /* End of for */
35793 + } /* End of for */
35795 + pAd->EepromAccess = FALSE;
35797 + pAd->Antenna.word = 0;
35798 + pAd->CommonCfg.BBPCurrentBW = BW_20;
35800 + pAd->LedCntl.word = 0;
35802 + pAd->bAutoTxAgcA = FALSE; // Default is OFF
35803 + pAd->bAutoTxAgcG = FALSE; // Default is OFF
35804 + pAd->RfIcType = RFIC_2820;
35806 + // Init timer for reset complete event
35807 + pAd->CommonCfg.CentralChannel = 1;
35808 + pAd->bForcePrintTX = FALSE;
35809 + pAd->bForcePrintRX = FALSE;
35810 + pAd->bStaFifoTest = FALSE;
35811 + pAd->bProtectionTest = FALSE;
35812 + pAd->bHCCATest = FALSE;
35813 + pAd->bGenOneHCCA = FALSE;
35814 + pAd->CommonCfg.Dsifs = 10; // in units of usec
35815 + pAd->CommonCfg.TxPower = 100; //mW
35816 + pAd->CommonCfg.TxPowerPercentage = 0xffffffff; // AUTO
35817 + pAd->CommonCfg.TxPowerDefault = 0xffffffff; // AUTO
35818 + pAd->CommonCfg.TxPreamble = Rt802_11PreambleAuto; // use Long preamble on TX by defaut
35819 + pAd->CommonCfg.bUseZeroToDisableFragment = FALSE;
35820 + pAd->CommonCfg.RtsThreshold = 2347;
35821 + pAd->CommonCfg.FragmentThreshold = 2346;
35822 + pAd->CommonCfg.UseBGProtection = 0; // 0: AUTO
35823 + pAd->CommonCfg.bEnableTxBurst = TRUE; //0;
35824 + pAd->CommonCfg.PhyMode = 0xff; // unknown
35825 + pAd->CommonCfg.BandState = UNKNOWN_BAND;
35826 + pAd->CommonCfg.RadarDetect.CSPeriod = 10;
35827 + pAd->CommonCfg.RadarDetect.CSCount = 0;
35828 + pAd->CommonCfg.RadarDetect.RDMode = RD_NORMAL_MODE;
35829 + pAd->CommonCfg.RadarDetect.ChMovingTime = 65;
35830 + pAd->CommonCfg.RadarDetect.LongPulseRadarTh = 3;
35831 + pAd->CommonCfg.bAPSDCapable = FALSE;
35832 + pAd->CommonCfg.bNeedSendTriggerFrame = FALSE;
35833 + pAd->CommonCfg.TriggerTimerCount = 0;
35834 + pAd->CommonCfg.bAPSDForcePowerSave = FALSE;
35835 + pAd->CommonCfg.bCountryFlag = FALSE;
35836 + pAd->CommonCfg.TxStream = 0;
35837 + pAd->CommonCfg.RxStream = 0;
35839 + NdisZeroMemory(&pAd->BeaconTxWI, sizeof(pAd->BeaconTxWI));
35841 +#ifdef DOT11_N_SUPPORT
35842 + NdisZeroMemory(&pAd->CommonCfg.HtCapability, sizeof(pAd->CommonCfg.HtCapability));
35843 + pAd->HTCEnable = FALSE;
35844 + pAd->bBroadComHT = FALSE;
35845 + pAd->CommonCfg.bRdg = FALSE;
35847 +#ifdef DOT11N_DRAFT3
35848 + pAd->CommonCfg.Dot11OBssScanPassiveDwell = dot11OBSSScanPassiveDwell; // Unit : TU. 5~1000
35849 + pAd->CommonCfg.Dot11OBssScanActiveDwell = dot11OBSSScanActiveDwell; // Unit : TU. 10~1000
35850 + pAd->CommonCfg.Dot11BssWidthTriggerScanInt = dot11BSSWidthTriggerScanInterval; // Unit : Second
35851 + pAd->CommonCfg.Dot11OBssScanPassiveTotalPerChannel = dot11OBSSScanPassiveTotalPerChannel; // Unit : TU. 200~10000
35852 + pAd->CommonCfg.Dot11OBssScanActiveTotalPerChannel = dot11OBSSScanActiveTotalPerChannel; // Unit : TU. 20~10000
35853 + pAd->CommonCfg.Dot11BssWidthChanTranDelayFactor = dot11BSSWidthChannelTransactionDelayFactor;
35854 + pAd->CommonCfg.Dot11OBssScanActivityThre = dot11BSSScanActivityThreshold; // Unit : percentage
35855 + pAd->CommonCfg.Dot11BssWidthChanTranDelay = (pAd->CommonCfg.Dot11BssWidthTriggerScanInt * pAd->CommonCfg.Dot11BssWidthChanTranDelayFactor);
35856 +#endif // DOT11N_DRAFT3 //
35858 + NdisZeroMemory(&pAd->CommonCfg.AddHTInfo, sizeof(pAd->CommonCfg.AddHTInfo));
35859 + pAd->CommonCfg.BACapability.field.MMPSmode = MMPS_ENABLE;
35860 + pAd->CommonCfg.BACapability.field.MpduDensity = 0;
35861 + pAd->CommonCfg.BACapability.field.Policy = IMMED_BA;
35862 + pAd->CommonCfg.BACapability.field.RxBAWinLimit = 64; //32;
35863 + pAd->CommonCfg.BACapability.field.TxBAWinLimit = 64; //32;
35864 + DBGPRINT(RT_DEBUG_TRACE, ("--> UserCfgInit. BACapability = 0x%x\n", pAd->CommonCfg.BACapability.word));
35866 + pAd->CommonCfg.BACapability.field.AutoBA = FALSE;
35867 + BATableInit(pAd, &pAd->BATable);
35869 + pAd->CommonCfg.bExtChannelSwitchAnnouncement = 1;
35870 + pAd->CommonCfg.bHTProtect = 1;
35871 + pAd->CommonCfg.bMIMOPSEnable = TRUE;
35872 + pAd->CommonCfg.bBADecline = FALSE;
35873 + pAd->CommonCfg.bDisableReordering = FALSE;
35875 + pAd->CommonCfg.TxBASize = 7;
35877 + pAd->CommonCfg.REGBACapability.word = pAd->CommonCfg.BACapability.word;
35878 +#endif // DOT11_N_SUPPORT //
35880 + //pAd->CommonCfg.HTPhyMode.field.BW = BW_20;
35881 + //pAd->CommonCfg.HTPhyMode.field.MCS = MCS_AUTO;
35882 + //pAd->CommonCfg.HTPhyMode.field.ShortGI = GI_800;
35883 + //pAd->CommonCfg.HTPhyMode.field.STBC = STBC_NONE;
35884 + pAd->CommonCfg.TxRate = RATE_6;
35886 + pAd->CommonCfg.MlmeTransmit.field.MCS = MCS_RATE_6;
35887 + pAd->CommonCfg.MlmeTransmit.field.BW = BW_20;
35888 + pAd->CommonCfg.MlmeTransmit.field.MODE = MODE_OFDM;
35890 + pAd->CommonCfg.BeaconPeriod = 100; // in mSec
35893 + // part II. intialize STA specific configuration
35895 +#ifdef CONFIG_STA_SUPPORT
35896 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
35898 + RX_FILTER_SET_FLAG(pAd, fRX_FILTER_ACCEPT_DIRECT);
35899 + RX_FILTER_CLEAR_FLAG(pAd, fRX_FILTER_ACCEPT_MULTICAST);
35900 + RX_FILTER_SET_FLAG(pAd, fRX_FILTER_ACCEPT_BROADCAST);
35901 + RX_FILTER_SET_FLAG(pAd, fRX_FILTER_ACCEPT_ALL_MULTICAST);
35903 + pAd->StaCfg.Psm = PWR_ACTIVE;
35905 + pAd->StaCfg.OrigWepStatus = Ndis802_11EncryptionDisabled;
35906 + pAd->StaCfg.PairCipher = Ndis802_11EncryptionDisabled;
35907 + pAd->StaCfg.GroupCipher = Ndis802_11EncryptionDisabled;
35908 + pAd->StaCfg.bMixCipher = FALSE;
35909 + pAd->StaCfg.DefaultKeyId = 0;
35911 + // 802.1x port control
35912 + pAd->StaCfg.PrivacyFilter = Ndis802_11PrivFilter8021xWEP;
35913 + pAd->StaCfg.PortSecured = WPA_802_1X_PORT_NOT_SECURED;
35914 + pAd->StaCfg.LastMicErrorTime = 0;
35915 + pAd->StaCfg.MicErrCnt = 0;
35916 + pAd->StaCfg.bBlockAssoc = FALSE;
35917 + pAd->StaCfg.WpaState = SS_NOTUSE;
35919 + pAd->CommonCfg.NdisRadioStateOff = FALSE; // New to support microsoft disable radio with OID command
35921 + pAd->StaCfg.RssiTrigger = 0;
35922 + NdisZeroMemory(&pAd->StaCfg.RssiSample, sizeof(RSSI_SAMPLE));
35923 + pAd->StaCfg.RssiTriggerMode = RSSI_TRIGGERED_UPON_BELOW_THRESHOLD;
35924 + pAd->StaCfg.AtimWin = 0;
35925 + pAd->StaCfg.DefaultListenCount = 3;//default listen count;
35926 + pAd->StaCfg.BssType = BSS_INFRA; // BSS_INFRA or BSS_ADHOC or BSS_MONITOR
35927 + pAd->StaCfg.bScanReqIsFromWebUI = FALSE;
35928 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_DOZE);
35929 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_WAKEUP_NOW);
35931 + pAd->StaCfg.bAutoTxRateSwitch = TRUE;
35932 + pAd->StaCfg.DesiredTransmitSetting.field.MCS = MCS_AUTO;
35935 +#ifdef EXT_BUILD_CHANNEL_LIST
35936 + pAd->StaCfg.IEEE80211dClientMode = Rt802_11_D_None;
35937 +#endif // EXT_BUILD_CHANNEL_LIST //
35938 +#endif // CONFIG_STA_SUPPORT //
35940 + // global variables mXXXX used in MAC protocol state machines
35941 + OPSTATUS_SET_FLAG(pAd, fOP_STATUS_RECEIVE_DTIM);
35942 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_ADHOC_ON);
35943 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_INFRA_ON);
35945 + // PHY specification
35946 + pAd->CommonCfg.PhyMode = PHY_11BG_MIXED; // default PHY mode
35947 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_SHORT_PREAMBLE_INUSED); // CCK use LONG preamble
35949 +#ifdef CONFIG_STA_SUPPORT
35950 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
35952 + // user desired power mode
35953 + pAd->StaCfg.WindowsPowerMode = Ndis802_11PowerModeCAM;
35954 + pAd->StaCfg.WindowsBatteryPowerMode = Ndis802_11PowerModeCAM;
35955 + pAd->StaCfg.bWindowsACCAMEnable = FALSE;
35957 +#ifdef LEAP_SUPPORT
35958 + // CCX v1.0 releated init value
35959 + RTMPInitTimer(pAd, &pAd->StaCfg.LeapAuthTimer, GET_TIMER_FUNCTION(LeapAuthTimeout), pAd, FALSE);
35960 + pAd->StaCfg.LeapAuthMode = CISCO_AuthModeLEAPNone;
35961 + pAd->StaCfg.bCkipOn = FALSE;
35962 +#endif // LEAP_SUPPORT //
35964 + RTMPInitTimer(pAd, &pAd->StaCfg.StaQuickResponeForRateUpTimer, GET_TIMER_FUNCTION(StaQuickResponeForRateUpExec), pAd, FALSE);
35965 + pAd->StaCfg.StaQuickResponeForRateUpTimerRunning = FALSE;
35967 + // Patch for Ndtest
35968 + pAd->StaCfg.ScanCnt = 0;
35970 + // CCX 2.0 control flag init
35971 + pAd->StaCfg.CCXEnable = FALSE;
35972 + pAd->StaCfg.CCXReqType = MSRN_TYPE_UNUSED;
35973 + pAd->StaCfg.CCXQosECWMin = 4;
35974 + pAd->StaCfg.CCXQosECWMax = 10;
35976 + pAd->StaCfg.bHwRadio = TRUE; // Default Hardware Radio status is On
35977 + pAd->StaCfg.bSwRadio = TRUE; // Default Software Radio status is On
35978 + pAd->StaCfg.bRadio = TRUE; // bHwRadio && bSwRadio
35979 + pAd->StaCfg.bHardwareRadio = FALSE; // Default is OFF
35980 + pAd->StaCfg.bShowHiddenSSID = FALSE; // Default no show
35982 + // Nitro mode control
35983 + pAd->StaCfg.bAutoReconnect = TRUE;
35985 + // Save the init time as last scan time, the system should do scan after 2 seconds.
35986 + // This patch is for driver wake up from standby mode, system will do scan right away.
35987 + pAd->StaCfg.LastScanTime = 0;
35988 + NdisZeroMemory(pAd->nickname, IW_ESSID_MAX_SIZE+1);
35989 + sprintf(pAd->nickname, "%s", STA_NIC_DEVICE_NAME);
35990 + RTMPInitTimer(pAd, &pAd->StaCfg.WpaDisassocAndBlockAssocTimer, GET_TIMER_FUNCTION(WpaDisassocApAndBlockAssoc), pAd, FALSE);
35991 +#ifdef WPA_SUPPLICANT_SUPPORT
35992 + pAd->StaCfg.IEEE8021X = FALSE;
35993 + pAd->StaCfg.IEEE8021x_required_keys = FALSE;
35994 + pAd->StaCfg.WpaSupplicantUP = WPA_SUPPLICANT_DISABLE;
35995 +#ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
35996 + pAd->StaCfg.WpaSupplicantUP = WPA_SUPPLICANT_ENABLE;
35997 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
35998 +#endif // WPA_SUPPLICANT_SUPPORT //
36001 +#endif // CONFIG_STA_SUPPORT //
36003 + // Default for extra information is not valid
36004 + pAd->ExtraInfo = EXTRA_INFO_CLEAR;
36006 + // Default Config change flag
36007 + pAd->bConfigChanged = FALSE;
36010 + // part III. AP configurations
36015 + // part IV. others
36017 + // dynamic BBP R66:sensibity tuning to overcome background noise
36018 + pAd->BbpTuning.bEnable = TRUE;
36019 + pAd->BbpTuning.FalseCcaLowerThreshold = 100;
36020 + pAd->BbpTuning.FalseCcaUpperThreshold = 512;
36021 + pAd->BbpTuning.R66Delta = 4;
36022 + pAd->Mlme.bEnableAutoAntennaCheck = TRUE;
36025 + // Also initial R66CurrentValue, RTUSBResumeMsduTransmission might use this value.
36026 + // if not initial this value, the default value will be 0.
36028 + pAd->BbpTuning.R66CurrentValue = 0x38;
36030 + pAd->Bbp94 = BBPR94_DEFAULT;
36031 + pAd->BbpForCCK = FALSE;
36033 + // Default is FALSE for test bit 1
36034 + //pAd->bTest1 = FALSE;
36036 + // initialize MAC table and allocate spin lock
36037 + NdisZeroMemory(&pAd->MacTab, sizeof(MAC_TABLE));
36038 + InitializeQueueHeader(&pAd->MacTab.McastPsQueue);
36039 + NdisAllocateSpinLock(&pAd->MacTabLock);
36041 + //RTMPInitTimer(pAd, &pAd->RECBATimer, RECBATimerTimeout, pAd, TRUE);
36042 + //RTMPSetTimer(&pAd->RECBATimer, REORDER_EXEC_INTV);
36045 + NdisZeroMemory(&pAd->ate, sizeof(ATE_INFO));
36046 + pAd->ate.Mode = ATE_STOP;
36047 + pAd->ate.TxCount = 200;/* to exceed TX_RING_SIZE ... */
36048 + pAd->ate.TxLength = 1024;
36049 + pAd->ate.TxWI.ShortGI = 0;// LONG GI : 800 ns
36050 + pAd->ate.TxWI.PHYMODE = MODE_CCK;
36051 + pAd->ate.TxWI.MCS = 3;
36052 + pAd->ate.TxWI.BW = BW_20;
36053 + pAd->ate.Channel = 1;
36054 + pAd->ate.QID = QID_AC_BE;
36055 + pAd->ate.Addr1[0] = 0x00;
36056 + pAd->ate.Addr1[1] = 0x11;
36057 + pAd->ate.Addr1[2] = 0x22;
36058 + pAd->ate.Addr1[3] = 0xAA;
36059 + pAd->ate.Addr1[4] = 0xBB;
36060 + pAd->ate.Addr1[5] = 0xCC;
36061 + NdisMoveMemory(pAd->ate.Addr2, pAd->ate.Addr1, ETH_LENGTH_OF_ADDRESS);
36062 + NdisMoveMemory(pAd->ate.Addr3, pAd->ate.Addr1, ETH_LENGTH_OF_ADDRESS);
36063 + pAd->ate.bRxFer = 0;
36064 + pAd->ate.bQATxStart = FALSE;
36065 + pAd->ate.bQARxStart = FALSE;
36066 +#ifdef RALINK_28xx_QA
36067 + //pAd->ate.Repeat = 0;
36068 + pAd->ate.TxStatus = 0;
36069 + pAd->ate.AtePid = 0;
36070 +#endif // RALINK_28xx_QA //
36071 +#endif // RALINK_ATE //
36074 + pAd->CommonCfg.bWiFiTest = FALSE;
36077 + DBGPRINT(RT_DEBUG_TRACE, ("<-- UserCfgInit\n"));
36080 +// IRQL = PASSIVE_LEVEL
36081 +UCHAR BtoH(char ch)
36083 + if (ch >= '0' && ch <= '9') return (ch - '0'); // Handle numerals
36084 + if (ch >= 'A' && ch <= 'F') return (ch - 'A' + 0xA); // Handle capitol hex digits
36085 + if (ch >= 'a' && ch <= 'f') return (ch - 'a' + 0xA); // Handle small hex digits
36090 +// FUNCTION: AtoH(char *, UCHAR *, int)
36092 +// PURPOSE: Converts ascii string to network order hex
36095 +// src - pointer to input ascii string
36096 +// dest - pointer to output hex
36097 +// destlen - size of dest
36101 +// 2 ascii bytes make a hex byte so must put 1st ascii byte of pair
36102 +// into upper nibble and 2nd ascii byte of pair into lower nibble.
36104 +// IRQL = PASSIVE_LEVEL
36106 +void AtoH(char * src, UCHAR * dest, int destlen)
36112 + destTemp = (PUCHAR) dest;
36116 + *destTemp = BtoH(*srcptr++) << 4; // Put 1st ascii byte in upper nibble.
36117 + *destTemp += BtoH(*srcptr++); // Add 2nd ascii byte to above.
36122 +VOID RTMPPatchMacBbpBug(
36123 + IN PRTMP_ADAPTER pAd)
36127 + // Initialize BBP register to default value
36128 + for (Index = 0; Index < NUM_BBP_REG_PARMS; Index++)
36130 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBPRegTable[Index].Register, (UCHAR)BBPRegTable[Index].Value);
36133 + // Initialize RF register to default value
36134 + AsicSwitchChannel(pAd, pAd->CommonCfg.Channel, FALSE);
36135 + AsicLockChannel(pAd, pAd->CommonCfg.Channel);
36137 + // Re-init BBP register from EEPROM value
36138 + NICInitAsicFromEEPROM(pAd);
36142 + ========================================================================
36144 + Routine Description:
36145 + Init timer objects
36148 + pAd Pointer to our adapter
36149 + pTimer Timer structure
36150 + pTimerFunc Function to execute when timer expired
36151 + Repeat Ture for period timer
36158 + ========================================================================
36160 +VOID RTMPInitTimer(
36161 + IN PRTMP_ADAPTER pAd,
36162 + IN PRALINK_TIMER_STRUCT pTimer,
36163 + IN PVOID pTimerFunc,
36165 + IN BOOLEAN Repeat)
36168 + // Set Valid to TRUE for later used.
36169 + // It will crash if we cancel a timer or set a timer
36170 + // that we haven't initialize before.
36172 + pTimer->Valid = TRUE;
36174 + pTimer->PeriodicType = Repeat;
36175 + pTimer->State = FALSE;
36176 + pTimer->cookie = (ULONG) pData;
36179 + pTimer->pAd = pAd;
36180 +#endif // RT2870 //
36182 + RTMP_OS_Init_Timer(pAd, &pTimer->TimerObj, pTimerFunc, (PVOID) pTimer);
36186 + ========================================================================
36188 + Routine Description:
36189 + Init timer objects
36192 + pTimer Timer structure
36193 + Value Timer value in milliseconds
36199 + To use this routine, must call RTMPInitTimer before.
36201 + ========================================================================
36203 +VOID RTMPSetTimer(
36204 + IN PRALINK_TIMER_STRUCT pTimer,
36207 + if (pTimer->Valid)
36209 + pTimer->TimerValue = Value;
36210 + pTimer->State = FALSE;
36211 + if (pTimer->PeriodicType == TRUE)
36213 + pTimer->Repeat = TRUE;
36214 + RTMP_SetPeriodicTimer(&pTimer->TimerObj, Value);
36218 + pTimer->Repeat = FALSE;
36219 + RTMP_OS_Add_Timer(&pTimer->TimerObj, Value);
36224 + DBGPRINT_ERR(("RTMPSetTimer failed, Timer hasn't been initialize!\n"));
36230 + ========================================================================
36232 + Routine Description:
36233 + Init timer objects
36236 + pTimer Timer structure
36237 + Value Timer value in milliseconds
36243 + To use this routine, must call RTMPInitTimer before.
36245 + ========================================================================
36247 +VOID RTMPModTimer(
36248 + IN PRALINK_TIMER_STRUCT pTimer,
36253 + if (pTimer->Valid)
36255 + pTimer->TimerValue = Value;
36256 + pTimer->State = FALSE;
36257 + if (pTimer->PeriodicType == TRUE)
36259 + RTMPCancelTimer(pTimer, &Cancel);
36260 + RTMPSetTimer(pTimer, Value);
36264 + RTMP_OS_Mod_Timer(&pTimer->TimerObj, Value);
36269 + DBGPRINT_ERR(("RTMPModTimer failed, Timer hasn't been initialize!\n"));
36274 + ========================================================================
36276 + Routine Description:
36277 + Cancel timer objects
36280 + Adapter Pointer to our adapter
36285 + IRQL = PASSIVE_LEVEL
36286 + IRQL = DISPATCH_LEVEL
36289 + 1.) To use this routine, must call RTMPInitTimer before.
36290 + 2.) Reset NIC to initial state AS IS system boot up time.
36292 + ========================================================================
36294 +VOID RTMPCancelTimer(
36295 + IN PRALINK_TIMER_STRUCT pTimer,
36296 + OUT BOOLEAN *pCancelled)
36298 + if (pTimer->Valid)
36300 + if (pTimer->State == FALSE)
36301 + pTimer->Repeat = FALSE;
36302 + RTMP_OS_Del_Timer(&pTimer->TimerObj, pCancelled);
36304 + if (*pCancelled == TRUE)
36305 + pTimer->State = TRUE;
36308 + // We need to go-through the TimerQ to findout this timer handler and remove it if
36309 + // it's still waiting for execution.
36311 + RT2870_TimerQ_Remove(pTimer->pAd, pTimer);
36312 +#endif // RT2870 //
36317 + // NdisMCancelTimer just canced the timer and not mean release the timer.
36318 + // And don't set the "Valid" to False. So that we can use this timer again.
36320 + DBGPRINT_ERR(("RTMPCancelTimer failed, Timer hasn't been initialize!\n"));
36325 + ========================================================================
36327 + Routine Description:
36331 + pAd Pointer to our adapter
36332 + Status LED Status
36337 + IRQL = PASSIVE_LEVEL
36338 + IRQL = DISPATCH_LEVEL
36342 + ========================================================================
36345 + IN PRTMP_ADAPTER pAd,
36349 + UCHAR HighByte = 0;
36352 +// In ATE mode of RT2860 AP/STA, we have erased 8051 firmware.
36353 +// So LED mode is not supported when ATE is running.
36357 +#endif // RALINK_ATE //
36359 + LowByte = pAd->LedCntl.field.LedMode&0x7f;
36362 + case LED_LINK_DOWN:
36364 + AsicSendCommandToMcu(pAd, 0x50, 0xff, LowByte, HighByte);
36365 + pAd->LedIndicatorStregth = 0;
36367 + case LED_LINK_UP:
36368 + if (pAd->CommonCfg.Channel > 14)
36372 + AsicSendCommandToMcu(pAd, 0x50, 0xff, LowByte, HighByte);
36374 + case LED_RADIO_ON:
36376 + AsicSendCommandToMcu(pAd, 0x50, 0xff, LowByte, HighByte);
36379 + LowByte = 0; // Driver sets MAC register and MAC controls LED
36380 + case LED_RADIO_OFF:
36382 + AsicSendCommandToMcu(pAd, 0x50, 0xff, LowByte, HighByte);
36386 + AsicSendCommandToMcu(pAd, 0x50, 0xff, LowByte, HighByte);
36388 + case LED_ON_SITE_SURVEY:
36390 + AsicSendCommandToMcu(pAd, 0x50, 0xff, LowByte, HighByte);
36392 + case LED_POWER_UP:
36394 + AsicSendCommandToMcu(pAd, 0x50, 0xff, LowByte, HighByte);
36397 + DBGPRINT(RT_DEBUG_WARN, ("RTMPSetLED::Unknown Status %d\n", Status));
36402 + // Keep LED status for LED SiteSurvey mode.
36403 + // After SiteSurvey, we will set the LED mode to previous status.
36405 + if ((Status != LED_ON_SITE_SURVEY) && (Status != LED_POWER_UP))
36406 + pAd->LedStatus = Status;
36408 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPSetLED::Mode=%d,HighByte=0x%02x,LowByte=0x%02x\n", pAd->LedCntl.field.LedMode, HighByte, LowByte));
36412 + ========================================================================
36414 + Routine Description:
36415 + Set LED Signal Stregth
36418 + pAd Pointer to our adapter
36419 + Dbm Signal Stregth
36424 + IRQL = PASSIVE_LEVEL
36427 + Can be run on any IRQL level.
36429 + According to Microsoft Zero Config Wireless Signal Stregth definition as belows.
36436 + ========================================================================
36438 +VOID RTMPSetSignalLED(
36439 + IN PRTMP_ADAPTER pAd,
36440 + IN NDIS_802_11_RSSI Dbm)
36445 + // if not Signal Stregth, then do nothing.
36447 + if (pAd->LedCntl.field.LedMode != LED_MODE_SIGNAL_STREGTH)
36454 + else if (Dbm <= -81)
36456 + else if (Dbm <= -71)
36458 + else if (Dbm <= -67)
36460 + else if (Dbm <= -57)
36466 + // Update Signal Stregth to firmware if changed.
36468 + if (pAd->LedIndicatorStregth != nLed)
36470 + AsicSendCommandToMcu(pAd, 0x51, 0xff, nLed, pAd->LedCntl.field.Polarity);
36471 + pAd->LedIndicatorStregth = nLed;
36476 + ========================================================================
36478 + Routine Description:
36482 + pAd Pointer to our adapter
36487 + IRQL <= DISPATCH_LEVEL
36490 + Before Enable RX, make sure you have enabled Interrupt.
36491 + ========================================================================
36493 +VOID RTMPEnableRxTx(
36494 + IN PRTMP_ADAPTER pAd)
36496 +// WPDMA_GLO_CFG_STRUC GloCfg;
36499 + DBGPRINT(RT_DEBUG_TRACE, ("==> RTMPEnableRxTx\n"));
36501 + // Enable Rx DMA.
36502 + RT28XXDMAEnable(pAd);
36504 + // enable RX of MAC block
36505 + if (pAd->OpMode == OPMODE_AP)
36507 + UINT32 rx_filter_flag = APNORMAL;
36510 + RTMP_IO_WRITE32(pAd, RX_FILTR_CFG, rx_filter_flag); // enable RX of DMA block
36514 + RTMP_IO_WRITE32(pAd, RX_FILTR_CFG, STANORMAL); // Staion not drop control frame will fail WiFi Certification.
36517 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, 0xc);
36518 + DBGPRINT(RT_DEBUG_TRACE, ("<== RTMPEnableRxTx\n"));
36523 +++ b/drivers/staging/rt3070/common/rtmp_tkip.c
36526 + *************************************************************************
36527 + * Ralink Tech Inc.
36528 + * 5F., No.36, Taiyuan St., Jhubei City,
36529 + * Hsinchu County 302,
36532 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
36534 + * This program is free software; you can redistribute it and/or modify *
36535 + * it under the terms of the GNU General Public License as published by *
36536 + * the Free Software Foundation; either version 2 of the License, or *
36537 + * (at your option) any later version. *
36539 + * This program is distributed in the hope that it will be useful, *
36540 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
36541 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
36542 + * GNU General Public License for more details. *
36544 + * You should have received a copy of the GNU General Public License *
36545 + * along with this program; if not, write to the *
36546 + * Free Software Foundation, Inc., *
36547 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
36549 + *************************************************************************
36556 + Revision History:
36558 + -------- ---------- ----------------------------------------------
36559 + Paul Wu 02-25-02 Initial
36562 +#include "../rt_config.h"
36564 +// Rotation functions on 32 bit values
36565 +#define ROL32( A, n ) \
36566 + ( ((A) << (n)) | ( ((A)>>(32-(n))) & ( (1UL << (n)) - 1 ) ) )
36567 +#define ROR32( A, n ) ROL32( (A), 32-(n) )
36569 +UINT Tkip_Sbox_Lower[256] =
36571 + 0xA5,0x84,0x99,0x8D,0x0D,0xBD,0xB1,0x54,
36572 + 0x50,0x03,0xA9,0x7D,0x19,0x62,0xE6,0x9A,
36573 + 0x45,0x9D,0x40,0x87,0x15,0xEB,0xC9,0x0B,
36574 + 0xEC,0x67,0xFD,0xEA,0xBF,0xF7,0x96,0x5B,
36575 + 0xC2,0x1C,0xAE,0x6A,0x5A,0x41,0x02,0x4F,
36576 + 0x5C,0xF4,0x34,0x08,0x93,0x73,0x53,0x3F,
36577 + 0x0C,0x52,0x65,0x5E,0x28,0xA1,0x0F,0xB5,
36578 + 0x09,0x36,0x9B,0x3D,0x26,0x69,0xCD,0x9F,
36579 + 0x1B,0x9E,0x74,0x2E,0x2D,0xB2,0xEE,0xFB,
36580 + 0xF6,0x4D,0x61,0xCE,0x7B,0x3E,0x71,0x97,
36581 + 0xF5,0x68,0x00,0x2C,0x60,0x1F,0xC8,0xED,
36582 + 0xBE,0x46,0xD9,0x4B,0xDE,0xD4,0xE8,0x4A,
36583 + 0x6B,0x2A,0xE5,0x16,0xC5,0xD7,0x55,0x94,
36584 + 0xCF,0x10,0x06,0x81,0xF0,0x44,0xBA,0xE3,
36585 + 0xF3,0xFE,0xC0,0x8A,0xAD,0xBC,0x48,0x04,
36586 + 0xDF,0xC1,0x75,0x63,0x30,0x1A,0x0E,0x6D,
36587 + 0x4C,0x14,0x35,0x2F,0xE1,0xA2,0xCC,0x39,
36588 + 0x57,0xF2,0x82,0x47,0xAC,0xE7,0x2B,0x95,
36589 + 0xA0,0x98,0xD1,0x7F,0x66,0x7E,0xAB,0x83,
36590 + 0xCA,0x29,0xD3,0x3C,0x79,0xE2,0x1D,0x76,
36591 + 0x3B,0x56,0x4E,0x1E,0xDB,0x0A,0x6C,0xE4,
36592 + 0x5D,0x6E,0xEF,0xA6,0xA8,0xA4,0x37,0x8B,
36593 + 0x32,0x43,0x59,0xB7,0x8C,0x64,0xD2,0xE0,
36594 + 0xB4,0xFA,0x07,0x25,0xAF,0x8E,0xE9,0x18,
36595 + 0xD5,0x88,0x6F,0x72,0x24,0xF1,0xC7,0x51,
36596 + 0x23,0x7C,0x9C,0x21,0xDD,0xDC,0x86,0x85,
36597 + 0x90,0x42,0xC4,0xAA,0xD8,0x05,0x01,0x12,
36598 + 0xA3,0x5F,0xF9,0xD0,0x91,0x58,0x27,0xB9,
36599 + 0x38,0x13,0xB3,0x33,0xBB,0x70,0x89,0xA7,
36600 + 0xB6,0x22,0x92,0x20,0x49,0xFF,0x78,0x7A,
36601 + 0x8F,0xF8,0x80,0x17,0xDA,0x31,0xC6,0xB8,
36602 + 0xC3,0xB0,0x77,0x11,0xCB,0xFC,0xD6,0x3A
36605 +UINT Tkip_Sbox_Upper[256] =
36607 + 0xC6,0xF8,0xEE,0xF6,0xFF,0xD6,0xDE,0x91,
36608 + 0x60,0x02,0xCE,0x56,0xE7,0xB5,0x4D,0xEC,
36609 + 0x8F,0x1F,0x89,0xFA,0xEF,0xB2,0x8E,0xFB,
36610 + 0x41,0xB3,0x5F,0x45,0x23,0x53,0xE4,0x9B,
36611 + 0x75,0xE1,0x3D,0x4C,0x6C,0x7E,0xF5,0x83,
36612 + 0x68,0x51,0xD1,0xF9,0xE2,0xAB,0x62,0x2A,
36613 + 0x08,0x95,0x46,0x9D,0x30,0x37,0x0A,0x2F,
36614 + 0x0E,0x24,0x1B,0xDF,0xCD,0x4E,0x7F,0xEA,
36615 + 0x12,0x1D,0x58,0x34,0x36,0xDC,0xB4,0x5B,
36616 + 0xA4,0x76,0xB7,0x7D,0x52,0xDD,0x5E,0x13,
36617 + 0xA6,0xB9,0x00,0xC1,0x40,0xE3,0x79,0xB6,
36618 + 0xD4,0x8D,0x67,0x72,0x94,0x98,0xB0,0x85,
36619 + 0xBB,0xC5,0x4F,0xED,0x86,0x9A,0x66,0x11,
36620 + 0x8A,0xE9,0x04,0xFE,0xA0,0x78,0x25,0x4B,
36621 + 0xA2,0x5D,0x80,0x05,0x3F,0x21,0x70,0xF1,
36622 + 0x63,0x77,0xAF,0x42,0x20,0xE5,0xFD,0xBF,
36623 + 0x81,0x18,0x26,0xC3,0xBE,0x35,0x88,0x2E,
36624 + 0x93,0x55,0xFC,0x7A,0xC8,0xBA,0x32,0xE6,
36625 + 0xC0,0x19,0x9E,0xA3,0x44,0x54,0x3B,0x0B,
36626 + 0x8C,0xC7,0x6B,0x28,0xA7,0xBC,0x16,0xAD,
36627 + 0xDB,0x64,0x74,0x14,0x92,0x0C,0x48,0xB8,
36628 + 0x9F,0xBD,0x43,0xC4,0x39,0x31,0xD3,0xF2,
36629 + 0xD5,0x8B,0x6E,0xDA,0x01,0xB1,0x9C,0x49,
36630 + 0xD8,0xAC,0xF3,0xCF,0xCA,0xF4,0x47,0x10,
36631 + 0x6F,0xF0,0x4A,0x5C,0x38,0x57,0x73,0x97,
36632 + 0xCB,0xA1,0xE8,0x3E,0x96,0x61,0x0D,0x0F,
36633 + 0xE0,0x7C,0x71,0xCC,0x90,0x06,0xF7,0x1C,
36634 + 0xC2,0x6A,0xAE,0x69,0x17,0x99,0x3A,0x27,
36635 + 0xD9,0xEB,0x2B,0x22,0xD2,0xA9,0x07,0x33,
36636 + 0x2D,0x3C,0x15,0xC9,0x87,0xAA,0x50,0xA5,
36637 + 0x03,0x59,0x09,0x1A,0x65,0xD7,0x84,0xD0,
36638 + 0x82,0x29,0x5A,0x1E,0x7B,0xA8,0x6D,0x2C
36641 +/*****************************/
36642 +/******** SBOX Table *********/
36643 +/*****************************/
36645 +UCHAR SboxTable[256] =
36647 + 0x63, 0x7c, 0x77, 0x7b, 0xf2, 0x6b, 0x6f, 0xc5,
36648 + 0x30, 0x01, 0x67, 0x2b, 0xfe, 0xd7, 0xab, 0x76,
36649 + 0xca, 0x82, 0xc9, 0x7d, 0xfa, 0x59, 0x47, 0xf0,
36650 + 0xad, 0xd4, 0xa2, 0xaf, 0x9c, 0xa4, 0x72, 0xc0,
36651 + 0xb7, 0xfd, 0x93, 0x26, 0x36, 0x3f, 0xf7, 0xcc,
36652 + 0x34, 0xa5, 0xe5, 0xf1, 0x71, 0xd8, 0x31, 0x15,
36653 + 0x04, 0xc7, 0x23, 0xc3, 0x18, 0x96, 0x05, 0x9a,
36654 + 0x07, 0x12, 0x80, 0xe2, 0xeb, 0x27, 0xb2, 0x75,
36655 + 0x09, 0x83, 0x2c, 0x1a, 0x1b, 0x6e, 0x5a, 0xa0,
36656 + 0x52, 0x3b, 0xd6, 0xb3, 0x29, 0xe3, 0x2f, 0x84,
36657 + 0x53, 0xd1, 0x00, 0xed, 0x20, 0xfc, 0xb1, 0x5b,
36658 + 0x6a, 0xcb, 0xbe, 0x39, 0x4a, 0x4c, 0x58, 0xcf,
36659 + 0xd0, 0xef, 0xaa, 0xfb, 0x43, 0x4d, 0x33, 0x85,
36660 + 0x45, 0xf9, 0x02, 0x7f, 0x50, 0x3c, 0x9f, 0xa8,
36661 + 0x51, 0xa3, 0x40, 0x8f, 0x92, 0x9d, 0x38, 0xf5,
36662 + 0xbc, 0xb6, 0xda, 0x21, 0x10, 0xff, 0xf3, 0xd2,
36663 + 0xcd, 0x0c, 0x13, 0xec, 0x5f, 0x97, 0x44, 0x17,
36664 + 0xc4, 0xa7, 0x7e, 0x3d, 0x64, 0x5d, 0x19, 0x73,
36665 + 0x60, 0x81, 0x4f, 0xdc, 0x22, 0x2a, 0x90, 0x88,
36666 + 0x46, 0xee, 0xb8, 0x14, 0xde, 0x5e, 0x0b, 0xdb,
36667 + 0xe0, 0x32, 0x3a, 0x0a, 0x49, 0x06, 0x24, 0x5c,
36668 + 0xc2, 0xd3, 0xac, 0x62, 0x91, 0x95, 0xe4, 0x79,
36669 + 0xe7, 0xc8, 0x37, 0x6d, 0x8d, 0xd5, 0x4e, 0xa9,
36670 + 0x6c, 0x56, 0xf4, 0xea, 0x65, 0x7a, 0xae, 0x08,
36671 + 0xba, 0x78, 0x25, 0x2e, 0x1c, 0xa6, 0xb4, 0xc6,
36672 + 0xe8, 0xdd, 0x74, 0x1f, 0x4b, 0xbd, 0x8b, 0x8a,
36673 + 0x70, 0x3e, 0xb5, 0x66, 0x48, 0x03, 0xf6, 0x0e,
36674 + 0x61, 0x35, 0x57, 0xb9, 0x86, 0xc1, 0x1d, 0x9e,
36675 + 0xe1, 0xf8, 0x98, 0x11, 0x69, 0xd9, 0x8e, 0x94,
36676 + 0x9b, 0x1e, 0x87, 0xe9, 0xce, 0x55, 0x28, 0xdf,
36677 + 0x8c, 0xa1, 0x89, 0x0d, 0xbf, 0xe6, 0x42, 0x68,
36678 + 0x41, 0x99, 0x2d, 0x0f, 0xb0, 0x54, 0xbb, 0x16
36707 +UCHAR RTMPCkipSbox(
36710 +// Expanded IV for TKIP function.
36712 +typedef struct PACKED _IV_CONTROL_
36726 +#ifdef RT_BIG_ENDIAN
36744 +} TKIP_IV, *PTKIP_IV;
36748 + ========================================================================
36750 + Routine Description:
36751 + Convert from UCHAR[] to ULONG in a portable way
36754 + pMICKey pointer to MIC Key
36761 + ========================================================================
36763 +ULONG RTMPTkipGetUInt32(
36764 + IN PUCHAR pMICKey)
36769 + for (i = 0; i < 4; i++)
36771 + res |= (*pMICKey++) << (8 * i);
36778 + ========================================================================
36780 + Routine Description:
36781 + Convert from ULONG to UCHAR[] in a portable way
36784 + pDst pointer to destination for convert ULONG to UCHAR[]
36785 + val the value for convert
36790 + IRQL = DISPATCH_LEVEL
36794 + ========================================================================
36796 +VOID RTMPTkipPutUInt32(
36797 + IN OUT PUCHAR pDst,
36802 + for(i = 0; i < 4; i++)
36804 + *pDst++ = (UCHAR) (val & 0xff);
36810 + ========================================================================
36812 + Routine Description:
36816 + pAd Pointer to our adapter
36817 + pMICKey pointer to MIC Key
36822 + IRQL = DISPATCH_LEVEL
36826 + ========================================================================
36828 +VOID RTMPTkipSetMICKey(
36829 + IN PTKIP_KEY_INFO pTkip,
36830 + IN PUCHAR pMICKey)
36833 + pTkip->K0 = RTMPTkipGetUInt32(pMICKey);
36834 + pTkip->K1 = RTMPTkipGetUInt32(pMICKey + 4);
36835 + // and reset the message
36836 + pTkip->L = pTkip->K0;
36837 + pTkip->R = pTkip->K1;
36838 + pTkip->nBytesInM = 0;
36843 + ========================================================================
36845 + Routine Description:
36846 + Calculate the MIC Value.
36849 + pAd Pointer to our adapter
36850 + uChar Append this uChar
36855 + IRQL = DISPATCH_LEVEL
36859 + ========================================================================
36861 +VOID RTMPTkipAppendByte(
36862 + IN PTKIP_KEY_INFO pTkip,
36865 + // Append the byte to our word-sized buffer
36866 + pTkip->M |= (uChar << (8* pTkip->nBytesInM));
36867 + pTkip->nBytesInM++;
36868 + // Process the word if it is full.
36869 + if( pTkip->nBytesInM >= 4 )
36871 + pTkip->L ^= pTkip->M;
36872 + pTkip->R ^= ROL32( pTkip->L, 17 );
36873 + pTkip->L += pTkip->R;
36874 + pTkip->R ^= ((pTkip->L & 0xff00ff00) >> 8) | ((pTkip->L & 0x00ff00ff) << 8);
36875 + pTkip->L += pTkip->R;
36876 + pTkip->R ^= ROL32( pTkip->L, 3 );
36877 + pTkip->L += pTkip->R;
36878 + pTkip->R ^= ROR32( pTkip->L, 2 );
36879 + pTkip->L += pTkip->R;
36880 + // Clear the buffer
36882 + pTkip->nBytesInM = 0;
36887 + ========================================================================
36889 + Routine Description:
36890 + Calculate the MIC Value.
36893 + pAd Pointer to our adapter
36894 + pSrc Pointer to source data for Calculate MIC Value
36895 + Len Indicate the length of the source data
36900 + IRQL = DISPATCH_LEVEL
36904 + ========================================================================
36906 +VOID RTMPTkipAppend(
36907 + IN PTKIP_KEY_INFO pTkip,
36911 + // This is simple
36912 + while(nBytes > 0)
36914 + RTMPTkipAppendByte(pTkip, *pSrc++);
36920 + ========================================================================
36922 + Routine Description:
36923 + Get the MIC Value.
36926 + pAd Pointer to our adapter
36931 + IRQL = DISPATCH_LEVEL
36934 + the MIC Value is store in pAd->PrivateInfo.MIC
36935 + ========================================================================
36937 +VOID RTMPTkipGetMIC(
36938 + IN PTKIP_KEY_INFO pTkip)
36940 + // Append the minimum padding
36941 + RTMPTkipAppendByte(pTkip, 0x5a );
36942 + RTMPTkipAppendByte(pTkip, 0 );
36943 + RTMPTkipAppendByte(pTkip, 0 );
36944 + RTMPTkipAppendByte(pTkip, 0 );
36945 + RTMPTkipAppendByte(pTkip, 0 );
36946 + // and then zeroes until the length is a multiple of 4
36947 + while( pTkip->nBytesInM != 0 )
36949 + RTMPTkipAppendByte(pTkip, 0 );
36951 + // The appendByte function has already computed the result.
36952 + RTMPTkipPutUInt32(pTkip->MIC, pTkip->L);
36953 + RTMPTkipPutUInt32(pTkip->MIC + 4, pTkip->R);
36957 + ========================================================================
36959 + Routine Description:
36960 + Init Tkip function.
36963 + pAd Pointer to our adapter
36964 + pTKey Pointer to the Temporal Key (TK), TK shall be 128bits.
36966 + pTA Pointer to transmitter address
36967 + pMICKey pointer to MIC Key
36972 + IRQL = DISPATCH_LEVEL
36976 + ========================================================================
36978 +VOID RTMPInitTkipEngine(
36979 + IN PRTMP_ADAPTER pAd,
36983 + IN PUCHAR pMICKey,
36985 + OUT PULONG pIV16,
36986 + OUT PULONG pIV32)
36990 + // Prepare 8 bytes TKIP encapsulation for MPDU
36991 + NdisZeroMemory(&tkipIv, sizeof(TKIP_IV));
36992 + tkipIv.IV16.field.rc0 = *(pTSC + 1);
36993 + tkipIv.IV16.field.rc1 = (tkipIv.IV16.field.rc0 | 0x20) & 0x7f;
36994 + tkipIv.IV16.field.rc2 = *pTSC;
36995 + tkipIv.IV16.field.CONTROL.field.ExtIV = 1; // 0: non-extended IV, 1: an extended IV
36996 + tkipIv.IV16.field.CONTROL.field.KeyID = KeyId;
36997 +// tkipIv.IV32 = *(PULONG)(pTSC + 2);
36998 + NdisMoveMemory(&tkipIv.IV32, (pTSC + 2), 4); // Copy IV
37000 + *pIV16 = tkipIv.IV16.word;
37001 + *pIV32 = tkipIv.IV32;
37005 + ========================================================================
37007 + Routine Description:
37008 + Init MIC Value calculation function which include set MIC key &
37009 + calculate first 16 bytes (DA + SA + priority + 0)
37012 + pAd Pointer to our adapter
37013 + pTKey Pointer to the Temporal Key (TK), TK shall be 128bits.
37014 + pDA Pointer to DA address
37015 + pSA Pointer to SA address
37016 + pMICKey pointer to MIC Key
37023 + ========================================================================
37025 +VOID RTMPInitMICEngine(
37026 + IN PRTMP_ADAPTER pAd,
37030 + IN UCHAR UserPriority,
37031 + IN PUCHAR pMICKey)
37033 + ULONG Priority = UserPriority;
37035 + // Init MIC value calculation
37036 + RTMPTkipSetMICKey(&pAd->PrivateInfo.Tx, pMICKey);
37038 + RTMPTkipAppend(&pAd->PrivateInfo.Tx, pDA, MAC_ADDR_LEN);
37040 + RTMPTkipAppend(&pAd->PrivateInfo.Tx, pSA, MAC_ADDR_LEN);
37041 + // Priority + 3 bytes of 0
37042 + RTMPTkipAppend(&pAd->PrivateInfo.Tx, (PUCHAR)&Priority, 4);
37046 + ========================================================================
37048 + Routine Description:
37049 + Compare MIC value of received MSDU
37052 + pAd Pointer to our adapter
37053 + pSrc Pointer to the received Plain text data
37054 + pDA Pointer to DA address
37055 + pSA Pointer to SA address
37056 + pMICKey pointer to MIC Key
37057 + Len the length of the received plain text data exclude MIC value
37060 + TRUE MIC value matched
37061 + FALSE MIC value mismatched
37063 + IRQL = DISPATCH_LEVEL
37067 + ========================================================================
37069 +BOOLEAN RTMPTkipCompareMICValue(
37070 + IN PRTMP_ADAPTER pAd,
37074 + IN PUCHAR pMICKey,
37075 + IN UCHAR UserPriority,
37079 + ULONG Priority = UserPriority;
37081 + // Init MIC value calculation
37082 + RTMPTkipSetMICKey(&pAd->PrivateInfo.Rx, pMICKey);
37084 + RTMPTkipAppend(&pAd->PrivateInfo.Rx, pDA, MAC_ADDR_LEN);
37086 + RTMPTkipAppend(&pAd->PrivateInfo.Rx, pSA, MAC_ADDR_LEN);
37087 + // Priority + 3 bytes of 0
37088 + RTMPTkipAppend(&pAd->PrivateInfo.Rx, (PUCHAR)&Priority, 4);
37090 + // Calculate MIC value from plain text data
37091 + RTMPTkipAppend(&pAd->PrivateInfo.Rx, pSrc, Len);
37093 + // Get MIC valude from received frame
37094 + NdisMoveMemory(OldMic, pSrc + Len, 8);
37096 + // Get MIC value from decrypted plain data
37097 + RTMPTkipGetMIC(&pAd->PrivateInfo.Rx);
37099 + // Move MIC value from MSDU, this steps should move to data path.
37100 + // Since the MIC value might cross MPDUs.
37101 + if(!NdisEqualMemory(pAd->PrivateInfo.Rx.MIC, OldMic, 8))
37103 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("RTMPTkipCompareMICValue(): TKIP MIC Error !\n")); //MIC error.
37112 + ========================================================================
37114 + Routine Description:
37115 + Compare MIC value of received MSDU
37118 + pAd Pointer to our adapter
37120 + pSrc Pointer to the received Plain text data
37121 + pDA Pointer to DA address
37122 + pSA Pointer to SA address
37123 + pMICKey pointer to MIC Key
37124 + Len the length of the received plain text data exclude MIC value
37127 + TRUE MIC value matched
37128 + FALSE MIC value mismatched
37130 + IRQL = DISPATCH_LEVEL
37134 + ========================================================================
37136 +BOOLEAN RTMPTkipCompareMICValueWithLLC(
37137 + IN PRTMP_ADAPTER pAd,
37142 + IN PUCHAR pMICKey,
37146 + ULONG Priority = 0;
37148 + // Init MIC value calculation
37149 + RTMPTkipSetMICKey(&pAd->PrivateInfo.Rx, pMICKey);
37151 + RTMPTkipAppend(&pAd->PrivateInfo.Rx, pDA, MAC_ADDR_LEN);
37153 + RTMPTkipAppend(&pAd->PrivateInfo.Rx, pSA, MAC_ADDR_LEN);
37154 + // Priority + 3 bytes of 0
37155 + RTMPTkipAppend(&pAd->PrivateInfo.Rx, (PUCHAR)&Priority, 4);
37157 + // Start with LLC header
37158 + RTMPTkipAppend(&pAd->PrivateInfo.Rx, pLLC, 8);
37160 + // Calculate MIC value from plain text data
37161 + RTMPTkipAppend(&pAd->PrivateInfo.Rx, pSrc, Len);
37163 + // Get MIC valude from received frame
37164 + NdisMoveMemory(OldMic, pSrc + Len, 8);
37166 + // Get MIC value from decrypted plain data
37167 + RTMPTkipGetMIC(&pAd->PrivateInfo.Rx);
37169 + // Move MIC value from MSDU, this steps should move to data path.
37170 + // Since the MIC value might cross MPDUs.
37171 + if(!NdisEqualMemory(pAd->PrivateInfo.Rx.MIC, OldMic, 8))
37173 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("RTMPTkipCompareMICValueWithLLC(): TKIP MIC Error !\n")); //MIC error.
37181 + ========================================================================
37183 + Routine Description:
37184 + Copy frame from waiting queue into relative ring buffer and set
37185 + appropriate ASIC register to kick hardware transmit function
37188 + pAd Pointer to our adapter
37189 + PNDIS_PACKET Pointer to Ndis Packet for MIC calculation
37190 + pEncap Pointer to LLC encap data
37191 + LenEncap Total encap length, might be 0 which indicates no encap
37196 + IRQL = DISPATCH_LEVEL
37200 + ========================================================================
37202 +VOID RTMPCalculateMICValue(
37203 + IN PRTMP_ADAPTER pAd,
37204 + IN PNDIS_PACKET pPacket,
37205 + IN PUCHAR pEncap,
37206 + IN PCIPHER_KEY pKey,
37209 + PACKET_INFO PacketInfo;
37210 + PUCHAR pSrcBufVA;
37213 + UCHAR UserPriority;
37214 + UCHAR vlan_offset = 0;
37216 + RTMP_QueryPacketInfo(pPacket, &PacketInfo, &pSrcBufVA, &SrcBufLen);
37218 + UserPriority = RTMP_GET_PACKET_UP(pPacket);
37219 + pSrc = pSrcBufVA;
37221 + // determine if this is a vlan packet
37222 + if (((*(pSrc + 12) << 8) + *(pSrc + 13)) == 0x8100)
37225 +#ifdef CONFIG_STA_SUPPORT
37226 +#endif // CONFIG_STA_SUPPORT //
37228 + RTMPInitMICEngine(
37238 + if (pEncap != NULL)
37240 + // LLC encapsulation
37241 + RTMPTkipAppend(&pAd->PrivateInfo.Tx, pEncap, 6);
37243 + RTMPTkipAppend(&pAd->PrivateInfo.Tx, pSrc + 12 + vlan_offset, 2);
37245 + SrcBufLen -= (14 + vlan_offset);
37246 + pSrc += (14 + vlan_offset);
37249 + if (SrcBufLen > 0)
37251 + RTMPTkipAppend(&pAd->PrivateInfo.Tx, pSrc, SrcBufLen);
37254 + break; // No need handle next packet
37256 + } while (TRUE); // End of copying payload
37258 + // Compute the final MIC Value
37259 + RTMPTkipGetMIC(&pAd->PrivateInfo.Tx);
37263 +/************************************************************/
37265 +/* Returns a 16 bit value from a 64K entry table. The Table */
37266 +/* is synthesized from two 256 entry byte wide tables. */
37267 +/************************************************************/
37269 +UINT tkip_sbox(UINT index)
37273 + UINT left, right;
37275 + index_low = (index % 256);
37276 + index_high = ((index >> 8) % 256);
37278 + left = Tkip_Sbox_Lower[index_low] + (Tkip_Sbox_Upper[index_low] * 256);
37279 + right = Tkip_Sbox_Upper[index_high] + (Tkip_Sbox_Lower[index_high] * 256);
37281 + return (left ^ right);
37284 +UINT rotr1(UINT a)
37288 + if ((a & 0x01) == 0x01)
37290 + b = (a >> 1) | 0x8000;
37294 + b = (a >> 1) & 0x7fff;
37300 +VOID RTMPTkipMixKey(
37303 + ULONG pnl, /* Least significant 16 bits of PN */
37304 + ULONG pnh, /* Most significant 32 bits of PN */
37323 + tsc0 = (unsigned int)((pnh >> 16) % 65536); /* msb */
37324 + tsc1 = (unsigned int)(pnh % 65536);
37325 + tsc2 = (unsigned int)(pnl % 65536); /* lsb */
37327 + /* Phase 1, step 1 */
37330 + p1k[2] = (UINT)(ta[0] + (ta[1]*256));
37331 + p1k[3] = (UINT)(ta[2] + (ta[3]*256));
37332 + p1k[4] = (UINT)(ta[4] + (ta[5]*256));
37334 + /* Phase 1, step 2 */
37335 + for (i=0; i<8; i++)
37338 + p1k[0] = (p1k[0] + tkip_sbox( (p1k[4] ^ ((256*key[1+j]) + key[j])) % 65536 )) % 65536;
37339 + p1k[1] = (p1k[1] + tkip_sbox( (p1k[0] ^ ((256*key[5+j]) + key[4+j])) % 65536 )) % 65536;
37340 + p1k[2] = (p1k[2] + tkip_sbox( (p1k[1] ^ ((256*key[9+j]) + key[8+j])) % 65536 )) % 65536;
37341 + p1k[3] = (p1k[3] + tkip_sbox( (p1k[2] ^ ((256*key[13+j]) + key[12+j])) % 65536 )) % 65536;
37342 + p1k[4] = (p1k[4] + tkip_sbox( (p1k[3] ^ (((256*key[1+j]) + key[j]))) % 65536 )) % 65536;
37343 + p1k[4] = (p1k[4] + i) % 65536;
37346 + /* Phase 2, Step 1 */
37352 + ppk5 = (p1k[4] + tsc2) % 65536;
37354 + /* Phase2, Step 2 */
37355 + ppk0 = ppk0 + tkip_sbox( (ppk5 ^ ((256*key[1]) + key[0])) % 65536);
37356 + ppk1 = ppk1 + tkip_sbox( (ppk0 ^ ((256*key[3]) + key[2])) % 65536);
37357 + ppk2 = ppk2 + tkip_sbox( (ppk1 ^ ((256*key[5]) + key[4])) % 65536);
37358 + ppk3 = ppk3 + tkip_sbox( (ppk2 ^ ((256*key[7]) + key[6])) % 65536);
37359 + ppk4 = ppk4 + tkip_sbox( (ppk3 ^ ((256*key[9]) + key[8])) % 65536);
37360 + ppk5 = ppk5 + tkip_sbox( (ppk4 ^ ((256*key[11]) + key[10])) % 65536);
37362 + ppk0 = ppk0 + rotr1(ppk5 ^ ((256*key[13]) + key[12]));
37363 + ppk1 = ppk1 + rotr1(ppk0 ^ ((256*key[15]) + key[14]));
37364 + ppk2 = ppk2 + rotr1(ppk1);
37365 + ppk3 = ppk3 + rotr1(ppk2);
37366 + ppk4 = ppk4 + rotr1(ppk3);
37367 + ppk5 = ppk5 + rotr1(ppk4);
37369 + /* Phase 2, Step 3 */
37370 + /* Phase 2, Step 3 */
37372 + tsc0 = (unsigned int)((pnh >> 16) % 65536); /* msb */
37373 + tsc1 = (unsigned int)(pnh % 65536);
37374 + tsc2 = (unsigned int)(pnl % 65536); /* lsb */
37376 + rc4key[0] = (tsc2 >> 8) % 256;
37377 + rc4key[1] = (((tsc2 >> 8) % 256) | 0x20) & 0x7f;
37378 + rc4key[2] = tsc2 % 256;
37379 + rc4key[3] = ((ppk5 ^ ((256*key[1]) + key[0])) >> 1) % 256;
37381 + rc4key[4] = ppk0 % 256;
37382 + rc4key[5] = (ppk0 >> 8) % 256;
37384 + rc4key[6] = ppk1 % 256;
37385 + rc4key[7] = (ppk1 >> 8) % 256;
37387 + rc4key[8] = ppk2 % 256;
37388 + rc4key[9] = (ppk2 >> 8) % 256;
37390 + rc4key[10] = ppk3 % 256;
37391 + rc4key[11] = (ppk3 >> 8) % 256;
37393 + rc4key[12] = ppk4 % 256;
37394 + rc4key[13] = (ppk4 >> 8) % 256;
37396 + rc4key[14] = ppk5 % 256;
37397 + rc4key[15] = (ppk5 >> 8) % 256;
37401 +/************************************************/
37402 +/* construct_mic_header1() */
37403 +/* Builds the first MIC header block from */
37404 +/* header fields. */
37405 +/************************************************/
37407 +void construct_mic_header1(
37408 + unsigned char *mic_header1,
37409 + int header_length,
37410 + unsigned char *mpdu)
37412 + mic_header1[0] = (unsigned char)((header_length - 2) / 256);
37413 + mic_header1[1] = (unsigned char)((header_length - 2) % 256);
37414 + mic_header1[2] = mpdu[0] & 0xcf; /* Mute CF poll & CF ack bits */
37415 + mic_header1[3] = mpdu[1] & 0xc7; /* Mute retry, more data and pwr mgt bits */
37416 + mic_header1[4] = mpdu[4]; /* A1 */
37417 + mic_header1[5] = mpdu[5];
37418 + mic_header1[6] = mpdu[6];
37419 + mic_header1[7] = mpdu[7];
37420 + mic_header1[8] = mpdu[8];
37421 + mic_header1[9] = mpdu[9];
37422 + mic_header1[10] = mpdu[10]; /* A2 */
37423 + mic_header1[11] = mpdu[11];
37424 + mic_header1[12] = mpdu[12];
37425 + mic_header1[13] = mpdu[13];
37426 + mic_header1[14] = mpdu[14];
37427 + mic_header1[15] = mpdu[15];
37430 +/************************************************/
37431 +/* construct_mic_header2() */
37432 +/* Builds the last MIC header block from */
37433 +/* header fields. */
37434 +/************************************************/
37436 +void construct_mic_header2(
37437 + unsigned char *mic_header2,
37438 + unsigned char *mpdu,
37444 + for (i = 0; i<16; i++) mic_header2[i]=0x00;
37446 + mic_header2[0] = mpdu[16]; /* A3 */
37447 + mic_header2[1] = mpdu[17];
37448 + mic_header2[2] = mpdu[18];
37449 + mic_header2[3] = mpdu[19];
37450 + mic_header2[4] = mpdu[20];
37451 + mic_header2[5] = mpdu[21];
37453 + // In Sequence Control field, mute sequence numer bits (12-bit)
37454 + mic_header2[6] = mpdu[22] & 0x0f; /* SC */
37455 + mic_header2[7] = 0x00; /* mpdu[23]; */
37457 + if ((!qc_exists) & a4_exists)
37459 + for (i=0;i<6;i++) mic_header2[8+i] = mpdu[24+i]; /* A4 */
37463 + if (qc_exists && (!a4_exists))
37465 + mic_header2[8] = mpdu[24] & 0x0f; /* mute bits 15 - 4 */
37466 + mic_header2[9] = mpdu[25] & 0x00;
37469 + if (qc_exists && a4_exists)
37471 + for (i=0;i<6;i++) mic_header2[8+i] = mpdu[24+i]; /* A4 */
37473 + mic_header2[14] = mpdu[30] & 0x0f;
37474 + mic_header2[15] = mpdu[31] & 0x00;
37479 +/************************************************/
37480 +/* construct_mic_iv() */
37481 +/* Builds the MIC IV from header fields and PN */
37482 +/************************************************/
37484 +void construct_mic_iv(
37485 + unsigned char *mic_iv,
37488 + unsigned char *mpdu,
37489 + unsigned int payload_length,
37490 + unsigned char *pn_vector)
37494 + mic_iv[0] = 0x59;
37495 + if (qc_exists && a4_exists)
37496 + mic_iv[1] = mpdu[30] & 0x0f; /* QoS_TC */
37497 + if (qc_exists && !a4_exists)
37498 + mic_iv[1] = mpdu[24] & 0x0f; /* mute bits 7-4 */
37500 + mic_iv[1] = 0x00;
37501 + for (i = 2; i < 8; i++)
37502 + mic_iv[i] = mpdu[i + 8]; /* mic_iv[2:7] = A2[0:5] = mpdu[10:15] */
37503 +#ifdef CONSISTENT_PN_ORDER
37504 + for (i = 8; i < 14; i++)
37505 + mic_iv[i] = pn_vector[i - 8]; /* mic_iv[8:13] = PN[0:5] */
37507 + for (i = 8; i < 14; i++)
37508 + mic_iv[i] = pn_vector[13 - i]; /* mic_iv[8:13] = PN[5:0] */
37510 + i = (payload_length / 256);
37511 + i = (payload_length % 256);
37512 + mic_iv[14] = (unsigned char) (payload_length / 256);
37513 + mic_iv[15] = (unsigned char) (payload_length % 256);
37519 +/************************************/
37520 +/* bitwise_xor() */
37521 +/* A 128 bit, bitwise exclusive or */
37522 +/************************************/
37524 +void bitwise_xor(unsigned char *ina, unsigned char *inb, unsigned char *out)
37527 + for (i=0; i<16; i++)
37529 + out[i] = ina[i] ^ inb[i];
37534 +void aes128k128d(unsigned char *key, unsigned char *data, unsigned char *ciphertext)
37538 + unsigned char intermediatea[16];
37539 + unsigned char intermediateb[16];
37540 + unsigned char round_key[16];
37542 + for(i=0; i<16; i++) round_key[i] = key[i];
37544 + for (round = 0; round < 11; round++)
37548 + xor_128(round_key, data, ciphertext);
37549 + next_key(round_key, round);
37551 + else if (round == 10)
37553 + byte_sub(ciphertext, intermediatea);
37554 + shift_row(intermediatea, intermediateb);
37555 + xor_128(intermediateb, round_key, ciphertext);
37559 + byte_sub(ciphertext, intermediatea);
37560 + shift_row(intermediatea, intermediateb);
37561 + mix_column(&intermediateb[0], &intermediatea[0]);
37562 + mix_column(&intermediateb[4], &intermediatea[4]);
37563 + mix_column(&intermediateb[8], &intermediatea[8]);
37564 + mix_column(&intermediateb[12], &intermediatea[12]);
37565 + xor_128(intermediatea, round_key, ciphertext);
37566 + next_key(round_key, round);
37572 +void construct_ctr_preload(
37573 + unsigned char *ctr_preload,
37576 + unsigned char *mpdu,
37577 + unsigned char *pn_vector,
37582 + for (i=0; i<16; i++) ctr_preload[i] = 0x00;
37585 + ctr_preload[0] = 0x01; /* flag */
37586 + if (qc_exists && a4_exists) ctr_preload[1] = mpdu[30] & 0x0f; /* QoC_Control */
37587 + if (qc_exists && !a4_exists) ctr_preload[1] = mpdu[24] & 0x0f;
37589 + for (i = 2; i < 8; i++)
37590 + ctr_preload[i] = mpdu[i + 8]; /* ctr_preload[2:7] = A2[0:5] = mpdu[10:15] */
37591 +#ifdef CONSISTENT_PN_ORDER
37592 + for (i = 8; i < 14; i++)
37593 + ctr_preload[i] = pn_vector[i - 8]; /* ctr_preload[8:13] = PN[0:5] */
37595 + for (i = 8; i < 14; i++)
37596 + ctr_preload[i] = pn_vector[13 - i]; /* ctr_preload[8:13] = PN[5:0] */
37598 + ctr_preload[14] = (unsigned char) (c / 256); // Ctr
37599 + ctr_preload[15] = (unsigned char) (c % 256);
37606 +// FALSE: Decrypt Error!
37608 +BOOLEAN RTMPSoftDecryptTKIP(
37609 + IN PRTMP_ADAPTER pAd,
37611 + IN ULONG DataByteCnt,
37612 + IN UCHAR UserPriority,
37613 + IN PCIPHER_KEY pWpaKey)
37621 + UINT frame_subtype;
37627 + USHORT seq_control;
37628 + USHORT qos_control;
37629 + UCHAR TA[MAC_ADDR_LEN];
37630 + UCHAR DA[MAC_ADDR_LEN];
37631 + UCHAR SA[MAC_ADDR_LEN];
37632 + UCHAR RC4Key[16];
37633 + UINT p1k[5]; //for mix_key;
37634 + ULONG pnl;/* Least significant 16 bits of PN */
37635 + ULONG pnh;/* Most significant 32 bits of PN */
37637 + UINT payload_remainder;
37638 + ARCFOURCONTEXT ArcFourContext;
37640 + UINT trailfcs = 0;
37642 + UCHAR TrailMIC[8];
37644 +#ifdef RT_BIG_ENDIAN
37645 + RTMPFrameEndianChange(pAd, (PUCHAR)pData, DIR_READ, FALSE);
37649 + fc1 = *(pData + 1);
37651 + fc = *((PUSHORT)pData);
37653 + frame_type = ((fc0 >> 2) & 0x03);
37654 + frame_subtype = ((fc0 >> 4) & 0x0f);
37656 + from_ds = (fc1 & 0x2) >> 1;
37657 + to_ds = (fc1 & 0x1);
37659 + a4_exists = (from_ds & to_ds);
37660 + qc_exists = ((frame_subtype == 0x08) || /* Assumed QoS subtypes */
37661 + (frame_subtype == 0x09) || /* Likely to change. */
37662 + (frame_subtype == 0x0a) ||
37663 + (frame_subtype == 0x0b)
37670 + KeyID = *((PUCHAR)(pData+ HeaderLen + 3));
37671 + KeyID = KeyID >> 6;
37673 + if (pWpaKey[KeyID].KeyLen == 0)
37675 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPSoftDecryptTKIP failed!(KeyID[%d] Length can not be 0)\n", KeyID));
37679 + duration = *((PUSHORT)(pData+2));
37681 + seq_control = *((PUSHORT)(pData+22));
37687 + qos_control = *((PUSHORT)(pData+30));
37691 + qos_control = *((PUSHORT)(pData+24));
37695 + if (to_ds == 0 && from_ds == 1)
37697 + NdisMoveMemory(DA, pData+4, MAC_ADDR_LEN);
37698 + NdisMoveMemory(SA, pData+16, MAC_ADDR_LEN);
37699 + NdisMoveMemory(TA, pData+10, MAC_ADDR_LEN); //BSSID
37701 + else if (to_ds == 0 && from_ds == 0 )
37703 + NdisMoveMemory(TA, pData+10, MAC_ADDR_LEN);
37704 + NdisMoveMemory(DA, pData+4, MAC_ADDR_LEN);
37705 + NdisMoveMemory(SA, pData+10, MAC_ADDR_LEN);
37707 + else if (to_ds == 1 && from_ds == 0)
37709 + NdisMoveMemory(SA, pData+10, MAC_ADDR_LEN);
37710 + NdisMoveMemory(TA, pData+10, MAC_ADDR_LEN);
37711 + NdisMoveMemory(DA, pData+16, MAC_ADDR_LEN);
37713 + else if (to_ds == 1 && from_ds == 1)
37715 + NdisMoveMemory(TA, pData+10, MAC_ADDR_LEN);
37716 + NdisMoveMemory(DA, pData+16, MAC_ADDR_LEN);
37717 + NdisMoveMemory(SA, pData+22, MAC_ADDR_LEN);
37720 + num_blocks = (DataByteCnt - 16) / 16;
37721 + payload_remainder = (DataByteCnt - 16) % 16;
37723 + pnl = (*(pData + HeaderLen)) * 256 + *(pData + HeaderLen + 2);
37724 + pnh = *((PULONG)(pData + HeaderLen + 4));
37725 + pnh = cpu2le32(pnh);
37726 + RTMPTkipMixKey(pWpaKey[KeyID].Key, TA, pnl, pnh, RC4Key, p1k);
37728 + ARCFOUR_INIT(&ArcFourContext, RC4Key, 16);
37730 + ARCFOUR_DECRYPT(&ArcFourContext, pData + HeaderLen, pData + HeaderLen + 8, DataByteCnt - HeaderLen - 8);
37731 + NdisMoveMemory(&trailfcs, pData + DataByteCnt - 8 - 4, 4);
37732 + crc32 = RTMP_CALC_FCS32(PPPINITFCS32, pData + HeaderLen, DataByteCnt - HeaderLen - 8 - 4); //Skip IV+EIV 8 bytes & Skip last 4 bytes(FCS).
37733 + crc32 ^= 0xffffffff; /* complement */
37735 + if(crc32 != cpu2le32(trailfcs))
37737 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPSoftDecryptTKIP, WEP Data ICV Error !\n")); //ICV error.
37742 + NdisMoveMemory(TrailMIC, pData + DataByteCnt - 8 - 8 - 4, 8);
37743 + RTMPInitMICEngine(pAd, pWpaKey[KeyID].Key, DA, SA, UserPriority, pWpaKey[KeyID].RxMic);
37744 + RTMPTkipAppend(&pAd->PrivateInfo.Tx, pData + HeaderLen, DataByteCnt - HeaderLen - 8 - 12);
37745 + RTMPTkipGetMIC(&pAd->PrivateInfo.Tx);
37746 + NdisMoveMemory(MIC, pAd->PrivateInfo.Tx.MIC, 8);
37748 + if (!NdisEqualMemory(MIC, TrailMIC, 8))
37750 + DBGPRINT(RT_DEBUG_ERROR, ("RTMPSoftDecryptTKIP, WEP Data MIC Error !\n")); //MIC error.
37751 + //RTMPReportMicError(pAd, &pWpaKey[KeyID]); // marked by AlbertY @ 20060630
37755 +#ifdef RT_BIG_ENDIAN
37756 + RTMPFrameEndianChange(pAd, (PUCHAR)pData, DIR_READ, FALSE);
37758 + //DBGPRINT(RT_DEBUG_TRACE, "RTMPSoftDecryptTKIP Decript done!!\n");
37765 +BOOLEAN RTMPSoftDecryptAES(
37766 + IN PRTMP_ADAPTER pAd,
37768 + IN ULONG DataByteCnt,
37769 + IN PCIPHER_KEY pWpaKey)
37774 + UINT payload_len;
37776 + UINT payload_remainder;
37781 + UINT frame_subtype;
37786 + UCHAR aes_out[16];
37787 + int payload_index;
37789 + UCHAR ctr_preload[16];
37790 + UCHAR chain_buffer[16];
37791 + UCHAR padded_buffer[16];
37792 + UCHAR mic_iv[16];
37793 + UCHAR mic_header1[16];
37794 + UCHAR mic_header2[16];
37796 + UCHAR TrailMIC[8];
37798 +#ifdef RT_BIG_ENDIAN
37799 + RTMPFrameEndianChange(pAd, (PUCHAR)pData, DIR_READ, FALSE);
37803 + fc1 = *(pData + 1);
37805 + fc = *((PUSHORT)pData);
37807 + frame_type = ((fc0 >> 2) & 0x03);
37808 + frame_subtype = ((fc0 >> 4) & 0x0f);
37810 + from_ds = (fc1 & 0x2) >> 1;
37811 + to_ds = (fc1 & 0x1);
37813 + a4_exists = (from_ds & to_ds);
37814 + qc_exists = ((frame_subtype == 0x08) || /* Assumed QoS subtypes */
37815 + (frame_subtype == 0x09) || /* Likely to change. */
37816 + (frame_subtype == 0x0a) ||
37817 + (frame_subtype == 0x0b)
37824 + KeyID = *((PUCHAR)(pData+ HeaderLen + 3));
37825 + KeyID = KeyID >> 6;
37827 + if (pWpaKey[KeyID].KeyLen == 0)
37829 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPSoftDecryptAES failed!(KeyID[%d] Length can not be 0)\n", KeyID));
37833 + PN[0] = *(pData+ HeaderLen);
37834 + PN[1] = *(pData+ HeaderLen + 1);
37835 + PN[2] = *(pData+ HeaderLen + 4);
37836 + PN[3] = *(pData+ HeaderLen + 5);
37837 + PN[4] = *(pData+ HeaderLen + 6);
37838 + PN[5] = *(pData+ HeaderLen + 7);
37840 + payload_len = DataByteCnt - HeaderLen - 8 - 8; // 8 bytes for CCMP header , 8 bytes for MIC
37841 + payload_remainder = (payload_len) % 16;
37842 + num_blocks = (payload_len) / 16;
37846 + // Find start of payload
37847 + payload_index = HeaderLen + 8; //IV+EIV
37849 + for (i=0; i< num_blocks; i++)
37851 + construct_ctr_preload(ctr_preload,
37858 + aes128k128d(pWpaKey[KeyID].Key, ctr_preload, aes_out);
37860 + bitwise_xor(aes_out, pData + payload_index, chain_buffer);
37861 + NdisMoveMemory(pData + payload_index - 8, chain_buffer, 16);
37862 + payload_index += 16;
37866 + // If there is a short final block, then pad it
37867 + // encrypt it and copy the unpadded part back
37869 + if (payload_remainder > 0)
37871 + construct_ctr_preload(ctr_preload,
37878 + NdisZeroMemory(padded_buffer, 16);
37879 + NdisMoveMemory(padded_buffer, pData + payload_index, payload_remainder);
37881 + aes128k128d(pWpaKey[KeyID].Key, ctr_preload, aes_out);
37883 + bitwise_xor(aes_out, padded_buffer, chain_buffer);
37884 + NdisMoveMemory(pData + payload_index - 8, chain_buffer, payload_remainder);
37885 + payload_index += payload_remainder;
37889 + // Descrypt the MIC
37891 + construct_ctr_preload(ctr_preload,
37897 + NdisZeroMemory(padded_buffer, 16);
37898 + NdisMoveMemory(padded_buffer, pData + payload_index, 8);
37900 + aes128k128d(pWpaKey[KeyID].Key, ctr_preload, aes_out);
37902 + bitwise_xor(aes_out, padded_buffer, chain_buffer);
37904 + NdisMoveMemory(TrailMIC, chain_buffer, 8);
37910 + //Force the protected frame bit on
37911 + *(pData + 1) = *(pData + 1) | 0x40;
37913 + // Find start of payload
37914 + // Because the CCMP header has been removed
37915 + payload_index = HeaderLen;
37917 + construct_mic_iv(
37925 + construct_mic_header1(
37930 + construct_mic_header2(
37936 + aes128k128d(pWpaKey[KeyID].Key, mic_iv, aes_out);
37937 + bitwise_xor(aes_out, mic_header1, chain_buffer);
37938 + aes128k128d(pWpaKey[KeyID].Key, chain_buffer, aes_out);
37939 + bitwise_xor(aes_out, mic_header2, chain_buffer);
37940 + aes128k128d(pWpaKey[KeyID].Key, chain_buffer, aes_out);
37942 + // iterate through each 16 byte payload block
37943 + for (i = 0; i < num_blocks; i++)
37945 + bitwise_xor(aes_out, pData + payload_index, chain_buffer);
37946 + payload_index += 16;
37947 + aes128k128d(pWpaKey[KeyID].Key, chain_buffer, aes_out);
37950 + // Add on the final payload block if it needs padding
37951 + if (payload_remainder > 0)
37953 + NdisZeroMemory(padded_buffer, 16);
37954 + NdisMoveMemory(padded_buffer, pData + payload_index, payload_remainder);
37956 + bitwise_xor(aes_out, padded_buffer, chain_buffer);
37957 + aes128k128d(pWpaKey[KeyID].Key, chain_buffer, aes_out);
37960 + // aes_out contains padded mic, discard most significant
37961 + // 8 bytes to generate 64 bit MIC
37962 + for (i = 0 ; i < 8; i++) MIC[i] = aes_out[i];
37964 + if (!NdisEqualMemory(MIC, TrailMIC, 8))
37966 + DBGPRINT(RT_DEBUG_ERROR, ("RTMPSoftDecryptAES, MIC Error !\n")); //MIC error.
37970 +#ifdef RT_BIG_ENDIAN
37971 + RTMPFrameEndianChange(pAd, (PUCHAR)pData, DIR_READ, FALSE);
37977 +/****************************************/
37978 +/* aes128k128d() */
37979 +/* Performs a 128 bit AES encrypt with */
37980 +/* 128 bit data. */
37981 +/****************************************/
37989 + for (i=0;i<16; i++)
37991 + out[i] = a[i] ^ b[i];
38000 + UCHAR sbox_key[4];
38001 + UCHAR rcon_table[12] =
38003 + 0x01, 0x02, 0x04, 0x08, 0x10, 0x20, 0x40, 0x80,
38004 + 0x1b, 0x36, 0x36, 0x36
38007 + sbox_key[0] = RTMPCkipSbox(key[13]);
38008 + sbox_key[1] = RTMPCkipSbox(key[14]);
38009 + sbox_key[2] = RTMPCkipSbox(key[15]);
38010 + sbox_key[3] = RTMPCkipSbox(key[12]);
38012 + rcon = rcon_table[round];
38014 + xor_32(&key[0], sbox_key, &key[0]);
38015 + key[0] = key[0] ^ rcon;
38017 + xor_32(&key[4], &key[0], &key[4]);
38018 + xor_32(&key[8], &key[4], &key[8]);
38019 + xor_32(&key[12], &key[8], &key[12]);
38029 + for (i=0;i<4; i++)
38031 + out[i] = a[i] ^ b[i];
38041 + for (i=0; i< 16; i++)
38043 + out[i] = RTMPCkipSbox(in[i]);
38047 +UCHAR RTMPCkipSbox(
38050 + return SboxTable[(int)a];
38069 + out[12] = in[12];
38072 + out[15] = in[11];
38081 + UCHAR add1bf7[4];
38083 + UCHAR swap_halfs[4];
38089 + for (i=0 ; i<4; i++)
38091 + if ((in[i] & 0x80)== 0x80)
38097 + swap_halfs[0] = in[2]; /* Swap halfs */
38098 + swap_halfs[1] = in[3];
38099 + swap_halfs[2] = in[0];
38100 + swap_halfs[3] = in[1];
38102 + rotl[0] = in[3]; /* Rotate left 8 bits */
38107 + andf7[0] = in[0] & 0x7f;
38108 + andf7[1] = in[1] & 0x7f;
38109 + andf7[2] = in[2] & 0x7f;
38110 + andf7[3] = in[3] & 0x7f;
38112 + for (i = 3; i>0; i--) /* logical shift left 1 bit */
38114 + andf7[i] = andf7[i] << 1;
38115 + if ((andf7[i-1] & 0x80) == 0x80)
38117 + andf7[i] = (andf7[i] | 0x01);
38120 + andf7[0] = andf7[0] << 1;
38121 + andf7[0] = andf7[0] & 0xfe;
38123 + xor_32(add1b, andf7, add1bf7);
38125 + xor_32(in, add1bf7, rotr);
38127 + temp[0] = rotr[0]; /* Rotate right 8 bits */
38128 + rotr[0] = rotr[1];
38129 + rotr[1] = rotr[2];
38130 + rotr[2] = rotr[3];
38131 + rotr[3] = temp[0];
38133 + xor_32(add1bf7, rotr, temp);
38134 + xor_32(swap_halfs, rotl,tempb);
38135 + xor_32(temp, tempb, out);
38139 +++ b/drivers/staging/rt3070/common/rtmp_wep.c
38142 + *************************************************************************
38143 + * Ralink Tech Inc.
38144 + * 5F., No.36, Taiyuan St., Jhubei City,
38145 + * Hsinchu County 302,
38148 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
38150 + * This program is free software; you can redistribute it and/or modify *
38151 + * it under the terms of the GNU General Public License as published by *
38152 + * the Free Software Foundation; either version 2 of the License, or *
38153 + * (at your option) any later version. *
38155 + * This program is distributed in the hope that it will be useful, *
38156 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
38157 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
38158 + * GNU General Public License for more details. *
38160 + * You should have received a copy of the GNU General Public License *
38161 + * along with this program; if not, write to the *
38162 + * Free Software Foundation, Inc., *
38163 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
38165 + *************************************************************************
38172 + Revision History:
38174 + -------- ---------- ----------------------------------------------
38175 + Paul Wu 10-28-02 Initial
38178 +#include "../rt_config.h"
38180 +UINT FCSTAB_32[256] =
38182 + 0x00000000, 0x77073096, 0xee0e612c, 0x990951ba,
38183 + 0x076dc419, 0x706af48f, 0xe963a535, 0x9e6495a3,
38184 + 0x0edb8832, 0x79dcb8a4, 0xe0d5e91e, 0x97d2d988,
38185 + 0x09b64c2b, 0x7eb17cbd, 0xe7b82d07, 0x90bf1d91,
38186 + 0x1db71064, 0x6ab020f2, 0xf3b97148, 0x84be41de,
38187 + 0x1adad47d, 0x6ddde4eb, 0xf4d4b551, 0x83d385c7,
38188 + 0x136c9856, 0x646ba8c0, 0xfd62f97a, 0x8a65c9ec,
38189 + 0x14015c4f, 0x63066cd9, 0xfa0f3d63, 0x8d080df5,
38190 + 0x3b6e20c8, 0x4c69105e, 0xd56041e4, 0xa2677172,
38191 + 0x3c03e4d1, 0x4b04d447, 0xd20d85fd, 0xa50ab56b,
38192 + 0x35b5a8fa, 0x42b2986c, 0xdbbbc9d6, 0xacbcf940,
38193 + 0x32d86ce3, 0x45df5c75, 0xdcd60dcf, 0xabd13d59,
38194 + 0x26d930ac, 0x51de003a, 0xc8d75180, 0xbfd06116,
38195 + 0x21b4f4b5, 0x56b3c423, 0xcfba9599, 0xb8bda50f,
38196 + 0x2802b89e, 0x5f058808, 0xc60cd9b2, 0xb10be924,
38197 + 0x2f6f7c87, 0x58684c11, 0xc1611dab, 0xb6662d3d,
38198 + 0x76dc4190, 0x01db7106, 0x98d220bc, 0xefd5102a,
38199 + 0x71b18589, 0x06b6b51f, 0x9fbfe4a5, 0xe8b8d433,
38200 + 0x7807c9a2, 0x0f00f934, 0x9609a88e, 0xe10e9818,
38201 + 0x7f6a0dbb, 0x086d3d2d, 0x91646c97, 0xe6635c01,
38202 + 0x6b6b51f4, 0x1c6c6162, 0x856530d8, 0xf262004e,
38203 + 0x6c0695ed, 0x1b01a57b, 0x8208f4c1, 0xf50fc457,
38204 + 0x65b0d9c6, 0x12b7e950, 0x8bbeb8ea, 0xfcb9887c,
38205 + 0x62dd1ddf, 0x15da2d49, 0x8cd37cf3, 0xfbd44c65,
38206 + 0x4db26158, 0x3ab551ce, 0xa3bc0074, 0xd4bb30e2,
38207 + 0x4adfa541, 0x3dd895d7, 0xa4d1c46d, 0xd3d6f4fb,
38208 + 0x4369e96a, 0x346ed9fc, 0xad678846, 0xda60b8d0,
38209 + 0x44042d73, 0x33031de5, 0xaa0a4c5f, 0xdd0d7cc9,
38210 + 0x5005713c, 0x270241aa, 0xbe0b1010, 0xc90c2086,
38211 + 0x5768b525, 0x206f85b3, 0xb966d409, 0xce61e49f,
38212 + 0x5edef90e, 0x29d9c998, 0xb0d09822, 0xc7d7a8b4,
38213 + 0x59b33d17, 0x2eb40d81, 0xb7bd5c3b, 0xc0ba6cad,
38214 + 0xedb88320, 0x9abfb3b6, 0x03b6e20c, 0x74b1d29a,
38215 + 0xead54739, 0x9dd277af, 0x04db2615, 0x73dc1683,
38216 + 0xe3630b12, 0x94643b84, 0x0d6d6a3e, 0x7a6a5aa8,
38217 + 0xe40ecf0b, 0x9309ff9d, 0x0a00ae27, 0x7d079eb1,
38218 + 0xf00f9344, 0x8708a3d2, 0x1e01f268, 0x6906c2fe,
38219 + 0xf762575d, 0x806567cb, 0x196c3671, 0x6e6b06e7,
38220 + 0xfed41b76, 0x89d32be0, 0x10da7a5a, 0x67dd4acc,
38221 + 0xf9b9df6f, 0x8ebeeff9, 0x17b7be43, 0x60b08ed5,
38222 + 0xd6d6a3e8, 0xa1d1937e, 0x38d8c2c4, 0x4fdff252,
38223 + 0xd1bb67f1, 0xa6bc5767, 0x3fb506dd, 0x48b2364b,
38224 + 0xd80d2bda, 0xaf0a1b4c, 0x36034af6, 0x41047a60,
38225 + 0xdf60efc3, 0xa867df55, 0x316e8eef, 0x4669be79,
38226 + 0xcb61b38c, 0xbc66831a, 0x256fd2a0, 0x5268e236,
38227 + 0xcc0c7795, 0xbb0b4703, 0x220216b9, 0x5505262f,
38228 + 0xc5ba3bbe, 0xb2bd0b28, 0x2bb45a92, 0x5cb36a04,
38229 + 0xc2d7ffa7, 0xb5d0cf31, 0x2cd99e8b, 0x5bdeae1d,
38230 + 0x9b64c2b0, 0xec63f226, 0x756aa39c, 0x026d930a,
38231 + 0x9c0906a9, 0xeb0e363f, 0x72076785, 0x05005713,
38232 + 0x95bf4a82, 0xe2b87a14, 0x7bb12bae, 0x0cb61b38,
38233 + 0x92d28e9b, 0xe5d5be0d, 0x7cdcefb7, 0x0bdbdf21,
38234 + 0x86d3d2d4, 0xf1d4e242, 0x68ddb3f8, 0x1fda836e,
38235 + 0x81be16cd, 0xf6b9265b, 0x6fb077e1, 0x18b74777,
38236 + 0x88085ae6, 0xff0f6a70, 0x66063bca, 0x11010b5c,
38237 + 0x8f659eff, 0xf862ae69, 0x616bffd3, 0x166ccf45,
38238 + 0xa00ae278, 0xd70dd2ee, 0x4e048354, 0x3903b3c2,
38239 + 0xa7672661, 0xd06016f7, 0x4969474d, 0x3e6e77db,
38240 + 0xaed16a4a, 0xd9d65adc, 0x40df0b66, 0x37d83bf0,
38241 + 0xa9bcae53, 0xdebb9ec5, 0x47b2cf7f, 0x30b5ffe9,
38242 + 0xbdbdf21c, 0xcabac28a, 0x53b39330, 0x24b4a3a6,
38243 + 0xbad03605, 0xcdd70693, 0x54de5729, 0x23d967bf,
38244 + 0xb3667a2e, 0xc4614ab8, 0x5d681b02, 0x2a6f2b94,
38245 + 0xb40bbe37, 0xc30c8ea1, 0x5a05df1b, 0x2d02ef8d
38249 +UCHAR WEPKEY[] = {
38251 + 0x00, 0x11, 0x22,
38253 + 0x00, 0x11, 0x22, 0x33, 0x44, 0x55, 0x66, 0x77, 0x88, 0x99, 0xAA, 0xBB, 0xCC
38258 + ========================================================================
38260 + Routine Description:
38261 + Init WEP function.
38264 + pAd Pointer to our adapter
38265 + pKey Pointer to the WEP KEY
38267 + KeyLen the length of WEP KEY
38268 + pDest Pointer to the destination which Encryption data will store in.
38273 + IRQL = DISPATCH_LEVEL
38277 + ========================================================================
38279 +VOID RTMPInitWepEngine(
38280 + IN PRTMP_ADAPTER pAd,
38284 + IN OUT PUCHAR pDest)
38287 + UCHAR WEPKEY[] = {
38289 + 0x00, 0x11, 0x22,
38291 + 0x00, 0x11, 0x22, 0x33, 0x44, 0x55, 0x66, 0x77, 0x88, 0x99, 0xAA, 0xBB, 0xCC
38294 + pAd->PrivateInfo.FCSCRC32 = PPPINITFCS32; //Init crc32.
38296 +#ifdef CONFIG_STA_SUPPORT
38297 + if (pAd->StaCfg.bCkipOn && (pAd->StaCfg.CkipFlag & 0x10) && (pAd->OpMode == OPMODE_STA))
38299 + ARCFOUR_INIT(&pAd->PrivateInfo.WEPCONTEXT, pKey, KeyLen); //INIT SBOX, KEYLEN+3(IV)
38300 + NdisMoveMemory(pDest, pKey, 3); //Append Init Vector
38303 +#endif // CONFIG_STA_SUPPORT //
38305 + NdisMoveMemory(WEPKEY + 3, pKey, KeyLen);
38307 + for(i = 0; i < 3; i++)
38308 + WEPKEY[i] = RandomByte(pAd); //Call mlme RandomByte() function.
38309 + ARCFOUR_INIT(&pAd->PrivateInfo.WEPCONTEXT, WEPKEY, KeyLen + 3); //INIT SBOX, KEYLEN+3(IV)
38311 + NdisMoveMemory(pDest, WEPKEY, 3); //Append Init Vector
38313 + *(pDest+3) = (KeyId << 6); //Append KEYID
38318 + ========================================================================
38320 + Routine Description:
38321 + Encrypt transimitted data
38324 + pAd Pointer to our adapter
38325 + pSrc Pointer to the transimitted source data that will be encrypt
38326 + pDest Pointer to the destination where entryption data will be store in.
38327 + Len Indicate the length of the source data
38332 + IRQL = DISPATCH_LEVEL
38336 + ========================================================================
38338 +VOID RTMPEncryptData(
38339 + IN PRTMP_ADAPTER pAd,
38344 + pAd->PrivateInfo.FCSCRC32 = RTMP_CALC_FCS32(pAd->PrivateInfo.FCSCRC32, pSrc, Len);
38345 + ARCFOUR_ENCRYPT(&pAd->PrivateInfo.WEPCONTEXT, pDest, pSrc, Len);
38350 + ========================================================================
38352 + Routine Description:
38353 + Decrypt received WEP data
38356 + pAdapter Pointer to our adapter
38357 + pSrc Pointer to the received data
38358 + Len the length of the received data
38361 + TRUE Decrypt WEP data success
38362 + FALSE Decrypt WEP data failed
38366 + ========================================================================
38368 +BOOLEAN RTMPSoftDecryptWEP(
38369 + IN PRTMP_ADAPTER pAd,
38371 + IN ULONG DataByteCnt,
38372 + IN PCIPHER_KEY pGroupKey)
38377 + UCHAR WEPKEY[] = {
38379 + 0x00, 0x11, 0x22,
38381 + 0x00, 0x11, 0x22, 0x33, 0x44, 0x55, 0x66, 0x77, 0x88, 0x99, 0xAA, 0xBB, 0xCC
38383 + UCHAR *pPayload = (UCHAR *)pData + LENGTH_802_11;
38384 + ULONG payload_len = DataByteCnt - LENGTH_802_11;
38386 + NdisMoveMemory(WEPKEY, pPayload, 3); //Get WEP IV
38388 + KeyIdx = (*(pPayload + 3) & 0xc0) >> 6;
38389 + if (pGroupKey[KeyIdx].KeyLen == 0)
38392 + NdisMoveMemory(WEPKEY + 3, pGroupKey[KeyIdx].Key, pGroupKey[KeyIdx].KeyLen);
38393 + ARCFOUR_INIT(&pAd->PrivateInfo.WEPCONTEXT, WEPKEY, pGroupKey[KeyIdx].KeyLen + 3);
38394 + ARCFOUR_DECRYPT(&pAd->PrivateInfo.WEPCONTEXT, pPayload, pPayload + 4, payload_len - 4);
38395 + NdisMoveMemory(&trailfcs, pPayload + payload_len - 8, 4);
38396 + crc32 = RTMP_CALC_FCS32(PPPINITFCS32, pPayload, payload_len - 8); //Skip last 4 bytes(FCS).
38397 + crc32 ^= 0xffffffff; /* complement */
38399 + if(crc32 != cpu2le32(trailfcs))
38401 + DBGPRINT(RT_DEBUG_TRACE, ("! WEP Data CRC Error !\n")); //CRC error.
38408 + ========================================================================
38410 + Routine Description:
38411 + The Stream Cipher Encryption Algorithm "ARCFOUR" initialize
38414 + Ctx Pointer to ARCFOUR CONTEXT (SBOX)
38415 + pKey Pointer to the WEP KEY
38416 + KeyLen Indicate the length fo the WEP KEY
38421 + IRQL = DISPATCH_LEVEL
38425 + ========================================================================
38427 +VOID ARCFOUR_INIT(
38428 + IN PARCFOURCONTEXT Ctx,
38438 + state = Ctx->STATE;
38441 + for (counter = 0; counter < 256; counter++)
38442 + state[counter] = (UCHAR)counter;
38445 + for (counter = 0; counter < 256; counter++)
38447 + t = state[counter];
38448 + stateindex = (stateindex + pKey[keyindex] + t) & 0xff;
38449 + u = state[stateindex];
38450 + state[stateindex] = t;
38451 + state[counter] = u;
38452 + if (++keyindex >= KeyLen)
38458 + ========================================================================
38460 + Routine Description:
38461 + Get bytes from ARCFOUR CONTEXT (S-BOX)
38464 + Ctx Pointer to ARCFOUR CONTEXT (SBOX)
38467 + UCHAR - the value of the ARCFOUR CONTEXT (S-BOX)
38471 + ========================================================================
38473 +UCHAR ARCFOUR_BYTE(
38474 + IN PARCFOURCONTEXT Ctx)
38481 + state = Ctx->STATE;
38482 + x = (Ctx->X + 1) & 0xff;
38484 + y = (sx + Ctx->Y) & 0xff;
38491 + return(state[(sx + sy) & 0xff]);
38496 + ========================================================================
38498 + Routine Description:
38499 + The Stream Cipher Decryption Algorithm
38502 + Ctx Pointer to ARCFOUR CONTEXT (SBOX)
38503 + pDest Pointer to the Destination
38504 + pSrc Pointer to the Source data
38505 + Len Indicate the length of the Source data
38512 + ========================================================================
38514 +VOID ARCFOUR_DECRYPT(
38515 + IN PARCFOURCONTEXT Ctx,
38522 + for (i = 0; i < Len; i++)
38523 + pDest[i] = pSrc[i] ^ ARCFOUR_BYTE(Ctx);
38527 + ========================================================================
38529 + Routine Description:
38530 + The Stream Cipher Encryption Algorithm
38533 + Ctx Pointer to ARCFOUR CONTEXT (SBOX)
38534 + pDest Pointer to the Destination
38535 + pSrc Pointer to the Source data
38536 + Len Indicate the length of the Source dta
38541 + IRQL = DISPATCH_LEVEL
38545 + ========================================================================
38547 +VOID ARCFOUR_ENCRYPT(
38548 + IN PARCFOURCONTEXT Ctx,
38555 + for (i = 0; i < Len; i++)
38556 + pDest[i] = pSrc[i] ^ ARCFOUR_BYTE(Ctx);
38560 + ========================================================================
38562 + Routine Description:
38563 + The Stream Cipher Encryption Algorithm which conform to the special requirement to encrypt GTK.
38566 + Ctx Pointer to ARCFOUR CONTEXT (SBOX)
38567 + pDest Pointer to the Destination
38568 + pSrc Pointer to the Source data
38569 + Len Indicate the length of the Source dta
38572 + ========================================================================
38575 +VOID WPAARCFOUR_ENCRYPT(
38576 + IN PARCFOURCONTEXT Ctx,
38582 + //discard first 256 bytes
38583 + for (i = 0; i < 256; i++)
38584 + ARCFOUR_BYTE(Ctx);
38586 + for (i = 0; i < Len; i++)
38587 + pDest[i] = pSrc[i] ^ ARCFOUR_BYTE(Ctx);
38592 + ========================================================================
38594 + Routine Description:
38595 + Calculate a new FCS given the current FCS and the new data.
38598 + Fcs the original FCS value
38599 + Cp pointer to the data which will be calculate the FCS
38600 + Len the length of the data
38603 + UINT - FCS 32 bits
38605 + IRQL = DISPATCH_LEVEL
38609 + ========================================================================
38611 +UINT RTMP_CALC_FCS32(
38617 + Fcs = (((Fcs) >> 8) ^ FCSTAB_32[((Fcs) ^ (*Cp++)) & 0xff]);
38624 + ========================================================================
38626 + Routine Description:
38627 + Get last FCS and encrypt it to the destination
38630 + pDest Pointer to the Destination
38637 + ========================================================================
38640 + IN PRTMP_ADAPTER pAd,
38643 + pAd->PrivateInfo.FCSCRC32 ^= 0xffffffff; /* complement */
38644 + pAd->PrivateInfo.FCSCRC32 = cpu2le32(pAd->PrivateInfo.FCSCRC32);
38646 + ARCFOUR_ENCRYPT(&pAd->PrivateInfo.WEPCONTEXT, pDest, (PUCHAR) &pAd->PrivateInfo.FCSCRC32, 4);
38650 +++ b/drivers/staging/rt3070/common/rtusb_bulk.c
38653 + *************************************************************************
38654 + * Ralink Tech Inc.
38655 + * 5F., No.36, Taiyuan St., Jhubei City,
38656 + * Hsinchu County 302,
38659 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
38661 + * This program is free software; you can redistribute it and/or modify *
38662 + * it under the terms of the GNU General Public License as published by *
38663 + * the Free Software Foundation; either version 2 of the License, or *
38664 + * (at your option) any later version. *
38666 + * This program is distributed in the hope that it will be useful, *
38667 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
38668 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
38669 + * GNU General Public License for more details. *
38671 + * You should have received a copy of the GNU General Public License *
38672 + * along with this program; if not, write to the *
38673 + * Free Software Foundation, Inc., *
38674 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
38676 + *************************************************************************
38683 + Revision History:
38685 + -------- ---------- ----------------------------------------------
38686 + Name Date Modification logs
38687 + Paul Lin 06-25-2004 created
38691 +#include "../rt_config.h"
38692 +// Match total 6 bulkout endpoint to corresponding queue.
38693 +UCHAR EpToQueue[6]={FIFO_EDCA, FIFO_EDCA, FIFO_EDCA, FIFO_EDCA, FIFO_EDCA, FIFO_MGMT};
38695 +//static BOOLEAN SingleBulkOut = FALSE;
38697 +void RTUSB_FILL_BULK_URB (struct urb *pUrb,
38698 + struct usb_device *pUsb_Dev,
38699 + unsigned int bulkpipe,
38700 + void *pTransferBuf,
38702 + usb_complete_t Complete,
38706 +#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,5,0)
38707 + usb_fill_bulk_urb(pUrb, pUsb_Dev, bulkpipe, pTransferBuf, BufSize, (usb_complete_t)Complete, pContext);
38709 + FILL_BULK_URB(pUrb, pUsb_Dev, bulkpipe, pTransferBuf, BufSize, Complete, pContext);
38714 +VOID RTUSBInitTxDesc(
38715 + IN PRTMP_ADAPTER pAd,
38716 + IN PTX_CONTEXT pTxContext,
38717 + IN UCHAR BulkOutPipeId,
38718 + IN usb_complete_t Func)
38721 + PUCHAR pSrc = NULL;
38722 + POS_COOKIE pObj = (POS_COOKIE) pAd->OS_Cookie;
38724 + pUrb = pTxContext->pUrb;
38727 + // Store BulkOut PipeId
38728 + pTxContext->BulkOutPipeId = BulkOutPipeId;
38730 + if (pTxContext->bAggregatible)
38732 + pSrc = &pTxContext->TransferBuffer->Aggregation[2];
38736 + pSrc = (PUCHAR) pTxContext->TransferBuffer->field.WirelessPacket;
38740 + //Initialize a tx bulk urb
38741 + RTUSB_FILL_BULK_URB(pUrb,
38743 + usb_sndbulkpipe(pObj->pUsb_Dev, pAd->BulkOutEpAddr[BulkOutPipeId]),
38745 + pTxContext->BulkOutSize,
38749 +#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,5,0)
38750 + if (pTxContext->bAggregatible)
38751 + pUrb->transfer_dma = (pTxContext->data_dma + TX_BUFFER_NORMSIZE + 2);
38753 + pUrb->transfer_dma = pTxContext->data_dma;
38755 + pUrb->transfer_flags |= URB_NO_TRANSFER_DMA_MAP;
38760 +VOID RTUSBInitHTTxDesc(
38761 + IN PRTMP_ADAPTER pAd,
38762 + IN PHT_TX_CONTEXT pTxContext,
38763 + IN UCHAR BulkOutPipeId,
38764 + IN ULONG BulkOutSize,
38765 + IN usb_complete_t Func)
38768 + PUCHAR pSrc = NULL;
38769 + POS_COOKIE pObj = (POS_COOKIE) pAd->OS_Cookie;
38771 + pUrb = pTxContext->pUrb;
38774 + // Store BulkOut PipeId
38775 + pTxContext->BulkOutPipeId = BulkOutPipeId;
38777 + pSrc = &pTxContext->TransferBuffer->field.WirelessPacket[pTxContext->NextBulkOutPosition];
38780 + //Initialize a tx bulk urb
38781 + RTUSB_FILL_BULK_URB(pUrb,
38783 + usb_sndbulkpipe(pObj->pUsb_Dev, pAd->BulkOutEpAddr[BulkOutPipeId]),
38789 +#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,5,0)
38790 + pUrb->transfer_dma = (pTxContext->data_dma + pTxContext->NextBulkOutPosition);
38791 + pUrb->transfer_flags |= URB_NO_TRANSFER_DMA_MAP;
38796 +VOID RTUSBInitRxDesc(
38797 + IN PRTMP_ADAPTER pAd,
38798 + IN PRX_CONTEXT pRxContext)
38801 + POS_COOKIE pObj = (POS_COOKIE) pAd->OS_Cookie;
38802 + ULONG RX_bulk_size;
38805 + pUrb = pRxContext->pUrb;
38808 + if ( pAd->BulkInMaxPacketSize == 64)
38809 + RX_bulk_size = 4096;
38811 + RX_bulk_size = MAX_RXBULK_SIZE;
38813 + //Initialize a rx bulk urb
38814 + RTUSB_FILL_BULK_URB(pUrb,
38816 + usb_rcvbulkpipe(pObj->pUsb_Dev, pAd->BulkInEpAddr),
38817 + &(pRxContext->TransferBuffer[pAd->NextRxBulkInPosition]),
38818 + RX_bulk_size - (pAd->NextRxBulkInPosition),
38819 + (usb_complete_t)RTUSBBulkRxComplete,
38820 + (void *)pRxContext);
38822 +#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,5,0)
38823 + pUrb->transfer_dma = pRxContext->data_dma + pAd->NextRxBulkInPosition;
38824 + pUrb->transfer_flags |= URB_NO_TRANSFER_DMA_MAP;
38831 + ========================================================================
38833 + Routine Description:
38841 + ========================================================================
38844 +#define BULK_OUT_LOCK(pLock, IrqFlags) \
38845 + if(1 /*!(in_interrupt() & 0xffff0000)*/) \
38846 + RTMP_IRQ_LOCK((pLock), IrqFlags);
38848 +#define BULK_OUT_UNLOCK(pLock, IrqFlags) \
38849 + if(1 /*!(in_interrupt() & 0xffff0000)*/) \
38850 + RTMP_IRQ_UNLOCK((pLock), IrqFlags);
38853 +VOID RTUSBBulkOutDataPacket(
38854 + IN PRTMP_ADAPTER pAd,
38855 + IN UCHAR BulkOutPipeId,
38859 + PHT_TX_CONTEXT pHTTXContext;
38862 + PTXINFO_STRUC pTxInfo, pLastTxInfo = NULL;
38863 + PTXWI_STRUC pTxWI;
38864 + ULONG TmpBulkEndPos, ThisBulkSize;
38865 + unsigned long IrqFlags = 0, IrqFlags2 = 0;
38866 + PUCHAR pWirelessPkt, pAppendant;
38867 + BOOLEAN bTxQLastRound = FALSE;
38868 + UCHAR allzero[4]= {0x0,0x0,0x0,0x0};
38870 + BULK_OUT_LOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
38871 + if ((pAd->BulkOutPending[BulkOutPipeId] == TRUE) || RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NEED_STOP_TX))
38873 + BULK_OUT_UNLOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
38876 + pAd->BulkOutPending[BulkOutPipeId] = TRUE;
38878 + if (!OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED)
38881 + pAd->BulkOutPending[BulkOutPipeId] = FALSE;
38882 + BULK_OUT_UNLOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
38885 + BULK_OUT_UNLOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
38888 + pHTTXContext = &(pAd->TxContext[BulkOutPipeId]);
38890 + BULK_OUT_LOCK(&pAd->TxContextQueueLock[BulkOutPipeId], IrqFlags2);
38891 + if ((pHTTXContext->ENextBulkOutPosition == pHTTXContext->CurWritePosition)
38892 + || ((pHTTXContext->ENextBulkOutPosition-8) == pHTTXContext->CurWritePosition))
38894 + BULK_OUT_UNLOCK(&pAd->TxContextQueueLock[BulkOutPipeId], IrqFlags2);
38896 + BULK_OUT_LOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
38897 + pAd->BulkOutPending[BulkOutPipeId] = FALSE;
38899 + // Clear Data flag
38900 + RTUSB_CLEAR_BULK_FLAG(pAd, (fRTUSB_BULK_OUT_DATA_FRAG << BulkOutPipeId));
38901 + RTUSB_CLEAR_BULK_FLAG(pAd, (fRTUSB_BULK_OUT_DATA_NORMAL << BulkOutPipeId));
38903 + BULK_OUT_UNLOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
38907 + // Clear Data flag
38908 + RTUSB_CLEAR_BULK_FLAG(pAd, (fRTUSB_BULK_OUT_DATA_FRAG << BulkOutPipeId));
38909 + RTUSB_CLEAR_BULK_FLAG(pAd, (fRTUSB_BULK_OUT_DATA_NORMAL << BulkOutPipeId));
38911 + //DBGPRINT(RT_DEBUG_TRACE,("BulkOut-B:I=0x%lx, CWPos=%ld, CWRPos=%ld, NBPos=%ld, ENBPos=%ld, bCopy=%d!\n", in_interrupt(),
38912 + // pHTTXContext->CurWritePosition, pHTTXContext->CurWriteRealPos, pHTTXContext->NextBulkOutPosition,
38913 + // pHTTXContext->ENextBulkOutPosition, pHTTXContext->bCopySavePad));
38914 + pHTTXContext->NextBulkOutPosition = pHTTXContext->ENextBulkOutPosition;
38915 + ThisBulkSize = 0;
38916 + TmpBulkEndPos = pHTTXContext->NextBulkOutPosition;
38917 + pWirelessPkt = &pHTTXContext->TransferBuffer->field.WirelessPacket[0];
38919 + if ((pHTTXContext->bCopySavePad == TRUE))
38921 + if (RTMPEqualMemory(pHTTXContext->SavedPad, allzero,4))
38923 + DBGPRINT_RAW(RT_DEBUG_ERROR,("e1, allzero : %x %x %x %x %x %x %x %x \n",
38924 + pHTTXContext->SavedPad[0], pHTTXContext->SavedPad[1], pHTTXContext->SavedPad[2],pHTTXContext->SavedPad[3]
38925 + ,pHTTXContext->SavedPad[4], pHTTXContext->SavedPad[5], pHTTXContext->SavedPad[6],pHTTXContext->SavedPad[7]));
38927 + NdisMoveMemory(&pWirelessPkt[TmpBulkEndPos], pHTTXContext->SavedPad, 8);
38928 + pHTTXContext->bCopySavePad = FALSE;
38929 + if (pAd->bForcePrintTX == TRUE)
38930 + DBGPRINT(RT_DEBUG_TRACE,("RTUSBBulkOutDataPacket --> COPY PAD. CurWrite = %ld, NextBulk = %ld. ENextBulk = %ld.\n", pHTTXContext->CurWritePosition, pHTTXContext->NextBulkOutPosition, pHTTXContext->ENextBulkOutPosition));
38935 + pTxInfo = (PTXINFO_STRUC)&pWirelessPkt[TmpBulkEndPos];
38936 + pTxWI = (PTXWI_STRUC)&pWirelessPkt[TmpBulkEndPos + TXINFO_SIZE];
38938 + if (pAd->bForcePrintTX == TRUE)
38939 + DBGPRINT(RT_DEBUG_TRACE, ("RTUSBBulkOutDataPacket AMPDU = %d.\n", pTxWI->AMPDU));
38941 + // add by Iverson, limit BulkOut size to 4k to pass WMM b mode 2T1R test items
38942 + //if ((ThisBulkSize != 0) && (pTxWI->AMPDU == 0))
38943 + if ((ThisBulkSize != 0) && (pTxWI->PHYMODE == MODE_CCK))
38945 +#ifdef INF_AMAZON_SE
38946 + /*Iverson Add for AMAZON USB (RT2070 && RT3070) to pass WMM A2-T4 ~ A2-T10*/
38947 + if(OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_WMM_INUSED))
38949 + /*Iverson patch for WMM A5-T07 ,WirelessStaToWirelessSta do not bulk out aggregate*/
38950 + if(pTxWI->PacketId == 6)
38952 + pHTTXContext->ENextBulkOutPosition = TmpBulkEndPos;
38955 + else if (BulkOutPipeId == 1)
38957 + /*BK No Limit BulkOut size .*/
38958 + pHTTXContext->ENextBulkOutPosition = TmpBulkEndPos;
38961 + else if (((ThisBulkSize&0xffff8000) != 0) || (((ThisBulkSize&0x1000) == 0x1000) && (BulkOutPipeId == 0) ))
38963 + /*BE Limit BulkOut size to about 4k bytes.*/
38964 + pHTTXContext->ENextBulkOutPosition = TmpBulkEndPos;
38967 + else if (((ThisBulkSize&0xffff8000) != 0) || (((ThisBulkSize&0x1c00) == 0x1c00) && (BulkOutPipeId == 2) ))
38969 + /*VI Limit BulkOut size to about 7k bytes.*/
38970 + pHTTXContext->ENextBulkOutPosition = TmpBulkEndPos;
38973 + else if (((ThisBulkSize&0xffff8000) != 0) || (((ThisBulkSize&0x2500) == 0x2500) && (BulkOutPipeId == 3) ))
38975 + /*VO Limit BulkOut size to about 9k bytes.*/
38976 + pHTTXContext->ENextBulkOutPosition = TmpBulkEndPos;
38980 + else if (((ThisBulkSize&0xffff8000) != 0) || ((ThisBulkSize&0x1000) == 0x1000))
38982 + /* Limit BulkOut size to about 4k bytes.*/
38983 + pHTTXContext->ENextBulkOutPosition = TmpBulkEndPos;
38987 + if (((ThisBulkSize&0xffff8000) != 0) || ((ThisBulkSize&0x1000) == 0x1000))
38989 + // Limit BulkOut size to about 4k bytes.
38990 + pHTTXContext->ENextBulkOutPosition = TmpBulkEndPos;
38993 +#endif // INF_AMAZON_SE //
38995 + else if (((pAd->BulkOutMaxPacketSize < 512) && ((ThisBulkSize&0xfffff800) != 0) ) /*|| ( (ThisBulkSize != 0) && (pTxWI->AMPDU == 0))*/)
38997 + // For USB 1.1 or peer which didn't support AMPDU, limit the BulkOut size.
38998 + // For performence in b/g mode, now just check for USB 1.1 and didn't care about the APMDU or not! 2008/06/04.
38999 + pHTTXContext->ENextBulkOutPosition = TmpBulkEndPos;
39006 +#ifdef INF_AMAZON_SE
39007 +//#ifdef DOT11_N_SUPPORT
39008 +// if(((ThisBulkSize&0xffff8000) != 0) || ((ThisBulkSize&0x6000) == 0x6000) || ( (ThisBulkSize != 0) && (pTxWI->AMPDU == 0)))
39010 +// /* AMAZON_SE: BG mode Disable BulkOut Aggregate, N mode BulkOut Aggregaet size 24K */
39011 +// pHTTXContext->ENextBulkOutPosition = TmpBulkEndPos;
39015 +//#endif // DOT11_N_SUPPORT //
39017 + if(OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_WMM_INUSED) && (pTxWI->AMPDU == 0))
39019 + if (((pAd->BulkOutMaxPacketSize < 512) && ((ThisBulkSize&0xfffff800) != 0)) ||
39020 + (ThisBulkSize != 0))
39022 + /* AMAZON_SE: RT2070 Disable BulkOut Aggregate when WMM for USB issue */
39023 + pHTTXContext->ENextBulkOutPosition = TmpBulkEndPos;
39028 + else if (((ThisBulkSize&0xffff8000) != 0) || ((ThisBulkSize&0x6000) == 0x6000))
39030 + // Limit BulkOut size to about 24k bytes.
39031 + pHTTXContext->ENextBulkOutPosition = TmpBulkEndPos;
39036 +#endif // INF_AMAZON_SE //
39038 + if (((ThisBulkSize&0xffff8000) != 0) || ((ThisBulkSize&0x6000) == 0x6000))
39039 + { // Limit BulkOut size to about 24k bytes.
39040 + pHTTXContext->ENextBulkOutPosition = TmpBulkEndPos;
39044 + else if (((pAd->BulkOutMaxPacketSize < 512) && ((ThisBulkSize&0xfffff800) != 0) ) /*|| ( (ThisBulkSize != 0) && (pTxWI->AMPDU == 0))*/)
39045 + { // For USB 1.1 or peer which didn't support AMPDU, limit the BulkOut size.
39046 + // For performence in b/g mode, now just check for USB 1.1 and didn't care about the APMDU or not! 2008/06/04.
39047 + pHTTXContext->ENextBulkOutPosition = TmpBulkEndPos;
39052 + if (TmpBulkEndPos == pHTTXContext->CurWritePosition)
39054 + pHTTXContext->ENextBulkOutPosition = TmpBulkEndPos;
39057 + //PS packets use HCCA queue when dequeue from PS unicast queue (WiFi WPA2 MA9_DT1 for Marvell B STA)
39058 +#ifdef CONFIG_STA_SUPPORT
39059 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
39061 + if (pTxInfo->QSEL != FIFO_EDCA)
39063 + printk("%s(): ====> pTxInfo->QueueSel(%d)!= FIFO_EDCA!!!!\n", __FUNCTION__, pTxInfo->QSEL);
39064 + printk("\tCWPos=%ld, NBPos=%ld, ENBPos=%ld, bCopy=%d!\n", pHTTXContext->CurWritePosition, pHTTXContext->NextBulkOutPosition, pHTTXContext->ENextBulkOutPosition, pHTTXContext->bCopySavePad);
39065 + hex_dump("Wrong QSel Pkt:", (PUCHAR)&pWirelessPkt[TmpBulkEndPos], (pHTTXContext->CurWritePosition - pHTTXContext->NextBulkOutPosition));
39068 +#endif // CONFIG_STA_SUPPORT //
39070 + if (pTxInfo->USBDMATxPktLen <= 8)
39072 + BULK_OUT_UNLOCK(&pAd->TxContextQueueLock[BulkOutPipeId], IrqFlags2);
39073 + DBGPRINT(RT_DEBUG_ERROR /*RT_DEBUG_TRACE*/,("e2, USBDMATxPktLen==0, Size=%ld, bCSPad=%d, CWPos=%ld, NBPos=%ld, CWRPos=%ld!\n",
39074 + pHTTXContext->BulkOutSize, pHTTXContext->bCopySavePad, pHTTXContext->CurWritePosition, pHTTXContext->NextBulkOutPosition, pHTTXContext->CurWriteRealPos));
39076 + DBGPRINT_RAW(RT_DEBUG_ERROR /*RT_DEBUG_TRACE*/,("%x %x %x %x %x %x %x %x \n",
39077 + pHTTXContext->SavedPad[0], pHTTXContext->SavedPad[1], pHTTXContext->SavedPad[2],pHTTXContext->SavedPad[3]
39078 + ,pHTTXContext->SavedPad[4], pHTTXContext->SavedPad[5], pHTTXContext->SavedPad[6],pHTTXContext->SavedPad[7]));
39080 + pAd->bForcePrintTX = TRUE;
39081 + BULK_OUT_LOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
39082 + pAd->BulkOutPending[BulkOutPipeId] = FALSE;
39083 + BULK_OUT_UNLOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
39084 + //DBGPRINT(RT_DEBUG_LOUD,("Out:pTxInfo->USBDMATxPktLen=%d!\n", pTxInfo->USBDMATxPktLen));
39088 + // Increase Total transmit byte counter
39089 + pAd->RalinkCounters.OneSecTransmittedByteCount += pTxWI->MPDUtotalByteCount;
39090 + pAd->RalinkCounters.TransmittedByteCount += pTxWI->MPDUtotalByteCount;
39092 + pLastTxInfo = pTxInfo;
39094 + // Make sure we use EDCA QUEUE.
39095 +#ifdef CONFIG_STA_SUPPORT
39096 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
39097 + pTxInfo->QSEL = FIFO_EDCA; //PS packets use HCCA queue when dequeue from PS unicast queue (WiFi WPA2 MA9_DT1 for Marvell B STA)
39098 +#endif // CONFIG_STA_SUPPORT //
39099 + ThisBulkSize += (pTxInfo->USBDMATxPktLen+4);
39100 + TmpBulkEndPos += (pTxInfo->USBDMATxPktLen+4);
39102 + if (TmpBulkEndPos != pHTTXContext->CurWritePosition)
39103 + pTxInfo->USBDMANextVLD = 1;
39105 + if (pTxInfo->SwUseLastRound == 1)
39107 + if (pHTTXContext->CurWritePosition == 8)
39108 + pTxInfo->USBDMANextVLD = 0;
39109 + pTxInfo->SwUseLastRound = 0;
39111 + bTxQLastRound = TRUE;
39112 + pHTTXContext->ENextBulkOutPosition = 8;
39114 + #ifdef RT_BIG_ENDIAN
39115 + RTMPDescriptorEndianChange((PUCHAR)pTxInfo, TYPE_TXINFO);
39116 + RTMPWIEndianChange((PUCHAR)pTxWI, TYPE_TXWI);
39117 + #endif // RT_BIG_ENDIAN //
39122 +#ifdef RT_BIG_ENDIAN
39123 + RTMPDescriptorEndianChange((PUCHAR)pTxInfo, TYPE_TXINFO);
39124 + RTMPWIEndianChange((PUCHAR)pTxWI, TYPE_TXWI);
39125 +#endif // RT_BIG_ENDIAN //
39129 + // adjust the pTxInfo->USBDMANextVLD value of last pTxInfo.
39132 +#ifdef RT_BIG_ENDIAN
39133 + RTMPDescriptorEndianChange((PUCHAR)pLastTxInfo, TYPE_TXINFO);
39134 +#endif // RT_BIG_ENDIAN //
39135 + pLastTxInfo->USBDMANextVLD = 0;
39136 +#ifdef RT_BIG_ENDIAN
39137 + RTMPDescriptorEndianChange((PUCHAR)pLastTxInfo, TYPE_TXINFO);
39138 +#endif // RT_BIG_ENDIAN //
39142 + We need to copy SavedPad when following condition matched!
39143 + 1. Not the last round of the TxQueue and
39144 + 2. any match of following cases:
39145 + (1). The End Position of this bulk out is reach to the Currenct Write position and
39146 + the TxInfo and related header already write to the CurWritePosition.
39147 + =>(ENextBulkOutPosition == CurWritePosition) && (CurWriteRealPos > CurWritePosition)
39149 + (2). The EndPosition of the bulk out is not reach to the Current Write Position.
39150 + =>(ENextBulkOutPosition != CurWritePosition)
39152 + if ((bTxQLastRound == FALSE) &&
39153 + (((pHTTXContext->ENextBulkOutPosition == pHTTXContext->CurWritePosition) && (pHTTXContext->CurWriteRealPos > pHTTXContext->CurWritePosition)) ||
39154 + (pHTTXContext->ENextBulkOutPosition != pHTTXContext->CurWritePosition))
39157 + NdisMoveMemory(pHTTXContext->SavedPad, &pWirelessPkt[pHTTXContext->ENextBulkOutPosition], 8);
39158 + pHTTXContext->bCopySavePad = TRUE;
39159 + if (RTMPEqualMemory(pHTTXContext->SavedPad, allzero,4))
39161 + PUCHAR pBuf = &pHTTXContext->SavedPad[0];
39162 + DBGPRINT_RAW(RT_DEBUG_ERROR,("WARNING-Zero-3:%02x%02x%02x%02x%02x%02x%02x%02x,CWPos=%ld, CWRPos=%ld, bCW=%d, NBPos=%ld, TBPos=%ld, TBSize=%ld\n",
39163 + pBuf[0], pBuf[1], pBuf[2],pBuf[3],pBuf[4], pBuf[5], pBuf[6],pBuf[7], pHTTXContext->CurWritePosition, pHTTXContext->CurWriteRealPos,
39164 + pHTTXContext->bCurWriting, pHTTXContext->NextBulkOutPosition, TmpBulkEndPos, ThisBulkSize));
39166 + pBuf = &pWirelessPkt[pHTTXContext->CurWritePosition];
39167 + DBGPRINT_RAW(RT_DEBUG_ERROR,("\tCWPos=%02x%02x%02x%02x%02x%02x%02x%02x\n", pBuf[0], pBuf[1], pBuf[2],pBuf[3],pBuf[4], pBuf[5], pBuf[6],pBuf[7]));
39169 + //DBGPRINT(RT_DEBUG_LOUD,("ENPos==CWPos=%ld, CWRPos=%ld, bCSPad=%d!\n", pHTTXContext->CurWritePosition, pHTTXContext->CurWriteRealPos, pHTTXContext->bCopySavePad));
39172 + if (pAd->bForcePrintTX == TRUE)
39173 + DBGPRINT(RT_DEBUG_TRACE,("BulkOut-A:Size=%ld, CWPos=%ld, NBPos=%ld, ENBPos=%ld, bCopy=%d!\n", ThisBulkSize, pHTTXContext->CurWritePosition, pHTTXContext->NextBulkOutPosition, pHTTXContext->ENextBulkOutPosition, pHTTXContext->bCopySavePad));
39174 + //DBGPRINT(RT_DEBUG_LOUD,("BulkOut-A:Size=%ld, CWPos=%ld, CWRPos=%ld, NBPos=%ld, ENBPos=%ld, bCopy=%d, bLRound=%d!\n", ThisBulkSize, pHTTXContext->CurWritePosition, pHTTXContext->CurWriteRealPos, pHTTXContext->NextBulkOutPosition, pHTTXContext->ENextBulkOutPosition, pHTTXContext->bCopySavePad, bTxQLastRound));
39176 + // USB DMA engine requires to pad extra 4 bytes. This pad doesn't count into real bulkoutsize.
39177 + pAppendant = &pWirelessPkt[TmpBulkEndPos];
39178 + NdisZeroMemory(pAppendant, 8);
39179 + ThisBulkSize += 4;
39180 + pHTTXContext->LastOne = TRUE;
39181 + if ((ThisBulkSize % pAd->BulkOutMaxPacketSize) == 0)
39182 + ThisBulkSize += 4;
39183 + pHTTXContext->BulkOutSize = ThisBulkSize;
39185 + pAd->watchDogTxPendingCnt[BulkOutPipeId] = 1;
39186 + BULK_OUT_UNLOCK(&pAd->TxContextQueueLock[BulkOutPipeId], IrqFlags2);
39188 + // Init Tx context descriptor
39189 + RTUSBInitHTTxDesc(pAd, pHTTXContext, BulkOutPipeId, ThisBulkSize, (usb_complete_t)RTUSBBulkOutDataPacketComplete);
39191 + pUrb = pHTTXContext->pUrb;
39192 + if((ret = RTUSB_SUBMIT_URB(pUrb))!=0)
39194 + DBGPRINT(RT_DEBUG_ERROR, ("RTUSBBulkOutDataPacket: Submit Tx URB failed %d\n", ret));
39196 + BULK_OUT_LOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
39197 + pAd->BulkOutPending[BulkOutPipeId] = FALSE;
39198 + pAd->watchDogTxPendingCnt[BulkOutPipeId] = 0;
39199 + BULK_OUT_UNLOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
39204 + BULK_OUT_LOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
39205 + pHTTXContext->IRPPending = TRUE;
39206 + BULK_OUT_UNLOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
39207 + pAd->BulkOutReq++;
39212 +VOID RTUSBBulkOutDataPacketComplete(purbb_t pUrb, struct pt_regs *pt_regs)
39214 + PHT_TX_CONTEXT pHTTXContext;
39215 + PRTMP_ADAPTER pAd;
39217 + UCHAR BulkOutPipeId;
39220 + pHTTXContext = (PHT_TX_CONTEXT)pUrb->context;
39221 + pAd = pHTTXContext->pAd;
39222 + pObj = (POS_COOKIE) pAd->OS_Cookie;
39224 + // Store BulkOut PipeId
39225 + BulkOutPipeId = pHTTXContext->BulkOutPipeId;
39226 + pAd->BulkOutDataOneSecCount++;
39228 + switch (BulkOutPipeId)
39231 + pObj->ac0_dma_done_task.data = (unsigned long)pUrb;
39232 + tasklet_hi_schedule(&pObj->ac0_dma_done_task);
39235 + pObj->ac1_dma_done_task.data = (unsigned long)pUrb;
39236 + tasklet_hi_schedule(&pObj->ac1_dma_done_task);
39239 + pObj->ac2_dma_done_task.data = (unsigned long)pUrb;
39240 + tasklet_hi_schedule(&pObj->ac2_dma_done_task);
39243 + pObj->ac3_dma_done_task.data = (unsigned long)pUrb;
39244 + tasklet_hi_schedule(&pObj->ac3_dma_done_task);
39247 + pObj->hcca_dma_done_task.data = (unsigned long)pUrb;
39248 + tasklet_hi_schedule(&pObj->hcca_dma_done_task);
39255 + ========================================================================
39257 + Routine Description:
39263 + Note: NULL frame use BulkOutPipeId = 0
39265 + ========================================================================
39267 +VOID RTUSBBulkOutNullFrame(
39268 + IN PRTMP_ADAPTER pAd)
39270 + PTX_CONTEXT pNullContext = &(pAd->NullContext);
39273 + unsigned long IrqFlags;
39275 + RTMP_IRQ_LOCK(&pAd->BulkOutLock[0], IrqFlags);
39276 + if ((pAd->BulkOutPending[0] == TRUE) || RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NEED_STOP_TX))
39278 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[0], IrqFlags);
39281 + pAd->BulkOutPending[0] = TRUE;
39282 + pAd->watchDogTxPendingCnt[0] = 1;
39283 + pNullContext->IRPPending = TRUE;
39284 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[0], IrqFlags);
39286 + // Increase Total transmit byte counter
39287 + pAd->RalinkCounters.TransmittedByteCount += pNullContext->BulkOutSize;
39290 + // Clear Null frame bulk flag
39291 + RTUSB_CLEAR_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_NULL);
39293 +#ifdef RT_BIG_ENDIAN
39294 + RTMPDescriptorEndianChange((PUCHAR)pNullContext->TransferBuffer, TYPE_TXINFO);
39295 +#endif // RT_BIG_ENDIAN //
39297 + // Init Tx context descriptor
39298 + RTUSBInitTxDesc(pAd, pNullContext, 0, (usb_complete_t)RTUSBBulkOutNullFrameComplete);
39300 + pUrb = pNullContext->pUrb;
39301 + if((ret = RTUSB_SUBMIT_URB(pUrb))!=0)
39303 + RTMP_IRQ_LOCK(&pAd->BulkOutLock[0], IrqFlags);
39304 + pAd->BulkOutPending[0] = FALSE;
39305 + pAd->watchDogTxPendingCnt[0] = 0;
39306 + pNullContext->IRPPending = FALSE;
39307 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[0], IrqFlags);
39309 + DBGPRINT(RT_DEBUG_ERROR, ("RTUSBBulkOutNullFrame: Submit Tx URB failed %d\n", ret));
39315 +// NULL frame use BulkOutPipeId = 0
39316 +VOID RTUSBBulkOutNullFrameComplete(purbb_t pUrb, struct pt_regs *pt_regs)
39318 + PRTMP_ADAPTER pAd;
39319 + PTX_CONTEXT pNullContext;
39324 + pNullContext = (PTX_CONTEXT)pUrb->context;
39325 + pAd = pNullContext->pAd;
39326 + Status = pUrb->status;
39328 + pObj = (POS_COOKIE) pAd->OS_Cookie;
39329 + pObj->null_frame_complete_task.data = (unsigned long)pUrb;
39330 + tasklet_hi_schedule(&pObj->null_frame_complete_task);
39335 + ========================================================================
39337 + Routine Description:
39343 + Note: MLME use BulkOutPipeId = 0
39345 + ========================================================================
39347 +VOID RTUSBBulkOutMLMEPacket(
39348 + IN PRTMP_ADAPTER pAd,
39351 + PTX_CONTEXT pMLMEContext;
39354 + unsigned long IrqFlags;
39356 + pMLMEContext = (PTX_CONTEXT)pAd->MgmtRing.Cell[pAd->MgmtRing.TxDmaIdx].AllocVa;
39357 + pUrb = pMLMEContext->pUrb;
39359 + if ((pAd->MgmtRing.TxSwFreeIdx >= MGMT_RING_SIZE) ||
39360 + (pMLMEContext->InUse == FALSE) ||
39361 + (pMLMEContext->bWaitingBulkOut == FALSE))
39365 + // Clear MLME bulk flag
39366 + RTUSB_CLEAR_BULK_FLAG(pAd, fRTUSB_BULK_OUT_MLME);
39372 + RTMP_IRQ_LOCK(&pAd->BulkOutLock[MGMTPIPEIDX], IrqFlags);
39373 + if ((pAd->BulkOutPending[MGMTPIPEIDX] == TRUE) || RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NEED_STOP_TX))
39375 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[MGMTPIPEIDX], IrqFlags);
39379 + pAd->BulkOutPending[MGMTPIPEIDX] = TRUE;
39380 + pAd->watchDogTxPendingCnt[MGMTPIPEIDX] = 1;
39381 + pMLMEContext->IRPPending = TRUE;
39382 + pMLMEContext->bWaitingBulkOut = FALSE;
39383 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[MGMTPIPEIDX], IrqFlags);
39385 + // Increase Total transmit byte counter
39386 + pAd->RalinkCounters.TransmittedByteCount += pMLMEContext->BulkOutSize;
39388 + // Clear MLME bulk flag
39389 + RTUSB_CLEAR_BULK_FLAG(pAd, fRTUSB_BULK_OUT_MLME);
39391 +#ifdef RT_BIG_ENDIAN
39392 + RTMPDescriptorEndianChange((PUCHAR)pMLMEContext->TransferBuffer, TYPE_TXINFO);
39393 +#endif // RT_BIG_ENDIAN //
39395 + // Init Tx context descriptor
39396 + RTUSBInitTxDesc(pAd, pMLMEContext, MGMTPIPEIDX, (usb_complete_t)RTUSBBulkOutMLMEPacketComplete);
39398 +#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,5,0)
39399 + //For mgmt urb buffer, because we use sk_buff, so we need to notify the USB controller do dma mapping.
39400 + pUrb->transfer_dma = 0;
39401 + pUrb->transfer_flags &= (~URB_NO_TRANSFER_DMA_MAP);
39404 + pUrb = pMLMEContext->pUrb;
39405 + if((ret = RTUSB_SUBMIT_URB(pUrb))!=0)
39407 + DBGPRINT(RT_DEBUG_ERROR, ("RTUSBBulkOutMLMEPacket: Submit MLME URB failed %d\n", ret));
39408 + RTMP_IRQ_LOCK(&pAd->BulkOutLock[MGMTPIPEIDX], IrqFlags);
39409 + pAd->BulkOutPending[MGMTPIPEIDX] = FALSE;
39410 + pAd->watchDogTxPendingCnt[MGMTPIPEIDX] = 0;
39411 + pMLMEContext->IRPPending = FALSE;
39412 + pMLMEContext->bWaitingBulkOut = TRUE;
39413 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[MGMTPIPEIDX], IrqFlags);
39418 + //DBGPRINT_RAW(RT_DEBUG_INFO, ("<---RTUSBBulkOutMLMEPacket \n"));
39419 +// printk("<---RTUSBBulkOutMLMEPacket,Cpu=%d!, Dma=%d, SwIdx=%d!\n", pAd->MgmtRing.TxCpuIdx, pAd->MgmtRing.TxDmaIdx, pAd->MgmtRing.TxSwFreeIdx);
39423 +VOID RTUSBBulkOutMLMEPacketComplete(purbb_t pUrb, struct pt_regs *pt_regs)
39425 + PTX_CONTEXT pMLMEContext;
39426 + PRTMP_ADAPTER pAd;
39431 + //DBGPRINT_RAW(RT_DEBUG_INFO, ("--->RTUSBBulkOutMLMEPacketComplete\n"));
39432 + pMLMEContext = (PTX_CONTEXT)pUrb->context;
39433 + pAd = pMLMEContext->pAd;
39434 + pObj = (POS_COOKIE)pAd->OS_Cookie;
39435 + Status = pUrb->status;
39436 + index = pMLMEContext->SelfIdx;
39438 + pObj->mgmt_dma_done_task.data = (unsigned long)pUrb;
39439 + tasklet_hi_schedule(&pObj->mgmt_dma_done_task);
39444 + ========================================================================
39446 + Routine Description:
39452 + Note: PsPoll use BulkOutPipeId = 0
39454 + ========================================================================
39456 +VOID RTUSBBulkOutPsPoll(
39457 + IN PRTMP_ADAPTER pAd)
39459 + PTX_CONTEXT pPsPollContext = &(pAd->PsPollContext);
39462 + unsigned long IrqFlags;
39464 + RTMP_IRQ_LOCK(&pAd->BulkOutLock[0], IrqFlags);
39465 + if ((pAd->BulkOutPending[0] == TRUE) || RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NEED_STOP_TX))
39467 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[0], IrqFlags);
39470 + pAd->BulkOutPending[0] = TRUE;
39471 + pAd->watchDogTxPendingCnt[0] = 1;
39472 + pPsPollContext->IRPPending = TRUE;
39473 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[0], IrqFlags);
39476 + // Clear PS-Poll bulk flag
39477 + RTUSB_CLEAR_BULK_FLAG(pAd, fRTUSB_BULK_OUT_PSPOLL);
39479 +#ifdef RT_BIG_ENDIAN
39480 + RTMPDescriptorEndianChange((PUCHAR)pPsPollContext->TransferBuffer, TYPE_TXINFO);
39481 +#endif // RT_BIG_ENDIAN //
39483 + // Init Tx context descriptor
39484 + RTUSBInitTxDesc(pAd, pPsPollContext, MGMTPIPEIDX, (usb_complete_t)RTUSBBulkOutPsPollComplete);
39486 + pUrb = pPsPollContext->pUrb;
39487 + if((ret = RTUSB_SUBMIT_URB(pUrb))!=0)
39489 + RTMP_IRQ_LOCK(&pAd->BulkOutLock[0], IrqFlags);
39490 + pAd->BulkOutPending[0] = FALSE;
39491 + pAd->watchDogTxPendingCnt[0] = 0;
39492 + pPsPollContext->IRPPending = FALSE;
39493 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[0], IrqFlags);
39495 + DBGPRINT(RT_DEBUG_ERROR, ("RTUSBBulkOutPsPoll: Submit Tx URB failed %d\n", ret));
39501 +// PS-Poll frame use BulkOutPipeId = 0
39502 +VOID RTUSBBulkOutPsPollComplete(purbb_t pUrb,struct pt_regs *pt_regs)
39504 + PRTMP_ADAPTER pAd;
39505 + PTX_CONTEXT pPsPollContext;
39510 + pPsPollContext= (PTX_CONTEXT)pUrb->context;
39511 + pAd = pPsPollContext->pAd;
39512 + Status = pUrb->status;
39513 + pObj = (POS_COOKIE) pAd->OS_Cookie;
39514 + pObj->pspoll_frame_complete_task.data = (unsigned long)pUrb;
39515 + tasklet_hi_schedule(&pObj->pspoll_frame_complete_task);
39519 +VOID DoBulkIn(IN RTMP_ADAPTER *pAd)
39521 + PRX_CONTEXT pRxContext;
39524 + unsigned long IrqFlags;
39526 + RTMP_IRQ_LOCK(&pAd->BulkInLock, IrqFlags);
39527 + pRxContext = &(pAd->RxContext[pAd->NextRxBulkInIndex]);
39528 + if ((pAd->PendingRx > 0) || (pRxContext->Readable == TRUE) || (pRxContext->InUse == TRUE))
39530 + RTMP_IRQ_UNLOCK(&pAd->BulkInLock, IrqFlags);
39533 + pRxContext->InUse = TRUE;
39534 + pRxContext->IRPPending = TRUE;
39535 + pAd->PendingRx++;
39536 + pAd->BulkInReq++;
39537 + RTMP_IRQ_UNLOCK(&pAd->BulkInLock, IrqFlags);
39539 + // Init Rx context descriptor
39540 + NdisZeroMemory(pRxContext->TransferBuffer, pRxContext->BulkInOffset);
39541 + RTUSBInitRxDesc(pAd, pRxContext);
39543 + pUrb = pRxContext->pUrb;
39544 + if ((ret = RTUSB_SUBMIT_URB(pUrb))!=0)
39547 + RTMP_IRQ_LOCK(&pAd->BulkInLock, IrqFlags);
39548 + pRxContext->InUse = FALSE;
39549 + pRxContext->IRPPending = FALSE;
39550 + pAd->PendingRx--;
39551 + pAd->BulkInReq--;
39552 + RTMP_IRQ_UNLOCK(&pAd->BulkInLock, IrqFlags);
39553 + DBGPRINT(RT_DEBUG_ERROR, ("RTUSBBulkReceive: Submit Rx URB failed %d\n", ret));
39557 + ASSERT((pRxContext->InUse == pRxContext->IRPPending));
39558 + //printk("BIDone, Pend=%d,BIIdx=%d,BIRIdx=%d!\n", pAd->PendingRx, pAd->NextRxBulkInIndex, pAd->NextRxBulkInReadIndex);
39564 + ========================================================================
39566 + Routine Description:
39567 + USB_RxPacket initializes a URB and uses the Rx IRP to submit it
39568 + to USB. It checks if an Rx Descriptor is available and passes the
39569 + the coresponding buffer to be filled. If no descriptor is available
39570 + fails the request. When setting the completion routine we pass our
39571 + Adapter Object as Context.
39576 + TRUE found matched tuple cache
39577 + FALSE no matched found
39581 + ========================================================================
39583 +#define fRTMP_ADAPTER_NEED_STOP_RX \
39584 + (fRTMP_ADAPTER_NIC_NOT_EXIST | fRTMP_ADAPTER_HALT_IN_PROGRESS | \
39585 + fRTMP_ADAPTER_RADIO_OFF | fRTMP_ADAPTER_RESET_IN_PROGRESS | \
39586 + fRTMP_ADAPTER_REMOVE_IN_PROGRESS | fRTMP_ADAPTER_BULKIN_RESET)
39588 +#define fRTMP_ADAPTER_NEED_STOP_HANDLE_RX \
39589 + (fRTMP_ADAPTER_NIC_NOT_EXIST | fRTMP_ADAPTER_HALT_IN_PROGRESS | \
39590 + fRTMP_ADAPTER_RADIO_OFF | fRTMP_ADAPTER_RESET_IN_PROGRESS | \
39591 + fRTMP_ADAPTER_REMOVE_IN_PROGRESS)
39593 +VOID RTUSBBulkReceive(
39594 + IN PRTMP_ADAPTER pAd)
39596 + PRX_CONTEXT pRxContext;
39597 + unsigned long IrqFlags;
39600 + /* sanity check */
39601 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NEED_STOP_HANDLE_RX))
39607 + RTMP_IRQ_LOCK(&pAd->BulkInLock, IrqFlags);
39608 + pRxContext = &(pAd->RxContext[pAd->NextRxBulkInReadIndex]);
39609 + if (((pRxContext->InUse == FALSE) && (pRxContext->Readable == TRUE)) &&
39610 + (pRxContext->bRxHandling == FALSE))
39612 + pRxContext->bRxHandling = TRUE;
39613 + RTMP_IRQ_UNLOCK(&pAd->BulkInLock, IrqFlags);
39615 + // read RxContext, Since not
39616 +#ifdef CONFIG_STA_SUPPORT
39617 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
39618 + STARxDoneInterruptHandle(pAd, TRUE);
39619 +#endif // CONFIG_STA_SUPPORT //
39621 + // Finish to handle this bulkIn buffer.
39622 + RTMP_IRQ_LOCK(&pAd->BulkInLock, IrqFlags);
39623 + pRxContext->BulkInOffset = 0;
39624 + pRxContext->Readable = FALSE;
39625 + pRxContext->bRxHandling = FALSE;
39626 + pAd->ReadPosition = 0;
39627 + pAd->TransferBufferLength = 0;
39628 + INC_RING_INDEX(pAd->NextRxBulkInReadIndex, RX_RING_SIZE);
39629 + RTMP_IRQ_UNLOCK(&pAd->BulkInLock, IrqFlags);
39634 + RTMP_IRQ_UNLOCK(&pAd->BulkInLock, IrqFlags);
39639 + if (!(RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NEED_STOP_RX)))
39646 + ========================================================================
39648 + Routine Description:
39649 + This routine process Rx Irp and call rx complete function.
39652 + DeviceObject Pointer to the device object for next lower
39653 + device. DeviceObject passed in here belongs to
39654 + the next lower driver in the stack because we
39655 + were invoked via IoCallDriver in USB_RxPacket
39656 + AND it is not OUR device object
39657 + Irp Ptr to completed IRP
39658 + Context Ptr to our Adapter object (context specified
39659 + in IoSetCompletionRoutine
39662 + Always returns STATUS_MORE_PROCESSING_REQUIRED
39665 + Always returns STATUS_MORE_PROCESSING_REQUIRED
39666 + ========================================================================
39668 +VOID RTUSBBulkRxComplete(purbb_t pUrb, struct pt_regs *pt_regs)
39670 + // use a receive tasklet to handle received packets;
39671 + // or sometimes hardware IRQ will be disabled here, so we can not
39672 + // use spin_lock_bh()/spin_unlock_bh() after IRQ is disabled. :<
39673 + PRX_CONTEXT pRxContext;
39674 + PRTMP_ADAPTER pAd;
39678 + pRxContext = (PRX_CONTEXT)pUrb->context;
39679 + pAd = pRxContext->pAd;
39680 + pObj = (POS_COOKIE) pAd->OS_Cookie;
39682 + pObj->rx_done_task.data = (unsigned long)pUrb;
39683 + tasklet_hi_schedule(&pObj->rx_done_task);
39688 + ========================================================================
39690 + Routine Description:
39698 + ========================================================================
39700 +VOID RTUSBKickBulkOut(
39701 + IN PRTMP_ADAPTER pAd)
39703 + // BulkIn Reset will reset whole USB PHY. So we need to make sure fRTMP_ADAPTER_BULKIN_RESET not flaged.
39704 + if (!RTMP_TEST_FLAG(pAd ,fRTMP_ADAPTER_NEED_STOP_TX)
39706 + && !(ATE_ON(pAd))
39707 +#endif // RALINK_ATE //
39710 + // 2. PS-Poll frame is next
39711 + if (RTUSB_TEST_BULK_FLAG(pAd, fRTUSB_BULK_OUT_PSPOLL))
39713 + RTUSBBulkOutPsPoll(pAd);
39716 + // 5. Mlme frame is next
39717 + else if ((RTUSB_TEST_BULK_FLAG(pAd, fRTUSB_BULK_OUT_MLME)) &&
39718 + (pAd->MgmtRing.TxSwFreeIdx < MGMT_RING_SIZE))
39720 + RTUSBBulkOutMLMEPacket(pAd, pAd->MgmtRing.TxDmaIdx);
39723 + // 6. Data frame normal is next
39724 + if (RTUSB_TEST_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_NORMAL))
39726 + if (((!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS)) ||
39727 + (!OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED))
39730 + RTUSBBulkOutDataPacket(pAd, 0, pAd->NextBulkOutIndex[0]);
39733 + if (RTUSB_TEST_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_NORMAL_2))
39735 + if (((!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS)) ||
39736 + (!OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED))
39739 + RTUSBBulkOutDataPacket(pAd, 1, pAd->NextBulkOutIndex[1]);
39742 + if (RTUSB_TEST_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_NORMAL_3))
39744 + if (((!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS)) ||
39745 + (!OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED))
39748 + RTUSBBulkOutDataPacket(pAd, 2, pAd->NextBulkOutIndex[2]);
39751 + if (RTUSB_TEST_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_NORMAL_4))
39753 + if (((!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS)) ||
39754 + (!OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED))
39757 + RTUSBBulkOutDataPacket(pAd, 3, pAd->NextBulkOutIndex[3]);
39760 + //PS packets use HCCA queue when dequeue from PS unicast queue (WiFi WPA2 MA9_DT1 for Marvell B STA)
39761 + if (RTUSB_TEST_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_NORMAL_5))
39763 + if (((!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS)) ||
39764 + (!OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED))
39770 + // 7. Null frame is the last
39771 + else if (RTUSB_TEST_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_NULL))
39773 + if (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS))
39775 + RTUSBBulkOutNullFrame(pAd);
39779 + // 8. No data avaliable
39786 + /* If the mode is in ATE mode. */
39787 + else if((ATE_ON(pAd)) &&
39788 + !RTMP_TEST_FLAG(pAd ,fRTMP_ADAPTER_NEED_STOP_TX))// PETER : watch out !
39790 + if (RTUSB_TEST_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_ATE))
39792 + ATE_RTUSBBulkOutDataPacket(pAd, 0);
39795 +#endif // RALINK_ATE //
39800 + ========================================================================
39802 + Routine Description:
39803 + Call from Reset action after BulkOut failed.
39810 + ========================================================================
39812 +VOID RTUSBCleanUpDataBulkOutQueue(
39813 + IN PRTMP_ADAPTER pAd)
39816 + PHT_TX_CONTEXT pTxContext;
39818 + DBGPRINT(RT_DEBUG_TRACE, ("--->CleanUpDataBulkOutQueue\n"));
39820 + for (Idx = 0; Idx < 4; Idx++)
39822 + pTxContext = &pAd->TxContext[Idx];
39824 + pTxContext->CurWritePosition = pTxContext->NextBulkOutPosition;
39825 + pTxContext->LastOne = FALSE;
39826 + NdisAcquireSpinLock(&pAd->BulkOutLock[Idx]);
39827 + pAd->BulkOutPending[Idx] = FALSE;
39828 + NdisReleaseSpinLock(&pAd->BulkOutLock[Idx]);
39831 + DBGPRINT(RT_DEBUG_TRACE, ("<---CleanUpDataBulkOutQueue\n"));
39835 + ========================================================================
39837 + Routine Description:
39845 + ========================================================================
39847 +VOID RTUSBCleanUpMLMEBulkOutQueue(
39848 + IN PRTMP_ADAPTER pAd)
39850 + DBGPRINT(RT_DEBUG_TRACE, ("--->CleanUpMLMEBulkOutQueue\n"));
39851 + DBGPRINT(RT_DEBUG_TRACE, ("<---CleanUpMLMEBulkOutQueue\n"));
39856 + ========================================================================
39858 + Routine Description:
39867 + ========================================================================
39869 +VOID RTUSBCancelPendingIRPs(
39870 + IN PRTMP_ADAPTER pAd)
39872 + RTUSBCancelPendingBulkInIRP(pAd);
39873 + RTUSBCancelPendingBulkOutIRP(pAd);
39877 + ========================================================================
39879 + Routine Description:
39887 + ========================================================================
39889 +VOID RTUSBCancelPendingBulkInIRP(
39890 + IN PRTMP_ADAPTER pAd)
39892 + PRX_CONTEXT pRxContext;
39895 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("--->RTUSBCancelPendingBulkInIRP\n"));
39896 + for ( i = 0; i < (RX_RING_SIZE); i++)
39898 + pRxContext = &(pAd->RxContext[i]);
39899 + if(pRxContext->IRPPending == TRUE)
39901 + RTUSB_UNLINK_URB(pRxContext->pUrb);
39902 + pRxContext->IRPPending = FALSE;
39903 + pRxContext->InUse = FALSE;
39904 + //NdisInterlockedDecrement(&pAd->PendingRx);
39905 + //pAd->PendingRx--;
39908 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("<---RTUSBCancelPendingBulkInIRP\n"));
39913 + ========================================================================
39915 + Routine Description:
39923 + ========================================================================
39925 +VOID RTUSBCancelPendingBulkOutIRP(
39926 + IN PRTMP_ADAPTER pAd)
39928 + PHT_TX_CONTEXT pHTTXContext;
39929 + PTX_CONTEXT pMLMEContext;
39930 + PTX_CONTEXT pBeaconContext;
39931 + PTX_CONTEXT pNullContext;
39932 + PTX_CONTEXT pPsPollContext;
39933 + PTX_CONTEXT pRTSContext;
39935 +// unsigned int IrqFlags;
39936 +// NDIS_SPIN_LOCK *pLock;
39937 +// BOOLEAN *pPending;
39940 +// pLock = &pAd->BulkOutLock[MGMTPIPEIDX];
39941 +// pPending = &pAd->BulkOutPending[MGMTPIPEIDX];
39943 + for (Idx = 0; Idx < 4; Idx++)
39945 + pHTTXContext = &(pAd->TxContext[Idx]);
39947 + if (pHTTXContext->IRPPending == TRUE)
39950 + // Get the USB_CONTEXT and cancel it's IRP; the completion routine will itself
39951 + // remove it from the HeadPendingSendList and NULL out HeadPendingSendList
39952 + // when the last IRP on the list has been cancelled; that's how we exit this loop
39955 + RTUSB_UNLINK_URB(pHTTXContext->pUrb);
39957 + // Sleep 200 microseconds to give cancellation time to work
39958 + RTMPusecDelay(200);
39962 + pHTTXContext->bCopySavePad = 0;
39963 + pHTTXContext->CurWritePosition = 0;
39964 + pHTTXContext->CurWriteRealPos = 0;
39965 + pHTTXContext->bCurWriting = FALSE;
39966 + pHTTXContext->NextBulkOutPosition = 0;
39967 + pHTTXContext->ENextBulkOutPosition = 0;
39968 +#endif // RALINK_ATE //
39969 + pAd->BulkOutPending[Idx] = FALSE;
39972 + //RTMP_IRQ_LOCK(pLock, IrqFlags);
39973 + for (i = 0; i < MGMT_RING_SIZE; i++)
39975 + pMLMEContext = (PTX_CONTEXT)pAd->MgmtRing.Cell[i].AllocVa;
39976 + if(pMLMEContext && (pMLMEContext->IRPPending == TRUE))
39979 + // Get the USB_CONTEXT and cancel it's IRP; the completion routine will itself
39980 + // remove it from the HeadPendingSendList and NULL out HeadPendingSendList
39981 + // when the last IRP on the list has been cancelled; that's how we exit this loop
39984 + RTUSB_UNLINK_URB(pMLMEContext->pUrb);
39985 + pMLMEContext->IRPPending = FALSE;
39987 + // Sleep 200 microsecs to give cancellation time to work
39988 + RTMPusecDelay(200);
39991 + pAd->BulkOutPending[MGMTPIPEIDX] = FALSE;
39992 + //RTMP_IRQ_UNLOCK(pLock, IrqFlags);
39995 + for (i = 0; i < BEACON_RING_SIZE; i++)
39997 + pBeaconContext = &(pAd->BeaconContext[i]);
39999 + if(pBeaconContext->IRPPending == TRUE)
40002 + // Get the USB_CONTEXT and cancel it's IRP; the completion routine will itself
40003 + // remove it from the HeadPendingSendList and NULL out HeadPendingSendList
40004 + // when the last IRP on the list has been cancelled; that's how we exit this loop
40007 + RTUSB_UNLINK_URB(pBeaconContext->pUrb);
40009 + // Sleep 200 microsecs to give cancellation time to work
40010 + RTMPusecDelay(200);
40014 + pNullContext = &(pAd->NullContext);
40015 + if (pNullContext->IRPPending == TRUE)
40016 + RTUSB_UNLINK_URB(pNullContext->pUrb);
40018 + pRTSContext = &(pAd->RTSContext);
40019 + if (pRTSContext->IRPPending == TRUE)
40020 + RTUSB_UNLINK_URB(pRTSContext->pUrb);
40022 + pPsPollContext = &(pAd->PsPollContext);
40023 + if (pPsPollContext->IRPPending == TRUE)
40024 + RTUSB_UNLINK_URB(pPsPollContext->pUrb);
40026 + for (Idx = 0; Idx < 4; Idx++)
40028 + NdisAcquireSpinLock(&pAd->BulkOutLock[Idx]);
40029 + pAd->BulkOutPending[Idx] = FALSE;
40030 + NdisReleaseSpinLock(&pAd->BulkOutLock[Idx]);
40035 +++ b/drivers/staging/rt3070/common/rtusb_data.c
40038 + *************************************************************************
40039 + * Ralink Tech Inc.
40040 + * 5F., No.36, Taiyuan St., Jhubei City,
40041 + * Hsinchu County 302,
40044 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
40046 + * This program is free software; you can redistribute it and/or modify *
40047 + * it under the terms of the GNU General Public License as published by *
40048 + * the Free Software Foundation; either version 2 of the License, or *
40049 + * (at your option) any later version. *
40051 + * This program is distributed in the hope that it will be useful, *
40052 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
40053 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
40054 + * GNU General Public License for more details. *
40056 + * You should have received a copy of the GNU General Public License *
40057 + * along with this program; if not, write to the *
40058 + * Free Software Foundation, Inc., *
40059 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
40061 + *************************************************************************
40067 + Ralink USB driver Tx/Rx functions.
40069 + Revision History:
40071 + -------- ---------- ----------------------------------------------
40072 + Jan 03-25-2006 created
40075 +#include "../rt_config.h"
40077 +extern UCHAR Phy11BGNextRateUpward[]; // defined in mlme.c
40078 +extern UCHAR EpToQueue[];
40081 +VOID REPORT_AMSDU_FRAMES_TO_LLC(
40082 + IN PRTMP_ADAPTER pAd,
40084 + IN ULONG DataSize)
40086 + PNDIS_PACKET pPacket;
40088 + struct sk_buff *pSkb;
40091 + /* allocate a rx packet */
40092 + pSkb = dev_alloc_skb(RX_BUFFER_AGGRESIZE);
40093 + pPacket = (PNDIS_PACKET)OSPKT_TO_RTPKT(pSkb);
40097 + /* convert 802.11 to 802.3 packet */
40098 + pSkb->dev = get_netdev_from_bssid(pAd, BSS0);
40099 + RTMP_SET_PACKET_SOURCE(pPacket, PKTSRC_NDIS);
40100 + deaggregate_AMSDU_announce(pAd, pPacket, pData, DataSize);
40104 + DBGPRINT(RT_DEBUG_ERROR,("Can't allocate skb\n"));
40108 +NDIS_STATUS RTUSBFreeDescriptorRequest(
40109 + IN PRTMP_ADAPTER pAd,
40110 + IN UCHAR BulkOutPipeId,
40111 + IN UINT32 NumberRequired)
40113 +// UCHAR FreeNumber = 0;
40115 + NDIS_STATUS Status = NDIS_STATUS_FAILURE;
40116 + unsigned long IrqFlags;
40117 + HT_TX_CONTEXT *pHTTXContext;
40120 + pHTTXContext = &pAd->TxContext[BulkOutPipeId];
40121 + RTMP_IRQ_LOCK(&pAd->TxContextQueueLock[BulkOutPipeId], IrqFlags);
40122 + if ((pHTTXContext->CurWritePosition < pHTTXContext->NextBulkOutPosition) && ((pHTTXContext->CurWritePosition + NumberRequired + LOCAL_TXBUF_SIZE) > pHTTXContext->NextBulkOutPosition))
40125 + RTUSB_SET_BULK_FLAG(pAd, (fRTUSB_BULK_OUT_DATA_NORMAL << BulkOutPipeId));
40127 + else if ((pHTTXContext->CurWritePosition == 8) && (pHTTXContext->NextBulkOutPosition < (NumberRequired + LOCAL_TXBUF_SIZE)))
40129 + RTUSB_SET_BULK_FLAG(pAd, (fRTUSB_BULK_OUT_DATA_NORMAL << BulkOutPipeId));
40131 + else if (pHTTXContext->bCurWriting == TRUE)
40133 + DBGPRINT(RT_DEBUG_TRACE,("RTUSBFreeD c3 --> QueIdx=%d, CWPos=%ld, NBOutPos=%ld!\n", BulkOutPipeId, pHTTXContext->CurWritePosition, pHTTXContext->NextBulkOutPosition));
40134 + RTUSB_SET_BULK_FLAG(pAd, (fRTUSB_BULK_OUT_DATA_NORMAL << BulkOutPipeId));
40138 + Status = NDIS_STATUS_SUCCESS;
40140 + RTMP_IRQ_UNLOCK(&pAd->TxContextQueueLock[BulkOutPipeId], IrqFlags);
40147 +NDIS_STATUS RTUSBFreeDescriptorRelease(
40148 + IN RTMP_ADAPTER *pAd,
40149 + IN UCHAR BulkOutPipeId)
40151 + unsigned long IrqFlags;
40152 + HT_TX_CONTEXT *pHTTXContext;
40154 + pHTTXContext = &pAd->TxContext[BulkOutPipeId];
40155 + RTMP_IRQ_LOCK(&pAd->TxContextQueueLock[BulkOutPipeId], IrqFlags);
40156 + pHTTXContext->bCurWriting = FALSE;
40157 + RTMP_IRQ_UNLOCK(&pAd->TxContextQueueLock[BulkOutPipeId], IrqFlags);
40159 + return (NDIS_STATUS_SUCCESS);
40163 +BOOLEAN RTUSBNeedQueueBackForAgg(
40164 + IN RTMP_ADAPTER *pAd,
40165 + IN UCHAR BulkOutPipeId)
40167 + unsigned long IrqFlags;
40168 + HT_TX_CONTEXT *pHTTXContext;
40169 + BOOLEAN needQueBack = FALSE;
40171 + pHTTXContext = &pAd->TxContext[BulkOutPipeId];
40173 + RTMP_IRQ_LOCK(&pAd->TxContextQueueLock[BulkOutPipeId], IrqFlags);
40174 + if ((pHTTXContext->IRPPending == TRUE) /*&& (pAd->TxSwQueue[BulkOutPipeId].Number == 0) */)
40176 + if ((pHTTXContext->CurWritePosition < pHTTXContext->ENextBulkOutPosition) &&
40177 + (((pHTTXContext->ENextBulkOutPosition+MAX_AGGREGATION_SIZE) < MAX_TXBULK_LIMIT) || (pHTTXContext->CurWritePosition > MAX_AGGREGATION_SIZE)))
40179 + needQueBack = TRUE;
40181 + else if ((pHTTXContext->CurWritePosition > pHTTXContext->ENextBulkOutPosition) &&
40182 + ((pHTTXContext->ENextBulkOutPosition + MAX_AGGREGATION_SIZE) < pHTTXContext->CurWritePosition))
40184 + needQueBack = TRUE;
40187 + RTMP_IRQ_UNLOCK(&pAd->TxContextQueueLock[BulkOutPipeId], IrqFlags);
40189 + return needQueBack;
40195 + ========================================================================
40197 + Routine Description:
40207 + ========================================================================
40209 +VOID RTUSBRejectPendingPackets(
40210 + IN PRTMP_ADAPTER pAd)
40213 + PQUEUE_ENTRY pEntry;
40214 + PNDIS_PACKET pPacket;
40215 + PQUEUE_HEADER pQueue;
40218 + for (Index = 0; Index < 4; Index++)
40220 + NdisAcquireSpinLock(&pAd->TxSwQueueLock[Index]);
40221 + while (pAd->TxSwQueue[Index].Head != NULL)
40223 + pQueue = (PQUEUE_HEADER) &(pAd->TxSwQueue[Index]);
40224 + pEntry = RemoveHeadQueue(pQueue);
40225 + pPacket = QUEUE_ENTRY_TO_PACKET(pEntry);
40226 + RELEASE_NDIS_PACKET(pAd, pPacket, NDIS_STATUS_FAILURE);
40228 + NdisReleaseSpinLock(&pAd->TxSwQueueLock[Index]);
40234 +VOID RTMPWriteTxInfo(
40235 + IN PRTMP_ADAPTER pAd,
40236 + IN PTXINFO_STRUC pTxInfo,
40237 + IN USHORT USBDMApktLen,
40239 + IN UCHAR QueueSel,
40240 + IN UCHAR NextValid,
40241 + IN UCHAR TxBurst)
40243 + pTxInfo->USBDMATxPktLen = USBDMApktLen;
40244 + pTxInfo->QSEL = QueueSel;
40245 + if (QueueSel != FIFO_EDCA)
40246 + DBGPRINT(RT_DEBUG_TRACE, ("====> QueueSel != FIFO_EDCA<============\n"));
40247 + pTxInfo->USBDMANextVLD = FALSE; //NextValid; // Need to check with Jan about this.
40248 + pTxInfo->USBDMATxburst = TxBurst;
40249 + pTxInfo->WIV = bWiv;
40250 + pTxInfo->SwUseLastRound = 0;
40251 + pTxInfo->rsv = 0;
40252 + pTxInfo->rsv2 = 0;
40256 +++ b/drivers/staging/rt3070/common/rtusb_io.c
40259 + *************************************************************************
40260 + * Ralink Tech Inc.
40261 + * 5F., No.36, Taiyuan St., Jhubei City,
40262 + * Hsinchu County 302,
40265 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
40267 + * This program is free software; you can redistribute it and/or modify *
40268 + * it under the terms of the GNU General Public License as published by *
40269 + * the Free Software Foundation; either version 2 of the License, or *
40270 + * (at your option) any later version. *
40272 + * This program is distributed in the hope that it will be useful, *
40273 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
40274 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
40275 + * GNU General Public License for more details. *
40277 + * You should have received a copy of the GNU General Public License *
40278 + * along with this program; if not, write to the *
40279 + * Free Software Foundation, Inc., *
40280 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
40282 + *************************************************************************
40289 + Revision History:
40291 + -------- ---------- ----------------------------------------------
40292 + Name Date Modification logs
40293 + Paul Lin 06-25-2004 created
40296 +#include "../rt_config.h"
40300 + ========================================================================
40302 + Routine Description: NIC initialization complete
40312 + ========================================================================
40315 +NTSTATUS RTUSBFirmwareRun(
40316 + IN PRTMP_ADAPTER pAd)
40320 + Status = RTUSB_VendorRequest(
40322 + USBD_TRANSFER_DIRECTION_OUT,
40323 + DEVICE_VENDOR_REQUEST_OUT,
40336 + ========================================================================
40338 + Routine Description: Write Firmware to NIC.
40348 + ========================================================================
40350 +NTSTATUS RTUSBFirmwareWrite(
40351 + IN PRTMP_ADAPTER pAd,
40352 + IN PUCHAR pFwImage,
40360 + Status = RTUSBReadMACRegister(pAd, MAC_CSR0, &MacReg);
40363 + writeLen = FwLen;
40364 + RTUSBMultiWrite(pAd, FIRMWARE_IMAGE_BASE, pFwImage, writeLen);
40366 + Status = RTUSBWriteMACRegister(pAd, 0x7014, 0xffffffff);
40367 + Status = RTUSBWriteMACRegister(pAd, 0x701c, 0xffffffff);
40368 + Status = RTUSBFirmwareRun(pAd);
40370 + RTMPusecDelay(10000);
40371 + RTUSBWriteMACRegister(pAd,H2M_MAILBOX_CSR,0);
40372 + AsicSendCommandToMcu(pAd, 0x72, 0x00, 0x00, 0x00);//reset rf by MCU supported by new firmware
40379 + ========================================================================
40381 + Routine Description: Get current firmware operation mode (Return Value)
40386 + 0 or 1 = Downloaded by host driver
40387 + others = Driver doesn't download firmware
40393 + ========================================================================
40395 +NTSTATUS RTUSBFirmwareOpmode(
40396 + IN PRTMP_ADAPTER pAd,
40397 + OUT PUINT32 pValue)
40401 + Status = RTUSB_VendorRequest(
40403 + (USBD_TRANSFER_DIRECTION_IN | USBD_SHORT_TRANSFER_OK),
40404 + DEVICE_VENDOR_REQUEST_IN,
40412 +NTSTATUS RTUSBVenderReset(
40413 + IN PRTMP_ADAPTER pAd)
40416 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("-->RTUSBVenderReset\n"));
40417 + Status = RTUSB_VendorRequest(
40419 + USBD_TRANSFER_DIRECTION_OUT,
40420 + DEVICE_VENDOR_REQUEST_OUT,
40427 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("<--RTUSBVenderReset\n"));
40431 + ========================================================================
40433 + Routine Description: Read various length data from RT2573
40443 + ========================================================================
40445 +NTSTATUS RTUSBMultiRead(
40446 + IN PRTMP_ADAPTER pAd,
40447 + IN USHORT Offset,
40448 + OUT PUCHAR pData,
40449 + IN USHORT length)
40453 + Status = RTUSB_VendorRequest(
40455 + (USBD_TRANSFER_DIRECTION_IN | USBD_SHORT_TRANSFER_OK),
40456 + DEVICE_VENDOR_REQUEST_IN,
40467 + ========================================================================
40469 + Routine Description: Write various length data to RT2573
40479 + ========================================================================
40481 +NTSTATUS RTUSBMultiWrite_OneByte(
40482 + IN PRTMP_ADAPTER pAd,
40483 + IN USHORT Offset,
40488 + // TODO: In 2870, use this funciton carefully cause it's not stable.
40489 + Status = RTUSB_VendorRequest(
40491 + USBD_TRANSFER_DIRECTION_OUT,
40492 + DEVICE_VENDOR_REQUEST_OUT,
40502 +NTSTATUS RTUSBMultiWrite(
40503 + IN PRTMP_ADAPTER pAd,
40504 + IN USHORT Offset,
40506 + IN USHORT length)
40511 + USHORT index = 0,Value;
40512 + PUCHAR pSrc = pData;
40513 + USHORT resude = 0;
40515 + resude = length % 2;
40516 + length += resude;
40519 + Value =(USHORT)( *pSrc | (*(pSrc + 1) << 8));
40520 + Status = RTUSBSingleWrite(pAd,Offset + index,Value);
40524 + }while(length > 0);
40530 +NTSTATUS RTUSBSingleWrite(
40531 + IN RTMP_ADAPTER *pAd,
40532 + IN USHORT Offset,
40537 + Status = RTUSB_VendorRequest(
40539 + USBD_TRANSFER_DIRECTION_OUT,
40540 + DEVICE_VENDOR_REQUEST_OUT,
40553 + ========================================================================
40555 + Routine Description: Read 32-bit MAC register
40565 + ========================================================================
40567 +NTSTATUS RTUSBReadMACRegister(
40568 + IN PRTMP_ADAPTER pAd,
40569 + IN USHORT Offset,
40570 + OUT PUINT32 pValue)
40575 + Status = RTUSB_VendorRequest(
40577 + (USBD_TRANSFER_DIRECTION_IN | USBD_SHORT_TRANSFER_OK),
40578 + DEVICE_VENDOR_REQUEST_IN,
40585 + *pValue = le2cpu32(localVal);
40589 + *pValue = 0xffffffff;
40596 + ========================================================================
40598 + Routine Description: Write 32-bit MAC register
40608 + ========================================================================
40610 +NTSTATUS RTUSBWriteMACRegister(
40611 + IN PRTMP_ADAPTER pAd,
40612 + IN USHORT Offset,
40618 + localVal = Value;
40620 + Status = RTUSBSingleWrite(pAd, Offset, (USHORT)(localVal & 0xffff));
40621 + Status = RTUSBSingleWrite(pAd, Offset + 2, (USHORT)((localVal & 0xffff0000) >> 16));
40630 + ========================================================================
40632 + Routine Description: Read 8-bit BBP register
40642 + ========================================================================
40644 +NTSTATUS RTUSBReadBBPRegister(
40645 + IN PRTMP_ADAPTER pAd,
40647 + IN PUCHAR pValue)
40649 + BBP_CSR_CFG_STRUC BbpCsr;
40653 + // Verify the busy condition
40656 + status = RTUSBReadMACRegister(pAd, BBP_CSR_CFG, &BbpCsr.word);
40659 + if (!(BbpCsr.field.Busy == BUSY))
40662 + printk("RTUSBReadBBPRegister(BBP_CSR_CFG_1):retry count=%d!\n", i);
40665 + while ((i < RETRY_LIMIT) && (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)));
40667 + if ((i == RETRY_LIMIT) || (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)))
40670 + // Read failed then Return Default value.
40672 + *pValue = pAd->BbpWriteLatch[Id];
40674 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("Retry count exhausted or device removed!!!\n"));
40675 + return STATUS_UNSUCCESSFUL;
40678 + // Prepare for write material
40680 + BbpCsr.field.fRead = 1;
40681 + BbpCsr.field.Busy = 1;
40682 + BbpCsr.field.RegNum = Id;
40683 + RTUSBWriteMACRegister(pAd, BBP_CSR_CFG, BbpCsr.word);
40686 + // Verify the busy condition
40689 + status = RTUSBReadMACRegister(pAd, BBP_CSR_CFG, &BbpCsr.word);
40692 + if (!(BbpCsr.field.Busy == BUSY))
40694 + *pValue = (UCHAR)BbpCsr.field.Value;
40698 + printk("RTUSBReadBBPRegister(BBP_CSR_CFG_2):retry count=%d!\n", i);
40701 + while ((i < RETRY_LIMIT) && (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)));
40703 + if ((i == RETRY_LIMIT) || (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)))
40706 + // Read failed then Return Default value.
40708 + *pValue = pAd->BbpWriteLatch[Id];
40710 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("Retry count exhausted or device removed!!!\n"));
40711 + return STATUS_UNSUCCESSFUL;
40714 + return STATUS_SUCCESS;
40718 + ========================================================================
40720 + Routine Description: Read 8-bit BBP register via firmware
40730 + ========================================================================
40732 +NTSTATUS RTUSBReadBBPRegister(
40733 + IN PRTMP_ADAPTER pAd,
40735 + IN PUCHAR pValue)
40737 + BBP_CSR_CFG_STRUC BbpCsr;
40739 + for (i=0; i<MAX_BUSY_COUNT; i++)
40741 + RTUSBReadMACRegister(pAd, H2M_BBP_AGENT, &BbpCsr.word);
40742 + if (BbpCsr.field.Busy == BUSY)
40747 + BbpCsr.field.fRead = 1;
40748 + BbpCsr.field.BBP_RW_MODE = 1;
40749 + BbpCsr.field.Busy = 1;
40750 + BbpCsr.field.RegNum = Id;
40751 + RTUSBWriteMACRegister(pAd, H2M_BBP_AGENT, BbpCsr.word);
40752 + AsicSendCommandToMcu(pAd, 0x80, 0xff, 0x0, 0x0);
40753 + for (k=0; k<MAX_BUSY_COUNT; k++)
40755 + RTUSBReadMACRegister(pAd, H2M_BBP_AGENT, &BbpCsr.word);
40756 + if (BbpCsr.field.Busy == IDLE)
40759 + if ((BbpCsr.field.Busy == IDLE) &&
40760 + (BbpCsr.field.RegNum == Id))
40762 + *pValue = (UCHAR)BbpCsr.field.Value;
40766 + if (BbpCsr.field.Busy == BUSY)
40768 + DBGPRINT_ERR(("BBP read R%d=0x%x fail\n", Id, BbpCsr.word));
40769 + *pValue = pAd->BbpWriteLatch[Id];
40770 + return STATUS_UNSUCCESSFUL;
40772 + return STATUS_SUCCESS;
40778 + ========================================================================
40780 + Routine Description: Write 8-bit BBP register
40790 + ========================================================================
40792 +NTSTATUS RTUSBWriteBBPRegister(
40793 + IN PRTMP_ADAPTER pAd,
40797 + BBP_CSR_CFG_STRUC BbpCsr;
40800 + // Verify the busy condition
40803 + status = RTUSBReadMACRegister(pAd, BBP_CSR_CFG, &BbpCsr.word);
40806 + if (!(BbpCsr.field.Busy == BUSY))
40809 + printk("RTUSBWriteBBPRegister(BBP_CSR_CFG):retry count=%d!\n", i);
40812 + while ((i < RETRY_LIMIT) && (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)));
40814 + if ((i == RETRY_LIMIT) || (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)))
40816 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("Retry count exhausted or device removed!!!\n"));
40817 + return STATUS_UNSUCCESSFUL;
40820 + // Prepare for write material
40822 + BbpCsr.field.fRead = 0;
40823 + BbpCsr.field.Value = Value;
40824 + BbpCsr.field.Busy = 1;
40825 + BbpCsr.field.RegNum = Id;
40826 + RTUSBWriteMACRegister(pAd, BBP_CSR_CFG, BbpCsr.word);
40828 + pAd->BbpWriteLatch[Id] = Value;
40830 + return STATUS_SUCCESS;
40834 + ========================================================================
40836 + Routine Description: Write 8-bit BBP register via firmware
40846 + ========================================================================
40849 +NTSTATUS RTUSBWriteBBPRegister(
40850 + IN PRTMP_ADAPTER pAd,
40855 + BBP_CSR_CFG_STRUC BbpCsr;
40857 + for (BusyCnt=0; BusyCnt<MAX_BUSY_COUNT; BusyCnt++)
40859 + RTMP_IO_READ32(pAd, H2M_BBP_AGENT, &BbpCsr.word);
40860 + if (BbpCsr.field.Busy == BUSY)
40863 + BbpCsr.field.fRead = 0;
40864 + BbpCsr.field.BBP_RW_MODE = 1;
40865 + BbpCsr.field.Busy = 1;
40866 + BbpCsr.field.Value = Value;
40867 + BbpCsr.field.RegNum = Id;
40868 + RTMP_IO_WRITE32(pAd, H2M_BBP_AGENT, BbpCsr.word);
40869 + AsicSendCommandToMcu(pAd, 0x80, 0xff, 0x0, 0x0);
40870 + pAd->BbpWriteLatch[Id] = Value;
40873 + if (BusyCnt == MAX_BUSY_COUNT)
40875 + DBGPRINT_ERR(("BBP write R%d=0x%x fail\n", Id, BbpCsr.word));
40876 + return STATUS_UNSUCCESSFUL;
40878 + return STATUS_SUCCESS;
40882 + ========================================================================
40884 + Routine Description: Write RF register through MAC
40894 + ========================================================================
40896 +NTSTATUS RTUSBWriteRFRegister(
40897 + IN PRTMP_ADAPTER pAd,
40900 + PHY_CSR4_STRUC PhyCsr4;
40904 + NdisZeroMemory(&PhyCsr4, sizeof(PHY_CSR4_STRUC));
40907 + status = RTUSBReadMACRegister(pAd, RF_CSR_CFG0, &PhyCsr4.word);
40910 + if (!(PhyCsr4.field.Busy))
40913 + printk("RTUSBWriteRFRegister(RF_CSR_CFG0):retry count=%d!\n", i);
40916 + while ((i < RETRY_LIMIT) && (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)));
40918 + if ((i == RETRY_LIMIT) || (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)))
40920 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("Retry count exhausted or device removed!!!\n"));
40921 + return STATUS_UNSUCCESSFUL;
40924 + RTUSBWriteMACRegister(pAd, RF_CSR_CFG0, Value);
40926 + return STATUS_SUCCESS;
40931 + ========================================================================
40933 + Routine Description:
40943 + ========================================================================
40945 +NTSTATUS RTUSBReadEEPROM(
40946 + IN PRTMP_ADAPTER pAd,
40947 + IN USHORT Offset,
40948 + OUT PUCHAR pData,
40949 + IN USHORT length)
40951 + NTSTATUS Status = STATUS_SUCCESS;
40954 + if(pAd->bUseEfuse)
40956 + Status =eFuseRead(pAd, Offset, pData, length);
40959 +#endif // RT30xx //
40961 + Status = RTUSB_VendorRequest(
40963 + (USBD_TRANSFER_DIRECTION_IN | USBD_SHORT_TRANSFER_OK),
40964 + DEVICE_VENDOR_REQUEST_IN,
40976 + ========================================================================
40978 + Routine Description:
40988 + ========================================================================
40990 +NTSTATUS RTUSBWriteEEPROM(
40991 + IN PRTMP_ADAPTER pAd,
40992 + IN USHORT Offset,
40994 + IN USHORT length)
40996 + NTSTATUS Status = STATUS_SUCCESS;
40999 + if(pAd->bUseEfuse)
41001 + Status = eFuseWrite(pAd, Offset, pData, length);
41004 +#endif // RT30xx //
41006 + Status = RTUSB_VendorRequest(
41008 + USBD_TRANSFER_DIRECTION_OUT,
41009 + DEVICE_VENDOR_REQUEST_OUT,
41021 + ========================================================================
41023 + Routine Description:
41033 + ========================================================================
41035 +VOID RTUSBPutToSleep(
41036 + IN PRTMP_ADAPTER pAd)
41040 + // Timeout 0x40 x 50us
41041 + value = (SLEEPCID<<16)+(OWNERMCU<<24)+ (0x40<<8)+1;
41042 + RTUSBWriteMACRegister(pAd, 0x7010, value);
41043 + RTUSBWriteMACRegister(pAd, 0x404, 0x30);
41044 + //RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS);
41045 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("Sleep Mailbox testvalue %x\n", value));
41050 + ========================================================================
41052 + Routine Description:
41062 + ========================================================================
41064 +NTSTATUS RTUSBWakeUp(
41065 + IN PRTMP_ADAPTER pAd)
41069 + Status = RTUSB_VendorRequest(
41071 + USBD_TRANSFER_DIRECTION_OUT,
41072 + DEVICE_VENDOR_REQUEST_OUT,
41083 + ========================================================================
41085 + Routine Description:
41095 + ========================================================================
41097 +VOID RTUSBInitializeCmdQ(
41100 + cmdq->head = NULL;
41101 + cmdq->tail = NULL;
41103 + cmdq->CmdQState = RT2870_THREAD_INITED;
41107 + ========================================================================
41109 + Routine Description:
41119 + ========================================================================
41121 +NDIS_STATUS RTUSBEnqueueCmdFromNdis(
41122 + IN PRTMP_ADAPTER pAd,
41124 + IN BOOLEAN SetInformation,
41125 + IN PVOID pInformationBuffer,
41126 + IN UINT32 InformationBufferLength)
41128 + NDIS_STATUS status;
41129 + PCmdQElmt cmdqelmt = NULL;
41130 + POS_COOKIE pObj = (POS_COOKIE) pAd->OS_Cookie;
41133 + if (pObj->RTUSBCmdThr_pid < 0)
41134 + return (NDIS_STATUS_RESOURCES);
41136 + status = RTMPAllocateMemory((PVOID *)&cmdqelmt, sizeof(CmdQElmt));
41137 + if ((status != NDIS_STATUS_SUCCESS) || (cmdqelmt == NULL))
41138 + return (NDIS_STATUS_RESOURCES);
41140 + cmdqelmt->buffer = NULL;
41141 + if (pInformationBuffer != NULL)
41143 + status = RTMPAllocateMemory((PVOID *)&cmdqelmt->buffer, InformationBufferLength);
41144 + if ((status != NDIS_STATUS_SUCCESS) || (cmdqelmt->buffer == NULL))
41147 + return (NDIS_STATUS_RESOURCES);
41151 + NdisMoveMemory(cmdqelmt->buffer, pInformationBuffer, InformationBufferLength);
41152 + cmdqelmt->bufferlength = InformationBufferLength;
41156 + cmdqelmt->bufferlength = 0;
41158 + cmdqelmt->command = Oid;
41159 + cmdqelmt->CmdFromNdis = TRUE;
41160 + if (SetInformation == TRUE)
41161 + cmdqelmt->SetOperation = TRUE;
41163 + cmdqelmt->SetOperation = FALSE;
41165 + NdisAcquireSpinLock(&pAd->CmdQLock);
41166 + if (pAd->CmdQ.CmdQState & RT2870_THREAD_CAN_DO_INSERT)
41168 + EnqueueCmd((&pAd->CmdQ), cmdqelmt);
41169 + status = NDIS_STATUS_SUCCESS;
41173 + status = NDIS_STATUS_FAILURE;
41175 + NdisReleaseSpinLock(&pAd->CmdQLock);
41177 + if (status == NDIS_STATUS_FAILURE)
41179 + if (cmdqelmt->buffer)
41180 + NdisFreeMemory(cmdqelmt->buffer, cmdqelmt->bufferlength, 0);
41181 + NdisFreeMemory(cmdqelmt, sizeof(CmdQElmt), 0);
41187 + return(NDIS_STATUS_SUCCESS);
41191 + ========================================================================
41193 + Routine Description:
41203 + ========================================================================
41205 +NDIS_STATUS RTUSBEnqueueInternalCmd(
41206 + IN PRTMP_ADAPTER pAd,
41208 + IN PVOID pInformationBuffer,
41209 + IN UINT32 InformationBufferLength)
41211 + NDIS_STATUS status;
41212 + PCmdQElmt cmdqelmt = NULL;
41215 + status = RTMPAllocateMemory((PVOID *)&cmdqelmt, sizeof(CmdQElmt));
41216 + if ((status != NDIS_STATUS_SUCCESS) || (cmdqelmt == NULL))
41217 + return (NDIS_STATUS_RESOURCES);
41218 + NdisZeroMemory(cmdqelmt, sizeof(CmdQElmt));
41220 + if(InformationBufferLength > 0)
41222 + status = RTMPAllocateMemory((PVOID *)&cmdqelmt->buffer, InformationBufferLength);
41223 + if ((status != NDIS_STATUS_SUCCESS) || (cmdqelmt->buffer == NULL))
41225 + NdisFreeMemory(cmdqelmt, sizeof(CmdQElmt), 0);
41226 + return (NDIS_STATUS_RESOURCES);
41230 + NdisMoveMemory(cmdqelmt->buffer, pInformationBuffer, InformationBufferLength);
41231 + cmdqelmt->bufferlength = InformationBufferLength;
41236 + cmdqelmt->buffer = NULL;
41237 + cmdqelmt->bufferlength = 0;
41240 + cmdqelmt->command = Oid;
41241 + cmdqelmt->CmdFromNdis = FALSE;
41243 + if (cmdqelmt != NULL)
41245 + NdisAcquireSpinLock(&pAd->CmdQLock);
41246 + if (pAd->CmdQ.CmdQState & RT2870_THREAD_CAN_DO_INSERT)
41248 + EnqueueCmd((&pAd->CmdQ), cmdqelmt);
41249 + status = NDIS_STATUS_SUCCESS;
41253 + status = NDIS_STATUS_FAILURE;
41255 + NdisReleaseSpinLock(&pAd->CmdQLock);
41257 + if (status == NDIS_STATUS_FAILURE)
41259 + if (cmdqelmt->buffer)
41260 + NdisFreeMemory(cmdqelmt->buffer, cmdqelmt->bufferlength, 0);
41261 + NdisFreeMemory(cmdqelmt, sizeof(CmdQElmt), 0);
41266 + return(NDIS_STATUS_SUCCESS);
41270 + ========================================================================
41272 + Routine Description:
41282 + ========================================================================
41284 +VOID RTUSBDequeueCmd(
41286 + OUT PCmdQElmt *pcmdqelmt)
41288 + *pcmdqelmt = cmdq->head;
41290 + if (*pcmdqelmt != NULL)
41292 + cmdq->head = cmdq->head->next;
41294 + if (cmdq->size == 0)
41295 + cmdq->tail = NULL;
41300 + ========================================================================
41301 + usb_control_msg - Builds a control urb, sends it off and waits for completion
41302 + @dev: pointer to the usb device to send the message to
41303 + @pipe: endpoint "pipe" to send the message to
41304 + @request: USB message request value
41305 + @requesttype: USB message request type value
41306 + @value: USB message value
41307 + @index: USB message index value
41308 + @data: pointer to the data to send
41309 + @size: length in bytes of the data to send
41310 + @timeout: time in jiffies to wait for the message to complete before
41311 + timing out (if 0 the wait is forever)
41312 + Context: !in_interrupt ()
41314 + This function sends a simple control message to a specified endpoint
41315 + and waits for the message to complete, or timeout.
41316 + If successful, it returns the number of bytes transferred, otherwise a negative error number.
41318 + Don't use this function from within an interrupt context, like a
41319 + bottom half handler. If you need an asynchronous message, or need to send
41320 + a message from within interrupt context, use usb_submit_urb()
41321 + If a thread in your driver uses this call, make sure your disconnect()
41322 + method can wait for it to complete. Since you don't have a handle on
41323 + the URB used, you can't cancel the request.
41326 + Routine Description:
41334 + ========================================================================
41336 +NTSTATUS RTUSB_VendorRequest(
41337 + IN PRTMP_ADAPTER pAd,
41338 + IN UINT32 TransferFlags,
41339 + IN UCHAR RequestType,
41340 + IN UCHAR Request,
41343 + IN PVOID TransferBuffer,
41344 + IN UINT32 TransferBufferLength)
41347 + POS_COOKIE pObj = (POS_COOKIE) pAd->OS_Cookie;
41349 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST))
41351 + DBGPRINT(RT_DEBUG_ERROR, ("device disconnected\n"));
41354 + else if (in_interrupt())
41356 + DBGPRINT(RT_DEBUG_ERROR, ("in_interrupt, RTUSB_VendorRequest Request%02x Value%04x Offset%04x\n",Request,Value,Index));
41362 +#define MAX_RETRY_COUNT 10
41364 + int retryCount = 0;
41365 + void *tmpBuf = TransferBuffer;
41367 + // Acquire Control token
41368 +#ifdef INF_AMAZON_SE
41369 + ret = down_interruptible(&(pAd->UsbVendorReq_semaphore));
41370 + if (pAd->UsbVendorReqBuf)
41372 + ASSERT(TransferBufferLength <MAX_PARAM_BUFFER_SIZE);
41374 + tmpBuf = (void *)pAd->UsbVendorReqBuf;
41375 + NdisZeroMemory(pAd->UsbVendorReqBuf, TransferBufferLength);
41377 + if (RequestType == DEVICE_VENDOR_REQUEST_OUT)
41378 + NdisMoveMemory(tmpBuf, TransferBuffer, TransferBufferLength);
41380 +#endif // INF_AMAZON_SE //
41382 + if( RequestType == DEVICE_VENDOR_REQUEST_OUT)
41383 + ret=usb_control_msg(pObj->pUsb_Dev, usb_sndctrlpipe( pObj->pUsb_Dev, 0 ), Request, RequestType, Value,Index, tmpBuf, TransferBufferLength, CONTROL_TIMEOUT_JIFFIES);
41384 + else if(RequestType == DEVICE_VENDOR_REQUEST_IN)
41385 + ret=usb_control_msg(pObj->pUsb_Dev, usb_rcvctrlpipe( pObj->pUsb_Dev, 0 ), Request, RequestType, Value,Index, tmpBuf, TransferBufferLength, CONTROL_TIMEOUT_JIFFIES);
41388 + DBGPRINT(RT_DEBUG_ERROR, ("vendor request direction is failed\n"));
41395 + RTMPusecDelay(5000);
41397 + } while((ret < 0) && (retryCount < MAX_RETRY_COUNT));
41399 +#ifdef INF_AMAZON_SE
41400 + if ((pAd->UsbVendorReqBuf) && (RequestType == DEVICE_VENDOR_REQUEST_IN))
41401 + NdisMoveMemory(TransferBuffer, tmpBuf, TransferBufferLength);
41402 + up(&(pAd->UsbVendorReq_semaphore));
41403 +#endif // INF_AMAZON_SE //
41406 +// DBGPRINT(RT_DEBUG_ERROR, ("USBVendorRequest failed ret=%d \n",ret));
41407 + DBGPRINT(RT_DEBUG_ERROR, ("RTUSB_VendorRequest failed(%d),TxFlags=0x%x, ReqType=%s, Req=0x%x, Index=0x%x\n",
41408 + ret, TransferFlags, (RequestType == DEVICE_VENDOR_REQUEST_OUT ? "OUT" : "IN"), Request, Index));
41409 + if (Request == 0x2)
41410 + DBGPRINT(RT_DEBUG_ERROR, ("\tRequest Value=0x%04x!\n", Value));
41412 + if ((TransferBuffer!= NULL) && (TransferBufferLength > 0))
41413 + hex_dump("Failed TransferBuffer value", TransferBuffer, TransferBufferLength);
41420 + ========================================================================
41422 + Routine Description:
41423 + Creates an IRP to submite an IOCTL_INTERNAL_USB_RESET_PORT
41424 + synchronously. Callers of this function must be running at
41433 + ========================================================================
41435 +NTSTATUS RTUSB_ResetDevice(
41436 + IN PRTMP_ADAPTER pAd)
41438 + NTSTATUS Status = TRUE;
41440 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("--->USB_ResetDevice\n"));
41441 + //RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_RESET_IN_PROGRESS);
41446 + IN PRTMP_ADAPTER pAd)
41448 + PCmdQElmt cmdqelmt;
41450 + NDIS_STATUS NdisStatus = NDIS_STATUS_SUCCESS;
41452 + NTSTATUS ntStatus;
41453 +// unsigned long IrqFlags;
41455 + while (pAd->CmdQ.size > 0)
41457 + NdisStatus = NDIS_STATUS_SUCCESS;
41459 + NdisAcquireSpinLock(&pAd->CmdQLock);
41460 + RTUSBDequeueCmd(&pAd->CmdQ, &cmdqelmt);
41461 + NdisReleaseSpinLock(&pAd->CmdQLock);
41463 + if (cmdqelmt == NULL)
41466 + pData = cmdqelmt->buffer;
41468 + if(!(RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST) || RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS)))
41470 + switch (cmdqelmt->command)
41472 + case CMDTHREAD_CHECK_GPIO:
41474 +#ifdef CONFIG_STA_SUPPORT
41476 +#endif // CONFIG_STA_SUPPORT //
41480 + DBGPRINT(RT_DEBUG_TRACE, ("The driver is in ATE mode now\n"));
41483 +#endif // RALINK_ATE //
41485 +#ifdef CONFIG_STA_SUPPORT
41488 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
41490 + // Read GPIO pin2 as Hardware controlled radio state
41492 + RTUSBReadMACRegister( pAd, GPIO_CTRL_CFG, &data);
41496 + pAd->StaCfg.bHwRadio = TRUE;
41500 + pAd->StaCfg.bHwRadio = FALSE;
41503 + if(pAd->StaCfg.bRadio != (pAd->StaCfg.bHwRadio && pAd->StaCfg.bSwRadio))
41505 + pAd->StaCfg.bRadio = (pAd->StaCfg.bHwRadio && pAd->StaCfg.bSwRadio);
41506 + if(pAd->StaCfg.bRadio == TRUE)
41508 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("!!! Radio On !!!\n"));
41510 + MlmeRadioOn(pAd);
41511 + // Update extra information
41512 + pAd->ExtraInfo = EXTRA_INFO_CLEAR;
41516 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("!!! Radio Off !!!\n"));
41518 + MlmeRadioOff(pAd);
41519 + // Update extra information
41520 + pAd->ExtraInfo = HW_RADIO_OFF;
41524 +#endif // CONFIG_STA_SUPPORT //
41528 +#ifdef CONFIG_STA_SUPPORT
41529 + case CMDTHREAD_QKERIODIC_EXECUT:
41531 + StaQuickResponeForRateUpExec(NULL, pAd, NULL, NULL);
41534 +#endif // CONFIG_STA_SUPPORT //
41536 + case CMDTHREAD_RESET_BULK_OUT:
41541 + PHT_TX_CONTEXT pHTTXContext;
41542 +// RTMP_TX_RING *pTxRing;
41543 + unsigned long IrqFlags;
41545 + PTX_CONTEXT pNullContext = &(pAd->NullContext);
41546 +#endif // RALINK_ATE //
41547 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("CmdThread : CMDTHREAD_RESET_BULK_OUT(ResetPipeid=0x%0x)===>\n", pAd->bulkResetPipeid));
41548 + // All transfers must be aborted or cancelled before attempting to reset the pipe.
41549 + //RTUSBCancelPendingBulkOutIRP(pAd);
41550 + // Wait 10ms to let previous packet that are already in HW FIFO to clear. by MAXLEE 12-25-2007
41554 + RTUSBReadMACRegister(pAd, TXRXQ_PCNT, &MACValue);
41555 + if ((MACValue & 0xf00000/*0x800000*/) == 0)
41558 + RTMPusecDelay(10000);
41559 + }while(Index < 100);
41561 + RTUSBReadMACRegister(pAd, USB_DMA_CFG, &MACValue);
41562 + // To prevent Read Register error, we 2nd check the validity.
41563 + if ((MACValue & 0xc00000) == 0)
41564 + RTUSBReadMACRegister(pAd, USB_DMA_CFG, &MACValue);
41565 + // To prevent Read Register error, we 3rd check the validity.
41566 + if ((MACValue & 0xc00000) == 0)
41567 + RTUSBReadMACRegister(pAd, USB_DMA_CFG, &MACValue);
41568 + MACValue |= 0x80000;
41569 + RTUSBWriteMACRegister(pAd, USB_DMA_CFG, MACValue);
41571 + // Wait 1ms to prevent next URB to bulkout before HW reset. by MAXLEE 12-25-2007
41572 + RTMPusecDelay(1000);
41574 + MACValue &= (~0x80000);
41575 + RTUSBWriteMACRegister(pAd, USB_DMA_CFG, MACValue);
41576 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("\tSet 0x2a0 bit19. Clear USB DMA TX path\n"));
41578 + // Wait 5ms to prevent next URB to bulkout before HW reset. by MAXLEE 12-25-2007
41579 + //RTMPusecDelay(5000);
41581 + if ((pAd->bulkResetPipeid & BULKOUT_MGMT_RESET_FLAG) == BULKOUT_MGMT_RESET_FLAG)
41583 + RTMP_CLEAR_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET);
41584 + if (pAd->MgmtRing.TxSwFreeIdx < MGMT_RING_SIZE /* pMLMEContext->bWaitingBulkOut == TRUE */)
41586 + RTUSB_SET_BULK_FLAG(pAd, fRTUSB_BULK_OUT_MLME);
41588 + RTUSBKickBulkOut(pAd);
41590 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("\tTX MGMT RECOVER Done!\n"));
41594 + pHTTXContext = &(pAd->TxContext[pAd->bulkResetPipeid]);
41595 + //NdisAcquireSpinLock(&pAd->BulkOutLock[pAd->bulkResetPipeid]);
41596 + RTMP_INT_LOCK(&pAd->BulkOutLock[pAd->bulkResetPipeid], IrqFlags);
41597 + if ( pAd->BulkOutPending[pAd->bulkResetPipeid] == FALSE)
41599 + pAd->BulkOutPending[pAd->bulkResetPipeid] = TRUE;
41600 + pHTTXContext->IRPPending = TRUE;
41601 + pAd->watchDogTxPendingCnt[pAd->bulkResetPipeid] = 1;
41603 + // no matter what, clean the flag
41604 + RTMP_CLEAR_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET);
41606 + //NdisReleaseSpinLock(&pAd->BulkOutLock[pAd->bulkResetPipeid]);
41607 + RTMP_INT_UNLOCK(&pAd->BulkOutLock[pAd->bulkResetPipeid], IrqFlags);
41608 +/*-----------------------------------------------------------------------------------------------*/
41612 + pNullContext->IRPPending = TRUE;
41614 + // If driver is still in ATE TXFRAME mode,
41615 + // keep on transmitting ATE frames.
41617 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("pAd->ate.Mode == %d\npAd->ContinBulkOut == %d\npAd->BulkOutRemained == %d\n", pAd->ate.Mode, pAd->ContinBulkOut, atomic_read(&pAd->BulkOutRemained)));
41618 + if((pAd->ate.Mode == ATE_TXFRAME) && ((pAd->ContinBulkOut == TRUE) || (atomic_read(&pAd->BulkOutRemained) > 0)))
41620 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("After CMDTHREAD_RESET_BULK_OUT, continue to bulk out frames !\n"));
41622 + // Init Tx context descriptor
41623 + RTUSBInitTxDesc(pAd, pNullContext, 0/* pAd->bulkResetPipeid */, (usb_complete_t)ATE_RTUSBBulkOutDataPacketComplete);
41625 + if((ret = RTUSB_SUBMIT_URB(pNullContext->pUrb))!=0)
41627 + DBGPRINT(RT_DEBUG_ERROR, ("ATE_RTUSBBulkOutDataPacket: Submit Tx URB failed %d\n", ret));
41630 + pAd->BulkOutReq++;
41634 +#endif // RALINK_ATE //
41635 +/*-----------------------------------------------------------------------------------------------*/
41637 + RTUSBInitHTTxDesc(pAd, pHTTXContext, pAd->bulkResetPipeid, pHTTXContext->BulkOutSize, (usb_complete_t)RTUSBBulkOutDataPacketComplete);
41639 + if((ret = RTUSB_SUBMIT_URB(pHTTXContext->pUrb))!=0)
41641 + RTMP_INT_LOCK(&pAd->BulkOutLock[pAd->bulkResetPipeid], IrqFlags);
41642 + pAd->BulkOutPending[pAd->bulkResetPipeid] = FALSE;
41643 + pHTTXContext->IRPPending = FALSE;
41644 + pAd->watchDogTxPendingCnt[pAd->bulkResetPipeid] = 0;
41645 + RTMP_INT_UNLOCK(&pAd->BulkOutLock[pAd->bulkResetPipeid], IrqFlags);
41647 + DBGPRINT(RT_DEBUG_ERROR, ("CmdThread : CMDTHREAD_RESET_BULK_OUT: Submit Tx URB failed %d\n", ret));
41651 + RTMP_IRQ_LOCK(&pAd->BulkOutLock[pAd->bulkResetPipeid], IrqFlags);
41652 + DBGPRINT_RAW(RT_DEBUG_TRACE,("\tCMDTHREAD_RESET_BULK_OUT: TxContext[%d]:CWPos=%ld, NBPos=%ld, ENBPos=%ld, bCopy=%d, pending=%d!\n",
41653 + pAd->bulkResetPipeid, pHTTXContext->CurWritePosition, pHTTXContext->NextBulkOutPosition,
41654 + pHTTXContext->ENextBulkOutPosition, pHTTXContext->bCopySavePad, pAd->BulkOutPending[pAd->bulkResetPipeid]));
41655 + DBGPRINT_RAW(RT_DEBUG_TRACE,("\t\tBulkOut Req=0x%lx, Complete=0x%lx, Other=0x%lx\n",
41656 + pAd->BulkOutReq, pAd->BulkOutComplete, pAd->BulkOutCompleteOther));
41657 + RTMP_IRQ_UNLOCK(&pAd->BulkOutLock[pAd->bulkResetPipeid], IrqFlags);
41658 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("\tCMDTHREAD_RESET_BULK_OUT: Submit Tx DATA URB for failed BulkReq(0x%lx) Done, status=%d!\n", pAd->bulkResetReq[pAd->bulkResetPipeid], pHTTXContext->pUrb->status));
41665 + //NdisReleaseSpinLock(&pAd->BulkOutLock[pAd->bulkResetPipeid]);
41666 + //RTMP_INT_UNLOCK(&pAd->BulkOutLock[pAd->bulkResetPipeid], IrqFlags);
41668 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("CmdThread : TX DATA RECOVER FAIL for BulkReq(0x%lx) because BulkOutPending[%d] is TRUE!\n", pAd->bulkResetReq[pAd->bulkResetPipeid], pAd->bulkResetPipeid));
41669 + if (pAd->bulkResetPipeid == 0)
41671 + UCHAR pendingContext = 0;
41672 + PHT_TX_CONTEXT pHTTXContext = (PHT_TX_CONTEXT)(&pAd->TxContext[pAd->bulkResetPipeid ]);
41673 + PTX_CONTEXT pMLMEContext = (PTX_CONTEXT)(pAd->MgmtRing.Cell[pAd->MgmtRing.TxDmaIdx].AllocVa);
41674 + PTX_CONTEXT pNULLContext = (PTX_CONTEXT)(&pAd->PsPollContext);
41675 + PTX_CONTEXT pPsPollContext = (PTX_CONTEXT)(&pAd->NullContext);
41677 + if (pHTTXContext->IRPPending)
41678 + pendingContext |= 1;
41679 + else if (pMLMEContext->IRPPending)
41680 + pendingContext |= 2;
41681 + else if (pNULLContext->IRPPending)
41682 + pendingContext |= 4;
41683 + else if (pPsPollContext->IRPPending)
41684 + pendingContext |= 8;
41686 + pendingContext = 0;
41688 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("\tTX Occupied by %d!\n", pendingContext));
41691 + // no matter what, clean the flag
41692 + RTMP_CLEAR_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET);
41694 + RTMP_INT_UNLOCK(&pAd->BulkOutLock[pAd->bulkResetPipeid], IrqFlags);
41696 + RTUSB_SET_BULK_FLAG(pAd, (fRTUSB_BULK_OUT_DATA_NORMAL << pAd->bulkResetPipeid));
41699 + RTMPDeQueuePacket(pAd, FALSE, NUM_OF_TX_RING, MAX_TX_PROCESS);
41700 + //RTUSBKickBulkOut(pAd);
41705 + // Don't cancel BULKIN.
41706 + while ((atomic_read(&pAd->PendingRx) > 0) &&
41707 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)))
41709 + if (atomic_read(&pAd->PendingRx) > 0)
41711 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("BulkIn IRP Pending!!cancel it!\n"));
41712 + RTUSBCancelPendingBulkInIRP(pAd);
41714 + RTMPusecDelay(100000);
41717 + if ((atomic_read(&pAd->PendingRx) == 0) && (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS)))
41720 + RTUSBRxPacket(pAd);
41721 + pAd->NextRxBulkInReadIndex = 0; // Next Rx Read index
41722 + pAd->NextRxBulkInIndex = 0; // Rx Bulk pointer
41723 + for (i = 0; i < (RX_RING_SIZE); i++)
41725 + PRX_CONTEXT pRxContext = &(pAd->RxContext[i]);
41727 + pRxContext->pAd = pAd;
41728 + pRxContext->InUse = FALSE;
41729 + pRxContext->IRPPending = FALSE;
41730 + pRxContext->Readable = FALSE;
41731 + pRxContext->ReorderInUse = FALSE;
41734 + RTUSBBulkReceive(pAd);
41735 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("RTUSBBulkReceive\n"));
41737 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("CmdThread : CMDTHREAD_RESET_BULK_OUT<===\n"));
41740 + case CMDTHREAD_RESET_BULK_IN:
41741 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("CmdThread : CMDTHREAD_RESET_BULK_IN === >\n"));
41743 + // All transfers must be aborted or cancelled before attempting to reset the pipe.
41746 +/*-----------------------------------------------------------------------------------------------*/
41750 + if((pAd->PendingRx > 0) && (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)))
41752 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("ATE : BulkIn IRP Pending!!!\n"));
41753 + ATE_RTUSBCancelPendingBulkInIRP(pAd);
41754 + RTMPusecDelay(100000);
41755 + pAd->PendingRx = 0;
41759 +#endif // RALINK_ATE //
41760 +/*-----------------------------------------------------------------------------------------------*/
41762 + //while ((atomic_read(&pAd->PendingRx) > 0) && (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)))
41763 + if((pAd->PendingRx > 0) && (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)))
41765 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("BulkIn IRP Pending!!!\n"));
41766 + RTUSBCancelPendingBulkInIRP(pAd);
41767 + RTMPusecDelay(100000);
41768 + pAd->PendingRx = 0;
41772 + // Wait 10ms before reading register.
41773 + RTMPusecDelay(10000);
41774 + ntStatus = RTUSBReadMACRegister(pAd, MAC_CSR0, &MACValue);
41776 + if ((NT_SUCCESS(ntStatus) == TRUE) &&
41777 + (!(RTMP_TEST_FLAG(pAd, (fRTMP_ADAPTER_RESET_IN_PROGRESS | fRTMP_ADAPTER_RADIO_OFF |
41778 + fRTMP_ADAPTER_HALT_IN_PROGRESS | fRTMP_ADAPTER_NIC_NOT_EXIST)))))
41782 + if (RTMP_TEST_FLAG(pAd, (fRTMP_ADAPTER_RESET_IN_PROGRESS | fRTMP_ADAPTER_RADIO_OFF |
41783 + fRTMP_ADAPTER_HALT_IN_PROGRESS | fRTMP_ADAPTER_NIC_NOT_EXIST)))
41785 + pAd->NextRxBulkInPosition = pAd->RxContext[pAd->NextRxBulkInIndex].BulkInOffset;
41786 + DBGPRINT(RT_DEBUG_TRACE, ("BULK_IN_RESET: NBIIdx=0x%x,NBIRIdx=0x%x, BIRPos=0x%lx. BIReq=x%lx, BIComplete=0x%lx, BICFail0x%lx\n",
41787 + pAd->NextRxBulkInIndex, pAd->NextRxBulkInReadIndex, pAd->NextRxBulkInPosition, pAd->BulkInReq, pAd->BulkInComplete, pAd->BulkInCompleteFail));
41788 + for (i = 0; i < RX_RING_SIZE; i++)
41790 + DBGPRINT(RT_DEBUG_TRACE, ("\tRxContext[%d]: IRPPending=%d, InUse=%d, Readable=%d!\n"
41791 + , i, pAd->RxContext[i].IRPPending, pAd->RxContext[i].InUse, pAd->RxContext[i].Readable));
41795 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("==========================================\n"));
41797 + pAd->NextRxBulkInReadIndex = 0; // Next Rx Read index
41798 + pAd->NextRxBulkInIndex = 0; // Rx Bulk pointer
41799 + for (i = 0; i < (RX_RING_SIZE); i++)
41801 + PRX_CONTEXT pRxContext = &(pAd->RxContext[i]);
41803 + pRxContext->pAd = pAd;
41804 + pRxContext->InUse = FALSE;
41805 + pRxContext->IRPPending = FALSE;
41806 + pRxContext->Readable = FALSE;
41807 + pRxContext->ReorderInUse = FALSE;
41810 + RTMP_CLEAR_FLAG(pAd, fRTMP_ADAPTER_BULKIN_RESET);
41811 + for (i = 0; i < pAd->CommonCfg.NumOfBulkInIRP; i++)
41813 + //RTUSBBulkReceive(pAd);
41814 + PRX_CONTEXT pRxContext;
41817 + unsigned long IrqFlags;
41820 + RTMP_IRQ_LOCK(&pAd->BulkInLock, IrqFlags);
41821 + pRxContext = &(pAd->RxContext[pAd->NextRxBulkInIndex]);
41822 + if ((pAd->PendingRx > 0) || (pRxContext->Readable == TRUE) || (pRxContext->InUse == TRUE))
41824 + RTMP_IRQ_UNLOCK(&pAd->BulkInLock, IrqFlags);
41827 + pRxContext->InUse = TRUE;
41828 + pRxContext->IRPPending = TRUE;
41829 + pAd->PendingRx++;
41830 + pAd->BulkInReq++;
41831 + RTMP_IRQ_UNLOCK(&pAd->BulkInLock, IrqFlags);
41833 + // Init Rx context descriptor
41834 + RTUSBInitRxDesc(pAd, pRxContext);
41835 + pUrb = pRxContext->pUrb;
41836 + if ((ret = RTUSB_SUBMIT_URB(pUrb))!=0)
41839 + RTMP_IRQ_LOCK(&pAd->BulkInLock, IrqFlags);
41840 + pRxContext->InUse = FALSE;
41841 + pRxContext->IRPPending = FALSE;
41842 + pAd->PendingRx--;
41843 + pAd->BulkInReq--;
41844 + RTMP_IRQ_UNLOCK(&pAd->BulkInLock, IrqFlags);
41845 + DBGPRINT(RT_DEBUG_ERROR, ("CMDTHREAD_RESET_BULK_IN: Submit Rx URB failed(%d), status=%d\n", ret, pUrb->status));
41849 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("CMDTHREAD_RESET_BULK_IN: Submit Rx URB Done, status=%d!\n", pUrb->status));
41850 + ASSERT((pRxContext->InUse == pRxContext->IRPPending));
41857 + // Card must be removed
41858 + if (NT_SUCCESS(ntStatus) != TRUE)
41860 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST);
41861 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("CMDTHREAD_RESET_BULK_IN: Read Register Failed!Card must be removed!!\n\n"));
41865 + DBGPRINT_RAW(RT_DEBUG_ERROR, ("CMDTHREAD_RESET_BULK_IN: Cannot do bulk in because flags(0x%lx) on !\n", pAd->Flags));
41869 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("CmdThread : CMDTHREAD_RESET_BULK_IN <===\n"));
41872 + case CMDTHREAD_SET_ASIC_WCID:
41874 + RT_SET_ASIC_WCID SetAsicWcid;
41876 + UINT32 MACValue, MACRValue = 0;
41877 + SetAsicWcid = *((PRT_SET_ASIC_WCID)(pData));
41879 + if (SetAsicWcid.WCID >= MAX_LEN_OF_MAC_TABLE)
41882 + offset = MAC_WCID_BASE + ((UCHAR)SetAsicWcid.WCID)*HW_WCID_ENTRY_SIZE;
41884 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("CmdThread : CMDTHREAD_SET_ASIC_WCID : WCID = %ld, SetTid = %lx, DeleteTid = %lx.\n", SetAsicWcid.WCID, SetAsicWcid.SetTid, SetAsicWcid.DeleteTid));
41885 + MACValue = (pAd->MacTab.Content[SetAsicWcid.WCID].Addr[3]<<24)+(pAd->MacTab.Content[SetAsicWcid.WCID].Addr[2]<<16)+(pAd->MacTab.Content[SetAsicWcid.WCID].Addr[1]<<8)+(pAd->MacTab.Content[SetAsicWcid.WCID].Addr[0]);
41886 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("1-MACValue= %x,\n", MACValue));
41887 + RTUSBWriteMACRegister(pAd, offset, MACValue);
41889 + RTUSBReadMACRegister(pAd, offset+4, &MACRValue);
41890 + if ( SetAsicWcid.DeleteTid != 0xffffffff)
41891 + MACRValue &= (~SetAsicWcid.DeleteTid);
41892 + if (SetAsicWcid.SetTid != 0xffffffff)
41893 + MACRValue |= (SetAsicWcid.SetTid);
41894 + MACRValue &= 0xffff0000;
41896 + MACValue = (pAd->MacTab.Content[SetAsicWcid.WCID].Addr[5]<<8)+pAd->MacTab.Content[SetAsicWcid.WCID].Addr[4];
41897 + MACValue |= MACRValue;
41898 + RTUSBWriteMACRegister(pAd, offset+4, MACValue);
41900 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("2-MACValue= %x,\n", MACValue));
41904 + case CMDTHREAD_SET_ASIC_WCID_CIPHER:
41906 +#ifdef CONFIG_STA_SUPPORT
41907 + RT_SET_ASIC_WCID_ATTRI SetAsicWcidAttri;
41909 + UINT32 MACRValue = 0;
41910 + SHAREDKEY_MODE_STRUC csr1;
41911 + SetAsicWcidAttri = *((PRT_SET_ASIC_WCID_ATTRI)(pData));
41913 + if (SetAsicWcidAttri.WCID >= MAX_LEN_OF_MAC_TABLE)
41916 + offset = MAC_WCID_ATTRIBUTE_BASE + ((UCHAR)SetAsicWcidAttri.WCID)*HW_WCID_ATTRI_SIZE;
41918 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("Cmd : CMDTHREAD_SET_ASIC_WCID_CIPHER : WCID = %ld, Cipher = %lx.\n", SetAsicWcidAttri.WCID, SetAsicWcidAttri.Cipher));
41920 + RTUSBReadMACRegister(pAd, offset, &MACRValue);
41922 + MACRValue |= (((UCHAR)SetAsicWcidAttri.Cipher) << 1);
41924 + RTUSBWriteMACRegister(pAd, offset, MACRValue);
41925 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("2-offset = %x , MACValue= %x,\n", offset, MACRValue));
41927 + offset = PAIRWISE_IVEIV_TABLE_BASE + ((UCHAR)SetAsicWcidAttri.WCID)*HW_IVEIV_ENTRY_SIZE;
41929 + if ( (SetAsicWcidAttri.Cipher <= CIPHER_WEP128))
41930 + MACRValue |= ( pAd->StaCfg.DefaultKeyId << 30);
41932 + MACRValue |= (0x20000000);
41933 + RTUSBWriteMACRegister(pAd, offset, MACRValue);
41934 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("2-offset = %x , MACValue= %x,\n", offset, MACRValue));
41937 + // Update cipher algorithm. WSTA always use BSS0
41939 + // for adhoc mode only ,because wep status slow than add key, when use zero config
41940 + if (pAd->StaCfg.BssType == BSS_ADHOC )
41942 + offset = MAC_WCID_ATTRIBUTE_BASE;
41944 + RTUSBReadMACRegister(pAd, offset, &MACRValue);
41945 + MACRValue &= (~0xe);
41946 + MACRValue |= (((UCHAR)SetAsicWcidAttri.Cipher) << 1);
41948 + RTUSBWriteMACRegister(pAd, offset, MACRValue);
41950 + //Update group key cipher,,because wep status slow than add key, when use zero config
41951 + RTUSBReadMACRegister(pAd, SHARED_KEY_MODE_BASE+4*(0/2), &csr1.word);
41953 + csr1.field.Bss0Key0CipherAlg = SetAsicWcidAttri.Cipher;
41954 + csr1.field.Bss0Key1CipherAlg = SetAsicWcidAttri.Cipher;
41956 + RTUSBWriteMACRegister(pAd, SHARED_KEY_MODE_BASE+4*(0/2), csr1.word);
41958 +#endif // CONFIG_STA_SUPPORT //
41962 +//Benson modified for USB interface, avoid in interrupt when write key, 20080724 -->
41963 + case RT_CMD_SET_KEY_TABLE: //General call for AsicAddPairwiseKeyEntry()
41965 + RT_ADD_PAIRWISE_KEY_ENTRY KeyInfo;
41966 + KeyInfo = *((PRT_ADD_PAIRWISE_KEY_ENTRY)(pData));
41967 + AsicAddPairwiseKeyEntry(pAd,
41969 + (UCHAR)KeyInfo.MacTabMatchWCID,
41970 + &KeyInfo.CipherKey);
41973 + case RT_CMD_SET_RX_WCID_TABLE: //General call for RTMPAddWcidAttributeEntry()
41975 + PMAC_TABLE_ENTRY pEntry;
41980 + pEntry = (PMAC_TABLE_ENTRY)(pData);
41982 +#ifdef CONFIG_STA_SUPPORT
41983 +#ifdef QOS_DLS_SUPPORT
41985 + CipherAlg = pEntry->PairwiseKey.CipherAlg;
41987 +#endif // QOS_DLS_SUPPORT //
41988 +#endif // CONFIG_STA_SUPPORT //
41991 + RTMPAddWcidAttributeEntry(
41999 +//Benson modified for USB interface, avoid in interrupt when write key, 20080724 <--
42001 + case CMDTHREAD_SET_CLIENT_MAC_ENTRY:
42003 + MAC_TABLE_ENTRY *pEntry;
42004 + pEntry = (MAC_TABLE_ENTRY *)pData;
42007 +#ifdef CONFIG_STA_SUPPORT
42008 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
42010 + AsicRemovePairwiseKeyEntry(pAd, pEntry->apidx, (UCHAR)pEntry->Aid);
42011 + if ((pEntry->AuthMode <= Ndis802_11AuthModeAutoSwitch) && (pEntry->WepStatus == Ndis802_11Encryption1Enabled))
42016 + ptr = (PUCHAR) &uIV;
42017 + *(ptr + 3) = (pAd->StaCfg.DefaultKeyId << 6);
42018 + AsicUpdateWCIDIVEIV(pAd, pEntry->Aid, uIV, 0);
42019 + AsicUpdateWCIDAttribute(pAd, pEntry->Aid, BSS0, pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg, FALSE);
42021 + else if (pEntry->AuthMode == Ndis802_11AuthModeWPANone)
42026 + ptr = (PUCHAR) &uIV;
42027 + *(ptr + 3) = (pAd->StaCfg.DefaultKeyId << 6);
42028 + AsicUpdateWCIDIVEIV(pAd, pEntry->Aid, uIV, 0);
42029 + AsicUpdateWCIDAttribute(pAd, pEntry->Aid, BSS0, pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg, FALSE);
42034 + // Other case, disable engine.
42035 + // Don't worry WPA key, we will add WPA Key after 4-Way handshaking.
42038 + offset = MAC_WCID_ATTRIBUTE_BASE + (pEntry->Aid * HW_WCID_ATTRI_SIZE);
42039 + // RX_PKEY_MODE:0 for no security; RX_KEY_TAB:0 for shared key table; BSS_IDX:0
42040 + RTUSBWriteMACRegister(pAd, offset, 0);
42043 +#endif // CONFIG_STA_SUPPORT //
42045 + AsicUpdateRxWCIDTable(pAd, pEntry->Aid, pEntry->Addr);
42046 + printk("UpdateRxWCIDTable(): Aid=%d, Addr=%02x:%02x:%02x:%02x:%02x:%02x!\n", pEntry->Aid,
42047 + pEntry->Addr[0], pEntry->Addr[1], pEntry->Addr[2], pEntry->Addr[3], pEntry->Addr[4], pEntry->Addr[5]);
42051 +// add by johnli, fix "in_interrupt" error when call "MacTableDeleteEntry" in Rx tasklet
42052 + case CMDTHREAD_UPDATE_PROTECT:
42054 + AsicUpdateProtect(pAd, 0, (ALLN_SETPROTECT), TRUE, 0);
42059 + case OID_802_11_ADD_WEP:
42061 +#ifdef CONFIG_STA_SUPPORT
42064 + PNDIS_802_11_WEP pWepKey;
42066 + DBGPRINT(RT_DEBUG_TRACE, ("CmdThread::OID_802_11_ADD_WEP \n"));
42068 + pWepKey = (PNDIS_802_11_WEP)pData;
42069 + KeyIdx = pWepKey->KeyIndex & 0x0fffffff;
42071 + // it is a shared key
42072 + if ((KeyIdx >= 4) || ((pWepKey->KeyLength != 5) && (pWepKey->KeyLength != 13)))
42074 + NdisStatus = NDIS_STATUS_INVALID_DATA;
42075 + DBGPRINT(RT_DEBUG_ERROR, ("CmdThread::OID_802_11_ADD_WEP, INVALID_DATA!!\n"));
42080 + pAd->SharedKey[BSS0][KeyIdx].KeyLen = (UCHAR) pWepKey->KeyLength;
42081 + NdisMoveMemory(pAd->SharedKey[BSS0][KeyIdx].Key, &pWepKey->KeyMaterial, pWepKey->KeyLength);
42082 + CipherAlg = (pAd->SharedKey[BSS0][KeyIdx].KeyLen == 5)? CIPHER_WEP64 : CIPHER_WEP128;
42085 + // Change the WEP cipher to CKIP cipher if CKIP KP on.
42086 + // Funk UI or Meetinghouse UI will add ckip key from this path.
42089 + if (pAd->OpMode == OPMODE_STA)
42091 + pAd->MacTab.Content[BSSID_WCID].PairwiseKey.CipherAlg = pAd->SharedKey[BSS0][KeyIdx].CipherAlg;
42092 + pAd->MacTab.Content[BSSID_WCID].PairwiseKey.KeyLen = pAd->SharedKey[BSS0][KeyIdx].KeyLen;
42094 + pAd->SharedKey[BSS0][KeyIdx].CipherAlg = CipherAlg;
42095 + if (pWepKey->KeyIndex & 0x80000000)
42097 + // Default key for tx (shared key)
42099 + UINT32 WCIDAttri, Value;
42100 + USHORT offset, offset2;
42101 + NdisZeroMemory(IVEIV, 8);
42102 + pAd->StaCfg.DefaultKeyId = (UCHAR) KeyIdx;
42103 + // Add BSSID to WCTable. because this is Tx wep key.
42104 + // WCID Attribute UDF:3, BSSIdx:3, Alg:3, Keytable:1=PAIRWISE KEY, BSSIdx is 0
42105 + WCIDAttri = (CipherAlg<<1)|SHAREDKEYTABLE;
42107 + offset = MAC_WCID_ATTRIBUTE_BASE + (BSSID_WCID* HW_WCID_ATTRI_SIZE);
42108 + RTUSBWriteMACRegister(pAd, offset, WCIDAttri);
42110 + // Specify key index to find shared key.
42111 + IVEIV[3] = (UCHAR)(KeyIdx<< 6); //WEP Eiv bit off. groupkey index is not 0
42112 + offset = PAIRWISE_IVEIV_TABLE_BASE + (BSS0Mcast_WCID * HW_IVEIV_ENTRY_SIZE);
42113 + offset2 = PAIRWISE_IVEIV_TABLE_BASE + (BSSID_WCID* HW_IVEIV_ENTRY_SIZE);
42116 + Value = IVEIV[i];
42117 + Value += (IVEIV[i+1]<<8);
42118 + Value += (IVEIV[i+2]<<16);
42119 + Value += (IVEIV[i+3]<<24);
42120 + RTUSBWriteMACRegister(pAd, offset+i, Value);
42121 + RTUSBWriteMACRegister(pAd, offset2+i, Value);
42125 + // 2. WCID Attribute UDF:3, BSSIdx:3, Alg:3, Keytable:use share key, BSSIdx is 0
42126 + WCIDAttri = (pAd->SharedKey[BSS0][KeyIdx].CipherAlg<<1)|SHAREDKEYTABLE;
42127 + offset = MAC_WCID_ATTRIBUTE_BASE + (BSS0Mcast_WCID* HW_WCID_ATTRI_SIZE);
42128 + DBGPRINT(RT_DEBUG_TRACE, ("BSS0Mcast_WCID : offset = %x, WCIDAttri = %x\n", offset, WCIDAttri));
42129 + RTUSBWriteMACRegister(pAd, offset, WCIDAttri);
42132 + AsicAddSharedKeyEntry(pAd, BSS0, (UCHAR)KeyIdx, CipherAlg, pWepKey->KeyMaterial, NULL, NULL);
42133 + DBGPRINT(RT_DEBUG_TRACE, ("CmdThread::OID_802_11_ADD_WEP (KeyIdx=%d, Len=%d-byte)\n", KeyIdx, pWepKey->KeyLength));
42135 +#endif // CONFIG_STA_SUPPORT //
42139 + case CMDTHREAD_802_11_COUNTER_MEASURE:
42143 + DBGPRINT(RT_DEBUG_ERROR, ("--> Control Thread !! ERROR !! Unknown(cmdqelmt->command=0x%x) !! \n", cmdqelmt->command));
42148 + if (cmdqelmt->CmdFromNdis == TRUE)
42150 + if (cmdqelmt->buffer != NULL)
42151 + NdisFreeMemory(cmdqelmt->buffer, cmdqelmt->bufferlength, 0);
42153 + NdisFreeMemory(cmdqelmt, sizeof(CmdQElmt), 0);
42157 + if ((cmdqelmt->buffer != NULL) && (cmdqelmt->bufferlength != 0))
42158 + NdisFreeMemory(cmdqelmt->buffer, cmdqelmt->bufferlength, 0);
42160 + NdisFreeMemory(cmdqelmt, sizeof(CmdQElmt), 0);
42163 + } /* end of while */
42167 +++ b/drivers/staging/rt3070/common/spectrum.c
42170 + *************************************************************************
42171 + * Ralink Tech Inc.
42172 + * 5F., No.36, Taiyuan St., Jhubei City,
42173 + * Hsinchu County 302,
42176 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
42178 + * This program is free software; you can redistribute it and/or modify *
42179 + * it under the terms of the GNU General Public License as published by *
42180 + * the Free Software Foundation; either version 2 of the License, or *
42181 + * (at your option) any later version. *
42183 + * This program is distributed in the hope that it will be useful, *
42184 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
42185 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
42186 + * GNU General Public License for more details. *
42188 + * You should have received a copy of the GNU General Public License *
42189 + * along with this program; if not, write to the *
42190 + * Free Software Foundation, Inc., *
42191 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
42193 + *************************************************************************
42199 + Handle association related requests either from WSTA or from local MLME
42201 + Revision History:
42203 + --------- ---------- ----------------------------------------------
42204 + Fonchi Wu 2008 created for 802.11h
42207 +#include "../rt_config.h"
42208 +#include "../action.h"
42210 +VOID MeasureReqTabInit(
42211 + IN PRTMP_ADAPTER pAd)
42213 + NdisAllocateSpinLock(&pAd->CommonCfg.MeasureReqTabLock);
42215 + pAd->CommonCfg.pMeasureReqTab = kmalloc(sizeof(MEASURE_REQ_TAB), GFP_ATOMIC);
42216 + if (pAd->CommonCfg.pMeasureReqTab)
42217 + NdisZeroMemory(pAd->CommonCfg.pMeasureReqTab, sizeof(MEASURE_REQ_TAB));
42219 + DBGPRINT(RT_DEBUG_ERROR, ("%s Fail to alloc memory for pAd->CommonCfg.pMeasureReqTab.\n", __FUNCTION__));
42224 +VOID MeasureReqTabExit(
42225 + IN PRTMP_ADAPTER pAd)
42227 + NdisFreeSpinLock(pAd->CommonCfg.MeasureReqTabLock);
42229 + if (pAd->CommonCfg.pMeasureReqTab)
42230 + kfree(pAd->CommonCfg.pMeasureReqTab);
42231 + pAd->CommonCfg.pMeasureReqTab = NULL;
42236 +static PMEASURE_REQ_ENTRY MeasureReqLookUp(
42237 + IN PRTMP_ADAPTER pAd,
42238 + IN UINT8 DialogToken)
42241 + PMEASURE_REQ_TAB pTab = pAd->CommonCfg.pMeasureReqTab;
42242 + PMEASURE_REQ_ENTRY pEntry = NULL;
42243 + PMEASURE_REQ_ENTRY pPrevEntry = NULL;
42245 + if (pTab == NULL)
42247 + DBGPRINT(RT_DEBUG_ERROR, ("%s: pMeasureReqTab doesn't exist.\n", __FUNCTION__));
42251 + RTMP_SEM_LOCK(&pAd->CommonCfg.MeasureReqTabLock);
42253 + HashIdx = MQ_DIALOGTOKEN_HASH_INDEX(DialogToken);
42254 + pEntry = pTab->Hash[HashIdx];
42258 + if (pEntry->DialogToken == DialogToken)
42262 + pPrevEntry = pEntry;
42263 + pEntry = pEntry->pNext;
42267 + RTMP_SEM_UNLOCK(&pAd->CommonCfg.MeasureReqTabLock);
42272 +static PMEASURE_REQ_ENTRY MeasureReqInsert(
42273 + IN PRTMP_ADAPTER pAd,
42274 + IN UINT8 DialogToken)
42278 + PMEASURE_REQ_TAB pTab = pAd->CommonCfg.pMeasureReqTab;
42279 + PMEASURE_REQ_ENTRY pEntry = NULL, pCurrEntry;
42284 + DBGPRINT(RT_DEBUG_ERROR, ("%s: pMeasureReqTab doesn't exist.\n", __FUNCTION__));
42288 + pEntry = MeasureReqLookUp(pAd, DialogToken);
42289 + if (pEntry == NULL)
42291 + RTMP_SEM_LOCK(&pAd->CommonCfg.MeasureReqTabLock);
42292 + for (i = 0; i < MAX_MEASURE_REQ_TAB_SIZE; i++)
42294 + NdisGetSystemUpTime(&Now);
42295 + pEntry = &pTab->Content[i];
42297 + if ((pEntry->Valid == TRUE)
42298 + && RTMP_TIME_AFTER((unsigned long)Now, (unsigned long)(pEntry->lastTime + MQ_REQ_AGE_OUT)))
42300 + PMEASURE_REQ_ENTRY pPrevEntry = NULL;
42301 + ULONG HashIdx = MQ_DIALOGTOKEN_HASH_INDEX(pEntry->DialogToken);
42302 + PMEASURE_REQ_ENTRY pProbeEntry = pTab->Hash[HashIdx];
42304 + // update Hash list
42307 + if (pProbeEntry == pEntry)
42309 + if (pPrevEntry == NULL)
42311 + pTab->Hash[HashIdx] = pEntry->pNext;
42315 + pPrevEntry->pNext = pEntry->pNext;
42320 + pPrevEntry = pProbeEntry;
42321 + pProbeEntry = pProbeEntry->pNext;
42322 + } while (pProbeEntry);
42324 + NdisZeroMemory(pEntry, sizeof(MEASURE_REQ_ENTRY));
42330 + if (pEntry->Valid == FALSE)
42334 + if (i < MAX_MEASURE_REQ_TAB_SIZE)
42336 + NdisGetSystemUpTime(&Now);
42337 + pEntry->lastTime = Now;
42338 + pEntry->Valid = TRUE;
42339 + pEntry->DialogToken = DialogToken;
42345 + DBGPRINT(RT_DEBUG_ERROR, ("%s: pMeasureReqTab tab full.\n", __FUNCTION__));
42348 + // add this Neighbor entry into HASH table
42351 + HashIdx = MQ_DIALOGTOKEN_HASH_INDEX(DialogToken);
42352 + if (pTab->Hash[HashIdx] == NULL)
42354 + pTab->Hash[HashIdx] = pEntry;
42358 + pCurrEntry = pTab->Hash[HashIdx];
42359 + while (pCurrEntry->pNext != NULL)
42360 + pCurrEntry = pCurrEntry->pNext;
42361 + pCurrEntry->pNext = pEntry;
42365 + RTMP_SEM_UNLOCK(&pAd->CommonCfg.MeasureReqTabLock);
42371 +static VOID MeasureReqDelete(
42372 + IN PRTMP_ADAPTER pAd,
42373 + IN UINT8 DialogToken)
42375 + PMEASURE_REQ_TAB pTab = pAd->CommonCfg.pMeasureReqTab;
42376 + PMEASURE_REQ_ENTRY pEntry = NULL;
42380 + DBGPRINT(RT_DEBUG_ERROR, ("%s: pMeasureReqTab doesn't exist.\n", __FUNCTION__));
42384 + // if empty, return
42385 + if (pTab->Size == 0)
42387 + DBGPRINT(RT_DEBUG_ERROR, ("pMeasureReqTab empty.\n"));
42391 + pEntry = MeasureReqLookUp(pAd, DialogToken);
42392 + if (pEntry != NULL)
42394 + PMEASURE_REQ_ENTRY pPrevEntry = NULL;
42395 + ULONG HashIdx = MQ_DIALOGTOKEN_HASH_INDEX(pEntry->DialogToken);
42396 + PMEASURE_REQ_ENTRY pProbeEntry = pTab->Hash[HashIdx];
42398 + RTMP_SEM_LOCK(&pAd->CommonCfg.MeasureReqTabLock);
42399 + // update Hash list
42402 + if (pProbeEntry == pEntry)
42404 + if (pPrevEntry == NULL)
42406 + pTab->Hash[HashIdx] = pEntry->pNext;
42410 + pPrevEntry->pNext = pEntry->pNext;
42415 + pPrevEntry = pProbeEntry;
42416 + pProbeEntry = pProbeEntry->pNext;
42417 + } while (pProbeEntry);
42419 + NdisZeroMemory(pEntry, sizeof(MEASURE_REQ_ENTRY));
42422 + RTMP_SEM_UNLOCK(&pAd->CommonCfg.MeasureReqTabLock);
42428 +VOID TpcReqTabInit(
42429 + IN PRTMP_ADAPTER pAd)
42431 + NdisAllocateSpinLock(&pAd->CommonCfg.TpcReqTabLock);
42433 + pAd->CommonCfg.pTpcReqTab = kmalloc(sizeof(TPC_REQ_TAB), GFP_ATOMIC);
42434 + if (pAd->CommonCfg.pTpcReqTab)
42435 + NdisZeroMemory(pAd->CommonCfg.pTpcReqTab, sizeof(TPC_REQ_TAB));
42437 + DBGPRINT(RT_DEBUG_ERROR, ("%s Fail to alloc memory for pAd->CommonCfg.pTpcReqTab.\n", __FUNCTION__));
42442 +VOID TpcReqTabExit(
42443 + IN PRTMP_ADAPTER pAd)
42445 + NdisFreeSpinLock(pAd->CommonCfg.TpcReqTabLock);
42447 + if (pAd->CommonCfg.pTpcReqTab)
42448 + kfree(pAd->CommonCfg.pTpcReqTab);
42449 + pAd->CommonCfg.pTpcReqTab = NULL;
42454 +static PTPC_REQ_ENTRY TpcReqLookUp(
42455 + IN PRTMP_ADAPTER pAd,
42456 + IN UINT8 DialogToken)
42459 + PTPC_REQ_TAB pTab = pAd->CommonCfg.pTpcReqTab;
42460 + PTPC_REQ_ENTRY pEntry = NULL;
42461 + PTPC_REQ_ENTRY pPrevEntry = NULL;
42463 + if (pTab == NULL)
42465 + DBGPRINT(RT_DEBUG_ERROR, ("%s: pTpcReqTab doesn't exist.\n", __FUNCTION__));
42469 + RTMP_SEM_LOCK(&pAd->CommonCfg.TpcReqTabLock);
42471 + HashIdx = TPC_DIALOGTOKEN_HASH_INDEX(DialogToken);
42472 + pEntry = pTab->Hash[HashIdx];
42476 + if (pEntry->DialogToken == DialogToken)
42480 + pPrevEntry = pEntry;
42481 + pEntry = pEntry->pNext;
42485 + RTMP_SEM_UNLOCK(&pAd->CommonCfg.TpcReqTabLock);
42491 +static PTPC_REQ_ENTRY TpcReqInsert(
42492 + IN PRTMP_ADAPTER pAd,
42493 + IN UINT8 DialogToken)
42497 + PTPC_REQ_TAB pTab = pAd->CommonCfg.pTpcReqTab;
42498 + PTPC_REQ_ENTRY pEntry = NULL, pCurrEntry;
42503 + DBGPRINT(RT_DEBUG_ERROR, ("%s: pTpcReqTab doesn't exist.\n", __FUNCTION__));
42507 + pEntry = TpcReqLookUp(pAd, DialogToken);
42508 + if (pEntry == NULL)
42510 + RTMP_SEM_LOCK(&pAd->CommonCfg.TpcReqTabLock);
42511 + for (i = 0; i < MAX_TPC_REQ_TAB_SIZE; i++)
42513 + NdisGetSystemUpTime(&Now);
42514 + pEntry = &pTab->Content[i];
42516 + if ((pEntry->Valid == TRUE)
42517 + && RTMP_TIME_AFTER((unsigned long)Now, (unsigned long)(pEntry->lastTime + TPC_REQ_AGE_OUT)))
42519 + PTPC_REQ_ENTRY pPrevEntry = NULL;
42520 + ULONG HashIdx = TPC_DIALOGTOKEN_HASH_INDEX(pEntry->DialogToken);
42521 + PTPC_REQ_ENTRY pProbeEntry = pTab->Hash[HashIdx];
42523 + // update Hash list
42526 + if (pProbeEntry == pEntry)
42528 + if (pPrevEntry == NULL)
42530 + pTab->Hash[HashIdx] = pEntry->pNext;
42534 + pPrevEntry->pNext = pEntry->pNext;
42539 + pPrevEntry = pProbeEntry;
42540 + pProbeEntry = pProbeEntry->pNext;
42541 + } while (pProbeEntry);
42543 + NdisZeroMemory(pEntry, sizeof(TPC_REQ_ENTRY));
42549 + if (pEntry->Valid == FALSE)
42553 + if (i < MAX_TPC_REQ_TAB_SIZE)
42555 + NdisGetSystemUpTime(&Now);
42556 + pEntry->lastTime = Now;
42557 + pEntry->Valid = TRUE;
42558 + pEntry->DialogToken = DialogToken;
42564 + DBGPRINT(RT_DEBUG_ERROR, ("%s: pTpcReqTab tab full.\n", __FUNCTION__));
42567 + // add this Neighbor entry into HASH table
42570 + HashIdx = TPC_DIALOGTOKEN_HASH_INDEX(DialogToken);
42571 + if (pTab->Hash[HashIdx] == NULL)
42573 + pTab->Hash[HashIdx] = pEntry;
42577 + pCurrEntry = pTab->Hash[HashIdx];
42578 + while (pCurrEntry->pNext != NULL)
42579 + pCurrEntry = pCurrEntry->pNext;
42580 + pCurrEntry->pNext = pEntry;
42584 + RTMP_SEM_UNLOCK(&pAd->CommonCfg.TpcReqTabLock);
42590 +static VOID TpcReqDelete(
42591 + IN PRTMP_ADAPTER pAd,
42592 + IN UINT8 DialogToken)
42594 + PTPC_REQ_TAB pTab = pAd->CommonCfg.pTpcReqTab;
42595 + PTPC_REQ_ENTRY pEntry = NULL;
42599 + DBGPRINT(RT_DEBUG_ERROR, ("%s: pTpcReqTab doesn't exist.\n", __FUNCTION__));
42603 + // if empty, return
42604 + if (pTab->Size == 0)
42606 + DBGPRINT(RT_DEBUG_ERROR, ("pTpcReqTab empty.\n"));
42610 + pEntry = TpcReqLookUp(pAd, DialogToken);
42611 + if (pEntry != NULL)
42613 + PTPC_REQ_ENTRY pPrevEntry = NULL;
42614 + ULONG HashIdx = TPC_DIALOGTOKEN_HASH_INDEX(pEntry->DialogToken);
42615 + PTPC_REQ_ENTRY pProbeEntry = pTab->Hash[HashIdx];
42617 + RTMP_SEM_LOCK(&pAd->CommonCfg.TpcReqTabLock);
42618 + // update Hash list
42621 + if (pProbeEntry == pEntry)
42623 + if (pPrevEntry == NULL)
42625 + pTab->Hash[HashIdx] = pEntry->pNext;
42629 + pPrevEntry->pNext = pEntry->pNext;
42634 + pPrevEntry = pProbeEntry;
42635 + pProbeEntry = pProbeEntry->pNext;
42636 + } while (pProbeEntry);
42638 + NdisZeroMemory(pEntry, sizeof(TPC_REQ_ENTRY));
42641 + RTMP_SEM_UNLOCK(&pAd->CommonCfg.TpcReqTabLock);
42648 + ==========================================================================
42650 + Get Current TimeS tamp.
42654 + Return : Current Time Stamp.
42655 + ==========================================================================
42657 +static UINT64 GetCurrentTimeStamp(
42658 + IN PRTMP_ADAPTER pAd)
42660 + // get current time stamp.
42665 + ==========================================================================
42667 + Get Current Transmit Power.
42671 + Return : Current Time Stamp.
42672 + ==========================================================================
42674 +static UINT8 GetCurTxPwr(
42675 + IN PRTMP_ADAPTER pAd,
42678 + return 16; /* 16 dBm */
42682 + ==========================================================================
42684 + Insert Dialog Token into frame.
42687 + 1. frame buffer pointer.
42692 + ==========================================================================
42694 +static VOID InsertDialogToken(
42695 + IN PRTMP_ADAPTER pAd,
42696 + OUT PUCHAR pFrameBuf,
42697 + OUT PULONG pFrameLen,
42698 + IN UINT8 DialogToken)
42701 + MakeOutgoingFrame(pFrameBuf, &TempLen,
42705 + *pFrameLen = *pFrameLen + TempLen;
42711 + ==========================================================================
42713 + Insert TPC Request IE into frame.
42716 + 1. frame buffer pointer.
42720 + ==========================================================================
42722 + static VOID InsertTpcReqIE(
42723 + IN PRTMP_ADAPTER pAd,
42724 + OUT PUCHAR pFrameBuf,
42725 + OUT PULONG pFrameLen)
42729 + UINT8 ElementID = IE_TPC_REQUEST;
42731 + MakeOutgoingFrame(pFrameBuf, &TempLen,
42736 + *pFrameLen = *pFrameLen + TempLen;
42742 + ==========================================================================
42744 + Insert TPC Report IE into frame.
42747 + 1. frame buffer pointer.
42749 + 3. Transmit Power.
42753 + ==========================================================================
42755 + static VOID InsertTpcReportIE(
42756 + IN PRTMP_ADAPTER pAd,
42757 + OUT PUCHAR pFrameBuf,
42758 + OUT PULONG pFrameLen,
42760 + IN UINT8 LinkMargin)
42763 + ULONG Len = sizeof(TPC_REPORT_INFO);
42764 + UINT8 ElementID = IE_TPC_REPORT;
42765 + TPC_REPORT_INFO TpcReportIE;
42767 + TpcReportIE.TxPwr = TxPwr;
42768 + TpcReportIE.LinkMargin = LinkMargin;
42770 + MakeOutgoingFrame(pFrameBuf, &TempLen,
42773 + Len, &TpcReportIE,
42776 + *pFrameLen = *pFrameLen + TempLen;
42783 + ==========================================================================
42785 + Insert Channel Switch Announcement IE into frame.
42788 + 1. frame buffer pointer.
42790 + 3. channel switch announcement mode.
42791 + 4. new selected channel.
42792 + 5. channel switch announcement count.
42795 + ==========================================================================
42797 +static VOID InsertChSwAnnIE(
42798 + IN PRTMP_ADAPTER pAd,
42799 + OUT PUCHAR pFrameBuf,
42800 + OUT PULONG pFrameLen,
42801 + IN UINT8 ChSwMode,
42802 + IN UINT8 NewChannel,
42803 + IN UINT8 ChSwCnt)
42806 + ULONG Len = sizeof(CH_SW_ANN_INFO);
42807 + UINT8 ElementID = IE_CHANNEL_SWITCH_ANNOUNCEMENT;
42808 + CH_SW_ANN_INFO ChSwAnnIE;
42810 + ChSwAnnIE.ChSwMode = ChSwMode;
42811 + ChSwAnnIE.Channel = NewChannel;
42812 + ChSwAnnIE.ChSwCnt = ChSwCnt;
42814 + MakeOutgoingFrame(pFrameBuf, &TempLen,
42820 + *pFrameLen = *pFrameLen + TempLen;
42827 + ==========================================================================
42829 + Insert Measure Request IE into frame.
42832 + 1. frame buffer pointer.
42834 + 3. Measure Token.
42835 + 4. Measure Request Mode.
42836 + 5. Measure Request Type.
42837 + 6. Measure Channel.
42838 + 7. Measure Start time.
42839 + 8. Measure Duration.
42843 + ==========================================================================
42845 +static VOID InsertMeasureReqIE(
42846 + IN PRTMP_ADAPTER pAd,
42847 + OUT PUCHAR pFrameBuf,
42848 + OUT PULONG pFrameLen,
42849 + IN PMEASURE_REQ_INFO pMeasureReqIE)
42852 + UINT8 Len = sizeof(MEASURE_REQ_INFO);
42853 + UINT8 ElementID = IE_MEASUREMENT_REQUEST;
42855 + MakeOutgoingFrame(pFrameBuf, &TempLen,
42858 + Len, pMeasureReqIE,
42861 + *pFrameLen = *pFrameLen + TempLen;
42867 + ==========================================================================
42869 + Insert Measure Report IE into frame.
42872 + 1. frame buffer pointer.
42874 + 3. Measure Token.
42875 + 4. Measure Request Mode.
42876 + 5. Measure Request Type.
42877 + 6. Length of Report Infomation
42878 + 7. Pointer of Report Infomation Buffer.
42881 + ==========================================================================
42883 +static VOID InsertMeasureReportIE(
42884 + IN PRTMP_ADAPTER pAd,
42885 + OUT PUCHAR pFrameBuf,
42886 + OUT PULONG pFrameLen,
42887 + IN PMEASURE_REPORT_INFO pMeasureReportIE,
42888 + IN UINT8 ReportLnfoLen,
42889 + IN PUINT8 pReportInfo)
42893 + UINT8 ElementID = IE_MEASUREMENT_REPORT;
42895 + Len = sizeof(MEASURE_REPORT_INFO) + ReportLnfoLen;
42897 + MakeOutgoingFrame(pFrameBuf, &TempLen,
42900 + Len, pMeasureReportIE,
42903 + *pFrameLen = *pFrameLen + TempLen;
42905 + if ((ReportLnfoLen > 0) && (pReportInfo != NULL))
42907 + MakeOutgoingFrame(pFrameBuf + *pFrameLen, &TempLen,
42908 + ReportLnfoLen, pReportInfo,
42911 + *pFrameLen = *pFrameLen + TempLen;
42917 + ==========================================================================
42919 + Prepare Measurement request action frame and enqueue it into
42920 + management queue waiting for transmition.
42923 + 1. the destination mac address of the frame.
42926 + ==========================================================================
42928 +VOID EnqueueMeasurementReq(
42929 + IN PRTMP_ADAPTER pAd,
42931 + IN UINT8 MeasureToken,
42932 + IN UINT8 MeasureReqMode,
42933 + IN UINT8 MeasureReqType,
42934 + IN UINT8 MeasureCh,
42935 + IN UINT16 MeasureDuration)
42937 + PUCHAR pOutBuffer = NULL;
42938 + NDIS_STATUS NStatus;
42940 + HEADER_802_11 ActHdr;
42941 + MEASURE_REQ_INFO MeasureReqIE;
42942 + UINT8 RmReqDailogToken = RandomByte(pAd);
42943 + UINT64 MeasureStartTime = GetCurrentTimeStamp(pAd);
42945 + // build action frame header.
42946 + MgtMacHeaderInit(pAd, &ActHdr, SUBTYPE_ACTION, 0, pDA,
42947 + pAd->CurrentAddress);
42949 + NStatus = MlmeAllocateMemory(pAd, (PVOID)&pOutBuffer); //Get an unused nonpaged memory
42950 + if(NStatus != NDIS_STATUS_SUCCESS)
42952 + DBGPRINT(RT_DEBUG_TRACE, ("%s() allocate memory failed \n", __FUNCTION__));
42955 + NdisMoveMemory(pOutBuffer, (PCHAR)&ActHdr, sizeof(HEADER_802_11));
42956 + FrameLen = sizeof(HEADER_802_11);
42958 + InsertActField(pAd, (pOutBuffer + FrameLen), &FrameLen, CATEGORY_SPECTRUM, SPEC_MRQ);
42960 + // fill Dialog Token
42961 + InsertDialogToken(pAd, (pOutBuffer + FrameLen), &FrameLen, MeasureToken);
42963 + // prepare Measurement IE.
42964 + NdisZeroMemory(&MeasureReqIE, sizeof(MEASURE_REQ_INFO));
42965 + MeasureReqIE.Token = RmReqDailogToken;
42966 + MeasureReqIE.ReqMode.word = MeasureReqMode;
42967 + MeasureReqIE.ReqType = MeasureReqType;
42968 + MeasureReqIE.MeasureReq.ChNum = MeasureCh;
42969 + MeasureReqIE.MeasureReq.MeasureStartTime = cpu2le64(MeasureStartTime);
42970 + MeasureReqIE.MeasureReq.MeasureDuration = cpu2le16(MeasureDuration);
42971 + InsertMeasureReqIE(pAd, (pOutBuffer + FrameLen), &FrameLen, &MeasureReqIE);
42973 + MiniportMMRequest(pAd, QID_AC_BE, pOutBuffer, FrameLen);
42974 + MlmeFreeMemory(pAd, pOutBuffer);
42980 + ==========================================================================
42982 + Prepare Measurement report action frame and enqueue it into
42983 + management queue waiting for transmition.
42986 + 1. the destination mac address of the frame.
42989 + ==========================================================================
42991 +VOID EnqueueMeasurementRep(
42992 + IN PRTMP_ADAPTER pAd,
42994 + IN UINT8 DialogToken,
42995 + IN UINT8 MeasureToken,
42996 + IN UINT8 MeasureReqMode,
42997 + IN UINT8 MeasureReqType,
42998 + IN UINT8 ReportInfoLen,
42999 + IN PUINT8 pReportInfo)
43001 + PUCHAR pOutBuffer = NULL;
43002 + NDIS_STATUS NStatus;
43004 + HEADER_802_11 ActHdr;
43005 + MEASURE_REPORT_INFO MeasureRepIE;
43007 + // build action frame header.
43008 + MgtMacHeaderInit(pAd, &ActHdr, SUBTYPE_ACTION, 0, pDA,
43009 + pAd->CurrentAddress);
43011 + NStatus = MlmeAllocateMemory(pAd, (PVOID)&pOutBuffer); //Get an unused nonpaged memory
43012 + if(NStatus != NDIS_STATUS_SUCCESS)
43014 + DBGPRINT(RT_DEBUG_TRACE, ("%s() allocate memory failed \n", __FUNCTION__));
43017 + NdisMoveMemory(pOutBuffer, (PCHAR)&ActHdr, sizeof(HEADER_802_11));
43018 + FrameLen = sizeof(HEADER_802_11);
43020 + InsertActField(pAd, (pOutBuffer + FrameLen), &FrameLen, CATEGORY_SPECTRUM, SPEC_MRP);
43022 + // fill Dialog Token
43023 + InsertDialogToken(pAd, (pOutBuffer + FrameLen), &FrameLen, DialogToken);
43025 + // prepare Measurement IE.
43026 + NdisZeroMemory(&MeasureRepIE, sizeof(MEASURE_REPORT_INFO));
43027 + MeasureRepIE.Token = MeasureToken;
43028 + MeasureRepIE.ReportMode.word = MeasureReqMode;
43029 + MeasureRepIE.ReportType = MeasureReqType;
43030 + InsertMeasureReportIE(pAd, (pOutBuffer + FrameLen), &FrameLen, &MeasureRepIE, ReportInfoLen, pReportInfo);
43032 + MiniportMMRequest(pAd, QID_AC_BE, pOutBuffer, FrameLen);
43033 + MlmeFreeMemory(pAd, pOutBuffer);
43039 + ==========================================================================
43041 + Prepare TPC Request action frame and enqueue it into
43042 + management queue waiting for transmition.
43045 + 1. the destination mac address of the frame.
43048 + ==========================================================================
43050 +VOID EnqueueTPCReq(
43051 + IN PRTMP_ADAPTER pAd,
43053 + IN UCHAR DialogToken)
43055 + PUCHAR pOutBuffer = NULL;
43056 + NDIS_STATUS NStatus;
43059 + HEADER_802_11 ActHdr;
43061 + // build action frame header.
43062 + MgtMacHeaderInit(pAd, &ActHdr, SUBTYPE_ACTION, 0, pDA,
43063 + pAd->CurrentAddress);
43065 + NStatus = MlmeAllocateMemory(pAd, (PVOID)&pOutBuffer); //Get an unused nonpaged memory
43066 + if(NStatus != NDIS_STATUS_SUCCESS)
43068 + DBGPRINT(RT_DEBUG_TRACE, ("%s() allocate memory failed \n", __FUNCTION__));
43071 + NdisMoveMemory(pOutBuffer, (PCHAR)&ActHdr, sizeof(HEADER_802_11));
43072 + FrameLen = sizeof(HEADER_802_11);
43074 + InsertActField(pAd, (pOutBuffer + FrameLen), &FrameLen, CATEGORY_SPECTRUM, SPEC_TPCRQ);
43076 + // fill Dialog Token
43077 + InsertDialogToken(pAd, (pOutBuffer + FrameLen), &FrameLen, DialogToken);
43079 + // Insert TPC Request IE.
43080 + InsertTpcReqIE(pAd, (pOutBuffer + FrameLen), &FrameLen);
43082 + MiniportMMRequest(pAd, QID_AC_BE, pOutBuffer, FrameLen);
43083 + MlmeFreeMemory(pAd, pOutBuffer);
43089 + ==========================================================================
43091 + Prepare TPC Report action frame and enqueue it into
43092 + management queue waiting for transmition.
43095 + 1. the destination mac address of the frame.
43098 + ==========================================================================
43100 +VOID EnqueueTPCRep(
43101 + IN PRTMP_ADAPTER pAd,
43103 + IN UINT8 DialogToken,
43105 + IN UINT8 LinkMargin)
43107 + PUCHAR pOutBuffer = NULL;
43108 + NDIS_STATUS NStatus;
43111 + HEADER_802_11 ActHdr;
43113 + // build action frame header.
43114 + MgtMacHeaderInit(pAd, &ActHdr, SUBTYPE_ACTION, 0, pDA,
43115 + pAd->CurrentAddress);
43117 + NStatus = MlmeAllocateMemory(pAd, (PVOID)&pOutBuffer); //Get an unused nonpaged memory
43118 + if(NStatus != NDIS_STATUS_SUCCESS)
43120 + DBGPRINT(RT_DEBUG_TRACE, ("%s() allocate memory failed \n", __FUNCTION__));
43123 + NdisMoveMemory(pOutBuffer, (PCHAR)&ActHdr, sizeof(HEADER_802_11));
43124 + FrameLen = sizeof(HEADER_802_11);
43126 + InsertActField(pAd, (pOutBuffer + FrameLen), &FrameLen, CATEGORY_SPECTRUM, SPEC_TPCRP);
43128 + // fill Dialog Token
43129 + InsertDialogToken(pAd, (pOutBuffer + FrameLen), &FrameLen, DialogToken);
43131 + // Insert TPC Request IE.
43132 + InsertTpcReportIE(pAd, (pOutBuffer + FrameLen), &FrameLen, TxPwr, LinkMargin);
43134 + MiniportMMRequest(pAd, QID_AC_BE, pOutBuffer, FrameLen);
43135 + MlmeFreeMemory(pAd, pOutBuffer);
43141 + ==========================================================================
43143 + Prepare Channel Switch Announcement action frame and enqueue it into
43144 + management queue waiting for transmition.
43147 + 1. the destination mac address of the frame.
43148 + 2. Channel switch announcement mode.
43149 + 2. a New selected channel.
43152 + ==========================================================================
43154 +VOID EnqueueChSwAnn(
43155 + IN PRTMP_ADAPTER pAd,
43157 + IN UINT8 ChSwMode,
43160 + PUCHAR pOutBuffer = NULL;
43161 + NDIS_STATUS NStatus;
43164 + HEADER_802_11 ActHdr;
43166 + // build action frame header.
43167 + MgtMacHeaderInit(pAd, &ActHdr, SUBTYPE_ACTION, 0, pDA,
43168 + pAd->CurrentAddress);
43170 + NStatus = MlmeAllocateMemory(pAd, (PVOID)&pOutBuffer); //Get an unused nonpaged memory
43171 + if(NStatus != NDIS_STATUS_SUCCESS)
43173 + DBGPRINT(RT_DEBUG_TRACE, ("%s() allocate memory failed \n", __FUNCTION__));
43176 + NdisMoveMemory(pOutBuffer, (PCHAR)&ActHdr, sizeof(HEADER_802_11));
43177 + FrameLen = sizeof(HEADER_802_11);
43179 + InsertActField(pAd, (pOutBuffer + FrameLen), &FrameLen, CATEGORY_SPECTRUM, SPEC_CHANNEL_SWITCH);
43181 + InsertChSwAnnIE(pAd, (pOutBuffer + FrameLen), &FrameLen, ChSwMode, NewCh, 0);
43183 + MiniportMMRequest(pAd, QID_AC_BE, pOutBuffer, FrameLen);
43184 + MlmeFreeMemory(pAd, pOutBuffer);
43189 +static BOOLEAN DfsRequirementCheck(
43190 + IN PRTMP_ADAPTER pAd,
43191 + IN UINT8 Channel)
43193 + BOOLEAN Result = FALSE;
43198 + // check DFS procedure is running.
43199 + // make sure DFS procedure won't start twice.
43200 + if (pAd->CommonCfg.RadarDetect.RDMode != RD_NORMAL_MODE)
43206 + // check the new channel carried from Channel Switch Announcemnet is valid.
43207 + for (i=0; i<pAd->ChannelListNum; i++)
43209 + if ((Channel == pAd->ChannelList[i].Channel)
43210 + &&(pAd->ChannelList[i].RemainingTimeForUse == 0))
43212 + // found radar signal in the channel. the channel can't use at least for 30 minutes.
43213 + pAd->ChannelList[i].RemainingTimeForUse = 1800;//30 min = 1800 sec
43223 +VOID NotifyChSwAnnToPeerAPs(
43224 + IN PRTMP_ADAPTER pAd,
43227 + IN UINT8 ChSwMode,
43228 + IN UINT8 Channel)
43230 +#ifdef WDS_SUPPORT
43231 + if (!((pRA[0] & 0xff) == 0xff)) // is pRA a broadcase address.
43234 + // info neighbor APs that Radar signal found throgh WDS link.
43235 + for (i = 0; i < MAX_WDS_ENTRY; i++)
43237 + if (ValidWdsEntry(pAd, i))
43239 + PUCHAR pDA = pAd->WdsTab.WdsEntry[i].PeerWdsAddr;
43241 + // DA equal to SA. have no necessary orignal AP which found Radar signal.
43242 + if (MAC_ADDR_EQUAL(pTA, pDA))
43245 + // send Channel Switch Action frame to info Neighbro APs.
43246 + EnqueueChSwAnn(pAd, pDA, ChSwMode, Channel);
43250 +#endif // WDS_SUPPORT //
43253 +static VOID StartDFSProcedure(
43254 + IN PRTMP_ADAPTER pAd,
43255 + IN UCHAR Channel,
43256 + IN UINT8 ChSwMode)
43258 + // start DFS procedure
43259 + pAd->CommonCfg.Channel = Channel;
43260 +#ifdef DOT11_N_SUPPORT
43261 + N_ChannelCheck(pAd);
43262 +#endif // DOT11_N_SUPPORT //
43263 + pAd->CommonCfg.RadarDetect.RDMode = RD_SWITCHING_MODE;
43264 + pAd->CommonCfg.RadarDetect.CSCount = 0;
43268 + ==========================================================================
43270 + Channel Switch Announcement action frame sanity check.
43273 + 1. MLME message containing the received frame
43274 + 2. message length.
43275 + 3. Channel switch announcement infomation buffer.
43279 + ==========================================================================
43283 + Channel Switch Announcement IE.
43284 + +----+-----+-----------+------------+-----------+
43285 + | ID | Len |Ch Sw Mode | New Ch Num | Ch Sw Cnt |
43286 + +----+-----+-----------+------------+-----------+
43289 +static BOOLEAN PeerChSwAnnSanity(
43290 + IN PRTMP_ADAPTER pAd,
43293 + OUT PCH_SW_ANN_INFO pChSwAnnInfo)
43295 + PFRAME_802_11 Fr = (PFRAME_802_11)pMsg;
43296 + PUCHAR pFramePtr = Fr->Octet;
43297 + BOOLEAN result = FALSE;
43298 + PEID_STRUCT eid_ptr;
43300 + // skip 802.11 header.
43301 + MsgLen -= sizeof(HEADER_802_11);
43303 + // skip category and action code.
43307 + if (pChSwAnnInfo == NULL)
43310 + eid_ptr = (PEID_STRUCT)pFramePtr;
43311 + while (((UCHAR*)eid_ptr + eid_ptr->Len + 1) < ((PUCHAR)pFramePtr + MsgLen))
43313 + switch(eid_ptr->Eid)
43315 + case IE_CHANNEL_SWITCH_ANNOUNCEMENT:
43316 + NdisMoveMemory(&pChSwAnnInfo->ChSwMode, eid_ptr->Octet, 1);
43317 + NdisMoveMemory(&pChSwAnnInfo->Channel, eid_ptr->Octet + 1, 1);
43318 + NdisMoveMemory(&pChSwAnnInfo->ChSwCnt, eid_ptr->Octet + 2, 1);
43326 + eid_ptr = (PEID_STRUCT)((UCHAR*)eid_ptr + 2 + eid_ptr->Len);
43333 + ==========================================================================
43335 + Measurement request action frame sanity check.
43338 + 1. MLME message containing the received frame
43339 + 2. message length.
43340 + 3. Measurement request infomation buffer.
43343 + ==========================================================================
43345 +static BOOLEAN PeerMeasureReqSanity(
43346 + IN PRTMP_ADAPTER pAd,
43349 + OUT PUINT8 pDialogToken,
43350 + OUT PMEASURE_REQ_INFO pMeasureReqInfo)
43352 + PFRAME_802_11 Fr = (PFRAME_802_11)pMsg;
43353 + PUCHAR pFramePtr = Fr->Octet;
43354 + BOOLEAN result = FALSE;
43355 + PEID_STRUCT eid_ptr;
43357 + UINT64 MeasureStartTime;
43358 + UINT16 MeasureDuration;
43360 + // skip 802.11 header.
43361 + MsgLen -= sizeof(HEADER_802_11);
43363 + // skip category and action code.
43367 + if (pMeasureReqInfo == NULL)
43370 + NdisMoveMemory(pDialogToken, pFramePtr, 1);
43374 + eid_ptr = (PEID_STRUCT)pFramePtr;
43375 + while (((UCHAR*)eid_ptr + eid_ptr->Len + 1) < ((PUCHAR)pFramePtr + MsgLen))
43377 + switch(eid_ptr->Eid)
43379 + case IE_MEASUREMENT_REQUEST:
43380 + NdisMoveMemory(&pMeasureReqInfo->Token, eid_ptr->Octet, 1);
43381 + NdisMoveMemory(&pMeasureReqInfo->ReqMode.word, eid_ptr->Octet + 1, 1);
43382 + NdisMoveMemory(&pMeasureReqInfo->ReqType, eid_ptr->Octet + 2, 1);
43383 + ptr = eid_ptr->Octet + 3;
43384 + NdisMoveMemory(&pMeasureReqInfo->MeasureReq.ChNum, ptr, 1);
43385 + NdisMoveMemory(&MeasureStartTime, ptr + 1, 8);
43386 + pMeasureReqInfo->MeasureReq.MeasureStartTime = SWAP64(MeasureStartTime);
43387 + NdisMoveMemory(&MeasureDuration, ptr + 9, 2);
43388 + pMeasureReqInfo->MeasureReq.MeasureDuration = SWAP16(MeasureDuration);
43396 + eid_ptr = (PEID_STRUCT)((UCHAR*)eid_ptr + 2 + eid_ptr->Len);
43403 + ==========================================================================
43405 + Measurement report action frame sanity check.
43408 + 1. MLME message containing the received frame
43409 + 2. message length.
43410 + 3. Measurement report infomation buffer.
43411 + 4. basic report infomation buffer.
43414 + ==========================================================================
43418 + Measurement Report IE.
43419 + +----+-----+-------+-------------+--------------+----------------+
43420 + | ID | Len | Token | Report Mode | Measure Type | Measure Report |
43421 + +----+-----+-------+-------------+--------------+----------------+
43422 + 1 1 1 1 1 variable
43425 + +--------+------------+----------+-----+
43426 + | Ch Num | Start Time | Duration | Map |
43427 + +--------+------------+----------+-----+
43430 + Map Field Bit Format.
43431 + +-----+---------------+---------------------+-------+------------+----------+
43432 + | Bss | OFDM Preamble | Unidentified signal | Radar | Unmeasured | Reserved |
43433 + +-----+---------------+---------------------+-------+------------+----------+
43436 +static BOOLEAN PeerMeasureReportSanity(
43437 + IN PRTMP_ADAPTER pAd,
43440 + OUT PUINT8 pDialogToken,
43441 + OUT PMEASURE_REPORT_INFO pMeasureReportInfo,
43442 + OUT PUINT8 pReportBuf)
43444 + PFRAME_802_11 Fr = (PFRAME_802_11)pMsg;
43445 + PUCHAR pFramePtr = Fr->Octet;
43446 + BOOLEAN result = FALSE;
43447 + PEID_STRUCT eid_ptr;
43450 + // skip 802.11 header.
43451 + MsgLen -= sizeof(HEADER_802_11);
43453 + // skip category and action code.
43457 + if (pMeasureReportInfo == NULL)
43460 + NdisMoveMemory(pDialogToken, pFramePtr, 1);
43464 + eid_ptr = (PEID_STRUCT)pFramePtr;
43465 + while (((UCHAR*)eid_ptr + eid_ptr->Len + 1) < ((PUCHAR)pFramePtr + MsgLen))
43467 + switch(eid_ptr->Eid)
43469 + case IE_MEASUREMENT_REPORT:
43470 + NdisMoveMemory(&pMeasureReportInfo->Token, eid_ptr->Octet, 1);
43471 + NdisMoveMemory(&pMeasureReportInfo->ReportMode, eid_ptr->Octet + 1, 1);
43472 + NdisMoveMemory(&pMeasureReportInfo->ReportType, eid_ptr->Octet + 2, 1);
43473 + if (pMeasureReportInfo->ReportType == RM_BASIC)
43475 + PMEASURE_BASIC_REPORT pReport = (PMEASURE_BASIC_REPORT)pReportBuf;
43476 + ptr = eid_ptr->Octet + 3;
43477 + NdisMoveMemory(&pReport->ChNum, ptr, 1);
43478 + NdisMoveMemory(&pReport->MeasureStartTime, ptr + 1, 8);
43479 + NdisMoveMemory(&pReport->MeasureDuration, ptr + 9, 2);
43480 + NdisMoveMemory(&pReport->Map, ptr + 11, 1);
43483 + else if (pMeasureReportInfo->ReportType == RM_CCA)
43485 + PMEASURE_CCA_REPORT pReport = (PMEASURE_CCA_REPORT)pReportBuf;
43486 + ptr = eid_ptr->Octet + 3;
43487 + NdisMoveMemory(&pReport->ChNum, ptr, 1);
43488 + NdisMoveMemory(&pReport->MeasureStartTime, ptr + 1, 8);
43489 + NdisMoveMemory(&pReport->MeasureDuration, ptr + 9, 2);
43490 + NdisMoveMemory(&pReport->CCA_Busy_Fraction, ptr + 11, 1);
43493 + else if (pMeasureReportInfo->ReportType == RM_RPI_HISTOGRAM)
43495 + PMEASURE_RPI_REPORT pReport = (PMEASURE_RPI_REPORT)pReportBuf;
43496 + ptr = eid_ptr->Octet + 3;
43497 + NdisMoveMemory(&pReport->ChNum, ptr, 1);
43498 + NdisMoveMemory(&pReport->MeasureStartTime, ptr + 1, 8);
43499 + NdisMoveMemory(&pReport->MeasureDuration, ptr + 9, 2);
43500 + NdisMoveMemory(&pReport->RPI_Density, ptr + 11, 8);
43508 + eid_ptr = (PEID_STRUCT)((UCHAR*)eid_ptr + 2 + eid_ptr->Len);
43515 + ==========================================================================
43517 + TPC Request action frame sanity check.
43520 + 1. MLME message containing the received frame
43521 + 2. message length.
43525 + ==========================================================================
43527 +static BOOLEAN PeerTpcReqSanity(
43528 + IN PRTMP_ADAPTER pAd,
43531 + OUT PUINT8 pDialogToken)
43533 + PFRAME_802_11 Fr = (PFRAME_802_11)pMsg;
43534 + PUCHAR pFramePtr = Fr->Octet;
43535 + BOOLEAN result = FALSE;
43536 + PEID_STRUCT eid_ptr;
43538 + MsgLen -= sizeof(HEADER_802_11);
43540 + // skip category and action code.
43544 + if (pDialogToken == NULL)
43547 + NdisMoveMemory(pDialogToken, pFramePtr, 1);
43551 + eid_ptr = (PEID_STRUCT)pFramePtr;
43552 + while (((UCHAR*)eid_ptr + eid_ptr->Len + 1) < ((PUCHAR)pFramePtr + MsgLen))
43554 + switch(eid_ptr->Eid)
43556 + case IE_TPC_REQUEST:
43563 + eid_ptr = (PEID_STRUCT)((UCHAR*)eid_ptr + 2 + eid_ptr->Len);
43570 + ==========================================================================
43572 + TPC Report action frame sanity check.
43575 + 1. MLME message containing the received frame
43576 + 2. message length.
43578 + 4. TPC Report IE.
43581 + ==========================================================================
43583 +static BOOLEAN PeerTpcRepSanity(
43584 + IN PRTMP_ADAPTER pAd,
43587 + OUT PUINT8 pDialogToken,
43588 + OUT PTPC_REPORT_INFO pTpcRepInfo)
43590 + PFRAME_802_11 Fr = (PFRAME_802_11)pMsg;
43591 + PUCHAR pFramePtr = Fr->Octet;
43592 + BOOLEAN result = FALSE;
43593 + PEID_STRUCT eid_ptr;
43595 + MsgLen -= sizeof(HEADER_802_11);
43597 + // skip category and action code.
43601 + if (pDialogToken == NULL)
43604 + NdisMoveMemory(pDialogToken, pFramePtr, 1);
43608 + eid_ptr = (PEID_STRUCT)pFramePtr;
43609 + while (((UCHAR*)eid_ptr + eid_ptr->Len + 1) < ((PUCHAR)pFramePtr + MsgLen))
43611 + switch(eid_ptr->Eid)
43613 + case IE_TPC_REPORT:
43614 + NdisMoveMemory(&pTpcRepInfo->TxPwr, eid_ptr->Octet, 1);
43615 + NdisMoveMemory(&pTpcRepInfo->LinkMargin, eid_ptr->Octet + 1, 1);
43622 + eid_ptr = (PEID_STRUCT)((UCHAR*)eid_ptr + 2 + eid_ptr->Len);
43629 + ==========================================================================
43631 + Channel Switch Announcement action frame handler.
43634 + Elme - MLME message containing the received frame
43637 + ==========================================================================
43639 +static VOID PeerChSwAnnAction(
43640 + IN PRTMP_ADAPTER pAd,
43641 + IN MLME_QUEUE_ELEM *Elem)
43643 + CH_SW_ANN_INFO ChSwAnnInfo;
43644 + PFRAME_802_11 pFr = (PFRAME_802_11)Elem->Msg;
43645 +#ifdef CONFIG_STA_SUPPORT
43646 + UCHAR index = 0, Channel = 0, NewChannel = 0;
43647 + ULONG Bssidx = 0;
43648 +#endif // CONFIG_STA_SUPPORT //
43650 + NdisZeroMemory(&ChSwAnnInfo, sizeof(CH_SW_ANN_INFO));
43651 + if (! PeerChSwAnnSanity(pAd, Elem->Msg, Elem->MsgLen, &ChSwAnnInfo))
43653 + DBGPRINT(RT_DEBUG_TRACE, ("Invalid Channel Switch Action Frame.\n"));
43658 +#ifdef CONFIG_STA_SUPPORT
43659 + if (pAd->OpMode == OPMODE_STA)
43661 + Bssidx = BssTableSearch(&pAd->ScanTab, pFr->Hdr.Addr3, pAd->CommonCfg.Channel);
43662 + if (Bssidx == BSS_NOT_FOUND)
43664 + DBGPRINT(RT_DEBUG_TRACE, ("PeerChSwAnnAction - Bssidx is not found\n"));
43668 + DBGPRINT(RT_DEBUG_TRACE, ("\n****Bssidx is %d, Channel = %d\n", index, pAd->ScanTab.BssEntry[Bssidx].Channel));
43669 + hex_dump("SSID",pAd->ScanTab.BssEntry[Bssidx].Bssid ,6);
43671 + Channel = pAd->CommonCfg.Channel;
43672 + NewChannel = ChSwAnnInfo.Channel;
43674 + if ((pAd->CommonCfg.bIEEE80211H == 1) && (NewChannel != 0) && (Channel != NewChannel))
43676 + // Switching to channel 1 can prevent from rescanning the current channel immediately (by auto reconnection).
43677 + // In addition, clear the MLME queue and the scan table to discard the RX packets and previous scanning results.
43678 + AsicSwitchChannel(pAd, 1, FALSE);
43679 + AsicLockChannel(pAd, 1);
43680 + LinkDown(pAd, FALSE);
43681 + MlmeQueueInit(&pAd->Mlme.Queue);
43682 + BssTableInit(&pAd->ScanTab);
43683 + RTMPusecDelay(1000000); // use delay to prevent STA do reassoc
43685 + // channel sanity check
43686 + for (index = 0 ; index < pAd->ChannelListNum; index++)
43688 + if (pAd->ChannelList[index].Channel == NewChannel)
43690 + pAd->ScanTab.BssEntry[Bssidx].Channel = NewChannel;
43691 + pAd->CommonCfg.Channel = NewChannel;
43692 + AsicSwitchChannel(pAd, pAd->CommonCfg.Channel, FALSE);
43693 + AsicLockChannel(pAd, pAd->CommonCfg.Channel);
43694 + DBGPRINT(RT_DEBUG_TRACE, ("&&&&&&&&&&&&&&&&PeerChSwAnnAction - STA receive channel switch announcement IE (New Channel =%d)\n", NewChannel));
43699 + if (index >= pAd->ChannelListNum)
43701 + DBGPRINT_ERR(("&&&&&&&&&&&&&&&&&&&&&&&&&&PeerChSwAnnAction(can not find New Channel=%d in ChannelList[%d]\n", pAd->CommonCfg.Channel, pAd->ChannelListNum));
43705 +#endif // CONFIG_STA_SUPPORT //
43712 + ==========================================================================
43714 + Measurement Request action frame handler.
43717 + Elme - MLME message containing the received frame
43720 + ==========================================================================
43722 +static VOID PeerMeasureReqAction(
43723 + IN PRTMP_ADAPTER pAd,
43724 + IN MLME_QUEUE_ELEM *Elem)
43726 + PFRAME_802_11 pFr = (PFRAME_802_11)Elem->Msg;
43727 + UINT8 DialogToken;
43728 + MEASURE_REQ_INFO MeasureReqInfo;
43729 + MEASURE_REPORT_MODE ReportMode;
43731 + if(PeerMeasureReqSanity(pAd, Elem->Msg, Elem->MsgLen, &DialogToken, &MeasureReqInfo))
43733 + ReportMode.word = 0;
43734 + ReportMode.field.Incapable = 1;
43735 + EnqueueMeasurementRep(pAd, pFr->Hdr.Addr2, DialogToken, MeasureReqInfo.Token, ReportMode.word, MeasureReqInfo.ReqType, 0, NULL);
43742 + ==========================================================================
43744 + Measurement Report action frame handler.
43747 + Elme - MLME message containing the received frame
43750 + ==========================================================================
43752 +static VOID PeerMeasureReportAction(
43753 + IN PRTMP_ADAPTER pAd,
43754 + IN MLME_QUEUE_ELEM *Elem)
43756 + MEASURE_REPORT_INFO MeasureReportInfo;
43757 + PFRAME_802_11 pFr = (PFRAME_802_11)Elem->Msg;
43758 + UINT8 DialogToken;
43759 + PUINT8 pMeasureReportInfo;
43761 +// if (pAd->CommonCfg.bIEEE80211H != TRUE)
43764 + if ((pMeasureReportInfo = kmalloc(sizeof(MEASURE_RPI_REPORT), GFP_ATOMIC)) == NULL)
43766 + DBGPRINT(RT_DEBUG_ERROR, ("%s unable to alloc memory for measure report buffer (size=%d).\n", __FUNCTION__, sizeof(MEASURE_RPI_REPORT)));
43770 + NdisZeroMemory(&MeasureReportInfo, sizeof(MEASURE_REPORT_INFO));
43771 + NdisZeroMemory(pMeasureReportInfo, sizeof(MEASURE_RPI_REPORT));
43772 + if (PeerMeasureReportSanity(pAd, Elem->Msg, Elem->MsgLen, &DialogToken, &MeasureReportInfo, pMeasureReportInfo))
43775 + PMEASURE_REQ_ENTRY pEntry = NULL;
43777 + // Not a autonomous measure report.
43778 + // check the dialog token field. drop it if the dialog token doesn't match.
43779 + if ((DialogToken != 0)
43780 + && ((pEntry = MeasureReqLookUp(pAd, DialogToken)) == NULL))
43783 + if (pEntry != NULL)
43784 + MeasureReqDelete(pAd, pEntry->DialogToken);
43786 + if (MeasureReportInfo.ReportType == RM_BASIC)
43788 + PMEASURE_BASIC_REPORT pBasicReport = (PMEASURE_BASIC_REPORT)pMeasureReportInfo;
43789 + if ((pBasicReport->Map.field.Radar)
43790 + && (DfsRequirementCheck(pAd, pBasicReport->ChNum) == TRUE))
43792 + NotifyChSwAnnToPeerAPs(pAd, pFr->Hdr.Addr1, pFr->Hdr.Addr2, 1, pBasicReport->ChNum);
43793 + StartDFSProcedure(pAd, pBasicReport->ChNum, 1);
43799 + DBGPRINT(RT_DEBUG_TRACE, ("Invalid Measurement Report Frame.\n"));
43801 + kfree(pMeasureReportInfo);
43807 + ==========================================================================
43809 + TPC Request action frame handler.
43812 + Elme - MLME message containing the received frame
43815 + ==========================================================================
43817 +static VOID PeerTpcReqAction(
43818 + IN PRTMP_ADAPTER pAd,
43819 + IN MLME_QUEUE_ELEM *Elem)
43821 + PFRAME_802_11 pFr = (PFRAME_802_11)Elem->Msg;
43822 + PUCHAR pFramePtr = pFr->Octet;
43823 + UINT8 DialogToken;
43824 + UINT8 TxPwr = GetCurTxPwr(pAd, Elem->Wcid);
43825 + UINT8 LinkMargin = 0;
43828 + // link margin: Ratio of the received signal power to the minimum desired by the station (STA). The
43829 + // STA may incorporate rate information and channel conditions, including interference, into its computation
43830 + // of link margin.
43832 + RealRssi = RTMPMaxRssi(pAd, ConvertToRssi(pAd, Elem->Rssi0, RSSI_0),
43833 + ConvertToRssi(pAd, Elem->Rssi1, RSSI_1),
43834 + ConvertToRssi(pAd, Elem->Rssi2, RSSI_2));
43836 + // skip Category and action code.
43840 + NdisMoveMemory(&DialogToken, pFramePtr, 1);
43842 + LinkMargin = (RealRssi / MIN_RCV_PWR);
43843 + if (PeerTpcReqSanity(pAd, Elem->Msg, Elem->MsgLen, &DialogToken))
43844 + EnqueueTPCRep(pAd, pFr->Hdr.Addr2, DialogToken, TxPwr, LinkMargin);
43850 + ==========================================================================
43852 + TPC Report action frame handler.
43855 + Elme - MLME message containing the received frame
43858 + ==========================================================================
43860 +static VOID PeerTpcRepAction(
43861 + IN PRTMP_ADAPTER pAd,
43862 + IN MLME_QUEUE_ELEM *Elem)
43864 + UINT8 DialogToken;
43865 + TPC_REPORT_INFO TpcRepInfo;
43866 + PTPC_REQ_ENTRY pEntry = NULL;
43868 + NdisZeroMemory(&TpcRepInfo, sizeof(TPC_REPORT_INFO));
43869 + if (PeerTpcRepSanity(pAd, Elem->Msg, Elem->MsgLen, &DialogToken, &TpcRepInfo))
43871 + if ((pEntry = TpcReqLookUp(pAd, DialogToken)) != NULL)
43873 + TpcReqDelete(pAd, pEntry->DialogToken);
43874 + DBGPRINT(RT_DEBUG_TRACE, ("%s: DialogToken=%x, TxPwr=%d, LinkMargin=%d\n",
43875 + __FUNCTION__, DialogToken, TpcRepInfo.TxPwr, TpcRepInfo.LinkMargin));
43883 + ==========================================================================
43885 + Spectrun action frames Handler such as channel switch annoucement,
43886 + measurement report, measurement request actions frames.
43889 + Elme - MLME message containing the received frame
43892 + ==========================================================================
43894 +VOID PeerSpectrumAction(
43895 + IN PRTMP_ADAPTER pAd,
43896 + IN MLME_QUEUE_ELEM *Elem)
43899 + UCHAR Action = Elem->Msg[LENGTH_802_11+1];
43901 + if (pAd->CommonCfg.bIEEE80211H != TRUE)
43907 + // current rt2860 unable do such measure specified in Measurement Request.
43908 + // reject all measurement request.
43909 + PeerMeasureReqAction(pAd, Elem);
43913 + PeerMeasureReportAction(pAd, Elem);
43917 + PeerTpcReqAction(pAd, Elem);
43921 + PeerTpcRepAction(pAd, Elem);
43924 + case SPEC_CHANNEL_SWITCH:
43926 +#ifdef DOT11N_DRAFT3
43927 + SEC_CHA_OFFSET_IE Secondary;
43928 + CHA_SWITCH_ANNOUNCE_IE ChannelSwitch;
43930 + // 802.11h only has Channel Switch Announcement IE.
43931 + RTMPMoveMemory(&ChannelSwitch, &Elem->Msg[LENGTH_802_11+4], sizeof (CHA_SWITCH_ANNOUNCE_IE));
43933 + // 802.11n D3.03 adds secondary channel offset element in the end.
43934 + if (Elem->MsgLen == (LENGTH_802_11 + 2 + sizeof (CHA_SWITCH_ANNOUNCE_IE) + sizeof (SEC_CHA_OFFSET_IE)))
43936 + RTMPMoveMemory(&Secondary, &Elem->Msg[LENGTH_802_11+9], sizeof (SEC_CHA_OFFSET_IE));
43940 + Secondary.SecondaryChannelOffset = 0;
43943 + if ((Elem->Msg[LENGTH_802_11+2] == IE_CHANNEL_SWITCH_ANNOUNCEMENT) && (Elem->Msg[LENGTH_802_11+3] == 3))
43945 + ChannelSwitchAction(pAd, Elem->Wcid, ChannelSwitch.NewChannel, Secondary.SecondaryChannelOffset);
43947 +#endif // DOT11N_DRAFT3 //
43949 + PeerChSwAnnAction(pAd, Elem);
43957 + ==========================================================================
43963 + ==========================================================================
43965 +INT Set_MeasureReq_Proc(
43966 + IN PRTMP_ADAPTER pAd,
43973 + MEASURE_REQ_MODE MeasureReqMode;
43974 + UINT8 MeasureReqToken = RandomByte(pAd);
43975 + UINT8 MeasureReqType = RM_BASIC;
43976 + UINT8 MeasureCh = 1;
43979 + while ((thisChar = strsep((char **)&arg, "-")) != NULL)
43984 + Aid = simple_strtol(thisChar, 0, 16);
43987 + case 2: // Measurement Request Type.
43988 + MeasureReqType = simple_strtol(thisChar, 0, 16);
43989 + if (MeasureReqType > 3)
43991 + DBGPRINT(RT_DEBUG_ERROR, ("%s: unknow MeasureReqType(%d)\n", __FUNCTION__, MeasureReqType));
43996 + case 3: // Measurement channel.
43997 + MeasureCh = simple_strtol(thisChar, 0, 16);
44003 + DBGPRINT(RT_DEBUG_TRACE, ("%s::Aid = %d, MeasureReqType=%d MeasureCh=%d\n", __FUNCTION__, Aid, MeasureReqType, MeasureCh));
44004 + if (!VALID_WCID(Aid))
44006 + DBGPRINT(RT_DEBUG_ERROR, ("%s: unknow sta of Aid(%d)\n", __FUNCTION__, Aid));
44010 + MeasureReqMode.word = 0;
44011 + MeasureReqMode.field.Enable = 1;
44013 + MeasureReqInsert(pAd, MeasureReqToken);
44015 + EnqueueMeasurementReq(pAd, pAd->MacTab.Content[Aid].Addr,
44016 + MeasureReqToken, MeasureReqMode.word, MeasureReqType, MeasureCh, 2000);
44021 +INT Set_TpcReq_Proc(
44022 + IN PRTMP_ADAPTER pAd,
44027 + UINT8 TpcReqToken = RandomByte(pAd);
44029 + Aid = simple_strtol(arg, 0, 16);
44031 + DBGPRINT(RT_DEBUG_TRACE, ("%s::Aid = %d\n", __FUNCTION__, Aid));
44032 + if (!VALID_WCID(Aid))
44034 + DBGPRINT(RT_DEBUG_ERROR, ("%s: unknow sta of Aid(%d)\n", __FUNCTION__, Aid));
44038 + TpcReqInsert(pAd, TpcReqToken);
44040 + EnqueueTPCReq(pAd, pAd->MacTab.Content[Aid].Addr, TpcReqToken);
44046 +++ b/drivers/staging/rt3070/dfs.h
44049 + *************************************************************************
44050 + * Ralink Tech Inc.
44051 + * 5F., No.36, Taiyuan St., Jhubei City,
44052 + * Hsinchu County 302,
44055 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
44057 + * This program is free software; you can redistribute it and/or modify *
44058 + * it under the terms of the GNU General Public License as published by *
44059 + * the Free Software Foundation; either version 2 of the License, or *
44060 + * (at your option) any later version. *
44062 + * This program is distributed in the hope that it will be useful, *
44063 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
44064 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
44065 + * GNU General Public License for more details. *
44067 + * You should have received a copy of the GNU General Public License *
44068 + * along with this program; if not, write to the *
44069 + * Free Software Foundation, Inc., *
44070 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
44072 + *************************************************************************
44078 + Support DFS function.
44080 + Revision History:
44082 + -------- ---------- ----------------------------------------------
44083 + Fonchi 03-12-2007 created
44086 +#define RADAR_PULSE 1
44087 +#define RADAR_WIDTH 2
44089 +#define WIDTH_RD_IDLE 0
44090 +#define WIDTH_RD_CHECK 1
44093 +VOID BbpRadarDetectionStart(
44094 + IN PRTMP_ADAPTER pAd);
44096 +VOID BbpRadarDetectionStop(
44097 + IN PRTMP_ADAPTER pAd);
44099 +VOID RadarDetectionStart(
44100 + IN PRTMP_ADAPTER pAd,
44101 + IN BOOLEAN CTS_Protect,
44102 + IN UINT8 CTSPeriod);
44104 +VOID RadarDetectionStop(
44105 + IN PRTMP_ADAPTER pAd);
44107 +VOID RadarDetectPeriodic(
44108 + IN PRTMP_ADAPTER pAd);
44111 +BOOLEAN RadarChannelCheck(
44112 + IN PRTMP_ADAPTER pAd,
44115 +ULONG JapRadarType(
44116 + IN PRTMP_ADAPTER pAd);
44118 +ULONG RTMPBbpReadRadarDuration(
44119 + IN PRTMP_ADAPTER pAd);
44121 +ULONG RTMPReadRadarDuration(
44122 + IN PRTMP_ADAPTER pAd);
44124 +VOID RTMPCleanRadarDuration(
44125 + IN PRTMP_ADAPTER pAd);
44127 +VOID RTMPPrepareRDCTSFrame(
44128 + IN PRTMP_ADAPTER pAd,
44130 + IN ULONG Duration,
44131 + IN UCHAR RTSRate,
44132 + IN ULONG CTSBaseAddr,
44133 + IN UCHAR FrameGap);
44135 +VOID RTMPPrepareRadarDetectParams(
44136 + IN PRTMP_ADAPTER pAd);
44139 +INT Set_ChMovingTime_Proc(
44140 + IN PRTMP_ADAPTER pAd,
44143 +INT Set_LongPulseRadarTh_Proc(
44144 + IN PRTMP_ADAPTER pAd,
44149 +++ b/drivers/staging/rt3070/firmware.h
44152 + Copyright (c) 2007, Ralink Technology Corporation
44153 + All rights reserved.
44155 + Redistribution. Redistribution and use in binary form, without
44156 + modification, are permitted provided that the following conditions are
44159 + * Redistributions must reproduce the above copyright notice and the
44160 + following disclaimer in the documentation and/or other materials
44161 + provided with the distribution.
44162 + * Neither the name of Ralink Technology Corporation nor the names of its
44163 + suppliers may be used to endorse or promote products derived from this
44164 + software without specific prior written permission.
44165 + * No reverse engineering, decompilation, or disassembly of this software
44168 + Limited patent license. Ralink Technology Corporation grants a world-wide,
44169 + royalty-free, non-exclusive license under patents it now or hereafter
44170 + owns or controls to make, have made, use, import, offer to sell and
44171 + sell ("Utilize") this software, but solely to the extent that any
44172 + such patent is necessary to Utilize the software alone, or in
44173 + combination with an operating system licensed under an approved Open
44174 + Source license as listed by the Open Source Initiative at
44175 + http://opensource.org/licenses. The patent license shall not apply to
44176 + any other combinations which include this software. No hardware per
44177 + se is licensed hereunder.
44179 + DISCLAIMER. THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND
44180 + CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING,
44181 + BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND
44182 + FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
44183 + COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
44184 + INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
44185 + BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS
44186 + OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
44187 + ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR
44188 + TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE
44189 + USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH
44192 +/* AUTO GEN PLEASE DO NOT MODIFY IT */
44193 +/* AUTO GEN PLEASE DO NOT MODIFY IT */
44196 +UCHAR FirmwareImage [] = {
44197 +0xff, 0xff, 0xff, 0x02, 0x10, 0x28, 0x02, 0x10, 0x32, 0x02, 0x10, 0x78, 0x02, 0x12, 0x67, 0x02,
44198 +0x12, 0x68, 0x02, 0x12, 0x87, 0x02, 0x12, 0x8c, 0x12, 0x12, 0x88, 0x22, 0x02, 0x16, 0x49, 0x02,
44199 +0x17, 0x1f, 0x02, 0x13, 0x77, 0x02, 0x12, 0x8d, 0x30, 0x05, 0x06, 0x20, 0x0d, 0x03, 0x12, 0x17,
44200 +0xc1, 0x22, 0x90, 0x01, 0x8c, 0xe0, 0x30, 0xe3, 0x1b, 0xe5, 0x4c, 0x30, 0xe0, 0x04, 0x7f, 0x40,
44201 +0x80, 0x02, 0x7f, 0x00, 0x90, 0x10, 0x2f, 0xef, 0xf0, 0x90, 0x01, 0x8c, 0x74, 0x08, 0xf0, 0xe4,
44202 +0x90, 0x01, 0xa7, 0xf0, 0x90, 0x01, 0x8c, 0xe0, 0x30, 0xe0, 0x1c, 0x90, 0x01, 0x80, 0xe0, 0xb4,
44203 +0x02, 0x15, 0xa3, 0xe0, 0xb4, 0x01, 0x10, 0x90, 0x01, 0x84, 0xe0, 0xb4, 0x81, 0x09, 0x90, 0x01,
44204 +0x8c, 0x74, 0x01, 0xf0, 0x12, 0x0d, 0xc8, 0x22, 0x90, 0x04, 0x14, 0xe0, 0x20, 0xe7, 0x03, 0x02,
44205 +0x12, 0x66, 0x90, 0x70, 0x12, 0xe0, 0xf5, 0x56, 0x90, 0x04, 0x04, 0xe0, 0x12, 0x0a, 0x9d, 0x10,
44206 +0xb7, 0x31, 0x10, 0xe0, 0x50, 0x11, 0x04, 0x51, 0x11, 0x0d, 0x52, 0x11, 0x0d, 0x53, 0x11, 0x0d,
44207 +0x54, 0x11, 0x4e, 0x55, 0x11, 0x7e, 0x70, 0x11, 0xa9, 0x71, 0x11, 0xd7, 0x72, 0x12, 0x1d, 0x73,
44208 +0x12, 0x3e, 0x80, 0x00, 0x00, 0x12, 0x66, 0x20, 0x02, 0x03, 0x30, 0x03, 0x1d, 0x7d, 0x02, 0xaf,
44209 +0x56, 0x12, 0x0b, 0x91, 0x90, 0x04, 0x14, 0x74, 0x80, 0xf0, 0xe4, 0x90, 0x70, 0x13, 0xf0, 0xe5,
44210 +0x56, 0xf4, 0x70, 0x03, 0x02, 0x12, 0x66, 0x02, 0x12, 0x5f, 0x85, 0x56, 0x41, 0xd2, 0x02, 0x22,
44211 +0x90, 0x70, 0x10, 0xe0, 0x54, 0x7f, 0x64, 0x02, 0x60, 0x03, 0x02, 0x12, 0x66, 0x90, 0x70, 0x11,
44212 +0xe0, 0x64, 0x08, 0x60, 0x08, 0xe0, 0x64, 0x20, 0x60, 0x03, 0x02, 0x12, 0x66, 0x75, 0x4e, 0x03,
44213 +0x75, 0x4f, 0x20, 0x22, 0x90, 0x70, 0x11, 0xe0, 0x24, 0xff, 0x92, 0x47, 0x22, 0x90, 0x04, 0x04,
44214 +0xe0, 0x25, 0xe0, 0x24, 0x5d, 0xf5, 0x57, 0x90, 0x70, 0x10, 0xe0, 0xff, 0x74, 0x47, 0x25, 0x57,
44215 +0xf8, 0xc6, 0xef, 0xc6, 0x90, 0x70, 0x11, 0xe0, 0xff, 0x74, 0x48, 0x25, 0x57, 0xf8, 0xc6, 0xef,
44216 +0xc6, 0xe4, 0xfd, 0xaf, 0x56, 0x12, 0x0b, 0x91, 0x90, 0x04, 0x14, 0x74, 0x80, 0xf0, 0xe4, 0x90,
44217 +0x70, 0x13, 0xf0, 0xe5, 0x56, 0xf4, 0x70, 0x03, 0x02, 0x12, 0x66, 0x02, 0x12, 0x5f, 0xe5, 0x47,
44218 +0x64, 0x07, 0x60, 0x0b, 0xe5, 0x47, 0x64, 0x08, 0x60, 0x05, 0xe5, 0x47, 0xb4, 0x09, 0x08, 0x90,
44219 +0x70, 0x11, 0xe0, 0x54, 0x0f, 0xf5, 0x3a, 0xe5, 0x47, 0xb4, 0x09, 0x08, 0xe5, 0x3a, 0xb4, 0x03,
44220 +0x03, 0xe4, 0xf5, 0x46, 0xe4, 0xfd, 0xaf, 0x56, 0x12, 0x0b, 0x91, 0xd2, 0x04, 0x22, 0x90, 0x70,
44221 +0x10, 0xe0, 0xfe, 0x90, 0x70, 0x11, 0xe0, 0xfd, 0xed, 0xf8, 0xe6, 0xf5, 0x57, 0xfd, 0xaf, 0x56,
44222 +0x12, 0x0b, 0x91, 0x90, 0x04, 0x14, 0x74, 0x80, 0xf0, 0xe4, 0x90, 0x70, 0x13, 0xf0, 0xe5, 0x56,
44223 +0xf4, 0x70, 0x03, 0x02, 0x12, 0x66, 0x02, 0x12, 0x5f, 0x90, 0x70, 0x10, 0xe0, 0xfe, 0x90, 0x70,
44224 +0x11, 0xe0, 0xfd, 0xed, 0xf5, 0x82, 0x8e, 0x83, 0xe0, 0xf5, 0x57, 0xfd, 0xaf, 0x56, 0x12, 0x0b,
44225 +0x91, 0x90, 0x04, 0x14, 0x74, 0x80, 0xf0, 0xe4, 0x90, 0x70, 0x13, 0xf0, 0xe5, 0x56, 0xf4, 0x70,
44226 +0x03, 0x02, 0x12, 0x66, 0x02, 0x12, 0x5f, 0x90, 0x10, 0x02, 0xe0, 0xb4, 0x70, 0x1e, 0xa3, 0xe0,
44227 +0xb4, 0x30, 0x19, 0x90, 0x05, 0x08, 0xe0, 0x44, 0x01, 0xf0, 0xfd, 0x90, 0x05, 0x05, 0xe0, 0x54,
44228 +0xfb, 0xf0, 0x44, 0x04, 0xf0, 0xed, 0x54, 0xfe, 0x90, 0x05, 0x08, 0xf0, 0xe4, 0xf5, 0x4e, 0xf5,
44229 +0x4f, 0x75, 0x3a, 0xff, 0xad, 0x57, 0xaf, 0x56, 0x12, 0x0b, 0x91, 0x90, 0x04, 0x14, 0x74, 0x80,
44230 +0xf0, 0xe4, 0x90, 0x70, 0x13, 0xf0, 0xe5, 0x56, 0xf4, 0x60, 0x4b, 0x80, 0x42, 0x90, 0x70, 0x10,
44231 +0xe0, 0x24, 0xff, 0x92, 0x93, 0xe4, 0xfd, 0xaf, 0x56, 0x12, 0x0b, 0x91, 0x90, 0x04, 0x14, 0x74,
44232 +0x80, 0xf0, 0xe4, 0x90, 0x70, 0x13, 0xf0, 0xe5, 0x56, 0xf4, 0x60, 0x2a, 0x80, 0x21, 0x90, 0x70,
44233 +0x10, 0xe0, 0x24, 0xff, 0x92, 0x4a, 0xd2, 0x05, 0xad, 0x57, 0xaf, 0x56, 0x12, 0x0b, 0x91, 0x90,
44234 +0x04, 0x14, 0x74, 0x80, 0xf0, 0xe4, 0x90, 0x70, 0x13, 0xf0, 0xe5, 0x56, 0xf4, 0x60, 0x07, 0x90,
44235 +0x70, 0x25, 0xe0, 0x44, 0x01, 0xf0, 0x22, 0x22, 0xe5, 0x53, 0x70, 0x1a, 0x30, 0x60, 0x09, 0xb2,
44236 +0x4d, 0x30, 0x4d, 0x04, 0x05, 0x46, 0xc2, 0x04, 0xe5, 0x4f, 0x45, 0x4e, 0x60, 0x08, 0xe5, 0x4f,
44237 +0x15, 0x4f, 0x70, 0x02, 0x15, 0x4e, 0x22, 0x22, 0xc2, 0x42, 0xd3, 0x22, 0x22, 0xc2, 0x4b, 0xc2,
44238 +0x4c, 0xe5, 0x44, 0x12, 0x0a, 0x9d, 0x12, 0xaf, 0x00, 0x13, 0x42, 0x04, 0x13, 0x3e, 0x08, 0x13,
44239 +0x19, 0x10, 0x12, 0xc3, 0x20, 0x12, 0xe3, 0x60, 0x12, 0xf4, 0xa0, 0x00, 0x00, 0x13, 0x44, 0x85,
44240 +0x48, 0x43, 0x85, 0x4a, 0x42, 0x85, 0x4c, 0x5e, 0xe5, 0x47, 0x64, 0x06, 0x60, 0x03, 0x02, 0x13,
44241 +0x44, 0x80, 0x1b, 0xe5, 0x48, 0xc4, 0x54, 0x0f, 0xf5, 0x43, 0xe5, 0x4a, 0xc4, 0x54, 0x0f, 0xf5,
44242 +0x42, 0xe5, 0x4c, 0xc4, 0x54, 0x0f, 0xf5, 0x5e, 0xe5, 0x47, 0x64, 0x06, 0x70, 0x66, 0x53, 0x43,
44243 +0x0f, 0x80, 0x61, 0x85, 0x49, 0x43, 0x85, 0x4b, 0x42, 0x85, 0x4d, 0x5e, 0xe5, 0x47, 0x64, 0x06,
44244 +0x70, 0x52, 0x80, 0x1b, 0xe5, 0x49, 0xc4, 0x54, 0x0f, 0xf5, 0x43, 0xe5, 0x4b, 0xc4, 0x54, 0x0f,
44245 +0xf5, 0x42, 0xe5, 0x4d, 0xc4, 0x54, 0x0f, 0xf5, 0x5e, 0xe5, 0x47, 0x64, 0x06, 0x70, 0x35, 0xe5,
44246 +0x43, 0x54, 0x0f, 0x44, 0x10, 0xf5, 0x43, 0x80, 0x2b, 0xe5, 0x47, 0xb4, 0x04, 0x06, 0x53, 0x5e,
44247 +0xfb, 0x75, 0x42, 0x09, 0xe5, 0x47, 0xb4, 0x05, 0x06, 0x43, 0x5e, 0x04, 0x75, 0x42, 0x09, 0xe5,
44248 +0x47, 0xb4, 0x06, 0x10, 0xe5, 0x43, 0x54, 0x0f, 0x44, 0x30, 0xf5, 0x43, 0x80, 0x06, 0xd2, 0x4b,
44249 +0x80, 0x02, 0xd2, 0x4c, 0xe4, 0xf5, 0x25, 0xe5, 0x42, 0xc4, 0x54, 0xf0, 0xff, 0xe5, 0x43, 0x54,
44250 +0x0f, 0x4f, 0xf5, 0x5f, 0x90, 0x70, 0x44, 0xf0, 0xa3, 0xe5, 0x5e, 0xf0, 0xa3, 0xe5, 0x4a, 0xf0,
44251 +0xa3, 0xe5, 0x48, 0xf0, 0xa3, 0xe5, 0x4c, 0xf0, 0xa3, 0xe5, 0x44, 0xf0, 0xa3, 0xe5, 0x42, 0xf0,
44252 +0xa3, 0xe5, 0x43, 0xf0, 0xd2, 0x60, 0x22, 0xe5, 0x47, 0x60, 0x10, 0x24, 0xc0, 0x70, 0x03, 0x12,
44253 +0x16, 0x29, 0x12, 0x13, 0x8c, 0xc2, 0xaf, 0xc2, 0x04, 0xd2, 0xaf, 0x22, 0xc2, 0xaf, 0x90, 0x04,
44254 +0x14, 0xe0, 0x54, 0x0e, 0x60, 0x04, 0xd2, 0x18, 0x80, 0x08, 0xe5, 0x4e, 0x45, 0x4f, 0x24, 0xff,
44255 +0x92, 0x18, 0xd2, 0xaf, 0x90, 0x04, 0x14, 0xe0, 0xa2, 0xe4, 0x92, 0x19, 0x74, 0x1e, 0xf0, 0xe5,
44256 +0x5f, 0x54, 0x0f, 0xf5, 0x2d, 0xe5, 0x25, 0x70, 0x13, 0x30, 0x18, 0x05, 0xe5, 0x5f, 0x20, 0xe5,
44257 +0x0b, 0x30, 0x19, 0x19, 0xe5, 0x5f, 0x54, 0x30, 0xff, 0xbf, 0x30, 0x11, 0xe5, 0x25, 0x70, 0x05,
44258 +0x75, 0x25, 0x0c, 0x80, 0x02, 0x15, 0x25, 0xd2, 0x6c, 0xd2, 0x6d, 0x80, 0x0f, 0xe5, 0x5f, 0x30,
44259 +0xe6, 0x06, 0xc2, 0x6c, 0xd2, 0x6d, 0x80, 0x04, 0xd2, 0x6c, 0xc2, 0x6d, 0xe5, 0x47, 0x64, 0x03,
44260 +0x70, 0x21, 0x30, 0x4b, 0x06, 0xc2, 0x6c, 0xd2, 0x6d, 0x80, 0x18, 0xe5, 0x25, 0x70, 0x03, 0x30,
44261 +0x4c, 0x11, 0xc2, 0x4c, 0xe5, 0x25, 0x70, 0x05, 0x75, 0x25, 0x07, 0x80, 0x02, 0x15, 0x25, 0xd2,
44262 +0x6c, 0xd2, 0x6d, 0xe5, 0x47, 0xb4, 0x09, 0x14, 0xe5, 0x44, 0x20, 0xe3, 0x0b, 0xe5, 0x3a, 0x64,
44263 +0x02, 0x60, 0x05, 0xe5, 0x3a, 0xb4, 0x03, 0x04, 0xc2, 0x6c, 0xd2, 0x6d, 0x90, 0x70, 0x46, 0xe5,
44264 +0x2d, 0xf0, 0x20, 0x69, 0x07, 0xe5, 0x5e, 0x20, 0xe0, 0x02, 0xb2, 0x68, 0x20, 0x6b, 0x07, 0xe5,
44265 +0x5e, 0x20, 0xe1, 0x02, 0xb2, 0x6a, 0x20, 0x6d, 0x07, 0xe5, 0x5e, 0x20, 0xe2, 0x02, 0xb2, 0x6c,
44266 +0x90, 0x70, 0x47, 0xe5, 0x2d, 0xf0, 0x75, 0x2e, 0x40, 0x20, 0x69, 0x04, 0xa2, 0x68, 0x80, 0x26,
44267 +0x30, 0x68, 0x06, 0xe5, 0x46, 0xa2, 0xe2, 0x80, 0x1d, 0xe5, 0x5e, 0x20, 0xe2, 0x04, 0x7f, 0x01,
44268 +0x80, 0x02, 0x7f, 0x00, 0xe5, 0x46, 0x54, 0xf0, 0xfe, 0xbe, 0xf0, 0x04, 0x7e, 0x01, 0x80, 0x02,
44269 +0x7e, 0x00, 0xee, 0x6f, 0x24, 0xff, 0x92, 0x73, 0x92, 0x72, 0x20, 0x6b, 0x04, 0xa2, 0x6a, 0x80,
44270 +0x26, 0x30, 0x6a, 0x06, 0xe5, 0x46, 0xa2, 0xe2, 0x80, 0x1d, 0xe5, 0x5e, 0x20, 0xe0, 0x04, 0x7f,
44271 +0x01, 0x80, 0x02, 0x7f, 0x00, 0xe5, 0x46, 0x54, 0xf0, 0xfe, 0xbe, 0xf0, 0x04, 0x7e, 0x01, 0x80,
44272 +0x02, 0x7e, 0x00, 0xee, 0x6f, 0x24, 0xff, 0x92, 0x75, 0x92, 0x74, 0x20, 0x6d, 0x04, 0xa2, 0x6c,
44273 +0x80, 0x26, 0x30, 0x6c, 0x06, 0xe5, 0x46, 0xa2, 0xe2, 0x80, 0x1d, 0xe5, 0x5e, 0x20, 0xe1, 0x04,
44274 +0x7f, 0x01, 0x80, 0x02, 0x7f, 0x00, 0xe5, 0x46, 0x54, 0xf0, 0xfe, 0xbe, 0xf0, 0x04, 0x7e, 0x01,
44275 +0x80, 0x02, 0x7e, 0x00, 0xee, 0x6f, 0x24, 0xff, 0x92, 0x71, 0x92, 0x70, 0x90, 0x10, 0x00, 0xe0,
44276 +0x90, 0x10, 0x2f, 0xf0, 0x90, 0x10, 0x03, 0xe0, 0xc3, 0x94, 0x30, 0x40, 0x14, 0xa2, 0x71, 0x92,
44277 +0x77, 0xa2, 0x70, 0x92, 0x76, 0xe5, 0x2e, 0x13, 0x13, 0x54, 0x3f, 0xf5, 0x2e, 0xc2, 0x77, 0xd2,
44278 +0x76, 0x90, 0x10, 0x2f, 0xe5, 0x2e, 0xf0, 0xe5, 0x47, 0x64, 0x06, 0x70, 0x4c, 0x90, 0x02, 0x29,
44279 +0xe0, 0x54, 0xfe, 0xf0, 0xe5, 0x43, 0xc4, 0x54, 0x0f, 0x14, 0x60, 0x14, 0x24, 0xfe, 0x60, 0x23,
44280 +0x24, 0x03, 0x60, 0x03, 0x02, 0x16, 0x18, 0x90, 0x02, 0x28, 0xe0, 0x30, 0x47, 0x0f, 0x80, 0x07,
44281 +0x90, 0x02, 0x28, 0xe0, 0x20, 0x47, 0x06, 0x54, 0xfe, 0xf0, 0x02, 0x16, 0x18, 0x44, 0x01, 0xf0,
44282 +0x02, 0x16, 0x18, 0xe5, 0x46, 0x30, 0xe2, 0x04, 0x7f, 0x01, 0x80, 0x02, 0x7f, 0x00, 0x90, 0x02,
44283 +0x28, 0xe0, 0x54, 0xfe, 0x4f, 0xf0, 0x02, 0x16, 0x18, 0xe5, 0x47, 0x64, 0x07, 0x60, 0x0f, 0xe5,
44284 +0x47, 0x64, 0x08, 0x60, 0x09, 0xe5, 0x47, 0x64, 0x09, 0x60, 0x03, 0x02, 0x16, 0x18, 0xe4, 0xf5,
44285 +0x27, 0x90, 0x02, 0x29, 0xe0, 0x54, 0xfc, 0xf0, 0xe5, 0x3a, 0x14, 0x60, 0x2d, 0x14, 0x60, 0x2e,
44286 +0x14, 0x60, 0x36, 0x24, 0xfc, 0x60, 0x5f, 0x24, 0xf9, 0x60, 0x1f, 0x24, 0x0e, 0x70, 0x69, 0xe5,
44287 +0x46, 0x13, 0x13, 0x54, 0x3f, 0x75, 0xf0, 0x03, 0x84, 0xaf, 0xf0, 0x20, 0x47, 0x04, 0x7e, 0x01,
44288 +0x80, 0x02, 0x7e, 0x00, 0xef, 0x6e, 0x24, 0xff, 0x80, 0x45, 0xa2, 0x47, 0x80, 0x41, 0xe5, 0x46,
44289 +0x30, 0xe2, 0x03, 0xd3, 0x80, 0x27, 0xc3, 0x80, 0x24, 0xe5, 0x46, 0x30, 0xe2, 0x0d, 0x54, 0x38,
44290 +0xc3, 0x94, 0x30, 0x50, 0x06, 0x7e, 0x00, 0x7f, 0x01, 0x80, 0x04, 0x7e, 0x00, 0x7f, 0x00, 0x20,
44291 +0x47, 0x04, 0x7d, 0x01, 0x80, 0x02, 0x7d, 0x00, 0xef, 0x6d, 0x4e, 0x24, 0xff, 0x92, 0x38, 0xa2,
44292 +0x47, 0xb3, 0x92, 0x39, 0x80, 0x19, 0xe5, 0x46, 0x30, 0xe2, 0x03, 0xd3, 0x80, 0x01, 0xc3, 0x92,
44293 +0x39, 0xa2, 0x47, 0xb3, 0x92, 0x38, 0x80, 0x07, 0xa2, 0x47, 0xb3, 0x92, 0x38, 0x92, 0x39, 0x90,
44294 +0x02, 0x28, 0xe0, 0x54, 0xfc, 0x45, 0x27, 0xf0, 0x90, 0x70, 0x9c, 0xe5, 0x3a, 0xf0, 0xa3, 0xe5,
44295 +0x47, 0xf0, 0x90, 0x70, 0x41, 0xe5, 0x3a, 0xf0, 0x22, 0xe4, 0x90, 0x02, 0x29, 0xf0, 0x30, 0x47,
44296 +0x04, 0xaf, 0x45, 0x80, 0x04, 0xe5, 0x45, 0xf4, 0xff, 0x90, 0x02, 0x28, 0xef, 0xf0, 0x22, 0x8f,
44297 +0x50, 0xd2, 0x59, 0x22, 0x8f, 0x54, 0xd2, 0x58, 0x22, 0xe4, 0xf5, 0x62, 0xc2, 0xaf, 0xe5, 0x51,
44298 +0x14, 0x60, 0x46, 0x14, 0x60, 0x62, 0x24, 0x02, 0x60, 0x03, 0x02, 0x17, 0x03, 0xd2, 0x59, 0x75,
44299 +0x55, 0x01, 0x90, 0x02, 0xa2, 0xe0, 0x54, 0x7f, 0xf0, 0xa3, 0xe0, 0x20, 0xe7, 0x22, 0x90, 0x04,
44300 +0x34, 0xe0, 0xb4, 0x02, 0x1b, 0xa3, 0xe0, 0xb4, 0x02, 0x16, 0xa3, 0xe0, 0xb4, 0x02, 0x11, 0x7f,
44301 +0x20, 0x12, 0x16, 0x3f, 0x90, 0x10, 0x04, 0xe0, 0x54, 0xf3, 0xf0, 0x75, 0x51, 0x01, 0x80, 0x73,
44302 +0xe5, 0x50, 0x70, 0x05, 0x75, 0x62, 0x03, 0x80, 0x6a, 0x90, 0x12, 0x00, 0xe0, 0x54, 0x03, 0x70,
44303 +0x11, 0x7f, 0x20, 0x12, 0x16, 0x3f, 0x90, 0x02, 0xa2, 0xe0, 0x54, 0xbf, 0xf0, 0x75, 0x51, 0x02,
44304 +0x80, 0x51, 0xe5, 0x50, 0x70, 0x02, 0x80, 0x46, 0x90, 0x02, 0xa3, 0xe0, 0x20, 0xe6, 0x3b, 0x90,
44305 +0x04, 0x37, 0xe0, 0x64, 0x22, 0x70, 0x33, 0x90, 0x01, 0x8a, 0x74, 0x7e, 0xf0, 0x90, 0x01, 0x96,
44306 +0xf0, 0x90, 0x12, 0x04, 0x74, 0x0a, 0xf0, 0x90, 0x13, 0x28, 0xe0, 0x54, 0xf0, 0xf0, 0xa3, 0xe0,
44307 +0x54, 0xf0, 0xf0, 0xa3, 0xe0, 0x54, 0xfa, 0xf0, 0x90, 0x04, 0x01, 0xe0, 0x54, 0xf9, 0xf0, 0x75,
44308 +0x62, 0x01, 0x75, 0x55, 0x02, 0xe4, 0xf5, 0x51, 0x80, 0x09, 0xe5, 0x50, 0x70, 0x05, 0x75, 0x62,
44309 +0x03, 0xf5, 0x51, 0xe5, 0x62, 0x60, 0x15, 0xc2, 0x01, 0xe4, 0xf5, 0x51, 0xc2, 0x59, 0xad, 0x62,
44310 +0xaf, 0x40, 0x12, 0x17, 0x8d, 0xe5, 0x62, 0xb4, 0x03, 0x02, 0xd2, 0x03, 0xd2, 0xaf, 0x22, 0xc2,
44311 +0xaf, 0x30, 0x01, 0x12, 0xe4, 0x90, 0x01, 0x96, 0xf0, 0xf5, 0x51, 0xc2, 0x59, 0xc2, 0x01, 0x7d,
44312 +0x02, 0xaf, 0x40, 0x12, 0x17, 0x8d, 0xe5, 0x52, 0x14, 0x60, 0x09, 0x04, 0x70, 0x4c, 0x75, 0x52,
44313 +0x01, 0x75, 0x55, 0x03, 0x90, 0x04, 0x01, 0xe0, 0x44, 0x0e, 0xf0, 0x90, 0x13, 0x28, 0xe0, 0x44,
44314 +0x0f, 0xf0, 0xa3, 0xe0, 0x44, 0x0f, 0xf0, 0xa3, 0xe0, 0x44, 0x05, 0xf0, 0x90, 0x12, 0x04, 0x74,
44315 +0x03, 0xf0, 0x90, 0x02, 0xa2, 0xe0, 0x44, 0xc0, 0xf0, 0x90, 0x10, 0x04, 0xe0, 0x44, 0x0c, 0xf0,
44316 +0xe4, 0xf5, 0x52, 0xf5, 0x55, 0x30, 0x02, 0x0b, 0xc2, 0x02, 0x7d, 0x01, 0xaf, 0x41, 0x12, 0x17,
44317 +0x8d, 0x80, 0x02, 0xc2, 0x03, 0xe4, 0x90, 0x01, 0x96, 0xf0, 0xd2, 0xaf, 0x22, 0xef, 0xf4, 0x60,
44318 +0x2d, 0xe4, 0xfe, 0x74, 0x14, 0x2e, 0xf5, 0x82, 0xe4, 0x34, 0x70, 0xf5, 0x83, 0xe0, 0xb4, 0xff,
44319 +0x19, 0x74, 0x14, 0x2e, 0xf5, 0x82, 0xe4, 0x34, 0x70, 0xf5, 0x83, 0xef, 0xf0, 0x74, 0x1c, 0x2e,
44320 +0xf5, 0x82, 0xe4, 0x34, 0x70, 0xf5, 0x83, 0xed, 0xf0, 0x22, 0x0e, 0xbe, 0x04, 0xd5, 0x22, 0x22,
44321 +0x22, 0x90, 0x70, 0x2a, 0xe0, 0x30, 0xe1, 0x4d, 0xc2, 0xaf, 0x90, 0x70, 0x28, 0xe0, 0x90, 0x10,
44322 +0x1c, 0xf0, 0x90, 0x70, 0x29, 0xe0, 0x90, 0x10, 0x1d, 0xf0, 0x90, 0x70, 0x2a, 0xe0, 0x90, 0x10,
44323 +0x1e, 0xf0, 0x90, 0x10, 0x1c, 0xe0, 0xf5, 0x62, 0x90, 0x10, 0x1e, 0xe0, 0x20, 0xe1, 0xf3, 0x90,
44324 +0x10, 0x1c, 0xe0, 0x90, 0x70, 0x28, 0xf0, 0x90, 0x10, 0x1d, 0xe0, 0x90, 0x70, 0x29, 0xf0, 0x90,
44325 +0x10, 0x1e, 0xe0, 0x90, 0x70, 0x2a, 0xf0, 0x30, 0x4a, 0x07, 0x90, 0x70, 0x24, 0xe0, 0x44, 0x01,
44326 +0xf0, 0xc2, 0x05, 0xd2, 0xaf, 0x22, 0x22, 0x22, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44327 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44328 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44329 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44330 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44331 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44332 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44333 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44334 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44335 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44336 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44337 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44338 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44339 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44340 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44341 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44342 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44343 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44344 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44345 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44346 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44347 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44348 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44349 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44350 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44351 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44352 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44353 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44354 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44355 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44356 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44357 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44358 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44359 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44360 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44361 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44362 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44363 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44364 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44365 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44366 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44367 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44368 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44369 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44370 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44371 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44372 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44373 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44374 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44375 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44376 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44377 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44378 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44379 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44380 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44381 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44382 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44383 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44384 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44385 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44386 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44387 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44388 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44389 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44390 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44391 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44392 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44393 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44394 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44395 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44396 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44397 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44398 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44399 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44400 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44401 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44402 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44403 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44404 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44405 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44406 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44407 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44408 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44409 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44410 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44411 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44412 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44413 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44414 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44415 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44416 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44417 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44418 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44419 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44420 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44421 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44422 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44423 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44424 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44425 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44426 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44427 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44428 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44429 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44430 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44431 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44432 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44433 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44434 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44435 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44436 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44437 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44438 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44439 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44440 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44441 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44442 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44443 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44444 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44445 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44446 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44447 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44448 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44449 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44450 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44451 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44452 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x0c, 0x94, 0x3f,
44453 +0xff, 0xff, 0xff, 0x02, 0x10, 0x28, 0x02, 0x10, 0x32, 0x02, 0x10, 0x78, 0x02, 0x12, 0x67, 0x02,
44454 +0x12, 0x68, 0x02, 0x12, 0x87, 0x02, 0x12, 0x8c, 0x12, 0x12, 0x88, 0x22, 0x02, 0x16, 0x49, 0x02,
44455 +0x17, 0x1f, 0x02, 0x13, 0x77, 0x02, 0x12, 0x8d, 0x30, 0x05, 0x06, 0x20, 0x0d, 0x03, 0x12, 0x17,
44456 +0xc1, 0x22, 0x90, 0x01, 0x8c, 0xe0, 0x30, 0xe3, 0x1b, 0xe5, 0x4c, 0x30, 0xe0, 0x04, 0x7f, 0x40,
44457 +0x80, 0x02, 0x7f, 0x00, 0x90, 0x10, 0x2f, 0xef, 0xf0, 0x90, 0x01, 0x8c, 0x74, 0x08, 0xf0, 0xe4,
44458 +0x90, 0x01, 0xa7, 0xf0, 0x90, 0x01, 0x8c, 0xe0, 0x30, 0xe0, 0x1c, 0x90, 0x01, 0x80, 0xe0, 0xb4,
44459 +0x02, 0x15, 0xa3, 0xe0, 0xb4, 0x01, 0x10, 0x90, 0x01, 0x84, 0xe0, 0xb4, 0x81, 0x09, 0x90, 0x01,
44460 +0x8c, 0x74, 0x01, 0xf0, 0x12, 0x0d, 0xdd, 0x22, 0x90, 0x04, 0x14, 0xe0, 0x20, 0xe7, 0x03, 0x02,
44461 +0x12, 0x66, 0x90, 0x70, 0x12, 0xe0, 0xf5, 0x56, 0x90, 0x04, 0x04, 0xe0, 0x12, 0x0a, 0xb6, 0x10,
44462 +0xb7, 0x31, 0x10, 0xe0, 0x50, 0x11, 0x04, 0x51, 0x11, 0x0d, 0x52, 0x11, 0x0d, 0x53, 0x11, 0x0d,
44463 +0x54, 0x11, 0x4e, 0x55, 0x11, 0x7e, 0x70, 0x11, 0xa9, 0x71, 0x11, 0xd7, 0x72, 0x12, 0x1d, 0x73,
44464 +0x12, 0x3e, 0x80, 0x00, 0x00, 0x12, 0x66, 0x20, 0x02, 0x03, 0x30, 0x03, 0x1d, 0x7d, 0x02, 0xaf,
44465 +0x56, 0x12, 0x0b, 0xaa, 0x90, 0x04, 0x14, 0x74, 0x80, 0xf0, 0xe4, 0x90, 0x70, 0x13, 0xf0, 0xe5,
44466 +0x56, 0xf4, 0x70, 0x03, 0x02, 0x12, 0x66, 0x02, 0x12, 0x5f, 0x85, 0x56, 0x41, 0xd2, 0x02, 0x22,
44467 +0x90, 0x70, 0x10, 0xe0, 0x54, 0x7f, 0x64, 0x02, 0x60, 0x03, 0x02, 0x12, 0x66, 0x90, 0x70, 0x11,
44468 +0xe0, 0x64, 0x08, 0x60, 0x08, 0xe0, 0x64, 0x20, 0x60, 0x03, 0x02, 0x12, 0x66, 0x75, 0x4e, 0x03,
44469 +0x75, 0x4f, 0x20, 0x22, 0x90, 0x70, 0x11, 0xe0, 0x24, 0xff, 0x92, 0x47, 0x22, 0x90, 0x04, 0x04,
44470 +0xe0, 0x25, 0xe0, 0x24, 0x5d, 0xf5, 0x57, 0x90, 0x70, 0x10, 0xe0, 0xff, 0x74, 0x47, 0x25, 0x57,
44471 +0xf8, 0xc6, 0xef, 0xc6, 0x90, 0x70, 0x11, 0xe0, 0xff, 0x74, 0x48, 0x25, 0x57, 0xf8, 0xc6, 0xef,
44472 +0xc6, 0xe4, 0xfd, 0xaf, 0x56, 0x12, 0x0b, 0xaa, 0x90, 0x04, 0x14, 0x74, 0x80, 0xf0, 0xe4, 0x90,
44473 +0x70, 0x13, 0xf0, 0xe5, 0x56, 0xf4, 0x70, 0x03, 0x02, 0x12, 0x66, 0x02, 0x12, 0x5f, 0xe5, 0x47,
44474 +0x64, 0x07, 0x60, 0x0b, 0xe5, 0x47, 0x64, 0x08, 0x60, 0x05, 0xe5, 0x47, 0xb4, 0x09, 0x08, 0x90,
44475 +0x70, 0x11, 0xe0, 0x54, 0x0f, 0xf5, 0x3a, 0xe5, 0x47, 0xb4, 0x09, 0x08, 0xe5, 0x3a, 0xb4, 0x03,
44476 +0x03, 0xe4, 0xf5, 0x46, 0xe4, 0xfd, 0xaf, 0x56, 0x12, 0x0b, 0xaa, 0xd2, 0x04, 0x22, 0x90, 0x70,
44477 +0x10, 0xe0, 0xfe, 0x90, 0x70, 0x11, 0xe0, 0xfd, 0xed, 0xf8, 0xe6, 0xf5, 0x57, 0xfd, 0xaf, 0x56,
44478 +0x12, 0x0b, 0xaa, 0x90, 0x04, 0x14, 0x74, 0x80, 0xf0, 0xe4, 0x90, 0x70, 0x13, 0xf0, 0xe5, 0x56,
44479 +0xf4, 0x70, 0x03, 0x02, 0x12, 0x66, 0x02, 0x12, 0x5f, 0x90, 0x70, 0x10, 0xe0, 0xfe, 0x90, 0x70,
44480 +0x11, 0xe0, 0xfd, 0xed, 0xf5, 0x82, 0x8e, 0x83, 0xe0, 0xf5, 0x57, 0xfd, 0xaf, 0x56, 0x12, 0x0b,
44481 +0xaa, 0x90, 0x04, 0x14, 0x74, 0x80, 0xf0, 0xe4, 0x90, 0x70, 0x13, 0xf0, 0xe5, 0x56, 0xf4, 0x70,
44482 +0x03, 0x02, 0x12, 0x66, 0x02, 0x12, 0x5f, 0x90, 0x10, 0x02, 0xe0, 0xb4, 0x70, 0x1e, 0xa3, 0xe0,
44483 +0xb4, 0x30, 0x19, 0x90, 0x05, 0x08, 0xe0, 0x44, 0x01, 0xf0, 0xfd, 0x90, 0x05, 0x05, 0xe0, 0x54,
44484 +0xfb, 0xf0, 0x44, 0x04, 0xf0, 0xed, 0x54, 0xfe, 0x90, 0x05, 0x08, 0xf0, 0xe4, 0xf5, 0x4e, 0xf5,
44485 +0x4f, 0x75, 0x3a, 0xff, 0xad, 0x57, 0xaf, 0x56, 0x12, 0x0b, 0xaa, 0x90, 0x04, 0x14, 0x74, 0x80,
44486 +0xf0, 0xe4, 0x90, 0x70, 0x13, 0xf0, 0xe5, 0x56, 0xf4, 0x60, 0x4b, 0x80, 0x42, 0x90, 0x70, 0x10,
44487 +0xe0, 0x24, 0xff, 0x92, 0x93, 0xe4, 0xfd, 0xaf, 0x56, 0x12, 0x0b, 0xaa, 0x90, 0x04, 0x14, 0x74,
44488 +0x80, 0xf0, 0xe4, 0x90, 0x70, 0x13, 0xf0, 0xe5, 0x56, 0xf4, 0x60, 0x2a, 0x80, 0x21, 0x90, 0x70,
44489 +0x10, 0xe0, 0x24, 0xff, 0x92, 0x4a, 0xd2, 0x05, 0xad, 0x57, 0xaf, 0x56, 0x12, 0x0b, 0xaa, 0x90,
44490 +0x04, 0x14, 0x74, 0x80, 0xf0, 0xe4, 0x90, 0x70, 0x13, 0xf0, 0xe5, 0x56, 0xf4, 0x60, 0x07, 0x90,
44491 +0x70, 0x25, 0xe0, 0x44, 0x01, 0xf0, 0x22, 0x22, 0xe5, 0x53, 0x70, 0x1a, 0x30, 0x60, 0x09, 0xb2,
44492 +0x4d, 0x30, 0x4d, 0x04, 0x05, 0x46, 0xc2, 0x04, 0xe5, 0x4f, 0x45, 0x4e, 0x60, 0x08, 0xe5, 0x4f,
44493 +0x15, 0x4f, 0x70, 0x02, 0x15, 0x4e, 0x22, 0x22, 0xc2, 0x42, 0xd3, 0x22, 0x22, 0xc2, 0x4b, 0xc2,
44494 +0x4c, 0xe5, 0x44, 0x12, 0x0a, 0xb6, 0x12, 0xaf, 0x00, 0x13, 0x42, 0x04, 0x13, 0x3e, 0x08, 0x13,
44495 +0x19, 0x10, 0x12, 0xc3, 0x20, 0x12, 0xe3, 0x60, 0x12, 0xf4, 0xa0, 0x00, 0x00, 0x13, 0x44, 0x85,
44496 +0x48, 0x43, 0x85, 0x4a, 0x42, 0x85, 0x4c, 0x5e, 0xe5, 0x47, 0x64, 0x06, 0x60, 0x03, 0x02, 0x13,
44497 +0x44, 0x80, 0x1b, 0xe5, 0x48, 0xc4, 0x54, 0x0f, 0xf5, 0x43, 0xe5, 0x4a, 0xc4, 0x54, 0x0f, 0xf5,
44498 +0x42, 0xe5, 0x4c, 0xc4, 0x54, 0x0f, 0xf5, 0x5e, 0xe5, 0x47, 0x64, 0x06, 0x70, 0x66, 0x53, 0x43,
44499 +0x0f, 0x80, 0x61, 0x85, 0x49, 0x43, 0x85, 0x4b, 0x42, 0x85, 0x4d, 0x5e, 0xe5, 0x47, 0x64, 0x06,
44500 +0x70, 0x52, 0x80, 0x1b, 0xe5, 0x49, 0xc4, 0x54, 0x0f, 0xf5, 0x43, 0xe5, 0x4b, 0xc4, 0x54, 0x0f,
44501 +0xf5, 0x42, 0xe5, 0x4d, 0xc4, 0x54, 0x0f, 0xf5, 0x5e, 0xe5, 0x47, 0x64, 0x06, 0x70, 0x35, 0xe5,
44502 +0x43, 0x54, 0x0f, 0x44, 0x10, 0xf5, 0x43, 0x80, 0x2b, 0xe5, 0x47, 0xb4, 0x04, 0x06, 0x53, 0x5e,
44503 +0xfb, 0x75, 0x42, 0x09, 0xe5, 0x47, 0xb4, 0x05, 0x06, 0x43, 0x5e, 0x04, 0x75, 0x42, 0x09, 0xe5,
44504 +0x47, 0xb4, 0x06, 0x10, 0xe5, 0x43, 0x54, 0x0f, 0x44, 0x30, 0xf5, 0x43, 0x80, 0x06, 0xd2, 0x4b,
44505 +0x80, 0x02, 0xd2, 0x4c, 0xe4, 0xf5, 0x25, 0xe5, 0x42, 0xc4, 0x54, 0xf0, 0xff, 0xe5, 0x43, 0x54,
44506 +0x0f, 0x4f, 0xf5, 0x5f, 0x90, 0x70, 0x44, 0xf0, 0xa3, 0xe5, 0x5e, 0xf0, 0xa3, 0xe5, 0x4a, 0xf0,
44507 +0xa3, 0xe5, 0x48, 0xf0, 0xa3, 0xe5, 0x4c, 0xf0, 0xa3, 0xe5, 0x44, 0xf0, 0xa3, 0xe5, 0x42, 0xf0,
44508 +0xa3, 0xe5, 0x43, 0xf0, 0xd2, 0x60, 0x22, 0xe5, 0x47, 0x60, 0x10, 0x24, 0xc0, 0x70, 0x03, 0x12,
44509 +0x16, 0x29, 0x12, 0x13, 0x8c, 0xc2, 0xaf, 0xc2, 0x04, 0xd2, 0xaf, 0x22, 0xc2, 0xaf, 0x90, 0x04,
44510 +0x14, 0xe0, 0x54, 0x0e, 0x60, 0x04, 0xd2, 0x18, 0x80, 0x08, 0xe5, 0x4e, 0x45, 0x4f, 0x24, 0xff,
44511 +0x92, 0x18, 0xd2, 0xaf, 0x90, 0x04, 0x14, 0xe0, 0xa2, 0xe4, 0x92, 0x19, 0x74, 0x1e, 0xf0, 0xe5,
44512 +0x5f, 0x54, 0x0f, 0xf5, 0x2d, 0xe5, 0x25, 0x70, 0x13, 0x30, 0x18, 0x05, 0xe5, 0x5f, 0x20, 0xe5,
44513 +0x0b, 0x30, 0x19, 0x19, 0xe5, 0x5f, 0x54, 0x30, 0xff, 0xbf, 0x30, 0x11, 0xe5, 0x25, 0x70, 0x05,
44514 +0x75, 0x25, 0x0c, 0x80, 0x02, 0x15, 0x25, 0xd2, 0x6c, 0xd2, 0x6d, 0x80, 0x0f, 0xe5, 0x5f, 0x30,
44515 +0xe6, 0x06, 0xc2, 0x6c, 0xd2, 0x6d, 0x80, 0x04, 0xd2, 0x6c, 0xc2, 0x6d, 0xe5, 0x47, 0x64, 0x03,
44516 +0x70, 0x21, 0x30, 0x4b, 0x06, 0xc2, 0x6c, 0xd2, 0x6d, 0x80, 0x18, 0xe5, 0x25, 0x70, 0x03, 0x30,
44517 +0x4c, 0x11, 0xc2, 0x4c, 0xe5, 0x25, 0x70, 0x05, 0x75, 0x25, 0x07, 0x80, 0x02, 0x15, 0x25, 0xd2,
44518 +0x6c, 0xd2, 0x6d, 0xe5, 0x47, 0xb4, 0x09, 0x14, 0xe5, 0x44, 0x20, 0xe3, 0x0b, 0xe5, 0x3a, 0x64,
44519 +0x02, 0x60, 0x05, 0xe5, 0x3a, 0xb4, 0x03, 0x04, 0xc2, 0x6c, 0xd2, 0x6d, 0x90, 0x70, 0x46, 0xe5,
44520 +0x2d, 0xf0, 0x20, 0x69, 0x07, 0xe5, 0x5e, 0x20, 0xe0, 0x02, 0xb2, 0x68, 0x20, 0x6b, 0x07, 0xe5,
44521 +0x5e, 0x20, 0xe1, 0x02, 0xb2, 0x6a, 0x20, 0x6d, 0x07, 0xe5, 0x5e, 0x20, 0xe2, 0x02, 0xb2, 0x6c,
44522 +0x90, 0x70, 0x47, 0xe5, 0x2d, 0xf0, 0x75, 0x2e, 0x40, 0x20, 0x69, 0x04, 0xa2, 0x68, 0x80, 0x26,
44523 +0x30, 0x68, 0x06, 0xe5, 0x46, 0xa2, 0xe2, 0x80, 0x1d, 0xe5, 0x5e, 0x20, 0xe2, 0x04, 0x7f, 0x01,
44524 +0x80, 0x02, 0x7f, 0x00, 0xe5, 0x46, 0x54, 0xf0, 0xfe, 0xbe, 0xf0, 0x04, 0x7e, 0x01, 0x80, 0x02,
44525 +0x7e, 0x00, 0xee, 0x6f, 0x24, 0xff, 0x92, 0x73, 0x92, 0x72, 0x20, 0x6b, 0x04, 0xa2, 0x6a, 0x80,
44526 +0x26, 0x30, 0x6a, 0x06, 0xe5, 0x46, 0xa2, 0xe2, 0x80, 0x1d, 0xe5, 0x5e, 0x20, 0xe0, 0x04, 0x7f,
44527 +0x01, 0x80, 0x02, 0x7f, 0x00, 0xe5, 0x46, 0x54, 0xf0, 0xfe, 0xbe, 0xf0, 0x04, 0x7e, 0x01, 0x80,
44528 +0x02, 0x7e, 0x00, 0xee, 0x6f, 0x24, 0xff, 0x92, 0x75, 0x92, 0x74, 0x20, 0x6d, 0x04, 0xa2, 0x6c,
44529 +0x80, 0x26, 0x30, 0x6c, 0x06, 0xe5, 0x46, 0xa2, 0xe2, 0x80, 0x1d, 0xe5, 0x5e, 0x20, 0xe1, 0x04,
44530 +0x7f, 0x01, 0x80, 0x02, 0x7f, 0x00, 0xe5, 0x46, 0x54, 0xf0, 0xfe, 0xbe, 0xf0, 0x04, 0x7e, 0x01,
44531 +0x80, 0x02, 0x7e, 0x00, 0xee, 0x6f, 0x24, 0xff, 0x92, 0x71, 0x92, 0x70, 0x90, 0x10, 0x00, 0xe0,
44532 +0x90, 0x10, 0x2f, 0xf0, 0x90, 0x10, 0x03, 0xe0, 0xc3, 0x94, 0x30, 0x40, 0x14, 0xa2, 0x71, 0x92,
44533 +0x77, 0xa2, 0x70, 0x92, 0x76, 0xe5, 0x2e, 0x13, 0x13, 0x54, 0x3f, 0xf5, 0x2e, 0xc2, 0x77, 0xd2,
44534 +0x76, 0x90, 0x10, 0x2f, 0xe5, 0x2e, 0xf0, 0xe5, 0x47, 0x64, 0x06, 0x70, 0x4c, 0x90, 0x02, 0x29,
44535 +0xe0, 0x54, 0xfe, 0xf0, 0xe5, 0x43, 0xc4, 0x54, 0x0f, 0x14, 0x60, 0x14, 0x24, 0xfe, 0x60, 0x23,
44536 +0x24, 0x03, 0x60, 0x03, 0x02, 0x16, 0x18, 0x90, 0x02, 0x28, 0xe0, 0x30, 0x47, 0x0f, 0x80, 0x07,
44537 +0x90, 0x02, 0x28, 0xe0, 0x20, 0x47, 0x06, 0x54, 0xfe, 0xf0, 0x02, 0x16, 0x18, 0x44, 0x01, 0xf0,
44538 +0x02, 0x16, 0x18, 0xe5, 0x46, 0x30, 0xe2, 0x04, 0x7f, 0x01, 0x80, 0x02, 0x7f, 0x00, 0x90, 0x02,
44539 +0x28, 0xe0, 0x54, 0xfe, 0x4f, 0xf0, 0x02, 0x16, 0x18, 0xe5, 0x47, 0x64, 0x07, 0x60, 0x0f, 0xe5,
44540 +0x47, 0x64, 0x08, 0x60, 0x09, 0xe5, 0x47, 0x64, 0x09, 0x60, 0x03, 0x02, 0x16, 0x18, 0xe4, 0xf5,
44541 +0x27, 0x90, 0x02, 0x29, 0xe0, 0x54, 0xfc, 0xf0, 0xe5, 0x3a, 0x14, 0x60, 0x2d, 0x14, 0x60, 0x2e,
44542 +0x14, 0x60, 0x36, 0x24, 0xfc, 0x60, 0x5f, 0x24, 0xf9, 0x60, 0x1f, 0x24, 0x0e, 0x70, 0x69, 0xe5,
44543 +0x46, 0x13, 0x13, 0x54, 0x3f, 0x75, 0xf0, 0x03, 0x84, 0xaf, 0xf0, 0x20, 0x47, 0x04, 0x7e, 0x01,
44544 +0x80, 0x02, 0x7e, 0x00, 0xef, 0x6e, 0x24, 0xff, 0x80, 0x45, 0xa2, 0x47, 0x80, 0x41, 0xe5, 0x46,
44545 +0x30, 0xe2, 0x03, 0xd3, 0x80, 0x27, 0xc3, 0x80, 0x24, 0xe5, 0x46, 0x30, 0xe2, 0x0d, 0x54, 0x38,
44546 +0xc3, 0x94, 0x30, 0x50, 0x06, 0x7e, 0x00, 0x7f, 0x01, 0x80, 0x04, 0x7e, 0x00, 0x7f, 0x00, 0x20,
44547 +0x47, 0x04, 0x7d, 0x01, 0x80, 0x02, 0x7d, 0x00, 0xef, 0x6d, 0x4e, 0x24, 0xff, 0x92, 0x38, 0xa2,
44548 +0x47, 0xb3, 0x92, 0x39, 0x80, 0x19, 0xe5, 0x46, 0x30, 0xe2, 0x03, 0xd3, 0x80, 0x01, 0xc3, 0x92,
44549 +0x39, 0xa2, 0x47, 0xb3, 0x92, 0x38, 0x80, 0x07, 0xa2, 0x47, 0xb3, 0x92, 0x38, 0x92, 0x39, 0x90,
44550 +0x02, 0x28, 0xe0, 0x54, 0xfc, 0x45, 0x27, 0xf0, 0x90, 0x70, 0x9c, 0xe5, 0x3a, 0xf0, 0xa3, 0xe5,
44551 +0x47, 0xf0, 0x90, 0x70, 0x41, 0xe5, 0x3a, 0xf0, 0x22, 0xe4, 0x90, 0x02, 0x29, 0xf0, 0x30, 0x47,
44552 +0x04, 0xaf, 0x45, 0x80, 0x04, 0xe5, 0x45, 0xf4, 0xff, 0x90, 0x02, 0x28, 0xef, 0xf0, 0x22, 0x8f,
44553 +0x50, 0xd2, 0x59, 0x22, 0x8f, 0x54, 0xd2, 0x58, 0x22, 0xe4, 0xf5, 0x62, 0xc2, 0xaf, 0xe5, 0x51,
44554 +0x14, 0x60, 0x46, 0x14, 0x60, 0x62, 0x24, 0x02, 0x60, 0x03, 0x02, 0x17, 0x03, 0xd2, 0x59, 0x75,
44555 +0x55, 0x01, 0x90, 0x02, 0xa2, 0xe0, 0x54, 0x7f, 0xf0, 0xa3, 0xe0, 0x20, 0xe7, 0x22, 0x90, 0x04,
44556 +0x34, 0xe0, 0xb4, 0x02, 0x1b, 0xa3, 0xe0, 0xb4, 0x02, 0x16, 0xa3, 0xe0, 0xb4, 0x02, 0x11, 0x7f,
44557 +0x20, 0x12, 0x16, 0x3f, 0x90, 0x10, 0x04, 0xe0, 0x54, 0xf3, 0xf0, 0x75, 0x51, 0x01, 0x80, 0x73,
44558 +0xe5, 0x50, 0x70, 0x05, 0x75, 0x62, 0x03, 0x80, 0x6a, 0x90, 0x12, 0x00, 0xe0, 0x54, 0x03, 0x70,
44559 +0x11, 0x7f, 0x20, 0x12, 0x16, 0x3f, 0x90, 0x02, 0xa2, 0xe0, 0x54, 0xbf, 0xf0, 0x75, 0x51, 0x02,
44560 +0x80, 0x51, 0xe5, 0x50, 0x70, 0x02, 0x80, 0x46, 0x90, 0x02, 0xa3, 0xe0, 0x20, 0xe6, 0x3b, 0x90,
44561 +0x04, 0x37, 0xe0, 0x64, 0x22, 0x70, 0x33, 0x90, 0x01, 0x8a, 0x74, 0x7e, 0xf0, 0x90, 0x01, 0x96,
44562 +0xf0, 0x90, 0x12, 0x04, 0x74, 0x0a, 0xf0, 0x90, 0x13, 0x28, 0xe0, 0x54, 0xf0, 0xf0, 0xa3, 0xe0,
44563 +0x54, 0xf0, 0xf0, 0xa3, 0xe0, 0x54, 0xfa, 0xf0, 0x90, 0x04, 0x01, 0xe0, 0x54, 0xf9, 0xf0, 0x75,
44564 +0x62, 0x01, 0x75, 0x55, 0x02, 0xe4, 0xf5, 0x51, 0x80, 0x09, 0xe5, 0x50, 0x70, 0x05, 0x75, 0x62,
44565 +0x03, 0xf5, 0x51, 0xe5, 0x62, 0x60, 0x15, 0xc2, 0x01, 0xe4, 0xf5, 0x51, 0xc2, 0x59, 0xad, 0x62,
44566 +0xaf, 0x40, 0x12, 0x17, 0x8d, 0xe5, 0x62, 0xb4, 0x03, 0x02, 0xd2, 0x03, 0xd2, 0xaf, 0x22, 0xc2,
44567 +0xaf, 0x30, 0x01, 0x12, 0xe4, 0x90, 0x01, 0x96, 0xf0, 0xf5, 0x51, 0xc2, 0x59, 0xc2, 0x01, 0x7d,
44568 +0x02, 0xaf, 0x40, 0x12, 0x17, 0x8d, 0xe5, 0x52, 0x14, 0x60, 0x09, 0x04, 0x70, 0x4c, 0x75, 0x52,
44569 +0x01, 0x75, 0x55, 0x03, 0x90, 0x04, 0x01, 0xe0, 0x44, 0x0e, 0xf0, 0x90, 0x13, 0x28, 0xe0, 0x44,
44570 +0x0f, 0xf0, 0xa3, 0xe0, 0x44, 0x0f, 0xf0, 0xa3, 0xe0, 0x44, 0x05, 0xf0, 0x90, 0x12, 0x04, 0x74,
44571 +0x03, 0xf0, 0x90, 0x02, 0xa2, 0xe0, 0x44, 0xc0, 0xf0, 0x90, 0x10, 0x04, 0xe0, 0x44, 0x0c, 0xf0,
44572 +0xe4, 0xf5, 0x52, 0xf5, 0x55, 0x30, 0x02, 0x0b, 0xc2, 0x02, 0x7d, 0x01, 0xaf, 0x41, 0x12, 0x17,
44573 +0x8d, 0x80, 0x02, 0xc2, 0x03, 0xe4, 0x90, 0x01, 0x96, 0xf0, 0xd2, 0xaf, 0x22, 0xef, 0xf4, 0x60,
44574 +0x2d, 0xe4, 0xfe, 0x74, 0x14, 0x2e, 0xf5, 0x82, 0xe4, 0x34, 0x70, 0xf5, 0x83, 0xe0, 0xb4, 0xff,
44575 +0x19, 0x74, 0x14, 0x2e, 0xf5, 0x82, 0xe4, 0x34, 0x70, 0xf5, 0x83, 0xef, 0xf0, 0x74, 0x1c, 0x2e,
44576 +0xf5, 0x82, 0xe4, 0x34, 0x70, 0xf5, 0x83, 0xed, 0xf0, 0x22, 0x0e, 0xbe, 0x04, 0xd5, 0x22, 0x22,
44577 +0x22, 0x90, 0x70, 0x2a, 0xe0, 0x30, 0xe1, 0x4d, 0xc2, 0xaf, 0x90, 0x70, 0x28, 0xe0, 0x90, 0x10,
44578 +0x1c, 0xf0, 0x90, 0x70, 0x29, 0xe0, 0x90, 0x10, 0x1d, 0xf0, 0x90, 0x70, 0x2a, 0xe0, 0x90, 0x10,
44579 +0x1e, 0xf0, 0x90, 0x10, 0x1c, 0xe0, 0xf5, 0x62, 0x90, 0x10, 0x1e, 0xe0, 0x20, 0xe1, 0xf3, 0x90,
44580 +0x10, 0x1c, 0xe0, 0x90, 0x70, 0x28, 0xf0, 0x90, 0x10, 0x1d, 0xe0, 0x90, 0x70, 0x29, 0xf0, 0x90,
44581 +0x10, 0x1e, 0xe0, 0x90, 0x70, 0x2a, 0xf0, 0x30, 0x4a, 0x07, 0x90, 0x70, 0x24, 0xe0, 0x44, 0x01,
44582 +0xf0, 0xc2, 0x05, 0xd2, 0xaf, 0x22, 0x22, 0x22, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44583 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44584 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44585 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44586 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44587 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44588 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44589 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44590 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44591 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44592 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44593 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44594 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44595 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44596 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44597 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44598 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44599 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44600 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44601 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44602 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44603 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44604 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44605 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44606 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44607 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44608 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44609 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44610 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44611 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44612 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44613 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44614 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44615 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44616 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44617 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44618 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44619 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44620 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44621 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44622 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44623 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44624 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44625 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44626 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44627 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44628 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44629 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44630 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44631 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44632 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44633 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44634 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44635 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44636 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44637 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44638 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44639 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44640 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44641 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44642 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44643 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44644 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44645 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44646 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44647 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44648 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44649 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44650 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44651 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44652 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44653 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44654 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44655 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44656 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44657 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44658 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44659 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44660 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44661 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44662 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44663 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44664 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44665 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44666 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44667 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44668 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44669 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44670 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44671 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44672 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44673 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44674 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44675 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44676 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44677 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44678 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44679 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44680 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44681 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44682 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44683 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44684 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44685 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44686 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44687 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44688 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44689 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44690 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44691 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44692 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44693 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44694 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44695 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44696 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44697 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44698 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44699 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44700 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44701 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44702 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44703 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44704 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44705 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44706 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44707 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
44708 +0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0x9b, 0xc0, } ;
44710 +++ b/drivers/staging/rt3070/Kconfig
44713 + tristate "Ralink 3070 wireless support"
44714 + depends on USB && X86 && WLAN_80211
44716 + This is an experimental driver for the Ralink 3070 wireless chip.
44719 +++ b/drivers/staging/rt3070/leap.h
44722 + *************************************************************************
44723 + * Ralink Tech Inc.
44724 + * 5F., No.36, Taiyuan St., Jhubei City,
44725 + * Hsinchu County 302,
44728 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
44730 + * This program is free software; you can redistribute it and/or modify *
44731 + * it under the terms of the GNU General Public License as published by *
44732 + * the Free Software Foundation; either version 2 of the License, or *
44733 + * (at your option) any later version. *
44735 + * This program is distributed in the hope that it will be useful, *
44736 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
44737 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
44738 + * GNU General Public License for more details. *
44740 + * You should have received a copy of the GNU General Public License *
44741 + * along with this program; if not, write to the *
44742 + * Free Software Foundation, Inc., *
44743 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
44745 + *************************************************************************
44752 + Revision History:
44754 + -------- ---------- ----------------------------------------------
44755 + Name Date Modification logs
44757 +#ifndef __LEAP_H__
44758 +#define __LEAP_H__
44760 +// Messages for Associate state machine
44761 +#define LEAP_MACHINE_BASE 30
44763 +#define LEAP_MSG_REQUEST_IDENTITY 31
44764 +#define LEAP_MSG_REQUEST_LEAP 32
44765 +#define LEAP_MSG_SUCCESS 33
44766 +#define LEAP_MSG_FAILED 34
44767 +#define LEAP_MSG_RESPONSE_LEAP 35
44768 +#define LEAP_MSG_EAPOLKEY 36
44769 +#define LEAP_MSG_UNKNOWN 37
44770 +#define LEAP_MSG 38
44771 +//! assoc state-machine states
44772 +#define LEAP_IDLE 0
44773 +#define LEAP_WAIT_IDENTITY_REQUEST 1
44774 +#define LEAP_WAIT_CHANLLENGE_REQUEST 2
44775 +#define LEAP_WAIT_SUCCESS 3
44776 +#define LEAP_WAIT_CHANLLENGE_RESPONSE 4
44777 +#define LEAP_WAIT_EAPOLKEY 5
44779 +#define LEAP_REASON_INVALID_AUTH 0x01
44780 +#define LEAP_REASON_AUTH_TIMEOUT 0x02
44781 +#define LEAP_REASON_CHALLENGE_FROM_AP_FAILED 0x03
44782 +#define LEAP_REASON_CHALLENGE_TO_AP_FAILED 0x04
44784 +#define CISCO_AuthModeLEAP 0x80
44785 +#define CISCO_AuthModeLEAPNone 0x00
44786 +#define LEAP_AUTH_TIMEOUT 30000
44787 +#define LEAP_CHALLENGE_RESPONSE_LENGTH 24
44788 +#define LEAP_CHALLENGE_REQUEST_LENGTH 8
44790 +typedef struct _LEAP_EAPOL_HEADER_ {
44794 +} LEAP_EAPOL_HEADER, *PLEAP_EAPOL_HEADER;
44796 +typedef struct _LEAP_EAPOL_PACKET_ {
44798 + UCHAR Identifier;
44801 +} LEAP_EAPOL_PACKET, *PLEAP_EAPOL_PACKET;
44803 +typedef struct _LEAP_EAP_CONTENTS_ {
44807 +} LEAP_EAP_CONTENTS, *PLEAP_EAP_CONTENTS;
44809 +/*** EAPOL key ***/
44810 +typedef struct _EAPOL_KEY_HEADER_ {
44813 + UCHAR Counter[8];
44816 + UCHAR Signature[16];
44817 +} EAPOL_KEY_HEADER, *PEAPOL_KEY_HEADER;
44819 +BOOLEAN LeapMsgTypeSubst(
44820 + IN UCHAR EAPType,
44821 + OUT ULONG *MsgType);
44823 +VOID LeapMachinePerformAction(
44824 + IN PRTMP_ADAPTER pAd,
44825 + IN STATE_MACHINE *S,
44826 + IN MLME_QUEUE_ELEM *Elem);
44828 +VOID LeapMacHeaderInit(
44829 + IN PRTMP_ADAPTER pAd,
44830 + IN OUT PHEADER_802_11 pHdr80211,
44832 + IN PUCHAR pAddr3);
44834 +VOID LeapStartAction(
44835 + IN PRTMP_ADAPTER pAd,
44836 + IN MLME_QUEUE_ELEM *Elem);
44838 +VOID LeapIdentityAction(
44839 + IN PRTMP_ADAPTER pAd,
44840 + IN MLME_QUEUE_ELEM *Elem);
44842 +VOID LeapPeerChallengeAction(
44843 + IN PRTMP_ADAPTER pAd,
44844 + IN MLME_QUEUE_ELEM *Elem);
44849 + OUT PUCHAR hash);
44851 +VOID PeerChallengeResponse(
44852 + IN PUCHAR szChallenge,
44853 + IN PUCHAR smbPasswd,
44854 + OUT PUCHAR szResponse);
44857 + OUT PUCHAR szOut,
44861 + OUT ULONG k[16][2],
44866 + IN ULONG ks[16][2],
44867 + OUT UCHAR block[8]);
44870 + IN PUCHAR szClear,
44872 + OUT PUCHAR szOut);
44874 +VOID LeapNetworkChallengeAction(
44875 + IN PRTMP_ADAPTER pAd,
44876 + IN MLME_QUEUE_ELEM *Elem);
44878 +VOID LeapNetworkChallengeResponse(
44879 + IN PRTMP_ADAPTER pAd,
44880 + IN MLME_QUEUE_ELEM *Elem);
44884 + IN PUCHAR hashhash);
44886 +VOID ProcessSessionKey(
44887 + OUT PUCHAR SessionKey,
44889 + IN PUCHAR ChallengeToRadius,
44890 + IN PUCHAR ChallengeResponseFromRadius,
44891 + IN PUCHAR ChallengeFromRadius,
44892 + IN PUCHAR ChallengeResponseToRadius);
44894 +VOID LeapEapolKeyAction(
44895 + IN PRTMP_ADAPTER pAd,
44896 + IN MLME_QUEUE_ELEM *Elem);
44898 +VOID RogueApTableInit(
44899 + IN ROGUEAP_TABLE *Tab);
44901 +ULONG RogueApTableSearch(
44902 + IN ROGUEAP_TABLE *Tab,
44903 + IN PUCHAR pAddr);
44905 +VOID RogueApEntrySet(
44906 + IN PRTMP_ADAPTER pAd,
44907 + OUT ROGUEAP_ENTRY *pRogueAp,
44909 + IN UCHAR FaileCode);
44911 +ULONG RogueApTableSetEntry(
44912 + IN PRTMP_ADAPTER pAd,
44913 + OUT ROGUEAP_TABLE *Tab,
44915 + IN UCHAR FaileCode);
44917 +VOID RogueApTableDeleteEntry(
44918 + IN OUT ROGUEAP_TABLE *Tab,
44919 + IN PUCHAR pAddr);
44921 +VOID LeapAuthTimeout(
44922 + IN PVOID SystemSpecific1,
44923 + IN PVOID FunctionContext,
44924 + IN PVOID SystemSpecific2,
44925 + IN PVOID SystemSpecific3);
44927 +VOID LeapSendRogueAPReport(
44928 + IN PRTMP_ADAPTER pAd);
44930 +BOOLEAN CCKMAssocRspSanity(
44931 + IN PRTMP_ADAPTER pAd,
44933 + IN ULONG MsgLen);
44935 +#endif // __LEAP_H__
44937 +++ b/drivers/staging/rt3070/link_list.h
44940 + *************************************************************************
44941 + * Ralink Tech Inc.
44942 + * 5F., No.36, Taiyuan St., Jhubei City,
44943 + * Hsinchu County 302,
44946 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
44948 + * This program is free software; you can redistribute it and/or modify *
44949 + * it under the terms of the GNU General Public License as published by *
44950 + * the Free Software Foundation; either version 2 of the License, or *
44951 + * (at your option) any later version. *
44953 + * This program is distributed in the hope that it will be useful, *
44954 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
44955 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
44956 + * GNU General Public License for more details. *
44958 + * You should have received a copy of the GNU General Public License *
44959 + * along with this program; if not, write to the *
44960 + * Free Software Foundation, Inc., *
44961 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
44963 + *************************************************************************
44966 +#ifndef __LINK_LIST_H__
44967 +#define __LINK_LIST_H__
44969 +typedef struct _LIST_ENTRY
44971 + struct _LIST_ENTRY *pNext;
44972 +} LIST_ENTRY, *PLIST_ENTRY;
44974 +typedef struct _LIST_HEADR
44976 + PLIST_ENTRY pHead;
44977 + PLIST_ENTRY pTail;
44979 +} LIST_HEADER, *PLIST_HEADER;
44981 +static inline VOID initList(
44982 + IN PLIST_HEADER pList)
44984 + pList->pHead = pList->pTail = NULL;
44989 +static inline VOID insertTailList(
44990 + IN PLIST_HEADER pList,
44991 + IN PLIST_ENTRY pEntry)
44993 + pEntry->pNext = NULL;
44994 + if (pList->pTail)
44995 + pList->pTail->pNext = pEntry;
44997 + pList->pHead = pEntry;
44998 + pList->pTail = pEntry;
45004 +static inline PLIST_ENTRY removeHeadList(
45005 + IN PLIST_HEADER pList)
45007 + PLIST_ENTRY pNext;
45008 + PLIST_ENTRY pEntry;
45010 + pEntry = pList->pHead;
45011 + if (pList->pHead != NULL)
45013 + pNext = pList->pHead->pNext;
45014 + pList->pHead = pNext;
45015 + if (pNext == NULL)
45016 + pList->pTail = NULL;
45022 +static inline int getListSize(
45023 + IN PLIST_HEADER pList)
45025 + return pList->size;
45028 +static inline PLIST_ENTRY delEntryList(
45029 + IN PLIST_HEADER pList,
45030 + IN PLIST_ENTRY pEntry)
45032 + PLIST_ENTRY pCurEntry;
45033 + PLIST_ENTRY pPrvEntry;
45035 + if(pList->pHead == NULL)
45038 + if(pEntry == pList->pHead)
45040 + pCurEntry = pList->pHead;
45041 + pList->pHead = pCurEntry->pNext;
45043 + if(pList->pHead == NULL)
45044 + pList->pTail = NULL;
45047 + return pCurEntry;
45050 + pPrvEntry = pList->pHead;
45051 + pCurEntry = pPrvEntry->pNext;
45052 + while(pCurEntry != NULL)
45054 + if (pEntry == pCurEntry)
45056 + pPrvEntry->pNext = pCurEntry->pNext;
45058 + if(pEntry == pList->pTail)
45059 + pList->pTail = pPrvEntry;
45064 + pPrvEntry = pCurEntry;
45065 + pCurEntry = pPrvEntry->pNext;
45068 + return pCurEntry;
45071 +#endif // ___LINK_LIST_H__ //
45074 +++ b/drivers/staging/rt3070/Makefile
45076 +obj-$(CONFIG_RT3070) += rt3070sta.o
45078 +# TODO: all of these should be removed
45079 +EXTRA_CFLAGS += -DLINUX -DAGGREGATION_SUPPORT -DPIGGYBACK_SUPPORT -DWMM_SUPPORT
45080 +EXTRA_CFLAGS += -DRT2870 -DRT30xx -DRT3070
45081 +EXTRA_CFLAGS += -DCONFIG_STA_SUPPORT
45082 +EXTRA_CFLAGS += -DDBG
45083 +EXTRA_CFLAGS += -DDOT11_N_SUPPORT
45084 +EXTRA_CFLAGS += -DWPA_SUPPLICANT_SUPPORT
45085 +EXTRA_CFLAGS += -DNATIVE_WPA_SUPPLICANT_SUPPORT
45087 +rt3070sta-objs := \
45090 + common/rtmp_wep.o \
45091 + common/action.o \
45092 + common/cmm_data.o \
45093 + common/rtmp_init.o \
45094 + common/rtmp_tkip.o \
45095 + common/cmm_sync.o \
45096 + common/eeprom.o \
45097 + common/cmm_sanity.o \
45098 + common/cmm_info.o \
45099 + common/cmm_wpa.o \
45101 + common/spectrum.o \
45108 + sta/rtmp_data.o \
45115 + common/ba_action.o \
45116 + 2870_main_dev.o \
45117 + common/2870_rtmp_init.o \
45118 + common/rtusb_io.o \
45119 + common/rtusb_bulk.o \
45120 + common/rtusb_data.o \
45121 + common/cmm_data_2870.o
45124 +++ b/drivers/staging/rt3070/md4.h
45127 + *************************************************************************
45128 + * Ralink Tech Inc.
45129 + * 5F., No.36, Taiyuan St., Jhubei City,
45130 + * Hsinchu County 302,
45133 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
45135 + * This program is free software; you can redistribute it and/or modify *
45136 + * it under the terms of the GNU General Public License as published by *
45137 + * the Free Software Foundation; either version 2 of the License, or *
45138 + * (at your option) any later version. *
45140 + * This program is distributed in the hope that it will be useful, *
45141 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
45142 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
45143 + * GNU General Public License for more details. *
45145 + * You should have received a copy of the GNU General Public License *
45146 + * along with this program; if not, write to the *
45147 + * Free Software Foundation, Inc., *
45148 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
45150 + *************************************************************************
45156 +/* MD4 context. */
45157 +typedef struct _MD4_CTX_ {
45158 + ULONG state[4]; /* state (ABCD) */
45159 + ULONG count[2]; /* number of bits, modulo 2^64 (lsb first) */
45160 + UCHAR buffer[64]; /* input buffer */
45163 +VOID MD4Init (MD4_CTX *);
45164 +VOID MD4Update (MD4_CTX *, PUCHAR, UINT);
45165 +VOID MD4Final (UCHAR [16], MD4_CTX *);
45167 +#endif //__MD4_H__
45168 \ No newline at end of file
45170 +++ b/drivers/staging/rt3070/md5.h
45173 + *************************************************************************
45174 + * Ralink Tech Inc.
45175 + * 5F., No.36, Taiyuan St., Jhubei City,
45176 + * Hsinchu County 302,
45179 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
45181 + * This program is free software; you can redistribute it and/or modify *
45182 + * it under the terms of the GNU General Public License as published by *
45183 + * the Free Software Foundation; either version 2 of the License, or *
45184 + * (at your option) any later version. *
45186 + * This program is distributed in the hope that it will be useful, *
45187 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
45188 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
45189 + * GNU General Public License for more details. *
45191 + * You should have received a copy of the GNU General Public License *
45192 + * along with this program; if not, write to the *
45193 + * Free Software Foundation, Inc., *
45194 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
45196 + *************************************************************************
45203 + Revision History:
45205 + -------- ---------- ----------------------------------------------
45206 + Name Date Modification logs
45207 + jan 10-28-03 Initial
45208 + Rita 11-23-04 Modify MD5 and SHA-1
45212 +#define uint8 unsigned char
45216 +#define uint32 unsigned long int
45223 +#define MD5_MAC_LEN 16
45225 +typedef struct _MD5_CTX {
45226 + UINT32 Buf[4]; // buffers of four states
45227 + UCHAR Input[64]; // input message
45228 + UINT32 LenInBitCount[2]; // length counter for input message, 0 up to 64 bits
45231 +VOID MD5Init(MD5_CTX *pCtx);
45232 +VOID MD5Update(MD5_CTX *pCtx, UCHAR *pData, UINT32 LenInBytes);
45233 +VOID MD5Final(UCHAR Digest[16], MD5_CTX *pCtx);
45234 +VOID MD5Transform(UINT32 Buf[4], UINT32 Mes[16]);
45236 +void md5_mac(u8 *key, size_t key_len, u8 *data, size_t data_len, u8 *mac);
45237 +void hmac_md5(u8 *key, size_t key_len, u8 *data, size_t data_len, u8 *mac);
45242 +typedef struct _SHA_CTX
45244 + UINT32 Buf[5]; // buffers of five states
45245 + UCHAR Input[80]; // input message
45246 + UINT32 LenInBitCount[2]; // length counter for input message, 0 up to 64 bits
45250 +VOID SHAInit(SHA_CTX *pCtx);
45251 +UCHAR SHAUpdate(SHA_CTX *pCtx, UCHAR *pData, UINT32 LenInBytes);
45252 +VOID SHAFinal(SHA_CTX *pCtx, UCHAR Digest[20]);
45253 +VOID SHATransform(UINT32 Buf[5], UINT32 Mes[20]);
45255 +#define SHA_DIGEST_LEN 20
45256 +#endif // __MD5_H__
45258 +/******************************************************************************/
45264 + uint32 erk[64]; /* encryption round keys */
45265 + uint32 drk[64]; /* decryption round keys */
45266 + int nr; /* number of rounds */
45270 +int rtmp_aes_set_key( aes_context *ctx, uint8 *key, int nbits );
45271 +void rtmp_aes_encrypt( aes_context *ctx, uint8 input[16], uint8 output[16] );
45272 +void rtmp_aes_decrypt( aes_context *ctx, uint8 input[16], uint8 output[16] );
45274 +void F(char *password, unsigned char *ssid, int ssidlength, int iterations, int count, unsigned char *output);
45275 +int PasswordHash(char *password, unsigned char *ssid, int ssidlength, unsigned char *output);
45277 +#endif /* aes.h */
45280 +++ b/drivers/staging/rt3070/mlme.h
45283 + *************************************************************************
45284 + * Ralink Tech Inc.
45285 + * 5F., No.36, Taiyuan St., Jhubei City,
45286 + * Hsinchu County 302,
45289 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
45291 + * This program is free software; you can redistribute it and/or modify *
45292 + * it under the terms of the GNU General Public License as published by *
45293 + * the Free Software Foundation; either version 2 of the License, or *
45294 + * (at your option) any later version. *
45296 + * This program is distributed in the hope that it will be useful, *
45297 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
45298 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
45299 + * GNU General Public License for more details. *
45301 + * You should have received a copy of the GNU General Public License *
45302 + * along with this program; if not, write to the *
45303 + * Free Software Foundation, Inc., *
45304 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
45306 + *************************************************************************
45313 + Revision History:
45315 + -------- ---------- ----------------------------------------------
45316 + John Chang 2003-08-28 Created
45317 + John Chang 2004-09-06 modified for RT2600
45320 +#ifndef __MLME_H__
45321 +#define __MLME_H__
45323 +//extern UCHAR BROADCAST_ADDR[];
45325 +// maximum supported capability information -
45326 +// ESS, IBSS, Privacy, Short Preamble, Spectrum mgmt, Short Slot
45327 +#define SUPPORTED_CAPABILITY_INFO 0x0533
45329 +#define END_OF_ARGS -1
45330 +#define LFSR_MASK 0x80000057
45331 +#define MLME_TASK_EXEC_INTV 100/*200*/ //
45332 +#define LEAD_TIME 5
45333 +#define MLME_TASK_EXEC_MULTIPLE 10 /*5*/ // MLME_TASK_EXEC_MULTIPLE * MLME_TASK_EXEC_INTV = 1 sec
45334 +#define REORDER_EXEC_INTV 100 // 0.1 sec
45335 +//#define TBTT_PRELOAD_TIME 384 // usec. LomgPreamble + 24-byte at 1Mbps
45337 +// The definition of Radar detection duration region
45343 +#define MAX_RD_REGION 5
45345 +#ifdef NDIS51_MINIPORT
45346 +#define BEACON_LOST_TIME 4000 // 2048 msec = 2 sec
45348 +#define BEACON_LOST_TIME 4 * OS_HZ // 2048 msec = 2 sec
45351 +#define DLS_TIMEOUT 1200 // unit: msec
45352 +#define AUTH_TIMEOUT 300 // unit: msec
45353 +#define ASSOC_TIMEOUT 300 // unit: msec
45354 +#define JOIN_TIMEOUT 2 * OS_HZ // unit: msec
45355 +#define SHORT_CHANNEL_TIME 90 // unit: msec
45356 +#define MIN_CHANNEL_TIME 110 // unit: msec, for dual band scan
45357 +#define MAX_CHANNEL_TIME 140 // unit: msec, for single band scan
45358 +#define FAST_ACTIVE_SCAN_TIME 30 // Active scan waiting for probe response time
45359 +#define CW_MIN_IN_BITS 4 // actual CwMin = 2^CW_MIN_IN_BITS - 1
45362 +#ifdef CONFIG_STA_SUPPORT
45363 +#ifndef CONFIG_AP_SUPPORT
45364 +#define CW_MAX_IN_BITS 10 // actual CwMax = 2^CW_MAX_IN_BITS - 1
45366 +#endif // CONFIG_STA_SUPPORT //
45368 +#ifdef CONFIG_APSTA_MIXED_SUPPORT
45369 +extern UINT32 CW_MAX_IN_BITS;
45370 +#endif // CONFIG_APSTA_MIXED_SUPPORT //
45372 +// Note: RSSI_TO_DBM_OFFSET has been changed to variable for new RF (2004-0720).
45373 +// SHould not refer to this constant anymore
45374 +//#define RSSI_TO_DBM_OFFSET 120 // for RT2530 RSSI-115 = dBm
45375 +#define RSSI_FOR_MID_TX_POWER -55 // -55 db is considered mid-distance
45376 +#define RSSI_FOR_LOW_TX_POWER -45 // -45 db is considered very short distance and
45377 + // eligible to use a lower TX power
45378 +#define RSSI_FOR_LOWEST_TX_POWER -30
45379 +//#define MID_TX_POWER_DELTA 0 // 0 db from full TX power upon mid-distance to AP
45380 +#define LOW_TX_POWER_DELTA 6 // -3 db from full TX power upon very short distance. 1 grade is 0.5 db
45381 +#define LOWEST_TX_POWER_DELTA 16 // -8 db from full TX power upon shortest distance. 1 grade is 0.5 db
45383 +#define RSSI_TRIGGERED_UPON_BELOW_THRESHOLD 0
45384 +#define RSSI_TRIGGERED_UPON_EXCCEED_THRESHOLD 1
45385 +#define RSSI_THRESHOLD_FOR_ROAMING 25
45386 +#define RSSI_DELTA 5
45388 +// Channel Quality Indication
45389 +#define CQI_IS_GOOD(cqi) ((cqi) >= 50)
45390 +//#define CQI_IS_FAIR(cqi) (((cqi) >= 20) && ((cqi) < 50))
45391 +#define CQI_IS_POOR(cqi) (cqi < 50) //(((cqi) >= 5) && ((cqi) < 20))
45392 +#define CQI_IS_BAD(cqi) (cqi < 5)
45393 +#define CQI_IS_DEAD(cqi) (cqi == 0)
45395 +// weighting factor to calculate Channel quality, total should be 100%
45396 +#define RSSI_WEIGHTING 50
45397 +#define TX_WEIGHTING 30
45398 +#define RX_WEIGHTING 20
45400 +//#define PEER_KEY_NOT_USED 0
45401 +//#define PEER_KEY_64_BIT 64
45402 +//#define PEER_KEY_128_BIT 128
45404 +//#define PEER_KEY_64BIT_LEN 8
45405 +//#define PEER_KEY_128BIT_LEN 16
45407 +#define BSS_NOT_FOUND 0xFFFFFFFF
45410 +#ifdef CONFIG_STA_SUPPORT
45411 +#define MAX_LEN_OF_MLME_QUEUE 40 //10
45412 +#endif // CONFIG_STA_SUPPORT //
45414 +#define SCAN_PASSIVE 18 // scan with no probe request, only wait beacon and probe response
45415 +#define SCAN_ACTIVE 19 // scan with probe request, and wait beacon and probe response
45416 +#define SCAN_CISCO_PASSIVE 20 // Single channel passive scan
45417 +#define SCAN_CISCO_ACTIVE 21 // Single channel active scan
45418 +#define SCAN_CISCO_NOISE 22 // Single channel passive scan for noise histogram collection
45419 +#define SCAN_CISCO_CHANNEL_LOAD 23 // Single channel passive scan for channel load collection
45420 +#define FAST_SCAN_ACTIVE 24 // scan with probe request, and wait beacon and probe response
45422 +#ifdef DOT11N_DRAFT3
45423 +#define SCAN_2040_BSS_COEXIST 26
45424 +#endif // DOT11N_DRAFT3 //
45426 +//#define BSS_TABLE_EMPTY(x) ((x).BssNr == 0)
45427 +#define MAC_ADDR_IS_GROUP(Addr) (((Addr[0]) & 0x01))
45428 +#define MAC_ADDR_HASH(Addr) (Addr[0] ^ Addr[1] ^ Addr[2] ^ Addr[3] ^ Addr[4] ^ Addr[5])
45429 +#define MAC_ADDR_HASH_INDEX(Addr) (MAC_ADDR_HASH(Addr) % HASH_TABLE_SIZE)
45430 +#define TID_MAC_HASH(Addr,TID) (TID^Addr[0] ^ Addr[1] ^ Addr[2] ^ Addr[3] ^ Addr[4] ^ Addr[5])
45431 +#define TID_MAC_HASH_INDEX(Addr,TID) (TID_MAC_HASH(Addr,TID) % HASH_TABLE_SIZE)
45434 +// assoiation ON. one LED ON. another blinking when TX, OFF when idle
45435 +// no association, both LED off
45436 +#define ASIC_LED_ACT_ON(pAd) RTMP_IO_WRITE32(pAd, MAC_CSR14, 0x00031e46)
45437 +#define ASIC_LED_ACT_OFF(pAd) RTMP_IO_WRITE32(pAd, MAC_CSR14, 0x00001e46)
45439 +// bit definition of the 2-byte pBEACON->Capability field
45440 +#define CAP_IS_ESS_ON(x) (((x) & 0x0001) != 0)
45441 +#define CAP_IS_IBSS_ON(x) (((x) & 0x0002) != 0)
45442 +#define CAP_IS_CF_POLLABLE_ON(x) (((x) & 0x0004) != 0)
45443 +#define CAP_IS_CF_POLL_REQ_ON(x) (((x) & 0x0008) != 0)
45444 +#define CAP_IS_PRIVACY_ON(x) (((x) & 0x0010) != 0)
45445 +#define CAP_IS_SHORT_PREAMBLE_ON(x) (((x) & 0x0020) != 0)
45446 +#define CAP_IS_PBCC_ON(x) (((x) & 0x0040) != 0)
45447 +#define CAP_IS_AGILITY_ON(x) (((x) & 0x0080) != 0)
45448 +#define CAP_IS_SPECTRUM_MGMT(x) (((x) & 0x0100) != 0) // 802.11e d9
45449 +#define CAP_IS_QOS(x) (((x) & 0x0200) != 0) // 802.11e d9
45450 +#define CAP_IS_SHORT_SLOT(x) (((x) & 0x0400) != 0)
45451 +#define CAP_IS_APSD(x) (((x) & 0x0800) != 0) // 802.11e d9
45452 +#define CAP_IS_IMMED_BA(x) (((x) & 0x1000) != 0) // 802.11e d9
45453 +#define CAP_IS_DSSS_OFDM(x) (((x) & 0x2000) != 0)
45454 +#define CAP_IS_DELAY_BA(x) (((x) & 0x4000) != 0) // 802.11e d9
45456 +#define CAP_GENERATE(ess,ibss,priv,s_pre,s_slot,spectrum) (((ess) ? 0x0001 : 0x0000) | ((ibss) ? 0x0002 : 0x0000) | ((priv) ? 0x0010 : 0x0000) | ((s_pre) ? 0x0020 : 0x0000) | ((s_slot) ? 0x0400 : 0x0000) | ((spectrum) ? 0x0100 : 0x0000))
45458 +//#define STA_QOS_CAPABILITY 0 // 1-byte. see 802.11e d9.0 for bit definition
45460 +#define ERP_IS_NON_ERP_PRESENT(x) (((x) & 0x01) != 0) // 802.11g
45461 +#define ERP_IS_USE_PROTECTION(x) (((x) & 0x02) != 0) // 802.11g
45462 +#define ERP_IS_USE_BARKER_PREAMBLE(x) (((x) & 0x04) != 0) // 802.11g
45464 +#define DRS_TX_QUALITY_WORST_BOUND 8// 3 // just test by gary
45465 +#define DRS_PENALTY 8
45467 +#define BA_NOTUSE 2
45468 +//BA Policy subfiled value in ADDBA frame
45469 +#define IMMED_BA 1
45470 +#define DELAY_BA 0
45472 +// BA Initiator subfield in DELBA frame
45473 +#define ORIGINATOR 1
45474 +#define RECIPIENT 0
45476 +// ADDBA Status Code
45477 +#define ADDBA_RESULTCODE_SUCCESS 0
45478 +#define ADDBA_RESULTCODE_REFUSED 37
45479 +#define ADDBA_RESULTCODE_INVALID_PARAMETERS 38
45481 +// DELBA Reason Code
45482 +#define DELBA_REASONCODE_QSTA_LEAVING 36
45483 +#define DELBA_REASONCODE_END_BA 37
45484 +#define DELBA_REASONCODE_UNKNOWN_BA 38
45485 +#define DELBA_REASONCODE_TIMEOUT 39
45487 +// reset all OneSecTx counters
45488 +#define RESET_ONE_SEC_TX_CNT(__pEntry) \
45489 +if (((__pEntry)) != NULL) \
45491 + (__pEntry)->OneSecTxRetryOkCount = 0; \
45492 + (__pEntry)->OneSecTxFailCount = 0; \
45493 + (__pEntry)->OneSecTxNoRetryOkCount = 0; \
45497 +// 802.11 frame formats
45499 +// HT Capability INFO field in HT Cap IE .
45500 +typedef struct PACKED {
45501 +#ifdef RT_BIG_ENDIAN
45502 + USHORT LSIGTxopProSup:1;
45503 + USHORT Forty_Mhz_Intolerant:1;
45505 + USHORT CCKmodein40:1;
45506 + USHORT AMsduSize:1;
45507 + USHORT DelayedBA:1; //rt2860c not support
45510 + USHORT ShortGIfor40:1; //for40MHz
45511 + USHORT ShortGIfor20:1;
45512 + USHORT GF:1; //green field
45513 + USHORT MimoPs:2;//momi power safe
45514 + USHORT ChannelWidth:1;
45515 + USHORT AdvCoding:1;
45517 + USHORT AdvCoding:1;
45518 + USHORT ChannelWidth:1;
45519 + USHORT MimoPs:2;//momi power safe
45520 + USHORT GF:1; //green field
45521 + USHORT ShortGIfor20:1;
45522 + USHORT ShortGIfor40:1; //for40MHz
45525 + USHORT DelayedBA:1; //rt2860c not support
45526 + USHORT AMsduSize:1; // only support as zero
45527 + USHORT CCKmodein40:1;
45529 + USHORT Forty_Mhz_Intolerant:1;
45530 + USHORT LSIGTxopProSup:1;
45531 +#endif /* !RT_BIG_ENDIAN */
45532 +} HT_CAP_INFO, *PHT_CAP_INFO;
45534 +// HT Capability INFO field in HT Cap IE .
45535 +typedef struct PACKED {
45536 +#ifdef RT_BIG_ENDIAN
45537 + UCHAR rsv:3;//momi power safe
45538 + UCHAR MpduDensity:3;
45539 + UCHAR MaxRAmpduFactor:2;
45541 + UCHAR MaxRAmpduFactor:2;
45542 + UCHAR MpduDensity:3;
45543 + UCHAR rsv:3;//momi power safe
45544 +#endif /* !RT_BIG_ENDIAN */
45545 +} HT_CAP_PARM, *PHT_CAP_PARM;
45547 +// HT Capability INFO field in HT Cap IE .
45548 +typedef struct PACKED {
45549 + UCHAR MCSSet[10];
45550 + UCHAR SupRate[2]; // unit : 1Mbps
45551 +#ifdef RT_BIG_ENDIAN
45553 + UCHAR MpduDensity:1;
45554 + UCHAR TxStream:2;
45555 + UCHAR TxRxNotEqual:1;
45556 + UCHAR TxMCSSetDefined:1;
45558 + UCHAR TxMCSSetDefined:1;
45559 + UCHAR TxRxNotEqual:1;
45560 + UCHAR TxStream:2;
45561 + UCHAR MpduDensity:1;
45563 +#endif // RT_BIG_ENDIAN //
45565 +} HT_MCS_SET, *PHT_MCS_SET;
45567 +// HT Capability INFO field in HT Cap IE .
45568 +typedef struct PACKED {
45569 +#ifdef RT_BIG_ENDIAN
45571 + USHORT RDGSupport:1; //reverse Direction Grant support
45572 + USHORT PlusHTC:1; //+HTC control field support
45573 + USHORT MCSFeedback:2; //0:no MCS feedback, 2:unsolicited MCS feedback, 3:Full MCS feedback, 1:rsv.
45574 + USHORT rsv:5;//momi power safe
45575 + USHORT TranTime:2;
45579 + USHORT TranTime:2;
45580 + USHORT rsv:5;//momi power safe
45581 + USHORT MCSFeedback:2; //0:no MCS feedback, 2:unsolicited MCS feedback, 3:Full MCS feedback, 1:rsv.
45582 + USHORT PlusHTC:1; //+HTC control field support
45583 + USHORT RDGSupport:1; //reverse Direction Grant support
45585 +#endif /* RT_BIG_ENDIAN */
45586 +} EXT_HT_CAP_INFO, *PEXT_HT_CAP_INFO;
45588 +// HT Beamforming field in HT Cap IE .
45589 +typedef struct PACKED _HT_BF_CAP{
45590 +#ifdef RT_BIG_ENDIAN
45592 + ULONG ChanEstimation:2;
45593 + ULONG CSIRowBFSup:2;
45594 + ULONG ComSteerBFAntSup:2;
45595 + ULONG NoComSteerBFAntSup:2;
45596 + ULONG CSIBFAntSup:2;
45597 + ULONG MinGrouping:2;
45598 + ULONG ExpComBF:2;
45599 + ULONG ExpNoComBF:2;
45600 + ULONG ExpCSIFbk:2;
45601 + ULONG ExpComSteerCapable:1;
45602 + ULONG ExpNoComSteerCapable:1;
45603 + ULONG ExpCSICapable:1;
45604 + ULONG Calibration:2;
45605 + ULONG ImpTxBFCapable:1;
45606 + ULONG TxNDPCapable:1;
45607 + ULONG RxNDPCapable:1;
45608 + ULONG TxSoundCapable:1;
45609 + ULONG RxSoundCapable:1;
45610 + ULONG TxBFRecCapable:1;
45612 + ULONG TxBFRecCapable:1;
45613 + ULONG RxSoundCapable:1;
45614 + ULONG TxSoundCapable:1;
45615 + ULONG RxNDPCapable:1;
45616 + ULONG TxNDPCapable:1;
45617 + ULONG ImpTxBFCapable:1;
45618 + ULONG Calibration:2;
45619 + ULONG ExpCSICapable:1;
45620 + ULONG ExpNoComSteerCapable:1;
45621 + ULONG ExpComSteerCapable:1;
45622 + ULONG ExpCSIFbk:2;
45623 + ULONG ExpNoComBF:2;
45624 + ULONG ExpComBF:2;
45625 + ULONG MinGrouping:2;
45626 + ULONG CSIBFAntSup:2;
45627 + ULONG NoComSteerBFAntSup:2;
45628 + ULONG ComSteerBFAntSup:2;
45629 + ULONG CSIRowBFSup:2;
45630 + ULONG ChanEstimation:2;
45632 +#endif // RT_BIG_ENDIAN //
45633 +} HT_BF_CAP, *PHT_BF_CAP;
45635 +// HT antenna selection field in HT Cap IE .
45636 +typedef struct PACKED _HT_AS_CAP{
45637 +#ifdef RT_BIG_ENDIAN
45639 + UCHAR TxSoundPPDU:1;
45641 + UCHAR AntIndFbk:1;
45642 + UCHAR ExpCSIFbk:1;
45643 + UCHAR AntIndFbkTxASEL:1;
45644 + UCHAR ExpCSIFbkTxASEL:1;
45645 + UCHAR AntSelect:1;
45647 + UCHAR AntSelect:1;
45648 + UCHAR ExpCSIFbkTxASEL:1;
45649 + UCHAR AntIndFbkTxASEL:1;
45650 + UCHAR ExpCSIFbk:1;
45651 + UCHAR AntIndFbk:1;
45653 + UCHAR TxSoundPPDU:1;
45655 +#endif // RT_BIG_ENDIAN //
45656 +} HT_AS_CAP, *PHT_AS_CAP;
45658 +// Draft 1.0 set IE length 26, but is extensible..
45659 +#define SIZE_HT_CAP_IE 26
45660 +// The structure for HT Capability IE.
45661 +typedef struct PACKED _HT_CAPABILITY_IE{
45662 + HT_CAP_INFO HtCapInfo;
45663 + HT_CAP_PARM HtCapParm;
45664 +// HT_MCS_SET HtMCSSet;
45665 + UCHAR MCSSet[16];
45666 + EXT_HT_CAP_INFO ExtHtCapInfo;
45667 + HT_BF_CAP TxBFCap; // beamforming cap. rt2860c not support beamforming.
45668 + HT_AS_CAP ASCap; //antenna selection.
45669 +} HT_CAPABILITY_IE, *PHT_CAPABILITY_IE;
45672 +// 802.11n draft3 related structure definitions.
45674 +#define dot11OBSSScanPassiveDwell 20 // in TU. min amount of time that the STA continously scans each channel when performing an active OBSS scan.
45675 +#define dot11OBSSScanActiveDwell 10 // in TU.min amount of time that the STA continously scans each channel when performing an passive OBSS scan.
45676 +#define dot11BSSWidthTriggerScanInterval 300 // in sec. max interval between scan operations to be performed to detect BSS channel width trigger events.
45677 +#define dot11OBSSScanPassiveTotalPerChannel 200 // in TU. min total amount of time that the STA scans each channel when performing a passive OBSS scan.
45678 +#define dot11OBSSScanActiveTotalPerChannel 20 //in TU. min total amount of time that the STA scans each channel when performing a active OBSS scan
45679 +#define dot11BSSWidthChannelTransactionDelayFactor 5 // min ratio between the delay time in performing a switch from 20MHz BSS to 20/40 BSS operation and the maxima
45680 + // interval between overlapping BSS scan operations.
45681 +#define dot11BSSScanActivityThreshold 25 // in %%, max total time that a STA may be active on the medium during a period of
45682 + // (dot11BSSWidthChannelTransactionDelayFactor * dot11BSSWidthTriggerScanInterval) seconds without
45683 + // being obligated to perform OBSS Scan operations. default is 25(== 0.25%)
45685 +typedef struct PACKED _OVERLAP_BSS_SCAN_IE{
45686 + USHORT ScanPassiveDwell;
45687 + USHORT ScanActiveDwell;
45688 + USHORT TriggerScanInt; // Trigger scan interval
45689 + USHORT PassiveTalPerChannel; // passive total per channel
45690 + USHORT ActiveTalPerChannel; // active total per channel
45691 + USHORT DelayFactor; // BSS width channel transition delay factor
45692 + USHORT ScanActThre; // Scan Activity threshold
45693 +}OVERLAP_BSS_SCAN_IE, *POVERLAP_BSS_SCAN_IE;
45696 +// 7.3.2.56. 20/40 Coexistence element used in Element ID = 72 = IE_2040_BSS_COEXIST
45697 +typedef union PACKED _BSS_2040_COEXIST_IE{
45699 + #ifdef RT_BIG_ENDIAN
45701 + UCHAR BSS20WidthReq:1;
45702 + UCHAR Intolerant40:1;
45706 + UCHAR Intolerant40:1; // Inter-BSS. set 1 when prohibits a receiving BSS from operating as a 20/40 Mhz BSS.
45707 + UCHAR BSS20WidthReq:1; // Intra-BSS set 1 when prohibits a receiving AP from operating its BSS as a 20/40MHz BSS.
45709 +#endif // RT_BIG_ENDIAN //
45712 +} BSS_2040_COEXIST_IE, *PBSS_2040_COEXIST_IE;
45715 +typedef struct _TRIGGER_EVENTA{
45718 + UCHAR RegClass; // Regulatory Class
45720 + ULONG CDCounter; // Maintain a seperate count down counter for each Event A.
45721 +} TRIGGER_EVENTA, *PTRIGGER_EVENTA;
45723 +// 20/40 trigger event table
45724 +// If one Event A delete or created, or if Event B is detected or not detected, STA should send 2040BSSCoexistence to AP.
45725 +#define MAX_TRIGGER_EVENT 64
45726 +typedef struct _TRIGGER_EVENT_TAB{
45728 + TRIGGER_EVENTA EventA[MAX_TRIGGER_EVENT];
45729 + ULONG EventBCountDown; // Count down counter for Event B.
45730 +} TRIGGER_EVENT_TAB, *PTRIGGER_EVENT_TAB;
45732 +// 7.3.27 20/40 Bss Coexistence Mgmt capability used in extended capabilities information IE( ID = 127 = IE_EXT_CAPABILITY).
45733 +// This is the first octet and was defined in 802.11n D3.03 and 802.11yD9.0
45734 +typedef struct PACKED _EXT_CAP_INFO_ELEMENT{
45735 +#ifdef RT_BIG_ENDIAN
45737 + UCHAR ExtendChannelSwitch:1;
45739 + UCHAR BssCoexistMgmtSupport:1;
45741 + UCHAR BssCoexistMgmtSupport:1;
45743 + UCHAR ExtendChannelSwitch:1;
45745 +#endif // RT_BIG_ENDIAN //
45746 +}EXT_CAP_INFO_ELEMENT, *PEXT_CAP_INFO_ELEMENT;
45749 +// 802.11n 7.3.2.61
45750 +typedef struct PACKED _BSS_2040_COEXIST_ELEMENT{
45751 + UCHAR ElementID; // ID = IE_2040_BSS_COEXIST = 72
45753 + BSS_2040_COEXIST_IE BssCoexistIe;
45754 +}BSS_2040_COEXIST_ELEMENT, *PBSS_2040_COEXIST_ELEMENT;
45757 +//802.11n 7.3.2.59
45758 +typedef struct PACKED _BSS_2040_INTOLERANT_CH_REPORT{
45759 + UCHAR ElementID; // ID = IE_2040_BSS_INTOLERANT_REPORT = 73
45761 + UCHAR RegulatoryClass;
45763 +}BSS_2040_INTOLERANT_CH_REPORT, *PBSS_2040_INTOLERANT_CH_REPORT;
45766 +// The structure for channel switch annoucement IE. This is in 802.11n D3.03
45767 +typedef struct PACKED _CHA_SWITCH_ANNOUNCE_IE{
45768 + UCHAR SwitchMode; //channel switch mode
45769 + UCHAR NewChannel; //
45770 + UCHAR SwitchCount; //
45771 +} CHA_SWITCH_ANNOUNCE_IE, *PCHA_SWITCH_ANNOUNCE_IE;
45774 +// The structure for channel switch annoucement IE. This is in 802.11n D3.03
45775 +typedef struct PACKED _SEC_CHA_OFFSET_IE{
45776 + UCHAR SecondaryChannelOffset; // 1: Secondary above, 3: Secondary below, 0: no Secondary
45777 +} SEC_CHA_OFFSET_IE, *PSEC_CHA_OFFSET_IE;
45780 +// This structure is extracted from struct RT_HT_CAPABILITY
45782 + BOOLEAN bHtEnable; // If we should use ht rate.
45783 + BOOLEAN bPreNHt; // If we should use ht rate.
45784 + //Substract from HT Capability IE
45785 + UCHAR MCSSet[16]; //only supoort MCS=0-15,32 ,
45786 +} RT_HT_PHY_INFO, *PRT_HT_PHY_INFO;
45788 +//This structure substracts ralink supports from all 802.11n-related features.
45789 +//Features not listed here but contained in 802.11n spec are not supported in rt2860.
45791 +#ifdef RT_BIG_ENDIAN
45793 + USHORT AmsduSize:1; // Max receiving A-MSDU size
45794 + USHORT AmsduEnable:1; // Enable to transmit A-MSDU. Suggest disable. We should use A-MPDU to gain best benifit of 802.11n
45795 + USHORT RxSTBC:2; // 2 bits
45797 + USHORT ShortGIfor40:1; //for40MHz
45798 + USHORT ShortGIfor20:1;
45799 + USHORT GF:1; //green field
45800 + USHORT MimoPs:2;//mimo power safe MMPS_
45801 + USHORT ChannelWidth:1;
45803 + USHORT ChannelWidth:1;
45804 + USHORT MimoPs:2;//mimo power safe MMPS_
45805 + USHORT GF:1; //green field
45806 + USHORT ShortGIfor20:1;
45807 + USHORT ShortGIfor40:1; //for40MHz
45809 + USHORT RxSTBC:2; // 2 bits
45810 + USHORT AmsduEnable:1; // Enable to transmit A-MSDU. Suggest disable. We should use A-MPDU to gain best benifit of 802.11n
45811 + USHORT AmsduSize:1; // Max receiving A-MSDU size
45815 + //Substract from Addiont HT INFO IE
45816 +#ifdef RT_BIG_ENDIAN
45817 + UCHAR RecomWidth:1;
45818 + UCHAR ExtChanOffset:2; // Please not the difference with following UCHAR NewExtChannelOffset; from 802.11n
45819 + UCHAR MpduDensity:3;
45820 + UCHAR MaxRAmpduFactor:2;
45822 + UCHAR MaxRAmpduFactor:2;
45823 + UCHAR MpduDensity:3;
45824 + UCHAR ExtChanOffset:2; // Please not the difference with following UCHAR NewExtChannelOffset; from 802.11n
45825 + UCHAR RecomWidth:1;
45828 +#ifdef RT_BIG_ENDIAN
45830 + USHORT OBSS_NonHTExist:1;
45832 + USHORT NonGfPresent:1;
45833 + USHORT OperaionMode:2;
45835 + USHORT OperaionMode:2;
45836 + USHORT NonGfPresent:1;
45838 + USHORT OBSS_NonHTExist:1;
45842 + // New Extension Channel Offset IE
45843 + UCHAR NewExtChannelOffset;
45844 + // Extension Capability IE = 127
45845 + UCHAR BSSCoexist2040;
45846 +} RT_HT_CAPABILITY, *PRT_HT_CAPABILITY;
45848 +// field in Addtional HT Information IE .
45849 +typedef struct PACKED {
45850 +#ifdef RT_BIG_ENDIAN
45851 + UCHAR SerInterGranu:3;
45852 + UCHAR S_PSMPSup:1;
45853 + UCHAR RifsMode:1;
45854 + UCHAR RecomWidth:1;
45855 + UCHAR ExtChanOffset:2;
45857 + UCHAR ExtChanOffset:2;
45858 + UCHAR RecomWidth:1;
45859 + UCHAR RifsMode:1;
45860 + UCHAR S_PSMPSup:1; //Indicate support for scheduled PSMP
45861 + UCHAR SerInterGranu:3; //service interval granularity
45863 +} ADD_HTINFO, *PADD_HTINFO;
45865 +typedef struct PACKED{
45866 +#ifdef RT_BIG_ENDIAN
45868 + USHORT OBSS_NonHTExist:1;
45870 + USHORT NonGfPresent:1;
45871 + USHORT OperaionMode:2;
45873 + USHORT OperaionMode:2;
45874 + USHORT NonGfPresent:1;
45876 + USHORT OBSS_NonHTExist:1;
45879 +} ADD_HTINFO2, *PADD_HTINFO2;
45882 +// TODO: Need sync with spec about the definition of StbcMcs. In Draft 3.03, it's reserved.
45883 +typedef struct PACKED{
45884 +#ifdef RT_BIG_ENDIAN
45886 + USHORT PcoPhase:1;
45887 + USHORT PcoActive:1;
45888 + USHORT LsigTxopProt:1;
45889 + USHORT STBCBeacon:1;
45890 + USHORT DualCTSProtect:1;
45891 + USHORT DualBeacon:1;
45892 + USHORT StbcMcs:6;
45894 + USHORT StbcMcs:6;
45895 + USHORT DualBeacon:1;
45896 + USHORT DualCTSProtect:1;
45897 + USHORT STBCBeacon:1;
45898 + USHORT LsigTxopProt:1; // L-SIG TXOP protection full support
45899 + USHORT PcoActive:1;
45900 + USHORT PcoPhase:1;
45902 +#endif // RT_BIG_ENDIAN //
45903 +} ADD_HTINFO3, *PADD_HTINFO3;
45905 +#define SIZE_ADD_HT_INFO_IE 22
45906 +typedef struct PACKED{
45907 + UCHAR ControlChan;
45908 + ADD_HTINFO AddHtInfo;
45909 + ADD_HTINFO2 AddHtInfo2;
45910 + ADD_HTINFO3 AddHtInfo3;
45911 + UCHAR MCSSet[16]; // Basic MCS set
45912 +} ADD_HT_INFO_IE, *PADD_HT_INFO_IE;
45914 +typedef struct PACKED{
45915 + UCHAR NewExtChanOffset;
45916 +} NEW_EXT_CHAN_IE, *PNEW_EXT_CHAN_IE;
45919 +// 4-byte HTC field. maybe included in any frame except non-QOS data frame. The Order bit must set 1.
45920 +typedef struct PACKED {
45921 +#ifdef RT_BIG_ENDIAN
45922 + UINT32 RDG:1; //RDG / More PPDU
45923 + UINT32 ACConstraint:1; //feedback request
45924 + UINT32 rsv:5; //calibration sequence
45925 + UINT32 ZLFAnnouce:1; // ZLF announcement
45926 + UINT32 CSISTEERING:2; //CSI/ STEERING
45927 + UINT32 FBKReq:2; //feedback request
45928 + UINT32 CalSeq:2; //calibration sequence
45929 + UINT32 CalPos:2; // calibration position
45930 + UINT32 MFBorASC:7; //Link adaptation feedback containing recommended MCS. 0x7f for no feedback or not available
45931 + UINT32 MFS:3; //SET to the received value of MRS. 0x111 for unsolicited MFB.
45932 + UINT32 MRSorASI:3; // MRQ Sequence identifier. unchanged during entire procedure. 0x000-0x110.
45933 + UINT32 MRQ:1; //MCS feedback. Request for a MCS feedback
45934 + UINT32 TRQ:1; //sounding request
45935 + UINT32 MA:1; //management action payload exist in (QoS Null+HTC)
45937 + UINT32 MA:1; //management action payload exist in (QoS Null+HTC)
45938 + UINT32 TRQ:1; //sounding request
45939 + UINT32 MRQ:1; //MCS feedback. Request for a MCS feedback
45940 + UINT32 MRSorASI:3; // MRQ Sequence identifier. unchanged during entire procedure. 0x000-0x110.
45941 + UINT32 MFS:3; //SET to the received value of MRS. 0x111 for unsolicited MFB.
45942 + UINT32 MFBorASC:7; //Link adaptation feedback containing recommended MCS. 0x7f for no feedback or not available
45943 + UINT32 CalPos:2; // calibration position
45944 + UINT32 CalSeq:2; //calibration sequence
45945 + UINT32 FBKReq:2; //feedback request
45946 + UINT32 CSISTEERING:2; //CSI/ STEERING
45947 + UINT32 ZLFAnnouce:1; // ZLF announcement
45948 + UINT32 rsv:5; //calibration sequence
45949 + UINT32 ACConstraint:1; //feedback request
45950 + UINT32 RDG:1; //RDG / More PPDU
45951 +#endif /* !RT_BIG_ENDIAN */
45952 +} HT_CONTROL, *PHT_CONTROL;
45954 +// 2-byte QOS CONTROL field
45955 +typedef struct PACKED {
45956 +#ifdef RT_BIG_ENDIAN
45957 + USHORT Txop_QueueSize:8;
45958 + USHORT AMsduPresent:1;
45959 + USHORT AckPolicy:2; //0: normal ACK 1:No ACK 2:scheduled under MTBA/PSMP 3: BA
45965 + USHORT AckPolicy:2; //0: normal ACK 1:No ACK 2:scheduled under MTBA/PSMP 3: BA
45966 + USHORT AMsduPresent:1;
45967 + USHORT Txop_QueueSize:8;
45968 +#endif /* !RT_BIG_ENDIAN */
45969 +} QOS_CONTROL, *PQOS_CONTROL;
45971 +// 2-byte Frame control field
45972 +typedef struct PACKED {
45973 +#ifdef RT_BIG_ENDIAN
45974 + USHORT Order:1; // Strict order expected
45975 + USHORT Wep:1; // Wep data
45976 + USHORT MoreData:1; // More data bit
45977 + USHORT PwrMgmt:1; // Power management bit
45978 + USHORT Retry:1; // Retry status bit
45979 + USHORT MoreFrag:1; // More fragment bit
45980 + USHORT FrDs:1; // From DS indication
45981 + USHORT ToDs:1; // To DS indication
45982 + USHORT SubType:4; // MSDU subtype
45983 + USHORT Type:2; // MSDU type
45984 + USHORT Ver:2; // Protocol version
45986 + USHORT Ver:2; // Protocol version
45987 + USHORT Type:2; // MSDU type
45988 + USHORT SubType:4; // MSDU subtype
45989 + USHORT ToDs:1; // To DS indication
45990 + USHORT FrDs:1; // From DS indication
45991 + USHORT MoreFrag:1; // More fragment bit
45992 + USHORT Retry:1; // Retry status bit
45993 + USHORT PwrMgmt:1; // Power management bit
45994 + USHORT MoreData:1; // More data bit
45995 + USHORT Wep:1; // Wep data
45996 + USHORT Order:1; // Strict order expected
45997 +#endif /* !RT_BIG_ENDIAN */
45998 +} FRAME_CONTROL, *PFRAME_CONTROL;
46000 +typedef struct PACKED _HEADER_802_11 {
46001 + FRAME_CONTROL FC;
46003 + UCHAR Addr1[MAC_ADDR_LEN];
46004 + UCHAR Addr2[MAC_ADDR_LEN];
46005 + UCHAR Addr3[MAC_ADDR_LEN];
46006 +#ifdef RT_BIG_ENDIAN
46007 + USHORT Sequence:12;
46011 + USHORT Sequence:12;
46012 +#endif /* !RT_BIG_ENDIAN */
46014 +} HEADER_802_11, *PHEADER_802_11;
46016 +typedef struct PACKED _FRAME_802_11 {
46017 + HEADER_802_11 Hdr;
46019 +} FRAME_802_11, *PFRAME_802_11;
46021 +// QoSNull embedding of management action. When HT Control MA field set to 1.
46022 +typedef struct PACKED _MA_BODY {
46026 +} MA_BODY, *PMA_BODY;
46028 +typedef struct PACKED _HEADER_802_3 {
46029 + UCHAR DAAddr1[MAC_ADDR_LEN];
46030 + UCHAR SAAddr2[MAC_ADDR_LEN];
46032 +} HEADER_802_3, *PHEADER_802_3;
46033 +////Block ACK related format
46034 +// 2-byte BA Parameter field in DELBA frames to terminate an already set up bA
46035 +typedef struct PACKED{
46036 +#ifdef RT_BIG_ENDIAN
46037 + USHORT TID:4; // value of TC os TS
46038 + USHORT Initiator:1; // 1: originator 0:recipient
46039 + USHORT Rsv:11; // always set to 0
46041 + USHORT Rsv:11; // always set to 0
46042 + USHORT Initiator:1; // 1: originator 0:recipient
46043 + USHORT TID:4; // value of TC os TS
46044 +#endif /* !RT_BIG_ENDIAN */
46045 +} DELBA_PARM, *PDELBA_PARM;
46047 +// 2-byte BA Parameter Set field in ADDBA frames to signal parm for setting up a BA
46048 +typedef struct PACKED {
46049 +#ifdef RT_BIG_ENDIAN
46050 + USHORT BufSize:10; // number of buffe of size 2304 octetsr
46051 + USHORT TID:4; // value of TC os TS
46052 + USHORT BAPolicy:1; // 1: immediately BA 0:delayed BA
46053 + USHORT AMSDUSupported:1; // 0: not permitted 1: permitted
46055 + USHORT AMSDUSupported:1; // 0: not permitted 1: permitted
46056 + USHORT BAPolicy:1; // 1: immediately BA 0:delayed BA
46057 + USHORT TID:4; // value of TC os TS
46058 + USHORT BufSize:10; // number of buffe of size 2304 octetsr
46059 +#endif /* !RT_BIG_ENDIAN */
46060 +} BA_PARM, *PBA_PARM;
46062 +// 2-byte BA Starting Seq CONTROL field
46063 +typedef union PACKED {
46065 +#ifdef RT_BIG_ENDIAN
46066 + USHORT StartSeq:12; // sequence number of the 1st MSDU for which this BAR is sent
46067 + USHORT FragNum:4; // always set to 0
46069 + USHORT FragNum:4; // always set to 0
46070 + USHORT StartSeq:12; // sequence number of the 1st MSDU for which this BAR is sent
46071 +#endif /* RT_BIG_ENDIAN */
46074 +} BASEQ_CONTROL, *PBASEQ_CONTROL;
46076 +//BAControl and BARControl are the same
46077 +// 2-byte BA CONTROL field in BA frame
46078 +typedef struct PACKED {
46079 +#ifdef RT_BIG_ENDIAN
46082 + USHORT Compressed:1;
46083 + USHORT MTID:1; //EWC V1.24
46084 + USHORT ACKPolicy:1; // only related to N-Delayed BA. But not support in RT2860b. 0:NormalACK 1:No ACK
46086 + USHORT ACKPolicy:1; // only related to N-Delayed BA. But not support in RT2860b. 0:NormalACK 1:No ACK
46087 + USHORT MTID:1; //EWC V1.24
46088 + USHORT Compressed:1;
46091 +#endif /* !RT_BIG_ENDIAN */
46092 +} BA_CONTROL, *PBA_CONTROL;
46094 +// 2-byte BAR CONTROL field in BAR frame
46095 +typedef struct PACKED {
46096 +#ifdef RT_BIG_ENDIAN
46099 + USHORT Compressed:1;
46100 + USHORT MTID:1; //if this bit1, use FRAME_MTBA_REQ, if 0, use FRAME_BA_REQ
46101 + USHORT ACKPolicy:1;
46103 + USHORT ACKPolicy:1; // 0:normal ack, 1:no ack.
46104 + USHORT MTID:1; //if this bit1, use FRAME_MTBA_REQ, if 0, use FRAME_BA_REQ
46105 + USHORT Compressed:1;
46108 +#endif /* !RT_BIG_ENDIAN */
46109 +} BAR_CONTROL, *PBAR_CONTROL;
46111 +// BARControl in MTBAR frame
46112 +typedef struct PACKED {
46113 +#ifdef RT_BIG_ENDIAN
46116 + USHORT Compressed:1;
46118 + USHORT ACKPolicy:1;
46120 + USHORT ACKPolicy:1;
46122 + USHORT Compressed:1;
46125 +#endif /* !RT_BIG_ENDIAN */
46126 +} MTBAR_CONTROL, *PMTBAR_CONTROL;
46128 +typedef struct PACKED {
46129 +#ifdef RT_BIG_ENDIAN
46135 +#endif /* !RT_BIG_ENDIAN */
46136 +} PER_TID_INFO, *PPER_TID_INFO;
46139 + PER_TID_INFO PerTID;
46140 + BASEQ_CONTROL BAStartingSeq;
46141 +} EACH_TID, *PEACH_TID;
46144 +typedef struct PACKED _PSPOLL_FRAME {
46145 + FRAME_CONTROL FC;
46147 + UCHAR Bssid[MAC_ADDR_LEN];
46148 + UCHAR Ta[MAC_ADDR_LEN];
46149 +} PSPOLL_FRAME, *PPSPOLL_FRAME;
46151 +typedef struct PACKED _RTS_FRAME {
46152 + FRAME_CONTROL FC;
46154 + UCHAR Addr1[MAC_ADDR_LEN];
46155 + UCHAR Addr2[MAC_ADDR_LEN];
46156 +}RTS_FRAME, *PRTS_FRAME;
46158 +// BAREQ AND MTBAREQ have the same subtype BAR, 802.11n BAR use compressed bitmap.
46159 +typedef struct PACKED _FRAME_BA_REQ {
46160 + FRAME_CONTROL FC;
46162 + UCHAR Addr1[MAC_ADDR_LEN];
46163 + UCHAR Addr2[MAC_ADDR_LEN];
46164 + BAR_CONTROL BARControl;
46165 + BASEQ_CONTROL BAStartingSeq;
46166 +} FRAME_BA_REQ, *PFRAME_BA_REQ;
46168 +typedef struct PACKED _FRAME_MTBA_REQ {
46169 + FRAME_CONTROL FC;
46171 + UCHAR Addr1[MAC_ADDR_LEN];
46172 + UCHAR Addr2[MAC_ADDR_LEN];
46173 + MTBAR_CONTROL MTBARControl;
46174 + PER_TID_INFO PerTIDInfo;
46175 + BASEQ_CONTROL BAStartingSeq;
46176 +} FRAME_MTBA_REQ, *PFRAME_MTBA_REQ;
46178 +// Compressed format is mandantory in HT STA
46179 +typedef struct PACKED _FRAME_MTBA {
46180 + FRAME_CONTROL FC;
46182 + UCHAR Addr1[MAC_ADDR_LEN];
46183 + UCHAR Addr2[MAC_ADDR_LEN];
46184 + BA_CONTROL BAControl;
46185 + BASEQ_CONTROL BAStartingSeq;
46187 +} FRAME_MTBA, *PFRAME_MTBA;
46189 +typedef struct PACKED _FRAME_PSMP_ACTION {
46190 + HEADER_802_11 Hdr;
46193 + UCHAR Psmp; // 7.3.1.25
46194 +} FRAME_PSMP_ACTION, *PFRAME_PSMP_ACTION;
46196 +typedef struct PACKED _FRAME_ACTION_HDR {
46197 + HEADER_802_11 Hdr;
46200 +} FRAME_ACTION_HDR, *PFRAME_ACTION_HDR;
46203 +//Action Frame Category:Spectrum, Action:Channel Switch. 7.3.2.20
46204 +typedef struct PACKED _CHAN_SWITCH_ANNOUNCE {
46205 + UCHAR ElementID; // ID = IE_CHANNEL_SWITCH_ANNOUNCEMENT = 37
46207 + CHA_SWITCH_ANNOUNCE_IE CSAnnounceIe;
46208 +} CHAN_SWITCH_ANNOUNCE, *PCHAN_SWITCH_ANNOUNCE;
46211 +//802.11n : 7.3.2.20a
46212 +typedef struct PACKED _SECOND_CHAN_OFFSET {
46213 + UCHAR ElementID; // ID = IE_SECONDARY_CH_OFFSET = 62
46215 + SEC_CHA_OFFSET_IE SecChOffsetIe;
46216 +} SECOND_CHAN_OFFSET, *PSECOND_CHAN_OFFSET;
46219 +typedef struct PACKED _FRAME_SPETRUM_CS {
46220 + HEADER_802_11 Hdr;
46223 + CHAN_SWITCH_ANNOUNCE CSAnnounce;
46224 + SECOND_CHAN_OFFSET SecondChannel;
46225 +} FRAME_SPETRUM_CS, *PFRAME_SPETRUM_CS;
46228 +typedef struct PACKED _FRAME_ADDBA_REQ {
46229 + HEADER_802_11 Hdr;
46232 + UCHAR Token; // 1
46233 + BA_PARM BaParm; // 2 - 10
46234 + USHORT TimeOutValue; // 0 - 0
46235 + BASEQ_CONTROL BaStartSeq; // 0-0
46236 +} FRAME_ADDBA_REQ, *PFRAME_ADDBA_REQ;
46238 +typedef struct PACKED _FRAME_ADDBA_RSP {
46239 + HEADER_802_11 Hdr;
46243 + USHORT StatusCode;
46244 + BA_PARM BaParm; //0 - 2
46245 + USHORT TimeOutValue;
46246 +} FRAME_ADDBA_RSP, *PFRAME_ADDBA_RSP;
46248 +typedef struct PACKED _FRAME_DELBA_REQ {
46249 + HEADER_802_11 Hdr;
46252 + DELBA_PARM DelbaParm;
46253 + USHORT ReasonCode;
46254 +} FRAME_DELBA_REQ, *PFRAME_DELBA_REQ;
46258 +typedef struct PACKED _FRAME_BAR {
46259 + FRAME_CONTROL FC;
46261 + UCHAR Addr1[MAC_ADDR_LEN];
46262 + UCHAR Addr2[MAC_ADDR_LEN];
46263 + BAR_CONTROL BarControl;
46264 + BASEQ_CONTROL StartingSeq;
46265 +} FRAME_BAR, *PFRAME_BAR;
46268 +typedef struct PACKED _FRAME_BA {
46269 + FRAME_CONTROL FC;
46271 + UCHAR Addr1[MAC_ADDR_LEN];
46272 + UCHAR Addr2[MAC_ADDR_LEN];
46273 + BAR_CONTROL BarControl;
46274 + BASEQ_CONTROL StartingSeq;
46275 + UCHAR bitmask[8];
46276 +} FRAME_BA, *PFRAME_BA;
46279 +// Radio Measuement Request Frame Format
46280 +typedef struct PACKED _FRAME_RM_REQ_ACTION {
46281 + HEADER_802_11 Hdr;
46285 + USHORT Repetition;
46287 +} FRAME_RM_REQ_ACTION, *PFRAME_RM_REQ_ACTION;
46289 +typedef struct PACKED {
46292 + UCHAR ChannelSwitchMode;
46293 + UCHAR NewRegClass;
46294 + UCHAR NewChannelNum;
46295 + UCHAR ChannelSwitchCount;
46296 +} HT_EXT_CHANNEL_SWITCH_ANNOUNCEMENT_IE, *PHT_EXT_CHANNEL_SWITCH_ANNOUNCEMENT_IE;
46300 +// _Limit must be the 2**n - 1
46301 +// _SEQ1 , _SEQ2 must be within 0 ~ _Limit
46303 +#define SEQ_STEPONE(_SEQ1, _SEQ2, _Limit) ((_SEQ1 == ((_SEQ2+1) & _Limit)))
46304 +#define SEQ_SMALLER(_SEQ1, _SEQ2, _Limit) (((_SEQ1-_SEQ2) & ((_Limit+1)>>1)))
46305 +#define SEQ_LARGER(_SEQ1, _SEQ2, _Limit) ((_SEQ1 != _SEQ2) && !(((_SEQ1-_SEQ2) & ((_Limit+1)>>1))))
46306 +#define SEQ_WITHIN_WIN(_SEQ1, _SEQ2, _WIN, _Limit) (SEQ_LARGER(_SEQ1, _SEQ2, _Limit) && \
46307 + SEQ_SMALLER(_SEQ1, ((_SEQ2+_WIN+1)&_Limit), _Limit))
46310 +// Contention-free parameter (without ID and Length)
46312 +typedef struct PACKED {
46313 + BOOLEAN bValid; // 1: variable contains valid value
46316 + USHORT CfpMaxDuration;
46317 + USHORT CfpDurRemaining;
46318 +} CF_PARM, *PCF_PARM;
46320 +typedef struct _CIPHER_SUITE {
46321 + NDIS_802_11_ENCRYPTION_STATUS PairCipher; // Unicast cipher 1, this one has more secured cipher suite
46322 + NDIS_802_11_ENCRYPTION_STATUS PairCipherAux; // Unicast cipher 2 if AP announce two unicast cipher suite
46323 + NDIS_802_11_ENCRYPTION_STATUS GroupCipher; // Group cipher
46324 + USHORT RsnCapability; // RSN capability from beacon
46325 + BOOLEAN bMixMode; // Indicate Pair & Group cipher might be different
46326 +} CIPHER_SUITE, *PCIPHER_SUITE;
46328 +// EDCA configuration from AP's BEACON/ProbeRsp
46330 + BOOLEAN bValid; // 1: variable contains valid value
46331 + BOOLEAN bAdd; // 1: variable contains valid value
46333 + BOOLEAN bQueueRequest;
46334 + BOOLEAN bTxopRequest;
46335 + BOOLEAN bAPSDCapable;
46336 +// BOOLEAN bMoreDataAck;
46337 + UCHAR EdcaUpdateCount;
46338 + UCHAR Aifsn[4]; // 0:AC_BK, 1:AC_BE, 2:AC_VI, 3:AC_VO
46341 + USHORT Txop[4]; // in unit of 32-us
46342 + BOOLEAN bACM[4]; // 1: Admission Control of AC_BK is mandattory
46343 +} EDCA_PARM, *PEDCA_PARM;
46345 +// QBSS LOAD information from QAP's BEACON/ProbeRsp
46347 + BOOLEAN bValid; // 1: variable contains valid value
46349 + UCHAR ChannelUtilization;
46350 + USHORT RemainingAdmissionControl; // in unit of 32-us
46351 +} QBSS_LOAD_PARM, *PQBSS_LOAD_PARM;
46353 +// QBSS Info field in QSTA's assoc req
46354 +typedef struct PACKED {
46355 +#ifdef RT_BIG_ENDIAN
46357 + UCHAR MaxSPLength:2;
46359 + UCHAR UAPSD_AC_BE:1;
46360 + UCHAR UAPSD_AC_BK:1;
46361 + UCHAR UAPSD_AC_VI:1;
46362 + UCHAR UAPSD_AC_VO:1;
46364 + UCHAR UAPSD_AC_VO:1;
46365 + UCHAR UAPSD_AC_VI:1;
46366 + UCHAR UAPSD_AC_BK:1;
46367 + UCHAR UAPSD_AC_BE:1;
46369 + UCHAR MaxSPLength:2;
46371 +#endif /* !RT_BIG_ENDIAN */
46372 +} QBSS_STA_INFO_PARM, *PQBSS_STA_INFO_PARM;
46374 +// QBSS Info field in QAP's Beacon/ProbeRsp
46375 +typedef struct PACKED {
46376 +#ifdef RT_BIG_ENDIAN
46379 + UCHAR ParamSetCount:4;
46381 + UCHAR ParamSetCount:4;
46384 +#endif /* !RT_BIG_ENDIAN */
46385 +} QBSS_AP_INFO_PARM, *PQBSS_AP_INFO_PARM;
46387 +// QOS Capability reported in QAP's BEACON/ProbeRsp
46388 +// QOS Capability sent out in QSTA's AssociateReq/ReAssociateReq
46390 + BOOLEAN bValid; // 1: variable contains valid value
46392 + BOOLEAN bQueueRequest;
46393 + BOOLEAN bTxopRequest;
46394 +// BOOLEAN bMoreDataAck;
46395 + UCHAR EdcaUpdateCount;
46396 +} QOS_CAPABILITY_PARM, *PQOS_CAPABILITY_PARM;
46398 +#ifdef CONFIG_STA_SUPPORT
46401 + UCHAR IE[MAX_CUSTOM_LEN];
46403 +#endif // CONFIG_STA_SUPPORT //
46407 + UCHAR Bssid[MAC_ADDR_LEN];
46409 + UCHAR CentralChannel; //Store the wide-band central channel for 40MHz. .used in 40MHz AP. Or this is the same as Channel.
46412 + USHORT BeaconPeriod;
46414 + UCHAR SupRate[MAX_LEN_OF_SUPPORTED_RATES];
46415 + UCHAR SupRateLen;
46416 + UCHAR ExtRate[MAX_LEN_OF_SUPPORTED_RATES];
46417 + UCHAR ExtRateLen;
46418 + HT_CAPABILITY_IE HtCapability;
46419 + UCHAR HtCapabilityLen;
46420 + ADD_HT_INFO_IE AddHtInfo; // AP might use this additional ht info IE
46421 + UCHAR AddHtInfoLen;
46422 + UCHAR NewExtChanOffset;
46424 + UCHAR Privacy; // Indicate security function ON/OFF. Don't mess up with auth mode.
46427 + USHORT DtimPeriod;
46428 + USHORT CapabilityInfo;
46431 + USHORT CfpPeriod;
46432 + USHORT CfpMaxDuration;
46433 + USHORT CfpDurRemaining;
46435 + CHAR Ssid[MAX_LEN_OF_SSID];
46437 + ULONG LastBeaconRxTime; // OS's timestamp
46442 + CIPHER_SUITE WPA; // AP announced WPA cipher suite
46443 + CIPHER_SUITE WPA2; // AP announced WPA2 cipher suite
46445 + // New for microsoft WPA support
46446 + NDIS_802_11_FIXED_IEs FixIEs;
46447 + NDIS_802_11_AUTHENTICATION_MODE AuthModeAux; // Addition mode for WPA2 / WPA capable AP
46448 + NDIS_802_11_AUTHENTICATION_MODE AuthMode;
46449 + NDIS_802_11_WEP_STATUS WepStatus; // Unicast Encryption Algorithm extract from VAR_IE
46450 + USHORT VarIELen; // Length of next VIE include EID & Length
46451 + UCHAR VarIEs[MAX_VIE_LEN];
46453 + // CCX Ckip information
46457 + UCHAR PTSF[4]; // Parent TSF
46458 + UCHAR TTSF[8]; // Target TSF
46460 + // 802.11e d9, and WMM
46461 + EDCA_PARM EdcaParm;
46462 + QOS_CAPABILITY_PARM QosCapability;
46463 + QBSS_LOAD_PARM QbssLoad;
46464 +#ifdef CONFIG_STA_SUPPORT
46467 +#ifdef EXT_BUILD_CHANNEL_LIST
46468 + UCHAR CountryString[3];
46469 + BOOLEAN bHasCountryIE;
46470 +#endif // EXT_BUILD_CHANNEL_LIST //
46471 +#endif // CONFIG_STA_SUPPORT //
46472 +} BSS_ENTRY, *PBSS_ENTRY;
46476 + UCHAR BssOverlapNr;
46477 + BSS_ENTRY BssEntry[MAX_LEN_OF_BSS_TABLE];
46478 +} BSS_TABLE, *PBSS_TABLE;
46481 +typedef struct _MLME_QUEUE_ELEM {
46485 + UCHAR Msg[MGMT_DMA_BUFFER_SIZE];
46486 + LARGE_INTEGER TimeStamp;
46493 + BOOLEAN Occupied;
46496 +#endif // MLME_EX //
46497 +} MLME_QUEUE_ELEM, *PMLME_QUEUE_ELEM;
46499 +typedef struct _MLME_QUEUE {
46503 + NDIS_SPIN_LOCK Lock;
46504 + MLME_QUEUE_ELEM Entry[MAX_LEN_OF_MLME_QUEUE];
46505 +} MLME_QUEUE, *PMLME_QUEUE;
46507 +typedef VOID (*STATE_MACHINE_FUNC)(VOID *Adaptor, MLME_QUEUE_ELEM *Elem);
46509 +typedef struct _STATE_MACHINE {
46514 + STATE_MACHINE_FUNC *TransFunc;
46515 +} STATE_MACHINE, *PSTATE_MACHINE;
46518 +// MLME AUX data structure that hold temporarliy settings during a connection attempt.
46519 +// Once this attemp succeeds, all settings will be copy to pAd->StaActive.
46520 +// A connection attempt (user set OID, roaming, CCX fast roaming,..) consists of
46521 +// several steps (JOIN, AUTH, ASSOC or REASSOC) and may fail at any step. We purposely
46522 +// separate this under-trial settings away from pAd->StaActive so that once
46523 +// this new attempt failed, driver can auto-recover back to the active settings.
46524 +typedef struct _MLME_AUX {
46526 + UCHAR Ssid[MAX_LEN_OF_SSID];
46528 + UCHAR Bssid[MAC_ADDR_LEN];
46529 + UCHAR AutoReconnectSsid[MAX_LEN_OF_SSID];
46530 + UCHAR AutoReconnectSsidLen;
46534 + UCHAR CentralChannel;
46536 + USHORT CapabilityInfo;
46537 + USHORT BeaconPeriod;
46538 + USHORT CfpMaxDuration;
46539 + USHORT CfpPeriod;
46542 + // Copy supported rate from desired AP's beacon. We are trying to match
46543 + // AP's supported and extended rate settings.
46544 + UCHAR SupRate[MAX_LEN_OF_SUPPORTED_RATES];
46545 + UCHAR ExtRate[MAX_LEN_OF_SUPPORTED_RATES];
46546 + UCHAR SupRateLen;
46547 + UCHAR ExtRateLen;
46548 + HT_CAPABILITY_IE HtCapability;
46549 + UCHAR HtCapabilityLen;
46550 + ADD_HT_INFO_IE AddHtInfo; // AP might use this additional ht info IE
46551 + UCHAR NewExtChannelOffset;
46552 + //RT_HT_CAPABILITY SupportedHtPhy;
46555 + QOS_CAPABILITY_PARM APQosCapability; // QOS capability of the current associated AP
46556 + EDCA_PARM APEdcaParm; // EDCA parameters of the current associated AP
46557 + QBSS_LOAD_PARM APQbssLoad; // QBSS load of the current associated AP
46559 + // new to keep Ralink specific feature
46560 + ULONG APRalinkIe;
46562 + BSS_TABLE SsidBssTab; // AP list for the same SSID
46563 + BSS_TABLE RoamTab; // AP list eligible for roaming
46567 + BOOLEAN CurrReqIsFromNdis;
46569 + RALINK_TIMER_STRUCT BeaconTimer, ScanTimer;
46570 + RALINK_TIMER_STRUCT AuthTimer;
46571 + RALINK_TIMER_STRUCT AssocTimer, ReassocTimer, DisassocTimer;
46572 +} MLME_AUX, *PMLME_AUX;
46574 +typedef struct _MLME_ADDBA_REQ_STRUCT{
46576 + UCHAR pAddr[MAC_ADDR_LEN];
46578 + USHORT TimeOutValue;
46581 + USHORT BaStartSeq;
46582 +} MLME_ADDBA_REQ_STRUCT, *PMLME_ADDBA_REQ_STRUCT;
46585 +typedef struct _MLME_DELBA_REQ_STRUCT{
46587 + UCHAR Addr[MAC_ADDR_LEN];
46590 +} MLME_DELBA_REQ_STRUCT, *PMLME_DELBA_REQ_STRUCT;
46592 +// assoc struct is equal to reassoc
46593 +typedef struct _MLME_ASSOC_REQ_STRUCT{
46594 + UCHAR Addr[MAC_ADDR_LEN];
46595 + USHORT CapabilityInfo;
46596 + USHORT ListenIntv;
46598 +} MLME_ASSOC_REQ_STRUCT, *PMLME_ASSOC_REQ_STRUCT, MLME_REASSOC_REQ_STRUCT, *PMLME_REASSOC_REQ_STRUCT;
46600 +typedef struct _MLME_DISASSOC_REQ_STRUCT{
46601 + UCHAR Addr[MAC_ADDR_LEN];
46603 +} MLME_DISASSOC_REQ_STRUCT, *PMLME_DISASSOC_REQ_STRUCT;
46605 +typedef struct _MLME_AUTH_REQ_STRUCT {
46606 + UCHAR Addr[MAC_ADDR_LEN];
46609 +} MLME_AUTH_REQ_STRUCT, *PMLME_AUTH_REQ_STRUCT;
46611 +typedef struct _MLME_DEAUTH_REQ_STRUCT {
46612 + UCHAR Addr[MAC_ADDR_LEN];
46614 +} MLME_DEAUTH_REQ_STRUCT, *PMLME_DEAUTH_REQ_STRUCT;
46618 +} MLME_JOIN_REQ_STRUCT;
46620 +typedef struct _MLME_SCAN_REQ_STRUCT {
46621 + UCHAR Bssid[MAC_ADDR_LEN];
46625 + CHAR Ssid[MAX_LEN_OF_SSID];
46626 +} MLME_SCAN_REQ_STRUCT, *PMLME_SCAN_REQ_STRUCT;
46628 +typedef struct _MLME_START_REQ_STRUCT {
46629 + CHAR Ssid[MAX_LEN_OF_SSID];
46631 +} MLME_START_REQ_STRUCT, *PMLME_START_REQ_STRUCT;
46633 +#ifdef CONFIG_STA_SUPPORT
46634 +#ifdef QOS_DLS_SUPPORT
46635 +// structure for DLS
46636 +typedef struct _RT_802_11_DLS {
46637 + USHORT TimeOut; // Use to time out while slience, unit: second , set by UI
46638 + USHORT CountDownTimer; // Use to time out while slience,unit: second , used by driver only
46639 + NDIS_802_11_MAC_ADDRESS MacAddr; // set by UI
46640 + UCHAR Status; // 0: none , 1: wait STAkey, 2: finish DLS setup , set by driver only
46641 + BOOLEAN Valid; // 1: valid , 0: invalid , set by UI, use to setup or tear down DLS link
46642 + RALINK_TIMER_STRUCT Timer; // Use to time out while handshake
46644 + USHORT MacTabMatchWCID; // ASIC
46647 +} RT_802_11_DLS, *PRT_802_11_DLS;
46649 +typedef struct _MLME_DLS_REQ_STRUCT {
46650 + PRT_802_11_DLS pDLS;
46652 +} MLME_DLS_REQ_STRUCT, *PMLME_DLS_REQ_STRUCT;
46653 +#endif // QOS_DLS_SUPPORT //
46654 +#endif // CONFIG_STA_SUPPORT //
46656 +typedef struct PACKED {
46660 +} EID_STRUCT,*PEID_STRUCT, BEACON_EID_STRUCT, *PBEACON_EID_STRUCT;
46662 +typedef struct PACKED _RTMP_TX_RATE_SWITCH
46665 +#ifdef RT_BIG_ENDIAN
46683 +} RRTMP_TX_RATE_SWITCH, *PRTMP_TX_RATE_SWITCH;
46685 +// ========================== AP mlme.h ===============================
46686 +#define TBTT_PRELOAD_TIME 384 // usec. LomgPreamble + 24-byte at 1Mbps
46687 +#define DEFAULT_DTIM_PERIOD 1
46689 +// weighting factor to calculate Channel quality, total should be 100%
46690 +//#define RSSI_WEIGHTING 0
46691 +//#define TX_WEIGHTING 40
46692 +//#define RX_WEIGHTING 60
46694 +#define MAC_TABLE_AGEOUT_TIME 300 // unit: sec
46695 +#define MAC_TABLE_ASSOC_TIMEOUT 5 // unit: sec
46696 +#define MAC_TABLE_FULL(Tab) ((Tab).size == MAX_LEN_OF_MAC_TABLE)
46698 +// AP shall drop the sta if contine Tx fail count reach it.
46699 +#define MAC_ENTRY_LIFE_CHECK_CNT 20 // packet cnt.
46701 +// Value domain of pMacEntry->Sst
46702 +typedef enum _Sst {
46703 + SST_NOT_AUTH, // 0: equivalent to IEEE 802.11/1999 state 1
46704 + SST_AUTH, // 1: equivalent to IEEE 802.11/1999 state 2
46705 + SST_ASSOC // 2: equivalent to IEEE 802.11/1999 state 3
46708 +// value domain of pMacEntry->AuthState
46709 +typedef enum _AuthState {
46711 + AS_AUTH_OPEN, // STA has been authenticated using OPEN SYSTEM
46712 + AS_AUTH_KEY, // STA has been authenticated using SHARED KEY
46713 + AS_AUTHENTICATING // STA is waiting for AUTH seq#3 using SHARED KEY
46716 +//for-wpa value domain of pMacEntry->WpaState 802.1i D3 p.114
46717 +typedef enum _ApWpaState {
46719 + AS_DISCONNECT, // 1
46720 + AS_DISCONNECTED, // 2
46721 + AS_INITIALIZE, // 3
46722 + AS_AUTHENTICATION, // 4
46723 + AS_AUTHENTICATION2, // 5
46726 + AS_PTKSTART, // 8
46727 + AS_PTKINIT_NEGOTIATING, // 9
46728 + AS_PTKINITDONE, // 10
46729 + AS_UPDATEKEYS, // 11
46730 + AS_INTEGRITY_FAILURE, // 12
46731 + AS_KEYUPDATE, // 13
46734 +// for-wpa value domain of pMacEntry->WpaState 802.1i D3 p.114
46735 +typedef enum _GTKState {
46736 + REKEY_NEGOTIATING,
46737 + REKEY_ESTABLISHED,
46741 +// for-wpa value domain of pMacEntry->WpaState 802.1i D3 p.114
46742 +typedef enum _WpaGTKState {
46746 +// ====================== end of AP mlme.h ============================
46749 +#endif // MLME_H__
46751 +++ b/drivers/staging/rt3070/netif_block.h
46754 + *************************************************************************
46755 + * Ralink Tech Inc.
46756 + * 5F., No.36, Taiyuan St., Jhubei City,
46757 + * Hsinchu County 302,
46760 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
46762 + * This program is free software; you can redistribute it and/or modify *
46763 + * it under the terms of the GNU General Public License as published by *
46764 + * the Free Software Foundation; either version 2 of the License, or *
46765 + * (at your option) any later version. *
46767 + * This program is distributed in the hope that it will be useful, *
46768 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
46769 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
46770 + * GNU General Public License for more details. *
46772 + * You should have received a copy of the GNU General Public License *
46773 + * along with this program; if not, write to the *
46774 + * Free Software Foundation, Inc., *
46775 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
46777 + *************************************************************************
46780 +#ifndef __NET_IF_BLOCK_H__
46781 +#define __NET_IF_BLOCK_H__
46783 +//#include <linux/device.h>
46784 +#include "link_list.h"
46787 +#define FREE_NETIF_POOL_SIZE 32
46789 +typedef struct _NETIF_ENTRY
46791 + struct _NETIF_ENTRY *pNext;
46792 + PNET_DEV pNetDev;
46793 +} NETIF_ENTRY, *PNETIF_ENTRY;
46795 +void initblockQueueTab(
46796 + IN PRTMP_ADAPTER pAd);
46798 +BOOLEAN blockNetIf(
46799 + IN PBLOCK_QUEUE_ENTRY pBlockQueueEntry,
46800 + IN PNET_DEV pNetDev);
46802 +VOID releaseNetIf(
46803 + IN PBLOCK_QUEUE_ENTRY pBlockQueueEntry);
46805 +VOID StopNetIfQueue(
46806 + IN PRTMP_ADAPTER pAd,
46808 + IN PNDIS_PACKET pPacket);
46809 +#endif // __NET_IF_BLOCK_H__
46812 +++ b/drivers/staging/rt3070/oid.h
46815 + *************************************************************************
46816 + * Ralink Tech Inc.
46817 + * 5F., No.36, Taiyuan St., Jhubei City,
46818 + * Hsinchu County 302,
46821 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
46823 + * This program is free software; you can redistribute it and/or modify *
46824 + * it under the terms of the GNU General Public License as published by *
46825 + * the Free Software Foundation; either version 2 of the License, or *
46826 + * (at your option) any later version. *
46828 + * This program is distributed in the hope that it will be useful, *
46829 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
46830 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
46831 + * GNU General Public License for more details. *
46833 + * You should have received a copy of the GNU General Public License *
46834 + * along with this program; if not, write to the *
46835 + * Free Software Foundation, Inc., *
46836 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
46838 + *************************************************************************
46845 + Revision History:
46847 + -------- ---------- ----------------------------------------------
46848 + Name Date Modification logs
46853 +//#include <linux/wireless.h>
46859 +// IEEE 802.11 Structures and definitions
46861 +#define MAX_TX_POWER_LEVEL 100 /* mW */
46862 +#define MAX_RSSI_TRIGGER -10 /* dBm */
46863 +#define MIN_RSSI_TRIGGER -200 /* dBm */
46864 +#define MAX_FRAG_THRESHOLD 2346 /* byte count */
46865 +#define MIN_FRAG_THRESHOLD 256 /* byte count */
46866 +#define MAX_RTS_THRESHOLD 2347 /* byte count */
46868 +// new types for Media Specific Indications
46869 +// Extension channel offset
46870 +#define EXTCHA_NONE 0
46871 +#define EXTCHA_ABOVE 0x1
46872 +#define EXTCHA_BELOW 0x3
46875 +#define BAND_WIDTH_20 0
46876 +#define BAND_WIDTH_40 1
46877 +#define BAND_WIDTH_BOTH 2
46878 +#define BAND_WIDTH_10 3 // 802.11j has 10MHz. This definition is for internal usage. doesn't fill in the IE or other field.
46880 +#define GAP_INTERVAL_400 1 // only support in HT mode
46881 +#define GAP_INTERVAL_800 0
46882 +#define GAP_INTERVAL_BOTH 2
46884 +#define NdisMediaStateConnected 1
46885 +#define NdisMediaStateDisconnected 0
46887 +#define NDIS_802_11_LENGTH_SSID 32
46888 +#define NDIS_802_11_LENGTH_RATES 8
46889 +#define NDIS_802_11_LENGTH_RATES_EX 16
46890 +#define MAC_ADDR_LENGTH 6
46891 +#define MAX_NUM_OF_CHS 49 // 14 channels @2.4G + 12@UNII + 4 @MMAC + 11 @HiperLAN2 + 7 @Japan + 1 as NULL terminationc
46892 +#define MAX_NUMBER_OF_EVENT 10 // entry # in EVENT table
46893 +#define MAX_NUMBER_OF_MAC 32 // if MAX_MBSSID_NUM is 8, this value can't be larger than 211
46894 +#define MAX_NUMBER_OF_ACL 64
46895 +#define MAX_LENGTH_OF_SUPPORT_RATES 12 // 1, 2, 5.5, 11, 6, 9, 12, 18, 24, 36, 48, 54
46896 +#define MAX_NUMBER_OF_DLS_ENTRY 4
46901 +// OID definition, since NDIS 5.0 didn't define these, we need to define for our own
46902 +//#if _WIN32_WINNT<=0x0500
46904 +#define OID_GEN_MACHINE_NAME 0x0001021A
46907 +#define RT_QUERY_ATE_TXDONE_COUNT 0x0401
46908 +#endif // RALINK_ATE //
46909 +#define RT_QUERY_SIGNAL_CONTEXT 0x0402
46910 +#define RT_SET_IAPP_PID 0x0404
46911 +#define RT_SET_APD_PID 0x0405
46912 +#define RT_SET_DEL_MAC_ENTRY 0x0406
46915 +// IEEE 802.11 OIDs
46917 +#define OID_GET_SET_TOGGLE 0x8000
46919 +#define OID_802_11_NETWORK_TYPES_SUPPORTED 0x0103
46920 +#define OID_802_11_NETWORK_TYPE_IN_USE 0x0104
46921 +#define OID_802_11_RSSI_TRIGGER 0x0107
46922 +#define RT_OID_802_11_RSSI 0x0108 //rt2860 only , kathy
46923 +#define RT_OID_802_11_RSSI_1 0x0109 //rt2860 only , kathy
46924 +#define RT_OID_802_11_RSSI_2 0x010A //rt2860 only , kathy
46925 +#define OID_802_11_NUMBER_OF_ANTENNAS 0x010B
46926 +#define OID_802_11_RX_ANTENNA_SELECTED 0x010C
46927 +#define OID_802_11_TX_ANTENNA_SELECTED 0x010D
46928 +#define OID_802_11_SUPPORTED_RATES 0x010E
46929 +#define OID_802_11_ADD_WEP 0x0112
46930 +#define OID_802_11_REMOVE_WEP 0x0113
46931 +#define OID_802_11_DISASSOCIATE 0x0114
46932 +#define OID_802_11_PRIVACY_FILTER 0x0118
46933 +#define OID_802_11_ASSOCIATION_INFORMATION 0x011E
46934 +#define OID_802_11_TEST 0x011F
46935 +#define RT_OID_802_11_COUNTRY_REGION 0x0507
46936 +#define OID_802_11_BSSID_LIST_SCAN 0x0508
46937 +#define OID_802_11_SSID 0x0509
46938 +#define OID_802_11_BSSID 0x050A
46939 +#define RT_OID_802_11_RADIO 0x050B
46940 +#define RT_OID_802_11_PHY_MODE 0x050C
46941 +#define RT_OID_802_11_STA_CONFIG 0x050D
46942 +#define OID_802_11_DESIRED_RATES 0x050E
46943 +#define RT_OID_802_11_PREAMBLE 0x050F
46944 +#define OID_802_11_WEP_STATUS 0x0510
46945 +#define OID_802_11_AUTHENTICATION_MODE 0x0511
46946 +#define OID_802_11_INFRASTRUCTURE_MODE 0x0512
46947 +#define RT_OID_802_11_RESET_COUNTERS 0x0513
46948 +#define OID_802_11_RTS_THRESHOLD 0x0514
46949 +#define OID_802_11_FRAGMENTATION_THRESHOLD 0x0515
46950 +#define OID_802_11_POWER_MODE 0x0516
46951 +#define OID_802_11_TX_POWER_LEVEL 0x0517
46952 +#define RT_OID_802_11_ADD_WPA 0x0518
46953 +#define OID_802_11_REMOVE_KEY 0x0519
46954 +#define OID_802_11_ADD_KEY 0x0520
46955 +#define OID_802_11_CONFIGURATION 0x0521
46956 +#define OID_802_11_TX_PACKET_BURST 0x0522
46957 +#define RT_OID_802_11_QUERY_NOISE_LEVEL 0x0523
46958 +#define RT_OID_802_11_EXTRA_INFO 0x0524
46960 +#define RT_OID_802_11_HARDWARE_REGISTER 0x0525
46962 +#define OID_802_11_ENCRYPTION_STATUS OID_802_11_WEP_STATUS
46963 +#define OID_802_11_DEAUTHENTICATION 0x0526
46964 +#define OID_802_11_DROP_UNENCRYPTED 0x0527
46965 +#define OID_802_11_MIC_FAILURE_REPORT_FRAME 0x0528
46967 +// For 802.1x daemin using to require current driver configuration
46968 +#define OID_802_11_RADIUS_QUERY_SETTING 0x0540
46970 +#define RT_OID_DEVICE_NAME 0x0607
46971 +#define RT_OID_VERSION_INFO 0x0608
46972 +#define OID_802_11_BSSID_LIST 0x0609
46973 +#define OID_802_3_CURRENT_ADDRESS 0x060A
46974 +#define OID_GEN_MEDIA_CONNECT_STATUS 0x060B
46975 +#define RT_OID_802_11_QUERY_LINK_STATUS 0x060C
46976 +#define OID_802_11_RSSI 0x060D
46977 +#define OID_802_11_STATISTICS 0x060E
46978 +#define OID_GEN_RCV_OK 0x060F
46979 +#define OID_GEN_RCV_NO_BUFFER 0x0610
46980 +#define RT_OID_802_11_QUERY_EEPROM_VERSION 0x0611
46981 +#define RT_OID_802_11_QUERY_FIRMWARE_VERSION 0x0612
46982 +#define RT_OID_802_11_QUERY_LAST_RX_RATE 0x0613
46983 +#define RT_OID_802_11_TX_POWER_LEVEL_1 0x0614
46984 +#define RT_OID_802_11_QUERY_PIDVID 0x0615
46985 +//for WPA_SUPPLICANT_SUPPORT
46986 +#define OID_SET_COUNTERMEASURES 0x0616
46987 +#define OID_802_11_SET_IEEE8021X 0x0617
46988 +#define OID_802_11_SET_IEEE8021X_REQUIRE_KEY 0x0618
46989 +#define OID_802_11_PMKID 0x0620
46990 +#define RT_OID_WPA_SUPPLICANT_SUPPORT 0x0621
46991 +#define RT_OID_WE_VERSION_COMPILED 0x0622
46992 +#define RT_OID_NEW_DRIVER 0x0623
46996 +#define RT_OID_802_11_SNR_0 0x0630
46997 +#define RT_OID_802_11_SNR_1 0x0631
46998 +#define RT_OID_802_11_QUERY_LAST_TX_RATE 0x0632
46999 +#define RT_OID_802_11_QUERY_HT_PHYMODE 0x0633
47000 +#define RT_OID_802_11_SET_HT_PHYMODE 0x0634
47001 +#define OID_802_11_RELOAD_DEFAULTS 0x0635
47002 +#define RT_OID_802_11_QUERY_APSD_SETTING 0x0636
47003 +#define RT_OID_802_11_SET_APSD_SETTING 0x0637
47004 +#define RT_OID_802_11_QUERY_APSD_PSM 0x0638
47005 +#define RT_OID_802_11_SET_APSD_PSM 0x0639
47006 +#define RT_OID_802_11_QUERY_DLS 0x063A
47007 +#define RT_OID_802_11_SET_DLS 0x063B
47008 +#define RT_OID_802_11_QUERY_DLS_PARAM 0x063C
47009 +#define RT_OID_802_11_SET_DLS_PARAM 0x063D
47010 +#define RT_OID_802_11_QUERY_WMM 0x063E
47011 +#define RT_OID_802_11_SET_WMM 0x063F
47012 +#define RT_OID_802_11_QUERY_IMME_BA_CAP 0x0640
47013 +#define RT_OID_802_11_SET_IMME_BA_CAP 0x0641
47014 +#define RT_OID_802_11_QUERY_BATABLE 0x0642
47015 +#define RT_OID_802_11_ADD_IMME_BA 0x0643
47016 +#define RT_OID_802_11_TEAR_IMME_BA 0x0644
47017 +#define RT_OID_DRIVER_DEVICE_NAME 0x0645
47018 +#define RT_OID_802_11_QUERY_DAT_HT_PHYMODE 0x0646
47019 +#define RT_OID_QUERY_MULTIPLE_CARD_SUPPORT 0x0647
47021 +// Ralink defined OIDs
47022 +// Dennis Lee move to platform specific
47024 +#define RT_OID_802_11_BSSID (OID_GET_SET_TOGGLE | OID_802_11_BSSID)
47025 +#define RT_OID_802_11_SSID (OID_GET_SET_TOGGLE | OID_802_11_SSID)
47026 +#define RT_OID_802_11_INFRASTRUCTURE_MODE (OID_GET_SET_TOGGLE | OID_802_11_INFRASTRUCTURE_MODE)
47027 +#define RT_OID_802_11_ADD_WEP (OID_GET_SET_TOGGLE | OID_802_11_ADD_WEP)
47028 +#define RT_OID_802_11_ADD_KEY (OID_GET_SET_TOGGLE | OID_802_11_ADD_KEY)
47029 +#define RT_OID_802_11_REMOVE_WEP (OID_GET_SET_TOGGLE | OID_802_11_REMOVE_WEP)
47030 +#define RT_OID_802_11_REMOVE_KEY (OID_GET_SET_TOGGLE | OID_802_11_REMOVE_KEY)
47031 +#define RT_OID_802_11_DISASSOCIATE (OID_GET_SET_TOGGLE | OID_802_11_DISASSOCIATE)
47032 +#define RT_OID_802_11_AUTHENTICATION_MODE (OID_GET_SET_TOGGLE | OID_802_11_AUTHENTICATION_MODE)
47033 +#define RT_OID_802_11_PRIVACY_FILTER (OID_GET_SET_TOGGLE | OID_802_11_PRIVACY_FILTER)
47034 +#define RT_OID_802_11_BSSID_LIST_SCAN (OID_GET_SET_TOGGLE | OID_802_11_BSSID_LIST_SCAN)
47035 +#define RT_OID_802_11_WEP_STATUS (OID_GET_SET_TOGGLE | OID_802_11_WEP_STATUS)
47036 +#define RT_OID_802_11_RELOAD_DEFAULTS (OID_GET_SET_TOGGLE | OID_802_11_RELOAD_DEFAULTS)
47037 +#define RT_OID_802_11_NETWORK_TYPE_IN_USE (OID_GET_SET_TOGGLE | OID_802_11_NETWORK_TYPE_IN_USE)
47038 +#define RT_OID_802_11_TX_POWER_LEVEL (OID_GET_SET_TOGGLE | OID_802_11_TX_POWER_LEVEL)
47039 +#define RT_OID_802_11_RSSI_TRIGGER (OID_GET_SET_TOGGLE | OID_802_11_RSSI_TRIGGER)
47040 +#define RT_OID_802_11_FRAGMENTATION_THRESHOLD (OID_GET_SET_TOGGLE | OID_802_11_FRAGMENTATION_THRESHOLD)
47041 +#define RT_OID_802_11_RTS_THRESHOLD (OID_GET_SET_TOGGLE | OID_802_11_RTS_THRESHOLD)
47042 +#define RT_OID_802_11_RX_ANTENNA_SELECTED (OID_GET_SET_TOGGLE | OID_802_11_RX_ANTENNA_SELECTED)
47043 +#define RT_OID_802_11_TX_ANTENNA_SELECTED (OID_GET_SET_TOGGLE | OID_802_11_TX_ANTENNA_SELECTED)
47044 +#define RT_OID_802_11_SUPPORTED_RATES (OID_GET_SET_TOGGLE | OID_802_11_SUPPORTED_RATES)
47045 +#define RT_OID_802_11_DESIRED_RATES (OID_GET_SET_TOGGLE | OID_802_11_DESIRED_RATES)
47046 +#define RT_OID_802_11_CONFIGURATION (OID_GET_SET_TOGGLE | OID_802_11_CONFIGURATION)
47047 +#define RT_OID_802_11_POWER_MODE (OID_GET_SET_TOGGLE | OID_802_11_POWER_MODE)
47051 +typedef enum _NDIS_802_11_STATUS_TYPE
47053 + Ndis802_11StatusType_Authentication,
47054 + Ndis802_11StatusType_MediaStreamMode,
47055 + Ndis802_11StatusType_PMKID_CandidateList,
47056 + Ndis802_11StatusTypeMax // not a real type, defined as an upper bound
47057 +} NDIS_802_11_STATUS_TYPE, *PNDIS_802_11_STATUS_TYPE;
47059 +typedef UCHAR NDIS_802_11_MAC_ADDRESS[6];
47061 +typedef struct _NDIS_802_11_STATUS_INDICATION
47063 + NDIS_802_11_STATUS_TYPE StatusType;
47064 +} NDIS_802_11_STATUS_INDICATION, *PNDIS_802_11_STATUS_INDICATION;
47066 +// mask for authentication/integrity fields
47067 +#define NDIS_802_11_AUTH_REQUEST_AUTH_FIELDS 0x0f
47069 +#define NDIS_802_11_AUTH_REQUEST_REAUTH 0x01
47070 +#define NDIS_802_11_AUTH_REQUEST_KEYUPDATE 0x02
47071 +#define NDIS_802_11_AUTH_REQUEST_PAIRWISE_ERROR 0x06
47072 +#define NDIS_802_11_AUTH_REQUEST_GROUP_ERROR 0x0E
47074 +typedef struct _NDIS_802_11_AUTHENTICATION_REQUEST
47076 + ULONG Length; // Length of structure
47077 + NDIS_802_11_MAC_ADDRESS Bssid;
47079 +} NDIS_802_11_AUTHENTICATION_REQUEST, *PNDIS_802_11_AUTHENTICATION_REQUEST;
47081 +//Added new types for PMKID Candidate lists.
47082 +typedef struct _PMKID_CANDIDATE {
47083 + NDIS_802_11_MAC_ADDRESS BSSID;
47085 +} PMKID_CANDIDATE, *PPMKID_CANDIDATE;
47087 +typedef struct _NDIS_802_11_PMKID_CANDIDATE_LIST
47089 + ULONG Version; // Version of the structure
47090 + ULONG NumCandidates; // No. of pmkid candidates
47091 + PMKID_CANDIDATE CandidateList[1];
47092 +} NDIS_802_11_PMKID_CANDIDATE_LIST, *PNDIS_802_11_PMKID_CANDIDATE_LIST;
47094 +//Flags for PMKID Candidate list structure
47095 +#define NDIS_802_11_PMKID_CANDIDATE_PREAUTH_ENABLED 0x01
47097 +// Added new types for OFDM 5G and 2.4G
47098 +typedef enum _NDIS_802_11_NETWORK_TYPE
47103 + Ndis802_11OFDM5_N,
47104 + Ndis802_11OFDM24,
47105 + Ndis802_11OFDM24_N,
47106 + Ndis802_11Automode,
47107 + Ndis802_11NetworkTypeMax // not a real type, defined as an upper bound
47108 +} NDIS_802_11_NETWORK_TYPE, *PNDIS_802_11_NETWORK_TYPE;
47110 +typedef struct _NDIS_802_11_NETWORK_TYPE_LIST
47112 + UINT NumberOfItems; // in list below, at least 1
47113 + NDIS_802_11_NETWORK_TYPE NetworkType [1];
47114 +} NDIS_802_11_NETWORK_TYPE_LIST, *PNDIS_802_11_NETWORK_TYPE_LIST;
47116 +typedef enum _NDIS_802_11_POWER_MODE
47118 + Ndis802_11PowerModeCAM,
47119 + Ndis802_11PowerModeMAX_PSP,
47120 + Ndis802_11PowerModeFast_PSP,
47121 + Ndis802_11PowerModeLegacy_PSP,
47122 + Ndis802_11PowerModeMax // not a real mode, defined as an upper bound
47123 +} NDIS_802_11_POWER_MODE, *PNDIS_802_11_POWER_MODE;
47125 +typedef ULONG NDIS_802_11_TX_POWER_LEVEL; // in milliwatts
47128 +// Received Signal Strength Indication
47130 +typedef LONG NDIS_802_11_RSSI; // in dBm
47132 +typedef struct _NDIS_802_11_CONFIGURATION_FH
47134 + ULONG Length; // Length of structure
47135 + ULONG HopPattern; // As defined by 802.11, MSB set
47136 + ULONG HopSet; // to one if non-802.11
47137 + ULONG DwellTime; // units are Kusec
47138 +} NDIS_802_11_CONFIGURATION_FH, *PNDIS_802_11_CONFIGURATION_FH;
47140 +typedef struct _NDIS_802_11_CONFIGURATION
47142 + ULONG Length; // Length of structure
47143 + ULONG BeaconPeriod; // units are Kusec
47144 + ULONG ATIMWindow; // units are Kusec
47145 + ULONG DSConfig; // Frequency, units are kHz
47146 + NDIS_802_11_CONFIGURATION_FH FHConfig;
47147 +} NDIS_802_11_CONFIGURATION, *PNDIS_802_11_CONFIGURATION;
47149 +typedef struct _NDIS_802_11_STATISTICS
47151 + ULONG Length; // Length of structure
47152 + LARGE_INTEGER TransmittedFragmentCount;
47153 + LARGE_INTEGER MulticastTransmittedFrameCount;
47154 + LARGE_INTEGER FailedCount;
47155 + LARGE_INTEGER RetryCount;
47156 + LARGE_INTEGER MultipleRetryCount;
47157 + LARGE_INTEGER RTSSuccessCount;
47158 + LARGE_INTEGER RTSFailureCount;
47159 + LARGE_INTEGER ACKFailureCount;
47160 + LARGE_INTEGER FrameDuplicateCount;
47161 + LARGE_INTEGER ReceivedFragmentCount;
47162 + LARGE_INTEGER MulticastReceivedFrameCount;
47163 + LARGE_INTEGER FCSErrorCount;
47164 + LARGE_INTEGER TKIPLocalMICFailures;
47165 + LARGE_INTEGER TKIPRemoteMICErrors;
47166 + LARGE_INTEGER TKIPICVErrors;
47167 + LARGE_INTEGER TKIPCounterMeasuresInvoked;
47168 + LARGE_INTEGER TKIPReplays;
47169 + LARGE_INTEGER CCMPFormatErrors;
47170 + LARGE_INTEGER CCMPReplays;
47171 + LARGE_INTEGER CCMPDecryptErrors;
47172 + LARGE_INTEGER FourWayHandshakeFailures;
47173 +} NDIS_802_11_STATISTICS, *PNDIS_802_11_STATISTICS;
47175 +typedef ULONG NDIS_802_11_KEY_INDEX;
47176 +typedef ULONGLONG NDIS_802_11_KEY_RSC;
47178 +#define MAX_RADIUS_SRV_NUM 2 // 802.1x failover number
47180 +typedef struct PACKED _RADIUS_SRV_INFO {
47181 + UINT32 radius_ip;
47182 + UINT32 radius_port;
47183 + UCHAR radius_key[64];
47184 + UCHAR radius_key_len;
47185 +} RADIUS_SRV_INFO, *PRADIUS_SRV_INFO;
47187 +typedef struct PACKED _RADIUS_KEY_INFO
47189 + UCHAR radius_srv_num;
47190 + RADIUS_SRV_INFO radius_srv_info[MAX_RADIUS_SRV_NUM];
47191 + UCHAR ieee8021xWEP; // dynamic WEP
47193 + UCHAR key_length; // length of key in bytes
47194 + UCHAR key_material[13];
47195 +} RADIUS_KEY_INFO, *PRADIUS_KEY_INFO;
47197 +// It's used by 802.1x daemon to require relative configuration
47198 +typedef struct PACKED _RADIUS_CONF
47200 + UINT32 Length; // Length of this structure
47201 + UCHAR mbss_num; // indicate multiple BSS number
47202 + UINT32 own_ip_addr;
47203 + UINT32 retry_interval;
47204 + UINT32 session_timeout_interval;
47205 + UCHAR EAPifname[IFNAMSIZ];
47206 + UCHAR EAPifname_len;
47207 + UCHAR PreAuthifname[IFNAMSIZ];
47208 + UCHAR PreAuthifname_len;
47209 + RADIUS_KEY_INFO RadiusInfo[8/*MAX_MBSSID_NUM*/];
47210 +} RADIUS_CONF, *PRADIUS_CONF;
47214 +#ifdef CONFIG_STA_SUPPORT
47215 +// Key mapping keys require a BSSID
47216 +typedef struct _NDIS_802_11_KEY
47218 + UINT Length; // Length of this structure
47220 + UINT KeyLength; // length of key in bytes
47221 + NDIS_802_11_MAC_ADDRESS BSSID;
47222 + NDIS_802_11_KEY_RSC KeyRSC;
47223 + UCHAR KeyMaterial[1]; // variable length depending on above field
47224 +} NDIS_802_11_KEY, *PNDIS_802_11_KEY;
47225 +#endif // CONFIG_STA_SUPPORT //
47227 +typedef struct _NDIS_802_11_REMOVE_KEY
47229 + UINT Length; // Length of this structure
47231 + NDIS_802_11_MAC_ADDRESS BSSID;
47232 +} NDIS_802_11_REMOVE_KEY, *PNDIS_802_11_REMOVE_KEY;
47234 +typedef struct _NDIS_802_11_WEP
47236 + UINT Length; // Length of this structure
47237 + UINT KeyIndex; // 0 is the per-client key, 1-N are the
47239 + UINT KeyLength; // length of key in bytes
47240 + UCHAR KeyMaterial[1];// variable length depending on above field
47241 +} NDIS_802_11_WEP, *PNDIS_802_11_WEP;
47244 +typedef enum _NDIS_802_11_NETWORK_INFRASTRUCTURE
47247 + Ndis802_11Infrastructure,
47248 + Ndis802_11AutoUnknown,
47249 + Ndis802_11Monitor,
47250 + Ndis802_11InfrastructureMax // Not a real value, defined as upper bound
47251 +} NDIS_802_11_NETWORK_INFRASTRUCTURE, *PNDIS_802_11_NETWORK_INFRASTRUCTURE;
47253 +// Add new authentication modes
47254 +typedef enum _NDIS_802_11_AUTHENTICATION_MODE
47256 + Ndis802_11AuthModeOpen,
47257 + Ndis802_11AuthModeShared,
47258 + Ndis802_11AuthModeAutoSwitch,
47259 + Ndis802_11AuthModeWPA,
47260 + Ndis802_11AuthModeWPAPSK,
47261 + Ndis802_11AuthModeWPANone,
47262 + Ndis802_11AuthModeWPA2,
47263 + Ndis802_11AuthModeWPA2PSK,
47264 + Ndis802_11AuthModeWPA1WPA2,
47265 + Ndis802_11AuthModeWPA1PSKWPA2PSK,
47266 + Ndis802_11AuthModeMax // Not a real mode, defined as upper bound
47267 +} NDIS_802_11_AUTHENTICATION_MODE, *PNDIS_802_11_AUTHENTICATION_MODE;
47269 +typedef UCHAR NDIS_802_11_RATES[NDIS_802_11_LENGTH_RATES]; // Set of 8 data rates
47270 +typedef UCHAR NDIS_802_11_RATES_EX[NDIS_802_11_LENGTH_RATES_EX]; // Set of 16 data rates
47272 +typedef struct PACKED _NDIS_802_11_SSID
47274 + UINT SsidLength; // length of SSID field below, in bytes;
47275 + // this can be zero.
47276 + UCHAR Ssid[NDIS_802_11_LENGTH_SSID]; // SSID information field
47277 +} NDIS_802_11_SSID, *PNDIS_802_11_SSID;
47280 +typedef struct PACKED _NDIS_WLAN_BSSID
47282 + ULONG Length; // Length of this structure
47283 + NDIS_802_11_MAC_ADDRESS MacAddress; // BSSID
47284 + UCHAR Reserved[2];
47285 + NDIS_802_11_SSID Ssid; // SSID
47286 + ULONG Privacy; // WEP encryption requirement
47287 + NDIS_802_11_RSSI Rssi; // receive signal strength in dBm
47288 + NDIS_802_11_NETWORK_TYPE NetworkTypeInUse;
47289 + NDIS_802_11_CONFIGURATION Configuration;
47290 + NDIS_802_11_NETWORK_INFRASTRUCTURE InfrastructureMode;
47291 + NDIS_802_11_RATES SupportedRates;
47292 +} NDIS_WLAN_BSSID, *PNDIS_WLAN_BSSID;
47294 +typedef struct PACKED _NDIS_802_11_BSSID_LIST
47296 + UINT NumberOfItems; // in list below, at least 1
47297 + NDIS_WLAN_BSSID Bssid[1];
47298 +} NDIS_802_11_BSSID_LIST, *PNDIS_802_11_BSSID_LIST;
47300 +// Added Capabilities, IELength and IEs for each BSSID
47301 +typedef struct PACKED _NDIS_WLAN_BSSID_EX
47303 + ULONG Length; // Length of this structure
47304 + NDIS_802_11_MAC_ADDRESS MacAddress; // BSSID
47305 + UCHAR Reserved[2];
47306 + NDIS_802_11_SSID Ssid; // SSID
47307 + UINT Privacy; // WEP encryption requirement
47308 + NDIS_802_11_RSSI Rssi; // receive signal
47309 + // strength in dBm
47310 + NDIS_802_11_NETWORK_TYPE NetworkTypeInUse;
47311 + NDIS_802_11_CONFIGURATION Configuration;
47312 + NDIS_802_11_NETWORK_INFRASTRUCTURE InfrastructureMode;
47313 + NDIS_802_11_RATES_EX SupportedRates;
47316 +} NDIS_WLAN_BSSID_EX, *PNDIS_WLAN_BSSID_EX;
47318 +typedef struct PACKED _NDIS_802_11_BSSID_LIST_EX
47320 + UINT NumberOfItems; // in list below, at least 1
47321 + NDIS_WLAN_BSSID_EX Bssid[1];
47322 +} NDIS_802_11_BSSID_LIST_EX, *PNDIS_802_11_BSSID_LIST_EX;
47324 +typedef struct PACKED _NDIS_802_11_FIXED_IEs
47326 + UCHAR Timestamp[8];
47327 + USHORT BeaconInterval;
47328 + USHORT Capabilities;
47329 +} NDIS_802_11_FIXED_IEs, *PNDIS_802_11_FIXED_IEs;
47331 +typedef struct _NDIS_802_11_VARIABLE_IEs
47334 + UCHAR Length; // Number of bytes in data field
47336 +} NDIS_802_11_VARIABLE_IEs, *PNDIS_802_11_VARIABLE_IEs;
47338 +typedef ULONG NDIS_802_11_FRAGMENTATION_THRESHOLD;
47340 +typedef ULONG NDIS_802_11_RTS_THRESHOLD;
47342 +typedef ULONG NDIS_802_11_ANTENNA;
47344 +typedef enum _NDIS_802_11_PRIVACY_FILTER
47346 + Ndis802_11PrivFilterAcceptAll,
47347 + Ndis802_11PrivFilter8021xWEP
47348 +} NDIS_802_11_PRIVACY_FILTER, *PNDIS_802_11_PRIVACY_FILTER;
47350 +// Added new encryption types
47351 +// Also aliased typedef to new name
47352 +typedef enum _NDIS_802_11_WEP_STATUS
47354 + Ndis802_11WEPEnabled,
47355 + Ndis802_11Encryption1Enabled = Ndis802_11WEPEnabled,
47356 + Ndis802_11WEPDisabled,
47357 + Ndis802_11EncryptionDisabled = Ndis802_11WEPDisabled,
47358 + Ndis802_11WEPKeyAbsent,
47359 + Ndis802_11Encryption1KeyAbsent = Ndis802_11WEPKeyAbsent,
47360 + Ndis802_11WEPNotSupported,
47361 + Ndis802_11EncryptionNotSupported = Ndis802_11WEPNotSupported,
47362 + Ndis802_11Encryption2Enabled,
47363 + Ndis802_11Encryption2KeyAbsent,
47364 + Ndis802_11Encryption3Enabled,
47365 + Ndis802_11Encryption3KeyAbsent,
47366 + Ndis802_11Encryption4Enabled, // TKIP or AES mix
47367 + Ndis802_11Encryption4KeyAbsent,
47368 +} NDIS_802_11_WEP_STATUS, *PNDIS_802_11_WEP_STATUS,
47369 + NDIS_802_11_ENCRYPTION_STATUS, *PNDIS_802_11_ENCRYPTION_STATUS;
47371 +typedef enum _NDIS_802_11_RELOAD_DEFAULTS
47373 + Ndis802_11ReloadWEPKeys
47374 +} NDIS_802_11_RELOAD_DEFAULTS, *PNDIS_802_11_RELOAD_DEFAULTS;
47376 +#define NDIS_802_11_AI_REQFI_CAPABILITIES 1
47377 +#define NDIS_802_11_AI_REQFI_LISTENINTERVAL 2
47378 +#define NDIS_802_11_AI_REQFI_CURRENTAPADDRESS 4
47380 +#define NDIS_802_11_AI_RESFI_CAPABILITIES 1
47381 +#define NDIS_802_11_AI_RESFI_STATUSCODE 2
47382 +#define NDIS_802_11_AI_RESFI_ASSOCIATIONID 4
47384 +typedef struct _NDIS_802_11_AI_REQFI
47386 + USHORT Capabilities;
47387 + USHORT ListenInterval;
47388 + NDIS_802_11_MAC_ADDRESS CurrentAPAddress;
47389 +} NDIS_802_11_AI_REQFI, *PNDIS_802_11_AI_REQFI;
47391 +typedef struct _NDIS_802_11_AI_RESFI
47393 + USHORT Capabilities;
47394 + USHORT StatusCode;
47395 + USHORT AssociationId;
47396 +} NDIS_802_11_AI_RESFI, *PNDIS_802_11_AI_RESFI;
47398 +typedef struct _NDIS_802_11_ASSOCIATION_INFORMATION
47401 + USHORT AvailableRequestFixedIEs;
47402 + NDIS_802_11_AI_REQFI RequestFixedIEs;
47403 + ULONG RequestIELength;
47404 + ULONG OffsetRequestIEs;
47405 + USHORT AvailableResponseFixedIEs;
47406 + NDIS_802_11_AI_RESFI ResponseFixedIEs;
47407 + ULONG ResponseIELength;
47408 + ULONG OffsetResponseIEs;
47409 +} NDIS_802_11_ASSOCIATION_INFORMATION, *PNDIS_802_11_ASSOCIATION_INFORMATION;
47411 +typedef struct _NDIS_802_11_AUTHENTICATION_EVENT
47413 + NDIS_802_11_STATUS_INDICATION Status;
47414 + NDIS_802_11_AUTHENTICATION_REQUEST Request[1];
47415 +} NDIS_802_11_AUTHENTICATION_EVENT, *PNDIS_802_11_AUTHENTICATION_EVENT;
47418 +typedef struct _NDIS_802_11_TEST
47424 + NDIS_802_11_AUTHENTICATION_EVENT AuthenticationEvent;
47425 + NDIS_802_11_RSSI RssiTrigger;
47427 +} NDIS_802_11_TEST, *PNDIS_802_11_TEST;
47430 +// 802.11 Media stream constraints, associated with OID_802_11_MEDIA_STREAM_MODE
47431 +typedef enum _NDIS_802_11_MEDIA_STREAM_MODE
47433 + Ndis802_11MediaStreamOff,
47434 + Ndis802_11MediaStreamOn,
47435 +} NDIS_802_11_MEDIA_STREAM_MODE, *PNDIS_802_11_MEDIA_STREAM_MODE;
47437 +// PMKID Structures
47438 +typedef UCHAR NDIS_802_11_PMKID_VALUE[16];
47440 +#ifdef CONFIG_STA_SUPPORT
47441 +typedef struct _BSSID_INFO
47443 + NDIS_802_11_MAC_ADDRESS BSSID;
47444 + NDIS_802_11_PMKID_VALUE PMKID;
47445 +} BSSID_INFO, *PBSSID_INFO;
47447 +typedef struct _NDIS_802_11_PMKID
47450 + UINT BSSIDInfoCount;
47451 + BSSID_INFO BSSIDInfo[1];
47452 +} NDIS_802_11_PMKID, *PNDIS_802_11_PMKID;
47453 +#endif // CONFIG_STA_SUPPORT //
47456 +typedef struct _NDIS_802_11_AUTHENTICATION_ENCRYPTION
47458 + NDIS_802_11_AUTHENTICATION_MODE AuthModeSupported;
47459 + NDIS_802_11_ENCRYPTION_STATUS EncryptStatusSupported;
47460 +} NDIS_802_11_AUTHENTICATION_ENCRYPTION, *PNDIS_802_11_AUTHENTICATION_ENCRYPTION;
47462 +typedef struct _NDIS_802_11_CAPABILITY
47466 + ULONG NoOfPMKIDs;
47467 + ULONG NoOfAuthEncryptPairsSupported;
47468 + NDIS_802_11_AUTHENTICATION_ENCRYPTION AuthenticationEncryptionSupported[1];
47469 +} NDIS_802_11_CAPABILITY, *PNDIS_802_11_CAPABILITY;
47471 +//#endif //of WIN 2k
47474 +#if WIRELESS_EXT <= 11
47475 +#ifndef SIOCDEVPRIVATE
47476 +#define SIOCDEVPRIVATE 0x8BE0
47478 +#define SIOCIWFIRSTPRIV SIOCDEVPRIVATE
47481 +#ifdef CONFIG_STA_SUPPORT
47482 +#define RT_PRIV_IOCTL_EXT (SIOCIWFIRSTPRIV + 0x01) // Sync. with AP for wsc upnp daemon
47483 +#define RTPRIV_IOCTL_SET (SIOCIWFIRSTPRIV + 0x02)
47486 +#define RTPRIV_IOCTL_BBP (SIOCIWFIRSTPRIV + 0x03)
47487 +#define RTPRIV_IOCTL_MAC (SIOCIWFIRSTPRIV + 0x05)
47488 +#define RTPRIV_IOCTL_RF (SIOCIWFIRSTPRIV + 0x13)
47489 +#define RTPRIV_IOCTL_E2P (SIOCIWFIRSTPRIV + 0x07)
47493 +#ifdef RALINK_28xx_QA
47494 +#define RTPRIV_IOCTL_ATE (SIOCIWFIRSTPRIV + 0x08)
47495 +#endif // RALINK_28xx_QA //
47496 +#endif // RALINK_ATE //
47498 +#define RTPRIV_IOCTL_STATISTICS (SIOCIWFIRSTPRIV + 0x09)
47499 +#define RTPRIV_IOCTL_ADD_PMKID_CACHE (SIOCIWFIRSTPRIV + 0x0A)
47500 +#define RTPRIV_IOCTL_RADIUS_DATA (SIOCIWFIRSTPRIV + 0x0C)
47501 +#define RTPRIV_IOCTL_GSITESURVEY (SIOCIWFIRSTPRIV + 0x0D)
47502 +#define RT_PRIV_IOCTL (SIOCIWFIRSTPRIV + 0x0E) // Sync. with RT61 (for wpa_supplicant)
47503 +#define RTPRIV_IOCTL_GET_MAC_TABLE (SIOCIWFIRSTPRIV + 0x0F)
47505 +#define RTPRIV_IOCTL_SHOW (SIOCIWFIRSTPRIV + 0x11)
47507 + SHOW_CONN_STATUS = 4,
47508 + SHOW_DRVIER_VERION = 5,
47509 + SHOW_BA_INFO = 6,
47510 + SHOW_DESC_INFO = 7,
47512 + SHOW_RXBULK_INFO = 8,
47513 + SHOW_TXBULK_INFO = 9,
47514 +#endif // RT2870 //
47517 +#ifdef QOS_DLS_SUPPORT
47518 + SHOW_DLS_ENTRY_INFO = 19,
47519 +#endif // QOS_DLS_SUPPORT //
47520 + SHOW_CFG_VALUE = 20,
47524 +#endif // CONFIG_STA_SUPPORT //
47528 +#ifdef SNMP_SUPPORT
47529 +//SNMP ieee 802dot11, kathy , 2008_0220
47531 +#define RT_OID_802_11_MANUFACTUREROUI 0x0700
47532 +#define RT_OID_802_11_MANUFACTURERNAME 0x0701
47533 +#define RT_OID_802_11_RESOURCETYPEIDNAME 0x0702
47536 +#define RT_OID_802_11_PRIVACYOPTIONIMPLEMENTED 0x0703
47537 +#define RT_OID_802_11_POWERMANAGEMENTMODE 0x0704
47538 +#define OID_802_11_WEPDEFAULTKEYVALUE 0x0705 // read , write
47539 +#define OID_802_11_WEPDEFAULTKEYID 0x0706
47540 +#define RT_OID_802_11_WEPKEYMAPPINGLENGTH 0x0707
47541 +#define OID_802_11_SHORTRETRYLIMIT 0x0708
47542 +#define OID_802_11_LONGRETRYLIMIT 0x0709
47543 +#define RT_OID_802_11_PRODUCTID 0x0710
47544 +#define RT_OID_802_11_MANUFACTUREID 0x0711
47547 +#define OID_802_11_CURRENTCHANNEL 0x0712
47550 +#define RT_OID_802_11_MAC_ADDRESS 0x0713
47551 +#endif // SNMP_SUPPORT //
47553 +#define OID_802_11_BUILD_CHANNEL_EX 0x0714
47554 +#define OID_802_11_GET_CH_LIST 0x0715
47555 +#define OID_802_11_GET_COUNTRY_CODE 0x0716
47556 +#define OID_802_11_GET_CHANNEL_GEOGRAPHY 0x0717
47558 +//#define RT_OID_802_11_STATISTICS (OID_GET_SET_TOGGLE | OID_802_11_STATISTICS)
47560 +#ifdef CONFIG_STA_SUPPORT
47561 +#define RT_OID_WSC_SET_PASSPHRASE 0x0740 // passphrase for wpa(2)-psk
47562 +#define RT_OID_WSC_DRIVER_AUTO_CONNECT 0x0741
47563 +#define RT_OID_WSC_QUERY_DEFAULT_PROFILE 0x0742
47564 +#define RT_OID_WSC_SET_CONN_BY_PROFILE_INDEX 0x0743
47565 +#define RT_OID_WSC_SET_ACTION 0x0744
47566 +#define RT_OID_WSC_SET_SSID 0x0745
47567 +#define RT_OID_WSC_SET_PIN_CODE 0x0746
47568 +#define RT_OID_WSC_SET_MODE 0x0747 // PIN or PBC
47569 +#define RT_OID_WSC_SET_CONF_MODE 0x0748 // Enrollee or Registrar
47570 +#define RT_OID_WSC_SET_PROFILE 0x0749
47571 +#endif // CONFIG_STA_SUPPORT //
47572 +#define RT_OID_802_11_WSC_QUERY_PROFILE 0x0750
47573 +// for consistency with RT61
47574 +#define RT_OID_WSC_QUERY_STATUS 0x0751
47575 +#define RT_OID_WSC_PIN_CODE 0x0752
47576 +#define RT_OID_WSC_UUID 0x0753
47577 +#define RT_OID_WSC_SET_SELECTED_REGISTRAR 0x0754
47578 +#define RT_OID_WSC_EAPMSG 0x0755
47579 +#define RT_OID_WSC_MANUFACTURER 0x0756
47580 +#define RT_OID_WSC_MODEL_NAME 0x0757
47581 +#define RT_OID_WSC_MODEL_NO 0x0758
47582 +#define RT_OID_WSC_SERIAL_NO 0x0759
47583 +#define RT_OID_WSC_MAC_ADDRESS 0x0760
47585 +#ifdef LLTD_SUPPORT
47586 +// for consistency with RT61
47587 +#define RT_OID_GET_PHY_MODE 0x761
47588 +#endif // LLTD_SUPPORT //
47590 +#ifdef NINTENDO_AP
47591 +//#define RT_OID_NINTENDO 0x0D010770
47592 +#define RT_OID_802_11_NINTENDO_GET_TABLE 0x0771 //((RT_OID_NINTENDO + 0x01) & 0xffff)
47593 +#define RT_OID_802_11_NINTENDO_SET_TABLE 0x0772 //((RT_OID_NINTENDO + 0x02) & 0xffff)
47594 +#define RT_OID_802_11_NINTENDO_CAPABLE 0x0773 //((RT_OID_NINTENDO + 0x03) & 0xffff)
47595 +#endif // NINTENDO_AP //
47597 +//Add Paul Chen for Accton
47598 +//#define RT_OID_TX_POWER_LEVEL 0xFF020010
47599 +//#define RT_OID_SET_TX_POWER_LEVEL (OID_GET_SET_TOGGLE | RT_OID_TX_POWER_LEVEL)
47601 +// New for MeetingHouse Api support
47602 +#define OID_MH_802_1X_SUPPORTED 0xFFEDC100
47604 +// MIMO Tx parameter, ShortGI, MCS, STBC, etc. these are fields in TXWI. Don't change this definition!!!
47605 +typedef union _HTTRANSMIT_SETTING {
47606 +#ifdef RT_BIG_ENDIAN
47608 + USHORT MODE:2; // Use definition MODE_xxx.
47612 + USHORT STBC:2; //SPACE
47613 + USHORT ShortGI:1;
47614 + USHORT BW:1; //channel bandwidth 20MHz or 40 MHz
47615 + USHORT MCS:7; // MCS
47619 + USHORT MCS:7; // MCS
47620 + USHORT BW:1; //channel bandwidth 20MHz or 40 MHz
47621 + USHORT ShortGI:1;
47622 + USHORT STBC:2; //SPACE
47626 + USHORT MODE:2; // Use definition MODE_xxx.
47630 + } HTTRANSMIT_SETTING, *PHTTRANSMIT_SETTING;
47632 +typedef enum _RT_802_11_PREAMBLE {
47633 + Rt802_11PreambleLong,
47634 + Rt802_11PreambleShort,
47635 + Rt802_11PreambleAuto
47636 +} RT_802_11_PREAMBLE, *PRT_802_11_PREAMBLE;
47638 +// Only for STA, need to sync with AP
47639 +// 2005-03-08 match current RaConfig.
47640 +typedef enum _RT_802_11_PHY_MODE {
47641 + PHY_11BG_MIXED = 0,
47646 +#ifdef DOT11_N_SUPPORT
47647 + PHY_11ABGN_MIXED, // both band 5
47648 + PHY_11N_2_4G, // 11n-only with 2.4G band 6
47649 + PHY_11GN_MIXED, // 2.4G band 7
47650 + PHY_11AN_MIXED, // 5G band 8
47651 + PHY_11BGN_MIXED, // if check 802.11b. 9
47652 + PHY_11AGN_MIXED, // if check 802.11b. 10
47653 + PHY_11N_5G, // 11n-only with 5G band 11
47654 +#endif // DOT11_N_SUPPORT //
47655 +} RT_802_11_PHY_MODE;
47657 +// put all proprietery for-query objects here to reduce # of Query_OID
47658 +typedef struct _RT_802_11_LINK_STATUS {
47659 + ULONG CurrTxRate; // in units of 0.5Mbps
47660 + ULONG ChannelQuality; // 0..100 %
47661 + ULONG TxByteCount; // both ok and fail
47662 + ULONG RxByteCount; // both ok and fail
47663 + ULONG CentralChannel; // 40MHz central channel number
47664 +} RT_802_11_LINK_STATUS, *PRT_802_11_LINK_STATUS;
47666 +typedef struct _RT_802_11_EVENT_LOG {
47667 + LARGE_INTEGER SystemTime; // timestammp via NdisGetCurrentSystemTime()
47668 + UCHAR Addr[MAC_ADDR_LENGTH];
47669 + USHORT Event; // EVENT_xxx
47670 +} RT_802_11_EVENT_LOG, *PRT_802_11_EVENT_LOG;
47672 +typedef struct _RT_802_11_EVENT_TABLE {
47674 + ULONG Rsv; // to align Log[] at LARGE_INEGER boundary
47675 + RT_802_11_EVENT_LOG Log[MAX_NUMBER_OF_EVENT];
47676 +} RT_802_11_EVENT_TABLE, PRT_802_11_EVENT_TABLE;
47678 +// MIMO Tx parameter, ShortGI, MCS, STBC, etc. these are fields in TXWI. Don't change this definition!!!
47679 +typedef union _MACHTTRANSMIT_SETTING {
47681 + USHORT MCS:7; // MCS
47682 + USHORT BW:1; //channel bandwidth 20MHz or 40 MHz
47683 + USHORT ShortGI:1;
47684 + USHORT STBC:2; //SPACE
47686 + USHORT MODE:2; // Use definition MODE_xxx.
47689 + } MACHTTRANSMIT_SETTING, *PMACHTTRANSMIT_SETTING;
47691 +typedef struct _RT_802_11_MAC_ENTRY {
47692 + UCHAR Addr[MAC_ADDR_LENGTH];
47694 + UCHAR Psm; // 0:PWR_ACTIVE, 1:PWR_SAVE
47695 + UCHAR MimoPs; // 0:MMPS_STATIC, 1:MMPS_DYNAMIC, 3:MMPS_Enabled
47699 + UINT32 ConnectedTime;
47700 + MACHTTRANSMIT_SETTING TxRate;
47701 +} RT_802_11_MAC_ENTRY, *PRT_802_11_MAC_ENTRY;
47703 +typedef struct _RT_802_11_MAC_TABLE {
47705 + RT_802_11_MAC_ENTRY Entry[MAX_NUMBER_OF_MAC];
47706 +} RT_802_11_MAC_TABLE, *PRT_802_11_MAC_TABLE;
47708 +// structure for query/set hardware register - MAC, BBP, RF register
47709 +typedef struct _RT_802_11_HARDWARE_REGISTER {
47710 + ULONG HardwareType; // 0:MAC, 1:BBP, 2:RF register, 3:EEPROM
47711 + ULONG Offset; // Q/S register offset addr
47712 + ULONG Data; // R/W data buffer
47713 +} RT_802_11_HARDWARE_REGISTER, *PRT_802_11_HARDWARE_REGISTER;
47715 +// structure to tune BBP R17 "RX AGC VGC init"
47716 +//typedef struct _RT_802_11_RX_AGC_VGC_TUNING {
47717 +// UCHAR FalseCcaLowerThreshold; // 0-255, def 10
47718 +// UCHAR FalseCcaUpperThreshold; // 0-255, def 100
47719 +// UCHAR VgcDelta; // R17 +-= VgcDelta whenever flase CCA over UpprThreshold
47720 +// // or lower than LowerThresholdupper threshold
47721 +// UCHAR VgcUpperBound; // max value of R17
47722 +//} RT_802_11_RX_AGC_VGC_TUNING, *PRT_802_11_RX_AGC_VGC_TUNING;
47724 +typedef struct _RT_802_11_AP_CONFIG {
47725 + ULONG EnableTxBurst; // 0-disable, 1-enable
47726 + ULONG EnableTurboRate; // 0-disable, 1-enable 72/100mbps turbo rate
47727 + ULONG IsolateInterStaTraffic; // 0-disable, 1-enable isolation
47728 + ULONG HideSsid; // 0-disable, 1-enable hiding
47729 + ULONG UseBGProtection; // 0-AUTO, 1-always ON, 2-always OFF
47730 + ULONG UseShortSlotTime; // 0-no use, 1-use 9-us short slot time
47731 + ULONG Rsv1; // must be 0
47732 + ULONG SystemErrorBitmap; // ignore upon SET, return system error upon QUERY
47733 +} RT_802_11_AP_CONFIG, *PRT_802_11_AP_CONFIG;
47735 +// structure to query/set STA_CONFIG
47736 +typedef struct _RT_802_11_STA_CONFIG {
47737 + ULONG EnableTxBurst; // 0-disable, 1-enable
47738 + ULONG EnableTurboRate; // 0-disable, 1-enable 72/100mbps turbo rate
47739 + ULONG UseBGProtection; // 0-AUTO, 1-always ON, 2-always OFF
47740 + ULONG UseShortSlotTime; // 0-no use, 1-use 9-us short slot time when applicable
47741 + ULONG AdhocMode; // 0-11b rates only (WIFI spec), 1 - b/g mixed, 2 - g only
47742 + ULONG HwRadioStatus; // 0-OFF, 1-ON, default is 1, Read-Only
47743 + ULONG Rsv1; // must be 0
47744 + ULONG SystemErrorBitmap; // ignore upon SET, return system error upon QUERY
47745 +} RT_802_11_STA_CONFIG, *PRT_802_11_STA_CONFIG;
47748 +// For OID Query or Set about BA structure
47750 +typedef struct _OID_BACAP_STRUC {
47751 + UCHAR RxBAWinLimit;
47752 + UCHAR TxBAWinLimit;
47753 + UCHAR Policy; // 0: DELAY_BA 1:IMMED_BA (//BA Policy subfiled value in ADDBA frame) 2:BA-not use. other value invalid
47754 + UCHAR MpduDensity; // 0: DELAY_BA 1:IMMED_BA (//BA Policy subfiled value in ADDBA frame) 2:BA-not use. other value invalid
47755 + UCHAR AmsduEnable; //Enable AMSDU transmisstion
47756 + UCHAR AmsduSize; // 0:3839, 1:7935 bytes. UINT MSDUSizeToBytes[] = { 3839, 7935};
47757 + UCHAR MMPSmode; // MIMO power save more, 0:static, 1:dynamic, 2:rsv, 3:mimo enable
47758 + BOOLEAN AutoBA; // Auto BA will automatically
47759 +} OID_BACAP_STRUC, *POID_BACAP_STRUC;
47761 +typedef struct _RT_802_11_ACL_ENTRY {
47762 + UCHAR Addr[MAC_ADDR_LENGTH];
47764 +} RT_802_11_ACL_ENTRY, *PRT_802_11_ACL_ENTRY;
47766 +typedef struct PACKED _RT_802_11_ACL {
47767 + ULONG Policy; // 0-disable, 1-positive list, 2-negative list
47769 + RT_802_11_ACL_ENTRY Entry[MAX_NUMBER_OF_ACL];
47770 +} RT_802_11_ACL, *PRT_802_11_ACL;
47772 +typedef struct _RT_802_11_WDS {
47774 + NDIS_802_11_MAC_ADDRESS Entry[24/*MAX_NUM_OF_WDS_LINK*/];
47776 + UCHAR KeyMaterial[32];
47777 +} RT_802_11_WDS, *PRT_802_11_WDS;
47779 +typedef struct _RT_802_11_TX_RATES_ {
47780 + UCHAR SupRateLen;
47781 + UCHAR SupRate[MAX_LENGTH_OF_SUPPORT_RATES];
47782 + UCHAR ExtRateLen;
47783 + UCHAR ExtRate[MAX_LENGTH_OF_SUPPORT_RATES];
47784 +} RT_802_11_TX_RATES, *PRT_802_11_TX_RATES;
47787 +// Definition of extra information code
47788 +#define GENERAL_LINK_UP 0x0 // Link is Up
47789 +#define GENERAL_LINK_DOWN 0x1 // Link is Down
47790 +#define HW_RADIO_OFF 0x2 // Hardware radio off
47791 +#define SW_RADIO_OFF 0x3 // Software radio off
47792 +#define AUTH_FAIL 0x4 // Open authentication fail
47793 +#define AUTH_FAIL_KEYS 0x5 // Shared authentication fail
47794 +#define ASSOC_FAIL 0x6 // Association failed
47795 +#define EAP_MIC_FAILURE 0x7 // Deauthencation because MIC failure
47796 +#define EAP_4WAY_TIMEOUT 0x8 // Deauthencation on 4-way handshake timeout
47797 +#define EAP_GROUP_KEY_TIMEOUT 0x9 // Deauthencation on group key handshake timeout
47798 +#define EAP_SUCCESS 0xa // EAP succeed
47799 +#define DETECT_RADAR_SIGNAL 0xb // Radar signal occur in current channel
47800 +#define EXTRA_INFO_MAX 0xb // Indicate Last OID
47802 +#define EXTRA_INFO_CLEAR 0xffffffff
47804 +// This is OID setting structure. So only GF or MM as Mode. This is valid when our wirelss mode has 802.11n in use.
47806 + RT_802_11_PHY_MODE PhyMode; //
47807 + UCHAR TransmitNo;
47808 + UCHAR HtMode; //HTMODE_GF or HTMODE_MM
47809 + UCHAR ExtOffset; //extension channel above or below
47815 +} OID_SET_HT_PHYMODE, *POID_SET_HT_PHYMODE;
47817 +#ifdef NINTENDO_AP
47818 +#define NINTENDO_MAX_ENTRY 16
47819 +#define NINTENDO_SSID_NAME_LN 8
47820 +#define NINTENDO_SSID_NAME "NWCUSBAP"
47821 +#define NINTENDO_PROBE_REQ_FLAG_MASK 0x03
47822 +#define NINTENDO_PROBE_REQ_ON 0x01
47823 +#define NINTENDO_PROBE_REQ_SIGNAL 0x02
47824 +#define NINTENDO_PROBE_RSP_ON 0x01
47825 +#define NINTENDO_SSID_NICKNAME_LN 20
47827 +#define NINTENDO_WEPKEY_LN 13
47829 +typedef struct _NINTENDO_SSID
47831 + UCHAR NINTENDOFixChar[NINTENDO_SSID_NAME_LN];
47836 + UCHAR NICKname[NINTENDO_SSID_NICKNAME_LN];
47837 +} RT_NINTENDO_SSID, *PRT_NINTENDO_SSID;
47839 +typedef struct _NINTENDO_ENTRY
47841 + UCHAR NICKname[NINTENDO_SSID_NICKNAME_LN];
47842 + UCHAR DS_Addr[ETH_LENGTH_OF_ADDRESS];
47844 + UCHAR UserSpaceAck;
47845 +} RT_NINTENDO_ENTRY, *PRT_NINTENDO_ENTRY;
47847 +//RTPRIV_IOCTL_NINTENDO_GET_TABLE
47848 +//RTPRIV_IOCTL_NINTENDO_SET_TABLE
47849 +typedef struct _NINTENDO_TABLE
47852 + RT_NINTENDO_ENTRY entry[NINTENDO_MAX_ENTRY];
47853 +} RT_NINTENDO_TABLE, *PRT_NINTENDO_TABLE;
47855 +//RTPRIV_IOCTL_NINTENDO_SEED_WEPKEY
47856 +typedef struct _NINTENDO_SEED_WEPKEY
47858 + UCHAR seed[NINTENDO_SSID_NICKNAME_LN];
47859 + UCHAR wepkey[16];//use 13 for 104 bits wep key
47860 +} RT_NINTENDO_SEED_WEPKEY, *PRT_NINTENDO_SEED_WEPKEY;
47861 +#endif // NINTENDO_AP //
47863 +#ifdef LLTD_SUPPORT
47864 +typedef struct _RT_LLTD_ASSOICATION_ENTRY {
47865 + UCHAR Addr[ETH_LENGTH_OF_ADDRESS];
47866 + unsigned short MOR; // maximum operational rate
47868 +} RT_LLTD_ASSOICATION_ENTRY, *PRT_LLTD_ASSOICATION_ENTRY;
47870 +typedef struct _RT_LLTD_ASSOICATION_TABLE {
47871 + unsigned int Num;
47872 + RT_LLTD_ASSOICATION_ENTRY Entry[MAX_NUMBER_OF_MAC];
47873 +} RT_LLTD_ASSOICATION_TABLE, *PRT_LLTD_ASSOICATION_TABLE;
47874 +#endif // LLTD_SUPPORT //
47876 +#ifdef CONFIG_STA_SUPPORT
47877 +#ifdef QOS_DLS_SUPPORT
47878 +//rt2860, kathy 2007-0118
47879 +// structure for DLS
47880 +typedef struct _RT_802_11_DLS_UI {
47881 + USHORT TimeOut; // unit: second , set by UI
47882 + USHORT CountDownTimer; // unit: second , used by driver only
47883 + NDIS_802_11_MAC_ADDRESS MacAddr; // set by UI
47884 + UCHAR Status; // 0: none , 1: wait STAkey, 2: finish DLS setup , set by driver only
47885 + BOOLEAN Valid; // 1: valid , 0: invalid , set by UI, use to setup or tear down DLS link
47886 +} RT_802_11_DLS_UI, *PRT_802_11_DLS_UI;
47888 +typedef struct _RT_802_11_DLS_INFO {
47889 + RT_802_11_DLS_UI Entry[MAX_NUMBER_OF_DLS_ENTRY];
47891 +} RT_802_11_DLS_INFO, *PRT_802_11_DLS_INFO;
47893 +typedef enum _RT_802_11_DLS_MODE {
47897 +} RT_802_11_DLS_MODE;
47898 +#endif // QOS_DLS_SUPPORT //
47900 +#ifdef WPA_SUPPLICANT_SUPPORT
47901 +#ifndef NATIVE_WPA_SUPPLICANT_SUPPORT
47902 +#define RT_ASSOC_EVENT_FLAG 0x0101
47903 +#define RT_DISASSOC_EVENT_FLAG 0x0102
47904 +#define RT_REQIE_EVENT_FLAG 0x0103
47905 +#define RT_RESPIE_EVENT_FLAG 0x0104
47906 +#define RT_ASSOCINFO_EVENT_FLAG 0x0105
47907 +#define RT_PMKIDCAND_FLAG 0x0106
47908 +#define RT_INTERFACE_DOWN 0x0107
47909 +#define RT_INTERFACE_UP 0x0108
47910 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
47911 +#endif // WPA_SUPPLICANT_SUPPORT //
47912 +#endif // CONFIG_STA_SUPPORT //
47915 +#define MAX_CUSTOM_LEN 128
47917 +#ifdef CONFIG_STA_SUPPORT
47918 +typedef enum _RT_802_11_D_CLIENT_MODE
47921 + Rt802_11_D_Flexible,
47922 + Rt802_11_D_Strict,
47923 +} RT_802_11_D_CLIENT_MODE, *PRT_802_11_D_CLIENT_MODE;
47924 +#endif // CONFIG_STA_SUPPORT //
47926 +typedef struct _RT_CHANNEL_LIST_INFO
47928 + UCHAR ChannelList[MAX_NUM_OF_CHS]; // list all supported channels for site survey
47929 + UCHAR ChannelListNum; // number of channel in ChannelList[]
47930 +} RT_CHANNEL_LIST_INFO, *PRT_CHANNEL_LIST_INFO;
47932 +// WSC configured credential
47933 +typedef struct _WSC_CREDENTIAL
47935 + NDIS_802_11_SSID SSID; // mandatory
47936 + USHORT AuthType; // mandatory, 1: open, 2: wpa-psk, 4: shared, 8:wpa, 0x10: wpa2, 0x20: wpa2-psk
47937 + USHORT EncrType; // mandatory, 1: none, 2: wep, 4: tkip, 8: aes
47938 + UCHAR Key[64]; // mandatory, Maximum 64 byte
47939 + USHORT KeyLength;
47940 + UCHAR MacAddr[6]; // mandatory, AP MAC address
47941 + UCHAR KeyIndex; // optional, default is 1
47942 + UCHAR Rsvd[3]; // Make alignment
47943 +} WSC_CREDENTIAL, *PWSC_CREDENTIAL;
47945 +// WSC configured profiles
47946 +typedef struct _WSC_PROFILE
47949 + WSC_CREDENTIAL Profile[8]; // Support up to 8 profiles
47950 +} WSC_PROFILE, *PWSC_PROFILE;
47957 +++ b/drivers/staging/rt3070/rt2870.h
47960 + *************************************************************************
47961 + * Ralink Tech Inc.
47962 + * 5F., No.36, Taiyuan St., Jhubei City,
47963 + * Hsinchu County 302,
47966 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
47968 + * This program is free software; you can redistribute it and/or modify *
47969 + * it under the terms of the GNU General Public License as published by *
47970 + * the Free Software Foundation; either version 2 of the License, or *
47971 + * (at your option) any later version. *
47973 + * This program is distributed in the hope that it will be useful, *
47974 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
47975 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
47976 + * GNU General Public License for more details. *
47978 + * You should have received a copy of the GNU General Public License *
47979 + * along with this program; if not, write to the *
47980 + * Free Software Foundation, Inc., *
47981 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
47983 + *************************************************************************
47986 +#ifndef __RT2870_H__
47987 +#define __RT2870_H__
47989 +//usb header files
47990 +#include <linux/usb.h>
47994 +#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,5,0)
47995 +#define BULKAGGRE_ZISE 100
47996 +#define RT28XX_DRVDATA_SET(_a) usb_set_intfdata(_a, pAd);
47997 +#define RT28XX_PUT_DEVICE usb_put_dev
47998 +#define RTUSB_ALLOC_URB(iso) usb_alloc_urb(iso, GFP_ATOMIC)
47999 +#define RTUSB_SUBMIT_URB(pUrb) usb_submit_urb(pUrb, GFP_ATOMIC)
48000 +#define RTUSB_URB_ALLOC_BUFFER(pUsb_Dev, BufSize, pDma_addr) usb_buffer_alloc(pUsb_Dev, BufSize, GFP_ATOMIC, pDma_addr)
48001 +#define RTUSB_URB_FREE_BUFFER(pUsb_Dev, BufSize, pTransferBuf, Dma_addr) usb_buffer_free(pUsb_Dev, BufSize, pTransferBuf, Dma_addr)
48003 +#define BULKAGGRE_ZISE 60
48004 +#define RT28XX_DRVDATA_SET(_a)
48005 +#define RT28XX_PUT_DEVICE(dev_p)
48006 +#define RTUSB_ALLOC_URB(iso) usb_alloc_urb(iso)
48007 +#define RTUSB_SUBMIT_URB(pUrb) usb_submit_urb(pUrb)
48008 +#define RTUSB_URB_ALLOC_BUFFER(pUsb_Dev, BufSize, pDma_addr) kmalloc(BufSize, GFP_ATOMIC)
48009 +#define RTUSB_URB_FREE_BUFFER(pUsb_Dev, BufSize, pTransferBuf, Dma_addr) kfree(pTransferBuf)
48012 +#define RXBULKAGGRE_ZISE 12
48013 +#define MAX_TXBULK_LIMIT (LOCAL_TXBUF_SIZE*(BULKAGGRE_ZISE-1))
48014 +#define MAX_TXBULK_SIZE (LOCAL_TXBUF_SIZE*BULKAGGRE_ZISE)
48015 +#define MAX_RXBULK_SIZE (LOCAL_TXBUF_SIZE*RXBULKAGGRE_ZISE)
48016 +#define MAX_MLME_HANDLER_MEMORY 20
48017 +#define BUFFER_SIZE 2400 //2048
48018 +#define TX_RING 0xa
48019 +#define PRIO_RING 0xc
48022 +// Flags for Bulkflags control for bulk out data
48024 +#define fRTUSB_BULK_OUT_DATA_NULL 0x00000001
48025 +#define fRTUSB_BULK_OUT_RTS 0x00000002
48026 +#define fRTUSB_BULK_OUT_MLME 0x00000004
48028 +#define fRTUSB_BULK_OUT_DATA_NORMAL 0x00010000
48029 +#define fRTUSB_BULK_OUT_DATA_NORMAL_2 0x00020000
48030 +#define fRTUSB_BULK_OUT_DATA_NORMAL_3 0x00040000
48031 +#define fRTUSB_BULK_OUT_DATA_NORMAL_4 0x00080000
48032 +#define fRTUSB_BULK_OUT_DATA_NORMAL_5 0x00100000
48034 +#define fRTUSB_BULK_OUT_PSPOLL 0x00000020
48035 +#define fRTUSB_BULK_OUT_DATA_FRAG 0x00000040
48036 +#define fRTUSB_BULK_OUT_DATA_FRAG_2 0x00000080
48037 +#define fRTUSB_BULK_OUT_DATA_FRAG_3 0x00000100
48038 +#define fRTUSB_BULK_OUT_DATA_FRAG_4 0x00000200
48041 +#define fRTUSB_BULK_OUT_DATA_ATE 0x00100000
48042 +#endif // RALINK_ATE //
48044 +#define RT2870_USB_DEVICES \
48046 + {USB_DEVICE(0x148F,0x2770)}, /* Ralink */ \
48047 + {USB_DEVICE(0x148F,0x2870)}, /* Ralink */ \
48048 + {USB_DEVICE(0x148F,0x3070)}, /* Ralink 3070 */ \
48049 + {USB_DEVICE(0x148F,0x3071)}, /* Ralink 3071 */ \
48050 + {USB_DEVICE(0x148F,0x3072)}, /* Ralink 3072 */ \
48051 + {USB_DEVICE(0x0B05,0x1731)}, /* Asus */ \
48052 + {USB_DEVICE(0x0B05,0x1732)}, /* Asus */ \
48053 + {USB_DEVICE(0x0B05,0x1742)}, /* Asus */ \
48054 + {USB_DEVICE(0x0DF6,0x0017)}, /* Sitecom */ \
48055 + {USB_DEVICE(0x0DF6,0x002B)}, /* Sitecom */ \
48056 + {USB_DEVICE(0x0DF6,0x002C)}, /* Sitecom */ \
48057 + {USB_DEVICE(0x0DF6,0x003E)}, /* Sitecom 3070 */ \
48058 + {USB_DEVICE(0x0DF6,0x002D)}, /* Sitecom */ \
48059 + {USB_DEVICE(0x0DF6,0x0039)}, /* Sitecom 2770 */ \
48060 + {USB_DEVICE(0x14B2,0x3C06)}, /* Conceptronic */ \
48061 + {USB_DEVICE(0x14B2,0x3C28)}, /* Conceptronic */ \
48062 + {USB_DEVICE(0x2019,0xED06)}, /* Planex Communications, Inc. */ \
48063 + {USB_DEVICE(0x2019,0xAB25)}, /* Planex Communications, Inc. RT3070 */ \
48064 + {USB_DEVICE(0x07D1,0x3C09)}, /* D-Link */ \
48065 + {USB_DEVICE(0x07D1,0x3C11)}, /* D-Link */ \
48066 + {USB_DEVICE(0x2001,0x3C09)}, /* D-Link */ \
48067 + {USB_DEVICE(0x2001,0x3C0A)}, /* D-Link 3072*/ \
48068 + {USB_DEVICE(0x14B2,0x3C07)}, /* AL */ \
48069 + {USB_DEVICE(0x14B2,0x3C12)}, /* AL 3070 */ \
48070 + {USB_DEVICE(0x050D,0x8053)}, /* Belkin */ \
48071 + {USB_DEVICE(0x14B2,0x3C23)}, /* Airlink */ \
48072 + {USB_DEVICE(0x14B2,0x3C27)}, /* Airlink */ \
48073 + {USB_DEVICE(0x07AA,0x002F)}, /* Corega */ \
48074 + {USB_DEVICE(0x07AA,0x003C)}, /* Corega */ \
48075 + {USB_DEVICE(0x07AA,0x003F)}, /* Corega */ \
48076 + {USB_DEVICE(0x18C5,0x0012)}, /* Corega 3070 */ \
48077 + {USB_DEVICE(0x1044,0x800B)}, /* Gigabyte */ \
48078 + {USB_DEVICE(0x1044,0x800D)}, /* Gigabyte GN-WB32L 3070 */ \
48079 + {USB_DEVICE(0x15A9,0x0006)}, /* Sparklan */ \
48080 + {USB_DEVICE(0x083A,0xB522)}, /* SMC */ \
48081 + {USB_DEVICE(0x083A,0xA618)}, /* SMC */ \
48082 + {USB_DEVICE(0x083A,0x8522)}, /* Arcadyan */ \
48083 + {USB_DEVICE(0x083A,0x7512)}, /* Arcadyan 2770 */ \
48084 + {USB_DEVICE(0x083A,0x7522)}, /* Arcadyan */ \
48085 + {USB_DEVICE(0x083A,0x7511)}, /* Arcadyan 3070 */ \
48086 + {USB_DEVICE(0x0CDE,0x0022)}, /* ZCOM */ \
48087 + {USB_DEVICE(0x0586,0x3416)}, /* Zyxel */ \
48088 + {USB_DEVICE(0x0CDE,0x0025)}, /* Zyxel */ \
48089 + {USB_DEVICE(0x1740,0x9701)}, /* EnGenius */ \
48090 + {USB_DEVICE(0x1740,0x9702)}, /* EnGenius */ \
48091 + {USB_DEVICE(0x1740,0x9703)}, /* EnGenius 3070 */ \
48092 + {USB_DEVICE(0x0471,0x200f)}, /* Philips */ \
48093 + {USB_DEVICE(0x14B2,0x3C25)}, /* Draytek */ \
48094 + {USB_DEVICE(0x13D3,0x3247)}, /* AzureWave */ \
48095 + {USB_DEVICE(0x13D3,0x3273)}, /* AzureWave 3070*/ \
48096 + {USB_DEVICE(0x083A,0x6618)}, /* Accton */ \
48097 + {USB_DEVICE(0x15c5,0x0008)}, /* Amit */ \
48098 + {USB_DEVICE(0x0E66,0x0001)}, /* Hawking */ \
48099 + {USB_DEVICE(0x0E66,0x0003)}, /* Hawking */ \
48100 + {USB_DEVICE(0x129B,0x1828)}, /* Siemens */ \
48101 + {USB_DEVICE(0x157E,0x300E)}, /* U-Media */ \
48102 + {USB_DEVICE(0x050d,0x805c)}, \
48103 + {USB_DEVICE(0x1482,0x3C09)}, /* Abocom*/ \
48104 + {USB_DEVICE(0x14B2,0x3C09)}, /* Alpha */ \
48105 + {USB_DEVICE(0x04E8,0x2018)}, /* samsung */ \
48106 + {USB_DEVICE(0x07B8,0x3070)}, /* AboCom 3070 */ \
48107 + {USB_DEVICE(0x07B8,0x3071)}, /* AboCom 3071 */ \
48108 + {USB_DEVICE(0x07B8,0x3072)}, /* Abocom 3072 */ \
48109 + {USB_DEVICE(0x7392,0x7711)}, /* Edimax 3070 */ \
48110 + {USB_DEVICE(0x5A57,0x0280)}, /* Zinwell */ \
48111 + {USB_DEVICE(0x5A57,0x0282)}, /* Zinwell */ \
48112 + {USB_DEVICE(0x1A32,0x0304)}, /* Quanta 3070 */ \
48113 + {USB_DEVICE(0x0789,0x0162)}, /* Logitec 2870 */ \
48114 + {USB_DEVICE(0x0789,0x0163)}, /* Logitec 2870 */ \
48115 + {USB_DEVICE(0x0789,0x0164)}, /* Logitec 2870 */ \
48116 + {USB_DEVICE(0x1EDA,0x2310)}, /* AirTies 3070 */ \
48117 + { }/* Terminating entry */ \
48120 +#define FREE_HTTX_RING(_p, _b, _t) \
48122 + if ((_t)->ENextBulkOutPosition == (_t)->CurWritePosition) \
48124 + (_t)->bRingEmpty = TRUE; \
48126 + /*NdisInterlockedDecrement(&(_p)->TxCount); */\
48130 +// RXINFO appends at the end of each rx packet.
48132 +#ifdef RT_BIG_ENDIAN
48133 +typedef struct PACKED _RXINFO_STRUC {
48134 + UINT32 PlcpSignal:12;
48135 + UINT32 LastAMSDU:1;
48136 + UINT32 CipherAlg:1;
48137 + UINT32 PlcpRssil:1;
48138 + UINT32 Decrypted:1;
48139 + UINT32 AMPDU:1; // To be moved
48143 + UINT32 AMSDU:1; // rx with 802.3 header, not 802.11 header.
48144 + UINT32 CipherErr:2; // 0: decryption okay, 1:ICV error, 2:MIC error, 3:KEY not valid
48145 + UINT32 Crc:1; // 1: CRC error
48146 + UINT32 MyBss:1; // 1: this frame belongs to the same BSSID
48147 + UINT32 Bcast:1; // 1: this is a broadcast frame
48148 + UINT32 Mcast:1; // 1: this is a multicast frame
48149 + UINT32 U2M:1; // 1: this RX frame is unicast to me
48151 + UINT32 NULLDATA:1;
48154 +} RXINFO_STRUC, *PRXINFO_STRUC, RT28XX_RXD_STRUC, *PRT28XX_RXD_STRUC;
48156 +typedef struct PACKED _RXINFO_STRUC {
48159 + UINT32 NULLDATA:1;
48161 + UINT32 U2M:1; // 1: this RX frame is unicast to me
48162 + UINT32 Mcast:1; // 1: this is a multicast frame
48163 + UINT32 Bcast:1; // 1: this is a broadcast frame
48164 + UINT32 MyBss:1; // 1: this frame belongs to the same BSSID
48165 + UINT32 Crc:1; // 1: CRC error
48166 + UINT32 CipherErr:2; // 0: decryption okay, 1:ICV error, 2:MIC error, 3:KEY not valid
48167 + UINT32 AMSDU:1; // rx with 802.3 header, not 802.11 header.
48171 + UINT32 AMPDU:1; // To be moved
48172 + UINT32 Decrypted:1;
48173 + UINT32 PlcpRssil:1;
48174 + UINT32 CipherAlg:1;
48175 + UINT32 LastAMSDU:1;
48176 + UINT32 PlcpSignal:12;
48177 +} RXINFO_STRUC, *PRXINFO_STRUC, RT28XX_RXD_STRUC, *PRT28XX_RXD_STRUC;
48184 +#ifdef RT_BIG_ENDIAN
48185 +typedef struct _TXINFO_STRUC {
48187 + UINT32 USBDMATxburst:1;//used ONLY in USB bulk Aggre. Force USB DMA transmit frame from current selected endpoint
48188 + UINT32 USBDMANextVLD:1; //used ONLY in USB bulk Aggregation, NextValid
48189 + UINT32 rsv2:2; // Software use.
48190 + UINT32 SwUseLastRound:1; // Software use.
48191 + UINT32 QSEL:2; // select on-chip FIFO ID for 2nd-stage output scheduler.0:MGMT, 1:HCCA 2:EDCA
48192 + UINT32 WIV:1; // Wireless Info Valid. 1 if Driver already fill WI, o if DMA needs to copy WI to correctposition
48194 + UINT32 USBDMATxPktLen:16; //used ONLY in USB bulk Aggregation, Total byte counts of all sub-frame.
48195 +} TXINFO_STRUC, *PTXINFO_STRUC;
48197 +typedef struct _TXINFO_STRUC {
48199 + UINT32 USBDMATxPktLen:16; //used ONLY in USB bulk Aggregation, Total byte counts of all sub-frame.
48201 + UINT32 WIV:1; // Wireless Info Valid. 1 if Driver already fill WI, o if DMA needs to copy WI to correctposition
48202 + UINT32 QSEL:2; // select on-chip FIFO ID for 2nd-stage output scheduler.0:MGMT, 1:HCCA 2:EDCA
48203 + UINT32 SwUseLastRound:1; // Software use.
48204 + UINT32 rsv2:2; // Software use.
48205 + UINT32 USBDMANextVLD:1; //used ONLY in USB bulk Aggregation, NextValid
48206 + UINT32 USBDMATxburst:1;//used ONLY in USB bulk Aggre. Force USB DMA transmit frame from current selected endpoint
48207 +} TXINFO_STRUC, *PTXINFO_STRUC;
48210 +#define TXINFO_SIZE 4
48211 +#define RXINFO_SIZE 4
48212 +#define TXPADDING_SIZE 11
48215 +// Management ring buffer format
48217 +typedef struct _MGMT_STRUC {
48221 +} MGMT_STRUC, *PMGMT_STRUC;
48224 +/* ----------------- EEPROM Related MACRO ----------------- */
48226 +#define RT28xx_EEPROM_READ16(pAd, offset, var) \
48228 + RTUSBReadEEPROM(pAd, offset, (PUCHAR)&(var), 2); \
48229 + if(!pAd->bUseEfuse) \
48230 + var = le2cpu16(var); \
48233 +#define RT28xx_EEPROM_WRITE16(pAd, offset, var) \
48235 + USHORT _tmpVar=var; \
48236 + if(!pAd->bUseEfuse) \
48237 + _tmpVar = cpu2le16(var); \
48238 + RTUSBWriteEEPROM(pAd, offset, (PUCHAR)&(_tmpVar), 2); \
48240 +#endif // RT30xx //
48242 +#define RT28xx_EEPROM_READ16(pAd, offset, var) \
48244 + RTUSBReadEEPROM(pAd, offset, (PUCHAR)&(var), 2); \
48245 + var = le2cpu16(var); \
48248 +#define RT28xx_EEPROM_WRITE16(pAd, offset, var) \
48250 + USHORT _tmpVar=var; \
48251 + _tmpVar = cpu2le16(var); \
48252 + RTUSBWriteEEPROM(pAd, offset, (PUCHAR)&(_tmpVar), 2); \
48254 +#endif // RT30xx //
48256 +/* ----------------- TASK/THREAD Related MACRO ----------------- */
48257 +#define RT28XX_TASK_THREAD_INIT(pAd, Status) \
48258 + Status = CreateThreads(net_dev);
48261 +/* ----------------- Frimware Related MACRO ----------------- */
48262 +#define RT28XX_WRITE_FIRMWARE(_pAd, _pFwImage, _FwLen) \
48263 + RTUSBFirmwareWrite(_pAd, _pFwImage, _FwLen)
48265 +/* ----------------- TX Related MACRO ----------------- */
48266 +#define RT28XX_START_DEQUEUE(pAd, QueIdx, irqFlags) \
48268 + RTMP_IRQ_LOCK(&pAd->DeQueueLock[QueIdx], irqFlags); \
48269 + if (pAd->DeQueueRunning[QueIdx]) \
48271 + RTMP_IRQ_UNLOCK(&pAd->DeQueueLock[QueIdx], irqFlags);\
48272 + printk("DeQueueRunning[%d]= TRUE!\n", QueIdx); \
48277 + pAd->DeQueueRunning[QueIdx] = TRUE; \
48278 + RTMP_IRQ_UNLOCK(&pAd->DeQueueLock[QueIdx], irqFlags);\
48281 +#define RT28XX_STOP_DEQUEUE(pAd, QueIdx, irqFlags) \
48283 + RTMP_IRQ_LOCK(&pAd->DeQueueLock[QueIdx], irqFlags); \
48284 + pAd->DeQueueRunning[QueIdx] = FALSE; \
48285 + RTMP_IRQ_UNLOCK(&pAd->DeQueueLock[QueIdx], irqFlags); \
48289 +#define RT28XX_HAS_ENOUGH_FREE_DESC(pAd, pTxBlk, freeNum, pPacket) \
48290 + (RTUSBFreeDescriptorRequest(pAd, pTxBlk->QueIdx, (pTxBlk->TotalFrameLen + GET_OS_PKT_LEN(pPacket))) == NDIS_STATUS_SUCCESS)
48292 +#define RT28XX_RELEASE_DESC_RESOURCE(pAd, QueIdx) \
48295 +#define NEED_QUEUE_BACK_FOR_AGG(_pAd, _QueIdx, _freeNum, _TxFrameType) \
48296 + ((_TxFrameType == TX_RALINK_FRAME) && (RTUSBNeedQueueBackForAgg(_pAd, _QueIdx)))
48300 +#define fRTMP_ADAPTER_NEED_STOP_TX \
48301 + (fRTMP_ADAPTER_NIC_NOT_EXIST | fRTMP_ADAPTER_HALT_IN_PROGRESS | \
48302 + fRTMP_ADAPTER_RESET_IN_PROGRESS | fRTMP_ADAPTER_BULKOUT_RESET | \
48303 + fRTMP_ADAPTER_RADIO_OFF | fRTMP_ADAPTER_REMOVE_IN_PROGRESS)
48306 +#define HAL_WriteSubTxResource(pAd, pTxBlk, bIsLast, pFreeNumber) \
48307 + RtmpUSB_WriteSubTxResource(pAd, pTxBlk, bIsLast, pFreeNumber)
48309 +#define HAL_WriteTxResource(pAd, pTxBlk,bIsLast, pFreeNumber) \
48310 + RtmpUSB_WriteSingleTxResource(pAd, pTxBlk,bIsLast, pFreeNumber)
48312 +#define HAL_WriteFragTxResource(pAd, pTxBlk, fragNum, pFreeNumber) \
48313 + RtmpUSB_WriteFragTxResource(pAd, pTxBlk, fragNum, pFreeNumber)
48315 +#define HAL_WriteMultiTxResource(pAd, pTxBlk,frameNum, pFreeNumber) \
48316 + RtmpUSB_WriteMultiTxResource(pAd, pTxBlk,frameNum, pFreeNumber)
48318 +#define HAL_FinalWriteTxResource(pAd, pTxBlk, totalMPDUSize, TxIdx) \
48319 + RtmpUSB_FinalWriteTxResource(pAd, pTxBlk, totalMPDUSize, TxIdx)
48321 +#define HAL_LastTxIdx(pAd, QueIdx,TxIdx) \
48322 + /*RtmpUSBDataLastTxIdx(pAd, QueIdx,TxIdx)*/
48324 +#define HAL_KickOutTx(pAd, pTxBlk, QueIdx) \
48325 + RtmpUSBDataKickOut(pAd, pTxBlk, QueIdx)
48328 +#define HAL_KickOutMgmtTx(pAd, QueIdx, pPacket, pSrcBufVA, SrcBufLen) \
48329 + RtmpUSBMgmtKickOut(pAd, QueIdx, pPacket, pSrcBufVA, SrcBufLen)
48331 +#define HAL_KickOutNullFrameTx(_pAd, _QueIdx, _pNullFrame, _frameLen) \
48332 + RtmpUSBNullFrameKickOut(_pAd, _QueIdx, _pNullFrame, _frameLen)
48334 +#define RTMP_PKT_TAIL_PADDING 11 // 3(max 4 byte padding) + 4 (last packet padding) + 4 (MaxBulkOutsize align padding)
48336 +extern UCHAR EpToQueue[6];
48340 +#define GET_TXRING_FREENO(_pAd, _QueIdx) (_QueIdx) //(_pAd->TxRing[_QueIdx].TxSwFreeIdx)
48341 +#define GET_MGMTRING_FREENO(_pAd) (_pAd->MgmtRing.TxSwFreeIdx)
48342 +#endif // RT2870 //
48345 +/* ----------------- RX Related MACRO ----------------- */
48346 +//#define RT28XX_RX_ERROR_CHECK RTMPCheckRxWI
48348 +#define RT28XX_RV_ALL_BUF_END(bBulkReceive) \
48349 + /* We return STATUS_MORE_PROCESSING_REQUIRED so that the completion */ \
48350 + /* routine (IofCompleteRequest) will stop working on the irp. */ \
48351 + if (bBulkReceive == TRUE) RTUSBBulkReceive(pAd);
48354 +/* ----------------- ASIC Related MACRO ----------------- */
48355 +// reset MAC of a station entry to 0xFFFFFFFFFFFF
48356 +#define RT28XX_STA_ENTRY_MAC_RESET(pAd, Wcid) \
48357 + { RT_SET_ASIC_WCID SetAsicWcid; \
48358 + SetAsicWcid.WCID = Wcid; \
48359 + SetAsicWcid.SetTid = 0xffffffff; \
48360 + SetAsicWcid.DeleteTid = 0xffffffff; \
48361 + RTUSBEnqueueInternalCmd(pAd, CMDTHREAD_SET_ASIC_WCID, \
48362 + &SetAsicWcid, sizeof(RT_SET_ASIC_WCID)); }
48364 +// add this entry into ASIC RX WCID search table
48365 +#define RT28XX_STA_ENTRY_ADD(pAd, pEntry) \
48366 + RTUSBEnqueueInternalCmd(pAd, CMDTHREAD_SET_CLIENT_MAC_ENTRY, \
48367 + pEntry, sizeof(MAC_TABLE_ENTRY));
48369 +// add by johnli, fix "in_interrupt" error when call "MacTableDeleteEntry" in Rx tasklet
48370 +// Set MAC register value according operation mode
48371 +#define RT28XX_UPDATE_PROTECT(pAd) \
48372 + RTUSBEnqueueInternalCmd(pAd, CMDTHREAD_UPDATE_PROTECT, NULL, 0);
48375 +// remove Pair-wise key material from ASIC
48377 +#define RT28XX_STA_ENTRY_KEY_DEL(pAd, BssIdx, Wcid)
48379 +// add Client security information into ASIC WCID table and IVEIV table
48380 +#define RT28XX_STA_SECURITY_INFO_ADD(pAd, apidx, KeyID, pEntry) \
48381 + { RT28XX_STA_ENTRY_MAC_RESET(pAd, pEntry->Aid); \
48382 + if (pEntry->Aid >= 1) { \
48383 + RT_SET_ASIC_WCID_ATTRI SetAsicWcidAttri; \
48384 + SetAsicWcidAttri.WCID = pEntry->Aid; \
48385 + if ((pEntry->AuthMode <= Ndis802_11AuthModeAutoSwitch) && \
48386 + (pEntry->WepStatus == Ndis802_11Encryption1Enabled)) \
48388 + SetAsicWcidAttri.Cipher = pAd->SharedKey[apidx][KeyID].CipherAlg; \
48390 + else if (pEntry->AuthMode == Ndis802_11AuthModeWPANone) \
48392 + SetAsicWcidAttri.Cipher = pAd->SharedKey[apidx][KeyID].CipherAlg; \
48394 + else SetAsicWcidAttri.Cipher = 0; \
48395 + DBGPRINT(RT_DEBUG_TRACE, ("aid cipher = %ld\n",SetAsicWcidAttri.Cipher)); \
48396 + RTUSBEnqueueInternalCmd(pAd, CMDTHREAD_SET_ASIC_WCID_CIPHER, \
48397 + &SetAsicWcidAttri, sizeof(RT_SET_ASIC_WCID_ATTRI)); } }
48399 +// Insert the BA bitmap to ASIC for the Wcid entry
48400 +#define RT28XX_ADD_BA_SESSION_TO_ASIC(_pAd, _Aid, _TID) \
48402 + RT_SET_ASIC_WCID SetAsicWcid; \
48403 + SetAsicWcid.WCID = (_Aid); \
48404 + SetAsicWcid.SetTid = (0x10000<<(_TID)); \
48405 + SetAsicWcid.DeleteTid = 0xffffffff; \
48406 + RTUSBEnqueueInternalCmd((_pAd), CMDTHREAD_SET_ASIC_WCID, &SetAsicWcid, sizeof(RT_SET_ASIC_WCID)); \
48409 +// Remove the BA bitmap from ASIC for the Wcid entry
48410 +#define RT28XX_DEL_BA_SESSION_FROM_ASIC(_pAd, _Wcid, _TID) \
48412 + RT_SET_ASIC_WCID SetAsicWcid; \
48413 + SetAsicWcid.WCID = (_Wcid); \
48414 + SetAsicWcid.SetTid = (0xffffffff); \
48415 + SetAsicWcid.DeleteTid = (0x10000<<(_TID) ); \
48416 + RTUSBEnqueueInternalCmd((_pAd), CMDTHREAD_SET_ASIC_WCID, &SetAsicWcid, sizeof(RT_SET_ASIC_WCID)); \
48420 +/* ----------------- PCI/USB Related MACRO ----------------- */
48421 +#define RT28XX_HANDLE_DEV_ASSIGN(handle, dev_p) \
48422 + ((POS_COOKIE)handle)->pUsb_Dev = dev_p;
48425 +#define RT28XX_UNMAP()
48426 +#define RT28XX_IRQ_REQUEST(net_dev)
48427 +#define RT28XX_IRQ_RELEASE(net_dev)
48428 +#define RT28XX_IRQ_INIT(pAd)
48429 +#define RT28XX_IRQ_ENABLE(pAd)
48432 +/* ----------------- MLME Related MACRO ----------------- */
48433 +#define RT28XX_MLME_HANDLER(pAd) RTUSBMlmeUp(pAd)
48435 +#define RT28XX_MLME_PRE_SANITY_CHECK(pAd) \
48436 + { if ((pAd->CommonCfg.bHardwareRadio == TRUE) && \
48437 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)) && \
48438 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS))) { \
48439 + RTUSBEnqueueInternalCmd(pAd, CMDTHREAD_CHECK_GPIO, NULL, 0); } }
48441 +#define RT28XX_MLME_STA_QUICK_RSP_WAKE_UP(pAd) \
48442 + { RTUSBEnqueueInternalCmd(pAd, CMDTHREAD_QKERIODIC_EXECUT, NULL, 0); \
48443 + RTUSBMlmeUp(pAd); }
48445 +#define RT28XX_MLME_RESET_STATE_MACHINE(pAd) \
48446 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_RESET_CONF, 0, NULL); \
48447 + RTUSBMlmeUp(pAd);
48449 +#define RT28XX_HANDLE_COUNTER_MEASURE(_pAd, _pEntry) \
48450 + { RTUSBEnqueueInternalCmd(_pAd, CMDTHREAD_802_11_COUNTER_MEASURE, _pEntry, sizeof(MAC_TABLE_ENTRY)); \
48451 + RTUSBMlmeUp(_pAd); \
48455 +/* ----------------- Power Save Related MACRO ----------------- */
48456 +#define RT28XX_PS_POLL_ENQUEUE(pAd) \
48457 + { RTUSB_SET_BULK_FLAG(pAd, fRTUSB_BULK_OUT_PSPOLL); \
48458 + RTUSBKickBulkOut(pAd); }
48460 +#define RT28xx_CHIP_NAME "RT2870"
48461 +#define USB_CYC_CFG 0x02a4
48462 +#define NT_SUCCESS(status) (((status) > 0) ? (1):(0))
48463 +#define InterlockedIncrement atomic_inc
48464 +#define NdisInterlockedIncrement atomic_inc
48465 +#define InterlockedDecrement atomic_dec
48466 +#define NdisInterlockedDecrement atomic_dec
48467 +#define InterlockedExchange atomic_set
48468 +//#define NdisMSendComplete RTMP_SendComplete
48469 +#define NdisMCancelTimer RTMPCancelTimer
48470 +#define NdisAllocMemory(_ptr, _size, _flag) \
48471 + do{_ptr = kmalloc((_size),(_flag));}while(0)
48472 +#define NdisFreeMemory(a, b, c) kfree((a))
48473 +#define NdisMSleep RTMPusecDelay /* unit: microsecond */
48476 +#define USBD_TRANSFER_DIRECTION_OUT 0
48477 +#define USBD_TRANSFER_DIRECTION_IN 0
48478 +#define USBD_SHORT_TRANSFER_OK 0
48479 +#define PURB purbb_t
48481 +#define RTUSB_FREE_URB(pUrb) usb_free_urb(pUrb)
48483 +//#undef MlmeAllocateMemory
48484 +//#undef MlmeFreeMemory
48486 +typedef struct usb_device * PUSB_DEV;
48488 +/* MACRO for linux usb */
48489 +typedef struct urb *purbb_t;
48490 +typedef struct usb_ctrlrequest devctrlrequest;
48491 +#define PIRP PVOID
48492 +#define PMDL PVOID
48493 +#define NDIS_OID UINT
48494 +#ifndef USB_ST_NOERROR
48495 +#define USB_ST_NOERROR 0
48498 +// vendor-specific control operations
48499 +#define CONTROL_TIMEOUT_JIFFIES ( (100 * HZ) / 1000)
48500 +#define UNLINK_TIMEOUT_MS 3
48503 +#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,6,7)
48504 +#define RTUSB_UNLINK_URB(pUrb) usb_kill_urb(pUrb)
48506 +#define RTUSB_UNLINK_URB(pUrb) usb_unlink_urb(pUrb)
48509 +// Prototypes of completion funuc.
48510 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,5,0)
48511 +#define RTUSBBulkOutDataPacketComplete(purb, pt_regs) RTUSBBulkOutDataPacketComplete(purb)
48512 +#define RTUSBBulkOutMLMEPacketComplete(pUrb, pt_regs) RTUSBBulkOutMLMEPacketComplete(pUrb)
48513 +#define RTUSBBulkOutNullFrameComplete(pUrb, pt_regs) RTUSBBulkOutNullFrameComplete(pUrb)
48514 +#define RTUSBBulkOutRTSFrameComplete(pUrb, pt_regs) RTUSBBulkOutRTSFrameComplete(pUrb)
48515 +#define RTUSBBulkOutPsPollComplete(pUrb, pt_regs) RTUSBBulkOutPsPollComplete(pUrb)
48516 +#define RTUSBBulkRxComplete(pUrb, pt_regs) RTUSBBulkRxComplete(pUrb)
48520 +VOID RTUSBBulkOutDataPacketComplete(purbb_t purb, struct pt_regs *pt_regs);
48521 +VOID RTUSBBulkOutMLMEPacketComplete(purbb_t pUrb, struct pt_regs *pt_regs);
48522 +VOID RTUSBBulkOutNullFrameComplete(purbb_t pUrb, struct pt_regs *pt_regs);
48523 +VOID RTUSBBulkOutRTSFrameComplete(purbb_t pUrb, struct pt_regs *pt_regs);
48524 +VOID RTUSBBulkOutPsPollComplete(purbb_t pUrb, struct pt_regs *pt_regs);
48525 +VOID RTUSBBulkRxComplete(purbb_t pUrb, struct pt_regs *pt_regs);
48528 +#define RTUSBMlmeUp(pAd) \
48530 + POS_COOKIE pObj = (POS_COOKIE) pAd->OS_Cookie; \
48531 + if(pObj->MLMEThr_pid>0) \
48532 + up(&(pAd->mlme_semaphore)); \
48535 +#define RTUSBCMDUp(pAd) \
48537 + POS_COOKIE pObj = (POS_COOKIE) pAd->OS_Cookie; \
48538 + if(pObj->RTUSBCmdThr_pid>0) \
48539 + up(&(pAd->RTUSBCmd_semaphore)); \
48543 +static inline NDIS_STATUS RTMPAllocateMemory(
48547 + *ptr = kmalloc(size, GFP_ATOMIC);
48549 + return NDIS_STATUS_SUCCESS;
48551 + return NDIS_STATUS_RESOURCES;
48555 +#define BEACON_RING_SIZE 2
48556 +#define DEVICE_VENDOR_REQUEST_OUT 0x40
48557 +#define DEVICE_VENDOR_REQUEST_IN 0xc0
48558 +#define INTERFACE_VENDOR_REQUEST_OUT 0x41
48559 +#define INTERFACE_VENDOR_REQUEST_IN 0xc1
48560 +#define MGMTPIPEIDX 0 // EP6 is highest priority
48562 +#define BULKOUT_MGMT_RESET_FLAG 0x80
48564 +#define RTUSB_SET_BULK_FLAG(_M, _F) ((_M)->BulkFlags |= (_F))
48565 +#define RTUSB_CLEAR_BULK_FLAG(_M, _F) ((_M)->BulkFlags &= ~(_F))
48566 +#define RTUSB_TEST_BULK_FLAG(_M, _F) (((_M)->BulkFlags & (_F)) != 0)
48568 +#define EnqueueCmd(cmdq, cmdqelmt) \
48570 + if (cmdq->size == 0) \
48571 + cmdq->head = cmdqelmt; \
48573 + cmdq->tail->next = cmdqelmt; \
48574 + cmdq->tail = cmdqelmt; \
48575 + cmdqelmt->next = NULL; \
48579 +typedef struct _RT_SET_ASIC_WCID {
48580 + ULONG WCID; // mechanism for rekeying: 0:disable, 1: time-based, 2: packet-based
48581 + ULONG SetTid; // time-based: seconds, packet-based: kilo-packets
48582 + ULONG DeleteTid; // time-based: seconds, packet-based: kilo-packets
48583 +} RT_SET_ASIC_WCID,*PRT_SET_ASIC_WCID;
48585 +typedef struct _RT_SET_ASIC_WCID_ATTRI {
48586 + ULONG WCID; // mechanism for rekeying: 0:disable, 1: time-based, 2: packet-based
48587 + ULONG Cipher; // ASIC Cipher definition
48588 + UCHAR Addr[ETH_LENGTH_OF_ADDRESS];
48589 +} RT_SET_ASIC_WCID_ATTRI,*PRT_SET_ASIC_WCID_ATTRI;
48591 +typedef struct _MLME_MEMORY_STRUCT {
48592 + PVOID AllocVa; //Pointer to the base virtual address of the allocated memory
48593 + struct _MLME_MEMORY_STRUCT *Next; //Pointer to the next virtual address of the allocated memory
48594 +} MLME_MEMORY_STRUCT, *PMLME_MEMORY_STRUCT;
48596 +typedef struct _MLME_MEMORY_HANDLER {
48597 + BOOLEAN MemRunning; //The flag of the Mlme memory handler's status
48598 + UINT MemoryCount; //Total nonpaged system-space memory not size
48599 + UINT InUseCount; //Nonpaged system-space memory in used counts
48600 + UINT UnUseCount; //Nonpaged system-space memory available counts
48601 + INT PendingCount; //Nonpaged system-space memory for free counts
48602 + PMLME_MEMORY_STRUCT pInUseHead; //Pointer to the first nonpaed memory not used
48603 + PMLME_MEMORY_STRUCT pInUseTail; //Pointer to the last nonpaged memory not used
48604 + PMLME_MEMORY_STRUCT pUnUseHead; //Pointer to the first nonpaged memory in used
48605 + PMLME_MEMORY_STRUCT pUnUseTail; //Pointer to the last nonpaged memory in used
48606 + PULONG MemFreePending[MAX_MLME_HANDLER_MEMORY]; //an array to keep pending free-memory's pointer (32bits)
48607 +} MLME_MEMORY_HANDLER, *PMLME_MEMORY_HANDLER;
48609 +typedef struct _CmdQElmt {
48612 + ULONG bufferlength;
48613 + BOOLEAN CmdFromNdis;
48614 + BOOLEAN SetOperation;
48615 + struct _CmdQElmt *next;
48616 +} CmdQElmt, *PCmdQElmt;
48618 +typedef struct _CmdQ {
48622 + UINT32 CmdQState;
48626 +// For WPA SUPPLICANT: WIRELESS EXT support wireless events: v14 or newer
48628 +#if WIRELESS_EXT >= 14
48629 +//#define WPA_SUPPLICANT_SUPPORT 1
48633 +// Cipher suite type for mixed mode group cipher, P802.11i-2004
48634 +typedef enum _RT_802_11_CIPHER_SUITE_TYPE {
48635 + Cipher_Type_NONE,
48636 + Cipher_Type_WEP40,
48637 + Cipher_Type_TKIP,
48638 + Cipher_Type_RSVD,
48639 + Cipher_Type_CCMP,
48640 + Cipher_Type_WEP104
48641 +} RT_802_11_CIPHER_SUITE_TYPE, *PRT_802_11_CIPHER_SUITE_TYPE;
48643 +//CMDTHREAD_MULTI_READ_MAC
48644 +//CMDTHREAD_MULTI_WRITE_MAC
48645 +//CMDTHREAD_VENDOR_EEPROM_READ
48646 +//CMDTHREAD_VENDOR_EEPROM_WRITE
48647 +typedef struct _CMDHandler_TLV {
48651 +} CMDHandler_TLV, *PCMDHandler_TLV;
48653 +// New for MeetingHouse Api support
48654 +#define CMDTHREAD_VENDOR_RESET 0x0D730101 // cmd
48655 +#define CMDTHREAD_VENDOR_UNPLUG 0x0D730102 // cmd
48656 +#define CMDTHREAD_VENDOR_SWITCH_FUNCTION 0x0D730103 // cmd
48657 +#define CMDTHREAD_MULTI_WRITE_MAC 0x0D730107 // cmd
48658 +#define CMDTHREAD_MULTI_READ_MAC 0x0D730108 // cmd
48659 +#define CMDTHREAD_VENDOR_EEPROM_WRITE 0x0D73010A // cmd
48660 +#define CMDTHREAD_VENDOR_EEPROM_READ 0x0D73010B // cmd
48661 +#define CMDTHREAD_VENDOR_ENTER_TESTMODE 0x0D73010C // cmd
48662 +#define CMDTHREAD_VENDOR_EXIT_TESTMODE 0x0D73010D // cmd
48663 +#define CMDTHREAD_VENDOR_WRITE_BBP 0x0D730119 // cmd
48664 +#define CMDTHREAD_VENDOR_READ_BBP 0x0D730118 // cmd
48665 +#define CMDTHREAD_VENDOR_WRITE_RF 0x0D73011A // cmd
48666 +#define CMDTHREAD_VENDOR_FLIP_IQ 0x0D73011D // cmd
48667 +#define CMDTHREAD_RESET_BULK_OUT 0x0D730210 // cmd
48668 +#define CMDTHREAD_RESET_BULK_IN 0x0D730211 // cmd
48669 +#define CMDTHREAD_SET_PSM_BIT_SAVE 0x0D730212 // cmd
48670 +#define CMDTHREAD_SET_RADIO 0x0D730214 // cmd
48671 +#define CMDTHREAD_UPDATE_TX_RATE 0x0D730216 // cmd
48672 +#define CMDTHREAD_802_11_ADD_KEY_WEP 0x0D730218 // cmd
48673 +#define CMDTHREAD_RESET_FROM_ERROR 0x0D73021A // cmd
48674 +#define CMDTHREAD_LINK_DOWN 0x0D73021B // cmd
48675 +#define CMDTHREAD_RESET_FROM_NDIS 0x0D73021C // cmd
48676 +#define CMDTHREAD_CHECK_GPIO 0x0D730215 // cmd
48677 +#define CMDTHREAD_FORCE_WAKE_UP 0x0D730222 // cmd
48678 +#define CMDTHREAD_SET_BW 0x0D730225 // cmd
48679 +#define CMDTHREAD_SET_ASIC_WCID 0x0D730226 // cmd
48680 +#define CMDTHREAD_SET_ASIC_WCID_CIPHER 0x0D730227 // cmd
48681 +#define CMDTHREAD_QKERIODIC_EXECUT 0x0D73023D // cmd
48682 +#define RT_CMD_SET_KEY_TABLE 0x0D730228 // cmd
48683 +#define RT_CMD_SET_RX_WCID_TABLE 0x0D730229 // cmd
48684 +#define CMDTHREAD_SET_CLIENT_MAC_ENTRY 0x0D73023E // cmd
48685 +#define CMDTHREAD_802_11_QUERY_HARDWARE_REGISTER 0x0D710105 // cmd
48686 +#define CMDTHREAD_802_11_SET_PHY_MODE 0x0D79010C // cmd
48687 +#define CMDTHREAD_802_11_SET_STA_CONFIG 0x0D790111 // cmd
48688 +#define CMDTHREAD_802_11_SET_PREAMBLE 0x0D790101 // cmd
48689 +#define CMDTHREAD_802_11_COUNTER_MEASURE 0x0D790102 // cmd
48690 +// add by johnli, fix "in_interrupt" error when call "MacTableDeleteEntry" in Rx tasklet
48691 +#define CMDTHREAD_UPDATE_PROTECT 0x0D790103 // cmd
48694 +#define WPA1AKMBIT 0x01
48695 +#define WPA2AKMBIT 0x02
48696 +#define WPA1PSKAKMBIT 0x04
48697 +#define WPA2PSKAKMBIT 0x08
48698 +#define TKIPBIT 0x01
48699 +#define CCMPBIT 0x02
48702 +#define RT28XX_STA_FORCE_WAKEUP(pAd, bFromTx) \
48703 + RT28xxUsbStaAsicForceWakeup(pAd, bFromTx);
48705 +#define RT28XX_STA_SLEEP_THEN_AUTO_WAKEUP(pAd, TbttNumToNextWakeUp) \
48706 + RT28xxUsbStaAsicSleepThenAutoWakeup(pAd, TbttNumToNextWakeUp);
48708 +#define RT28XX_MLME_RADIO_ON(pAd) \
48709 + RT28xxUsbMlmeRadioOn(pAd);
48711 +#define RT28XX_MLME_RADIO_OFF(pAd) \
48712 + RT28xxUsbMlmeRadioOFF(pAd);
48714 +#endif //__RT2870_H__
48716 +++ b/drivers/staging/rt3070/rt28xx.h
48719 + *************************************************************************
48720 + * Ralink Tech Inc.
48721 + * 5F., No.36, Taiyuan St., Jhubei City,
48722 + * Hsinchu County 302,
48725 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
48727 + * This program is free software; you can redistribute it and/or modify *
48728 + * it under the terms of the GNU General Public License as published by *
48729 + * the Free Software Foundation; either version 2 of the License, or *
48730 + * (at your option) any later version. *
48732 + * This program is distributed in the hope that it will be useful, *
48733 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
48734 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
48735 + * GNU General Public License for more details. *
48737 + * You should have received a copy of the GNU General Public License *
48738 + * along with this program; if not, write to the *
48739 + * Free Software Foundation, Inc., *
48740 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
48742 + *************************************************************************
48748 + RT28xx ASIC related definition & structures
48750 + Revision History:
48752 + -------- ---------- ----------------------------------------------
48753 + Jan Lee Jan-3-2006 created for RT2860c
48756 +#ifndef __RT28XX_H__
48757 +#define __RT28XX_H__
48761 +// PCI registers - base address 0x0000
48763 +#define PCI_CFG 0x0000
48764 +#define PCI_EECTRL 0x0004
48765 +#define PCI_MCUCTRL 0x0008
48767 +#define OPT_14 0x114
48769 +typedef int NTSTATUS;
48770 +#define RETRY_LIMIT 10
48771 +#define STATUS_SUCCESS 0x00
48772 +#define STATUS_UNSUCCESSFUL 0x01
48775 +// SCH/DMA registers - base address 0x0200
48777 +// INT_SOURCE_CSR: Interrupt source register. Write one to clear corresponding bit
48779 +#define DMA_CSR0 0x200
48780 +#define INT_SOURCE_CSR 0x200
48781 +#ifdef RT_BIG_ENDIAN
48782 +typedef union _INT_SOURCE_CSR_STRUC {
48785 + UINT32 TxCoherent:1;
48786 + UINT32 RxCoherent:1;
48787 + UINT32 GPTimer:1;
48788 + UINT32 AutoWakeup:1;//bit14
48789 + UINT32 TXFifoStatusInt:1;//FIFO Statistics is full, sw should read 0x171c
48790 + UINT32 PreTBTT:1;
48791 + UINT32 TBTTInt:1;
48792 + UINT32 RxTxCoherent:1;
48793 + UINT32 MCUCommandINT:1;
48794 + UINT32 MgmtDmaDone:1;
48795 + UINT32 HccaDmaDone:1;
48796 + UINT32 Ac3DmaDone:1;
48797 + UINT32 Ac2DmaDone:1;
48798 + UINT32 Ac1DmaDone:1;
48799 + UINT32 Ac0DmaDone:1;
48801 + UINT32 TxDelayINT:1; //delayed interrupt, not interrupt until several int or time limit hit
48802 + UINT32 RxDelayINT:1; //dealyed interrupt
48805 +} INT_SOURCE_CSR_STRUC, *PINT_SOURCE_CSR_STRUC;
48807 +typedef union _INT_SOURCE_CSR_STRUC {
48809 + UINT32 RxDelayINT:1;
48810 + UINT32 TxDelayINT:1;
48812 + UINT32 Ac0DmaDone:1;//4
48813 + UINT32 Ac1DmaDone:1;
48814 + UINT32 Ac2DmaDone:1;
48815 + UINT32 Ac3DmaDone:1;
48816 + UINT32 HccaDmaDone:1; // bit7
48817 + UINT32 MgmtDmaDone:1;
48818 + UINT32 MCUCommandINT:1;//bit 9
48819 + UINT32 RxTxCoherent:1;
48820 + UINT32 TBTTInt:1;
48821 + UINT32 PreTBTT:1;
48822 + UINT32 TXFifoStatusInt:1;//FIFO Statistics is full, sw should read 0x171c
48823 + UINT32 AutoWakeup:1;//bit14
48824 + UINT32 GPTimer:1;
48825 + UINT32 RxCoherent:1;//bit16
48826 + UINT32 TxCoherent:1;
48830 +} INT_SOURCE_CSR_STRUC, *PINT_SOURCE_CSR_STRUC;
48834 +// INT_MASK_CSR: Interrupt MASK register. 1: the interrupt is mask OFF
48836 +#define INT_MASK_CSR 0x204
48837 +#ifdef RT_BIG_ENDIAN
48838 +typedef union _INT_MASK_CSR_STRUC {
48840 + UINT32 TxCoherent:1;
48841 + UINT32 RxCoherent:1;
48843 + UINT32 MCUCommandINT:1;
48844 + UINT32 MgmtDmaDone:1;
48845 + UINT32 HccaDmaDone:1;
48846 + UINT32 Ac3DmaDone:1;
48847 + UINT32 Ac2DmaDone:1;
48848 + UINT32 Ac1DmaDone:1;
48849 + UINT32 Ac0DmaDone:1;
48851 + UINT32 TxDelay:1;
48852 + UINT32 RXDelay_INT_MSK:1;
48855 +}INT_MASK_CSR_STRUC, *PINT_MASK_CSR_STRUC;
48857 +typedef union _INT_MASK_CSR_STRUC {
48859 + UINT32 RXDelay_INT_MSK:1;
48860 + UINT32 TxDelay:1;
48862 + UINT32 Ac0DmaDone:1;
48863 + UINT32 Ac1DmaDone:1;
48864 + UINT32 Ac2DmaDone:1;
48865 + UINT32 Ac3DmaDone:1;
48866 + UINT32 HccaDmaDone:1;
48867 + UINT32 MgmtDmaDone:1;
48868 + UINT32 MCUCommandINT:1;
48870 + UINT32 RxCoherent:1;
48871 + UINT32 TxCoherent:1;
48874 +} INT_MASK_CSR_STRUC, *PINT_MASK_CSR_STRUC;
48876 +#define WPDMA_GLO_CFG 0x208
48877 +#ifdef RT_BIG_ENDIAN
48878 +typedef union _WPDMA_GLO_CFG_STRUC {
48880 + UINT32 HDR_SEG_LEN:16;
48881 + UINT32 RXHdrScater:8;
48882 + UINT32 BigEndian:1;
48883 + UINT32 EnTXWriteBackDDONE:1;
48884 + UINT32 WPDMABurstSIZE:2;
48885 + UINT32 RxDMABusy:1;
48886 + UINT32 EnableRxDMA:1;
48887 + UINT32 TxDMABusy:1;
48888 + UINT32 EnableTxDMA:1;
48891 +}WPDMA_GLO_CFG_STRUC, *PWPDMA_GLO_CFG_STRUC;
48893 +typedef union _WPDMA_GLO_CFG_STRUC {
48895 + UINT32 EnableTxDMA:1;
48896 + UINT32 TxDMABusy:1;
48897 + UINT32 EnableRxDMA:1;
48898 + UINT32 RxDMABusy:1;
48899 + UINT32 WPDMABurstSIZE:2;
48900 + UINT32 EnTXWriteBackDDONE:1;
48901 + UINT32 BigEndian:1;
48902 + UINT32 RXHdrScater:8;
48903 + UINT32 HDR_SEG_LEN:16;
48906 +} WPDMA_GLO_CFG_STRUC, *PWPDMA_GLO_CFG_STRUC;
48908 +#define WPDMA_RST_IDX 0x20c
48909 +#ifdef RT_BIG_ENDIAN
48910 +typedef union _WPDMA_RST_IDX_STRUC {
48913 + UINT32 RST_DRX_IDX0:1;
48915 + UINT32 RST_DTX_IDX5:1;
48916 + UINT32 RST_DTX_IDX4:1;
48917 + UINT32 RST_DTX_IDX3:1;
48918 + UINT32 RST_DTX_IDX2:1;
48919 + UINT32 RST_DTX_IDX1:1;
48920 + UINT32 RST_DTX_IDX0:1;
48923 +}WPDMA_RST_IDX_STRUC, *PWPDMA_RST_IDX_STRUC;
48925 +typedef union _WPDMA_RST_IDX_STRUC {
48927 + UINT32 RST_DTX_IDX0:1;
48928 + UINT32 RST_DTX_IDX1:1;
48929 + UINT32 RST_DTX_IDX2:1;
48930 + UINT32 RST_DTX_IDX3:1;
48931 + UINT32 RST_DTX_IDX4:1;
48932 + UINT32 RST_DTX_IDX5:1;
48934 + UINT32 RST_DRX_IDX0:1;
48938 +} WPDMA_RST_IDX_STRUC, *PWPDMA_RST_IDX_STRUC;
48940 +#define DELAY_INT_CFG 0x0210
48941 +#ifdef RT_BIG_ENDIAN
48942 +typedef union _DELAY_INT_CFG_STRUC {
48944 + UINT32 TXDLY_INT_EN:1;
48945 + UINT32 TXMAX_PINT:7;
48946 + UINT32 TXMAX_PTIME:8;
48947 + UINT32 RXDLY_INT_EN:1;
48948 + UINT32 RXMAX_PINT:7;
48949 + UINT32 RXMAX_PTIME:8;
48952 +}DELAY_INT_CFG_STRUC, *PDELAY_INT_CFG_STRUC;
48954 +typedef union _DELAY_INT_CFG_STRUC {
48956 + UINT32 RXMAX_PTIME:8;
48957 + UINT32 RXMAX_PINT:7;
48958 + UINT32 RXDLY_INT_EN:1;
48959 + UINT32 TXMAX_PTIME:8;
48960 + UINT32 TXMAX_PINT:7;
48961 + UINT32 TXDLY_INT_EN:1;
48964 +} DELAY_INT_CFG_STRUC, *PDELAY_INT_CFG_STRUC;
48966 +#define WMM_AIFSN_CFG 0x0214
48967 +#ifdef RT_BIG_ENDIAN
48968 +typedef union _AIFSN_CSR_STRUC {
48971 + UINT32 Aifsn3:4; // for AC_VO
48972 + UINT32 Aifsn2:4; // for AC_VI
48973 + UINT32 Aifsn1:4; // for AC_BK
48974 + UINT32 Aifsn0:4; // for AC_BE
48977 +} AIFSN_CSR_STRUC, *PAIFSN_CSR_STRUC;
48979 +typedef union _AIFSN_CSR_STRUC {
48981 + UINT32 Aifsn0:4; // for AC_BE
48982 + UINT32 Aifsn1:4; // for AC_BK
48983 + UINT32 Aifsn2:4; // for AC_VI
48984 + UINT32 Aifsn3:4; // for AC_VO
48988 +} AIFSN_CSR_STRUC, *PAIFSN_CSR_STRUC;
48991 +// CWMIN_CSR: CWmin for each EDCA AC
48993 +#define WMM_CWMIN_CFG 0x0218
48994 +#ifdef RT_BIG_ENDIAN
48995 +typedef union _CWMIN_CSR_STRUC {
48998 + UINT32 Cwmin3:4; // for AC_VO
48999 + UINT32 Cwmin2:4; // for AC_VI
49000 + UINT32 Cwmin1:4; // for AC_BK
49001 + UINT32 Cwmin0:4; // for AC_BE
49004 +} CWMIN_CSR_STRUC, *PCWMIN_CSR_STRUC;
49006 +typedef union _CWMIN_CSR_STRUC {
49008 + UINT32 Cwmin0:4; // for AC_BE
49009 + UINT32 Cwmin1:4; // for AC_BK
49010 + UINT32 Cwmin2:4; // for AC_VI
49011 + UINT32 Cwmin3:4; // for AC_VO
49015 +} CWMIN_CSR_STRUC, *PCWMIN_CSR_STRUC;
49019 +// CWMAX_CSR: CWmin for each EDCA AC
49021 +#define WMM_CWMAX_CFG 0x021c
49022 +#ifdef RT_BIG_ENDIAN
49023 +typedef union _CWMAX_CSR_STRUC {
49026 + UINT32 Cwmax3:4; // for AC_VO
49027 + UINT32 Cwmax2:4; // for AC_VI
49028 + UINT32 Cwmax1:4; // for AC_BK
49029 + UINT32 Cwmax0:4; // for AC_BE
49032 +} CWMAX_CSR_STRUC, *PCWMAX_CSR_STRUC;
49034 +typedef union _CWMAX_CSR_STRUC {
49036 + UINT32 Cwmax0:4; // for AC_BE
49037 + UINT32 Cwmax1:4; // for AC_BK
49038 + UINT32 Cwmax2:4; // for AC_VI
49039 + UINT32 Cwmax3:4; // for AC_VO
49043 +} CWMAX_CSR_STRUC, *PCWMAX_CSR_STRUC;
49048 +// AC_TXOP_CSR0: AC_BK/AC_BE TXOP register
49050 +#define WMM_TXOP0_CFG 0x0220
49051 +#ifdef RT_BIG_ENDIAN
49052 +typedef union _AC_TXOP_CSR0_STRUC {
49054 + USHORT Ac1Txop; // for AC_BE, in unit of 32us
49055 + USHORT Ac0Txop; // for AC_BK, in unit of 32us
49058 +} AC_TXOP_CSR0_STRUC, *PAC_TXOP_CSR0_STRUC;
49060 +typedef union _AC_TXOP_CSR0_STRUC {
49062 + USHORT Ac0Txop; // for AC_BK, in unit of 32us
49063 + USHORT Ac1Txop; // for AC_BE, in unit of 32us
49066 +} AC_TXOP_CSR0_STRUC, *PAC_TXOP_CSR0_STRUC;
49070 +// AC_TXOP_CSR1: AC_VO/AC_VI TXOP register
49072 +#define WMM_TXOP1_CFG 0x0224
49073 +#ifdef RT_BIG_ENDIAN
49074 +typedef union _AC_TXOP_CSR1_STRUC {
49076 + USHORT Ac3Txop; // for AC_VO, in unit of 32us
49077 + USHORT Ac2Txop; // for AC_VI, in unit of 32us
49080 +} AC_TXOP_CSR1_STRUC, *PAC_TXOP_CSR1_STRUC;
49082 +typedef union _AC_TXOP_CSR1_STRUC {
49084 + USHORT Ac2Txop; // for AC_VI, in unit of 32us
49085 + USHORT Ac3Txop; // for AC_VO, in unit of 32us
49088 +} AC_TXOP_CSR1_STRUC, *PAC_TXOP_CSR1_STRUC;
49090 +#define RINGREG_DIFF 0x10
49091 +#define GPIO_CTRL_CFG 0x0228 //MAC_CSR13
49092 +#define MCU_CMD_CFG 0x022c
49093 +#define TX_BASE_PTR0 0x0230 //AC_BK base address
49094 +#define TX_MAX_CNT0 0x0234
49095 +#define TX_CTX_IDX0 0x0238
49096 +#define TX_DTX_IDX0 0x023c
49097 +#define TX_BASE_PTR1 0x0240 //AC_BE base address
49098 +#define TX_MAX_CNT1 0x0244
49099 +#define TX_CTX_IDX1 0x0248
49100 +#define TX_DTX_IDX1 0x024c
49101 +#define TX_BASE_PTR2 0x0250 //AC_VI base address
49102 +#define TX_MAX_CNT2 0x0254
49103 +#define TX_CTX_IDX2 0x0258
49104 +#define TX_DTX_IDX2 0x025c
49105 +#define TX_BASE_PTR3 0x0260 //AC_VO base address
49106 +#define TX_MAX_CNT3 0x0264
49107 +#define TX_CTX_IDX3 0x0268
49108 +#define TX_DTX_IDX3 0x026c
49109 +#define TX_BASE_PTR4 0x0270 //HCCA base address
49110 +#define TX_MAX_CNT4 0x0274
49111 +#define TX_CTX_IDX4 0x0278
49112 +#define TX_DTX_IDX4 0x027c
49113 +#define TX_BASE_PTR5 0x0280 //MGMT base address
49114 +#define TX_MAX_CNT5 0x0284
49115 +#define TX_CTX_IDX5 0x0288
49116 +#define TX_DTX_IDX5 0x028c
49117 +#define TX_MGMTMAX_CNT TX_MAX_CNT5
49118 +#define TX_MGMTCTX_IDX TX_CTX_IDX5
49119 +#define TX_MGMTDTX_IDX TX_DTX_IDX5
49120 +#define RX_BASE_PTR 0x0290 //RX base address
49121 +#define RX_MAX_CNT 0x0294
49122 +#define RX_CRX_IDX 0x0298
49123 +#define RX_DRX_IDX 0x029c
49124 +#define USB_DMA_CFG 0x02a0
49125 +#ifdef RT_BIG_ENDIAN
49126 +typedef union _USB_DMA_CFG_STRUC {
49128 + UINT32 TxBusy:1; //USB DMA TX FSM busy . debug only
49129 + UINT32 RxBusy:1; //USB DMA RX FSM busy . debug only
49130 + UINT32 EpoutValid:6; //OUT endpoint data valid. debug only
49131 + UINT32 TxBulkEn:1; //Enable USB DMA Tx
49132 + UINT32 RxBulkEn:1; //Enable USB DMA Rx
49133 + UINT32 RxBulkAggEn:1; //Enable Rx Bulk Aggregation
49134 + UINT32 TxopHalt:1; //Halt TXOP count down when TX buffer is full.
49135 + UINT32 TxClear:1; //Clear USB DMA TX path
49137 + UINT32 phyclear:1; //phy watch dog enable. write 1
49138 + UINT32 RxBulkAggLmt:8; //Rx Bulk Aggregation Limit in unit of 1024 bytes
49139 + UINT32 RxBulkAggTOut:8; //Rx Bulk Aggregation TimeOut in unit of 33ns
49142 +} USB_DMA_CFG_STRUC, *PUSB_DMA_CFG_STRUC;
49144 +typedef union _USB_DMA_CFG_STRUC {
49146 + UINT32 RxBulkAggTOut:8; //Rx Bulk Aggregation TimeOut in unit of 33ns
49147 + UINT32 RxBulkAggLmt:8; //Rx Bulk Aggregation Limit in unit of 256 bytes
49148 + UINT32 phyclear:1; //phy watch dog enable. write 1
49150 + UINT32 TxClear:1; //Clear USB DMA TX path
49151 + UINT32 TxopHalt:1; //Halt TXOP count down when TX buffer is full.
49152 + UINT32 RxBulkAggEn:1; //Enable Rx Bulk Aggregation
49153 + UINT32 RxBulkEn:1; //Enable USB DMA Rx
49154 + UINT32 TxBulkEn:1; //Enable USB DMA Tx
49155 + UINT32 EpoutValid:6; //OUT endpoint data valid
49156 + UINT32 RxBusy:1; //USB DMA RX FSM busy
49157 + UINT32 TxBusy:1; //USB DMA TX FSM busy
49160 +} USB_DMA_CFG_STRUC, *PUSB_DMA_CFG_STRUC;
49164 +// 3 PBF registers
49167 +// Most are for debug. Driver doesn't touch PBF register.
49168 +#define PBF_SYS_CTRL 0x0400
49169 +#define PBF_CFG 0x0408
49170 +#define PBF_MAX_PCNT 0x040C
49171 +#define PBF_CTRL 0x0410
49172 +#define PBF_INT_STA 0x0414
49173 +#define PBF_INT_ENA 0x0418
49174 +#define TXRXQ_PCNT 0x0438
49175 +#define PBF_DBG 0x043c
49176 +#define PBF_CAP_CTRL 0x0440
49179 +// eFuse registers
49180 +#define EFUSE_CTRL 0x0580
49181 +#define EFUSE_DATA0 0x0590
49182 +#define EFUSE_DATA1 0x0594
49183 +#define EFUSE_DATA2 0x0598
49184 +#define EFUSE_DATA3 0x059c
49185 +#define EFUSE_USAGE_MAP_START 0x2d0
49186 +#define EFUSE_USAGE_MAP_END 0x2fc
49187 +#define EFUSE_TAG 0x2fe
49188 +#define EFUSE_USAGE_MAP_SIZE 45
49190 +#ifdef RT_BIG_ENDIAN
49191 +typedef union _EFUSE_CTRL_STRUC {
49193 + UINT32 SEL_EFUSE:1;
49194 + UINT32 EFSROM_KICK:1;
49195 + UINT32 RESERVED:4;
49196 + UINT32 EFSROM_AIN:10;
49197 + UINT32 EFSROM_LDO_ON_TIME:2;
49198 + UINT32 EFSROM_LDO_OFF_TIME:6;
49199 + UINT32 EFSROM_MODE:2;
49200 + UINT32 EFSROM_AOUT:6;
49203 +} EFUSE_CTRL_STRUC, *PEFUSE_CTRL_STRUC;
49205 +typedef union _EFUSE_CTRL_STRUC {
49207 + UINT32 EFSROM_AOUT:6;
49208 + UINT32 EFSROM_MODE:2;
49209 + UINT32 EFSROM_LDO_OFF_TIME:6;
49210 + UINT32 EFSROM_LDO_ON_TIME:2;
49211 + UINT32 EFSROM_AIN:10;
49212 + UINT32 RESERVED:4;
49213 + UINT32 EFSROM_KICK:1;
49214 + UINT32 SEL_EFUSE:1;
49217 +} EFUSE_CTRL_STRUC, *PEFUSE_CTRL_STRUC;
49218 +#endif // RT_BIG_ENDIAN //
49220 +#define LDO_CFG0 0x05d4
49221 +#define GPIO_SWITCH 0x05dc
49224 +// 4 MAC registers
49227 +// 4.1 MAC SYSTEM configuration registers (offset:0x1000)
49229 +#define MAC_CSR0 0x1000
49230 +#ifdef RT_BIG_ENDIAN
49231 +typedef union _ASIC_VER_ID_STRUC {
49233 + USHORT ASICVer; // version : 2860
49234 + USHORT ASICRev; // reversion : 0
49237 +} ASIC_VER_ID_STRUC, *PASIC_VER_ID_STRUC;
49239 +typedef union _ASIC_VER_ID_STRUC {
49241 + USHORT ASICRev; // reversion : 0
49242 + USHORT ASICVer; // version : 2860
49245 +} ASIC_VER_ID_STRUC, *PASIC_VER_ID_STRUC;
49247 +#define MAC_SYS_CTRL 0x1004 //MAC_CSR1
49248 +#define MAC_ADDR_DW0 0x1008 // MAC ADDR DW0
49249 +#define MAC_ADDR_DW1 0x100c // MAC ADDR DW1
49251 +// MAC_CSR2: STA MAC register 0
49253 +#ifdef RT_BIG_ENDIAN
49254 +typedef union _MAC_DW0_STRUC {
49256 + UCHAR Byte3; // MAC address byte 3
49257 + UCHAR Byte2; // MAC address byte 2
49258 + UCHAR Byte1; // MAC address byte 1
49259 + UCHAR Byte0; // MAC address byte 0
49262 +} MAC_DW0_STRUC, *PMAC_DW0_STRUC;
49264 +typedef union _MAC_DW0_STRUC {
49266 + UCHAR Byte0; // MAC address byte 0
49267 + UCHAR Byte1; // MAC address byte 1
49268 + UCHAR Byte2; // MAC address byte 2
49269 + UCHAR Byte3; // MAC address byte 3
49272 +} MAC_DW0_STRUC, *PMAC_DW0_STRUC;
49276 +// MAC_CSR3: STA MAC register 1
49278 +#ifdef RT_BIG_ENDIAN
49279 +typedef union _MAC_DW1_STRUC {
49283 + UCHAR Byte5; // MAC address byte 5
49284 + UCHAR Byte4; // MAC address byte 4
49287 +} MAC_DW1_STRUC, *PMAC_DW1_STRUC;
49289 +typedef union _MAC_DW1_STRUC {
49291 + UCHAR Byte4; // MAC address byte 4
49292 + UCHAR Byte5; // MAC address byte 5
49297 +} MAC_DW1_STRUC, *PMAC_DW1_STRUC;
49300 +#define MAC_BSSID_DW0 0x1010 // MAC BSSID DW0
49301 +#define MAC_BSSID_DW1 0x1014 // MAC BSSID DW1
49304 +// MAC_CSR5: BSSID register 1
49306 +#ifdef RT_BIG_ENDIAN
49307 +typedef union _MAC_CSR5_STRUC {
49310 + USHORT MBssBcnNum:3;
49311 + USHORT BssIdMode:2; // 0: one BSSID, 10: 4 BSSID, 01: 2 BSSID , 11: 8BSSID
49312 + UCHAR Byte5; // BSSID byte 5
49313 + UCHAR Byte4; // BSSID byte 4
49316 +} MAC_CSR5_STRUC, *PMAC_CSR5_STRUC;
49318 +typedef union _MAC_CSR5_STRUC {
49320 + UCHAR Byte4; // BSSID byte 4
49321 + UCHAR Byte5; // BSSID byte 5
49322 + USHORT BssIdMask:2; // 0: one BSSID, 10: 4 BSSID, 01: 2 BSSID , 11: 8BSSID
49323 + USHORT MBssBcnNum:3;
49327 +} MAC_CSR5_STRUC, *PMAC_CSR5_STRUC;
49330 +#define MAX_LEN_CFG 0x1018 // rt2860b max 16k bytes. bit12:13 Maximum PSDU length (power factor) 0:2^13, 1:2^14, 2:2^15, 3:2^16
49331 +#define BBP_CSR_CFG 0x101c //
49333 +// BBP_CSR_CFG: BBP serial control register
49335 +#ifdef RT_BIG_ENDIAN
49336 +typedef union _BBP_CSR_CFG_STRUC {
49339 + UINT32 BBP_RW_MODE:1; // 0: use serial mode 1:parallel
49340 + UINT32 BBP_PAR_DUR:1; // 0: 4 MAC clock cycles 1: 8 MAC clock cycles
49341 + UINT32 Busy:1; // 1: ASIC is busy execute BBP programming.
49342 + UINT32 fRead:1; // 0: Write BBP, 1: Read BBP
49343 + UINT32 RegNum:8; // Selected BBP register
49344 + UINT32 Value:8; // Register value to program into BBP
49347 +} BBP_CSR_CFG_STRUC, *PBBP_CSR_CFG_STRUC;
49349 +typedef union _BBP_CSR_CFG_STRUC {
49351 + UINT32 Value:8; // Register value to program into BBP
49352 + UINT32 RegNum:8; // Selected BBP register
49353 + UINT32 fRead:1; // 0: Write BBP, 1: Read BBP
49354 + UINT32 Busy:1; // 1: ASIC is busy execute BBP programming.
49355 + UINT32 BBP_PAR_DUR:1; // 0: 4 MAC clock cycles 1: 8 MAC clock cycles
49356 + UINT32 BBP_RW_MODE:1; // 0: use serial mode 1:parallel
49360 +} BBP_CSR_CFG_STRUC, *PBBP_CSR_CFG_STRUC;
49362 +#define RF_CSR_CFG0 0x1020
49364 +// RF_CSR_CFG: RF control register
49366 +#ifdef RT_BIG_ENDIAN
49367 +typedef union _RF_CSR_CFG0_STRUC {
49369 + UINT32 Busy:1; // 0: idle 1: 8busy
49370 + UINT32 Sel:1; // 0:RF_LE0 activate 1:RF_LE1 activate
49371 + UINT32 StandbyMode:1; // 0: high when stand by 1: low when standby
49372 + UINT32 bitwidth:5; // Selected BBP register
49373 + UINT32 RegIdAndContent:24; // Register value to program into BBP
49376 +} RF_CSR_CFG0_STRUC, *PRF_CSR_CFG0_STRUC;
49378 +typedef union _RF_CSR_CFG0_STRUC {
49380 + UINT32 RegIdAndContent:24; // Register value to program into BBP
49381 + UINT32 bitwidth:5; // Selected BBP register
49382 + UINT32 StandbyMode:1; // 0: high when stand by 1: low when standby
49383 + UINT32 Sel:1; // 0:RF_LE0 activate 1:RF_LE1 activate
49384 + UINT32 Busy:1; // 0: idle 1: 8busy
49387 +} RF_CSR_CFG0_STRUC, *PRF_CSR_CFG0_STRUC;
49389 +#define RF_CSR_CFG1 0x1024
49390 +#ifdef RT_BIG_ENDIAN
49391 +typedef union _RF_CSR_CFG1_STRUC {
49393 + UINT32 rsv:7; // 0: idle 1: 8busy
49394 + UINT32 RFGap:5; // Gap between BB_CONTROL_RF and RF_LE. 0: 3 system clock cycle (37.5usec) 1: 5 system clock cycle (62.5usec)
49395 + UINT32 RegIdAndContent:24; // Register value to program into BBP
49398 +} RF_CSR_CFG1_STRUC, *PRF_CSR_CFG1_STRUC;
49400 +typedef union _RF_CSR_CFG1_STRUC {
49402 + UINT32 RegIdAndContent:24; // Register value to program into BBP
49403 + UINT32 RFGap:5; // Gap between BB_CONTROL_RF and RF_LE. 0: 3 system clock cycle (37.5usec) 1: 5 system clock cycle (62.5usec)
49404 + UINT32 rsv:7; // 0: idle 1: 8busy
49407 +} RF_CSR_CFG1_STRUC, *PRF_CSR_CFG1_STRUC;
49409 +#define RF_CSR_CFG2 0x1028 //
49410 +#ifdef RT_BIG_ENDIAN
49411 +typedef union _RF_CSR_CFG2_STRUC {
49413 + UINT32 rsv:8; // 0: idle 1: 8busy
49414 + UINT32 RegIdAndContent:24; // Register value to program into BBP
49417 +} RF_CSR_CFG2_STRUC, *PRF_CSR_CFG2_STRUC;
49419 +typedef union _RF_CSR_CFG2_STRUC {
49421 + UINT32 RegIdAndContent:24; // Register value to program into BBP
49422 + UINT32 rsv:8; // 0: idle 1: 8busy
49425 +} RF_CSR_CFG2_STRUC, *PRF_CSR_CFG2_STRUC;
49427 +#define LED_CFG 0x102c // MAC_CSR14
49428 +#ifdef RT_BIG_ENDIAN
49429 +typedef union _LED_CFG_STRUC {
49432 + UINT32 LedPolar:1; // Led Polarity. 0: active low1: active high
49433 + UINT32 YLedMode:2; // yellow Led Mode
49434 + UINT32 GLedMode:2; // green Led Mode
49435 + UINT32 RLedMode:2; // red Led Mode 0: off1: blinking upon TX2: periodic slow blinking3: always on
49437 + UINT32 SlowBlinkPeriod:6; // slow blinking period. unit:1ms
49438 + UINT32 OffPeriod:8; // blinking off period unit 1ms
49439 + UINT32 OnPeriod:8; // blinking on period unit 1ms
49442 +} LED_CFG_STRUC, *PLED_CFG_STRUC;
49444 +typedef union _LED_CFG_STRUC {
49446 + UINT32 OnPeriod:8; // blinking on period unit 1ms
49447 + UINT32 OffPeriod:8; // blinking off period unit 1ms
49448 + UINT32 SlowBlinkPeriod:6; // slow blinking period. unit:1ms
49450 + UINT32 RLedMode:2; // red Led Mode 0: off1: blinking upon TX2: periodic slow blinking3: always on
49451 + UINT32 GLedMode:2; // green Led Mode
49452 + UINT32 YLedMode:2; // yellow Led Mode
49453 + UINT32 LedPolar:1; // Led Polarity. 0: active low1: active high
49457 +} LED_CFG_STRUC, *PLED_CFG_STRUC;
49460 +// 4.2 MAC TIMING configuration registers (offset:0x1100)
49462 +#define XIFS_TIME_CFG 0x1100 // MAC_CSR8 MAC_CSR9
49463 +#ifdef RT_BIG_ENDIAN
49464 +typedef union _IFS_SLOT_CFG_STRUC {
49467 + UINT32 BBRxendEnable:1; // reference RXEND signal to begin XIFS defer
49468 + UINT32 EIFS:9; // unit 1us
49469 + UINT32 OfdmXifsTime:4; //OFDM SIFS. unit 1us. Applied after OFDM RX when MAC doesn't reference BBP signal BBRXEND
49470 + UINT32 OfdmSifsTime:8; // unit 1us. Applied after OFDM RX/TX
49471 + UINT32 CckmSifsTime:8; // unit 1us. Applied after CCK RX/TX
49474 +} IFS_SLOT_CFG_STRUC, *PIFS_SLOT_CFG_STRUC;
49476 +typedef union _IFS_SLOT_CFG_STRUC {
49478 + UINT32 CckmSifsTime:8; // unit 1us. Applied after CCK RX/TX
49479 + UINT32 OfdmSifsTime:8; // unit 1us. Applied after OFDM RX/TX
49480 + UINT32 OfdmXifsTime:4; //OFDM SIFS. unit 1us. Applied after OFDM RX when MAC doesn't reference BBP signal BBRXEND
49481 + UINT32 EIFS:9; // unit 1us
49482 + UINT32 BBRxendEnable:1; // reference RXEND signal to begin XIFS defer
49486 +} IFS_SLOT_CFG_STRUC, *PIFS_SLOT_CFG_STRUC;
49489 +#define BKOFF_SLOT_CFG 0x1104 // mac_csr9 last 8 bits
49490 +#define NAV_TIME_CFG 0x1108 // NAV (MAC_CSR15)
49491 +#define CH_TIME_CFG 0x110C // Count as channel busy
49492 +#define PBF_LIFE_TIMER 0x1110 //TX/RX MPDU timestamp timer (free run)Unit: 1us
49493 +#define BCN_TIME_CFG 0x1114 // TXRX_CSR9
49495 +#define BCN_OFFSET0 0x042C
49496 +#define BCN_OFFSET1 0x0430
49499 +// BCN_TIME_CFG : Synchronization control register
49501 +#ifdef RT_BIG_ENDIAN
49502 +typedef union _BCN_TIME_CFG_STRUC {
49504 + UINT32 TxTimestampCompensate:8;
49506 + UINT32 bBeaconGen:1; // Enable beacon generator
49507 + UINT32 bTBTTEnable:1;
49508 + UINT32 TsfSyncMode:2; // Enable TSF sync, 00: disable, 01: infra mode, 10: ad-hoc mode
49509 + UINT32 bTsfTicking:1; // Enable TSF auto counting
49510 + UINT32 BeaconInterval:16; // in unit of 1/16 TU
49513 +} BCN_TIME_CFG_STRUC, *PBCN_TIME_CFG_STRUC;
49515 +typedef union _BCN_TIME_CFG_STRUC {
49517 + UINT32 BeaconInterval:16; // in unit of 1/16 TU
49518 + UINT32 bTsfTicking:1; // Enable TSF auto counting
49519 + UINT32 TsfSyncMode:2; // Enable TSF sync, 00: disable, 01: infra mode, 10: ad-hoc mode
49520 + UINT32 bTBTTEnable:1;
49521 + UINT32 bBeaconGen:1; // Enable beacon generator
49523 + UINT32 TxTimestampCompensate:8;
49526 +} BCN_TIME_CFG_STRUC, *PBCN_TIME_CFG_STRUC;
49528 +#define TBTT_SYNC_CFG 0x1118 // txrx_csr10
49529 +#define TSF_TIMER_DW0 0x111C // Local TSF timer lsb 32 bits. Read-only
49530 +#define TSF_TIMER_DW1 0x1120 // msb 32 bits. Read-only.
49531 +#define TBTT_TIMER 0x1124 // TImer remains till next TBTT. Read-only. TXRX_CSR14
49532 +#define INT_TIMER_CFG 0x1128 //
49533 +#define INT_TIMER_EN 0x112c // GP-timer and pre-tbtt Int enable
49534 +#define CH_IDLE_STA 0x1130 // channel idle time
49535 +#define CH_BUSY_STA 0x1134 // channle busy time
49537 +// 4.2 MAC POWER configuration registers (offset:0x1200)
49539 +#define MAC_STATUS_CFG 0x1200 // old MAC_CSR12
49540 +#define PWR_PIN_CFG 0x1204 // old MAC_CSR12
49541 +#define AUTO_WAKEUP_CFG 0x1208 // old MAC_CSR10
49543 +// AUTO_WAKEUP_CFG: Manual power control / status register
49545 +#ifdef RT_BIG_ENDIAN
49546 +typedef union _AUTO_WAKEUP_STRUC {
49549 + UINT32 EnableAutoWakeup:1; // 0:sleep, 1:awake
49550 + UINT32 NumofSleepingTbtt:7; // ForceWake has high privilege than PutToSleep when both set
49551 + UINT32 AutoLeadTime:8;
49554 +} AUTO_WAKEUP_STRUC, *PAUTO_WAKEUP_STRUC;
49556 +typedef union _AUTO_WAKEUP_STRUC {
49558 + UINT32 AutoLeadTime:8;
49559 + UINT32 NumofSleepingTbtt:7; // ForceWake has high privilege than PutToSleep when both set
49560 + UINT32 EnableAutoWakeup:1; // 0:sleep, 1:awake
49564 +} AUTO_WAKEUP_STRUC, *PAUTO_WAKEUP_STRUC;
49567 +// 4.3 MAC TX configuration registers (offset:0x1300)
49570 +#define EDCA_AC0_CFG 0x1300 //AC_TXOP_CSR0 0x3474
49571 +#define EDCA_AC1_CFG 0x1304
49572 +#define EDCA_AC2_CFG 0x1308
49573 +#define EDCA_AC3_CFG 0x130c
49574 +#ifdef RT_BIG_ENDIAN
49575 +typedef union _EDCA_AC_CFG_STRUC {
49578 + UINT32 Cwmax:4; //unit power of 2
49579 + UINT32 Cwmin:4; //
49580 + UINT32 Aifsn:4; // # of slot time
49581 + UINT32 AcTxop:8; // in unit of 32us
49584 +} EDCA_AC_CFG_STRUC, *PEDCA_AC_CFG_STRUC;
49586 +typedef union _EDCA_AC_CFG_STRUC {
49588 + UINT32 AcTxop:8; // in unit of 32us
49589 + UINT32 Aifsn:4; // # of slot time
49590 + UINT32 Cwmin:4; //
49591 + UINT32 Cwmax:4; //unit power of 2
49595 +} EDCA_AC_CFG_STRUC, *PEDCA_AC_CFG_STRUC;
49598 +#define EDCA_TID_AC_MAP 0x1310
49599 +#define TX_PWR_CFG_0 0x1314
49600 +#define TX_PWR_CFG_1 0x1318
49601 +#define TX_PWR_CFG_2 0x131C
49602 +#define TX_PWR_CFG_3 0x1320
49603 +#define TX_PWR_CFG_4 0x1324
49604 +#define TX_PIN_CFG 0x1328
49605 +#define TX_BAND_CFG 0x132c // 0x1 use upper 20MHz. 0 juse lower 20MHz
49606 +#define TX_SW_CFG0 0x1330
49607 +#define TX_SW_CFG1 0x1334
49608 +#define TX_SW_CFG2 0x1338
49609 +#define TXOP_THRES_CFG 0x133c
49610 +#define TXOP_CTRL_CFG 0x1340
49611 +#define TX_RTS_CFG 0x1344
49613 +#ifdef RT_BIG_ENDIAN
49614 +typedef union _TX_RTS_CFG_STRUC {
49617 + UINT32 RtsFbkEn:1; // enable rts rate fallback
49618 + UINT32 RtsThres:16; // unit:byte
49619 + UINT32 AutoRtsRetryLimit:8;
49622 +} TX_RTS_CFG_STRUC, *PTX_RTS_CFG_STRUC;
49624 +typedef union _TX_RTS_CFG_STRUC {
49626 + UINT32 AutoRtsRetryLimit:8;
49627 + UINT32 RtsThres:16; // unit:byte
49628 + UINT32 RtsFbkEn:1; // enable rts rate fallback
49629 + UINT32 rsv:7; // 1: HT non-STBC control frame enable
49632 +} TX_RTS_CFG_STRUC, *PTX_RTS_CFG_STRUC;
49634 +#define TX_TIMEOUT_CFG 0x1348
49635 +#ifdef RT_BIG_ENDIAN
49636 +typedef union _TX_TIMEOUT_CFG_STRUC {
49639 + UINT32 TxopTimeout:8; //TXOP timeout value for TXOP truncation. It is recommended that (SLOT_TIME) > (TX_OP_TIMEOUT) > (RX_ACK_TIMEOUT)
49640 + UINT32 RxAckTimeout:8; // unit:slot. Used for TX precedure
49641 + UINT32 MpduLifeTime:4; // expiration time = 2^(9+MPDU LIFE TIME) us
49645 +} TX_TIMEOUT_CFG_STRUC, *PTX_TIMEOUT_CFG_STRUC;
49647 +typedef union _TX_TIMEOUT_CFG_STRUC {
49650 + UINT32 MpduLifeTime:4; // expiration time = 2^(9+MPDU LIFE TIME) us
49651 + UINT32 RxAckTimeout:8; // unit:slot. Used for TX precedure
49652 + UINT32 TxopTimeout:8; //TXOP timeout value for TXOP truncation. It is recommended that (SLOT_TIME) > (TX_OP_TIMEOUT) > (RX_ACK_TIMEOUT)
49653 + UINT32 rsv2:8; // 1: HT non-STBC control frame enable
49656 +} TX_TIMEOUT_CFG_STRUC, *PTX_TIMEOUT_CFG_STRUC;
49658 +#define TX_RTY_CFG 0x134c
49659 +#ifdef RT_BIG_ENDIAN
49660 +typedef union PACKED _TX_RTY_CFG_STRUC {
49663 + UINT32 TxautoFBEnable:1; // Tx retry PHY rate auto fallback enable
49664 + UINT32 AggRtyMode:1; // Aggregate MPDU retry mode. 0:expired by retry limit, 1: expired by mpdu life timer
49665 + UINT32 NonAggRtyMode:1; // Non-Aggregate MPDU retry mode. 0:expired by retry limit, 1: expired by mpdu life timer
49666 + UINT32 LongRtyThre:12; // Long retry threshoold
49667 + UINT32 LongRtyLimit:8; //long retry limit
49668 + UINT32 ShortRtyLimit:8; // short retry limit
49672 +} TX_RTY_CFG_STRUC, *PTX_RTY_CFG_STRUC;
49674 +typedef union PACKED _TX_RTY_CFG_STRUC {
49676 + UINT32 ShortRtyLimit:8; // short retry limit
49677 + UINT32 LongRtyLimit:8; //long retry limit
49678 + UINT32 LongRtyThre:12; // Long retry threshoold
49679 + UINT32 NonAggRtyMode:1; // Non-Aggregate MPDU retry mode. 0:expired by retry limit, 1: expired by mpdu life timer
49680 + UINT32 AggRtyMode:1; // Aggregate MPDU retry mode. 0:expired by retry limit, 1: expired by mpdu life timer
49681 + UINT32 TxautoFBEnable:1; // Tx retry PHY rate auto fallback enable
49682 + UINT32 rsv:1; // 1: HT non-STBC control frame enable
49685 +} TX_RTY_CFG_STRUC, *PTX_RTY_CFG_STRUC;
49687 +#define TX_LINK_CFG 0x1350
49688 +#ifdef RT_BIG_ENDIAN
49689 +typedef union PACKED _TX_LINK_CFG_STRUC {
49691 + UINT32 RemotMFS:8; //remote MCS feedback sequence number
49692 + UINT32 RemotMFB:8; // remote MCS feedback
49694 + UINT32 TxCFAckEn:1; // Piggyback CF-ACK enable
49695 + UINT32 TxRDGEn:1; // RDG TX enable
49696 + UINT32 TxMRQEn:1; // MCS request TX enable
49697 + UINT32 RemoteUMFSEnable:1; // remote unsolicit MFB enable. 0: not apply remote remote unsolicit (MFS=7)
49698 + UINT32 MFBEnable:1; // TX apply remote MFB 1:enable
49699 + UINT32 RemoteMFBLifeTime:8; //remote MFB life time. unit : 32us
49702 +} TX_LINK_CFG_STRUC, *PTX_LINK_CFG_STRUC;
49704 +typedef union PACKED _TX_LINK_CFG_STRUC {
49706 + UINT32 RemoteMFBLifeTime:8; //remote MFB life time. unit : 32us
49707 + UINT32 MFBEnable:1; // TX apply remote MFB 1:enable
49708 + UINT32 RemoteUMFSEnable:1; // remote unsolicit MFB enable. 0: not apply remote remote unsolicit (MFS=7)
49709 + UINT32 TxMRQEn:1; // MCS request TX enable
49710 + UINT32 TxRDGEn:1; // RDG TX enable
49711 + UINT32 TxCFAckEn:1; // Piggyback CF-ACK enable
49713 + UINT32 RemotMFB:8; // remote MCS feedback
49714 + UINT32 RemotMFS:8; //remote MCS feedback sequence number
49717 +} TX_LINK_CFG_STRUC, *PTX_LINK_CFG_STRUC;
49719 +#define HT_FBK_CFG0 0x1354
49720 +#ifdef RT_BIG_ENDIAN
49721 +typedef union PACKED _HT_FBK_CFG0_STRUC {
49723 + UINT32 HTMCS7FBK:4;
49724 + UINT32 HTMCS6FBK:4;
49725 + UINT32 HTMCS5FBK:4;
49726 + UINT32 HTMCS4FBK:4;
49727 + UINT32 HTMCS3FBK:4;
49728 + UINT32 HTMCS2FBK:4;
49729 + UINT32 HTMCS1FBK:4;
49730 + UINT32 HTMCS0FBK:4;
49733 +} HT_FBK_CFG0_STRUC, *PHT_FBK_CFG0_STRUC;
49735 +typedef union PACKED _HT_FBK_CFG0_STRUC {
49737 + UINT32 HTMCS0FBK:4;
49738 + UINT32 HTMCS1FBK:4;
49739 + UINT32 HTMCS2FBK:4;
49740 + UINT32 HTMCS3FBK:4;
49741 + UINT32 HTMCS4FBK:4;
49742 + UINT32 HTMCS5FBK:4;
49743 + UINT32 HTMCS6FBK:4;
49744 + UINT32 HTMCS7FBK:4;
49747 +} HT_FBK_CFG0_STRUC, *PHT_FBK_CFG0_STRUC;
49749 +#define HT_FBK_CFG1 0x1358
49750 +#ifdef RT_BIG_ENDIAN
49751 +typedef union _HT_FBK_CFG1_STRUC {
49753 + UINT32 HTMCS15FBK:4;
49754 + UINT32 HTMCS14FBK:4;
49755 + UINT32 HTMCS13FBK:4;
49756 + UINT32 HTMCS12FBK:4;
49757 + UINT32 HTMCS11FBK:4;
49758 + UINT32 HTMCS10FBK:4;
49759 + UINT32 HTMCS9FBK:4;
49760 + UINT32 HTMCS8FBK:4;
49763 +} HT_FBK_CFG1_STRUC, *PHT_FBK_CFG1_STRUC;
49765 +typedef union _HT_FBK_CFG1_STRUC {
49767 + UINT32 HTMCS8FBK:4;
49768 + UINT32 HTMCS9FBK:4;
49769 + UINT32 HTMCS10FBK:4;
49770 + UINT32 HTMCS11FBK:4;
49771 + UINT32 HTMCS12FBK:4;
49772 + UINT32 HTMCS13FBK:4;
49773 + UINT32 HTMCS14FBK:4;
49774 + UINT32 HTMCS15FBK:4;
49777 +} HT_FBK_CFG1_STRUC, *PHT_FBK_CFG1_STRUC;
49779 +#define LG_FBK_CFG0 0x135c
49780 +#ifdef RT_BIG_ENDIAN
49781 +typedef union _LG_FBK_CFG0_STRUC {
49783 + UINT32 OFDMMCS7FBK:4; //initial value is 6
49784 + UINT32 OFDMMCS6FBK:4; //initial value is 5
49785 + UINT32 OFDMMCS5FBK:4; //initial value is 4
49786 + UINT32 OFDMMCS4FBK:4; //initial value is 3
49787 + UINT32 OFDMMCS3FBK:4; //initial value is 2
49788 + UINT32 OFDMMCS2FBK:4; //initial value is 1
49789 + UINT32 OFDMMCS1FBK:4; //initial value is 0
49790 + UINT32 OFDMMCS0FBK:4; //initial value is 0
49793 +} LG_FBK_CFG0_STRUC, *PLG_FBK_CFG0_STRUC;
49795 +typedef union _LG_FBK_CFG0_STRUC {
49797 + UINT32 OFDMMCS0FBK:4; //initial value is 0
49798 + UINT32 OFDMMCS1FBK:4; //initial value is 0
49799 + UINT32 OFDMMCS2FBK:4; //initial value is 1
49800 + UINT32 OFDMMCS3FBK:4; //initial value is 2
49801 + UINT32 OFDMMCS4FBK:4; //initial value is 3
49802 + UINT32 OFDMMCS5FBK:4; //initial value is 4
49803 + UINT32 OFDMMCS6FBK:4; //initial value is 5
49804 + UINT32 OFDMMCS7FBK:4; //initial value is 6
49807 +} LG_FBK_CFG0_STRUC, *PLG_FBK_CFG0_STRUC;
49809 +#define LG_FBK_CFG1 0x1360
49810 +#ifdef RT_BIG_ENDIAN
49811 +typedef union _LG_FBK_CFG1_STRUC {
49814 + UINT32 CCKMCS3FBK:4; //initial value is 2
49815 + UINT32 CCKMCS2FBK:4; //initial value is 1
49816 + UINT32 CCKMCS1FBK:4; //initial value is 0
49817 + UINT32 CCKMCS0FBK:4; //initial value is 0
49820 +} LG_FBK_CFG1_STRUC, *PLG_FBK_CFG1_STRUC;
49822 +typedef union _LG_FBK_CFG1_STRUC {
49824 + UINT32 CCKMCS0FBK:4; //initial value is 0
49825 + UINT32 CCKMCS1FBK:4; //initial value is 0
49826 + UINT32 CCKMCS2FBK:4; //initial value is 1
49827 + UINT32 CCKMCS3FBK:4; //initial value is 2
49831 +} LG_FBK_CFG1_STRUC, *PLG_FBK_CFG1_STRUC;
49834 +//=======================================================
49835 +//================ Protection Paramater================================
49836 +//=======================================================
49837 +#define CCK_PROT_CFG 0x1364 //CCK Protection
49838 +#define ASIC_SHORTNAV 1
49839 +#define ASIC_LONGNAV 2
49840 +#define ASIC_RTS 1
49841 +#define ASIC_CTS 2
49842 +#ifdef RT_BIG_ENDIAN
49843 +typedef union _PROT_CFG_STRUC {
49846 + UINT32 RTSThEn:1; //RTS threshold enable on CCK TX
49847 + UINT32 TxopAllowGF40:1; //CCK TXOP allowance.0:disallow.
49848 + UINT32 TxopAllowGF20:1; //CCK TXOP allowance.0:disallow.
49849 + UINT32 TxopAllowMM40:1; //CCK TXOP allowance.0:disallow.
49850 + UINT32 TxopAllowMM20:1; //CCK TXOP allowance. 0:disallow.
49851 + UINT32 TxopAllowOfdm:1; //CCK TXOP allowance.0:disallow.
49852 + UINT32 TxopAllowCck:1; //CCK TXOP allowance.0:disallow.
49853 + UINT32 ProtectNav:2; //TXOP protection type for CCK TX. 0:None, 1:ShortNAVprotect, 2:LongNAVProtect, 3:rsv
49854 + UINT32 ProtectCtrl:2; //Protection control frame type for CCK TX. 1:RTS/CTS, 2:CTS-to-self, 0:None, 3:rsv
49855 + UINT32 ProtectRate:16; //Protection control frame rate for CCK TX(RTS/CTS/CFEnd).
49858 +} PROT_CFG_STRUC, *PPROT_CFG_STRUC;
49860 +typedef union _PROT_CFG_STRUC {
49862 + UINT32 ProtectRate:16; //Protection control frame rate for CCK TX(RTS/CTS/CFEnd).
49863 + UINT32 ProtectCtrl:2; //Protection control frame type for CCK TX. 1:RTS/CTS, 2:CTS-to-self, 0:None, 3:rsv
49864 + UINT32 ProtectNav:2; //TXOP protection type for CCK TX. 0:None, 1:ShortNAVprotect, 2:LongNAVProtect, 3:rsv
49865 + UINT32 TxopAllowCck:1; //CCK TXOP allowance.0:disallow.
49866 + UINT32 TxopAllowOfdm:1; //CCK TXOP allowance.0:disallow.
49867 + UINT32 TxopAllowMM20:1; //CCK TXOP allowance. 0:disallow.
49868 + UINT32 TxopAllowMM40:1; //CCK TXOP allowance.0:disallow.
49869 + UINT32 TxopAllowGF20:1; //CCK TXOP allowance.0:disallow.
49870 + UINT32 TxopAllowGF40:1; //CCK TXOP allowance.0:disallow.
49871 + UINT32 RTSThEn:1; //RTS threshold enable on CCK TX
49875 +} PROT_CFG_STRUC, *PPROT_CFG_STRUC;
49878 +#define OFDM_PROT_CFG 0x1368 //OFDM Protection
49879 +#define MM20_PROT_CFG 0x136C //MM20 Protection
49880 +#define MM40_PROT_CFG 0x1370 //MM40 Protection
49881 +#define GF20_PROT_CFG 0x1374 //GF20 Protection
49882 +#define GF40_PROT_CFG 0x1378 //GR40 Protection
49883 +#define EXP_CTS_TIME 0x137C //
49884 +#define EXP_ACK_TIME 0x1380 //
49887 +// 4.4 MAC RX configuration registers (offset:0x1400)
49889 +#define RX_FILTR_CFG 0x1400 //TXRX_CSR0
49890 +#define AUTO_RSP_CFG 0x1404 //TXRX_CSR4
49892 +// TXRX_CSR4: Auto-Responder/
49894 +#ifdef RT_BIG_ENDIAN
49895 +typedef union _AUTO_RSP_CFG_STRUC {
49898 + UINT32 AckCtsPsmBit:1; // Power bit value in conrtrol frame
49899 + UINT32 DualCTSEn:1; // Power bit value in conrtrol frame
49900 + UINT32 rsv:1; // Power bit value in conrtrol frame
49901 + UINT32 AutoResponderPreamble:1; // 0:long, 1:short preamble
49902 + UINT32 CTS40MRef:1; // Response CTS 40MHz duplicate mode
49903 + UINT32 CTS40MMode:1; // Response CTS 40MHz duplicate mode
49904 + UINT32 BACAckPolicyEnable:1; // 0:long, 1:short preamble
49905 + UINT32 AutoResponderEnable:1;
49908 +} AUTO_RSP_CFG_STRUC, *PAUTO_RSP_CFG_STRUC;
49910 +typedef union _AUTO_RSP_CFG_STRUC {
49912 + UINT32 AutoResponderEnable:1;
49913 + UINT32 BACAckPolicyEnable:1; // 0:long, 1:short preamble
49914 + UINT32 CTS40MMode:1; // Response CTS 40MHz duplicate mode
49915 + UINT32 CTS40MRef:1; // Response CTS 40MHz duplicate mode
49916 + UINT32 AutoResponderPreamble:1; // 0:long, 1:short preamble
49917 + UINT32 rsv:1; // Power bit value in conrtrol frame
49918 + UINT32 DualCTSEn:1; // Power bit value in conrtrol frame
49919 + UINT32 AckCtsPsmBit:1; // Power bit value in conrtrol frame
49923 +} AUTO_RSP_CFG_STRUC, *PAUTO_RSP_CFG_STRUC;
49926 +#define LEGACY_BASIC_RATE 0x1408 // TXRX_CSR5 0x3054
49927 +#define HT_BASIC_RATE 0x140c
49928 +#define HT_CTRL_CFG 0x1410
49929 +#define SIFS_COST_CFG 0x1414
49930 +#define RX_PARSER_CFG 0x1418 //Set NAV for all received frames
49933 +// 4.5 MAC Security configuration (offset:0x1500)
49935 +#define TX_SEC_CNT0 0x1500 //
49936 +#define RX_SEC_CNT0 0x1504 //
49937 +#define CCMP_FC_MUTE 0x1508 //
49939 +// 4.6 HCCA/PSMP (offset:0x1600)
49941 +#define TXOP_HLDR_ADDR0 0x1600
49942 +#define TXOP_HLDR_ADDR1 0x1604
49943 +#define TXOP_HLDR_ET 0x1608
49944 +#define QOS_CFPOLL_RA_DW0 0x160c
49945 +#define QOS_CFPOLL_A1_DW1 0x1610
49946 +#define QOS_CFPOLL_QC 0x1614
49948 +// 4.7 MAC Statistis registers (offset:0x1700)
49950 +#define RX_STA_CNT0 0x1700 //
49951 +#define RX_STA_CNT1 0x1704 //
49952 +#define RX_STA_CNT2 0x1708 //
49955 +// RX_STA_CNT0_STRUC: RX PLCP error count & RX CRC error count
49957 +#ifdef RT_BIG_ENDIAN
49958 +typedef union _RX_STA_CNT0_STRUC {
49964 +} RX_STA_CNT0_STRUC, *PRX_STA_CNT0_STRUC;
49966 +typedef union _RX_STA_CNT0_STRUC {
49972 +} RX_STA_CNT0_STRUC, *PRX_STA_CNT0_STRUC;
49976 +// RX_STA_CNT1_STRUC: RX False CCA count & RX LONG frame count
49978 +#ifdef RT_BIG_ENDIAN
49979 +typedef union _RX_STA_CNT1_STRUC {
49985 +} RX_STA_CNT1_STRUC, *PRX_STA_CNT1_STRUC;
49987 +typedef union _RX_STA_CNT1_STRUC {
49993 +} RX_STA_CNT1_STRUC, *PRX_STA_CNT1_STRUC;
49997 +// RX_STA_CNT2_STRUC:
49999 +#ifdef RT_BIG_ENDIAN
50000 +typedef union _RX_STA_CNT2_STRUC {
50002 + USHORT RxFifoOverflowCount;
50003 + USHORT RxDupliCount;
50006 +} RX_STA_CNT2_STRUC, *PRX_STA_CNT2_STRUC;
50008 +typedef union _RX_STA_CNT2_STRUC {
50010 + USHORT RxDupliCount;
50011 + USHORT RxFifoOverflowCount;
50014 +} RX_STA_CNT2_STRUC, *PRX_STA_CNT2_STRUC;
50016 +#define TX_STA_CNT0 0x170C //
50018 +// STA_CSR3: TX Beacon count
50020 +#ifdef RT_BIG_ENDIAN
50021 +typedef union _TX_STA_CNT0_STRUC {
50023 + USHORT TxBeaconCount;
50024 + USHORT TxFailCount;
50027 +} TX_STA_CNT0_STRUC, *PTX_STA_CNT0_STRUC;
50029 +typedef union _TX_STA_CNT0_STRUC {
50031 + USHORT TxFailCount;
50032 + USHORT TxBeaconCount;
50035 +} TX_STA_CNT0_STRUC, *PTX_STA_CNT0_STRUC;
50037 +#define TX_STA_CNT1 0x1710 //
50039 +// TX_STA_CNT1: TX tx count
50041 +#ifdef RT_BIG_ENDIAN
50042 +typedef union _TX_STA_CNT1_STRUC {
50044 + USHORT TxRetransmit;
50045 + USHORT TxSuccess;
50048 +} TX_STA_CNT1_STRUC, *PTX_STA_CNT1_STRUC;
50050 +typedef union _TX_STA_CNT1_STRUC {
50052 + USHORT TxSuccess;
50053 + USHORT TxRetransmit;
50056 +} TX_STA_CNT1_STRUC, *PTX_STA_CNT1_STRUC;
50058 +#define TX_STA_CNT2 0x1714 //
50060 +// TX_STA_CNT2: TX tx count
50062 +#ifdef RT_BIG_ENDIAN
50063 +typedef union _TX_STA_CNT2_STRUC {
50065 + USHORT TxUnderFlowCount;
50066 + USHORT TxZeroLenCount;
50069 +} TX_STA_CNT2_STRUC, *PTX_STA_CNT2_STRUC;
50071 +typedef union _TX_STA_CNT2_STRUC {
50073 + USHORT TxZeroLenCount;
50074 + USHORT TxUnderFlowCount;
50077 +} TX_STA_CNT2_STRUC, *PTX_STA_CNT2_STRUC;
50079 +#define TX_STA_FIFO 0x1718 //
50081 +// TX_STA_FIFO_STRUC: TX Result for specific PID status fifo register
50083 +#ifdef RT_BIG_ENDIAN
50084 +typedef union PACKED _TX_STA_FIFO_STRUC {
50086 + UINT32 Reserve:2;
50087 + UINT32 TxBF:1; // 3*3
50088 + UINT32 SuccessRate:13; //include MCS, mode ,shortGI, BW settingSame format as TXWI Word 0 Bit 31-16.
50089 +// UINT32 SuccessRate:16; //include MCS, mode ,shortGI, BW settingSame format as TXWI Word 0 Bit 31-16.
50090 + UINT32 wcid:8; //wireless client index
50091 + UINT32 TxAckRequired:1; // ack required
50092 + UINT32 TxAggre:1; // Tx is aggregated
50093 + UINT32 TxSuccess:1; // Tx success. whether success or not
50094 + UINT32 PidType:4;
50095 + UINT32 bValid:1; // 1:This register contains a valid TX result
50098 +} TX_STA_FIFO_STRUC, *PTX_STA_FIFO_STRUC;
50100 +typedef union PACKED _TX_STA_FIFO_STRUC {
50102 + UINT32 bValid:1; // 1:This register contains a valid TX result
50103 + UINT32 PidType:4;
50104 + UINT32 TxSuccess:1; // Tx No retry success
50105 + UINT32 TxAggre:1; // Tx Retry Success
50106 + UINT32 TxAckRequired:1; // Tx fail
50107 + UINT32 wcid:8; //wireless client index
50108 +// UINT32 SuccessRate:16; //include MCS, mode ,shortGI, BW settingSame format as TXWI Word 0 Bit 31-16.
50109 + UINT32 SuccessRate:13; //include MCS, mode ,shortGI, BW settingSame format as TXWI Word 0 Bit 31-16.
50111 + UINT32 Reserve:2;
50114 +} TX_STA_FIFO_STRUC, *PTX_STA_FIFO_STRUC;
50117 +#define TX_AGG_CNT 0x171c
50118 +#ifdef RT_BIG_ENDIAN
50119 +typedef union _TX_AGG_CNT_STRUC {
50121 + USHORT AggTxCount;
50122 + USHORT NonAggTxCount;
50125 +} TX_AGG_CNT_STRUC, *PTX_AGG_CNT_STRUC;
50127 +typedef union _TX_AGG_CNT_STRUC {
50129 + USHORT NonAggTxCount;
50130 + USHORT AggTxCount;
50133 +} TX_AGG_CNT_STRUC, *PTX_AGG_CNT_STRUC;
50136 +#define TX_AGG_CNT0 0x1720
50137 +#ifdef RT_BIG_ENDIAN
50138 +typedef union _TX_AGG_CNT0_STRUC {
50140 + USHORT AggSize2Count;
50141 + USHORT AggSize1Count;
50144 +} TX_AGG_CNT0_STRUC, *PTX_AGG_CNT0_STRUC;
50146 +typedef union _TX_AGG_CNT0_STRUC {
50148 + USHORT AggSize1Count;
50149 + USHORT AggSize2Count;
50152 +} TX_AGG_CNT0_STRUC, *PTX_AGG_CNT0_STRUC;
50155 +#define TX_AGG_CNT1 0x1724
50156 +#ifdef RT_BIG_ENDIAN
50157 +typedef union _TX_AGG_CNT1_STRUC {
50159 + USHORT AggSize4Count;
50160 + USHORT AggSize3Count;
50163 +} TX_AGG_CNT1_STRUC, *PTX_AGG_CNT1_STRUC;
50165 +typedef union _TX_AGG_CNT1_STRUC {
50167 + USHORT AggSize3Count;
50168 + USHORT AggSize4Count;
50171 +} TX_AGG_CNT1_STRUC, *PTX_AGG_CNT1_STRUC;
50173 +#define TX_AGG_CNT2 0x1728
50174 +#ifdef RT_BIG_ENDIAN
50175 +typedef union _TX_AGG_CNT2_STRUC {
50177 + USHORT AggSize6Count;
50178 + USHORT AggSize5Count;
50181 +} TX_AGG_CNT2_STRUC, *PTX_AGG_CNT2_STRUC;
50183 +typedef union _TX_AGG_CNT2_STRUC {
50185 + USHORT AggSize5Count;
50186 + USHORT AggSize6Count;
50189 +} TX_AGG_CNT2_STRUC, *PTX_AGG_CNT2_STRUC;
50192 +#define TX_AGG_CNT3 0x172c
50193 +#ifdef RT_BIG_ENDIAN
50194 +typedef union _TX_AGG_CNT3_STRUC {
50196 + USHORT AggSize8Count;
50197 + USHORT AggSize7Count;
50200 +} TX_AGG_CNT3_STRUC, *PTX_AGG_CNT3_STRUC;
50202 +typedef union _TX_AGG_CNT3_STRUC {
50204 + USHORT AggSize7Count;
50205 + USHORT AggSize8Count;
50208 +} TX_AGG_CNT3_STRUC, *PTX_AGG_CNT3_STRUC;
50211 +#define TX_AGG_CNT4 0x1730
50212 +#ifdef RT_BIG_ENDIAN
50213 +typedef union _TX_AGG_CNT4_STRUC {
50215 + USHORT AggSize10Count;
50216 + USHORT AggSize9Count;
50219 +} TX_AGG_CNT4_STRUC, *PTX_AGG_CNT4_STRUC;
50221 +typedef union _TX_AGG_CNT4_STRUC {
50223 + USHORT AggSize9Count;
50224 + USHORT AggSize10Count;
50227 +} TX_AGG_CNT4_STRUC, *PTX_AGG_CNT4_STRUC;
50229 +#define TX_AGG_CNT5 0x1734
50230 +#ifdef RT_BIG_ENDIAN
50231 +typedef union _TX_AGG_CNT5_STRUC {
50233 + USHORT AggSize12Count;
50234 + USHORT AggSize11Count;
50237 +} TX_AGG_CNT5_STRUC, *PTX_AGG_CNT5_STRUC;
50239 +typedef union _TX_AGG_CNT5_STRUC {
50241 + USHORT AggSize11Count;
50242 + USHORT AggSize12Count;
50245 +} TX_AGG_CNT5_STRUC, *PTX_AGG_CNT5_STRUC;
50247 +#define TX_AGG_CNT6 0x1738
50248 +#ifdef RT_BIG_ENDIAN
50249 +typedef union _TX_AGG_CNT6_STRUC {
50251 + USHORT AggSize14Count;
50252 + USHORT AggSize13Count;
50255 +} TX_AGG_CNT6_STRUC, *PTX_AGG_CNT6_STRUC;
50257 +typedef union _TX_AGG_CNT6_STRUC {
50259 + USHORT AggSize13Count;
50260 + USHORT AggSize14Count;
50263 +} TX_AGG_CNT6_STRUC, *PTX_AGG_CNT6_STRUC;
50265 +#define TX_AGG_CNT7 0x173c
50266 +#ifdef RT_BIG_ENDIAN
50267 +typedef union _TX_AGG_CNT7_STRUC {
50269 + USHORT AggSize16Count;
50270 + USHORT AggSize15Count;
50273 +} TX_AGG_CNT7_STRUC, *PTX_AGG_CNT7_STRUC;
50275 +typedef union _TX_AGG_CNT7_STRUC {
50277 + USHORT AggSize15Count;
50278 + USHORT AggSize16Count;
50281 +} TX_AGG_CNT7_STRUC, *PTX_AGG_CNT7_STRUC;
50283 +#define MPDU_DENSITY_CNT 0x1740
50284 +#ifdef RT_BIG_ENDIAN
50285 +typedef union _MPDU_DEN_CNT_STRUC {
50287 + USHORT RXZeroDelCount; //RX zero length delimiter count
50288 + USHORT TXZeroDelCount; //TX zero length delimiter count
50291 +} MPDU_DEN_CNT_STRUC, *PMPDU_DEN_CNT_STRUC;
50293 +typedef union _MPDU_DEN_CNT_STRUC {
50295 + USHORT TXZeroDelCount; //TX zero length delimiter count
50296 + USHORT RXZeroDelCount; //RX zero length delimiter count
50299 +} MPDU_DEN_CNT_STRUC, *PMPDU_DEN_CNT_STRUC;
50302 +// TXRX control registers - base address 0x3000
50304 +// rt2860b UNKNOWN reg use R/O Reg Addr 0x77d0 first..
50305 +#define TXRX_CSR1 0x77d0
50308 +// Security key table memory, base address = 0x1000
50310 +#define MAC_WCID_BASE 0x1800 //8-bytes(use only 6-bytes) * 256 entry =
50311 +#define HW_WCID_ENTRY_SIZE 8
50312 +#define PAIRWISE_KEY_TABLE_BASE 0x4000 // 32-byte * 256-entry = -byte
50313 +#define HW_KEY_ENTRY_SIZE 0x20
50314 +#define PAIRWISE_IVEIV_TABLE_BASE 0x6000 // 8-byte * 256-entry = -byte
50315 +#define MAC_IVEIV_TABLE_BASE 0x6000 // 8-byte * 256-entry = -byte
50316 +#define HW_IVEIV_ENTRY_SIZE 8
50317 +#define MAC_WCID_ATTRIBUTE_BASE 0x6800 // 4-byte * 256-entry = -byte
50318 +#define HW_WCID_ATTRI_SIZE 4
50319 +#define WCID_RESERVED 0x6bfc
50320 +#define SHARED_KEY_TABLE_BASE 0x6c00 // 32-byte * 16-entry = 512-byte
50321 +#define SHARED_KEY_MODE_BASE 0x7000 // 32-byte * 16-entry = 512-byte
50322 +#define HW_SHARED_KEY_MODE_SIZE 4
50323 +#define SHAREDKEYTABLE 0
50324 +#define PAIRWISEKEYTABLE 1
50327 +#ifdef RT_BIG_ENDIAN
50328 +typedef union _SHAREDKEY_MODE_STRUC {
50331 + UINT32 Bss1Key3CipherAlg:3;
50333 + UINT32 Bss1Key2CipherAlg:3;
50335 + UINT32 Bss1Key1CipherAlg:3;
50337 + UINT32 Bss1Key0CipherAlg:3;
50339 + UINT32 Bss0Key3CipherAlg:3;
50341 + UINT32 Bss0Key2CipherAlg:3;
50343 + UINT32 Bss0Key1CipherAlg:3;
50345 + UINT32 Bss0Key0CipherAlg:3;
50348 +} SHAREDKEY_MODE_STRUC, *PSHAREDKEY_MODE_STRUC;
50350 +typedef union _SHAREDKEY_MODE_STRUC {
50352 + UINT32 Bss0Key0CipherAlg:3;
50354 + UINT32 Bss0Key1CipherAlg:3;
50356 + UINT32 Bss0Key2CipherAlg:3;
50358 + UINT32 Bss0Key3CipherAlg:3;
50360 + UINT32 Bss1Key0CipherAlg:3;
50362 + UINT32 Bss1Key1CipherAlg:3;
50364 + UINT32 Bss1Key2CipherAlg:3;
50366 + UINT32 Bss1Key3CipherAlg:3;
50370 +} SHAREDKEY_MODE_STRUC, *PSHAREDKEY_MODE_STRUC;
50372 +// 64-entry for pairwise key table
50373 +typedef struct _HW_WCID_ENTRY { // 8-byte per entry
50374 + UCHAR Address[6];
50376 +} HW_WCID_ENTRY, PHW_WCID_ENTRY;
50381 +// Other on-chip shared memory space, base = 0x2000
50384 +// CIS space - base address = 0x2000
50385 +#define HW_CIS_BASE 0x2000
50387 +// Carrier-sense CTS frame base address. It's where mac stores carrier-sense frame for carrier-sense function.
50388 +#define HW_CS_CTS_BASE 0x7700
50389 +// DFS CTS frame base address. It's where mac stores CTS frame for DFS.
50390 +#define HW_DFS_CTS_BASE 0x7780
50391 +#define HW_CTS_FRAME_SIZE 0x80
50393 +// 2004-11-08 john - since NULL frame won't be that long (256 byte). We steal 16 tail bytes
50394 +// to save debugging settings
50395 +#define HW_DEBUG_SETTING_BASE 0x77f0 // 0x77f0~0x77ff total 16 bytes
50396 +#define HW_DEBUG_SETTING_BASE2 0x7770 // 0x77f0~0x77ff total 16 bytes
50398 +// In order to support maximum 8 MBSS and its maximum length is 512 for each beacon
50399 +// Three section discontinue memory segments will be used.
50400 +// 1. The original region for BCN 0~3
50401 +// 2. Extract memory from FCE table for BCN 4~5
50402 +// 3. Extract memory from Pair-wise key table for BCN 6~7
50403 +// It occupied those memory of wcid 238~253 for BCN 6
50404 +// and wcid 222~237 for BCN 7
50405 +#define HW_BEACON_MAX_SIZE 0x1000 /* unit: byte */
50406 +#define HW_BEACON_BASE0 0x7800
50407 +#define HW_BEACON_BASE1 0x7A00
50408 +#define HW_BEACON_BASE2 0x7C00
50409 +#define HW_BEACON_BASE3 0x7E00
50410 +#define HW_BEACON_BASE4 0x7200
50411 +#define HW_BEACON_BASE5 0x7400
50412 +#define HW_BEACON_BASE6 0x5DC0
50413 +#define HW_BEACON_BASE7 0x5BC0
50415 +#define HW_BEACON_MAX_COUNT 8
50416 +#define HW_BEACON_OFFSET 0x0200
50417 +#define HW_BEACON_CONTENT_LEN (HW_BEACON_OFFSET - TXWI_SIZE)
50419 +// HOST-MCU shared memory - base address = 0x2100
50420 +#define HOST_CMD_CSR 0x404
50421 +#define H2M_MAILBOX_CSR 0x7010
50422 +#define H2M_MAILBOX_CID 0x7014
50423 +#define H2M_MAILBOX_STATUS 0x701c
50424 +#define H2M_INT_SRC 0x7024
50425 +#define H2M_BBP_AGENT 0x7028
50426 +#define M2H_CMD_DONE_CSR 0x000c
50427 +#define MCU_TXOP_ARRAY_BASE 0x000c // TODO: to be provided by Albert
50428 +#define MCU_TXOP_ENTRY_SIZE 32 // TODO: to be provided by Albert
50429 +#define MAX_NUM_OF_TXOP_ENTRY 16 // TODO: must be same with 8051 firmware
50430 +#define MCU_MBOX_VERSION 0x01 // TODO: to be confirmed by Albert
50431 +#define MCU_MBOX_VERSION_OFFSET 5 // TODO: to be provided by Albert
50434 +// Host DMA registers - base address 0x200 . TX0-3=EDCAQid0-3, TX4=HCCA, TX5=MGMT,
50437 +// DMA RING DESCRIPTOR
50439 +#define E2PROM_CSR 0x0004
50440 +#define IO_CNTL_CSR 0x77d0
50443 +// 8051 firmware image for usb - use last-half base address = 0x3000
50444 +#define FIRMWARE_IMAGE_BASE 0x3000
50445 +#define MAX_FIRMWARE_IMAGE_SIZE 0x1000 // 4kbyte
50446 +#endif // RT2870 //
50448 +// TODO: ????? old RT2560 registers. to keep them or remove them?
50449 +//#define MCAST0 0x0178 // multicast filter register 0
50450 +//#define MCAST1 0x017c // multicast filter register 1
50453 +// ================================================================
50454 +// Tx / Rx / Mgmt ring descriptor definition
50455 +// ================================================================
50457 +// the following PID values are used to mark outgoing frame type in TXD->PID so that
50458 +// proper TX statistics can be collected based on these categories
50459 +// b3-2 of PID field -
50460 +#define PID_MGMT 0x05
50461 +#define PID_BEACON 0x0c
50462 +#define PID_DATA_NORMALUCAST 0x02
50463 +#define PID_DATA_AMPDU 0x04
50464 +#define PID_DATA_NO_ACK 0x08
50465 +#define PID_DATA_NOT_NORM_ACK 0x03
50466 +// value domain of pTxD->HostQId (4-bit: 0~15)
50467 +#define QID_AC_BK 1 // meet ACI definition in 802.11e
50468 +#define QID_AC_BE 0 // meet ACI definition in 802.11e
50469 +#define QID_AC_VI 2
50470 +#define QID_AC_VO 3
50471 +#define QID_HCCA 4
50472 +#define NUM_OF_TX_RING 5
50473 +#define QID_MGMT 13
50475 +#define QID_OTHER 15
50478 +// ------------------------------------------------------
50479 +// BBP & RF definition
50480 +// ------------------------------------------------------
50517 +#define BBP_R0 0 // version
50518 +#define BBP_R1 1 // TSSI
50519 +#define BBP_R2 2 // TX configure
50524 +#define BBP_R14 14 // RX configure
50525 +#define BBP_R16 16
50526 +#define BBP_R17 17 // RX sensibility
50527 +#define BBP_R18 18
50528 +#define BBP_R21 21
50529 +#define BBP_R22 22
50530 +#define BBP_R24 24
50531 +#define BBP_R25 25
50532 +#define BBP_R31 31
50533 +#define BBP_R49 49 //TSSI
50534 +#define BBP_R50 50
50535 +#define BBP_R51 51
50536 +#define BBP_R52 52
50537 +#define BBP_R55 55
50538 +#define BBP_R62 62 // Rx SQ0 Threshold HIGH
50539 +#define BBP_R63 63
50540 +#define BBP_R64 64
50541 +#define BBP_R65 65
50542 +#define BBP_R66 66
50543 +#define BBP_R67 67
50544 +#define BBP_R68 68
50545 +#define BBP_R69 69
50546 +#define BBP_R70 70 // Rx AGC SQ CCK Xcorr threshold
50547 +#define BBP_R73 73
50548 +#define BBP_R75 75
50549 +#define BBP_R77 77
50550 +#define BBP_R79 79
50551 +#define BBP_R80 80
50552 +#define BBP_R81 81
50553 +#define BBP_R82 82
50554 +#define BBP_R83 83
50555 +#define BBP_R84 84
50556 +#define BBP_R86 86
50557 +#define BBP_R91 91
50558 +#define BBP_R92 92
50559 +#define BBP_R94 94 // Tx Gain Control
50560 +#define BBP_R103 103
50561 +#define BBP_R105 105
50562 +#define BBP_R113 113
50563 +#define BBP_R114 114
50564 +#define BBP_R115 115
50565 +#define BBP_R116 116
50566 +#define BBP_R117 117
50567 +#define BBP_R118 118
50568 +#define BBP_R119 119
50569 +#define BBP_R120 120
50570 +#define BBP_R121 121
50571 +#define BBP_R122 122
50572 +#define BBP_R123 123
50574 +#define BBP_R138 138 // add by johnli, RF power sequence setup, ADC dynamic on/off control
50575 +#endif // RT30xx //
50578 +#define BBPR94_DEFAULT 0x06 // Add 1 value will gain 1db
50580 +//#define PHY_TR_SWITCH_TIME 5 // usec
50582 +//#define BBP_R17_LOW_SENSIBILITY 0x50
50583 +//#define BBP_R17_MID_SENSIBILITY 0x41
50584 +//#define BBP_R17_DYNAMIC_UP_BOUND 0x40
50585 +#define RSSI_FOR_VERY_LOW_SENSIBILITY -35
50586 +#define RSSI_FOR_LOW_SENSIBILITY -58
50587 +#define RSSI_FOR_MID_LOW_SENSIBILITY -80
50588 +#define RSSI_FOR_MID_SENSIBILITY -90
50590 +//-------------------------------------------------------------------------
50591 +// EEPROM definition
50592 +//-------------------------------------------------------------------------
50599 +#define EEPROM_WRITE_OPCODE 0x05
50600 +#define EEPROM_READ_OPCODE 0x06
50601 +#define EEPROM_EWDS_OPCODE 0x10
50602 +#define EEPROM_EWEN_OPCODE 0x13
50604 +#define NUM_EEPROM_BBP_PARMS 19 // Include NIC Config 0, 1, CR, TX ALC step, BBPs
50605 +#define NUM_EEPROM_TX_G_PARMS 7
50606 +#define EEPROM_NIC1_OFFSET 0x34 // The address is from NIC config 0, not BBP register ID
50607 +#define EEPROM_NIC2_OFFSET 0x36 // The address is from NIC config 0, not BBP register ID
50608 +#define EEPROM_BBP_BASE_OFFSET 0xf0 // The address is from NIC config 0, not BBP register ID
50609 +#define EEPROM_G_TX_PWR_OFFSET 0x52
50610 +#define EEPROM_G_TX2_PWR_OFFSET 0x60
50611 +#define EEPROM_LED1_OFFSET 0x3c
50612 +#define EEPROM_LED2_OFFSET 0x3e
50613 +#define EEPROM_LED3_OFFSET 0x40
50614 +#define EEPROM_LNA_OFFSET 0x44
50615 +#define EEPROM_RSSI_BG_OFFSET 0x46
50616 +#define EEPROM_RSSI_A_OFFSET 0x4a
50617 +#define EEPROM_DEFINE_MAX_TXPWR 0x4e
50618 +#define EEPROM_TXPOWER_BYRATE_20MHZ_2_4G 0xde // 20MHZ 2.4G tx power.
50619 +#define EEPROM_TXPOWER_BYRATE_40MHZ_2_4G 0xee // 40MHZ 2.4G tx power.
50620 +#define EEPROM_TXPOWER_BYRATE_20MHZ_5G 0xfa // 20MHZ 5G tx power.
50621 +#define EEPROM_TXPOWER_BYRATE_40MHZ_5G 0x10a // 40MHZ 5G tx power.
50622 +#define EEPROM_A_TX_PWR_OFFSET 0x78
50623 +#define EEPROM_A_TX2_PWR_OFFSET 0xa6
50624 +//#define EEPROM_Japan_TX_PWR_OFFSET 0x90 // 802.11j
50625 +//#define EEPROM_Japan_TX2_PWR_OFFSET 0xbe
50626 +//#define EEPROM_TSSI_REF_OFFSET 0x54
50627 +//#define EEPROM_TSSI_DELTA_OFFSET 0x24
50628 +//#define EEPROM_CCK_TX_PWR_OFFSET 0x62
50629 +//#define EEPROM_CALIBRATE_OFFSET 0x7c
50630 +#define EEPROM_VERSION_OFFSET 0x02
50631 +#define EEPROM_FREQ_OFFSET 0x3a
50632 +#define EEPROM_TXPOWER_BYRATE 0xde // 20MHZ power.
50633 +#define EEPROM_TXPOWER_DELTA 0x50 // 20MHZ AND 40 MHZ use different power. This is delta in 40MHZ.
50634 +#define VALID_EEPROM_VERSION 1
50636 +// PairKeyMode definition
50637 +#define PKMODE_NONE 0
50638 +#define PKMODE_WEP64 1
50639 +#define PKMODE_WEP128 2
50640 +#define PKMODE_TKIP 3
50641 +#define PKMODE_AES 4
50642 +#define PKMODE_CKIP64 5
50643 +#define PKMODE_CKIP128 6
50644 +#define PKMODE_TKIP_NO_MIC 7 // MIC appended by driver: not a valid value in hardware key table
50646 +// =================================================================================
50648 +// =================================================================================
50649 +//7.1 WCID ENTRY format : 8bytes
50650 +typedef struct _WCID_ENTRY_STRUC {
50651 + UCHAR RXBABitmap7; // bit0 for TID8, bit7 for TID 15
50652 + UCHAR RXBABitmap0; // bit0 for TID0, bit7 for TID 7
50653 + UCHAR MAC[6]; // 0 for shared key table. 1 for pairwise key table
50654 +} WCID_ENTRY_STRUC, *PWCID_ENTRY_STRUC;
50656 +//8.1.1 SECURITY KEY format : 8DW
50657 +// 32-byte per entry, total 16-entry for shared key table, 64-entry for pairwise key table
50658 +typedef struct _HW_KEY_ENTRY { // 32-byte per entry
50662 +} HW_KEY_ENTRY, *PHW_KEY_ENTRY;
50664 +//8.1.2 IV/EIV format : 2DW
50666 +//8.1.3 RX attribute entry format : 1DW
50667 +#ifdef RT_BIG_ENDIAN
50668 +typedef struct _MAC_ATTRIBUTE_STRUC {
50670 + UINT32 RXWIUDF:3;
50671 + UINT32 BSSIDIdx:3; //multipleBSS index for the WCID
50672 + UINT32 PairKeyMode:3;
50673 + UINT32 KeyTab:1; // 0 for shared key table. 1 for pairwise key table
50674 +} MAC_ATTRIBUTE_STRUC, *PMAC_ATTRIBUTE_STRUC;
50676 +typedef struct _MAC_ATTRIBUTE_STRUC {
50677 + UINT32 KeyTab:1; // 0 for shared key table. 1 for pairwise key table
50678 + UINT32 PairKeyMode:3;
50679 + UINT32 BSSIDIdx:3; //multipleBSS index for the WCID
50680 + UINT32 RXWIUDF:3;
50682 +} MAC_ATTRIBUTE_STRUC, *PMAC_ATTRIBUTE_STRUC;
50686 +// =================================================================================
50687 +// TX / RX ring descriptor format
50688 +// =================================================================================
50690 +// the first 24-byte in TXD is called TXINFO and will be DMAed to MAC block through TXFIFO.
50691 +// MAC block use this TXINFO to control the transmission behavior of this frame.
50692 +#define FIFO_MGMT 0
50693 +#define FIFO_HCCA 1
50694 +#define FIFO_EDCA 2
50697 +// TX descriptor format, Tx ring, Mgmt Ring
50699 +#ifdef RT_BIG_ENDIAN
50700 +typedef struct PACKED _TXD_STRUC {
50704 + UINT32 DMADONE:1;
50705 + UINT32 LastSec0:1;
50706 + UINT32 SDLen0:14;
50708 + UINT32 LastSec1:1;
50709 + UINT32 SDLen1:14;
50717 + UINT32 QSEL:2; // select on-chip FIFO ID for 2nd-stage output scheduler.0:MGMT, 1:HCCA 2:EDCA
50718 + UINT32 WIV:1; // Wireless Info Valid. 1 if Driver already fill WI, o if DMA needs to copy WI to correctposition
50720 +} TXD_STRUC, *PTXD_STRUC;
50722 +typedef struct PACKED _TXD_STRUC {
50726 + UINT32 SDLen1:14;
50727 + UINT32 LastSec1:1;
50729 + UINT32 SDLen0:14;
50730 + UINT32 LastSec0:1;
50731 + UINT32 DMADONE:1;
50736 + UINT32 WIV:1; // Wireless Info Valid. 1 if Driver already fill WI, o if DMA needs to copy WI to correctposition
50737 + UINT32 QSEL:2; // select on-chip FIFO ID for 2nd-stage output scheduler.0:MGMT, 1:HCCA 2:EDCA
50742 +} TXD_STRUC, *PTXD_STRUC;
50747 +// TXD Wireless Information format for Tx ring and Mgmt Ring
50749 +//txop : for txop mode
50750 +// 0:txop for the MPDU frame will be handles by ASIC by register
50751 +// 1/2/3:the MPDU frame is send after PIFS/backoff/SIFS
50752 +#ifdef RT_BIG_ENDIAN
50753 +typedef struct PACKED _TXWI_STRUC {
50755 + UINT32 PHYMODE:2;
50756 + UINT32 TxBF:1; // 3*3
50760 + UINT32 STBC:2; //channel bandwidth 20MHz or 40 MHz
50761 + UINT32 ShortGI:1;
50762 + UINT32 BW:1; //channel bandwidth 20MHz or 40 MHz
50766 + UINT32 txop:2; //tx back off mode 0:HT TXOP rule , 1:PIFS TX ,2:Backoff, 3:sifs only when previous frame exchange is successful.
50767 + UINT32 MpduDensity:3;
50772 + UINT32 MIMOps:1; // the remote peer is in dynamic MIMO-PS mode
50773 + UINT32 FRAG:1; // 1 to inform TKIP engine this is a fragment.
50775 + UINT32 PacketId:4;
50776 + UINT32 MPDUtotalByteCount:12;
50777 + UINT32 WirelessCliID:8;
50778 + UINT32 BAWinSize:6;
50785 +} TXWI_STRUC, *PTXWI_STRUC;
50787 +typedef struct PACKED _TXWI_STRUC {
50789 + UINT32 FRAG:1; // 1 to inform TKIP engine this is a fragment.
50790 + UINT32 MIMOps:1; // the remote peer is in dynamic MIMO-PS mode
50795 + UINT32 MpduDensity:3;
50796 + UINT32 txop:2; //FOR "THIS" frame. 0:HT TXOP rule , 1:PIFS TX ,2:Backoff, 3:sifs only when previous frame exchange is successful.
50800 + UINT32 BW:1; //channel bandwidth 20MHz or 40 MHz
50801 + UINT32 ShortGI:1;
50802 + UINT32 STBC:2; // 1: STBC support MCS =0-7, 2,3 : RESERVE
50804 +// UINT32 rsv2:2; //channel bandwidth 20MHz or 40 MHz
50806 + UINT32 TxBF:1; // 3*3
50807 + UINT32 PHYMODE:2;
50811 + UINT32 BAWinSize:6;
50812 + UINT32 WirelessCliID:8;
50813 + UINT32 MPDUtotalByteCount:12;
50814 + UINT32 PacketId:4;
50819 +} TXWI_STRUC, *PTXWI_STRUC;
50822 +// Rx descriptor format, Rx Ring
50825 +// RXWI wireless information format, in PBF. invisible in driver.
50827 +#ifdef RT_BIG_ENDIAN
50828 +typedef struct PACKED _RXWI_STRUC {
50831 + UINT32 MPDUtotalByteCount:12;
50834 + UINT32 KeyIndex:2;
50835 + UINT32 WirelessCliID:8;
50837 + UINT32 PHYMODE:2; // 1: this RX frame is unicast to me
50840 + UINT32 ShortGI:1;
50843 + UINT32 SEQUENCE:12;
50854 +} RXWI_STRUC, *PRXWI_STRUC;
50856 +typedef struct PACKED _RXWI_STRUC {
50858 + UINT32 WirelessCliID:8;
50859 + UINT32 KeyIndex:2;
50862 + UINT32 MPDUtotalByteCount:12;
50866 + UINT32 SEQUENCE:12;
50869 + UINT32 ShortGI:1;
50872 + UINT32 PHYMODE:2; // 1: this RX frame is unicast to me
50882 +} RXWI_STRUC, *PRXWI_STRUC;
50886 +// =================================================================================
50887 +// HOST-MCU communication data structure
50888 +// =================================================================================
50891 +// H2M_MAILBOX_CSR: Host-to-MCU Mailbox
50893 +#ifdef RT_BIG_ENDIAN
50894 +typedef union _H2M_MAILBOX_STRUC {
50897 + UINT32 CmdToken:8; // 0xff tells MCU not to report CmdDoneInt after excuting the command
50898 + UINT32 HighByte:8;
50899 + UINT32 LowByte:8;
50902 +} H2M_MAILBOX_STRUC, *PH2M_MAILBOX_STRUC;
50904 +typedef union _H2M_MAILBOX_STRUC {
50906 + UINT32 LowByte:8;
50907 + UINT32 HighByte:8;
50908 + UINT32 CmdToken:8;
50912 +} H2M_MAILBOX_STRUC, *PH2M_MAILBOX_STRUC;
50916 +// M2H_CMD_DONE_CSR: MCU-to-Host command complete indication
50918 +#ifdef RT_BIG_ENDIAN
50919 +typedef union _M2H_CMD_DONE_STRUC {
50921 + UINT32 CmdToken3;
50922 + UINT32 CmdToken2;
50923 + UINT32 CmdToken1;
50924 + UINT32 CmdToken0;
50927 +} M2H_CMD_DONE_STRUC, *PM2H_CMD_DONE_STRUC;
50929 +typedef union _M2H_CMD_DONE_STRUC {
50931 + UINT32 CmdToken0;
50932 + UINT32 CmdToken1;
50933 + UINT32 CmdToken2;
50934 + UINT32 CmdToken3;
50937 +} M2H_CMD_DONE_STRUC, *PM2H_CMD_DONE_STRUC;
50943 +// MCU_LEDCS: MCU LED Control Setting.
50945 +#ifdef RT_BIG_ENDIAN
50946 +typedef union _MCU_LEDCS_STRUC {
50948 + UCHAR Polarity:1;
50952 +} MCU_LEDCS_STRUC, *PMCU_LEDCS_STRUC;
50954 +typedef union _MCU_LEDCS_STRUC {
50957 + UCHAR Polarity:1;
50960 +} MCU_LEDCS_STRUC, *PMCU_LEDCS_STRUC;
50962 +// =================================================================================
50963 +// Register format
50964 +// =================================================================================
50968 +//NAV_TIME_CFG :NAV
50969 +#ifdef RT_BIG_ENDIAN
50970 +typedef union _NAV_TIME_CFG_STRUC {
50973 + USHORT ZeroSifs:1; // Applied zero SIFS timer after OFDM RX 0: disable
50974 + USHORT Eifs:9; // in unit of 1-us
50975 + UCHAR SlotTime; // in unit of 1-us
50976 + UCHAR Sifs; // in unit of 1-us
50979 +} NAV_TIME_CFG_STRUC, *PNAV_TIME_CFG_STRUC;
50981 +typedef union _NAV_TIME_CFG_STRUC {
50983 + UCHAR Sifs; // in unit of 1-us
50984 + UCHAR SlotTime; // in unit of 1-us
50985 + USHORT Eifs:9; // in unit of 1-us
50986 + USHORT ZeroSifs:1; // Applied zero SIFS timer after OFDM RX 0: disable
50990 +} NAV_TIME_CFG_STRUC, *PNAV_TIME_CFG_STRUC;
50998 +// RX_FILTR_CFG: /RX configuration register
51000 +#ifdef RT_BIG_ENDIAN
51001 +typedef union RX_FILTR_CFG_STRUC {
51004 + UINT32 DropRsvCntlType:1;
51006 + UINT32 DropBAR:1; //
51007 + UINT32 DropBA:1; //
51008 + UINT32 DropPsPoll:1; // Drop Ps-Poll
51009 + UINT32 DropRts:1; // Drop Ps-Poll
51011 + UINT32 DropCts:1; // Drop Ps-Poll
51012 + UINT32 DropAck:1; // Drop Ps-Poll
51013 + UINT32 DropCFEnd:1; // Drop Ps-Poll
51014 + UINT32 DropCFEndAck:1; // Drop Ps-Poll
51016 + UINT32 DropDuplicate:1; // Drop duplicate frame
51017 + UINT32 DropBcast:1; // Drop broadcast frames
51018 + UINT32 DropMcast:1; // Drop multicast frames
51019 + UINT32 DropVerErr:1; // Drop version error frame
51021 + UINT32 DropNotMyBSSID:1; // Drop fram ToDs bit is true
51022 + UINT32 DropNotToMe:1; // Drop not to me unicast frame
51023 + UINT32 DropPhyErr:1; // Drop physical error
51024 + UINT32 DropCRCErr:1; // Drop CRC error
51027 +} RX_FILTR_CFG_STRUC, *PRX_FILTR_CFG_STRUC;
51029 +typedef union _RX_FILTR_CFG_STRUC {
51031 + UINT32 DropCRCErr:1; // Drop CRC error
51032 + UINT32 DropPhyErr:1; // Drop physical error
51033 + UINT32 DropNotToMe:1; // Drop not to me unicast frame
51034 + UINT32 DropNotMyBSSID:1; // Drop fram ToDs bit is true
51036 + UINT32 DropVerErr:1; // Drop version error frame
51037 + UINT32 DropMcast:1; // Drop multicast frames
51038 + UINT32 DropBcast:1; // Drop broadcast frames
51039 + UINT32 DropDuplicate:1; // Drop duplicate frame
51041 + UINT32 DropCFEndAck:1; // Drop Ps-Poll
51042 + UINT32 DropCFEnd:1; // Drop Ps-Poll
51043 + UINT32 DropAck:1; // Drop Ps-Poll
51044 + UINT32 DropCts:1; // Drop Ps-Poll
51046 + UINT32 DropRts:1; // Drop Ps-Poll
51047 + UINT32 DropPsPoll:1; // Drop Ps-Poll
51048 + UINT32 DropBA:1; //
51049 + UINT32 DropBAR:1; //
51051 + UINT32 DropRsvCntlType:1;
51055 +} RX_FILTR_CFG_STRUC, *PRX_FILTR_CFG_STRUC;
51062 +// PHY_CSR4: RF serial control register
51064 +#ifdef RT_BIG_ENDIAN
51065 +typedef union _PHY_CSR4_STRUC {
51067 + UINT32 Busy:1; // 1: ASIC is busy execute RF programming.
51068 + UINT32 PLL_LD:1; // RF PLL_LD status
51069 + UINT32 IFSelect:1; // 1: select IF to program, 0: select RF to program
51070 + UINT32 NumberOfBits:5; // Number of bits used in RFRegValue (I:20, RFMD:22)
51071 + UINT32 RFRegValue:24; // Register value (include register id) serial out to RF/IF chip.
51074 +} PHY_CSR4_STRUC, *PPHY_CSR4_STRUC;
51076 +typedef union _PHY_CSR4_STRUC {
51078 + UINT32 RFRegValue:24; // Register value (include register id) serial out to RF/IF chip.
51079 + UINT32 NumberOfBits:5; // Number of bits used in RFRegValue (I:20, RFMD:22)
51080 + UINT32 IFSelect:1; // 1: select IF to program, 0: select RF to program
51081 + UINT32 PLL_LD:1; // RF PLL_LD status
51082 + UINT32 Busy:1; // 1: ASIC is busy execute RF programming.
51085 +} PHY_CSR4_STRUC, *PPHY_CSR4_STRUC;
51090 +// SEC_CSR5: shared key table security mode register
51092 +#ifdef RT_BIG_ENDIAN
51093 +typedef union _SEC_CSR5_STRUC {
51096 + UINT32 Bss3Key3CipherAlg:3;
51098 + UINT32 Bss3Key2CipherAlg:3;
51100 + UINT32 Bss3Key1CipherAlg:3;
51102 + UINT32 Bss3Key0CipherAlg:3;
51104 + UINT32 Bss2Key3CipherAlg:3;
51106 + UINT32 Bss2Key2CipherAlg:3;
51108 + UINT32 Bss2Key1CipherAlg:3;
51110 + UINT32 Bss2Key0CipherAlg:3;
51113 +} SEC_CSR5_STRUC, *PSEC_CSR5_STRUC;
51115 +typedef union _SEC_CSR5_STRUC {
51117 + UINT32 Bss2Key0CipherAlg:3;
51119 + UINT32 Bss2Key1CipherAlg:3;
51121 + UINT32 Bss2Key2CipherAlg:3;
51123 + UINT32 Bss2Key3CipherAlg:3;
51125 + UINT32 Bss3Key0CipherAlg:3;
51127 + UINT32 Bss3Key1CipherAlg:3;
51129 + UINT32 Bss3Key2CipherAlg:3;
51131 + UINT32 Bss3Key3CipherAlg:3;
51135 +} SEC_CSR5_STRUC, *PSEC_CSR5_STRUC;
51140 +// HOST_CMD_CSR: For HOST to interrupt embedded processor
51142 +#ifdef RT_BIG_ENDIAN
51143 +typedef union _HOST_CMD_CSR_STRUC {
51146 + UINT32 HostCommand:8;
51149 +} HOST_CMD_CSR_STRUC, *PHOST_CMD_CSR_STRUC;
51151 +typedef union _HOST_CMD_CSR_STRUC {
51153 + UINT32 HostCommand:8;
51157 +} HOST_CMD_CSR_STRUC, *PHOST_CMD_CSR_STRUC;
51162 +// AIFSN_CSR: AIFSN for each EDCA AC
51168 +// E2PROM_CSR: EEPROM control register
51170 +#ifdef RT_BIG_ENDIAN
51171 +typedef union _E2PROM_CSR_STRUC {
51174 + UINT32 LoadStatus:1; // 1:loading, 0:done
51175 + UINT32 Type:1; // 1: 93C46, 0:93C66
51176 + UINT32 EepromDO:1;
51177 + UINT32 EepromDI:1;
51178 + UINT32 EepromCS:1;
51179 + UINT32 EepromSK:1;
51180 + UINT32 Reload:1; // Reload EEPROM content, write one to reload, self-cleared.
51183 +} E2PROM_CSR_STRUC, *PE2PROM_CSR_STRUC;
51185 +typedef union _E2PROM_CSR_STRUC {
51187 + UINT32 Reload:1; // Reload EEPROM content, write one to reload, self-cleared.
51188 + UINT32 EepromSK:1;
51189 + UINT32 EepromCS:1;
51190 + UINT32 EepromDI:1;
51191 + UINT32 EepromDO:1;
51192 + UINT32 Type:1; // 1: 93C46, 0:93C66
51193 + UINT32 LoadStatus:1; // 1:loading, 0:done
51197 +} E2PROM_CSR_STRUC, *PE2PROM_CSR_STRUC;
51201 +// -------------------------------------------------------------------
51202 +// E2PROM data layout
51203 +// -------------------------------------------------------------------
51206 +// EEPROM antenna select format
51208 +#ifdef RT_BIG_ENDIAN
51209 +typedef union _EEPROM_ANTENNA_STRUC {
51212 + USHORT RfIcType:4; // see E2PROM document
51213 + USHORT TxPath:4; // 1: 1T, 2: 2T
51214 + USHORT RxPath:4; // 1: 1R, 2: 2R, 3: 3R
51217 +} EEPROM_ANTENNA_STRUC, *PEEPROM_ANTENNA_STRUC;
51219 +typedef union _EEPROM_ANTENNA_STRUC {
51221 + USHORT RxPath:4; // 1: 1R, 2: 2R, 3: 3R
51222 + USHORT TxPath:4; // 1: 1T, 2: 2T
51223 + USHORT RfIcType:4; // see E2PROM document
51227 +} EEPROM_ANTENNA_STRUC, *PEEPROM_ANTENNA_STRUC;
51230 +#ifdef RT_BIG_ENDIAN
51231 +typedef union _EEPROM_NIC_CINFIG2_STRUC {
51233 + USHORT DACTestBit:1; // control if driver should patch the DAC issue
51234 + USHORT Rsv2:3; // must be 0
51235 + USHORT AntDiversity:1; // Antenna diversity
51236 + USHORT Rsv1:1; // must be 0
51237 + USHORT BW40MAvailForA:1; // 0:enable, 1:disable
51238 + USHORT BW40MAvailForG:1; // 0:enable, 1:disable
51239 + USHORT EnableWPSPBC:1; // WPS PBC Control bit
51240 + USHORT BW40MSidebandForA:1;
51241 + USHORT BW40MSidebandForG:1;
51242 + USHORT CardbusAcceleration:1; // !!! NOTE: 0 - enable, 1 - disable
51243 + USHORT ExternalLNAForA:1; // external LNA enable for 5G
51244 + USHORT ExternalLNAForG:1; // external LNA enable for 2.4G
51245 + USHORT DynamicTxAgcControl:1; //
51246 + USHORT HardwareRadioControl:1; // Whether RF is controlled by driver or HW. 1:enable hw control, 0:disable
51249 +} EEPROM_NIC_CONFIG2_STRUC, *PEEPROM_NIC_CONFIG2_STRUC;
51251 +typedef union _EEPROM_NIC_CINFIG2_STRUC {
51253 + USHORT HardwareRadioControl:1; // 1:enable, 0:disable
51254 + USHORT DynamicTxAgcControl:1; //
51255 + USHORT ExternalLNAForG:1; //
51256 + USHORT ExternalLNAForA:1; // external LNA enable for 2.4G
51257 + USHORT CardbusAcceleration:1; // !!! NOTE: 0 - enable, 1 - disable
51258 + USHORT BW40MSidebandForG:1;
51259 + USHORT BW40MSidebandForA:1;
51260 + USHORT EnableWPSPBC:1; // WPS PBC Control bit
51261 + USHORT BW40MAvailForG:1; // 0:enable, 1:disable
51262 + USHORT BW40MAvailForA:1; // 0:enable, 1:disable
51263 + USHORT Rsv1:1; // must be 0
51264 + USHORT AntDiversity:1; // Antenna diversity
51265 + USHORT Rsv2:3; // must be 0
51266 + USHORT DACTestBit:1; // control if driver should patch the DAC issue
51269 +} EEPROM_NIC_CONFIG2_STRUC, *PEEPROM_NIC_CONFIG2_STRUC;
51273 +// TX_PWR Value valid range 0xFA(-6) ~ 0x24(36)
51275 +#ifdef RT_BIG_ENDIAN
51276 +typedef union _EEPROM_TX_PWR_STRUC {
51278 + CHAR Byte1; // High Byte
51279 + CHAR Byte0; // Low Byte
51282 +} EEPROM_TX_PWR_STRUC, *PEEPROM_TX_PWR_STRUC;
51284 +typedef union _EEPROM_TX_PWR_STRUC {
51286 + CHAR Byte0; // Low Byte
51287 + CHAR Byte1; // High Byte
51290 +} EEPROM_TX_PWR_STRUC, *PEEPROM_TX_PWR_STRUC;
51293 +#ifdef RT_BIG_ENDIAN
51294 +typedef union _EEPROM_VERSION_STRUC {
51296 + UCHAR Version; // High Byte
51297 + UCHAR FaeReleaseNumber; // Low Byte
51300 +} EEPROM_VERSION_STRUC, *PEEPROM_VERSION_STRUC;
51302 +typedef union _EEPROM_VERSION_STRUC {
51304 + UCHAR FaeReleaseNumber; // Low Byte
51305 + UCHAR Version; // High Byte
51308 +} EEPROM_VERSION_STRUC, *PEEPROM_VERSION_STRUC;
51311 +#ifdef RT_BIG_ENDIAN
51312 +typedef union _EEPROM_LED_STRUC {
51314 + USHORT Rsvd:3; // Reserved
51315 + USHORT LedMode:5; // Led mode.
51316 + USHORT PolarityGPIO_4:1; // Polarity GPIO#4 setting.
51317 + USHORT PolarityGPIO_3:1; // Polarity GPIO#3 setting.
51318 + USHORT PolarityGPIO_2:1; // Polarity GPIO#2 setting.
51319 + USHORT PolarityGPIO_1:1; // Polarity GPIO#1 setting.
51320 + USHORT PolarityGPIO_0:1; // Polarity GPIO#0 setting.
51321 + USHORT PolarityACT:1; // Polarity ACT setting.
51322 + USHORT PolarityRDY_A:1; // Polarity RDY_A setting.
51323 + USHORT PolarityRDY_G:1; // Polarity RDY_G setting.
51326 +} EEPROM_LED_STRUC, *PEEPROM_LED_STRUC;
51328 +typedef union _EEPROM_LED_STRUC {
51330 + USHORT PolarityRDY_G:1; // Polarity RDY_G setting.
51331 + USHORT PolarityRDY_A:1; // Polarity RDY_A setting.
51332 + USHORT PolarityACT:1; // Polarity ACT setting.
51333 + USHORT PolarityGPIO_0:1; // Polarity GPIO#0 setting.
51334 + USHORT PolarityGPIO_1:1; // Polarity GPIO#1 setting.
51335 + USHORT PolarityGPIO_2:1; // Polarity GPIO#2 setting.
51336 + USHORT PolarityGPIO_3:1; // Polarity GPIO#3 setting.
51337 + USHORT PolarityGPIO_4:1; // Polarity GPIO#4 setting.
51338 + USHORT LedMode:5; // Led mode.
51339 + USHORT Rsvd:3; // Reserved
51342 +} EEPROM_LED_STRUC, *PEEPROM_LED_STRUC;
51345 +#ifdef RT_BIG_ENDIAN
51346 +typedef union _EEPROM_TXPOWER_DELTA_STRUC {
51348 + UCHAR TxPowerEnable:1;// Enable
51349 + UCHAR Type:1; // 1: plus the delta value, 0: minus the delta value
51350 + UCHAR DeltaValue:6; // Tx Power dalta value (MAX=4)
51353 +} EEPROM_TXPOWER_DELTA_STRUC, *PEEPROM_TXPOWER_DELTA_STRUC;
51355 +typedef union _EEPROM_TXPOWER_DELTA_STRUC {
51357 + UCHAR DeltaValue:6; // Tx Power dalta value (MAX=4)
51358 + UCHAR Type:1; // 1: plus the delta value, 0: minus the delta value
51359 + UCHAR TxPowerEnable:1;// Enable
51362 +} EEPROM_TXPOWER_DELTA_STRUC, *PEEPROM_TXPOWER_DELTA_STRUC;
51366 +// QOS_CSR0: TXOP holder address0 register
51368 +#ifdef RT_BIG_ENDIAN
51369 +typedef union _QOS_CSR0_STRUC {
51371 + UCHAR Byte3; // MAC address byte 3
51372 + UCHAR Byte2; // MAC address byte 2
51373 + UCHAR Byte1; // MAC address byte 1
51374 + UCHAR Byte0; // MAC address byte 0
51377 +} QOS_CSR0_STRUC, *PQOS_CSR0_STRUC;
51379 +typedef union _QOS_CSR0_STRUC {
51381 + UCHAR Byte0; // MAC address byte 0
51382 + UCHAR Byte1; // MAC address byte 1
51383 + UCHAR Byte2; // MAC address byte 2
51384 + UCHAR Byte3; // MAC address byte 3
51387 +} QOS_CSR0_STRUC, *PQOS_CSR0_STRUC;
51391 +// QOS_CSR1: TXOP holder address1 register
51393 +#ifdef RT_BIG_ENDIAN
51394 +typedef union _QOS_CSR1_STRUC {
51398 + UCHAR Byte5; // MAC address byte 5
51399 + UCHAR Byte4; // MAC address byte 4
51402 +} QOS_CSR1_STRUC, *PQOS_CSR1_STRUC;
51404 +typedef union _QOS_CSR1_STRUC {
51406 + UCHAR Byte4; // MAC address byte 4
51407 + UCHAR Byte5; // MAC address byte 5
51412 +} QOS_CSR1_STRUC, *PQOS_CSR1_STRUC;
51415 +#define RF_CSR_CFG 0x500
51416 +#ifdef RT_BIG_ENDIAN
51417 +typedef union _RF_CSR_CFG_STRUC {
51419 + UINT Rsvd1:14; // Reserved
51420 + UINT RF_CSR_KICK:1; // kick RF register read/write
51421 + UINT RF_CSR_WR:1; // 0: read 1: write
51422 + UINT Rsvd2:3; // Reserved
51423 + UINT TESTCSR_RFACC_REGNUM:5; // RF register ID
51424 + UINT RF_CSR_DATA:8; // DATA
51427 +} RF_CSR_CFG_STRUC, *PRF_CSR_CFG_STRUC;
51429 +typedef union _RF_CSR_CFG_STRUC {
51431 + UINT RF_CSR_DATA:8; // DATA
51432 + UINT TESTCSR_RFACC_REGNUM:5; // RF register ID
51433 + UINT Rsvd2:3; // Reserved
51434 + UINT RF_CSR_WR:1; // 0: read 1: write
51435 + UINT RF_CSR_KICK:1; // kick RF register read/write
51436 + UINT Rsvd1:14; // Reserved
51439 +} RF_CSR_CFG_STRUC, *PRF_CSR_CFG_STRUC;
51442 +#endif // __RT28XX_H__
51444 +++ b/drivers/staging/rt3070/rt_ate.c
51447 + *************************************************************************
51448 + * Ralink Tech Inc.
51449 + * 5F., No.36, Taiyuan St., Jhubei City,
51450 + * Hsinchu County 302,
51453 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
51455 + * This program is free software; you can redistribute it and/or modify *
51456 + * it under the terms of the GNU General Public License as published by *
51457 + * the Free Software Foundation; either version 2 of the License, or *
51458 + * (at your option) any later version. *
51460 + * This program is distributed in the hope that it will be useful, *
51461 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
51462 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
51463 + * GNU General Public License for more details. *
51465 + * You should have received a copy of the GNU General Public License *
51466 + * along with this program; if not, write to the *
51467 + * Free Software Foundation, Inc., *
51468 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
51470 + *************************************************************************
51473 +#include "rt_config.h"
51476 +INT IoctlResponse(PUCHAR payload, PUCHAR msg, INT len);
51479 +#define ATE_BBP_REG_NUM 168
51480 +UCHAR restore_BBP[ATE_BBP_REG_NUM]={0};
51483 +UCHAR TemplateFrame[24] = {0x08/* Data type */,0x00,0x00,0x00,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0x00,0xAA,0xBB,0x12,0x34,0x56,0x00,0x11,0x22,0xAA,0xBB,0xCC,0x00,0x00}; // 802.11 MAC Header, Type:Data, Length:24bytes
51484 +extern RTMP_RF_REGS RF2850RegTable[];
51485 +extern UCHAR NUM_OF_2850_CHNL;
51488 +extern UCHAR EpToQueue[];
51489 +extern VOID RTUSBRejectPendingPackets( IN PRTMP_ADAPTER pAd);
51490 +#endif // RT2870 //
51493 +//2008/07/10:KH adds to support 3070 ATE<--
51494 +extern FREQUENCY_ITEM FreqItems3020[];
51495 +extern UCHAR NUM_OF_3020_CHNL;
51496 +//2008/07/10:KH adds to support 3070 ATE-->
51497 +#endif // RT30xx //
51500 +extern INT ConsoleResponse(IN PUCHAR buff);
51501 +extern int (*remote_display)(char *);
51504 +static CHAR CCKRateTable[] = {0, 1, 2, 3, 8, 9, 10, 11, -1}; /* CCK Mode. */
51505 +static CHAR OFDMRateTable[] = {0, 1, 2, 3, 4, 5, 6, 7, -1}; /* OFDM Mode. */
51506 +static CHAR HTMIXRateTable[] = {0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, -1}; /* HT Mix Mode. */
51508 +static INT TxDmaBusy(
51509 + IN PRTMP_ADAPTER pAd);
51511 +static INT RxDmaBusy(
51512 + IN PRTMP_ADAPTER pAd);
51514 +static VOID RtmpDmaEnable(
51515 + IN PRTMP_ADAPTER pAd,
51518 +static VOID BbpSoftReset(
51519 + IN PRTMP_ADAPTER pAd);
51521 +static VOID RtmpRfIoWrite(
51522 + IN PRTMP_ADAPTER pAd);
51524 +static INT ATESetUpFrame(
51525 + IN PRTMP_ADAPTER pAd,
51526 + IN UINT32 TxIdx);
51528 +static INT ATETxPwrHandler(
51529 + IN PRTMP_ADAPTER pAd,
51532 +static INT ATECmdHandler(
51533 + IN PRTMP_ADAPTER pAd,
51536 +static int CheckMCSValid(
51542 +static VOID ATEWriteTxInfo(
51543 + IN PRTMP_ADAPTER pAd,
51544 + IN PTXINFO_STRUC pTxInfo,
51545 + IN USHORT USBDMApktLen,
51547 + IN UCHAR QueueSel,
51548 + IN UCHAR NextValid,
51549 + IN UCHAR TxBurst);
51551 +static VOID ATEWriteTxWI(
51552 + IN PRTMP_ADAPTER pAd,
51553 + IN PTXWI_STRUC pTxWI,
51555 + IN BOOLEAN InsTimestamp,
51556 + IN BOOLEAN AMPDU,
51558 + IN BOOLEAN NSeq, // HW new a sequence.
51564 + IN UCHAR Txopmode,
51565 + IN BOOLEAN CfAck,
51566 + IN HTTRANSMIT_SETTING Transmit);
51568 +#endif // RT2870 //
51570 +static VOID SetJapanFilter(
51571 + IN PRTMP_ADAPTER pAd);
51573 +/*=========================end of prototype=========================*/
51577 +static INT TxDmaBusy(
51578 + IN PRTMP_ADAPTER pAd)
51581 + USB_DMA_CFG_STRUC UsbCfg;
51583 + RTMP_IO_READ32(pAd, USB_DMA_CFG, &UsbCfg.word); // disable DMA
51584 + if (UsbCfg.field.TxBusy)
51592 +static INT RxDmaBusy(
51593 + IN PRTMP_ADAPTER pAd)
51596 + USB_DMA_CFG_STRUC UsbCfg;
51598 + RTMP_IO_READ32(pAd, USB_DMA_CFG, &UsbCfg.word); // disable DMA
51599 + if (UsbCfg.field.RxBusy)
51607 +static VOID RtmpDmaEnable(
51608 + IN PRTMP_ADAPTER pAd,
51613 + USB_DMA_CFG_STRUC UsbCfg;
51615 + value = Enable > 0 ? 1 : 0;
51617 + // check DMA is in busy mode.
51619 + while (TxDmaBusy(pAd) || RxDmaBusy(pAd))
51621 + RTMPusecDelay(10);
51622 + if (WaitCnt++ > 100)
51626 + //Why not to clear USB DMA TX path first ???
51627 + RTMP_IO_READ32(pAd, USB_DMA_CFG, &UsbCfg.word); // disable DMA
51628 + UsbCfg.field.TxBulkEn = value;
51629 + UsbCfg.field.RxBulkEn = value;
51630 + RTMP_IO_WRITE32(pAd, USB_DMA_CFG, UsbCfg.word); // abort all TX rings
51631 + RTMPusecDelay(5000);
51635 +#endif // RT2870 //
51637 +static VOID BbpSoftReset(
51638 + IN PRTMP_ADAPTER pAd)
51640 + UCHAR BbpData = 0;
51642 + // Soft reset, set BBP R21 bit0=1->0
51643 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R21, &BbpData);
51644 + BbpData |= 0x00000001; //set bit0=1
51645 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R21, BbpData);
51647 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R21, &BbpData);
51648 + BbpData &= ~(0x00000001); //set bit0=0
51649 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R21, BbpData);
51654 +static VOID RtmpRfIoWrite(
51655 + IN PRTMP_ADAPTER pAd)
51657 + // Set RF value 1's set R3[bit2] = [0]
51658 + RTMP_RF_IO_WRITE32(pAd, pAd->LatchRfRegs.R1);
51659 + RTMP_RF_IO_WRITE32(pAd, pAd->LatchRfRegs.R2);
51660 + RTMP_RF_IO_WRITE32(pAd, (pAd->LatchRfRegs.R3 & (~0x04)));
51661 + RTMP_RF_IO_WRITE32(pAd, pAd->LatchRfRegs.R4);
51663 + RTMPusecDelay(200);
51665 + // Set RF value 2's set R3[bit2] = [1]
51666 + RTMP_RF_IO_WRITE32(pAd, pAd->LatchRfRegs.R1);
51667 + RTMP_RF_IO_WRITE32(pAd, pAd->LatchRfRegs.R2);
51668 + RTMP_RF_IO_WRITE32(pAd, (pAd->LatchRfRegs.R3 | 0x04));
51669 + RTMP_RF_IO_WRITE32(pAd, pAd->LatchRfRegs.R4);
51671 + RTMPusecDelay(200);
51673 + // Set RF value 3's set R3[bit2] = [0]
51674 + RTMP_RF_IO_WRITE32(pAd, pAd->LatchRfRegs.R1);
51675 + RTMP_RF_IO_WRITE32(pAd, pAd->LatchRfRegs.R2);
51676 + RTMP_RF_IO_WRITE32(pAd, (pAd->LatchRfRegs.R3 & (~0x04)));
51677 + RTMP_RF_IO_WRITE32(pAd, pAd->LatchRfRegs.R4);
51682 +static int CheckMCSValid(
51692 + pRateTab = CCKRateTable;
51695 + pRateTab = OFDMRateTable;
51699 + pRateTab = HTMIXRateTable;
51702 + ATEDBGPRINT(RT_DEBUG_ERROR, ("unrecognizable Tx Mode %d\n", Mode));
51708 + while(pRateTab[i] != -1)
51710 + if (pRateTab[i] == Mcs)
51719 +static INT ATETxPwrHandler(
51720 + IN PRTMP_ADAPTER pAd,
51726 + BOOLEAN bPowerReduce = FALSE;
51729 +#endif // RT30xx //
51730 +#ifdef RALINK_28xx_QA
51731 + if ((pAd->ate.bQATxStart == TRUE) || (pAd->ate.bQARxStart == TRUE))
51733 + /* When QA is used for Tx, pAd->ate.TxPower0/1 and real tx power
51734 + ** are not synchronized.
51737 + pAd->ate.TxPower0 = pAd->LatchRfRegs.xxx;
51738 + pAd->ate.TxPower1 = pAd->LatchRfRegs.xxx;
51743 +#endif // RALINK_28xx_QA //
51745 + TxPower = index == 0 ? pAd->ate.TxPower0 : pAd->ate.TxPower1;
51747 + if (pAd->ate.Channel <= 14)
51749 + if (TxPower > 31)
51752 + // R3, R4 can't large than 31 (0x24), 31 ~ 36 used by BBP 94
51755 + if (TxPower <= 36)
51756 + Bbp94 = BBPR94_DEFAULT + (UCHAR)(TxPower - 31);
51758 + else if (TxPower < 0)
51761 + // R3, R4 can't less than 0, -1 ~ -6 used by BBP 94
51764 + if (TxPower >= -6)
51765 + Bbp94 = BBPR94_DEFAULT + TxPower;
51770 + R = (ULONG) TxPower;
51771 + Bbp94 = BBPR94_DEFAULT;
51774 + ATEDBGPRINT(RT_DEBUG_TRACE, ("%s (TxPower=%d, R=%ld, BBP_R94=%d)\n", __FUNCTION__, TxPower, R, Bbp94));
51778 + if (TxPower > 15)
51781 + // R3, R4 can't large than 15 (0x0F)
51785 + else if (TxPower < 0)
51788 + // R3, R4 can't less than 0
51791 + ASSERT((TxPower >= -7));
51792 + R = (ULONG)(TxPower + 7);
51793 + bPowerReduce = TRUE;
51798 + R = (ULONG) TxPower;
51801 + ATEDBGPRINT(RT_DEBUG_TRACE, ("%s (TxPower=%d, R=%lu)\n", __FUNCTION__, TxPower, R));
51803 +//2008/09/10:KH adds to support 3070 ATE TX Power tunning real time<--
51805 + if(IS_RT30xx(pAd))
51809 + RT30xxReadRFRegister(pAd, RF_R12, (PUCHAR)&RFValue);
51810 + RFValue = (RFValue & 0xE0) | TxPower;
51811 + RT30xxWriteRFRegister(pAd, RF_R12, (UCHAR)RFValue);
51812 + ATEDBGPRINT(RT_DEBUG_TRACE, ("3070 or 2070:%s (TxPower=%d, RFValue=%x)\n", __FUNCTION__, TxPower, RFValue));
51816 +#endif // RT30xx //
51818 + if (pAd->ate.Channel <= 14)
51822 + R = R << 9; // shift TX power control to correct RF(R3) register bit position
51823 + R |= (pAd->LatchRfRegs.R3 & 0xffffc1ff);
51824 + pAd->LatchRfRegs.R3 = R;
51828 + R = R << 6; // shift TX power control to correct RF(R4) register bit position
51829 + R |= (pAd->LatchRfRegs.R4 & 0xfffff83f);
51830 + pAd->LatchRfRegs.R4 = R;
51835 + if (bPowerReduce == FALSE)
51839 + R = (R << 10) | (1 << 9); // shift TX power control to correct RF(R3) register bit position
51840 + R |= (pAd->LatchRfRegs.R3 & 0xffffc1ff);
51841 + pAd->LatchRfRegs.R3 = R;
51845 + R = (R << 7) | (1 << 6); // shift TX power control to correct RF(R4) register bit position
51846 + R |= (pAd->LatchRfRegs.R4 & 0xfffff83f);
51847 + pAd->LatchRfRegs.R4 = R;
51854 + R = (R << 10); // shift TX power control to correct RF(R3) register bit position
51855 + R |= (pAd->LatchRfRegs.R3 & 0xffffc1ff);
51857 + /* Clear bit 9 of R3 to reduce 7dB. */
51858 + pAd->LatchRfRegs.R3 = (R & (~(1 << 9)));
51862 + R = (R << 7); // shift TX power control to correct RF(R4) register bit position
51863 + R |= (pAd->LatchRfRegs.R4 & 0xfffff83f);
51865 + /* Clear bit 6 of R4 to reduce 7dB. */
51866 + pAd->LatchRfRegs.R4 = (R & (~(1 << 6)));
51870 + RtmpRfIoWrite(pAd);
51872 +//2008/09/10:KH adds to support 3070 ATE TX Power tunning real time-->
51878 +static INT ATETxPwrHandler(
51879 + IN PRTMP_ADAPTER pAd,
51886 +#ifdef RALINK_28xx_QA
51887 + if ((pAd->ate.bQATxStart == TRUE) || (pAd->ate.bQARxStart == TRUE))
51889 + // TODO: how to get current TxPower0/1 from pAd->LatchRfRegs ?
51890 + /* When QA is used for Tx, pAd->ate.TxPower0/1 and real tx power
51891 + ** are not synchronized.
51894 + pAd->ate.TxPower0 = pAd->LatchRfRegs.xxx;
51895 + pAd->ate.TxPower1 = pAd->LatchRfRegs.xxx;
51900 +#endif // RALINK_28xx_QA //
51902 + TxPower = index == 0 ? pAd->ate.TxPower0 : pAd->ate.TxPower1;
51904 + if (TxPower > 31)
51907 + // R3, R4 can't large than 36 (0x24), 31 ~ 36 used by BBP 94
51910 + if (TxPower <= 36)
51911 + Bbp94 = BBPR94_DEFAULT + (UCHAR)(TxPower - 31);
51913 + else if (TxPower < 0)
51916 + // R3, R4 can't less than 0, -1 ~ -6 used by BBP 94
51919 + if (TxPower >= -6)
51920 + Bbp94 = BBPR94_DEFAULT + TxPower;
51925 + R = (ULONG) TxPower;
51926 + Bbp94 = BBPR94_DEFAULT;
51929 + ATEDBGPRINT(RT_DEBUG_TRACE, ("%s (TxPower=%d, R3=%ld, BBP_R94=%d)\n", __FUNCTION__, TxPower, R, Bbp94));
51931 + if (pAd->ate.Channel <= 14)
51935 + R = R << 9; // shift TX power control to correct RF(R3) register bit position
51936 + R |= (pAd->LatchRfRegs.R3 & 0xffffc1ff);
51937 + pAd->LatchRfRegs.R3 = R;
51941 + R = R << 6; // shift TX power control to correct RF(R4) register bit position
51942 + R |= (pAd->LatchRfRegs.R4 & 0xfffff83f);
51943 + pAd->LatchRfRegs.R4 = R;
51950 + R = (R << 10) | (1 << 9); // shift TX power control to correct RF(R3) register bit position
51951 + R |= (pAd->LatchRfRegs.R3 & 0xffffc1ff);
51952 + pAd->LatchRfRegs.R3 = R;
51956 + R = (R << 7) | (1 << 6); // shift TX power control to correct RF(R4) register bit position
51957 + R |= (pAd->LatchRfRegs.R4 & 0xfffff83f);
51958 + pAd->LatchRfRegs.R4 = R;
51962 + RtmpRfIoWrite(pAd);
51969 + ==========================================================================
51971 + Set ATE operation mode to
51972 + 0. ATESTART = Start ATE Mode
51973 + 1. ATESTOP = Stop ATE Mode
51974 + 2. TXCONT = Continuous Transmit
51975 + 3. TXCARR = Transmit Carrier
51976 + 4. TXFRAME = Transmit Frames
51977 + 5. RXFRAME = Receive Frames
51978 +#ifdef RALINK_28xx_QA
51979 + 6. TXSTOP = Stop Any Type of Transmition
51980 + 7. RXSTOP = Stop Receiving Frames
51981 +#endif // RALINK_28xx_QA //
51983 + TRUE if all parameters are OK, FALSE otherwise
51984 + ==========================================================================
51988 +/*=======================End of RT2860=======================*/
51991 +/*======================Start of RT2870======================*/
51996 +static INT ATECmdHandler(
51997 + IN PRTMP_ADAPTER pAd,
52003 + UINT i=0, atemode;
52004 + //NDIS_STATUS Status = NDIS_STATUS_SUCCESS;
52009 + ATEDBGPRINT(RT_DEBUG_TRACE, ("===> ATECmdHandler()\n"));
52010 + ATEAsicSwitchChannel(pAd);
52011 + /* AsicLockChannel() is empty function so far in fact */
52012 + AsicLockChannel(pAd, pAd->ate.Channel);
52014 + RTMPusecDelay(5000);
52016 + // Default value in BBP R22 is 0x0.
52019 + /* Enter ATE mode and set Tx/Rx Idle */
52020 + if (!strcmp(arg, "ATESTART"))
52022 +#ifdef CONFIG_STA_SUPPORT
52023 + BOOLEAN Cancelled;
52024 +#endif // CONFIG_STA_SUPPORT //
52025 + ATEDBGPRINT(RT_DEBUG_TRACE, ("ATE: ATESTART\n"));
52027 + netif_stop_queue(pAd->net_dev);
52029 + atemode = pAd->ate.Mode;
52030 + pAd->ate.Mode = ATE_START;
52031 +// pAd->ate.TxDoneCount = pAd->ate.TxCount;
52033 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52034 + Value &= ~(1 << 3);
52035 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52037 + // Disable auto responder
52038 + RTMP_IO_READ32(pAd, AUTO_RSP_CFG, &temp);
52039 + temp = temp & 0xFFFFFFFE;
52040 + RTMP_IO_WRITE32(pAd, AUTO_RSP_CFG, temp);
52042 + // read MAC_SYS_CTRL and backup MAC_SYS_CTRL value.
52043 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &MacData);
52044 + // clean bit4 to stop continuous Tx production test.
52045 + MacData &= 0xFFFFFFEF;
52046 + // Stop continuous TX production test.
52047 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, MacData);//disable or cancel pending irp first ???
52049 + if (atemode & ATE_TXCARR
52051 + || atemode & ATE_TXCONT
52052 +#endif // RT30xx //
52056 + //Hardware Reset BBP
52057 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &temp);
52058 + temp = temp |0x00000002;
52059 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, temp);
52060 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &temp);
52061 + temp = temp & ~(0x00000002);
52062 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, temp);
52063 + //Restore All BBP Value
52064 + for(i=0;i<ATE_BBP_REG_NUM;i++)
52065 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd,i,restore_BBP[i]);
52066 +#endif // RT30xx //
52068 + // No Carrier Test set BBP R22 bit7=0, bit6=0, bit[5~0]=0x0
52069 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R22, &BbpData);
52070 + BbpData &= 0xFFFFFF00; //clear bit7, bit6, bit[5~0]
52071 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R22, BbpData);
52073 + else if (atemode & ATE_TXCARRSUPP)
52076 + //Hardware Reset BBP
52077 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &temp);
52078 + temp = temp |0x00000002;
52079 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, temp);
52080 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &temp);
52081 + temp = temp & ~(0x00000002);
52082 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, temp);
52083 + //Restore All BBP Value
52084 + for(i=0;i<ATE_BBP_REG_NUM;i++)
52085 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd,i,restore_BBP[i]);
52086 +#endif // RT30xx //
52088 + // No Cont. TX set BBP R22 bit7=0
52089 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R22, &BbpData);
52090 + BbpData &= ~(1 << 7); //set bit7=0
52091 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R22, BbpData);
52093 + // No Carrier Suppression set BBP R24 bit0=0
52094 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R24, &BbpData);
52095 + BbpData &= 0xFFFFFFFE; //clear bit0
52096 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R24, BbpData);
52098 + // We should free some resource which allocate when ATE_TXFRAME , ATE_STOP, and ATE_TXCONT.
52099 + // TODO:Should we free some resource which was allocated when LoopBack and ATE_STOP ?
52100 + else if ((atemode & ATE_TXFRAME) || (atemode == ATE_STOP))
52102 + if (atemode & ATE_TXCONT)
52104 + // Not Cont. TX anymore, so set BBP R22 bit7=0
52105 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R22, &BbpData);
52106 + BbpData &= ~(1 << 7); //set bit7=0
52107 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R22, BbpData);
52109 + // Abort Tx, Rx DMA.
52110 + RtmpDmaEnable(pAd, 0);
52113 + // It seems nothing to free,
52114 + // because we didn't allocate any resource when we entered ATE_TXFRAME mode latestly.
52117 + // Start Tx, RX DMA
52118 + RtmpDmaEnable(pAd, 1);
52121 + RTUSBRejectPendingPackets(pAd);
52122 + RTUSBCleanUpDataBulkOutQueue(pAd);
52124 +#ifdef CONFIG_STA_SUPPORT
52126 + // It will be called in MlmeSuspend().
52128 + // Cancel pending timers
52129 + RTMPCancelTimer(&pAd->MlmeAux.AssocTimer, &Cancelled);
52130 + RTMPCancelTimer(&pAd->MlmeAux.ReassocTimer, &Cancelled);
52131 + RTMPCancelTimer(&pAd->MlmeAux.DisassocTimer, &Cancelled);
52132 + RTMPCancelTimer(&pAd->MlmeAux.AuthTimer, &Cancelled);
52133 + RTMPCancelTimer(&pAd->MlmeAux.BeaconTimer, &Cancelled);
52134 + RTMPCancelTimer(&pAd->MlmeAux.ScanTimer, &Cancelled);
52135 +#endif // CONFIG_STA_SUPPORT //
52137 + //RTUSBCleanUpMLMEWaitQueue(pAd); /* not used in RT28xx */
52138 + RTUSBCleanUpMLMEBulkOutQueue(pAd);
52140 + // Sometimes kernel will hang on, so we avoid calling MlmeSuspend().
52141 +// MlmeSuspend(pAd, TRUE);
52142 + //RTMPCancelTimer(&pAd->Mlme.PeriodicTimer, &Cancelled);
52145 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52146 + Value &= ~(1 << 3);
52147 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52149 + // Abort Tx, RX DMA.
52150 + RtmpDmaEnable(pAd, 0);
52153 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52154 + Value &= ~(1 << 2);
52155 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52157 + // Make sure there are no pending bulk in/out IRPs before we go on.
52158 +/*=========================================================================*/
52159 + /* pAd->PendingRx is not of type atomic_t anymore in 28xx */
52160 +// while ((atomic_read(&pAd->PendingRx) > 0)) //pAd->BulkFlags != 0 wait bulk out finish
52161 + while ((pAd->PendingRx > 0)) //pAd->BulkFlags != 0 wait bulk out finish
52164 + ATE_RTUSBCancelPendingBulkInIRP(pAd);
52166 + NdisInterlockedDecrement(&pAd->PendingRx);
52168 + /* delay 0.5 seconds */
52169 + RTMPusecDelay(500000);
52170 + pAd->PendingRx = 0;
52172 + /* peter : why don't we have to get BulkOutLock first ? */
52173 + while (((pAd->BulkOutPending[0] == TRUE) ||
52174 + (pAd->BulkOutPending[1] == TRUE) ||
52175 + (pAd->BulkOutPending[2] == TRUE) ||
52176 + (pAd->BulkOutPending[3] == TRUE)) && (pAd->BulkFlags != 0)) //pAd->BulkFlags != 0 wait bulk out finish
52180 + /* pAd->BulkOutPending[y] will be set to FALSE in RTUSBCancelPendingBulkOutIRP(pAd) */
52181 + RTUSBCancelPendingBulkOutIRP(pAd);
52184 + /* we have enough time delay in RTUSBCancelPendingBulkOutIRP(pAd)
52185 + ** so this is not necessary
52187 +// RTMPusecDelay(500000);
52190 + /* pAd->PendingRx is not of type atomic_t anymore in 28xx */
52191 +// ASSERT(atomic_read(&pAd->PendingRx) == 0);
52192 + ASSERT(pAd->PendingRx == 0);
52193 +/*=========================================================================*/
52195 + // reset Rx statistics.
52196 + pAd->ate.LastSNR0 = 0;
52197 + pAd->ate.LastSNR1 = 0;
52198 + pAd->ate.LastRssi0 = 0;
52199 + pAd->ate.LastRssi1 = 0;
52200 + pAd->ate.LastRssi2 = 0;
52201 + pAd->ate.AvgRssi0 = 0;
52202 + pAd->ate.AvgRssi1 = 0;
52203 + pAd->ate.AvgRssi2 = 0;
52204 + pAd->ate.AvgRssi0X8 = 0;
52205 + pAd->ate.AvgRssi1X8 = 0;
52206 + pAd->ate.AvgRssi2X8 = 0;
52207 + pAd->ate.NumOfAvgRssiSample = 0;
52209 +#ifdef RALINK_28xx_QA
52211 + pAd->ate.bQATxStart = FALSE;
52212 + pAd->ate.bQARxStart = FALSE;
52213 + pAd->ate.seq = 0;
52216 + pAd->ate.U2M = 0;
52217 + pAd->ate.OtherData = 0;
52218 + pAd->ate.Beacon = 0;
52219 + pAd->ate.OtherCount = 0;
52220 + pAd->ate.TxAc0 = 0;
52221 + pAd->ate.TxAc1 = 0;
52222 + pAd->ate.TxAc2 = 0;
52223 + pAd->ate.TxAc3 = 0;
52224 + pAd->ate.TxHCCA = 0;
52225 + pAd->ate.TxMgmt = 0;
52226 + pAd->ate.RSSI0 = 0;
52227 + pAd->ate.RSSI1 = 0;
52228 + pAd->ate.RSSI2 = 0;
52229 + pAd->ate.SNR0 = 0;
52230 + pAd->ate.SNR1 = 0;
52233 + pAd->ate.TxDoneCount = 0;
52234 + pAd->ate.TxStatus = 0; // task Tx status // 0 --> task is idle, 1 --> task is running
52235 +#endif // RALINK_28xx_QA //
52237 + // Soft reset BBP.
52238 + BbpSoftReset(pAd);
52241 +#ifdef CONFIG_STA_SUPPORT
52242 + AsicDisableSync(pAd);
52245 + ** If we skip "LinkDown()", we should disable protection
52246 + ** to prevent from sending out RTS or CTS-to-self.
52248 + ATEDisableAsicProtect(pAd);
52249 + RTMPStationStop(pAd);
52250 +#endif // CONFIG_STA_SUPPORT //
52252 + // Default value in BBP R22 is 0x0.
52254 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &MacData);
52256 + // Clean bit4 to stop continuous Tx production test.
52257 + MacData &= 0xFFFFFFEF;
52258 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R22, BbpData);
52259 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, MacData);
52260 + //Clean ATE Bulk in/out counter and continue setup
52261 + InterlockedExchange(&pAd->BulkOutRemained, 0);
52263 + /* NdisAcquireSpinLock()/NdisReleaseSpinLock() need only one argument in RT28xx */
52264 + NdisAcquireSpinLock(&pAd->GenericLock);
52265 + pAd->ContinBulkOut = FALSE;
52266 + pAd->ContinBulkIn = FALSE;
52267 + NdisReleaseSpinLock(&pAd->GenericLock);
52269 + RTUSB_CLEAR_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_ATE);
52271 + else if (!strcmp(arg, "ATESTOP"))
52273 + ATEDBGPRINT(RT_DEBUG_TRACE, ("ATE : ATESTOP ===>\n"));
52275 + // Default value in BBP R22 is 0x0.
52277 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &MacData);//0820
52278 + // Clean bit4 to stop continuous Tx production test.
52279 + MacData &= 0xFFFFFFEF;
52280 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R22, BbpData);
52281 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, MacData); // recover the MAC_SYS_CTRL register back.
52284 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52285 + Value &= ~(1 << 3);
52286 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52289 + ** Abort Tx, RX DMA.
52290 + ** Q : How to do the following I/O if Tx, Rx DMA is aborted ?
52291 + ** Ans : Bulk endpoints are aborted, while the control endpoint is not.
52293 + RtmpDmaEnable(pAd, 0);
52296 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52297 + Value &= ~(1 << 2);
52298 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52300 + /* Make sure there are no pending bulk in/out IRPs before we go on. */
52301 +/*=========================================================================*/
52302 +// while ((atomic_read(&pAd->PendingRx) > 0)) //pAd->BulkFlags != 0 wait bulk out finish
52303 + while (pAd->PendingRx > 0)
52306 + ATE_RTUSBCancelPendingBulkInIRP(pAd);
52308 +// NdisInterlockedDecrement(&pAd->PendingRx);
52309 + pAd->PendingRx--;
52311 + RTMPusecDelay(500000);
52314 + while (((pAd->BulkOutPending[0] == TRUE) ||
52315 + (pAd->BulkOutPending[1] == TRUE) ||
52316 + (pAd->BulkOutPending[2] == TRUE) ||
52317 + (pAd->BulkOutPending[3] == TRUE)) && (pAd->BulkFlags != 0)) //pAd->BulkFlags != 0 wait bulk out finish
52321 + RTUSBCancelPendingBulkOutIRP(pAd);
52324 + RTMPusecDelay(500000);
52327 +// ASSERT(atomic_read(&pAd->PendingRx) == 0);
52328 + ASSERT(pAd->PendingRx == 0);
52329 +/*=========================================================================*/
52330 +/* Reset Rx RING */
52331 +/*=========================================================================*/
52332 +// InterlockedExchange(&pAd->PendingRx, 0);
52333 + pAd->PendingRx = 0;
52334 + pAd->NextRxBulkInReadIndex = 0; // Next Rx Read index
52335 + pAd->NextRxBulkInIndex = RX_RING_SIZE - 1; // Rx Bulk pointer
52336 + pAd->NextRxBulkInPosition = 0;
52337 + for (i = 0; i < (RX_RING_SIZE); i++)
52339 + PRX_CONTEXT pRxContext = &(pAd->RxContext[i]);
52340 + NdisZeroMemory(pRxContext->TransferBuffer, MAX_RXBULK_SIZE);
52341 + /* peter : why don't we have to get BulkInLock first ? */
52342 + pRxContext->pAd = pAd;
52343 + pRxContext->pIrp = NULL;
52344 + /* peter debug ++ */
52345 + pRxContext->BulkInOffset = 0;
52346 + pRxContext->bRxHandling = FALSE;
52347 + /* peter debug -- */
52348 + pRxContext->InUse = FALSE;
52349 + pRxContext->IRPPending = FALSE;
52350 + pRxContext->Readable = FALSE;
52351 +// pRxContext->ReorderInUse = FALSE;
52352 +// pRxContext->ReadPosOffset = 0;
52355 +/*=========================================================================*/
52356 +/* Reset Tx RING */
52357 +/*=========================================================================*/
52360 + RTUSBCancelPendingBulkOutIRP(pAd);
52363 +/*=========================================================================*/
52364 + // Enable auto responder.
52365 + RTMP_IO_READ32(pAd, AUTO_RSP_CFG, &temp);
52366 + temp = temp | (0x01);
52367 + RTMP_IO_WRITE32(pAd, AUTO_RSP_CFG, temp);
52369 +/*================================================*/
52370 + AsicEnableBssSync(pAd);
52372 + /* Soft reset BBP.*/
52373 + /* In 2870 chipset, ATE_BBP_IO_READ8_BY_REG_ID() == RTMP_BBP_IO_READ8_BY_REG_ID() */
52374 + /* Both rt2870ap and rt2870sta use BbpSoftReset(pAd) to do BBP soft reset */
52375 + BbpSoftReset(pAd);
52376 +/*================================================*/
52378 +#ifdef CONFIG_STA_SUPPORT
52379 + // Set all state machines back IDLE
52380 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
52381 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
52382 + pAd->Mlme.AuthMachine.CurrState = AUTH_REQ_IDLE;
52383 + pAd->Mlme.AuthRspMachine.CurrState = AUTH_RSP_IDLE;
52384 + pAd->Mlme.SyncMachine.CurrState = SYNC_IDLE;
52385 + pAd->Mlme.ActMachine.CurrState = ACT_IDLE;
52386 +#endif // CONFIG_STA_SUPPORT //
52389 + // ===> refer to MlmeRestartStateMachine().
52390 + // When we entered ATE_START mode, PeriodicTimer was not cancelled.
52391 + // So we don't have to set it here.
52393 + //RTMPSetTimer(pAd, &pAd->Mlme.PeriodicTimer, MLME_TASK_EXEC_INTV);
52395 + ASSERT(pAd->CommonCfg.Channel != 0);
52397 + AsicSwitchChannel(pAd, pAd->CommonCfg.Channel, FALSE);
52398 + AsicLockChannel(pAd, pAd->CommonCfg.Channel);
52401 +#ifdef CONFIG_STA_SUPPORT
52402 + RTMPStationStart(pAd);
52403 +#endif // CONFIG_STA_SUPPORT //
52406 +// These two steps have been done when entering ATE_STOP mode.
52408 + // Clean ATE Bulk in/out counter and continue setup.
52409 + InterlockedExchange(&pAd->BulkOutRemained, 0);
52410 + NdisAcquireSpinLock(&pAd->GenericLock);
52411 + pAd->ContinBulkOut = FALSE;
52412 + pAd->ContinBulkIn = FALSE;
52413 + NdisReleaseSpinLock(&pAd->GenericLock);
52415 + /* Wait 50ms to prevent next URB to bulkout during HW reset. */
52416 + /* todo : remove this if not necessary */
52417 + NdisMSleep(50000);
52419 + pAd->ate.Mode = ATE_STOP;
52422 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52423 + Value |= (1 << 2);
52424 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52426 +/*=========================================================================*/
52427 + /* restore RX_FILTR_CFG */
52428 +#ifdef CONFIG_STA_SUPPORT
52429 + /* restore RX_FILTR_CFG in order that QA maybe set it to 0x3 */
52430 + RTMP_IO_WRITE32(pAd, RX_FILTR_CFG, STANORMAL);
52431 +#endif // CONFIG_STA_SUPPORT //
52432 +/*=========================================================================*/
52434 + // Enable Tx, RX DMA.
52435 + RtmpDmaEnable(pAd, 1);
52438 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52439 + Value |= (1 << 3);
52440 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52442 + // Wait 10ms to wait all of the bulk-in URBs to complete.
52443 + /* todo : remove this if not necessary */
52444 + NdisMSleep(10000);
52446 + // Everything is ready to start normal Tx/Rx.
52447 + RTUSBBulkReceive(pAd);
52448 + netif_start_queue(pAd->net_dev);
52450 + ATEDBGPRINT(RT_DEBUG_TRACE, ("<=== ATE : ATESTOP \n"));
52452 + else if (!strcmp(arg, "TXCARR")) // Tx Carrier
52454 + ATEDBGPRINT(RT_DEBUG_TRACE, ("ATE: TXCARR\n"));
52455 + pAd->ate.Mode |= ATE_TXCARR;
52458 + for(i=0;i<ATE_BBP_REG_NUM;i++)
52459 + restore_BBP[i]=0;
52460 + //Record All BBP Value
52461 + for(i=0;i<ATE_BBP_REG_NUM;i++)
52462 + ATE_BBP_IO_READ8_BY_REG_ID(pAd,i,&restore_BBP[i]);
52463 +#endif // RT30xx //
52466 + // May be we need not to do this, because these have been done in ATE_START mode ???
52467 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52468 + Value &= ~(1 << 3);
52469 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52471 + // QA has done the following steps if it is used.
52472 + if (pAd->ate.bQATxStart == FALSE)
52474 + // Soft reset BBP.
52475 + BbpSoftReset(pAd);
52477 + // Carrier Test set BBP R22 bit7=1, bit6=1, bit[5~0]=0x01
52478 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R22, &BbpData);
52479 + BbpData &= 0xFFFFFF00; //clear bit7, bit6, bit[5~0]
52480 + BbpData |= 0x000000C1; //set bit7=1, bit6=1, bit[5~0]=0x01
52481 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R22, BbpData);
52483 + // set MAC_SYS_CTRL(0x1004) Continuous Tx Production Test (bit4) = 1
52484 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52485 + Value = Value | 0x00000010;
52486 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52489 + else if (!strcmp(arg, "TXCONT")) // Tx Continue
52491 + if (pAd->ate.bQATxStart == TRUE)
52493 + /* set MAC_SYS_CTRL(0x1004) bit4(Continuous Tx Production Test)
52494 + and bit2(MAC TX enable) back to zero. */
52495 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &MacData);
52496 + MacData &= 0xFFFFFFEB;
52497 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, MacData);
52499 + // set BBP R22 bit7=0
52500 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R22, &BbpData);
52501 + BbpData &= 0xFFFFFF7F; //set bit7=0
52502 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R22, BbpData);
52505 + /* for TxCont mode.
52506 + ** Step 1: Send 50 packets first then wait for a moment.
52507 + ** Step 2: Send more 50 packet then start continue mode.
52509 + ATEDBGPRINT(RT_DEBUG_TRACE, ("ATE: TXCONT\n"));
52512 + for(i=0;i<ATE_BBP_REG_NUM;i++)
52513 + restore_BBP[i]=0;
52514 + //Record All BBP Value
52515 + for(i=0;i<ATE_BBP_REG_NUM;i++)
52516 + ATE_BBP_IO_READ8_BY_REG_ID(pAd,i,&restore_BBP[i]);
52517 +#endif // RT30xx //
52519 + // Step 1: send 50 packets first.
52520 + pAd->ate.Mode |= ATE_TXCONT;
52521 + pAd->ate.TxCount = 50;
52522 + pAd->ate.TxDoneCount = 0;
52524 + // Soft reset BBP.
52525 + BbpSoftReset(pAd);
52527 + // Abort Tx, RX DMA.
52528 + RtmpDmaEnable(pAd, 0);
52531 + /* Only needed if we have to send some normal frames. */
52532 + SetJapanFilter(pAd);
52534 + // Setup frame format.
52535 + ATESetUpFrame(pAd, 0);
52538 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52539 + Value |= (1 << 2);
52540 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52543 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52544 + Value &= ~(1 << 3);
52545 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52547 + // Start Tx, RX DMA.
52548 + RtmpDmaEnable(pAd, 1);
52550 + InterlockedExchange(&pAd->BulkOutRemained, pAd->ate.TxCount);
52552 +#ifdef RALINK_28xx_QA
52553 + if (pAd->ate.bQATxStart == TRUE)
52555 + pAd->ate.TxStatus = 1;
52556 + //pAd->ate.Repeat = 0;
52558 +#endif // RALINK_28xx_QA //
52560 + NdisAcquireSpinLock(&pAd->GenericLock);//0820
52561 + pAd->ContinBulkOut = FALSE;
52562 + NdisReleaseSpinLock(&pAd->GenericLock);
52564 + RTUSB_SET_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_ATE);
52567 + RTUSBKickBulkOut(pAd);
52569 + /* To make sure all the 50 frames have been bulk out before executing step 2 */
52570 + while (atomic_read(&pAd->BulkOutRemained) > 0)
52572 + RTMPusecDelay(5000);
52575 + // Step 2: send more 50 packets then start continue mode.
52576 + // Abort Tx, RX DMA.
52577 + RtmpDmaEnable(pAd, 0);
52579 + // Cont. TX set BBP R22 bit7=1
52580 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R22, &BbpData);
52581 + BbpData |= 0x00000080; //set bit7=1
52582 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R22, BbpData);
52584 + pAd->ate.TxCount = 50;
52585 + pAd->ate.TxDoneCount = 0;
52587 + SetJapanFilter(pAd);
52589 + // Setup frame format.
52590 + ATESetUpFrame(pAd, 0);
52593 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52594 + Value |= (1 << 2);
52595 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52598 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52599 + Value &= ~(1 << 3);
52601 + // Start Tx, RX DMA.
52602 + RtmpDmaEnable(pAd, 1);
52604 + InterlockedExchange(&pAd->BulkOutRemained, pAd->ate.TxCount);
52606 +#ifdef RALINK_28xx_QA
52607 + if (pAd->ate.bQATxStart == TRUE)
52609 + pAd->ate.TxStatus = 1;
52610 + //pAd->ate.Repeat = 0;
52612 +#endif // RALINK_28xx_QA //
52614 + NdisAcquireSpinLock(&pAd->GenericLock);//0820
52615 + pAd->ContinBulkOut = FALSE;
52616 + NdisReleaseSpinLock(&pAd->GenericLock);
52618 + RTUSB_SET_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_ATE);
52620 + RTUSBKickBulkOut(pAd);
52623 + RTMPusecDelay(500);
52625 + while (atomic_read(&pAd->BulkOutRemained) > 0)
52627 + RTMPusecDelay(5000);
52631 + // Set MAC_SYS_CTRL(0x1004) Continuous Tx Production Test (bit4) = 1.
52632 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &MacData);
52633 + MacData |= 0x00000010;
52634 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, MacData);
52636 + else if (!strcmp(arg, "TXFRAME")) // Tx Frames
52638 + ATEDBGPRINT(RT_DEBUG_TRACE, ("ATE: TXFRAME(Count=0x%08x)\n", pAd->ate.TxCount));
52639 + pAd->ate.Mode |= ATE_TXFRAME;
52641 + // Soft reset BBP.
52642 + BbpSoftReset(pAd);
52644 + // Default value in BBP R22 is 0x0.
52647 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &MacData);
52649 + // Clean bit4 to stop continuous Tx production test.
52650 + MacData &= 0xFFFFFFEF;
52652 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R22, BbpData);
52653 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, MacData);
52655 +#ifdef RALINK_28xx_QA
52656 + // add this for LoopBack mode
52657 + if (pAd->ate.bQARxStart == FALSE)
52660 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52661 + Value &= ~(1 << 3);
52662 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52665 + if (pAd->ate.bQATxStart == TRUE)
52667 + pAd->ate.TxStatus = 1;
52668 + //pAd->ate.Repeat = 0;
52672 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52673 + Value &= ~(1 << 3);
52674 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52675 +#endif // RALINK_28xx_QA //
52678 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52679 + Value |= (1 << 2);
52680 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52682 + SetJapanFilter(pAd);
52684 + // Abort Tx, RX DMA.
52685 + RtmpDmaEnable(pAd, 0);
52687 + pAd->ate.TxDoneCount = 0;
52689 + // Setup frame format
52690 + ATESetUpFrame(pAd, 0);
52692 + // Start Tx, RX DMA.
52693 + RtmpDmaEnable(pAd, 1);
52695 + // Check count is continuous or not yet.
52697 + // Due to the type mismatch between "pAd->BulkOutRemained"(atomic_t) and "pAd->ate.TxCount"(UINT32)
52699 + if (pAd->ate.TxCount == 0)
52701 + InterlockedExchange(&pAd->BulkOutRemained, 0);
52705 + InterlockedExchange(&pAd->BulkOutRemained, pAd->ate.TxCount);
52707 + ATEDBGPRINT(RT_DEBUG_TRACE, ("bulk out count = %d\n", atomic_read(&pAd->BulkOutRemained)));
52708 + ASSERT((atomic_read(&pAd->BulkOutRemained) >= 0));
52710 + if (atomic_read(&pAd->BulkOutRemained) == 0)
52712 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Send packet countinuously\n"));
52714 + /* In 28xx, NdisAcquireSpinLock() == spin_lock_bh() */
52715 + /* NdisAcquireSpinLock only need one argument in 28xx. */
52716 + NdisAcquireSpinLock(&pAd->GenericLock);
52717 + pAd->ContinBulkOut = TRUE;
52718 + NdisReleaseSpinLock(&pAd->GenericLock);
52720 + /* In 28xx, BULK_OUT_LOCK() == spin_lock_irqsave() */
52721 + BULK_OUT_LOCK(&pAd->BulkOutLock[0], IrqFlags);// peter : NdisAcquireSpinLock ==> BULK_OUT_LOCK
52722 + pAd->BulkOutPending[0] = FALSE;
52723 + BULK_OUT_UNLOCK(&pAd->BulkOutLock[0], IrqFlags);// peter : NdisAcquireSpinLock ==> BULK_OUT_LOCK
52727 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Send packets depend on counter\n"));
52729 + NdisAcquireSpinLock(&pAd->GenericLock);
52730 + pAd->ContinBulkOut = FALSE;
52731 + NdisReleaseSpinLock(&pAd->GenericLock);
52733 + BULK_OUT_LOCK(&pAd->BulkOutLock[0], IrqFlags);
52734 + pAd->BulkOutPending[0] = FALSE;
52735 + BULK_OUT_UNLOCK(&pAd->BulkOutLock[0], IrqFlags);
52738 + RTUSB_SET_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_ATE);
52741 + RTUSBKickBulkOut(pAd);
52743 +#ifdef RALINK_28xx_QA
52744 + else if (!strcmp(arg, "TXSTOP")) //Enter ATE mode and set Tx/Rx Idle
52746 + ATEDBGPRINT(RT_DEBUG_TRACE, ("ATE: TXSTOP\n"));
52748 + atemode = pAd->ate.Mode;
52749 + pAd->ate.Mode &= ATE_TXSTOP;
52750 + pAd->ate.bQATxStart = FALSE;
52751 +// pAd->ate.TxDoneCount = pAd->ate.TxCount;
52753 +/*=========================================================================*/
52754 + if (atemode & ATE_TXCARR)
52756 + // No Carrier Test set BBP R22 bit7=0, bit6=0, bit[5~0]=0x0
52757 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R22, &BbpData);
52758 + BbpData &= 0xFFFFFF00; //clear bit7, bit6, bit[5~0]
52759 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R22, BbpData);
52761 + else if (atemode & ATE_TXCARRSUPP)
52763 + // No Cont. TX set BBP R22 bit7=0
52764 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R22, &BbpData);
52765 + BbpData &= ~(1 << 7); //set bit7=0
52766 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R22, BbpData);
52768 + // No Carrier Suppression set BBP R24 bit0=0
52769 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R24, &BbpData);
52770 + BbpData &= 0xFFFFFFFE; //clear bit0
52771 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R24, BbpData);
52773 + else if ((atemode & ATE_TXFRAME) || (atemode == ATE_STOP))
52775 + if (atemode & ATE_TXCONT)
52777 + // No Cont. TX set BBP R22 bit7=0
52778 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R22, &BbpData);
52779 + BbpData &= ~(1 << 7); //set bit7=0
52780 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R22, BbpData);
52784 +/*=========================================================================*/
52785 + RTUSBRejectPendingPackets(pAd);
52786 + RTUSBCleanUpDataBulkOutQueue(pAd);
52788 + /* not used in RT28xx */
52789 + //RTUSBCleanUpMLMEWaitQueue(pAd);
52790 + /* empty function so far */
52791 + RTUSBCleanUpMLMEBulkOutQueue(pAd);
52792 +/*=========================================================================*/
52793 + // Abort Tx, RX DMA.
52794 + RtmpDmaEnable(pAd, 0);
52795 +/*=========================================================================*/
52797 + /* In 28xx, pAd->PendingRx is not of type atomic_t anymore */
52798 +// while ((atomic_read(&pAd->PendingRx) > 0)) //pAd->BulkFlags != 0 wait bulk out finish
52799 + /* peter todo : BulkInLock */
52800 + while (pAd->PendingRx > 0)
52803 + ATE_RTUSBCancelPendingBulkInIRP(pAd);
52805 +// NdisInterlockedDecrement(&pAd->PendingRx);
52806 + pAd->PendingRx--;
52808 + RTMPusecDelay(500000);
52811 + while (((pAd->BulkOutPending[0] == TRUE) ||
52812 + (pAd->BulkOutPending[1] == TRUE) ||
52813 + (pAd->BulkOutPending[2] == TRUE) ||
52814 + (pAd->BulkOutPending[3] == TRUE)) && (pAd->BulkFlags != 0)) //pAd->BulkFlags != 0 wait bulk out finish
52818 + RTUSBCancelPendingBulkOutIRP(pAd);
52821 + RTMPusecDelay(500000);
52824 + ASSERT(pAd->PendingRx == 0);
52825 +/*=========================================================================*/
52826 + // Enable Tx, Rx DMA.
52827 + RtmpDmaEnable(pAd, 1);
52829 + /* task Tx status : 0 --> task is idle, 1 --> task is running */
52830 + pAd->ate.TxStatus = 0;
52832 + // Soft reset BBP.
52833 + BbpSoftReset(pAd);
52836 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &MacData);
52837 + MacData &= (0xfffffffb);
52838 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, MacData);
52840 + //Clean ATE Bulk in/out counter and continue setup
52841 + InterlockedExchange(&pAd->BulkOutRemained, 0);
52843 + pAd->ContinBulkOut = FALSE;
52845 + else if (!strcmp(arg, "RXSTOP"))
52847 + ATEDBGPRINT(RT_DEBUG_TRACE, ("ATE: RXSTOP\n"));
52848 + atemode = pAd->ate.Mode;
52851 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52852 + Value &= ~(1 << 3);
52853 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52855 + pAd->ate.Mode &= ATE_RXSTOP;
52856 + pAd->ate.bQARxStart = FALSE;
52857 +// pAd->ate.TxDoneCount = pAd->ate.TxCount;
52859 +/*=========================================================================*/
52860 + RTUSBRejectPendingPackets(pAd);
52861 + RTUSBCleanUpDataBulkOutQueue(pAd);
52863 + /* not used in RT28xx */
52864 + //RTUSBCleanUpMLMEWaitQueue(pAd);
52865 + RTUSBCleanUpMLMEBulkOutQueue(pAd);
52866 +/*=========================================================================*/
52868 + // Abort Tx, RX DMA.
52869 + RtmpDmaEnable(pAd, 0);
52870 +/*=========================================================================*/
52871 +// while ((atomic_read(&pAd->PendingRx) > 0))
52872 + while (pAd->PendingRx > 0)
52875 + ATE_RTUSBCancelPendingBulkInIRP(pAd);
52877 +// NdisInterlockedDecrement(&pAd->PendingRx);
52878 + pAd->PendingRx--;
52880 + RTMPusecDelay(500000);
52883 + while (((pAd->BulkOutPending[0] == TRUE) ||
52884 + (pAd->BulkOutPending[1] == TRUE) ||
52885 + (pAd->BulkOutPending[2] == TRUE) ||
52886 + (pAd->BulkOutPending[3] == TRUE)) && (pAd->BulkFlags != 0)) //pAd->BulkFlags != 0 wait bulk out finish
52890 + RTUSBCancelPendingBulkOutIRP(pAd);
52893 + RTMPusecDelay(500000);
52896 + ASSERT(pAd->PendingRx == 0);
52897 +/*=========================================================================*/
52899 + // Soft reset BBP.
52900 + BbpSoftReset(pAd);
52901 + pAd->ContinBulkIn = FALSE;
52903 +#endif // RALINK_28xx_QA //
52904 + else if (!strcmp(arg, "RXFRAME")) // Rx Frames
52906 + ATEDBGPRINT(RT_DEBUG_TRACE, ("ATE: RXFRAME\n"));
52908 + // Disable Rx of MAC block
52909 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52910 + Value &= ~(1 << 3);
52911 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52913 + // Default value in BBP R22 is 0x0.
52916 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &MacData);
52917 + // Clean bit4 to stop continuous Tx production test.
52918 + MacData &= 0xFFFFFFEF;
52920 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R22, BbpData);
52921 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, MacData);
52923 + pAd->ate.Mode |= ATE_RXFRAME;
52925 + // Abort Tx, RX DMA.
52926 + RtmpDmaEnable(pAd, 0);
52928 + // Disable TX of MAC block
52929 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52930 + Value &= ~(1 << 2);
52931 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52933 + // Reset Rx RING.
52934 + for ( i = 0; i < (RX_RING_SIZE); i++)
52936 + PRX_CONTEXT pRxContext = &(pAd->RxContext[i]);
52938 + pRxContext->InUse = FALSE;
52939 + pRxContext->IRPPending = FALSE;
52940 + pRxContext->Readable = FALSE;
52943 + // Get the urb from kernel back to driver.
52945 + RTUSB_UNLINK_URB(pRxContext->pUrb);
52947 + /* Sleep 200 microsecs to give cancellation time to work. */
52949 + pAd->BulkInReq = 0;
52951 +// InterlockedExchange(&pAd->PendingRx, 0);
52952 + pAd->PendingRx = 0;
52953 + pAd->NextRxBulkInReadIndex = 0; // Next Rx Read index
52954 + pAd->NextRxBulkInIndex = RX_RING_SIZE - 1; // Rx Bulk pointer
52955 + pAd->NextRxBulkInPosition = 0;
52958 + // read to clear counters
52959 + RTUSBReadMACRegister(pAd, RX_STA_CNT0, &temp); //RX PHY & RX CRC count
52960 + RTUSBReadMACRegister(pAd, RX_STA_CNT1, &temp); //RX PLCP error count & CCA false alarm count
52961 + RTUSBReadMACRegister(pAd, RX_STA_CNT2, &temp); //RX FIFO overflow frame count & RX duplicated filtered frame count
52963 + pAd->ContinBulkIn = TRUE;
52965 + // Enable Tx, RX DMA.
52966 + RtmpDmaEnable(pAd, 1);
52968 + // Enable RX of MAC block
52969 + RTMP_IO_READ32(pAd, MAC_SYS_CTRL, &Value);
52970 + Value |= (1 << 3);
52971 + RTMP_IO_WRITE32(pAd, MAC_SYS_CTRL, Value);
52974 + RTUSBBulkReceive(pAd);
52978 + ATEDBGPRINT(RT_DEBUG_TRACE, ("ATE: Invalid arg!\n"));
52981 + RTMPusecDelay(5000);
52983 + ATEDBGPRINT(RT_DEBUG_TRACE, ("<=== ATECmdHandler()\n"));
52987 +#endif // RT2870 //
52990 + IN PRTMP_ADAPTER pAd,
52993 + if (ATECmdHandler(pAd, arg))
52995 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Ralink: Set_ATE_Proc Success\n"));
53002 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Ralink: Set_ATE_Proc Failed\n"));
53008 + ==========================================================================
53010 + Set ATE ADDR1=DA for TxFrame(AP : To DS = 0 ; From DS = 1)
53012 + Set ATE ADDR3=DA for TxFrame(STA : To DS = 1 ; From DS = 0)
53015 + TRUE if all parameters are OK, FALSE otherwise
53016 + ==========================================================================
53018 +INT Set_ATE_DA_Proc(
53019 + IN PRTMP_ADAPTER pAd,
53025 + if(strlen(arg) != 17) //Mac address acceptable format 01:02:03:04:05:06 length 17
53028 + for (i=0, value = rstrtok(arg, ":"); value; value = rstrtok(NULL, ":"))
53030 + if((strlen(value) != 2) || (!isxdigit(*value)) || (!isxdigit(*(value+1))) )
53031 + return FALSE; //Invalid
53034 +#ifdef CONFIG_STA_SUPPORT
53035 + AtoH(value, &pAd->ate.Addr3[i++], 1);
53036 +#endif // CONFIG_STA_SUPPORT //
53040 + return FALSE; //Invalid
53043 +#ifdef CONFIG_STA_SUPPORT
53044 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Set_ATE_DA_Proc (DA = %2X:%2X:%2X:%2X:%2X:%2X)\n", pAd->ate.Addr3[0],
53045 + pAd->ate.Addr3[1], pAd->ate.Addr3[2], pAd->ate.Addr3[3], pAd->ate.Addr3[4], pAd->ate.Addr3[5]));
53046 +#endif // CONFIG_STA_SUPPORT //
53048 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Ralink: Set_ATE_DA_Proc Success\n"));
53054 + ==========================================================================
53056 + Set ATE ADDR3=SA for TxFrame(AP : To DS = 0 ; From DS = 1)
53058 + Set ATE ADDR2=SA for TxFrame(STA : To DS = 1 ; From DS = 0)
53061 + TRUE if all parameters are OK, FALSE otherwise
53062 + ==========================================================================
53064 +INT Set_ATE_SA_Proc(
53065 + IN PRTMP_ADAPTER pAd,
53071 + if(strlen(arg) != 17) //Mac address acceptable format 01:02:03:04:05:06 length 17
53074 + for (i=0, value = rstrtok(arg, ":"); value; value = rstrtok(NULL, ":"))
53076 + if((strlen(value) != 2) || (!isxdigit(*value)) || (!isxdigit(*(value+1))) )
53077 + return FALSE; //Invalid
53080 +#ifdef CONFIG_STA_SUPPORT
53081 + AtoH(value, &pAd->ate.Addr2[i++], 1);
53082 +#endif // CONFIG_STA_SUPPORT //
53086 + return FALSE; //Invalid
53089 +#ifdef CONFIG_STA_SUPPORT
53090 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Set_ATE_SA_Proc (SA = %2X:%2X:%2X:%2X:%2X:%2X)\n", pAd->ate.Addr2[0],
53091 + pAd->ate.Addr2[1], pAd->ate.Addr2[2], pAd->ate.Addr2[3], pAd->ate.Addr2[4], pAd->ate.Addr2[5]));
53092 +#endif // CONFIG_STA_SUPPORT //
53094 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Ralink: Set_ATE_SA_Proc Success\n"));
53100 + ==========================================================================
53102 + Set ATE ADDR2=BSSID for TxFrame(AP : To DS = 0 ; From DS = 1)
53104 + Set ATE ADDR1=BSSID for TxFrame(STA : To DS = 1 ; From DS = 0)
53107 + TRUE if all parameters are OK, FALSE otherwise
53108 + ==========================================================================
53110 +INT Set_ATE_BSSID_Proc(
53111 + IN PRTMP_ADAPTER pAd,
53117 + if(strlen(arg) != 17) //Mac address acceptable format 01:02:03:04:05:06 length 17
53120 + for (i=0, value = rstrtok(arg, ":"); value; value = rstrtok(NULL, ":"))
53122 + if((strlen(value) != 2) || (!isxdigit(*value)) || (!isxdigit(*(value+1))) )
53123 + return FALSE; //Invalid
53126 +#ifdef CONFIG_STA_SUPPORT
53127 + AtoH(value, &pAd->ate.Addr1[i++], 1);
53128 +#endif // CONFIG_STA_SUPPORT //
53132 + return FALSE; //Invalid
53135 +#ifdef CONFIG_STA_SUPPORT
53136 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Set_ATE_BSSID_Proc (BSSID = %2X:%2X:%2X:%2X:%2X:%2X)\n", pAd->ate.Addr1[0],
53137 + pAd->ate.Addr1[1], pAd->ate.Addr1[2], pAd->ate.Addr1[3], pAd->ate.Addr1[4], pAd->ate.Addr1[5]));
53138 +#endif // CONFIG_STA_SUPPORT //
53140 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Ralink: Set_ATE_BSSID_Proc Success\n"));
53146 + ==========================================================================
53148 + Set ATE Tx Channel
53151 + TRUE if all parameters are OK, FALSE otherwise
53152 + ==========================================================================
53154 +INT Set_ATE_CHANNEL_Proc(
53155 + IN PRTMP_ADAPTER pAd,
53160 + channel = simple_strtol(arg, 0, 10);
53162 + if ((channel < 1) || (channel > 216))// to allow A band channel : ((channel < 1) || (channel > 14))
53164 + ATEDBGPRINT(RT_DEBUG_ERROR, ("Set_ATE_CHANNEL_Proc::Out of range, it should be in range of 1~14.\n"));
53167 + pAd->ate.Channel = channel;
53169 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Set_ATE_CHANNEL_Proc (ATE Channel = %d)\n", pAd->ate.Channel));
53170 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Ralink: Set_ATE_CHANNEL_Proc Success\n"));
53177 + ==========================================================================
53179 + Set ATE Tx Power0
53182 + TRUE if all parameters are OK, FALSE otherwise
53183 + ==========================================================================
53185 +INT Set_ATE_TX_POWER0_Proc(
53186 + IN PRTMP_ADAPTER pAd,
53191 + TxPower = simple_strtol(arg, 0, 10);
53193 + if (pAd->ate.Channel <= 14)
53195 + if ((TxPower > 31) || (TxPower < 0))
53197 + ATEDBGPRINT(RT_DEBUG_ERROR, ("Set_ATE_TX_POWER0_Proc::Out of range (Value=%d)\n", TxPower));
53203 + if ((TxPower > 15) || (TxPower < -7))
53205 + ATEDBGPRINT(RT_DEBUG_ERROR, ("Set_ATE_TX_POWER0_Proc::Out of range (Value=%d)\n", TxPower));
53210 + pAd->ate.TxPower0 = TxPower;
53211 + ATETxPwrHandler(pAd, 0);
53212 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Ralink: Set_ATE_TX_POWER0_Proc Success\n"));
53219 + ==========================================================================
53221 + Set ATE Tx Power1
53224 + TRUE if all parameters are OK, FALSE otherwise
53225 + ==========================================================================
53227 +INT Set_ATE_TX_POWER1_Proc(
53228 + IN PRTMP_ADAPTER pAd,
53233 + TxPower = simple_strtol(arg, 0, 10);
53235 + if (pAd->ate.Channel <= 14)
53237 + if ((TxPower > 31) || (TxPower < 0))
53239 + ATEDBGPRINT(RT_DEBUG_ERROR, ("Set_ATE_TX_POWER1_Proc::Out of range (Value=%d)\n", TxPower));
53245 + if ((TxPower > 15) || (TxPower < -7))
53247 + ATEDBGPRINT(RT_DEBUG_ERROR, ("Set_ATE_TX_POWER1_Proc::Out of range (Value=%d)\n", TxPower));
53252 + pAd->ate.TxPower1 = TxPower;
53253 + ATETxPwrHandler(pAd, 1);
53254 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Ralink: Set_ATE_TX_POWER1_Proc Success\n"));
53261 + ==========================================================================
53263 + Set ATE Tx Antenna
53266 + TRUE if all parameters are OK, FALSE otherwise
53267 + ==========================================================================
53269 +INT Set_ATE_TX_Antenna_Proc(
53270 + IN PRTMP_ADAPTER pAd,
53275 + value = simple_strtol(arg, 0, 10);
53277 + if ((value > 2) || (value < 0))
53279 + ATEDBGPRINT(RT_DEBUG_ERROR, ("Set_ATE_TX_Antenna_Proc::Out of range (Value=%d)\n", value));
53283 + pAd->ate.TxAntennaSel = value;
53285 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Set_ATE_TX_Antenna_Proc (Antenna = %d)\n", pAd->ate.TxAntennaSel));
53286 + ATEDBGPRINT(RT_DEBUG_TRACE,("Ralink: Set_ATE_TX_Antenna_Proc Success\n"));
53293 + ==========================================================================
53295 + Set ATE Rx Antenna
53298 + TRUE if all parameters are OK, FALSE otherwise
53299 + ==========================================================================
53301 +INT Set_ATE_RX_Antenna_Proc(
53302 + IN PRTMP_ADAPTER pAd,
53307 + value = simple_strtol(arg, 0, 10);
53309 + if ((value > 3) || (value < 0))
53311 + ATEDBGPRINT(RT_DEBUG_ERROR, ("Set_ATE_RX_Antenna_Proc::Out of range (Value=%d)\n", value));
53315 + pAd->ate.RxAntennaSel = value;
53317 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Set_ATE_RX_Antenna_Proc (Antenna = %d)\n", pAd->ate.RxAntennaSel));
53318 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Ralink: Set_ATE_RX_Antenna_Proc Success\n"));
53325 + ==========================================================================
53327 + Set ATE RF frequence offset
53330 + TRUE if all parameters are OK, FALSE otherwise
53331 + ==========================================================================
53333 +INT Set_ATE_TX_FREQOFFSET_Proc(
53334 + IN PRTMP_ADAPTER pAd,
53337 + UCHAR RFFreqOffset;
53340 + RFFreqOffset = simple_strtol(arg, 0, 10);
53342 + if(RFFreqOffset >= 64)
53343 +#endif // RT30xx //
53345 +//2008/08/06: KH modified the limit of offset value from 65 to 95(0x5F)
53346 + if(RFFreqOffset >= 95)
53347 +#endif // RT30xx //
53349 + ATEDBGPRINT(RT_DEBUG_ERROR, ("Set_ATE_TX_FREQOFFSET_Proc::Out of range, it should be in range of 0~63.\n"));
53353 + pAd->ate.RFFreqOffset = RFFreqOffset;
53355 + if(IS_RT30xx(pAd))
53359 + RT30xxReadRFRegister(pAd, RF_R23, (PUCHAR)&RFValue);
53360 + //2008/08/06: KH modified "pAd->RFFreqOffset" to "pAd->ate.RFFreqOffset"
53361 + RFValue = (RFValue & 0x80) | pAd->ate.RFFreqOffset;
53362 + RT30xxWriteRFRegister(pAd, RF_R23, (UCHAR)RFValue);
53365 +#endif // RT30xx //
53368 + R4 = pAd->ate.RFFreqOffset << 15; // shift TX power control to correct RF register bit position
53369 + R4 |= (pAd->LatchRfRegs.R4 & ((~0x001f8000)));
53370 + pAd->LatchRfRegs.R4 = R4;
53372 + RtmpRfIoWrite(pAd);
53374 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Set_ATE_TX_FREQOFFSET_Proc (RFFreqOffset = %d)\n", pAd->ate.RFFreqOffset));
53375 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Ralink: Set_ATE_TX_FREQOFFSET_Proc Success\n"));
53382 + ==========================================================================
53387 + TRUE if all parameters are OK, FALSE otherwise
53388 + ==========================================================================
53390 +INT Set_ATE_TX_BW_Proc(
53391 + IN PRTMP_ADAPTER pAd,
53396 + UCHAR BBPCurrentBW;
53398 + BBPCurrentBW = simple_strtol(arg, 0, 10);
53400 + if(BBPCurrentBW == 0)
53401 + pAd->ate.TxWI.BW = BW_20;
53403 + pAd->ate.TxWI.BW = BW_40;
53405 + if(pAd->ate.TxWI.BW == BW_20)
53407 + if(pAd->ate.Channel <= 14)
53409 + for (i=0; i<5; i++)
53411 + if (pAd->Tx20MPwrCfgGBand[i] != 0xffffffff)
53413 + RTMP_IO_WRITE32(pAd, TX_PWR_CFG_0 + i*4, pAd->Tx20MPwrCfgGBand[i]);
53414 + RTMPusecDelay(5000);
53420 + for (i=0; i<5; i++)
53422 + if (pAd->Tx20MPwrCfgABand[i] != 0xffffffff)
53424 + RTMP_IO_WRITE32(pAd, TX_PWR_CFG_0 + i*4, pAd->Tx20MPwrCfgABand[i]);
53425 + RTMPusecDelay(5000);
53430 + //Set BBP R4 bit[4:3]=0:0
53431 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &value);
53432 + value &= (~0x18);
53433 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, value);
53435 + //Set BBP R66=0x3C
53437 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, value);
53438 + //Set BBP R68=0x0B
53439 + //to improve Rx sensitivity.
53441 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R68, value);
53442 + //Set BBP R69=0x16
53444 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R69, value);
53445 + //Set BBP R70=0x08
53447 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R70, value);
53448 + //Set BBP R73=0x11
53450 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R73, value);
53452 + // If Channel=14, Bandwidth=20M and Mode=CCK, Set BBP R4 bit5=1
53453 + // (Japan filter coefficients)
53454 + // This segment of code will only works when ATETXMODE and ATECHANNEL
53455 + // were set to MODE_CCK and 14 respectively before ATETXBW is set to 0.
53456 + //=====================================================================
53457 + if (pAd->ate.Channel == 14)
53459 + int TxMode = pAd->ate.TxWI.PHYMODE;
53460 + if (TxMode == MODE_CCK)
53462 + // when Channel==14 && Mode==CCK && BandWidth==20M, BBP R4 bit5=1
53463 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &value);
53464 + value |= 0x20; //set bit5=1
53465 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, value);
53469 + //=====================================================================
53470 + // If bandwidth != 40M, RF Reg4 bit 21 = 0.
53473 + if(IS_RT30xx(pAd))
53474 + RT30xxWriteRFRegister(pAd, RF_R24, (UCHAR) pAd->Mlme.CaliBW20RfR24);
53476 +#endif // RT30xx //
53478 + pAd->LatchRfRegs.R4 &= ~0x00200000;
53479 + RtmpRfIoWrite(pAd);
53483 + else if(pAd->ate.TxWI.BW == BW_40)
53485 + if(pAd->ate.Channel <= 14)
53487 + for (i=0; i<5; i++)
53489 + if (pAd->Tx40MPwrCfgGBand[i] != 0xffffffff)
53491 + RTMP_IO_WRITE32(pAd, TX_PWR_CFG_0 + i*4, pAd->Tx40MPwrCfgGBand[i]);
53492 + RTMPusecDelay(5000);
53498 + for (i=0; i<5; i++)
53500 + if (pAd->Tx40MPwrCfgABand[i] != 0xffffffff)
53502 + RTMP_IO_WRITE32(pAd, TX_PWR_CFG_0 + i*4, pAd->Tx40MPwrCfgABand[i]);
53503 + RTMPusecDelay(5000);
53506 +#ifdef DOT11_N_SUPPORT
53507 + if ((pAd->ate.TxWI.PHYMODE >= MODE_HTMIX) && (pAd->ate.TxWI.MCS == 7))
53510 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R67, value);
53512 +#endif // DOT11_N_SUPPORT //
53515 + //Set BBP R4 bit[4:3]=1:0
53516 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &value);
53517 + value &= (~0x18);
53519 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, value);
53521 + //Set BBP R66=0x3C
53523 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, value);
53524 + //Set BBP R68=0x0C
53525 + //to improve Rx sensitivity.
53527 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R68, value);
53528 + //Set BBP R69=0x1A
53530 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R69, value);
53531 + //Set BBP R70=0x0A
53533 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R70, value);
53534 + //Set BBP R73=0x16
53536 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R73, value);
53538 + // If bandwidth = 40M, set RF Reg4 bit 21 = 1.
53541 + if(IS_RT30xx(pAd))
53542 + RT30xxWriteRFRegister(pAd, RF_R24, (UCHAR) pAd->Mlme.CaliBW40RfR24);
53544 +#endif // RT30xx //
53546 + pAd->LatchRfRegs.R4 |= 0x00200000;
53547 + RtmpRfIoWrite(pAd);
53551 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Set_ATE_TX_BW_Proc (BBPCurrentBW = %d)\n", pAd->ate.TxWI.BW));
53552 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Ralink: Set_ATE_TX_BW_Proc Success\n"));
53559 + ==========================================================================
53561 + Set ATE Tx frame length
53564 + TRUE if all parameters are OK, FALSE otherwise
53565 + ==========================================================================
53567 +INT Set_ATE_TX_LENGTH_Proc(
53568 + IN PRTMP_ADAPTER pAd,
53571 + pAd->ate.TxLength = simple_strtol(arg, 0, 10);
53573 + if((pAd->ate.TxLength < 24) || (pAd->ate.TxLength > (MAX_FRAME_SIZE - 34/* == 2312 */)))
53575 + pAd->ate.TxLength = (MAX_FRAME_SIZE - 34/* == 2312 */);
53576 + ATEDBGPRINT(RT_DEBUG_ERROR, ("Set_ATE_TX_LENGTH_Proc::Out of range, it should be in range of 24~%d.\n", (MAX_FRAME_SIZE - 34/* == 2312 */)));
53580 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Set_ATE_TX_LENGTH_Proc (TxLength = %d)\n", pAd->ate.TxLength));
53581 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Ralink: Set_ATE_TX_LENGTH_Proc Success\n"));
53588 + ==========================================================================
53590 + Set ATE Tx frame count
53593 + TRUE if all parameters are OK, FALSE otherwise
53594 + ==========================================================================
53596 +INT Set_ATE_TX_COUNT_Proc(
53597 + IN PRTMP_ADAPTER pAd,
53600 + pAd->ate.TxCount = simple_strtol(arg, 0, 10);
53602 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Set_ATE_TX_COUNT_Proc (TxCount = %d)\n", pAd->ate.TxCount));
53603 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Ralink: Set_ATE_TX_COUNT_Proc Success\n"));
53610 + ==========================================================================
53612 + Set ATE Tx frame MCS
53615 + TRUE if all parameters are OK, FALSE otherwise
53616 + ==========================================================================
53618 +INT Set_ATE_TX_MCS_Proc(
53619 + IN PRTMP_ADAPTER pAd,
53625 + MCS = simple_strtol(arg, 0, 10);
53626 + result = CheckMCSValid(pAd->ate.TxWI.PHYMODE, MCS);
53628 + if (result != -1)
53630 + pAd->ate.TxWI.MCS = (UCHAR)MCS;
53634 + ATEDBGPRINT(RT_DEBUG_ERROR, ("Set_ATE_TX_MCS_Proc::Out of range, refer to rate table.\n"));
53638 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Set_ATE_TX_MCS_Proc (MCS = %d)\n", pAd->ate.TxWI.MCS));
53639 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Ralink: Set_ATE_TX_MCS_Proc Success\n"));
53646 + ==========================================================================
53648 + Set ATE Tx frame Mode
53652 + 3: MODE_HTGREENFIELD
53655 + TRUE if all parameters are OK, FALSE otherwise
53656 + ==========================================================================
53658 +INT Set_ATE_TX_MODE_Proc(
53659 + IN PRTMP_ADAPTER pAd,
53662 + pAd->ate.TxWI.PHYMODE = simple_strtol(arg, 0, 10);
53664 + if(pAd->ate.TxWI.PHYMODE > 3)
53666 + pAd->ate.TxWI.PHYMODE = 0;
53667 + ATEDBGPRINT(RT_DEBUG_ERROR, ("Set_ATE_TX_MODE_Proc::Out of range. it should be in range of 0~3\n"));
53668 + ATEDBGPRINT(RT_DEBUG_ERROR, ("0: CCK, 1: OFDM, 2: HT_MIX, 3: HT_GREEN_FIELD.\n"));
53672 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Set_ATE_TX_MODE_Proc (TxMode = %d)\n", pAd->ate.TxWI.PHYMODE));
53673 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Ralink: Set_ATE_TX_MODE_Proc Success\n"));
53680 + ==========================================================================
53682 + Set ATE Tx frame GI
53685 + TRUE if all parameters are OK, FALSE otherwise
53686 + ==========================================================================
53688 +INT Set_ATE_TX_GI_Proc(
53689 + IN PRTMP_ADAPTER pAd,
53692 + pAd->ate.TxWI.ShortGI = simple_strtol(arg, 0, 10);
53694 + if(pAd->ate.TxWI.ShortGI > 1)
53696 + pAd->ate.TxWI.ShortGI = 0;
53697 + ATEDBGPRINT(RT_DEBUG_ERROR, ("Set_ATE_TX_GI_Proc::Out of range\n"));
53701 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Set_ATE_TX_GI_Proc (GI = %d)\n", pAd->ate.TxWI.ShortGI));
53702 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Ralink: Set_ATE_TX_GI_Proc Success\n"));
53709 + ==========================================================================
53711 + ==========================================================================
53713 +INT Set_ATE_RX_FER_Proc(
53714 + IN PRTMP_ADAPTER pAd,
53717 + pAd->ate.bRxFer = simple_strtol(arg, 0, 10);
53719 + if (pAd->ate.bRxFer == 1)
53721 + pAd->ate.RxCntPerSec = 0;
53722 + pAd->ate.RxTotalCnt = 0;
53725 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Set_ATE_RX_FER_Proc (bRxFer = %d)\n", pAd->ate.bRxFer));
53726 + ATEDBGPRINT(RT_DEBUG_TRACE, ("Ralink: Set_ATE_RX_FER_Proc Success\n"));
53732 +INT Set_ATE_Read_RF_Proc(
53733 + IN PRTMP_ADAPTER pAd,
53737 +//2008/07/10:KH add to support RT30xx ATE<--
53738 + if(IS_RT30xx(pAd))
53740 + /* modify by WY for Read RF Reg. error */
53743 + for (index = 0; index < 32; index++)
53745 + RT30xxReadRFRegister(pAd, index, (PUCHAR)&RFValue);
53746 + printk("R%d=%d\n",index,RFValue);
53750 +//2008/07/10:KH add to support RT30xx ATE-->
53751 +#endif // RT30xx //
53753 + ate_print(KERN_EMERG "R1 = %lx\n", pAd->LatchRfRegs.R1);
53754 + ate_print(KERN_EMERG "R2 = %lx\n", pAd->LatchRfRegs.R2);
53755 + ate_print(KERN_EMERG "R3 = %lx\n", pAd->LatchRfRegs.R3);
53756 + ate_print(KERN_EMERG "R4 = %lx\n", pAd->LatchRfRegs.R4);
53761 +INT Set_ATE_Write_RF1_Proc(
53762 + IN PRTMP_ADAPTER pAd,
53766 +//2008/07/10:KH add to support 3070 ATE<--
53767 + if(IS_RT30xx(pAd))
53769 + printk("Warning!! RT30xx Don't Support\n");
53774 +//2008/07/10:KH add to support 3070 ATE-->
53775 +#endif // RT30xx //
53777 + UINT32 value = simple_strtol(arg, 0, 16);
53779 + pAd->LatchRfRegs.R1 = value;
53780 + RtmpRfIoWrite(pAd);
53786 +INT Set_ATE_Write_RF2_Proc(
53787 + IN PRTMP_ADAPTER pAd,
53791 +//2008/07/10:KH add to support 3070 ATE<--
53792 + if(IS_RT30xx(pAd))
53794 + printk("Warning!! RT30xx Don't Support\n");
53799 +//2008/07/10:KH add to support 3070 ATE-->
53800 +#endif // RT30xx //
53802 + UINT32 value = simple_strtol(arg, 0, 16);
53804 + pAd->LatchRfRegs.R2 = value;
53805 + RtmpRfIoWrite(pAd);
53810 +INT Set_ATE_Write_RF3_Proc(
53811 + IN PRTMP_ADAPTER pAd,
53815 +//2008/07/10:KH add to support 3070 ATE<--
53816 + if(IS_RT30xx(pAd))
53818 + printk("Warning!! RT30xx Don't Support\n");
53823 +//2008/07/10:KH add to support 3070 ATE-->
53824 +#endif // RT30xx //
53826 + UINT32 value = simple_strtol(arg, 0, 16);
53828 + pAd->LatchRfRegs.R3 = value;
53829 + RtmpRfIoWrite(pAd);
53834 +INT Set_ATE_Write_RF4_Proc(
53835 + IN PRTMP_ADAPTER pAd,
53839 +//2008/07/10:KH add to support 3070 ATE<--
53840 + if(IS_RT30xx(pAd))
53842 + printk("Warning!! RT30xx Don't Support\n");
53847 +//2008/07/10:KH add to support 3070 ATE-->
53848 +#endif // RT30xx //
53850 + UINT32 value = simple_strtol(arg, 0, 16);
53852 + pAd->LatchRfRegs.R4 = value;
53853 + RtmpRfIoWrite(pAd);
53858 +//2008/07/10:KH add to support 3070 ATE<--
53859 +INT SET_ATE_3070RF_Proc(
53860 + IN PRTMP_ADAPTER pAd,
53865 + UINT32 Reg,RFValue;
53866 + if(IS_RT30xx(pAd))
53868 + printk("SET_ATE_3070RF_Proc=%s\n",arg);
53870 + if ((value = strchr(this_char, ':')) != NULL)
53872 + Reg= simple_strtol(this_char, 0, 16);
53873 + RFValue= simple_strtol(value, 0, 16);
53874 + printk("RF Reg[%d]=%d\n",Reg,RFValue);
53875 + RT30xxWriteRFRegister(pAd, Reg,RFValue);
53878 + printk("Warning!! Only 3070 Support\n");
53881 +//2008/07/10:KH add to support 3070 ATE-->
53882 +#endif // RT30xx //
53884 + ==========================================================================
53886 + Load and Write EEPROM from a binary file prepared in advance.
53889 + TRUE if all parameters are OK, FALSE otherwise
53890 + ==========================================================================
53893 +INT Set_ATE_Load_E2P_Proc(
53894 + IN PRTMP_ADAPTER pAd,
53897 + BOOLEAN ret = FALSE;
53898 + PUCHAR src = EEPROM_BIN_FILE_NAME;
53899 + struct file *srcf;
53900 + INT32 retval, orgfsuid, orgfsgid;
53901 + mm_segment_t orgfs;
53902 + USHORT WriteEEPROM[(EEPROM_SIZE/2)];
53903 + UINT32 FileLength = 0;
53904 + UINT32 value = simple_strtol(arg, 0, 10);
53906 + ATEDBGPRINT(RT_DEBUG_ERROR, ("===> %s (value=%d)\n\n", __FUNCTION__, value));
53910 + /* zero the e2p buffer */
53911 + NdisZeroMemory((PUCHAR)WriteEEPROM, EEPROM_SIZE);
53913 + /* save uid and gid used for filesystem access.
53914 + ** set user and group to 0 (root)
53916 + orgfsuid = current->fsuid;
53917 + orgfsgid = current->fsgid;
53919 + current->fsuid = current->fsgid = 0;
53920 + orgfs = get_fs();
53921 + set_fs(KERNEL_DS);
53925 + /* open the bin file */
53926 + srcf = filp_open(src, O_RDONLY, 0);
53928 + if (IS_ERR(srcf))
53930 + ate_print("%s - Error %ld opening %s\n", __FUNCTION__, -PTR_ERR(srcf), src);
53934 + /* the object must have a read method */
53935 + if ((srcf->f_op == NULL) || (srcf->f_op->read == NULL))
53937 + ate_print("%s - %s does not have a read method\n", __FUNCTION__, src);
53941 + /* read the firmware from the file *.bin */
53942 + FileLength = srcf->f_op->read(srcf,
53943 + (PUCHAR)WriteEEPROM,
53947 + if (FileLength != EEPROM_SIZE)
53949 + ate_print("%s: error file length (=%d) in e2p.bin\n",
53950 + __FUNCTION__, FileLength);
53955 + /* write the content of .bin file to EEPROM */
53956 + rt_ee_write_all(pAd, WriteEEPROM);
53962 + /* close firmware file */
53963 + if (IS_ERR(srcf))
53969 + retval = filp_close(srcf, NULL);
53972 + ATEDBGPRINT(RT_DEBUG_ERROR, ("--> Error %d closing %s\n", -retval, src));
53979 + current->fsuid = orgfsuid;
53980 + current->fsgid = orgfsgid;
53982 + ATEDBGPRINT(RT_DEBUG_ERROR, ("<=== %s (ret=%d)\n", __FUNCTION__, ret));
53988 +INT Set_ATE_Load_E2P_Proc(
53989 + IN PRTMP_ADAPTER pAd,
53992 + USHORT WriteEEPROM[(EEPROM_SIZE/2)];
53993 + struct iwreq *wrq = (struct iwreq *)arg;
53995 + ATEDBGPRINT(RT_DEBUG_TRACE, ("===> %s (wrq->u.data.length = %d)\n\n", __FUNCTION__, wrq->u.data.length));
53997 + if (wrq->u.data.length != EEPROM_SIZE)
53999 + ate_print("%s: error length (=%d) from host\n",
54000 + __FUNCTION__, wrq->u.data.length);
54003 + else/* (wrq->u.data.length == EEPROM_SIZE) */
54005 + /* zero the e2p buffer */
54006 + NdisZeroMemory((PUCHAR)WriteEEPROM, EEPROM_SIZE);
54008 + /* fill the local buffer */
54009 + NdisMoveMemory((PUCHAR)WriteEEPROM, wrq->u.data.pointer, wrq->u.data.length);
54013 + /* write the content of .bin file to EEPROM */
54014 + rt_ee_write_all(pAd, WriteEEPROM);
54019 + ATEDBGPRINT(RT_DEBUG_TRACE, ("<=== %s\n", __FUNCTION__));
54024 +#endif // !UCOS //
54026 +INT Set_ATE_Read_E2P_Proc(
54027 + IN PRTMP_ADAPTER pAd,
54030 + USHORT buffer[EEPROM_SIZE/2];
54034 + rt_ee_read_all(pAd, (USHORT *)buffer);
54036 + for (i = 0; i < (EEPROM_SIZE/2); i++)
54038 + ate_print("%4.4x ", *p);
54039 + if (((i+1) % 16) == 0)
54046 +INT Set_ATE_Show_Proc(
54047 + IN PRTMP_ADAPTER pAd,
54050 + ate_print("Mode=%d\n", pAd->ate.Mode);
54051 + ate_print("TxPower0=%d\n", pAd->ate.TxPower0);
54052 + ate_print("TxPower1=%d\n", pAd->ate.TxPower1);
54053 + ate_print("TxAntennaSel=%d\n", pAd->ate.TxAntennaSel);
54054 + ate_print("RxAntennaSel=%d\n", pAd->ate.RxAntennaSel);
54055 + ate_print("BBPCurrentBW=%d\n", pAd->ate.TxWI.BW);
54056 + ate_print("GI=%d\n", pAd->ate.TxWI.ShortGI);
54057 + ate_print("MCS=%d\n", pAd->ate.TxWI.MCS);
54058 + ate_print("TxMode=%d\n", pAd->ate.TxWI.PHYMODE);
54059 + ate_print("Addr1=%02x:%02x:%02x:%02x:%02x:%02x\n",
54060 + pAd->ate.Addr1[0], pAd->ate.Addr1[1], pAd->ate.Addr1[2], pAd->ate.Addr1[3], pAd->ate.Addr1[4], pAd->ate.Addr1[5]);
54061 + ate_print("Addr2=%02x:%02x:%02x:%02x:%02x:%02x\n",
54062 + pAd->ate.Addr2[0], pAd->ate.Addr2[1], pAd->ate.Addr2[2], pAd->ate.Addr2[3], pAd->ate.Addr2[4], pAd->ate.Addr2[5]);
54063 + ate_print("Addr3=%02x:%02x:%02x:%02x:%02x:%02x\n",
54064 + pAd->ate.Addr3[0], pAd->ate.Addr3[1], pAd->ate.Addr3[2], pAd->ate.Addr3[3], pAd->ate.Addr3[4], pAd->ate.Addr3[5]);
54065 + ate_print("Channel=%d\n", pAd->ate.Channel);
54066 + ate_print("TxLength=%d\n", pAd->ate.TxLength);
54067 + ate_print("TxCount=%u\n", pAd->ate.TxCount);
54068 + ate_print("RFFreqOffset=%d\n", pAd->ate.RFFreqOffset);
54069 + ate_print(KERN_EMERG "Set_ATE_Show_Proc Success\n");
54073 +INT Set_ATE_Help_Proc(
54074 + IN PRTMP_ADAPTER pAd,
54077 + ate_print("ATE=ATESTART, ATESTOP, TXCONT, TXCARR, TXFRAME, RXFRAME\n");
54078 + ate_print("ATEDA\n");
54079 + ate_print("ATESA\n");
54080 + ate_print("ATEBSSID\n");
54081 + ate_print("ATECHANNEL, range:0~14(unless A band !)\n");
54082 + ate_print("ATETXPOW0, set power level of antenna 1.\n");
54083 + ate_print("ATETXPOW1, set power level of antenna 2.\n");
54084 + ate_print("ATETXANT, set TX antenna. 0:all, 1:antenna one, 2:antenna two.\n");
54085 + ate_print("ATERXANT, set RX antenna.0:all, 1:antenna one, 2:antenna two, 3:antenna three.\n");
54086 + ate_print("ATETXFREQOFFSET, set frequency offset, range 0~63\n");
54087 + ate_print("ATETXBW, set BandWidth, 0:20MHz, 1:40MHz.\n");
54088 + ate_print("ATETXLEN, set Frame length, range 24~%d\n", (MAX_FRAME_SIZE - 34/* == 2312 */));
54089 + ate_print("ATETXCNT, set how many frame going to transmit.\n");
54090 + ate_print("ATETXMCS, set MCS, reference to rate table.\n");
54091 + ate_print("ATETXMODE, set Mode 0:CCK, 1:OFDM, 2:HT-Mix, 3:GreenField, reference to rate table.\n");
54092 + ate_print("ATETXGI, set GI interval, 0:Long, 1:Short\n");
54093 + ate_print("ATERXFER, 0:disable Rx Frame error rate. 1:enable Rx Frame error rate.\n");
54094 + ate_print("ATERRF, show all RF registers.\n");
54095 + ate_print("ATEWRF1, set RF1 register.\n");
54096 + ate_print("ATEWRF2, set RF2 register.\n");
54097 + ate_print("ATEWRF3, set RF3 register.\n");
54098 + ate_print("ATEWRF4, set RF4 register.\n");
54099 + ate_print("ATELDE2P, load EEPROM from .bin file.\n");
54100 + ate_print("ATERE2P, display all EEPROM content.\n");
54101 + ate_print("ATESHOW, display all parameters of ATE.\n");
54102 + ate_print("ATEHELP, online help.\n");
54108 + ==========================================================================
54111 + AsicSwitchChannel() dedicated for ATE.
54113 + ==========================================================================
54115 +VOID ATEAsicSwitchChannel(
54116 + IN PRTMP_ADAPTER pAd)
54118 + UINT32 R2 = 0, R3 = DEFAULT_RF_TX_POWER, R4 = 0, Value = 0;
54119 + CHAR TxPwer = 0, TxPwer2 = 0;
54120 + UCHAR index, BbpValue = 0, R66 = 0x30;
54121 + RTMP_RF_REGS *RFRegTable;
54124 +#ifdef RALINK_28xx_QA
54125 + if ((pAd->ate.bQATxStart == TRUE) || (pAd->ate.bQARxStart == TRUE))
54127 + if (pAd->ate.Channel != pAd->LatchRfRegs.Channel)
54129 + pAd->ate.Channel = pAd->LatchRfRegs.Channel;
54134 +#endif // RALINK_28xx_QA //
54135 + Channel = pAd->ate.Channel;
54137 + // Select antenna
54138 + AsicAntennaSelect(pAd, Channel);
54140 + // fill Tx power value
54141 + TxPwer = pAd->ate.TxPower0;
54142 + TxPwer2 = pAd->ate.TxPower1;
54144 +//2008/07/10:KH add to support 3070 ATE<--
54146 + // The RF programming sequence is difference between 3xxx and 2xxx
54147 + // The 3070 is 1T1R. Therefore, we don't need to set the number of Tx/Rx path and the only job is to set the parameters of channels.
54148 + if (IS_RT30xx(pAd) && ((pAd->RfIcType == RFIC_3020) ||
54149 +(pAd->RfIcType == RFIC_3021) || (pAd->RfIcType == RFIC_3022) ||
54150 +(pAd->RfIcType == RFIC_2020)))
54152 + /* modify by WY for Read RF Reg. error */
54155 + for (index = 0; index < NUM_OF_3020_CHNL; index++)
54157 + if (Channel == FreqItems3020[index].Channel)
54159 + // Programming channel parameters
54160 + RT30xxWriteRFRegister(pAd, RF_R02, FreqItems3020[index].N);
54161 + RT30xxWriteRFRegister(pAd, RF_R03, FreqItems3020[index].K);
54163 + RT30xxReadRFRegister(pAd, RF_R06, (PUCHAR)&RFValue);
54164 + RFValue = (RFValue & 0xFC) | FreqItems3020[index].R;
54165 + RT30xxWriteRFRegister(pAd, RF_R06, (UCHAR)RFValue);
54168 + RT30xxReadRFRegister(pAd, RF_R12, (PUCHAR)&RFValue);
54169 + RFValue = (RFValue & 0xE0) | TxPwer;
54170 + RT30xxWriteRFRegister(pAd, RF_R12, (UCHAR)RFValue);
54173 + RT30xxReadRFRegister(pAd, RF_R23, (PUCHAR)&RFValue);
54174 + //2008/08/06: KH modified "pAd->RFFreqOffset" to "pAd->ate.RFFreqOffset"
54175 + RFValue = (RFValue & 0x80) | pAd->ate.RFFreqOffset;
54176 + RT30xxWriteRFRegister(pAd, RF_R23, (UCHAR)RFValue);
54179 + if (pAd->ate.TxWI.BW == BW_40)
54181 + RFValue = pAd->Mlme.CaliBW40RfR24;
54182 + //DISABLE_11N_CHECK(pAd);
54186 + RFValue = pAd->Mlme.CaliBW20RfR24;
54188 + RT30xxWriteRFRegister(pAd, RF_R24, (UCHAR)RFValue);
54190 + // Enable RF tuning
54191 + RT30xxReadRFRegister(pAd, RF_R07, (PUCHAR)&RFValue);
54192 + RFValue = RFValue | 0x1;
54193 + RT30xxWriteRFRegister(pAd, RF_R07, (UCHAR)RFValue);
54195 + // latch channel for future usage.
54196 + pAd->LatchRfRegs.Channel = Channel;
54202 + DBGPRINT(RT_DEBUG_TRACE, ("SwitchChannel#%d(RF=%d, Pwr0=%d, Pwr1=%d, %dT), N=0x%02X, K=0x%02X, R=0x%02X\n",
54207 + pAd->Antenna.field.TxPath,
54208 + FreqItems3020[index].N,
54209 + FreqItems3020[index].K,
54210 + FreqItems3020[index].R));
54213 +//2008/07/10:KH add to support 3070 ATE-->
54214 +#endif // RT30xx //
54216 + RFRegTable = RF2850RegTable;
54218 + switch (pAd->RfIcType)
54220 + /* But only 2850 and 2750 support 5.5GHz band... */
54226 + for (index = 0; index < NUM_OF_2850_CHNL; index++)
54228 + if (Channel == RFRegTable[index].Channel)
54230 + R2 = RFRegTable[index].R2;
54231 + if (pAd->Antenna.field.TxPath == 1)
54233 + R2 |= 0x4000; // If TXpath is 1, bit 14 = 1;
54236 + if (pAd->Antenna.field.RxPath == 2)
54238 + switch (pAd->ate.RxAntennaSel)
54242 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &BbpValue);
54243 + BbpValue &= 0xE4;
54244 + BbpValue |= 0x00;
54245 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, BbpValue);
54249 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &BbpValue);
54250 + BbpValue &= 0xE4;
54251 + BbpValue |= 0x01;
54252 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, BbpValue);
54256 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &BbpValue);
54257 + BbpValue &= 0xE4;
54258 + /* Only enable two Antenna to receive. */
54259 + BbpValue |= 0x08;
54260 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, BbpValue);
54264 + else if (pAd->Antenna.field.RxPath == 1)
54266 + R2 |= 0x20040; // write 1 to off RxPath
54269 + if (pAd->Antenna.field.TxPath == 2)
54271 + if (pAd->ate.TxAntennaSel == 1)
54273 + R2 |= 0x4000; // If TX Antenna select is 1 , bit 14 = 1; Disable Ant 2
54274 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R1, &BbpValue);
54275 + BbpValue &= 0xE7; //11100111B
54276 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R1, BbpValue);
54278 + else if (pAd->ate.TxAntennaSel == 2)
54280 + R2 |= 0x8000; // If TX Antenna select is 2 , bit 15 = 1; Disable Ant 1
54281 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R1, &BbpValue);
54282 + BbpValue &= 0xE7;
54283 + BbpValue |= 0x08;
54284 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R1, BbpValue);
54288 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R1, &BbpValue);
54289 + BbpValue &= 0xE7;
54290 + BbpValue |= 0x10;
54291 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R1, BbpValue);
54294 + if (pAd->Antenna.field.RxPath == 3)
54296 + switch (pAd->ate.RxAntennaSel)
54300 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &BbpValue);
54301 + BbpValue &= 0xE4;
54302 + BbpValue |= 0x00;
54303 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, BbpValue);
54307 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &BbpValue);
54308 + BbpValue &= 0xE4;
54309 + BbpValue |= 0x01;
54310 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, BbpValue);
54314 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &BbpValue);
54315 + BbpValue &= 0xE4;
54316 + BbpValue |= 0x02;
54317 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, BbpValue);
54320 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &BbpValue);
54321 + BbpValue &= 0xE4;
54322 + BbpValue |= 0x10;
54323 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, BbpValue);
54328 + if (Channel > 14)
54330 + // initialize R3, R4
54331 + R3 = (RFRegTable[index].R3 & 0xffffc1ff);
54332 + R4 = (RFRegTable[index].R4 & (~0x001f87c0)) | (pAd->ate.RFFreqOffset << 15);
54334 + // According the Rory's suggestion to solve the middle range issue.
54335 + // 5.5G band power range: 0xF9~0X0F, TX0 Reg3 bit9/TX1 Reg4 bit6="0" means the TX power reduce 7dB
54337 + if ((TxPwer >= -7) && (TxPwer < 0))
54339 + TxPwer = (7+TxPwer);
54340 + TxPwer = (TxPwer > 0xF) ? (0xF) : (TxPwer);
54341 + R3 |= (TxPwer << 10);
54342 + ATEDBGPRINT(RT_DEBUG_TRACE, ("ATEAsicSwitchChannel: TxPwer=%d \n", TxPwer));
54346 + TxPwer = (TxPwer > 0xF) ? (0xF) : (TxPwer);
54347 + R3 |= (TxPwer << 10) | (1 << 9);
54351 + if ((TxPwer2 >= -7) && (TxPwer2 < 0))
54353 + TxPwer2 = (7+TxPwer2);
54354 + TxPwer2 = (TxPwer2 > 0xF) ? (0xF) : (TxPwer2);
54355 + R4 |= (TxPwer2 << 7);
54356 + ATEDBGPRINT(RT_DEBUG_TRACE, ("ATEAsicSwitchChannel: TxPwer2=%d \n", TxPwer2));
54360 + TxPwer2 = (TxPwer2 > 0xF) ? (0xF) : (TxPwer2);
54361 + R4 |= (TxPwer2 << 7) | (1 << 6);
54366 + R3 = (RFRegTable[index].R3 & 0xffffc1ff) | (TxPwer << 9); // set TX power0
54367 + R4 = (RFRegTable[index].R4 & (~0x001f87c0)) | (pAd->ate.RFFreqOffset << 15) | (TxPwer2 <<6);// Set freq offset & TxPwr1
54370 + // Based on BBP current mode before changing RF channel.
54371 + if (pAd->ate.TxWI.BW == BW_40)
54376 + // Update variables
54377 + pAd->LatchRfRegs.Channel = Channel;
54378 + pAd->LatchRfRegs.R1 = RFRegTable[index].R1;
54379 + pAd->LatchRfRegs.R2 = R2;
54380 + pAd->LatchRfRegs.R3 = R3;
54381 + pAd->LatchRfRegs.R4 = R4;
54383 + RtmpRfIoWrite(pAd);
54394 + // Change BBP setting during switch from a->g, g->a
54395 + if (Channel <= 14)
54397 + ULONG TxPinCfg = 0x00050F0A;// 2007.10.09 by Brian : 0x0005050A ==> 0x00050F0A
54399 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R62, (0x37 - GET_LNA_GAIN(pAd)));
54400 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R63, (0x37 - GET_LNA_GAIN(pAd)));
54401 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R64, (0x37 - GET_LNA_GAIN(pAd)));
54403 + /* For 1T/2R chip only... */
54404 + if (pAd->NicConfig2.field.ExternalLNAForG)
54406 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R82, 0x62);
54410 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R82, 0x84);
54413 + // According the Rory's suggestion to solve the middle range issue.
54414 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R86, &BbpValue);
54415 + ASSERT((BbpValue == 0x00));
54416 + if ((BbpValue != 0x00))
54418 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R86, 0x00);
54421 + // 5.5GHz band selection PIN, bit1 and bit2 are complement
54422 + RTMP_IO_READ32(pAd, TX_BAND_CFG, &Value);
54425 + RTMP_IO_WRITE32(pAd, TX_BAND_CFG, Value);
54427 + // Turn off unused PA or LNA when only 1T or 1R.
54428 + if (pAd->Antenna.field.TxPath == 1)
54430 + TxPinCfg &= 0xFFFFFFF3;
54432 + if (pAd->Antenna.field.RxPath == 1)
54434 + TxPinCfg &= 0xFFFFF3FF;
54437 + RTMP_IO_WRITE32(pAd, TX_PIN_CFG, TxPinCfg);
54441 + ULONG TxPinCfg = 0x00050F05;//2007.10.09 by Brian : 0x00050505 ==> 0x00050F05
54443 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R62, (0x37 - GET_LNA_GAIN(pAd)));
54444 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R63, (0x37 - GET_LNA_GAIN(pAd)));
54445 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R64, (0x37 - GET_LNA_GAIN(pAd)));
54446 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R82, 0xF2);
54448 + // According the Rory's suggestion to solve the middle range issue.
54449 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R86, &BbpValue);
54450 + ASSERT((BbpValue == 0x00));
54451 + if ((BbpValue != 0x00))
54453 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R86, 0x00);
54455 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R91, &BbpValue);
54456 + ASSERT((BbpValue == 0x04));
54458 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R92, &BbpValue);
54459 + ASSERT((BbpValue == 0x00));
54461 + // 5.5GHz band selection PIN, bit1 and bit2 are complement
54462 + RTMP_IO_READ32(pAd, TX_BAND_CFG, &Value);
54465 + RTMP_IO_WRITE32(pAd, TX_BAND_CFG, Value);
54467 + // Turn off unused PA or LNA when only 1T or 1R.
54468 + if (pAd->Antenna.field.TxPath == 1)
54470 + TxPinCfg &= 0xFFFFFFF3;
54472 + if (pAd->Antenna.field.RxPath == 1)
54474 + TxPinCfg &= 0xFFFFF3FF;
54477 + RTMP_IO_WRITE32(pAd, TX_PIN_CFG, TxPinCfg);
54480 + // R66 should be set according to Channel and use 20MHz when scanning
54481 + if (Channel <= 14)
54484 + R66 = 0x2E + GET_LNA_GAIN(pAd);
54485 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, R66);
54490 + if (pAd->ate.TxWI.BW == BW_20)
54492 + R66 = (UCHAR)(0x32 + (GET_LNA_GAIN(pAd)*5)/3);
54493 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, R66);
54497 + R66 = (UCHAR)(0x3A + (GET_LNA_GAIN(pAd)*5)/3);
54498 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, R66);
54503 + // On 11A, We should delay and wait RF/BBP to be stable
54504 + // and the appropriate time should be 1000 micro seconds
54505 + // 2005/06/05 - On 11G, We also need this delay time. Otherwise it's difficult to pass the WHQL.
54507 + RTMPusecDelay(1000);
54509 + if (Channel > 14)
54511 + // When 5.5GHz band the LSB of TxPwr will be used to reduced 7dB or not.
54512 + ATEDBGPRINT(RT_DEBUG_TRACE, ("SwitchChannel#%d(RF=%d, %dT) to , R1=0x%08lx, R2=0x%08lx, R3=0x%08lx, R4=0x%08lx\n",
54515 + pAd->Antenna.field.TxPath,
54516 + pAd->LatchRfRegs.R1,
54517 + pAd->LatchRfRegs.R2,
54518 + pAd->LatchRfRegs.R3,
54519 + pAd->LatchRfRegs.R4));
54523 + ATEDBGPRINT(RT_DEBUG_TRACE, ("SwitchChannel#%d(RF=%d, Pwr0=%u, Pwr1=%u, %dT) to , R1=0x%08lx, R2=0x%08lx, R3=0x%08lx, R4=0x%08lx\n",
54526 + (R3 & 0x00003e00) >> 9,
54527 + (R4 & 0x000007c0) >> 6,
54528 + pAd->Antenna.field.TxPath,
54529 + pAd->LatchRfRegs.R1,
54530 + pAd->LatchRfRegs.R2,
54531 + pAd->LatchRfRegs.R3,
54532 + pAd->LatchRfRegs.R4));
54537 +// In fact, no one will call this routine so far !
54540 + ==========================================================================
54542 + Gives CCK TX rate 2 more dB TX power.
54543 + This routine works only in ATE mode.
54545 + calculate desired Tx power in RF R3.Tx0~5, should consider -
54546 + 0. if current radio is a noisy environment (pAd->DrsCounters.fNoisyEnvironment)
54547 + 1. TxPowerPercentage
54548 + 2. auto calibration based on TSSI feedback
54549 + 3. extra 2 db for CCK
54550 + 4. -10 db upon very-short distance (AvgRSSI >= -40db) to AP
54552 + NOTE: Since this routine requires the value of (pAd->DrsCounters.fNoisyEnvironment),
54553 + it should be called AFTER MlmeDynamicTxRateSwitching()
54554 + ==========================================================================
54556 +VOID ATEAsicAdjustTxPower(
54557 + IN PRTMP_ADAPTER pAd)
54560 + CHAR DeltaPwr = 0;
54561 + BOOLEAN bAutoTxAgc = FALSE;
54562 + UCHAR TssiRef, *pTssiMinusBoundary, *pTssiPlusBoundary, TxAgcStep;
54563 + UCHAR BbpR49 = 0, idx;
54564 + PCHAR pTxAgcCompensate;
54568 + /* no one calls this procedure so far */
54569 + if (pAd->ate.TxWI.BW == BW_40)
54571 + if (pAd->ate.Channel > 14)
54573 + TxPwr[0] = pAd->Tx40MPwrCfgABand[0];
54574 + TxPwr[1] = pAd->Tx40MPwrCfgABand[1];
54575 + TxPwr[2] = pAd->Tx40MPwrCfgABand[2];
54576 + TxPwr[3] = pAd->Tx40MPwrCfgABand[3];
54577 + TxPwr[4] = pAd->Tx40MPwrCfgABand[4];
54581 + TxPwr[0] = pAd->Tx40MPwrCfgGBand[0];
54582 + TxPwr[1] = pAd->Tx40MPwrCfgGBand[1];
54583 + TxPwr[2] = pAd->Tx40MPwrCfgGBand[2];
54584 + TxPwr[3] = pAd->Tx40MPwrCfgGBand[3];
54585 + TxPwr[4] = pAd->Tx40MPwrCfgGBand[4];
54590 + if (pAd->ate.Channel > 14)
54592 + TxPwr[0] = pAd->Tx20MPwrCfgABand[0];
54593 + TxPwr[1] = pAd->Tx20MPwrCfgABand[1];
54594 + TxPwr[2] = pAd->Tx20MPwrCfgABand[2];
54595 + TxPwr[3] = pAd->Tx20MPwrCfgABand[3];
54596 + TxPwr[4] = pAd->Tx20MPwrCfgABand[4];
54600 + TxPwr[0] = pAd->Tx20MPwrCfgGBand[0];
54601 + TxPwr[1] = pAd->Tx20MPwrCfgGBand[1];
54602 + TxPwr[2] = pAd->Tx20MPwrCfgGBand[2];
54603 + TxPwr[3] = pAd->Tx20MPwrCfgGBand[3];
54604 + TxPwr[4] = pAd->Tx20MPwrCfgGBand[4];
54608 + // TX power compensation for temperature variation based on TSSI.
54609 + // Do it per 4 seconds.
54610 + if (pAd->Mlme.OneSecPeriodicRound % 4 == 0)
54612 + if (pAd->ate.Channel <= 14)
54615 + bAutoTxAgc = pAd->bAutoTxAgcG;
54616 + TssiRef = pAd->TssiRefG;
54617 + pTssiMinusBoundary = &pAd->TssiMinusBoundaryG[0];
54618 + pTssiPlusBoundary = &pAd->TssiPlusBoundaryG[0];
54619 + TxAgcStep = pAd->TxAgcStepG;
54620 + pTxAgcCompensate = &pAd->TxAgcCompensateG;
54625 + bAutoTxAgc = pAd->bAutoTxAgcA;
54626 + TssiRef = pAd->TssiRefA;
54627 + pTssiMinusBoundary = &pAd->TssiMinusBoundaryA[0];
54628 + pTssiPlusBoundary = &pAd->TssiPlusBoundaryA[0];
54629 + TxAgcStep = pAd->TxAgcStepA;
54630 + pTxAgcCompensate = &pAd->TxAgcCompensateA;
54635 + /* BbpR49 is unsigned char */
54636 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R49, &BbpR49);
54638 + /* (p) TssiPlusBoundaryG[0] = 0 = (m) TssiMinusBoundaryG[0] */
54639 + /* compensate: +4 +3 +2 +1 0 -1 -2 -3 -4 * steps */
54640 + /* step value is defined in pAd->TxAgcStepG for tx power value */
54642 + /* [4]+1+[4] p4 p3 p2 p1 o1 m1 m2 m3 m4 */
54643 + /* ex: 0x00 0x15 0x25 0x45 0x88 0xA0 0xB5 0xD0 0xF0
54644 + above value are examined in mass factory production */
54645 + /* [4] [3] [2] [1] [0] [1] [2] [3] [4] */
54647 + /* plus is 0x10 ~ 0x40, minus is 0x60 ~ 0x90 */
54648 + /* if value is between p1 ~ o1 or o1 ~ s1, no need to adjust tx power */
54649 + /* if value is 0x65, tx power will be -= TxAgcStep*(2-1) */
54651 + if (BbpR49 > pTssiMinusBoundary[1])
54653 + // Reading is larger than the reference value.
54654 + // Check for how large we need to decrease the Tx power.
54655 + for (idx = 1; idx < 5; idx++)
54657 + if (BbpR49 <= pTssiMinusBoundary[idx]) // Found the range
54660 + // The index is the step we should decrease, idx = 0 means there is nothing to compensate
54661 +// if (R3 > (ULONG) (TxAgcStep * (idx-1)))
54662 + *pTxAgcCompensate = -(TxAgcStep * (idx-1));
54664 +// *pTxAgcCompensate = -((UCHAR)R3);
54666 + DeltaPwr += (*pTxAgcCompensate);
54667 + ATEDBGPRINT(RT_DEBUG_TRACE, ("-- Tx Power, BBP R1=%x, TssiRef=%x, TxAgcStep=%x, step = -%d\n",
54668 + BbpR49, TssiRef, TxAgcStep, idx-1));
54670 + else if (BbpR49 < pTssiPlusBoundary[1])
54672 + // Reading is smaller than the reference value
54673 + // check for how large we need to increase the Tx power
54674 + for (idx = 1; idx < 5; idx++)
54676 + if (BbpR49 >= pTssiPlusBoundary[idx]) // Found the range
54679 + // The index is the step we should increase, idx = 0 means there is nothing to compensate
54680 + *pTxAgcCompensate = TxAgcStep * (idx-1);
54681 + DeltaPwr += (*pTxAgcCompensate);
54682 + ATEDBGPRINT(RT_DEBUG_TRACE, ("++ Tx Power, BBP R1=%x, TssiRef=%x, TxAgcStep=%x, step = +%d\n",
54683 + BbpR49, TssiRef, TxAgcStep, idx-1));
54687 + *pTxAgcCompensate = 0;
54688 + ATEDBGPRINT(RT_DEBUG_TRACE, (" Tx Power, BBP R1=%x, TssiRef=%x, TxAgcStep=%x, step = +%d\n",
54689 + BbpR49, TssiRef, TxAgcStep, 0));
54695 + if (pAd->ate.Channel <= 14)
54697 + bAutoTxAgc = pAd->bAutoTxAgcG;
54698 + pTxAgcCompensate = &pAd->TxAgcCompensateG;
54702 + bAutoTxAgc = pAd->bAutoTxAgcA;
54703 + pTxAgcCompensate = &pAd->TxAgcCompensateA;
54707 + DeltaPwr += (*pTxAgcCompensate);
54710 + /* calculate delta power based on the percentage specified from UI */
54711 + // E2PROM setting is calibrated for maximum TX power (i.e. 100%)
54712 + // We lower TX power here according to the percentage specified from UI
54713 + if (pAd->CommonCfg.TxPowerPercentage == 0xffffffff) // AUTO TX POWER control
54715 + else if (pAd->CommonCfg.TxPowerPercentage > 90) // 91 ~ 100% & AUTO, treat as 100% in terms of mW
54717 + else if (pAd->CommonCfg.TxPowerPercentage > 60) // 61 ~ 90%, treat as 75% in terms of mW
54721 + else if (pAd->CommonCfg.TxPowerPercentage > 30) // 31 ~ 60%, treat as 50% in terms of mW
54725 + else if (pAd->CommonCfg.TxPowerPercentage > 15) // 16 ~ 30%, treat as 25% in terms of mW
54729 + else if (pAd->CommonCfg.TxPowerPercentage > 9) // 10 ~ 15%, treat as 12.5% in terms of mW
54733 + else // 0 ~ 9 %, treat as MIN(~3%) in terms of mW
54738 + /* reset different new tx power for different TX rate */
54739 + for(i=0; i<5; i++)
54741 + if (TxPwr[i] != 0xffffffff)
54743 + for (j=0; j<8; j++)
54745 + Value = (CHAR)((TxPwr[i] >> j*4) & 0x0F); /* 0 ~ 15 */
54747 + if ((Value + DeltaPwr) < 0)
54749 + Value = 0; /* min */
54751 + else if ((Value + DeltaPwr) > 0xF)
54753 + Value = 0xF; /* max */
54757 + Value += DeltaPwr; /* temperature compensation */
54760 + /* fill new value to CSR offset */
54761 + TxPwr[i] = (TxPwr[i] & ~(0x0000000F << j*4)) | (Value << j*4);
54764 + /* write tx power value to CSR */
54765 + /* TX_PWR_CFG_0 (8 tx rate) for TX power for OFDM 12M/18M
54766 + TX power for OFDM 6M/9M
54767 + TX power for CCK5.5M/11M
54768 + TX power for CCK1M/2M */
54769 + /* TX_PWR_CFG_1 ~ TX_PWR_CFG_4 */
54770 + RTMP_IO_WRITE32(pAd, TX_PWR_CFG_0 + i*4, TxPwr[i]);
54779 + ========================================================================
54780 + Routine Description:
54781 + Write TxWI for ATE mode.
54785 + ========================================================================
54789 +static VOID ATEWriteTxWI(
54790 + IN PRTMP_ADAPTER pAd,
54791 + IN PTXWI_STRUC pTxWI,
54793 + IN BOOLEAN InsTimestamp,
54794 + IN BOOLEAN AMPDU,
54796 + IN BOOLEAN NSeq, // HW new a sequence.
54802 + IN UCHAR Txopmode,
54803 + IN BOOLEAN CfAck,
54804 + IN HTTRANSMIT_SETTING Transmit)
54807 + // Always use Long preamble before verifiation short preamble functionality works well.
54808 + // Todo: remove the following line if short preamble functionality works
54810 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_SHORT_PREAMBLE_INUSED);
54811 + pTxWI->FRAG= FRAG;
54812 + pTxWI->TS= InsTimestamp;
54813 + pTxWI->AMPDU = AMPDU;
54815 + pTxWI->MIMOps = PWR_ACTIVE;
54816 + pTxWI->MpduDensity = 4;
54817 + pTxWI->ACK = Ack;
54818 + pTxWI->txop = Txopmode;
54819 + pTxWI->NSEQ = NSeq;
54820 + pTxWI->BAWinSize = BASize;
54822 + pTxWI->WirelessCliID = WCID;
54823 + pTxWI->MPDUtotalByteCount = Length;
54824 + pTxWI->PacketId = PID;
54826 + pTxWI->BW = Transmit.field.BW;
54827 + pTxWI->ShortGI = Transmit.field.ShortGI;
54828 + pTxWI->STBC= Transmit.field.STBC;
54830 + pTxWI->MCS = Transmit.field.MCS;
54831 + pTxWI->PHYMODE= Transmit.field.MODE;
54833 +#ifdef DOT11_N_SUPPORT
54835 + // MMPS is 802.11n features. Because TxWI->MCS > 7 must be HT mode,
54836 + // so need not check if it's HT rate.
54838 + if ((MIMOps == MMPS_STATIC) && (pTxWI->MCS > 7))
54841 + if ((MIMOps == MMPS_DYNAMIC) && (pTxWI->MCS > 7)) // SMPS protect 2 spatial.
54842 + pTxWI->MIMOps = 1;
54843 +#endif // DOT11_N_SUPPORT //
54845 + pTxWI->CFACK = CfAck;
54849 +#endif // RT2870 //
54851 + ========================================================================
54853 + Routine Description:
54854 + Disable protection for ATE.
54855 + ========================================================================
54857 +VOID ATEDisableAsicProtect(
54858 + IN PRTMP_ADAPTER pAd)
54860 + PROT_CFG_STRUC ProtCfg, ProtCfg4;
54861 + UINT32 Protect[6];
54864 + UINT32 MacReg = 0;
54866 + // Config ASIC RTS threshold register
54867 + RTMP_IO_READ32(pAd, TX_RTS_CFG, &MacReg);
54868 + MacReg &= 0xFF0000FF;
54869 + MacReg |= (pAd->CommonCfg.RtsThreshold << 8);
54870 + RTMP_IO_WRITE32(pAd, TX_RTS_CFG, MacReg);
54872 + // Initial common protection settings
54873 + RTMPZeroMemory(Protect, sizeof(Protect));
54874 + ProtCfg4.word = 0;
54875 + ProtCfg.word = 0;
54876 + ProtCfg.field.TxopAllowGF40 = 1;
54877 + ProtCfg.field.TxopAllowGF20 = 1;
54878 + ProtCfg.field.TxopAllowMM40 = 1;
54879 + ProtCfg.field.TxopAllowMM20 = 1;
54880 + ProtCfg.field.TxopAllowOfdm = 1;
54881 + ProtCfg.field.TxopAllowCck = 1;
54882 + ProtCfg.field.RTSThEn = 1;
54883 + ProtCfg.field.ProtectNav = ASIC_SHORTNAV;
54885 + // Handle legacy(B/G) protection
54886 + ProtCfg.field.ProtectRate = pAd->CommonCfg.RtsRate;
54887 + ProtCfg.field.ProtectCtrl = 0;
54888 + Protect[0] = ProtCfg.word;
54889 + Protect[1] = ProtCfg.word;
54892 + // 1.All STAs in the BSS are 20/40 MHz HT
54893 + // 2. in ai 20/40MHz BSS
54894 + // 3. all STAs are 20MHz in a 20MHz BSS
54895 + // Pure HT. no protection.
54898 + // Reserved (31:27)
54899 + // PROT_TXOP(25:20) -- 010111
54900 + // PROT_NAV(19:18) -- 01 (Short NAV protection)
54901 + // PROT_CTRL(17:16) -- 00 (None)
54902 + // PROT_RATE(15:0) -- 0x4004 (OFDM 24M)
54903 + Protect[2] = 0x01744004;
54906 + // Reserved (31:27)
54907 + // PROT_TXOP(25:20) -- 111111
54908 + // PROT_NAV(19:18) -- 01 (Short NAV protection)
54909 + // PROT_CTRL(17:16) -- 00 (None)
54910 + // PROT_RATE(15:0) -- 0x4084 (duplicate OFDM 24M)
54911 + Protect[3] = 0x03f44084;
54914 + // Reserved (31:27)
54915 + // PROT_TXOP(25:20) -- 010111
54916 + // PROT_NAV(19:18) -- 01 (Short NAV protection)
54917 + // PROT_CTRL(17:16) -- 00 (None)
54918 + // PROT_RATE(15:0) -- 0x4004 (OFDM 24M)
54919 + Protect[4] = 0x01744004;
54922 + // Reserved (31:27)
54923 + // PROT_TXOP(25:20) -- 111111
54924 + // PROT_NAV(19:18) -- 01 (Short NAV protection)
54925 + // PROT_CTRL(17:16) -- 00 (None)
54926 + // PROT_RATE(15:0) -- 0x4084 (duplicate OFDM 24M)
54927 + Protect[5] = 0x03f44084;
54929 + pAd->CommonCfg.IOTestParm.bRTSLongProtOn = FALSE;
54931 + offset = CCK_PROT_CFG;
54932 + for (i = 0;i < 6;i++)
54933 + RTMP_IO_WRITE32(pAd, offset + i*4, Protect[i]);
54939 + ========================================================================
54940 + Routine Description:
54941 + Write TxInfo for ATE mode.
54945 + ========================================================================
54947 +static VOID ATEWriteTxInfo(
54948 + IN PRTMP_ADAPTER pAd,
54949 + IN PTXINFO_STRUC pTxInfo,
54950 + IN USHORT USBDMApktLen,
54952 + IN UCHAR QueueSel,
54953 + IN UCHAR NextValid,
54954 + IN UCHAR TxBurst)
54956 + pTxInfo->USBDMATxPktLen = USBDMApktLen;
54957 + pTxInfo->QSEL = QueueSel;
54959 + if (QueueSel != FIFO_EDCA)
54960 + ATEDBGPRINT(RT_DEBUG_TRACE, ("=======> QueueSel != FIFO_EDCA<=======\n"));
54962 + pTxInfo->USBDMANextVLD = NextValid;
54963 + pTxInfo->USBDMATxburst = TxBurst;
54964 + pTxInfo->WIV = bWiv;
54965 + pTxInfo->SwUseLastRound = 0;
54966 + pTxInfo->rsv = 0;
54967 + pTxInfo->rsv2 = 0;
54971 +#endif // RT2870 //
54973 +/* There are two ways to convert Rssi */
54976 +// The way used with GET_LNA_GAIN().
54978 +CHAR ATEConvertToRssi(
54979 + IN PRTMP_ADAPTER pAd,
54981 + IN UCHAR RssiNumber)
54983 + UCHAR RssiOffset, LNAGain;
54985 + // Rssi equals to zero should be an invalid value
54989 + LNAGain = GET_LNA_GAIN(pAd);
54990 + if (pAd->LatchRfRegs.Channel > 14)
54992 + if (RssiNumber == 0)
54993 + RssiOffset = pAd->ARssiOffset0;
54994 + else if (RssiNumber == 1)
54995 + RssiOffset = pAd->ARssiOffset1;
54997 + RssiOffset = pAd->ARssiOffset2;
55001 + if (RssiNumber == 0)
55002 + RssiOffset = pAd->BGRssiOffset0;
55003 + else if (RssiNumber == 1)
55004 + RssiOffset = pAd->BGRssiOffset1;
55006 + RssiOffset = pAd->BGRssiOffset2;
55009 + return (-12 - RssiOffset - LNAGain - Rssi);
55013 +// The way originally used in ATE of rt2860ap.
55015 +CHAR ATEConvertToRssi(
55016 + IN PRTMP_ADAPTER pAd,
55018 + IN UCHAR RssiNumber)
55020 + UCHAR RssiOffset, LNAGain;
55022 + // Rssi equals to zero should be an invalid value
55026 + if (pAd->LatchRfRegs.Channel > 14)
55028 + LNAGain = pAd->ALNAGain;
55029 + if (RssiNumber == 0)
55030 + RssiOffset = pAd->ARssiOffset0;
55031 + else if (RssiNumber == 1)
55032 + RssiOffset = pAd->ARssiOffset1;
55034 + RssiOffset = pAd->ARssiOffset2;
55038 + LNAGain = pAd->BLNAGain;
55039 + if (RssiNumber == 0)
55040 + RssiOffset = pAd->BGRssiOffset0;
55041 + else if (RssiNumber == 1)
55042 + RssiOffset = pAd->BGRssiOffset1;
55044 + RssiOffset = pAd->BGRssiOffset2;
55047 + return (-32 - RssiOffset + LNAGain - Rssi);
55049 +#endif /* end of #if 1 */
55052 + ========================================================================
55054 + Routine Description:
55055 + Set Japan filter coefficients if needed.
55057 + This routine should only be called when
55058 + entering TXFRAME mode or TXCONT mode.
55060 + ========================================================================
55062 +static VOID SetJapanFilter(
55063 + IN PRTMP_ADAPTER pAd)
55065 + UCHAR BbpData = 0;
55068 + // If Channel=14 and Bandwidth=20M and Mode=CCK, set BBP R4 bit5=1
55069 + // (Japan Tx filter coefficients)when (TXFRAME or TXCONT).
55071 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &BbpData);
55073 + if ((pAd->ate.TxWI.PHYMODE == MODE_CCK) && (pAd->ate.Channel == 14) && (pAd->ate.TxWI.BW == BW_20))
55075 + BbpData |= 0x20; // turn on
55076 + ATEDBGPRINT(RT_DEBUG_TRACE, ("SetJapanFilter!!!\n"));
55080 + BbpData &= 0xdf; // turn off
55081 + ATEDBGPRINT(RT_DEBUG_TRACE, ("ClearJapanFilter!!!\n"));
55084 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, BbpData);
55087 +VOID ATESampleRssi(
55088 + IN PRTMP_ADAPTER pAd,
55089 + IN PRXWI_STRUC pRxWI)
55091 + /* There are two ways to collect RSSI. */
55093 + //pAd->LastRxRate = (USHORT)((pRxWI->MCS) + (pRxWI->BW <<7) + (pRxWI->ShortGI <<8)+ (pRxWI->PHYMODE <<14)) ;
55094 + if (pRxWI->RSSI0 != 0)
55096 + pAd->ate.LastRssi0 = ATEConvertToRssi(pAd, (CHAR) pRxWI->RSSI0, RSSI_0);
55097 + pAd->ate.AvgRssi0X8 = (pAd->ate.AvgRssi0X8 - pAd->ate.AvgRssi0) + pAd->ate.LastRssi0;
55098 + pAd->ate.AvgRssi0 = pAd->ate.AvgRssi0X8 >> 3;
55100 + if (pRxWI->RSSI1 != 0)
55102 + pAd->ate.LastRssi1 = ATEConvertToRssi(pAd, (CHAR) pRxWI->RSSI1, RSSI_1);
55103 + pAd->ate.AvgRssi1X8 = (pAd->ate.AvgRssi1X8 - pAd->ate.AvgRssi1) + pAd->ate.LastRssi1;
55104 + pAd->ate.AvgRssi1 = pAd->ate.AvgRssi1X8 >> 3;
55106 + if (pRxWI->RSSI2 != 0)
55108 + pAd->ate.LastRssi2 = ATEConvertToRssi(pAd, (CHAR) pRxWI->RSSI2, RSSI_2);
55109 + pAd->ate.AvgRssi2X8 = (pAd->ate.AvgRssi2X8 - pAd->ate.AvgRssi2) + pAd->ate.LastRssi2;
55110 + pAd->ate.AvgRssi2 = pAd->ate.AvgRssi2X8 >> 3;
55113 + pAd->ate.LastSNR0 = (CHAR)(pRxWI->SNR0);// CHAR ==> UCHAR ?
55114 + pAd->ate.LastSNR1 = (CHAR)(pRxWI->SNR1);// CHAR ==> UCHAR ?
55116 + pAd->ate.NumOfAvgRssiSample ++;
55118 + pAd->ate.LastSNR0 = (CHAR)(pRxWI->SNR0);
55119 + pAd->ate.LastSNR1 = (CHAR)(pRxWI->SNR1);
55120 + pAd->ate.RxCntPerSec++;
55121 + pAd->ate.LastRssi0 = ATEConvertToRssi(pAd, (CHAR) pRxWI->RSSI0, RSSI_0);
55122 + pAd->ate.LastRssi1 = ATEConvertToRssi(pAd, (CHAR) pRxWI->RSSI1, RSSI_1);
55123 + pAd->ate.LastRssi2 = ATEConvertToRssi(pAd, (CHAR) pRxWI->RSSI2, RSSI_2);
55124 + pAd->ate.AvgRssi0X8 = (pAd->ate.AvgRssi0X8 - pAd->ate.AvgRssi0) + pAd->ate.LastRssi0;
55125 + pAd->ate.AvgRssi0 = pAd->ate.AvgRssi0X8 >> 3;
55126 + pAd->ate.AvgRssi1X8 = (pAd->ate.AvgRssi1X8 - pAd->ate.AvgRssi1) + pAd->ate.LastRssi1;
55127 + pAd->ate.AvgRssi1 = pAd->ate.AvgRssi1X8 >> 3;
55128 + pAd->ate.AvgRssi2X8 = (pAd->ate.AvgRssi2X8 - pAd->ate.AvgRssi2) + pAd->ate.LastRssi2;
55129 + pAd->ate.AvgRssi2 = pAd->ate.AvgRssi2X8 >> 3;
55130 + pAd->ate.NumOfAvgRssiSample ++;
55134 +#ifdef CONFIG_STA_SUPPORT
55135 +VOID RTMPStationStop(
55136 + IN PRTMP_ADAPTER pAd)
55138 +// BOOLEAN Cancelled;
55140 + ATEDBGPRINT(RT_DEBUG_TRACE, ("==> RTMPStationStop\n"));
55142 + // For rx statistics, we need to keep this timer running.
55143 +// RTMPCancelTimer(&pAd->Mlme.PeriodicTimer, &Cancelled);
55145 + ATEDBGPRINT(RT_DEBUG_TRACE, ("<== RTMPStationStop\n"));
55148 +VOID RTMPStationStart(
55149 + IN PRTMP_ADAPTER pAd)
55151 + ATEDBGPRINT(RT_DEBUG_TRACE, ("==> RTMPStationStart\n"));
55152 + ATEDBGPRINT(RT_DEBUG_TRACE, ("<== RTMPStationStart\n"));
55154 +#endif // CONFIG_STA_SUPPORT //
55157 + ==========================================================================
55159 + Setup Frame format.
55161 + This routine should only be used in ATE mode.
55162 + ==========================================================================
55166 +/*======================Start of RT2870======================*/
55169 +static INT ATESetUpFrame(
55170 + IN PRTMP_ADAPTER pAd,
55174 + PTX_CONTEXT pNullContext;
55176 + HTTRANSMIT_SETTING TxHTPhyMode;
55177 + PTXWI_STRUC pTxWI;
55178 + PTXINFO_STRUC pTxInfo;
55179 + UINT32 TransferBufferLength, OrgBufferLength = 0;
55180 + UCHAR padLen = 0;
55181 +#ifdef RALINK_28xx_QA
55182 + PHEADER_802_11 pHeader80211 = NULL;
55183 +#endif // RALINK_28xx_QA //
55185 + if ((RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RESET_IN_PROGRESS)) ||
55186 + (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET)) ||
55187 + (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS)) ||
55188 + (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)))
55193 + /* We always use QID_AC_BE and FIFO_EDCA in ATE mode. */
55195 + pNullContext = &(pAd->NullContext);
55196 + ASSERT(pNullContext != NULL);
55198 + if (pNullContext->InUse == FALSE)
55200 + // Set the in use bit
55201 + pNullContext->InUse = TRUE;
55202 + NdisZeroMemory(&(pAd->NullFrame), sizeof(HEADER_802_11));
55204 + // Fill 802.11 header.
55205 +#ifdef RALINK_28xx_QA
55206 + if (pAd->ate.bQATxStart == TRUE)
55208 + pHeader80211 = NdisMoveMemory(&(pAd->NullFrame), pAd->ate.Header, pAd->ate.HLen);
55209 +// pDest = NdisMoveMemory(&(pAd->NullFrame), pAd->ate.Header, pAd->ate.HLen);
55210 +// pHeader80211 = (PHEADER_802_11)pDest;
55213 +#endif // RALINK_28xx_QA //
55215 + // Fill 802.11 header.
55216 + NdisMoveMemory(&(pAd->NullFrame), TemplateFrame, sizeof(HEADER_802_11));
55218 +#ifdef RT_BIG_ENDIAN
55219 + RTMPFrameEndianChange(pAd, (PUCHAR)&(pAd->NullFrame), DIR_READ, FALSE);
55220 +#endif // RT_BIG_ENDIAN //
55222 +#ifdef RALINK_28xx_QA
55223 + if (pAd->ate.bQATxStart == TRUE)
55225 + /* modify sequence number.... */
55226 + if (pAd->ate.TxDoneCount == 0)
55228 + pAd->ate.seq = pHeader80211->Sequence;
55232 + pHeader80211->Sequence = ++pAd->ate.seq;
55234 + /* We already got all the addr. fields from QA GUI. */
55237 +#endif // RALINK_28xx_QA //
55239 + COPY_MAC_ADDR(pAd->NullFrame.Addr1, pAd->ate.Addr1);
55240 + COPY_MAC_ADDR(pAd->NullFrame.Addr2, pAd->ate.Addr2);
55241 + COPY_MAC_ADDR(pAd->NullFrame.Addr3, pAd->ate.Addr3);
55244 + RTMPZeroMemory(&pAd->NullContext.TransferBuffer->field.WirelessPacket[0], TX_BUFFER_NORMSIZE);//???
55245 + pTxInfo = (PTXINFO_STRUC)&pAd->NullContext.TransferBuffer->field.WirelessPacket[0];
55247 +#ifdef RALINK_28xx_QA
55248 + if (pAd->ate.bQATxStart == TRUE)
55250 + // Avoid to exceed the range of WirelessPacket[].
55251 + ASSERT(pAd->ate.TxInfo.USBDMATxPktLen <= (MAX_FRAME_SIZE - 34/* == 2312 */));
55252 + NdisMoveMemory(pTxInfo, &(pAd->ate.TxInfo), sizeof(pAd->ate.TxInfo));
55255 +#endif // RALINK_28xx_QA //
55257 + // Avoid to exceed the range of WirelessPacket[].
55258 + ASSERT(pAd->ate.TxLength <= (MAX_FRAME_SIZE - 34/* == 2312 */));
55260 + // pTxInfo->USBDMATxPktLen will be updated to include padding later.
55261 + ATEWriteTxInfo(pAd, pTxInfo, (USHORT)(TXWI_SIZE + pAd->ate.TxLength), TRUE, EpToQueue[MGMTPIPEIDX], FALSE, FALSE);
55262 + pTxInfo->QSEL = FIFO_EDCA;
55265 + pTxWI = (PTXWI_STRUC)&pAd->NullContext.TransferBuffer->field.WirelessPacket[TXINFO_SIZE];
55268 + if (pAd->ate.bQATxStart == TRUE)
55270 + TxHTPhyMode.field.BW = pAd->ate.TxWI.BW;
55271 + TxHTPhyMode.field.ShortGI = pAd->ate.TxWI.ShortGI;
55272 + TxHTPhyMode.field.STBC = pAd->ate.TxWI.STBC;
55273 + TxHTPhyMode.field.MCS = pAd->ate.TxWI.MCS;
55274 + TxHTPhyMode.field.MODE = pAd->ate.TxWI.PHYMODE;
55275 + ATEWriteTxWI(pAd, pTxWI, pAd->ate.TxWI.FRAG, pAd->ate.TxWI.TS, pAd->ate.TxWI.AMPDU, pAd->ate.TxWI.ACK, pAd->ate.TxWI.NSEQ,
55276 + pAd->ate.TxWI.BAWinSize, BSSID_WCID, pAd->ate.TxWI.MPDUtotalByteCount/* include 802.11 header */, pAd->ate.TxWI.PacketId, 0, pAd->ate.TxWI.txop/*IFS_HTTXOP*/, pAd->ate.TxWI.CFACK/*FALSE*/, TxHTPhyMode);
55280 + TxHTPhyMode.field.BW = pAd->ate.TxWI.BW;
55281 + TxHTPhyMode.field.ShortGI = pAd->ate.TxWI.ShortGI;
55282 + TxHTPhyMode.field.STBC = 0;
55283 + TxHTPhyMode.field.MCS = pAd->ate.TxWI.MCS;
55284 + TxHTPhyMode.field.MODE = pAd->ate.TxWI.PHYMODE;
55286 + ATEWriteTxWI(pAd, pTxWI, FALSE, FALSE, FALSE, FALSE/* No ack required. */, FALSE, 0, BSSID_WCID, pAd->ate.TxLength,
55287 + 0, 0, IFS_HTTXOP, FALSE, TxHTPhyMode);// "MMPS_STATIC" instead of "MMPS_DYNAMIC" ???
55290 + RTMPMoveMemory(&pAd->NullContext.TransferBuffer->field.WirelessPacket[TXINFO_SIZE+TXWI_SIZE], &pAd->NullFrame, sizeof(HEADER_802_11));
55292 + pDest = &(pAd->NullContext.TransferBuffer->field.WirelessPacket[TXINFO_SIZE+TXWI_SIZE+sizeof(HEADER_802_11)]);
55294 + // Prepare frame payload
55295 +#ifdef RALINK_28xx_QA
55296 + if (pAd->ate.bQATxStart == TRUE)
55299 + if ((pAd->ate.PLen != 0))
55301 + for (j = 0; j < pAd->ate.DLen; j+=pAd->ate.PLen)
55303 + RTMPMoveMemory(pDest, pAd->ate.Pattern, pAd->ate.PLen);
55304 + pDest += pAd->ate.PLen;
55307 + TransferBufferLength = TXINFO_SIZE + TXWI_SIZE + pAd->ate.TxWI.MPDUtotalByteCount;
55310 +#endif // RALINK_28xx_QA //
55312 + for (j = 0; j < (pAd->ate.TxLength - sizeof(HEADER_802_11)); j++)
55317 + TransferBufferLength = TXINFO_SIZE + TXWI_SIZE + pAd->ate.TxLength;
55321 + OrgBufferLength = TransferBufferLength;
55322 + TransferBufferLength = (TransferBufferLength + 3) & (~3);
55324 + // Always add 4 extra bytes at every packet.
55325 + padLen = TransferBufferLength - OrgBufferLength + 4;/* 4 == last packet padding */
55326 + ASSERT((padLen <= (RTMP_PKT_TAIL_PADDING - 4/* 4 == MaxBulkOutsize alignment padding */)));
55328 + /* Now memzero all extra padding bytes. */
55329 + NdisZeroMemory(pDest, padLen);
55332 + if ((TransferBufferLength % 4) == 1)
55334 + NdisZeroMemory(pDest, 7);
55336 + TransferBufferLength += 3;
55338 + else if ((TransferBufferLength % 4) == 2)
55340 + NdisZeroMemory(pDest, 6);
55342 + TransferBufferLength += 2;
55344 + else if ((TransferBufferLength % 4) == 3)
55346 + NdisZeroMemory(pDest, 5);
55348 + TransferBufferLength += 1;
55352 + // Update pTxInfo->USBDMATxPktLen to include padding.
55353 + pTxInfo->USBDMATxPktLen = TransferBufferLength - TXINFO_SIZE;
55355 + TransferBufferLength += 4;
55357 + // If TransferBufferLength is multiple of 64, add extra 4 bytes again.
55358 + if ((TransferBufferLength % pAd->BulkOutMaxPacketSize) == 0)
55360 + NdisZeroMemory(pDest, 4);
55361 + TransferBufferLength += 4;
55364 + // Fill out frame length information for global Bulk out arbitor
55365 + pAd->NullContext.BulkOutSize = TransferBufferLength;
55367 +#ifdef RT_BIG_ENDIAN
55368 + RTMPWIEndianChange((PUCHAR)pTxWI, TYPE_TXWI);
55369 + RTMPFrameEndianChange(pAd, (((PUCHAR)pTxInfo)+TXWI_SIZE+TXINFO_SIZE), DIR_WRITE, FALSE);
55370 + RTMPDescriptorEndianChange((PUCHAR)pTxInfo, TYPE_TXINFO);
55371 +#endif // RT_BIG_ENDIAN //
55375 +VOID ATE_RTUSBBulkOutDataPacketComplete(purbb_t pUrb, struct pt_regs *pt_regs)
55377 + PRTMP_ADAPTER pAd;
55378 + PTX_CONTEXT pNullContext;
55379 + UCHAR BulkOutPipeId;
55381 + unsigned long IrqFlags;
55384 + pNullContext = (PTX_CONTEXT)pUrb->context;
55385 + pAd = pNullContext->pAd;
55388 + // Reset Null frame context flags
55389 + pNullContext->IRPPending = FALSE;
55390 + pNullContext->InUse = FALSE;
55391 + Status = pUrb->status;
55393 + // Store BulkOut PipeId
55394 + BulkOutPipeId = pNullContext->BulkOutPipeId;
55395 + pAd->BulkOutDataOneSecCount++;
55397 + if (Status == USB_ST_NOERROR)
55399 +#ifdef RALINK_28xx_QA
55400 + if ((ATE_ON(pAd)) && (pAd->ate.bQATxStart == TRUE))
55402 + if (pAd->ate.QID == BulkOutPipeId)
55404 + // Let Rx can have a chance to break in during Tx process,
55405 + // especially for loopback mode in QA ATE.
55406 + // To trade off between tx performance and loopback mode integrity.
55407 + /* Q : Now Rx is handled by tasklet, do we still need this delay ? */
55408 + /* Ans : Even tasklet is used, Rx/Tx < 1 if we do not delay for a while right here. */
55409 + RTMPusecDelay(500);
55410 + pAd->ate.TxDoneCount++;
55411 + pAd->RalinkCounters.KickTxCount++;
55412 + ASSERT(pAd->ate.QID == 0);
55413 + pAd->ate.TxAc0++;
55416 +#endif // RALINK_28xx_QA //
55417 + pAd->BulkOutComplete++;
55419 + pAd->Counters8023.GoodTransmits++;
55421 + /* Don't worry about the queue is empty or not. This function will check itself. */
55422 + RTMPDeQueuePacket(pAd, TRUE, BulkOutPipeId, MAX_TX_PROCESS);
55424 + /* In 28xx, SendTxWaitQueue ==> TxSwQueue */
55426 + if (pAd->SendTxWaitQueue[BulkOutPipeId].Number > 0)
55428 + RTMPDeQueuePacket(pAd, BulkOutPipeId);
55432 + else // STATUS_OTHER
55434 + pAd->BulkOutCompleteOther++;
55436 + ATEDBGPRINT(RT_DEBUG_ERROR, ("BulkOutDataPacket Failed STATUS_OTHER = 0x%x . \n", Status));
55437 + ATEDBGPRINT(RT_DEBUG_ERROR, (">>BulkOutReq=0x%lx, BulkOutComplete=0x%lx\n", pAd->BulkOutReq, pAd->BulkOutComplete));
55439 + if ((!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RESET_IN_PROGRESS)) &&
55440 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS)) &&
55441 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)) &&
55442 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET)))
55444 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_BULKOUT_RESET);
55445 + /* In 28xx, RT_OID_USB_RESET_BULK_OUT ==> CMDTHREAD_RESET_BULK_OUT */
55446 + RTUSBEnqueueInternalCmd(pAd, CMDTHREAD_RESET_BULK_OUT, NULL, 0);
55448 + BULK_OUT_LOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
55449 + pAd->BulkOutPending[BulkOutPipeId] = FALSE;
55450 + pAd->bulkResetPipeid = BulkOutPipeId;
55451 + BULK_OUT_UNLOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
55458 + if (atomic_read(&pAd->BulkOutRemained) > 0)
55460 + atomic_dec(&pAd->BulkOutRemained);
55463 + // 1st - Transmit Success
55464 + OldValue = pAd->WlanCounters.TransmittedFragmentCount.u.LowPart;
55465 + pAd->WlanCounters.TransmittedFragmentCount.u.LowPart++;
55467 + if (pAd->WlanCounters.TransmittedFragmentCount.u.LowPart < OldValue)
55469 + pAd->WlanCounters.TransmittedFragmentCount.u.HighPart++;
55472 + if(((pAd->ContinBulkOut == TRUE ) ||(atomic_read(&pAd->BulkOutRemained) > 0)) && (pAd->ate.Mode & ATE_TXFRAME))
55474 + RTUSB_SET_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_ATE);
55478 + RTUSB_CLEAR_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_ATE);
55479 +#ifdef RALINK_28xx_QA
55480 + pAd->ate.TxStatus = 0;
55481 +#endif // RALINK_28xx_QA //
55484 + BULK_OUT_LOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
55485 + pAd->BulkOutPending[BulkOutPipeId] = FALSE;
55486 + BULK_OUT_UNLOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
55488 + // Always call Bulk routine, even reset bulk.
55489 + // The protection of rest bulk should be in BulkOut routine.
55490 + RTUSBKickBulkOut(pAd);
55494 + ========================================================================
55496 + Routine Description:
55504 + ========================================================================
55506 +VOID ATE_RTUSBBulkOutDataPacket(
55507 + IN PRTMP_ADAPTER pAd,
55508 + IN UCHAR BulkOutPipeId)
55510 + PTX_CONTEXT pNullContext = &(pAd->NullContext);
55513 + unsigned long IrqFlags;
55516 + ASSERT(BulkOutPipeId == 0);
55518 + /* Build up the frame first. */
55519 +// ATESetUpFrame(pAd, 0);
55521 + BULK_OUT_LOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
55523 + if (pAd->BulkOutPending[BulkOutPipeId] == TRUE)
55525 + BULK_OUT_UNLOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
55529 + pAd->BulkOutPending[BulkOutPipeId] = TRUE;
55530 + BULK_OUT_UNLOCK(&pAd->BulkOutLock[BulkOutPipeId], IrqFlags);
55532 + // Increase Total transmit byte counter
55533 + pAd->RalinkCounters.OneSecTransmittedByteCount += pNullContext->BulkOutSize;
55534 + pAd->RalinkCounters.TransmittedByteCount += pNullContext->BulkOutSize;
55536 + // Clear ATE frame bulk out flag
55537 + RTUSB_CLEAR_BULK_FLAG(pAd, fRTUSB_BULK_OUT_DATA_ATE);
55539 + // Init Tx context descriptor
55540 + pNullContext->IRPPending = TRUE;
55541 + RTUSBInitTxDesc(pAd, pNullContext, BulkOutPipeId, (usb_complete_t)ATE_RTUSBBulkOutDataPacketComplete);
55542 + pUrb = pNullContext->pUrb;
55544 + if((ret = RTUSB_SUBMIT_URB(pUrb))!=0)
55546 + ATEDBGPRINT(RT_DEBUG_ERROR, ("ATE_RTUSBBulkOutDataPacket: Submit Tx URB failed %d\n", ret));
55550 + pAd->BulkOutReq++;
55556 + ========================================================================
55558 + Routine Description:
55566 + ========================================================================
55568 +VOID ATE_RTUSBCancelPendingBulkInIRP(
55569 + IN PRTMP_ADAPTER pAd)
55571 + PRX_CONTEXT pRxContext;
55574 + ATEDBGPRINT(RT_DEBUG_TRACE, ("--->ATE_RTUSBCancelPendingBulkInIRP\n"));
55576 + for ( i = 0; i < (RX_RING_SIZE); i++)
55578 + pRxContext = &(pAd->RxContext[i]);
55579 + if(pRxContext->IRPPending == TRUE)
55581 + RTUSB_UNLINK_URB(pRxContext->pUrb);
55582 + pRxContext->IRPPending = FALSE;
55583 + pRxContext->InUse = FALSE;
55584 + //NdisInterlockedDecrement(&pAd->PendingRx);
55585 + //pAd->PendingRx--;
55589 + for ( i = 0; i < (RX_RING_SIZE); i++)
55591 + pRxContext = &(pAd->RxContext[i]);
55592 + if(atomic_read(&pRxContext->IrpLock) == IRPLOCK_CANCELABLE)
55594 + RTUSB_UNLINK_URB(pRxContext->pUrb);
55596 + InterlockedExchange(&pRxContext->IrpLock, IRPLOCK_CANCE_START);
55599 + ATEDBGPRINT(RT_DEBUG_TRACE, ("<---ATE_RTUSBCancelPendingBulkInIRP\n"));
55602 +#endif // RT2870 //
55604 +VOID rt_ee_read_all(PRTMP_ADAPTER pAd, USHORT *Data)
55609 + for (i = 0 ; i < EEPROM_SIZE/2 ; )
55611 + /* "value" is expecially for some compilers... */
55612 + RT28xx_EEPROM_READ16(pAd, i*2, value);
55618 +VOID rt_ee_write_all(PRTMP_ADAPTER pAd, USHORT *Data)
55623 + for (i = 0 ; i < EEPROM_SIZE/2 ; )
55625 + /* "value" is expecially for some compilers... */
55627 + RT28xx_EEPROM_WRITE16(pAd, i*2, value);
55631 +#ifdef RALINK_28xx_QA
55632 +VOID ATE_QA_Statistics(
55633 + IN PRTMP_ADAPTER pAd,
55634 + IN PRXWI_STRUC pRxWI,
55635 + IN PRT28XX_RXD_STRUC pRxD,
55636 + IN PHEADER_802_11 pHeader)
55638 + // update counter first
55639 + if (pHeader != NULL)
55641 + if (pHeader->FC.Type == BTYPE_DATA)
55646 + pAd->ate.OtherData++;
55648 + else if (pHeader->FC.Type == BTYPE_MGMT)
55650 + if (pHeader->FC.SubType == SUBTYPE_BEACON)
55651 + pAd->ate.Beacon++;
55653 + pAd->ate.OtherCount++;
55655 + else if (pHeader->FC.Type == BTYPE_CNTL)
55657 + pAd->ate.OtherCount++;
55660 + pAd->ate.RSSI0 = pRxWI->RSSI0;
55661 + pAd->ate.RSSI1 = pRxWI->RSSI1;
55662 + pAd->ate.RSSI2 = pRxWI->RSSI2;
55663 + pAd->ate.SNR0 = pRxWI->SNR0;
55664 + pAd->ate.SNR1 = pRxWI->SNR1;
55667 +/* command id with Cmd Type == 0x0008(for 28xx)/0x0005(for iNIC) */
55668 +#define RACFG_CMD_RF_WRITE_ALL 0x0000
55669 +#define RACFG_CMD_E2PROM_READ16 0x0001
55670 +#define RACFG_CMD_E2PROM_WRITE16 0x0002
55671 +#define RACFG_CMD_E2PROM_READ_ALL 0x0003
55672 +#define RACFG_CMD_E2PROM_WRITE_ALL 0x0004
55673 +#define RACFG_CMD_IO_READ 0x0005
55674 +#define RACFG_CMD_IO_WRITE 0x0006
55675 +#define RACFG_CMD_IO_READ_BULK 0x0007
55676 +#define RACFG_CMD_BBP_READ8 0x0008
55677 +#define RACFG_CMD_BBP_WRITE8 0x0009
55678 +#define RACFG_CMD_BBP_READ_ALL 0x000a
55679 +#define RACFG_CMD_GET_COUNTER 0x000b
55680 +#define RACFG_CMD_CLEAR_COUNTER 0x000c
55682 +#define RACFG_CMD_RSV1 0x000d
55683 +#define RACFG_CMD_RSV2 0x000e
55684 +#define RACFG_CMD_RSV3 0x000f
55686 +#define RACFG_CMD_TX_START 0x0010
55687 +#define RACFG_CMD_GET_TX_STATUS 0x0011
55688 +#define RACFG_CMD_TX_STOP 0x0012
55689 +#define RACFG_CMD_RX_START 0x0013
55690 +#define RACFG_CMD_RX_STOP 0x0014
55691 +#define RACFG_CMD_GET_NOISE_LEVEL 0x0015
55693 +#define RACFG_CMD_ATE_START 0x0080
55694 +#define RACFG_CMD_ATE_STOP 0x0081
55696 +#define RACFG_CMD_ATE_START_TX_CARRIER 0x0100
55697 +#define RACFG_CMD_ATE_START_TX_CONT 0x0101
55698 +#define RACFG_CMD_ATE_START_TX_FRAME 0x0102
55699 +#define RACFG_CMD_ATE_SET_BW 0x0103
55700 +#define RACFG_CMD_ATE_SET_TX_POWER0 0x0104
55701 +#define RACFG_CMD_ATE_SET_TX_POWER1 0x0105
55702 +#define RACFG_CMD_ATE_SET_FREQ_OFFSET 0x0106
55703 +#define RACFG_CMD_ATE_GET_STATISTICS 0x0107
55704 +#define RACFG_CMD_ATE_RESET_COUNTER 0x0108
55705 +#define RACFG_CMD_ATE_SEL_TX_ANTENNA 0x0109
55706 +#define RACFG_CMD_ATE_SEL_RX_ANTENNA 0x010a
55707 +#define RACFG_CMD_ATE_SET_PREAMBLE 0x010b
55708 +#define RACFG_CMD_ATE_SET_CHANNEL 0x010c
55709 +#define RACFG_CMD_ATE_SET_ADDR1 0x010d
55710 +#define RACFG_CMD_ATE_SET_ADDR2 0x010e
55711 +#define RACFG_CMD_ATE_SET_ADDR3 0x010f
55712 +#define RACFG_CMD_ATE_SET_RATE 0x0110
55713 +#define RACFG_CMD_ATE_SET_TX_FRAME_LEN 0x0111
55714 +#define RACFG_CMD_ATE_SET_TX_FRAME_COUNT 0x0112
55715 +#define RACFG_CMD_ATE_START_RX_FRAME 0x0113
55716 +#define RACFG_CMD_ATE_E2PROM_READ_BULK 0x0114
55717 +#define RACFG_CMD_ATE_E2PROM_WRITE_BULK 0x0115
55718 +#define RACFG_CMD_ATE_IO_WRITE_BULK 0x0116
55719 +#define RACFG_CMD_ATE_BBP_READ_BULK 0x0117
55720 +#define RACFG_CMD_ATE_BBP_WRITE_BULK 0x0118
55721 +#define RACFG_CMD_ATE_RF_READ_BULK 0x0119
55722 +#define RACFG_CMD_ATE_RF_WRITE_BULK 0x011a
55726 +#define A2Hex(_X, _p) \
55731 + while (((*p >= 'a') && (*p <= 'f')) || ((*p >= 'A') && (*p <= 'F')) || ((*p >= '0') && (*p <= '9'))) \
55733 + if ((*p >= 'a') && (*p <= 'f')) \
55734 + _X = _X * 16 + *p - 87; \
55735 + else if ((*p >= 'A') && (*p <= 'F')) \
55736 + _X = _X * 16 + *p - 55; \
55737 + else if ((*p >= '0') && (*p <= '9')) \
55738 + _X = _X * 16 + *p - 48; \
55744 +static VOID memcpy_exl(PRTMP_ADAPTER pAd, UCHAR *dst, UCHAR *src, ULONG len);
55745 +static VOID memcpy_exs(PRTMP_ADAPTER pAd, UCHAR *dst, UCHAR *src, ULONG len);
55746 +static VOID RTMP_IO_READ_BULK(PRTMP_ADAPTER pAd, UCHAR *dst, UCHAR *src, UINT32 len);
55749 +int ate_copy_to_user(
55750 + IN PUCHAR payload,
55754 + memmove(payload, msg, len);
55758 +#undef copy_to_user
55759 +#define copy_to_user(x,y,z) ate_copy_to_user((PUCHAR)x, (PUCHAR)y, z)
55762 +#define LEN_OF_ARG 16
55765 + IN PRTMP_ADAPTER pAdapter,
55766 + IN struct iwreq *wrq)
55768 + unsigned short Command_Id;
55769 + struct ate_racfghdr *pRaCfg;
55770 + INT Status = NDIS_STATUS_SUCCESS;
55774 + if((pRaCfg = kmalloc(sizeof(struct ate_racfghdr), GFP_KERNEL)) == NULL)
55776 + Status = -EINVAL;
55780 + NdisZeroMemory(pRaCfg, sizeof(struct ate_racfghdr));
55782 + if (copy_from_user((PUCHAR)pRaCfg, wrq->u.data.pointer, wrq->u.data.length))
55784 + Status = -EFAULT;
55790 + Command_Id = ntohs(pRaCfg->command_id);
55792 + ATEDBGPRINT(RT_DEBUG_TRACE,("\n%s: Command_Id = 0x%04x !\n", __FUNCTION__, Command_Id));
55794 + switch (Command_Id)
55796 + // We will get this command when QA starts.
55797 + case RACFG_CMD_ATE_START:
55799 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_START\n"));
55801 + // prepare feedback as soon as we can to avoid QA timeout.
55802 + pRaCfg->length = htons(2);
55803 + pRaCfg->status = htons(0);
55805 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
55806 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
55807 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
55809 + ATEDBGPRINT(RT_DEBUG_TRACE, ("wrq->u.data.length = %d\n", wrq->u.data.length));
55811 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
55813 + ATEDBGPRINT(RT_DEBUG_TRACE, ("copy_to_user() fail in case RACFG_CMD_ATE_START\n"));
55814 + Status = -EFAULT;
55818 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_START is done !\n"));
55820 + Set_ATE_Proc(pAdapter, "ATESTART");
55824 + // We will get this command either QA is closed or ated is killed by user.
55825 + case RACFG_CMD_ATE_STOP:
55829 +#endif // !UCOS //
55831 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_STOP\n"));
55833 + // Distinguish this command came from QA(via ated)
55834 + // or ate daemon according to the existence of pid in payload.
55835 + // No need to prepare feedback if this cmd came directly from ate daemon.
55836 + pRaCfg->length = ntohs(pRaCfg->length);
55838 + if (pRaCfg->length == sizeof(pAdapter->ate.AtePid))
55840 + // This command came from QA.
55841 + // Get the pid of ATE daemon.
55842 + memcpy((UCHAR *)&pAdapter->ate.AtePid,
55843 + (&pRaCfg->data[0]) - 2/* == &(pRaCfg->status) */,
55844 + sizeof(pAdapter->ate.AtePid));
55846 + // prepare feedback as soon as we can to avoid QA timeout.
55847 + pRaCfg->length = htons(2);
55848 + pRaCfg->status = htons(0);
55850 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
55851 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
55852 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
55854 + ATEDBGPRINT(RT_DEBUG_TRACE, ("wrq->u.data.length = %d\n", wrq->u.data.length));
55856 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
55858 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_STOP\n"));
55859 + Status = -EFAULT;
55863 + // kill ATE daemon when leaving ATE mode.
55864 + // We must kill ATE daemon first before setting ATESTOP,
55865 + // or Microsoft will report sth. wrong.
55867 + ret = kill_proc(pAdapter->ate.AtePid, SIGTERM, 1);
55870 + ATEDBGPRINT(RT_DEBUG_ERROR, ("%s: unable to signal thread\n", pAdapter->net_dev->name));
55872 +#endif // !UCOS //
55876 + // Roger add to avoid error message after close QA
55877 + if (pAdapter->CSRBaseAddress == RT2860_CSR_ADDR)
55880 + // prepare feedback as soon as we can to avoid QA timeout.
55881 + pRaCfg->length = htons(2);
55882 + pRaCfg->status = htons(0);
55884 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
55885 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
55886 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
55888 + ATEDBGPRINT(RT_DEBUG_TRACE, ("wrq->u.data.length = %d\n", wrq->u.data.length));
55889 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
55891 + ATEDBGPRINT(RT_DEBUG_TRACE, ("copy_to_user() fail in case RACFG_CMD_AP_START\n"));
55892 + Status = -EFAULT;
55897 + // AP might have in ATE_STOP mode due to cmd from QA.
55898 + if (ATE_ON(pAdapter))
55900 + // Someone has killed ate daemon while QA GUI is still open.
55901 + Set_ATE_Proc(pAdapter, "ATESTOP");
55902 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_AP_START is done !\n"));
55907 + case RACFG_CMD_RF_WRITE_ALL:
55909 + UINT32 R1, R2, R3, R4;
55912 + memcpy(&R1, pRaCfg->data-2, 4);
55913 + memcpy(&R2, pRaCfg->data+2, 4);
55914 + memcpy(&R3, pRaCfg->data+6, 4);
55915 + memcpy(&R4, pRaCfg->data+10, 4);
55916 + memcpy(&channel, pRaCfg->data+14, 2);
55918 + pAdapter->LatchRfRegs.R1 = ntohl(R1);
55919 + pAdapter->LatchRfRegs.R2 = ntohl(R2);
55920 + pAdapter->LatchRfRegs.R3 = ntohl(R3);
55921 + pAdapter->LatchRfRegs.R4 = ntohl(R4);
55922 + pAdapter->LatchRfRegs.Channel = ntohs(channel);
55924 + RTMP_RF_IO_WRITE32(pAdapter, pAdapter->LatchRfRegs.R1);
55925 + RTMP_RF_IO_WRITE32(pAdapter, pAdapter->LatchRfRegs.R2);
55926 + RTMP_RF_IO_WRITE32(pAdapter, pAdapter->LatchRfRegs.R3);
55927 + RTMP_RF_IO_WRITE32(pAdapter, pAdapter->LatchRfRegs.R4);
55929 + // prepare feedback
55930 + pRaCfg->length = htons(2);
55931 + pRaCfg->status = htons(0);
55933 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
55934 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
55935 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
55937 + ATEDBGPRINT(RT_DEBUG_TRACE, ("wrq->u.data.length = %d\n", wrq->u.data.length));
55938 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
55940 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_RF_WRITE_ALL\n"));
55941 + Status = -EFAULT;
55945 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_RF_WRITE_ALL is done !\n"));
55950 + case RACFG_CMD_E2PROM_READ16:
55952 + USHORT offset, value, tmp;
55954 + offset = ntohs(pRaCfg->status);
55955 + /* "tmp" is expecially for some compilers... */
55956 + RT28xx_EEPROM_READ16(pAdapter, offset, tmp);
55958 + value = htons(value);
55960 + ATEDBGPRINT(RT_DEBUG_TRACE,("EEPROM Read offset = 0x%04x, value = 0x%04x\n", offset, value));
55962 + // prepare feedback
55963 + pRaCfg->length = htons(4);
55964 + pRaCfg->status = htons(0);
55965 + memcpy(pRaCfg->data, &value, 2);
55967 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
55968 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
55969 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
55971 + ATEDBGPRINT(RT_DEBUG_TRACE, ("sizeof(struct ate_racfghdr) = %d\n", sizeof(struct ate_racfghdr)));
55972 + ATEDBGPRINT(RT_DEBUG_TRACE, ("wrq->u.data.length = %d\n", wrq->u.data.length));
55974 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
55976 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_E2PROM_READ16\n"));
55977 + Status = -EFAULT;
55981 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_E2PROM_READ16 is done !\n"));
55986 + case RACFG_CMD_E2PROM_WRITE16:
55988 + USHORT offset, value;
55990 + offset = ntohs(pRaCfg->status);
55991 + memcpy(&value, pRaCfg->data, 2);
55992 + value = ntohs(value);
55993 + RT28xx_EEPROM_WRITE16(pAdapter, offset, value);
55995 + // prepare feedback
55996 + pRaCfg->length = htons(2);
55997 + pRaCfg->status = htons(0);
55998 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
55999 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56000 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56002 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56004 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_E2PROM_WRITE16\n"));
56005 + Status = -EFAULT;
56009 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_E2PROM_WRITE16 is done !\n"));
56014 + case RACFG_CMD_E2PROM_READ_ALL:
56016 + USHORT buffer[EEPROM_SIZE/2];
56018 + rt_ee_read_all(pAdapter,(USHORT *)buffer);
56019 + memcpy_exs(pAdapter, pRaCfg->data, (UCHAR *)buffer, EEPROM_SIZE);
56021 + // prepare feedback
56022 + pRaCfg->length = htons(2+EEPROM_SIZE);
56023 + pRaCfg->status = htons(0);
56024 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56025 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56026 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56028 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56030 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_E2PROM_READ_ALL\n"));
56031 + Status = -EFAULT;
56035 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_E2PROM_READ_ALL is done !\n"));
56040 + case RACFG_CMD_E2PROM_WRITE_ALL:
56042 + USHORT buffer[EEPROM_SIZE/2];
56044 + NdisZeroMemory((UCHAR *)buffer, EEPROM_SIZE);
56045 + memcpy_exs(pAdapter, (UCHAR *)buffer, (UCHAR *)&pRaCfg->status, EEPROM_SIZE);
56046 + rt_ee_write_all(pAdapter,(USHORT *)buffer);
56048 + // prepare feedback
56049 + pRaCfg->length = htons(2);
56050 + pRaCfg->status = htons(0);
56051 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56052 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56053 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56055 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56057 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_E2PROM_WRITE_ALL\n"));
56058 + Status = -EFAULT;
56062 + ATEDBGPRINT(RT_DEBUG_ERROR, ("RACFG_CMD_E2PROM_WRITE_ALL is done !\n"));
56068 + case RACFG_CMD_IO_READ:
56073 + memcpy(&offset, &pRaCfg->status, 4);
56074 + offset = ntohl(offset);
56076 + // We do not need the base address.
56077 + // So just extract the offset out.
56078 + offset &= 0x0000FFFF;
56079 + RTMP_IO_READ32(pAdapter, offset, &value);
56080 + value = htonl(value);
56082 + // prepare feedback
56083 + pRaCfg->length = htons(6);
56084 + pRaCfg->status = htons(0);
56085 + memcpy(pRaCfg->data, &value, 4);
56087 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56088 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56089 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56091 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56093 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_IO_READ\n"));
56094 + Status = -EFAULT;
56098 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_IO_READ is done !\n"));
56103 + case RACFG_CMD_IO_WRITE:
56105 + UINT32 offset, value;
56107 + memcpy(&offset, pRaCfg->data-2, 4);
56108 + memcpy(&value, pRaCfg->data+2, 4);
56110 + offset = ntohl(offset);
56112 + // We do not need the base address.
56113 + // So just extract out the offset.
56114 + offset &= 0x0000FFFF;
56115 + value = ntohl(value);
56116 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_IO_WRITE: offset = %x, value = %x\n", offset, value));
56117 + RTMP_IO_WRITE32(pAdapter, offset, value);
56119 + // prepare feedback
56120 + pRaCfg->length = htons(2);
56121 + pRaCfg->status = htons(0);
56122 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56123 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56124 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56126 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56128 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_IO_WRITE\n"));
56129 + Status = -EFAULT;
56133 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_IO_WRITE is done !\n"));
56138 + case RACFG_CMD_IO_READ_BULK:
56143 + memcpy(&offset, &pRaCfg->status, 4);
56144 + offset = ntohl(offset);
56146 + // We do not need the base address.
56147 + // So just extract the offset.
56148 + offset &= 0x0000FFFF;
56149 + memcpy(&len, pRaCfg->data+2, 2);
56150 + len = ntohs(len);
56154 + ATEDBGPRINT(RT_DEBUG_TRACE,("len is too large, make it smaller\n"));
56155 + pRaCfg->length = htons(2);
56156 + pRaCfg->status = htons(1);
56160 + RTMP_IO_READ_BULK(pAdapter, pRaCfg->data, (UCHAR *)offset, len*4);// unit in four bytes
56162 + // prepare feedback
56163 + pRaCfg->length = htons(2+len*4);// unit in four bytes
56164 + pRaCfg->status = htons(0);
56165 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56166 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56167 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56169 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56171 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_IO_READ_BULK\n"));
56172 + Status = -EFAULT;
56176 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_IO_READ_BULK is done !\n"));
56181 + case RACFG_CMD_BBP_READ8:
56187 + offset = ntohs(pRaCfg->status);
56189 + if (ATE_ON(pAdapter))
56191 + ATE_BBP_IO_READ8_BY_REG_ID(pAdapter, offset, &value);
56195 + RTMP_BBP_IO_READ8_BY_REG_ID(pAdapter, offset, &value);
56197 + // prepare feedback
56198 + pRaCfg->length = htons(3);
56199 + pRaCfg->status = htons(0);
56200 + pRaCfg->data[0] = value;
56202 + ATEDBGPRINT(RT_DEBUG_TRACE,("BBP value = %x\n", value));
56204 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56205 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56206 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56208 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56210 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_BBP_READ8\n"));
56211 + Status = -EFAULT;
56215 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_BBP_READ8 is done !\n"));
56219 + case RACFG_CMD_BBP_WRITE8:
56224 + offset = ntohs(pRaCfg->status);
56225 + memcpy(&value, pRaCfg->data, 1);
56227 + if (ATE_ON(pAdapter))
56229 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAdapter, offset, value);
56233 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAdapter, offset, value);
56236 + if ((offset == BBP_R1) || (offset == BBP_R3))
56238 + SyncTxRxConfig(pAdapter, offset, value);
56241 + // prepare feedback
56242 + pRaCfg->length = htons(2);
56243 + pRaCfg->status = htons(0);
56244 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56245 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56246 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56248 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56250 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_BBP_WRITE8\n"));
56251 + Status = -EFAULT;
56255 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_BBP_WRITE8 is done !\n"));
56260 + case RACFG_CMD_BBP_READ_ALL:
56264 + for (j = 0; j < 137; j++)
56266 + pRaCfg->data[j] = 0;
56268 + if (ATE_ON(pAdapter))
56270 + ATE_BBP_IO_READ8_BY_REG_ID(pAdapter, j, &pRaCfg->data[j]);
56274 + RTMP_BBP_IO_READ8_BY_REG_ID(pAdapter, j, &pRaCfg->data[j]);
56278 + // prepare feedback
56279 + pRaCfg->length = htons(2+137);
56280 + pRaCfg->status = htons(0);
56282 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56283 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56284 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56286 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56288 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_BBP_READ_ALL\n"));
56289 + Status = -EFAULT;
56293 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_BBP_READ_ALL is done !\n"));
56299 + case RACFG_CMD_ATE_E2PROM_READ_BULK:
56303 + USHORT buffer[EEPROM_SIZE/2];
56305 + offset = ntohs(pRaCfg->status);
56306 + memcpy(&len, pRaCfg->data, 2);
56307 + len = ntohs(len);
56309 + rt_ee_read_all(pAdapter,(USHORT *)buffer);
56310 + if (offset + len <= EEPROM_SIZE)
56311 + memcpy_exs(pAdapter, pRaCfg->data, (UCHAR *)buffer+offset, len);
56313 + ATEDBGPRINT(RT_DEBUG_ERROR, ("exceed EEPROM size\n"));
56315 + // prepare feedback
56316 + pRaCfg->length = htons(2+len);
56317 + pRaCfg->status = htons(0);
56318 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56319 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56320 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56322 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56324 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_E2PROM_READ_BULK\n"));
56325 + Status = -EFAULT;
56329 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_E2PROM_READ_BULK is done !\n"));
56335 + case RACFG_CMD_ATE_E2PROM_WRITE_BULK:
56339 + USHORT buffer[EEPROM_SIZE/2];
56341 + offset = ntohs(pRaCfg->status);
56342 + memcpy(&len, pRaCfg->data, 2);
56343 + len = ntohs(len);
56345 + rt_ee_read_all(pAdapter,(USHORT *)buffer);
56346 + memcpy_exs(pAdapter, (UCHAR *)buffer + offset, (UCHAR *)pRaCfg->data + 2, len);
56347 + rt_ee_write_all(pAdapter,(USHORT *)buffer);
56349 + // prepare feedback
56350 + pRaCfg->length = htons(2);
56351 + pRaCfg->status = htons(0);
56352 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56353 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56354 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56355 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56357 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_E2PROM_WRITE_BULK\n"));
56358 + Status = -EFAULT;
56362 + ATEDBGPRINT(RT_DEBUG_ERROR, ("RACFG_CMD_ATE_E2PROM_WRITE_BULK is done !\n"));
56368 + case RACFG_CMD_ATE_IO_WRITE_BULK:
56370 + UINT32 offset, i, value;
56373 + memcpy(&offset, &pRaCfg->status, 4);
56374 + offset = ntohl(offset);
56375 + memcpy(&len, pRaCfg->data+2, 2);
56376 + len = ntohs(len);
56378 + for (i = 0; i < len; i += 4)
56380 + memcpy_exl(pAdapter, (UCHAR *)&value, pRaCfg->data+4+i, 4);
56381 + printk("Write %x %x\n", offset + i, value);
56382 + RTMP_IO_WRITE32(pAdapter, (offset +i) & 0xffff, value);
56385 + // prepare feedback
56386 + pRaCfg->length = htons(2);
56387 + pRaCfg->status = htons(0);
56388 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56389 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56390 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56391 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56393 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_IO_WRITE_BULK\n"));
56394 + Status = -EFAULT;
56398 + ATEDBGPRINT(RT_DEBUG_ERROR, ("RACFG_CMD_ATE_IO_WRITE_BULK is done !\n"));
56404 + case RACFG_CMD_ATE_BBP_READ_BULK:
56410 + offset = ntohs(pRaCfg->status);
56411 + memcpy(&len, pRaCfg->data, 2);
56412 + len = ntohs(len);
56415 + for (j = offset; j < (offset+len); j++)
56417 + pRaCfg->data[j - offset] = 0;
56419 + if (pAdapter->ate.Mode == ATE_STOP)
56421 + RTMP_BBP_IO_READ8_BY_REG_ID(pAdapter, j, &pRaCfg->data[j - offset]);
56425 + ATE_BBP_IO_READ8_BY_REG_ID(pAdapter, j, &pRaCfg->data[j - offset]);
56429 + // prepare feedback
56430 + pRaCfg->length = htons(2+len);
56431 + pRaCfg->status = htons(0);
56432 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56433 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56434 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56436 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56438 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_BBP_READ_BULK\n"));
56439 + Status = -EFAULT;
56443 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_BBP_READ_BULK is done !\n"));
56449 + case RACFG_CMD_ATE_BBP_WRITE_BULK:
56456 + offset = ntohs(pRaCfg->status);
56457 + memcpy(&len, pRaCfg->data, 2);
56458 + len = ntohs(len);
56460 + for (j = offset; j < (offset+len); j++)
56462 + value = pRaCfg->data + 2 + (j - offset);
56463 + if (pAdapter->ate.Mode == ATE_STOP)
56465 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAdapter, j, *value);
56469 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAdapter, j, *value);
56473 + // prepare feedback
56474 + pRaCfg->length = htons(2);
56475 + pRaCfg->status = htons(0);
56476 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56477 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56478 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56480 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56482 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_BBP_WRITE_BULK\n"));
56483 + Status = -EFAULT;
56487 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_BBP_WRITE_BULK is done !\n"));
56492 +#ifdef CONFIG_RALINK_RT3052
56493 + case RACFG_CMD_ATE_RF_READ_BULK:
56499 + offset = ntohs(pRaCfg->status);
56500 + memcpy(&len, pRaCfg->data, 2);
56501 + len = ntohs(len);
56503 + for (j = offset; j < (offset+len); j++)
56505 + pRaCfg->data[j - offset] = 0;
56506 + RT30xxReadRFRegister(pAdapter, j, &pRaCfg->data[j - offset]);
56509 + // prepare feedback
56510 + pRaCfg->length = htons(2+len);
56511 + pRaCfg->status = htons(0);
56512 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56513 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56514 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56516 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56518 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_RF_READ_BULK\n"));
56519 + Status = -EFAULT;
56523 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_RF_READ_BULK is done !\n"));
56529 + case RACFG_CMD_ATE_RF_WRITE_BULK:
56536 + offset = ntohs(pRaCfg->status);
56537 + memcpy(&len, pRaCfg->data, 2);
56538 + len = ntohs(len);
56540 + for (j = offset; j < (offset+len); j++)
56542 + value = pRaCfg->data + 2 + (j - offset);
56543 + RT30xxWriteRFRegister(pAdapter, j, *value);
56546 + // prepare feedback
56547 + pRaCfg->length = htons(2);
56548 + pRaCfg->status = htons(0);
56549 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56550 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56551 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56553 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56555 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_RF_WRITE_BULK\n"));
56556 + Status = -EFAULT;
56560 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_RF_WRITE_BULK is done !\n"));
56568 + case RACFG_CMD_GET_NOISE_LEVEL:
56571 + INT32 buffer[3][10];/* 3 : RxPath ; 10 : no. of per rssi samples */
56573 + channel = (ntohs(pRaCfg->status) & 0x00FF);
56574 + CalNoiseLevel(pAdapter, channel, buffer);
56575 + memcpy_exl(pAdapter, (UCHAR *)pRaCfg->data, (UCHAR *)&(buffer[0][0]), (sizeof(INT32)*3*10));
56577 + // prepare feedback
56578 + pRaCfg->length = htons(2 + (sizeof(INT32)*3*10));
56579 + pRaCfg->status = htons(0);
56580 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56581 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56582 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56584 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56586 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_GET_NOISE_LEVEL\n"));
56587 + Status = -EFAULT;
56591 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_GET_NOISE_LEVEL is done !\n"));
56596 + case RACFG_CMD_GET_COUNTER:
56598 + memcpy_exl(pAdapter, &pRaCfg->data[0], (UCHAR *)&pAdapter->ate.U2M, 4);
56599 + memcpy_exl(pAdapter, &pRaCfg->data[4], (UCHAR *)&pAdapter->ate.OtherData, 4);
56600 + memcpy_exl(pAdapter, &pRaCfg->data[8], (UCHAR *)&pAdapter->ate.Beacon, 4);
56601 + memcpy_exl(pAdapter, &pRaCfg->data[12], (UCHAR *)&pAdapter->ate.OtherCount, 4);
56602 + memcpy_exl(pAdapter, &pRaCfg->data[16], (UCHAR *)&pAdapter->ate.TxAc0, 4);
56603 + memcpy_exl(pAdapter, &pRaCfg->data[20], (UCHAR *)&pAdapter->ate.TxAc1, 4);
56604 + memcpy_exl(pAdapter, &pRaCfg->data[24], (UCHAR *)&pAdapter->ate.TxAc2, 4);
56605 + memcpy_exl(pAdapter, &pRaCfg->data[28], (UCHAR *)&pAdapter->ate.TxAc3, 4);
56606 + memcpy_exl(pAdapter, &pRaCfg->data[32], (UCHAR *)&pAdapter->ate.TxHCCA, 4);
56607 + memcpy_exl(pAdapter, &pRaCfg->data[36], (UCHAR *)&pAdapter->ate.TxMgmt, 4);
56608 + memcpy_exl(pAdapter, &pRaCfg->data[40], (UCHAR *)&pAdapter->ate.RSSI0, 4);
56609 + memcpy_exl(pAdapter, &pRaCfg->data[44], (UCHAR *)&pAdapter->ate.RSSI1, 4);
56610 + memcpy_exl(pAdapter, &pRaCfg->data[48], (UCHAR *)&pAdapter->ate.RSSI2, 4);
56611 + memcpy_exl(pAdapter, &pRaCfg->data[52], (UCHAR *)&pAdapter->ate.SNR0, 4);
56612 + memcpy_exl(pAdapter, &pRaCfg->data[56], (UCHAR *)&pAdapter->ate.SNR1, 4);
56614 + pRaCfg->length = htons(2+60);
56615 + pRaCfg->status = htons(0);
56616 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56617 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56618 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56620 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56622 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_GET_COUNTER\n"));
56623 + Status = -EFAULT;
56627 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_GET_COUNTER is done !\n"));
56632 + case RACFG_CMD_CLEAR_COUNTER:
56634 + pAdapter->ate.U2M = 0;
56635 + pAdapter->ate.OtherData = 0;
56636 + pAdapter->ate.Beacon = 0;
56637 + pAdapter->ate.OtherCount = 0;
56638 + pAdapter->ate.TxAc0 = 0;
56639 + pAdapter->ate.TxAc1 = 0;
56640 + pAdapter->ate.TxAc2 = 0;
56641 + pAdapter->ate.TxAc3 = 0;
56642 + pAdapter->ate.TxHCCA = 0;
56643 + pAdapter->ate.TxMgmt = 0;
56644 + pAdapter->ate.TxDoneCount = 0;
56646 + pRaCfg->length = htons(2);
56647 + pRaCfg->status = htons(0);
56649 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56650 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56651 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56653 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56655 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_CLEAR_COUNTER\n"));
56656 + Status = -EFAULT;
56660 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_CLEAR_COUNTER is done !\n"));
56666 + case RACFG_CMD_TX_START:
56670 + UCHAR Bbp22Value = 0, Bbp24Value = 0;
56672 + if ((pAdapter->ate.TxStatus != 0) && (pAdapter->ate.Mode & ATE_TXFRAME))
56674 + ATEDBGPRINT(RT_DEBUG_TRACE,("Ate Tx is already running, to run next Tx, you must stop it first\n"));
56676 + goto TX_START_ERROR;
56678 + else if ((pAdapter->ate.TxStatus != 0) && !(pAdapter->ate.Mode & ATE_TXFRAME))
56682 + while ((i++ < 10) && (pAdapter->ate.TxStatus != 0))
56684 + RTMPusecDelay(5000);
56687 + // force it to stop
56688 + pAdapter->ate.TxStatus = 0;
56689 + pAdapter->ate.TxDoneCount = 0;
56690 + //pAdapter->ate.Repeat = 0;
56691 + pAdapter->ate.bQATxStart = FALSE;
56694 + // If pRaCfg->length == 0, this "RACFG_CMD_TX_START" is for Carrier test or Carrier Suppression.
56695 + if (ntohs(pRaCfg->length) != 0)
56697 + // Get frame info
56699 + NdisMoveMemory(&pAdapter->ate.TxInfo, pRaCfg->data - 2, 4);
56700 +#ifdef RT_BIG_ENDIAN
56701 + RTMPDescriptorEndianChange((PUCHAR) &pAdapter->ate.TxInfo, TYPE_TXINFO);
56702 +#endif // RT_BIG_ENDIAN //
56703 +#endif // RT2870 //
56705 + NdisMoveMemory(&pAdapter->ate.TxWI, pRaCfg->data + 2, 16);
56706 +#ifdef RT_BIG_ENDIAN
56707 + RTMPWIEndianChange((PUCHAR)&pAdapter->ate.TxWI, TYPE_TXWI);
56708 +#endif // RT_BIG_ENDIAN //
56710 + NdisMoveMemory(&pAdapter->ate.TxCount, pRaCfg->data + 18, 4);
56711 + pAdapter->ate.TxCount = ntohl(pAdapter->ate.TxCount);
56713 + p = (USHORT *)(&pRaCfg->data[22]);
56714 + //p = pRaCfg->data + 22;
56715 + // always use QID_AC_BE
56716 + pAdapter->ate.QID = 0;
56717 + p = (USHORT *)(&pRaCfg->data[24]);
56718 + //p = pRaCfg->data + 24;
56719 + pAdapter->ate.HLen = ntohs(*p);
56721 + if (pAdapter->ate.HLen > 32)
56723 + ATEDBGPRINT(RT_DEBUG_ERROR,("pAdapter->ate.HLen > 32\n"));
56725 + goto TX_START_ERROR;
56728 + NdisMoveMemory(&pAdapter->ate.Header, pRaCfg->data + 26, pAdapter->ate.HLen);
56731 + pAdapter->ate.PLen = ntohs(pRaCfg->length) - (pAdapter->ate.HLen + 28);
56733 + if (pAdapter->ate.PLen > 32)
56735 + ATEDBGPRINT(RT_DEBUG_ERROR,("pAdapter->ate.PLen > 32\n"));
56737 + goto TX_START_ERROR;
56740 + NdisMoveMemory(&pAdapter->ate.Pattern, pRaCfg->data + 26 + pAdapter->ate.HLen, pAdapter->ate.PLen);
56741 + pAdapter->ate.DLen = pAdapter->ate.TxWI.MPDUtotalByteCount - pAdapter->ate.HLen;
56744 + ATE_BBP_IO_READ8_BY_REG_ID(pAdapter, BBP_R22, &Bbp22Value);
56746 + switch (Bbp22Value)
56748 + case BBP22_TXFRAME:
56750 + if (pAdapter->ate.TxCount == 0)
56753 + ATEDBGPRINT(RT_DEBUG_TRACE,("START TXFRAME\n"));
56754 + pAdapter->ate.bQATxStart = TRUE;
56755 + Set_ATE_Proc(pAdapter, "TXFRAME");
56759 + case BBP22_TXCONT_OR_CARRSUPP:
56761 + ATEDBGPRINT(RT_DEBUG_TRACE,("BBP22_TXCONT_OR_CARRSUPP\n"));
56762 + ATE_BBP_IO_READ8_BY_REG_ID(pAdapter, 24, &Bbp24Value);
56764 + switch (Bbp24Value)
56766 + case BBP24_TXCONT:
56768 + ATEDBGPRINT(RT_DEBUG_TRACE,("START TXCONT\n"));
56769 + pAdapter->ate.bQATxStart = TRUE;
56770 + Set_ATE_Proc(pAdapter, "TXCONT");
56774 + case BBP24_CARRSUPP:
56776 + ATEDBGPRINT(RT_DEBUG_TRACE,("START TXCARRSUPP\n"));
56777 + pAdapter->ate.bQATxStart = TRUE;
56778 + pAdapter->ate.Mode |= ATE_TXCARRSUPP;
56784 + ATEDBGPRINT(RT_DEBUG_ERROR,("Unknown Start TX subtype !"));
56791 + case BBP22_TXCARR:
56793 + ATEDBGPRINT(RT_DEBUG_TRACE,("START TXCARR\n"));
56794 + pAdapter->ate.bQATxStart = TRUE;
56795 + Set_ATE_Proc(pAdapter, "TXCARR");
56801 + ATEDBGPRINT(RT_DEBUG_ERROR,("Unknown Start TX subtype !"));
56806 + if (pAdapter->ate.bQATxStart == TRUE)
56808 + // prepare feedback
56809 + pRaCfg->length = htons(2);
56810 + pRaCfg->status = htons(0);
56812 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56813 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56814 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56816 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56818 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() was failed in case RACFG_CMD_TX_START\n"));
56819 + Status = -EFAULT;
56823 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_TX_START is done !\n"));
56829 + // prepare feedback
56830 + pRaCfg->length = htons(2);
56831 + pRaCfg->status = htons(err);
56833 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56834 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56835 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56836 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56838 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_TX_START\n"));
56839 + Status = -EFAULT;
56843 + ATEDBGPRINT(RT_DEBUG_TRACE, ("feedback of TX_START_ERROR is done !\n"));
56848 + case RACFG_CMD_GET_TX_STATUS:
56852 + // prepare feedback
56853 + pRaCfg->length = htons(6);
56854 + pRaCfg->status = htons(0);
56855 + count = htonl(pAdapter->ate.TxDoneCount);
56856 + NdisMoveMemory(pRaCfg->data, &count, 4);
56857 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56858 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56859 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56861 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56863 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_GET_TX_STATUS\n"));
56864 + Status = -EFAULT;
56868 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_GET_TX_STATUS is done !\n"));
56873 + case RACFG_CMD_TX_STOP:
56875 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_TX_STOP\n"));
56877 + Set_ATE_Proc(pAdapter, "TXSTOP");
56879 + // prepare feedback
56880 + pRaCfg->length = htons(2);
56881 + pRaCfg->status = htons(0);
56882 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56883 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56884 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56886 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56888 + ATEDBGPRINT(RT_DEBUG_TRACE, ("copy_to_user() fail in case RACFG_CMD_TX_STOP\n"));
56889 + Status = -EFAULT;
56893 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_TX_STOP is done !\n"));
56898 + case RACFG_CMD_RX_START:
56900 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_RX_START\n"));
56902 + pAdapter->ate.bQARxStart = TRUE;
56903 + Set_ATE_Proc(pAdapter, "RXFRAME");
56905 + // prepare feedback
56906 + pRaCfg->length = htons(2);
56907 + pRaCfg->status = htons(0);
56908 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56909 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56910 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56912 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56914 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_RX_START\n"));
56915 + Status = -EFAULT;
56919 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_RX_START is done !\n"));
56924 + case RACFG_CMD_RX_STOP:
56926 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_RX_STOP\n"));
56928 + Set_ATE_Proc(pAdapter, "RXSTOP");
56930 + // prepare feedback
56931 + pRaCfg->length = htons(2);
56932 + pRaCfg->status = htons(0);
56933 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56934 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56935 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56937 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56939 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_RX_STOP\n"));
56940 + Status = -EFAULT;
56944 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_RX_STOP is done !\n"));
56949 + /* The following cases are for new ATE GUI(not QA). */
56950 + /*==================================================*/
56951 + case RACFG_CMD_ATE_START_TX_CARRIER:
56953 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_START_TX_CARRIER\n"));
56955 + Set_ATE_Proc(pAdapter, "TXCARR");
56957 + pRaCfg->length = htons(2);
56958 + pRaCfg->status = htons(0);
56960 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56961 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56962 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56964 + ATEDBGPRINT(RT_DEBUG_TRACE, ("wrq->u.data.length = %d\n", wrq->u.data.length));
56966 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56968 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_START_TX_CARRIER\n"));
56969 + Status = -EFAULT;
56973 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_START_TX_CARRIER is done !\n"));
56978 + case RACFG_CMD_ATE_START_TX_CONT:
56980 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_START_TX_CONT\n"));
56982 + Set_ATE_Proc(pAdapter, "TXCONT");
56984 + pRaCfg->length = htons(2);
56985 + pRaCfg->status = htons(0);
56987 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
56988 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
56989 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
56991 + ATEDBGPRINT(RT_DEBUG_TRACE, ("wrq->u.data.length = %d\n", wrq->u.data.length));
56993 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
56995 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_START_TX_CONT\n"));
56996 + Status = -EFAULT;
57000 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_START_TX_CONT is done !\n"));
57005 + case RACFG_CMD_ATE_START_TX_FRAME:
57007 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_START_TX_FRAME\n"));
57009 + Set_ATE_Proc(pAdapter, "TXFRAME");
57011 + pRaCfg->length = htons(2);
57012 + pRaCfg->status = htons(0);
57014 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
57015 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
57016 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
57018 + ATEDBGPRINT(RT_DEBUG_TRACE, ("wrq->u.data.length = %d\n", wrq->u.data.length));
57020 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
57022 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_START_TX_FRAME\n"));
57023 + Status = -EFAULT;
57027 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_START_TX_FRAME is done !\n"));
57032 + case RACFG_CMD_ATE_SET_BW:
57035 + UCHAR str[LEN_OF_ARG];
57037 + NdisZeroMemory(str, LEN_OF_ARG);
57039 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_SET_BW\n"));
57041 + memcpy((PUCHAR)&value, (PUCHAR)&(pRaCfg->status), 2);
57042 + value = ntohs(value);
57043 + sprintf((PCHAR)str, "%d", value);
57045 + Set_ATE_TX_BW_Proc(pAdapter, str);
57047 + // prepare feedback
57048 + pRaCfg->length = htons(2);
57049 + pRaCfg->status = htons(0);
57050 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
57051 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
57052 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
57054 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
57056 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_SET_BW\n"));
57057 + Status = -EFAULT;
57061 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_SET_BW is done !\n"));
57066 + case RACFG_CMD_ATE_SET_TX_POWER0:
57069 + UCHAR str[LEN_OF_ARG];
57071 + NdisZeroMemory(str, LEN_OF_ARG);
57073 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_SET_TX_POWER0\n"));
57075 + memcpy((PUCHAR)&value, (PUCHAR)&(pRaCfg->status), 2);
57076 + value = ntohs(value);
57077 + sprintf((PCHAR)str, "%d", value);
57078 + Set_ATE_TX_POWER0_Proc(pAdapter, str);
57080 + // prepare feedback
57081 + pRaCfg->length = htons(2);
57082 + pRaCfg->status = htons(0);
57083 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
57084 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
57085 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
57087 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
57089 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_SET_TX_POWER0\n"));
57090 + Status = -EFAULT;
57094 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_SET_TX_POWER0 is done !\n"));
57099 + case RACFG_CMD_ATE_SET_TX_POWER1:
57102 + UCHAR str[LEN_OF_ARG];
57104 + NdisZeroMemory(str, LEN_OF_ARG);
57106 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_SET_TX_POWER1\n"));
57108 + memcpy((PUCHAR)&value, (PUCHAR)&(pRaCfg->status), 2);
57109 + value = ntohs(value);
57110 + sprintf((PCHAR)str, "%d", value);
57111 + Set_ATE_TX_POWER1_Proc(pAdapter, str);
57113 + // prepare feedback
57114 + pRaCfg->length = htons(2);
57115 + pRaCfg->status = htons(0);
57116 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
57117 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
57118 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
57120 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
57122 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_SET_TX_POWER1\n"));
57123 + Status = -EFAULT;
57127 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_SET_TX_POWER1 is done !\n"));
57132 + case RACFG_CMD_ATE_SET_FREQ_OFFSET:
57135 + UCHAR str[LEN_OF_ARG];
57137 + NdisZeroMemory(str, LEN_OF_ARG);
57139 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_SET_FREQ_OFFSET\n"));
57141 + memcpy((PUCHAR)&value, (PUCHAR)&(pRaCfg->status), 2);
57142 + value = ntohs(value);
57143 + sprintf((PCHAR)str, "%d", value);
57144 + Set_ATE_TX_FREQOFFSET_Proc(pAdapter, str);
57146 + // prepare feedback
57147 + pRaCfg->length = htons(2);
57148 + pRaCfg->status = htons(0);
57149 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
57150 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
57151 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
57153 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
57155 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_SET_FREQ_OFFSET\n"));
57156 + Status = -EFAULT;
57160 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_SET_FREQ_OFFSET is done !\n"));
57165 + case RACFG_CMD_ATE_GET_STATISTICS:
57167 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_GET_STATISTICS\n"));
57169 + memcpy_exl(pAdapter, &pRaCfg->data[0], (UCHAR *)&pAdapter->ate.TxDoneCount, 4);
57170 + memcpy_exl(pAdapter, &pRaCfg->data[4], (UCHAR *)&pAdapter->WlanCounters.RetryCount.u.LowPart, 4);
57171 + memcpy_exl(pAdapter, &pRaCfg->data[8], (UCHAR *)&pAdapter->WlanCounters.FailedCount.u.LowPart, 4);
57172 + memcpy_exl(pAdapter, &pRaCfg->data[12], (UCHAR *)&pAdapter->WlanCounters.RTSSuccessCount.u.LowPart, 4);
57173 + memcpy_exl(pAdapter, &pRaCfg->data[16], (UCHAR *)&pAdapter->WlanCounters.RTSFailureCount.u.LowPart, 4);
57174 + memcpy_exl(pAdapter, &pRaCfg->data[20], (UCHAR *)&pAdapter->WlanCounters.ReceivedFragmentCount.QuadPart, 4);
57175 + memcpy_exl(pAdapter, &pRaCfg->data[24], (UCHAR *)&pAdapter->WlanCounters.FCSErrorCount.u.LowPart, 4);
57176 + memcpy_exl(pAdapter, &pRaCfg->data[28], (UCHAR *)&pAdapter->Counters8023.RxNoBuffer, 4);
57177 + memcpy_exl(pAdapter, &pRaCfg->data[32], (UCHAR *)&pAdapter->WlanCounters.FrameDuplicateCount.u.LowPart, 4);
57178 + memcpy_exl(pAdapter, &pRaCfg->data[36], (UCHAR *)&pAdapter->RalinkCounters.OneSecFalseCCACnt, 4);
57180 + if (pAdapter->ate.RxAntennaSel == 0)
57186 + RSSI0 = (INT32)(pAdapter->ate.LastRssi0 - pAdapter->BbpRssiToDbmDelta);
57187 + RSSI1 = (INT32)(pAdapter->ate.LastRssi1 - pAdapter->BbpRssiToDbmDelta);
57188 + RSSI2 = (INT32)(pAdapter->ate.LastRssi2 - pAdapter->BbpRssiToDbmDelta);
57189 + memcpy_exl(pAdapter, &pRaCfg->data[40], (UCHAR *)&RSSI0, 4);
57190 + memcpy_exl(pAdapter, &pRaCfg->data[44], (UCHAR *)&RSSI1, 4);
57191 + memcpy_exl(pAdapter, &pRaCfg->data[48], (UCHAR *)&RSSI2, 4);
57192 + pRaCfg->length = htons(2+52);
57198 + RSSI0 = (INT32)(pAdapter->ate.LastRssi0 - pAdapter->BbpRssiToDbmDelta);
57199 + memcpy_exl(pAdapter, &pRaCfg->data[40], (UCHAR *)&RSSI0, 4);
57200 + pRaCfg->length = htons(2+44);
57202 + pRaCfg->status = htons(0);
57203 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
57204 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
57205 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
57207 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
57209 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_GET_STATISTICS\n"));
57210 + Status = -EFAULT;
57214 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_GET_STATISTICS is done !\n"));
57219 + case RACFG_CMD_ATE_RESET_COUNTER:
57222 + UCHAR str[LEN_OF_ARG];
57224 + NdisZeroMemory(str, LEN_OF_ARG);
57226 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_RESET_COUNTER\n"));
57228 + sprintf((PCHAR)str, "%d", value);
57229 + Set_ResetStatCounter_Proc(pAdapter, str);
57231 + pAdapter->ate.TxDoneCount = 0;
57233 + pRaCfg->length = htons(2);
57234 + pRaCfg->status = htons(0);
57236 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
57237 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
57238 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
57240 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
57242 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_RESET_COUNTER\n"));
57243 + Status = -EFAULT;
57247 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_RESET_COUNTER is done !\n"));
57253 + case RACFG_CMD_ATE_SEL_TX_ANTENNA:
57256 + UCHAR str[LEN_OF_ARG];
57258 + NdisZeroMemory(str, LEN_OF_ARG);
57260 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_SEL_TX_ANTENNA\n"));
57262 + memcpy((PUCHAR)&value, (PUCHAR)&(pRaCfg->status), 2);
57263 + value = ntohs(value);
57264 + sprintf((PCHAR)str, "%d", value);
57265 + Set_ATE_TX_Antenna_Proc(pAdapter, str);
57267 + // prepare feedback
57268 + pRaCfg->length = htons(2);
57269 + pRaCfg->status = htons(0);
57270 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
57271 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
57272 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
57274 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
57276 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_SEL_TX_ANTENNA\n"));
57277 + Status = -EFAULT;
57281 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_SEL_TX_ANTENNA is done !\n"));
57286 + case RACFG_CMD_ATE_SEL_RX_ANTENNA:
57289 + UCHAR str[LEN_OF_ARG];
57291 + NdisZeroMemory(str, LEN_OF_ARG);
57293 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_SEL_RX_ANTENNA\n"));
57295 + memcpy((PUCHAR)&value, (PUCHAR)&(pRaCfg->status), 2);
57296 + value = ntohs(value);
57297 + sprintf((PCHAR)str, "%d", value);
57298 + Set_ATE_RX_Antenna_Proc(pAdapter, str);
57300 + // prepare feedback
57301 + pRaCfg->length = htons(2);
57302 + pRaCfg->status = htons(0);
57303 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
57304 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
57305 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
57307 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
57309 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_SEL_RX_ANTENNA\n"));
57310 + Status = -EFAULT;
57314 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_SEL_RX_ANTENNA is done !\n"));
57319 + case RACFG_CMD_ATE_SET_PREAMBLE:
57322 + UCHAR str[LEN_OF_ARG];
57324 + NdisZeroMemory(str, LEN_OF_ARG);
57326 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_SET_PREAMBLE\n"));
57328 + memcpy((PUCHAR)&value, (PUCHAR)&(pRaCfg->status), 2);
57329 + value = ntohs(value);
57330 + sprintf((PCHAR)str, "%d", value);
57331 + Set_ATE_TX_MODE_Proc(pAdapter, str);
57333 + // prepare feedback
57334 + pRaCfg->length = htons(2);
57335 + pRaCfg->status = htons(0);
57336 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
57337 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
57338 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
57340 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
57342 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_SET_PREAMBLE\n"));
57343 + Status = -EFAULT;
57347 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_SET_PREAMBLE is done !\n"));
57352 + case RACFG_CMD_ATE_SET_CHANNEL:
57355 + UCHAR str[LEN_OF_ARG];
57357 + NdisZeroMemory(str, LEN_OF_ARG);
57359 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_SET_CHANNEL\n"));
57361 + memcpy((PUCHAR)&value, (PUCHAR)&(pRaCfg->status), 2);
57362 + value = ntohs(value);
57363 + sprintf((PCHAR)str, "%d", value);
57364 + Set_ATE_CHANNEL_Proc(pAdapter, str);
57366 + // prepare feedback
57367 + pRaCfg->length = htons(2);
57368 + pRaCfg->status = htons(0);
57369 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
57370 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
57371 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
57373 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
57375 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_SET_CHANNEL\n"));
57376 + Status = -EFAULT;
57380 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_SET_CHANNEL is done !\n"));
57385 + case RACFG_CMD_ATE_SET_ADDR1:
57387 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_SET_ADDR1\n"));
57389 + // Addr is an array of UCHAR,
57390 + // so no need to perform endian swap.
57391 + memcpy(pAdapter->ate.Addr1, (PUCHAR)(pRaCfg->data - 2), MAC_ADDR_LEN);
57393 + // prepare feedback
57394 + pRaCfg->length = htons(2);
57395 + pRaCfg->status = htons(0);
57396 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
57397 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
57398 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
57400 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
57402 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_SET_ADDR1\n"));
57403 + Status = -EFAULT;
57407 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_SET_ADDR1 is done !\n (ADDR1 = %2X:%2X:%2X:%2X:%2X:%2X)\n", pAdapter->ate.Addr1[0],
57408 + pAdapter->ate.Addr1[1], pAdapter->ate.Addr1[2], pAdapter->ate.Addr1[3], pAdapter->ate.Addr1[4], pAdapter->ate.Addr1[5]));
57413 + case RACFG_CMD_ATE_SET_ADDR2:
57415 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_SET_ADDR2\n"));
57417 + // Addr is an array of UCHAR,
57418 + // so no need to perform endian swap.
57419 + memcpy(pAdapter->ate.Addr2, (PUCHAR)(pRaCfg->data - 2), MAC_ADDR_LEN);
57421 + // prepare feedback
57422 + pRaCfg->length = htons(2);
57423 + pRaCfg->status = htons(0);
57424 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
57425 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
57426 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
57428 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
57430 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_SET_ADDR2\n"));
57431 + Status = -EFAULT;
57435 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_SET_ADDR2 is done !\n (ADDR2 = %2X:%2X:%2X:%2X:%2X:%2X)\n", pAdapter->ate.Addr2[0],
57436 + pAdapter->ate.Addr2[1], pAdapter->ate.Addr2[2], pAdapter->ate.Addr2[3], pAdapter->ate.Addr2[4], pAdapter->ate.Addr2[5]));
57441 + case RACFG_CMD_ATE_SET_ADDR3:
57443 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_SET_ADDR3\n"));
57445 + // Addr is an array of UCHAR,
57446 + // so no need to perform endian swap.
57447 + memcpy(pAdapter->ate.Addr3, (PUCHAR)(pRaCfg->data - 2), MAC_ADDR_LEN);
57449 + // prepare feedback
57450 + pRaCfg->length = htons(2);
57451 + pRaCfg->status = htons(0);
57452 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
57453 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
57454 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
57456 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
57458 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_SET_ADDR3\n"));
57459 + Status = -EFAULT;
57463 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_SET_ADDR3 is done !\n (ADDR3 = %2X:%2X:%2X:%2X:%2X:%2X)\n", pAdapter->ate.Addr3[0],
57464 + pAdapter->ate.Addr3[1], pAdapter->ate.Addr3[2], pAdapter->ate.Addr3[3], pAdapter->ate.Addr3[4], pAdapter->ate.Addr3[5]));
57469 + case RACFG_CMD_ATE_SET_RATE:
57472 + UCHAR str[LEN_OF_ARG];
57474 + NdisZeroMemory(str, LEN_OF_ARG);
57476 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_SET_RATE\n"));
57478 + memcpy((PUCHAR)&value, (PUCHAR)&(pRaCfg->status), 2);
57479 + value = ntohs(value);
57480 + sprintf((PCHAR)str, "%d", value);
57481 + Set_ATE_TX_MCS_Proc(pAdapter, str);
57483 + // prepare feedback
57484 + pRaCfg->length = htons(2);
57485 + pRaCfg->status = htons(0);
57486 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
57487 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
57488 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
57490 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
57492 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_SET_RATE\n"));
57493 + Status = -EFAULT;
57497 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_SET_RATE is done !\n"));
57502 + case RACFG_CMD_ATE_SET_TX_FRAME_LEN:
57505 + UCHAR str[LEN_OF_ARG];
57507 + NdisZeroMemory(str, LEN_OF_ARG);
57509 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_SET_TX_FRAME_LEN\n"));
57511 + memcpy((PUCHAR)&value, (PUCHAR)&(pRaCfg->status), 2);
57512 + value = ntohs(value);
57513 + sprintf((PCHAR)str, "%d", value);
57514 + Set_ATE_TX_LENGTH_Proc(pAdapter, str);
57516 + // prepare feedback
57517 + pRaCfg->length = htons(2);
57518 + pRaCfg->status = htons(0);
57519 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
57520 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
57521 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
57523 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
57525 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_SET_TX_FRAME_LEN\n"));
57526 + Status = -EFAULT;
57530 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_SET_TX_FRAME_LEN is done !\n"));
57535 + case RACFG_CMD_ATE_SET_TX_FRAME_COUNT:
57537 + USHORT value = 0;
57538 + UCHAR str[LEN_OF_ARG];
57540 + NdisZeroMemory(str, LEN_OF_ARG);
57542 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_ATE_SET_TX_FRAME_COUNT\n"));
57544 + memcpy((PUCHAR)&value, (PUCHAR)&(pRaCfg->status), 2);
57545 + value = ntohs(value);
57547 + sprintf((PCHAR)str, "%d", value);
57548 + Set_ATE_TX_COUNT_Proc(pAdapter, str);
57551 + // prepare feedback
57552 + pRaCfg->length = htons(2);
57553 + pRaCfg->status = htons(0);
57554 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
57555 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
57556 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
57558 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
57560 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_ATE_SET_TX_FRAME_COUNT\n"));
57561 + Status = -EFAULT;
57565 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_ATE_SET_TX_FRAME_COUNT is done !\n"));
57570 + case RACFG_CMD_ATE_START_RX_FRAME:
57572 + ATEDBGPRINT(RT_DEBUG_TRACE,("RACFG_CMD_RX_START\n"));
57574 + Set_ATE_Proc(pAdapter, "RXFRAME");
57576 + // prepare feedback
57577 + pRaCfg->length = htons(2);
57578 + pRaCfg->status = htons(0);
57579 + wrq->u.data.length = sizeof(pRaCfg->magic_no) + sizeof(pRaCfg->command_type)
57580 + + sizeof(pRaCfg->command_id) + sizeof(pRaCfg->length)
57581 + + sizeof(pRaCfg->sequence) + ntohs(pRaCfg->length);
57583 + if (copy_to_user(wrq->u.data.pointer, pRaCfg, wrq->u.data.length))
57585 + ATEDBGPRINT(RT_DEBUG_ERROR, ("copy_to_user() fail in case RACFG_CMD_RX_START\n"));
57586 + Status = -EFAULT;
57590 + ATEDBGPRINT(RT_DEBUG_TRACE, ("RACFG_CMD_RX_START is done !\n"));
57597 + ASSERT(pRaCfg != NULL);
57598 + if (pRaCfg != NULL)
57605 +VOID BubbleSort(INT32 n, INT32 a[])
57607 + INT32 k, j, temp;
57609 + for (k = n-1; k>0; k--)
57611 + for (j = 0; j<k; j++)
57613 + if(a[j] > a[j+1])
57623 +VOID CalNoiseLevel(PRTMP_ADAPTER pAd, UCHAR channel, INT32 RSSI[3][10])
57625 + INT32 RSSI0, RSSI1, RSSI2;
57626 + CHAR Rssi0Offset, Rssi1Offset, Rssi2Offset;
57627 + UCHAR BbpR50Rssi0 = 0, BbpR51Rssi1 = 0, BbpR52Rssi2 = 0;
57628 + UCHAR Org_BBP66value = 0, Org_BBP69value = 0, Org_BBP70value = 0, data = 0;
57629 + USHORT LNA_Gain = 0;
57631 + UCHAR Org_Channel = pAd->ate.Channel;
57632 + USHORT GainValue = 0, OffsetValue = 0;
57634 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R66, &Org_BBP66value);
57635 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R69, &Org_BBP69value);
57636 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R70, &Org_BBP70value);
57638 + //**********************************************************************
57639 + // Read the value of LNA gain and Rssi offset
57640 + //**********************************************************************
57641 + RT28xx_EEPROM_READ16(pAd, EEPROM_LNA_OFFSET, GainValue);
57643 + // for Noise Level
57644 + if (channel <= 14)
57646 + LNA_Gain = GainValue & 0x00FF;
57648 + RT28xx_EEPROM_READ16(pAd, EEPROM_RSSI_BG_OFFSET, OffsetValue);
57649 + Rssi0Offset = OffsetValue & 0x00FF;
57650 + Rssi1Offset = (OffsetValue & 0xFF00) >> 8;
57651 + RT28xx_EEPROM_READ16(pAd, (EEPROM_RSSI_BG_OFFSET + 2)/* 0x48 */, OffsetValue);
57652 + Rssi2Offset = OffsetValue & 0x00FF;
57656 + LNA_Gain = (GainValue & 0xFF00) >> 8;
57658 + RT28xx_EEPROM_READ16(pAd, EEPROM_RSSI_A_OFFSET, OffsetValue);
57659 + Rssi0Offset = OffsetValue & 0x00FF;
57660 + Rssi1Offset = (OffsetValue & 0xFF00) >> 8;
57661 + RT28xx_EEPROM_READ16(pAd, (EEPROM_RSSI_A_OFFSET + 2)/* 0x4C */, OffsetValue);
57662 + Rssi2Offset = OffsetValue & 0x00FF;
57664 + //**********************************************************************
57666 + pAd->ate.Channel = channel;
57667 + ATEAsicSwitchChannel(pAd);
57671 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, data);
57673 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R69, data);
57675 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R70, data);
57679 + pAd->ate.bQARxStart = TRUE;
57680 + Set_ATE_Proc(pAd, "RXFRAME");
57684 + for (j = 0; j < 10; j++)
57686 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R50, &BbpR50Rssi0);
57687 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R51, &BbpR51Rssi1);
57688 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R52, &BbpR52Rssi2);
57692 + // Calculate RSSI 0
57693 + if (BbpR50Rssi0 == 0)
57699 + RSSI0 = (INT32)(-12 - BbpR50Rssi0 - LNA_Gain - Rssi0Offset);
57701 + RSSI[0][j] = RSSI0;
57703 + if ( pAd->Antenna.field.RxPath >= 2 ) // 2R
57705 + // Calculate RSSI 1
57706 + if (BbpR51Rssi1 == 0)
57712 + RSSI1 = (INT32)(-12 - BbpR51Rssi1 - LNA_Gain - Rssi1Offset);
57714 + RSSI[1][j] = RSSI1;
57717 + if ( pAd->Antenna.field.RxPath >= 3 ) // 3R
57719 + // Calculate RSSI 2
57720 + if (BbpR52Rssi2 == 0)
57723 + RSSI2 = (INT32)(-12 - BbpR52Rssi2 - LNA_Gain - Rssi2Offset);
57725 + RSSI[2][j] = RSSI2;
57730 + Set_ATE_Proc(pAd, "RXSTOP");
57734 + BubbleSort(10, RSSI[0]); // 1R
57736 + if ( pAd->Antenna.field.RxPath >= 2 ) // 2R
57738 + BubbleSort(10, RSSI[1]);
57741 + if ( pAd->Antenna.field.RxPath >= 3 ) // 3R
57743 + BubbleSort(10, RSSI[2]);
57748 + pAd->ate.Channel = Org_Channel;
57749 + ATEAsicSwitchChannel(pAd);
57751 + // Restore original value
57752 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R66, Org_BBP66value);
57753 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R69, Org_BBP69value);
57754 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R70, Org_BBP70value);
57759 +BOOLEAN SyncTxRxConfig(PRTMP_ADAPTER pAd, USHORT offset, UCHAR value)
57761 + UCHAR tmp = 0, bbp_data = 0;
57765 + ATE_BBP_IO_READ8_BY_REG_ID(pAd, offset, &bbp_data);
57769 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, offset, &bbp_data);
57772 + /* confirm again */
57773 + ASSERT(bbp_data == value);
57778 + /* Need to sync. tx configuration with legacy ATE. */
57779 + tmp = (bbp_data & ((1 << 4) | (1 << 3))/* 0x18 */) >> 3;
57782 + /* The BBP R1 bit[4:3] = 2 :: Both DACs will be used by QA. */
57785 + pAd->ate.TxAntennaSel = 0;
57787 + /* The BBP R1 bit[4:3] = 0 :: DAC 0 will be used by QA. */
57789 + /* Antenna one */
57790 + pAd->ate.TxAntennaSel = 1;
57792 + /* The BBP R1 bit[4:3] = 1 :: DAC 1 will be used by QA. */
57794 + /* Antenna two */
57795 + pAd->ate.TxAntennaSel = 2;
57798 + DBGPRINT(RT_DEBUG_TRACE, ("%s -- Sth. wrong! : return FALSE; \n", __FUNCTION__));
57801 + break;/* case BBP_R1 */
57804 + /* Need to sync. rx configuration with legacy ATE. */
57805 + tmp = (bbp_data & ((1 << 1) | (1 << 0))/* 0x03 */);
57808 + /* The BBP R3 bit[1:0] = 3 :: All ADCs will be used by QA. */
57811 + pAd->ate.RxAntennaSel = 0;
57813 + /* The BBP R3 bit[1:0] = 0 :: ADC 0 will be used by QA, */
57814 + /* unless the BBP R3 bit[4:3] = 2 */
57816 + /* Antenna one */
57817 + pAd->ate.RxAntennaSel = 1;
57818 + tmp = ((bbp_data & ((1 << 4) | (1 << 3))/* 0x03 */) >> 3);
57819 + if (tmp == 2)// 3R
57821 + /* Default : All ADCs will be used by QA */
57822 + pAd->ate.RxAntennaSel = 0;
57825 + /* The BBP R3 bit[1:0] = 1 :: ADC 1 will be used by QA. */
57827 + /* Antenna two */
57828 + pAd->ate.RxAntennaSel = 2;
57830 + /* The BBP R3 bit[1:0] = 2 :: ADC 2 will be used by QA. */
57832 + /* Antenna three */
57833 + pAd->ate.RxAntennaSel = 3;
57836 + DBGPRINT(RT_DEBUG_ERROR, ("%s -- Impossible! : return FALSE; \n", __FUNCTION__));
57839 + break;/* case BBP_R3 */
57842 + DBGPRINT(RT_DEBUG_ERROR, ("%s -- Sth. wrong! : return FALSE; \n", __FUNCTION__));
57849 +static VOID memcpy_exl(PRTMP_ADAPTER pAd, UCHAR *dst, UCHAR *src, ULONG len)
57851 + ULONG i, Value = 0;
57852 + ULONG *pDst, *pSrc;
57856 + pDst = (ULONG *) dst;
57857 + pSrc = (ULONG *) src;
57859 + for (i = 0 ; i < (len/4); i++)
57861 + /* For alignment issue, we need a variable "Value". */
57862 + memmove(&Value, pSrc, 4);
57863 + Value = htonl(Value);
57864 + memmove(pDst, &Value, 4);
57868 + if ((len % 4) != 0)
57870 + /* wish that it will never reach here */
57871 + memmove(&Value, pSrc, (len % 4));
57872 + Value = htonl(Value);
57873 + memmove(pDst, &Value, (len % 4));
57877 +static VOID memcpy_exs(PRTMP_ADAPTER pAd, UCHAR *dst, UCHAR *src, ULONG len)
57880 + UCHAR *pDst, *pSrc;
57885 + for (i = 0; i < (len/2); i++)
57887 + memmove(pDst, pSrc, 2);
57888 + *((USHORT *)pDst) = htons(*((USHORT *)pDst));
57893 + if ((len % 2) != 0)
57895 + memmove(pDst, pSrc, 1);
57899 +static VOID RTMP_IO_READ_BULK(PRTMP_ADAPTER pAd, UCHAR *dst, UCHAR *src, UINT32 len)
57902 + UINT32 *pDst, *pSrc;
57904 + pDst = (UINT32 *) dst;
57905 + pSrc = (UINT32 *) src;
57907 + for (i = 0 ; i < (len/4); i++)
57909 + RTMP_IO_READ32(pAd, (ULONG)pSrc, &Value);
57910 + Value = htonl(Value);
57911 + memmove(pDst, &Value, 4);
57918 +INT Set_TxStop_Proc(
57919 + IN PRTMP_ADAPTER pAd,
57922 + ATEDBGPRINT(RT_DEBUG_TRACE,("Set_TxStop_Proc\n"));
57924 + if (Set_ATE_Proc(pAd, "TXSTOP"))
57934 +INT Set_RxStop_Proc(
57935 + IN PRTMP_ADAPTER pAd,
57938 + ATEDBGPRINT(RT_DEBUG_TRACE,("Set_RxStop_Proc\n"));
57940 + if (Set_ATE_Proc(pAd, "RXSTOP"))
57949 +#endif // RALINK_28xx_QA //
57950 +#endif // RALINK_ATE //
57953 +++ b/drivers/staging/rt3070/rt_ate.h
57956 + *************************************************************************
57957 + * Ralink Tech Inc.
57958 + * 5F., No.36, Taiyuan St., Jhubei City,
57959 + * Hsinchu County 302,
57962 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
57964 + * This program is free software; you can redistribute it and/or modify *
57965 + * it under the terms of the GNU General Public License as published by *
57966 + * the Free Software Foundation; either version 2 of the License, or *
57967 + * (at your option) any later version. *
57969 + * This program is distributed in the hope that it will be useful, *
57970 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
57971 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
57972 + * GNU General Public License for more details. *
57974 + * You should have received a copy of the GNU General Public License *
57975 + * along with this program; if not, write to the *
57976 + * Free Software Foundation, Inc., *
57977 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
57979 + *************************************************************************
57986 +#define ate_print printk
57987 +#define ATEDBGPRINT DBGPRINT
57990 +#define EEPROM_SIZE 0x400
57991 +#ifdef CONFIG_STA_SUPPORT
57992 +#define EEPROM_BIN_FILE_NAME "/etc/Wireless/RT2870STA/e2p.bin"
57993 +#endif // CONFIG_STA_SUPPORT //
57994 +#endif // RT2870 //
57996 +#define fATE_LOAD_EEPROM 0x0C43
57997 +#ifdef CONFIG_PRINTK
57998 +extern INT ConsoleResponse(IN PUCHAR buff);
57999 +extern int (*remote_display)(char *);
58000 +extern void puts (const char *s);
58002 +/* specificly defined to redirect and show ate-related messages to host. */
58003 +/* Try to define ate_print as a macro. */
58004 +#define ate_print(fmt, args...) \
58005 +do{ int (*org_remote_display)(char *) = NULL; \
58006 + org_remote_display = remote_display;\
58007 + /* Save original "remote_display" */\
58008 + remote_display = (int (*)(char *))ConsoleResponse; \
58009 + printk(fmt, ## args); \
58010 + /* Restore the remote_display function pointer */ \
58011 + remote_display = org_remote_display; }while(0)
58013 +#define ATEDBGPRINT(Level, Fmt) \
58015 + if ((Level) <= RTDebugLevel) \
58020 +#endif // CONFIG_PRINTK //
58021 +#endif // !UCOS //
58023 +#define ATE_ON(_p) (((_p)->ate.Mode) != ATE_STOP)
58025 +/* RT2880_iNIC will define "RT2860". */
58027 +/* RT2880_iNIC will define RT2860. */
58030 +#define EEPROM_SIZE 0x400
58031 +#ifdef CONFIG_STA_SUPPORT
58032 +#define EEPROM_BIN_FILE_NAME "/etc/Wireless/RT2870STA/e2p.bin"
58033 +#endif // CONFIG_STA_SUPPORT //
58034 +#endif // RT2870 //
58037 +#define ATE_BBP_IO_READ8_BY_REG_ID(_A, _I, _pV) RTMP_BBP_IO_READ8_BY_REG_ID(_A, _I, _pV)
58038 +#define ATE_BBP_IO_WRITE8_BY_REG_ID(_A, _I, _V) RTMP_BBP_IO_WRITE8_BY_REG_ID(_A, _I, _V)
58040 +#define BULK_OUT_LOCK(pLock, IrqFlags) \
58041 + if(1 /*!(in_interrupt() & 0xffff0000)*/) \
58042 + RTMP_IRQ_LOCK((pLock), IrqFlags);
58044 +#define BULK_OUT_UNLOCK(pLock, IrqFlags) \
58045 + if(1 /*!(in_interrupt() & 0xffff0000)*/) \
58046 + RTMP_IRQ_UNLOCK((pLock), IrqFlags);
58048 +// Prototypes of completion funuc.
58049 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,5,0)
58050 +#define ATE_RTUSBBulkOutDataPacketComplete(purb, pt_regs) ATE_RTUSBBulkOutDataPacketComplete(purb)
58053 +VOID ATE_RTUSBBulkOutDataPacketComplete(
58055 + OUT struct pt_regs *pt_regs);
58057 +VOID ATE_RTUSBBulkOutDataPacket(
58058 + IN PRTMP_ADAPTER pAd,
58059 + IN UCHAR BulkOutPipeId);
58061 +VOID ATE_RTUSBCancelPendingBulkInIRP(
58062 + IN PRTMP_ADAPTER pAd);
58063 +#endif // RT2870 //
58066 +#define ATE_RF_IO_READ8_BY_REG_ID(_A, _I, _pV) RTMP_RF_IO_READ8_BY_REG_ID(_A, _I, _pV)
58067 +#define ATE_RF_IO_WRITE8_BY_REG_ID(_A, _I, _V) RTMP_RF_IO_WRITE8_BY_REG_ID(_A, _I, _V)
58068 +#endif // RT30xx //
58071 +VOID rt_ee_read_all(
58072 + IN PRTMP_ADAPTER pAd,
58073 + OUT USHORT *Data);
58076 +VOID rt_ee_write_all(
58077 + IN PRTMP_ADAPTER pAd,
58078 + IN USHORT *Data);
58081 + IN PRTMP_ADAPTER pAd,
58084 +INT Set_ATE_DA_Proc(
58085 + IN PRTMP_ADAPTER pAd,
58088 +INT Set_ATE_SA_Proc(
58089 + IN PRTMP_ADAPTER pAd,
58092 +INT Set_ATE_BSSID_Proc(
58093 + IN PRTMP_ADAPTER pAd,
58096 +INT Set_ATE_CHANNEL_Proc(
58097 + IN PRTMP_ADAPTER pAd,
58100 +INT Set_ATE_TX_POWER0_Proc(
58101 + IN PRTMP_ADAPTER pAd,
58104 +INT Set_ATE_TX_POWER1_Proc(
58105 + IN PRTMP_ADAPTER pAd,
58108 +INT Set_ATE_TX_Antenna_Proc(
58109 + IN PRTMP_ADAPTER pAd,
58112 +INT Set_ATE_RX_Antenna_Proc(
58113 + IN PRTMP_ADAPTER pAd,
58116 +INT Set_ATE_TX_FREQOFFSET_Proc(
58117 + IN PRTMP_ADAPTER pAd,
58120 +INT Set_ATE_TX_BW_Proc(
58121 + IN PRTMP_ADAPTER pAd,
58124 +INT Set_ATE_TX_LENGTH_Proc(
58125 + IN PRTMP_ADAPTER pAd,
58128 +INT Set_ATE_TX_COUNT_Proc(
58129 + IN PRTMP_ADAPTER pAd,
58132 +INT Set_ATE_TX_MCS_Proc(
58133 + IN PRTMP_ADAPTER pAd,
58136 +INT Set_ATE_TX_MODE_Proc(
58137 + IN PRTMP_ADAPTER pAd,
58140 +INT Set_ATE_TX_GI_Proc(
58141 + IN PRTMP_ADAPTER pAd,
58145 +INT Set_ATE_RX_FER_Proc(
58146 + IN PRTMP_ADAPTER pAd,
58149 +INT Set_ATE_Read_RF_Proc(
58150 + IN PRTMP_ADAPTER pAd,
58153 +INT Set_ATE_Write_RF1_Proc(
58154 + IN PRTMP_ADAPTER pAd,
58157 +INT Set_ATE_Write_RF2_Proc(
58158 + IN PRTMP_ADAPTER pAd,
58161 +INT Set_ATE_Write_RF3_Proc(
58162 + IN PRTMP_ADAPTER pAd,
58165 +INT Set_ATE_Write_RF4_Proc(
58166 + IN PRTMP_ADAPTER pAd,
58169 +INT Set_ATE_Load_E2P_Proc(
58170 + IN PRTMP_ADAPTER pAd,
58173 +INT Set_ATE_Read_E2P_Proc(
58174 + IN PRTMP_ADAPTER pAd,
58177 +INT Set_ATE_Show_Proc(
58178 + IN PRTMP_ADAPTER pAd,
58181 +INT Set_ATE_Help_Proc(
58182 + IN PRTMP_ADAPTER pAd,
58186 +#ifdef RALINK_28xx_QA
58187 +VOID ATE_QA_Statistics(
58188 + IN PRTMP_ADAPTER pAd,
58189 + IN PRXWI_STRUC pRxWI,
58190 + IN PRT28XX_RXD_STRUC p28xxRxD,
58191 + IN PHEADER_802_11 pHeader);
58194 + IN PRTMP_ADAPTER pAdapter,
58195 + IN struct iwreq *wrq);
58201 +VOID CalNoiseLevel(
58202 + IN PRTMP_ADAPTER pAdapter,
58203 + IN UCHAR channel,
58204 + OUT INT32 buffer[3][10]);
58206 +BOOLEAN SyncTxRxConfig(
58207 + IN PRTMP_ADAPTER pAdapter,
58208 + IN USHORT offset,
58211 +INT Set_TxStop_Proc(
58212 + IN PRTMP_ADAPTER pAd,
58215 +INT Set_RxStop_Proc(
58216 + IN PRTMP_ADAPTER pAd,
58219 +#endif // RALINK_28xx_QA //
58220 +#endif // RALINK_ATE //
58222 +VOID ATEAsicSwitchChannel(
58223 + IN PRTMP_ADAPTER pAd);
58225 +VOID ATEAsicAdjustTxPower(
58226 + IN PRTMP_ADAPTER pAd);
58228 +VOID ATEDisableAsicProtect(
58229 + IN PRTMP_ADAPTER pAd);
58231 +CHAR ATEConvertToRssi(
58232 + IN PRTMP_ADAPTER pAd,
58234 + IN UCHAR RssiNumber);
58236 +VOID ATESampleRssi(
58237 + IN PRTMP_ADAPTER pAd,
58238 + IN PRXWI_STRUC pRxWI);
58241 +#ifdef CONFIG_STA_SUPPORT
58242 +VOID RTMPStationStop(
58243 + IN PRTMP_ADAPTER pAd);
58245 +VOID RTMPStationStart(
58246 + IN PRTMP_ADAPTER pAd);
58247 +#endif // CONFIG_STA_SUPPORT //
58248 +#endif // __ATE_H__ //
58250 +++ b/drivers/staging/rt3070/rt_config.h
58253 + *************************************************************************
58254 + * Ralink Tech Inc.
58255 + * 5F., No.36, Taiyuan St., Jhubei City,
58256 + * Hsinchu County 302,
58259 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
58261 + * This program is free software; you can redistribute it and/or modify *
58262 + * it under the terms of the GNU General Public License as published by *
58263 + * the Free Software Foundation; either version 2 of the License, or *
58264 + * (at your option) any later version. *
58266 + * This program is distributed in the hope that it will be useful, *
58267 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
58268 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
58269 + * GNU General Public License for more details. *
58271 + * You should have received a copy of the GNU General Public License *
58272 + * along with this program; if not, write to the *
58273 + * Free Software Foundation, Inc., *
58274 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
58276 + *************************************************************************
58282 + Central header file to maintain all include files for all NDIS
58283 + miniport driver routines.
58285 + Revision History:
58287 + -------- ---------- ----------------------------------------------
58288 + Paul Lin 08-01-2002 created
58291 +#ifndef __RT_CONFIG_H__
58292 +#define __RT_CONFIG_H__
58294 +#include "rtmp_type.h"
58296 +#include "includes.h"
58297 +#include <stdio.h>
58298 +#include "rt_ucos.h"
58302 +#include "rt_linux.h"
58304 +#include "rtmp_def.h"
58305 +#include "rt28xx.h"
58309 +#include "rt2870.h"
58310 +#endif // RT2870 //
58319 +#include "chlist.h"
58320 +#include "spectrum.h"
58322 +#include "mlme_ex_def.h"
58323 +#include "mlme_ex.h"
58324 +#endif // MLME_EX //
58326 +#undef AP_WSC_INCLUDED
58327 +#undef STA_WSC_INCLUDED
58328 +#undef WSC_INCLUDED
58331 +#ifdef LEAP_SUPPORT
58333 +#endif // LEAP_SUPPORT //
58335 +#ifdef CONFIG_STA_SUPPORT
58336 +#endif // CONFIG_STA_SUPPORT //
58338 +#ifdef BLOCK_NET_IF
58339 +#include "netif_block.h"
58340 +#endif // BLOCK_NET_IF //
58342 +#ifdef IGMP_SNOOP_SUPPORT
58343 +#include "igmp_snoop.h"
58344 +#endif // IGMP_SNOOP_SUPPORT //
58347 +#include "rt_ate.h"
58348 +#endif // RALINK_ATE //
58352 +#if defined(AP_WSC_INCLUDED) || defined(STA_WSC_INCLUDED)
58353 +#define WSC_INCLUDED
58357 +#ifdef CONFIG_STA_SUPPORT
58358 +#ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
58359 +#ifndef WPA_SUPPLICANT_SUPPORT
58360 +#error "Build for being controlled by NetworkManager or wext, please set HAS_WPA_SUPPLICANT=y and HAS_NATIVE_WPA_SUPPLICANT_SUPPORT=y"
58361 +#endif // WPA_SUPPLICANT_SUPPORT //
58362 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
58364 +#endif // CONFIG_STA_SUPPORT //
58367 +#ifdef IKANOS_VX_1X0
58368 +#include "vr_ikans.h"
58369 +#endif // IKANOS_VX_1X0 //
58371 +#endif // __RT_CONFIG_H__
58374 +++ b/drivers/staging/rt3070/rt_linux.c
58377 + *************************************************************************
58378 + * Ralink Tech Inc.
58379 + * 5F., No.36, Taiyuan St., Jhubei City,
58380 + * Hsinchu County 302,
58383 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
58385 + * This program is free software; you can redistribute it and/or modify *
58386 + * it under the terms of the GNU General Public License as published by *
58387 + * the Free Software Foundation; either version 2 of the License, or *
58388 + * (at your option) any later version. *
58390 + * This program is distributed in the hope that it will be useful, *
58391 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
58392 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
58393 + * GNU General Public License for more details. *
58395 + * You should have received a copy of the GNU General Public License *
58396 + * along with this program; if not, write to the *
58397 + * Free Software Foundation, Inc., *
58398 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
58400 + *************************************************************************
58403 +#include "rt_config.h"
58405 +ULONG RTDebugLevel = RT_DEBUG_ERROR;
58407 +BUILD_TIMER_FUNCTION(MlmePeriodicExec);
58408 +//BUILD_TIMER_FUNCTION(MlmeRssiReportExec);
58409 +BUILD_TIMER_FUNCTION(AsicRxAntEvalTimeout);
58410 +BUILD_TIMER_FUNCTION(APSDPeriodicExec);
58411 +BUILD_TIMER_FUNCTION(AsicRfTuningExec);
58413 +BUILD_TIMER_FUNCTION(BeaconUpdateExec);
58414 +#endif // RT2870 //
58417 +#ifdef CONFIG_STA_SUPPORT
58418 +BUILD_TIMER_FUNCTION(BeaconTimeout);
58419 +BUILD_TIMER_FUNCTION(ScanTimeout);
58420 +BUILD_TIMER_FUNCTION(AuthTimeout);
58421 +BUILD_TIMER_FUNCTION(AssocTimeout);
58422 +BUILD_TIMER_FUNCTION(ReassocTimeout);
58423 +BUILD_TIMER_FUNCTION(DisassocTimeout);
58424 +BUILD_TIMER_FUNCTION(LinkDownExec);
58425 +#ifdef LEAP_SUPPORT
58426 +BUILD_TIMER_FUNCTION(LeapAuthTimeout);
58428 +BUILD_TIMER_FUNCTION(StaQuickResponeForRateUpExec);
58429 +BUILD_TIMER_FUNCTION(WpaDisassocApAndBlockAssoc);
58430 +#ifdef QOS_DLS_SUPPORT
58431 +BUILD_TIMER_FUNCTION(DlsTimeoutAction);
58432 +#endif // QOS_DLS_SUPPORT //
58433 +#endif // CONFIG_STA_SUPPORT //
58438 +// for wireless system event message
58439 +char const *pWirelessSysEventText[IW_SYS_EVENT_TYPE_NUM] = {
58440 + // system status event
58441 + "had associated successfully", /* IW_ASSOC_EVENT_FLAG */
58442 + "had disassociated", /* IW_DISASSOC_EVENT_FLAG */
58443 + "had deauthenticated", /* IW_DEAUTH_EVENT_FLAG */
58444 + "had been aged-out and disassociated", /* IW_AGEOUT_EVENT_FLAG */
58445 + "occurred CounterMeasures attack", /* IW_COUNTER_MEASURES_EVENT_FLAG */
58446 + "occurred replay counter different in Key Handshaking", /* IW_REPLAY_COUNTER_DIFF_EVENT_FLAG */
58447 + "occurred RSNIE different in Key Handshaking", /* IW_RSNIE_DIFF_EVENT_FLAG */
58448 + "occurred MIC different in Key Handshaking", /* IW_MIC_DIFF_EVENT_FLAG */
58449 + "occurred ICV error in RX", /* IW_ICV_ERROR_EVENT_FLAG */
58450 + "occurred MIC error in RX", /* IW_MIC_ERROR_EVENT_FLAG */
58451 + "Group Key Handshaking timeout", /* IW_GROUP_HS_TIMEOUT_EVENT_FLAG */
58452 + "Pairwise Key Handshaking timeout", /* IW_PAIRWISE_HS_TIMEOUT_EVENT_FLAG */
58453 + "RSN IE sanity check failure", /* IW_RSNIE_SANITY_FAIL_EVENT_FLAG */
58454 + "set key done in WPA/WPAPSK", /* IW_SET_KEY_DONE_WPA1_EVENT_FLAG */
58455 + "set key done in WPA2/WPA2PSK", /* IW_SET_KEY_DONE_WPA2_EVENT_FLAG */
58456 + "connects with our wireless client", /* IW_STA_LINKUP_EVENT_FLAG */
58457 + "disconnects with our wireless client", /* IW_STA_LINKDOWN_EVENT_FLAG */
58458 + "scan completed" /* IW_SCAN_COMPLETED_EVENT_FLAG */
58459 + "scan terminate!! Busy!! Enqueue fail!!" /* IW_SCAN_ENQUEUE_FAIL_EVENT_FLAG */
58462 +// for wireless IDS_spoof_attack event message
58463 +char const *pWirelessSpoofEventText[IW_SPOOF_EVENT_TYPE_NUM] = {
58464 + "detected conflict SSID", /* IW_CONFLICT_SSID_EVENT_FLAG */
58465 + "detected spoofed association response", /* IW_SPOOF_ASSOC_RESP_EVENT_FLAG */
58466 + "detected spoofed reassociation responses", /* IW_SPOOF_REASSOC_RESP_EVENT_FLAG */
58467 + "detected spoofed probe response", /* IW_SPOOF_PROBE_RESP_EVENT_FLAG */
58468 + "detected spoofed beacon", /* IW_SPOOF_BEACON_EVENT_FLAG */
58469 + "detected spoofed disassociation", /* IW_SPOOF_DISASSOC_EVENT_FLAG */
58470 + "detected spoofed authentication", /* IW_SPOOF_AUTH_EVENT_FLAG */
58471 + "detected spoofed deauthentication", /* IW_SPOOF_DEAUTH_EVENT_FLAG */
58472 + "detected spoofed unknown management frame", /* IW_SPOOF_UNKNOWN_MGMT_EVENT_FLAG */
58473 + "detected replay attack" /* IW_REPLAY_ATTACK_EVENT_FLAG */
58476 +// for wireless IDS_flooding_attack event message
58477 +char const *pWirelessFloodEventText[IW_FLOOD_EVENT_TYPE_NUM] = {
58478 + "detected authentication flooding", /* IW_FLOOD_AUTH_EVENT_FLAG */
58479 + "detected association request flooding", /* IW_FLOOD_ASSOC_REQ_EVENT_FLAG */
58480 + "detected reassociation request flooding", /* IW_FLOOD_REASSOC_REQ_EVENT_FLAG */
58481 + "detected probe request flooding", /* IW_FLOOD_PROBE_REQ_EVENT_FLAG */
58482 + "detected disassociation flooding", /* IW_FLOOD_DISASSOC_EVENT_FLAG */
58483 + "detected deauthentication flooding", /* IW_FLOOD_DEAUTH_EVENT_FLAG */
58484 + "detected 802.1x eap-request flooding" /* IW_FLOOD_EAP_REQ_EVENT_FLAG */
58488 +/* timeout -- ms */
58489 +VOID RTMP_SetPeriodicTimer(
58490 + IN NDIS_MINIPORT_TIMER *pTimer,
58491 + IN unsigned long timeout)
58493 + timeout = ((timeout*HZ) / 1000);
58494 + pTimer->expires = jiffies + timeout;
58495 + add_timer(pTimer);
58498 +/* convert NdisMInitializeTimer --> RTMP_OS_Init_Timer */
58499 +VOID RTMP_OS_Init_Timer(
58500 + IN PRTMP_ADAPTER pAd,
58501 + IN NDIS_MINIPORT_TIMER *pTimer,
58502 + IN TIMER_FUNCTION function,
58505 + init_timer(pTimer);
58506 + pTimer->data = (unsigned long)data;
58507 + pTimer->function = function;
58511 +VOID RTMP_OS_Add_Timer(
58512 + IN NDIS_MINIPORT_TIMER *pTimer,
58513 + IN unsigned long timeout)
58515 + if (timer_pending(pTimer))
58518 + timeout = ((timeout*HZ) / 1000);
58519 + pTimer->expires = jiffies + timeout;
58520 + add_timer(pTimer);
58523 +VOID RTMP_OS_Mod_Timer(
58524 + IN NDIS_MINIPORT_TIMER *pTimer,
58525 + IN unsigned long timeout)
58527 + timeout = ((timeout*HZ) / 1000);
58528 + mod_timer(pTimer, jiffies + timeout);
58531 +VOID RTMP_OS_Del_Timer(
58532 + IN NDIS_MINIPORT_TIMER *pTimer,
58533 + OUT BOOLEAN *pCancelled)
58535 + if (timer_pending(pTimer))
58537 + *pCancelled = del_timer_sync(pTimer);
58541 + *pCancelled = TRUE;
58546 +VOID RTMP_OS_Release_Packet(
58547 + IN PRTMP_ADAPTER pAd,
58548 + IN PQUEUE_ENTRY pEntry)
58550 + //RTMPFreeNdisPacket(pAd, (struct sk_buff *)pEntry);
58553 +// Unify all delay routine by using udelay
58554 +VOID RTMPusecDelay(
58559 + for (i = 0; i < (usec / 50); i++)
58563 + udelay(usec % 50);
58566 +void RTMP_GetCurrentSystemTime(LARGE_INTEGER *time)
58568 + time->u.LowPart = jiffies;
58571 +// pAd MUST allow to be NULL
58572 +NDIS_STATUS os_alloc_mem(
58573 + IN PRTMP_ADAPTER pAd,
58577 + *mem = (PUCHAR) kmalloc(size, GFP_ATOMIC);
58579 + return (NDIS_STATUS_SUCCESS);
58581 + return (NDIS_STATUS_FAILURE);
58584 +// pAd MUST allow to be NULL
58585 +NDIS_STATUS os_free_mem(
58586 + IN PRTMP_ADAPTER pAd,
58592 + return (NDIS_STATUS_SUCCESS);
58596 +PNDIS_PACKET RTMP_AllocateFragPacketBuffer(
58597 + IN PRTMP_ADAPTER pAd,
58600 + struct sk_buff *pkt;
58602 + pkt = dev_alloc_skb(Length);
58606 + DBGPRINT(RT_DEBUG_ERROR, ("can't allocate frag rx %ld size packet\n",Length));
58611 + RTMP_SET_PACKET_SOURCE(OSPKT_TO_RTPKT(pkt), PKTSRC_NDIS);
58614 + return (PNDIS_PACKET) pkt;
58618 +PNDIS_PACKET RTMP_AllocateTxPacketBuffer(
58619 + IN PRTMP_ADAPTER pAd,
58621 + IN BOOLEAN Cached,
58622 + OUT PVOID *VirtualAddress)
58624 + struct sk_buff *pkt;
58626 + pkt = dev_alloc_skb(Length);
58630 + DBGPRINT(RT_DEBUG_ERROR, ("can't allocate tx %ld size packet\n",Length));
58635 + RTMP_SET_PACKET_SOURCE(OSPKT_TO_RTPKT(pkt), PKTSRC_NDIS);
58636 + *VirtualAddress = (PVOID) pkt->data;
58640 + *VirtualAddress = (PVOID) NULL;
58643 + return (PNDIS_PACKET) pkt;
58647 +VOID build_tx_packet(
58648 + IN PRTMP_ADAPTER pAd,
58649 + IN PNDIS_PACKET pPacket,
58650 + IN PUCHAR pFrame,
58651 + IN ULONG FrameLen)
58654 + struct sk_buff *pTxPkt;
58657 + pTxPkt = RTPKT_TO_OSPKT(pPacket);
58659 + NdisMoveMemory(skb_put(pTxPkt, FrameLen), pFrame, FrameLen);
58662 +VOID RTMPFreeAdapter(
58663 + IN PRTMP_ADAPTER pAd)
58665 + POS_COOKIE os_cookie;
58668 + os_cookie=(POS_COOKIE)pAd->OS_Cookie;
58670 + kfree(pAd->BeaconBuf);
58673 + NdisFreeSpinLock(&pAd->MgmtRingLock);
58676 + for (index =0 ; index < NUM_OF_TX_RING; index++)
58678 + NdisFreeSpinLock(&pAd->TxSwQueueLock[index]);
58679 + NdisFreeSpinLock(&pAd->DeQueueLock[index]);
58680 + pAd->DeQueueRunning[index] = FALSE;
58683 + NdisFreeSpinLock(&pAd->irq_lock);
58686 + vfree(pAd); // pci_free_consistent(os_cookie->pci_dev,sizeof(RTMP_ADAPTER),pAd,os_cookie->pAd_pa);
58687 + kfree(os_cookie);
58690 +BOOLEAN OS_Need_Clone_Packet(void)
58698 + ========================================================================
58700 + Routine Description:
58701 + clone an input NDIS PACKET to another one. The new internally created NDIS PACKET
58702 + must have only one NDIS BUFFER
58703 + return - byte copied. 0 means can't create NDIS PACKET
58704 + NOTE: internally created NDIS_PACKET should be destroyed by RTMPFreeNdisPacket
58707 + pAd Pointer to our adapter
58708 + pInsAMSDUHdr EWC A-MSDU format has extra 14-bytes header. if TRUE, insert this 14-byte hdr in front of MSDU.
58709 + *pSrcTotalLen return total packet length. This lenght is calculated with 802.3 format packet.
58712 + NDIS_STATUS_SUCCESS
58713 + NDIS_STATUS_FAILURE
58717 + ========================================================================
58719 +NDIS_STATUS RTMPCloneNdisPacket(
58720 + IN PRTMP_ADAPTER pAd,
58721 + IN BOOLEAN pInsAMSDUHdr,
58722 + IN PNDIS_PACKET pInPacket,
58723 + OUT PNDIS_PACKET *ppOutPacket)
58726 + struct sk_buff *pkt;
58728 + ASSERT(pInPacket);
58729 + ASSERT(ppOutPacket);
58731 + // 1. Allocate a packet
58732 + pkt = dev_alloc_skb(2048);
58736 + return NDIS_STATUS_FAILURE;
58739 + skb_put(pkt, GET_OS_PKT_LEN(pInPacket));
58740 + NdisMoveMemory(pkt->data, GET_OS_PKT_DATAPTR(pInPacket), GET_OS_PKT_LEN(pInPacket));
58741 + *ppOutPacket = OSPKT_TO_RTPKT(pkt);
58744 + RTMP_SET_PACKET_SOURCE(OSPKT_TO_RTPKT(pkt), PKTSRC_NDIS);
58746 + printk("###Clone###\n");
58748 + return NDIS_STATUS_SUCCESS;
58752 +// the allocated NDIS PACKET must be freed via RTMPFreeNdisPacket()
58753 +NDIS_STATUS RTMPAllocateNdisPacket(
58754 + IN PRTMP_ADAPTER pAd,
58755 + OUT PNDIS_PACKET *ppPacket,
58756 + IN PUCHAR pHeader,
58757 + IN UINT HeaderLen,
58761 + PNDIS_PACKET pPacket;
58765 + // 1. Allocate a packet
58766 + pPacket = (PNDIS_PACKET *) dev_alloc_skb(HeaderLen + DataLen + TXPADDING_SIZE);
58767 + if (pPacket == NULL)
58769 + *ppPacket = NULL;
58771 + printk("RTMPAllocateNdisPacket Fail\n\n");
58773 + return NDIS_STATUS_FAILURE;
58776 + // 2. clone the frame content
58777 + if (HeaderLen > 0)
58778 + NdisMoveMemory(GET_OS_PKT_DATAPTR(pPacket), pHeader, HeaderLen);
58780 + NdisMoveMemory(GET_OS_PKT_DATAPTR(pPacket) + HeaderLen, pData, DataLen);
58782 + // 3. update length of packet
58783 + skb_put(GET_OS_PKT_TYPE(pPacket), HeaderLen+DataLen);
58785 + RTMP_SET_PACKET_SOURCE(pPacket, PKTSRC_NDIS);
58786 +// printk("%s : pPacket = %p, len = %d\n", __FUNCTION__, pPacket, GET_OS_PKT_LEN(pPacket));
58787 + *ppPacket = pPacket;
58788 + return NDIS_STATUS_SUCCESS;
58792 + ========================================================================
58794 + This routine frees a miniport internally allocated NDIS_PACKET and its
58795 + corresponding NDIS_BUFFER and allocated memory.
58796 + ========================================================================
58798 +VOID RTMPFreeNdisPacket(
58799 + IN PRTMP_ADAPTER pAd,
58800 + IN PNDIS_PACKET pPacket)
58802 + dev_kfree_skb_any(RTPKT_TO_OSPKT(pPacket));
58806 +// IRQL = DISPATCH_LEVEL
58807 +// NOTE: we do have an assumption here, that Byte0 and Byte1 always reasid at the same
58808 +// scatter gather buffer
58809 +NDIS_STATUS Sniff2BytesFromNdisBuffer(
58810 + IN PNDIS_BUFFER pFirstBuffer,
58811 + IN UCHAR DesiredOffset,
58812 + OUT PUCHAR pByte0,
58813 + OUT PUCHAR pByte1)
58815 + *pByte0 = *(PUCHAR)(pFirstBuffer + DesiredOffset);
58816 + *pByte1 = *(PUCHAR)(pFirstBuffer + DesiredOffset + 1);
58818 + return NDIS_STATUS_SUCCESS;
58822 +void RTMP_QueryPacketInfo(
58823 + IN PNDIS_PACKET pPacket,
58824 + OUT PACKET_INFO *pPacketInfo,
58825 + OUT PUCHAR *pSrcBufVA,
58826 + OUT UINT *pSrcBufLen)
58828 + pPacketInfo->BufferCount = 1;
58829 + pPacketInfo->pFirstBuffer = GET_OS_PKT_DATAPTR(pPacket);
58830 + pPacketInfo->PhysicalBufferCount = 1;
58831 + pPacketInfo->TotalPacketLength = GET_OS_PKT_LEN(pPacket);
58833 + *pSrcBufVA = GET_OS_PKT_DATAPTR(pPacket);
58834 + *pSrcBufLen = GET_OS_PKT_LEN(pPacket);
58837 +void RTMP_QueryNextPacketInfo(
58838 + IN PNDIS_PACKET *ppPacket,
58839 + OUT PACKET_INFO *pPacketInfo,
58840 + OUT PUCHAR *pSrcBufVA,
58841 + OUT UINT *pSrcBufLen)
58843 + PNDIS_PACKET pPacket = NULL;
58846 + pPacket = GET_OS_PKT_NEXT(*ppPacket);
58850 + pPacketInfo->BufferCount = 1;
58851 + pPacketInfo->pFirstBuffer = GET_OS_PKT_DATAPTR(pPacket);
58852 + pPacketInfo->PhysicalBufferCount = 1;
58853 + pPacketInfo->TotalPacketLength = GET_OS_PKT_LEN(pPacket);
58855 + *pSrcBufVA = GET_OS_PKT_DATAPTR(pPacket);
58856 + *pSrcBufLen = GET_OS_PKT_LEN(pPacket);
58857 + *ppPacket = GET_OS_PKT_NEXT(pPacket);
58861 + pPacketInfo->BufferCount = 0;
58862 + pPacketInfo->pFirstBuffer = NULL;
58863 + pPacketInfo->PhysicalBufferCount = 0;
58864 + pPacketInfo->TotalPacketLength = 0;
58866 + *pSrcBufVA = NULL;
58868 + *ppPacket = NULL;
58872 +// not yet support MBSS
58873 +PNET_DEV get_netdev_from_bssid(
58874 + IN PRTMP_ADAPTER pAd,
58875 + IN UCHAR FromWhichBSSID)
58877 + PNET_DEV dev_p = NULL;
58880 +#ifdef CONFIG_STA_SUPPORT
58881 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
58883 + dev_p = pAd->net_dev;
58885 +#endif // CONFIG_STA_SUPPORT //
58888 + return dev_p; /* return one of MBSS */
58891 +PNDIS_PACKET DuplicatePacket(
58892 + IN PRTMP_ADAPTER pAd,
58893 + IN PNDIS_PACKET pPacket,
58894 + IN UCHAR FromWhichBSSID)
58896 + struct sk_buff *skb;
58897 + PNDIS_PACKET pRetPacket = NULL;
58901 + DataSize = (USHORT) GET_OS_PKT_LEN(pPacket);
58902 + pData = (PUCHAR) GET_OS_PKT_DATAPTR(pPacket);
58905 + skb = skb_clone(RTPKT_TO_OSPKT(pPacket), MEM_ALLOC_FLAG);
58908 + skb->dev = get_netdev_from_bssid(pAd, FromWhichBSSID);
58909 + pRetPacket = OSPKT_TO_RTPKT(skb);
58912 + return pRetPacket;
58916 +PNDIS_PACKET duplicate_pkt(
58917 + IN PRTMP_ADAPTER pAd,
58918 + IN PUCHAR pHeader802_3,
58921 + IN ULONG DataSize,
58922 + IN UCHAR FromWhichBSSID)
58924 + struct sk_buff *skb;
58925 + PNDIS_PACKET pPacket = NULL;
58928 + if ((skb = __dev_alloc_skb(HdrLen + DataSize + 2, MEM_ALLOC_FLAG)) != NULL)
58930 + skb_reserve(skb, 2);
58931 + NdisMoveMemory(skb->tail, pHeader802_3, HdrLen);
58932 + skb_put(skb, HdrLen);
58933 + NdisMoveMemory(skb->tail, pData, DataSize);
58934 + skb_put(skb, DataSize);
58935 + skb->dev = get_netdev_from_bssid(pAd, FromWhichBSSID);
58936 + pPacket = OSPKT_TO_RTPKT(skb);
58943 +#define TKIP_TX_MIC_SIZE 8
58944 +PNDIS_PACKET duplicate_pkt_with_TKIP_MIC(
58945 + IN PRTMP_ADAPTER pAd,
58946 + IN PNDIS_PACKET pPacket)
58948 + struct sk_buff *skb, *newskb;
58951 + skb = RTPKT_TO_OSPKT(pPacket);
58952 + if (skb_tailroom(skb) < TKIP_TX_MIC_SIZE)
58954 + // alloc a new skb and copy the packet
58955 + newskb = skb_copy_expand(skb, skb_headroom(skb), TKIP_TX_MIC_SIZE, GFP_ATOMIC);
58956 + dev_kfree_skb_any(skb);
58957 + if (newskb == NULL)
58959 + DBGPRINT(RT_DEBUG_ERROR, ("Extend Tx.MIC for packet failed!, dropping packet!\n"));
58965 + return OSPKT_TO_RTPKT(skb);
58971 +PNDIS_PACKET ClonePacket(
58972 + IN PRTMP_ADAPTER pAd,
58973 + IN PNDIS_PACKET pPacket,
58975 + IN ULONG DataSize)
58977 + struct sk_buff *pRxPkt;
58978 + struct sk_buff *pClonedPkt;
58981 + pRxPkt = RTPKT_TO_OSPKT(pPacket);
58983 + // clone the packet
58984 + pClonedPkt = skb_clone(pRxPkt, MEM_ALLOC_FLAG);
58988 + // set the correct dataptr and data len
58989 + pClonedPkt->dev = pRxPkt->dev;
58990 + pClonedPkt->data = pData;
58991 + pClonedPkt->len = DataSize;
58992 + pClonedPkt->tail = pClonedPkt->data + pClonedPkt->len;
58993 + ASSERT(DataSize < 1530);
58995 + return pClonedPkt;
58999 +// change OS packet DataPtr and DataLen
59001 +void update_os_packet_info(
59002 + IN PRTMP_ADAPTER pAd,
59003 + IN RX_BLK *pRxBlk,
59004 + IN UCHAR FromWhichBSSID)
59006 + struct sk_buff *pOSPkt;
59008 + ASSERT(pRxBlk->pRxPacket);
59009 + pOSPkt = RTPKT_TO_OSPKT(pRxBlk->pRxPacket);
59011 + pOSPkt->dev = get_netdev_from_bssid(pAd, FromWhichBSSID);
59012 + pOSPkt->data = pRxBlk->pData;
59013 + pOSPkt->len = pRxBlk->DataSize;
59014 + pOSPkt->tail = pOSPkt->data + pOSPkt->len;
59018 +void wlan_802_11_to_802_3_packet(
59019 + IN PRTMP_ADAPTER pAd,
59020 + IN RX_BLK *pRxBlk,
59021 + IN PUCHAR pHeader802_3,
59022 + IN UCHAR FromWhichBSSID)
59024 + struct sk_buff *pOSPkt;
59026 + ASSERT(pRxBlk->pRxPacket);
59027 + ASSERT(pHeader802_3);
59029 + pOSPkt = RTPKT_TO_OSPKT(pRxBlk->pRxPacket);
59031 + pOSPkt->dev = get_netdev_from_bssid(pAd, FromWhichBSSID);
59032 + pOSPkt->data = pRxBlk->pData;
59033 + pOSPkt->len = pRxBlk->DataSize;
59034 + pOSPkt->tail = pOSPkt->data + pOSPkt->len;
59037 + // copy 802.3 header
59041 +#ifdef CONFIG_STA_SUPPORT
59042 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
59043 + NdisMoveMemory(skb_push(pOSPkt, LENGTH_802_3), pHeader802_3, LENGTH_802_3);
59044 +#endif // CONFIG_STA_SUPPORT //
59049 +void announce_802_3_packet(
59050 + IN PRTMP_ADAPTER pAd,
59051 + IN PNDIS_PACKET pPacket)
59054 + struct sk_buff *pRxPkt;
59058 + pRxPkt = RTPKT_TO_OSPKT(pPacket);
59060 +#ifdef CONFIG_STA_SUPPORT
59061 +#endif // CONFIG_STA_SUPPORT //
59063 + /* Push up the protocol stack */
59064 +#ifdef IKANOS_VX_1X0
59065 + IKANOS_DataFrameRx(pAd, pRxPkt->dev, pRxPkt, pRxPkt->len);
59067 + pRxPkt->protocol = eth_type_trans(pRxPkt, pRxPkt->dev);
59069 +//#ifdef CONFIG_5VT_ENHANCE
59070 +// *(int*)(pRxPkt->cb) = BRIDGE_TAG;
59072 + netif_rx(pRxPkt);
59073 +#endif // IKANOS_VX_1X0 //
59077 +PRTMP_SCATTER_GATHER_LIST
59078 +rt_get_sg_list_from_packet(PNDIS_PACKET pPacket, RTMP_SCATTER_GATHER_LIST *sg)
59080 + sg->NumberOfElements = 1;
59081 + sg->Elements[0].Address = GET_OS_PKT_DATAPTR(pPacket);
59082 + sg->Elements[0].Length = GET_OS_PKT_LEN(pPacket);
59086 +void hex_dump(char *str, unsigned char *pSrcBufVA, unsigned int SrcBufLen)
59088 + unsigned char *pt;
59091 + if (RTDebugLevel < RT_DEBUG_TRACE)
59095 + printk("%s: %p, len = %d\n",str, pSrcBufVA, SrcBufLen);
59096 + for (x=0; x<SrcBufLen; x++)
59099 + printk("0x%04x : ", x);
59100 + printk("%02x ", ((unsigned char)pt[x]));
59101 + if (x%16 == 15) printk("\n");
59107 + ========================================================================
59109 + Routine Description:
59110 + Send log message through wireless event
59112 + Support standard iw_event with IWEVCUSTOM. It is used below.
59114 + iwreq_data.data.flags is used to store event_flag that is defined by user.
59115 + iwreq_data.data.length is the length of the event log.
59117 + The format of the event log is composed of the entry's MAC address and
59118 + the desired log message (refer to pWirelessEventText).
59120 + ex: 11:22:33:44:55:66 has associated successfully
59122 + p.s. The requirement of Wireless Extension is v15 or newer.
59124 + ========================================================================
59126 +VOID RTMPSendWirelessEvent(
59127 + IN PRTMP_ADAPTER pAd,
59128 + IN USHORT Event_flag,
59133 +#if WIRELESS_EXT >= 15
59135 + union iwreq_data wrqu;
59136 + PUCHAR pBuf = NULL, pBufPtr = NULL;
59137 + USHORT event, type, BufLen;
59138 + UCHAR event_table_len = 0;
59140 + type = Event_flag & 0xFF00;
59141 + event = Event_flag & 0x00FF;
59145 + case IW_SYS_EVENT_FLAG_START:
59146 + event_table_len = IW_SYS_EVENT_TYPE_NUM;
59149 + case IW_SPOOF_EVENT_FLAG_START:
59150 + event_table_len = IW_SPOOF_EVENT_TYPE_NUM;
59153 + case IW_FLOOD_EVENT_FLAG_START:
59154 + event_table_len = IW_FLOOD_EVENT_TYPE_NUM;
59158 + if (event_table_len == 0)
59160 + DBGPRINT(RT_DEBUG_ERROR, ("%s : The type(%0x02x) is not valid.\n", __FUNCTION__, type));
59164 + if (event >= event_table_len)
59166 + DBGPRINT(RT_DEBUG_ERROR, ("%s : The event(%0x02x) is not valid.\n", __FUNCTION__, event));
59170 + //Allocate memory and copy the msg.
59171 + if((pBuf = kmalloc(IW_CUSTOM_MAX_LEN, GFP_ATOMIC)) != NULL)
59173 + //Prepare the payload
59174 + memset(pBuf, 0, IW_CUSTOM_MAX_LEN);
59179 + pBufPtr += sprintf(pBufPtr, "(RT2860) STA(%02x:%02x:%02x:%02x:%02x:%02x) ", PRINT_MAC(pAddr));
59180 + else if (BssIdx < MAX_MBSSID_NUM)
59181 + pBufPtr += sprintf(pBufPtr, "(RT2860) BSS(ra%d) ", BssIdx);
59183 + pBufPtr += sprintf(pBufPtr, "(RT2860) ");
59185 + if (type == IW_SYS_EVENT_FLAG_START)
59186 + pBufPtr += sprintf(pBufPtr, "%s", pWirelessSysEventText[event]);
59187 + else if (type == IW_SPOOF_EVENT_FLAG_START)
59188 + pBufPtr += sprintf(pBufPtr, "%s (RSSI=%d)", pWirelessSpoofEventText[event], Rssi);
59189 + else if (type == IW_FLOOD_EVENT_FLAG_START)
59190 + pBufPtr += sprintf(pBufPtr, "%s", pWirelessFloodEventText[event]);
59192 + pBufPtr += sprintf(pBufPtr, "%s", "unknown event");
59194 + pBufPtr[pBufPtr - pBuf] = '\0';
59195 + BufLen = pBufPtr - pBuf;
59197 + memset(&wrqu, 0, sizeof(wrqu));
59198 + wrqu.data.flags = Event_flag;
59199 + wrqu.data.length = BufLen;
59201 + //send wireless event
59202 + wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, pBuf);
59204 + //DBGPRINT(RT_DEBUG_TRACE, ("%s : %s\n", __FUNCTION__, pBuf));
59209 + DBGPRINT(RT_DEBUG_ERROR, ("%s : Can't allocate memory for wireless event.\n", __FUNCTION__));
59211 + DBGPRINT(RT_DEBUG_ERROR, ("%s : The Wireless Extension MUST be v15 or newer.\n", __FUNCTION__));
59212 +#endif /* WIRELESS_EXT >= 15 */
59216 +#ifdef CONFIG_STA_SUPPORT
59217 +void send_monitor_packets(
59218 + IN PRTMP_ADAPTER pAd,
59219 + IN RX_BLK *pRxBlk)
59221 + struct sk_buff *pOSPkt;
59222 + wlan_ng_prism2_header *ph;
59223 + int rate_index = 0;
59224 + USHORT header_len = 0;
59225 + UCHAR temp_header[40] = {0};
59227 + u_int32_t ralinkrate[256] = {2,4,11,22, 12,18,24,36,48,72,96, 108, 109, 110, 111, 112, 13, 26, 39, 52,78,104, 117, 130, 26, 52, 78,104, 156, 208, 234, 260, 27, 54,81,108,162, 216, 243, 270, // Last 38
59228 + 54, 108, 162, 216, 324, 432, 486, 540, 14, 29, 43, 57, 87, 115, 130, 144, 29, 59,87,115, 173, 230,260, 288, 30, 60,90,120,180,240,270,300,60,120,180,240,360,480,540,600, 0,1,2,3,4,5,6,7,8,9,10,
59229 + 11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79,80};
59232 + ASSERT(pRxBlk->pRxPacket);
59233 + if (pRxBlk->DataSize < 10)
59235 + DBGPRINT(RT_DEBUG_ERROR, ("%s : Size is too small! (%d)\n", __FUNCTION__, pRxBlk->DataSize));
59236 + goto err_free_sk_buff;
59239 + if (pRxBlk->DataSize + sizeof(wlan_ng_prism2_header) > RX_BUFFER_AGGRESIZE)
59241 + DBGPRINT(RT_DEBUG_ERROR, ("%s : Size is too large! (%d)\n", __FUNCTION__, pRxBlk->DataSize + sizeof(wlan_ng_prism2_header)));
59242 + goto err_free_sk_buff;
59245 + pOSPkt = RTPKT_TO_OSPKT(pRxBlk->pRxPacket);
59246 + pOSPkt->dev = get_netdev_from_bssid(pAd, BSS0);
59247 + if (pRxBlk->pHeader->FC.Type == BTYPE_DATA)
59249 + pRxBlk->DataSize -= LENGTH_802_11;
59250 + if ((pRxBlk->pHeader->FC.ToDs == 1) &&
59251 + (pRxBlk->pHeader->FC.FrDs == 1))
59252 + header_len = LENGTH_802_11_WITH_ADDR4;
59254 + header_len = LENGTH_802_11;
59257 + if (pRxBlk->pHeader->FC.SubType & 0x08)
59260 + // Data skip QOS contorl field
59261 + pRxBlk->DataSize -=2;
59264 + // Order bit: A-Ralink or HTC+
59265 + if (pRxBlk->pHeader->FC.Order)
59268 + // Data skip HTC contorl field
59269 + pRxBlk->DataSize -= 4;
59273 + if (header_len <= 40)
59274 + NdisMoveMemory(temp_header, pRxBlk->pData, header_len);
59276 + // skip HW padding
59277 + if (pRxBlk->RxD.L2PAD)
59278 + pRxBlk->pData += (header_len + 2);
59280 + pRxBlk->pData += header_len;
59284 + if (pRxBlk->DataSize < pOSPkt->len) {
59285 + skb_trim(pOSPkt,pRxBlk->DataSize);
59287 + skb_put(pOSPkt,(pRxBlk->DataSize - pOSPkt->len));
59290 + if ((pRxBlk->pData - pOSPkt->data) > 0) {
59291 + skb_put(pOSPkt,(pRxBlk->pData - pOSPkt->data));
59292 + skb_pull(pOSPkt,(pRxBlk->pData - pOSPkt->data));
59295 + if (skb_headroom(pOSPkt) < (sizeof(wlan_ng_prism2_header)+ header_len)) {
59296 + if (pskb_expand_head(pOSPkt, (sizeof(wlan_ng_prism2_header) + header_len), 0, GFP_ATOMIC)) {
59297 + DBGPRINT(RT_DEBUG_ERROR, ("%s : Reallocate header size of sk_buff fail!\n", __FUNCTION__));
59298 + goto err_free_sk_buff;
59302 + if (header_len > 0)
59303 + NdisMoveMemory(skb_push(pOSPkt, header_len), temp_header, header_len);
59305 + ph = (wlan_ng_prism2_header *) skb_push(pOSPkt, sizeof(wlan_ng_prism2_header));
59306 + NdisZeroMemory(ph, sizeof(wlan_ng_prism2_header));
59308 + ph->msgcode = DIDmsg_lnxind_wlansniffrm;
59309 + ph->msglen = sizeof(wlan_ng_prism2_header);
59310 + strcpy(ph->devname, pAd->net_dev->name);
59312 + ph->hosttime.did = DIDmsg_lnxind_wlansniffrm_hosttime;
59313 + ph->hosttime.status = 0;
59314 + ph->hosttime.len = 4;
59315 + ph->hosttime.data = jiffies;
59317 + ph->mactime.did = DIDmsg_lnxind_wlansniffrm_mactime;
59318 + ph->mactime.status = 0;
59319 + ph->mactime.len = 0;
59320 + ph->mactime.data = 0;
59322 + ph->istx.did = DIDmsg_lnxind_wlansniffrm_istx;
59323 + ph->istx.status = 0;
59324 + ph->istx.len = 0;
59325 + ph->istx.data = 0;
59327 + ph->channel.did = DIDmsg_lnxind_wlansniffrm_channel;
59328 + ph->channel.status = 0;
59329 + ph->channel.len = 4;
59331 + ph->channel.data = (u_int32_t)pAd->CommonCfg.Channel;
59333 + ph->rssi.did = DIDmsg_lnxind_wlansniffrm_rssi;
59334 + ph->rssi.status = 0;
59335 + ph->rssi.len = 4;
59336 + ph->rssi.data = (u_int32_t)RTMPMaxRssi(pAd, ConvertToRssi(pAd, pRxBlk->pRxWI->RSSI0, RSSI_0), ConvertToRssi(pAd, pRxBlk->pRxWI->RSSI1, RSSI_1), ConvertToRssi(pAd, pRxBlk->pRxWI->RSSI2, RSSI_2));;
59338 + ph->signal.did = DIDmsg_lnxind_wlansniffrm_signal;
59339 + ph->signal.status = 0;
59340 + ph->signal.len = 4;
59341 + ph->signal.data = 0; //rssi + noise;
59343 + ph->noise.did = DIDmsg_lnxind_wlansniffrm_noise;
59344 + ph->noise.status = 0;
59345 + ph->noise.len = 4;
59346 + ph->noise.data = 0;
59348 +#ifdef DOT11_N_SUPPORT
59349 + if (pRxBlk->pRxWI->PHYMODE >= MODE_HTMIX)
59351 + rate_index = 16 + ((UCHAR)pRxBlk->pRxWI->BW *16) + ((UCHAR)pRxBlk->pRxWI->ShortGI *32) + ((UCHAR)pRxBlk->pRxWI->MCS);
59354 +#endif // DOT11_N_SUPPORT //
59355 + if (pRxBlk->pRxWI->PHYMODE == MODE_OFDM)
59356 + rate_index = (UCHAR)(pRxBlk->pRxWI->MCS) + 4;
59358 + rate_index = (UCHAR)(pRxBlk->pRxWI->MCS);
59359 + if (rate_index < 0)
59361 + if (rate_index > 255)
59362 + rate_index = 255;
59364 + ph->rate.did = DIDmsg_lnxind_wlansniffrm_rate;
59365 + ph->rate.status = 0;
59366 + ph->rate.len = 4;
59367 + ph->rate.data = ralinkrate[rate_index];
59369 + ph->frmlen.did = DIDmsg_lnxind_wlansniffrm_frmlen;
59370 + ph->frmlen.status = 0;
59371 + ph->frmlen.len = 4;
59372 + ph->frmlen.data = (u_int32_t)pRxBlk->DataSize;
59375 + pOSPkt->pkt_type = PACKET_OTHERHOST;
59376 + pOSPkt->protocol = eth_type_trans(pOSPkt, pOSPkt->dev);
59377 + pOSPkt->ip_summed = CHECKSUM_NONE;
59378 + netif_rx(pOSPkt);
59383 + RELEASE_NDIS_PACKET(pAd, pRxBlk->pRxPacket, NDIS_STATUS_FAILURE);
59387 +#endif // CONFIG_STA_SUPPORT //
59390 +void rtmp_os_thread_init(PUCHAR pThreadName, PVOID pNotify)
59393 +#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,5,0)
59394 + daemonize(pThreadName /*"%s",pAd->net_dev->name*/);
59396 + allow_signal(SIGTERM);
59397 + allow_signal(SIGKILL);
59398 + current->flags |= PF_NOFREEZE;
59400 + unsigned long flags;
59403 + reparent_to_init();
59404 + strcpy(current->comm, pThreadName);
59406 + siginitsetinv(¤t->blocked, sigmask(SIGTERM) | sigmask(SIGKILL));
59408 + /* Allow interception of SIGKILL only
59409 + * Don't allow other signals to interrupt the transmission */
59410 +#if LINUX_VERSION_CODE > KERNEL_VERSION(2,4,22)
59411 + spin_lock_irqsave(¤t->sigmask_lock, flags);
59412 + flush_signals(current);
59413 + recalc_sigpending(current);
59414 + spin_unlock_irqrestore(¤t->sigmask_lock, flags);
59418 + /* signal that we've started the thread */
59419 + complete(pNotify);
59423 +void RTMP_IndicateMediaState(
59424 + IN PRTMP_ADAPTER pAd)
59426 + if (pAd->CommonCfg.bWirelessEvent)
59428 + if (pAd->IndicateMediaState == NdisMediaStateConnected)
59430 + RTMPSendWirelessEvent(pAd, IW_STA_LINKUP_EVENT_FLAG, pAd->MacTab.Content[BSSID_WCID].Addr, BSS0, 0);
59434 + RTMPSendWirelessEvent(pAd, IW_STA_LINKDOWN_EVENT_FLAG, pAd->MacTab.Content[BSSID_WCID].Addr, BSS0, 0);
59440 +++ b/drivers/staging/rt3070/rt_linux.h
59443 + *************************************************************************
59444 + * Ralink Tech Inc.
59445 + * 5F., No.36, Taiyuan St., Jhubei City,
59446 + * Hsinchu County 302,
59449 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
59451 + * This program is free software; you can redistribute it and/or modify *
59452 + * it under the terms of the GNU General Public License as published by *
59453 + * the Free Software Foundation; either version 2 of the License, or *
59454 + * (at your option) any later version. *
59456 + * This program is distributed in the hope that it will be useful, *
59457 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
59458 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
59459 + * GNU General Public License for more details. *
59461 + * You should have received a copy of the GNU General Public License *
59462 + * along with this program; if not, write to the *
59463 + * Free Software Foundation, Inc., *
59464 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
59466 + *************************************************************************
59469 +/***********************************************************************/
59471 +/* Program: rt_linux.c */
59472 +/* Created: 4/21/2006 1:17:38 PM */
59473 +/* Author: Wu Xi-Kun */
59474 +/* Comments: `description` */
59476 +/*---------------------------------------------------------------------*/
59479 +/* Revision 1.1 4/21/2006 1:17:38 PM xsikun */
59480 +/* Initial revision */
59482 +/***********************************************************************/
59484 +#include "rtmp_type.h"
59485 +#include <linux/module.h>
59486 +#include <linux/version.h>
59487 +#include <linux/kernel.h>
59489 +#include <linux/spinlock.h>
59490 +#include <linux/init.h>
59491 +#include <linux/string.h>
59492 +#include <linux/timer.h>
59493 +#include <linux/errno.h>
59494 +#include <linux/slab.h>
59495 +#include <linux/interrupt.h>
59496 +#include <linux/pci.h>
59497 +#include <linux/netdevice.h>
59498 +#include <linux/etherdevice.h>
59499 +#include <linux/skbuff.h>
59500 +#include <linux/ethtool.h>
59501 +#include <linux/wireless.h>
59502 +#include <linux/proc_fs.h>
59503 +#include <linux/delay.h>
59504 +#include <linux/if_arp.h>
59505 +#include <linux/ctype.h>
59506 +#include <linux/vmalloc.h>
59509 +#include <linux/wireless.h>
59510 +#include <net/iw_handler.h>
59513 +#define __KERNEL_SYSCALLS__
59514 +#include <linux/unistd.h>
59515 +#include <asm/uaccess.h>
59518 +#define MEM_ALLOC_FLAG (GFP_ATOMIC) //(GFP_DMA | GFP_ATOMIC)
59521 +#define IFNAMSIZ 16
59524 +//#define CONFIG_CKIP_SUPPORT
59527 +#define __inline static inline
59529 +typedef int (*HARD_START_XMIT_FUNC)(struct sk_buff *skb, struct net_device *net_dev);
59533 +#ifdef CONFIG_STA_SUPPORT
59536 +#define STA_PROFILE_PATH "/etc/Wireless/RT2870STA/RT2870STA.dat"
59537 +#define STA_RT2870_IMAGE_FILE_NAME "/etc/Wireless/RT2870STA/rt2870.bin"
59538 +#define STA_NIC_DEVICE_NAME "RT2870STA"
59539 +#define STA_DRIVER_VERSION "2.0.1.0"
59540 +#ifdef MULTIPLE_CARD_SUPPORT
59541 +#define CARD_INFO_PATH "/etc/Wireless/RT2870STA/RT2870STACard.dat"
59542 +#endif // MULTIPLE_CARD_SUPPORT //
59543 +#endif // RT2870 //
59545 +#endif // CONFIG_STA_SUPPORT //
59548 +#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,5,0)
59550 +#define RTMP_TIME_AFTER(a,b) \
59551 + (typecheck(unsigned long, (unsigned long)a) && \
59552 + typecheck(unsigned long, (unsigned long)b) && \
59553 + ((long)(b) - (long)(a) < 0))
59555 +#define RTMP_TIME_AFTER_EQ(a,b) \
59556 + (typecheck(unsigned long, (unsigned long)a) && \
59557 + typecheck(unsigned long, (unsigned long)b) && \
59558 + ((long)(a) - (long)(b) >= 0))
59559 +#define RTMP_TIME_BEFORE(a,b) RTMP_TIME_AFTER_EQ(b,a)
59561 +#define RTMP_TIME_AFTER(a,b) time_after(a, b)
59564 +#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,5,0)
59565 +#define RT_MOD_INC_USE_COUNT() \
59566 + if (!try_module_get(THIS_MODULE)) \
59568 + DBGPRINT(RT_DEBUG_ERROR, ("%s: cannot reserve module\n", __FUNCTION__)); \
59572 +#define RT_MOD_DEC_USE_COUNT() module_put(THIS_MODULE);
59574 +#define RT_MOD_INC_USE_COUNT() MOD_INC_USE_COUNT;
59575 +#define RT_MOD_DEC_USE_COUNT() MOD_DEC_USE_COUNT;
59580 +#define ETH_LENGTH_OF_ADDRESS 6
59585 +#define NDIS_STATUS INT
59586 +#define NDIS_STATUS_SUCCESS 0x00
59587 +#define NDIS_STATUS_FAILURE 0x01
59588 +#define NDIS_STATUS_INVALID_DATA 0x02
59589 +#define NDIS_STATUS_RESOURCES 0x03
59591 +#define MIN_NET_DEVICE_FOR_AID 0x00 //0x00~0x3f
59592 +#define MIN_NET_DEVICE_FOR_MBSSID 0x00 //0x00,0x10,0x20,0x30
59593 +#define MIN_NET_DEVICE_FOR_WDS 0x10 //0x40,0x50,0x60,0x70
59594 +#define MIN_NET_DEVICE_FOR_APCLI 0x20
59595 +#define MIN_NET_DEVICE_FOR_MESH 0x30
59596 +#ifdef CONFIG_STA_SUPPORT
59597 +#define MIN_NET_DEVICE_FOR_DLS 0x40
59598 +#endif // CONFIG_STA_SUPPORT //
59601 +#ifdef CONFIG_STA_SUPPORT
59602 +#define NDIS_PACKET_TYPE_DIRECTED 0
59603 +#define NDIS_PACKET_TYPE_MULTICAST 1
59604 +#define NDIS_PACKET_TYPE_BROADCAST 2
59605 +#define NDIS_PACKET_TYPE_ALL_MULTICAST 3
59606 +#endif // CONFIG_STA_SUPPORT //
59610 + unsigned long flags;
59614 +struct os_cookie {
59617 + struct usb_device *pUsb_Dev;
59619 + struct pid * MLMEThr_pid;
59620 + struct pid * RTUSBCmdThr_pid;
59621 + struct pid * TimerQThr_pid;
59622 +#endif // RT2870 //
59624 + struct tasklet_struct rx_done_task;
59625 + struct tasklet_struct mgmt_dma_done_task;
59626 + struct tasklet_struct ac0_dma_done_task;
59627 + struct tasklet_struct ac1_dma_done_task;
59628 + struct tasklet_struct ac2_dma_done_task;
59629 + struct tasklet_struct ac3_dma_done_task;
59630 + struct tasklet_struct hcca_dma_done_task;
59631 + struct tasklet_struct tbtt_task;
59633 + struct tasklet_struct null_frame_complete_task;
59634 + struct tasklet_struct rts_frame_complete_task;
59635 + struct tasklet_struct pspoll_frame_complete_task;
59636 +#endif // RT2870 //
59639 + unsigned long apd_pid; //802.1x daemon pid
59640 + INT ioctl_if_type;
59644 +typedef struct _VIRTUAL_ADAPTER
59646 + struct net_device *RtmpDev;
59647 + struct net_device *VirtualDev;
59648 +} VIRTUAL_ADAPTER, PVIRTUAL_ADAPTER;
59651 +#define ASSERT(x) \
59655 + printk(KERN_WARNING __FILE__ ":%d assert " #x "failed\n", __LINE__); \
59659 +typedef struct os_cookie * POS_COOKIE;
59660 +typedef struct pci_dev * PPCI_DEV;
59661 +typedef struct net_device * PNET_DEV;
59662 +typedef void * PNDIS_PACKET;
59663 +typedef char NDIS_PACKET;
59664 +typedef PNDIS_PACKET * PPNDIS_PACKET;
59665 +typedef dma_addr_t NDIS_PHYSICAL_ADDRESS;
59666 +typedef dma_addr_t * PNDIS_PHYSICAL_ADDRESS;
59667 +//typedef struct timer_list RALINK_TIMER_STRUCT;
59668 +//typedef struct timer_list * PRALINK_TIMER_STRUCT;
59669 +//typedef struct os_lock NDIS_SPIN_LOCK;
59670 +typedef spinlock_t NDIS_SPIN_LOCK;
59671 +typedef struct timer_list NDIS_MINIPORT_TIMER;
59672 +typedef void * NDIS_HANDLE;
59673 +typedef char * PNDIS_BUFFER;
59677 +void hex_dump(char *str, unsigned char *pSrcBufVA, unsigned int SrcBufLen);
59679 +dma_addr_t linux_pci_map_single(void *handle, void *ptr, size_t size, int sd_idx, int direction);
59680 +void linux_pci_unmap_single(void *handle, dma_addr_t dma_addr, size_t size, int direction);
59683 +////////////////////////////////////////
59684 +// MOVE TO rtmp.h ?
59685 +/////////////////////////////////////////
59686 +#define PKTSRC_NDIS 0x7f
59687 +#define PKTSRC_DRIVER 0x0f
59688 +#define PRINT_MAC(addr) \
59689 + addr[0], addr[1], addr[2], addr[3], addr[4], addr[5]
59692 +#define RT2860_PCI_DEVICE_ID 0x0601
59695 +#define PCI_MAP_SINGLE(_handle, _ptr, _size, _dir) (ULONG)0
59697 +#define PCI_UNMAP_SINGLE(_handle, _ptr, _size, _dir)
59698 +#endif // RT2870 //
59701 +#define BEACON_FRAME_DMA_CACHE_WBACK(_ptr, _size) \
59702 + dma_cache_wback(_ptr, _size)
59705 +//////////////////////////////////////////
59707 +//////////////////////////////////////////
59710 +#define NdisMIndicateStatus(_w, _x, _y, _z)
59713 +typedef struct timer_list RTMP_OS_TIMER;
59716 +/* ----------------- Timer Related MARCO ---------------*/
59717 +// In RT2870, we have a lot of timer functions and will read/write register, it's
59718 +// not allowed in Linux USB sub-system to do it ( because of sleep issue when submit
59719 +// to ctrl pipe). So we need a wrapper function to take care it.
59721 +typedef VOID (*RT2870_TIMER_HANDLE)(
59722 + IN PVOID SystemSpecific1,
59723 + IN PVOID FunctionContext,
59724 + IN PVOID SystemSpecific2,
59725 + IN PVOID SystemSpecific3);
59726 +#endif // RT2870 //
59729 +typedef struct _RALINK_TIMER_STRUCT {
59730 + RTMP_OS_TIMER TimerObj; // Ndis Timer object
59731 + BOOLEAN Valid; // Set to True when call RTMPInitTimer
59732 + BOOLEAN State; // True if timer cancelled
59733 + BOOLEAN PeriodicType; // True if timer is periodic timer
59734 + BOOLEAN Repeat; // True if periodic timer
59735 + ULONG TimerValue; // Timer value in milliseconds
59736 + ULONG cookie; // os specific object
59738 + RT2870_TIMER_HANDLE handle;
59740 +#endif // RT2870 //
59741 +} RALINK_TIMER_STRUCT, *PRALINK_TIMER_STRUCT;
59746 +typedef enum _RT2870_KERNEL_THREAD_STATUS_
59748 + RT2870_THREAD_UNKNOWN = 0,
59749 + RT2870_THREAD_INITED = 1,
59750 + RT2870_THREAD_RUNNING = 2,
59751 + RT2870_THREAD_STOPED = 4,
59752 +}RT2870_KERNEL_THREAD_STATUS;
59754 +#define RT2870_THREAD_CAN_DO_INSERT (RT2870_THREAD_INITED |RT2870_THREAD_RUNNING)
59756 +typedef struct _RT2870_TIMER_ENTRY_
59758 + RALINK_TIMER_STRUCT *pRaTimer;
59759 + struct _RT2870_TIMER_ENTRY_ *pNext;
59760 +}RT2870_TIMER_ENTRY;
59763 +#define TIMER_QUEUE_SIZE_MAX 128
59764 +typedef struct _RT2870_TIMER_QUEUE_
59766 + unsigned int status;
59767 + //wait_queue_head_t timerWaitQ;
59768 + //atomic_t count;
59769 + UCHAR *pTimerQPoll;
59770 + RT2870_TIMER_ENTRY *pQPollFreeList;
59771 + RT2870_TIMER_ENTRY *pQHead;
59772 + RT2870_TIMER_ENTRY *pQTail;
59773 +}RT2870_TIMER_QUEUE;
59774 +#endif // RT2870 //
59780 +// MACRO for debugging information
59784 +extern ULONG RTDebugLevel;
59786 +#define DBGPRINT_RAW(Level, Fmt) \
59788 + if (Level <= RTDebugLevel) \
59794 +#define DBGPRINT(Level, Fmt) DBGPRINT_RAW(Level, Fmt)
59797 +#define DBGPRINT_ERR(Fmt) \
59799 + printk("ERROR!!! "); \
59803 +#define DBGPRINT_S(Status, Fmt) \
59810 +#define DBGPRINT(Level, Fmt)
59811 +#define DBGPRINT_RAW(Level, Fmt)
59812 +#define DBGPRINT_S(Status, Fmt)
59813 +#define DBGPRINT_ERR(Fmt)
59818 +// spin_lock enhanced for Nested spin lock
59820 +#define NdisAllocateSpinLock(__lock) \
59822 + spin_lock_init((spinlock_t *)(__lock)); \
59825 +#define NdisFreeSpinLock(lock) \
59830 +#define RTMP_SEM_LOCK(__lock) \
59832 + spin_lock_bh((spinlock_t *)(__lock)); \
59835 +#define RTMP_SEM_UNLOCK(__lock) \
59837 + spin_unlock_bh((spinlock_t *)(__lock)); \
59840 +// sample, use semaphore lock to replace IRQ lock, 2007/11/15
59841 +#define RTMP_IRQ_LOCK(__lock, __irqflags) \
59843 + __irqflags = 0; \
59844 + spin_lock_bh((spinlock_t *)(__lock)); \
59845 + pAd->irq_disabled |= 1; \
59848 +#define RTMP_IRQ_UNLOCK(__lock, __irqflag) \
59850 + pAd->irq_disabled &= 0; \
59851 + spin_unlock_bh((spinlock_t *)(__lock)); \
59854 +#define RTMP_INT_LOCK(__lock, __irqflags) \
59856 + spin_lock_irqsave((spinlock_t *)__lock, __irqflags); \
59859 +#define RTMP_INT_UNLOCK(__lock, __irqflag) \
59861 + spin_unlock_irqrestore((spinlock_t *)(__lock), ((unsigned long)__irqflag)); \
59865 +#define RTMP_IO_READ32(_A, _R, _pV) \
59866 + RTUSBReadMACRegister(_A, _R, _pV)
59868 +#define RTMP_IO_READ8(_A, _R, _pV) \
59872 +#define RTMP_IO_WRITE32(_A, _R, _V) \
59873 + RTUSBWriteMACRegister(_A, _R, _V)
59876 +#define RTMP_IO_WRITE8(_A, _R, _V) \
59878 + USHORT _Val = _V; \
59879 + RTUSBSingleWrite(_A, _R, _Val); \
59883 +#define RTMP_IO_WRITE16(_A, _R, _V) \
59885 + RTUSBSingleWrite(_A, _R, _V); \
59887 +#endif // RT2870 //
59889 +#ifndef wait_event_interruptible_timeout
59890 +#define __wait_event_interruptible_timeout(wq, condition, ret) \
59892 + wait_queue_t __wait; \
59893 + init_waitqueue_entry(&__wait, current); \
59894 + add_wait_queue(&wq, &__wait); \
59896 + set_current_state(TASK_INTERRUPTIBLE); \
59899 + if (!signal_pending(current)) { \
59900 + ret = schedule_timeout(ret); \
59905 + ret = -ERESTARTSYS; \
59908 + current->state = TASK_RUNNING; \
59909 + remove_wait_queue(&wq, &__wait); \
59912 +#define wait_event_interruptible_timeout(wq, condition, timeout) \
59914 + long __ret = timeout; \
59915 + if (!(condition)) \
59916 + __wait_event_interruptible_timeout(wq, condition, __ret); \
59920 +#define ONE_TICK 1
59921 +#define OS_WAIT(_time) \
59923 + long _loop = ((_time)/(1000/OS_HZ)) > 0 ? ((_time)/(1000/OS_HZ)) : 1;\
59924 + wait_queue_head_t _wait; \
59925 + init_waitqueue_head(&_wait); \
59926 + for (_i=0; _i<(_loop); _i++) \
59927 + wait_event_interruptible_timeout(_wait, 0, ONE_TICK); }
59930 +/* Modified by Wu Xi-Kun 4/21/2006 */
59931 +typedef void (*TIMER_FUNCTION)(unsigned long);
59933 +#define COPY_MAC_ADDR(Addr1, Addr2) memcpy((Addr1), (Addr2), MAC_ADDR_LEN)
59935 +#define MlmeAllocateMemory(_pAd, _ppVA) os_alloc_mem(_pAd, _ppVA, MGMT_DMA_BUFFER_SIZE)
59936 +#define MlmeFreeMemory(_pAd, _pVA) os_free_mem(_pAd, _pVA)
59940 +#define BUILD_TIMER_FUNCTION(_func) \
59941 +void linux_##_func(unsigned long data) \
59943 + PRALINK_TIMER_STRUCT _pTimer = (PRALINK_TIMER_STRUCT)data; \
59944 + RT2870_TIMER_ENTRY *_pQNode; \
59945 + RTMP_ADAPTER *_pAd; \
59947 + _pTimer->handle = _func; \
59948 + _pAd = (RTMP_ADAPTER *)_pTimer->pAd; \
59949 + _pQNode = RT2870_TimerQ_Insert(_pAd, _pTimer); \
59950 + if ((_pQNode == NULL) && (_pAd->TimerQ.status & RT2870_THREAD_CAN_DO_INSERT)) \
59951 + RTMP_OS_Add_Timer(&_pTimer->TimerObj, HZ); \
59953 +#endif // RT2870 //
59956 +#define DECLARE_TIMER_FUNCTION(_func) \
59957 +void linux_##_func(unsigned long data)
59959 +#define GET_TIMER_FUNCTION(_func) \
59962 +DECLARE_TIMER_FUNCTION(MlmePeriodicExec);
59963 +DECLARE_TIMER_FUNCTION(MlmeRssiReportExec);
59964 +DECLARE_TIMER_FUNCTION(AsicRxAntEvalTimeout);
59965 +DECLARE_TIMER_FUNCTION(APSDPeriodicExec);
59966 +DECLARE_TIMER_FUNCTION(AsicRfTuningExec);
59968 +DECLARE_TIMER_FUNCTION(BeaconUpdateExec);
59969 +#endif // RT2870 //
59972 +#ifdef CONFIG_STA_SUPPORT
59973 +DECLARE_TIMER_FUNCTION(BeaconTimeout);
59974 +DECLARE_TIMER_FUNCTION(ScanTimeout);
59975 +DECLARE_TIMER_FUNCTION(AuthTimeout);
59976 +DECLARE_TIMER_FUNCTION(AssocTimeout);
59977 +DECLARE_TIMER_FUNCTION(ReassocTimeout);
59978 +DECLARE_TIMER_FUNCTION(DisassocTimeout);
59979 +DECLARE_TIMER_FUNCTION(LinkDownExec);
59980 +#ifdef LEAP_SUPPORT
59981 +DECLARE_TIMER_FUNCTION(LeapAuthTimeout);
59983 +DECLARE_TIMER_FUNCTION(StaQuickResponeForRateUpExec);
59984 +DECLARE_TIMER_FUNCTION(WpaDisassocApAndBlockAssoc);
59985 +DECLARE_TIMER_FUNCTION(PsPollWakeExec);
59986 +DECLARE_TIMER_FUNCTION(RadioOnExec);
59988 +#ifdef QOS_DLS_SUPPORT
59989 +DECLARE_TIMER_FUNCTION(DlsTimeoutAction);
59990 +#endif // QOS_DLS_SUPPORT //
59991 +#endif // CONFIG_STA_SUPPORT //
59993 +#undef AP_WSC_INCLUDED
59994 +#undef STA_WSC_INCLUDED
59995 +#undef WSC_INCLUDED
59998 +#ifdef CONFIG_STA_SUPPORT
59999 +#endif // CONFIG_STA_SUPPORT //
60001 +#if defined(AP_WSC_INCLUDED) || defined(STA_WSC_INCLUDED)
60002 +#define WSC_INCLUDED
60007 +void RTMP_GetCurrentSystemTime(LARGE_INTEGER *time);
60012 + * - convert internal rt packet to os packet or
60013 + * os packet to rt packet
60015 +#define RTPKT_TO_OSPKT(_p) ((struct sk_buff *)(_p))
60016 +#define OSPKT_TO_RTPKT(_p) ((PNDIS_PACKET)(_p))
60018 +#define GET_OS_PKT_DATAPTR(_pkt) \
60019 + (RTPKT_TO_OSPKT(_pkt)->data)
60021 +#define GET_OS_PKT_LEN(_pkt) \
60022 + (RTPKT_TO_OSPKT(_pkt)->len)
60024 +#define GET_OS_PKT_DATATAIL(_pkt) \
60025 + (RTPKT_TO_OSPKT(_pkt)->tail)
60027 +#define GET_OS_PKT_HEAD(_pkt) \
60028 + (RTPKT_TO_OSPKT(_pkt)->head)
60030 +#define GET_OS_PKT_END(_pkt) \
60031 + (RTPKT_TO_OSPKT(_pkt)->end)
60033 +#define GET_OS_PKT_NETDEV(_pkt) \
60034 + (RTPKT_TO_OSPKT(_pkt)->dev)
60036 +#define GET_OS_PKT_TYPE(_pkt) \
60037 + (RTPKT_TO_OSPKT(_pkt))
60039 +#define GET_OS_PKT_NEXT(_pkt) \
60040 + (RTPKT_TO_OSPKT(_pkt)->next)
60043 +#define OS_NTOHS(_Val) \
60045 +#define OS_HTONS(_Val) \
60047 +#define OS_NTOHL(_Val) \
60049 +#define OS_HTONL(_Val) \
60052 +/* statistics counter */
60053 +#define STATS_INC_RX_PACKETS(_pAd, _dev)
60054 +#define STATS_INC_TX_PACKETS(_pAd, _dev)
60056 +#define STATS_INC_RX_BYTESS(_pAd, _dev, len)
60057 +#define STATS_INC_TX_BYTESS(_pAd, _dev, len)
60059 +#define STATS_INC_RX_ERRORS(_pAd, _dev)
60060 +#define STATS_INC_TX_ERRORS(_pAd, _dev)
60062 +#define STATS_INC_RX_DROPPED(_pAd, _dev)
60063 +#define STATS_INC_TX_DROPPED(_pAd, _dev)
60069 +// check DDK NDIS_PACKET data structure and find out only MiniportReservedEx[0..7] can be used by our driver without
60070 +// ambiguity. Fields after pPacket->MiniportReservedEx[8] may be used by other wrapper layer thus crashes the driver
60072 +//#define RTMP_GET_PACKET_MR(_p) (RTPKT_TO_OSPKT(_p))
60075 +#define RTMP_SET_PACKET_UP(_p, _prio) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+0] = _prio)
60076 +#define RTMP_GET_PACKET_UP(_p) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+0])
60079 +#define RTMP_SET_PACKET_FRAGMENTS(_p, _num) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+1] = _num)
60080 +#define RTMP_GET_PACKET_FRAGMENTS(_p) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+1])
60082 +// 0x0 ~0x7f: TX to AP's own BSS which has the specified AID. if AID>127, set bit 7 in RTMP_SET_PACKET_EMACTAB too.
60083 +//(this value also as MAC(on-chip WCID) table index)
60084 +// 0x80~0xff: TX to a WDS link. b0~6: WDS index
60085 +#define RTMP_SET_PACKET_WCID(_p, _wdsidx) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+2] = _wdsidx)
60086 +#define RTMP_GET_PACKET_WCID(_p) ((UCHAR)(RTPKT_TO_OSPKT(_p)->cb[CB_OFF+2]))
60088 +// 0xff: PKTSRC_NDIS, others: local TX buffer index. This value affects how to a packet
60089 +#define RTMP_SET_PACKET_SOURCE(_p, _pktsrc) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+3] = _pktsrc)
60090 +#define RTMP_GET_PACKET_SOURCE(_p) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+3])
60092 +// RTS/CTS-to-self protection method
60093 +#define RTMP_SET_PACKET_RTS(_p, _num) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+4] = _num)
60094 +#define RTMP_GET_PACKET_RTS(_p) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+4])
60095 +// see RTMP_S(G)ET_PACKET_EMACTAB
60098 +#define RTMP_SET_PACKET_TXRATE(_p, _rate) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+5] = _rate)
60099 +#define RTMP_GET_PACKET_TXRATE(_p) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+5])
60101 +// From which Interface
60102 +#define RTMP_SET_PACKET_IF(_p, _ifdx) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+6] = _ifdx)
60103 +#define RTMP_GET_PACKET_IF(_p) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+6])
60104 +#define RTMP_SET_PACKET_NET_DEVICE_MBSSID(_p, _bss) RTMP_SET_PACKET_IF((_p), (_bss))
60105 +#define RTMP_SET_PACKET_NET_DEVICE_WDS(_p, _bss) RTMP_SET_PACKET_IF((_p), ((_bss) + MIN_NET_DEVICE_FOR_WDS))
60106 +#define RTMP_SET_PACKET_NET_DEVICE_APCLI(_p, _idx) RTMP_SET_PACKET_IF((_p), ((_idx) + MIN_NET_DEVICE_FOR_APCLI))
60107 +#define RTMP_SET_PACKET_NET_DEVICE_MESH(_p, _idx) RTMP_SET_PACKET_IF((_p), ((_idx) + MIN_NET_DEVICE_FOR_MESH))
60108 +#define RTMP_GET_PACKET_NET_DEVICE_MBSSID(_p) RTMP_GET_PACKET_IF((_p))
60109 +#define RTMP_GET_PACKET_NET_DEVICE(_p) RTMP_GET_PACKET_IF((_p))
60111 +#define RTMP_SET_PACKET_MOREDATA(_p, _morebit) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+7] = _morebit)
60112 +#define RTMP_GET_PACKET_MOREDATA(_p) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+7])
60114 +//#define RTMP_SET_PACKET_NET_DEVICE_MBSSID(_p, _bss) (RTPKT_TO_OSPKT(_p)->cb[8] = _bss)
60115 +//#define RTMP_GET_PACKET_NET_DEVICE_MBSSID(_p) (RTPKT_TO_OSPKT(_p)->cb[8])
60118 +// Sepcific Pakcet Type definition
60120 +#define RTMP_PACKET_SPECIFIC_CB_OFFSET 11
60122 +#define RTMP_PACKET_SPECIFIC_DHCP 0x01
60123 +#define RTMP_PACKET_SPECIFIC_EAPOL 0x02
60124 +#define RTMP_PACKET_SPECIFIC_IPV4 0x04
60125 +#define RTMP_PACKET_SPECIFIC_WAI 0x08
60126 +#define RTMP_PACKET_SPECIFIC_VLAN 0x10
60127 +#define RTMP_PACKET_SPECIFIC_LLCSNAP 0x20
60130 +#define RTMP_SET_PACKET_SPECIFIC(_p, _flg) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11] = _flg)
60133 +#define RTMP_SET_PACKET_DHCP(_p, _flg) \
60136 + (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11]) |= (RTMP_PACKET_SPECIFIC_DHCP); \
60138 + (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11]) &= (!RTMP_PACKET_SPECIFIC_DHCP); \
60140 +#define RTMP_GET_PACKET_DHCP(_p) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11] & RTMP_PACKET_SPECIFIC_DHCP)
60143 +#define RTMP_SET_PACKET_EAPOL(_p, _flg) \
60146 + (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11]) |= (RTMP_PACKET_SPECIFIC_EAPOL); \
60148 + (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11]) &= (!RTMP_PACKET_SPECIFIC_EAPOL); \
60150 +#define RTMP_GET_PACKET_EAPOL(_p) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11] & RTMP_PACKET_SPECIFIC_EAPOL)
60153 +#define RTMP_SET_PACKET_WAI(_p, _flg) \
60156 + (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11]) |= (RTMP_PACKET_SPECIFIC_WAI); \
60158 + (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11]) &= (!RTMP_PACKET_SPECIFIC_WAI); \
60160 +#define RTMP_GET_PACKET_WAI(_p) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11] & RTMP_PACKET_SPECIFIC_WAI)
60162 +#define RTMP_GET_PACKET_LOWRATE(_p) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11] & (RTMP_PACKET_SPECIFIC_EAPOL | RTMP_PACKET_SPECIFIC_DHCP | RTMP_PACKET_SPECIFIC_WAI))
60165 +#define RTMP_SET_PACKET_VLAN(_p, _flg) \
60168 + (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11]) |= (RTMP_PACKET_SPECIFIC_VLAN); \
60170 + (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11]) &= (!RTMP_PACKET_SPECIFIC_VLAN); \
60172 +#define RTMP_GET_PACKET_VLAN(_p) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11] & RTMP_PACKET_SPECIFIC_VLAN)
60175 +#define RTMP_SET_PACKET_LLCSNAP(_p, _flg) \
60178 + (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11]) |= (RTMP_PACKET_SPECIFIC_LLCSNAP); \
60180 + (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11]) &= (!RTMP_PACKET_SPECIFIC_LLCSNAP); \
60183 +#define RTMP_GET_PACKET_LLCSNAP(_p) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11] & RTMP_PACKET_SPECIFIC_LLCSNAP)
60186 +#define RTMP_SET_PACKET_IPV4(_p, _flg) \
60189 + (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11]) |= (RTMP_PACKET_SPECIFIC_IPV4); \
60191 + (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11]) &= (!RTMP_PACKET_SPECIFIC_IPV4); \
60194 +#define RTMP_GET_PACKET_IPV4(_p) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+11] & RTMP_PACKET_SPECIFIC_IPV4)
60196 +// If this flag is set, it indicates that this EAPoL frame MUST be clear.
60197 +#define RTMP_SET_PACKET_CLEAR_EAP_FRAME(_p, _flg) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+12] = _flg)
60198 +#define RTMP_GET_PACKET_CLEAR_EAP_FRAME(_p) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+12])
60200 +#define RTMP_SET_PACKET_5VT(_p, _flg) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+22] = _flg)
60201 +#define RTMP_GET_PACKET_5VT(_p) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+22])
60204 +#ifdef INF_AMAZON_SE
60205 +/*Iverson patch for WMM A5-T07 ,WirelessStaToWirelessSta do not bulk out aggregate */
60206 +#define RTMP_SET_PACKET_NOBULKOUT(_p, _morebit) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+23] = _morebit)
60207 +#define RTMP_GET_PACKET_NOBULKOUT(_p) (RTPKT_TO_OSPKT(_p)->cb[CB_OFF+23])
60208 +#endif // INF_AMAZON_SE //
60212 +#ifdef CONFIG_5VT_ENHANCE
60213 +#define BRIDGE_TAG 0x35564252 // depends on 5VT define in br_input.c
60217 +#define NDIS_SET_PACKET_STATUS(_p, _status)
60220 +#define GET_SG_LIST_FROM_PACKET(_p, _sc) \
60221 + rt_get_sg_list_from_packet(_p, _sc)
60223 +#define NdisMoveMemory(Destination, Source, Length) memmove(Destination, Source, Length)
60224 +#define NdisZeroMemory(Destination, Length) memset(Destination, 0, Length)
60225 +#define NdisFillMemory(Destination, Length, Fill) memset(Destination, Fill, Length)
60226 +#define NdisEqualMemory(Source1, Source2, Length) (!memcmp(Source1, Source2, Length))
60227 +#define RTMPEqualMemory(Source1, Source2, Length) (!memcmp(Source1, Source2, Length))
60230 +#define RTMP_INC_REF(_A) 0
60231 +#define RTMP_DEC_REF(_A) 0
60232 +#define RTMP_GET_REF(_A) 0
60238 + * RTMP_GetPhysicalAddressLow(
60239 + * IN NDIS_PHYSICAL_ADDRESS PhysicalAddress);
60241 +#define RTMP_GetPhysicalAddressLow(PhysicalAddress) (PhysicalAddress)
60245 + * RTMP_GetPhysicalAddressHigh(
60246 + * IN NDIS_PHYSICAL_ADDRESS PhysicalAddress);
60248 +#define RTMP_GetPhysicalAddressHigh(PhysicalAddress) (0)
60252 + * RTMP_SetPhysicalAddressLow(
60253 + * IN NDIS_PHYSICAL_ADDRESS PhysicalAddress,
60254 + * IN ULONG Value);
60256 +#define RTMP_SetPhysicalAddressLow(PhysicalAddress, Value) \
60257 + PhysicalAddress = Value;
60261 + * RTMP_SetPhysicalAddressHigh(
60262 + * IN NDIS_PHYSICAL_ADDRESS PhysicalAddress,
60263 + * IN ULONG Value);
60265 +#define RTMP_SetPhysicalAddressHigh(PhysicalAddress, Value)
60268 +//CONTAINING_RECORD(pEntry, NDIS_PACKET, MiniportReservedEx);
60269 +#define QUEUE_ENTRY_TO_PACKET(pEntry) \
60270 + (PNDIS_PACKET)(pEntry)
60272 +#define PACKET_TO_QUEUE_ENTRY(pPacket) \
60273 + (PQUEUE_ENTRY)(pPacket)
60276 +#ifndef CONTAINING_RECORD
60277 +#define CONTAINING_RECORD(address, type, field) \
60278 +((type *)((PCHAR)(address) - offsetof(type, field)))
60282 +#define RELEASE_NDIS_PACKET(_pAd, _pPacket, _Status) \
60284 + RTMPFreeNdisPacket(_pAd, _pPacket); \
60288 +#define SWITCH_PhyAB(_pAA, _pBB) \
60290 + ULONG AABasePaHigh; \
60291 + ULONG AABasePaLow; \
60292 + ULONG BBBasePaHigh; \
60293 + ULONG BBBasePaLow; \
60294 + BBBasePaHigh = RTMP_GetPhysicalAddressHigh(_pBB); \
60295 + BBBasePaLow = RTMP_GetPhysicalAddressLow(_pBB); \
60296 + AABasePaHigh = RTMP_GetPhysicalAddressHigh(_pAA); \
60297 + AABasePaLow = RTMP_GetPhysicalAddressLow(_pAA); \
60298 + RTMP_SetPhysicalAddressHigh(_pAA, BBBasePaHigh); \
60299 + RTMP_SetPhysicalAddressLow(_pAA, BBBasePaLow); \
60300 + RTMP_SetPhysicalAddressHigh(_pBB, AABasePaHigh); \
60301 + RTMP_SetPhysicalAddressLow(_pBB, AABasePaLow); \
60305 +#define NdisWriteErrorLogEntry(_a, _b, _c, _d)
60306 +#define NdisMAllocateMapRegisters(_a, _b, _c, _d, _e) NDIS_STATUS_SUCCESS
60309 +#define NdisAcquireSpinLock RTMP_SEM_LOCK
60310 +#define NdisReleaseSpinLock RTMP_SEM_UNLOCK
60312 +static inline void NdisGetSystemUpTime(ULONG *time)
60317 +//pPacket = CONTAINING_RECORD(pEntry, NDIS_PACKET, MiniportReservedEx);
60318 +#define QUEUE_ENTRY_TO_PKT(pEntry) \
60319 + ((PNDIS_PACKET) (pEntry))
60321 +int rt28xx_packet_xmit(struct sk_buff *skb);
60325 +void rtmp_os_thread_init(PUCHAR pThreadName, PVOID pNotify);
60330 +++ b/drivers/staging/rt3070/rt_main_dev.c
60333 + *************************************************************************
60334 + * Ralink Tech Inc.
60335 + * 5F., No.36, Taiyuan St., Jhubei City,
60336 + * Hsinchu County 302,
60339 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
60341 + * This program is free software; you can redistribute it and/or modify *
60342 + * it under the terms of the GNU General Public License as published by *
60343 + * the Free Software Foundation; either version 2 of the License, or *
60344 + * (at your option) any later version. *
60346 + * This program is distributed in the hope that it will be useful, *
60347 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
60348 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
60349 + * GNU General Public License for more details. *
60351 + * You should have received a copy of the GNU General Public License *
60352 + * along with this program; if not, write to the *
60353 + * Free Software Foundation, Inc., *
60354 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
60356 + *************************************************************************
60362 + Create and register network interface.
60364 + Revision History:
60366 + -------- ---------- ----------------------------------------------
60367 + Sample Mar/21/07 Merge RT2870 and RT2860 drivers.
60370 +#include "rt_config.h"
60372 +#define FORTY_MHZ_INTOLERANT_INTERVAL (60*1000) // 1 min
60374 +#ifdef MULTIPLE_CARD_SUPPORT
60375 +// record whether the card in the card list is used in the card file
60376 +UINT8 MC_CardUsed[MAX_NUM_OF_MULTIPLE_CARD];
60377 +// record used card mac address in the card list
60378 +static UINT8 MC_CardMac[MAX_NUM_OF_MULTIPLE_CARD][6];
60379 +#endif // MULTIPLE_CARD_SUPPORT //
60381 +#ifdef CONFIG_APSTA_MIXED_SUPPORT
60382 +UINT32 CW_MAX_IN_BITS;
60383 +#endif // CONFIG_APSTA_MIXED_SUPPORT //
60385 +/*---------------------------------------------------------------------*/
60386 +/* Private Variables Used */
60387 +/*---------------------------------------------------------------------*/
60388 +//static RALINK_TIMER_STRUCT PeriodicTimer;
60390 +char *mac = ""; // default 00:00:00:00:00:00
60391 +char *hostname = ""; // default CMPC
60392 +#if LINUX_VERSION_CODE <= KERNEL_VERSION(2,6,12)
60393 +MODULE_PARM (mac, "s");
60395 +module_param (mac, charp, 0);
60397 +MODULE_PARM_DESC (mac, "rt28xx: wireless mac addr");
60400 +/*---------------------------------------------------------------------*/
60401 +/* Prototypes of Functions Used */
60402 +/*---------------------------------------------------------------------*/
60403 +#ifdef DOT11_N_SUPPORT
60404 +extern BOOLEAN ba_reordering_resource_init(PRTMP_ADAPTER pAd, int num);
60405 +extern void ba_reordering_resource_release(PRTMP_ADAPTER pAd);
60406 +#endif // DOT11_N_SUPPORT //
60407 +extern NDIS_STATUS NICLoadRateSwitchingParams(IN PRTMP_ADAPTER pAd);
60410 +// public function prototype
60411 +INT __devinit rt28xx_probe(IN void *_dev_p, IN void *_dev_id_p,
60412 + IN UINT argc, OUT PRTMP_ADAPTER *ppAd);
60414 +// private function prototype
60415 +static int rt28xx_init(IN struct net_device *net_dev);
60416 +INT rt28xx_send_packets(IN struct sk_buff *skb_p, IN struct net_device *net_dev);
60418 +#if LINUX_VERSION_CODE <= 0x20402 // Red Hat 7.1
60419 +struct net_device *alloc_netdev(
60421 + const char *mask,
60422 + void (*setup)(struct net_device *));
60423 +#endif // LINUX_VERSION_CODE //
60425 +static void CfgInitHook(PRTMP_ADAPTER pAd);
60426 +//static BOOLEAN RT28XXAvailRANameAssign(IN CHAR *name_p);
60428 +#ifdef CONFIG_STA_SUPPORT
60429 +extern const struct iw_handler_def rt28xx_iw_handler_def;
60430 +#endif // CONFIG_STA_SUPPORT //
60432 +#ifdef CONFIG_APSTA_MIXED_SUPPORT
60433 +extern const struct iw_handler_def rt28xx_ap_iw_handler_def;
60434 +#endif // CONFIG_APSTA_MIXED_SUPPORT //
60436 +#if WIRELESS_EXT >= 12
60437 +// This function will be called when query /proc
60438 +struct iw_statistics *rt28xx_get_wireless_stats(
60439 + IN struct net_device *net_dev);
60442 +struct net_device_stats *RT28xx_get_ether_stats(
60443 + IN struct net_device *net_dev);
60446 +========================================================================
60447 +Routine Description:
60448 + Close raxx interface.
60451 + *net_dev the raxx interface pointer
60455 + otherwise Open Fail
60458 + 1. if open fail, kernel will not call the close function.
60459 + 2. Free memory for
60460 + (1) Mlme Memory Handler: MlmeHalt()
60461 + (2) TX & RX: RTMPFreeTxRxRingMemory()
60462 + (3) BA Reordering: ba_reordering_resource_release()
60463 +========================================================================
60465 +int MainVirtualIF_close(IN struct net_device *net_dev)
60467 + RTMP_ADAPTER *pAd = net_dev->ml_priv;
60469 + // Sanity check for pAd
60471 + return 0; // close ok
60473 + netif_carrier_off(pAd->net_dev);
60474 + netif_stop_queue(pAd->net_dev);
60478 + VIRTUAL_IF_DOWN(pAd);
60480 + RT_MOD_DEC_USE_COUNT();
60482 + return 0; // close ok
60486 +========================================================================
60487 +Routine Description:
60488 + Open raxx interface.
60491 + *net_dev the raxx interface pointer
60495 + otherwise Open Fail
60498 + 1. if open fail, kernel will not call the close function.
60499 + 2. Free memory for
60500 + (1) Mlme Memory Handler: MlmeHalt()
60501 + (2) TX & RX: RTMPFreeTxRxRingMemory()
60502 + (3) BA Reordering: ba_reordering_resource_release()
60503 +========================================================================
60505 +int MainVirtualIF_open(IN struct net_device *net_dev)
60507 + RTMP_ADAPTER *pAd = net_dev->ml_priv;
60509 + // Sanity check for pAd
60511 + return 0; // close ok
60513 + if (VIRTUAL_IF_UP(pAd) != 0)
60516 + // increase MODULE use count
60517 + RT_MOD_INC_USE_COUNT();
60519 + netif_start_queue(net_dev);
60520 + netif_carrier_on(net_dev);
60521 + netif_wake_queue(net_dev);
60527 +========================================================================
60528 +Routine Description:
60529 + Close raxx interface.
60532 + *net_dev the raxx interface pointer
60536 + otherwise Open Fail
60539 + 1. if open fail, kernel will not call the close function.
60540 + 2. Free memory for
60541 + (1) Mlme Memory Handler: MlmeHalt()
60542 + (2) TX & RX: RTMPFreeTxRxRingMemory()
60543 + (3) BA Reordering: ba_reordering_resource_release()
60544 +========================================================================
60546 +int rt28xx_close(IN PNET_DEV dev)
60548 + struct net_device * net_dev = (struct net_device *)dev;
60549 + RTMP_ADAPTER *pAd = net_dev->ml_priv;
60550 + BOOLEAN Cancelled = FALSE;
60553 + DECLARE_WAIT_QUEUE_HEAD(unlink_wakeup);
60554 + DECLARE_WAITQUEUE(wait, current);
60556 + //RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_REMOVE_IN_PROGRESS);
60557 +#endif // RT2870 //
60560 + DBGPRINT(RT_DEBUG_TRACE, ("===> rt28xx_close\n"));
60562 + // Sanity check for pAd
60564 + return 0; // close ok
60567 +#ifdef WDS_SUPPORT
60569 +#endif // WDS_SUPPORT //
60571 +#ifdef CONFIG_STA_SUPPORT
60572 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
60575 + // If dirver doesn't wake up firmware here,
60576 + // NICLoadFirmware will hang forever when interface is up again.
60577 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_DOZE))
60579 + AsicForceWakeup(pAd, TRUE);
60582 +#ifdef QOS_DLS_SUPPORT
60583 + // send DLS-TEAR_DOWN message,
60584 + if (pAd->CommonCfg.bDLSCapable)
60588 + // tear down local dls table entry
60589 + for (i=0; i<MAX_NUM_OF_INIT_DLS_ENTRY; i++)
60591 + if (pAd->StaCfg.DLSEntry[i].Valid && (pAd->StaCfg.DLSEntry[i].Status == DLS_FINISH))
60593 + RTMPSendDLSTearDownFrame(pAd, pAd->StaCfg.DLSEntry[i].MacAddr);
60594 + pAd->StaCfg.DLSEntry[i].Status = DLS_NONE;
60595 + pAd->StaCfg.DLSEntry[i].Valid = FALSE;
60599 + // tear down peer dls table entry
60600 + for (i=MAX_NUM_OF_INIT_DLS_ENTRY; i<MAX_NUM_OF_DLS_ENTRY; i++)
60602 + if (pAd->StaCfg.DLSEntry[i].Valid && (pAd->StaCfg.DLSEntry[i].Status == DLS_FINISH))
60604 + RTMPSendDLSTearDownFrame(pAd, pAd->StaCfg.DLSEntry[i].MacAddr);
60605 + pAd->StaCfg.DLSEntry[i].Status = DLS_NONE;
60606 + pAd->StaCfg.DLSEntry[i].Valid = FALSE;
60609 + RT28XX_MLME_HANDLER(pAd);
60611 +#endif // QOS_DLS_SUPPORT //
60613 + if (INFRA_ON(pAd) &&
60614 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_NIC_NOT_EXIST)))
60616 + MLME_DISASSOC_REQ_STRUCT DisReq;
60617 + MLME_QUEUE_ELEM *MsgElem = (MLME_QUEUE_ELEM *) kmalloc(sizeof(MLME_QUEUE_ELEM), MEM_ALLOC_FLAG);
60619 + COPY_MAC_ADDR(DisReq.Addr, pAd->CommonCfg.Bssid);
60620 + DisReq.Reason = REASON_DEAUTH_STA_LEAVING;
60622 + MsgElem->Machine = ASSOC_STATE_MACHINE;
60623 + MsgElem->MsgType = MT2_MLME_DISASSOC_REQ;
60624 + MsgElem->MsgLen = sizeof(MLME_DISASSOC_REQ_STRUCT);
60625 + NdisMoveMemory(MsgElem->Msg, &DisReq, sizeof(MLME_DISASSOC_REQ_STRUCT));
60627 + // Prevent to connect AP again in STAMlmePeriodicExec
60628 + pAd->MlmeAux.AutoReconnectSsidLen= 32;
60629 + NdisZeroMemory(pAd->MlmeAux.AutoReconnectSsid, pAd->MlmeAux.AutoReconnectSsidLen);
60631 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_OID_DISASSOC;
60632 + MlmeDisassocReqAction(pAd, MsgElem);
60635 + RTMPusecDelay(1000);
60639 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_REMOVE_IN_PROGRESS);
60640 +#endif // RT2870 //
60642 +#ifdef CCX_SUPPORT
60643 + RTMPCancelTimer(&pAd->StaCfg.LeapAuthTimer, &Cancelled);
60646 + RTMPCancelTimer(&pAd->StaCfg.StaQuickResponeForRateUpTimer, &Cancelled);
60647 + RTMPCancelTimer(&pAd->StaCfg.WpaDisassocAndBlockAssocTimer, &Cancelled);
60649 +#ifdef WPA_SUPPLICANT_SUPPORT
60650 +#ifndef NATIVE_WPA_SUPPLICANT_SUPPORT
60652 + union iwreq_data wrqu;
60653 + // send wireless event to wpa_supplicant for infroming interface down.
60654 + memset(&wrqu, 0, sizeof(wrqu));
60655 + wrqu.data.flags = RT_INTERFACE_DOWN;
60656 + wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, NULL);
60658 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
60659 +#endif // WPA_SUPPLICANT_SUPPORT //
60661 + MlmeRadioOff(pAd);
60663 +#endif // CONFIG_STA_SUPPORT //
60665 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS);
60667 + for (i = 0 ; i < NUM_OF_TX_RING; i++)
60669 + while (pAd->DeQueueRunning[i] == TRUE)
60671 + printk("Waiting for TxQueue[%d] done..........\n", i);
60672 + RTMPusecDelay(1000);
60677 + // ensure there are no more active urbs.
60678 + add_wait_queue (&unlink_wakeup, &wait);
60679 + pAd->wait = &unlink_wakeup;
60681 + // maybe wait for deletions to finish.
60683 + //while((i < 25) && atomic_read(&pAd->PendingRx) > 0)
60686 + unsigned long IrqFlags;
60688 + RTMP_IRQ_LOCK(&pAd->BulkInLock, IrqFlags);
60689 + if (pAd->PendingRx == 0)
60691 + RTMP_IRQ_UNLOCK(&pAd->BulkInLock, IrqFlags);
60694 + RTMP_IRQ_UNLOCK(&pAd->BulkInLock, IrqFlags);
60696 +#if LINUX_VERSION_CODE > KERNEL_VERSION(2,6,9)
60697 + msleep(UNLINK_TIMEOUT_MS); //Time in millisecond
60699 + RTMPusecDelay(UNLINK_TIMEOUT_MS*1000); //Time in microsecond
60703 + pAd->wait = NULL;
60704 + remove_wait_queue (&unlink_wakeup, &wait);
60705 +#endif // RT2870 //
60707 + //RTUSBCleanUpMLMEWaitQueue(pAd); /*not used in RT28xx*/
60711 + // We need clear timerQ related structure before exits of the timer thread.
60712 + RT2870_TimerQ_Exit(pAd);
60713 + // Close kernel threads or tasklets
60714 + RT28xxThreadTerminate(pAd);
60715 +#endif // RT2870 //
60717 + // Stop Mlme state machine
60720 + // Close kernel threads or tasklets
60721 + kill_thread_task(pAd);
60724 +#ifdef CONFIG_STA_SUPPORT
60725 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
60727 + MacTableReset(pAd);
60729 +#endif // CONFIG_STA_SUPPORT //
60732 + MeasureReqTabExit(pAd);
60733 + TpcReqTabExit(pAd);
60738 + // Free Ring or USB buffers
60739 + RTMPFreeTxRxRingMemory(pAd);
60741 + RTMP_CLEAR_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS);
60743 +#ifdef DOT11_N_SUPPORT
60744 + // Free BA reorder resource
60745 + ba_reordering_resource_release(pAd);
60746 +#endif // DOT11_N_SUPPORT //
60749 +#ifdef INF_AMAZON_SE
60750 + if (pAd->UsbVendorReqBuf)
60751 + os_free_mem(pAd, pAd->UsbVendorReqBuf);
60752 +#endif // INF_AMAZON_SE //
60753 +#endif // RT2870 //
60755 + RTMP_CLEAR_FLAG(pAd, fRTMP_ADAPTER_START_UP);
60757 + return 0; // close ok
60758 +} /* End of rt28xx_close */
60760 +static int rt28xx_init(IN struct net_device *net_dev)
60762 + PRTMP_ADAPTER pAd = net_dev->ml_priv;
60766 + NDIS_STATUS Status;
60767 +// OID_SET_HT_PHYMODE SetHT;
60768 +// WPDMA_GLO_CFG_STRUC GloCfg;
60769 + UINT32 MacCsr0 = 0;
60770 + UINT32 MacValue = 0;
60773 +#ifdef INF_AMAZON_SE
60774 + init_MUTEX(&(pAd->UsbVendorReq_semaphore));
60775 + os_alloc_mem(pAd, (PUCHAR)&pAd->UsbVendorReqBuf, MAX_PARAM_BUFFER_SIZE - 1);
60776 + if (pAd->UsbVendorReqBuf == NULL)
60778 + DBGPRINT(RT_DEBUG_ERROR, ("Allocate vendor request temp buffer failed!\n"));
60781 +#endif // INF_AMAZON_SE //
60782 +#endif // RT2870 //
60784 +#ifdef DOT11_N_SUPPORT
60785 + // Allocate BA Reordering memory
60786 + ba_reordering_resource_init(pAd, MAX_REORDERING_MPDU_NUM);
60787 +#endif // DOT11_N_SUPPORT //
60789 + // Make sure MAC gets ready.
60793 + RTMP_IO_READ32(pAd, MAC_CSR0, &MacCsr0);
60794 + pAd->MACVersion = MacCsr0;
60796 + if ((pAd->MACVersion != 0x00) && (pAd->MACVersion != 0xFFFFFFFF))
60799 + RTMPusecDelay(10);
60800 + } while (index++ < 100);
60802 + DBGPRINT(RT_DEBUG_TRACE, ("MAC_CSR0 [ Ver:Rev=0x%08x]\n", pAd->MACVersion));
60803 +/*Iverson patch PCIE L1 issue */
60806 + RT28XXDMADisable(pAd);
60809 + // Load 8051 firmware
60810 + Status = NICLoadFirmware(pAd);
60811 + if (Status != NDIS_STATUS_SUCCESS)
60813 + DBGPRINT_ERR(("NICLoadFirmware failed, Status[=0x%08x]\n", Status));
60817 + NICLoadRateSwitchingParams(pAd);
60819 + // Disable interrupts here which is as soon as possible
60820 + // This statement should never be true. We might consider to remove it later
60822 + Status = RTMPAllocTxRxRingMemory(pAd);
60823 + if (Status != NDIS_STATUS_SUCCESS)
60825 + DBGPRINT_ERR(("RTMPAllocDMAMemory failed, Status[=0x%08x]\n", Status));
60829 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_INTERRUPT_IN_USE);
60831 + // initialize MLME
60834 + Status = MlmeInit(pAd);
60835 + if (Status != NDIS_STATUS_SUCCESS)
60837 + DBGPRINT_ERR(("MlmeInit failed, Status[=0x%08x]\n", Status));
60841 + // Initialize pAd->StaCfg, pAd->ApCfg, pAd->CommonCfg to manufacture default
60843 + UserCfgInit(pAd);
60846 + // We need init timerQ related structure before create the timer thread.
60847 + RT2870_TimerQ_Init(pAd);
60848 +#endif // RT2870 //
60850 + RT28XX_TASK_THREAD_INIT(pAd, Status);
60851 + if (Status != NDIS_STATUS_SUCCESS)
60854 +// COPY_MAC_ADDR(pAd->ApCfg.MBSSID[apidx].Bssid, netif->hwaddr);
60855 +// pAd->bForcePrintTX = TRUE;
60857 + CfgInitHook(pAd);
60860 +#ifdef BLOCK_NET_IF
60861 + initblockQueueTab(pAd);
60862 +#endif // BLOCK_NET_IF //
60864 +#ifdef CONFIG_STA_SUPPORT
60865 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
60866 + NdisAllocateSpinLock(&pAd->MacTabLock);
60867 +#endif // CONFIG_STA_SUPPORT //
60869 + MeasureReqTabInit(pAd);
60870 + TpcReqTabInit(pAd);
60873 + // Init the hardware, we need to init asic before read registry, otherwise mac register will be reset
60875 + Status = NICInitializeAdapter(pAd, TRUE);
60876 + if (Status != NDIS_STATUS_SUCCESS)
60878 + DBGPRINT_ERR(("NICInitializeAdapter failed, Status[=0x%08x]\n", Status));
60879 + if (Status != NDIS_STATUS_SUCCESS)
60883 + // Read parameters from Config File
60884 + Status = RTMPReadParametersHook(pAd);
60886 + printk("1. Phy Mode = %d\n", pAd->CommonCfg.PhyMode);
60887 + if (Status != NDIS_STATUS_SUCCESS)
60889 + DBGPRINT_ERR(("NICReadRegParameters failed, Status[=0x%08x]\n",Status));
60894 + pAd->CommonCfg.bMultipleIRP = FALSE;
60896 + if (pAd->CommonCfg.bMultipleIRP)
60897 + pAd->CommonCfg.NumOfBulkInIRP = RX_RING_SIZE;
60899 + pAd->CommonCfg.NumOfBulkInIRP = 1;
60900 +#endif // RT2870 //
60903 + //Init Ba Capability parameters.
60904 +// RT28XX_BA_INIT(pAd);
60905 +#ifdef DOT11_N_SUPPORT
60906 + pAd->CommonCfg.DesiredHtPhy.MpduDensity = (UCHAR)pAd->CommonCfg.BACapability.field.MpduDensity;
60907 + pAd->CommonCfg.DesiredHtPhy.AmsduEnable = (USHORT)pAd->CommonCfg.BACapability.field.AmsduEnable;
60908 + pAd->CommonCfg.DesiredHtPhy.AmsduSize = (USHORT)pAd->CommonCfg.BACapability.field.AmsduSize;
60909 + pAd->CommonCfg.DesiredHtPhy.MimoPs = (USHORT)pAd->CommonCfg.BACapability.field.MMPSmode;
60910 + // UPdata to HT IE
60911 + pAd->CommonCfg.HtCapability.HtCapInfo.MimoPs = (USHORT)pAd->CommonCfg.BACapability.field.MMPSmode;
60912 + pAd->CommonCfg.HtCapability.HtCapInfo.AMsduSize = (USHORT)pAd->CommonCfg.BACapability.field.AmsduSize;
60913 + pAd->CommonCfg.HtCapability.HtCapParm.MpduDensity = (UCHAR)pAd->CommonCfg.BACapability.field.MpduDensity;
60914 +#endif // DOT11_N_SUPPORT //
60916 + // after reading Registry, we now know if in AP mode or STA mode
60918 + // Load 8051 firmware; crash when FW image not existent
60919 + // Status = NICLoadFirmware(pAd);
60920 + // if (Status != NDIS_STATUS_SUCCESS)
60923 + printk("2. Phy Mode = %d\n", pAd->CommonCfg.PhyMode);
60925 + // We should read EEPROM for all cases. rt2860b
60926 + NICReadEEPROMParameters(pAd, mac);
60927 +#ifdef CONFIG_STA_SUPPORT
60928 +#endif // CONFIG_STA_SUPPORT //
60930 + printk("3. Phy Mode = %d\n", pAd->CommonCfg.PhyMode);
60932 + NICInitAsicFromEEPROM(pAd); //rt2860b
60934 + // Set PHY to appropriate mode
60935 + TmpPhy = pAd->CommonCfg.PhyMode;
60936 + pAd->CommonCfg.PhyMode = 0xff;
60937 + RTMPSetPhyMode(pAd, TmpPhy);
60938 +#ifdef DOT11_N_SUPPORT
60939 + SetCommonHT(pAd);
60940 +#endif // DOT11_N_SUPPORT //
60942 + // No valid channels.
60943 + if (pAd->ChannelListNum == 0)
60945 + printk("Wrong configuration. No valid channel found. Check \"ContryCode\" and \"ChannelGeography\" setting.\n");
60949 +#ifdef DOT11_N_SUPPORT
60950 + printk("MCS Set = %02x %02x %02x %02x %02x\n", pAd->CommonCfg.HtCapability.MCSSet[0],
60951 + pAd->CommonCfg.HtCapability.MCSSet[1], pAd->CommonCfg.HtCapability.MCSSet[2],
60952 + pAd->CommonCfg.HtCapability.MCSSet[3], pAd->CommonCfg.HtCapability.MCSSet[4]);
60953 +#endif // DOT11_N_SUPPORT //
60956 + //Init RT30xx RFRegisters after read RFIC type from EEPROM
60957 + NICInitRT30xxRFRegisters(pAd);
60958 +#endif // RT30xx //
60960 +// APInitialize(pAd);
60962 +#ifdef IKANOS_VX_1X0
60963 + VR_IKANOS_FP_Init(pAd->ApCfg.BssidNum, pAd->PermanentAddress);
60964 +#endif // IKANOS_VX_1X0 //
60967 + // Initialize RF register to default value
60969 + AsicSwitchChannel(pAd, pAd->CommonCfg.Channel, FALSE);
60970 + AsicLockChannel(pAd, pAd->CommonCfg.Channel);
60972 + if (pAd && (Status != NDIS_STATUS_SUCCESS))
60975 + // Undo everything if it failed
60977 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_INTERRUPT_IN_USE))
60979 +// NdisMDeregisterInterrupt(&pAd->Interrupt);
60980 + RTMP_CLEAR_FLAG(pAd, fRTMP_ADAPTER_INTERRUPT_IN_USE);
60982 +// RTMPFreeAdapter(pAd); // we will free it in disconnect()
60986 + // Microsoft HCT require driver send a disconnect event after driver initialization.
60987 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED);
60988 +// pAd->IndicateMediaState = NdisMediaStateDisconnected;
60989 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_MEDIA_STATE_CHANGE);
60991 + DBGPRINT(RT_DEBUG_TRACE, ("NDIS_STATUS_MEDIA_DISCONNECT Event B!\n"));
60995 + RTMP_CLEAR_FLAG(pAd, fRTMP_ADAPTER_RESET_IN_PROGRESS);
60996 + RTMP_CLEAR_FLAG(pAd, fRTMP_ADAPTER_REMOVE_IN_PROGRESS);
60999 + // Support multiple BulkIn IRP,
61000 + // the value on pAd->CommonCfg.NumOfBulkInIRP may be large than 1.
61002 + for(index=0; index<pAd->CommonCfg.NumOfBulkInIRP; index++)
61004 + RTUSBBulkReceive(pAd);
61005 + DBGPRINT(RT_DEBUG_TRACE, ("RTUSBBulkReceive!\n" ));
61007 +#endif // RT2870 //
61011 + DBGPRINT_S(Status, ("<==== RTMPInitialize, Status=%x\n", Status));
61020 + RTMPFreeTxRxRingMemory(pAd);
61021 +// RTMPFreeAdapter(pAd);
61024 +#ifdef DOT11_N_SUPPORT
61025 + os_free_mem(pAd, pAd->mpdu_blk_pool.mem); // free BA pool
61026 +#endif // DOT11_N_SUPPORT //
61027 + RT28XX_IRQ_RELEASE(net_dev);
61029 + // shall not set priv to NULL here because the priv didn't been free yet.
61030 + //net_dev->ml_priv = 0;
61031 +#ifdef INF_AMAZON_SE
61033 +#endif // INF_AMAZON_SE //
61034 + printk("!!! %s Initialized fail !!!\n", RT28xx_CHIP_NAME);
61036 +} /* End of rt28xx_init */
61040 +========================================================================
61041 +Routine Description:
61042 + Open raxx interface.
61045 + *net_dev the raxx interface pointer
61049 + otherwise Open Fail
61052 +========================================================================
61054 +int rt28xx_open(IN PNET_DEV dev)
61056 + struct net_device * net_dev = (struct net_device *)dev;
61057 + PRTMP_ADAPTER pAd = net_dev->ml_priv;
61062 + // Sanity check for pAd
61065 + /* if 1st open fail, pAd will be free;
61066 + So the net_dev->ml_priv will be NULL in 2rd open */
61070 +#ifdef CONFIG_APSTA_MIXED_SUPPORT
61071 + if (pAd->OpMode == OPMODE_AP)
61073 + CW_MAX_IN_BITS = 6;
61075 + else if (pAd->OpMode == OPMODE_STA)
61077 + CW_MAX_IN_BITS = 10;
61080 +#if WIRELESS_EXT >= 12
61081 + if (net_dev->ml_priv_flags == INT_MAIN)
61083 + if (pAd->OpMode == OPMODE_AP)
61084 + net_dev->wireless_handlers = (struct iw_handler_def *) &rt28xx_ap_iw_handler_def;
61085 + else if (pAd->OpMode == OPMODE_STA)
61086 + net_dev->wireless_handlers = (struct iw_handler_def *) &rt28xx_iw_handler_def;
61088 +#endif // WIRELESS_EXT >= 12 //
61089 +#endif // CONFIG_APSTA_MIXED_SUPPORT //
61091 +#ifdef CONFIG_STA_SUPPORT
61092 +#endif // CONFIG_STA_SUPPORT //
61095 + pObj = (POS_COOKIE)pAd->OS_Cookie;
61097 + // reset Adapter flags
61098 + RTMP_CLEAR_FLAGS(pAd);
61100 + // Request interrupt service routine for PCI device
61101 + // register the interrupt routine with the os
61102 + RT28XX_IRQ_REQUEST(net_dev);
61105 + // Init BssTab & ChannelInfo tabbles for auto channel select.
61108 + // Chip & other init
61109 + if (rt28xx_init(net_dev) == FALSE)
61112 +#ifdef CONFIG_STA_SUPPORT
61113 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
61115 + NdisZeroMemory(pAd->StaCfg.dev_name, 16);
61116 + NdisMoveMemory(pAd->StaCfg.dev_name, net_dev->name, strlen(net_dev->name));
61118 +#endif // CONFIG_STA_SUPPORT //
61120 + // Set up the Mac address
61121 + NdisMoveMemory(net_dev->dev_addr, (void *) pAd->CurrentAddress, 6);
61123 + // Init IRQ parameters
61124 + RT28XX_IRQ_INIT(pAd);
61126 + // Various AP function init
61130 +#ifdef CONFIG_STA_SUPPORT
61131 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
61133 +#ifdef WPA_SUPPLICANT_SUPPORT
61134 +#ifndef NATIVE_WPA_SUPPLICANT_SUPPORT
61136 + union iwreq_data wrqu;
61137 + // send wireless event to wpa_supplicant for infroming interface down.
61138 + memset(&wrqu, 0, sizeof(wrqu));
61139 + wrqu.data.flags = RT_INTERFACE_UP;
61140 + wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, NULL);
61142 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
61143 +#endif // WPA_SUPPLICANT_SUPPORT //
61146 +#endif // CONFIG_STA_SUPPORT //
61148 + // Enable Interrupt
61149 + RT28XX_IRQ_ENABLE(pAd);
61151 + // Now Enable RxTx
61152 + RTMPEnableRxTx(pAd);
61153 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_START_UP);
61157 + RTMP_IO_READ32(pAd, 0x1300, ®); // clear garbage interrupts
61158 + printk("0x1300 = %08x\n", reg);
61166 +// RTMP_IO_READ32(pAd, XIFS_TIME_CFG, ®);
61169 +// reg = (reg & 0xffff0000) | tmp;
61170 +// RTMP_IO_WRITE32(pAd, XIFS_TIME_CFG, reg);
61174 +#ifdef CONFIG_STA_SUPPORT
61175 +#endif // CONFIG_STA_SUPPORT //
61181 +} /* End of rt28xx_open */
61184 +/* Must not be called for mdev and apdev */
61185 +static NDIS_STATUS rt_ieee80211_if_setup(struct net_device *dev, PRTMP_ADAPTER pAd)
61187 + NDIS_STATUS Status;
61189 + CHAR slot_name[IFNAMSIZ];
61190 + struct net_device *device;
61193 + //ether_setup(dev);
61194 + dev->hard_start_xmit = rt28xx_send_packets;
61196 +#ifdef IKANOS_VX_1X0
61197 + dev->hard_start_xmit = IKANOS_DataFramesTx;
61198 +#endif // IKANOS_VX_1X0 //
61200 +// dev->set_multicast_list = ieee80211_set_multicast_list;
61201 +// dev->change_mtu = ieee80211_change_mtu;
61202 +#ifdef CONFIG_STA_SUPPORT
61203 +#if WIRELESS_EXT >= 12
61204 + if (pAd->OpMode == OPMODE_STA)
61206 + dev->wireless_handlers = &rt28xx_iw_handler_def;
61208 +#endif //WIRELESS_EXT >= 12
61209 +#endif // CONFIG_STA_SUPPORT //
61211 +#ifdef CONFIG_APSTA_MIXED_SUPPORT
61212 +#if WIRELESS_EXT >= 12
61213 + if (pAd->OpMode == OPMODE_AP)
61215 + dev->wireless_handlers = &rt28xx_ap_iw_handler_def;
61217 +#endif //WIRELESS_EXT >= 12
61218 +#endif // CONFIG_APSTA_MIXED_SUPPORT //
61220 +#if WIRELESS_EXT < 21
61221 + dev->get_wireless_stats = rt28xx_get_wireless_stats;
61223 + dev->get_stats = RT28xx_get_ether_stats;
61224 + dev->open = MainVirtualIF_open; //rt28xx_open;
61225 + dev->stop = MainVirtualIF_close; //rt28xx_close;
61226 +// dev->uninit = ieee80211_if_reinit;
61227 +// dev->destructor = ieee80211_if_free;
61228 + dev->priv_flags = INT_MAIN;
61229 + dev->do_ioctl = rt28xx_ioctl;
61230 +#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,6,24)
61231 + dev->validate_addr = NULL;
61233 + // find available device name
61234 + for (i = 0; i < 8; i++)
61236 +#ifdef MULTIPLE_CARD_SUPPORT
61237 + if (pAd->MC_RowID >= 0)
61238 + sprintf(slot_name, "ra%02d_%d", pAd->MC_RowID, i);
61240 +#endif // MULTIPLE_CARD_SUPPORT //
61241 + sprintf(slot_name, "ra%d", i);
61243 +#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,5,0)
61244 +#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,6,24)
61245 +#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,6,26)
61246 + device = dev_get_by_name(dev_net(dev), slot_name);
61248 + device = dev_get_by_name(dev->nd_net, slot_name);
61251 + device = dev_get_by_name(slot_name);
61253 + if (device != NULL) dev_put(device);
61255 + for (device = dev_base; device != NULL; device = device->next)
61257 + if (strncmp(device->name, slot_name, 4) == 0)
61261 + if(device == NULL)
61267 + DBGPRINT(RT_DEBUG_ERROR, ("No available slot name\n"));
61268 + Status = NDIS_STATUS_FAILURE;
61272 +#ifdef MULTIPLE_CARD_SUPPORT
61273 + if (pAd->MC_RowID >= 0)
61274 + sprintf(dev->name, "ra%02d_%d", pAd->MC_RowID, i);
61276 +#endif // MULTIPLE_CARD_SUPPORT //
61277 + sprintf(dev->name, "ra%d", i);
61278 + Status = NDIS_STATUS_SUCCESS;
61286 +#ifdef MULTIPLE_CARD_SUPPORT
61288 +========================================================================
61289 +Routine Description:
61290 + Get card profile path.
61296 + TRUE - Find a card profile
61297 + FALSE - use default profile
61300 +========================================================================
61302 +extern INT RTMPGetKeyParameter(
61306 + IN PCHAR buffer);
61308 +BOOLEAN RTMP_CardInfoRead(
61309 + IN PRTMP_ADAPTER pAd)
61311 +#define MC_SELECT_CARDID 0 /* use CARD ID (0 ~ 31) to identify different cards */
61312 +#define MC_SELECT_MAC 1 /* use CARD MAC to identify different cards */
61313 +#define MC_SELECT_CARDTYPE 2 /* use CARD type (abgn or bgn) to identify different cards */
61315 +#define LETTER_CASE_TRANSLATE(txt_p, card_id) \
61316 + { UINT32 _len; char _char; \
61317 + for(_len=0; _len<strlen(card_id); _len++) { \
61318 + _char = *(txt_p + _len); \
61319 + if (('A' <= _char) && (_char <= 'Z')) \
61320 + *(txt_p+_len) = 'a'+(_char-'A'); \
61323 + struct file *srcf;
61324 + INT retval, orgfsuid, orgfsgid;
61325 + mm_segment_t orgfs;
61326 + CHAR *buffer, *tmpbuf, card_id_buf[30], RFIC_word[30];
61327 + BOOLEAN flg_match_ok = FALSE;
61328 + INT32 card_select_method;
61329 + INT32 card_free_id, card_nouse_id, card_same_mac_id, card_match_id;
61330 + EEPROM_ANTENNA_STRUC antenna;
61331 + USHORT addr01, addr23, addr45;
61333 + UINT32 data, card_index;
61334 + UCHAR *start_ptr;
61338 + buffer = kmalloc(MAX_INI_BUFFER_SIZE, MEM_ALLOC_FLAG);
61339 + if (buffer == NULL)
61342 + tmpbuf = kmalloc(MAX_PARAM_BUFFER_SIZE, MEM_ALLOC_FLAG);
61343 + if(tmpbuf == NULL)
61346 + return NDIS_STATUS_FAILURE;
61349 + orgfsuid = current->fsuid;
61350 + orgfsgid = current->fsgid;
61351 + current->fsuid = current->fsgid = 0;
61352 + orgfs = get_fs();
61353 + set_fs(KERNEL_DS);
61355 + // get RF IC type
61356 + RTMP_IO_READ32(pAd, E2PROM_CSR, &data);
61358 + if ((data & 0x30) == 0)
61359 + pAd->EEPROMAddressNum = 6; // 93C46
61360 + else if ((data & 0x30) == 0x10)
61361 + pAd->EEPROMAddressNum = 8; // 93C66
61363 + pAd->EEPROMAddressNum = 8; // 93C86
61365 + //antenna.word = RTMP_EEPROM_READ16(pAd, EEPROM_NIC1_OFFSET);
61366 + RT28xx_EEPROM_READ16(pAd, EEPROM_NIC1_OFFSET, antenna.word);
61368 + if ((antenna.field.RfIcType == RFIC_2850) ||
61369 + (antenna.field.RfIcType == RFIC_2750))
61372 + strcpy(RFIC_word, "abgn");
61377 + strcpy(RFIC_word, "bgn");
61380 + // get MAC address
61381 + //addr01 = RTMP_EEPROM_READ16(pAd, 0x04);
61382 + //addr23 = RTMP_EEPROM_READ16(pAd, 0x06);
61383 + //addr45 = RTMP_EEPROM_READ16(pAd, 0x08);
61384 + RT28xx_EEPROM_READ16(pAd, 0x04, addr01);
61385 + RT28xx_EEPROM_READ16(pAd, 0x06, addr23);
61386 + RT28xx_EEPROM_READ16(pAd, 0x08, addr45);
61388 + mac[0] = (UCHAR)(addr01 & 0xff);
61389 + mac[1] = (UCHAR)(addr01 >> 8);
61390 + mac[2] = (UCHAR)(addr23 & 0xff);
61391 + mac[3] = (UCHAR)(addr23 >> 8);
61392 + mac[4] = (UCHAR)(addr45 & 0xff);
61393 + mac[5] = (UCHAR)(addr45 >> 8);
61395 + // open card information file
61396 + srcf = filp_open(CARD_INFO_PATH, O_RDONLY, 0);
61397 + if (IS_ERR(srcf))
61399 + /* card information file does not exist */
61400 + DBGPRINT(RT_DEBUG_TRACE,
61401 + ("--> Error %ld opening %s\n", -PTR_ERR(srcf), CARD_INFO_PATH));
61405 + if (srcf->f_op && srcf->f_op->read)
61407 + /* card information file exists so reading the card information */
61408 + memset(buffer, 0x00, MAX_INI_BUFFER_SIZE);
61409 + retval = srcf->f_op->read(srcf, buffer, MAX_INI_BUFFER_SIZE, &srcf->f_pos);
61413 + DBGPRINT(RT_DEBUG_TRACE,
61414 + ("--> Read %s error %d\n", CARD_INFO_PATH, -retval));
61418 + /* get card selection method */
61419 + memset(tmpbuf, 0x00, MAX_PARAM_BUFFER_SIZE);
61420 + card_select_method = MC_SELECT_CARDTYPE; // default
61422 + if (RTMPGetKeyParameter("SELECT", tmpbuf, 256, buffer))
61424 + if (strcmp(tmpbuf, "CARDID") == 0)
61425 + card_select_method = MC_SELECT_CARDID;
61426 + else if (strcmp(tmpbuf, "MAC") == 0)
61427 + card_select_method = MC_SELECT_MAC;
61428 + else if (strcmp(tmpbuf, "CARDTYPE") == 0)
61429 + card_select_method = MC_SELECT_CARDTYPE;
61432 + DBGPRINT(RT_DEBUG_TRACE,
61433 + ("MC> Card Selection = %d\n", card_select_method));
61436 + card_free_id = -1;
61437 + card_nouse_id = -1;
61438 + card_same_mac_id = -1;
61439 + card_match_id = -1;
61441 + // search current card information records
61442 + for(card_index=0;
61443 + card_index<MAX_NUM_OF_MULTIPLE_CARD;
61446 + if ((*(UINT32 *)&MC_CardMac[card_index][0] == 0) &&
61447 + (*(UINT16 *)&MC_CardMac[card_index][4] == 0))
61449 + // MAC is all-0 so the entry is available
61450 + MC_CardUsed[card_index] = 0;
61452 + if (card_free_id < 0)
61453 + card_free_id = card_index; // 1st free entry
61457 + if (memcmp(MC_CardMac[card_index], mac, 6) == 0)
61459 + // we find the entry with same MAC
61460 + if (card_same_mac_id < 0)
61461 + card_same_mac_id = card_index; // 1st same entry
61465 + // MAC is not all-0 but used flag == 0
61466 + if ((MC_CardUsed[card_index] == 0) &&
61467 + (card_nouse_id < 0))
61469 + card_nouse_id = card_index; // 1st available entry
61475 + DBGPRINT(RT_DEBUG_TRACE,
61476 + ("MC> Free = %d, Same = %d, NOUSE = %d\n",
61477 + card_free_id, card_same_mac_id, card_nouse_id));
61479 + if ((card_same_mac_id >= 0) &&
61480 + ((card_select_method == MC_SELECT_CARDID) ||
61481 + (card_select_method == MC_SELECT_CARDTYPE)))
61483 + // same MAC entry is found
61484 + card_match_id = card_same_mac_id;
61486 + if (card_select_method == MC_SELECT_CARDTYPE)
61489 + sprintf(card_id_buf, "%02dCARDTYPE%s",
61490 + card_match_id, RFIC_word);
61492 + if ((start_ptr=rtstrstruncasecmp(buffer, card_id_buf)) != NULL)
61494 + // we found the card ID
61495 + LETTER_CASE_TRANSLATE(start_ptr, card_id_buf);
61501 + // the card is 1st plug-in, try to find the match card profile
61502 + switch(card_select_method)
61504 + case MC_SELECT_CARDID: // CARDID
61506 + if (card_free_id >= 0)
61507 + card_match_id = card_free_id;
61509 + card_match_id = card_nouse_id;
61512 + case MC_SELECT_MAC: // MAC
61513 + sprintf(card_id_buf, "MAC%02x:%02x:%02x:%02x:%02x:%02x",
61514 + mac[0], mac[1], mac[2],
61515 + mac[3], mac[4], mac[5]);
61517 + /* try to find the key word in the card file */
61518 + if ((start_ptr=rtstrstruncasecmp(buffer, card_id_buf)) != NULL)
61520 + LETTER_CASE_TRANSLATE(start_ptr, card_id_buf);
61522 + /* get the row ID (2 ASCII characters) */
61524 + card_id_buf[0] = *(start_ptr);
61525 + card_id_buf[1] = *(start_ptr+1);
61526 + card_id_buf[2] = 0x00;
61528 + card_match_id = simple_strtol(card_id_buf, 0, 10);
61532 + case MC_SELECT_CARDTYPE: // CARDTYPE
61533 + card_nouse_id = -1;
61535 + for(card_index=0;
61536 + card_index<MAX_NUM_OF_MULTIPLE_CARD;
61539 + sprintf(card_id_buf, "%02dCARDTYPE%s",
61540 + card_index, RFIC_word);
61542 + if ((start_ptr=rtstrstruncasecmp(buffer,
61543 + card_id_buf)) != NULL)
61545 + LETTER_CASE_TRANSLATE(start_ptr, card_id_buf);
61547 + if (MC_CardUsed[card_index] == 0)
61549 + /* current the card profile is not used */
61550 + if ((*(UINT32 *)&MC_CardMac[card_index][0] == 0) &&
61551 + (*(UINT16 *)&MC_CardMac[card_index][4] == 0))
61553 + // find it and no previous card use it
61554 + card_match_id = card_index;
61559 + // ever a card use it
61560 + if (card_nouse_id < 0)
61561 + card_nouse_id = card_index;
61567 + // if not find a free one, use the available one
61568 + if (card_match_id < 0)
61569 + card_match_id = card_nouse_id;
61574 + if (card_match_id >= 0)
61576 + // make up search keyword
61577 + switch(card_select_method)
61579 + case MC_SELECT_CARDID: // CARDID
61580 + sprintf(card_id_buf, "%02dCARDID", card_match_id);
61583 + case MC_SELECT_MAC: // MAC
61584 + sprintf(card_id_buf,
61585 + "%02dmac%02x:%02x:%02x:%02x:%02x:%02x",
61587 + mac[0], mac[1], mac[2],
61588 + mac[3], mac[4], mac[5]);
61591 + case MC_SELECT_CARDTYPE: // CARDTYPE
61593 + sprintf(card_id_buf, "%02dcardtype%s",
61594 + card_match_id, RFIC_word);
61598 + DBGPRINT(RT_DEBUG_TRACE, ("Search Keyword = %s\n", card_id_buf));
61600 + // read card file path
61601 + if (RTMPGetKeyParameter(card_id_buf, tmpbuf, 256, buffer))
61603 + if (strlen(tmpbuf) < sizeof(pAd->MC_FileName))
61605 + // backup card information
61606 + pAd->MC_RowID = card_match_id; /* base 0 */
61607 + MC_CardUsed[card_match_id] = 1;
61608 + memcpy(MC_CardMac[card_match_id], mac, sizeof(mac));
61610 + // backup card file path
61611 + NdisMoveMemory(pAd->MC_FileName, tmpbuf , strlen(tmpbuf));
61612 + pAd->MC_FileName[strlen(tmpbuf)] = '\0';
61613 + flg_match_ok = TRUE;
61615 + DBGPRINT(RT_DEBUG_TRACE,
61616 + ("Card Profile Name = %s\n", pAd->MC_FileName));
61620 + DBGPRINT(RT_DEBUG_ERROR,
61621 + ("Card Profile Name length too large!\n"));
61626 + DBGPRINT(RT_DEBUG_ERROR,
61627 + ("Can not find search key word in card.dat!\n"));
61630 + if ((flg_match_ok != TRUE) &&
61631 + (card_match_id < MAX_NUM_OF_MULTIPLE_CARD))
61633 + MC_CardUsed[card_match_id] = 0;
61634 + memset(MC_CardMac[card_match_id], 0, sizeof(mac));
61636 + } // if (card_match_id >= 0)
61641 + retval = filp_close(srcf, NULL);
61643 + current->fsuid = orgfsuid;
61644 + current->fsgid = orgfsgid;
61647 + return flg_match_ok;
61649 +#endif // MULTIPLE_CARD_SUPPORT //
61653 +========================================================================
61654 +Routine Description:
61655 + Probe RT28XX chipset.
61658 + _dev_p Point to the PCI or USB device
61659 + _dev_id_p Point to the PCI or USB device ID
61663 + -ENODEV Probe Fail
61666 +========================================================================
61668 +INT __devinit rt28xx_probe(
61670 + IN void *_dev_id_p,
61672 + OUT PRTMP_ADAPTER *ppAd)
61674 + struct net_device *net_dev;
61675 + PRTMP_ADAPTER pAd = (PRTMP_ADAPTER) NULL;
61679 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,5,0) /* kernel 2.4 series */
61680 + struct usb_device *dev_p = (struct usb_device *)_dev_p;
61682 + struct usb_interface *intf = (struct usb_interface *)_dev_p;
61683 + struct usb_device *dev_p = interface_to_usbdev(intf);
61685 + dev_p = usb_get_dev(dev_p);
61686 +#endif // LINUX_VERSION_CODE //
61687 +#endif // RT2870 //
61690 +#ifdef CONFIG_STA_SUPPORT
61691 + DBGPRINT(RT_DEBUG_TRACE, ("STA Driver version-%s\n", STA_DRIVER_VERSION));
61692 +#endif // CONFIG_STA_SUPPORT //
61694 + // Check chipset vendor/product ID
61695 +// if (RT28XXChipsetCheck(_dev_p) == FALSE)
61698 +#if LINUX_VERSION_CODE <= 0x20402 // Red Hat 7.1
61699 + net_dev = alloc_netdev(sizeof(PRTMP_ADAPTER), "eth%d", ether_setup);
61701 + net_dev = alloc_etherdev(sizeof(PRTMP_ADAPTER));
61703 + if (net_dev == NULL)
61705 + printk("alloc_netdev failed\n");
61707 +#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,5,0)
61708 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,6,15)
61709 + module_put(THIS_MODULE);
61710 +#endif //LINUX_VERSION_CODE < KERNEL_VERSION(2,6,15)
61712 + MOD_DEC_USE_COUNT;
61718 +// if (rt_ieee80211_if_setup(net_dev) != NDIS_STATUS_SUCCESS)
61721 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,6,24)
61722 + SET_MODULE_OWNER(net_dev);
61725 + netif_stop_queue(net_dev);
61726 +#ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
61727 +/* for supporting Network Manager */
61728 +/* Set the sysfs physical device reference for the network logical device
61729 + * if set prior to registration will cause a symlink during initialization.
61731 +#if (LINUX_VERSION_CODE >= KERNEL_VERSION(2,6,0))
61732 + SET_NETDEV_DEV(net_dev, &(dev_p->dev));
61734 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
61736 + // Allocate RTMP_ADAPTER miniport adapter structure
61737 + handle = kmalloc(sizeof(struct os_cookie), GFP_KERNEL);
61738 + RT28XX_HANDLE_DEV_ASSIGN(handle, dev_p);
61740 + status = RTMPAllocAdapterBlock(handle, &pAd);
61741 + if (status != NDIS_STATUS_SUCCESS)
61742 + goto err_out_free_netdev;
61744 + net_dev->ml_priv = (PVOID)pAd;
61745 + pAd->net_dev = net_dev; // must be before RT28XXNetDevInit()
61747 + RT28XXNetDevInit(_dev_p, net_dev, pAd);
61749 +#ifdef CONFIG_STA_SUPPORT
61750 + pAd->StaCfg.OriDevType = net_dev->type;
61751 +#endif // CONFIG_STA_SUPPORT //
61753 + // Find and assign a free interface name, raxx
61754 +// RT28XXAvailRANameAssign(net_dev->name);
61757 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,5,0)
61758 + if (RT28XXProbePostConfig(_dev_p, pAd, argc) == FALSE)
61759 + goto err_out_unmap;
61761 + if (RT28XXProbePostConfig(_dev_p, pAd, 0) == FALSE)
61762 + goto err_out_unmap;
61763 +#endif // LINUX_VERSION_CODE //
61765 +#ifdef CONFIG_STA_SUPPORT
61766 + pAd->OpMode = OPMODE_STA;
61767 +#endif // CONFIG_STA_SUPPORT //
61770 +#ifdef MULTIPLE_CARD_SUPPORT
61771 + // find its profile path
61772 + pAd->MC_RowID = -1; // use default profile path
61773 + RTMP_CardInfoRead(pAd);
61775 + if (pAd->MC_RowID == -1)
61776 +#ifdef CONFIG_STA_SUPPORT
61777 + strcpy(pAd->MC_FileName, STA_PROFILE_PATH);
61778 +#endif // CONFIG_STA_SUPPORT //
61780 + DBGPRINT(RT_DEBUG_TRACE,
61781 + ("MC> ROW = %d, PATH = %s\n", pAd->MC_RowID, pAd->MC_FileName));
61782 +#endif // MULTIPLE_CARD_SUPPORT //
61785 + if (rt_ieee80211_if_setup(net_dev, pAd) != NDIS_STATUS_SUCCESS)
61786 + goto err_out_unmap;
61788 + // Register this device
61789 + status = register_netdev(net_dev);
61791 + goto err_out_unmap;
61793 + // Set driver data
61794 + RT28XX_DRVDATA_SET(_dev_p);
61799 + return 0; // probe ok
61802 + /* --------------------------- ERROR HANDLE --------------------------- */
61804 + RTMPFreeAdapter(pAd);
61807 +err_out_free_netdev:
61808 +#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,5,0)
61809 + free_netdev(net_dev);
61815 + RT28XX_PUT_DEVICE(dev_p);
61817 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,5,0)
61818 + return (LONG)NULL;
61820 + return -ENODEV; /* probe fail */
61821 +#endif // LINUX_VERSION_CODE //
61822 +} /* End of rt28xx_probe */
61826 +========================================================================
61827 +Routine Description:
61828 + The entry point for Linux kernel sent packet to our driver.
61831 + sk_buff *skb the pointer refer to a sk_buffer.
61837 + This function is the entry point of Tx Path for Os delivery packet to
61838 + our driver. You only can put OS-depened & STA/AP common handle procedures
61840 +========================================================================
61842 +int rt28xx_packet_xmit(struct sk_buff *skb)
61844 + struct net_device *net_dev = skb->dev;
61845 + PRTMP_ADAPTER pAd = net_dev->ml_priv;
61847 + PNDIS_PACKET pPacket = (PNDIS_PACKET) skb;
61849 + /* RT2870STA does this in RTMPSendPackets() */
61853 + RELEASE_NDIS_PACKET(pAd, pPacket, NDIS_STATUS_RESOURCES);
61856 +#endif // RALINK_ATE //
61858 +#ifdef CONFIG_STA_SUPPORT
61859 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
61861 + // Drop send request since we are in monitor mode
61862 + if (MONITOR_ON(pAd))
61864 + RELEASE_NDIS_PACKET(pAd, pPacket, NDIS_STATUS_FAILURE);
61868 +#endif // CONFIG_STA_SUPPORT //
61870 + // EapolStart size is 18
61871 + if (skb->len < 14)
61873 + //printk("bad packet size: %d\n", pkt->len);
61874 + hex_dump("bad packet", skb->data, skb->len);
61875 + RELEASE_NDIS_PACKET(pAd, pPacket, NDIS_STATUS_FAILURE);
61879 + RTMP_SET_PACKET_5VT(pPacket, 0);
61880 +// MiniportMMRequest(pAd, pkt->data, pkt->len);
61881 +#ifdef CONFIG_5VT_ENHANCE
61882 + if (*(int*)(skb->cb) == BRIDGE_TAG) {
61883 + RTMP_SET_PACKET_5VT(pPacket, 1);
61889 +#ifdef CONFIG_STA_SUPPORT
61890 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
61893 + STASendPackets((NDIS_HANDLE)pAd, (PPNDIS_PACKET) &pPacket, 1);
61896 +#endif // CONFIG_STA_SUPPORT //
61906 +========================================================================
61907 +Routine Description:
61908 + Send a packet to WLAN.
61911 + skb_p points to our adapter
61912 + dev_p which WLAN network interface
61915 + 0: transmit successfully
61916 + otherwise: transmit fail
61919 +========================================================================
61921 +INT rt28xx_send_packets(
61922 + IN struct sk_buff *skb_p,
61923 + IN struct net_device *net_dev)
61925 + RTMP_ADAPTER *pAd = net_dev->ml_priv;
61927 + if (!(net_dev->flags & IFF_UP))
61929 + RELEASE_NDIS_PACKET(pAd, (PNDIS_PACKET)skb_p, NDIS_STATUS_FAILURE);
61933 + NdisZeroMemory((PUCHAR)&skb_p->cb[CB_OFF], 15);
61934 + RTMP_SET_PACKET_NET_DEVICE_MBSSID(skb_p, MAIN_MBSSID);
61936 + return rt28xx_packet_xmit(skb_p);
61937 +} /* End of MBSS_VirtualIF_PacketSend */
61942 +#if LINUX_VERSION_CODE <= 0x20402 // Red Hat 7.1
61943 +//static struct net_device *alloc_netdev(int sizeof_priv, const char *mask, void (*setup)(struct net_device *)) //sample
61944 +struct net_device *alloc_netdev(
61946 + const char *mask,
61947 + void (*setup)(struct net_device *))
61949 + struct net_device *dev;
61953 + /* ensure 32-byte alignment of the private area */
61954 + alloc_size = sizeof (*dev) + sizeof_priv + 31;
61956 + dev = (struct net_device *) kmalloc(alloc_size, GFP_KERNEL);
61959 + DBGPRINT(RT_DEBUG_ERROR,
61960 + ("alloc_netdev: Unable to allocate device memory.\n"));
61964 + memset(dev, 0, alloc_size);
61967 + dev->ml_priv = (void *) (((long)(dev + 1) + 31) & ~31);
61970 + strcpy(dev->name, mask);
61974 +#endif // LINUX_VERSION_CODE //
61977 +void CfgInitHook(PRTMP_ADAPTER pAd)
61979 + pAd->bBroadComHT = TRUE;
61980 +} /* End of CfgInitHook */
61983 +#if WIRELESS_EXT >= 12
61984 +// This function will be called when query /proc
61985 +struct iw_statistics *rt28xx_get_wireless_stats(
61986 + IN struct net_device *net_dev)
61988 + PRTMP_ADAPTER pAd = net_dev->ml_priv;
61991 + DBGPRINT(RT_DEBUG_TRACE, ("rt28xx_get_wireless_stats --->\n"));
61993 + pAd->iw_stats.status = 0; // Status - device dependent for now
61996 + pAd->iw_stats.qual.qual = ((pAd->Mlme.ChannelQuality * 12)/10 + 10);
61997 + if(pAd->iw_stats.qual.qual > 100)
61998 + pAd->iw_stats.qual.qual = 100;
62000 +#ifdef CONFIG_STA_SUPPORT
62001 + if (pAd->OpMode == OPMODE_STA)
62002 + pAd->iw_stats.qual.level = RTMPMaxRssi(pAd, pAd->StaCfg.RssiSample.LastRssi0, pAd->StaCfg.RssiSample.LastRssi1, pAd->StaCfg.RssiSample.LastRssi2);
62003 +#endif // CONFIG_STA_SUPPORT //
62005 + pAd->iw_stats.qual.noise = pAd->BbpWriteLatch[66]; // noise level (dBm)
62007 + pAd->iw_stats.qual.noise += 256 - 143;
62008 + pAd->iw_stats.qual.updated = 1; // Flags to know if updated
62009 +#ifdef IW_QUAL_DBM
62010 + pAd->iw_stats.qual.updated |= IW_QUAL_DBM; // Level + Noise are dBm
62011 +#endif // IW_QUAL_DBM //
62013 + pAd->iw_stats.discard.nwid = 0; // Rx : Wrong nwid/essid
62014 + pAd->iw_stats.miss.beacon = 0; // Missed beacons/superframe
62016 + DBGPRINT(RT_DEBUG_TRACE, ("<--- rt28xx_get_wireless_stats\n"));
62017 + return &pAd->iw_stats;
62018 +} /* End of rt28xx_get_wireless_stats */
62019 +#endif // WIRELESS_EXT //
62023 +void tbtt_tasklet(unsigned long data)
62025 +#define MAX_TX_IN_TBTT (16)
62030 + IN struct net_device *net_dev,
62031 + IN OUT struct ifreq *rq,
62034 + VIRTUAL_ADAPTER *pVirtualAd = NULL;
62035 + RTMP_ADAPTER *pAd = NULL;
62038 + if (net_dev->priv_flags == INT_MAIN)
62040 + pAd = net_dev->ml_priv;
62044 + pVirtualAd = net_dev->ml_priv;
62045 + pAd = pVirtualAd->RtmpDev->ml_priv;
62050 + /* if 1st open fail, pAd will be free;
62051 + So the net_dev->ml_priv will be NULL in 2rd open */
62052 + return -ENETDOWN;
62056 +#ifdef CONFIG_STA_SUPPORT
62057 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
62059 + ret = rt28xx_sta_ioctl(net_dev, rq, cmd);
62061 +#endif // CONFIG_STA_SUPPORT //
62067 + ========================================================================
62069 + Routine Description:
62070 + return ethernet statistics counter
62073 + net_dev Pointer to net_device
62076 + net_device_stats*
62080 + ========================================================================
62082 +struct net_device_stats *RT28xx_get_ether_stats(
62083 + IN struct net_device *net_dev)
62085 + RTMP_ADAPTER *pAd = NULL;
62088 + pAd = net_dev->ml_priv;
62093 + pAd->stats.rx_packets = pAd->WlanCounters.ReceivedFragmentCount.QuadPart;
62094 + pAd->stats.tx_packets = pAd->WlanCounters.TransmittedFragmentCount.QuadPart;
62096 + pAd->stats.rx_bytes = pAd->RalinkCounters.ReceivedByteCount;
62097 + pAd->stats.tx_bytes = pAd->RalinkCounters.TransmittedByteCount;
62099 + pAd->stats.rx_errors = pAd->Counters8023.RxErrors;
62100 + pAd->stats.tx_errors = pAd->Counters8023.TxErrors;
62102 + pAd->stats.rx_dropped = 0;
62103 + pAd->stats.tx_dropped = 0;
62105 + pAd->stats.multicast = pAd->WlanCounters.MulticastReceivedFrameCount.QuadPart; // multicast packets received
62106 + pAd->stats.collisions = pAd->Counters8023.OneCollision + pAd->Counters8023.MoreCollisions; // Collision packets
62108 + pAd->stats.rx_length_errors = 0;
62109 + pAd->stats.rx_over_errors = pAd->Counters8023.RxNoBuffer; // receiver ring buff overflow
62110 + pAd->stats.rx_crc_errors = 0;//pAd->WlanCounters.FCSErrorCount; // recved pkt with crc error
62111 + pAd->stats.rx_frame_errors = pAd->Counters8023.RcvAlignmentErrors; // recv'd frame alignment error
62112 + pAd->stats.rx_fifo_errors = pAd->Counters8023.RxNoBuffer; // recv'r fifo overrun
62113 + pAd->stats.rx_missed_errors = 0; // receiver missed packet
62115 + // detailed tx_errors
62116 + pAd->stats.tx_aborted_errors = 0;
62117 + pAd->stats.tx_carrier_errors = 0;
62118 + pAd->stats.tx_fifo_errors = 0;
62119 + pAd->stats.tx_heartbeat_errors = 0;
62120 + pAd->stats.tx_window_errors = 0;
62123 + pAd->stats.rx_compressed = 0;
62124 + pAd->stats.tx_compressed = 0;
62126 + return &pAd->stats;
62133 +++ b/drivers/staging/rt3070/rtmp_ckipmic.h
62136 + *************************************************************************
62137 + * Ralink Tech Inc.
62138 + * 5F., No.36, Taiyuan St., Jhubei City,
62139 + * Hsinchu County 302,
62142 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
62144 + * This program is free software; you can redistribute it and/or modify *
62145 + * it under the terms of the GNU General Public License as published by *
62146 + * the Free Software Foundation; either version 2 of the License, or *
62147 + * (at your option) any later version. *
62149 + * This program is distributed in the hope that it will be useful, *
62150 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
62151 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
62152 + * GNU General Public License for more details. *
62154 + * You should have received a copy of the GNU General Public License *
62155 + * along with this program; if not, write to the *
62156 + * Free Software Foundation, Inc., *
62157 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
62159 + *************************************************************************
62166 + Revision History:
62168 + -------- ---------- ----------------------------------------------
62169 + Name Date Modification logs
62171 +#ifndef __RTMP_CKIPMIC_H__
62172 +#define __RTMP_CKIPMIC_H__
62174 +typedef struct _MIC_CONTEXT {
62175 + /* --- MMH context */
62176 + UCHAR CK[16]; /* the key */
62177 + UCHAR coefficient[16]; /* current aes counter mode coefficients */
62178 + ULONGLONG accum; /* accumulated mic, reduced to u32 in final() */
62179 + UINT position; /* current position (byte offset) in message */
62180 + UCHAR part[4]; /* for conversion of message to u32 for mmh */
62181 +} MIC_CONTEXT, *PMIC_CONTEXT;
62183 +VOID CKIP_key_permute(
62184 + OUT UCHAR *PK, /* output permuted key */
62185 + IN UCHAR *CK, /* input CKIP key */
62186 + IN UCHAR toDsFromDs, /* input toDs/FromDs bits */
62187 + IN UCHAR *piv); /* input pointer to IV */
62189 +VOID RTMPCkipMicInit(
62190 + IN PMIC_CONTEXT pContext,
62193 +VOID RTMPMicUpdate(
62194 + IN PMIC_CONTEXT pContext,
62195 + IN PUCHAR pOctets,
62198 +ULONG RTMPMicGetCoefficient(
62199 + IN PMIC_CONTEXT pContext);
62206 +UCHAR RTMPCkipSbox(
62230 +VOID RTMPAesEncrypt(
62233 + IN PUCHAR ciphertext);
62235 +VOID RTMPMicFinal(
62236 + IN PMIC_CONTEXT pContext,
62237 + OUT UCHAR digest[4]);
62239 +VOID RTMPCkipInsertCMIC(
62240 + IN PRTMP_ADAPTER pAd,
62242 + IN PUCHAR p80211hdr,
62243 + IN PNDIS_PACKET pPacket,
62244 + IN PCIPHER_KEY pKey,
62245 + IN PUCHAR mic_snap);
62247 +#endif //__RTMP_CKIPMIC_H__
62249 +++ b/drivers/staging/rt3070/rtmp_def.h
62252 + *************************************************************************
62253 + * Ralink Tech Inc.
62254 + * 5F., No.36, Taiyuan St., Jhubei City,
62255 + * Hsinchu County 302,
62258 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
62260 + * This program is free software; you can redistribute it and/or modify *
62261 + * it under the terms of the GNU General Public License as published by *
62262 + * the Free Software Foundation; either version 2 of the License, or *
62263 + * (at your option) any later version. *
62265 + * This program is distributed in the hope that it will be useful, *
62266 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
62267 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
62268 + * GNU General Public License for more details. *
62270 + * You should have received a copy of the GNU General Public License *
62271 + * along with this program; if not, write to the *
62272 + * Free Software Foundation, Inc., *
62273 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
62275 + *************************************************************************
62281 + Miniport related definition header
62283 + Revision History:
62285 + -------- ---------- ----------------------------------------------
62286 + Paul Lin 08-01-2002 created
62287 + John Chang 08-05-2003 add definition for 11g & other drafts
62289 +#ifndef __RTMP_DEF_H__
62290 +#define __RTMP_DEF_H__
62294 +#undef AP_WSC_INCLUDED
62295 +#undef STA_WSC_INCLUDED
62296 +#undef WSC_INCLUDED
62299 +#ifdef CONFIG_STA_SUPPORT
62300 +#endif // CONFIG_STA_SUPPORT //
62302 +#if defined(AP_WSC_INCLUDED) || defined(STA_WSC_INCLUDED)
62303 +#define WSC_INCLUDED
62306 +// Debug information verbosity: lower values indicate higher urgency
62308 +#define RT_DEBUG_OFF 0
62309 +#define RT_DEBUG_ERROR 1
62310 +#define RT_DEBUG_WARN 2
62311 +#define RT_DEBUG_TRACE 3
62312 +#define RT_DEBUG_INFO 4
62313 +#define RT_DEBUG_LOUD 5
62315 +#define NIC_TAG ((ULONG)'0682')
62316 +#define NIC_DBG_STRING ("**RT28xx**")
62318 +#ifdef SNMP_SUPPORT
62320 +// to get manufacturer OUI, kathy, 2008_0220
62321 +#define ManufacturerOUI_LEN 3
62322 +#define ManufacturerNAME ("Ralink Technology Company.")
62323 +#define ResourceTypeIdName ("Ralink_ID")
62329 +#define RALINK_2883_VERSION ((UINT32)0x28830300)
62330 +#define RALINK_2880E_VERSION ((UINT32)0x28720200)
62331 +#define RALINK_3070_VERSION ((UINT32)0x30700200)
62334 +// NDIS version in use by the NIC driver.
62335 +// The high byte is the major version. The low byte is the minor version.
62337 +#ifdef NDIS51_MINIPORT
62338 +#define NIC_DRIVER_VERSION 0x0501
62340 +#define NIC_DRIVER_VERSION 0x0500
62344 +// NDIS media type, current is ethernet, change if native wireless supported
62346 +#define NIC_MEDIA_TYPE NdisMedium802_3
62347 +#define NIC_PCI_HDR_LENGTH 0xe2
62348 +#define NIC_MAX_PACKET_SIZE 2304
62349 +#define NIC_HEADER_SIZE 14
62350 +#define MAX_MAP_REGISTERS_NEEDED 32
62351 +#define MIN_MAP_REGISTERS_NEEDED 2 //Todo: should consider fragment issue.
62354 +// interface type, we use PCI
62356 +#define NIC_INTERFACE_TYPE NdisInterfacePci
62357 +#define NIC_INTERRUPT_MODE NdisInterruptLevelSensitive
62360 +// buffer size passed in NdisMQueryAdapterResources
62361 +// We should only need three adapter resources (IO, interrupt and memory),
62362 +// Some devices get extra resources, so have room for 10 resources
62363 +// UF_SIZE (sizeof(NDIS_RESOURCE_LIST) + (10*sizeof(CM_PARTIAL_RESOURCE_DESCRIPTOR)))
62366 +#define NIC_RESOURCE_B//
62367 +// IO space length
62369 +#define NIC_MAP_IOSPACE_LENGTH sizeof(CSR_STRUC)
62371 +#define MAX_RX_PKT_LEN 1520
62374 +// Entry number for each DMA descriptor ring
62379 +#define TX_RING_SIZE 8 // 1
62380 +#define PRIO_RING_SIZE 8
62381 +#define MGMT_RING_SIZE 32 // PRIO_RING_SIZE
62382 +#define RX_RING_SIZE 8
62383 +#define MAX_TX_PROCESS 4
62384 +#define LOCAL_TXBUF_SIZE 2048
62385 +#endif // RT2870 //
62387 +#ifdef MULTIPLE_CARD_SUPPORT
62388 +// MC: Multple Cards
62389 +#define MAX_NUM_OF_MULTIPLE_CARD 32
62390 +#endif // MULTIPLE_CARD_SUPPORT //
62392 +#define MAX_RX_PROCESS 128 //64 //32
62393 +#define NUM_OF_LOCAL_TXBUF 2
62394 +#define TXD_SIZE 16
62395 +#define TXWI_SIZE 16
62396 +#define RXD_SIZE 16
62397 +#define RXWI_SIZE 16
62398 +// TXINFO_SIZE + TXWI_SIZE + 802.11 Header Size + AMSDU sub frame header
62399 +#define TX_DMA_1ST_BUFFER_SIZE 96 // only the 1st physical buffer is pre-allocated
62400 +#define MGMT_DMA_BUFFER_SIZE 1536 //2048
62401 +#define RX_BUFFER_AGGRESIZE 3840 //3904 //3968 //4096 //2048 //4096
62402 +#define RX_BUFFER_NORMSIZE 3840 //3904 //3968 //4096 //2048 //4096
62403 +#define TX_BUFFER_NORMSIZE RX_BUFFER_NORMSIZE
62404 +#define MAX_FRAME_SIZE 2346 // Maximum 802.11 frame size
62405 +#define MAX_AGGREGATION_SIZE 3840 //3904 //3968 //4096
62406 +#define MAX_NUM_OF_TUPLE_CACHE 2
62407 +#define MAX_MCAST_LIST_SIZE 32
62408 +#define MAX_LEN_OF_VENDOR_DESC 64
62409 +//#define MAX_SIZE_OF_MCAST_PSQ (NUM_OF_LOCAL_TXBUF >> 2) // AP won't spend more than 1/4 of total buffers on M/BCAST PSQ
62410 +#define MAX_SIZE_OF_MCAST_PSQ 32
62412 +#define MAX_RX_PROCESS_CNT (RX_RING_SIZE)
62415 +#define MAX_PACKETS_IN_QUEUE (512) //(512) // to pass WMM A5-WPAPSK
62416 +#define MAX_PACKETS_IN_MCAST_PS_QUEUE 32
62417 +#define MAX_PACKETS_IN_PS_QUEUE 128 //32
62418 +#define WMM_NUM_OF_AC 4 /* AC0, AC1, AC2, and AC3 */
62421 +//2008/09/11:KH add to support efuse<--
62422 +#define MAX_EEPROM_BIN_FILE_SIZE 1024
62423 +//2008/09/11:KH add to support efuse-->
62426 +#define STANORMAL 0x17f97
62427 +#define APNORMAL 0x15f97
62429 +// RTMP_ADAPTER flags
62431 +#define fRTMP_ADAPTER_MAP_REGISTER 0x00000001
62432 +#define fRTMP_ADAPTER_INTERRUPT_IN_USE 0x00000002
62433 +#define fRTMP_ADAPTER_HARDWARE_ERROR 0x00000004
62434 +#define fRTMP_ADAPTER_SCATTER_GATHER 0x00000008
62435 +#define fRTMP_ADAPTER_SEND_PACKET_ERROR 0x00000010
62436 +#define fRTMP_ADAPTER_MLME_RESET_IN_PROGRESS 0x00000020
62437 +#define fRTMP_ADAPTER_HALT_IN_PROGRESS 0x00000040
62438 +#define fRTMP_ADAPTER_RESET_IN_PROGRESS 0x00000080
62439 +#define fRTMP_ADAPTER_NIC_NOT_EXIST 0x00000100
62440 +#define fRTMP_ADAPTER_TX_RING_ALLOCATED 0x00000200
62441 +#define fRTMP_ADAPTER_REMOVE_IN_PROGRESS 0x00000400
62442 +#define fRTMP_ADAPTER_MIMORATE_INUSED 0x00000800
62443 +#define fRTMP_ADAPTER_RX_RING_ALLOCATED 0x00001000
62444 +#define fRTMP_ADAPTER_INTERRUPT_ACTIVE 0x00002000
62445 +#define fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS 0x00004000
62446 +#define fRTMP_ADAPTER_REASSOC_IN_PROGRESS 0x00008000
62447 +#define fRTMP_ADAPTER_MEDIA_STATE_PENDING 0x00010000
62448 +#define fRTMP_ADAPTER_RADIO_OFF 0x00020000
62449 +#define fRTMP_ADAPTER_BULKOUT_RESET 0x00040000
62450 +#define fRTMP_ADAPTER_BULKIN_RESET 0x00080000
62451 +#define fRTMP_ADAPTER_RDG_ACTIVE 0x00100000
62452 +#define fRTMP_ADAPTER_DYNAMIC_BE_TXOP_ACTIVE 0x00200000
62453 +#define fRTMP_ADAPTER_SCAN_2040 0x04000000
62454 +#define fRTMP_ADAPTER_RADIO_MEASUREMENT 0x08000000
62456 +#define fRTMP_ADAPTER_START_UP 0x10000000 //Devive already initialized and enabled Tx/Rx.
62457 +#define fRTMP_ADAPTER_MEDIA_STATE_CHANGE 0x20000000
62458 +#define fRTMP_ADAPTER_IDLE_RADIO_OFF 0x40000000
62460 +// Lock bit for accessing different ring buffers
62461 +//#define fRTMP_ADAPTER_TX_RING_BUSY 0x80000000
62462 +//#define fRTMP_ADAPTER_MGMT_RING_BUSY 0x40000000
62463 +//#define fRTMP_ADAPTER_ATIM_RING_BUSY 0x20000000
62464 +//#define fRTMP_ADAPTER_RX_RING_BUSY 0x10000000
62466 +// Lock bit for accessing different queue
62467 +//#define fRTMP_ADAPTER_TX_QUEUE_BUSY 0x08000000
62468 +//#define fRTMP_ADAPTER_MGMT_QUEUE_BUSY 0x04000000
62471 +// STA operation status flags
62473 +#define fOP_STATUS_INFRA_ON 0x00000001
62474 +#define fOP_STATUS_ADHOC_ON 0x00000002
62475 +#define fOP_STATUS_BG_PROTECTION_INUSED 0x00000004
62476 +#define fOP_STATUS_SHORT_SLOT_INUSED 0x00000008
62477 +#define fOP_STATUS_SHORT_PREAMBLE_INUSED 0x00000010
62478 +#define fOP_STATUS_RECEIVE_DTIM 0x00000020
62479 +//#define fOP_STATUS_TX_RATE_SWITCH_ENABLED 0x00000040
62480 +#define fOP_STATUS_MEDIA_STATE_CONNECTED 0x00000080
62481 +#define fOP_STATUS_WMM_INUSED 0x00000100
62482 +#define fOP_STATUS_AGGREGATION_INUSED 0x00000200
62483 +#define fOP_STATUS_DOZE 0x00000400 // debug purpose
62484 +#define fOP_STATUS_PIGGYBACK_INUSED 0x00000800 // piggy-back, and aggregation
62485 +#define fOP_STATUS_APSD_INUSED 0x00001000
62486 +#define fOP_STATUS_TX_AMSDU_INUSED 0x00002000
62487 +#define fOP_STATUS_MAX_RETRY_ENABLED 0x00004000
62488 +#define fOP_STATUS_WAKEUP_NOW 0x00008000
62489 +#define fOP_STATUS_ADVANCE_POWER_SAVE_PCIE_DEVICE 0x00020000
62491 +#ifdef DOT11N_DRAFT3
62492 +#define fOP_STATUS_SCAN_2040 0x00040000
62493 +#endif // DOT11N_DRAFT3 //
62495 +#define CCKSETPROTECT 0x1
62496 +#define OFDMSETPROTECT 0x2
62497 +#define MM20SETPROTECT 0x4
62498 +#define MM40SETPROTECT 0x8
62499 +#define GF20SETPROTECT 0x10
62500 +#define GR40SETPROTECT 0x20
62501 +#define ALLN_SETPROTECT (GR40SETPROTECT | GF20SETPROTECT | MM40SETPROTECT | MM20SETPROTECT)
62504 +// AP's client table operation status flags
62506 +#define fCLIENT_STATUS_WMM_CAPABLE 0x00000001 // CLIENT can parse QOS DATA frame
62507 +#define fCLIENT_STATUS_AGGREGATION_CAPABLE 0x00000002 // CLIENT can receive Ralink's proprietary TX aggregation frame
62508 +#define fCLIENT_STATUS_PIGGYBACK_CAPABLE 0x00000004 // CLIENT support piggy-back
62509 +#define fCLIENT_STATUS_AMSDU_INUSED 0x00000008
62510 +#define fCLIENT_STATUS_SGI20_CAPABLE 0x00000010
62511 +#define fCLIENT_STATUS_SGI40_CAPABLE 0x00000020
62512 +#define fCLIENT_STATUS_TxSTBC_CAPABLE 0x00000040
62513 +#define fCLIENT_STATUS_RxSTBC_CAPABLE 0x00000080
62514 +#define fCLIENT_STATUS_HTC_CAPABLE 0x00000100
62515 +#define fCLIENT_STATUS_RDG_CAPABLE 0x00000200
62516 +#define fCLIENT_STATUS_MCSFEEDBACK_CAPABLE 0x00000400
62517 +#define fCLIENT_STATUS_APSD_CAPABLE 0x00000800 /* UAPSD STATION */
62519 +#ifdef DOT11N_DRAFT3
62520 +#define fCLIENT_STATUS_BSSCOEXIST_CAPABLE 0x00001000
62521 +#endif // DOT11N_DRAFT3 //
62523 +#define fCLIENT_STATUS_RALINK_CHIPSET 0x00100000
62525 +// STA configuration flags
62527 +//#define fSTA_CFG_ENABLE_TX_BURST 0x00000001
62529 +// 802.11n Operating Mode Definition. 0-3 also used in ASICUPdateProtect switch case
62530 +#define HT_NO_PROTECT 0
62531 +#define HT_LEGACY_PROTECT 1
62532 +#define HT_40_PROTECT 2
62533 +#define HT_2040_PROTECT 3
62534 +#define HT_RTSCTS_6M 7
62535 +//following is our own definition in order to turn on our ASIC protection register in INFRASTRUCTURE.
62536 +#define HT_ATHEROS 8
62537 +#define HT_FORCERTSCTS 9 // Force turn on RTS/CTS first. then go to evaluate if this force RTS is necessary.
62540 +// RX Packet Filter control flags. Apply on pAd->PacketFilter
62542 +#define fRX_FILTER_ACCEPT_DIRECT NDIS_PACKET_TYPE_DIRECTED
62543 +#define fRX_FILTER_ACCEPT_MULTICAST NDIS_PACKET_TYPE_MULTICAST
62544 +#define fRX_FILTER_ACCEPT_BROADCAST NDIS_PACKET_TYPE_BROADCAST
62545 +#define fRX_FILTER_ACCEPT_ALL_MULTICAST NDIS_PACKET_TYPE_ALL_MULTICAST
62548 +// Error code section
62550 +// NDIS_ERROR_CODE_ADAPTER_NOT_FOUND
62551 +#define ERRLOG_READ_PCI_SLOT_FAILED 0x00000101L
62552 +#define ERRLOG_WRITE_PCI_SLOT_FAILED 0x00000102L
62553 +#define ERRLOG_VENDOR_DEVICE_NOMATCH 0x00000103L
62555 +// NDIS_ERROR_CODE_ADAPTER_DISABLED
62556 +#define ERRLOG_BUS_MASTER_DISABLED 0x00000201L
62558 +// NDIS_ERROR_CODE_UNSUPPORTED_CONFIGURATION
62559 +#define ERRLOG_INVALID_SPEED_DUPLEX 0x00000301L
62560 +#define ERRLOG_SET_SECONDARY_FAILED 0x00000302L
62562 +// NDIS_ERROR_CODE_OUT_OF_RESOURCES
62563 +#define ERRLOG_OUT_OF_MEMORY 0x00000401L
62564 +#define ERRLOG_OUT_OF_SHARED_MEMORY 0x00000402L
62565 +#define ERRLOG_OUT_OF_MAP_REGISTERS 0x00000403L
62566 +#define ERRLOG_OUT_OF_BUFFER_POOL 0x00000404L
62567 +#define ERRLOG_OUT_OF_NDIS_BUFFER 0x00000405L
62568 +#define ERRLOG_OUT_OF_PACKET_POOL 0x00000406L
62569 +#define ERRLOG_OUT_OF_NDIS_PACKET 0x00000407L
62570 +#define ERRLOG_OUT_OF_LOOKASIDE_MEMORY 0x00000408L
62572 +// NDIS_ERROR_CODE_HARDWARE_FAILURE
62573 +#define ERRLOG_SELFTEST_FAILED 0x00000501L
62574 +#define ERRLOG_INITIALIZE_ADAPTER 0x00000502L
62575 +#define ERRLOG_REMOVE_MINIPORT 0x00000503L
62577 +// NDIS_ERROR_CODE_RESOURCE_CONFLICT
62578 +#define ERRLOG_MAP_IO_SPACE 0x00000601L
62579 +#define ERRLOG_QUERY_ADAPTER_RESOURCES 0x00000602L
62580 +#define ERRLOG_NO_IO_RESOURCE 0x00000603L
62581 +#define ERRLOG_NO_INTERRUPT_RESOURCE 0x00000604L
62582 +#define ERRLOG_NO_MEMORY_RESOURCE 0x00000605L
62586 +#define MAX_WDS_ENTRY 4
62587 +#define WDS_PAIRWISE_KEY_OFFSET 60 // WDS links uses pairwise key#60 ~ 63 in ASIC pairwise key table
62589 +#define WDS_DISABLE_MODE 0
62590 +#define WDS_RESTRICT_MODE 1
62591 +#define WDS_BRIDGE_MODE 2
62592 +#define WDS_REPEATER_MODE 3
62593 +#define WDS_LAZY_MODE 4
62596 +#define MAX_MESH_NUM 0
62598 +#define MAX_APCLI_NUM 0
62600 +#define MAX_MBSSID_NUM 1
62601 +#ifdef MBSS_SUPPORT
62602 +#undef MAX_MBSSID_NUM
62603 +#define MAX_MBSSID_NUM (8 - MAX_MESH_NUM - MAX_APCLI_NUM)
62604 +#endif // MBSS_SUPPORT //
62606 +/* sanity check for apidx */
62607 +#define MBSS_MR_APIDX_SANITY_CHECK(apidx) \
62608 + { if (apidx > MAX_MBSSID_NUM) { \
62609 + printk("%s> Error! apidx = %d > MAX_MBSSID_NUM!\n", __FUNCTION__, apidx); \
62610 + apidx = MAIN_MBSSID; } }
62612 +#define VALID_WCID(_wcid) ((_wcid) > 0 && (_wcid) < MAX_LEN_OF_MAC_TABLE )
62614 +#define MAIN_MBSSID 0
62615 +#define FIRST_MBSSID 1
62618 +#define MAX_BEACON_SIZE 512
62619 +// If the MAX_MBSSID_NUM is larger than 6,
62620 +// it shall reserve some WCID space(wcid 222~253) for beacon frames.
62621 +// - these wcid 238~253 are reserved for beacon#6(ra6).
62622 +// - these wcid 222~237 are reserved for beacon#7(ra7).
62623 +#if defined(MAX_MBSSID_NUM) && (MAX_MBSSID_NUM == 8)
62624 +#define HW_RESERVED_WCID 222
62625 +#elif defined(MAX_MBSSID_NUM) && (MAX_MBSSID_NUM == 7)
62626 +#define HW_RESERVED_WCID 238
62628 +#define HW_RESERVED_WCID 255
62631 +// Then dedicate wcid of DFS and Carrier-Sense.
62632 +#define DFS_CTS_WCID (HW_RESERVED_WCID - 1)
62633 +#define CS_CTS_WCID (HW_RESERVED_WCID - 2)
62634 +#define LAST_SPECIFIC_WCID (HW_RESERVED_WCID - 2)
62636 +// If MAX_MBSSID_NUM is 8, the maximum available wcid for the associated STA is 211.
62637 +// If MAX_MBSSID_NUM is 7, the maximum available wcid for the associated STA is 228.
62638 +#define MAX_AVAILABLE_CLIENT_WCID (LAST_SPECIFIC_WCID - MAX_MBSSID_NUM - 1)
62640 +// TX need WCID to find Cipher Key
62641 +// these wcid 212 ~ 219 are reserved for bc/mc packets if MAX_MBSSID_NUM is 8.
62642 +#define GET_GroupKey_WCID(__wcid, __bssidx) \
62644 + __wcid = LAST_SPECIFIC_WCID - (MAX_MBSSID_NUM) + __bssidx; \
62647 +#define IsGroupKeyWCID(__wcid) (((__wcid) < LAST_SPECIFIC_WCID) && ((__wcid) >= (LAST_SPECIFIC_WCID - (MAX_MBSSID_NUM))))
62650 +// definition to support multiple BSSID
62661 +//============================================================
62662 +// Length definitions
62663 +#define PEER_KEY_NO 2
62664 +#define MAC_ADDR_LEN 6
62665 +#define TIMESTAMP_LEN 8
62666 +#define MAX_LEN_OF_SUPPORTED_RATES MAX_LENGTH_OF_SUPPORT_RATES // 1, 2, 5.5, 11, 6, 9, 12, 18, 24, 36, 48, 54
62667 +#define MAX_LEN_OF_KEY 32 // 32 octets == 256 bits, Redefine for WPA
62668 +#define MAX_NUM_OF_CHANNELS MAX_NUM_OF_CHS // 14 channels @2.4G + 12@UNII + 4 @MMAC + 11 @HiperLAN2 + 7 @Japan + 1 as NULL termination
62669 +#define MAX_NUM_OF_11JCHANNELS 20 // 14 channels @2.4G + 12@UNII + 4 @MMAC + 11 @HiperLAN2 + 7 @Japan + 1 as NULL termination
62670 +#define MAX_LEN_OF_SSID 32
62671 +#define CIPHER_TEXT_LEN 128
62672 +#define HASH_TABLE_SIZE 256
62673 +#define MAX_VIE_LEN 1024 // New for WPA cipher suite variable IE sizes.
62674 +#define MAX_SUPPORT_MCS 32
62676 +//============================================================
62677 +// ASIC WCID Table definition.
62678 +//============================================================
62679 +#define BSSID_WCID 1 // in infra mode, always put bssid with this WCID
62680 +#define MCAST_WCID 0x0
62681 +#define BSS0Mcast_WCID 0x0
62682 +#define BSS1Mcast_WCID 0xf8
62683 +#define BSS2Mcast_WCID 0xf9
62684 +#define BSS3Mcast_WCID 0xfa
62685 +#define BSS4Mcast_WCID 0xfb
62686 +#define BSS5Mcast_WCID 0xfc
62687 +#define BSS6Mcast_WCID 0xfd
62688 +#define BSS7Mcast_WCID 0xfe
62689 +#define RESERVED_WCID 0xff
62691 +#define MAX_NUM_OF_ACL_LIST MAX_NUMBER_OF_ACL
62693 +#define MAX_LEN_OF_MAC_TABLE MAX_NUMBER_OF_MAC // if MAX_MBSSID_NUM is 8, this value can't be larger than 211
62695 +#if MAX_LEN_OF_MAC_TABLE>MAX_AVAILABLE_CLIENT_WCID
62696 +#error MAX_LEN_OF_MAC_TABLE can not be larger than MAX_AVAILABLE_CLIENT_WCID!!!!
62699 +#define MAX_NUM_OF_WDS_LINK_PERBSSID 3
62700 +#define MAX_NUM_OF_WDS_LINK (MAX_NUM_OF_WDS_LINK_PERBSSID*MAX_MBSSID_NUM)
62701 +#define MAX_NUM_OF_EVENT MAX_NUMBER_OF_EVENT
62702 +#define WDS_LINK_START_WCID (MAX_LEN_OF_MAC_TABLE-1)
62704 +#define NUM_OF_TID 8
62705 +#define MAX_AID_BA 4
62706 +#define MAX_LEN_OF_BA_REC_TABLE ((NUM_OF_TID * MAX_LEN_OF_MAC_TABLE)/2)// (NUM_OF_TID*MAX_AID_BA + 32) //Block ACK recipient
62707 +#define MAX_LEN_OF_BA_ORI_TABLE ((NUM_OF_TID * MAX_LEN_OF_MAC_TABLE)/2)// (NUM_OF_TID*MAX_AID_BA + 32) // Block ACK originator
62708 +#define MAX_LEN_OF_BSS_TABLE 64
62709 +#define MAX_REORDERING_MPDU_NUM 512
62711 +// key related definitions
62712 +#define SHARE_KEY_NUM 4
62713 +#define MAX_LEN_OF_SHARE_KEY 16 // byte count
62714 +#define MAX_LEN_OF_PEER_KEY 16 // byte count
62715 +#define PAIRWISE_KEY_NUM 64 // in MAC ASIC pairwise key table
62716 +#define GROUP_KEY_NUM 4
62717 +#define PMK_LEN 32
62718 +#define WDS_PAIRWISE_KEY_OFFSET 60 // WDS links uses pairwise key#60 ~ 63 in ASIC pairwise key table
62719 +#define PMKID_NO 4 // Number of PMKID saved supported
62720 +#define MAX_LEN_OF_MLME_BUFFER 2048
62722 +// power status related definitions
62723 +#define PWR_ACTIVE 0
62724 +#define PWR_SAVE 1
62725 +#define PWR_MMPS 2 //MIMO power save
62726 +//#define PWR_UNKNOWN 2
62728 +// Auth and Assoc mode related definitions
62729 +#define AUTH_MODE_OPEN 0x00
62730 +#define AUTH_MODE_KEY 0x01
62731 +//#define AUTH_MODE_AUTO_SWITCH 0x03
62732 +//#define AUTH_MODE_DEAUTH 0x04
62733 +//#define AUTH_MODE_UPLAYER 0x05 // reserved for 802.11i use
62735 +// BSS Type definitions
62736 +#define BSS_ADHOC 0 // = Ndis802_11IBSS
62737 +#define BSS_INFRA 1 // = Ndis802_11Infrastructure
62738 +#define BSS_ANY 2 // = Ndis802_11AutoUnknown
62739 +#define BSS_MONITOR 3 // = Ndis802_11Monitor
62742 +// Reason code definitions
62743 +#define REASON_RESERVED 0
62744 +#define REASON_UNSPECIFY 1
62745 +#define REASON_NO_LONGER_VALID 2
62746 +#define REASON_DEAUTH_STA_LEAVING 3
62747 +#define REASON_DISASSOC_INACTIVE 4
62748 +#define REASON_DISASSPC_AP_UNABLE 5
62749 +#define REASON_CLS2ERR 6
62750 +#define REASON_CLS3ERR 7
62751 +#define REASON_DISASSOC_STA_LEAVING 8
62752 +#define REASON_STA_REQ_ASSOC_NOT_AUTH 9
62753 +#define REASON_INVALID_IE 13
62754 +#define REASON_MIC_FAILURE 14
62755 +#define REASON_4_WAY_TIMEOUT 15
62756 +#define REASON_GROUP_KEY_HS_TIMEOUT 16
62757 +#define REASON_IE_DIFFERENT 17
62758 +#define REASON_MCIPHER_NOT_VALID 18
62759 +#define REASON_UCIPHER_NOT_VALID 19
62760 +#define REASON_AKMP_NOT_VALID 20
62761 +#define REASON_UNSUPPORT_RSNE_VER 21
62762 +#define REASON_INVALID_RSNE_CAP 22
62763 +#define REASON_8021X_AUTH_FAIL 23
62764 +#define REASON_CIPHER_SUITE_REJECTED 24
62765 +#define REASON_DECLINED 37
62767 +#define REASON_QOS_UNSPECIFY 32
62768 +#define REASON_QOS_LACK_BANDWIDTH 33
62769 +#define REASON_POOR_CHANNEL_CONDITION 34
62770 +#define REASON_QOS_OUTSIDE_TXOP_LIMITION 35
62771 +#define REASON_QOS_QSTA_LEAVING_QBSS 36
62772 +#define REASON_QOS_UNWANTED_MECHANISM 37
62773 +#define REASON_QOS_MECH_SETUP_REQUIRED 38
62774 +#define REASON_QOS_REQUEST_TIMEOUT 39
62775 +#define REASON_QOS_CIPHER_NOT_SUPPORT 45
62777 +// Status code definitions
62778 +#define MLME_SUCCESS 0
62779 +#define MLME_UNSPECIFY_FAIL 1
62780 +#define MLME_CANNOT_SUPPORT_CAP 10
62781 +#define MLME_REASSOC_DENY_ASSOC_EXIST 11
62782 +#define MLME_ASSOC_DENY_OUT_SCOPE 12
62783 +#define MLME_ALG_NOT_SUPPORT 13
62784 +#define MLME_SEQ_NR_OUT_OF_SEQUENCE 14
62785 +#define MLME_REJ_CHALLENGE_FAILURE 15
62786 +#define MLME_REJ_TIMEOUT 16
62787 +#define MLME_ASSOC_REJ_UNABLE_HANDLE_STA 17
62788 +#define MLME_ASSOC_REJ_DATA_RATE 18
62790 +#define MLME_ASSOC_REJ_NO_EXT_RATE 22
62791 +#define MLME_ASSOC_REJ_NO_EXT_RATE_PBCC 23
62792 +#define MLME_ASSOC_REJ_NO_CCK_OFDM 24
62794 +#define MLME_QOS_UNSPECIFY 32
62795 +#define MLME_REQUEST_DECLINED 37
62796 +#define MLME_REQUEST_WITH_INVALID_PARAM 38
62797 +#define MLME_DLS_NOT_ALLOW_IN_QBSS 48
62798 +#define MLME_DEST_STA_NOT_IN_QBSS 49
62799 +#define MLME_DEST_STA_IS_NOT_A_QSTA 50
62801 +#define MLME_INVALID_FORMAT 0x51
62802 +#define MLME_FAIL_NO_RESOURCE 0x52
62803 +#define MLME_STATE_MACHINE_REJECT 0x53
62804 +#define MLME_MAC_TABLE_FAIL 0x54
62808 +#define IE_SUPP_RATES 1
62809 +#define IE_FH_PARM 2
62810 +#define IE_DS_PARM 3
62811 +#define IE_CF_PARM 4
62813 +#define IE_IBSS_PARM 6
62814 +#define IE_COUNTRY 7 // 802.11d
62815 +#define IE_802_11D_REQUEST 10 // 802.11d
62816 +#define IE_QBSS_LOAD 11 // 802.11e d9
62817 +#define IE_EDCA_PARAMETER 12 // 802.11e d9
62818 +#define IE_TSPEC 13 // 802.11e d9
62819 +#define IE_TCLAS 14 // 802.11e d9
62820 +#define IE_SCHEDULE 15 // 802.11e d9
62821 +#define IE_CHALLENGE_TEXT 16
62822 +#define IE_POWER_CONSTRAINT 32 // 802.11h d3.3
62823 +#define IE_POWER_CAPABILITY 33 // 802.11h d3.3
62824 +#define IE_TPC_REQUEST 34 // 802.11h d3.3
62825 +#define IE_TPC_REPORT 35 // 802.11h d3.3
62826 +#define IE_SUPP_CHANNELS 36 // 802.11h d3.3
62827 +#define IE_CHANNEL_SWITCH_ANNOUNCEMENT 37 // 802.11h d3.3
62828 +#define IE_MEASUREMENT_REQUEST 38 // 802.11h d3.3
62829 +#define IE_MEASUREMENT_REPORT 39 // 802.11h d3.3
62830 +#define IE_QUIET 40 // 802.11h d3.3
62831 +#define IE_IBSS_DFS 41 // 802.11h d3.3
62832 +#define IE_ERP 42 // 802.11g
62833 +#define IE_TS_DELAY 43 // 802.11e d9
62834 +#define IE_TCLAS_PROCESSING 44 // 802.11e d9
62835 +#define IE_QOS_CAPABILITY 46 // 802.11e d6
62836 +#define IE_HT_CAP 45 // 802.11n d1. HT CAPABILITY. ELEMENT ID TBD
62837 +#define IE_AP_CHANNEL_REPORT 51 // 802.11k d6
62838 +#define IE_HT_CAP2 52 // 802.11n d1. HT CAPABILITY. ELEMENT ID TBD
62839 +#define IE_RSN 48 // 802.11i d3.0
62840 +#define IE_WPA2 48 // WPA2
62841 +#define IE_EXT_SUPP_RATES 50 // 802.11g
62842 +#define IE_SUPP_REG_CLASS 59 // 802.11y. Supported regulatory classes.
62843 +#define IE_EXT_CHANNEL_SWITCH_ANNOUNCEMENT 60 // 802.11n
62844 +#define IE_ADD_HT 61 // 802.11n d1. ADDITIONAL HT CAPABILITY. ELEMENT ID TBD
62845 +#define IE_ADD_HT2 53 // 802.11n d1. ADDITIONAL HT CAPABILITY. ELEMENT ID TBD
62848 +// For 802.11n D3.03
62849 +//#define IE_NEW_EXT_CHA_OFFSET 62 // 802.11n d1. New extension channel offset elemet
62850 +#define IE_SECONDARY_CH_OFFSET 62 // 802.11n D3.03 Secondary Channel Offset element
62851 +#define IE_WAPI 68 // WAPI information element
62852 +#define IE_2040_BSS_COEXIST 72 // 802.11n D3.0.3
62853 +#define IE_2040_BSS_INTOLERANT_REPORT 73 // 802.11n D3.03
62854 +#define IE_OVERLAPBSS_SCAN_PARM 74 // 802.11n D3.03
62855 +#define IE_EXT_CAPABILITY 127 // 802.11n D3.03
62858 +#define IE_WPA 221 // WPA
62859 +#define IE_VENDOR_SPECIFIC 221 // Wifi WMM (WME)
62861 +#define OUI_BROADCOM_HT 51 //
62862 +#define OUI_BROADCOM_HTADD 52 //
62863 +#define OUI_PREN_HT_CAP 51 //
62864 +#define OUI_PREN_ADD_HT 52 //
62866 +// CCX information
62867 +#define IE_AIRONET_CKIP 133 // CCX1.0 ID 85H for CKIP
62868 +#define IE_AP_TX_POWER 150 // CCX 2.0 for AP transmit power
62869 +#define IE_MEASUREMENT_CAPABILITY 221 // CCX 2.0
62870 +#define IE_CCX_V2 221
62871 +#define IE_AIRONET_IPADDRESS 149 // CCX ID 95H for IP Address
62872 +#define IE_AIRONET_CCKMREASSOC 156 // CCX ID 9CH for CCKM Reassociation Request element
62873 +#define CKIP_NEGOTIATION_LENGTH 30
62874 +#define AIRONET_IPADDRESS_LENGTH 10
62875 +#define AIRONET_CCKMREASSOC_LENGTH 24
62877 +// ========================================================
62878 +// MLME state machine definition
62879 +// ========================================================
62881 +// STA MLME state mahcines
62882 +#define ASSOC_STATE_MACHINE 1
62883 +#define AUTH_STATE_MACHINE 2
62884 +#define AUTH_RSP_STATE_MACHINE 3
62885 +#define SYNC_STATE_MACHINE 4
62886 +#define MLME_CNTL_STATE_MACHINE 5
62887 +#define WPA_PSK_STATE_MACHINE 6
62888 +#define LEAP_STATE_MACHINE 7
62889 +#define AIRONET_STATE_MACHINE 8
62890 +#define ACTION_STATE_MACHINE 9
62892 +// AP MLME state machines
62893 +#define AP_ASSOC_STATE_MACHINE 11
62894 +#define AP_AUTH_STATE_MACHINE 12
62895 +#define AP_AUTH_RSP_STATE_MACHINE 13
62896 +#define AP_SYNC_STATE_MACHINE 14
62897 +#define AP_CNTL_STATE_MACHINE 15
62898 +#define AP_WPA_STATE_MACHINE 16
62900 +#define WSC_STATE_MACHINE 17
62901 +#define WSC_UPNP_STATE_MACHINE 18
62905 +#ifdef QOS_DLS_SUPPORT
62906 +#define DLS_STATE_MACHINE 26
62907 +#endif // QOS_DLS_SUPPORT //
62910 +// STA's CONTROL/CONNECT state machine: states, events, total function #
62912 +#define CNTL_IDLE 0
62913 +#define CNTL_WAIT_DISASSOC 1
62914 +#define CNTL_WAIT_JOIN 2
62915 +#define CNTL_WAIT_REASSOC 3
62916 +#define CNTL_WAIT_START 4
62917 +#define CNTL_WAIT_AUTH 5
62918 +#define CNTL_WAIT_ASSOC 6
62919 +#define CNTL_WAIT_AUTH2 7
62920 +#define CNTL_WAIT_OID_LIST_SCAN 8
62921 +#define CNTL_WAIT_OID_DISASSOC 9
62923 +#define CNTL_WAIT_SCAN_FOR_CONNECT 10
62924 +#endif // RT2870 //
62926 +#define MT2_ASSOC_CONF 34
62927 +#define MT2_AUTH_CONF 35
62928 +#define MT2_DEAUTH_CONF 36
62929 +#define MT2_DISASSOC_CONF 37
62930 +#define MT2_REASSOC_CONF 38
62931 +#define MT2_PWR_MGMT_CONF 39
62932 +#define MT2_JOIN_CONF 40
62933 +#define MT2_SCAN_CONF 41
62934 +#define MT2_START_CONF 42
62935 +#define MT2_GET_CONF 43
62936 +#define MT2_SET_CONF 44
62937 +#define MT2_RESET_CONF 45
62938 +#define MT2_MLME_ROAMING_REQ 52
62940 +#define CNTL_FUNC_SIZE 1
62943 +// STA's ASSOC state machine: states, events, total function #
62945 +#define ASSOC_IDLE 0
62946 +#define ASSOC_WAIT_RSP 1
62947 +#define REASSOC_WAIT_RSP 2
62948 +#define DISASSOC_WAIT_RSP 3
62949 +#define MAX_ASSOC_STATE 4
62951 +#define ASSOC_MACHINE_BASE 0
62952 +#define MT2_MLME_ASSOC_REQ 0
62953 +#define MT2_MLME_REASSOC_REQ 1
62954 +#define MT2_MLME_DISASSOC_REQ 2
62955 +#define MT2_PEER_DISASSOC_REQ 3
62956 +#define MT2_PEER_ASSOC_REQ 4
62957 +#define MT2_PEER_ASSOC_RSP 5
62958 +#define MT2_PEER_REASSOC_REQ 6
62959 +#define MT2_PEER_REASSOC_RSP 7
62960 +#define MT2_DISASSOC_TIMEOUT 8
62961 +#define MT2_ASSOC_TIMEOUT 9
62962 +#define MT2_REASSOC_TIMEOUT 10
62963 +#define MAX_ASSOC_MSG 11
62965 +#define ASSOC_FUNC_SIZE (MAX_ASSOC_STATE * MAX_ASSOC_MSG)
62968 +// ACT state machine: states, events, total function #
62970 +#define ACT_IDLE 0
62971 +#define MAX_ACT_STATE 1
62973 +#define ACT_MACHINE_BASE 0
62975 +//Those PEER_xx_CATE number is based on real Categary value in IEEE spec. Please don'es modify it by your self.
62977 +#define MT2_PEER_SPECTRUM_CATE 0
62978 +#define MT2_PEER_QOS_CATE 1
62979 +#define MT2_PEER_DLS_CATE 2
62980 +#define MT2_PEER_BA_CATE 3
62981 +#define MT2_PEER_PUBLIC_CATE 4
62982 +#define MT2_PEER_RM_CATE 5
62983 +#define MT2_PEER_HT_CATE 7 // 7.4.7
62984 +#define MAX_PEER_CATE_MSG 7
62985 +#define MT2_MLME_ADD_BA_CATE 8
62986 +#define MT2_MLME_ORI_DELBA_CATE 9
62987 +#define MT2_MLME_REC_DELBA_CATE 10
62988 +#define MT2_MLME_QOS_CATE 11
62989 +#define MT2_MLME_DLS_CATE 12
62990 +#define MT2_ACT_INVALID 13
62991 +#define MAX_ACT_MSG 14
62994 +#define CATEGORY_SPECTRUM 0
62995 +#define CATEGORY_QOS 1
62996 +#define CATEGORY_DLS 2
62997 +#define CATEGORY_BA 3
62998 +#define CATEGORY_PUBLIC 4
62999 +#define CATEGORY_RM 5
63000 +#define CATEGORY_HT 7
63003 +// DLS Action frame definition
63004 +#define ACTION_DLS_REQUEST 0
63005 +#define ACTION_DLS_RESPONSE 1
63006 +#define ACTION_DLS_TEARDOWN 2
63008 +//Spectrum Action field value 802.11h 7.4.1
63009 +#define SPEC_MRQ 0 // Request
63010 +#define SPEC_MRP 1 //Report
63011 +#define SPEC_TPCRQ 2
63012 +#define SPEC_TPCRP 3
63013 +#define SPEC_CHANNEL_SWITCH 4
63016 +//BA Action field value
63017 +#define ADDBA_REQ 0
63018 +#define ADDBA_RESP 1
63021 +//Public's Action field value in Public Category. Some in 802.11y and some in 11n
63022 +#define ACTION_BSS_2040_COEXIST 0 // 11n
63023 +#define ACTION_DSE_ENABLEMENT 1 // 11y D9.0
63024 +#define ACTION_DSE_DEENABLEMENT 2 // 11y D9.0
63025 +#define ACTION_DSE_REG_LOCATION_ANNOUNCE 3 // 11y D9.0
63026 +#define ACTION_EXT_CH_SWITCH_ANNOUNCE 4 // 11y D9.0
63027 +#define ACTION_DSE_MEASUREMENT_REQ 5 // 11y D9.0
63028 +#define ACTION_DSE_MEASUREMENT_REPORT 6 // 11y D9.0
63029 +#define ACTION_MEASUREMENT_PILOT_ACTION 7 // 11y D9.0
63030 +#define ACTION_DSE_POWER_CONSTRAINT 8 // 11y D9.0
63033 +//HT Action field value
63034 +#define NOTIFY_BW_ACTION 0
63035 +#define SMPS_ACTION 1
63036 +#define PSMP_ACTION 2
63037 +#define SETPCO_ACTION 3
63038 +#define MIMO_CHA_MEASURE_ACTION 4
63039 +#define MIMO_N_BEACONFORM 5
63040 +#define MIMO_BEACONFORM 6
63041 +#define ANTENNA_SELECT 7
63042 +#define HT_INFO_EXCHANGE 8
63044 +#define ACT_FUNC_SIZE (MAX_ACT_STATE * MAX_ACT_MSG)
63046 +// STA's AUTHENTICATION state machine: states, evvents, total function #
63048 +#define AUTH_REQ_IDLE 0
63049 +#define AUTH_WAIT_SEQ2 1
63050 +#define AUTH_WAIT_SEQ4 2
63051 +#define MAX_AUTH_STATE 3
63053 +#define AUTH_MACHINE_BASE 0
63054 +#define MT2_MLME_AUTH_REQ 0
63055 +#define MT2_PEER_AUTH_EVEN 1
63056 +#define MT2_AUTH_TIMEOUT 2
63057 +#define MAX_AUTH_MSG 3
63059 +#define AUTH_FUNC_SIZE (MAX_AUTH_STATE * MAX_AUTH_MSG)
63062 +// STA's AUTH_RSP state machine: states, events, total function #
63064 +#define AUTH_RSP_IDLE 0
63065 +#define AUTH_RSP_WAIT_CHAL 1
63066 +#define MAX_AUTH_RSP_STATE 2
63068 +#define AUTH_RSP_MACHINE_BASE 0
63069 +#define MT2_AUTH_CHALLENGE_TIMEOUT 0
63070 +#define MT2_PEER_AUTH_ODD 1
63071 +#define MT2_PEER_DEAUTH 2
63072 +#define MAX_AUTH_RSP_MSG 3
63074 +#define AUTH_RSP_FUNC_SIZE (MAX_AUTH_RSP_STATE * MAX_AUTH_RSP_MSG)
63077 +// STA's SYNC state machine: states, events, total function #
63079 +#define SYNC_IDLE 0 // merge NO_BSS,IBSS_IDLE,IBSS_ACTIVE and BSS in to 1 state
63080 +#define JOIN_WAIT_BEACON 1
63081 +#define SCAN_LISTEN 2
63082 +#define MAX_SYNC_STATE 3
63084 +#define SYNC_MACHINE_BASE 0
63085 +#define MT2_MLME_SCAN_REQ 0
63086 +#define MT2_MLME_JOIN_REQ 1
63087 +#define MT2_MLME_START_REQ 2
63088 +#define MT2_PEER_BEACON 3
63089 +#define MT2_PEER_PROBE_RSP 4
63090 +#define MT2_PEER_ATIM 5
63091 +#define MT2_SCAN_TIMEOUT 6
63092 +#define MT2_BEACON_TIMEOUT 7
63093 +#define MT2_ATIM_TIMEOUT 8
63094 +#define MT2_PEER_PROBE_REQ 9
63095 +#define MAX_SYNC_MSG 10
63097 +#define SYNC_FUNC_SIZE (MAX_SYNC_STATE * MAX_SYNC_MSG)
63099 +//Messages for the DLS state machine
63100 +#define DLS_IDLE 0
63101 +#define MAX_DLS_STATE 1
63103 +#define DLS_MACHINE_BASE 0
63104 +#define MT2_MLME_DLS_REQ 0
63105 +#define MT2_PEER_DLS_REQ 1
63106 +#define MT2_PEER_DLS_RSP 2
63107 +#define MT2_MLME_DLS_TEAR_DOWN 3
63108 +#define MT2_PEER_DLS_TEAR_DOWN 4
63109 +#define MAX_DLS_MSG 5
63111 +#define DLS_FUNC_SIZE (MAX_DLS_STATE * MAX_DLS_MSG)
63114 +// STA's WPA-PSK State machine: states, events, total function #
63116 +#define WPA_PSK_IDLE 0
63117 +#define MAX_WPA_PSK_STATE 1
63119 +#define WPA_MACHINE_BASE 0
63120 +#define MT2_EAPPacket 0
63121 +#define MT2_EAPOLStart 1
63122 +#define MT2_EAPOLLogoff 2
63123 +#define MT2_EAPOLKey 3
63124 +#define MT2_EAPOLASFAlert 4
63125 +#define MAX_WPA_PSK_MSG 5
63127 +#define WPA_PSK_FUNC_SIZE (MAX_WPA_PSK_STATE * MAX_WPA_PSK_MSG)
63130 +// STA's CISCO-AIRONET State machine: states, events, total function #
63132 +#define AIRONET_IDLE 0
63133 +#define AIRONET_SCANNING 1
63134 +#define MAX_AIRONET_STATE 2
63136 +#define AIRONET_MACHINE_BASE 0
63137 +#define MT2_AIRONET_MSG 0
63138 +#define MT2_AIRONET_SCAN_REQ 1
63139 +#define MT2_AIRONET_SCAN_DONE 2
63140 +#define MAX_AIRONET_MSG 3
63142 +#define AIRONET_FUNC_SIZE (MAX_AIRONET_STATE * MAX_AIRONET_MSG)
63145 +// WSC State machine: states, events, total function #
63149 +// AP's CONTROL/CONNECT state machine: states, events, total function #
63151 +#define AP_CNTL_FUNC_SIZE 1
63154 +// AP's ASSOC state machine: states, events, total function #
63156 +#define AP_ASSOC_IDLE 0
63157 +#define AP_MAX_ASSOC_STATE 1
63159 +#define AP_ASSOC_MACHINE_BASE 0
63160 +#define APMT2_MLME_DISASSOC_REQ 0
63161 +#define APMT2_PEER_DISASSOC_REQ 1
63162 +#define APMT2_PEER_ASSOC_REQ 2
63163 +#define APMT2_PEER_REASSOC_REQ 3
63164 +#define APMT2_CLS3ERR 4
63165 +#define AP_MAX_ASSOC_MSG 5
63167 +#define AP_ASSOC_FUNC_SIZE (AP_MAX_ASSOC_STATE * AP_MAX_ASSOC_MSG)
63170 +// AP's AUTHENTICATION state machine: states, events, total function #
63172 +#define AP_AUTH_REQ_IDLE 0
63173 +#define AP_MAX_AUTH_STATE 1
63175 +#define AP_AUTH_MACHINE_BASE 0
63176 +#define APMT2_MLME_DEAUTH_REQ 0
63177 +#define APMT2_CLS2ERR 1
63178 +#define AP_MAX_AUTH_MSG 2
63180 +#define AP_AUTH_FUNC_SIZE (AP_MAX_AUTH_STATE * AP_MAX_AUTH_MSG)
63183 +// AP's AUTH-RSP state machine: states, events, total function #
63185 +#define AP_AUTH_RSP_IDLE 0
63186 +#define AP_MAX_AUTH_RSP_STATE 1
63188 +#define AP_AUTH_RSP_MACHINE_BASE 0
63189 +#define APMT2_AUTH_CHALLENGE_TIMEOUT 0
63190 +#define APMT2_PEER_AUTH_ODD 1
63191 +#define APMT2_PEER_DEAUTH 2
63192 +#define AP_MAX_AUTH_RSP_MSG 3
63194 +#define AP_AUTH_RSP_FUNC_SIZE (AP_MAX_AUTH_RSP_STATE * AP_MAX_AUTH_RSP_MSG)
63197 +// AP's SYNC state machine: states, events, total function #
63199 +#define AP_SYNC_IDLE 0
63200 +#define AP_SCAN_LISTEN 1
63201 +#define AP_MAX_SYNC_STATE 2
63203 +#define AP_SYNC_MACHINE_BASE 0
63204 +#define APMT2_PEER_PROBE_REQ 0
63205 +#define APMT2_PEER_BEACON 1
63206 +#define APMT2_MLME_SCAN_REQ 2
63207 +#define APMT2_PEER_PROBE_RSP 3
63208 +#define APMT2_SCAN_TIMEOUT 4
63209 +#define APMT2_MLME_SCAN_CNCL 5
63210 +#define AP_MAX_SYNC_MSG 6
63212 +#define AP_SYNC_FUNC_SIZE (AP_MAX_SYNC_STATE * AP_MAX_SYNC_MSG)
63215 +// AP's WPA state machine: states, events, total function #
63217 +#define AP_WPA_PTK 0
63218 +#define AP_MAX_WPA_PTK_STATE 1
63220 +#define AP_WPA_MACHINE_BASE 0
63221 +#define APMT2_EAPPacket 0
63222 +#define APMT2_EAPOLStart 1
63223 +#define APMT2_EAPOLLogoff 2
63224 +#define APMT2_EAPOLKey 3
63225 +#define APMT2_EAPOLASFAlert 4
63226 +#define AP_MAX_WPA_MSG 5
63228 +#define AP_WPA_FUNC_SIZE (AP_MAX_WPA_PTK_STATE * AP_MAX_WPA_MSG)
63232 +// =============================================================================
63234 +// value domain of 802.11 header FC.Tyte, which is b3..b2 of the 1st-byte of MAC header
63235 +#define BTYPE_MGMT 0
63236 +#define BTYPE_CNTL 1
63237 +#define BTYPE_DATA 2
63239 +// value domain of 802.11 MGMT frame's FC.subtype, which is b7..4 of the 1st-byte of MAC header
63240 +#define SUBTYPE_ASSOC_REQ 0
63241 +#define SUBTYPE_ASSOC_RSP 1
63242 +#define SUBTYPE_REASSOC_REQ 2
63243 +#define SUBTYPE_REASSOC_RSP 3
63244 +#define SUBTYPE_PROBE_REQ 4
63245 +#define SUBTYPE_PROBE_RSP 5
63246 +#define SUBTYPE_BEACON 8
63247 +#define SUBTYPE_ATIM 9
63248 +#define SUBTYPE_DISASSOC 10
63249 +#define SUBTYPE_AUTH 11
63250 +#define SUBTYPE_DEAUTH 12
63251 +#define SUBTYPE_ACTION 13
63252 +#define SUBTYPE_ACTION_NO_ACK 14
63254 +// value domain of 802.11 CNTL frame's FC.subtype, which is b7..4 of the 1st-byte of MAC header
63255 +#define SUBTYPE_WRAPPER 7
63256 +#define SUBTYPE_BLOCK_ACK_REQ 8
63257 +#define SUBTYPE_BLOCK_ACK 9
63258 +#define SUBTYPE_PS_POLL 10
63259 +#define SUBTYPE_RTS 11
63260 +#define SUBTYPE_CTS 12
63261 +#define SUBTYPE_ACK 13
63262 +#define SUBTYPE_CFEND 14
63263 +#define SUBTYPE_CFEND_CFACK 15
63265 +// value domain of 802.11 DATA frame's FC.subtype, which is b7..4 of the 1st-byte of MAC header
63266 +#define SUBTYPE_DATA 0
63267 +#define SUBTYPE_DATA_CFACK 1
63268 +#define SUBTYPE_DATA_CFPOLL 2
63269 +#define SUBTYPE_DATA_CFACK_CFPOLL 3
63270 +#define SUBTYPE_NULL_FUNC 4
63271 +#define SUBTYPE_CFACK 5
63272 +#define SUBTYPE_CFPOLL 6
63273 +#define SUBTYPE_CFACK_CFPOLL 7
63274 +#define SUBTYPE_QDATA 8
63275 +#define SUBTYPE_QDATA_CFACK 9
63276 +#define SUBTYPE_QDATA_CFPOLL 10
63277 +#define SUBTYPE_QDATA_CFACK_CFPOLL 11
63278 +#define SUBTYPE_QOS_NULL 12
63279 +#define SUBTYPE_QOS_CFACK 13
63280 +#define SUBTYPE_QOS_CFPOLL 14
63281 +#define SUBTYPE_QOS_CFACK_CFPOLL 15
63283 +// ACK policy of QOS Control field bit 6:5
63284 +#define NORMAL_ACK 0x00 // b6:5 = 00
63285 +#define NO_ACK 0x20 // b6:5 = 01
63286 +#define NO_EXPLICIT_ACK 0x40 // b6:5 = 10
63287 +#define BLOCK_ACK 0x60 // b6:5 = 11
63290 +// rtmp_data.c use these definition
63292 +#define LENGTH_802_11 24
63293 +#define LENGTH_802_11_AND_H 30
63294 +#define LENGTH_802_11_CRC_H 34
63295 +#define LENGTH_802_11_CRC 28
63296 +#define LENGTH_802_11_WITH_ADDR4 30
63297 +#define LENGTH_802_3 14
63298 +#define LENGTH_802_3_TYPE 2
63299 +#define LENGTH_802_1_H 8
63300 +#define LENGTH_EAPOL_H 4
63301 +#define LENGTH_WMMQOS_H 2
63302 +#define LENGTH_CRC 4
63303 +#define MAX_SEQ_NUMBER 0x0fff
63304 +#define LENGTH_802_3_NO_TYPE 12
63305 +#define LENGTH_802_1Q 4 /* VLAN related */
63307 +// STA_CSR4.field.TxResult
63308 +#define TX_RESULT_SUCCESS 0
63309 +#define TX_RESULT_ZERO_LENGTH 1
63310 +#define TX_RESULT_UNDER_RUN 2
63311 +#define TX_RESULT_OHY_ERROR 4
63312 +#define TX_RESULT_RETRY_FAIL 6
63314 +// All PHY rate summary in TXD
63315 +// Preamble MODE in TxD
63316 +#define MODE_CCK 0
63317 +#define MODE_OFDM 1
63318 +#ifdef DOT11_N_SUPPORT
63319 +#define MODE_HTMIX 2
63320 +#define MODE_HTGREENFIELD 3
63321 +#endif // DOT11_N_SUPPORT //
63322 +// MCS for CCK. BW.SGI.STBC are reserved
63323 +#define MCS_LONGP_RATE_1 0 // long preamble CCK 1Mbps
63324 +#define MCS_LONGP_RATE_2 1 // long preamble CCK 1Mbps
63325 +#define MCS_LONGP_RATE_5_5 2
63326 +#define MCS_LONGP_RATE_11 3
63327 +#define MCS_SHORTP_RATE_1 4 // long preamble CCK 1Mbps. short is forbidden in 1Mbps
63328 +#define MCS_SHORTP_RATE_2 5 // short preamble CCK 2Mbps
63329 +#define MCS_SHORTP_RATE_5_5 6
63330 +#define MCS_SHORTP_RATE_11 7
63331 +// To send duplicate legacy OFDM. set BW=BW_40. SGI.STBC are reserved
63332 +#define MCS_RATE_6 0 // legacy OFDM
63333 +#define MCS_RATE_9 1 // OFDM
63334 +#define MCS_RATE_12 2 // OFDM
63335 +#define MCS_RATE_18 3 // OFDM
63336 +#define MCS_RATE_24 4 // OFDM
63337 +#define MCS_RATE_36 5 // OFDM
63338 +#define MCS_RATE_48 6 // OFDM
63339 +#define MCS_RATE_54 7 // OFDM
63341 +#define MCS_0 0 // 1S
63349 +#define MCS_8 8 // 2S
63357 +#define MCS_16 16 // 3*3
63366 +#define MCS_AUTO 33
63368 +#ifdef DOT11_N_SUPPORT
63371 +#define HTMODE_MM 0
63372 +#define HTMODE_GF 1
63373 +#endif // DOT11_N_SUPPORT //
63375 +// Fixed Tx MODE - HT, CCK or OFDM
63376 +#define FIXED_TXMODE_HT 0
63377 +#define FIXED_TXMODE_CCK 1
63378 +#define FIXED_TXMODE_OFDM 2
63380 +#define BW_20 BAND_WIDTH_20
63381 +#define BW_40 BAND_WIDTH_40
63382 +#define BW_BOTH BAND_WIDTH_BOTH
63383 +#define BW_10 BAND_WIDTH_10 // 802.11j has 10MHz. This definition is for internal usage. doesn't fill in the IE or other field.
63385 +#ifdef DOT11_N_SUPPORT
63387 +#define GI_400 GAP_INTERVAL_400 // only support in HT mode
63388 +#define GI_BOTH GAP_INTERVAL_BOTH
63389 +#endif // DOT11_N_SUPPORT //
63390 +#define GI_800 GAP_INTERVAL_800
63392 +#define STBC_NONE 0
63393 +#ifdef DOT11_N_SUPPORT
63394 +#define STBC_USE 1 // limited use in rt2860b phy
63395 +#define RXSTBC_ONE 1 // rx support of one spatial stream
63396 +#define RXSTBC_TWO 2 // rx support of 1 and 2 spatial stream
63397 +#define RXSTBC_THR 3 // rx support of 1~3 spatial stream
63399 +#define MCSFBK_NONE 0 // not support mcs feedback /
63400 +#define MCSFBK_RSV 1 // reserved
63401 +#define MCSFBK_UNSOLICIT 2 // only support unsolict mcs feedback
63402 +#define MCSFBK_MRQ 3 // response to both MRQ and unsolict mcs feedback
63404 +// MIMO power safe
63405 +#define MMPS_STATIC 0
63406 +#define MMPS_DYNAMIC 1
63407 +#define MMPS_RSV 2
63408 +#define MMPS_ENABLE 3
63415 +#endif // DOT11_N_SUPPORT //
63418 +#define TXRATEMIMO 0x80
63419 +#define TXRATEMCS 0x7F
63420 +#define TXRATEOFDM 0x7F
63423 +#define RATE_5_5 2
63425 +#define RATE_6 4 // OFDM
63426 +#define RATE_9 5 // OFDM
63427 +#define RATE_12 6 // OFDM
63428 +#define RATE_18 7 // OFDM
63429 +#define RATE_24 8 // OFDM
63430 +#define RATE_36 9 // OFDM
63431 +#define RATE_48 10 // OFDM
63432 +#define RATE_54 11 // OFDM
63433 +#define RATE_FIRST_OFDM_RATE RATE_6
63434 +#define RATE_LAST_OFDM_RATE RATE_54
63435 +#define RATE_6_5 12 // HT mix
63436 +#define RATE_13 13 // HT mix
63437 +#define RATE_19_5 14 // HT mix
63438 +#define RATE_26 15 // HT mix
63439 +#define RATE_39 16 // HT mix
63440 +#define RATE_52 17 // HT mix
63441 +#define RATE_58_5 18 // HT mix
63442 +#define RATE_65 19 // HT mix
63443 +#define RATE_78 20 // HT mix
63444 +#define RATE_104 21 // HT mix
63445 +#define RATE_117 22 // HT mix
63446 +#define RATE_130 23 // HT mix
63447 +//#define RATE_AUTO_SWITCH 255 // for StaCfg.FixedTxRate only
63448 +#define HTRATE_0 12
63449 +#define RATE_FIRST_MM_RATE HTRATE_0
63450 +#define RATE_FIRST_HT_RATE HTRATE_0
63451 +#define RATE_LAST_HT_RATE HTRATE_0
63454 +#define IFS_HTTXOP 0 // The txop will be handles by ASIC.
63455 +#define IFS_PIFS 1
63456 +#define IFS_SIFS 2
63457 +#define IFS_BACKOFF 3
63459 +// pTxD->RetryMode
63460 +#define LONG_RETRY 1
63461 +#define SHORT_RETRY 0
63463 +// Country Region definition
63464 +#define REGION_MINIMUM_BG_BAND 0
63465 +#define REGION_0_BG_BAND 0 // 1-11
63466 +#define REGION_1_BG_BAND 1 // 1-13
63467 +#define REGION_2_BG_BAND 2 // 10-11
63468 +#define REGION_3_BG_BAND 3 // 10-13
63469 +#define REGION_4_BG_BAND 4 // 14
63470 +#define REGION_5_BG_BAND 5 // 1-14
63471 +#define REGION_6_BG_BAND 6 // 3-9
63472 +#define REGION_7_BG_BAND 7 // 5-13
63473 +#define REGION_31_BG_BAND 31 // 5-13
63474 +#define REGION_MAXIMUM_BG_BAND 7
63476 +#define REGION_MINIMUM_A_BAND 0
63477 +#define REGION_0_A_BAND 0 // 36, 40, 44, 48, 52, 56, 60, 64, 149, 153, 157, 161, 165
63478 +#define REGION_1_A_BAND 1 // 36, 40, 44, 48, 52, 56, 60, 64, 100, 104, 108, 112, 116, 120, 124, 128, 132, 136, 140
63479 +#define REGION_2_A_BAND 2 // 36, 40, 44, 48, 52, 56, 60, 64
63480 +#define REGION_3_A_BAND 3 // 52, 56, 60, 64, 149, 153, 157, 161
63481 +#define REGION_4_A_BAND 4 // 149, 153, 157, 161, 165
63482 +#define REGION_5_A_BAND 5 // 149, 153, 157, 161
63483 +#define REGION_6_A_BAND 6 // 36, 40, 44, 48
63484 +#define REGION_7_A_BAND 7 // 36, 40, 44, 48, 52, 56, 60, 64, 100, 104, 108, 112, 116, 120, 124, 128, 132, 136, 140, 149, 153, 157, 161, 165
63485 +#define REGION_8_A_BAND 8 // 52, 56, 60, 64
63486 +#define REGION_9_A_BAND 9 // 36, 40, 44, 48, 52, 56, 60, 64, 100, 104, 108, 112, 116, 132, 136, 140, 149, 153, 157, 161, 165
63487 +#define REGION_10_A_BAND 10 // 36, 40, 44, 48, 149, 153, 157, 161, 165
63488 +#define REGION_11_A_BAND 11 // 36, 40, 44, 48, 52, 56, 60, 64, 100, 104, 108, 112, 116, 120, 149, 153, 157, 161
63489 +#define REGION_MAXIMUM_A_BAND 11
63491 +// pTxD->CipherAlg
63492 +#define CIPHER_NONE 0
63493 +#define CIPHER_WEP64 1
63494 +#define CIPHER_WEP128 2
63495 +#define CIPHER_TKIP 3
63496 +#define CIPHER_AES 4
63497 +#define CIPHER_CKIP64 5
63498 +#define CIPHER_CKIP128 6
63499 +#define CIPHER_TKIP_NO_MIC 7 // MIC appended by driver: not a valid value in hardware key table
63500 +#define CIPHER_SMS4 8
63502 +// value domain of pAd->RfIcType
63503 +#define RFIC_2820 1 // 2.4G 2T3R
63504 +#define RFIC_2850 2 // 2.4G/5G 2T3R
63505 +#define RFIC_2720 3 // 2.4G 1T2R
63506 +#define RFIC_2750 4 // 2.4G/5G 1T2R
63507 +#define RFIC_3020 5 // 2.4G 1T1R
63508 +#define RFIC_2020 6 // 2.4G B/G
63509 +#define RFIC_3021 7 // 2.4G 1T2R
63510 +#define RFIC_3022 8 // 2.4G 2T2R
63513 +#define LED_LINK_DOWN 0
63514 +#define LED_LINK_UP 1
63515 +#define LED_RADIO_OFF 2
63516 +#define LED_RADIO_ON 3
63517 +#define LED_HALT 4
63519 +#define LED_ON_SITE_SURVEY 6
63520 +#define LED_POWER_UP 7
63522 +// value domain of pAd->LedCntl.LedMode and E2PROM
63523 +#define LED_MODE_DEFAULT 0
63524 +#define LED_MODE_TWO_LED 1
63525 +#define LED_MODE_SIGNAL_STREGTH 8 // EEPROM define =8
63527 +// RC4 init value, used fro WEP & TKIP
63528 +#define PPPINITFCS32 0xffffffff /* Initial FCS value */
63530 +// value domain of pAd->StaCfg.PortSecured. 802.1X controlled port definition
63531 +#define WPA_802_1X_PORT_SECURED 1
63532 +#define WPA_802_1X_PORT_NOT_SECURED 2
63534 +#define PAIRWISE_KEY 1
63535 +#define GROUP_KEY 2
63537 +//definition of DRS
63538 +#define MAX_STEP_OF_TX_RATE_SWITCH 32
63541 +// pre-allocated free NDIS PACKET/BUFFER poll for internal usage
63542 +#define MAX_NUM_OF_FREE_NDIS_PACKET 128
63545 +#define MAX_TX_REORDERBUF 64
63546 +#define MAX_RX_REORDERBUF 64
63547 +#define DEFAULT_TX_TIMEOUT 30
63548 +#define DEFAULT_RX_TIMEOUT 30
63550 +// definition of Recipient or Originator
63551 +#define I_RECIPIENT TRUE
63552 +#define I_ORIGINATOR FALSE
63554 +#define DEFAULT_BBP_TX_POWER 0
63555 +#define DEFAULT_RF_TX_POWER 5
63557 +#define MAX_INI_BUFFER_SIZE 4096
63558 +#define MAX_PARAM_BUFFER_SIZE (2048) // enough for ACL (18*64)
63559 + //18 : the length of Mac address acceptable format "01:02:03:04:05:06;")
63560 + //64 : MAX_NUM_OF_ACL_LIST
63561 +// definition of pAd->OpMode
63562 +#define OPMODE_STA 0
63563 +#define OPMODE_AP 1
63564 +//#define OPMODE_L3_BRG 2 // as AP and STA at the same time
63566 +#ifdef RT_BIG_ENDIAN
63567 +#define DIR_READ 0
63568 +#define DIR_WRITE 1
63569 +#define TYPE_TXD 0
63570 +#define TYPE_RXD 1
63571 +#define TYPE_TXINFO 0
63572 +#define TYPE_RXINFO 1
63573 +#define TYPE_TXWI 0
63574 +#define TYPE_RXWI 1
63577 +// ========================= AP rtmp_def.h ===========================
63578 +// value domain for pAd->EventTab.Log[].Event
63579 +#define EVENT_RESET_ACCESS_POINT 0 // Log = "hh:mm:ss Restart Access Point"
63580 +#define EVENT_ASSOCIATED 1 // Log = "hh:mm:ss STA 00:01:02:03:04:05 associated"
63581 +#define EVENT_DISASSOCIATED 2 // Log = "hh:mm:ss STA 00:01:02:03:04:05 left this BSS"
63582 +#define EVENT_AGED_OUT 3 // Log = "hh:mm:ss STA 00:01:02:03:04:05 was aged-out and removed from this BSS"
63583 +#define EVENT_COUNTER_M 4
63584 +#define EVENT_INVALID_PSK 5
63585 +#define EVENT_MAX_EVENT_TYPE 6
63586 +// ==== end of AP rtmp_def.h ============
63588 +// definition RSSI Number
63593 +// definition of radar detection
63594 +#define RD_NORMAL_MODE 0 // Not found radar signal
63595 +#define RD_SWITCHING_MODE 1 // Found radar signal, and doing channel switch
63596 +#define RD_SILENCE_MODE 2 // After channel switch, need to be silence a while to ensure radar not found
63598 +//Driver defined cid for mapping status and command.
63599 +#define SLEEPCID 0x11
63600 +#define WAKECID 0x22
63601 +#define QUERYPOWERCID 0x33
63602 +#define OWNERMCU 0x1
63603 +#define OWNERCPU 0x0
63605 +// MBSSID definition
63606 +#define ENTRY_NOT_FOUND 0xFF
63609 +/* After Linux 2.6.9,
63610 + * VLAN module use Private (from user) interface flags (netdevice->priv_flags).
63611 + * #define IFF_802_1Q_VLAN 0x1 -- 802.1Q VLAN device. in if.h
63612 + * ref to ip_sabotage_out() [ out->priv_flags & IFF_802_1Q_VLAN ] in br_netfilter.c
63614 + * For this reason, we MUST use EVEN value in priv_flags
63616 +#define INT_MAIN 0x0100
63617 +#define INT_MBSSID 0x0200
63618 +#define INT_WDS 0x0300
63619 +#define INT_APCLI 0x0400
63620 +#define INT_MESH 0x0500
63622 +// Use bitmap to allow coexist of ATE_TXFRAME and ATE_RXFRAME(i.e.,to support LoopBack mode)
63624 +#define ATE_START 0x00 // Start ATE
63625 +#define ATE_STOP 0x80 // Stop ATE
63626 +#define ATE_TXCONT 0x05 // Continuous Transmit
63627 +#define ATE_TXCARR 0x09 // Transmit Carrier
63628 +#define ATE_TXCARRSUPP 0x11 // Transmit Carrier Suppression
63629 +#define ATE_TXFRAME 0x01 // Transmit Frames
63630 +#define ATE_RXFRAME 0x02 // Receive Frames
63631 +#ifdef RALINK_28xx_QA
63632 +#define ATE_TXSTOP 0xe2 // Stop Transmition(i.e., TXCONT, TXCARR, TXCARRSUPP, and TXFRAME)
63633 +#define ATE_RXSTOP 0xfd // Stop receiving Frames
63634 +#define BBP22_TXFRAME 0x00 // Transmit Frames
63635 +#define BBP22_TXCONT_OR_CARRSUPP 0x80 // Continuous Transmit or Carrier Suppression
63636 +#define BBP22_TXCARR 0xc1 // Transmit Carrier
63637 +#define BBP24_TXCONT 0x00 // Continuous Transmit
63638 +#define BBP24_CARRSUPP 0x01 // Carrier Suppression
63639 +#endif // RALINK_28xx_QA //
63640 +#endif // RALINK_ATE //
63643 +#define WEP_HEXADECIMAL_TYPE 0
63644 +#define WEP_ASCII_TYPE 1
63648 +// WIRELESS EVENTS definition
63649 +/* Max number of char in custom event, refer to wireless_tools.28/wireless.20.h */
63650 +#define IW_CUSTOM_MAX_LEN 255 /* In bytes */
63652 +// For system event - start
63653 +#define IW_SYS_EVENT_FLAG_START 0x0200
63654 +#define IW_ASSOC_EVENT_FLAG 0x0200
63655 +#define IW_DISASSOC_EVENT_FLAG 0x0201
63656 +#define IW_DEAUTH_EVENT_FLAG 0x0202
63657 +#define IW_AGEOUT_EVENT_FLAG 0x0203
63658 +#define IW_COUNTER_MEASURES_EVENT_FLAG 0x0204
63659 +#define IW_REPLAY_COUNTER_DIFF_EVENT_FLAG 0x0205
63660 +#define IW_RSNIE_DIFF_EVENT_FLAG 0x0206
63661 +#define IW_MIC_DIFF_EVENT_FLAG 0x0207
63662 +#define IW_ICV_ERROR_EVENT_FLAG 0x0208
63663 +#define IW_MIC_ERROR_EVENT_FLAG 0x0209
63664 +#define IW_GROUP_HS_TIMEOUT_EVENT_FLAG 0x020A
63665 +#define IW_PAIRWISE_HS_TIMEOUT_EVENT_FLAG 0x020B
63666 +#define IW_RSNIE_SANITY_FAIL_EVENT_FLAG 0x020C
63667 +#define IW_SET_KEY_DONE_WPA1_EVENT_FLAG 0x020D
63668 +#define IW_SET_KEY_DONE_WPA2_EVENT_FLAG 0x020E
63669 +#define IW_STA_LINKUP_EVENT_FLAG 0x020F
63670 +#define IW_STA_LINKDOWN_EVENT_FLAG 0x0210
63671 +#define IW_SCAN_COMPLETED_EVENT_FLAG 0x0211
63672 +#define IW_SCAN_ENQUEUE_FAIL_EVENT_FLAG 0x0212
63673 +// if add new system event flag, please upadte the IW_SYS_EVENT_FLAG_END
63674 +#define IW_SYS_EVENT_FLAG_END 0x0212
63675 +#define IW_SYS_EVENT_TYPE_NUM (IW_SYS_EVENT_FLAG_END - IW_SYS_EVENT_FLAG_START + 1)
63676 +// For system event - end
63678 +// For spoof attack event - start
63679 +#define IW_SPOOF_EVENT_FLAG_START 0x0300
63680 +#define IW_CONFLICT_SSID_EVENT_FLAG 0x0300
63681 +#define IW_SPOOF_ASSOC_RESP_EVENT_FLAG 0x0301
63682 +#define IW_SPOOF_REASSOC_RESP_EVENT_FLAG 0x0302
63683 +#define IW_SPOOF_PROBE_RESP_EVENT_FLAG 0x0303
63684 +#define IW_SPOOF_BEACON_EVENT_FLAG 0x0304
63685 +#define IW_SPOOF_DISASSOC_EVENT_FLAG 0x0305
63686 +#define IW_SPOOF_AUTH_EVENT_FLAG 0x0306
63687 +#define IW_SPOOF_DEAUTH_EVENT_FLAG 0x0307
63688 +#define IW_SPOOF_UNKNOWN_MGMT_EVENT_FLAG 0x0308
63689 +#define IW_REPLAY_ATTACK_EVENT_FLAG 0x0309
63690 +// if add new spoof attack event flag, please upadte the IW_SPOOF_EVENT_FLAG_END
63691 +#define IW_SPOOF_EVENT_FLAG_END 0x0309
63692 +#define IW_SPOOF_EVENT_TYPE_NUM (IW_SPOOF_EVENT_FLAG_END - IW_SPOOF_EVENT_FLAG_START + 1)
63693 +// For spoof attack event - end
63695 +// For flooding attack event - start
63696 +#define IW_FLOOD_EVENT_FLAG_START 0x0400
63697 +#define IW_FLOOD_AUTH_EVENT_FLAG 0x0400
63698 +#define IW_FLOOD_ASSOC_REQ_EVENT_FLAG 0x0401
63699 +#define IW_FLOOD_REASSOC_REQ_EVENT_FLAG 0x0402
63700 +#define IW_FLOOD_PROBE_REQ_EVENT_FLAG 0x0403
63701 +#define IW_FLOOD_DISASSOC_EVENT_FLAG 0x0404
63702 +#define IW_FLOOD_DEAUTH_EVENT_FLAG 0x0405
63703 +#define IW_FLOOD_EAP_REQ_EVENT_FLAG 0x0406
63704 +// if add new flooding attack event flag, please upadte the IW_FLOOD_EVENT_FLAG_END
63705 +#define IW_FLOOD_EVENT_FLAG_END 0x0406
63706 +#define IW_FLOOD_EVENT_TYPE_NUM (IW_FLOOD_EVENT_FLAG_END - IW_FLOOD_EVENT_FLAG_START + 1)
63707 +// For flooding attack - end
63709 +// End - WIRELESS EVENTS definition
63711 +#ifdef CONFIG_STA_SUPPORT
63712 +// definition for DLS, kathy
63713 +#define MAX_NUM_OF_INIT_DLS_ENTRY 1
63714 +#define MAX_NUM_OF_DLS_ENTRY MAX_NUMBER_OF_DLS_ENTRY
63716 +//Block ACK , rt2860, kathy
63717 +#define MAX_TX_REORDERBUF 64
63718 +#define MAX_RX_REORDERBUF 64
63719 +#define DEFAULT_TX_TIMEOUT 30
63720 +#define DEFAULT_RX_TIMEOUT 30
63721 +#ifndef CONFIG_AP_SUPPORT
63722 +#define MAX_BARECI_SESSION 8
63725 +#ifndef IW_ESSID_MAX_SIZE
63726 +/* Maximum size of the ESSID and pAd->nickname strings */
63727 +#define IW_ESSID_MAX_SIZE 32
63729 +#endif // CONFIG_STA_SUPPORT //
63731 +#ifdef MCAST_RATE_SPECIFIC
63732 +#define MCAST_DISABLE 0
63733 +#define MCAST_CCK 1
63734 +#define MCAST_OFDM 2
63735 +#define MCAST_HTMIX 3
63736 +#endif // MCAST_RATE_SPECIFIC //
63738 +// For AsicRadioOff/AsicRadioOn function
63739 +#define DOT11POWERSAVE 0
63740 +#define GUIRADIO_OFF 1
63741 +#define RTMP_HALT 2
63742 +#define GUI_IDLE_POWER_SAVE 3
63746 +// definition for WpaSupport flag
63747 +#define WPA_SUPPLICANT_DISABLE 0
63748 +#define WPA_SUPPLICANT_ENABLE 1
63749 +#define WPA_SUPPLICANT_ENABLE_WITH_WEB_UI 2
63751 +// Endian byte swapping codes
63752 +#define SWAP16(x) \
63754 + (((UINT16)(x) & (UINT16) 0x00ffU) << 8) | \
63755 + (((UINT16)(x) & (UINT16) 0xff00U) >> 8) ))
63757 +#define SWAP32(x) \
63759 + (((UINT32)(x) & (UINT32) 0x000000ffUL) << 24) | \
63760 + (((UINT32)(x) & (UINT32) 0x0000ff00UL) << 8) | \
63761 + (((UINT32)(x) & (UINT32) 0x00ff0000UL) >> 8) | \
63762 + (((UINT32)(x) & (UINT32) 0xff000000UL) >> 24) ))
63764 +#define SWAP64(x) \
63766 + (UINT64)(((UINT64)(x) & (UINT64) 0x00000000000000ffULL) << 56) | \
63767 + (UINT64)(((UINT64)(x) & (UINT64) 0x000000000000ff00ULL) << 40) | \
63768 + (UINT64)(((UINT64)(x) & (UINT64) 0x0000000000ff0000ULL) << 24) | \
63769 + (UINT64)(((UINT64)(x) & (UINT64) 0x00000000ff000000ULL) << 8) | \
63770 + (UINT64)(((UINT64)(x) & (UINT64) 0x000000ff00000000ULL) >> 8) | \
63771 + (UINT64)(((UINT64)(x) & (UINT64) 0x0000ff0000000000ULL) >> 24) | \
63772 + (UINT64)(((UINT64)(x) & (UINT64) 0x00ff000000000000ULL) >> 40) | \
63773 + (UINT64)(((UINT64)(x) & (UINT64) 0xff00000000000000ULL) >> 56) ))
63775 +#ifdef RT_BIG_ENDIAN
63777 +#define cpu2le64(x) SWAP64((x))
63778 +#define le2cpu64(x) SWAP64((x))
63779 +#define cpu2le32(x) SWAP32((x))
63780 +#define le2cpu32(x) SWAP32((x))
63781 +#define cpu2le16(x) SWAP16((x))
63782 +#define le2cpu16(x) SWAP16((x))
63783 +#define cpu2be64(x) ((UINT64)(x))
63784 +#define be2cpu64(x) ((UINT64)(x))
63785 +#define cpu2be32(x) ((UINT32)(x))
63786 +#define be2cpu32(x) ((UINT32)(x))
63787 +#define cpu2be16(x) ((UINT16)(x))
63788 +#define be2cpu16(x) ((UINT16)(x))
63790 +#else // Little_Endian
63792 +#define cpu2le64(x) ((UINT64)(x))
63793 +#define le2cpu64(x) ((UINT64)(x))
63794 +#define cpu2le32(x) ((UINT32)(x))
63795 +#define le2cpu32(x) ((UINT32)(x))
63796 +#define cpu2le16(x) ((UINT16)(x))
63797 +#define le2cpu16(x) ((UINT16)(x))
63798 +#define cpu2be64(x) SWAP64((x))
63799 +#define be2cpu64(x) SWAP64((x))
63800 +#define cpu2be32(x) SWAP32((x))
63801 +#define be2cpu32(x) SWAP32((x))
63802 +#define cpu2be16(x) SWAP16((x))
63803 +#define be2cpu16(x) SWAP16((x))
63805 +#endif // RT_BIG_ENDIAN
63807 +#endif // __RTMP_DEF_H__
63811 +++ b/drivers/staging/rt3070/rtmp.h
63814 + *************************************************************************
63815 + * Ralink Tech Inc.
63816 + * 5F., No.36, Taiyuan St., Jhubei City,
63817 + * Hsinchu County 302,
63820 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
63822 + * This program is free software; you can redistribute it and/or modify *
63823 + * it under the terms of the GNU General Public License as published by *
63824 + * the Free Software Foundation; either version 2 of the License, or *
63825 + * (at your option) any later version. *
63827 + * This program is distributed in the hope that it will be useful, *
63828 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
63829 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
63830 + * GNU General Public License for more details. *
63832 + * You should have received a copy of the GNU General Public License *
63833 + * along with this program; if not, write to the *
63834 + * Free Software Foundation, Inc., *
63835 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
63837 + *************************************************************************
63843 + Miniport generic portion header file
63845 + Revision History:
63847 + -------- ---------- ----------------------------------------------
63848 + Paul Lin 2002-08-01 created
63849 + James Tan 2002-09-06 modified (Revise NTCRegTable)
63850 + John Chang 2004-09-06 modified for RT2600
63852 +#ifndef __RTMP_H__
63853 +#define __RTMP_H__
63855 +#include "link_list.h"
63856 +#include "spectrum_def.h"
63859 +#include "mlme_ex_def.h"
63860 +#endif // MLME_EX //
63862 +#ifdef CONFIG_STA_SUPPORT
63863 +#include "aironet.h"
63864 +#endif // CONFIG_STA_SUPPORT //
63866 +#undef AP_WSC_INCLUDED
63867 +#undef STA_WSC_INCLUDED
63868 +#undef WSC_INCLUDED
63871 +#ifdef CONFIG_STA_SUPPORT
63872 +#endif // CONFIG_STA_SUPPORT //
63874 +#if defined(AP_WSC_INCLUDED) || defined(STA_WSC_INCLUDED)
63875 +#define WSC_INCLUDED
63884 +//#define DBG_DIAGNOSE 1
63886 +#if defined(CONFIG_AP_SUPPORT) && defined(CONFIG_STA_SUPPORT)
63887 +#define IF_DEV_CONFIG_OPMODE_ON_AP(_pAd) if(_pAd->OpMode == OPMODE_AP)
63888 +#define IF_DEV_CONFIG_OPMODE_ON_STA(_pAd) if(_pAd->OpMode == OPMODE_STA)
63890 +#define IF_DEV_CONFIG_OPMODE_ON_AP(_pAd)
63891 +#define IF_DEV_CONFIG_OPMODE_ON_STA(_pAd)
63894 +#define VIRTUAL_IF_INC(__pAd) ((__pAd)->VirtualIfCnt++)
63895 +#define VIRTUAL_IF_DEC(__pAd) ((__pAd)->VirtualIfCnt--)
63896 +#define VIRTUAL_IF_NUM(__pAd) ((__pAd)->VirtualIfCnt)
63899 +////////////////////////////////////////////////////////////////////////////
63900 +// The TX_BUFFER structure forms the transmitted USB packet to the device
63901 +////////////////////////////////////////////////////////////////////////////
63902 +typedef struct __TX_BUFFER{
63904 + UCHAR WirelessPacket[TX_BUFFER_NORMSIZE];
63905 + HEADER_802_11 NullFrame;
63906 + PSPOLL_FRAME PsPollPacket;
63907 + RTS_FRAME RTSFrame;
63909 + UCHAR Aggregation[4]; //Buffer for save Aggregation size.
63910 +} TX_BUFFER, *PTX_BUFFER;
63912 +typedef struct __HTTX_BUFFER{
63914 + UCHAR WirelessPacket[MAX_TXBULK_SIZE];
63915 + HEADER_802_11 NullFrame;
63916 + PSPOLL_FRAME PsPollPacket;
63917 + RTS_FRAME RTSFrame;
63919 + UCHAR Aggregation[4]; //Buffer for save Aggregation size.
63920 +} HTTX_BUFFER, *PHTTX_BUFFER;
63923 +// used to track driver-generated write irps
63924 +typedef struct _TX_CONTEXT
63926 + PVOID pAd; //Initialized in MiniportInitialize
63927 + PURB pUrb; //Initialized in MiniportInitialize
63928 + PIRP pIrp; //used to cancel pending bulk out.
63929 + //Initialized in MiniportInitialize
63930 + PTX_BUFFER TransferBuffer; //Initialized in MiniportInitialize
63931 + ULONG BulkOutSize;
63932 + UCHAR BulkOutPipeId;
63935 + BOOLEAN bWaitingBulkOut; // at least one packet is in this TxContext, ready for making IRP anytime.
63936 + BOOLEAN bFullForBulkOut; // all tx buffer are full , so waiting for tx bulkout.
63937 + BOOLEAN IRPPending;
63939 + BOOLEAN bAggregatible;
63940 + UCHAR Header_802_3[LENGTH_802_3];
63942 + ULONG DataOffset;
63944 + dma_addr_t data_dma; // urb dma on linux
63946 +} TX_CONTEXT, *PTX_CONTEXT, **PPTX_CONTEXT;
63949 +// used to track driver-generated write irps
63950 +typedef struct _HT_TX_CONTEXT
63952 + PVOID pAd; //Initialized in MiniportInitialize
63953 + PURB pUrb; //Initialized in MiniportInitialize
63954 + PIRP pIrp; //used to cancel pending bulk out.
63955 + //Initialized in MiniportInitialize
63956 + PHTTX_BUFFER TransferBuffer; //Initialized in MiniportInitialize
63957 + ULONG BulkOutSize; // Indicate the total bulk-out size in bytes in one bulk-transmission
63958 + UCHAR BulkOutPipeId;
63959 + BOOLEAN IRPPending;
63961 + BOOLEAN bCurWriting;
63962 + BOOLEAN bRingEmpty;
63963 + BOOLEAN bCopySavePad;
63964 + UCHAR SavedPad[8];
63965 + UCHAR Header_802_3[LENGTH_802_3];
63966 + ULONG CurWritePosition; // Indicate the buffer offset which packet will be inserted start from.
63967 + ULONG CurWriteRealPos; // Indicate the buffer offset which packet now are writing to.
63968 + ULONG NextBulkOutPosition; // Indicate the buffer start offset of a bulk-transmission
63969 + ULONG ENextBulkOutPosition; // Indicate the buffer end offset of a bulk-transmission
63971 + dma_addr_t data_dma; // urb dma on linux
63972 +} HT_TX_CONTEXT, *PHT_TX_CONTEXT, **PPHT_TX_CONTEXT;
63976 +// Structure to keep track of receive packets and buffers to indicate
63977 +// receive data to the protocol.
63979 +typedef struct _RX_CONTEXT
63981 + PUCHAR TransferBuffer;
63983 + PIRP pIrp;//used to cancel pending bulk in.
63985 + //These 2 Boolean shouldn't both be 1 at the same time.
63986 + ULONG BulkInOffset; // number of packets waiting for reordering .
63987 +// BOOLEAN ReorderInUse; // At least one packet in this buffer are in reordering buffer and wait for receive indication
63988 + BOOLEAN bRxHandling; // Notify this packet is being process now.
63989 + BOOLEAN InUse; // USB Hardware Occupied. Wait for USB HW to put packet.
63990 + BOOLEAN Readable; // Receive Complete back. OK for driver to indicate receiving packet.
63991 + BOOLEAN IRPPending; // TODO: To be removed
63992 + atomic_t IrpLock;
63993 + NDIS_SPIN_LOCK RxContextLock;
63994 + dma_addr_t data_dma; // urb dma on linux
63995 +} RX_CONTEXT, *PRX_CONTEXT;
63996 +#endif // RT2870 //
64000 +// NDIS Version definitions
64002 +#ifdef NDIS50_MINIPORT
64003 +#define RTMP_NDIS_MAJOR_VERSION 5
64004 +#define RTMP_NDIS_MINOR_VERSION 0
64007 +#ifdef NDIS51_MINIPORT
64008 +#define RTMP_NDIS_MAJOR_VERSION 5
64009 +#define RTMP_NDIS_MINOR_VERSION 1
64012 +extern char NIC_VENDOR_DESC[];
64013 +extern int NIC_VENDOR_DESC_LEN;
64015 +extern unsigned char SNAP_AIRONET[];
64016 +extern unsigned char CipherSuiteCiscoCCKM[];
64017 +extern unsigned char CipherSuiteCiscoCCKMLen;
64018 +extern unsigned char CipherSuiteCiscoCCKM24[];
64019 +extern unsigned char CipherSuiteCiscoCCKM24Len;
64020 +extern unsigned char CipherSuiteCCXTkip[];
64021 +extern unsigned char CipherSuiteCCXTkipLen;
64022 +extern unsigned char CISCO_OUI[];
64023 +extern UCHAR BaSizeArray[4];
64025 +extern UCHAR BROADCAST_ADDR[MAC_ADDR_LEN];
64026 +extern UCHAR MULTICAST_ADDR[MAC_ADDR_LEN];
64027 +extern UCHAR ZERO_MAC_ADDR[MAC_ADDR_LEN];
64028 +extern ULONG BIT32[32];
64029 +extern UCHAR BIT8[8];
64030 +extern char* CipherName[];
64031 +extern char* MCSToMbps[];
64032 +extern UCHAR RxwiMCSToOfdmRate[12];
64033 +extern UCHAR SNAP_802_1H[6];
64034 +extern UCHAR SNAP_BRIDGE_TUNNEL[6];
64035 +extern UCHAR SNAP_AIRONET[8];
64036 +extern UCHAR CKIP_LLC_SNAP[8];
64037 +extern UCHAR EAPOL_LLC_SNAP[8];
64038 +extern UCHAR EAPOL[2];
64039 +extern UCHAR IPX[2];
64040 +extern UCHAR APPLE_TALK[2];
64041 +extern UCHAR RateIdToPlcpSignal[12]; // see IEEE802.11a-1999 p.14
64042 +extern UCHAR OfdmRateToRxwiMCS[];
64043 +extern UCHAR OfdmSignalToRateId[16] ;
64044 +extern UCHAR default_cwmin[4];
64045 +extern UCHAR default_cwmax[4];
64046 +extern UCHAR default_sta_aifsn[4];
64047 +extern UCHAR MapUserPriorityToAccessCategory[8];
64049 +extern USHORT RateUpPER[];
64050 +extern USHORT RateDownPER[];
64051 +extern UCHAR Phy11BNextRateDownward[];
64052 +extern UCHAR Phy11BNextRateUpward[];
64053 +extern UCHAR Phy11BGNextRateDownward[];
64054 +extern UCHAR Phy11BGNextRateUpward[];
64055 +extern UCHAR Phy11ANextRateDownward[];
64056 +extern UCHAR Phy11ANextRateUpward[];
64057 +extern CHAR RssiSafeLevelForTxRate[];
64058 +extern UCHAR RateIdToMbps[];
64059 +extern USHORT RateIdTo500Kbps[];
64061 +extern UCHAR CipherSuiteWpaNoneTkip[];
64062 +extern UCHAR CipherSuiteWpaNoneTkipLen;
64064 +extern UCHAR CipherSuiteWpaNoneAes[];
64065 +extern UCHAR CipherSuiteWpaNoneAesLen;
64067 +extern UCHAR SsidIe;
64068 +extern UCHAR SupRateIe;
64069 +extern UCHAR ExtRateIe;
64071 +#ifdef DOT11_N_SUPPORT
64072 +extern UCHAR HtCapIe;
64073 +extern UCHAR AddHtInfoIe;
64074 +extern UCHAR NewExtChanIe;
64075 +#ifdef DOT11N_DRAFT3
64076 +extern UCHAR ExtHtCapIe;
64077 +#endif // DOT11N_DRAFT3 //
64078 +#endif // DOT11_N_SUPPORT //
64080 +extern UCHAR ErpIe;
64081 +extern UCHAR DsIe;
64082 +extern UCHAR TimIe;
64083 +extern UCHAR WpaIe;
64084 +extern UCHAR Wpa2Ie;
64085 +extern UCHAR IbssIe;
64086 +extern UCHAR Ccx2Ie;
64087 +extern UCHAR WapiIe;
64089 +extern UCHAR WPA_OUI[];
64090 +extern UCHAR RSN_OUI[];
64091 +extern UCHAR WAPI_OUI[];
64092 +extern UCHAR WME_INFO_ELEM[];
64093 +extern UCHAR WME_PARM_ELEM[];
64094 +extern UCHAR Ccx2QosInfo[];
64095 +extern UCHAR Ccx2IeInfo[];
64096 +extern UCHAR RALINK_OUI[];
64097 +extern UCHAR PowerConstraintIE[];
64100 +extern UCHAR RateSwitchTable[];
64101 +extern UCHAR RateSwitchTable11B[];
64102 +extern UCHAR RateSwitchTable11G[];
64103 +extern UCHAR RateSwitchTable11BG[];
64105 +#ifdef DOT11_N_SUPPORT
64106 +extern UCHAR RateSwitchTable11BGN1S[];
64107 +extern UCHAR RateSwitchTable11BGN2S[];
64108 +extern UCHAR RateSwitchTable11BGN2SForABand[];
64109 +extern UCHAR RateSwitchTable11N1S[];
64110 +extern UCHAR RateSwitchTable11N2S[];
64111 +extern UCHAR RateSwitchTable11N2SForABand[];
64113 +#ifdef CONFIG_STA_SUPPORT
64114 +extern UCHAR PRE_N_HT_OUI[];
64115 +#endif // CONFIG_STA_SUPPORT //
64116 +#endif // DOT11_N_SUPPORT //
64118 +#define MAXSEQ (0xFFF)
64121 +typedef struct _ATE_INFO {
64125 + CHAR TxAntennaSel;
64126 + CHAR RxAntennaSel;
64127 + TXWI_STRUC TxWI; // TXWI
64129 + UCHAR Addr1[MAC_ADDR_LEN];
64130 + UCHAR Addr2[MAC_ADDR_LEN];
64131 + UCHAR Addr3[MAC_ADDR_LEN];
64135 + UINT32 TxDoneCount; // Tx DMA Done
64136 + UINT32 RFFreqOffset;
64138 + BOOLEAN bQATxStart; // Have compiled QA in and use it to ATE tx.
64139 + BOOLEAN bQARxStart; // Have compiled QA in and use it to ATE rx.
64140 + UINT32 RxTotalCnt;
64141 + UINT32 RxCntPerSec;
64143 + CHAR LastSNR0; // last received SNR
64144 + CHAR LastSNR1; // last received SNR for 2nd antenna
64145 + CHAR LastRssi0; // last received RSSI
64146 + CHAR LastRssi1; // last received RSSI for 2nd antenna
64147 + CHAR LastRssi2; // last received RSSI for 3rd antenna
64148 + CHAR AvgRssi0; // last 8 frames' average RSSI
64149 + CHAR AvgRssi1; // last 8 frames' average RSSI
64150 + CHAR AvgRssi2; // last 8 frames' average RSSI
64151 + SHORT AvgRssi0X8; // sum of last 8 frames' RSSI
64152 + SHORT AvgRssi1X8; // sum of last 8 frames' RSSI
64153 + SHORT AvgRssi2X8; // sum of last 8 frames' RSSI
64155 + UINT32 NumOfAvgRssiSample;
64157 +#ifdef RALINK_28xx_QA
64160 + /* not used in RT2860 */
64161 + TXINFO_STRUC TxInfo; // TxInfo
64162 +#endif // RT2870 //
64163 + USHORT HLen; // Header Length
64164 + USHORT PLen; // Pattern Length
64165 + UCHAR Header[32]; // Header buffer
64166 + UCHAR Pattern[32]; // Pattern buffer
64167 + USHORT DLen; // Data Length
64173 + UINT32 OtherData;
64175 + UINT32 OtherCount;
64188 + //UINT32 Repeat; // Tx Cpu count
64189 + UCHAR TxStatus; // task Tx status // 0 --> task is idle, 1 --> task is running
64190 +#endif // RALINK_28xx_QA //
64191 +} ATE_INFO, *PATE_INFO;
64193 +#ifdef RALINK_28xx_QA
64194 +struct ate_racfghdr {
64196 + USHORT command_type;
64197 + USHORT command_id;
64201 + UCHAR data[2046];
64202 +} __attribute__((packed));
64203 +#endif // RALINK_28xx_QA //
64204 +#endif // RALINK_ATE //
64206 +#ifdef DOT11_N_SUPPORT
64207 +struct reordering_mpdu
64209 + struct reordering_mpdu *next;
64210 + PNDIS_PACKET pPacket; /* coverted to 802.3 frame */
64211 + int Sequence; /* sequence number of MPDU */
64215 +struct reordering_list
64217 + struct reordering_mpdu *next;
64221 +struct reordering_mpdu_pool
64224 + NDIS_SPIN_LOCK lock;
64225 + struct reordering_list freelist;
64227 +#endif // DOT11_N_SUPPORT //
64229 +typedef struct _RSSI_SAMPLE {
64230 + CHAR LastRssi0; // last received RSSI
64231 + CHAR LastRssi1; // last received RSSI
64232 + CHAR LastRssi2; // last received RSSI
64236 + SHORT AvgRssi0X8;
64237 + SHORT AvgRssi1X8;
64238 + SHORT AvgRssi2X8;
64242 +// Queue structure and macros
64244 +typedef struct _QUEUE_ENTRY {
64245 + struct _QUEUE_ENTRY *Next;
64246 +} QUEUE_ENTRY, *PQUEUE_ENTRY;
64248 +// Queue structure
64249 +typedef struct _QUEUE_HEADER {
64250 + PQUEUE_ENTRY Head;
64251 + PQUEUE_ENTRY Tail;
64253 +} QUEUE_HEADER, *PQUEUE_HEADER;
64255 +#define InitializeQueueHeader(QueueHeader) \
64257 + (QueueHeader)->Head = (QueueHeader)->Tail = NULL; \
64258 + (QueueHeader)->Number = 0; \
64261 +#define RemoveHeadQueue(QueueHeader) \
64262 +(QueueHeader)->Head; \
64264 + PQUEUE_ENTRY pNext; \
64265 + if ((QueueHeader)->Head != NULL) \
64267 + pNext = (QueueHeader)->Head->Next; \
64268 + (QueueHeader)->Head = pNext; \
64269 + if (pNext == NULL) \
64270 + (QueueHeader)->Tail = NULL; \
64271 + (QueueHeader)->Number--; \
64275 +#define InsertHeadQueue(QueueHeader, QueueEntry) \
64277 + ((PQUEUE_ENTRY)QueueEntry)->Next = (QueueHeader)->Head; \
64278 + (QueueHeader)->Head = (PQUEUE_ENTRY)(QueueEntry); \
64279 + if ((QueueHeader)->Tail == NULL) \
64280 + (QueueHeader)->Tail = (PQUEUE_ENTRY)(QueueEntry); \
64281 + (QueueHeader)->Number++; \
64284 +#define InsertTailQueue(QueueHeader, QueueEntry) \
64286 + ((PQUEUE_ENTRY)QueueEntry)->Next = NULL; \
64287 + if ((QueueHeader)->Tail) \
64288 + (QueueHeader)->Tail->Next = (PQUEUE_ENTRY)(QueueEntry); \
64290 + (QueueHeader)->Head = (PQUEUE_ENTRY)(QueueEntry); \
64291 + (QueueHeader)->Tail = (PQUEUE_ENTRY)(QueueEntry); \
64292 + (QueueHeader)->Number++; \
64296 +// Macros for flag and ref count operations
64298 +#define RTMP_SET_FLAG(_M, _F) ((_M)->Flags |= (_F))
64299 +#define RTMP_CLEAR_FLAG(_M, _F) ((_M)->Flags &= ~(_F))
64300 +#define RTMP_CLEAR_FLAGS(_M) ((_M)->Flags = 0)
64301 +#define RTMP_TEST_FLAG(_M, _F) (((_M)->Flags & (_F)) != 0)
64302 +#define RTMP_TEST_FLAGS(_M, _F) (((_M)->Flags & (_F)) == (_F))
64304 +#define OPSTATUS_SET_FLAG(_pAd, _F) ((_pAd)->CommonCfg.OpStatusFlags |= (_F))
64305 +#define OPSTATUS_CLEAR_FLAG(_pAd, _F) ((_pAd)->CommonCfg.OpStatusFlags &= ~(_F))
64306 +#define OPSTATUS_TEST_FLAG(_pAd, _F) (((_pAd)->CommonCfg.OpStatusFlags & (_F)) != 0)
64308 +#define CLIENT_STATUS_SET_FLAG(_pEntry,_F) ((_pEntry)->ClientStatusFlags |= (_F))
64309 +#define CLIENT_STATUS_CLEAR_FLAG(_pEntry,_F) ((_pEntry)->ClientStatusFlags &= ~(_F))
64310 +#define CLIENT_STATUS_TEST_FLAG(_pEntry,_F) (((_pEntry)->ClientStatusFlags & (_F)) != 0)
64312 +#define RX_FILTER_SET_FLAG(_pAd, _F) ((_pAd)->CommonCfg.PacketFilter |= (_F))
64313 +#define RX_FILTER_CLEAR_FLAG(_pAd, _F) ((_pAd)->CommonCfg.PacketFilter &= ~(_F))
64314 +#define RX_FILTER_TEST_FLAG(_pAd, _F) (((_pAd)->CommonCfg.PacketFilter & (_F)) != 0)
64316 +#ifdef CONFIG_STA_SUPPORT
64317 +#define STA_NO_SECURITY_ON(_p) (_p->StaCfg.WepStatus == Ndis802_11EncryptionDisabled)
64318 +#define STA_WEP_ON(_p) (_p->StaCfg.WepStatus == Ndis802_11Encryption1Enabled)
64319 +#define STA_TKIP_ON(_p) (_p->StaCfg.WepStatus == Ndis802_11Encryption2Enabled)
64320 +#define STA_AES_ON(_p) (_p->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
64322 +#define STA_TGN_WIFI_ON(_p) (_p->StaCfg.bTGnWifiTest == TRUE)
64323 +#endif // CONFIG_STA_SUPPORT //
64325 +#define CKIP_KP_ON(_p) ((((_p)->StaCfg.CkipFlag) & 0x10) && ((_p)->StaCfg.bCkipCmicOn == TRUE))
64326 +#define CKIP_CMIC_ON(_p) ((((_p)->StaCfg.CkipFlag) & 0x08) && ((_p)->StaCfg.bCkipCmicOn == TRUE))
64329 +#define INC_RING_INDEX(_idx, _RingSize) \
64331 + (_idx) = (_idx+1) % (_RingSize); \
64334 +// We will have a cost down version which mac version is 0x3090xxxx
64335 +#define IS_RT3090(_pAd) ((((_pAd)->MACVersion & 0xffff0000) == 0x30710000) || (((_pAd)->MACVersion & 0xffff0000) == 0x30900000))
64337 +#define IS_RT3070(_pAd) (((_pAd)->MACVersion & 0xffff0000) == 0x30700000)
64338 +#define IS_RT3071(_pAd) (((_pAd)->MACVersion & 0xffff0000) == 0x30710000)
64339 +#define IS_RT2070(_pAd) (((_pAd)->RfIcType == RFIC_2020) || ((_pAd)->EFuseTag == 0x27))
64341 +#define IS_RT30xx(_pAd) (((_pAd)->MACVersion & 0xfff00000) == 0x30700000)
64343 +#define RING_PACKET_INIT(_TxRing, _idx) \
64345 + _TxRing->Cell[_idx].pNdisPacket = NULL; \
64346 + _TxRing->Cell[_idx].pNextNdisPacket = NULL; \
64349 +#define TXDT_INIT(_TxD) \
64351 + NdisZeroMemory(_TxD, TXD_SIZE); \
64352 + _TxD->DMADONE = 1; \
64355 +//Set last data segment
64356 +#define RING_SET_LASTDS(_TxD, _IsSD0) \
64358 + if (_IsSD0) {_TxD->LastSec0 = 1;} \
64359 + else {_TxD->LastSec1 = 1;} \
64362 +// Increase TxTsc value for next transmission
64364 +// When i==6, means TSC has done one full cycle, do re-keying stuff follow specs
64365 +// Should send a special event microsoft defined to request re-key
64366 +#define INC_TX_TSC(_tsc) \
64369 + while (++_tsc[i] == 0x0) \
64377 +#ifdef DOT11_N_SUPPORT
64378 +// StaActive.SupportedHtPhy.MCSSet is copied from AP beacon. Don't need to update here.
64379 +#define COPY_HTSETTINGS_FROM_MLME_AUX_TO_ACTIVE_CFG(_pAd) \
64381 + _pAd->StaActive.SupportedHtPhy.ChannelWidth = _pAd->MlmeAux.HtCapability.HtCapInfo.ChannelWidth; \
64382 + _pAd->StaActive.SupportedHtPhy.MimoPs = _pAd->MlmeAux.HtCapability.HtCapInfo.MimoPs; \
64383 + _pAd->StaActive.SupportedHtPhy.GF = _pAd->MlmeAux.HtCapability.HtCapInfo.GF; \
64384 + _pAd->StaActive.SupportedHtPhy.ShortGIfor20 = _pAd->MlmeAux.HtCapability.HtCapInfo.ShortGIfor20; \
64385 + _pAd->StaActive.SupportedHtPhy.ShortGIfor40 = _pAd->MlmeAux.HtCapability.HtCapInfo.ShortGIfor40; \
64386 + _pAd->StaActive.SupportedHtPhy.TxSTBC = _pAd->MlmeAux.HtCapability.HtCapInfo.TxSTBC; \
64387 + _pAd->StaActive.SupportedHtPhy.RxSTBC = _pAd->MlmeAux.HtCapability.HtCapInfo.RxSTBC; \
64388 + _pAd->StaActive.SupportedHtPhy.ExtChanOffset = _pAd->MlmeAux.AddHtInfo.AddHtInfo.ExtChanOffset; \
64389 + _pAd->StaActive.SupportedHtPhy.RecomWidth = _pAd->MlmeAux.AddHtInfo.AddHtInfo.RecomWidth; \
64390 + _pAd->StaActive.SupportedHtPhy.OperaionMode = _pAd->MlmeAux.AddHtInfo.AddHtInfo2.OperaionMode; \
64391 + _pAd->StaActive.SupportedHtPhy.NonGfPresent = _pAd->MlmeAux.AddHtInfo.AddHtInfo2.NonGfPresent; \
64392 + NdisMoveMemory((_pAd)->MacTab.Content[BSSID_WCID].HTCapability.MCSSet, (_pAd)->StaActive.SupportedPhyInfo.MCSSet, sizeof(UCHAR) * 16);\
64395 +#define COPY_AP_HTSETTINGS_FROM_BEACON(_pAd, _pHtCapability) \
64397 + _pAd->MacTab.Content[BSSID_WCID].AMsduSize = (UCHAR)(_pHtCapability->HtCapInfo.AMsduSize); \
64398 + _pAd->MacTab.Content[BSSID_WCID].MmpsMode= (UCHAR)(_pHtCapability->HtCapInfo.MimoPs); \
64399 + _pAd->MacTab.Content[BSSID_WCID].MaxRAmpduFactor = (UCHAR)(_pHtCapability->HtCapParm.MaxRAmpduFactor); \
64401 +#endif // DOT11_N_SUPPORT //
64404 +// MACRO for 32-bit PCI register read / write
64406 +// Usage : RTMP_IO_READ32(
64407 +// PRTMP_ADAPTER pAd,
64408 +// ULONG Register_Offset,
64411 +// RTMP_IO_WRITE32(
64412 +// PRTMP_ADAPTER pAd,
64413 +// ULONG Register_Offset,
64418 +// BBP & RF are using indirect access. Before write any value into it.
64419 +// We have to make sure there is no outstanding command pending via checking busy bit.
64421 +#define MAX_BUSY_COUNT 100 // Number of retry before failing access BBP & RF indirect register
64425 +#define RTMP_RF_IO_WRITE32(_A, _V) RTUSBWriteRFRegister(_A, _V)
64426 +#define RTMP_BBP_IO_READ8_BY_REG_ID(_A, _I, _pV) RTUSBReadBBPRegister(_A, _I, _pV)
64427 +#define RTMP_BBP_IO_WRITE8_BY_REG_ID(_A, _I, _V) RTUSBWriteBBPRegister(_A, _I, _V)
64429 +#define BBP_IO_WRITE8_BY_REG_ID(_A, _I, _V) RTUSBWriteBBPRegister(_A, _I, _V)
64430 +#define BBP_IO_READ8_BY_REG_ID(_A, _I, _pV) RTUSBReadBBPRegister(_A, _I, _pV)
64431 +#endif // RT2870 //
64434 +#define RTMP_RF_IO_READ8_BY_REG_ID(_A, _I, _pV) RT30xxReadRFRegister(_A, _I, _pV)
64435 +#define RTMP_RF_IO_WRITE8_BY_REG_ID(_A, _I, _V) RT30xxWriteRFRegister(_A, _I, _V)
64436 +#endif // RT30xx //
64438 +#define MAP_CHANNEL_ID_TO_KHZ(ch, khz) { \
64441 + case 1: khz = 2412000; break; \
64442 + case 2: khz = 2417000; break; \
64443 + case 3: khz = 2422000; break; \
64444 + case 4: khz = 2427000; break; \
64445 + case 5: khz = 2432000; break; \
64446 + case 6: khz = 2437000; break; \
64447 + case 7: khz = 2442000; break; \
64448 + case 8: khz = 2447000; break; \
64449 + case 9: khz = 2452000; break; \
64450 + case 10: khz = 2457000; break; \
64451 + case 11: khz = 2462000; break; \
64452 + case 12: khz = 2467000; break; \
64453 + case 13: khz = 2472000; break; \
64454 + case 14: khz = 2484000; break; \
64455 + case 36: /* UNII */ khz = 5180000; break; \
64456 + case 40: /* UNII */ khz = 5200000; break; \
64457 + case 44: /* UNII */ khz = 5220000; break; \
64458 + case 48: /* UNII */ khz = 5240000; break; \
64459 + case 52: /* UNII */ khz = 5260000; break; \
64460 + case 56: /* UNII */ khz = 5280000; break; \
64461 + case 60: /* UNII */ khz = 5300000; break; \
64462 + case 64: /* UNII */ khz = 5320000; break; \
64463 + case 149: /* UNII */ khz = 5745000; break; \
64464 + case 153: /* UNII */ khz = 5765000; break; \
64465 + case 157: /* UNII */ khz = 5785000; break; \
64466 + case 161: /* UNII */ khz = 5805000; break; \
64467 + case 165: /* UNII */ khz = 5825000; break; \
64468 + case 100: /* HiperLAN2 */ khz = 5500000; break; \
64469 + case 104: /* HiperLAN2 */ khz = 5520000; break; \
64470 + case 108: /* HiperLAN2 */ khz = 5540000; break; \
64471 + case 112: /* HiperLAN2 */ khz = 5560000; break; \
64472 + case 116: /* HiperLAN2 */ khz = 5580000; break; \
64473 + case 120: /* HiperLAN2 */ khz = 5600000; break; \
64474 + case 124: /* HiperLAN2 */ khz = 5620000; break; \
64475 + case 128: /* HiperLAN2 */ khz = 5640000; break; \
64476 + case 132: /* HiperLAN2 */ khz = 5660000; break; \
64477 + case 136: /* HiperLAN2 */ khz = 5680000; break; \
64478 + case 140: /* HiperLAN2 */ khz = 5700000; break; \
64479 + case 34: /* Japan MMAC */ khz = 5170000; break; \
64480 + case 38: /* Japan MMAC */ khz = 5190000; break; \
64481 + case 42: /* Japan MMAC */ khz = 5210000; break; \
64482 + case 46: /* Japan MMAC */ khz = 5230000; break; \
64483 + case 184: /* Japan */ khz = 4920000; break; \
64484 + case 188: /* Japan */ khz = 4940000; break; \
64485 + case 192: /* Japan */ khz = 4960000; break; \
64486 + case 196: /* Japan */ khz = 4980000; break; \
64487 + case 208: /* Japan, means J08 */ khz = 5040000; break; \
64488 + case 212: /* Japan, means J12 */ khz = 5060000; break; \
64489 + case 216: /* Japan, means J16 */ khz = 5080000; break; \
64490 + default: khz = 2412000; break; \
64494 +#define MAP_KHZ_TO_CHANNEL_ID(khz, ch) { \
64497 + case 2412000: ch = 1; break; \
64498 + case 2417000: ch = 2; break; \
64499 + case 2422000: ch = 3; break; \
64500 + case 2427000: ch = 4; break; \
64501 + case 2432000: ch = 5; break; \
64502 + case 2437000: ch = 6; break; \
64503 + case 2442000: ch = 7; break; \
64504 + case 2447000: ch = 8; break; \
64505 + case 2452000: ch = 9; break; \
64506 + case 2457000: ch = 10; break; \
64507 + case 2462000: ch = 11; break; \
64508 + case 2467000: ch = 12; break; \
64509 + case 2472000: ch = 13; break; \
64510 + case 2484000: ch = 14; break; \
64511 + case 5180000: ch = 36; /* UNII */ break; \
64512 + case 5200000: ch = 40; /* UNII */ break; \
64513 + case 5220000: ch = 44; /* UNII */ break; \
64514 + case 5240000: ch = 48; /* UNII */ break; \
64515 + case 5260000: ch = 52; /* UNII */ break; \
64516 + case 5280000: ch = 56; /* UNII */ break; \
64517 + case 5300000: ch = 60; /* UNII */ break; \
64518 + case 5320000: ch = 64; /* UNII */ break; \
64519 + case 5745000: ch = 149; /* UNII */ break; \
64520 + case 5765000: ch = 153; /* UNII */ break; \
64521 + case 5785000: ch = 157; /* UNII */ break; \
64522 + case 5805000: ch = 161; /* UNII */ break; \
64523 + case 5825000: ch = 165; /* UNII */ break; \
64524 + case 5500000: ch = 100; /* HiperLAN2 */ break; \
64525 + case 5520000: ch = 104; /* HiperLAN2 */ break; \
64526 + case 5540000: ch = 108; /* HiperLAN2 */ break; \
64527 + case 5560000: ch = 112; /* HiperLAN2 */ break; \
64528 + case 5580000: ch = 116; /* HiperLAN2 */ break; \
64529 + case 5600000: ch = 120; /* HiperLAN2 */ break; \
64530 + case 5620000: ch = 124; /* HiperLAN2 */ break; \
64531 + case 5640000: ch = 128; /* HiperLAN2 */ break; \
64532 + case 5660000: ch = 132; /* HiperLAN2 */ break; \
64533 + case 5680000: ch = 136; /* HiperLAN2 */ break; \
64534 + case 5700000: ch = 140; /* HiperLAN2 */ break; \
64535 + case 5170000: ch = 34; /* Japan MMAC */ break; \
64536 + case 5190000: ch = 38; /* Japan MMAC */ break; \
64537 + case 5210000: ch = 42; /* Japan MMAC */ break; \
64538 + case 5230000: ch = 46; /* Japan MMAC */ break; \
64539 + case 4920000: ch = 184; /* Japan */ break; \
64540 + case 4940000: ch = 188; /* Japan */ break; \
64541 + case 4960000: ch = 192; /* Japan */ break; \
64542 + case 4980000: ch = 196; /* Japan */ break; \
64543 + case 5040000: ch = 208; /* Japan, means J08 */ break; \
64544 + case 5060000: ch = 212; /* Japan, means J12 */ break; \
64545 + case 5080000: ch = 216; /* Japan, means J16 */ break; \
64546 + default: ch = 1; break; \
64551 +// Common fragment list structure - Identical to the scatter gather frag list structure
64553 +//#define RTMP_SCATTER_GATHER_ELEMENT SCATTER_GATHER_ELEMENT
64554 +//#define PRTMP_SCATTER_GATHER_ELEMENT PSCATTER_GATHER_ELEMENT
64555 +#define NIC_MAX_PHYS_BUF_COUNT 8
64557 +typedef struct _RTMP_SCATTER_GATHER_ELEMENT {
64561 +} RTMP_SCATTER_GATHER_ELEMENT, *PRTMP_SCATTER_GATHER_ELEMENT;
64564 +typedef struct _RTMP_SCATTER_GATHER_LIST {
64565 + ULONG NumberOfElements;
64567 + RTMP_SCATTER_GATHER_ELEMENT Elements[NIC_MAX_PHYS_BUF_COUNT];
64568 +} RTMP_SCATTER_GATHER_LIST, *PRTMP_SCATTER_GATHER_LIST;
64571 +// Some utility macros
64574 +#define min(_a, _b) (((_a) < (_b)) ? (_a) : (_b))
64578 +#define max(_a, _b) (((_a) > (_b)) ? (_a) : (_b))
64581 +#define GET_LNA_GAIN(_pAd) ((_pAd->LatchRfRegs.Channel <= 14) ? (_pAd->BLNAGain) : ((_pAd->LatchRfRegs.Channel <= 64) ? (_pAd->ALNAGain0) : ((_pAd->LatchRfRegs.Channel <= 128) ? (_pAd->ALNAGain1) : (_pAd->ALNAGain2))))
64583 +#define INC_COUNTER64(Val) (Val.QuadPart++)
64585 +#define INFRA_ON(_p) (OPSTATUS_TEST_FLAG(_p, fOP_STATUS_INFRA_ON))
64586 +#define ADHOC_ON(_p) (OPSTATUS_TEST_FLAG(_p, fOP_STATUS_ADHOC_ON))
64587 +#define MONITOR_ON(_p) (((_p)->StaCfg.BssType) == BSS_MONITOR)
64588 +#define IDLE_ON(_p) (!INFRA_ON(_p) && !ADHOC_ON(_p))
64590 +// Check LEAP & CCKM flags
64591 +#define LEAP_ON(_p) (((_p)->StaCfg.LeapAuthMode) == CISCO_AuthModeLEAP)
64592 +#define LEAP_CCKM_ON(_p) ((((_p)->StaCfg.LeapAuthMode) == CISCO_AuthModeLEAP) && ((_p)->StaCfg.LeapAuthInfo.CCKM == TRUE))
64594 +// if orginal Ethernet frame contains no LLC/SNAP, then an extra LLC/SNAP encap is required
64595 +#define EXTRA_LLCSNAP_ENCAP_FROM_PKT_START(_pBufVA, _pExtraLlcSnapEncap) \
64597 + if (((*(_pBufVA + 12) << 8) + *(_pBufVA + 13)) > 1500) \
64599 + _pExtraLlcSnapEncap = SNAP_802_1H; \
64600 + if (NdisEqualMemory(IPX, _pBufVA + 12, 2) || \
64601 + NdisEqualMemory(APPLE_TALK, _pBufVA + 12, 2)) \
64603 + _pExtraLlcSnapEncap = SNAP_BRIDGE_TUNNEL; \
64608 + _pExtraLlcSnapEncap = NULL; \
64612 +// New Define for new Tx Path.
64613 +#define EXTRA_LLCSNAP_ENCAP_FROM_PKT_OFFSET(_pBufVA, _pExtraLlcSnapEncap) \
64615 + if (((*(_pBufVA) << 8) + *(_pBufVA + 1)) > 1500) \
64617 + _pExtraLlcSnapEncap = SNAP_802_1H; \
64618 + if (NdisEqualMemory(IPX, _pBufVA, 2) || \
64619 + NdisEqualMemory(APPLE_TALK, _pBufVA, 2)) \
64621 + _pExtraLlcSnapEncap = SNAP_BRIDGE_TUNNEL; \
64626 + _pExtraLlcSnapEncap = NULL; \
64631 +#define MAKE_802_3_HEADER(_p, _pMac1, _pMac2, _pType) \
64633 + NdisMoveMemory(_p, _pMac1, MAC_ADDR_LEN); \
64634 + NdisMoveMemory((_p + MAC_ADDR_LEN), _pMac2, MAC_ADDR_LEN); \
64635 + NdisMoveMemory((_p + MAC_ADDR_LEN * 2), _pType, LENGTH_802_3_TYPE); \
64638 +// if pData has no LLC/SNAP (neither RFC1042 nor Bridge tunnel), keep it that way.
64639 +// else if the received frame is LLC/SNAP-encaped IPX or APPLETALK, preserve the LLC/SNAP field
64640 +// else remove the LLC/SNAP field from the result Ethernet frame
64641 +// Patch for WHQL only, which did not turn on Netbios but use IPX within its payload
64643 +// _pData & _DataSize may be altered (remove 8-byte LLC/SNAP) by this MACRO
64644 +// _pRemovedLLCSNAP: pointer to removed LLC/SNAP; NULL is not removed
64645 +#define CONVERT_TO_802_3(_p8023hdr, _pDA, _pSA, _pData, _DataSize, _pRemovedLLCSNAP) \
64647 + char LLC_Len[2]; \
64649 + _pRemovedLLCSNAP = NULL; \
64650 + if (NdisEqualMemory(SNAP_802_1H, _pData, 6) || \
64651 + NdisEqualMemory(SNAP_BRIDGE_TUNNEL, _pData, 6)) \
64653 + PUCHAR pProto = _pData + 6; \
64655 + if ((NdisEqualMemory(IPX, pProto, 2) || NdisEqualMemory(APPLE_TALK, pProto, 2)) && \
64656 + NdisEqualMemory(SNAP_802_1H, _pData, 6)) \
64658 + LLC_Len[0] = (UCHAR)(_DataSize / 256); \
64659 + LLC_Len[1] = (UCHAR)(_DataSize % 256); \
64660 + MAKE_802_3_HEADER(_p8023hdr, _pDA, _pSA, LLC_Len); \
64664 + MAKE_802_3_HEADER(_p8023hdr, _pDA, _pSA, pProto); \
64665 + _pRemovedLLCSNAP = _pData; \
64666 + _DataSize -= LENGTH_802_1_H; \
64667 + _pData += LENGTH_802_1_H; \
64672 + LLC_Len[0] = (UCHAR)(_DataSize / 256); \
64673 + LLC_Len[1] = (UCHAR)(_DataSize % 256); \
64674 + MAKE_802_3_HEADER(_p8023hdr, _pDA, _pSA, LLC_Len); \
64678 +#define SWITCH_AB( _pAA, _pBB) \
64686 +// Enqueue this frame to MLME engine
64687 +// We need to enqueue the whole frame because MLME need to pass data type
64688 +// information from 802.11 header
64690 +#define REPORT_MGMT_FRAME_TO_MLME(_pAd, Wcid, _pFrame, _FrameSize, _Rssi0, _Rssi1, _Rssi2, _PlcpSignal) \
64692 + UINT32 High32TSF=0, Low32TSF=0; \
64693 + MlmeEnqueueForRecv(_pAd, Wcid, High32TSF, Low32TSF, (UCHAR)_Rssi0, (UCHAR)_Rssi1,(UCHAR)_Rssi2,_FrameSize, _pFrame, (UCHAR)_PlcpSignal); \
64695 +#endif // RT2870 //
64698 +//Need to collect each ant's rssi concurrently
64699 +//rssi1 is report to pair2 Ant and rss2 is reprot to pair1 Ant when 4 Ant
64700 +#define COLLECT_RX_ANTENNA_AVERAGE_RSSI(_pAd, _rssi1, _rssi2) \
64704 + if (_pAd->RxAnt.EvaluatePeriod == 0) \
64706 + UsedAnt = _pAd->RxAnt.Pair1PrimaryRxAnt; \
64707 + AvgRssi = _pAd->RxAnt.Pair1AvgRssi[UsedAnt]; \
64708 + if (AvgRssi < 0) \
64709 + AvgRssi = AvgRssi - (AvgRssi >> 3) + _rssi1; \
64711 + AvgRssi = _rssi1 << 3; \
64712 + _pAd->RxAnt.Pair1AvgRssi[UsedAnt] = AvgRssi; \
64716 + UsedAnt = _pAd->RxAnt.Pair1SecondaryRxAnt; \
64717 + AvgRssi = _pAd->RxAnt.Pair1AvgRssi[UsedAnt]; \
64718 + if ((AvgRssi < 0) && (_pAd->RxAnt.FirstPktArrivedWhenEvaluate)) \
64719 + AvgRssi = AvgRssi - (AvgRssi >> 3) + _rssi1; \
64722 + _pAd->RxAnt.FirstPktArrivedWhenEvaluate = TRUE; \
64723 + AvgRssi = _rssi1 << 3; \
64725 + _pAd->RxAnt.Pair1AvgRssi[UsedAnt] = AvgRssi; \
64726 + _pAd->RxAnt.RcvPktNumWhenEvaluate++; \
64729 +#endif // RT30xx //
64732 +#define NDIS_QUERY_BUFFER(_NdisBuf, _ppVA, _pBufLen) \
64733 + NdisQueryBuffer(_NdisBuf, _ppVA, _pBufLen)
64735 +#define MAC_ADDR_EQUAL(pAddr1,pAddr2) RTMPEqualMemory((PVOID)(pAddr1), (PVOID)(pAddr2), MAC_ADDR_LEN)
64736 +#define SSID_EQUAL(ssid1, len1, ssid2, len2) ((len1==len2) && (RTMPEqualMemory(ssid1, ssid2, len1)))
64739 +// Check if it is Japan W53(ch52,56,60,64) channel.
64741 +#define JapanChannelCheck(channel) ((channel == 52) || (channel == 56) || (channel == 60) || (channel == 64))
64743 +#ifdef CONFIG_STA_SUPPORT
64744 +#define STA_PORT_SECURED(_pAd) \
64746 + _pAd->StaCfg.PortSecured = WPA_802_1X_PORT_SECURED; \
64747 + NdisAcquireSpinLock(&_pAd->MacTabLock); \
64748 + _pAd->MacTab.Content[BSSID_WCID].PortSecured = _pAd->StaCfg.PortSecured; \
64749 + NdisReleaseSpinLock(&_pAd->MacTabLock); \
64751 +#endif // CONFIG_STA_SUPPORT //
64755 +// Register set pair for initialzation register set definition
64757 +typedef struct _RTMP_REG_PAIR
64761 +} RTMP_REG_PAIR, *PRTMP_REG_PAIR;
64763 +typedef struct _REG_PAIR
64767 +} REG_PAIR, *PREG_PAIR;
64770 +// Register set pair for initialzation register set definition
64772 +typedef struct _RTMP_RF_REGS
64779 +} RTMP_RF_REGS, *PRTMP_RF_REGS;
64781 +typedef struct _FREQUENCY_ITEM {
64786 +} FREQUENCY_ITEM, *PFREQUENCY_ITEM;
64789 +// Data buffer for DMA operation, the buffer must be contiguous physical memory
64790 +// Both DMA to / from CPU use the same structure.
64792 +typedef struct _RTMP_DMABUF
64795 + PVOID AllocVa; // TxBuf virtual address
64796 + NDIS_PHYSICAL_ADDRESS AllocPa; // TxBuf physical address
64797 +} RTMP_DMABUF, *PRTMP_DMABUF;
64800 +typedef union _HEADER_802_11_SEQ{
64801 +#ifdef RT_BIG_ENDIAN
64803 + USHORT Sequence:12;
64809 + USHORT Sequence:12;
64813 +} HEADER_802_11_SEQ, *PHEADER_802_11_SEQ;
64816 +// Data buffer for DMA operation, the buffer must be contiguous physical memory
64817 +// Both DMA to / from CPU use the same structure.
64819 +typedef struct _RTMP_REORDERBUF
64822 + PVOID AllocVa; // TxBuf virtual address
64823 + UCHAR Header802_3[14];
64824 + HEADER_802_11_SEQ Sequence; //support compressed bitmap BA, so no consider fragment in BA
64825 + UCHAR DataOffset;
64830 +#endif // RT2870 //
64831 +} RTMP_REORDERBUF, *PRTMP_REORDERBUF;
64834 +// Control block (Descriptor) for all ring descriptor DMA operation, buffer must be
64835 +// contiguous physical memory. NDIS_PACKET stored the binding Rx packet descriptor
64836 +// which won't be released, driver has to wait until upper layer return the packet
64837 +// before giveing up this rx ring descriptor to ASIC. NDIS_BUFFER is assocaited pair
64838 +// to describe the packet buffer. For Tx, NDIS_PACKET stored the tx packet descriptor
64839 +// which driver should ACK upper layer when the tx is physically done or failed.
64841 +typedef struct _RTMP_DMACB
64843 + ULONG AllocSize; // Control block size
64844 + PVOID AllocVa; // Control block virtual address
64845 + NDIS_PHYSICAL_ADDRESS AllocPa; // Control block physical address
64846 + PNDIS_PACKET pNdisPacket;
64847 + PNDIS_PACKET pNextNdisPacket;
64849 + RTMP_DMABUF DmaBuf; // Associated DMA buffer structure
64850 +} RTMP_DMACB, *PRTMP_DMACB;
64852 +typedef struct _RTMP_TX_BUF
64854 + PQUEUE_ENTRY Next;
64856 + ULONG AllocSize; // Control block size
64857 + PVOID AllocVa; // Control block virtual address
64858 + NDIS_PHYSICAL_ADDRESS AllocPa; // Control block physical address
64859 +} RTMP_TXBUF, *PRTMP_TXBUF;
64861 +typedef struct _RTMP_RX_BUF
64864 + ULONG ByBaRecIndex;
64865 + RTMP_REORDERBUF MAP_RXBuf[MAX_RX_REORDERBUF];
64866 +} RTMP_RXBUF, *PRTMP_RXBUF;
64867 +typedef struct _RTMP_TX_RING
64869 + RTMP_DMACB Cell[TX_RING_SIZE];
64872 + UINT32 TxSwFreeIdx; // software next free tx index
64873 +} RTMP_TX_RING, *PRTMP_TX_RING;
64875 +typedef struct _RTMP_RX_RING
64877 + RTMP_DMACB Cell[RX_RING_SIZE];
64880 + INT32 RxSwReadIdx; // software next read index
64881 +} RTMP_RX_RING, *PRTMP_RX_RING;
64883 +typedef struct _RTMP_MGMT_RING
64885 + RTMP_DMACB Cell[MGMT_RING_SIZE];
64888 + UINT32 TxSwFreeIdx; // software next free tx index
64889 +} RTMP_MGMT_RING, *PRTMP_MGMT_RING;
64892 +// Statistic counter structure
64894 +typedef struct _COUNTER_802_3
64897 + ULONG GoodTransmits;
64898 + ULONG GoodReceives;
64901 + ULONG RxNoBuffer;
64903 + // Ethernet Stats
64904 + ULONG RcvAlignmentErrors;
64905 + ULONG OneCollision;
64906 + ULONG MoreCollisions;
64908 +} COUNTER_802_3, *PCOUNTER_802_3;
64910 +typedef struct _COUNTER_802_11 {
64912 + LARGE_INTEGER LastTransmittedFragmentCount;
64913 + LARGE_INTEGER TransmittedFragmentCount;
64914 + LARGE_INTEGER MulticastTransmittedFrameCount;
64915 + LARGE_INTEGER FailedCount;
64916 + LARGE_INTEGER RetryCount;
64917 + LARGE_INTEGER MultipleRetryCount;
64918 + LARGE_INTEGER RTSSuccessCount;
64919 + LARGE_INTEGER RTSFailureCount;
64920 + LARGE_INTEGER ACKFailureCount;
64921 + LARGE_INTEGER FrameDuplicateCount;
64922 + LARGE_INTEGER ReceivedFragmentCount;
64923 + LARGE_INTEGER MulticastReceivedFrameCount;
64924 + LARGE_INTEGER FCSErrorCount;
64925 +} COUNTER_802_11, *PCOUNTER_802_11;
64927 +typedef struct _COUNTER_RALINK {
64928 + ULONG TransmittedByteCount; // both successful and failure, used to calculate TX throughput
64929 + ULONG ReceivedByteCount; // both CRC okay and CRC error, used to calculate RX throughput
64930 + ULONG BeenDisassociatedCount;
64931 + ULONG BadCQIAutoRecoveryCount;
64932 + ULONG PoorCQIRoamingCount;
64933 + ULONG MgmtRingFullCount;
64934 + ULONG RxCountSinceLastNULL;
64936 + ULONG RxRingErrCount;
64937 + ULONG KickTxCount;
64938 + ULONG TxRingErrCount;
64939 + LARGE_INTEGER RealFcsErrCount;
64940 + ULONG PendingNdisPacketCount;
64942 + ULONG OneSecOsTxCount[NUM_OF_TX_RING];
64943 + ULONG OneSecDmaDoneCount[NUM_OF_TX_RING];
64944 + UINT32 OneSecTxDoneCount;
64945 + ULONG OneSecRxCount;
64946 + UINT32 OneSecTxAggregationCount;
64947 + UINT32 OneSecRxAggregationCount;
64949 + UINT32 OneSecFrameDuplicateCount;
64952 + ULONG OneSecTransmittedByteCount; // both successful and failure, used to calculate TX throughput
64953 +#endif // RT2870 //
64955 + UINT32 OneSecTxNoRetryOkCount;
64956 + UINT32 OneSecTxRetryOkCount;
64957 + UINT32 OneSecTxFailCount;
64958 + UINT32 OneSecFalseCCACnt; // CCA error count, for debug purpose, might move to global counter
64959 + UINT32 OneSecRxOkCnt; // RX without error
64960 + UINT32 OneSecRxOkDataCnt; // unicast-to-me DATA frame count
64961 + UINT32 OneSecRxFcsErrCnt; // CRC error
64962 + UINT32 OneSecBeaconSentCnt;
64963 + UINT32 LastOneSecTotalTxCount; // OneSecTxNoRetryOkCount + OneSecTxRetryOkCount + OneSecTxFailCount
64964 + UINT32 LastOneSecRxOkDataCnt; // OneSecRxOkDataCnt
64965 + ULONG DuplicateRcv;
64966 + ULONG TxAggCount;
64967 + ULONG TxNonAggCount;
64968 + ULONG TxAgg1MPDUCount;
64969 + ULONG TxAgg2MPDUCount;
64970 + ULONG TxAgg3MPDUCount;
64971 + ULONG TxAgg4MPDUCount;
64972 + ULONG TxAgg5MPDUCount;
64973 + ULONG TxAgg6MPDUCount;
64974 + ULONG TxAgg7MPDUCount;
64975 + ULONG TxAgg8MPDUCount;
64976 + ULONG TxAgg9MPDUCount;
64977 + ULONG TxAgg10MPDUCount;
64978 + ULONG TxAgg11MPDUCount;
64979 + ULONG TxAgg12MPDUCount;
64980 + ULONG TxAgg13MPDUCount;
64981 + ULONG TxAgg14MPDUCount;
64982 + ULONG TxAgg15MPDUCount;
64983 + ULONG TxAgg16MPDUCount;
64985 + LARGE_INTEGER TransmittedOctetsInAMSDU;
64986 + LARGE_INTEGER TransmittedAMSDUCount;
64987 + LARGE_INTEGER ReceivedOctesInAMSDUCount;
64988 + LARGE_INTEGER ReceivedAMSDUCount;
64989 + LARGE_INTEGER TransmittedAMPDUCount;
64990 + LARGE_INTEGER TransmittedMPDUsInAMPDUCount;
64991 + LARGE_INTEGER TransmittedOctetsInAMPDUCount;
64992 + LARGE_INTEGER MPDUInReceivedAMPDUCount;
64993 +} COUNTER_RALINK, *PCOUNTER_RALINK;
64995 +typedef struct _PID_COUNTER {
64996 + ULONG TxAckRequiredCount; // CRC error
64997 + ULONG TxAggreCount;
64998 + ULONG TxSuccessCount; // OneSecTxNoRetryOkCount + OneSecTxRetryOkCount + OneSecTxFailCount
64999 + ULONG LastSuccessRate;
65000 +} PID_COUNTER, *PPID_COUNTER;
65002 +typedef struct _COUNTER_DRS {
65003 + // to record the each TX rate's quality. 0 is best, the bigger the worse.
65004 + USHORT TxQuality[MAX_STEP_OF_TX_RATE_SWITCH];
65005 + UCHAR PER[MAX_STEP_OF_TX_RATE_SWITCH];
65006 + UCHAR TxRateUpPenalty; // extra # of second penalty due to last unstable condition
65007 + ULONG CurrTxRateStableTime; // # of second in current TX rate
65008 + BOOLEAN fNoisyEnvironment;
65009 + BOOLEAN fLastSecAccordingRSSI;
65010 + UCHAR LastSecTxRateChangeAction; // 0: no change, 1:rate UP, 2:rate down
65011 + UCHAR LastTimeTxRateChangeAction; //Keep last time value of LastSecTxRateChangeAction
65012 + ULONG LastTxOkCount;
65013 +} COUNTER_DRS, *PCOUNTER_DRS;
65016 +// Arcfour Structure Added by PaulWu
65018 +typedef struct _ARCFOUR
65022 + UCHAR STATE[256];
65023 +} ARCFOURCONTEXT, *PARCFOURCONTEXT;
65025 +// MIMO Tx parameter, ShortGI, MCS, STBC, etc. these are fields in TXWI too. just copy to TXWI.
65026 +typedef struct _RECEIVE_SETTING {
65027 +#ifdef RT_BIG_ENDIAN
65031 + USHORT STBC:2; //SPACE
65032 + USHORT ShortGI:1;
65033 + USHORT Mode:2; //channel bandwidth 20MHz or 40 MHz
65034 + USHORT NumOfRX:2; // MIMO. WE HAVE 3R
65036 + USHORT NumOfRX:2; // MIMO. WE HAVE 3R
65037 + USHORT Mode:2; //channel bandwidth 20MHz or 40 MHz
65038 + USHORT ShortGI:1;
65039 + USHORT STBC:2; //SPACE
65044 + } RECEIVE_SETTING, *PRECEIVE_SETTING;
65046 +// Shared key data structure
65047 +typedef struct _WEP_KEY {
65048 + UCHAR KeyLen; // Key length for each key, 0: entry is invalid
65049 + UCHAR Key[MAX_LEN_OF_KEY]; // right now we implement 4 keys, 128 bits max
65050 +} WEP_KEY, *PWEP_KEY;
65052 +typedef struct _CIPHER_KEY {
65053 + UCHAR Key[16]; // right now we implement 4 keys, 128 bits max
65054 + UCHAR RxMic[8]; // make alignment
65056 + UCHAR TxTsc[6]; // 48bit TSC value
65057 + UCHAR RxTsc[6]; // 48bit TSC value
65058 + UCHAR CipherAlg; // 0-none, 1:WEP64, 2:WEP128, 3:TKIP, 4:AES, 5:CKIP64, 6:CKIP128
65060 +#ifdef CONFIG_STA_SUPPORT
65062 +#endif // CONFIG_STA_SUPPORT //
65063 + // Key length for each key, 0: entry is invalid
65064 + UCHAR Type; // Indicate Pairwise/Group when reporting MIC error
65065 +} CIPHER_KEY, *PCIPHER_KEY;
65067 +typedef struct _BBP_TUNING_STRUCT {
65069 + UCHAR FalseCcaCountUpperBound; // 100 per sec
65070 + UCHAR FalseCcaCountLowerBound; // 10 per sec
65071 + UCHAR R17LowerBound; // specified in E2PROM
65072 + UCHAR R17UpperBound; // 0x68 according to David Tung
65073 + UCHAR CurrentR17Value;
65074 +} BBP_TUNING, *PBBP_TUNING;
65076 +typedef struct _SOFT_RX_ANT_DIVERSITY_STRUCT {
65077 + UCHAR EvaluatePeriod; // 0:not evalute status, 1: evaluate status, 2: switching status
65078 + UCHAR EvaluateStableCnt;
65079 + UCHAR Pair1PrimaryRxAnt; // 0:Ant-E1, 1:Ant-E2
65080 + UCHAR Pair1SecondaryRxAnt; // 0:Ant-E1, 1:Ant-E2
65081 + UCHAR Pair2PrimaryRxAnt; // 0:Ant-E3, 1:Ant-E4
65082 + UCHAR Pair2SecondaryRxAnt; // 0:Ant-E3, 1:Ant-E4
65083 + SHORT Pair1AvgRssi[2]; // AvgRssi[0]:E1, AvgRssi[1]:E2
65084 + SHORT Pair2AvgRssi[2]; // AvgRssi[0]:E3, AvgRssi[1]:E4
65085 + SHORT Pair1LastAvgRssi; //
65086 + SHORT Pair2LastAvgRssi; //
65087 + ULONG RcvPktNumWhenEvaluate;
65088 + BOOLEAN FirstPktArrivedWhenEvaluate;
65089 + RALINK_TIMER_STRUCT RxAntDiversityTimer;
65090 +} SOFT_RX_ANT_DIVERSITY, *PSOFT_RX_ANT_DIVERSITY;
65092 +typedef struct _LEAP_AUTH_INFO {
65093 + BOOLEAN Enabled; //Ture: Enable LEAP Authentication
65094 + BOOLEAN CCKM; //Ture: Use Fast Reauthentication with CCKM
65095 + UCHAR Reserve[2];
65096 + UCHAR UserName[256]; //LEAP, User name
65097 + ULONG UserNameLen;
65098 + UCHAR Password[256]; //LEAP, User Password
65099 + ULONG PasswordLen;
65100 +} LEAP_AUTH_INFO, *PLEAP_AUTH_INFO;
65103 + UCHAR Addr[MAC_ADDR_LEN];
65104 + UCHAR ErrorCode[2]; //00 01-Invalid authentication type
65105 + //00 02-Authentication timeout
65106 + //00 03-Challenge from AP failed
65107 + //00 04-Challenge to AP failed
65108 + BOOLEAN Reported;
65109 +} ROGUEAP_ENTRY, *PROGUEAP_ENTRY;
65113 + ROGUEAP_ENTRY RogueApEntry[MAX_LEN_OF_BSS_TABLE];
65114 +} ROGUEAP_TABLE, *PROGUEAP_TABLE;
65119 + BOOLEAN PlusSign;
65120 +} CCK_TX_POWER_CALIBRATE, *PCCK_TX_POWER_CALIBRATE;
65123 +// Receive Tuple Cache Format
65125 +typedef struct _TUPLE_CACHE {
65127 + UCHAR MacAddress[MAC_ADDR_LEN];
65130 +} TUPLE_CACHE, *PTUPLE_CACHE;
65133 +// Fragment Frame structure
65135 +typedef struct _FRAGMENT_FRAME {
65136 + PNDIS_PACKET pFragPacket;
65140 + ULONG Flags; // Some extra frame information. bit 0: LLC presented
65141 +} FRAGMENT_FRAME, *PFRAGMENT_FRAME;
65145 +// Packet information for NdisQueryPacket
65147 +typedef struct _PACKET_INFO {
65148 + UINT PhysicalBufferCount; // Physical breaks of buffer descripor chained
65149 + UINT BufferCount ; // Number of Buffer descriptor chained
65150 + UINT TotalPacketLength ; // Self explained
65151 + PNDIS_BUFFER pFirstBuffer; // Pointer to first buffer descriptor
65152 +} PACKET_INFO, *PPACKET_INFO;
65155 +// Tkip Key structure which RC4 key & MIC calculation
65157 +typedef struct _TKIP_KEY_INFO {
65158 + UINT nBytesInM; // # bytes in M for MICKEY
65161 + ULONG K0; // for MICKEY Low
65162 + ULONG K1; // for MICKEY Hig
65163 + ULONG L; // Current state for MICKEY
65164 + ULONG R; // Current state for MICKEY
65165 + ULONG M; // Message accumulator for MICKEY
65166 + UCHAR RC4KEY[16];
65168 +} TKIP_KEY_INFO, *PTKIP_KEY_INFO;
65171 +// Private / Misc data, counters for driver internal use
65173 +typedef struct __PRIVATE_STRUC {
65174 + UINT SystemResetCnt; // System reset counter
65175 + UINT TxRingFullCnt; // Tx ring full occurrance number
65176 + UINT PhyRxErrCnt; // PHY Rx error count, for debug purpose, might move to global counter
65177 + // Variables for WEP encryption / decryption in rtmp_wep.c
65179 + ARCFOURCONTEXT WEPCONTEXT;
65181 + TKIP_KEY_INFO Tx;
65182 + TKIP_KEY_INFO Rx;
65183 +} PRIVATE_STRUC, *PPRIVATE_STRUC;
65185 +// structure to tune BBP R66 (BBP TUNING)
65186 +typedef struct _BBP_R66_TUNING {
65188 + USHORT FalseCcaLowerThreshold; // default 100
65189 + USHORT FalseCcaUpperThreshold; // default 512
65191 + UCHAR R66CurrentValue;
65192 + BOOLEAN R66LowerUpperSelect; //Before LinkUp, Used LowerBound or UpperBound as R66 value.
65193 +} BBP_R66_TUNING, *PBBP_R66_TUNING;
65195 +// structure to store channel TX power
65196 +typedef struct _CHANNEL_TX_POWER {
65197 + USHORT RemainingTimeForUse; //unit: sec
65199 +#ifdef DOT11N_DRAFT3
65200 + BOOLEAN bEffectedChannel; // For BW 40 operating in 2.4GHz , the "effected channel" is the channel that is covered in 40Mhz.
65201 +#endif // DOT11N_DRAFT3 //
65206 +} CHANNEL_TX_POWER, *PCHANNEL_TX_POWER;
65208 +// structure to store 802.11j channel TX power
65209 +typedef struct _CHANNEL_11J_TX_POWER {
65211 + UCHAR BW; // BW_10 or BW_20
65214 + USHORT RemainingTimeForUse; //unit: sec
65215 +} CHANNEL_11J_TX_POWER, *PCHANNEL_11J_TX_POWER;
65217 +typedef enum _ABGBAND_STATE_ {
65223 +typedef struct _MLME_STRUCT {
65224 +#ifdef CONFIG_STA_SUPPORT
65225 + // STA state machines
65226 + STATE_MACHINE CntlMachine;
65227 + STATE_MACHINE AssocMachine;
65228 + STATE_MACHINE AuthMachine;
65229 + STATE_MACHINE AuthRspMachine;
65230 + STATE_MACHINE SyncMachine;
65231 + STATE_MACHINE WpaPskMachine;
65232 + STATE_MACHINE LeapMachine;
65233 + STATE_MACHINE AironetMachine;
65234 + STATE_MACHINE_FUNC AssocFunc[ASSOC_FUNC_SIZE];
65235 + STATE_MACHINE_FUNC AuthFunc[AUTH_FUNC_SIZE];
65236 + STATE_MACHINE_FUNC AuthRspFunc[AUTH_RSP_FUNC_SIZE];
65237 + STATE_MACHINE_FUNC SyncFunc[SYNC_FUNC_SIZE];
65238 + STATE_MACHINE_FUNC WpaPskFunc[WPA_PSK_FUNC_SIZE];
65239 + STATE_MACHINE_FUNC AironetFunc[AIRONET_FUNC_SIZE];
65240 +#endif // CONFIG_STA_SUPPORT //
65241 + STATE_MACHINE_FUNC ActFunc[ACT_FUNC_SIZE];
65243 + STATE_MACHINE ActMachine;
65246 +#ifdef QOS_DLS_SUPPORT
65247 + STATE_MACHINE DlsMachine;
65248 + STATE_MACHINE_FUNC DlsFunc[DLS_FUNC_SIZE];
65249 +#endif // QOS_DLS_SUPPORT //
65254 + ULONG ChannelQuality; // 0..100, Channel Quality Indication for Roaming
65255 + ULONG Now32; // latch the value of NdisGetSystemUpTime()
65256 + ULONG LastSendNULLpsmTime;
65258 + BOOLEAN bRunning;
65259 + NDIS_SPIN_LOCK TaskLock;
65260 + MLME_QUEUE Queue;
65264 + RALINK_TIMER_STRUCT PeriodicTimer;
65265 + RALINK_TIMER_STRUCT APSDPeriodicTimer;
65266 + RALINK_TIMER_STRUCT LinkDownTimer;
65267 + RALINK_TIMER_STRUCT LinkUpTimer;
65268 + ULONG PeriodicRound;
65269 + ULONG OneSecPeriodicRound;
65271 + UCHAR RealRxPath;
65272 + BOOLEAN bLowThroughput;
65273 + BOOLEAN bEnableAutoAntennaCheck;
65274 + RALINK_TIMER_STRUCT RxAntEvalTimer;
65277 + UCHAR CaliBW40RfR24;
65278 + UCHAR CaliBW20RfR24;
65279 +#endif // RT30xx //
65281 +} MLME_STRUCT, *PMLME_STRUCT;
65283 +// structure for radar detection and channel switch
65284 +typedef struct _RADAR_DETECT_STRUCT {
65285 + //BOOLEAN IEEE80211H; // 0: disable, 1: enable IEEE802.11h
65286 + UCHAR CSCount; //Channel switch counter
65287 + UCHAR CSPeriod; //Channel switch period (beacon count)
65288 + UCHAR RDCount; //Radar detection counter
65289 + UCHAR RDMode; //Radar Detection mode
65290 + UCHAR RDDurRegion; //Radar detection duration region
65297 + ULONG InServiceMonitorCount; // unit: sec
65298 + UINT8 DfsSessionTime;
65299 + BOOLEAN bFastDfs;
65300 + UINT8 ChMovingTime;
65301 + UINT8 LongPulseRadarTh;
65302 +} RADAR_DETECT_STRUCT, *PRADAR_DETECT_STRUCT;
65304 +#ifdef CARRIER_DETECTION_SUPPORT
65305 +typedef enum CD_STATE_n
65312 +typedef struct CARRIER_DETECTION_s
65315 + UINT8 CDSessionTime;
65317 + CD_STATE CD_State;
65318 +} CARRIER_DETECTION, *PCARRIER_DETECTION;
65319 +#endif // CARRIER_DETECTION_SUPPORT //
65321 +typedef enum _REC_BLOCKACK_STATUS
65323 + Recipient_NONE=0,
65325 + Recipient_HandleRes,
65327 +} REC_BLOCKACK_STATUS, *PREC_BLOCKACK_STATUS;
65329 +typedef enum _ORI_BLOCKACK_STATUS
65331 + Originator_NONE=0,
65333 + Originator_WaitRes,
65335 +} ORI_BLOCKACK_STATUS, *PORI_BLOCKACK_STATUS;
65337 +#ifdef DOT11_N_SUPPORT
65338 +typedef struct _BA_ORI_ENTRY{
65343 +// Sequence is to fill every outgoing QoS DATA frame's sequence field in 802.11 header.
65345 + USHORT TimeOutValue;
65346 + ORI_BLOCKACK_STATUS ORI_BA_Status;
65347 + RALINK_TIMER_STRUCT ORIBATimer;
65349 +} BA_ORI_ENTRY, *PBA_ORI_ENTRY;
65351 +typedef struct _BA_REC_ENTRY {
65354 + UCHAR BAWinSize; // 7.3.1.14. each buffer is capable of holding a max AMSDU or MSDU.
65355 + //UCHAR NumOfRxPkt;
65356 + //UCHAR Curindidx; // the head in the RX reordering buffer
65357 + USHORT LastIndSeq;
65358 +// USHORT LastIndSeqAtTimer;
65359 + USHORT TimeOutValue;
65360 + RALINK_TIMER_STRUCT RECBATimer;
65361 + ULONG LastIndSeqAtTimer;
65362 + ULONG nDropPacket;
65364 + REC_BLOCKACK_STATUS REC_BA_Status;
65365 +// UCHAR RxBufIdxUsed;
65366 + // corresponding virtual address for RX reordering packet storage.
65367 + //RTMP_REORDERDMABUF MAP_RXBuf[MAX_RX_REORDERBUF];
65368 + NDIS_SPIN_LOCK RxReRingLock; // Rx Ring spinlock
65369 +// struct _BA_REC_ENTRY *pNext;
65371 + struct reordering_list list;
65372 +} BA_REC_ENTRY, *PBA_REC_ENTRY;
65376 + ULONG numAsRecipient; // I am recipient of numAsRecipient clients. These client are in the BARecEntry[]
65377 + ULONG numAsOriginator; // I am originator of numAsOriginator clients. These clients are in the BAOriEntry[]
65378 + BA_ORI_ENTRY BAOriEntry[MAX_LEN_OF_BA_ORI_TABLE];
65379 + BA_REC_ENTRY BARecEntry[MAX_LEN_OF_BA_REC_TABLE];
65380 +} BA_TABLE, *PBA_TABLE;
65382 +//For QureyBATableOID use;
65383 +typedef struct PACKED _OID_BA_REC_ENTRY{
65384 + UCHAR MACAddr[MAC_ADDR_LEN];
65385 + UCHAR BaBitmap; // if (BaBitmap&(1<<TID)), this session with{MACAddr, TID}exists, so read BufSize[TID] for BufferSize
65387 + UCHAR BufSize[8];
65388 + REC_BLOCKACK_STATUS REC_BA_Status[8];
65389 +} OID_BA_REC_ENTRY, *POID_BA_REC_ENTRY;
65391 +//For QureyBATableOID use;
65392 +typedef struct PACKED _OID_BA_ORI_ENTRY{
65393 + UCHAR MACAddr[MAC_ADDR_LEN];
65394 + UCHAR BaBitmap; // if (BaBitmap&(1<<TID)), this session with{MACAddr, TID}exists, so read BufSize[TID] for BufferSize, read ORI_BA_Status[TID] for status
65396 + UCHAR BufSize[8];
65397 + ORI_BLOCKACK_STATUS ORI_BA_Status[8];
65398 +} OID_BA_ORI_ENTRY, *POID_BA_ORI_ENTRY;
65400 +typedef struct _QUERYBA_TABLE{
65401 + OID_BA_ORI_ENTRY BAOriEntry[32];
65402 + OID_BA_REC_ENTRY BARecEntry[32];
65403 + UCHAR OriNum;// Number of below BAOriEntry
65404 + UCHAR RecNum;// Number of below BARecEntry
65405 +} QUERYBA_TABLE, *PQUERYBA_TABLE;
65407 +typedef union _BACAP_STRUC {
65408 +#ifdef RT_BIG_ENDIAN
65411 + UINT32 b2040CoexistScanSup:1; //As Sta, support do 2040 coexistence scan for AP. As Ap, support monitor trigger event to check if can use BW 40MHz.
65412 + UINT32 bHtAdhoc:1; // adhoc can use ht rate.
65413 + UINT32 MMPSmode:2; // MIMO power save more, 0:static, 1:dynamic, 2:rsv, 3:mimo enable
65414 + UINT32 AmsduSize:1; // 0:3839, 1:7935 bytes. UINT MSDUSizeToBytes[] = { 3839, 7935};
65415 + UINT32 AmsduEnable:1; //Enable AMSDU transmisstion
65416 + UINT32 MpduDensity:3;
65417 + UINT32 Policy:2; // 0: DELAY_BA 1:IMMED_BA (//BA Policy subfiled value in ADDBA frame) 2:BA-not use
65418 + UINT32 AutoBA:1; // automatically BA
65419 + UINT32 TxBAWinLimit:8;
65420 + UINT32 RxBAWinLimit:8;
65424 + UINT32 RxBAWinLimit:8;
65425 + UINT32 TxBAWinLimit:8;
65426 + UINT32 AutoBA:1; // automatically BA
65427 + UINT32 Policy:2; // 0: DELAY_BA 1:IMMED_BA (//BA Policy subfiled value in ADDBA frame) 2:BA-not use
65428 + UINT32 MpduDensity:3;
65429 + UINT32 AmsduEnable:1; //Enable AMSDU transmisstion
65430 + UINT32 AmsduSize:1; // 0:3839, 1:7935 bytes. UINT MSDUSizeToBytes[] = { 3839, 7935};
65431 + UINT32 MMPSmode:2; // MIMO power save more, 0:static, 1:dynamic, 2:rsv, 3:mimo enable
65432 + UINT32 bHtAdhoc:1; // adhoc can use ht rate.
65433 + UINT32 b2040CoexistScanSup:1; //As Sta, support do 2040 coexistence scan for AP. As Ap, support monitor trigger event to check if can use BW 40MHz.
65438 +} BACAP_STRUC, *PBACAP_STRUC;
65439 +#endif // DOT11_N_SUPPORT //
65441 +//This structure is for all 802.11n card InterOptibilityTest action. Reset all Num every n second. (Details see MLMEPeriodic)
65442 +typedef struct _IOT_STRUC {
65443 + UCHAR Threshold[2];
65444 + UCHAR ReorderTimeOutNum[MAX_LEN_OF_BA_REC_TABLE]; // compare with threshold[0]
65445 + UCHAR RefreshNum[MAX_LEN_OF_BA_REC_TABLE]; // compare with threshold[1]
65446 + ULONG OneSecInWindowCount;
65447 + ULONG OneSecFrameDuplicateCount;
65448 + ULONG OneSecOutWindowCount;
65451 + UCHAR RTSShortProt;
65452 + UCHAR RTSLongProt;
65453 + BOOLEAN bRTSLongProtOn;
65454 +#ifdef CONFIG_STA_SUPPORT
65455 + BOOLEAN bLastAtheros;
65456 + BOOLEAN bCurrentAtheros;
65457 + BOOLEAN bNowAtherosBurstOn;
65458 + BOOLEAN bNextDisableRxBA;
65460 +#endif // CONFIG_STA_SUPPORT //
65461 +} IOT_STRUC, *PIOT_STRUC;
65463 +// This is the registry setting for 802.11n transmit setting. Used in advanced page.
65464 +typedef union _REG_TRANSMIT_SETTING {
65465 +#ifdef RT_BIG_ENDIAN
65470 + UINT32 TRANSNO:2;
65471 + UINT32 STBC:1; //SPACE
65472 + UINT32 ShortGI:1;
65473 + UINT32 BW:1; //channel bandwidth 20MHz or 40 MHz
65474 + UINT32 TxBF:1; // 3*3
65476 + //UINT32 MCS:7; // MCS
65477 + //UINT32 PhyMode:4;
65481 + //UINT32 PhyMode:4;
65482 + //UINT32 MCS:7; // MCS
65485 + UINT32 BW:1; //channel bandwidth 20MHz or 40 MHz
65486 + UINT32 ShortGI:1;
65487 + UINT32 STBC:1; //SPACE
65488 + UINT32 TRANSNO:2;
65495 +} REG_TRANSMIT_SETTING, *PREG_TRANSMIT_SETTING;
65497 +typedef union _DESIRED_TRANSMIT_SETTING {
65498 +#ifdef RT_BIG_ENDIAN
65501 + USHORT FixedTxMode:2; // If MCS isn't AUTO, fix rate in CCK, OFDM or HT mode.
65502 + USHORT PhyMode:4;
65503 + USHORT MCS:7; // MCS
65507 + USHORT MCS:7; // MCS
65508 + USHORT PhyMode:4;
65509 + USHORT FixedTxMode:2; // If MCS isn't AUTO, fix rate in CCK, OFDM or HT mode.
65514 + } DESIRED_TRANSMIT_SETTING, *PDESIRED_TRANSMIT_SETTING;
65517 + BOOLEAN IsRecipient;
65518 + UCHAR MACAddr[MAC_ADDR_LEN];
65522 + BOOLEAN bAllTid; // If True, delete all TID for BA sessions with this MACaddr.
65523 +} OID_ADD_BA_ENTRY, *POID_ADD_BA_ENTRY;
65526 +// Multiple SSID structure
65528 +#define WLAN_MAX_NUM_OF_TIM ((MAX_LEN_OF_MAC_TABLE >> 3) + 1) /* /8 + 1 */
65529 +#define WLAN_CT_TIM_BCMC_OFFSET 0 /* unit: 32B */
65531 +/* clear bcmc TIM bit */
65532 +#define WLAN_MR_TIM_BCMC_CLEAR(apidx) \
65533 + pAd->ApCfg.MBSSID[apidx].TimBitmaps[WLAN_CT_TIM_BCMC_OFFSET] &= ~BIT8[0];
65535 +/* set bcmc TIM bit */
65536 +#define WLAN_MR_TIM_BCMC_SET(apidx) \
65537 + pAd->ApCfg.MBSSID[apidx].TimBitmaps[WLAN_CT_TIM_BCMC_OFFSET] |= BIT8[0];
65539 +/* clear a station PS TIM bit */
65540 +#define WLAN_MR_TIM_BIT_CLEAR(ad_p, apidx, wcid) \
65541 + { UCHAR tim_offset = wcid >> 3; \
65542 + UCHAR bit_offset = wcid & 0x7; \
65543 + ad_p->ApCfg.MBSSID[apidx].TimBitmaps[tim_offset] &= (~BIT8[bit_offset]); }
65545 +/* set a station PS TIM bit */
65546 +#define WLAN_MR_TIM_BIT_SET(ad_p, apidx, wcid) \
65547 + { UCHAR tim_offset = wcid >> 3; \
65548 + UCHAR bit_offset = wcid & 0x7; \
65549 + ad_p->ApCfg.MBSSID[apidx].TimBitmaps[tim_offset] |= BIT8[bit_offset]; }
65552 +#define BEACON_BITMAP_MASK 0xff
65553 +typedef struct _BEACON_SYNC_STRUCT_
65555 + UCHAR BeaconBuf[HW_BEACON_MAX_COUNT][HW_BEACON_OFFSET];
65556 + UCHAR BeaconTxWI[HW_BEACON_MAX_COUNT][TXWI_SIZE];
65557 + ULONG TimIELocationInBeacon[HW_BEACON_MAX_COUNT];
65558 + ULONG CapabilityInfoLocationInBeacon[HW_BEACON_MAX_COUNT];
65559 + BOOLEAN EnableBeacon; // trigger to enable beacon transmission.
65560 + UCHAR BeaconBitMap; // NOTE: If the MAX_MBSSID_NUM is larger than 8, this parameter need to change.
65561 + UCHAR DtimBitOn; // NOTE: If the MAX_MBSSID_NUM is larger than 8, this parameter need to change.
65562 +}BEACON_SYNC_STRUCT;
65563 +#endif // RT2870 //
65565 +typedef struct _MULTISSID_STRUCT {
65566 + UCHAR Bssid[MAC_ADDR_LEN];
65568 + CHAR Ssid[MAX_LEN_OF_SSID];
65569 + USHORT CapabilityInfo;
65571 + PNET_DEV MSSIDDev;
65573 + NDIS_802_11_AUTHENTICATION_MODE AuthMode;
65574 + NDIS_802_11_WEP_STATUS WepStatus;
65575 + NDIS_802_11_WEP_STATUS GroupKeyWepStatus;
65576 + WPA_MIX_PAIR_CIPHER WpaMixPairCipher;
65580 + ULONG ReceivedByteCount;
65581 + ULONG TransmittedByteCount;
65582 + ULONG RxErrorCount;
65583 + ULONG RxDropCount;
65585 + HTTRANSMIT_SETTING HTPhyMode, MaxHTPhyMode, MinHTPhyMode;// For transmit phy setting in TXWI.
65586 + RT_HT_PHY_INFO DesiredHtPhyInfo;
65587 + DESIRED_TRANSMIT_SETTING DesiredTransmitSetting; // Desired transmit setting. this is for reading registry setting only. not useful.
65588 + BOOLEAN bAutoTxRateSwitch;
65590 + //CIPHER_KEY SharedKey[SHARE_KEY_NUM]; // ref pAd->SharedKey[BSS][4]
65591 + UCHAR DefaultKeyId;
65593 + UCHAR TxRate; // RATE_1, RATE_2, RATE_5_5, RATE_11, ...
65594 + UCHAR DesiredRates[MAX_LEN_OF_SUPPORTED_RATES];// OID_802_11_DESIRED_RATES
65595 + UCHAR DesiredRatesIndex;
65596 + UCHAR MaxTxRate; // RATE_1, RATE_2, RATE_5_5, RATE_11
65598 +// ULONG TimBitmap; // bit0 for broadcast, 1 for AID1, 2 for AID2, ...so on
65599 +// ULONG TimBitmap2; // b0 for AID32, b1 for AID33, ... and so on
65600 + UCHAR TimBitmaps[WLAN_MAX_NUM_OF_TIM];
65606 + BOOLEAN IEEE8021X;
65608 + UCHAR GNonce[32];
65609 + UCHAR PortSecured;
65610 + NDIS_802_11_PRIVACY_FILTER PrivacyFilter;
65611 + UCHAR BANClass3Data;
65612 + ULONG IsolateInterStaTraffic;
65614 + UCHAR RSNIE_Len[2];
65615 + UCHAR RSN_IE[2][MAX_LEN_OF_RSNIE];
65618 + UCHAR TimIELocationInBeacon;
65619 + UCHAR CapabilityInfoLocationInBeacon;
65620 + // outgoing BEACON frame buffer and corresponding TXWI
65621 + // PTXWI_STRUC BeaconTxWI; //
65622 + CHAR BeaconBuf[MAX_BEACON_SIZE]; // NOTE: BeaconBuf should be 4-byte aligned
65624 + BOOLEAN bHideSsid;
65625 + UINT16 StationKeepAliveTime; // unit: second
65628 + USHORT VLAN_Priority;
65630 + RT_802_11_ACL AccessControlList;
65633 + BOOLEAN bWmmCapable; // 0:disable WMM, 1:enable WMM
65634 + BOOLEAN bDLSCapable; // 0:disable DLS, 1:enable DLS
65636 + UCHAR DlsPTK[64]; // Due to windows dirver count on meetinghouse to handle 4-way shake
65638 + // For 802.1x daemon setting per BSS
65639 + UCHAR radius_srv_num;
65640 + RADIUS_SRV_INFO radius_srv_info[MAX_RADIUS_SRV_NUM];
65642 +#ifdef RTL865X_SOC
65643 + unsigned int mylinkid;
65647 + UINT32 RcvdConflictSsidCount;
65648 + UINT32 RcvdSpoofedAssocRespCount;
65649 + UINT32 RcvdSpoofedReassocRespCount;
65650 + UINT32 RcvdSpoofedProbeRespCount;
65651 + UINT32 RcvdSpoofedBeaconCount;
65652 + UINT32 RcvdSpoofedDisassocCount;
65653 + UINT32 RcvdSpoofedAuthCount;
65654 + UINT32 RcvdSpoofedDeauthCount;
65655 + UINT32 RcvdSpoofedUnknownMgmtCount;
65656 + UINT32 RcvdReplayAttackCount;
65658 + CHAR RssiOfRcvdConflictSsid;
65659 + CHAR RssiOfRcvdSpoofedAssocResp;
65660 + CHAR RssiOfRcvdSpoofedReassocResp;
65661 + CHAR RssiOfRcvdSpoofedProbeResp;
65662 + CHAR RssiOfRcvdSpoofedBeacon;
65663 + CHAR RssiOfRcvdSpoofedDisassoc;
65664 + CHAR RssiOfRcvdSpoofedAuth;
65665 + CHAR RssiOfRcvdSpoofedDeauth;
65666 + CHAR RssiOfRcvdSpoofedUnknownMgmt;
65667 + CHAR RssiOfRcvdReplayAttack;
65669 + BOOLEAN bBcnSntReq;
65671 +} MULTISSID_STRUCT, *PMULTISSID_STRUCT;
65675 +#ifdef DOT11N_DRAFT3
65676 +typedef enum _BSS2040COEXIST_FLAG{
65677 + BSS_2040_COEXIST_DISABLE = 0,
65678 + BSS_2040_COEXIST_TIMER_FIRED = 1,
65679 + BSS_2040_COEXIST_INFO_SYNC = 2,
65680 + BSS_2040_COEXIST_INFO_NOTIFY = 4,
65681 +}BSS2040COEXIST_FLAG;
65682 +#endif // DOT11N_DRAFT3 //
65684 +// configuration common to OPMODE_AP as well as OPMODE_STA
65685 +typedef struct _COMMON_CONFIG {
65687 + BOOLEAN bCountryFlag;
65688 + UCHAR CountryCode[3];
65690 + UCHAR CountryRegion; // Enum of country region, 0:FCC, 1:IC, 2:ETSI, 3:SPAIN, 4:France, 5:MKK, 6:MKK1, 7:Israel
65691 + UCHAR CountryRegionForABand; // Enum of country region for A band
65692 + UCHAR PhyMode; // PHY_11A, PHY_11B, PHY_11BG_MIXED, PHY_ABG_MIXED
65693 + USHORT Dsifs; // in units of usec
65694 + ULONG PacketFilter; // Packet filter for receiving
65696 + CHAR Ssid[MAX_LEN_OF_SSID]; // NOT NULL-terminated
65697 + UCHAR SsidLen; // the actual ssid length in used
65698 + UCHAR LastSsidLen; // the actual ssid length in used
65699 + CHAR LastSsid[MAX_LEN_OF_SSID]; // NOT NULL-terminated
65700 + UCHAR LastBssid[MAC_ADDR_LEN];
65702 + UCHAR Bssid[MAC_ADDR_LEN];
65703 + USHORT BeaconPeriod;
65705 + UCHAR CentralChannel; // Central Channel when using 40MHz is indicating. not real channel.
65707 + UCHAR SupRate[MAX_LEN_OF_SUPPORTED_RATES];
65708 + UCHAR SupRateLen;
65709 + UCHAR ExtRate[MAX_LEN_OF_SUPPORTED_RATES];
65710 + UCHAR ExtRateLen;
65711 + UCHAR DesireRate[MAX_LEN_OF_SUPPORTED_RATES]; // OID_802_11_DESIRED_RATES
65712 + UCHAR MaxDesiredRate;
65713 + UCHAR ExpectedACKRate[MAX_LEN_OF_SUPPORTED_RATES];
65715 + ULONG BasicRateBitmap; // backup basic ratebitmap
65717 + BOOLEAN bAPSDCapable;
65718 + BOOLEAN bInServicePeriod;
65719 + BOOLEAN bAPSDAC_BE;
65720 + BOOLEAN bAPSDAC_BK;
65721 + BOOLEAN bAPSDAC_VI;
65722 + BOOLEAN bAPSDAC_VO;
65723 + BOOLEAN bNeedSendTriggerFrame;
65724 + BOOLEAN bAPSDForcePowerSave; // Force power save mode, should only use in APSD-STAUT
65725 + ULONG TriggerTimerCount;
65726 + UCHAR MaxSPLength;
65727 + UCHAR BBPCurrentBW; // BW_10, BW_20, BW_40
65728 + // move to MULTISSID_STRUCT for MBSS
65729 + //HTTRANSMIT_SETTING HTPhyMode, MaxHTPhyMode, MinHTPhyMode;// For transmit phy setting in TXWI.
65730 + REG_TRANSMIT_SETTING RegTransmitSetting; //registry transmit setting. this is for reading registry setting only. not useful.
65731 + //UCHAR FixedTxMode; // Fixed Tx Mode (CCK, OFDM), for HT fixed tx mode (GF, MIX) , refer to RegTransmitSetting.field.HTMode
65732 + UCHAR TxRate; // Same value to fill in TXD. TxRate is 6-bit
65733 + UCHAR MaxTxRate; // RATE_1, RATE_2, RATE_5_5, RATE_11
65734 + UCHAR TxRateIndex; // Tx rate index in RateSwitchTable
65735 + UCHAR TxRateTableSize; // Valid Tx rate table size in RateSwitchTable
65736 + //BOOLEAN bAutoTxRateSwitch;
65737 + UCHAR MinTxRate; // RATE_1, RATE_2, RATE_5_5, RATE_11
65738 + UCHAR RtsRate; // RATE_xxx
65739 + HTTRANSMIT_SETTING MlmeTransmit; // MGMT frame PHY rate setting when operatin at Ht rate.
65740 + UCHAR MlmeRate; // RATE_xxx, used to send MLME frames
65741 + UCHAR BasicMlmeRate; // Default Rate for sending MLME frames
65743 + USHORT RtsThreshold; // in unit of BYTE
65744 + USHORT FragmentThreshold; // in unit of BYTE
65746 + UCHAR TxPower; // in unit of mW
65747 + ULONG TxPowerPercentage; // 0~100 %
65748 + ULONG TxPowerDefault; // keep for TxPowerPercentage
65750 +#ifdef DOT11_N_SUPPORT
65751 + BACAP_STRUC BACapability; // NO USE = 0XFF ; IMMED_BA =1 ; DELAY_BA=0
65752 + BACAP_STRUC REGBACapability; // NO USE = 0XFF ; IMMED_BA =1 ; DELAY_BA=0
65753 +#endif // DOT11_N_SUPPORT //
65754 + IOT_STRUC IOTestParm; // 802.11n InterOpbility Test Parameter;
65755 + ULONG TxPreamble; // Rt802_11PreambleLong, Rt802_11PreambleShort, Rt802_11PreambleAuto
65756 + BOOLEAN bUseZeroToDisableFragment; // Microsoft use 0 as disable
65757 + ULONG UseBGProtection; // 0: auto, 1: always use, 2: always not use
65758 + BOOLEAN bUseShortSlotTime; // 0: disable, 1 - use short slot (9us)
65759 + BOOLEAN bEnableTxBurst; // 1: enble TX PACKET BURST, 0: disable TX PACKET BURST
65760 + BOOLEAN bAggregationCapable; // 1: enable TX aggregation when the peer supports it
65761 + BOOLEAN bPiggyBackCapable; // 1: enable TX piggy-back according MAC's version
65762 + BOOLEAN bIEEE80211H; // 1: enable IEEE802.11h spec.
65763 + ULONG DisableOLBCDetect; // 0: enable OLBC detect; 1 disable OLBC detect
65765 +#ifdef DOT11_N_SUPPORT
65767 +#endif // DOT11_N_SUPPORT //
65768 + BOOLEAN bWmmCapable; // 0:disable WMM, 1:enable WMM
65769 + QOS_CAPABILITY_PARM APQosCapability; // QOS capability of the current associated AP
65770 + EDCA_PARM APEdcaParm; // EDCA parameters of the current associated AP
65771 + QBSS_LOAD_PARM APQbssLoad; // QBSS load of the current associated AP
65772 + UCHAR AckPolicy[4]; // ACK policy of the specified AC. see ACK_xxx
65773 +#ifdef CONFIG_STA_SUPPORT
65774 + BOOLEAN bDLSCapable; // 0:disable DLS, 1:enable DLS
65775 +#endif // CONFIG_STA_SUPPORT //
65776 + // a bitmap of BOOLEAN flags. each bit represent an operation status of a particular
65777 + // BOOLEAN control, either ON or OFF. These flags should always be accessed via
65778 + // OPSTATUS_TEST_FLAG(), OPSTATUS_SET_FLAG(), OP_STATUS_CLEAR_FLAG() macros.
65779 + // see fOP_STATUS_xxx in RTMP_DEF.C for detail bit definition
65780 + ULONG OpStatusFlags;
65782 + BOOLEAN NdisRadioStateOff; //For HCT 12.0, set this flag to TRUE instead of called MlmeRadioOff.
65783 + ABGBAND_STATE BandState; // For setting BBP used on B/G or A mode.
65784 + BOOLEAN bRxAntDiversity; // 0:disable, 1:enable Software Rx Antenna Diversity.
65786 + // IEEE802.11H--DFS.
65787 + RADAR_DETECT_STRUCT RadarDetect;
65789 +#ifdef CARRIER_DETECTION_SUPPORT
65790 + CARRIER_DETECTION CarrierDetect;
65791 +#endif // CARRIER_DETECTION_SUPPORT //
65793 +#ifdef DOT11_N_SUPPORT
65795 + UCHAR BASize; // USer desired BAWindowSize. Should not exceed our max capability
65796 + //RT_HT_CAPABILITY SupportedHtPhy;
65797 + RT_HT_CAPABILITY DesiredHtPhy;
65798 + HT_CAPABILITY_IE HtCapability;
65799 + ADD_HT_INFO_IE AddHTInfo; // Useful as AP.
65800 + //This IE is used with channel switch announcement element when changing to a new 40MHz.
65801 + //This IE is included in channel switch ammouncement frames 7.4.1.5, beacons, probe Rsp.
65802 + NEW_EXT_CHAN_IE NewExtChanOffset; //7.3.2.20A, 1 if extension channel is above the control channel, 3 if below, 0 if not present
65804 +#ifdef DOT11N_DRAFT3
65805 + UCHAR Bss2040CoexistFlag; // bit 0: bBssCoexistTimerRunning, bit 1: NeedSyncAddHtInfo.
65806 + RALINK_TIMER_STRUCT Bss2040CoexistTimer;
65808 + //This IE is used for 20/40 BSS Coexistence.
65809 + BSS_2040_COEXIST_IE BSS2040CoexistInfo;
65810 + // ====== 11n D3.0 =======================>
65811 + USHORT Dot11OBssScanPassiveDwell; // Unit : TU. 5~1000
65812 + USHORT Dot11OBssScanActiveDwell; // Unit : TU. 10~1000
65813 + USHORT Dot11BssWidthTriggerScanInt; // Unit : Second
65814 + USHORT Dot11OBssScanPassiveTotalPerChannel; // Unit : TU. 200~10000
65815 + USHORT Dot11OBssScanActiveTotalPerChannel; // Unit : TU. 20~10000
65816 + USHORT Dot11BssWidthChanTranDelayFactor;
65817 + USHORT Dot11OBssScanActivityThre; // Unit : percentage
65819 + ULONG Dot11BssWidthChanTranDelay; // multiple of (Dot11BssWidthTriggerScanInt * Dot11BssWidthChanTranDelayFactor)
65820 + ULONG CountDownCtr; // CountDown Counter from (Dot11BssWidthTriggerScanInt * Dot11BssWidthChanTranDelayFactor)
65822 + NDIS_SPIN_LOCK TriggerEventTabLock;
65823 + BSS_2040_COEXIST_IE LastBSSCoexist2040;
65824 + BSS_2040_COEXIST_IE BSSCoexist2040;
65825 + TRIGGER_EVENT_TAB TriggerEventTab;
65826 + UCHAR ChannelListIdx;
65827 + // <====== 11n D3.0 =======================
65828 + BOOLEAN bOverlapScanning;
65829 +#endif // DOT11N_DRAFT3 //
65831 + BOOLEAN bHTProtect;
65832 + BOOLEAN bMIMOPSEnable;
65833 + BOOLEAN bBADecline;
65834 + BOOLEAN bDisableReordering;
65835 + BOOLEAN bForty_Mhz_Intolerant;
65836 + BOOLEAN bExtChannelSwitchAnnouncement;
65837 + BOOLEAN bRcvBSSWidthTriggerEvents;
65838 + ULONG LastRcvBSSWidthTriggerEventsTime;
65841 +#endif // DOT11_N_SUPPORT //
65843 + // Enable wireless event
65844 + BOOLEAN bWirelessEvent;
65845 + BOOLEAN bWiFiTest; // Enable this parameter for WiFi test
65847 + // Tx & Rx Stream number selection
65851 + // transmit phy mode, trasmit rate for Multicast.
65852 +#ifdef MCAST_RATE_SPECIFIC
65853 + UCHAR McastTransmitMcs;
65854 + UCHAR McastTransmitPhyMode;
65855 +#endif // MCAST_RATE_SPECIFIC //
65857 + BOOLEAN bHardwareRadio; // Hardware controlled Radio enabled
65860 + BOOLEAN bMultipleIRP; // Multiple Bulk IN flag
65861 + UCHAR NumOfBulkInIRP; // if bMultipleIRP == TRUE, NumOfBulkInIRP will be 4 otherwise be 1
65862 + RT_HT_CAPABILITY SupportedHtPhy;
65863 + ULONG MaxPktOneTxBulk;
65864 + UCHAR TxBulkFactor;
65865 + UCHAR RxBulkFactor;
65867 + BEACON_SYNC_STRUCT *pBeaconSync;
65868 + RALINK_TIMER_STRUCT BeaconUpdateTimer;
65869 + UINT32 BeaconAdjust;
65870 + UINT32 BeaconFactor;
65871 + UINT32 BeaconRemain;
65872 +#endif // RT2870 //
65875 + NDIS_SPIN_LOCK MeasureReqTabLock;
65876 + PMEASURE_REQ_TAB pMeasureReqTab;
65878 + NDIS_SPIN_LOCK TpcReqTabLock;
65879 + PTPC_REQ_TAB pTpcReqTab;
65881 + // transmit phy mode, trasmit rate for Multicast.
65882 +#ifdef MCAST_RATE_SPECIFIC
65883 + HTTRANSMIT_SETTING MCastPhyMode;
65884 +#endif // MCAST_RATE_SPECIFIC //
65887 + UINT16 DefineMaxTxPwr;
65888 +#endif // SINGLE_SKU //
65891 +} COMMON_CONFIG, *PCOMMON_CONFIG;
65894 +#ifdef CONFIG_STA_SUPPORT
65895 +/* Modified by Wu Xi-Kun 4/21/2006 */
65896 +// STA configuration and status
65897 +typedef struct _STA_ADMIN_CONFIG {
65899 + // User configuration loaded from Registry, E2PROM or OID_xxx. These settings describe
65900 + // the user intended configuration, but not necessary fully equal to the final
65901 + // settings in ACTIVE BSS after negotiation/compromize with the BSS holder (either
65902 + // AP or IBSS holder).
65903 + // Once initialized, user configuration can only be changed via OID_xxx
65904 + UCHAR BssType; // BSS_INFRA or BSS_ADHOC
65905 + USHORT AtimWin; // used when starting a new IBSS
65908 + // User configuration loaded from Registry, E2PROM or OID_xxx. These settings describe
65909 + // the user intended configuration, and should be always applied to the final
65910 + // settings in ACTIVE BSS without compromising with the BSS holder.
65911 + // Once initialized, user configuration can only be changed via OID_xxx
65912 + UCHAR RssiTrigger;
65913 + UCHAR RssiTriggerMode; // RSSI_TRIGGERED_UPON_BELOW_THRESHOLD or RSSI_TRIGGERED_UPON_EXCCEED_THRESHOLD
65914 + USHORT DefaultListenCount; // default listen count;
65915 + ULONG WindowsPowerMode; // Power mode for AC power
65916 + ULONG WindowsBatteryPowerMode; // Power mode for battery if exists
65917 + BOOLEAN bWindowsACCAMEnable; // Enable CAM power mode when AC on
65918 + BOOLEAN bAutoReconnect; // Set to TRUE when setting OID_802_11_SSID with no matching BSSID
65919 + ULONG WindowsPowerProfile; // Windows power profile, for NDIS5.1 PnP
65921 + // MIB:ieee802dot11.dot11smt(1).dot11StationConfigTable(1)
65922 + USHORT Psm; // power management mode (PWR_ACTIVE|PWR_SAVE)
65923 + USHORT DisassocReason;
65924 + UCHAR DisassocSta[MAC_ADDR_LEN];
65925 + USHORT DeauthReason;
65926 + UCHAR DeauthSta[MAC_ADDR_LEN];
65927 + USHORT AuthFailReason;
65928 + UCHAR AuthFailSta[MAC_ADDR_LEN];
65930 + NDIS_802_11_PRIVACY_FILTER PrivacyFilter; // PrivacyFilter enum for 802.1X
65931 + NDIS_802_11_AUTHENTICATION_MODE AuthMode; // This should match to whatever microsoft defined
65932 + NDIS_802_11_WEP_STATUS WepStatus;
65933 + NDIS_802_11_WEP_STATUS OrigWepStatus; // Original wep status set from OID
65935 + // Add to support different cipher suite for WPA2/WPA mode
65936 + NDIS_802_11_ENCRYPTION_STATUS GroupCipher; // Multicast cipher suite
65937 + NDIS_802_11_ENCRYPTION_STATUS PairCipher; // Unicast cipher suite
65938 + BOOLEAN bMixCipher; // Indicate current Pair & Group use different cipher suites
65939 + USHORT RsnCapability;
65941 + NDIS_802_11_WEP_STATUS GroupKeyWepStatus;
65943 + UCHAR PMK[32]; // WPA PSK mode PMK
65944 + UCHAR PTK[64]; // WPA PSK mode PTK
65945 + UCHAR GTK[32]; // GTK from authenticator
65946 + BSSID_INFO SavedPMK[PMKID_NO];
65947 + UINT SavedPMKNum; // Saved PMKID number
65949 + UCHAR DefaultKeyId;
65952 + // WPA 802.1x port control, WPA_802_1X_PORT_SECURED, WPA_802_1X_PORT_NOT_SECURED
65953 + UCHAR PortSecured;
65955 + // For WPA countermeasures
65956 + ULONG LastMicErrorTime; // record last MIC error time
65957 + ULONG MicErrCnt; // Should be 0, 1, 2, then reset to zero (after disassoiciation).
65958 + BOOLEAN bBlockAssoc; // Block associate attempt for 60 seconds after counter measure occurred.
65959 + // For WPA-PSK supplicant state
65960 + WPA_STATE WpaState; // Default is SS_NOTUSE and handled by microsoft 802.1x
65961 + UCHAR ReplayCounter[8];
65962 + UCHAR ANonce[32]; // ANonce for WPA-PSK from aurhenticator
65963 + UCHAR SNonce[32]; // SNonce for WPA-PSK
65965 + UCHAR LastSNR0; // last received BEACON's SNR
65966 + UCHAR LastSNR1; // last received BEACON's SNR for 2nd antenna
65967 + RSSI_SAMPLE RssiSample;
65968 + ULONG NumOfAvgRssiSample;
65970 + ULONG LastBeaconRxTime; // OS's timestamp of the last BEACON RX time
65971 + ULONG Last11bBeaconRxTime; // OS's timestamp of the last 11B BEACON RX time
65972 + ULONG Last11gBeaconRxTime; // OS's timestamp of the last 11G BEACON RX time
65973 + ULONG Last20NBeaconRxTime; // OS's timestamp of the last 20MHz N BEACON RX time
65975 + ULONG LastScanTime; // Record last scan time for issue BSSID_SCAN_LIST
65976 + ULONG ScanCnt; // Scan counts since most recent SSID, BSSID, SCAN OID request
65977 + BOOLEAN bSwRadio; // Software controlled Radio On/Off, TRUE: On
65978 + BOOLEAN bHwRadio; // Hardware controlled Radio On/Off, TRUE: On
65979 + BOOLEAN bRadio; // Radio state, And of Sw & Hw radio state
65980 + BOOLEAN bHardwareRadio; // Hardware controlled Radio enabled
65981 + BOOLEAN bShowHiddenSSID; // Show all known SSID in SSID list get operation
65983 + //BOOLEAN AdhocBOnlyJoined; // Indicate Adhoc B Join.
65984 + //BOOLEAN AdhocBGJoined; // Indicate Adhoc B/G Join.
65985 + //BOOLEAN Adhoc20NJoined; // Indicate Adhoc 20MHz N Join.
65987 + // New for WPA, windows want us to to keep association information and
65988 + // Fixed IEs from last association response
65989 + NDIS_802_11_ASSOCIATION_INFORMATION AssocInfo;
65990 + USHORT ReqVarIELen; // Length of next VIE include EID & Length
65991 + UCHAR ReqVarIEs[MAX_VIE_LEN]; // The content saved here should be little-endian format.
65992 + USHORT ResVarIELen; // Length of next VIE include EID & Length
65993 + UCHAR ResVarIEs[MAX_VIE_LEN];
65996 + UCHAR RSN_IE[MAX_LEN_OF_RSNIE]; // The content saved here should be little-endian format.
65998 + // New variables used for CCX 1.0
66000 + BOOLEAN bCkipCmicOn;
66002 + UCHAR GIV[3]; //for CCX iv
66005 + UCHAR CKIPMIC[4];
66006 + UCHAR LeapAuthMode;
66007 + LEAP_AUTH_INFO LeapAuthInfo;
66008 + UCHAR HashPwd[16];
66009 + UCHAR NetworkChallenge[8];
66010 + UCHAR NetworkChallengeResponse[24];
66011 + UCHAR PeerChallenge[8];
66013 + UCHAR PeerChallengeResponse[24];
66014 + UCHAR SessionKey[16]; //Network session keys (NSK)
66015 + RALINK_TIMER_STRUCT LeapAuthTimer;
66016 + ROGUEAP_TABLE RogueApTab; //Cisco CCX1 Rogue AP Detection
66018 + // New control flags for CCX
66019 + CCX_CONTROL CCXControl; // Master administration state
66020 + BOOLEAN CCXEnable; // Actual CCX state
66021 + UCHAR CCXScanChannel; // Selected channel for CCX beacon request
66022 + USHORT CCXScanTime; // Time out to wait for beacon and probe response
66023 + UCHAR CCXReqType; // Current processing CCX request type
66024 + BSS_TABLE CCXBssTab; // BSS Table
66025 + UCHAR FrameReportBuf[2048]; // Buffer for creating frame report
66026 + USHORT FrameReportLen; // Current Frame report length
66027 + ULONG CLBusyBytes; // Save the total bytes received durning channel load scan time
66028 + USHORT RPIDensity[8]; // Array for RPI density collection
66029 + // Start address of each BSS table within FrameReportBuf
66030 + // It's important to update the RxPower of the corresponding Bss
66031 + USHORT BssReportOffset[MAX_LEN_OF_BSS_TABLE];
66032 + USHORT BeaconToken; // Token for beacon report
66033 + ULONG LastBssIndex; // Most current reported Bss index
66034 + RM_REQUEST_ACTION MeasurementRequest[16]; // Saved measurement request
66035 + UCHAR RMReqCnt; // Number of measurement request saved.
66036 + UCHAR CurrentRMReqIdx; // Number of measurement request saved.
66037 + BOOLEAN ParallelReq; // Parallel measurement, only one request performed,
66038 + // It must be the same channel with maximum duration
66039 + USHORT ParallelDuration; // Maximum duration for parallel measurement
66040 + UCHAR ParallelChannel; // Only one channel with parallel measurement
66041 + USHORT IAPPToken; // IAPP dialog token
66042 + UCHAR CCXQosECWMin; // Cisco QOS ECWMin for AC 0
66043 + UCHAR CCXQosECWMax; // Cisco QOS ECWMax for AC 0
66044 + // Hack for channel load and noise histogram parameters
66045 + UCHAR NHFactor; // Parameter for Noise histogram
66046 + UCHAR CLFactor; // Parameter for channel load
66048 + UCHAR KRK[16]; //Key Refresh Key.
66049 + UCHAR BTK[32]; //Base Transient Key
66050 + BOOLEAN CCKMLinkUpFlag;
66051 + ULONG CCKMRN; //(Re)Association request number.
66052 + LARGE_INTEGER CCKMBeaconAtJoinTimeStamp; //TSF timer for Re-assocaite to the new AP
66053 + UCHAR AironetCellPowerLimit; //in dBm
66054 + UCHAR AironetIPAddress[4]; //eg. 192.168.1.1
66055 + BOOLEAN CCXAdjacentAPReportFlag; //flag for determining report Assoc Lost time
66056 + CHAR CCXAdjacentAPSsid[MAX_LEN_OF_SSID]; //Adjacent AP's SSID report
66057 + UCHAR CCXAdjacentAPSsidLen; // the actual ssid length in used
66058 + UCHAR CCXAdjacentAPBssid[MAC_ADDR_LEN]; //Adjacent AP's BSSID report
66059 + USHORT CCXAdjacentAPChannel;
66060 + ULONG CCXAdjacentAPLinkDownTime; //for Spec S32.
66062 + RALINK_TIMER_STRUCT StaQuickResponeForRateUpTimer;
66063 + BOOLEAN StaQuickResponeForRateUpTimerRunning;
66065 + UCHAR DtimCount; // 0.. DtimPeriod-1
66066 + UCHAR DtimPeriod; // default = 3
66068 +#ifdef QOS_DLS_SUPPORT
66069 + RT_802_11_DLS DLSEntry[MAX_NUM_OF_DLS_ENTRY];
66070 + UCHAR DlsReplayCounter[8];
66071 +#endif // QOS_DLS_SUPPORT //
66072 + ////////////////////////////////////////////////////////////////////////////////////////
66073 + // This is only for WHQL test.
66074 + BOOLEAN WhqlTest;
66075 + ////////////////////////////////////////////////////////////////////////////////////////
66077 + RALINK_TIMER_STRUCT WpaDisassocAndBlockAssocTimer;
66079 + BOOLEAN bFastRoaming; // 0:disable fast roaming, 1:enable fast roaming
66080 + CHAR dBmToRoam; // the condition to roam when receiving Rssi less than this value. It's negative value.
66082 +#ifdef WPA_SUPPLICANT_SUPPORT
66083 + BOOLEAN IEEE8021X;
66084 + BOOLEAN IEEE8021x_required_keys;
66085 + CIPHER_KEY DesireSharedKey[4]; // Record user desired WEP keys
66086 + UCHAR DesireSharedKeyId;
66088 + // 0: driver ignores wpa_supplicant
66089 + // 1: wpa_supplicant initiates scanning and AP selection
66090 + // 2: driver takes care of scanning, AP selection, and IEEE 802.11 association parameters
66091 + UCHAR WpaSupplicantUP;
66092 + UCHAR WpaSupplicantScanCount;
66093 +#endif // WPA_SUPPLICANT_SUPPORT //
66095 + CHAR dev_name[16];
66096 + USHORT OriDevType;
66098 + BOOLEAN bTGnWifiTest;
66099 + BOOLEAN bScanReqIsFromWebUI;
66101 + HTTRANSMIT_SETTING HTPhyMode, MaxHTPhyMode, MinHTPhyMode;// For transmit phy setting in TXWI.
66102 + DESIRED_TRANSMIT_SETTING DesiredTransmitSetting;
66103 + RT_HT_PHY_INFO DesiredHtPhyInfo;
66104 + BOOLEAN bAutoTxRateSwitch;
66107 +#ifdef EXT_BUILD_CHANNEL_LIST
66108 + UCHAR IEEE80211dClientMode;
66109 + UCHAR StaOriCountryCode[3];
66110 + UCHAR StaOriGeography;
66111 +#endif // EXT_BUILD_CHANNEL_LIST //
66112 +} STA_ADMIN_CONFIG, *PSTA_ADMIN_CONFIG;
66114 +// This data structure keep the current active BSS/IBSS's configuration that this STA
66115 +// had agreed upon joining the network. Which means these parameters are usually decided
66116 +// by the BSS/IBSS creator instead of user configuration. Data in this data structurre
66117 +// is valid only when either ADHOC_ON(pAd) or INFRA_ON(pAd) is TRUE.
66118 +// Normally, after SCAN or failed roaming attempts, we need to recover back to
66119 +// the current active settings.
66120 +typedef struct _STA_ACTIVE_CONFIG {
66122 + USHORT AtimWin; // in kusec; IBSS parameter set element
66123 + USHORT CapabilityInfo;
66124 + USHORT CfpMaxDuration;
66125 + USHORT CfpPeriod;
66127 + // Copy supported rate from desired AP's beacon. We are trying to match
66128 + // AP's supported and extended rate settings.
66129 + UCHAR SupRate[MAX_LEN_OF_SUPPORTED_RATES];
66130 + UCHAR ExtRate[MAX_LEN_OF_SUPPORTED_RATES];
66131 + UCHAR SupRateLen;
66132 + UCHAR ExtRateLen;
66133 + // Copy supported ht from desired AP's beacon. We are trying to match
66134 + RT_HT_PHY_INFO SupportedPhyInfo;
66135 + RT_HT_CAPABILITY SupportedHtPhy;
66136 +} STA_ACTIVE_CONFIG, *PSTA_ACTIVE_CONFIG;
66137 +#endif // CONFIG_STA_SUPPORT //
66140 +typedef struct RT_ADD_PAIRWISE_KEY_ENTRY {
66141 + NDIS_802_11_MAC_ADDRESS MacAddr;
66142 + USHORT MacTabMatchWCID; // ASIC
66143 + CIPHER_KEY CipherKey;
66144 +} RT_ADD_PAIRWISE_KEY_ENTRY,*PRT_ADD_PAIRWISE_KEY_ENTRY;
66145 +#endif // RT2870 //
66147 +// ----------- start of AP --------------------------
66148 +// AUTH-RSP State Machine Aux data structure
66149 +typedef struct _AP_MLME_AUX {
66150 + UCHAR Addr[MAC_ADDR_LEN];
66152 + CHAR Challenge[CIPHER_TEXT_LEN];
66153 +} AP_MLME_AUX, *PAP_MLME_AUX;
66155 +// structure to define WPA Group Key Rekey Interval
66156 +typedef struct PACKED _RT_802_11_WPA_REKEY {
66157 + ULONG ReKeyMethod; // mechanism for rekeying: 0:disable, 1: time-based, 2: packet-based
66158 + ULONG ReKeyInterval; // time-based: seconds, packet-based: kilo-packets
66159 +} RT_WPA_REKEY,*PRT_WPA_REKEY, RT_802_11_WPA_REKEY, *PRT_802_11_WPA_REKEY;
66161 +typedef struct _MAC_TABLE_ENTRY {
66162 + //Choose 1 from ValidAsWDS and ValidAsCLI to validize.
66163 + BOOLEAN ValidAsCLI; // Sta mode, set this TRUE after Linkup,too.
66164 + BOOLEAN ValidAsWDS; // This is WDS Entry. only for AP mode.
66165 + BOOLEAN ValidAsApCli; //This is a AP-Client entry, only for AP mode which enable AP-Client functions.
66166 + BOOLEAN ValidAsMesh;
66167 + BOOLEAN ValidAsDls; // This is DLS Entry. only for STA mode.
66168 + BOOLEAN isCached;
66169 + BOOLEAN bIAmBadAtheros;
66171 + UCHAR EnqueueEapolStartTimerRunning; // Enqueue EAPoL-Start for triggering EAP SM
66173 + // record which entry revoke MIC Failure , if it leaves the BSS itself, AP won't update aMICFailTime MIB
66174 + UCHAR CMTimerRunning;
66175 + UCHAR apidx; // MBSS number
66177 + UCHAR RSN_IE[MAX_LEN_OF_RSNIE];
66178 + UCHAR ANonce[LEN_KEY_DESC_NONCE];
66179 + UCHAR R_Counter[LEN_KEY_DESC_REPLAY];
66181 + UCHAR ReTryCounter;
66182 + RALINK_TIMER_STRUCT RetryTimer;
66183 + RALINK_TIMER_STRUCT EnqueueStartForPSKTimer; // A timer which enqueue EAPoL-Start for triggering PSK SM
66184 + NDIS_802_11_AUTHENTICATION_MODE AuthMode; // This should match to whatever microsoft defined
66185 + NDIS_802_11_WEP_STATUS WepStatus;
66186 + AP_WPA_STATE WpaState;
66187 + GTK_STATE GTKState;
66188 + USHORT PortSecured;
66189 + NDIS_802_11_PRIVACY_FILTER PrivacyFilter; // PrivacyFilter enum for 802.1X
66190 + CIPHER_KEY PairwiseKey;
66192 + INT PMKID_CacheIdx;
66193 + UCHAR PMKID[LEN_PMKID];
66196 + UCHAR Addr[MAC_ADDR_LEN];
66199 + AUTH_STATE AuthState; // for SHARED KEY authentication state machine used only
66200 + BOOLEAN IsReassocSta; // Indicate whether this is a reassociation procedure
66202 + USHORT CapabilityInfo;
66204 + ULONG NoDataIdleCount;
66205 + UINT16 StationKeepAliveCount; // unit: second
66206 + ULONG PsQIdleCount;
66207 + QUEUE_HEADER PsQueue;
66209 + UINT32 StaConnectTime; // the live time of this station since associated with AP
66212 +#ifdef DOT11_N_SUPPORT
66213 + BOOLEAN bSendBAR;
66214 + USHORT NoBADataCountDown;
66216 + UINT32 CachedBuf[16]; // UINT (4 bytes) for alignment
66217 + UINT TxBFCount; // 3*3
66218 +#endif // DOT11_N_SUPPORT //
66220 + UINT DebugFIFOCount;
66221 + UINT DebugTxCount;
66222 + BOOLEAN bDlsInit;
66225 +//====================================================
66226 +//WDS entry needs these
66227 +// rt2860 add this. if ValidAsWDS==TRUE, MatchWDSTabIdx is the index in WdsTab.MacTab
66228 + UINT MatchWDSTabIdx;
66229 + UCHAR MaxSupportedRate;
66230 + UCHAR CurrTxRate;
66231 + UCHAR CurrTxRateIndex;
66232 + // to record the each TX rate's quality. 0 is best, the bigger the worse.
66233 + USHORT TxQuality[MAX_STEP_OF_TX_RATE_SWITCH];
66234 +// USHORT OneSecTxOkCount;
66235 + UINT32 OneSecTxNoRetryOkCount;
66236 + UINT32 OneSecTxRetryOkCount;
66237 + UINT32 OneSecTxFailCount;
66238 + UINT32 ContinueTxFailCnt;
66239 + UINT32 CurrTxRateStableTime; // # of second in current TX rate
66240 + UCHAR TxRateUpPenalty; // extra # of second penalty due to last unstable condition
66241 +//====================================================
66245 +#ifdef CONFIG_STA_SUPPORT
66246 +#ifdef QOS_DLS_SUPPORT
66247 + UINT MatchDlsEntryIdx; // indicate the index in pAd->StaCfg.DLSEntry
66248 +#endif // QOS_DLS_SUPPORT //
66249 +#endif // CONFIG_STA_SUPPORT //
66251 + BOOLEAN fNoisyEnvironment;
66252 + BOOLEAN fLastSecAccordingRSSI;
66253 + UCHAR LastSecTxRateChangeAction; // 0: no change, 1:rate UP, 2:rate down
66254 + CHAR LastTimeTxRateChangeAction; //Keep last time value of LastSecTxRateChangeAction
66255 + ULONG LastTxOkCount;
66256 + UCHAR PER[MAX_STEP_OF_TX_RATE_SWITCH];
66258 + // a bitmap of BOOLEAN flags. each bit represent an operation status of a particular
66259 + // BOOLEAN control, either ON or OFF. These flags should always be accessed via
66260 + // CLIENT_STATUS_TEST_FLAG(), CLIENT_STATUS_SET_FLAG(), CLIENT_STATUS_CLEAR_FLAG() macros.
66261 + // see fOP_STATUS_xxx in RTMP_DEF.C for detail bit definition. fCLIENT_STATUS_AMSDU_INUSED
66262 + ULONG ClientStatusFlags;
66264 + // TODO: Shall we move that to DOT11_N_SUPPORT???
66265 + HTTRANSMIT_SETTING HTPhyMode, MaxHTPhyMode, MinHTPhyMode;// For transmit phy setting in TXWI.
66267 +#ifdef DOT11_N_SUPPORT
66268 + // HT EWC MIMO-N used parameters
66269 + USHORT RXBAbitmap; // fill to on-chip RXWI_BA_BITMASK in 8.1.3RX attribute entry format
66270 + USHORT TXBAbitmap; // This bitmap as originator, only keep in software used to mark AMPDU bit in TXWI
66271 + USHORT TXAutoBAbitmap;
66272 + USHORT BADeclineBitmap;
66273 + USHORT BARecWcidArray[NUM_OF_TID]; // The mapping wcid of recipient session. if RXBAbitmap bit is masked
66274 + USHORT BAOriWcidArray[NUM_OF_TID]; // The mapping wcid of originator session. if TXBAbitmap bit is masked
66275 + USHORT BAOriSequence[NUM_OF_TID]; // The mapping wcid of originator session. if TXBAbitmap bit is masked
66277 + // 802.11n features.
66278 + UCHAR MpduDensity;
66279 + UCHAR MaxRAmpduFactor;
66281 + UCHAR MmpsMode; // MIMO power save more.
66283 + HT_CAPABILITY_IE HTCapability;
66285 +#ifdef DOT11N_DRAFT3
66286 + UCHAR BSS2040CoexistenceMgmtSupport;
66287 +#endif // DOT11N_DRAFT3 //
66288 +#endif // DOT11_N_SUPPORT //
66290 + BOOLEAN bAutoTxRateSwitch;
66293 + struct _MAC_TABLE_ENTRY *pNext;
66294 + USHORT TxSeq[NUM_OF_TID];
66295 + USHORT NonQosDataSeq;
66297 + RSSI_SAMPLE RssiSample;
66299 + UINT32 TXMCSExpected[16];
66300 + UINT32 TXMCSSuccessful[16];
66301 + UINT32 TXMCSFailed[16];
66302 + UINT32 TXMCSAutoFallBack[16][16];
66304 +#ifdef CONFIG_STA_SUPPORT
66305 + ULONG LastBeaconRxTime;
66306 +#endif // CONFIG_STA_SUPPORT //
66307 +} MAC_TABLE_ENTRY, *PMAC_TABLE_ENTRY;
66309 +typedef struct _MAC_TABLE {
66311 + MAC_TABLE_ENTRY *Hash[HASH_TABLE_SIZE];
66312 + MAC_TABLE_ENTRY Content[MAX_LEN_OF_MAC_TABLE];
66313 + QUEUE_HEADER McastPsQueue;
66314 + ULONG PsQIdleCount;
66315 + BOOLEAN fAnyStationInPsm;
66316 + BOOLEAN fAnyStationBadAtheros; // Check if any Station is atheros 802.11n Chip. We need to use RTS/CTS with Atheros 802,.11n chip.
66317 + BOOLEAN fAnyTxOPForceDisable; // Check if it is necessary to disable BE TxOP
66318 + BOOLEAN fAllStationAsRalink; // Check if all stations are ralink-chipset
66319 +#ifdef DOT11_N_SUPPORT
66320 + BOOLEAN fAnyStationIsLegacy; // Check if I use legacy rate to transmit to my BSS Station/
66321 + BOOLEAN fAnyStationNonGF; // Check if any Station can't support GF.
66322 + BOOLEAN fAnyStation20Only; // Check if any Station can't support GF.
66323 + BOOLEAN fAnyStationMIMOPSDynamic; // Check if any Station is MIMO Dynamic
66324 + BOOLEAN fAnyBASession; // Check if there is BA session. Force turn on RTS/CTS
66325 +#endif // DOT11_N_SUPPORT //
66326 +} MAC_TABLE, *PMAC_TABLE;
66328 +#ifdef DOT11_N_SUPPORT
66329 +#define IS_HT_STA(_pMacEntry) \
66330 + (_pMacEntry->MaxHTPhyMode.field.MODE >= MODE_HTMIX)
66332 +#define IS_HT_RATE(_pMacEntry) \
66333 + (_pMacEntry->HTPhyMode.field.MODE >= MODE_HTMIX)
66335 +#define PEER_IS_HT_RATE(_pMacEntry) \
66336 + (_pMacEntry->HTPhyMode.field.MODE >= MODE_HTMIX)
66337 +#endif // DOT11_N_SUPPORT //
66339 +typedef struct _WDS_ENTRY {
66341 + UCHAR Addr[MAC_ADDR_LEN];
66342 + ULONG NoDataIdleCount;
66343 + struct _WDS_ENTRY *pNext;
66344 +} WDS_ENTRY, *PWDS_ENTRY;
66346 +typedef struct _WDS_TABLE_ENTRY {
66348 + UCHAR WdsAddr[MAC_ADDR_LEN];
66349 + WDS_ENTRY *Hash[HASH_TABLE_SIZE];
66350 + WDS_ENTRY Content[MAX_LEN_OF_MAC_TABLE];
66351 + UCHAR MaxSupportedRate;
66352 + UCHAR CurrTxRate;
66353 + USHORT TxQuality[MAX_LEN_OF_SUPPORTED_RATES];
66354 + USHORT OneSecTxOkCount;
66355 + USHORT OneSecTxRetryOkCount;
66356 + USHORT OneSecTxFailCount;
66357 + ULONG CurrTxRateStableTime; // # of second in current TX rate
66358 + UCHAR TxRateUpPenalty; // extra # of second penalty due to last unstable condition
66359 +} WDS_TABLE_ENTRY, *PWDS_TABLE_ENTRY;
66361 +typedef struct _RT_802_11_WDS_ENTRY {
66365 + UCHAR PeerWdsAddr[MAC_ADDR_LEN];
66366 + UCHAR MacTabMatchWCID; // ASIC
66367 + NDIS_802_11_WEP_STATUS WepStatus;
66369 + CIPHER_KEY WdsKey;
66370 + HTTRANSMIT_SETTING HTPhyMode, MaxHTPhyMode, MinHTPhyMode;
66371 + RT_HT_PHY_INFO DesiredHtPhyInfo;
66372 + BOOLEAN bAutoTxRateSwitch;
66373 + DESIRED_TRANSMIT_SETTING DesiredTransmitSetting; // Desired transmit setting.
66374 +} RT_802_11_WDS_ENTRY, *PRT_802_11_WDS_ENTRY;
66376 +typedef struct _WDS_TABLE {
66379 + RT_802_11_WDS_ENTRY WdsEntry[MAX_WDS_ENTRY];
66380 +} WDS_TABLE, *PWDS_TABLE;
66382 +typedef struct _APCLI_STRUCT {
66384 +#ifdef RTL865X_SOC
66385 + unsigned int mylinkid;
66387 + BOOLEAN Enable; // Set it as 1 if the apcli interface was configured to "1" or by iwpriv cmd "ApCliEnable"
66388 + BOOLEAN Valid; // Set it as 1 if the apcli interface associated success to remote AP.
66389 + UCHAR MacTabWCID; //WCID value, which point to the entry of ASIC Mac table.
66391 + CHAR Ssid[MAX_LEN_OF_SSID];
66393 + UCHAR CfgSsidLen;
66394 + CHAR CfgSsid[MAX_LEN_OF_SSID];
66395 + UCHAR CfgApCliBssid[ETH_LENGTH_OF_ADDRESS];
66396 + UCHAR CurrentAddress[ETH_LENGTH_OF_ADDRESS];
66398 + ULONG ApCliRcvBeaconTime;
66400 + ULONG CtrlCurrState;
66401 + ULONG SyncCurrState;
66402 + ULONG AuthCurrState;
66403 + ULONG AssocCurrState;
66404 + ULONG WpaPskCurrState;
66406 + USHORT AuthReqCnt;
66407 + USHORT AssocReqCnt;
66409 + ULONG ClientStatusFlags;
66410 + UCHAR MpduDensity;
66412 + NDIS_802_11_AUTHENTICATION_MODE AuthMode; // This should match to whatever microsoft defined
66413 + NDIS_802_11_WEP_STATUS WepStatus;
66415 + // Add to support different cipher suite for WPA2/WPA mode
66416 + NDIS_802_11_ENCRYPTION_STATUS GroupCipher; // Multicast cipher suite
66417 + NDIS_802_11_ENCRYPTION_STATUS PairCipher; // Unicast cipher suite
66418 + BOOLEAN bMixCipher; // Indicate current Pair & Group use different cipher suites
66419 + USHORT RsnCapability;
66421 + UCHAR PSK[100]; // reserve PSK key material
66423 + UCHAR PMK[32]; // WPA PSK mode PMK
66424 + //UCHAR PTK[64]; // WPA PSK mode PTK
66425 + UCHAR GTK[32]; // GTK from authenticator
66427 + //CIPHER_KEY PairwiseKey;
66428 + CIPHER_KEY SharedKey[SHARE_KEY_NUM];
66429 + UCHAR DefaultKeyId;
66431 + // WPA 802.1x port control, WPA_802_1X_PORT_SECURED, WPA_802_1X_PORT_NOT_SECURED
66432 + //UCHAR PortSecured;
66434 + // store RSN_IE built by driver
66435 + UCHAR RSN_IE[MAX_LEN_OF_RSNIE]; // The content saved here should be convert to little-endian format.
66438 + // For WPA countermeasures
66439 + ULONG LastMicErrorTime; // record last MIC error time
66440 + //ULONG MicErrCnt; // Should be 0, 1, 2, then reset to zero (after disassoiciation).
66441 + BOOLEAN bBlockAssoc; // Block associate attempt for 60 seconds after counter measure occurred.
66443 + // For WPA-PSK supplicant state
66444 + //WPA_STATE WpaState; // Default is SS_NOTUSE
66445 + //UCHAR ReplayCounter[8];
66446 + //UCHAR ANonce[32]; // ANonce for WPA-PSK from authenticator
66447 + UCHAR SNonce[32]; // SNonce for WPA-PSK
66448 + UCHAR GNonce[32]; // GNonce for WPA-PSK from authenticator
66450 + HTTRANSMIT_SETTING HTPhyMode, MaxHTPhyMode, MinHTPhyMode;
66451 + RT_HT_PHY_INFO DesiredHtPhyInfo;
66452 + BOOLEAN bAutoTxRateSwitch;
66453 + DESIRED_TRANSMIT_SETTING DesiredTransmitSetting; // Desired transmit setting.
66454 +} APCLI_STRUCT, *PAPCLI_STRUCT;
66456 +// ----------- end of AP ----------------------------
66458 +#ifdef BLOCK_NET_IF
66459 +typedef struct _BLOCK_QUEUE_ENTRY
66461 + BOOLEAN SwTxQueueBlockFlag;
66462 + LIST_HEADER NetIfList;
66463 +} BLOCK_QUEUE_ENTRY, *PBLOCK_QUEUE_ENTRY;
66464 +#endif // BLOCK_NET_IF //
66469 + BOOLEAN bShortGI;
66470 + BOOLEAN bGreenField;
66476 +typedef struct _INF_PCI_CONFIG
66478 + PUCHAR CSRBaseAddress; // PCI MMIO Base Address, all access will use
66481 +typedef struct _INF_USB_CONFIG
66483 + UINT BulkInEpAddr; // bulk-in endpoint address
66484 + UINT BulkOutEpAddr[6]; // bulk-out endpoint address
66488 +#ifdef IKANOS_VX_1X0
66489 + typedef void (*IkanosWlanTxCbFuncP)(void *, void *);
66491 + struct IKANOS_TX_INFO
66493 + struct net_device *netdev;
66494 + IkanosWlanTxCbFuncP *fp;
66496 +#endif // IKANOS_VX_1X0 //
66498 +#ifdef NINTENDO_AP
66499 +typedef struct _NINDO_CTRL_BLOCK {
66501 + RT_NINTENDO_TABLE DS_TABLE;
66504 + spinlock_t NINTENDO_TABLE_Lock;
66506 + NDIS_SPIN_LOCK NINTENDO_TABLE_Lock;
66507 +#endif // CHIP25XX //
66509 + UCHAR NINTENDO_UP_BUFFER[512];
66510 + UCHAR Local_KeyIdx;
66511 + CIPHER_KEY Local_SharedKey;
66512 + UCHAR Local_bHideSsid;
66513 + UCHAR Local_AuthMode;
66514 + UCHAR Local_WepStatus;
66515 + USHORT Local_CapabilityInfo;
66516 +} NINDO_CTRL_BLOCK;
66517 +#endif // NINTENDO_AP //
66520 +#ifdef DBG_DIAGNOSE
66521 +#define DIAGNOSE_TIME 10 // 10 sec
66522 +typedef struct _RtmpDiagStrcut_
66523 +{ // Diagnosis Related element
66524 + unsigned char inited;
66525 + unsigned char qIdx;
66526 + unsigned char ArrayStartIdx;
66527 + unsigned char ArrayCurIdx;
66528 + // Tx Related Count
66529 + USHORT TxDataCnt[DIAGNOSE_TIME];
66530 + USHORT TxFailCnt[DIAGNOSE_TIME];
66531 +// USHORT TxDescCnt[DIAGNOSE_TIME][16]; // TxDesc queue length in scale of 0~14, >=15
66532 + USHORT TxDescCnt[DIAGNOSE_TIME][24]; // 3*3 // TxDesc queue length in scale of 0~14, >=15
66533 +// USHORT TxMcsCnt[DIAGNOSE_TIME][16]; // TxDate MCS Count in range from 0 to 15, step in 1.
66534 + USHORT TxMcsCnt[DIAGNOSE_TIME][24]; // 3*3
66535 + USHORT TxSWQueCnt[DIAGNOSE_TIME][9]; // TxSwQueue length in scale of 0, 1, 2, 3, 4, 5, 6, 7, >=8
66537 + USHORT TxAggCnt[DIAGNOSE_TIME];
66538 + USHORT TxNonAggCnt[DIAGNOSE_TIME];
66539 +// USHORT TxAMPDUCnt[DIAGNOSE_TIME][16]; // 10 sec, TxDMA APMDU Aggregation count in range from 0 to 15, in setp of 1.
66540 + USHORT TxAMPDUCnt[DIAGNOSE_TIME][24]; // 3*3 // 10 sec, TxDMA APMDU Aggregation count in range from 0 to 15, in setp of 1.
66541 + USHORT TxRalinkCnt[DIAGNOSE_TIME]; // TxRalink Aggregation Count in 1 sec scale.
66542 + USHORT TxAMSDUCnt[DIAGNOSE_TIME]; // TxAMSUD Aggregation Count in 1 sec scale.
66544 + // Rx Related Count
66545 + USHORT RxDataCnt[DIAGNOSE_TIME]; // Rx Total Data count.
66546 + USHORT RxCrcErrCnt[DIAGNOSE_TIME];
66547 +// USHORT RxMcsCnt[DIAGNOSE_TIME][16]; // Rx MCS Count in range from 0 to 15, step in 1.
66548 + USHORT RxMcsCnt[DIAGNOSE_TIME][24]; // 3*3
66550 +#endif // DBG_DIAGNOSE //
66554 +// The miniport adapter structure
66556 +typedef struct _RTMP_ADAPTER
66558 + PVOID OS_Cookie; // save specific structure relative to OS
66559 + PNET_DEV net_dev;
66560 + ULONG VirtualIfCnt;
66564 + NDIS_SPIN_LOCK irq_lock;
66565 + UCHAR irq_disabled;
66568 +/*****************************************************************************************/
66569 +/* USB related parameters */
66570 +/*****************************************************************************************/
66571 + struct usb_config_descriptor *config;
66572 + UINT BulkInEpAddr; // bulk-in endpoint address
66573 + UINT BulkOutEpAddr[6]; // bulk-out endpoint address
66575 + UINT NumberOfPipes;
66576 + USHORT BulkOutMaxPacketSize;
66577 + USHORT BulkInMaxPacketSize;
66579 + //======Control Flags
66580 + LONG PendingIoCount;
66582 + BOOLEAN bUsbTxBulkAggre; // Flags for bulk out data priority
66585 + //======Timer Thread
66586 + RT2870_TIMER_QUEUE TimerQ;
66587 + NDIS_SPIN_LOCK TimerQLock;
66590 + //======Cmd Thread
66592 + NDIS_SPIN_LOCK CmdQLock; // CmdQLock spinlock
66594 + BOOLEAN TimerFunc_kill;
66595 + BOOLEAN mlme_kill;
66598 + //======Semaphores (event)
66599 + struct semaphore mlme_semaphore; /* to sleep thread on */
66600 + struct semaphore RTUSBCmd_semaphore; /* to sleep thread on */
66601 + struct semaphore RTUSBTimer_semaphore;
66602 +#ifdef INF_AMAZON_SE
66603 + struct semaphore UsbVendorReq_semaphore;
66604 + PVOID UsbVendorReqBuf;
66605 +#endif // INF_AMAZON_SE //
66606 + struct completion TimerQComplete;
66607 + struct completion mlmeComplete;
66608 + struct completion CmdQComplete;
66609 + wait_queue_head_t *wait;
66611 + //======Lock for 2870 ATE
66613 + NDIS_SPIN_LOCK GenericLock; // ATE Tx/Rx generic spinlock
66614 +#endif // RALINK_ATE //
66616 +#endif // RT2870 //
66619 +/*****************************************************************************************/
66620 + /* Both PCI/USB related parameters */
66621 +/*****************************************************************************************/
66624 +/*****************************************************************************************/
66625 +/* Tx related parameters */
66626 +/*****************************************************************************************/
66627 + BOOLEAN DeQueueRunning[NUM_OF_TX_RING]; // for ensuring RTUSBDeQueuePacket get call once
66628 + NDIS_SPIN_LOCK DeQueueLock[NUM_OF_TX_RING];
66631 + // Data related context and AC specified, 4 AC supported
66632 + NDIS_SPIN_LOCK BulkOutLock[6]; // BulkOut spinlock for 4 ACs
66633 + NDIS_SPIN_LOCK MLMEBulkOutLock; // MLME BulkOut lock
66635 + HT_TX_CONTEXT TxContext[NUM_OF_TX_RING];
66636 + NDIS_SPIN_LOCK TxContextQueueLock[NUM_OF_TX_RING]; // TxContextQueue spinlock
66638 + // 4 sets of Bulk Out index and pending flag
66639 + UCHAR NextBulkOutIndex[4]; // only used for 4 EDCA bulkout pipe
66641 + BOOLEAN BulkOutPending[6]; // used for total 6 bulkout pipe
66642 + UCHAR bulkResetPipeid;
66643 + BOOLEAN MgmtBulkPending;
66644 + ULONG bulkResetReq[6];
66645 +#endif // RT2870 //
66647 + // resource for software backlog queues
66648 + QUEUE_HEADER TxSwQueue[NUM_OF_TX_RING]; // 4 AC + 1 HCCA
66649 + NDIS_SPIN_LOCK TxSwQueueLock[NUM_OF_TX_RING]; // TxSwQueue spinlock
66651 + RTMP_DMABUF MgmtDescRing; // Shared memory for MGMT descriptors
66652 + RTMP_MGMT_RING MgmtRing;
66653 + NDIS_SPIN_LOCK MgmtRingLock; // Prio Ring spinlock
66656 +/*****************************************************************************************/
66657 +/* Rx related parameters */
66658 +/*****************************************************************************************/
66662 + RX_CONTEXT RxContext[RX_RING_SIZE]; // 1 for redundant multiple IRP bulk in.
66663 + NDIS_SPIN_LOCK BulkInLock; // BulkIn spinlock for 4 ACs
66664 + UCHAR PendingRx; // The Maxima pending Rx value should be RX_RING_SIZE.
66665 + UCHAR NextRxBulkInIndex; // Indicate the current RxContext Index which hold by Host controller.
66666 + UCHAR NextRxBulkInReadIndex; // Indicate the current RxContext Index which driver can read & process it.
66667 + ULONG NextRxBulkInPosition; // Want to contatenate 2 URB buffer while 1st is bulkin failed URB. This Position is 1st URB TransferLength.
66668 + ULONG TransferBufferLength; // current length of the packet buffer
66669 + ULONG ReadPosition; // current read position in a packet buffer
66670 +#endif // RT2870 //
66673 +/*****************************************************************************************/
66674 +/* ASIC related parameters */
66675 +/*****************************************************************************************/
66676 + UINT32 MACVersion; // MAC version. Record rt2860C(0x28600100) or rt2860D (0x28600101)..
66678 + // ---------------------------
66680 + // ---------------------------
66681 + ULONG EepromVersion; // byte 0: version, byte 1: revision, byte 2~3: unused
66682 + UCHAR EEPROMAddressNum; // 93c46=6 93c66=8
66683 + USHORT EEPROMDefaultValue[NUM_EEPROM_BBP_PARMS];
66684 + BOOLEAN EepromAccess;
66686 + ULONG FirmwareVersion; // byte 0: Minor version, byte 1: Major version, otherwise unused.
66688 + // ---------------------------
66690 + // ---------------------------
66691 + UCHAR BbpWriteLatch[140]; // record last BBP register value written via BBP_IO_WRITE/BBP_IO_WRITE_VY_REG_ID
66692 + UCHAR BbpRssiToDbmDelta;
66693 + BBP_R66_TUNING BbpTuning;
66695 + // ----------------------------
66697 + // ----------------------------
66698 + UCHAR RfIcType; // RFIC_xxx
66699 + ULONG RfFreqOffset; // Frequency offset for channel switching
66700 + RTMP_RF_REGS LatchRfRegs; // latch th latest RF programming value since RF IC doesn't support READ
66702 + EEPROM_ANTENNA_STRUC Antenna; // Since ANtenna definition is different for a & g. We need to save it for future reference.
66703 + EEPROM_NIC_CONFIG2_STRUC NicConfig2;
66705 + // This soft Rx Antenna Diversity mechanism is used only when user set
66706 + // RX Antenna = DIVERSITY ON
66707 + SOFT_RX_ANT_DIVERSITY RxAnt;
66710 + CHANNEL_TX_POWER TxPower[MAX_NUM_OF_CHANNELS]; // Store Tx power value for all channels.
66711 + CHANNEL_TX_POWER ChannelList[MAX_NUM_OF_CHANNELS]; // list all supported channels for site survey
66712 + CHANNEL_11J_TX_POWER TxPower11J[MAX_NUM_OF_11JCHANNELS]; // 802.11j channel and bw
66713 + CHANNEL_11J_TX_POWER ChannelList11J[MAX_NUM_OF_11JCHANNELS]; // list all supported channels for site survey
66715 + UCHAR ChannelListNum; // number of channel in ChannelList[]
66717 + BOOLEAN BbpForCCK;
66718 + ULONG Tx20MPwrCfgABand[5];
66719 + ULONG Tx20MPwrCfgGBand[5];
66720 + ULONG Tx40MPwrCfgABand[5];
66721 + ULONG Tx40MPwrCfgGBand[5];
66723 + BOOLEAN bAutoTxAgcA; // Enable driver auto Tx Agc control
66724 + UCHAR TssiRefA; // Store Tssi reference value as 25 temperature.
66725 + UCHAR TssiPlusBoundaryA[5]; // Tssi boundary for increase Tx power to compensate.
66726 + UCHAR TssiMinusBoundaryA[5]; // Tssi boundary for decrease Tx power to compensate.
66727 + UCHAR TxAgcStepA; // Store Tx TSSI delta increment / decrement value
66728 + CHAR TxAgcCompensateA; // Store the compensation (TxAgcStep * (idx-1))
66730 + BOOLEAN bAutoTxAgcG; // Enable driver auto Tx Agc control
66731 + UCHAR TssiRefG; // Store Tssi reference value as 25 temperature.
66732 + UCHAR TssiPlusBoundaryG[5]; // Tssi boundary for increase Tx power to compensate.
66733 + UCHAR TssiMinusBoundaryG[5]; // Tssi boundary for decrease Tx power to compensate.
66734 + UCHAR TxAgcStepG; // Store Tx TSSI delta increment / decrement value
66735 + CHAR TxAgcCompensateG; // Store the compensation (TxAgcStep * (idx-1))
66737 + //+++For RT2870, the parameteres is start from BGRssiOffset1 ~ BGRssiOffset3
66738 + CHAR BGRssiOffset0; // Store B/G RSSI#0 Offset value on EEPROM 0x46h
66739 + CHAR BGRssiOffset1; // Store B/G RSSI#1 Offset value
66740 + CHAR BGRssiOffset2; // Store B/G RSSI#2 Offset value
66743 + //+++For RT2870, the parameteres is start from ARssiOffset1 ~ ARssiOffset3
66744 + CHAR ARssiOffset0; // Store A RSSI#0 Offset value on EEPROM 0x4Ah
66745 + CHAR ARssiOffset1; // Store A RSSI#1 Offset value
66746 + CHAR ARssiOffset2; // Store A RSSI#2 Offset value
66749 + CHAR BLNAGain; // Store B/G external LNA#0 value on EEPROM 0x44h
66750 + CHAR ALNAGain0; // Store A external LNA#0 value for ch36~64
66751 + CHAR ALNAGain1; // Store A external LNA#1 value for ch100~128
66752 + CHAR ALNAGain2; // Store A external LNA#2 value for ch132~165
66754 + // ----------------------------
66756 + // ----------------------------
66757 + MCU_LEDCS_STRUC LedCntl;
66758 + USHORT Led1; // read from EEPROM 0x3c
66759 + USHORT Led2; // EEPROM 0x3e
66760 + USHORT Led3; // EEPROM 0x40
66761 + UCHAR LedIndicatorStregth;
66762 + UCHAR RssiSingalstrengthOffet;
66763 + BOOLEAN bLedOnScanning;
66766 +/*****************************************************************************************/
66767 +/* 802.11 related parameters */
66768 +/*****************************************************************************************/
66769 + // outgoing BEACON frame buffer and corresponding TXD
66770 + TXWI_STRUC BeaconTxWI;
66771 + PUCHAR BeaconBuf;
66772 + USHORT BeaconOffset[HW_BEACON_MAX_COUNT];
66774 + // pre-build PS-POLL and NULL frame upon link up. for efficiency purpose.
66775 + PSPOLL_FRAME PsPollFrame;
66776 + HEADER_802_11 NullFrame;
66779 + TX_CONTEXT BeaconContext[BEACON_RING_SIZE];
66780 + TX_CONTEXT NullContext;
66781 + TX_CONTEXT PsPollContext;
66782 + TX_CONTEXT RTSContext;
66783 +#endif // RT2870 //
66787 +//=========AP===========
66790 +//=======STA===========
66791 +#ifdef CONFIG_STA_SUPPORT
66792 +/* Modified by Wu Xi-Kun 4/21/2006 */
66793 + // -----------------------------------------------
66794 + // STA specific configuration & operation status
66795 + // used only when pAd->OpMode == OPMODE_STA
66796 + // -----------------------------------------------
66797 + STA_ADMIN_CONFIG StaCfg; // user desired settings
66798 + STA_ACTIVE_CONFIG StaActive; // valid only when ADHOC_ON(pAd) || INFRA_ON(pAd)
66799 + CHAR nickname[IW_ESSID_MAX_SIZE+1]; // nickname, only used in the iwconfig i/f
66800 + NDIS_MEDIA_STATE PreMediaState;
66801 +#endif // CONFIG_STA_SUPPORT //
66803 +//=======Common===========
66804 + // OP mode: either AP or STA
66805 + UCHAR OpMode; // OPMODE_STA, OPMODE_AP
66807 + NDIS_MEDIA_STATE IndicateMediaState; // Base on Indication state, default is NdisMediaStateDisConnected
66810 + // MAT related parameters
66812 + // configuration: read from Registry & E2PROM
66813 + BOOLEAN bLocalAdminMAC; // Use user changed MAC
66814 + UCHAR PermanentAddress[MAC_ADDR_LEN]; // Factory default MAC address
66815 + UCHAR CurrentAddress[MAC_ADDR_LEN]; // User changed MAC address
66817 + // ------------------------------------------------------
66818 + // common configuration to both OPMODE_STA and OPMODE_AP
66819 + // ------------------------------------------------------
66820 + COMMON_CONFIG CommonCfg;
66821 + MLME_STRUCT Mlme;
66823 + // AP needs those vaiables for site survey feature.
66824 + MLME_AUX MlmeAux; // temporary settings used during MLME state machine
66825 + BSS_TABLE ScanTab; // store the latest SCAN result
66827 + //About MacTab, the sta driver will use #0 and #1 for multicast and AP.
66828 + MAC_TABLE MacTab; // ASIC on-chip WCID entry table. At TX, ASIC always use key according to this on-chip table.
66829 + NDIS_SPIN_LOCK MacTabLock;
66831 +#ifdef DOT11_N_SUPPORT
66832 + BA_TABLE BATable;
66833 +#endif // DOT11_N_SUPPORT //
66834 + NDIS_SPIN_LOCK BATabLock;
66835 + RALINK_TIMER_STRUCT RECBATimer;
66837 + // encryption/decryption KEY tables
66838 + CIPHER_KEY SharedKey[MAX_MBSSID_NUM][4]; // STA always use SharedKey[BSS0][0..3]
66840 + // RX re-assembly buffer for fragmentation
66841 + FRAGMENT_FRAME FragFrame; // Frame storage for fragment frame
66843 + // various Counters
66844 + COUNTER_802_3 Counters8023; // 802.3 counters
66845 + COUNTER_802_11 WlanCounters; // 802.11 MIB counters
66846 + COUNTER_RALINK RalinkCounters; // Ralink propriety counters
66847 + COUNTER_DRS DrsCounters; // counters for Dynamic TX Rate Switching
66848 + PRIVATE_STRUC PrivateInfo; // Private information & counters
66850 + // flags, see fRTMP_ADAPTER_xxx flags
66851 + ULONG Flags; // Represent current device status
66853 + // current TX sequence #
66857 + NDIS_HANDLE hGiISR;
66861 + // Control disconnect / connect event generation
66862 + //+++Didn't used anymore
66863 + ULONG LinkDownTime;
66865 + ULONG LastRxRate;
66866 + ULONG LastTxRate;
66867 + //+++Used only for Station
66868 + BOOLEAN bConfigChanged; // Config Change flag for the same SSID setting
66871 + ULONG ExtraInfo; // Extra information for displaying status
66872 + ULONG SystemErrorBitmap; // b0: E2PROM version error
66874 + //+++Didn't used anymore
66875 + ULONG MacIcVersion; // MAC/BBP serial interface issue solved after ver.D
66878 + // ---------------------------
66879 + // System event log
66880 + // ---------------------------
66881 + RT_802_11_EVENT_TABLE EventTab;
66884 + BOOLEAN HTCEnable;
66886 + /*****************************************************************************************/
66887 + /* Statistic related parameters */
66888 + /*****************************************************************************************/
66890 + ULONG BulkOutDataOneSecCount;
66891 + ULONG BulkInDataOneSecCount;
66892 + ULONG BulkLastOneSecCount; // BulkOutDataOneSecCount + BulkInDataOneSecCount
66893 + ULONG watchDogRxCnt;
66894 + ULONG watchDogRxOverFlowCnt;
66895 + ULONG watchDogTxPendingCnt[NUM_OF_TX_RING];
66896 +#endif // RT2870 //
66898 + BOOLEAN bUpdateBcnCntDone;
66899 + ULONG watchDogMacDeadlock; // prevent MAC/BBP into deadlock condition
66900 + // ----------------------------
66901 + // DEBUG paramerts
66902 + // ----------------------------
66903 + //ULONG DebugSetting[4];
66904 + BOOLEAN bBanAllBaSetup;
66905 + BOOLEAN bPromiscuous;
66907 + // ----------------------------
66908 + // rt2860c emulation-use Parameters
66909 + // ----------------------------
66910 + ULONG rtsaccu[30];
66911 + ULONG ctsaccu[30];
66912 + ULONG cfendaccu[30];
66913 + ULONG bacontent[16];
66914 + ULONG rxint[RX_RING_SIZE+1];
66916 + BOOLEAN bLinkAdapt;
66917 + BOOLEAN bForcePrintTX;
66918 + BOOLEAN bForcePrintRX;
66919 + BOOLEAN bDisablescanning; //defined in RT2870 USB
66920 + BOOLEAN bStaFifoTest;
66921 + BOOLEAN bProtectionTest;
66922 + BOOLEAN bHCCATest;
66923 + BOOLEAN bGenOneHCCA;
66924 + BOOLEAN bBroadComHT;
66925 + //+++Following add from RT2870 USB.
66926 + ULONG BulkOutReq;
66927 + ULONG BulkOutComplete;
66928 + ULONG BulkOutCompleteOther;
66929 + ULONG BulkOutCompleteCancel; // seems not use now?
66931 + ULONG BulkInComplete;
66932 + ULONG BulkInCompleteFail;
66935 + struct wificonf WIFItestbed;
66940 + BOOLEAN ContinBulkOut; //ATE bulk out control
66941 + BOOLEAN ContinBulkIn; //ATE bulk in control
66942 + atomic_t BulkOutRemained;
66943 + atomic_t BulkInRemained;
66944 +#endif // RT2870 //
66945 +#endif // RALINK_ATE //
66947 +#ifdef DOT11_N_SUPPORT
66948 + struct reordering_mpdu_pool mpdu_blk_pool;
66949 +#endif // DOT11_N_SUPPORT //
66951 + ULONG OneSecondnonBEpackets; // record non BE packets per second
66953 +#if WIRELESS_EXT >= 12
66954 + struct iw_statistics iw_stats;
66957 + struct net_device_stats stats;
66959 +#ifdef BLOCK_NET_IF
66960 + BLOCK_QUEUE_ENTRY blockQueueTab[NUM_OF_TX_RING];
66961 +#endif // BLOCK_NET_IF //
66965 +#ifdef MULTIPLE_CARD_SUPPORT
66967 + UCHAR MC_FileName[256];
66968 +#endif // MULTIPLE_CARD_SUPPORT //
66970 + ULONG TbttTickCount;
66971 +#ifdef PCI_MSI_SUPPORT
66973 +#endif // PCI_MSI_SUPPORT //
66978 +#define TIME_BASE (1000000/OS_HZ)
66979 +#define TIME_ONE_SECOND (1000000/TIME_BASE)
66980 + UCHAR flg_be_adjust;
66981 + ULONG be_adjust_last_time;
66983 +#ifdef NINTENDO_AP
66984 + NINDO_CTRL_BLOCK nindo_ctrl_block;
66985 +#endif // NINTENDO_AP //
66988 +#ifdef IKANOS_VX_1X0
66989 + struct IKANOS_TX_INFO IkanosTxInfo;
66990 + struct IKANOS_TX_INFO IkanosRxInfo[MAX_MBSSID_NUM + MAX_WDS_ENTRY + MAX_APCLI_NUM + MAX_MESH_NUM];
66991 +#endif // IKANOS_VX_1X0 //
66994 +#ifdef DBG_DIAGNOSE
66995 + RtmpDiagStruct DiagStruct;
66996 +#endif // DBG_DIAGNOSE //
66999 + UINT8 PM_FlgSuspend;
67003 + BOOLEAN bUseEfuse;
67004 + BOOLEAN bEEPROMFile;
67005 +#endif // RT30xx //
67007 +} RTMP_ADAPTER, *PRTMP_ADAPTER;
67010 +// Cisco IAPP format
67012 +typedef struct _CISCO_IAPP_CONTENT_
67014 + USHORT Length; //IAPP Length
67015 + UCHAR MessageType; //IAPP type
67016 + UCHAR FunctionCode; //IAPP function type
67017 + UCHAR DestinaionMAC[MAC_ADDR_LEN];
67018 + UCHAR SourceMAC[MAC_ADDR_LEN];
67019 + USHORT Tag; //Tag(element IE) - Adjacent AP report
67020 + USHORT TagLength; //Length of element not including 4 byte header
67021 + UCHAR OUI[4]; //0x00, 0x40, 0x96, 0x00
67022 + UCHAR PreviousAP[MAC_ADDR_LEN]; //MAC Address of access point
67025 + UCHAR Ssid[MAX_LEN_OF_SSID];
67026 + USHORT Seconds; //Seconds that the client has been disassociated.
67027 +} CISCO_IAPP_CONTENT, *PCISCO_IAPP_CONTENT;
67029 +#define DELAYINTMASK 0x0003fffb
67030 +#define INTMASK 0x0003fffb
67031 +#define IndMask 0x0003fffc
67032 +#define RxINT 0x00000005 // Delayed Rx or indivi rx
67033 +#define TxDataInt 0x000000fa // Delayed Tx or indivi tx
67034 +#define TxMgmtInt 0x00000102 // Delayed Tx or indivi tx
67035 +#define TxCoherent 0x00020000 // tx coherent
67036 +#define RxCoherent 0x00010000 // rx coherent
67037 +#define McuCommand 0x00000200 // mcu
67038 +#define PreTBTTInt 0x00001000 // Pre-TBTT interrupt
67039 +#define TBTTInt 0x00000800 // TBTT interrupt
67040 +#define GPTimeOutInt 0x00008000 // GPtimeout interrupt
67041 +#define AutoWakeupInt 0x00004000 // AutoWakeupInt interrupt
67042 +#define FifoStaFullInt 0x00002000 // fifo statistics full interrupt
67045 +typedef struct _RX_BLK_
67047 +// RXD_STRUC RxD; // sample
67048 + RT28XX_RXD_STRUC RxD;
67049 + PRXWI_STRUC pRxWI;
67050 + PHEADER_802_11 pHeader;
67051 + PNDIS_PACKET pRxPacket;
67055 + UCHAR UserPriority; // for calculate TKIP MIC using
67059 +#define RX_BLK_SET_FLAG(_pRxBlk, _flag) (_pRxBlk->Flags |= _flag)
67060 +#define RX_BLK_TEST_FLAG(_pRxBlk, _flag) (_pRxBlk->Flags & _flag)
67061 +#define RX_BLK_CLEAR_FLAG(_pRxBlk, _flag) (_pRxBlk->Flags &= ~(_flag))
67064 +#define fRX_WDS 0x0001
67065 +#define fRX_AMSDU 0x0002
67066 +#define fRX_ARALINK 0x0004
67067 +#define fRX_HTC 0x0008
67068 +#define fRX_PAD 0x0010
67069 +#define fRX_AMPDU 0x0020
67070 +#define fRX_QOS 0x0040
67071 +#define fRX_INFRA 0x0080
67072 +#define fRX_EAP 0x0100
67073 +#define fRX_MESH 0x0200
67074 +#define fRX_APCLI 0x0400
67075 +#define fRX_DLS 0x0800
67076 +#define fRX_WPI 0x1000
67078 +#define LENGTH_AMSDU_SUBFRAMEHEAD 14
67079 +#define LENGTH_ARALINK_SUBFRAMEHEAD 14
67080 +#define LENGTH_ARALINK_HEADER_FIELD 2
67082 +#define TX_UNKOWN_FRAME 0x00
67083 +#define TX_MCAST_FRAME 0x01
67084 +#define TX_LEGACY_FRAME 0x02
67085 +#define TX_AMPDU_FRAME 0x04
67086 +#define TX_AMSDU_FRAME 0x08
67087 +#define TX_RALINK_FRAME 0x10
67088 +#define TX_FRAG_FRAME 0x20
67091 +// Currently the sizeof(TX_BLK) is 148 bytes.
67092 +typedef struct _TX_BLK_
67095 + UCHAR TxFrameType; // Indicate the Transmission type of the all frames in one batch
67096 + UCHAR TotalFrameNum; // Total frame number want to send-out in one batch
67097 + USHORT TotalFragNum; // Total frame fragments required in one batch
67098 + USHORT TotalFrameLen; // Total length of all frames want to send-out in one batch
67100 + QUEUE_HEADER TxPacketList;
67101 + MAC_TABLE_ENTRY *pMacEntry; // NULL: packet with 802.11 RA field is multicast/broadcast address
67102 + HTTRANSMIT_SETTING *pTransmit;
67104 + // Following structure used for the characteristics of a specific packet.
67105 + PNDIS_PACKET pPacket;
67106 + PUCHAR pSrcBufHeader; // Reference to the head of sk_buff->data
67107 + PUCHAR pSrcBufData; // Reference to the sk_buff->data, will changed depends on hanlding progresss
67108 + UINT SrcBufLen; // Length of packet payload which not including Layer 2 header
67109 + PUCHAR pExtraLlcSnapEncap; // NULL means no extra LLC/SNAP is required
67110 + UCHAR HeaderBuf[80]; // TempBuffer for TX_INFO + TX_WI + 802.11 Header + padding + AMSDU SubHeader + LLC/SNAP
67111 + UCHAR MpduHeaderLen; // 802.11 header length NOT including the padding
67112 + UCHAR HdrPadLen; // recording Header Padding Length;
67113 + UCHAR apidx; // The interface associated to this packet
67114 + UCHAR Wcid; // The MAC entry associated to this packet
67115 + UCHAR UserPriority; // priority class of packet
67116 + UCHAR FrameGap; // what kind of IFS this packet use
67117 + UCHAR MpduReqNum; // number of fragments of this frame
67118 + UCHAR TxRate; // TODO: Obsoleted? Should change to MCS?
67119 + UCHAR CipherAlg; // cipher alogrithm
67120 + PCIPHER_KEY pKey;
67124 + USHORT Flags; //See following definitions for detail.
67126 + //YOU SHOULD NOT TOUCH IT! Following parameters are used for hardware-depended layer.
67127 + ULONG Priv; // Hardware specific value saved in here.
67128 +} TX_BLK, *PTX_BLK;
67131 +#define fTX_bRtsRequired 0x0001 // Indicate if need send RTS frame for protection. Not used in RT2860/RT2870.
67132 +#define fTX_bAckRequired 0x0002 // the packet need ack response
67133 +#define fTX_bPiggyBack 0x0004 // Legacy device use Piggback or not
67134 +#define fTX_bHTRate 0x0008 // allow to use HT rate
67135 +//#define fTX_bForceLowRate 0x0010 // force to use Low Rate
67136 +#define fTX_bForceNonQoS 0x0010 // force to transmit frame without WMM-QoS in HT mode
67137 +#define fTX_bAllowFrag 0x0020 // allow to fragment the packet, A-MPDU, A-MSDU, A-Ralink is not allowed to fragment
67138 +#define fTX_bMoreData 0x0040 // there are more data packets in PowerSave Queue
67139 +#define fTX_bWMM 0x0080 // QOS Data
67141 +#define fTX_bClearEAPFrame 0x0100
67144 +#ifdef CONFIG_STA_SUPPORT
67145 +#endif // CONFIG_STA_SUPPORT //
67149 +#define TX_BLK_ASSIGN_FLAG(_pTxBlk, _flag, value) \
67152 + (_pTxBlk->Flags |= _flag) \
67154 + (_pTxBlk->Flags &= ~(_flag)) \
67157 +#define TX_BLK_SET_FLAG(_pTxBlk, _flag) (_pTxBlk->Flags |= _flag)
67158 +#define TX_BLK_TEST_FLAG(_pTxBlk, _flag) (((_pTxBlk->Flags & _flag) == _flag) ? 1 : 0)
67159 +#define TX_BLK_CLEAR_FLAG(_pTxBlk, _flag) (_pTxBlk->Flags &= ~(_flag))
67165 +//------------------------------------------------------------------------------------------
67169 +#ifdef RT_BIG_ENDIAN
67170 +static inline VOID WriteBackToDescriptor(
67173 + IN BOOLEAN DoEncrypt,
67174 + IN ULONG DescriptorType)
67178 + p1 = ((UINT32 *)Dest);
67179 + p2 = ((UINT32 *)Src);
67182 + *(p1+2) = *(p2+2);
67183 + *(p1+3) = *(p2+3);
67184 + *(p1+1) = *(p2+1); // Word 1; this must be written back last
67188 + ========================================================================
67190 + Routine Description:
67191 + Endian conversion of Tx/Rx descriptor .
67194 + pAd Pointer to our adapter
67195 + pData Pointer to Tx/Rx descriptor
67196 + DescriptorType Direction of the frame
67202 + Call this function when read or update descriptor
67203 + ========================================================================
67205 +static inline VOID RTMPWIEndianChange(
67207 + IN ULONG DescriptorType)
67212 + size = ((DescriptorType == TYPE_TXWI) ? TXWI_SIZE : RXWI_SIZE);
67214 + if(DescriptorType == TYPE_TXWI)
67216 + *((UINT32 *)(pData)) = SWAP32(*((UINT32 *)(pData))); // Byte 0~3
67217 + *((UINT32 *)(pData + 4)) = SWAP32(*((UINT32 *)(pData+4))); // Byte 4~7
67221 + for(i=0; i < size/4 ; i++)
67222 + *(((UINT32 *)pData) +i) = SWAP32(*(((UINT32 *)pData)+i));
67227 + ========================================================================
67229 + Routine Description:
67230 + Endian conversion of Tx/Rx descriptor .
67233 + pAd Pointer to our adapter
67234 + pData Pointer to Tx/Rx descriptor
67235 + DescriptorType Direction of the frame
67241 + Call this function when read or update descriptor
67242 + ========================================================================
67246 +static inline VOID RTMPDescriptorEndianChange(
67248 + IN ULONG DescriptorType)
67250 + *((UINT32 *)(pData)) = SWAP32(*((UINT32 *)(pData)));
67252 +#endif // RT2870 //
67254 + ========================================================================
67256 + Routine Description:
67257 + Endian conversion of all kinds of 802.11 frames .
67260 + pAd Pointer to our adapter
67261 + pData Pointer to the 802.11 frame structure
67262 + Dir Direction of the frame
67263 + FromRxDoneInt Caller is from RxDone interrupt
67269 + Call this function when read or update buffer data
67270 + ========================================================================
67272 +static inline VOID RTMPFrameEndianChange(
67273 + IN PRTMP_ADAPTER pAd,
67276 + IN BOOLEAN FromRxDoneInt)
67278 + PHEADER_802_11 pFrame;
67281 + // swab 16 bit fields - Frame Control field
67282 + if(Dir == DIR_READ)
67284 + *(USHORT *)pData = SWAP16(*(USHORT *)pData);
67287 + pFrame = (PHEADER_802_11) pData;
67288 + pMacHdr = (PUCHAR) pFrame;
67290 + // swab 16 bit fields - Duration/ID field
67291 + *(USHORT *)(pMacHdr + 2) = SWAP16(*(USHORT *)(pMacHdr + 2));
67293 + // swab 16 bit fields - Sequence Control field
67294 + *(USHORT *)(pMacHdr + 22) = SWAP16(*(USHORT *)(pMacHdr + 22));
67296 + if(pFrame->FC.Type == BTYPE_MGMT)
67298 + switch(pFrame->FC.SubType)
67300 + case SUBTYPE_ASSOC_REQ:
67301 + case SUBTYPE_REASSOC_REQ:
67302 + // swab 16 bit fields - CapabilityInfo field
67303 + pMacHdr += sizeof(HEADER_802_11);
67304 + *(USHORT *)pMacHdr = SWAP16(*(USHORT *)pMacHdr);
67306 + // swab 16 bit fields - Listen Interval field
67308 + *(USHORT *)pMacHdr = SWAP16(*(USHORT *)pMacHdr);
67311 + case SUBTYPE_ASSOC_RSP:
67312 + case SUBTYPE_REASSOC_RSP:
67313 + // swab 16 bit fields - CapabilityInfo field
67314 + pMacHdr += sizeof(HEADER_802_11);
67315 + *(USHORT *)pMacHdr = SWAP16(*(USHORT *)pMacHdr);
67317 + // swab 16 bit fields - Status Code field
67319 + *(USHORT *)pMacHdr = SWAP16(*(USHORT *)pMacHdr);
67321 + // swab 16 bit fields - AID field
67323 + *(USHORT *)pMacHdr = SWAP16(*(USHORT *)pMacHdr);
67326 + case SUBTYPE_AUTH:
67327 + // If from APHandleRxDoneInterrupt routine, it is still a encrypt format.
67328 + // The convertion is delayed to RTMPHandleDecryptionDoneInterrupt.
67329 + if(!FromRxDoneInt && pFrame->FC.Wep == 1)
67333 + // swab 16 bit fields - Auth Alg No. field
67334 + pMacHdr += sizeof(HEADER_802_11);
67335 + *(USHORT *)pMacHdr = SWAP16(*(USHORT *)pMacHdr);
67337 + // swab 16 bit fields - Auth Seq No. field
67339 + *(USHORT *)pMacHdr = SWAP16(*(USHORT *)pMacHdr);
67341 + // swab 16 bit fields - Status Code field
67343 + *(USHORT *)pMacHdr = SWAP16(*(USHORT *)pMacHdr);
67347 + case SUBTYPE_BEACON:
67348 + case SUBTYPE_PROBE_RSP:
67349 + // swab 16 bit fields - BeaconInterval field
67350 + pMacHdr += (sizeof(HEADER_802_11) + TIMESTAMP_LEN);
67351 + *(USHORT *)pMacHdr = SWAP16(*(USHORT *)pMacHdr);
67353 + // swab 16 bit fields - CapabilityInfo field
67354 + pMacHdr += sizeof(USHORT);
67355 + *(USHORT *)pMacHdr = SWAP16(*(USHORT *)pMacHdr);
67358 + case SUBTYPE_DEAUTH:
67359 + case SUBTYPE_DISASSOC:
67360 + // swab 16 bit fields - Reason code field
67361 + pMacHdr += sizeof(HEADER_802_11);
67362 + *(USHORT *)pMacHdr = SWAP16(*(USHORT *)pMacHdr);
67366 + else if( pFrame->FC.Type == BTYPE_DATA )
67369 + else if(pFrame->FC.Type == BTYPE_CNTL)
67371 + switch(pFrame->FC.SubType)
67373 + case SUBTYPE_BLOCK_ACK_REQ:
67375 + PFRAME_BA_REQ pBAReq = (PFRAME_BA_REQ)pFrame;
67376 + *(USHORT *)(&pBAReq->BARControl) = SWAP16(*(USHORT *)(&pBAReq->BARControl));
67377 + pBAReq->BAStartingSeq.word = SWAP16(pBAReq->BAStartingSeq.word);
67380 + case SUBTYPE_BLOCK_ACK:
67381 + // For Block Ack packet, the HT_CONTROL field is in the same offset with Addr3
67382 + *(UINT32 *)(&pFrame->Addr3[0]) = SWAP32(*(UINT32 *)(&pFrame->Addr3[0]));
67385 + case SUBTYPE_ACK:
67386 + //For ACK packet, the HT_CONTROL field is in the same offset with Addr2
67387 + *(UINT32 *)(&pFrame->Addr2[0])= SWAP32(*(UINT32 *)(&pFrame->Addr2[0]));
67393 + DBGPRINT(RT_DEBUG_ERROR,("Invalid Frame Type!!!\n"));
67396 + // swab 16 bit fields - Frame Control
67397 + if(Dir == DIR_WRITE)
67399 + *(USHORT *)pData = SWAP16(*(USHORT *)pData);
67402 +#endif // RT_BIG_ENDIAN //
67405 +static inline VOID ConvertMulticastIP2MAC(
67406 + IN PUCHAR pIpAddr,
67407 + IN PUCHAR *ppMacAddr,
67408 + IN UINT16 ProtoType)
67410 + if (pIpAddr == NULL)
67413 + if (ppMacAddr == NULL || *ppMacAddr == NULL)
67416 + switch (ProtoType)
67419 +// memset(*ppMacAddr, 0, ETH_LENGTH_OF_ADDRESS);
67420 + *(*ppMacAddr) = 0x33;
67421 + *(*ppMacAddr + 1) = 0x33;
67422 + *(*ppMacAddr + 2) = pIpAddr[12];
67423 + *(*ppMacAddr + 3) = pIpAddr[13];
67424 + *(*ppMacAddr + 4) = pIpAddr[14];
67425 + *(*ppMacAddr + 5) = pIpAddr[15];
67430 +// memset(*ppMacAddr, 0, ETH_LENGTH_OF_ADDRESS);
67431 + *(*ppMacAddr) = 0x01;
67432 + *(*ppMacAddr + 1) = 0x00;
67433 + *(*ppMacAddr + 2) = 0x5e;
67434 + *(*ppMacAddr + 3) = pIpAddr[1] & 0x7f;
67435 + *(*ppMacAddr + 4) = pIpAddr[2];
67436 + *(*ppMacAddr + 5) = pIpAddr[3];
67443 +BOOLEAN RTMPCheckForHang(
67444 + IN NDIS_HANDLE MiniportAdapterContext
67448 + IN NDIS_HANDLE MiniportAdapterContext
67452 +// Private routines in rtmp_init.c
67454 +NDIS_STATUS RTMPAllocAdapterBlock(
67456 + OUT PRTMP_ADAPTER *ppAdapter
67459 +NDIS_STATUS RTMPAllocTxRxRingMemory(
67460 + IN PRTMP_ADAPTER pAd
67463 +NDIS_STATUS RTMPFindAdapter(
67464 + IN PRTMP_ADAPTER pAd,
67465 + IN NDIS_HANDLE WrapperConfigurationContext
67468 +NDIS_STATUS RTMPReadParametersHook(
67469 + IN PRTMP_ADAPTER pAd
67472 +VOID RTMPFreeAdapter(
67473 + IN PRTMP_ADAPTER pAd
67476 +NDIS_STATUS NICReadRegParameters(
67477 + IN PRTMP_ADAPTER pAd,
67478 + IN NDIS_HANDLE WrapperConfigurationContext
67482 +VOID NICInitRT30xxRFRegisters(
67483 + IN PRTMP_ADAPTER pAd);
67484 +#endif // RT30xx //
67486 +VOID NICReadEEPROMParameters(
67487 + IN PRTMP_ADAPTER pAd,
67488 + IN PUCHAR mac_addr);
67490 +VOID NICInitAsicFromEEPROM(
67491 + IN PRTMP_ADAPTER pAd);
67493 +VOID NICInitTxRxRingAndBacklogQueue(
67494 + IN PRTMP_ADAPTER pAd);
67496 +NDIS_STATUS NICInitializeAdapter(
67497 + IN PRTMP_ADAPTER pAd,
67498 + IN BOOLEAN bHardReset);
67500 +NDIS_STATUS NICInitializeAsic(
67501 + IN PRTMP_ADAPTER pAd,
67502 + IN BOOLEAN bHardReset);
67504 +VOID NICIssueReset(
67505 + IN PRTMP_ADAPTER pAd);
67507 +VOID RTMPRingCleanUp(
67508 + IN PRTMP_ADAPTER pAd,
67509 + IN UCHAR RingType);
67512 + IN PRTMP_ADAPTER pAd);
67514 +NDIS_STATUS DbgSendPacket(
67515 + IN PRTMP_ADAPTER pAd,
67516 + IN PNDIS_PACKET pPacket);
67519 + IN PRTMP_ADAPTER pAd);
67521 +VOID NICResetFromError(
67522 + IN PRTMP_ADAPTER pAd);
67524 +VOID NICEraseFirmware(
67525 + IN PRTMP_ADAPTER pAd);
67527 +NDIS_STATUS NICLoadFirmware(
67528 + IN PRTMP_ADAPTER pAd);
67530 +NDIS_STATUS NICLoadRateSwitchingParams(
67531 + IN PRTMP_ADAPTER pAd);
67533 +BOOLEAN NICCheckForHang(
67534 + IN PRTMP_ADAPTER pAd);
67536 +VOID NICUpdateFifoStaCounters(
67537 + IN PRTMP_ADAPTER pAd);
67539 +VOID NICUpdateRawCounters(
67540 + IN PRTMP_ADAPTER pAd);
67542 +ULONG RTMPNotAllZero(
67544 + IN ULONG Length);
67546 +VOID RTMPZeroMemory(
67548 + IN ULONG Length);
67550 +ULONG RTMPCompareMemory(
67553 + IN ULONG Length);
67555 +VOID RTMPMoveMemory(
67558 + IN ULONG Length);
67568 +VOID RTMPPatchMacBbpBug(
67569 + IN PRTMP_ADAPTER pAd);
67571 +VOID RTMPPatchCardBus(
67572 + IN PRTMP_ADAPTER pAdapter);
67574 +VOID RTMPPatchRalinkCardBus(
67575 + IN PRTMP_ADAPTER pAdapter,
67578 +ULONG RTMPReadCBConfig(
67582 + IN ULONG Offset);
67584 +VOID RTMPWriteCBConfig(
67591 +VOID RTMPInitTimer(
67592 + IN PRTMP_ADAPTER pAd,
67593 + IN PRALINK_TIMER_STRUCT pTimer,
67594 + IN PVOID pTimerFunc,
67596 + IN BOOLEAN Repeat);
67598 +VOID RTMPSetTimer(
67599 + IN PRALINK_TIMER_STRUCT pTimer,
67603 +VOID RTMPModTimer(
67604 + IN PRALINK_TIMER_STRUCT pTimer,
67607 +VOID RTMPCancelTimer(
67608 + IN PRALINK_TIMER_STRUCT pTimer,
67609 + OUT BOOLEAN *pCancelled);
67612 + IN PRTMP_ADAPTER pAd,
67613 + IN UCHAR Status);
67615 +VOID RTMPSetSignalLED(
67616 + IN PRTMP_ADAPTER pAd,
67617 + IN NDIS_802_11_RSSI Dbm);
67619 +VOID RTMPEnableRxTx(
67620 + IN PRTMP_ADAPTER pAd);
67623 +// prototype in action.c
67625 +VOID ActionStateMachineInit(
67626 + IN PRTMP_ADAPTER pAd,
67627 + IN STATE_MACHINE *S,
67628 + OUT STATE_MACHINE_FUNC Trans[]);
67630 +VOID MlmeADDBAAction(
67631 + IN PRTMP_ADAPTER pAd,
67632 + IN MLME_QUEUE_ELEM *Elem);
67634 +VOID MlmeDELBAAction(
67635 + IN PRTMP_ADAPTER pAd,
67636 + IN MLME_QUEUE_ELEM *Elem);
67638 +VOID MlmeDLSAction(
67639 + IN PRTMP_ADAPTER pAd,
67640 + IN MLME_QUEUE_ELEM *Elem);
67642 +VOID MlmeInvalidAction(
67643 + IN PRTMP_ADAPTER pAd,
67644 + IN MLME_QUEUE_ELEM *Elem);
67646 +VOID MlmeQOSAction(
67647 + IN PRTMP_ADAPTER pAd,
67648 + IN MLME_QUEUE_ELEM *Elem);
67650 +#ifdef DOT11_N_SUPPORT
67651 +VOID PeerAddBAReqAction(
67652 + IN PRTMP_ADAPTER pAd,
67653 + IN MLME_QUEUE_ELEM *Elem);
67655 +VOID PeerAddBARspAction(
67656 + IN PRTMP_ADAPTER pAd,
67657 + IN MLME_QUEUE_ELEM *Elem);
67659 +VOID PeerDelBAAction(
67660 + IN PRTMP_ADAPTER pAd,
67661 + IN MLME_QUEUE_ELEM *Elem);
67663 +VOID PeerBAAction(
67664 + IN PRTMP_ADAPTER pAd,
67665 + IN MLME_QUEUE_ELEM *Elem);
67666 +#endif // DOT11_N_SUPPORT //
67668 +VOID SendPSMPAction(
67669 + IN PRTMP_ADAPTER pAd,
67674 +#ifdef DOT11N_DRAFT3
67675 +VOID SendBSS2040CoexistMgmtAction(
67676 + IN PRTMP_ADAPTER pAd,
67679 + IN UCHAR InfoReq);
67681 +VOID SendNotifyBWActionFrame(
67682 + IN PRTMP_ADAPTER pAd,
67686 +BOOLEAN ChannelSwitchSanityCheck(
67687 + IN PRTMP_ADAPTER pAd,
67689 + IN UCHAR NewChannel,
67690 + IN UCHAR Secondary);
67692 +VOID ChannelSwitchAction(
67693 + IN PRTMP_ADAPTER pAd,
67695 + IN UCHAR Channel,
67696 + IN UCHAR Secondary);
67698 +ULONG BuildIntolerantChannelRep(
67699 + IN PRTMP_ADAPTER pAd,
67700 + IN PUCHAR pDest);
67702 +VOID Update2040CoexistFrameAndNotify(
67703 + IN PRTMP_ADAPTER pAd,
67705 + IN BOOLEAN bAddIntolerantCha);
67707 +VOID Send2040CoexistAction(
67708 + IN PRTMP_ADAPTER pAd,
67710 + IN BOOLEAN bAddIntolerantCha);
67711 +#endif // DOT11N_DRAFT3 //
67713 +VOID PeerRMAction(
67714 + IN PRTMP_ADAPTER pAd,
67715 + IN MLME_QUEUE_ELEM *Elem);
67717 +VOID PeerPublicAction(
67718 + IN PRTMP_ADAPTER pAd,
67719 + IN MLME_QUEUE_ELEM *Elem);
67721 +#ifdef CONFIG_STA_SUPPORT
67722 +VOID StaPublicAction(
67723 + IN PRTMP_ADAPTER pAd,
67724 + IN UCHAR Bss2040Coexist);
67725 +#endif // CONFIG_STA_SUPPORT //
67728 +VOID PeerBSSTranAction(
67729 + IN PRTMP_ADAPTER pAd,
67730 + IN MLME_QUEUE_ELEM *Elem);
67732 +#ifdef DOT11_N_SUPPORT
67733 +VOID PeerHTAction(
67734 + IN PRTMP_ADAPTER pAd,
67735 + IN MLME_QUEUE_ELEM *Elem);
67736 +#endif // DOT11_N_SUPPORT //
67738 +VOID PeerQOSAction(
67739 + IN PRTMP_ADAPTER pAd,
67740 + IN MLME_QUEUE_ELEM *Elem);
67742 +#ifdef QOS_DLS_SUPPORT
67743 +VOID PeerDLSAction(
67744 + IN PRTMP_ADAPTER pAd,
67745 + IN MLME_QUEUE_ELEM *Elem);
67746 +#endif // QOS_DLS_SUPPORT //
67748 +#ifdef CONFIG_STA_SUPPORT
67749 +#ifdef QOS_DLS_SUPPORT
67751 + IN PRTMP_ADAPTER pAd,
67752 + IN OUT MLME_DLS_REQ_STRUCT *pDlsReq,
67753 + IN PRT_802_11_DLS pDls,
67754 + IN USHORT reason);
67755 +#endif // QOS_DLS_SUPPORT //
67756 +#endif // CONFIG_STA_SUPPORT //
67758 +#ifdef DOT11_N_SUPPORT
67759 +VOID RECBATimerTimeout(
67760 + IN PVOID SystemSpecific1,
67761 + IN PVOID FunctionContext,
67762 + IN PVOID SystemSpecific2,
67763 + IN PVOID SystemSpecific3);
67765 +VOID ORIBATimerTimeout(
67766 + IN PRTMP_ADAPTER pAd);
67768 +VOID SendRefreshBAR(
67769 + IN PRTMP_ADAPTER pAd,
67770 + IN MAC_TABLE_ENTRY *pEntry);
67771 +#endif // DOT11_N_SUPPORT //
67773 +VOID ActHeaderInit(
67774 + IN PRTMP_ADAPTER pAd,
67775 + IN OUT PHEADER_802_11 pHdr80211,
67778 + IN PUCHAR Addr3);
67780 +VOID BarHeaderInit(
67781 + IN PRTMP_ADAPTER pAd,
67782 + IN OUT PFRAME_BAR pCntlBar,
67786 +VOID InsertActField(
67787 + IN PRTMP_ADAPTER pAd,
67788 + OUT PUCHAR pFrameBuf,
67789 + OUT PULONG pFrameLen,
67790 + IN UINT8 Category,
67791 + IN UINT8 ActCode);
67793 +BOOLEAN QosBADataParse(
67794 + IN PRTMP_ADAPTER pAd,
67795 + IN BOOLEAN bAMSDU,
67796 + IN PUCHAR p8023Header,
67799 + IN USHORT Sequence,
67800 + IN UCHAR DataOffset,
67801 + IN USHORT Datasize,
67802 + IN UINT CurRxIndex);
67804 +#ifdef DOT11_N_SUPPORT
67805 +BOOLEAN CntlEnqueueForRecv(
67806 + IN PRTMP_ADAPTER pAd,
67809 + IN PFRAME_BA_REQ pMsg);
67811 +VOID BaAutoManSwitch(
67812 + IN PRTMP_ADAPTER pAd);
67813 +#endif // DOT11_N_SUPPORT //
67816 + IN PRTMP_ADAPTER pAd,
67817 + IN UCHAR BatRecIdx);
67820 +// Private routines in rtmp_data.c
67822 +BOOLEAN RTMPHandleRxDoneInterrupt(
67823 + IN PRTMP_ADAPTER pAd);
67825 +VOID RTMPHandleTxDoneInterrupt(
67826 + IN PRTMP_ADAPTER pAd);
67828 +BOOLEAN RTMPHandleTxRingDmaDoneInterrupt(
67829 + IN PRTMP_ADAPTER pAd,
67830 + IN INT_SOURCE_CSR_STRUC TxRingBitmap);
67832 +VOID RTMPHandleMgmtRingDmaDoneInterrupt(
67833 + IN PRTMP_ADAPTER pAd);
67835 +VOID RTMPHandleTBTTInterrupt(
67836 + IN PRTMP_ADAPTER pAd);
67838 +VOID RTMPHandlePreTBTTInterrupt(
67839 + IN PRTMP_ADAPTER pAd);
67841 +void RTMPHandleTwakeupInterrupt(
67842 + IN PRTMP_ADAPTER pAd);
67844 +VOID RTMPHandleRxCoherentInterrupt(
67845 + IN PRTMP_ADAPTER pAd);
67847 +BOOLEAN TxFrameIsAggregatible(
67848 + IN PRTMP_ADAPTER pAd,
67849 + IN PUCHAR pPrevAddr1,
67850 + IN PUCHAR p8023hdr);
67852 +BOOLEAN PeerIsAggreOn(
67853 + IN PRTMP_ADAPTER pAd,
67855 + IN PMAC_TABLE_ENTRY pMacEntry);
67857 +NDIS_STATUS Sniff2BytesFromNdisBuffer(
67858 + IN PNDIS_BUFFER pFirstBuffer,
67859 + IN UCHAR DesiredOffset,
67860 + OUT PUCHAR pByte0,
67861 + OUT PUCHAR pByte1);
67863 +NDIS_STATUS STASendPacket(
67864 + IN PRTMP_ADAPTER pAd,
67865 + IN PNDIS_PACKET pPacket);
67867 +VOID STASendPackets(
67868 + IN NDIS_HANDLE MiniportAdapterContext,
67869 + IN PPNDIS_PACKET ppPacketArray,
67870 + IN UINT NumberOfPackets);
67872 +VOID RTMPDeQueuePacket(
67873 + IN PRTMP_ADAPTER pAd,
67874 + IN BOOLEAN bIntContext,
67876 + IN UCHAR Max_Tx_Packets);
67878 +NDIS_STATUS RTMPHardTransmit(
67879 + IN PRTMP_ADAPTER pAd,
67880 + IN PNDIS_PACKET pPacket,
67882 + OUT PULONG pFreeTXDLeft);
67884 +NDIS_STATUS STAHardTransmit(
67885 + IN PRTMP_ADAPTER pAd,
67886 + IN TX_BLK *pTxBlk,
67887 + IN UCHAR QueIdx);
67889 +VOID STARxEAPOLFrameIndicate(
67890 + IN PRTMP_ADAPTER pAd,
67891 + IN MAC_TABLE_ENTRY *pEntry,
67892 + IN RX_BLK *pRxBlk,
67893 + IN UCHAR FromWhichBSSID);
67895 +NDIS_STATUS RTMPFreeTXDRequest(
67896 + IN PRTMP_ADAPTER pAd,
67897 + IN UCHAR RingType,
67898 + IN UCHAR NumberRequired,
67899 + IN PUCHAR FreeNumberIs);
67901 +NDIS_STATUS MlmeHardTransmit(
67902 + IN PRTMP_ADAPTER pAd,
67904 + IN PNDIS_PACKET pPacket);
67906 +NDIS_STATUS MlmeHardTransmitMgmtRing(
67907 + IN PRTMP_ADAPTER pAd,
67909 + IN PNDIS_PACKET pPacket);
67911 +NDIS_STATUS MlmeHardTransmitTxRing(
67912 + IN PRTMP_ADAPTER pAd,
67914 + IN PNDIS_PACKET pPacket);
67916 +USHORT RTMPCalcDuration(
67917 + IN PRTMP_ADAPTER pAd,
67921 +VOID RTMPWriteTxWI(
67922 + IN PRTMP_ADAPTER pAd,
67923 + IN PTXWI_STRUC pTxWI,
67925 + IN BOOLEAN CFACK,
67926 + IN BOOLEAN InsTimestamp,
67927 + IN BOOLEAN AMPDU,
67929 + IN BOOLEAN NSeq, // HW new a sequence.
67936 + IN UCHAR Txopmode,
67937 + IN BOOLEAN CfAck,
67938 + IN HTTRANSMIT_SETTING *pTransmit);
67941 +VOID RTMPWriteTxWI_Data(
67942 + IN PRTMP_ADAPTER pAd,
67943 + IN OUT PTXWI_STRUC pTxWI,
67944 + IN TX_BLK *pTxBlk);
67947 +VOID RTMPWriteTxWI_Cache(
67948 + IN PRTMP_ADAPTER pAd,
67949 + IN OUT PTXWI_STRUC pTxWI,
67950 + IN TX_BLK *pTxBlk);
67952 +VOID RTMPWriteTxDescriptor(
67953 + IN PRTMP_ADAPTER pAd,
67954 + IN PTXD_STRUC pTxD,
67958 +VOID RTMPSuspendMsduTransmission(
67959 + IN PRTMP_ADAPTER pAd);
67961 +VOID RTMPResumeMsduTransmission(
67962 + IN PRTMP_ADAPTER pAd);
67964 +NDIS_STATUS MiniportMMRequest(
67965 + IN PRTMP_ADAPTER pAd,
67970 +NDIS_STATUS MiniportDataMMRequest(
67971 + IN PRTMP_ADAPTER pAd,
67976 +VOID RTMPSendNullFrame(
67977 + IN PRTMP_ADAPTER pAd,
67979 + IN BOOLEAN bQosNull);
67981 +VOID RTMPSendDisassociationFrame(
67982 + IN PRTMP_ADAPTER pAd);
67984 +VOID RTMPSendRTSFrame(
67985 + IN PRTMP_ADAPTER pAd,
67987 + IN unsigned int NextMpduSize,
67989 + IN UCHAR RTSRate,
67990 + IN USHORT AckDuration,
67992 + IN UCHAR FrameGap);
67995 +NDIS_STATUS RTMPApplyPacketFilter(
67996 + IN PRTMP_ADAPTER pAd,
67997 + IN PRT28XX_RXD_STRUC pRxD,
67998 + IN PHEADER_802_11 pHeader);
68000 +PQUEUE_HEADER RTMPCheckTxSwQueue(
68001 + IN PRTMP_ADAPTER pAd,
68002 + OUT UCHAR *QueIdx);
68004 +#ifdef CONFIG_STA_SUPPORT
68005 +VOID RTMPReportMicError(
68006 + IN PRTMP_ADAPTER pAd,
68007 + IN PCIPHER_KEY pWpaKey);
68009 +VOID WpaMicFailureReportFrame(
68010 + IN PRTMP_ADAPTER pAd,
68011 + IN MLME_QUEUE_ELEM *Elem);
68013 +VOID WpaDisassocApAndBlockAssoc(
68014 + IN PVOID SystemSpecific1,
68015 + IN PVOID FunctionContext,
68016 + IN PVOID SystemSpecific2,
68017 + IN PVOID SystemSpecific3);
68018 +#endif // CONFIG_STA_SUPPORT //
68020 +NDIS_STATUS RTMPCloneNdisPacket(
68021 + IN PRTMP_ADAPTER pAd,
68022 + IN BOOLEAN pInsAMSDUHdr,
68023 + IN PNDIS_PACKET pInPacket,
68024 + OUT PNDIS_PACKET *ppOutPacket);
68026 +NDIS_STATUS RTMPAllocateNdisPacket(
68027 + IN PRTMP_ADAPTER pAd,
68028 + IN PNDIS_PACKET *pPacket,
68029 + IN PUCHAR pHeader,
68030 + IN UINT HeaderLen,
68032 + IN UINT DataLen);
68034 +VOID RTMPFreeNdisPacket(
68035 + IN PRTMP_ADAPTER pAd,
68036 + IN PNDIS_PACKET pPacket);
68038 +BOOLEAN RTMPFreeTXDUponTxDmaDone(
68039 + IN PRTMP_ADAPTER pAd,
68040 + IN UCHAR QueIdx);
68042 +BOOLEAN RTMPCheckDHCPFrame(
68043 + IN PRTMP_ADAPTER pAd,
68044 + IN PNDIS_PACKET pPacket);
68047 +BOOLEAN RTMPCheckEtherType(
68048 + IN PRTMP_ADAPTER pAd,
68049 + IN PNDIS_PACKET pPacket);
68052 +VOID RTMPCckBbpTuning(
68053 + IN PRTMP_ADAPTER pAd,
68057 +// Private routines in rtmp_wep.c
68059 +VOID RTMPInitWepEngine(
68060 + IN PRTMP_ADAPTER pAd,
68064 + IN PUCHAR pDest);
68066 +VOID RTMPEncryptData(
68067 + IN PRTMP_ADAPTER pAd,
68072 +BOOLEAN RTMPDecryptData(
68073 + IN PRTMP_ADAPTER pAdapter,
68078 +BOOLEAN RTMPSoftDecryptWEP(
68079 + IN PRTMP_ADAPTER pAd,
68081 + IN ULONG DataByteCnt,
68082 + IN PCIPHER_KEY pGroupKey);
68085 + IN PRTMP_ADAPTER pAd,
68086 + IN PUCHAR pDest);
68088 +VOID ARCFOUR_INIT(
68089 + IN PARCFOURCONTEXT Ctx,
68093 +UCHAR ARCFOUR_BYTE(
68094 + IN PARCFOURCONTEXT Ctx);
68096 +VOID ARCFOUR_DECRYPT(
68097 + IN PARCFOURCONTEXT Ctx,
68102 +VOID ARCFOUR_ENCRYPT(
68103 + IN PARCFOURCONTEXT Ctx,
68108 +VOID WPAARCFOUR_ENCRYPT(
68109 + IN PARCFOURCONTEXT Ctx,
68114 +UINT RTMP_CALC_FCS32(
68123 +// Asic/RF/BBP related functions
68125 +VOID AsicAdjustTxPower(
68126 + IN PRTMP_ADAPTER pAd);
68128 +VOID AsicUpdateProtect(
68129 + IN PRTMP_ADAPTER pAd,
68130 + IN USHORT OperaionMode,
68131 + IN UCHAR SetMask,
68132 + IN BOOLEAN bDisableBGProtect,
68133 + IN BOOLEAN bNonGFExist);
68135 +VOID AsicSwitchChannel(
68136 + IN PRTMP_ADAPTER pAd,
68137 + IN UCHAR Channel,
68138 + IN BOOLEAN bScan);
68140 +VOID AsicLockChannel(
68141 + IN PRTMP_ADAPTER pAd,
68142 + IN UCHAR Channel) ;
68144 +VOID AsicAntennaSelect(
68145 + IN PRTMP_ADAPTER pAd,
68146 + IN UCHAR Channel);
68148 +VOID AsicAntennaSetting(
68149 + IN PRTMP_ADAPTER pAd,
68150 + IN ABGBAND_STATE BandState);
68152 +VOID AsicRfTuningExec(
68153 + IN PVOID SystemSpecific1,
68154 + IN PVOID FunctionContext,
68155 + IN PVOID SystemSpecific2,
68156 + IN PVOID SystemSpecific3);
68158 +#ifdef CONFIG_STA_SUPPORT
68159 +VOID AsicSleepThenAutoWakeup(
68160 + IN PRTMP_ADAPTER pAd,
68161 + IN USHORT TbttNumToNextWakeUp);
68163 +VOID AsicForceSleep(
68164 + IN PRTMP_ADAPTER pAd);
68166 +VOID AsicForceWakeup(
68167 + IN PRTMP_ADAPTER pAd,
68168 + IN BOOLEAN bFromTx);
68169 +#endif // CONFIG_STA_SUPPORT //
68171 +VOID AsicSetBssid(
68172 + IN PRTMP_ADAPTER pAd,
68173 + IN PUCHAR pBssid);
68175 +VOID AsicSetMcastWC(
68176 + IN PRTMP_ADAPTER pAd);
68178 +VOID AsicDelWcidTab(
68179 + IN PRTMP_ADAPTER pAd,
68182 +VOID AsicEnableRDG(
68183 + IN PRTMP_ADAPTER pAd);
68185 +VOID AsicDisableRDG(
68186 + IN PRTMP_ADAPTER pAd);
68188 +VOID AsicDisableSync(
68189 + IN PRTMP_ADAPTER pAd);
68191 +VOID AsicEnableBssSync(
68192 + IN PRTMP_ADAPTER pAd);
68194 +VOID AsicEnableIbssSync(
68195 + IN PRTMP_ADAPTER pAd);
68197 +VOID AsicSetEdcaParm(
68198 + IN PRTMP_ADAPTER pAd,
68199 + IN PEDCA_PARM pEdcaParm);
68201 +VOID AsicSetSlotTime(
68202 + IN PRTMP_ADAPTER pAd,
68203 + IN BOOLEAN bUseShortSlotTime);
68205 +VOID AsicAddSharedKeyEntry(
68206 + IN PRTMP_ADAPTER pAd,
68207 + IN UCHAR BssIndex,
68209 + IN UCHAR CipherAlg,
68211 + IN PUCHAR pTxMic,
68212 + IN PUCHAR pRxMic);
68214 +VOID AsicRemoveSharedKeyEntry(
68215 + IN PRTMP_ADAPTER pAd,
68216 + IN UCHAR BssIndex,
68217 + IN UCHAR KeyIdx);
68219 +VOID AsicUpdateWCIDAttribute(
68220 + IN PRTMP_ADAPTER pAd,
68222 + IN UCHAR BssIndex,
68223 + IN UCHAR CipherAlg,
68224 + IN BOOLEAN bUsePairewiseKeyTable);
68226 +VOID AsicUpdateWCIDIVEIV(
68227 + IN PRTMP_ADAPTER pAd,
68232 +VOID AsicUpdateRxWCIDTable(
68233 + IN PRTMP_ADAPTER pAd,
68235 + IN PUCHAR pAddr);
68237 +VOID AsicAddKeyEntry(
68238 + IN PRTMP_ADAPTER pAd,
68240 + IN UCHAR BssIndex,
68242 + IN PCIPHER_KEY pCipherKey,
68243 + IN BOOLEAN bUsePairewiseKeyTable,
68244 + IN BOOLEAN bTxKey);
68246 +VOID AsicAddPairwiseKeyEntry(
68247 + IN PRTMP_ADAPTER pAd,
68250 + IN CIPHER_KEY *pCipherKey);
68252 +VOID AsicRemovePairwiseKeyEntry(
68253 + IN PRTMP_ADAPTER pAd,
68257 +BOOLEAN AsicSendCommandToMcu(
68258 + IN PRTMP_ADAPTER pAd,
68259 + IN UCHAR Command,
68265 +VOID MacAddrRandomBssid(
68266 + IN PRTMP_ADAPTER pAd,
68267 + OUT PUCHAR pAddr);
68269 +VOID MgtMacHeaderInit(
68270 + IN PRTMP_ADAPTER pAd,
68271 + IN OUT PHEADER_802_11 pHdr80211,
68272 + IN UCHAR SubType,
68275 + IN PUCHAR pBssid);
68277 +VOID MlmeRadioOff(
68278 + IN PRTMP_ADAPTER pAd);
68281 + IN PRTMP_ADAPTER pAd);
68284 +VOID BssTableInit(
68285 + IN BSS_TABLE *Tab);
68287 +#ifdef DOT11_N_SUPPORT
68289 + IN PRTMP_ADAPTER pAd,
68290 + IN BA_TABLE *Tab);
68291 +#endif // DOT11_N_SUPPORT //
68293 +ULONG BssTableSearch(
68294 + IN BSS_TABLE *Tab,
68295 + IN PUCHAR pBssid,
68296 + IN UCHAR Channel);
68298 +ULONG BssSsidTableSearch(
68299 + IN BSS_TABLE *Tab,
68300 + IN PUCHAR pBssid,
68302 + IN UCHAR SsidLen,
68303 + IN UCHAR Channel);
68305 +ULONG BssTableSearchWithSSID(
68306 + IN BSS_TABLE *Tab,
68309 + IN UCHAR SsidLen,
68310 + IN UCHAR Channel);
68312 +VOID BssTableDeleteEntry(
68313 + IN OUT PBSS_TABLE pTab,
68314 + IN PUCHAR pBssid,
68315 + IN UCHAR Channel);
68317 +#ifdef DOT11_N_SUPPORT
68318 +VOID BATableDeleteORIEntry(
68319 + IN OUT PRTMP_ADAPTER pAd,
68320 + IN BA_ORI_ENTRY *pBAORIEntry);
68322 +VOID BATableDeleteRECEntry(
68323 + IN OUT PRTMP_ADAPTER pAd,
68324 + IN BA_REC_ENTRY *pBARECEntry);
68326 +VOID BATableTearORIEntry(
68327 + IN OUT PRTMP_ADAPTER pAd,
68330 + IN BOOLEAN bForceDelete,
68333 +VOID BATableTearRECEntry(
68334 + IN OUT PRTMP_ADAPTER pAd,
68338 +#endif // DOT11_N_SUPPORT //
68341 + IN PRTMP_ADAPTER pAd,
68342 + OUT PBSS_ENTRY pBss,
68343 + IN PUCHAR pBssid,
68345 + IN UCHAR SsidLen,
68346 + IN UCHAR BssType,
68347 + IN USHORT BeaconPeriod,
68348 + IN PCF_PARM CfParm,
68349 + IN USHORT AtimWin,
68350 + IN USHORT CapabilityInfo,
68351 + IN UCHAR SupRate[],
68352 + IN UCHAR SupRateLen,
68353 + IN UCHAR ExtRate[],
68354 + IN UCHAR ExtRateLen,
68355 + IN HT_CAPABILITY_IE *pHtCapability,
68356 + IN ADD_HT_INFO_IE *pAddHtInfo, // AP might use this additional ht info IE
68357 + IN UCHAR HtCapabilityLen,
68358 + IN UCHAR AddHtInfoLen,
68359 + IN UCHAR NewExtChanOffset,
68360 + IN UCHAR Channel,
68362 + IN LARGE_INTEGER TimeStamp,
68363 + IN UCHAR CkipFlag,
68364 + IN PEDCA_PARM pEdcaParm,
68365 + IN PQOS_CAPABILITY_PARM pQosCapability,
68366 + IN PQBSS_LOAD_PARM pQbssLoad,
68367 + IN USHORT LengthVIE,
68368 + IN PNDIS_802_11_VARIABLE_IEs pVIE);
68370 +ULONG BssTableSetEntry(
68371 + IN PRTMP_ADAPTER pAd,
68372 + OUT PBSS_TABLE pTab,
68373 + IN PUCHAR pBssid,
68375 + IN UCHAR SsidLen,
68376 + IN UCHAR BssType,
68377 + IN USHORT BeaconPeriod,
68378 + IN CF_PARM *CfParm,
68379 + IN USHORT AtimWin,
68380 + IN USHORT CapabilityInfo,
68381 + IN UCHAR SupRate[],
68382 + IN UCHAR SupRateLen,
68383 + IN UCHAR ExtRate[],
68384 + IN UCHAR ExtRateLen,
68385 + IN HT_CAPABILITY_IE *pHtCapability,
68386 + IN ADD_HT_INFO_IE *pAddHtInfo, // AP might use this additional ht info IE
68387 + IN UCHAR HtCapabilityLen,
68388 + IN UCHAR AddHtInfoLen,
68389 + IN UCHAR NewExtChanOffset,
68390 + IN UCHAR Channel,
68392 + IN LARGE_INTEGER TimeStamp,
68393 + IN UCHAR CkipFlag,
68394 + IN PEDCA_PARM pEdcaParm,
68395 + IN PQOS_CAPABILITY_PARM pQosCapability,
68396 + IN PQBSS_LOAD_PARM pQbssLoad,
68397 + IN USHORT LengthVIE,
68398 + IN PNDIS_802_11_VARIABLE_IEs pVIE);
68400 +#ifdef DOT11_N_SUPPORT
68401 +VOID BATableInsertEntry(
68402 + IN PRTMP_ADAPTER pAd,
68404 + IN USHORT TimeOutValue,
68405 + IN USHORT StartingSeq,
68407 + IN UCHAR BAWinSize,
68408 + IN UCHAR OriginatorStatus,
68409 + IN BOOLEAN IsRecipient);
68411 +#ifdef DOT11N_DRAFT3
68412 +VOID Bss2040CoexistTimeOut(
68413 + IN PVOID SystemSpecific1,
68414 + IN PVOID FunctionContext,
68415 + IN PVOID SystemSpecific2,
68416 + IN PVOID SystemSpecific3);
68419 +VOID TriEventInit(
68420 + IN PRTMP_ADAPTER pAd);
68422 +ULONG TriEventTableSetEntry(
68423 + IN PRTMP_ADAPTER pAd,
68424 + OUT TRIGGER_EVENT_TAB *Tab,
68425 + IN PUCHAR pBssid,
68426 + IN HT_CAPABILITY_IE *pHtCapability,
68427 + IN UCHAR HtCapabilityLen,
68428 + IN UCHAR RegClass,
68429 + IN UCHAR ChannelNo);
68431 +VOID TriEventCounterMaintenance(
68432 + IN PRTMP_ADAPTER pAd);
68433 +#endif // DOT11N_DRAFT3 //
68434 +#endif // DOT11_N_SUPPORT //
68436 +VOID BssTableSsidSort(
68437 + IN PRTMP_ADAPTER pAd,
68438 + OUT BSS_TABLE *OutTab,
68440 + IN UCHAR SsidLen);
68442 +VOID BssTableSortByRssi(
68443 + IN OUT BSS_TABLE *OutTab);
68445 +VOID BssCipherParse(
68446 + IN OUT PBSS_ENTRY pBss);
68448 +NDIS_STATUS MlmeQueueInit(
68449 + IN MLME_QUEUE *Queue);
68451 +VOID MlmeQueueDestroy(
68452 + IN MLME_QUEUE *Queue);
68454 +BOOLEAN MlmeEnqueue(
68455 + IN PRTMP_ADAPTER pAd,
68456 + IN ULONG Machine,
68457 + IN ULONG MsgType,
68461 +BOOLEAN MlmeEnqueueForRecv(
68462 + IN PRTMP_ADAPTER pAd,
68464 + IN ULONG TimeStampHigh,
68465 + IN ULONG TimeStampLow,
68471 + IN UCHAR Signal);
68474 +BOOLEAN MlmeDequeue(
68475 + IN MLME_QUEUE *Queue,
68476 + OUT MLME_QUEUE_ELEM **Elem);
68478 +VOID MlmeRestartStateMachine(
68479 + IN PRTMP_ADAPTER pAd);
68481 +BOOLEAN MlmeQueueEmpty(
68482 + IN MLME_QUEUE *Queue);
68484 +BOOLEAN MlmeQueueFull(
68485 + IN MLME_QUEUE *Queue);
68487 +BOOLEAN MsgTypeSubst(
68488 + IN PRTMP_ADAPTER pAd,
68489 + IN PFRAME_802_11 pFrame,
68490 + OUT INT *Machine,
68491 + OUT INT *MsgType);
68493 +VOID StateMachineInit(
68494 + IN STATE_MACHINE *Sm,
68495 + IN STATE_MACHINE_FUNC Trans[],
68498 + IN STATE_MACHINE_FUNC DefFunc,
68499 + IN ULONG InitState,
68502 +VOID StateMachineSetAction(
68503 + IN STATE_MACHINE *S,
68506 + IN STATE_MACHINE_FUNC F);
68508 +VOID StateMachinePerformAction(
68509 + IN PRTMP_ADAPTER pAd,
68510 + IN STATE_MACHINE *S,
68511 + IN MLME_QUEUE_ELEM *Elem);
68514 + IN PRTMP_ADAPTER pAd,
68515 + IN MLME_QUEUE_ELEM *Elem);
68517 +VOID AssocStateMachineInit(
68518 + IN PRTMP_ADAPTER pAd,
68519 + IN STATE_MACHINE *Sm,
68520 + OUT STATE_MACHINE_FUNC Trans[]);
68522 +VOID ReassocTimeout(
68523 + IN PVOID SystemSpecific1,
68524 + IN PVOID FunctionContext,
68525 + IN PVOID SystemSpecific2,
68526 + IN PVOID SystemSpecific3);
68528 +VOID AssocTimeout(
68529 + IN PVOID SystemSpecific1,
68530 + IN PVOID FunctionContext,
68531 + IN PVOID SystemSpecific2,
68532 + IN PVOID SystemSpecific3);
68534 +VOID DisassocTimeout(
68535 + IN PVOID SystemSpecific1,
68536 + IN PVOID FunctionContext,
68537 + IN PVOID SystemSpecific2,
68538 + IN PVOID SystemSpecific3);
68540 +//----------------------------------------------
68541 +VOID MlmeDisassocReqAction(
68542 + IN PRTMP_ADAPTER pAd,
68543 + IN MLME_QUEUE_ELEM *Elem);
68545 +VOID MlmeAssocReqAction(
68546 + IN PRTMP_ADAPTER pAd,
68547 + IN MLME_QUEUE_ELEM *Elem);
68549 +VOID MlmeReassocReqAction(
68550 + IN PRTMP_ADAPTER pAd,
68551 + IN MLME_QUEUE_ELEM *Elem);
68553 +VOID MlmeDisassocReqAction(
68554 + IN PRTMP_ADAPTER pAd,
68555 + IN MLME_QUEUE_ELEM *Elem);
68557 +VOID PeerAssocRspAction(
68558 + IN PRTMP_ADAPTER pAd,
68559 + IN MLME_QUEUE_ELEM *Elem);
68561 +VOID PeerReassocRspAction(
68562 + IN PRTMP_ADAPTER pAd,
68563 + IN MLME_QUEUE_ELEM *Elem);
68565 +VOID PeerDisassocAction(
68566 + IN PRTMP_ADAPTER pAd,
68567 + IN MLME_QUEUE_ELEM *Elem);
68569 +VOID DisassocTimeoutAction(
68570 + IN PRTMP_ADAPTER pAd,
68571 + IN MLME_QUEUE_ELEM *Elem);
68573 +VOID AssocTimeoutAction(
68574 + IN PRTMP_ADAPTER pAd,
68575 + IN MLME_QUEUE_ELEM *Elem);
68577 +VOID ReassocTimeoutAction(
68578 + IN PRTMP_ADAPTER pAd,
68579 + IN MLME_QUEUE_ELEM *Elem);
68581 +VOID Cls3errAction(
68582 + IN PRTMP_ADAPTER pAd,
68583 + IN PUCHAR pAddr);
68585 +VOID SwitchBetweenWepAndCkip(
68586 + IN PRTMP_ADAPTER pAd);
68588 +VOID InvalidStateWhenAssoc(
68589 + IN PRTMP_ADAPTER pAd,
68590 + IN MLME_QUEUE_ELEM *Elem);
68592 +VOID InvalidStateWhenReassoc(
68593 + IN PRTMP_ADAPTER pAd,
68594 + IN MLME_QUEUE_ELEM *Elem);
68596 +VOID InvalidStateWhenDisassociate(
68597 + IN PRTMP_ADAPTER pAd,
68598 + IN MLME_QUEUE_ELEM *Elem);
68601 +VOID MlmeCntlConfirm(
68602 + IN PRTMP_ADAPTER pAd,
68603 + IN ULONG MsgType,
68605 +#endif // RT2870 //
68607 +VOID ComposePsPoll(
68608 + IN PRTMP_ADAPTER pAd);
68610 +VOID ComposeNullFrame(
68611 + IN PRTMP_ADAPTER pAd);
68613 +VOID AssocPostProc(
68614 + IN PRTMP_ADAPTER pAd,
68615 + IN PUCHAR pAddr2,
68616 + IN USHORT CapabilityInfo,
68618 + IN UCHAR SupRate[],
68619 + IN UCHAR SupRateLen,
68620 + IN UCHAR ExtRate[],
68621 + IN UCHAR ExtRateLen,
68622 + IN PEDCA_PARM pEdcaParm,
68623 + IN HT_CAPABILITY_IE *pHtCapability,
68624 + IN UCHAR HtCapabilityLen,
68625 + IN ADD_HT_INFO_IE *pAddHtInfo);
68627 +VOID AuthStateMachineInit(
68628 + IN PRTMP_ADAPTER pAd,
68629 + IN PSTATE_MACHINE sm,
68630 + OUT STATE_MACHINE_FUNC Trans[]);
68633 + IN PVOID SystemSpecific1,
68634 + IN PVOID FunctionContext,
68635 + IN PVOID SystemSpecific2,
68636 + IN PVOID SystemSpecific3);
68638 +VOID MlmeAuthReqAction(
68639 + IN PRTMP_ADAPTER pAd,
68640 + IN MLME_QUEUE_ELEM *Elem);
68642 +VOID PeerAuthRspAtSeq2Action(
68643 + IN PRTMP_ADAPTER pAd,
68644 + IN MLME_QUEUE_ELEM *Elem);
68646 +VOID PeerAuthRspAtSeq4Action(
68647 + IN PRTMP_ADAPTER pAd,
68648 + IN MLME_QUEUE_ELEM *Elem);
68650 +VOID AuthTimeoutAction(
68651 + IN PRTMP_ADAPTER pAd,
68652 + IN MLME_QUEUE_ELEM *Elem);
68654 +VOID Cls2errAction(
68655 + IN PRTMP_ADAPTER pAd,
68656 + IN PUCHAR pAddr);
68658 +VOID MlmeDeauthReqAction(
68659 + IN PRTMP_ADAPTER pAd,
68660 + IN MLME_QUEUE_ELEM *Elem);
68662 +VOID InvalidStateWhenAuth(
68663 + IN PRTMP_ADAPTER pAd,
68664 + IN MLME_QUEUE_ELEM *Elem);
68666 +//=============================================
68668 +VOID AuthRspStateMachineInit(
68669 + IN PRTMP_ADAPTER pAd,
68670 + IN PSTATE_MACHINE Sm,
68671 + IN STATE_MACHINE_FUNC Trans[]);
68673 +VOID PeerDeauthAction(
68674 + IN PRTMP_ADAPTER pAd,
68675 + IN MLME_QUEUE_ELEM *Elem);
68677 +VOID PeerAuthSimpleRspGenAndSend(
68678 + IN PRTMP_ADAPTER pAd,
68679 + IN PHEADER_802_11 pHdr80211,
68682 + IN USHORT Reason,
68683 + IN USHORT Status);
68686 +// Private routines in dls.c
68689 +#ifdef CONFIG_STA_SUPPORT
68690 +#ifdef QOS_DLS_SUPPORT
68691 +void DlsStateMachineInit(
68692 + IN PRTMP_ADAPTER pAd,
68693 + IN STATE_MACHINE *Sm,
68694 + OUT STATE_MACHINE_FUNC Trans[]);
68696 +VOID MlmeDlsReqAction(
68697 + IN PRTMP_ADAPTER pAd,
68698 + IN MLME_QUEUE_ELEM *Elem);
68700 +VOID PeerDlsReqAction(
68701 + IN PRTMP_ADAPTER pAd,
68702 + IN MLME_QUEUE_ELEM *Elem);
68704 +VOID PeerDlsRspAction(
68705 + IN PRTMP_ADAPTER pAd,
68706 + IN MLME_QUEUE_ELEM *Elem);
68708 +VOID MlmeDlsTearDownAction(
68709 + IN PRTMP_ADAPTER pAd,
68710 + IN MLME_QUEUE_ELEM *Elem);
68712 +VOID PeerDlsTearDownAction(
68713 + IN PRTMP_ADAPTER pAd,
68714 + IN MLME_QUEUE_ELEM *Elem);
68716 +VOID RTMPCheckDLSTimeOut(
68717 + IN PRTMP_ADAPTER pAd);
68719 +BOOLEAN RTMPRcvFrameDLSCheck(
68720 + IN PRTMP_ADAPTER pAd,
68721 + IN PHEADER_802_11 pHeader,
68723 + IN PRT28XX_RXD_STRUC pRxD);
68725 +INT RTMPCheckDLSFrame(
68726 + IN PRTMP_ADAPTER pAd,
68729 +VOID RTMPSendDLSTearDownFrame(
68730 + IN PRTMP_ADAPTER pAd,
68733 +NDIS_STATUS RTMPSendSTAKeyRequest(
68734 + IN PRTMP_ADAPTER pAd,
68737 +NDIS_STATUS RTMPSendSTAKeyHandShake(
68738 + IN PRTMP_ADAPTER pAd,
68741 +VOID DlsTimeoutAction(
68742 + IN PVOID SystemSpecific1,
68743 + IN PVOID FunctionContext,
68744 + IN PVOID SystemSpecific2,
68745 + IN PVOID SystemSpecific3);
68747 +BOOLEAN MlmeDlsReqSanity(
68748 + IN PRTMP_ADAPTER pAd,
68751 + OUT PRT_802_11_DLS *pDLS,
68752 + OUT PUSHORT pReason);
68754 +INT Set_DlsEntryInfo_Display_Proc(
68755 + IN PRTMP_ADAPTER pAd,
68758 +MAC_TABLE_ENTRY *MacTableInsertDlsEntry(
68759 + IN PRTMP_ADAPTER pAd,
68761 + IN UINT DlsEntryIdx);
68763 +BOOLEAN MacTableDeleteDlsEntry(
68764 + IN PRTMP_ADAPTER pAd,
68766 + IN PUCHAR pAddr);
68768 +MAC_TABLE_ENTRY *DlsEntryTableLookup(
68769 + IN PRTMP_ADAPTER pAd,
68771 + IN BOOLEAN bResetIdelCount);
68773 +MAC_TABLE_ENTRY *DlsEntryTableLookupByWcid(
68774 + IN PRTMP_ADAPTER pAd,
68777 + IN BOOLEAN bResetIdelCount);
68779 +INT Set_DlsAddEntry_Proc(
68780 + IN PRTMP_ADAPTER pAd,
68783 +INT Set_DlsTearDownEntry_Proc(
68784 + IN PRTMP_ADAPTER pAd,
68786 +#endif // QOS_DLS_SUPPORT //
68787 +#endif // CONFIG_STA_SUPPORT //
68789 +#ifdef QOS_DLS_SUPPORT
68790 +BOOLEAN PeerDlsReqSanity(
68791 + IN PRTMP_ADAPTER pAd,
68796 + OUT USHORT *pCapabilityInfo,
68797 + OUT USHORT *pDlsTimeout,
68798 + OUT UCHAR *pRatesLen,
68799 + OUT UCHAR Rates[],
68800 + OUT UCHAR *pHtCapabilityLen,
68801 + OUT HT_CAPABILITY_IE *pHtCapability);
68803 +BOOLEAN PeerDlsRspSanity(
68804 + IN PRTMP_ADAPTER pAd,
68809 + OUT USHORT *pCapabilityInfo,
68810 + OUT USHORT *pStatus,
68811 + OUT UCHAR *pRatesLen,
68812 + OUT UCHAR Rates[],
68813 + OUT UCHAR *pHtCapabilityLen,
68814 + OUT HT_CAPABILITY_IE *pHtCapability);
68816 +BOOLEAN PeerDlsTearDownSanity(
68817 + IN PRTMP_ADAPTER pAd,
68822 + OUT USHORT *pReason);
68823 +#endif // QOS_DLS_SUPPORT //
68825 +//========================================
68827 +VOID SyncStateMachineInit(
68828 + IN PRTMP_ADAPTER pAd,
68829 + IN STATE_MACHINE *Sm,
68830 + OUT STATE_MACHINE_FUNC Trans[]);
68832 +VOID BeaconTimeout(
68833 + IN PVOID SystemSpecific1,
68834 + IN PVOID FunctionContext,
68835 + IN PVOID SystemSpecific2,
68836 + IN PVOID SystemSpecific3);
68839 + IN PVOID SystemSpecific1,
68840 + IN PVOID FunctionContext,
68841 + IN PVOID SystemSpecific2,
68842 + IN PVOID SystemSpecific3);
68844 +VOID MlmeScanReqAction(
68845 + IN PRTMP_ADAPTER pAd,
68846 + IN MLME_QUEUE_ELEM *Elem);
68848 +VOID InvalidStateWhenScan(
68849 + IN PRTMP_ADAPTER pAd,
68850 + IN MLME_QUEUE_ELEM *Elem);
68852 +VOID InvalidStateWhenJoin(
68853 + IN PRTMP_ADAPTER pAd,
68854 + IN MLME_QUEUE_ELEM *Elem);
68856 +VOID InvalidStateWhenStart(
68857 + IN PRTMP_ADAPTER pAd,
68858 + IN MLME_QUEUE_ELEM *Elem);
68861 + IN PRTMP_ADAPTER pAd,
68862 + IN MLME_QUEUE_ELEM *Elem);
68864 +VOID EnqueueProbeRequest(
68865 + IN PRTMP_ADAPTER pAd);
68867 +BOOLEAN ScanRunning(
68868 + IN PRTMP_ADAPTER pAd);
68869 +//=========================================
68871 +VOID MlmeCntlInit(
68872 + IN PRTMP_ADAPTER pAd,
68873 + IN STATE_MACHINE *S,
68874 + OUT STATE_MACHINE_FUNC Trans[]);
68876 +VOID MlmeCntlMachinePerformAction(
68877 + IN PRTMP_ADAPTER pAd,
68878 + IN STATE_MACHINE *S,
68879 + IN MLME_QUEUE_ELEM *Elem);
68881 +VOID CntlIdleProc(
68882 + IN PRTMP_ADAPTER pAd,
68883 + IN MLME_QUEUE_ELEM *Elem);
68885 +VOID CntlOidScanProc(
68886 + IN PRTMP_ADAPTER pAd,
68887 + IN MLME_QUEUE_ELEM *Elem);
68889 +VOID CntlOidSsidProc(
68890 + IN PRTMP_ADAPTER pAd,
68891 + IN MLME_QUEUE_ELEM * Elem);
68893 +VOID CntlOidRTBssidProc(
68894 + IN PRTMP_ADAPTER pAd,
68895 + IN MLME_QUEUE_ELEM * Elem);
68897 +VOID CntlMlmeRoamingProc(
68898 + IN PRTMP_ADAPTER pAd,
68899 + IN MLME_QUEUE_ELEM * Elem);
68901 +VOID CntlWaitDisassocProc(
68902 + IN PRTMP_ADAPTER pAd,
68903 + IN MLME_QUEUE_ELEM *Elem);
68905 +VOID CntlWaitJoinProc(
68906 + IN PRTMP_ADAPTER pAd,
68907 + IN MLME_QUEUE_ELEM *Elem);
68909 +VOID CntlWaitReassocProc(
68910 + IN PRTMP_ADAPTER pAd,
68911 + IN MLME_QUEUE_ELEM *Elem);
68913 +VOID CntlWaitStartProc(
68914 + IN PRTMP_ADAPTER pAd,
68915 + IN MLME_QUEUE_ELEM *Elem);
68917 +VOID CntlWaitAuthProc(
68918 + IN PRTMP_ADAPTER pAd,
68919 + IN MLME_QUEUE_ELEM *Elem);
68921 +VOID CntlWaitAuthProc2(
68922 + IN PRTMP_ADAPTER pAd,
68923 + IN MLME_QUEUE_ELEM *Elem);
68925 +VOID CntlWaitAssocProc(
68926 + IN PRTMP_ADAPTER pAd,
68927 + IN MLME_QUEUE_ELEM *Elem);
68929 +#ifdef QOS_DLS_SUPPORT
68930 +VOID CntlOidDLSSetupProc(
68931 + IN PRTMP_ADAPTER pAd,
68932 + IN MLME_QUEUE_ELEM *Elem);
68933 +#endif // QOS_DLS_SUPPORT //
68936 + IN PRTMP_ADAPTER pAd,
68937 + IN UCHAR BssType);
68940 + IN PRTMP_ADAPTER pAd,
68941 + IN BOOLEAN IsReqFromAP);
68943 +VOID IterateOnBssTab(
68944 + IN PRTMP_ADAPTER pAd);
68946 +VOID IterateOnBssTab2(
68947 + IN PRTMP_ADAPTER pAd);;
68949 +VOID JoinParmFill(
68950 + IN PRTMP_ADAPTER pAd,
68951 + IN OUT MLME_JOIN_REQ_STRUCT *JoinReq,
68952 + IN ULONG BssIdx);
68954 +VOID AssocParmFill(
68955 + IN PRTMP_ADAPTER pAd,
68956 + IN OUT MLME_ASSOC_REQ_STRUCT *AssocReq,
68958 + IN USHORT CapabilityInfo,
68959 + IN ULONG Timeout,
68960 + IN USHORT ListenIntv);
68962 +VOID ScanParmFill(
68963 + IN PRTMP_ADAPTER pAd,
68964 + IN OUT MLME_SCAN_REQ_STRUCT *ScanReq,
68966 + IN UCHAR SsidLen,
68967 + IN UCHAR BssType,
68968 + IN UCHAR ScanType);
68970 +VOID DisassocParmFill(
68971 + IN PRTMP_ADAPTER pAd,
68972 + IN OUT MLME_DISASSOC_REQ_STRUCT *DisassocReq,
68974 + IN USHORT Reason);
68976 +VOID StartParmFill(
68977 + IN PRTMP_ADAPTER pAd,
68978 + IN OUT MLME_START_REQ_STRUCT *StartReq,
68980 + IN UCHAR SsidLen);
68982 +VOID AuthParmFill(
68983 + IN PRTMP_ADAPTER pAd,
68984 + IN OUT MLME_AUTH_REQ_STRUCT *AuthReq,
68988 +VOID EnqueuePsPoll(
68989 + IN PRTMP_ADAPTER pAd);
68991 +VOID EnqueueBeaconFrame(
68992 + IN PRTMP_ADAPTER pAd);
68994 +VOID MlmeJoinReqAction(
68995 + IN PRTMP_ADAPTER pAd,
68996 + IN MLME_QUEUE_ELEM *Elem);
68998 +VOID MlmeScanReqAction(
68999 + IN PRTMP_ADAPTER pAd,
69000 + IN MLME_QUEUE_ELEM *Elem);
69002 +VOID MlmeStartReqAction(
69003 + IN PRTMP_ADAPTER pAd,
69004 + IN MLME_QUEUE_ELEM *Elem);
69006 +VOID ScanTimeoutAction(
69007 + IN PRTMP_ADAPTER pAd,
69008 + IN MLME_QUEUE_ELEM *Elem);
69010 +VOID BeaconTimeoutAtJoinAction(
69011 + IN PRTMP_ADAPTER pAd,
69012 + IN MLME_QUEUE_ELEM *Elem);
69014 +VOID PeerBeaconAtScanAction(
69015 + IN PRTMP_ADAPTER pAd,
69016 + IN MLME_QUEUE_ELEM *Elem);
69018 +VOID PeerBeaconAtJoinAction(
69019 + IN PRTMP_ADAPTER pAd,
69020 + IN MLME_QUEUE_ELEM *Elem);
69023 + IN PRTMP_ADAPTER pAd,
69024 + IN MLME_QUEUE_ELEM *Elem);
69026 +VOID PeerProbeReqAction(
69027 + IN PRTMP_ADAPTER pAd,
69028 + IN MLME_QUEUE_ELEM *Elem);
69030 +VOID ScanNextChannel(
69031 + IN PRTMP_ADAPTER pAd);
69033 +ULONG MakeIbssBeacon(
69034 + IN PRTMP_ADAPTER pAd);
69036 +VOID CCXAdjacentAPReport(
69037 + IN PRTMP_ADAPTER pAd);
69039 +BOOLEAN MlmeScanReqSanity(
69040 + IN PRTMP_ADAPTER pAd,
69043 + OUT UCHAR *BssType,
69045 + OUT UCHAR *SsidLen,
69046 + OUT UCHAR *ScanType);
69048 +BOOLEAN PeerBeaconAndProbeRspSanity(
69049 + IN PRTMP_ADAPTER pAd,
69052 + IN UCHAR MsgChannel,
69053 + OUT PUCHAR pAddr2,
69054 + OUT PUCHAR pBssid,
69056 + OUT UCHAR *pSsidLen,
69057 + OUT UCHAR *pBssType,
69058 + OUT USHORT *pBeaconPeriod,
69059 + OUT UCHAR *pChannel,
69060 + OUT UCHAR *pNewChannel,
69061 + OUT LARGE_INTEGER *pTimestamp,
69062 + OUT CF_PARM *pCfParm,
69063 + OUT USHORT *pAtimWin,
69064 + OUT USHORT *pCapabilityInfo,
69066 + OUT UCHAR *pDtimCount,
69067 + OUT UCHAR *pDtimPeriod,
69068 + OUT UCHAR *pBcastFlag,
69069 + OUT UCHAR *pMessageToMe,
69070 + OUT UCHAR SupRate[],
69071 + OUT UCHAR *pSupRateLen,
69072 + OUT UCHAR ExtRate[],
69073 + OUT UCHAR *pExtRateLen,
69074 + OUT UCHAR *pCkipFlag,
69075 + OUT UCHAR *pAironetCellPowerLimit,
69076 + OUT PEDCA_PARM pEdcaParm,
69077 + OUT PQBSS_LOAD_PARM pQbssLoad,
69078 + OUT PQOS_CAPABILITY_PARM pQosCapability,
69079 + OUT ULONG *pRalinkIe,
69080 + OUT UCHAR *pHtCapabilityLen,
69081 +#ifdef CONFIG_STA_SUPPORT
69082 + OUT UCHAR *pPreNHtCapabilityLen,
69083 +#endif // CONFIG_STA_SUPPORT //
69084 + OUT HT_CAPABILITY_IE *pHtCapability,
69085 + OUT UCHAR *AddHtInfoLen,
69086 + OUT ADD_HT_INFO_IE *AddHtInfo,
69087 + OUT UCHAR *NewExtChannel,
69088 + OUT USHORT *LengthVIE,
69089 + OUT PNDIS_802_11_VARIABLE_IEs pVIE);
69091 +BOOLEAN PeerAddBAReqActionSanity(
69092 + IN PRTMP_ADAPTER pAd,
69095 + OUT PUCHAR pAddr2);
69097 +BOOLEAN PeerAddBARspActionSanity(
69098 + IN PRTMP_ADAPTER pAd,
69100 + IN ULONG MsgLen);
69102 +BOOLEAN PeerDelBAActionSanity(
69103 + IN PRTMP_ADAPTER pAd,
69106 + IN ULONG MsgLen);
69108 +BOOLEAN MlmeAssocReqSanity(
69109 + IN PRTMP_ADAPTER pAd,
69112 + OUT PUCHAR pApAddr,
69113 + OUT USHORT *CapabilityInfo,
69114 + OUT ULONG *Timeout,
69115 + OUT USHORT *ListenIntv);
69117 +BOOLEAN MlmeAuthReqSanity(
69118 + IN PRTMP_ADAPTER pAd,
69121 + OUT PUCHAR pAddr,
69122 + OUT ULONG *Timeout,
69123 + OUT USHORT *Alg);
69125 +BOOLEAN MlmeStartReqSanity(
69126 + IN PRTMP_ADAPTER pAd,
69130 + OUT UCHAR *Ssidlen);
69132 +BOOLEAN PeerAuthSanity(
69133 + IN PRTMP_ADAPTER pAd,
69136 + OUT PUCHAR pAddr,
69139 + OUT USHORT *Status,
69140 + OUT CHAR ChlgText[]);
69142 +BOOLEAN PeerAssocRspSanity(
69143 + IN PRTMP_ADAPTER pAd,
69146 + OUT PUCHAR pAddr2,
69147 + OUT USHORT *pCapabilityInfo,
69148 + OUT USHORT *pStatus,
69149 + OUT USHORT *pAid,
69150 + OUT UCHAR SupRate[],
69151 + OUT UCHAR *pSupRateLen,
69152 + OUT UCHAR ExtRate[],
69153 + OUT UCHAR *pExtRateLen,
69154 + OUT HT_CAPABILITY_IE *pHtCapability,
69155 + OUT ADD_HT_INFO_IE *pAddHtInfo, // AP might use this additional ht info IE
69156 + OUT UCHAR *pHtCapabilityLen,
69157 + OUT UCHAR *pAddHtInfoLen,
69158 + OUT UCHAR *pNewExtChannelOffset,
69159 + OUT PEDCA_PARM pEdcaParm,
69160 + OUT UCHAR *pCkipFlag);
69162 +BOOLEAN PeerDisassocSanity(
69163 + IN PRTMP_ADAPTER pAd,
69166 + OUT PUCHAR pAddr2,
69167 + OUT USHORT *Reason);
69169 +BOOLEAN PeerWpaMessageSanity(
69170 + IN PRTMP_ADAPTER pAd,
69171 + IN PEAPOL_PACKET pMsg,
69173 + IN UCHAR MsgType,
69174 + IN MAC_TABLE_ENTRY *pEntry);
69176 +BOOLEAN PeerDeauthSanity(
69177 + IN PRTMP_ADAPTER pAd,
69180 + OUT PUCHAR pAddr2,
69181 + OUT USHORT *Reason);
69183 +BOOLEAN PeerProbeReqSanity(
69184 + IN PRTMP_ADAPTER pAd,
69187 + OUT PUCHAR pAddr2,
69189 + OUT UCHAR *pSsidLen);
69191 +BOOLEAN GetTimBit(
69194 + OUT UCHAR *TimLen,
69195 + OUT UCHAR *BcastFlag,
69196 + OUT UCHAR *DtimCount,
69197 + OUT UCHAR *DtimPeriod,
69198 + OUT UCHAR *MessageToMe);
69200 +UCHAR ChannelSanity(
69201 + IN PRTMP_ADAPTER pAd,
69202 + IN UCHAR channel);
69204 +NDIS_802_11_NETWORK_TYPE NetworkTypeInUseSanity(
69205 + IN PBSS_ENTRY pBss);
69207 +BOOLEAN MlmeDelBAReqSanity(
69208 + IN PRTMP_ADAPTER pAd,
69210 + IN ULONG MsgLen);
69212 +BOOLEAN MlmeAddBAReqSanity(
69213 + IN PRTMP_ADAPTER pAd,
69216 + OUT PUCHAR pAddr2);
69218 +ULONG MakeOutgoingFrame(
69219 + OUT CHAR *Buffer,
69220 + OUT ULONG *Length, ...);
69223 + IN PRTMP_ADAPTER pAd,
69227 + IN PRTMP_ADAPTER pAd);
69229 +VOID AsicUpdateAutoFallBackTable(
69230 + IN PRTMP_ADAPTER pAd,
69231 + IN PUCHAR pTxRate);
69233 +VOID MlmePeriodicExec(
69234 + IN PVOID SystemSpecific1,
69235 + IN PVOID FunctionContext,
69236 + IN PVOID SystemSpecific2,
69237 + IN PVOID SystemSpecific3);
69239 +VOID LinkDownExec(
69240 + IN PVOID SystemSpecific1,
69241 + IN PVOID FunctionContext,
69242 + IN PVOID SystemSpecific2,
69243 + IN PVOID SystemSpecific3);
69246 + IN PVOID SystemSpecific1,
69247 + IN PVOID FunctionContext,
69248 + IN PVOID SystemSpecific2,
69249 + IN PVOID SystemSpecific3);
69251 +VOID STAMlmePeriodicExec(
69252 + PRTMP_ADAPTER pAd);
69254 +VOID MlmeAutoScan(
69255 + IN PRTMP_ADAPTER pAd);
69257 +VOID MlmeAutoReconnectLastSSID(
69258 + IN PRTMP_ADAPTER pAd);
69260 +BOOLEAN MlmeValidateSSID(
69262 + IN UCHAR SsidLen);
69264 +VOID MlmeCheckForRoaming(
69265 + IN PRTMP_ADAPTER pAd,
69268 +VOID MlmeCheckForFastRoaming(
69269 + IN PRTMP_ADAPTER pAd,
69272 +VOID MlmeDynamicTxRateSwitching(
69273 + IN PRTMP_ADAPTER pAd);
69275 +VOID MlmeSetTxRate(
69276 + IN PRTMP_ADAPTER pAd,
69277 + IN PMAC_TABLE_ENTRY pEntry,
69278 + IN PRTMP_TX_RATE_SWITCH pTxRate);
69280 +VOID MlmeSelectTxRateTable(
69281 + IN PRTMP_ADAPTER pAd,
69282 + IN PMAC_TABLE_ENTRY pEntry,
69283 + IN PUCHAR *ppTable,
69284 + IN PUCHAR pTableSize,
69285 + IN PUCHAR pInitTxRateIdx);
69287 +VOID MlmeCalculateChannelQuality(
69288 + IN PRTMP_ADAPTER pAd,
69291 +VOID MlmeCheckPsmChange(
69292 + IN PRTMP_ADAPTER pAd,
69295 +VOID MlmeSetPsmBit(
69296 + IN PRTMP_ADAPTER pAd,
69299 +VOID MlmeSetTxPreamble(
69300 + IN PRTMP_ADAPTER pAd,
69301 + IN USHORT TxPreamble);
69303 +VOID UpdateBasicRateBitmap(
69304 + IN PRTMP_ADAPTER pAd);
69306 +VOID MlmeUpdateTxRates(
69307 + IN PRTMP_ADAPTER pAd,
69308 + IN BOOLEAN bLinkUp,
69311 +#ifdef DOT11_N_SUPPORT
69312 +VOID MlmeUpdateHtTxRates(
69313 + IN PRTMP_ADAPTER pAd,
69315 +#endif // DOT11_N_SUPPORT //
69317 +VOID RTMPCheckRates(
69318 + IN PRTMP_ADAPTER pAd,
69319 + IN OUT UCHAR SupRate[],
69320 + IN OUT UCHAR *SupRateLen);
69322 +#ifdef CONFIG_STA_SUPPORT
69323 +BOOLEAN RTMPCheckChannel(
69324 + IN PRTMP_ADAPTER pAd,
69325 + IN UCHAR CentralChannel,
69326 + IN UCHAR Channel);
69327 +#endif // CONFIG_STA_SUPPORT //
69329 +BOOLEAN RTMPCheckHt(
69330 + IN PRTMP_ADAPTER pAd,
69332 + IN OUT HT_CAPABILITY_IE *pHtCapability,
69333 + IN OUT ADD_HT_INFO_IE *pAddHtInfo);
69335 +VOID StaQuickResponeForRateUpExec(
69336 + IN PVOID SystemSpecific1,
69337 + IN PVOID FunctionContext,
69338 + IN PVOID SystemSpecific2,
69339 + IN PVOID SystemSpecific3);
69341 +VOID AsicBbpTuning1(
69342 + IN PRTMP_ADAPTER pAd);
69344 +VOID AsicBbpTuning2(
69345 + IN PRTMP_ADAPTER pAd);
69347 +VOID RTMPUpdateMlmeRate(
69348 + IN PRTMP_ADAPTER pAd);
69351 + IN PRTMP_ADAPTER pAd,
69356 +VOID AsicSetRxAnt(
69357 + IN PRTMP_ADAPTER pAd,
69360 +VOID AsicEvaluateRxAnt(
69361 + IN PRTMP_ADAPTER pAd);
69363 +VOID AsicRxAntEvalTimeout(
69364 + IN PVOID SystemSpecific1,
69365 + IN PVOID FunctionContext,
69366 + IN PVOID SystemSpecific2,
69367 + IN PVOID SystemSpecific3);
69369 +VOID APSDPeriodicExec(
69370 + IN PVOID SystemSpecific1,
69371 + IN PVOID FunctionContext,
69372 + IN PVOID SystemSpecific2,
69373 + IN PVOID SystemSpecific3);
69375 +BOOLEAN RTMPCheckEntryEnableAutoRateSwitch(
69376 + IN PRTMP_ADAPTER pAd,
69377 + IN PMAC_TABLE_ENTRY pEntry);
69379 +UCHAR RTMPStaFixedTxMode(
69380 + IN PRTMP_ADAPTER pAd,
69381 + IN PMAC_TABLE_ENTRY pEntry);
69383 +VOID RTMPUpdateLegacyTxSetting(
69384 + UCHAR fixed_tx_mode,
69385 + PMAC_TABLE_ENTRY pEntry);
69387 +BOOLEAN RTMPAutoRateSwitchCheck(
69388 + IN PRTMP_ADAPTER pAd);
69390 +NDIS_STATUS MlmeInit(
69391 + IN PRTMP_ADAPTER pAd);
69394 + IN PRTMP_ADAPTER pAd);
69397 + IN PRTMP_ADAPTER pAd);
69399 +VOID MlmeResetRalinkCounters(
69400 + IN PRTMP_ADAPTER pAd);
69402 +VOID BuildChannelList(
69403 + IN PRTMP_ADAPTER pAd);
69405 +UCHAR FirstChannel(
69406 + IN PRTMP_ADAPTER pAd);
69408 +UCHAR NextChannel(
69409 + IN PRTMP_ADAPTER pAd,
69410 + IN UCHAR channel);
69412 +VOID ChangeToCellPowerLimit(
69413 + IN PRTMP_ADAPTER pAd,
69414 + IN UCHAR AironetCellPowerLimit);
69417 + IN PRTMP_ADAPTER pAd,
69421 + IN PRTMP_ADAPTER pAd,
69424 +USHORT ShiftInBits(
69425 + IN PRTMP_ADAPTER pAd);
69427 +VOID ShiftOutBits(
69428 + IN PRTMP_ADAPTER pAd,
69430 + IN USHORT count);
69432 +VOID EEpromCleanup(
69433 + IN PRTMP_ADAPTER pAd);
69436 + IN PRTMP_ADAPTER pAd);
69439 + IN PRTMP_ADAPTER pAd);
69441 +USHORT RTMP_EEPROM_READ16(
69442 + IN PRTMP_ADAPTER pAd,
69443 + IN USHORT Offset);
69445 +VOID RTMP_EEPROM_WRITE16(
69446 + IN PRTMP_ADAPTER pAd,
69447 + IN USHORT Offset,
69451 +// Prototypes of function definition in rtmp_tkip.c
69453 +VOID RTMPInitTkipEngine(
69454 + IN PRTMP_ADAPTER pAd,
69458 + IN PUCHAR pMICKey,
69460 + OUT PULONG pIV16,
69461 + OUT PULONG pIV32);
69463 +VOID RTMPInitMICEngine(
69464 + IN PRTMP_ADAPTER pAd,
69468 + IN UCHAR UserPriority,
69469 + IN PUCHAR pMICKey);
69471 +BOOLEAN RTMPTkipCompareMICValue(
69472 + IN PRTMP_ADAPTER pAd,
69476 + IN PUCHAR pMICKey,
69477 + IN UCHAR UserPriority,
69480 +VOID RTMPCalculateMICValue(
69481 + IN PRTMP_ADAPTER pAd,
69482 + IN PNDIS_PACKET pPacket,
69483 + IN PUCHAR pEncap,
69484 + IN PCIPHER_KEY pKey,
69487 +BOOLEAN RTMPTkipCompareMICValueWithLLC(
69488 + IN PRTMP_ADAPTER pAd,
69493 + IN PUCHAR pMICKey,
69496 +VOID RTMPTkipAppendByte(
69497 + IN PTKIP_KEY_INFO pTkip,
69500 +VOID RTMPTkipAppend(
69501 + IN PTKIP_KEY_INFO pTkip,
69505 +VOID RTMPTkipGetMIC(
69506 + IN PTKIP_KEY_INFO pTkip);
69508 +BOOLEAN RTMPSoftDecryptTKIP(
69509 + IN PRTMP_ADAPTER pAd,
69511 + IN ULONG DataByteCnt,
69512 + IN UCHAR UserPriority,
69513 + IN PCIPHER_KEY pWpaKey);
69515 +BOOLEAN RTMPSoftDecryptAES(
69516 + IN PRTMP_ADAPTER pAd,
69518 + IN ULONG DataByteCnt,
69519 + IN PCIPHER_KEY pWpaKey);
69522 +// Prototypes of function definition in cmm_info.c
69524 +NDIS_STATUS RTMPWPARemoveKeyProc(
69525 + IN PRTMP_ADAPTER pAd,
69528 +VOID RTMPWPARemoveAllKeys(
69529 + IN PRTMP_ADAPTER pAd);
69531 +BOOLEAN RTMPCheckStrPrintAble(
69532 + IN CHAR *pInPutStr,
69533 + IN UCHAR strLen);
69535 +VOID RTMPSetPhyMode(
69536 + IN PRTMP_ADAPTER pAd,
69537 + IN ULONG phymode);
69539 +VOID RTMPUpdateHTIE(
69540 + IN RT_HT_CAPABILITY *pRtHt,
69541 + IN UCHAR *pMcsSet,
69542 + OUT HT_CAPABILITY_IE *pHtCapability,
69543 + OUT ADD_HT_INFO_IE *pAddHtInfo);
69545 +VOID RTMPAddWcidAttributeEntry(
69546 + IN PRTMP_ADAPTER pAd,
69549 + IN UCHAR CipherAlg,
69550 + IN MAC_TABLE_ENTRY *pEntry);
69552 +CHAR *GetEncryptType(
69555 +CHAR *GetAuthMode(
69558 +VOID RTMPIoctlGetSiteSurvey(
69559 + IN PRTMP_ADAPTER pAdapter,
69560 + IN struct iwreq *wrq);
69562 +VOID RTMPIoctlGetMacTable(
69563 + IN PRTMP_ADAPTER pAd,
69564 + IN struct iwreq *wrq);
69566 +VOID RTMPIndicateWPA2Status(
69567 + IN PRTMP_ADAPTER pAdapter);
69569 +VOID RTMPOPModeSwitching(
69570 + IN PRTMP_ADAPTER pAd);
69572 +#ifdef CONFIG_STA_SUPPORT
69573 +VOID RTMPAddBSSIDCipher(
69574 + IN PRTMP_ADAPTER pAd,
69576 + IN PNDIS_802_11_KEY pKey,
69577 + IN UCHAR CipherAlg);
69578 +#endif // CONFIG_STA_SUPPORT //
69580 +#ifdef DOT11_N_SUPPORT
69582 + IN PRTMP_ADAPTER pAd,
69583 + IN OID_SET_HT_PHYMODE *pHTPhyMode);
69585 +VOID RTMPSetIndividualHT(
69586 + IN PRTMP_ADAPTER pAd,
69588 +#endif // DOT11_N_SUPPORT //
69590 +VOID RTMPSendWirelessEvent(
69591 + IN PRTMP_ADAPTER pAd,
69592 + IN USHORT Event_flag,
69597 +VOID NICUpdateCntlCounters(
69598 + IN PRTMP_ADAPTER pAd,
69599 + IN PHEADER_802_11 pHeader,
69600 + IN UCHAR SubType,
69601 + IN PRXWI_STRUC pRxWI);
69603 +// prototype in wpa.c
69605 +BOOLEAN WpaMsgTypeSubst(
69606 + IN UCHAR EAPType,
69607 + OUT INT *MsgType);
69609 +VOID WpaPskStateMachineInit(
69610 + IN PRTMP_ADAPTER pAd,
69611 + IN STATE_MACHINE *S,
69612 + OUT STATE_MACHINE_FUNC Trans[]);
69614 +VOID WpaEAPOLKeyAction(
69615 + IN PRTMP_ADAPTER pAd,
69616 + IN MLME_QUEUE_ELEM *Elem);
69618 +VOID WpaPairMsg1Action(
69619 + IN PRTMP_ADAPTER pAd,
69620 + IN MLME_QUEUE_ELEM *Elem);
69622 +VOID WpaPairMsg3Action(
69623 + IN PRTMP_ADAPTER pAd,
69624 + IN MLME_QUEUE_ELEM *Elem);
69626 +VOID WpaGroupMsg1Action(
69627 + IN PRTMP_ADAPTER pAd,
69628 + IN MLME_QUEUE_ELEM *Elem);
69630 +VOID WpaMacHeaderInit(
69631 + IN PRTMP_ADAPTER pAd,
69632 + IN OUT PHEADER_802_11 pHdr80211,
69634 + IN PUCHAR pAddr1);
69636 +VOID Wpa2PairMsg1Action(
69637 + IN PRTMP_ADAPTER pAd,
69638 + IN MLME_QUEUE_ELEM *Elem);
69640 +VOID Wpa2PairMsg3Action(
69641 + IN PRTMP_ADAPTER pAd,
69642 + IN MLME_QUEUE_ELEM *Elem);
69644 +BOOLEAN ParseKeyData(
69645 + IN PRTMP_ADAPTER pAd,
69646 + IN PUCHAR pKeyData,
69647 + IN UCHAR KeyDataLen,
69648 + IN UCHAR bPairewise);
69650 +VOID RTMPToWirelessSta(
69651 + IN PRTMP_ADAPTER pAd,
69652 + IN PUCHAR pHeader802_3,
69656 + IN BOOLEAN is4wayFrame);
69660 + IN UINT text_len,
69663 + IN UCHAR *digest);
69668 + IN UCHAR *prefix,
69669 + IN INT prefix_len,
69672 + OUT UCHAR *output,
69680 + OUT UCHAR *output,
69684 + IN PRTMP_ADAPTER pAd,
69686 + IN UCHAR *ANonce,
69688 + IN UCHAR *SNonce,
69690 + OUT UCHAR *output,
69694 + IN PRTMP_ADAPTER pAd,
69695 + IN UCHAR *macAddr,
69696 + OUT UCHAR *random);
69699 +// prototype in aironet.c
69701 +VOID AironetStateMachineInit(
69702 + IN PRTMP_ADAPTER pAd,
69703 + IN STATE_MACHINE *S,
69704 + OUT STATE_MACHINE_FUNC Trans[]);
69706 +VOID AironetMsgAction(
69707 + IN PRTMP_ADAPTER pAd,
69708 + IN MLME_QUEUE_ELEM *Elem);
69710 +VOID AironetRequestAction(
69711 + IN PRTMP_ADAPTER pAd,
69712 + IN MLME_QUEUE_ELEM *Elem);
69714 +VOID ChannelLoadRequestAction(
69715 + IN PRTMP_ADAPTER pAd,
69718 +VOID NoiseHistRequestAction(
69719 + IN PRTMP_ADAPTER pAd,
69722 +VOID BeaconRequestAction(
69723 + IN PRTMP_ADAPTER pAd,
69726 +VOID AironetReportAction(
69727 + IN PRTMP_ADAPTER pAd,
69728 + IN MLME_QUEUE_ELEM *Elem);
69730 +VOID ChannelLoadReportAction(
69731 + IN PRTMP_ADAPTER pAd,
69734 +VOID NoiseHistReportAction(
69735 + IN PRTMP_ADAPTER pAd,
69738 +VOID AironetFinalReportAction(
69739 + IN PRTMP_ADAPTER pAd);
69741 +VOID BeaconReportAction(
69742 + IN PRTMP_ADAPTER pAd,
69745 +VOID AironetAddBeaconReport(
69746 + IN PRTMP_ADAPTER pAd,
69748 + IN PMLME_QUEUE_ELEM pElem);
69750 +VOID AironetCreateBeaconReportFromBssTable(
69751 + IN PRTMP_ADAPTER pAd);
69753 +VOID DBGPRINT_TX_RING(
69754 + IN PRTMP_ADAPTER pAd,
69755 + IN UCHAR QueIdx);
69757 +VOID DBGPRINT_RX_RING(
69758 + IN PRTMP_ADAPTER pAd);
69760 +CHAR ConvertToRssi(
69761 + IN PRTMP_ADAPTER pAd,
69763 + IN UCHAR RssiNumber);
69766 +#ifdef DOT11N_DRAFT3
69767 +VOID BuildEffectedChannelList(
69768 + IN PRTMP_ADAPTER pAd);
69769 +#endif // DOT11N_DRAFT3 //
69772 +VOID APAsicEvaluateRxAnt(
69773 + IN PRTMP_ADAPTER pAd);
69776 +VOID APAsicRxAntEvalTimeout(
69777 + IN PRTMP_ADAPTER pAd);
69780 +// function prototype in cmm_wpa.c
69782 +BOOLEAN RTMPCheckWPAframe(
69783 + IN PRTMP_ADAPTER pAd,
69784 + IN PMAC_TABLE_ENTRY pEntry,
69786 + IN ULONG DataByteCount,
69787 + IN UCHAR FromWhichBSSID);
69789 +VOID AES_GTK_KEY_UNWRAP(
69791 + OUT UCHAR *plaintext,
69793 + IN UCHAR *ciphertext);
69795 +BOOLEAN RTMPCheckRSNIE(
69796 + IN PRTMP_ADAPTER pAd,
69798 + IN UCHAR DataLen,
69799 + IN MAC_TABLE_ENTRY *pEntry,
69800 + OUT UCHAR *Offset);
69802 +BOOLEAN RTMPParseEapolKeyData(
69803 + IN PRTMP_ADAPTER pAd,
69804 + IN PUCHAR pKeyData,
69805 + IN UCHAR KeyDataLen,
69806 + IN UCHAR GroupKeyIndex,
69807 + IN UCHAR MsgType,
69808 + IN BOOLEAN bWPA2,
69809 + IN MAC_TABLE_ENTRY *pEntry);
69811 +VOID ConstructEapolMsg(
69812 + IN PRTMP_ADAPTER pAd,
69813 + IN UCHAR PeerAuthMode,
69814 + IN UCHAR PeerWepStatus,
69815 + IN UCHAR MyGroupKeyWepStatus,
69816 + IN UCHAR MsgType,
69817 + IN UCHAR DefaultKeyIdx,
69818 + IN UCHAR *ReplayCounter,
69819 + IN UCHAR *KeyNonce,
69824 + IN UCHAR RSNIE_Len,
69825 + OUT PEAPOL_PACKET pMsg);
69827 +VOID CalculateMIC(
69828 + IN PRTMP_ADAPTER pAd,
69829 + IN UCHAR PeerWepStatus,
69831 + OUT PEAPOL_PACKET pMsg);
69833 +NDIS_STATUS RTMPSoftDecryptBroadCastData(
69834 + IN PRTMP_ADAPTER pAd,
69835 + IN RX_BLK *pRxBlk,
69836 + IN NDIS_802_11_ENCRYPTION_STATUS GroupCipher,
69837 + IN PCIPHER_KEY pShard_key);
69839 +VOID ConstructEapolKeyData(
69840 + IN PRTMP_ADAPTER pAd,
69841 + IN UCHAR PeerAuthMode,
69842 + IN UCHAR PeerWepStatus,
69843 + IN UCHAR GroupKeyWepStatus,
69844 + IN UCHAR MsgType,
69845 + IN UCHAR DefaultKeyIdx,
69846 + IN BOOLEAN bWPA2Capable,
69850 + IN UCHAR RSNIE_LEN,
69851 + OUT PEAPOL_PACKET pMsg);
69853 +VOID RTMPMakeRSNIE(
69854 + IN PRTMP_ADAPTER pAd,
69855 + IN UINT AuthMode,
69856 + IN UINT WepStatus,
69860 +// function prototype in ap_wpa.c
69863 +BOOLEAN APWpaMsgTypeSubst(
69864 + IN UCHAR EAPType,
69865 + OUT INT *MsgType) ;
69867 +MAC_TABLE_ENTRY *PACInquiry(
69868 + IN PRTMP_ADAPTER pAd,
69871 +BOOLEAN RTMPCheckMcast(
69872 + IN PRTMP_ADAPTER pAd,
69873 + IN PEID_STRUCT eid_ptr,
69874 + IN MAC_TABLE_ENTRY *pEntry);
69876 +BOOLEAN RTMPCheckUcast(
69877 + IN PRTMP_ADAPTER pAd,
69878 + IN PEID_STRUCT eid_ptr,
69879 + IN MAC_TABLE_ENTRY *pEntry);
69881 +BOOLEAN RTMPCheckAUTH(
69882 + IN PRTMP_ADAPTER pAd,
69883 + IN PEID_STRUCT eid_ptr,
69884 + IN MAC_TABLE_ENTRY *pEntry);
69886 +VOID WPAStart4WayHS(
69887 + IN PRTMP_ADAPTER pAd,
69888 + IN MAC_TABLE_ENTRY *pEntry,
69889 + IN ULONG TimeInterval);
69891 +VOID WPAStart2WayGroupHS(
69892 + IN PRTMP_ADAPTER pAd,
69893 + IN MAC_TABLE_ENTRY *pEntry);
69895 +VOID APWpaEAPPacketAction(
69896 + IN PRTMP_ADAPTER pAd,
69897 + IN MLME_QUEUE_ELEM *Elem);
69899 +VOID APWpaEAPOLStartAction(
69900 + IN PRTMP_ADAPTER pAd,
69901 + IN MLME_QUEUE_ELEM *Elem);
69903 +VOID APWpaEAPOLLogoffAction(
69904 + IN PRTMP_ADAPTER pAd,
69905 + IN MLME_QUEUE_ELEM *Elem);
69907 +VOID APWpaEAPOLKeyAction(
69908 + IN PRTMP_ADAPTER pAd,
69909 + IN MLME_QUEUE_ELEM *Elem);
69911 +VOID APWpaEAPOLASFAlertAction(
69912 + IN PRTMP_ADAPTER pAd,
69913 + IN MLME_QUEUE_ELEM *Elem);
69915 +VOID HandleCounterMeasure(
69916 + IN PRTMP_ADAPTER pAd,
69917 + IN MAC_TABLE_ENTRY *pEntry);
69919 +VOID PeerPairMsg2Action(
69920 + IN PRTMP_ADAPTER pAd,
69921 + IN MAC_TABLE_ENTRY *pEntry,
69922 + IN MLME_QUEUE_ELEM *Elem);
69924 +VOID PeerPairMsg4Action(
69925 + IN PRTMP_ADAPTER pAd,
69926 + IN MAC_TABLE_ENTRY *pEntry,
69927 + IN MLME_QUEUE_ELEM *Elem);
69930 + IN PVOID SystemSpecific1,
69931 + IN PVOID FunctionContext,
69932 + IN PVOID SystemSpecific2,
69933 + IN PVOID SystemSpecific3);
69935 +VOID WPARetryExec(
69936 + IN PVOID SystemSpecific1,
69937 + IN PVOID FunctionContext,
69938 + IN PVOID SystemSpecific2,
69939 + IN PVOID SystemSpecific3);
69941 +VOID EnqueueStartForPSKExec(
69942 + IN PVOID SystemSpecific1,
69943 + IN PVOID FunctionContext,
69944 + IN PVOID SystemSpecific2,
69945 + IN PVOID SystemSpecific3);
69947 +VOID RTMPHandleSTAKey(
69948 + IN PRTMP_ADAPTER pAdapter,
69949 + IN MAC_TABLE_ENTRY *pEntry,
69950 + IN MLME_QUEUE_ELEM *Elem);
69952 +VOID PeerGroupMsg2Action(
69953 + IN PRTMP_ADAPTER pAd,
69954 + IN PMAC_TABLE_ENTRY pEntry,
69958 +VOID PairDisAssocAction(
69959 + IN PRTMP_ADAPTER pAd,
69960 + IN PMAC_TABLE_ENTRY pEntry,
69961 + IN USHORT Reason);
69963 +VOID MlmeDeAuthAction(
69964 + IN PRTMP_ADAPTER pAd,
69965 + IN PMAC_TABLE_ENTRY pEntry,
69966 + IN USHORT Reason);
69968 +VOID GREKEYPeriodicExec(
69969 + IN PVOID SystemSpecific1,
69970 + IN PVOID FunctionContext,
69971 + IN PVOID SystemSpecific2,
69972 + IN PVOID SystemSpecific3);
69976 + IN UCHAR *GNonce,
69978 + OUT UCHAR *output,
69985 + IN ULONG Length);
69991 + IN ULONG Length);
69994 + IN PRTMP_ADAPTER pAd,
69995 + OUT UCHAR *random);
69997 +VOID AES_GTK_KEY_WRAP(
69999 + IN UCHAR *plaintext,
70001 + OUT UCHAR *ciphertext);
70004 + IN PRTMP_ADAPTER pAdapter,
70005 + IN PUCHAR pPacket,
70008 +VOID APToWirelessSta(
70009 + IN PRTMP_ADAPTER pAd,
70010 + IN MAC_TABLE_ENTRY *pEntry,
70011 + IN PUCHAR pHeader802_3,
70015 + IN BOOLEAN bClearFrame);
70017 +VOID RTMPAddPMKIDCache(
70018 + IN PRTMP_ADAPTER pAd,
70024 +INT RTMPSearchPMKIDCache(
70025 + IN PRTMP_ADAPTER pAd,
70027 + IN PUCHAR pAddr);
70029 +VOID RTMPDeletePMKIDCache(
70030 + IN PRTMP_ADAPTER pAd,
70034 +VOID RTMPMaintainPMKIDCache(
70035 + IN PRTMP_ADAPTER pAd);
70037 +VOID RTMPSendTriggerFrame(
70038 + IN PRTMP_ADAPTER pAd,
70039 + IN PVOID pBuffer,
70042 + IN BOOLEAN bQosNull);
70045 +VOID RTMPFilterCalibration(
70046 + IN PRTMP_ADAPTER pAd);
70047 +#endif // RT30xx //
70050 +//typedef void (*TIMER_FUNCTION)(unsigned long);
70053 +/* timeout -- ms */
70054 +VOID RTMP_SetPeriodicTimer(
70055 + IN NDIS_MINIPORT_TIMER *pTimer,
70056 + IN unsigned long timeout);
70058 +VOID RTMP_OS_Init_Timer(
70059 + IN PRTMP_ADAPTER pAd,
70060 + IN NDIS_MINIPORT_TIMER *pTimer,
70061 + IN TIMER_FUNCTION function,
70064 +VOID RTMP_OS_Add_Timer(
70065 + IN NDIS_MINIPORT_TIMER *pTimer,
70066 + IN unsigned long timeout);
70068 +VOID RTMP_OS_Mod_Timer(
70069 + IN NDIS_MINIPORT_TIMER *pTimer,
70070 + IN unsigned long timeout);
70073 +VOID RTMP_OS_Del_Timer(
70074 + IN NDIS_MINIPORT_TIMER *pTimer,
70075 + OUT BOOLEAN *pCancelled);
70078 +VOID RTMP_OS_Release_Packet(
70079 + IN PRTMP_ADAPTER pAd,
70080 + IN PQUEUE_ENTRY pEntry);
70082 +VOID RTMPusecDelay(
70085 +NDIS_STATUS os_alloc_mem(
70086 + IN PRTMP_ADAPTER pAd,
70090 +NDIS_STATUS os_free_mem(
70091 + IN PRTMP_ADAPTER pAd,
70095 +void RTMP_AllocateSharedMemory(
70096 + IN PRTMP_ADAPTER pAd,
70098 + IN BOOLEAN Cached,
70099 + OUT PVOID *VirtualAddress,
70100 + OUT PNDIS_PHYSICAL_ADDRESS PhysicalAddress);
70102 +VOID RTMPFreeTxRxRingMemory(
70103 + IN PRTMP_ADAPTER pAd);
70105 +NDIS_STATUS AdapterBlockAllocateMemory(
70107 + OUT PVOID *ppAd);
70109 +void RTMP_AllocateTxDescMemory(
70110 + IN PRTMP_ADAPTER pAd,
70113 + IN BOOLEAN Cached,
70114 + OUT PVOID *VirtualAddress,
70115 + OUT PNDIS_PHYSICAL_ADDRESS PhysicalAddress);
70117 +void RTMP_AllocateFirstTxBuffer(
70118 + IN PRTMP_ADAPTER pAd,
70121 + IN BOOLEAN Cached,
70122 + OUT PVOID *VirtualAddress,
70123 + OUT PNDIS_PHYSICAL_ADDRESS PhysicalAddress);
70125 +void RTMP_AllocateMgmtDescMemory(
70126 + IN PRTMP_ADAPTER pAd,
70128 + IN BOOLEAN Cached,
70129 + OUT PVOID *VirtualAddress,
70130 + OUT PNDIS_PHYSICAL_ADDRESS PhysicalAddress);
70132 +void RTMP_AllocateRxDescMemory(
70133 + IN PRTMP_ADAPTER pAd,
70135 + IN BOOLEAN Cached,
70136 + OUT PVOID *VirtualAddress,
70137 + OUT PNDIS_PHYSICAL_ADDRESS PhysicalAddress);
70139 +PNDIS_PACKET RTMP_AllocateRxPacketBuffer(
70140 + IN PRTMP_ADAPTER pAd,
70142 + IN BOOLEAN Cached,
70143 + OUT PVOID *VirtualAddress,
70144 + OUT PNDIS_PHYSICAL_ADDRESS PhysicalAddress);
70146 +PNDIS_PACKET RTMP_AllocateTxPacketBuffer(
70147 + IN PRTMP_ADAPTER pAd,
70149 + IN BOOLEAN Cached,
70150 + OUT PVOID *VirtualAddress);
70152 +PNDIS_PACKET RTMP_AllocateFragPacketBuffer(
70153 + IN PRTMP_ADAPTER pAd,
70154 + IN ULONG Length);
70156 +void RTMP_QueryPacketInfo(
70157 + IN PNDIS_PACKET pPacket,
70158 + OUT PACKET_INFO *pPacketInfo,
70159 + OUT PUCHAR *pSrcBufVA,
70160 + OUT UINT *pSrcBufLen);
70162 +void RTMP_QueryNextPacketInfo(
70163 + IN PNDIS_PACKET *ppPacket,
70164 + OUT PACKET_INFO *pPacketInfo,
70165 + OUT PUCHAR *pSrcBufVA,
70166 + OUT UINT *pSrcBufLen);
70169 +BOOLEAN RTMP_FillTxBlkInfo(
70170 + IN RTMP_ADAPTER *pAd,
70171 + IN TX_BLK *pTxBlk);
70174 +PRTMP_SCATTER_GATHER_LIST
70175 +rt_get_sg_list_from_packet(PNDIS_PACKET pPacket, RTMP_SCATTER_GATHER_LIST *sg);
70178 + void announce_802_3_packet(
70179 + IN PRTMP_ADAPTER pAd,
70180 + IN PNDIS_PACKET pPacket);
70183 +UINT BA_Reorder_AMSDU_Annnounce(
70184 + IN PRTMP_ADAPTER pAd,
70185 + IN PNDIS_PACKET pPacket);
70188 +UINT Handle_AMSDU_Packet(
70189 + IN PRTMP_ADAPTER pAd,
70191 + IN ULONG DataSize,
70192 + IN UCHAR FromWhichBSSID);
70195 +void convert_802_11_to_802_3_packet(
70196 + IN PRTMP_ADAPTER pAd,
70197 + IN PNDIS_PACKET pPacket,
70198 + IN PUCHAR p8023hdr,
70200 + IN ULONG DataSize,
70201 + IN UCHAR FromWhichBSSID);
70204 +PNET_DEV get_netdev_from_bssid(
70205 + IN PRTMP_ADAPTER pAd,
70206 + IN UCHAR FromWhichBSSID);
70209 +PNDIS_PACKET duplicate_pkt(
70210 + IN PRTMP_ADAPTER pAd,
70211 + IN PUCHAR pHeader802_3,
70214 + IN ULONG DataSize,
70215 + IN UCHAR FromWhichBSSID);
70218 +PNDIS_PACKET duplicate_pkt_with_TKIP_MIC(
70219 + IN PRTMP_ADAPTER pAd,
70220 + IN PNDIS_PACKET pOldPkt);
70222 +PNDIS_PACKET duplicate_pkt_with_VLAN(
70223 + IN PRTMP_ADAPTER pAd,
70224 + IN PUCHAR pHeader802_3,
70227 + IN ULONG DataSize,
70228 + IN UCHAR FromWhichBSSID);
70230 +PNDIS_PACKET duplicate_pkt_with_WPI(
70231 + IN PRTMP_ADAPTER pAd,
70232 + IN PNDIS_PACKET pPacket,
70233 + IN UINT32 ext_head_len,
70234 + IN UINT32 ext_tail_len);
70236 +UCHAR VLAN_8023_Header_Copy(
70237 + IN PRTMP_ADAPTER pAd,
70238 + IN PUCHAR pHeader802_3,
70240 + OUT PUCHAR pData,
70241 + IN UCHAR FromWhichBSSID);
70243 +#ifdef DOT11_N_SUPPORT
70244 +void ba_flush_reordering_timeout_mpdus(
70245 + IN PRTMP_ADAPTER pAd,
70246 + IN PBA_REC_ENTRY pBAEntry,
70250 +VOID BAOriSessionSetUp(
70251 + IN PRTMP_ADAPTER pAd,
70252 + IN MAC_TABLE_ENTRY *pEntry,
70254 + IN USHORT TimeOut,
70255 + IN ULONG DelayTime,
70256 + IN BOOLEAN isForced);
70258 +VOID BASessionTearDownALL(
70259 + IN OUT PRTMP_ADAPTER pAd,
70261 +#endif // DOT11_N_SUPPORT //
70263 +BOOLEAN OS_Need_Clone_Packet(void);
70266 +VOID build_tx_packet(
70267 + IN PRTMP_ADAPTER pAd,
70268 + IN PNDIS_PACKET pPacket,
70269 + IN PUCHAR pFrame,
70270 + IN ULONG FrameLen);
70273 +VOID BAOriSessionTearDown(
70274 + IN OUT PRTMP_ADAPTER pAd,
70277 + IN BOOLEAN bPassive,
70278 + IN BOOLEAN bForceSend);
70280 +VOID BARecSessionTearDown(
70281 + IN OUT PRTMP_ADAPTER pAd,
70284 + IN BOOLEAN bPassive);
70286 +BOOLEAN ba_reordering_resource_init(PRTMP_ADAPTER pAd, int num);
70287 +void ba_reordering_resource_release(PRTMP_ADAPTER pAd);
70289 +ULONG AutoChBssInsertEntry(
70290 + IN PRTMP_ADAPTER pAd,
70291 + IN PUCHAR pBssid,
70293 + IN UCHAR SsidLen,
70294 + IN UCHAR ChannelNo,
70297 +void AutoChBssTableInit(
70298 + IN PRTMP_ADAPTER pAd);
70300 +void ChannelInfoInit(
70301 + IN PRTMP_ADAPTER pAd);
70303 +void AutoChBssTableDestroy(
70304 + IN PRTMP_ADAPTER pAd);
70306 +void ChannelInfoDestroy(
70307 + IN PRTMP_ADAPTER pAd);
70309 +UCHAR New_ApAutoSelectChannel(
70310 + IN PRTMP_ADAPTER pAd);
70313 +#ifdef NINTENDO_AP
70314 +VOID InitNINTENDO_TABLE(
70315 + IN PRTMP_ADAPTER pAd);
70317 +UCHAR CheckNINTENDO_TABLE(
70318 + IN PRTMP_ADAPTER pAd,
70320 + UCHAR DS_SsidLen,
70321 + PUCHAR pDS_Addr);
70323 +UCHAR DelNINTENDO_ENTRY(
70324 + IN PRTMP_ADAPTER pAd,
70325 + UCHAR * pDS_Addr);
70327 +VOID RTMPIoctlNintendoCapable(
70328 + IN PRTMP_ADAPTER pAd,
70329 + IN struct iwreq *wrq);
70331 +VOID RTMPIoctlNintendoGetTable(
70332 + IN PRTMP_ADAPTER pAd,
70333 + IN struct iwreq *wrq);
70335 +VOID RTMPIoctlNintendoSetTable(
70336 + IN PRTMP_ADAPTER pAd,
70337 + IN struct iwreq *wrq);
70339 +#endif // NINTENDO_AP //
70341 +BOOLEAN rtstrmactohex(
70345 +BOOLEAN rtstrcasecmp(
70349 +char *rtstrstruncasecmp(
70354 + IN const char * s1,
70355 + IN const char * s2);
70359 + IN const char * ct);
70363 + unsigned int *addr);
70365 +////////// common ioctl functions //////////
70366 +INT Set_DriverVersion_Proc(
70367 + IN PRTMP_ADAPTER pAd,
70370 +INT Set_CountryRegion_Proc(
70371 + IN PRTMP_ADAPTER pAd,
70374 +INT Set_CountryRegionABand_Proc(
70375 + IN PRTMP_ADAPTER pAd,
70378 +INT Set_WirelessMode_Proc(
70379 + IN PRTMP_ADAPTER pAd,
70382 +INT Set_Channel_Proc(
70383 + IN PRTMP_ADAPTER pAd,
70386 +INT Set_ShortSlot_Proc(
70387 + IN PRTMP_ADAPTER pAd,
70390 +INT Set_TxPower_Proc(
70391 + IN PRTMP_ADAPTER pAd,
70394 +INT Set_BGProtection_Proc(
70395 + IN PRTMP_ADAPTER pAd,
70398 +INT Set_TxPreamble_Proc(
70399 + IN PRTMP_ADAPTER pAd,
70402 +INT Set_RTSThreshold_Proc(
70403 + IN PRTMP_ADAPTER pAd,
70406 +INT Set_FragThreshold_Proc(
70407 + IN PRTMP_ADAPTER pAd,
70410 +INT Set_TxBurst_Proc(
70411 + IN PRTMP_ADAPTER pAd,
70414 +#ifdef AGGREGATION_SUPPORT
70415 +INT Set_PktAggregate_Proc(
70416 + IN PRTMP_ADAPTER pAd,
70420 +INT Set_IEEE80211H_Proc(
70421 + IN PRTMP_ADAPTER pAd,
70425 +INT Set_Debug_Proc(
70426 + IN PRTMP_ADAPTER pAd,
70430 +INT Show_DescInfo_Proc(
70431 + IN PRTMP_ADAPTER pAd,
70434 +INT Set_ResetStatCounter_Proc(
70435 + IN PRTMP_ADAPTER pAd,
70438 +#ifdef DOT11_N_SUPPORT
70439 +INT Set_BASetup_Proc(
70440 + IN PRTMP_ADAPTER pAd,
70443 +INT Set_BADecline_Proc(
70444 + IN PRTMP_ADAPTER pAd,
70447 +INT Set_BAOriTearDown_Proc(
70448 + IN PRTMP_ADAPTER pAd,
70451 +INT Set_BARecTearDown_Proc(
70452 + IN PRTMP_ADAPTER pAd,
70455 +INT Set_HtBw_Proc(
70456 + IN PRTMP_ADAPTER pAd,
70459 +INT Set_HtMcs_Proc(
70460 + IN PRTMP_ADAPTER pAd,
70463 +INT Set_HtGi_Proc(
70464 + IN PRTMP_ADAPTER pAd,
70467 +INT Set_HtOpMode_Proc(
70468 + IN PRTMP_ADAPTER pAd,
70471 +INT Set_HtStbc_Proc(
70472 + IN PRTMP_ADAPTER pAd,
70475 +INT Set_HtHtc_Proc(
70476 + IN PRTMP_ADAPTER pAd,
70479 +INT Set_HtExtcha_Proc(
70480 + IN PRTMP_ADAPTER pAd,
70483 +INT Set_HtMpduDensity_Proc(
70484 + IN PRTMP_ADAPTER pAd,
70487 +INT Set_HtBaWinSize_Proc(
70488 + IN PRTMP_ADAPTER pAd,
70491 +INT Set_HtRdg_Proc(
70492 + IN PRTMP_ADAPTER pAd,
70495 +INT Set_HtLinkAdapt_Proc(
70496 + IN PRTMP_ADAPTER pAd,
70499 +INT Set_HtAmsdu_Proc(
70500 + IN PRTMP_ADAPTER pAd,
70503 +INT Set_HtAutoBa_Proc(
70504 + IN PRTMP_ADAPTER pAd,
70507 +INT Set_HtProtect_Proc(
70508 + IN PRTMP_ADAPTER pAd,
70511 +INT Set_HtMimoPs_Proc(
70512 + IN PRTMP_ADAPTER pAd,
70516 +INT Set_ForceShortGI_Proc(
70517 + IN PRTMP_ADAPTER pAd,
70520 +INT Set_ForceGF_Proc(
70521 + IN PRTMP_ADAPTER pAd,
70525 + IN PRTMP_ADAPTER pAd);
70527 +INT Set_SendPSMPAction_Proc(
70528 + IN PRTMP_ADAPTER pAd,
70531 +INT Set_HtMIMOPSmode_Proc(
70532 + IN PRTMP_ADAPTER pAd,
70536 +INT Set_HtTxBASize_Proc(
70537 + IN PRTMP_ADAPTER pAd,
70539 +#endif // DOT11_N_SUPPORT //
70543 +#ifdef CONFIG_STA_SUPPORT
70545 +VOID RTMPSendDLSTearDownFrame(
70546 + IN PRTMP_ADAPTER pAd,
70549 +#ifdef DOT11_N_SUPPORT
70551 +VOID QueryBATABLE(
70552 + IN PRTMP_ADAPTER pAd,
70553 + OUT PQUERYBA_TABLE pBAT);
70554 +#endif // DOT11_N_SUPPORT //
70556 +#ifdef WPA_SUPPLICANT_SUPPORT
70557 +INT WpaCheckEapCode(
70558 + IN PRTMP_ADAPTER pAd,
70559 + IN PUCHAR pFrame,
70560 + IN USHORT FrameLen,
70561 + IN USHORT OffSet);
70563 +VOID WpaSendMicFailureToWpaSupplicant(
70564 + IN PRTMP_ADAPTER pAd,
70565 + IN BOOLEAN bUnicast);
70567 +VOID SendAssocIEsToWpaSupplicant(
70568 + IN PRTMP_ADAPTER pAd);
70569 +#endif // WPA_SUPPLICANT_SUPPORT //
70571 +#ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
70572 +int wext_notify_event_assoc(
70573 + IN RTMP_ADAPTER *pAd);
70574 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
70576 +#endif // CONFIG_STA_SUPPORT //
70580 +#ifdef DOT11_N_SUPPORT
70581 +VOID Handle_BSS_Width_Trigger_Events(
70582 + IN PRTMP_ADAPTER pAd);
70584 +void build_ext_channel_switch_ie(
70585 + IN PRTMP_ADAPTER pAd,
70586 + IN HT_EXT_CHANNEL_SWITCH_ANNOUNCEMENT_IE *pIE);
70587 +#endif // DOT11_N_SUPPORT //
70590 +BOOLEAN APRxDoneInterruptHandle(
70591 + IN PRTMP_ADAPTER pAd);
70593 +BOOLEAN STARxDoneInterruptHandle(
70594 + IN PRTMP_ADAPTER pAd,
70595 + IN BOOLEAN argc);
70597 +#ifdef DOT11_N_SUPPORT
70598 +// AMPDU packet indication
70599 +VOID Indicate_AMPDU_Packet(
70600 + IN PRTMP_ADAPTER pAd,
70601 + IN RX_BLK *pRxBlk,
70602 + IN UCHAR FromWhichBSSID);
70604 +// AMSDU packet indication
70605 +VOID Indicate_AMSDU_Packet(
70606 + IN PRTMP_ADAPTER pAd,
70607 + IN RX_BLK *pRxBlk,
70608 + IN UCHAR FromWhichBSSID);
70609 +#endif // DOT11_N_SUPPORT //
70611 +// Normal legacy Rx packet indication
70612 +VOID Indicate_Legacy_Packet(
70613 + IN PRTMP_ADAPTER pAd,
70614 + IN RX_BLK *pRxBlk,
70615 + IN UCHAR FromWhichBSSID);
70617 +VOID Indicate_EAPOL_Packet(
70618 + IN PRTMP_ADAPTER pAd,
70619 + IN RX_BLK *pRxBlk,
70620 + IN UCHAR FromWhichBSSID);
70622 +void update_os_packet_info(
70623 + IN PRTMP_ADAPTER pAd,
70624 + IN RX_BLK *pRxBlk,
70625 + IN UCHAR FromWhichBSSID);
70627 +void wlan_802_11_to_802_3_packet(
70628 + IN PRTMP_ADAPTER pAd,
70629 + IN RX_BLK *pRxBlk,
70630 + IN PUCHAR pHeader802_3,
70631 + IN UCHAR FromWhichBSSID);
70633 +UINT deaggregate_AMSDU_announce(
70634 + IN PRTMP_ADAPTER pAd,
70635 + PNDIS_PACKET pPacket,
70637 + IN ULONG DataSize);
70640 +#ifdef CONFIG_STA_SUPPORT
70641 +// remove LLC and get 802_3 Header
70642 +#define RTMP_802_11_REMOVE_LLC_AND_CONVERT_TO_802_3(_pRxBlk, _pHeader802_3) \
70644 + PUCHAR _pRemovedLLCSNAP = NULL, _pDA, _pSA; \
70646 + if (RX_BLK_TEST_FLAG(_pRxBlk, fRX_MESH)) \
70648 + _pDA = _pRxBlk->pHeader->Addr3; \
70649 + _pSA = (PUCHAR)_pRxBlk->pHeader + sizeof(HEADER_802_11); \
70653 + if (RX_BLK_TEST_FLAG(_pRxBlk, fRX_INFRA)) \
70655 + _pDA = _pRxBlk->pHeader->Addr1; \
70656 + if (RX_BLK_TEST_FLAG(_pRxBlk, fRX_DLS)) \
70657 + _pSA = _pRxBlk->pHeader->Addr2; \
70659 + _pSA = _pRxBlk->pHeader->Addr3; \
70663 + _pDA = _pRxBlk->pHeader->Addr1; \
70664 + _pSA = _pRxBlk->pHeader->Addr2; \
70668 + CONVERT_TO_802_3(_pHeader802_3, _pDA, _pSA, _pRxBlk->pData, \
70669 + _pRxBlk->DataSize, _pRemovedLLCSNAP); \
70671 +#endif // CONFIG_STA_SUPPORT //
70674 +BOOLEAN APFowardWirelessStaToWirelessSta(
70675 + IN PRTMP_ADAPTER pAd,
70676 + IN PNDIS_PACKET pPacket,
70677 + IN ULONG FromWhichBSSID);
70679 +VOID Announce_or_Forward_802_3_Packet(
70680 + IN PRTMP_ADAPTER pAd,
70681 + IN PNDIS_PACKET pPacket,
70682 + IN UCHAR FromWhichBSSID);
70684 +VOID Sta_Announce_or_Forward_802_3_Packet(
70685 + IN PRTMP_ADAPTER pAd,
70686 + IN PNDIS_PACKET pPacket,
70687 + IN UCHAR FromWhichBSSID);
70690 +#ifdef CONFIG_STA_SUPPORT
70691 +#define ANNOUNCE_OR_FORWARD_802_3_PACKET(_pAd, _pPacket, _FromWhichBSS)\
70692 + Sta_Announce_or_Forward_802_3_Packet(_pAd, _pPacket, _FromWhichBSS);
70693 + //announce_802_3_packet(_pAd, _pPacket);
70694 +#endif // CONFIG_STA_SUPPORT //
70697 +PNDIS_PACKET DuplicatePacket(
70698 + IN PRTMP_ADAPTER pAd,
70699 + IN PNDIS_PACKET pPacket,
70700 + IN UCHAR FromWhichBSSID);
70703 +PNDIS_PACKET ClonePacket(
70704 + IN PRTMP_ADAPTER pAd,
70705 + IN PNDIS_PACKET pPacket,
70707 + IN ULONG DataSize);
70710 +// Normal, AMPDU or AMSDU
70711 +VOID CmmRxnonRalinkFrameIndicate(
70712 + IN PRTMP_ADAPTER pAd,
70713 + IN RX_BLK *pRxBlk,
70714 + IN UCHAR FromWhichBSSID);
70716 +VOID CmmRxRalinkFrameIndicate(
70717 + IN PRTMP_ADAPTER pAd,
70718 + IN MAC_TABLE_ENTRY *pEntry,
70719 + IN RX_BLK *pRxBlk,
70720 + IN UCHAR FromWhichBSSID);
70722 +VOID Update_Rssi_Sample(
70723 + IN PRTMP_ADAPTER pAd,
70724 + IN RSSI_SAMPLE *pRssi,
70725 + IN PRXWI_STRUC pRxWI);
70727 +PNDIS_PACKET GetPacketFromRxRing(
70728 + IN PRTMP_ADAPTER pAd,
70729 + OUT PRT28XX_RXD_STRUC pSaveRxD,
70730 + OUT BOOLEAN *pbReschedule,
70731 + IN OUT UINT32 *pRxPending);
70733 +PNDIS_PACKET RTMPDeFragmentDataFrame(
70734 + IN PRTMP_ADAPTER pAd,
70735 + IN RX_BLK *pRxBlk);
70737 +////////////////////////////////////////
70743 +#ifdef SNMP_SUPPORT
70744 +//for snmp , kathy
70745 +typedef struct _DefaultKeyIdxValue
70749 +} DefaultKeyIdxValue, *PDefaultKeyIdxValue;
70753 +#ifdef CONFIG_STA_SUPPORT
70755 + DIDmsg_lnxind_wlansniffrm = 0x00000044,
70756 + DIDmsg_lnxind_wlansniffrm_hosttime = 0x00010044,
70757 + DIDmsg_lnxind_wlansniffrm_mactime = 0x00020044,
70758 + DIDmsg_lnxind_wlansniffrm_channel = 0x00030044,
70759 + DIDmsg_lnxind_wlansniffrm_rssi = 0x00040044,
70760 + DIDmsg_lnxind_wlansniffrm_sq = 0x00050044,
70761 + DIDmsg_lnxind_wlansniffrm_signal = 0x00060044,
70762 + DIDmsg_lnxind_wlansniffrm_noise = 0x00070044,
70763 + DIDmsg_lnxind_wlansniffrm_rate = 0x00080044,
70764 + DIDmsg_lnxind_wlansniffrm_istx = 0x00090044,
70765 + DIDmsg_lnxind_wlansniffrm_frmlen = 0x000A0044
70768 + P80211ENUM_msgitem_status_no_value = 0x00
70771 + P80211ENUM_truth_false = 0x00,
70772 + P80211ENUM_truth_true = 0x01
70775 +/* Definition from madwifi */
70781 +} p80211item_uint32_t;
70786 +#define WLAN_DEVNAMELEN_MAX 16
70787 + UINT8 devname[WLAN_DEVNAMELEN_MAX];
70788 + p80211item_uint32_t hosttime;
70789 + p80211item_uint32_t mactime;
70790 + p80211item_uint32_t channel;
70791 + p80211item_uint32_t rssi;
70792 + p80211item_uint32_t sq;
70793 + p80211item_uint32_t signal;
70794 + p80211item_uint32_t noise;
70795 + p80211item_uint32_t rate;
70796 + p80211item_uint32_t istx;
70797 + p80211item_uint32_t frmlen;
70798 +} wlan_ng_prism2_header;
70800 +/* The radio capture header precedes the 802.11 header. */
70801 +typedef struct PACKED _ieee80211_radiotap_header {
70802 + UINT8 it_version; /* Version 0. Only increases
70803 + * for drastic changes,
70804 + * introduction of compatible
70805 + * new fields does not count.
70808 + UINT16 it_len; /* length of the whole
70809 + * header in bytes, including
70810 + * it_version, it_pad,
70811 + * it_len, and data fields.
70813 + UINT32 it_present; /* A bitmap telling which
70814 + * fields are present. Set bit 31
70815 + * (0x80000000) to extend the
70816 + * bitmap by another 32 bits.
70817 + * Additional extensions are made
70818 + * by setting bit 31.
70820 +}ieee80211_radiotap_header ;
70822 +enum ieee80211_radiotap_type {
70823 + IEEE80211_RADIOTAP_TSFT = 0,
70824 + IEEE80211_RADIOTAP_FLAGS = 1,
70825 + IEEE80211_RADIOTAP_RATE = 2,
70826 + IEEE80211_RADIOTAP_CHANNEL = 3,
70827 + IEEE80211_RADIOTAP_FHSS = 4,
70828 + IEEE80211_RADIOTAP_DBM_ANTSIGNAL = 5,
70829 + IEEE80211_RADIOTAP_DBM_ANTNOISE = 6,
70830 + IEEE80211_RADIOTAP_LOCK_QUALITY = 7,
70831 + IEEE80211_RADIOTAP_TX_ATTENUATION = 8,
70832 + IEEE80211_RADIOTAP_DB_TX_ATTENUATION = 9,
70833 + IEEE80211_RADIOTAP_DBM_TX_POWER = 10,
70834 + IEEE80211_RADIOTAP_ANTENNA = 11,
70835 + IEEE80211_RADIOTAP_DB_ANTSIGNAL = 12,
70836 + IEEE80211_RADIOTAP_DB_ANTNOISE = 13
70839 +#define WLAN_RADIOTAP_PRESENT ( \
70840 + (1 << IEEE80211_RADIOTAP_TSFT) | \
70841 + (1 << IEEE80211_RADIOTAP_FLAGS) | \
70842 + (1 << IEEE80211_RADIOTAP_RATE) | \
70845 +typedef struct _wlan_radiotap_header {
70846 + ieee80211_radiotap_header wt_ihdr;
70850 +} wlan_radiotap_header;
70851 +/* Definition from madwifi */
70853 +void send_monitor_packets(
70854 + IN PRTMP_ADAPTER pAd,
70855 + IN RX_BLK *pRxBlk);
70857 +#if WIRELESS_EXT >= 12
70858 +// This function will be called when query /proc
70859 +struct iw_statistics *rt28xx_get_wireless_stats(
70860 + IN struct net_device *net_dev);
70863 +VOID RTMPSetDesiredRates(
70864 + IN PRTMP_ADAPTER pAdapter,
70866 +#endif // CONFIG_STA_SUPPORT //
70868 +INT Set_FixedTxMode_Proc(
70869 + IN PRTMP_ADAPTER pAd,
70872 +#ifdef CONFIG_APSTA_MIXED_SUPPORT
70873 +INT Set_OpMode_Proc(
70874 + IN PRTMP_ADAPTER pAd,
70876 +#endif // CONFIG_APSTA_MIXED_SUPPORT //
70878 +static inline char* GetPhyMode(
70888 +#ifdef DOT11_N_SUPPORT
70892 + case MODE_HTGREENFIELD:
70894 +#endif // DOT11_N_SUPPORT //
70901 +static inline char* GetBW(
70911 +#ifdef DOT11_N_SUPPORT
70914 +#endif // DOT11_N_SUPPORT //
70921 +VOID RT28xxThreadTerminate(
70922 + IN RTMP_ADAPTER *pAd);
70924 +BOOLEAN RT28XXChipsetCheck(
70925 + IN void *_dev_p);
70927 +BOOLEAN RT28XXNetDevInit(
70929 + IN struct net_device *net_dev,
70930 + IN RTMP_ADAPTER *pAd);
70932 +BOOLEAN RT28XXProbePostConfig(
70934 + IN RTMP_ADAPTER *pAd,
70937 +VOID RT28XXDMADisable(
70938 + IN RTMP_ADAPTER *pAd);
70940 +VOID RT28XXDMAEnable(
70941 + IN RTMP_ADAPTER *pAd);
70943 +VOID RT28xx_UpdateBeaconToAsic(
70944 + IN RTMP_ADAPTER * pAd,
70946 + IN ULONG BeaconLen,
70947 + IN ULONG UpdatePos);
70950 + IN struct net_device *net_dev,
70951 + IN OUT struct ifreq *rq,
70955 +#ifdef CONFIG_STA_SUPPORT
70956 +INT rt28xx_sta_ioctl(
70957 + IN struct net_device *net_dev,
70958 + IN OUT struct ifreq *rq,
70960 +#endif // CONFIG_STA_SUPPORT //
70962 +BOOLEAN RT28XXSecurityKeyAdd(
70963 + IN PRTMP_ADAPTER pAd,
70966 + IN MAC_TABLE_ENTRY *pEntry);
70968 +////////////////////////////////////////
70969 +PNDIS_PACKET GetPacketFromRxRing(
70970 + IN PRTMP_ADAPTER pAd,
70971 + OUT PRT28XX_RXD_STRUC pSaveRxD,
70972 + OUT BOOLEAN *pbReschedule,
70973 + IN OUT UINT32 *pRxPending);
70976 +void kill_thread_task(PRTMP_ADAPTER pAd);
70978 +void tbtt_tasklet(unsigned long data);
70981 +VOID AsicTurnOffRFClk(
70982 + IN PRTMP_ADAPTER pAd,
70983 + IN UCHAR Channel);
70985 +VOID AsicTurnOnRFClk(
70986 + IN PRTMP_ADAPTER pAd,
70987 + IN UCHAR Channel);
70990 +NTSTATUS RT30xxWriteRFRegister(
70991 + IN PRTMP_ADAPTER pAd,
70995 +NTSTATUS RT30xxReadRFRegister(
70996 + IN PRTMP_ADAPTER pAd,
70998 + IN PUCHAR pValue);
71000 +//2008/09/11:KH add to support efuse<--
71001 +UCHAR eFuseReadRegisters(
71002 + IN PRTMP_ADAPTER pAd,
71003 + IN USHORT Offset,
71004 + IN USHORT Length,
71005 + OUT USHORT* pData);
71007 +VOID eFuseReadPhysical(
71008 + IN PRTMP_ADAPTER pAd,
71009 + IN PUSHORT lpInBuffer,
71010 + IN ULONG nInBufferSize,
71011 + OUT PUSHORT lpOutBuffer,
71012 + IN ULONG nOutBufferSize
71015 +NTSTATUS eFuseRead(
71016 + IN PRTMP_ADAPTER pAd,
71017 + IN USHORT Offset,
71018 + OUT PUCHAR pData,
71019 + IN USHORT Length);
71021 +VOID eFusePhysicalWriteRegisters(
71022 + IN PRTMP_ADAPTER pAd,
71023 + IN USHORT Offset,
71024 + IN USHORT Length,
71025 + OUT USHORT* pData);
71027 +NTSTATUS eFuseWriteRegisters(
71028 + IN PRTMP_ADAPTER pAd,
71029 + IN USHORT Offset,
71030 + IN USHORT Length,
71031 + IN USHORT* pData);
71033 +VOID eFuseWritePhysical(
71034 + IN PRTMP_ADAPTER pAd,
71035 + PUSHORT lpInBuffer,
71036 + ULONG nInBufferSize,
71037 + PUCHAR lpOutBuffer,
71038 + ULONG nOutBufferSize
71041 +NTSTATUS eFuseWrite(
71042 + IN PRTMP_ADAPTER pAd,
71043 + IN USHORT Offset,
71045 + IN USHORT length);
71047 +INT set_eFuseGetFreeBlockCount_Proc(
71048 + IN PRTMP_ADAPTER pAd,
71051 +INT set_eFusedump_Proc(
71052 + IN PRTMP_ADAPTER pAd,
71055 +INT set_eFuseLoadFromBin_Proc(
71056 + IN PRTMP_ADAPTER pAd,
71059 +NTSTATUS eFuseWriteRegistersFromBin(
71060 + IN PRTMP_ADAPTER pAd,
71061 + IN USHORT Offset,
71062 + IN USHORT Length,
71063 + IN USHORT* pData);
71065 +VOID eFusePhysicalReadRegisters(
71066 + IN PRTMP_ADAPTER pAd,
71067 + IN USHORT Offset,
71068 + IN USHORT Length,
71069 + OUT USHORT* pData);
71071 +NDIS_STATUS NICLoadEEPROM(
71072 + IN PRTMP_ADAPTER pAd);
71074 +BOOLEAN bNeedLoadEEPROM(
71075 + IN PRTMP_ADAPTER pAd);
71076 +//2008/09/11:KH add to support efuse-->
71077 +#endif // RT30xx //
71080 +// add by johnli, RF power sequence setup
71081 +VOID RT30xxLoadRFNormalModeSetup(
71082 + IN PRTMP_ADAPTER pAd);
71084 +VOID RT30xxLoadRFSleepModeSetup(
71085 + IN PRTMP_ADAPTER pAd);
71087 +VOID RT30xxReverseRFSleepModeSetup(
71088 + IN PRTMP_ADAPTER pAd);
71090 +#endif // RT30xx //
71094 +// Function Prototype in rtusb_bulk.c
71096 +VOID RTUSBInitTxDesc(
71097 + IN PRTMP_ADAPTER pAd,
71098 + IN PTX_CONTEXT pTxContext,
71099 + IN UCHAR BulkOutPipeId,
71100 + IN usb_complete_t Func);
71102 +VOID RTUSBInitHTTxDesc(
71103 + IN PRTMP_ADAPTER pAd,
71104 + IN PHT_TX_CONTEXT pTxContext,
71105 + IN UCHAR BulkOutPipeId,
71106 + IN ULONG BulkOutSize,
71107 + IN usb_complete_t Func);
71109 +VOID RTUSBInitRxDesc(
71110 + IN PRTMP_ADAPTER pAd,
71111 + IN PRX_CONTEXT pRxContext);
71113 +VOID RTUSBCleanUpDataBulkOutQueue(
71114 + IN PRTMP_ADAPTER pAd);
71116 +VOID RTUSBCancelPendingBulkOutIRP(
71117 + IN PRTMP_ADAPTER pAd);
71119 +VOID RTUSBBulkOutDataPacket(
71120 + IN PRTMP_ADAPTER pAd,
71121 + IN UCHAR BulkOutPipeId,
71124 +VOID RTUSBBulkOutNullFrame(
71125 + IN PRTMP_ADAPTER pAd);
71127 +VOID RTUSBBulkOutRTSFrame(
71128 + IN PRTMP_ADAPTER pAd);
71130 +VOID RTUSBCancelPendingBulkInIRP(
71131 + IN PRTMP_ADAPTER pAd);
71133 +VOID RTUSBCancelPendingIRPs(
71134 + IN PRTMP_ADAPTER pAd);
71136 +VOID RTUSBBulkOutMLMEPacket(
71137 + IN PRTMP_ADAPTER pAd,
71140 +VOID RTUSBBulkOutPsPoll(
71141 + IN PRTMP_ADAPTER pAd);
71143 +VOID RTUSBCleanUpMLMEBulkOutQueue(
71144 + IN PRTMP_ADAPTER pAd);
71146 +VOID RTUSBKickBulkOut(
71147 + IN PRTMP_ADAPTER pAd);
71149 +VOID RTUSBBulkReceive(
71150 + IN PRTMP_ADAPTER pAd);
71153 + IN RTMP_ADAPTER *pAd);
71155 +VOID RTUSBInitRxDesc(
71156 + IN PRTMP_ADAPTER pAd,
71157 + IN PRX_CONTEXT pRxContext);
71159 +VOID RTUSBBulkRxHandle(
71160 + IN unsigned long data);
71163 +// Function Prototype in rtusb_io.c
71165 +NTSTATUS RTUSBMultiRead(
71166 + IN PRTMP_ADAPTER pAd,
71167 + IN USHORT Offset,
71168 + OUT PUCHAR pData,
71169 + IN USHORT length);
71171 +NTSTATUS RTUSBMultiWrite(
71172 + IN PRTMP_ADAPTER pAd,
71173 + IN USHORT Offset,
71175 + IN USHORT length);
71177 +NTSTATUS RTUSBMultiWrite_OneByte(
71178 + IN PRTMP_ADAPTER pAd,
71179 + IN USHORT Offset,
71180 + IN PUCHAR pData);
71182 +NTSTATUS RTUSBReadBBPRegister(
71183 + IN PRTMP_ADAPTER pAd,
71185 + IN PUCHAR pValue);
71187 +NTSTATUS RTUSBWriteBBPRegister(
71188 + IN PRTMP_ADAPTER pAd,
71192 +NTSTATUS RTUSBWriteRFRegister(
71193 + IN PRTMP_ADAPTER pAd,
71194 + IN UINT32 Value);
71196 +NTSTATUS RTUSB_VendorRequest(
71197 + IN PRTMP_ADAPTER pAd,
71198 + IN UINT32 TransferFlags,
71199 + IN UCHAR ReservedBits,
71200 + IN UCHAR Request,
71203 + IN PVOID TransferBuffer,
71204 + IN UINT32 TransferBufferLength);
71206 +NTSTATUS RTUSBReadEEPROM(
71207 + IN PRTMP_ADAPTER pAd,
71208 + IN USHORT Offset,
71209 + OUT PUCHAR pData,
71210 + IN USHORT length);
71212 +NTSTATUS RTUSBWriteEEPROM(
71213 + IN PRTMP_ADAPTER pAd,
71214 + IN USHORT Offset,
71216 + IN USHORT length);
71218 +VOID RTUSBPutToSleep(
71219 + IN PRTMP_ADAPTER pAd);
71221 +NTSTATUS RTUSBWakeUp(
71222 + IN PRTMP_ADAPTER pAd);
71224 +VOID RTUSBInitializeCmdQ(
71227 +NDIS_STATUS RTUSBEnqueueCmdFromNdis(
71228 + IN PRTMP_ADAPTER pAd,
71230 + IN BOOLEAN SetInformation,
71231 + IN PVOID pInformationBuffer,
71232 + IN UINT32 InformationBufferLength);
71234 +NDIS_STATUS RTUSBEnqueueInternalCmd(
71235 + IN PRTMP_ADAPTER pAd,
71237 + IN PVOID pInformationBuffer,
71238 + IN UINT32 InformationBufferLength);
71240 +VOID RTUSBDequeueCmd(
71242 + OUT PCmdQElmt *pcmdqelmt);
71244 +INT RTUSBCmdThread(
71245 + IN OUT PVOID Context);
71248 + IN OUT PVOID Context);
71250 +RT2870_TIMER_ENTRY *RT2870_TimerQ_Insert(
71251 + IN RTMP_ADAPTER *pAd,
71252 + IN RALINK_TIMER_STRUCT *pTimer);
71254 +BOOLEAN RT2870_TimerQ_Remove(
71255 + IN RTMP_ADAPTER *pAd,
71256 + IN RALINK_TIMER_STRUCT *pTimer);
71258 +void RT2870_TimerQ_Exit(
71259 + IN RTMP_ADAPTER *pAd);
71261 +void RT2870_TimerQ_Init(
71262 + IN RTMP_ADAPTER *pAd);
71264 +VOID RT2870_BssBeaconExit(
71265 + IN RTMP_ADAPTER *pAd);
71267 +VOID RT2870_BssBeaconStop(
71268 + IN RTMP_ADAPTER *pAd);
71270 +VOID RT2870_BssBeaconStart(
71271 + IN RTMP_ADAPTER * pAd);
71273 +VOID RT2870_BssBeaconInit(
71274 + IN RTMP_ADAPTER *pAd);
71276 +VOID RT2870_WatchDog(
71277 + IN RTMP_ADAPTER *pAd);
71279 +NTSTATUS RTUSBWriteMACRegister(
71280 + IN PRTMP_ADAPTER pAd,
71281 + IN USHORT Offset,
71282 + IN UINT32 Value);
71284 +NTSTATUS RTUSBReadMACRegister(
71285 + IN PRTMP_ADAPTER pAd,
71286 + IN USHORT Offset,
71287 + OUT PUINT32 pValue);
71289 +NTSTATUS RTUSBSingleWrite(
71290 + IN RTMP_ADAPTER *pAd,
71291 + IN USHORT Offset,
71292 + IN USHORT Value);
71294 +NTSTATUS RTUSBFirmwareRun(
71295 + IN PRTMP_ADAPTER pAd);
71297 +NTSTATUS RTUSBFirmwareWrite(
71298 + IN PRTMP_ADAPTER pAd,
71299 + IN PUCHAR pFwImage,
71302 +NTSTATUS RTUSBFirmwareOpmode(
71303 + IN PRTMP_ADAPTER pAd,
71304 + OUT PUINT32 pValue);
71306 +NTSTATUS RTUSBVenderReset(
71307 + IN PRTMP_ADAPTER pAd);
71309 +NDIS_STATUS RTUSBSetHardWareRegister(
71310 + IN PRTMP_ADAPTER pAdapter,
71313 +NDIS_STATUS RTUSBQueryHardWareRegister(
71314 + IN PRTMP_ADAPTER pAdapter,
71318 + IN PRTMP_ADAPTER pAd);
71321 +NDIS_STATUS CreateThreads(
71322 + IN struct net_device *net_dev );
71325 +VOID MacTableInitialize(
71326 + IN PRTMP_ADAPTER pAd);
71329 + IN PRTMP_ADAPTER pAd,
71332 +NDIS_STATUS RTMPWPAAddKeyProc(
71333 + IN PRTMP_ADAPTER pAd,
71336 +VOID AsicRxAntEvalAction(
71337 + IN PRTMP_ADAPTER pAd);
71340 + IN PRTMP_ADAPTER pAd,
71341 + IN PUCHAR pHeader802_3,
71344 + IN ULONG DataSize,
71345 + OUT PNDIS_PACKET *ppPacket);
71347 +UINT deaggregate_AMSDU_announce(
71348 + IN PRTMP_ADAPTER pAd,
71349 + PNDIS_PACKET pPacket,
71351 + IN ULONG DataSize);
71353 +NDIS_STATUS RTMPCheckRxError(
71354 + IN PRTMP_ADAPTER pAd,
71355 + IN PHEADER_802_11 pHeader,
71356 + IN PRXWI_STRUC pRxWI,
71357 + IN PRT28XX_RXD_STRUC pRxINFO);
71360 +VOID RTUSBMlmeHardTransmit(
71361 + IN PRTMP_ADAPTER pAd,
71362 + IN PMGMT_STRUC pMgmt);
71365 + IN PVOID Context);
71368 +// Function Prototype in rtusb_data.c
71370 +NDIS_STATUS RTUSBFreeDescriptorRequest(
71371 + IN PRTMP_ADAPTER pAd,
71372 + IN UCHAR BulkOutPipeId,
71373 + IN UINT32 NumberRequired);
71376 +BOOLEAN RTUSBNeedQueueBackForAgg(
71377 + IN RTMP_ADAPTER *pAd,
71378 + IN UCHAR BulkOutPipeId);
71381 +VOID RTMPWriteTxInfo(
71382 + IN PRTMP_ADAPTER pAd,
71383 + IN PTXINFO_STRUC pTxInfo,
71384 + IN USHORT USBDMApktLen,
71386 + IN UCHAR QueueSel,
71387 + IN UCHAR NextValid,
71388 + IN UCHAR TxBurst);
71391 +// Function Prototype in cmm_data_2870.c
71393 +USHORT RtmpUSB_WriteSubTxResource(
71394 + IN PRTMP_ADAPTER pAd,
71395 + IN TX_BLK *pTxBlk,
71396 + IN BOOLEAN bIsLast,
71397 + OUT USHORT *FreeNumber);
71399 +USHORT RtmpUSB_WriteSingleTxResource(
71400 + IN PRTMP_ADAPTER pAd,
71401 + IN TX_BLK *pTxBlk,
71402 + IN BOOLEAN bIsLast,
71403 + OUT USHORT *FreeNumber);
71405 +USHORT RtmpUSB_WriteFragTxResource(
71406 + IN PRTMP_ADAPTER pAd,
71407 + IN TX_BLK *pTxBlk,
71408 + IN UCHAR fragNum,
71409 + OUT USHORT *FreeNumber);
71411 +USHORT RtmpUSB_WriteMultiTxResource(
71412 + IN PRTMP_ADAPTER pAd,
71413 + IN TX_BLK *pTxBlk,
71414 + IN UCHAR frameNum,
71415 + OUT USHORT *FreeNumber);
71417 +VOID RtmpUSB_FinalWriteTxResource(
71418 + IN PRTMP_ADAPTER pAd,
71419 + IN TX_BLK *pTxBlk,
71420 + IN USHORT totalMPDUSize,
71421 + IN USHORT TxIdx);
71423 +VOID RtmpUSBDataLastTxIdx(
71424 + IN PRTMP_ADAPTER pAd,
71426 + IN USHORT TxIdx);
71428 +VOID RtmpUSBDataKickOut(
71429 + IN PRTMP_ADAPTER pAd,
71430 + IN TX_BLK *pTxBlk,
71431 + IN UCHAR QueIdx);
71434 +int RtmpUSBMgmtKickOut(
71435 + IN RTMP_ADAPTER *pAd,
71437 + IN PNDIS_PACKET pPacket,
71438 + IN PUCHAR pSrcBufVA,
71439 + IN UINT SrcBufLen);
71441 +VOID RtmpUSBNullFrameKickOut(
71442 + IN RTMP_ADAPTER *pAd,
71444 + IN UCHAR *pNullFrame,
71445 + IN UINT32 frameLen);
71447 +VOID RT28xxUsbStaAsicForceWakeup(
71448 + IN PRTMP_ADAPTER pAd,
71449 + IN BOOLEAN bFromTx);
71451 +VOID RT28xxUsbStaAsicSleepThenAutoWakeup(
71452 + IN PRTMP_ADAPTER pAd,
71453 + IN USHORT TbttNumToNextWakeUp);
71455 +VOID RT28xxUsbMlmeRadioOn(
71456 + IN PRTMP_ADAPTER pAd);
71458 +VOID RT28xxUsbMlmeRadioOFF(
71459 + IN PRTMP_ADAPTER pAd);
71460 +#endif // RT2870 //
71462 +////////////////////////////////////////
71464 +VOID QBSS_LoadInit(
71465 + IN RTMP_ADAPTER *pAd);
71467 +UINT32 QBSS_LoadElementAppend(
71468 + IN RTMP_ADAPTER *pAd,
71469 + OUT UINT8 *buf_p);
71471 +VOID QBSS_LoadUpdate(
71472 + IN RTMP_ADAPTER *pAd);
71474 +///////////////////////////////////////
71475 +INT RTMPShowCfgValue(
71476 + IN PRTMP_ADAPTER pAd,
71480 +PCHAR RTMPGetRalinkAuthModeStr(
71481 + IN NDIS_802_11_AUTHENTICATION_MODE authMode);
71483 +PCHAR RTMPGetRalinkEncryModeStr(
71484 + IN USHORT encryMode);
71485 +//////////////////////////////////////
71487 +#ifdef CONFIG_STA_SUPPORT
71488 +VOID AsicStaBbpTuning(
71489 + IN PRTMP_ADAPTER pAd);
71491 +BOOLEAN StaAddMacTableEntry(
71492 + IN PRTMP_ADAPTER pAd,
71493 + IN PMAC_TABLE_ENTRY pEntry,
71494 + IN UCHAR MaxSupportedRateIn500Kbps,
71495 + IN HT_CAPABILITY_IE *pHtCapability,
71496 + IN UCHAR HtCapabilityLen,
71497 + IN USHORT CapabilityInfo);
71498 +#endif // CONFIG_STA_SUPPORT //
71500 +void RTMP_IndicateMediaState(
71501 + IN PRTMP_ADAPTER pAd);
71503 +VOID ReSyncBeaconTime(
71504 + IN PRTMP_ADAPTER pAd);
71506 +VOID RTMPSetAGCInitValue(
71507 + IN PRTMP_ADAPTER pAd,
71508 + IN UCHAR BandWidth);
71510 +int rt28xx_close(IN PNET_DEV dev);
71511 +int rt28xx_open(IN PNET_DEV dev);
71513 +__inline INT VIRTUAL_IF_UP(PRTMP_ADAPTER pAd)
71515 +extern VOID MeshMakeBeacon(IN PRTMP_ADAPTER pAd, IN UCHAR idx);
71516 +extern VOID MeshUpdateBeaconFrame(IN PRTMP_ADAPTER pAd, IN UCHAR idx);
71518 + if (VIRTUAL_IF_NUM(pAd) == 0)
71520 + if (rt28xx_open(pAd->net_dev) != 0)
71526 + VIRTUAL_IF_INC(pAd);
71530 +__inline VOID VIRTUAL_IF_DOWN(PRTMP_ADAPTER pAd)
71532 + VIRTUAL_IF_DEC(pAd);
71533 + if (VIRTUAL_IF_NUM(pAd) == 0)
71534 + rt28xx_close(pAd->net_dev);
71539 +#endif // __RTMP_H__
71542 +++ b/drivers/staging/rt3070/rtmp_type.h
71545 + *************************************************************************
71546 + * Ralink Tech Inc.
71547 + * 5F., No.36, Taiyuan St., Jhubei City,
71548 + * Hsinchu County 302,
71551 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
71553 + * This program is free software; you can redistribute it and/or modify *
71554 + * it under the terms of the GNU General Public License as published by *
71555 + * the Free Software Foundation; either version 2 of the License, or *
71556 + * (at your option) any later version. *
71558 + * This program is distributed in the hope that it will be useful, *
71559 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
71560 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
71561 + * GNU General Public License for more details. *
71563 + * You should have received a copy of the GNU General Public License *
71564 + * along with this program; if not, write to the *
71565 + * Free Software Foundation, Inc., *
71566 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
71568 + *************************************************************************
71575 + Revision History:
71577 + -------- ---------- ----------------------------------------------
71578 + Name Date Modification logs
71579 + Paul Lin 1-2-2004
71581 +#ifndef __RTMP_TYPE_H__
71582 +#define __RTMP_TYPE_H__
71585 +#define PACKED __attribute__ ((packed))
71587 +// Put platform dependent declaration here
71588 +// For example, linux type definition
71589 +typedef unsigned char UINT8;
71590 +typedef unsigned short UINT16;
71591 +typedef unsigned int UINT32;
71592 +typedef unsigned long long UINT64;
71593 +typedef int INT32;
71594 +typedef long long INT64;
71596 +typedef unsigned char * PUINT8;
71597 +typedef unsigned short * PUINT16;
71598 +typedef unsigned int * PUINT32;
71599 +typedef unsigned long long * PUINT64;
71600 +typedef int * PINT32;
71601 +typedef long long * PINT64;
71603 +typedef signed char CHAR;
71604 +typedef signed short SHORT;
71605 +typedef signed int INT;
71606 +typedef signed long LONG;
71607 +typedef signed long long LONGLONG;
71610 +typedef unsigned char UCHAR;
71611 +typedef unsigned short USHORT;
71612 +typedef unsigned int UINT;
71613 +typedef unsigned long ULONG;
71614 +typedef unsigned long long ULONGLONG;
71616 +typedef unsigned char BOOLEAN;
71617 +typedef void VOID;
71619 +typedef VOID * PVOID;
71620 +typedef CHAR * PCHAR;
71621 +typedef UCHAR * PUCHAR;
71622 +typedef USHORT * PUSHORT;
71623 +typedef LONG * PLONG;
71624 +typedef ULONG * PULONG;
71625 +typedef UINT * PUINT;
71627 +typedef unsigned int NDIS_MEDIA_STATE;
71629 +typedef union _LARGE_INTEGER {
71637 +#endif // __RTMP_TYPE_H__
71640 +++ b/drivers/staging/rt3070/rt_profile.c
71643 + *************************************************************************
71644 + * Ralink Tech Inc.
71645 + * 5F., No.36, Taiyuan St., Jhubei City,
71646 + * Hsinchu County 302,
71649 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
71651 + * This program is free software; you can redistribute it and/or modify *
71652 + * it under the terms of the GNU General Public License as published by *
71653 + * the Free Software Foundation; either version 2 of the License, or *
71654 + * (at your option) any later version. *
71656 + * This program is distributed in the hope that it will be useful, *
71657 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
71658 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
71659 + * GNU General Public License for more details. *
71661 + * You should have received a copy of the GNU General Public License *
71662 + * along with this program; if not, write to the *
71663 + * Free Software Foundation, Inc., *
71664 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
71666 + *************************************************************************
71669 +#include "rt_config.h"
71671 +#ifdef DOT11_N_SUPPORT
71672 +static void HTParametersHook(
71673 + IN PRTMP_ADAPTER pAd,
71674 + IN CHAR *pValueStr,
71675 + IN CHAR *pInput);
71676 +#endif // DOT11_N_SUPPORT //
71678 +#define ETH_MAC_ADDR_STR_LEN 17 // in format of xx:xx:xx:xx:xx:xx
71680 +// We assume the s1 is a sting, s2 is a memory space with 6 bytes. and content of s1 will be changed.
71681 +BOOLEAN rtstrmactohex(char *s1, char *s2)
71684 + char *ptokS = s1, *ptokE = s1;
71686 + if (strlen(s1) != ETH_MAC_ADDR_STR_LEN)
71689 + while((*ptokS) != '\0')
71691 + if((ptokE = strchr(ptokS, ':')) != NULL)
71693 + if ((strlen(ptokS) != 2) || (!isxdigit(*ptokS)) || (!isxdigit(*(ptokS+1))))
71695 + AtoH(ptokS, &s2[i++], 1);
71698 + break; // parsing finished
71701 + return ( i == 6 ? TRUE : FALSE);
71706 +// we assume the s1 and s2 both are strings.
71707 +BOOLEAN rtstrcasecmp(char *s1, char *s2)
71709 + char *p1 = s1, *p2 = s2;
71711 + if (strlen(s1) != strlen(s2))
71714 + while(*p1 != '\0')
71716 + if((*p1 != *p2) && ((*p1 ^ *p2) != 0x20))
71725 +// we assume the s1 (buffer) and s2 (key) both are strings.
71726 +char * rtstrstruncasecmp(char * s1, char * s2)
71729 + char temp1, temp2;
71733 + return (char *) s1;
71741 + for(i=0; i<l2; i++)
71746 + if (('a' <= temp1) && (temp1 <= 'z'))
71747 + temp1 = 'A'+(temp1-'a');
71748 + if (('a' <= temp2) && (temp2 <= 'z'))
71749 + temp2 = 'A'+(temp2-'a');
71751 + if (temp1 != temp2)
71756 + return (char *) s1;
71761 + return NULL; // not found
71767 + * strstr - Find the first substring in a %NUL terminated string
71768 + * @s1: The string to be searched
71769 + * @s2: The string to search for
71771 +char * rtstrstr(const char * s1,const char * s2)
71777 + return (char *) s1;
71784 + if (!memcmp(s1,s2,l2))
71785 + return (char *) s1;
71793 + * rstrtok - Split a string into tokens
71794 + * @s: The string to be searched
71795 + * @ct: The characters to search for
71796 + * * WARNING: strtok is deprecated, use strsep instead. However strsep is not compatible with old architecture.
71799 +char * rstrtok(char * s,const char * ct)
71801 + char *sbegin, *send;
71803 + sbegin = s ? s : __rstrtok;
71809 + sbegin += strspn(sbegin,ct);
71810 + if (*sbegin == '\0')
71812 + __rstrtok = NULL;
71816 + send = strpbrk( sbegin, ct);
71817 + if (send && *send != '\0')
71820 + __rstrtok = send;
71826 + * delimitcnt - return the count of a given delimiter in a given string.
71827 + * @s: The string to be searched.
71828 + * @ct: The delimiter to search for.
71829 + * Notice : We suppose the delimiter is a single-char string(for example : ";").
71831 +INT delimitcnt(char * s,const char * ct)
71834 + /* point to the beginning of the line */
71835 + const char *token = s;
71839 + token = strpbrk(token, ct); /* search for delimiters */
71841 + if ( token == NULL )
71843 + /* advanced to the terminating null character */
71846 + /* skip the delimiter */
71850 + * Print the found text: use len with %.*s to specify field width.
71853 + /* accumulate delimiter count */
71860 + * converts the Internet host address from the standard numbers-and-dots notation
71861 + * into binary data.
71862 + * returns nonzero if the address is valid, zero if not.
71864 +int rtinet_aton(const char *cp, unsigned int *addr)
71866 + unsigned int val;
71869 + unsigned int parts[4];
71870 + unsigned int *pp = parts;
71875 + * Collect number up to ``.''.
71876 + * Values are specified as for C:
71877 + * 0x=hex, 0=octal, other=decimal.
71883 + if (*++cp == 'x' || *cp == 'X')
71888 + while ((c = *cp) != '\0')
71890 + if (isdigit((unsigned char) c))
71892 + val = (val * base) + (c - '0');
71896 + if (base == 16 && isxdigit((unsigned char) c))
71898 + val = (val << 4) +
71899 + (c + 10 - (islower((unsigned char) c) ? 'a' : 'A'));
71908 + * Internet format: a.b.c.d a.b.c (with c treated as 16-bits)
71909 + * a.b (with b treated as 24 bits)
71911 + if (pp >= parts + 3 || val > 0xff)
71913 + *pp++ = val, cp++;
71920 + * Check for trailing junk.
71923 + if (!isspace((unsigned char) *cp++))
71927 + * Concoct the address according to the number of parts specified.
71929 + n = pp - parts + 1;
71933 + case 1: /* a -- 32 bits */
71936 + case 2: /* a.b -- 8.24 bits */
71937 + if (val > 0xffffff)
71939 + val |= parts[0] << 24;
71942 + case 3: /* a.b.c -- 8.8.16 bits */
71943 + if (val > 0xffff)
71945 + val |= (parts[0] << 24) | (parts[1] << 16);
71948 + case 4: /* a.b.c.d -- 8.8.8.8 bits */
71951 + val |= (parts[0] << 24) | (parts[1] << 16) | (parts[2] << 8);
71955 + *addr = htonl(val);
71961 + ========================================================================
71963 + Routine Description:
71964 + Find key section for Get key parameter.
71967 + buffer Pointer to the buffer to start find the key section
71968 + section the key of the secion to be find
71973 + ========================================================================
71975 +PUCHAR RTMPFindSection(
71978 + CHAR temp_buf[32];
71981 + strcpy(temp_buf, "Default");
71983 + if((ptr = rtstrstr(buffer, temp_buf)) != NULL)
71984 + return (ptr+strlen("\n"));
71990 + ========================================================================
71992 + Routine Description:
71993 + Get key parameter.
71996 + key Pointer to key string
71997 + dest Pointer to destination
71998 + destsize The datasize of the destination
71999 + buffer Pointer to the buffer to start find the key
72006 + This routine get the value with the matched key (case case-sensitive)
72007 + ========================================================================
72009 +INT RTMPGetKeyParameter(
72015 + UCHAR *temp_buf1 = NULL;
72016 + UCHAR *temp_buf2 = NULL;
72020 + CHAR *offset = 0;
72023 + //temp_buf1 = kmalloc(MAX_PARAM_BUFFER_SIZE, MEM_ALLOC_FLAG);
72024 + os_alloc_mem(NULL, &temp_buf1, MAX_PARAM_BUFFER_SIZE);
72026 + if(temp_buf1 == NULL)
72029 + //temp_buf2 = kmalloc(MAX_PARAM_BUFFER_SIZE, MEM_ALLOC_FLAG);
72030 + os_alloc_mem(NULL, &temp_buf2, MAX_PARAM_BUFFER_SIZE);
72031 + if(temp_buf2 == NULL)
72033 + os_free_mem(NULL, temp_buf1);
72038 + if((offset = RTMPFindSection(buffer)) == NULL)
72040 + os_free_mem(NULL, temp_buf1);
72041 + os_free_mem(NULL, temp_buf2);
72045 + strcpy(temp_buf1, "\n");
72046 + strcat(temp_buf1, key);
72047 + strcat(temp_buf1, "=");
72050 + if((start_ptr=rtstrstr(offset, temp_buf1))==NULL)
72052 + os_free_mem(NULL, temp_buf1);
72053 + os_free_mem(NULL, temp_buf2);
72057 + start_ptr+=strlen("\n");
72058 + if((end_ptr=rtstrstr(start_ptr, "\n"))==NULL)
72059 + end_ptr=start_ptr+strlen(start_ptr);
72061 + if (end_ptr<start_ptr)
72063 + os_free_mem(NULL, temp_buf1);
72064 + os_free_mem(NULL, temp_buf2);
72068 + NdisMoveMemory(temp_buf2, start_ptr, end_ptr-start_ptr);
72069 + temp_buf2[end_ptr-start_ptr]='\0';
72070 + len = strlen(temp_buf2);
72071 + strcpy(temp_buf1, temp_buf2);
72072 + if((start_ptr=rtstrstr(temp_buf1, "=")) == NULL)
72074 + os_free_mem(NULL, temp_buf1);
72075 + os_free_mem(NULL, temp_buf2);
72079 + strcpy(temp_buf2, start_ptr+1);
72081 + //trim space or tab
72082 + while(*ptr != 0x00)
72084 + if( (*ptr == ' ') || (*ptr == '\t') )
72090 + len = strlen(ptr);
72091 + memset(dest, 0x00, destsize);
72092 + strncpy(dest, ptr, len >= destsize ? destsize: len);
72094 + os_free_mem(NULL, temp_buf1);
72095 + os_free_mem(NULL, temp_buf2);
72100 + ========================================================================
72102 + Routine Description:
72103 + Get key parameter.
72106 + key Pointer to key string
72107 + dest Pointer to destination
72108 + destsize The datasize of the destination
72109 + buffer Pointer to the buffer to start find the key
72116 + This routine get the value with the matched key (case case-sensitive).
72117 + It is called for parsing SSID and any key string.
72118 + ========================================================================
72120 +INT RTMPGetCriticalParameter(
72126 + UCHAR *temp_buf1 = NULL;
72127 + UCHAR *temp_buf2 = NULL;
72131 + CHAR *offset = 0;
72134 + //temp_buf1 = kmalloc(MAX_PARAM_BUFFER_SIZE, MEM_ALLOC_FLAG);
72135 + os_alloc_mem(NULL, &temp_buf1, MAX_PARAM_BUFFER_SIZE);
72137 + if(temp_buf1 == NULL)
72140 + //temp_buf2 = kmalloc(MAX_PARAM_BUFFER_SIZE, MEM_ALLOC_FLAG);
72141 + os_alloc_mem(NULL, &temp_buf2, MAX_PARAM_BUFFER_SIZE);
72142 + if(temp_buf2 == NULL)
72144 + os_free_mem(NULL, temp_buf1);
72149 + if((offset = RTMPFindSection(buffer)) == NULL)
72151 + os_free_mem(NULL, temp_buf1);
72152 + os_free_mem(NULL, temp_buf2);
72156 + strcpy(temp_buf1, "\n");
72157 + strcat(temp_buf1, key);
72158 + strcat(temp_buf1, "=");
72161 + if((start_ptr=rtstrstr(offset, temp_buf1))==NULL)
72163 + os_free_mem(NULL, temp_buf1);
72164 + os_free_mem(NULL, temp_buf2);
72168 + start_ptr+=strlen("\n");
72169 + if((end_ptr=rtstrstr(start_ptr, "\n"))==NULL)
72170 + end_ptr=start_ptr+strlen(start_ptr);
72172 + if (end_ptr<start_ptr)
72174 + os_free_mem(NULL, temp_buf1);
72175 + os_free_mem(NULL, temp_buf2);
72179 + NdisMoveMemory(temp_buf2, start_ptr, end_ptr-start_ptr);
72180 + temp_buf2[end_ptr-start_ptr]='\0';
72181 + len = strlen(temp_buf2);
72182 + strcpy(temp_buf1, temp_buf2);
72183 + if((start_ptr=rtstrstr(temp_buf1, "=")) == NULL)
72185 + os_free_mem(NULL, temp_buf1);
72186 + os_free_mem(NULL, temp_buf2);
72190 + strcpy(temp_buf2, start_ptr+1);
72194 + /* We cannot trim space(' ') for SSID and key string. */
72195 + while(*ptr != 0x00)
72197 + //if( (*ptr == ' ') || (*ptr == '\t') )
72198 + if( (*ptr == '\t') )
72204 + len = strlen(ptr);
72205 + memset(dest, 0x00, destsize);
72206 + strncpy(dest, ptr, len >= destsize ? destsize: len);
72208 + os_free_mem(NULL, temp_buf1);
72209 + os_free_mem(NULL, temp_buf2);
72214 + ========================================================================
72216 + Routine Description:
72217 + Get multiple key parameter.
72220 + key Pointer to key string
72221 + dest Pointer to destination
72222 + destsize The datasize of the destination
72223 + buffer Pointer to the buffer to start find the key
72230 + This routine get the value with the matched key (case case-sensitive)
72231 + ========================================================================
72233 +INT RTMPGetKeyParameterWithOffset(
72236 + OUT USHORT *end_offset,
72239 + IN BOOLEAN bTrimSpace)
72241 + UCHAR *temp_buf1 = NULL;
72242 + UCHAR *temp_buf2 = NULL;
72246 + CHAR *offset = 0;
72249 + if (*end_offset >= MAX_INI_BUFFER_SIZE)
72252 + os_alloc_mem(NULL, &temp_buf1, MAX_PARAM_BUFFER_SIZE);
72254 + if(temp_buf1 == NULL)
72257 + os_alloc_mem(NULL, &temp_buf2, MAX_PARAM_BUFFER_SIZE);
72258 + if(temp_buf2 == NULL)
72260 + os_free_mem(NULL, temp_buf1);
72265 + if(*end_offset == 0)
72267 + if ((offset = RTMPFindSection(buffer)) == NULL)
72269 + os_free_mem(NULL, temp_buf1);
72270 + os_free_mem(NULL, temp_buf2);
72275 + offset = buffer + (*end_offset);
72277 + strcpy(temp_buf1, "\n");
72278 + strcat(temp_buf1, key);
72279 + strcat(temp_buf1, "=");
72282 + if((start_ptr=rtstrstr(offset, temp_buf1))==NULL)
72284 + os_free_mem(NULL, temp_buf1);
72285 + os_free_mem(NULL, temp_buf2);
72289 + start_ptr+=strlen("\n");
72290 + if((end_ptr=rtstrstr(start_ptr, "\n"))==NULL)
72291 + end_ptr=start_ptr+strlen(start_ptr);
72293 + if (end_ptr<start_ptr)
72295 + os_free_mem(NULL, temp_buf1);
72296 + os_free_mem(NULL, temp_buf2);
72300 + *end_offset = end_ptr - buffer;
72302 + NdisMoveMemory(temp_buf2, start_ptr, end_ptr-start_ptr);
72303 + temp_buf2[end_ptr-start_ptr]='\0';
72304 + len = strlen(temp_buf2);
72305 + strcpy(temp_buf1, temp_buf2);
72306 + if((start_ptr=rtstrstr(temp_buf1, "=")) == NULL)
72308 + os_free_mem(NULL, temp_buf1);
72309 + os_free_mem(NULL, temp_buf2);
72313 + strcpy(temp_buf2, start_ptr+1);
72315 + //trim space or tab
72316 + while(*ptr != 0x00)
72318 + if((bTrimSpace && (*ptr == ' ')) || (*ptr == '\t') )
72324 + len = strlen(ptr);
72325 + memset(dest, 0x00, destsize);
72326 + strncpy(dest, ptr, len >= destsize ? destsize: len);
72328 + os_free_mem(NULL, temp_buf1);
72329 + os_free_mem(NULL, temp_buf2);
72334 +static int rtmp_parse_key_buffer_from_file(IN PRTMP_ADAPTER pAd,IN char *buffer,IN ULONG KeyType,IN INT BSSIdx,IN INT KeyIdx)
72337 + INT i = BSSIdx, idx = KeyIdx;
72339 + UCHAR CipherAlg = CIPHER_WEP64;
72341 + keybuff = buffer;
72342 + KeyLen = strlen(keybuff);
72344 + if (KeyType == 1)
72346 + if( (KeyLen == 5) || (KeyLen == 13))
72348 + pAd->SharedKey[i][idx].KeyLen = KeyLen;
72349 + NdisMoveMemory(pAd->SharedKey[i][idx].Key, keybuff, KeyLen);
72351 + CipherAlg = CIPHER_WEP64;
72353 + CipherAlg = CIPHER_WEP128;
72354 + pAd->SharedKey[i][idx].CipherAlg = CipherAlg;
72356 + DBGPRINT(RT_DEBUG_TRACE, ("I/F(ra%d) Key%dStr=%s and type=%s\n", i, idx+1, keybuff, (KeyType == 0) ? "Hex":"Ascii"));
72360 + {//Invalid key length
72361 + DBGPRINT(RT_DEBUG_ERROR, ("Key%dStr is Invalid key length! KeyLen = %ld!\n", idx+1, KeyLen));
72367 + if( (KeyLen == 10) || (KeyLen == 26))
72369 + pAd->SharedKey[i][idx].KeyLen = KeyLen / 2;
72370 + AtoH(keybuff, pAd->SharedKey[i][idx].Key, KeyLen / 2);
72371 + if (KeyLen == 10)
72372 + CipherAlg = CIPHER_WEP64;
72374 + CipherAlg = CIPHER_WEP128;
72375 + pAd->SharedKey[i][idx].CipherAlg = CipherAlg;
72377 + DBGPRINT(RT_DEBUG_TRACE, ("I/F(ra%d) Key%dStr=%s and type=%s\n", i, idx+1, keybuff, (KeyType == 0) ? "Hex":"Ascii"));
72381 + {//Invalid key length
72382 + DBGPRINT(RT_DEBUG_ERROR, ("I/F(ra%d) Key%dStr is Invalid key length! KeyLen = %ld!\n", i, idx+1, KeyLen));
72387 +static void rtmp_read_key_parms_from_file(IN PRTMP_ADAPTER pAd, char *tmpbuf, char *buffer)
72389 + char tok_str[16];
72392 + ULONG KeyType[MAX_MBSSID_NUM];
72395 + NdisZeroMemory(KeyType, MAX_MBSSID_NUM);
72398 + if(RTMPGetKeyParameter("DefaultKeyID", tmpbuf, 25, buffer))
72401 +#ifdef CONFIG_STA_SUPPORT
72402 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
72404 + KeyIdx = simple_strtol(tmpbuf, 0, 10);
72405 + if((KeyIdx >= 1 ) && (KeyIdx <= 4))
72406 + pAd->StaCfg.DefaultKeyId = (UCHAR) (KeyIdx - 1);
72408 + pAd->StaCfg.DefaultKeyId = 0;
72410 + DBGPRINT(RT_DEBUG_TRACE, ("DefaultKeyID(0~3)=%d\n", pAd->StaCfg.DefaultKeyId));
72412 +#endif // CONFIG_STA_SUPPORT //
72416 + for (idx = 0; idx < 4; idx++)
72418 + sprintf(tok_str, "Key%dType", idx + 1);
72420 + if (RTMPGetKeyParameter(tok_str, tmpbuf, 128, buffer))
72422 + for (i = 0, macptr = rstrtok(tmpbuf,";"); macptr; macptr = rstrtok(NULL,";"), i++)
72424 + KeyType[i] = simple_strtol(macptr, 0, 10);
72427 +#ifdef CONFIG_STA_SUPPORT
72428 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
72430 + sprintf(tok_str, "Key%dStr", idx + 1);
72431 + if (RTMPGetCriticalParameter(tok_str, tmpbuf, 128, buffer))
72433 + rtmp_parse_key_buffer_from_file(pAd, tmpbuf, KeyType[BSS0], BSS0, idx);
72436 +#endif // CONFIG_STA_SUPPORT //
72442 +#ifdef CONFIG_STA_SUPPORT
72443 +static void rtmp_read_sta_wmm_parms_from_file(IN PRTMP_ADAPTER pAd, char *tmpbuf, char *buffer)
72447 + BOOLEAN bWmmEnable = FALSE;
72450 + if(RTMPGetKeyParameter("WmmCapable", tmpbuf, 32, buffer))
72452 + if(simple_strtol(tmpbuf, 0, 10) != 0) //Enable
72454 + pAd->CommonCfg.bWmmCapable = TRUE;
72455 + bWmmEnable = TRUE;
72459 + pAd->CommonCfg.bWmmCapable = FALSE;
72462 + DBGPRINT(RT_DEBUG_TRACE, ("WmmCapable=%d\n", pAd->CommonCfg.bWmmCapable));
72465 +#ifdef QOS_DLS_SUPPORT
72467 + if(RTMPGetKeyParameter("DLSCapable", tmpbuf, 32, buffer))
72469 + if(simple_strtol(tmpbuf, 0, 10) != 0) //Enable
72471 + pAd->CommonCfg.bDLSCapable = TRUE;
72475 + pAd->CommonCfg.bDLSCapable = FALSE;
72478 + DBGPRINT(RT_DEBUG_TRACE, ("bDLSCapable=%d\n", pAd->CommonCfg.bDLSCapable));
72480 +#endif // QOS_DLS_SUPPORT //
72482 + //AckPolicy for AC_BK, AC_BE, AC_VI, AC_VO
72483 + if(RTMPGetKeyParameter("AckPolicy", tmpbuf, 32, buffer))
72485 + for (i = 0, macptr = rstrtok(tmpbuf,";"); macptr; macptr = rstrtok(NULL,";"), i++)
72487 + pAd->CommonCfg.AckPolicy[i] = (UCHAR)simple_strtol(macptr, 0, 10);
72489 + DBGPRINT(RT_DEBUG_TRACE, ("AckPolicy[%d]=%d\n", i, pAd->CommonCfg.AckPolicy[i]));
72496 + if(RTMPGetKeyParameter("APSDCapable", tmpbuf, 10, buffer))
72498 + if(simple_strtol(tmpbuf, 0, 10) != 0) //Enable
72499 + pAd->CommonCfg.bAPSDCapable = TRUE;
72501 + pAd->CommonCfg.bAPSDCapable = FALSE;
72503 + DBGPRINT(RT_DEBUG_TRACE, ("APSDCapable=%d\n", pAd->CommonCfg.bAPSDCapable));
72506 + //APSDAC for AC_BE, AC_BK, AC_VI, AC_VO
72507 + if(RTMPGetKeyParameter("APSDAC", tmpbuf, 32, buffer))
72509 + BOOLEAN apsd_ac[4];
72511 + for (i = 0, macptr = rstrtok(tmpbuf,";"); macptr; macptr = rstrtok(NULL,";"), i++)
72513 + apsd_ac[i] = (BOOLEAN)simple_strtol(macptr, 0, 10);
72515 + DBGPRINT(RT_DEBUG_TRACE, ("APSDAC%d %d\n", i, apsd_ac[i]));
72518 + pAd->CommonCfg.bAPSDAC_BE = apsd_ac[0];
72519 + pAd->CommonCfg.bAPSDAC_BK = apsd_ac[1];
72520 + pAd->CommonCfg.bAPSDAC_VI = apsd_ac[2];
72521 + pAd->CommonCfg.bAPSDAC_VO = apsd_ac[3];
72526 +#endif // CONFIG_STA_SUPPORT //
72529 +NDIS_STATUS RTMPReadParametersHook(
72530 + IN PRTMP_ADAPTER pAd)
72532 + PUCHAR src = NULL;
72533 + struct file *srcf;
72534 + INT retval, orgfsuid, orgfsgid;
72535 + mm_segment_t orgfs;
72539 + ULONG FragThresh;
72540 +#ifdef CONFIG_STA_SUPPORT
72541 + UCHAR keyMaterial[40];
72542 +#endif // CONFIG_STA_SUPPORT //
72548 + buffer = kmalloc(MAX_INI_BUFFER_SIZE, MEM_ALLOC_FLAG);
72549 + if(buffer == NULL)
72550 + return NDIS_STATUS_FAILURE;
72552 + tmpbuf = kmalloc(MAX_PARAM_BUFFER_SIZE, MEM_ALLOC_FLAG);
72553 + if(tmpbuf == NULL)
72556 + return NDIS_STATUS_FAILURE;
72559 +#ifdef CONFIG_STA_SUPPORT
72560 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
72561 + src = STA_PROFILE_PATH;
72562 +#endif // CONFIG_STA_SUPPORT //
72563 +#ifdef MULTIPLE_CARD_SUPPORT
72564 + src = pAd->MC_FileName;
72565 +#endif // MULTIPLE_CARD_SUPPORT //
72567 + // Save uid and gid used for filesystem access.
72568 + // Set user and group to 0 (root)
72570 + orgfsuid = current->fsuid;
72571 + orgfsgid = current->fsgid;
72572 + current->fsuid=current->fsgid = 0;
72574 + orgfs = get_fs();
72575 + set_fs(KERNEL_DS);
72579 + srcf = filp_open(src, O_RDONLY, 0);
72580 + if (IS_ERR(srcf))
72582 + DBGPRINT(RT_DEBUG_ERROR, ("--> Error %ld opening %s\n", -PTR_ERR(srcf),src));
72586 + // The object must have a read method
72587 + if (srcf->f_op && srcf->f_op->read)
72589 + memset(buffer, 0x00, MAX_INI_BUFFER_SIZE);
72590 + retval=srcf->f_op->read(srcf, buffer, MAX_INI_BUFFER_SIZE, &srcf->f_pos);
72593 + DBGPRINT(RT_DEBUG_TRACE, ("--> Read %s error %d\n", src, -retval));
72597 + // set file parameter to portcfg
72599 + if(RTMPGetKeyParameter("CountryRegion", tmpbuf, 25, buffer))
72601 + pAd->CommonCfg.CountryRegion = (UCHAR) simple_strtol(tmpbuf, 0, 10);
72602 + DBGPRINT(RT_DEBUG_TRACE, ("CountryRegion=%d\n", pAd->CommonCfg.CountryRegion));
72604 + //CountryRegionABand
72605 + if(RTMPGetKeyParameter("CountryRegionABand", tmpbuf, 25, buffer))
72607 + pAd->CommonCfg.CountryRegionForABand= (UCHAR) simple_strtol(tmpbuf, 0, 10);
72608 + DBGPRINT(RT_DEBUG_TRACE, ("CountryRegionABand=%d\n", pAd->CommonCfg.CountryRegionForABand));
72611 + if(RTMPGetKeyParameter("CountryCode", tmpbuf, 25, buffer))
72613 + NdisMoveMemory(pAd->CommonCfg.CountryCode, tmpbuf , 2);
72614 +#ifdef CONFIG_STA_SUPPORT
72615 +#ifdef EXT_BUILD_CHANNEL_LIST
72616 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
72617 + NdisMoveMemory(pAd->StaCfg.StaOriCountryCode, tmpbuf , 2);
72618 +#endif // EXT_BUILD_CHANNEL_LIST //
72619 +#endif // CONFIG_STA_SUPPORT //
72620 + if (strlen(pAd->CommonCfg.CountryCode) != 0)
72622 + pAd->CommonCfg.bCountryFlag = TRUE;
72624 + DBGPRINT(RT_DEBUG_TRACE, ("CountryCode=%s\n", pAd->CommonCfg.CountryCode));
72626 + //ChannelGeography
72627 + if(RTMPGetKeyParameter("ChannelGeography", tmpbuf, 25, buffer))
72629 + UCHAR Geography = (UCHAR) simple_strtol(tmpbuf, 0, 10);
72630 + if (Geography <= BOTH)
72632 + pAd->CommonCfg.Geography = Geography;
72633 + pAd->CommonCfg.CountryCode[2] =
72634 + (pAd->CommonCfg.Geography == BOTH) ? ' ' : ((pAd->CommonCfg.Geography == IDOR) ? 'I' : 'O');
72635 +#ifdef CONFIG_STA_SUPPORT
72636 +#ifdef EXT_BUILD_CHANNEL_LIST
72637 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
72638 + pAd->StaCfg.StaOriGeography = pAd->CommonCfg.Geography;
72639 +#endif // EXT_BUILD_CHANNEL_LIST //
72640 +#endif // CONFIG_STA_SUPPORT //
72641 + DBGPRINT(RT_DEBUG_TRACE, ("ChannelGeography=%d\n", pAd->CommonCfg.Geography));
72646 + pAd->CommonCfg.Geography = BOTH;
72647 + pAd->CommonCfg.CountryCode[2] = ' ';
72651 +#ifdef CONFIG_STA_SUPPORT
72652 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
72655 + if (RTMPGetCriticalParameter("SSID", tmpbuf, 256, buffer))
72657 + if (strlen(tmpbuf) <= 32)
72659 + pAd->CommonCfg.SsidLen = (UCHAR) strlen(tmpbuf);
72660 + NdisZeroMemory(pAd->CommonCfg.Ssid, NDIS_802_11_LENGTH_SSID);
72661 + NdisMoveMemory(pAd->CommonCfg.Ssid, tmpbuf, pAd->CommonCfg.SsidLen);
72662 + pAd->MlmeAux.AutoReconnectSsidLen = pAd->CommonCfg.SsidLen;
72663 + NdisZeroMemory(pAd->MlmeAux.AutoReconnectSsid, NDIS_802_11_LENGTH_SSID);
72664 + NdisMoveMemory(pAd->MlmeAux.AutoReconnectSsid, tmpbuf, pAd->MlmeAux.AutoReconnectSsidLen);
72665 + pAd->MlmeAux.SsidLen = pAd->CommonCfg.SsidLen;
72666 + NdisZeroMemory(pAd->MlmeAux.Ssid, NDIS_802_11_LENGTH_SSID);
72667 + NdisMoveMemory(pAd->MlmeAux.Ssid, tmpbuf, pAd->MlmeAux.SsidLen);
72668 + DBGPRINT(RT_DEBUG_TRACE, ("%s::(SSID=%s)\n", __FUNCTION__, tmpbuf));
72672 +#endif // CONFIG_STA_SUPPORT //
72674 +#ifdef CONFIG_STA_SUPPORT
72675 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
72678 + if (RTMPGetKeyParameter("NetworkType", tmpbuf, 25, buffer))
72680 + pAd->bConfigChanged = TRUE;
72681 + if (strcmp(tmpbuf, "Adhoc") == 0)
72682 + pAd->StaCfg.BssType = BSS_ADHOC;
72683 + else //Default Infrastructure mode
72684 + pAd->StaCfg.BssType = BSS_INFRA;
72685 + // Reset Ralink supplicant to not use, it will be set to start when UI set PMK key
72686 + pAd->StaCfg.WpaState = SS_NOTUSE;
72687 + DBGPRINT(RT_DEBUG_TRACE, ("%s::(NetworkType=%d)\n", __FUNCTION__, pAd->StaCfg.BssType));
72690 +#endif // CONFIG_STA_SUPPORT //
72692 + if(RTMPGetKeyParameter("Channel", tmpbuf, 10, buffer))
72694 + pAd->CommonCfg.Channel = (UCHAR) simple_strtol(tmpbuf, 0, 10);
72695 + DBGPRINT(RT_DEBUG_TRACE, ("Channel=%d\n", pAd->CommonCfg.Channel));
72698 + if(RTMPGetKeyParameter("WirelessMode", tmpbuf, 10, buffer))
72700 + int value = 0, maxPhyMode = PHY_11G;
72702 +#ifdef DOT11_N_SUPPORT
72703 + maxPhyMode = PHY_11N_5G;
72704 +#endif // DOT11_N_SUPPORT //
72706 + value = simple_strtol(tmpbuf, 0, 10);
72708 + if (value <= maxPhyMode)
72710 + pAd->CommonCfg.PhyMode = value;
72712 + DBGPRINT(RT_DEBUG_TRACE, ("PhyMode=%d\n", pAd->CommonCfg.PhyMode));
72715 + if(RTMPGetKeyParameter("BasicRate", tmpbuf, 10, buffer))
72717 + pAd->CommonCfg.BasicRateBitmap = (ULONG) simple_strtol(tmpbuf, 0, 10);
72718 + DBGPRINT(RT_DEBUG_TRACE, ("BasicRate=%ld\n", pAd->CommonCfg.BasicRateBitmap));
72721 + if(RTMPGetKeyParameter("BeaconPeriod", tmpbuf, 10, buffer))
72723 + pAd->CommonCfg.BeaconPeriod = (USHORT) simple_strtol(tmpbuf, 0, 10);
72724 + DBGPRINT(RT_DEBUG_TRACE, ("BeaconPeriod=%d\n", pAd->CommonCfg.BeaconPeriod));
72727 + if(RTMPGetKeyParameter("TxPower", tmpbuf, 10, buffer))
72729 + pAd->CommonCfg.TxPowerPercentage = (ULONG) simple_strtol(tmpbuf, 0, 10);
72730 +#ifdef CONFIG_STA_SUPPORT
72731 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
72732 + pAd->CommonCfg.TxPowerDefault = pAd->CommonCfg.TxPowerPercentage;
72733 +#endif // CONFIG_STA_SUPPORT //
72734 + DBGPRINT(RT_DEBUG_TRACE, ("TxPower=%ld\n", pAd->CommonCfg.TxPowerPercentage));
72737 + if(RTMPGetKeyParameter("BGProtection", tmpbuf, 10, buffer))
72739 + switch (simple_strtol(tmpbuf, 0, 10))
72741 + case 1: //Always On
72742 + pAd->CommonCfg.UseBGProtection = 1;
72744 + case 2: //Always OFF
72745 + pAd->CommonCfg.UseBGProtection = 2;
72749 + pAd->CommonCfg.UseBGProtection = 0;
72752 + DBGPRINT(RT_DEBUG_TRACE, ("BGProtection=%ld\n", pAd->CommonCfg.UseBGProtection));
72755 + if(RTMPGetKeyParameter("DisableOLBC", tmpbuf, 10, buffer))
72757 + switch (simple_strtol(tmpbuf, 0, 10))
72759 + case 1: //disable OLBC Detection
72760 + pAd->CommonCfg.DisableOLBCDetect = 1;
72762 + case 0: //enable OLBC Detection
72763 + pAd->CommonCfg.DisableOLBCDetect = 0;
72766 + pAd->CommonCfg.DisableOLBCDetect= 0;
72769 + DBGPRINT(RT_DEBUG_TRACE, ("OLBCDetection=%ld\n", pAd->CommonCfg.DisableOLBCDetect));
72772 + if(RTMPGetKeyParameter("TxPreamble", tmpbuf, 10, buffer))
72774 + switch (simple_strtol(tmpbuf, 0, 10))
72776 + case Rt802_11PreambleShort:
72777 + pAd->CommonCfg.TxPreamble = Rt802_11PreambleShort;
72779 + case Rt802_11PreambleLong:
72781 + pAd->CommonCfg.TxPreamble = Rt802_11PreambleLong;
72784 + DBGPRINT(RT_DEBUG_TRACE, ("TxPreamble=%ld\n", pAd->CommonCfg.TxPreamble));
72787 + if(RTMPGetKeyParameter("RTSThreshold", tmpbuf, 10, buffer))
72789 + RtsThresh = simple_strtol(tmpbuf, 0, 10);
72790 + if( (RtsThresh >= 1) && (RtsThresh <= MAX_RTS_THRESHOLD) )
72791 + pAd->CommonCfg.RtsThreshold = (USHORT)RtsThresh;
72793 + pAd->CommonCfg.RtsThreshold = MAX_RTS_THRESHOLD;
72795 + DBGPRINT(RT_DEBUG_TRACE, ("RTSThreshold=%d\n", pAd->CommonCfg.RtsThreshold));
72798 + if(RTMPGetKeyParameter("FragThreshold", tmpbuf, 10, buffer))
72800 + FragThresh = simple_strtol(tmpbuf, 0, 10);
72801 + pAd->CommonCfg.bUseZeroToDisableFragment = FALSE;
72803 + if (FragThresh > MAX_FRAG_THRESHOLD || FragThresh < MIN_FRAG_THRESHOLD)
72804 + { //illegal FragThresh so we set it to default
72805 + pAd->CommonCfg.FragmentThreshold = MAX_FRAG_THRESHOLD;
72806 + pAd->CommonCfg.bUseZeroToDisableFragment = TRUE;
72808 + else if (FragThresh % 2 == 1)
72810 + // The length of each fragment shall always be an even number of octets, except for the last fragment
72811 + // of an MSDU or MMPDU, which may be either an even or an odd number of octets.
72812 + pAd->CommonCfg.FragmentThreshold = (USHORT)(FragThresh - 1);
72816 + pAd->CommonCfg.FragmentThreshold = (USHORT)FragThresh;
72818 + //pAd->CommonCfg.AllowFragSize = (pAd->CommonCfg.FragmentThreshold) - LENGTH_802_11 - LENGTH_CRC;
72819 + DBGPRINT(RT_DEBUG_TRACE, ("FragThreshold=%d\n", pAd->CommonCfg.FragmentThreshold));
72822 + if(RTMPGetKeyParameter("TxBurst", tmpbuf, 10, buffer))
72824 +//#ifdef WIFI_TEST
72825 +// pAd->CommonCfg.bEnableTxBurst = FALSE;
72827 + if(simple_strtol(tmpbuf, 0, 10) != 0) //Enable
72828 + pAd->CommonCfg.bEnableTxBurst = TRUE;
72830 + pAd->CommonCfg.bEnableTxBurst = FALSE;
72832 + DBGPRINT(RT_DEBUG_TRACE, ("TxBurst=%d\n", pAd->CommonCfg.bEnableTxBurst));
72835 +#ifdef AGGREGATION_SUPPORT
72837 + if(RTMPGetKeyParameter("PktAggregate", tmpbuf, 10, buffer))
72839 + if(simple_strtol(tmpbuf, 0, 10) != 0) //Enable
72840 + pAd->CommonCfg.bAggregationCapable = TRUE;
72842 + pAd->CommonCfg.bAggregationCapable = FALSE;
72843 +#ifdef PIGGYBACK_SUPPORT
72844 + pAd->CommonCfg.bPiggyBackCapable = pAd->CommonCfg.bAggregationCapable;
72845 +#endif // PIGGYBACK_SUPPORT //
72846 + DBGPRINT(RT_DEBUG_TRACE, ("PktAggregate=%d\n", pAd->CommonCfg.bAggregationCapable));
72849 + pAd->CommonCfg.bAggregationCapable = FALSE;
72850 + pAd->CommonCfg.bPiggyBackCapable = FALSE;
72851 +#endif // AGGREGATION_SUPPORT //
72855 +#ifdef CONFIG_STA_SUPPORT
72856 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
72857 + rtmp_read_sta_wmm_parms_from_file(pAd, tmpbuf, buffer);
72858 +#endif // CONFIG_STA_SUPPORT //
72861 + if(RTMPGetKeyParameter("ShortSlot", tmpbuf, 10, buffer))
72863 + if(simple_strtol(tmpbuf, 0, 10) != 0) //Enable
72864 + pAd->CommonCfg.bUseShortSlotTime = TRUE;
72866 + pAd->CommonCfg.bUseShortSlotTime = FALSE;
72868 + DBGPRINT(RT_DEBUG_TRACE, ("ShortSlot=%d\n", pAd->CommonCfg.bUseShortSlotTime));
72871 + if(RTMPGetKeyParameter("IEEE80211H", tmpbuf, 10, buffer))
72873 + for (i = 0, macptr = rstrtok(tmpbuf,";"); macptr; macptr = rstrtok(NULL,";"), i++)
72875 + if(simple_strtol(macptr, 0, 10) != 0) //Enable
72876 + pAd->CommonCfg.bIEEE80211H = TRUE;
72878 + pAd->CommonCfg.bIEEE80211H = FALSE;
72880 + DBGPRINT(RT_DEBUG_TRACE, ("IEEE80211H=%d\n", pAd->CommonCfg.bIEEE80211H));
72884 + if(RTMPGetKeyParameter("CSPeriod", tmpbuf, 10, buffer))
72886 + if(simple_strtol(tmpbuf, 0, 10) != 0)
72887 + pAd->CommonCfg.RadarDetect.CSPeriod = simple_strtol(tmpbuf, 0, 10);
72889 + pAd->CommonCfg.RadarDetect.CSPeriod = 0;
72891 + DBGPRINT(RT_DEBUG_TRACE, ("CSPeriod=%d\n", pAd->CommonCfg.RadarDetect.CSPeriod));
72895 + if(RTMPGetKeyParameter("RDRegion", tmpbuf, 128, buffer))
72897 + if ((strncmp(tmpbuf, "JAP_W53", 7) == 0) || (strncmp(tmpbuf, "jap_w53", 7) == 0))
72899 + pAd->CommonCfg.RadarDetect.RDDurRegion = JAP_W53;
72900 + pAd->CommonCfg.RadarDetect.DfsSessionTime = 15;
72902 + else if ((strncmp(tmpbuf, "JAP_W56", 7) == 0) || (strncmp(tmpbuf, "jap_w56", 7) == 0))
72904 + pAd->CommonCfg.RadarDetect.RDDurRegion = JAP_W56;
72905 + pAd->CommonCfg.RadarDetect.DfsSessionTime = 13;
72907 + else if ((strncmp(tmpbuf, "JAP", 3) == 0) || (strncmp(tmpbuf, "jap", 3) == 0))
72909 + pAd->CommonCfg.RadarDetect.RDDurRegion = JAP;
72910 + pAd->CommonCfg.RadarDetect.DfsSessionTime = 5;
72912 + else if ((strncmp(tmpbuf, "FCC", 3) == 0) || (strncmp(tmpbuf, "fcc", 3) == 0))
72914 + pAd->CommonCfg.RadarDetect.RDDurRegion = FCC;
72915 + pAd->CommonCfg.RadarDetect.DfsSessionTime = 5;
72917 + else if ((strncmp(tmpbuf, "CE", 2) == 0) || (strncmp(tmpbuf, "ce", 2) == 0))
72919 + pAd->CommonCfg.RadarDetect.RDDurRegion = CE;
72920 + pAd->CommonCfg.RadarDetect.DfsSessionTime = 13;
72924 + pAd->CommonCfg.RadarDetect.RDDurRegion = CE;
72925 + pAd->CommonCfg.RadarDetect.DfsSessionTime = 13;
72928 + DBGPRINT(RT_DEBUG_TRACE, ("RDRegion=%d\n", pAd->CommonCfg.RadarDetect.RDDurRegion));
72932 + pAd->CommonCfg.RadarDetect.RDDurRegion = CE;
72933 + pAd->CommonCfg.RadarDetect.DfsSessionTime = 13;
72937 + if(RTMPGetKeyParameter("WirelessEvent", tmpbuf, 10, buffer))
72939 +#if WIRELESS_EXT >= 15
72940 + if(simple_strtol(tmpbuf, 0, 10) != 0)
72941 + pAd->CommonCfg.bWirelessEvent = simple_strtol(tmpbuf, 0, 10);
72943 + pAd->CommonCfg.bWirelessEvent = 0; // disable
72945 + pAd->CommonCfg.bWirelessEvent = 0; // disable
72947 + DBGPRINT(RT_DEBUG_TRACE, ("WirelessEvent=%d\n", pAd->CommonCfg.bWirelessEvent));
72949 + if(RTMPGetKeyParameter("WiFiTest", tmpbuf, 10, buffer))
72951 + if(simple_strtol(tmpbuf, 0, 10) != 0)
72952 + pAd->CommonCfg.bWiFiTest= simple_strtol(tmpbuf, 0, 10);
72954 + pAd->CommonCfg.bWiFiTest = 0; // disable
72956 + DBGPRINT(RT_DEBUG_TRACE, ("WiFiTest=%d\n", pAd->CommonCfg.bWiFiTest));
72959 + if(RTMPGetKeyParameter("AuthMode", tmpbuf, 128, buffer))
72961 +#ifdef CONFIG_STA_SUPPORT
72962 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
72964 + if ((strcmp(tmpbuf, "WEPAUTO") == 0) || (strcmp(tmpbuf, "wepauto") == 0))
72965 + pAd->StaCfg.AuthMode = Ndis802_11AuthModeAutoSwitch;
72966 + else if ((strcmp(tmpbuf, "SHARED") == 0) || (strcmp(tmpbuf, "shared") == 0))
72967 + pAd->StaCfg.AuthMode = Ndis802_11AuthModeShared;
72968 + else if ((strcmp(tmpbuf, "WPAPSK") == 0) || (strcmp(tmpbuf, "wpapsk") == 0))
72969 + pAd->StaCfg.AuthMode = Ndis802_11AuthModeWPAPSK;
72970 + else if ((strcmp(tmpbuf, "WPANONE") == 0) || (strcmp(tmpbuf, "wpanone") == 0))
72971 + pAd->StaCfg.AuthMode = Ndis802_11AuthModeWPANone;
72972 + else if ((strcmp(tmpbuf, "WPA2PSK") == 0) || (strcmp(tmpbuf, "wpa2psk") == 0))
72973 + pAd->StaCfg.AuthMode = Ndis802_11AuthModeWPA2PSK;
72974 +#ifdef WPA_SUPPLICANT_SUPPORT
72975 + else if ((strcmp(tmpbuf, "WPA") == 0) || (strcmp(tmpbuf, "wpa") == 0))
72976 + pAd->StaCfg.AuthMode = Ndis802_11AuthModeWPA;
72977 + else if ((strcmp(tmpbuf, "WPA2") == 0) || (strcmp(tmpbuf, "wpa2") == 0))
72978 + pAd->StaCfg.AuthMode = Ndis802_11AuthModeWPA2;
72979 +#endif // WPA_SUPPLICANT_SUPPORT //
72981 + pAd->StaCfg.AuthMode = Ndis802_11AuthModeOpen;
72983 + pAd->StaCfg.PortSecured = WPA_802_1X_PORT_NOT_SECURED;
72985 + DBGPRINT(RT_DEBUG_TRACE, ("%s::(EncrypType=%d)\n", __FUNCTION__, pAd->StaCfg.WepStatus));
72987 +#endif // CONFIG_STA_SUPPORT //
72990 + if(RTMPGetKeyParameter("EncrypType", tmpbuf, 128, buffer))
72993 +#ifdef CONFIG_STA_SUPPORT
72994 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
72996 + if ((strcmp(tmpbuf, "WEP") == 0) || (strcmp(tmpbuf, "wep") == 0))
72997 + pAd->StaCfg.WepStatus = Ndis802_11WEPEnabled;
72998 + else if ((strcmp(tmpbuf, "TKIP") == 0) || (strcmp(tmpbuf, "tkip") == 0))
72999 + pAd->StaCfg.WepStatus = Ndis802_11Encryption2Enabled;
73000 + else if ((strcmp(tmpbuf, "AES") == 0) || (strcmp(tmpbuf, "aes") == 0))
73001 + pAd->StaCfg.WepStatus = Ndis802_11Encryption3Enabled;
73003 + pAd->StaCfg.WepStatus = Ndis802_11WEPDisabled;
73005 + // Update all wepstatus related
73006 + pAd->StaCfg.PairCipher = pAd->StaCfg.WepStatus;
73007 + pAd->StaCfg.GroupCipher = pAd->StaCfg.WepStatus;
73008 + pAd->StaCfg.OrigWepStatus = pAd->StaCfg.WepStatus;
73009 + pAd->StaCfg.bMixCipher = FALSE;
73011 + //RTMPMakeRSNIE(pAd, pAd->StaCfg.AuthMode, pAd->StaCfg.WepStatus, 0);
73012 + DBGPRINT(RT_DEBUG_TRACE, ("%s::(EncrypType=%d)\n", __FUNCTION__, pAd->StaCfg.WepStatus));
73014 +#endif // CONFIG_STA_SUPPORT //
73019 +#ifdef CONFIG_STA_SUPPORT
73020 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
73022 + if(RTMPGetCriticalParameter("WPAPSK", tmpbuf, 512, buffer))
73026 + tmpbuf[strlen(tmpbuf)] = '\0'; // make STA can process .$^& for WPAPSK input
73028 + if ((pAd->StaCfg.AuthMode != Ndis802_11AuthModeWPAPSK) &&
73029 + (pAd->StaCfg.AuthMode != Ndis802_11AuthModeWPA2PSK) &&
73030 + (pAd->StaCfg.AuthMode != Ndis802_11AuthModeWPANone)
73035 + else if ((strlen(tmpbuf) >= 8) && (strlen(tmpbuf) < 64))
73037 + PasswordHash((char *)tmpbuf, pAd->CommonCfg.Ssid, pAd->CommonCfg.SsidLen, keyMaterial);
73038 + NdisMoveMemory(pAd->StaCfg.PMK, keyMaterial, 32);
73041 + else if (strlen(tmpbuf) == 64)
73043 + AtoH(tmpbuf, keyMaterial, 32);
73044 + NdisMoveMemory(pAd->StaCfg.PMK, keyMaterial, 32);
73049 + DBGPRINT(RT_DEBUG_ERROR, ("%s::(WPAPSK key-string required 8 ~ 64 characters!)\n", __FUNCTION__));
73054 + if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK) ||
73055 + (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK))
73057 + // Start STA supplicant state machine
73058 + pAd->StaCfg.WpaState = SS_START;
73060 + else if (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPANone)
73063 + NdisZeroMemory(&pAd->SharedKey[BSS0][0], sizeof(CIPHER_KEY));
73064 + pAd->SharedKey[BSS0][0].KeyLen = LEN_TKIP_EK;
73065 + NdisMoveMemory(pAd->SharedKey[BSS0][0].Key, pAd->StaCfg.PMK, LEN_TKIP_EK);
73066 + NdisMoveMemory(pAd->SharedKey[BSS0][0].RxMic, &pAd->StaCfg.PMK[16], LEN_TKIP_RXMICK);
73067 + NdisMoveMemory(pAd->SharedKey[BSS0][0].TxMic, &pAd->StaCfg.PMK[16], LEN_TKIP_TXMICK);
73069 + // Decide its ChiperAlg
73070 + if (pAd->StaCfg.PairCipher == Ndis802_11Encryption2Enabled)
73071 + pAd->SharedKey[BSS0][0].CipherAlg = CIPHER_TKIP;
73072 + else if (pAd->StaCfg.PairCipher == Ndis802_11Encryption3Enabled)
73073 + pAd->SharedKey[BSS0][0].CipherAlg = CIPHER_AES;
73075 + pAd->SharedKey[BSS0][0].CipherAlg = CIPHER_NONE;
73077 + pAd->StaCfg.WpaState = SS_NOTUSE;
73080 + DBGPRINT(RT_DEBUG_TRACE, ("%s::(WPAPSK=%s)\n", __FUNCTION__, tmpbuf));
73084 +#endif // CONFIG_STA_SUPPORT //
73086 + //DefaultKeyID, KeyType, KeyStr
73087 + rtmp_read_key_parms_from_file(pAd, tmpbuf, buffer);
73091 + /*if(RTMPGetKeyParameter("HSCounter", tmpbuf, 10, buffer))
73093 + switch (simple_strtol(tmpbuf, 0, 10))
73096 + pAd->CommonCfg.bEnableHSCounter = TRUE;
73098 + case 0: //Disable
73100 + pAd->CommonCfg.bEnableHSCounter = FALSE;
73103 + DBGPRINT(RT_DEBUG_TRACE, "HSCounter=%d\n", pAd->CommonCfg.bEnableHSCounter);
73106 +#ifdef DOT11_N_SUPPORT
73107 + HTParametersHook(pAd, tmpbuf, buffer);
73108 +#endif // DOT11_N_SUPPORT //
73111 +#ifdef CARRIER_DETECTION_SUPPORT
73113 + if(RTMPGetKeyParameter("CarrierDetect", tmpbuf, 128, buffer))
73115 + if ((strncmp(tmpbuf, "0", 1) == 0))
73116 + pAd->CommonCfg.CarrierDetect.Enable = FALSE;
73117 + else if ((strncmp(tmpbuf, "1", 1) == 0))
73118 + pAd->CommonCfg.CarrierDetect.Enable = TRUE;
73120 + pAd->CommonCfg.CarrierDetect.Enable = FALSE;
73122 + DBGPRINT(RT_DEBUG_TRACE, ("CarrierDetect.Enable=%d\n", pAd->CommonCfg.CarrierDetect.Enable));
73125 + pAd->CommonCfg.CarrierDetect.Enable = FALSE;
73126 +#endif // CARRIER_DETECTION_SUPPORT //
73128 +#ifdef CONFIG_STA_SUPPORT
73129 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
73132 + if (RTMPGetKeyParameter("PSMode", tmpbuf, 10, buffer))
73134 + if (pAd->StaCfg.BssType == BSS_INFRA)
73136 + if ((strcmp(tmpbuf, "MAX_PSP") == 0) || (strcmp(tmpbuf, "max_psp") == 0))
73138 + // do NOT turn on PSM bit here, wait until MlmeCheckForPsmChange()
73139 + // to exclude certain situations.
73140 + // MlmeSetPsm(pAd, PWR_SAVE);
73141 + OPSTATUS_SET_FLAG(pAd, fOP_STATUS_RECEIVE_DTIM);
73142 + if (pAd->StaCfg.bWindowsACCAMEnable == FALSE)
73143 + pAd->StaCfg.WindowsPowerMode = Ndis802_11PowerModeMAX_PSP;
73144 + pAd->StaCfg.WindowsBatteryPowerMode = Ndis802_11PowerModeMAX_PSP;
73145 + pAd->StaCfg.DefaultListenCount = 5;
73147 + else if ((strcmp(tmpbuf, "Fast_PSP") == 0) || (strcmp(tmpbuf, "fast_psp") == 0)
73148 + || (strcmp(tmpbuf, "FAST_PSP") == 0))
73150 + // do NOT turn on PSM bit here, wait until MlmeCheckForPsmChange()
73151 + // to exclude certain situations.
73152 + // MlmeSetPsmBit(pAd, PWR_SAVE);
73153 + OPSTATUS_SET_FLAG(pAd, fOP_STATUS_RECEIVE_DTIM);
73154 + if (pAd->StaCfg.bWindowsACCAMEnable == FALSE)
73155 + pAd->StaCfg.WindowsPowerMode = Ndis802_11PowerModeFast_PSP;
73156 + pAd->StaCfg.WindowsBatteryPowerMode = Ndis802_11PowerModeFast_PSP;
73157 + pAd->StaCfg.DefaultListenCount = 3;
73159 + else if ((strcmp(tmpbuf, "Legacy_PSP") == 0) || (strcmp(tmpbuf, "legacy_psp") == 0)
73160 + || (strcmp(tmpbuf, "LEGACY_PSP") == 0))
73162 + // do NOT turn on PSM bit here, wait until MlmeCheckForPsmChange()
73163 + // to exclude certain situations.
73164 + // MlmeSetPsmBit(pAd, PWR_SAVE);
73165 + OPSTATUS_SET_FLAG(pAd, fOP_STATUS_RECEIVE_DTIM);
73166 + if (pAd->StaCfg.bWindowsACCAMEnable == FALSE)
73167 + pAd->StaCfg.WindowsPowerMode = Ndis802_11PowerModeLegacy_PSP;
73168 + pAd->StaCfg.WindowsBatteryPowerMode = Ndis802_11PowerModeLegacy_PSP;
73169 + pAd->StaCfg.DefaultListenCount = 3;
73172 + { //Default Ndis802_11PowerModeCAM
73173 + // clear PSM bit immediately
73174 + MlmeSetPsmBit(pAd, PWR_ACTIVE);
73175 + OPSTATUS_SET_FLAG(pAd, fOP_STATUS_RECEIVE_DTIM);
73176 + if (pAd->StaCfg.bWindowsACCAMEnable == FALSE)
73177 + pAd->StaCfg.WindowsPowerMode = Ndis802_11PowerModeCAM;
73178 + pAd->StaCfg.WindowsBatteryPowerMode = Ndis802_11PowerModeCAM;
73180 + DBGPRINT(RT_DEBUG_TRACE, ("PSMode=%ld\n", pAd->StaCfg.WindowsPowerMode));
73184 + if (RTMPGetKeyParameter("FastRoaming", tmpbuf, 32, buffer))
73186 + if (simple_strtol(tmpbuf, 0, 10) == 0)
73187 + pAd->StaCfg.bFastRoaming = FALSE;
73189 + pAd->StaCfg.bFastRoaming = TRUE;
73191 + DBGPRINT(RT_DEBUG_TRACE, ("FastRoaming=%d\n", pAd->StaCfg.bFastRoaming));
73194 + if (RTMPGetKeyParameter("RoamThreshold", tmpbuf, 32, buffer))
73196 + long lInfo = simple_strtol(tmpbuf, 0, 10);
73198 + if (lInfo > 90 || lInfo < 60)
73199 + pAd->StaCfg.dBmToRoam = -70;
73201 + pAd->StaCfg.dBmToRoam = (CHAR)(-1)*lInfo;
73203 + DBGPRINT(RT_DEBUG_TRACE, ("RoamThreshold=%d dBm\n", pAd->StaCfg.dBmToRoam));
73206 + if(RTMPGetKeyParameter("TGnWifiTest", tmpbuf, 10, buffer))
73208 + if(simple_strtol(tmpbuf, 0, 10) == 0)
73209 + pAd->StaCfg.bTGnWifiTest = FALSE;
73211 + pAd->StaCfg.bTGnWifiTest = TRUE;
73212 + DBGPRINT(RT_DEBUG_TRACE, ("TGnWifiTest=%d\n", pAd->StaCfg.bTGnWifiTest));
73215 +#endif // CONFIG_STA_SUPPORT //
73219 +#ifdef CONFIG_STA_SUPPORT
73220 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
73222 + if(RTMPGetKeyParameter("AntDiversity", tmpbuf, 10, buffer))
73224 + for (i = 0, macptr = rstrtok(tmpbuf,";"); macptr; macptr = rstrtok(NULL,";"), i++)
73226 + if(simple_strtol(macptr, 0, 10) != 0) //Enable
73227 + pAd->CommonCfg.bRxAntDiversity = TRUE;
73229 + pAd->CommonCfg.bRxAntDiversity = FALSE;
73231 + DBGPRINT(RT_DEBUG_ERROR, ("AntDiversity=%d\n", pAd->CommonCfg.bRxAntDiversity));
73235 +#endif // CONFIG_STA_SUPPORT //
73236 +#endif // RT30xx //
73241 + DBGPRINT(RT_DEBUG_TRACE, ("--> %s does not have a write method\n", src));
73244 + retval=filp_close(srcf,NULL);
73248 + DBGPRINT(RT_DEBUG_TRACE, ("--> Error %d closing %s\n", -retval, src));
73255 + current->fsuid = orgfsuid;
73256 + current->fsgid = orgfsgid;
73262 + return (NDIS_STATUS_SUCCESS);
73265 +#ifdef DOT11_N_SUPPORT
73266 +static void HTParametersHook(
73267 + IN PRTMP_ADAPTER pAd,
73268 + IN CHAR *pValueStr,
73274 + if (RTMPGetKeyParameter("HT_PROTECT", pValueStr, 25, pInput))
73276 + Value = simple_strtol(pValueStr, 0, 10);
73279 + pAd->CommonCfg.bHTProtect = FALSE;
73283 + pAd->CommonCfg.bHTProtect = TRUE;
73285 + DBGPRINT(RT_DEBUG_TRACE, ("HT: Protection = %s\n", (Value==0) ? "Disable" : "Enable"));
73288 + if (RTMPGetKeyParameter("HT_MIMOPSEnable", pValueStr, 25, pInput))
73290 + Value = simple_strtol(pValueStr, 0, 10);
73293 + pAd->CommonCfg.bMIMOPSEnable = FALSE;
73297 + pAd->CommonCfg.bMIMOPSEnable = TRUE;
73299 + DBGPRINT(RT_DEBUG_TRACE, ("HT: MIMOPSEnable = %s\n", (Value==0) ? "Disable" : "Enable"));
73303 + if (RTMPGetKeyParameter("HT_MIMOPSMode", pValueStr, 25, pInput))
73305 + Value = simple_strtol(pValueStr, 0, 10);
73306 + if (Value > MMPS_ENABLE)
73308 + pAd->CommonCfg.BACapability.field.MMPSmode = MMPS_ENABLE;
73312 + //TODO: add mimo power saving mechanism
73313 + pAd->CommonCfg.BACapability.field.MMPSmode = MMPS_ENABLE;
73314 + //pAd->CommonCfg.BACapability.field.MMPSmode = Value;
73316 + DBGPRINT(RT_DEBUG_TRACE, ("HT: MIMOPS Mode = %d\n", Value));
73319 + if (RTMPGetKeyParameter("HT_BADecline", pValueStr, 25, pInput))
73321 + Value = simple_strtol(pValueStr, 0, 10);
73324 + pAd->CommonCfg.bBADecline = FALSE;
73328 + pAd->CommonCfg.bBADecline = TRUE;
73330 + DBGPRINT(RT_DEBUG_TRACE, ("HT: BA Decline = %s\n", (Value==0) ? "Disable" : "Enable"));
73334 + if (RTMPGetKeyParameter("HT_DisableReordering", pValueStr, 25, pInput))
73336 + Value = simple_strtol(pValueStr, 0, 10);
73339 + pAd->CommonCfg.bDisableReordering = FALSE;
73343 + pAd->CommonCfg.bDisableReordering = TRUE;
73345 + DBGPRINT(RT_DEBUG_TRACE, ("HT: DisableReordering = %s\n", (Value==0) ? "Disable" : "Enable"));
73348 + if (RTMPGetKeyParameter("HT_AutoBA", pValueStr, 25, pInput))
73350 + Value = simple_strtol(pValueStr, 0, 10);
73353 + pAd->CommonCfg.BACapability.field.AutoBA = FALSE;
73354 + pAd->CommonCfg.BACapability.field.Policy = BA_NOTUSE;
73358 + pAd->CommonCfg.BACapability.field.AutoBA = TRUE;
73359 + pAd->CommonCfg.BACapability.field.Policy = IMMED_BA;
73361 + pAd->CommonCfg.REGBACapability.field.AutoBA = pAd->CommonCfg.BACapability.field.AutoBA;
73362 + pAd->CommonCfg.REGBACapability.field.Policy = pAd->CommonCfg.BACapability.field.Policy;
73363 + DBGPRINT(RT_DEBUG_TRACE, ("HT: Auto BA = %s\n", (Value==0) ? "Disable" : "Enable"));
73367 + if (RTMPGetKeyParameter("HT_HTC", pValueStr, 25, pInput))
73369 + Value = simple_strtol(pValueStr, 0, 10);
73372 + pAd->HTCEnable = FALSE;
73376 + pAd->HTCEnable = TRUE;
73378 + DBGPRINT(RT_DEBUG_TRACE, ("HT: Tx +HTC frame = %s\n", (Value==0) ? "Disable" : "Enable"));
73381 + // Enable HT Link Adaptation Control
73382 + if (RTMPGetKeyParameter("HT_LinkAdapt", pValueStr, 25, pInput))
73384 + Value = simple_strtol(pValueStr, 0, 10);
73387 + pAd->bLinkAdapt = FALSE;
73391 + pAd->HTCEnable = TRUE;
73392 + pAd->bLinkAdapt = TRUE;
73394 + DBGPRINT(RT_DEBUG_TRACE, ("HT: Link Adaptation Control = %s\n", (Value==0) ? "Disable" : "Enable(+HTC)"));
73397 + // Reverse Direction Mechanism
73398 + if (RTMPGetKeyParameter("HT_RDG", pValueStr, 25, pInput))
73400 + Value = simple_strtol(pValueStr, 0, 10);
73403 + pAd->CommonCfg.bRdg = FALSE;
73407 + pAd->HTCEnable = TRUE;
73408 + pAd->CommonCfg.bRdg = TRUE;
73410 + DBGPRINT(RT_DEBUG_TRACE, ("HT: RDG = %s\n", (Value==0) ? "Disable" : "Enable(+HTC)"));
73417 + if (RTMPGetKeyParameter("HT_AMSDU", pValueStr, 25, pInput))
73419 + Value = simple_strtol(pValueStr, 0, 10);
73422 + pAd->CommonCfg.BACapability.field.AmsduEnable = FALSE;
73426 + pAd->CommonCfg.BACapability.field.AmsduEnable = TRUE;
73428 + DBGPRINT(RT_DEBUG_TRACE, ("HT: Tx A-MSDU = %s\n", (Value==0) ? "Disable" : "Enable"));
73432 + if (RTMPGetKeyParameter("HT_MpduDensity", pValueStr, 25, pInput))
73434 + Value = simple_strtol(pValueStr, 0, 10);
73435 + if (Value <=7 && Value >= 0)
73437 + pAd->CommonCfg.BACapability.field.MpduDensity = Value;
73438 + DBGPRINT(RT_DEBUG_TRACE, ("HT: MPDU Density = %d\n", Value));
73442 + pAd->CommonCfg.BACapability.field.MpduDensity = 4;
73443 + DBGPRINT(RT_DEBUG_TRACE, ("HT: MPDU Density = %d (Default)\n", 4));
73447 + // Max Rx BA Window Size
73448 + if (RTMPGetKeyParameter("HT_BAWinSize", pValueStr, 25, pInput))
73450 + Value = simple_strtol(pValueStr, 0, 10);
73452 + if (Value >=1 && Value <= 64)
73454 + pAd->CommonCfg.REGBACapability.field.RxBAWinLimit = Value;
73455 + pAd->CommonCfg.BACapability.field.RxBAWinLimit = Value;
73456 + DBGPRINT(RT_DEBUG_TRACE, ("HT: BA Windw Size = %d\n", Value));
73460 + pAd->CommonCfg.REGBACapability.field.RxBAWinLimit = 64;
73461 + pAd->CommonCfg.BACapability.field.RxBAWinLimit = 64;
73462 + DBGPRINT(RT_DEBUG_TRACE, ("HT: BA Windw Size = 64 (Defualt)\n"));
73467 + // Guard Interval
73468 + if (RTMPGetKeyParameter("HT_GI", pValueStr, 25, pInput))
73470 + Value = simple_strtol(pValueStr, 0, 10);
73472 + if (Value == GI_400)
73474 + pAd->CommonCfg.RegTransmitSetting.field.ShortGI = GI_400;
73478 + pAd->CommonCfg.RegTransmitSetting.field.ShortGI = GI_800;
73481 + DBGPRINT(RT_DEBUG_TRACE, ("HT: Guard Interval = %s\n", (Value==GI_400) ? "400" : "800" ));
73484 + // HT Operation Mode : Mixed Mode , Green Field
73485 + if (RTMPGetKeyParameter("HT_OpMode", pValueStr, 25, pInput))
73487 + Value = simple_strtol(pValueStr, 0, 10);
73489 + if (Value == HTMODE_GF)
73492 + pAd->CommonCfg.RegTransmitSetting.field.HTMODE = HTMODE_GF;
73496 + pAd->CommonCfg.RegTransmitSetting.field.HTMODE = HTMODE_MM;
73499 + DBGPRINT(RT_DEBUG_TRACE, ("HT: Operate Mode = %s\n", (Value==HTMODE_GF) ? "Green Field" : "Mixed Mode" ));
73502 + // Fixed Tx mode : CCK, OFDM
73503 + if (RTMPGetKeyParameter("FixedTxMode", pValueStr, 25, pInput))
73505 + UCHAR fix_tx_mode;
73507 +#ifdef CONFIG_STA_SUPPORT
73508 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
73510 + fix_tx_mode = FIXED_TXMODE_HT;
73512 + if (strcmp(pValueStr, "OFDM") == 0 || strcmp(pValueStr, "ofdm") == 0)
73514 + fix_tx_mode = FIXED_TXMODE_OFDM;
73516 + else if (strcmp(pValueStr, "CCK") == 0 || strcmp(pValueStr, "cck") == 0)
73518 + fix_tx_mode = FIXED_TXMODE_CCK;
73520 + else if (strcmp(pValueStr, "HT") == 0 || strcmp(pValueStr, "ht") == 0)
73522 + fix_tx_mode = FIXED_TXMODE_HT;
73526 + Value = simple_strtol(pValueStr, 0, 10);
73529 + // otherwise : HT
73530 + if (Value == FIXED_TXMODE_CCK || Value == FIXED_TXMODE_OFDM)
73531 + fix_tx_mode = Value;
73533 + fix_tx_mode = FIXED_TXMODE_HT;
73536 + pAd->StaCfg.DesiredTransmitSetting.field.FixedTxMode = fix_tx_mode;
73537 + DBGPRINT(RT_DEBUG_TRACE, ("Fixed Tx Mode = %d\n", fix_tx_mode));
73540 +#endif // CONFIG_STA_SUPPORT //
73545 + if (RTMPGetKeyParameter("HT_BW", pValueStr, 25, pInput))
73547 + Value = simple_strtol(pValueStr, 0, 10);
73549 + if (Value == BW_40)
73551 + pAd->CommonCfg.RegTransmitSetting.field.BW = BW_40;
73555 + pAd->CommonCfg.RegTransmitSetting.field.BW = BW_20;
73558 +#ifdef MCAST_RATE_SPECIFIC
73559 + pAd->CommonCfg.MCastPhyMode.field.BW = pAd->CommonCfg.RegTransmitSetting.field.BW;
73560 +#endif // MCAST_RATE_SPECIFIC //
73562 + DBGPRINT(RT_DEBUG_TRACE, ("HT: Channel Width = %s\n", (Value==BW_40) ? "40 MHz" : "20 MHz" ));
73565 + if (RTMPGetKeyParameter("HT_EXTCHA", pValueStr, 25, pInput))
73567 + Value = simple_strtol(pValueStr, 0, 10);
73572 + pAd->CommonCfg.RegTransmitSetting.field.EXTCHA = EXTCHA_BELOW;
73576 + pAd->CommonCfg.RegTransmitSetting.field.EXTCHA = EXTCHA_ABOVE;
73579 + DBGPRINT(RT_DEBUG_TRACE, ("HT: Ext Channel = %s\n", (Value==0) ? "BELOW" : "ABOVE" ));
73583 + if (RTMPGetKeyParameter("HT_MCS", pValueStr, 50, pInput))
73586 +#ifdef CONFIG_STA_SUPPORT
73587 + IF_DEV_CONFIG_OPMODE_ON_STA(pAd)
73589 + Value = simple_strtol(pValueStr, 0, 10);
73591 +// if ((Value >= 0 && Value <= 15) || (Value == 32))
73592 + if ((Value >= 0 && Value <= 23) || (Value == 32)) // 3*3
73594 + pAd->StaCfg.DesiredTransmitSetting.field.MCS = Value;
73595 + pAd->StaCfg.bAutoTxRateSwitch = FALSE;
73596 + DBGPRINT(RT_DEBUG_TRACE, ("HT: MCS = %d\n", pAd->StaCfg.DesiredTransmitSetting.field.MCS));
73600 + pAd->StaCfg.DesiredTransmitSetting.field.MCS = MCS_AUTO;
73601 + pAd->StaCfg.bAutoTxRateSwitch = TRUE;
73602 + DBGPRINT(RT_DEBUG_TRACE, ("HT: MCS = AUTO\n"));
73605 +#endif // CONFIG_STA_SUPPORT //
73609 + if (RTMPGetKeyParameter("HT_STBC", pValueStr, 25, pInput))
73611 + Value = simple_strtol(pValueStr, 0, 10);
73612 + if (Value == STBC_USE)
73614 + pAd->CommonCfg.RegTransmitSetting.field.STBC = STBC_USE;
73618 + pAd->CommonCfg.RegTransmitSetting.field.STBC = STBC_NONE;
73620 + DBGPRINT(RT_DEBUG_TRACE, ("HT: STBC = %d\n", pAd->CommonCfg.RegTransmitSetting.field.STBC));
73623 + // 40_Mhz_Intolerant
73624 + if (RTMPGetKeyParameter("HT_40MHZ_INTOLERANT", pValueStr, 25, pInput))
73626 + Value = simple_strtol(pValueStr, 0, 10);
73629 + pAd->CommonCfg.bForty_Mhz_Intolerant = FALSE;
73633 + pAd->CommonCfg.bForty_Mhz_Intolerant = TRUE;
73635 + DBGPRINT(RT_DEBUG_TRACE, ("HT: 40MHZ INTOLERANT = %d\n", pAd->CommonCfg.bForty_Mhz_Intolerant));
73638 + if(RTMPGetKeyParameter("HT_TxStream", pValueStr, 10, pInput))
73640 + switch (simple_strtol(pValueStr, 0, 10))
73643 + pAd->CommonCfg.TxStream = 1;
73646 + pAd->CommonCfg.TxStream = 2;
73650 + pAd->CommonCfg.TxStream = 3;
73652 + if (pAd->MACVersion < RALINK_2883_VERSION)
73653 + pAd->CommonCfg.TxStream = 2; // only 2 tx streams for RT2860 series
73656 + DBGPRINT(RT_DEBUG_TRACE, ("HT: Tx Stream = %d\n", pAd->CommonCfg.TxStream));
73659 + if(RTMPGetKeyParameter("HT_RxStream", pValueStr, 10, pInput))
73661 + switch (simple_strtol(pValueStr, 0, 10))
73664 + pAd->CommonCfg.RxStream = 1;
73667 + pAd->CommonCfg.RxStream = 2;
73671 + pAd->CommonCfg.RxStream = 3;
73673 + if (pAd->MACVersion < RALINK_2883_VERSION)
73674 + pAd->CommonCfg.RxStream = 2; // only 2 rx streams for RT2860 series
73677 + DBGPRINT(RT_DEBUG_TRACE, ("HT: Rx Stream = %d\n", pAd->CommonCfg.RxStream));
73681 +#endif // DOT11_N_SUPPORT //
73684 +++ b/drivers/staging/rt3070/spectrum_def.h
73687 + *************************************************************************
73688 + * Ralink Tech Inc.
73689 + * 5F., No.36, Taiyuan St., Jhubei City,
73690 + * Hsinchu County 302,
73693 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
73695 + * This program is free software; you can redistribute it and/or modify *
73696 + * it under the terms of the GNU General Public License as published by *
73697 + * the Free Software Foundation; either version 2 of the License, or *
73698 + * (at your option) any later version. *
73700 + * This program is distributed in the hope that it will be useful, *
73701 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
73702 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
73703 + * GNU General Public License for more details. *
73705 + * You should have received a copy of the GNU General Public License *
73706 + * along with this program; if not, write to the *
73707 + * Free Software Foundation, Inc., *
73708 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
73710 + *************************************************************************
73716 + Handle association related requests either from WSTA or from local MLME
73718 + Revision History:
73720 + --------- ---------- ----------------------------------------------
73721 + Fonchi Wu 2008 created for 802.11h
73724 +#ifndef __SPECTRUM_DEF_H__
73725 +#define __SPECTRUM_DEF_H__
73727 +#define MAX_MEASURE_REQ_TAB_SIZE 3
73728 +#define MAX_HASH_MEASURE_REQ_TAB_SIZE MAX_MEASURE_REQ_TAB_SIZE
73730 +#define MAX_TPC_REQ_TAB_SIZE 3
73731 +#define MAX_HASH_TPC_REQ_TAB_SIZE MAX_TPC_REQ_TAB_SIZE
73733 +#define MIN_RCV_PWR 100 /* Negative value ((dBm) */
73735 +#define RM_TPC_REQ 0
73736 +#define RM_MEASURE_REQ 1
73738 +#define RM_BASIC 0
73740 +#define RM_RPI_HISTOGRAM 2
73742 +#define TPC_REQ_AGE_OUT 500 /* ms */
73743 +#define MQ_REQ_AGE_OUT 500 /* ms */
73745 +#define TPC_DIALOGTOKEN_HASH_INDEX(_DialogToken) ((_DialogToken) % MAX_HASH_TPC_REQ_TAB_SIZE)
73746 +#define MQ_DIALOGTOKEN_HASH_INDEX(_DialogToken) ((_DialogToken) % MAX_MEASURE_REQ_TAB_SIZE)
73748 +typedef struct _MEASURE_REQ_ENTRY
73750 + struct _MEASURE_REQ_ENTRY *pNext;
73753 + UINT8 DialogToken;
73754 + UINT8 MeasureDialogToken[3]; // 0:basic measure, 1: CCA measure, 2: RPI_Histogram measure.
73755 +} MEASURE_REQ_ENTRY, *PMEASURE_REQ_ENTRY;
73757 +typedef struct _MEASURE_REQ_TAB
73760 + PMEASURE_REQ_ENTRY Hash[MAX_HASH_MEASURE_REQ_TAB_SIZE];
73761 + MEASURE_REQ_ENTRY Content[MAX_MEASURE_REQ_TAB_SIZE];
73762 +} MEASURE_REQ_TAB, *PMEASURE_REQ_TAB;
73764 +typedef struct _TPC_REQ_ENTRY
73766 + struct _TPC_REQ_ENTRY *pNext;
73769 + UINT8 DialogToken;
73770 +} TPC_REQ_ENTRY, *PTPC_REQ_ENTRY;
73772 +typedef struct _TPC_REQ_TAB
73775 + PTPC_REQ_ENTRY Hash[MAX_HASH_TPC_REQ_TAB_SIZE];
73776 + TPC_REQ_ENTRY Content[MAX_TPC_REQ_TAB_SIZE];
73777 +} TPC_REQ_TAB, *PTPC_REQ_TAB;
73779 +#endif // __SPECTRUM_DEF_H__ //
73782 +++ b/drivers/staging/rt3070/spectrum.h
73785 + *************************************************************************
73786 + * Ralink Tech Inc.
73787 + * 5F., No.36, Taiyuan St., Jhubei City,
73788 + * Hsinchu County 302,
73791 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
73793 + * This program is free software; you can redistribute it and/or modify *
73794 + * it under the terms of the GNU General Public License as published by *
73795 + * the Free Software Foundation; either version 2 of the License, or *
73796 + * (at your option) any later version. *
73798 + * This program is distributed in the hope that it will be useful, *
73799 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
73800 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
73801 + * GNU General Public License for more details. *
73803 + * You should have received a copy of the GNU General Public License *
73804 + * along with this program; if not, write to the *
73805 + * Free Software Foundation, Inc., *
73806 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
73808 + *************************************************************************
73811 +#ifndef __SPECTRUM_H__
73812 +#define __SPECTRUM_H__
73814 +#include "rtmp_type.h"
73815 +#include "spectrum_def.h"
73817 +typedef struct PACKED _TPC_REPORT_INFO
73820 + UINT8 LinkMargin;
73821 +} TPC_REPORT_INFO, *PTPC_REPORT_INFO;
73823 +typedef struct PACKED _CH_SW_ANN_INFO
73828 +} CH_SW_ANN_INFO, *PCH_SW_ANN_INFO;
73830 +typedef union PACKED _MEASURE_REQ_MODE
73832 +#ifdef RT_BIG_ENDIAN
73850 +#endif // RT_BIG_ENDIAN //
73852 +} MEASURE_REQ_MODE, *PMEASURE_REQ_MODE;
73854 +typedef struct PACKED _MEASURE_REQ
73857 + UINT64 MeasureStartTime;
73858 + UINT16 MeasureDuration;
73859 +} MEASURE_REQ, *PMEASURE_REQ;
73861 +typedef struct PACKED _MEASURE_REQ_INFO
73864 + MEASURE_REQ_MODE ReqMode;
73866 + MEASURE_REQ MeasureReq;
73867 +} MEASURE_REQ_INFO, *PMEASURE_REQ_INFO;
73869 +typedef union PACKED _MEASURE_BASIC_REPORT_MAP
73871 +#ifdef RT_BIG_ENDIAN
73875 + UINT8 Unmeasure:1;
73877 + UINT8 UnidentifiedSignal:1;
73878 + UINT8 OfdmPreamble:1;
73885 + UINT8 OfdmPreamble:1;
73886 + UINT8 UnidentifiedSignal:1;
73888 + UINT8 Unmeasure:1;
73891 +#endif // RT_BIG_ENDIAN //
73893 +} MEASURE_BASIC_REPORT_MAP, *PMEASURE_BASIC_REPORT_MAP;
73895 +typedef struct PACKED _MEASURE_BASIC_REPORT
73898 + UINT64 MeasureStartTime;
73899 + UINT16 MeasureDuration;
73900 + MEASURE_BASIC_REPORT_MAP Map;
73901 +} MEASURE_BASIC_REPORT, *PMEASURE_BASIC_REPORT;
73903 +typedef struct PACKED _MEASURE_CCA_REPORT
73906 + UINT64 MeasureStartTime;
73907 + UINT16 MeasureDuration;
73908 + UINT8 CCA_Busy_Fraction;
73909 +} MEASURE_CCA_REPORT, *PMEASURE_CCA_REPORT;
73911 +typedef struct PACKED _MEASURE_RPI_REPORT
73914 + UINT64 MeasureStartTime;
73915 + UINT16 MeasureDuration;
73916 + UINT8 RPI_Density[8];
73917 +} MEASURE_RPI_REPORT, *PMEASURE_RPI_REPORT;
73919 +typedef union PACKED _MEASURE_REPORT_MODE
73923 +#ifdef RT_BIG_ENDIAN
73926 + UINT8 Incapable:1;
73930 + UINT8 Incapable:1;
73933 +#endif // RT_BIG_ENDIAN //
73936 +} MEASURE_REPORT_MODE, *PMEASURE_REPORT_MODE;
73938 +typedef struct PACKED _MEASURE_REPORT_INFO
73941 + MEASURE_REPORT_MODE ReportMode;
73942 + UINT8 ReportType;
73944 +} MEASURE_REPORT_INFO, *PMEASURE_REPORT_INFO;
73946 +typedef struct PACKED _QUIET_INFO
73949 + UINT8 QuietPeriod;
73950 + UINT8 QuietDuration;
73951 + UINT8 QuietOffset;
73952 +} QUIET_INFO, *PQUIET_INFO;
73955 + ==========================================================================
73957 + Prepare Measurement request action frame and enqueue it into
73958 + management queue waiting for transmition.
73961 + 1. the destination mac address of the frame.
73964 + ==========================================================================
73966 +VOID EnqueueMeasurementReq(
73967 + IN PRTMP_ADAPTER pAd,
73969 + IN UINT8 MeasureToken,
73970 + IN UINT8 MeasureReqMode,
73971 + IN UINT8 MeasureReqType,
73972 + IN UINT8 MeasureCh,
73973 + IN UINT16 MeasureDuration);
73976 + ==========================================================================
73978 + Prepare Measurement report action frame and enqueue it into
73979 + management queue waiting for transmition.
73982 + 1. the destination mac address of the frame.
73985 + ==========================================================================
73987 +VOID EnqueueMeasurementRep(
73988 + IN PRTMP_ADAPTER pAd,
73990 + IN UINT8 DialogToken,
73991 + IN UINT8 MeasureToken,
73992 + IN UINT8 MeasureReqMode,
73993 + IN UINT8 MeasureReqType,
73994 + IN UINT8 ReportInfoLen,
73995 + IN PUINT8 pReportInfo);
73998 + ==========================================================================
74000 + Prepare TPC Request action frame and enqueue it into
74001 + management queue waiting for transmition.
74004 + 1. the destination mac address of the frame.
74007 + ==========================================================================
74009 +VOID EnqueueTPCReq(
74010 + IN PRTMP_ADAPTER pAd,
74012 + IN UCHAR DialogToken);
74015 + ==========================================================================
74017 + Prepare TPC Report action frame and enqueue it into
74018 + management queue waiting for transmition.
74021 + 1. the destination mac address of the frame.
74024 + ==========================================================================
74026 +VOID EnqueueTPCRep(
74027 + IN PRTMP_ADAPTER pAd,
74029 + IN UINT8 DialogToken,
74031 + IN UINT8 LinkMargin);
74034 + ==========================================================================
74036 + Prepare Channel Switch Announcement action frame and enqueue it into
74037 + management queue waiting for transmition.
74040 + 1. the destination mac address of the frame.
74041 + 2. Channel switch announcement mode.
74042 + 2. a New selected channel.
74045 + ==========================================================================
74047 +VOID EnqueueChSwAnn(
74048 + IN PRTMP_ADAPTER pAd,
74050 + IN UINT8 ChSwMode,
74054 + ==========================================================================
74056 + Spectrun action frames Handler such as channel switch annoucement,
74057 + measurement report, measurement request actions frames.
74060 + Elme - MLME message containing the received frame
74063 + ==========================================================================
74065 +VOID PeerSpectrumAction(
74066 + IN PRTMP_ADAPTER pAd,
74067 + IN MLME_QUEUE_ELEM *Elem);
74070 + ==========================================================================
74076 + ==========================================================================
74078 +INT Set_MeasureReq_Proc(
74079 + IN PRTMP_ADAPTER pAd,
74082 +INT Set_TpcReq_Proc(
74083 + IN PRTMP_ADAPTER pAd,
74086 +VOID MeasureReqTabInit(
74087 + IN PRTMP_ADAPTER pAd);
74089 +VOID MeasureReqTabExit(
74090 + IN PRTMP_ADAPTER pAd);
74092 +VOID TpcReqTabInit(
74093 + IN PRTMP_ADAPTER pAd);
74095 +VOID TpcReqTabExit(
74096 + IN PRTMP_ADAPTER pAd);
74098 +VOID NotifyChSwAnnToPeerAPs(
74099 + IN PRTMP_ADAPTER pAd,
74102 + IN UINT8 ChSwMode,
74103 + IN UINT8 Channel);
74104 +#endif // __SPECTRUM_H__ //
74107 +++ b/drivers/staging/rt3070/sta/aironet.c
74110 + *************************************************************************
74111 + * Ralink Tech Inc.
74112 + * 5F., No.36, Taiyuan St., Jhubei City,
74113 + * Hsinchu County 302,
74116 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
74118 + * This program is free software; you can redistribute it and/or modify *
74119 + * it under the terms of the GNU General Public License as published by *
74120 + * the Free Software Foundation; either version 2 of the License, or *
74121 + * (at your option) any later version. *
74123 + * This program is distributed in the hope that it will be useful, *
74124 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
74125 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
74126 + * GNU General Public License for more details. *
74128 + * You should have received a copy of the GNU General Public License *
74129 + * along with this program; if not, write to the *
74130 + * Free Software Foundation, Inc., *
74131 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
74133 + *************************************************************************
74140 + Revision History:
74142 + -------- ---------- ----------------------------------------------
74143 + Paul Lin 04-06-15 Initial
74145 +#include "../rt_config.h"
74148 + ==========================================================================
74150 + association state machine init, including state transition and timer init
74152 + S - pointer to the association state machine
74153 + ==========================================================================
74155 +VOID AironetStateMachineInit(
74156 + IN PRTMP_ADAPTER pAd,
74157 + IN STATE_MACHINE *S,
74158 + OUT STATE_MACHINE_FUNC Trans[])
74160 + StateMachineInit(S, Trans, MAX_AIRONET_STATE, MAX_AIRONET_MSG, (STATE_MACHINE_FUNC)Drop, AIRONET_IDLE, AIRONET_MACHINE_BASE);
74161 + StateMachineSetAction(S, AIRONET_IDLE, MT2_AIRONET_MSG, (STATE_MACHINE_FUNC)AironetMsgAction);
74162 + StateMachineSetAction(S, AIRONET_IDLE, MT2_AIRONET_SCAN_REQ, (STATE_MACHINE_FUNC)AironetRequestAction);
74163 + StateMachineSetAction(S, AIRONET_SCANNING, MT2_AIRONET_SCAN_DONE, (STATE_MACHINE_FUNC)AironetReportAction);
74167 + ==========================================================================
74169 + This is state machine function.
74170 + When receiving EAPOL packets which is for 802.1x key management.
74171 + Use both in WPA, and WPAPSK case.
74172 + In this function, further dispatch to different functions according to the received packet. 3 categories are :
74173 + 1. normal 4-way pairwisekey and 2-way groupkey handshake
74174 + 2. MIC error (Countermeasures attack) report packet from STA.
74175 + 3. Request for pairwise/group key update from STA
74177 + ==========================================================================
74179 +VOID AironetMsgAction(
74180 + IN PRTMP_ADAPTER pAd,
74181 + IN MLME_QUEUE_ELEM *Elem)
74186 + PAIRONET_RM_REQUEST_FRAME pRMReq;
74187 + PRM_REQUEST_ACTION pReqElem;
74189 + DBGPRINT(RT_DEBUG_TRACE, ("-----> AironetMsgAction\n"));
74191 + // 0. Get Aironet IAPP header first
74192 + pRMReq = (PAIRONET_RM_REQUEST_FRAME) &Elem->Msg[LENGTH_802_11];
74193 + pData = (PUCHAR) &Elem->Msg[LENGTH_802_11];
74195 + // 1. Change endian format form network to little endian
74196 + Length = be2cpu16(pRMReq->IAPP.Length);
74198 + // 2.0 Sanity check, this should only happen when CCX 2.0 support is enabled
74199 + if (pAd->StaCfg.CCXEnable != TRUE)
74202 + // 2.1 Radio measurement must be on
74203 + if (pAd->StaCfg.CCXControl.field.RMEnable != 1)
74206 + // 2.2. Debug print all bit information
74207 + DBGPRINT(RT_DEBUG_TRACE, ("IAPP ID & Length %d\n", Length));
74208 + DBGPRINT(RT_DEBUG_TRACE, ("IAPP Type %x\n", pRMReq->IAPP.Type));
74209 + DBGPRINT(RT_DEBUG_TRACE, ("IAPP SubType %x\n", pRMReq->IAPP.SubType));
74210 + DBGPRINT(RT_DEBUG_TRACE, ("IAPP Dialog Token %x\n", pRMReq->IAPP.Token));
74211 + DBGPRINT(RT_DEBUG_TRACE, ("IAPP Activation Delay %x\n", pRMReq->Delay));
74212 + DBGPRINT(RT_DEBUG_TRACE, ("IAPP Measurement Offset %x\n", pRMReq->Offset));
74214 + // 3. Check IAPP frame type, it must be 0x32 for Cisco Aironet extension
74215 + if (pRMReq->IAPP.Type != AIRONET_IAPP_TYPE)
74217 + DBGPRINT(RT_DEBUG_ERROR, ("Wrong IAPP type for Cisco Aironet extension\n"));
74221 + // 4. Check IAPP frame subtype, it must be 0x01 for Cisco Aironet extension request.
74222 + // Since we are acting as client only, we will disregards reply subtype.
74223 + if (pRMReq->IAPP.SubType != AIRONET_IAPP_SUBTYPE_REQUEST)
74225 + DBGPRINT(RT_DEBUG_ERROR, ("Wrong IAPP subtype for Cisco Aironet extension\n"));
74229 + // 5. Verify Destination MAC and Source MAC, both should be all zeros.
74230 + if (! MAC_ADDR_EQUAL(pRMReq->IAPP.DA, ZERO_MAC_ADDR))
74232 + DBGPRINT(RT_DEBUG_ERROR, ("Wrong IAPP DA for Cisco Aironet extension, it's not Zero\n"));
74236 + if (! MAC_ADDR_EQUAL(pRMReq->IAPP.SA, ZERO_MAC_ADDR))
74238 + DBGPRINT(RT_DEBUG_ERROR, ("Wrong IAPP SA for Cisco Aironet extension, it's not Zero\n"));
74242 + // 6. Reinit all report related fields
74243 + NdisZeroMemory(pAd->StaCfg.FrameReportBuf, 2048);
74244 + NdisZeroMemory(pAd->StaCfg.BssReportOffset, sizeof(USHORT) * MAX_LEN_OF_BSS_TABLE);
74245 + NdisZeroMemory(pAd->StaCfg.MeasurementRequest, sizeof(RM_REQUEST_ACTION) * 4);
74247 + // 7. Point to the start of first element report element
74248 + pAd->StaCfg.FrameReportLen = LENGTH_802_11 + sizeof(AIRONET_IAPP_HEADER);
74249 + DBGPRINT(RT_DEBUG_TRACE, ("FR len = %d\n", pAd->StaCfg.FrameReportLen));
74250 + pAd->StaCfg.LastBssIndex = 0xff;
74251 + pAd->StaCfg.RMReqCnt = 0;
74252 + pAd->StaCfg.ParallelReq = FALSE;
74253 + pAd->StaCfg.ParallelDuration = 0;
74254 + pAd->StaCfg.ParallelChannel = 0;
74255 + pAd->StaCfg.IAPPToken = pRMReq->IAPP.Token;
74256 + pAd->StaCfg.CurrentRMReqIdx = 0;
74257 + pAd->StaCfg.CLBusyBytes = 0;
74258 + // Reset the statistics
74259 + for (i = 0; i < 8; i++)
74260 + pAd->StaCfg.RPIDensity[i] = 0;
74264 + // 8. Save dialog token for report
74265 + pAd->StaCfg.IAPPToken = pRMReq->IAPP.Token;
74267 + // Save Activation delay & measurement offset, Not really needed
74269 + // 9. Point to the first request element
74270 + pData += sizeof(AIRONET_RM_REQUEST_FRAME);
74271 + // Length should exclude the CISCO Aironet SNAP header
74272 + Length -= (sizeof(AIRONET_RM_REQUEST_FRAME) - LENGTH_802_1_H);
74274 + // 10. Start Parsing the Measurement elements.
74275 + // Be careful about multiple MR elements within one frames.
74276 + while (Length > 0)
74278 + pReqElem = (PRM_REQUEST_ACTION) pData;
74279 + switch (pReqElem->ReqElem.Eid)
74281 + case IE_MEASUREMENT_REQUEST:
74282 + // From the example, it seems we only need to support one request in one frame
74283 + // There is no multiple request in one frame.
74284 + // Besides, looks like we need to take care the measurement request only.
74285 + // The measurement request is always 4 bytes.
74287 + // Start parsing this type of request.
74288 + // 0. Eid is IE_MEASUREMENT_REQUEST
74289 + // 1. Length didn't include Eid and Length field, it always be 8.
74290 + // 2. Measurement Token, we nned to save it for the corresponding report.
74291 + // 3. Measurement Mode, Although there are definitions, but we din't see value other than
74292 + // 0 from test specs examples.
74293 + // 4. Measurement Type, this is what we need to do.
74294 + switch (pReqElem->ReqElem.Type)
74296 + case MSRN_TYPE_CHANNEL_LOAD_REQ:
74297 + case MSRN_TYPE_NOISE_HIST_REQ:
74298 + case MSRN_TYPE_BEACON_REQ:
74299 + // Check the Enable non-serving channel measurement control
74300 + if (pAd->StaCfg.CCXControl.field.DCRMEnable == 0)
74302 + // Check channel before enqueue the action
74303 + if (pReqElem->Measurement.Channel != pAd->CommonCfg.Channel)
74308 + // If off channel measurement, check the TU duration limit
74309 + if (pReqElem->Measurement.Channel != pAd->CommonCfg.Channel)
74310 + if (pReqElem->Measurement.Duration > pAd->StaCfg.CCXControl.field.TuLimit)
74314 + // Save requests and execute actions later
74315 + NdisMoveMemory(&pAd->StaCfg.MeasurementRequest[Index], pReqElem, sizeof(RM_REQUEST_ACTION));
74319 + case MSRN_TYPE_FRAME_REQ:
74320 + // Since it's option, we will support later
74321 + // FrameRequestAction(pAd, pData);
74328 + // Point to next Measurement request
74329 + pData += sizeof(RM_REQUEST_ACTION);
74330 + Length -= sizeof(RM_REQUEST_ACTION);
74333 + // We accept request only, all others are dropped
74334 + case IE_MEASUREMENT_REPORT:
74335 + case IE_AP_TX_POWER:
74336 + case IE_MEASUREMENT_CAPABILITY:
74342 + // 11. Update some flags and index
74343 + pAd->StaCfg.RMReqCnt = Index;
74347 + MlmeEnqueue(pAd, AIRONET_STATE_MACHINE, MT2_AIRONET_SCAN_REQ, 0, NULL);
74348 + RT28XX_MLME_HANDLER(pAd);
74351 + DBGPRINT(RT_DEBUG_TRACE, ("<----- AironetMsgAction\n"));
74355 + ========================================================================
74357 + Routine Description:
74366 + ========================================================================
74368 +VOID AironetRequestAction(
74369 + IN PRTMP_ADAPTER pAd,
74370 + IN MLME_QUEUE_ELEM *Elem)
74372 + PRM_REQUEST_ACTION pReq;
74374 + // 1. Point to next request element
74375 + pReq = (PRM_REQUEST_ACTION) &pAd->StaCfg.MeasurementRequest[pAd->StaCfg.CurrentRMReqIdx];
74377 + // 2. Parse measurement type and call appropriate functions
74378 + if (pReq->ReqElem.Type == MSRN_TYPE_CHANNEL_LOAD_REQ)
74379 + // Channel Load measurement request
74380 + ChannelLoadRequestAction(pAd, pAd->StaCfg.CurrentRMReqIdx);
74381 + else if (pReq->ReqElem.Type == MSRN_TYPE_NOISE_HIST_REQ)
74382 + // Noise Histogram measurement request
74383 + NoiseHistRequestAction(pAd, pAd->StaCfg.CurrentRMReqIdx);
74384 + else if (pReq->ReqElem.Type == MSRN_TYPE_BEACON_REQ)
74385 + // Beacon measurement request
74386 + BeaconRequestAction(pAd, pAd->StaCfg.CurrentRMReqIdx);
74388 + // Unknown. Do nothing and return, this should never happen
74391 + // 3. Peek into the next request, if it's parallel, we will update the scan time to the largest one
74392 + if ((pAd->StaCfg.CurrentRMReqIdx + 1) < pAd->StaCfg.RMReqCnt)
74394 + pReq = (PRM_REQUEST_ACTION) &pAd->StaCfg.MeasurementRequest[pAd->StaCfg.CurrentRMReqIdx + 1];
74395 + // Check for parallel bit
74396 + if ((pReq->ReqElem.Mode & 0x01) && (pReq->Measurement.Channel == pAd->StaCfg.CCXScanChannel))
74398 + // Update parallel mode request information
74399 + pAd->StaCfg.ParallelReq = TRUE;
74400 + pAd->StaCfg.CCXScanTime = ((pReq->Measurement.Duration > pAd->StaCfg.CCXScanTime) ?
74401 + (pReq->Measurement.Duration) : (pAd->StaCfg.CCXScanTime));
74405 + // 4. Call RT28XX_MLME_HANDLER to execute the request mlme commands, Scan request is the only one used
74406 + RT28XX_MLME_HANDLER(pAd);
74412 + ========================================================================
74414 + Routine Description:
74415 + Prepare channel load report action, special scan operation added
74419 + pAd Pointer to our adapter
74420 + pData Start from element ID
74427 + ========================================================================
74429 +VOID ChannelLoadRequestAction(
74430 + IN PRTMP_ADAPTER pAd,
74433 + PRM_REQUEST_ACTION pReq;
74434 + MLME_SCAN_REQ_STRUCT ScanReq;
74435 + UCHAR ZeroSsid[32];
74436 + NDIS_STATUS NStatus;
74437 + PUCHAR pOutBuffer = NULL;
74438 + PHEADER_802_11 pNullFrame;
74440 + DBGPRINT(RT_DEBUG_TRACE, ("ChannelLoadRequestAction ----->\n"));
74442 + pReq = (PRM_REQUEST_ACTION) &pAd->StaCfg.MeasurementRequest[Index];
74443 + NdisZeroMemory(ZeroSsid, 32);
74445 + // Prepare for special scan request
74446 + // The scan definition is different with our Active, Passive scan definition.
74447 + // For CCX2, Active means send out probe request with broadcast BSSID.
74448 + // Passive means no probe request sent, only listen to the beacons.
74449 + // The channel scanned is fixed as specified, no need to scan all channels.
74450 + // The scan wait time is specified in the request too.
74451 + // Passive scan Mode
74453 + // Control state machine is not idle, reject the request
74454 + if ((pAd->Mlme.CntlMachine.CurrState != CNTL_IDLE) && (Index == 0))
74457 + // Fill out stuff for scan request
74458 + ScanParmFill(pAd, &ScanReq, ZeroSsid, 0, BSS_ANY, SCAN_CISCO_CHANNEL_LOAD);
74459 + MlmeEnqueue(pAd, SYNC_STATE_MACHINE, MT2_MLME_SCAN_REQ, sizeof(MLME_SCAN_REQ_STRUCT), &ScanReq);
74460 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_OID_LIST_SCAN;
74462 + // Reset some internal control flags to make sure this scan works.
74463 + BssTableInit(&pAd->StaCfg.CCXBssTab);
74464 + pAd->StaCfg.ScanCnt = 0;
74465 + pAd->StaCfg.CCXScanChannel = pReq->Measurement.Channel;
74466 + pAd->StaCfg.CCXScanTime = pReq->Measurement.Duration;
74468 + DBGPRINT(RT_DEBUG_TRACE, ("Duration %d, Channel %d!\n", pReq->Measurement.Duration, pReq->Measurement.Channel));
74470 + // If it's non serving channel scan, send out a null frame with PSM bit on.
74471 + if (pAd->StaCfg.CCXScanChannel != pAd->CommonCfg.Channel)
74473 + // Use MLME enqueue method
74474 + NStatus = MlmeAllocateMemory(pAd, (PVOID)&pOutBuffer); //Get an unused nonpaged memory
74475 + if (NStatus != NDIS_STATUS_SUCCESS)
74478 + pNullFrame = (PHEADER_802_11) pOutBuffer;;
74479 + // Make the power save Null frame with PSM bit on
74480 + MgtMacHeaderInit(pAd, pNullFrame, SUBTYPE_NULL_FUNC, 1, pAd->CommonCfg.Bssid, pAd->CommonCfg.Bssid);
74481 + pNullFrame->Duration = 0;
74482 + pNullFrame->FC.Type = BTYPE_DATA;
74483 + pNullFrame->FC.PwrMgmt = PWR_SAVE;
74485 + // Send using priority queue
74486 + MiniportMMRequest(pAd, 0, pOutBuffer, sizeof(HEADER_802_11));
74487 + MlmeFreeMemory(pAd, pOutBuffer);
74488 + DBGPRINT(RT_DEBUG_TRACE, ("Send PSM Data frame for off channel RM\n"));
74489 + RTMPusecDelay(5000);
74492 + pAd->StaCfg.CCXReqType = MSRN_TYPE_CHANNEL_LOAD_REQ;
74493 + pAd->StaCfg.CLBusyBytes = 0;
74494 + // Enable Rx with promiscuous reception
74495 + RTMP_IO_WRITE32(pAd, RX_FILTR_CFG, 0x1010);
74497 + // Set channel load measurement flag
74498 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_RADIO_MEASUREMENT);
74500 + pAd->Mlme.AironetMachine.CurrState = AIRONET_SCANNING;
74502 + DBGPRINT(RT_DEBUG_TRACE, ("ChannelLoadRequestAction <-----\n"));
74506 + ========================================================================
74508 + Routine Description:
74509 + Prepare noise histogram report action, special scan operation added
74513 + pAd Pointer to our adapter
74514 + pData Start from element ID
74521 + ========================================================================
74523 +VOID NoiseHistRequestAction(
74524 + IN PRTMP_ADAPTER pAd,
74527 + PRM_REQUEST_ACTION pReq;
74528 + MLME_SCAN_REQ_STRUCT ScanReq;
74529 + UCHAR ZeroSsid[32], i;
74530 + NDIS_STATUS NStatus;
74531 + PUCHAR pOutBuffer = NULL;
74532 + PHEADER_802_11 pNullFrame;
74534 + DBGPRINT(RT_DEBUG_TRACE, ("NoiseHistRequestAction ----->\n"));
74536 + pReq = (PRM_REQUEST_ACTION) &pAd->StaCfg.MeasurementRequest[Index];
74537 + NdisZeroMemory(ZeroSsid, 32);
74539 + // Prepare for special scan request
74540 + // The scan definition is different with our Active, Passive scan definition.
74541 + // For CCX2, Active means send out probe request with broadcast BSSID.
74542 + // Passive means no probe request sent, only listen to the beacons.
74543 + // The channel scanned is fixed as specified, no need to scan all channels.
74544 + // The scan wait time is specified in the request too.
74545 + // Passive scan Mode
74547 + // Control state machine is not idle, reject the request
74548 + if ((pAd->Mlme.CntlMachine.CurrState != CNTL_IDLE) && (Index == 0))
74551 + // Fill out stuff for scan request
74552 + ScanParmFill(pAd, &ScanReq, ZeroSsid, 0, BSS_ANY, SCAN_CISCO_NOISE);
74553 + MlmeEnqueue(pAd, SYNC_STATE_MACHINE, MT2_MLME_SCAN_REQ, sizeof(MLME_SCAN_REQ_STRUCT), &ScanReq);
74554 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_OID_LIST_SCAN;
74556 + // Reset some internal control flags to make sure this scan works.
74557 + BssTableInit(&pAd->StaCfg.CCXBssTab);
74558 + pAd->StaCfg.ScanCnt = 0;
74559 + pAd->StaCfg.CCXScanChannel = pReq->Measurement.Channel;
74560 + pAd->StaCfg.CCXScanTime = pReq->Measurement.Duration;
74561 + pAd->StaCfg.CCXReqType = MSRN_TYPE_NOISE_HIST_REQ;
74563 + DBGPRINT(RT_DEBUG_TRACE, ("Duration %d, Channel %d!\n", pReq->Measurement.Duration, pReq->Measurement.Channel));
74565 + // If it's non serving channel scan, send out a null frame with PSM bit on.
74566 + if (pAd->StaCfg.CCXScanChannel != pAd->CommonCfg.Channel)
74568 + // Use MLME enqueue method
74569 + NStatus = MlmeAllocateMemory(pAd, (PVOID)&pOutBuffer); //Get an unused nonpaged memory
74570 + if (NStatus != NDIS_STATUS_SUCCESS)
74573 + pNullFrame = (PHEADER_802_11) pOutBuffer;
74574 + // Make the power save Null frame with PSM bit on
74575 + MgtMacHeaderInit(pAd, pNullFrame, SUBTYPE_NULL_FUNC, 1, pAd->CommonCfg.Bssid, pAd->CommonCfg.Bssid);
74576 + pNullFrame->Duration = 0;
74577 + pNullFrame->FC.Type = BTYPE_DATA;
74578 + pNullFrame->FC.PwrMgmt = PWR_SAVE;
74580 + // Send using priority queue
74581 + MiniportMMRequest(pAd, 0, pOutBuffer, sizeof(HEADER_802_11));
74582 + MlmeFreeMemory(pAd, pOutBuffer);
74583 + DBGPRINT(RT_DEBUG_TRACE, ("Send PSM Data frame for off channel RM\n"));
74584 + RTMPusecDelay(5000);
74587 + // Reset the statistics
74588 + for (i = 0; i < 8; i++)
74589 + pAd->StaCfg.RPIDensity[i] = 0;
74591 + // Enable Rx with promiscuous reception
74592 + RTMP_IO_WRITE32(pAd, RX_FILTR_CFG, 0x1010);
74594 + // Set channel load measurement flag
74595 + RTMP_SET_FLAG(pAd, fRTMP_ADAPTER_RADIO_MEASUREMENT);
74597 + pAd->Mlme.AironetMachine.CurrState = AIRONET_SCANNING;
74599 + DBGPRINT(RT_DEBUG_TRACE, ("NoiseHistRequestAction <-----\n"));
74603 + ========================================================================
74605 + Routine Description:
74606 + Prepare Beacon report action, special scan operation added
74610 + pAd Pointer to our adapter
74611 + pData Start from element ID
74618 + ========================================================================
74620 +VOID BeaconRequestAction(
74621 + IN PRTMP_ADAPTER pAd,
74624 + PRM_REQUEST_ACTION pReq;
74625 + NDIS_STATUS NStatus;
74626 + PUCHAR pOutBuffer = NULL;
74627 + PHEADER_802_11 pNullFrame;
74628 + MLME_SCAN_REQ_STRUCT ScanReq;
74629 + UCHAR ZeroSsid[32];
74631 + DBGPRINT(RT_DEBUG_TRACE, ("BeaconRequestAction ----->\n"));
74633 + pReq = (PRM_REQUEST_ACTION) &pAd->StaCfg.MeasurementRequest[Index];
74634 + NdisZeroMemory(ZeroSsid, 32);
74636 + // Prepare for special scan request
74637 + // The scan definition is different with our Active, Passive scan definition.
74638 + // For CCX2, Active means send out probe request with broadcast BSSID.
74639 + // Passive means no probe request sent, only listen to the beacons.
74640 + // The channel scanned is fixed as specified, no need to scan all channels.
74641 + // The scan wait time is specified in the request too.
74642 + if (pReq->Measurement.ScanMode == MSRN_SCAN_MODE_PASSIVE)
74644 + // Passive scan Mode
74645 + DBGPRINT(RT_DEBUG_TRACE, ("Passive Scan Mode!\n"));
74647 + // Control state machine is not idle, reject the request
74648 + if ((pAd->Mlme.CntlMachine.CurrState != CNTL_IDLE) && (Index == 0))
74651 + // Fill out stuff for scan request
74652 + ScanParmFill(pAd, &ScanReq, ZeroSsid, 0, BSS_ANY, SCAN_CISCO_PASSIVE);
74653 + MlmeEnqueue(pAd, SYNC_STATE_MACHINE, MT2_MLME_SCAN_REQ, sizeof(MLME_SCAN_REQ_STRUCT), &ScanReq);
74654 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_OID_LIST_SCAN;
74656 + // Reset some internal control flags to make sure this scan works.
74657 + BssTableInit(&pAd->StaCfg.CCXBssTab);
74658 + pAd->StaCfg.ScanCnt = 0;
74659 + pAd->StaCfg.CCXScanChannel = pReq->Measurement.Channel;
74660 + pAd->StaCfg.CCXScanTime = pReq->Measurement.Duration;
74661 + pAd->StaCfg.CCXReqType = MSRN_TYPE_BEACON_REQ;
74662 + DBGPRINT(RT_DEBUG_TRACE, ("Duration %d!\n", pReq->Measurement.Duration));
74664 + // If it's non serving channel scan, send out a null frame with PSM bit on.
74665 + if (pAd->StaCfg.CCXScanChannel != pAd->CommonCfg.Channel)
74667 + // Use MLME enqueue method
74668 + NStatus = MlmeAllocateMemory(pAd, (PVOID)&pOutBuffer); //Get an unused nonpaged memory
74669 + if (NStatus != NDIS_STATUS_SUCCESS)
74672 + pNullFrame = (PHEADER_802_11) pOutBuffer;
74673 + // Make the power save Null frame with PSM bit on
74674 + MgtMacHeaderInit(pAd, pNullFrame, SUBTYPE_NULL_FUNC, 1, pAd->CommonCfg.Bssid, pAd->CommonCfg.Bssid);
74675 + pNullFrame->Duration = 0;
74676 + pNullFrame->FC.Type = BTYPE_DATA;
74677 + pNullFrame->FC.PwrMgmt = PWR_SAVE;
74679 + // Send using priority queue
74680 + MiniportMMRequest(pAd, 0, pOutBuffer, sizeof(HEADER_802_11));
74681 + MlmeFreeMemory(pAd, pOutBuffer);
74682 + DBGPRINT(RT_DEBUG_TRACE, ("Send PSM Data frame for off channel RM\n"));
74683 + RTMPusecDelay(5000);
74686 + pAd->Mlme.AironetMachine.CurrState = AIRONET_SCANNING;
74688 + else if (pReq->Measurement.ScanMode == MSRN_SCAN_MODE_ACTIVE)
74690 + // Active scan Mode
74691 + DBGPRINT(RT_DEBUG_TRACE, ("Active Scan Mode!\n"));
74693 + // Control state machine is not idle, reject the request
74694 + if (pAd->Mlme.CntlMachine.CurrState != CNTL_IDLE)
74697 + // Fill out stuff for scan request
74698 + ScanParmFill(pAd, &ScanReq, ZeroSsid, 0, BSS_ANY, SCAN_CISCO_ACTIVE);
74699 + MlmeEnqueue(pAd, SYNC_STATE_MACHINE, MT2_MLME_SCAN_REQ, sizeof(MLME_SCAN_REQ_STRUCT), &ScanReq);
74700 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_OID_LIST_SCAN;
74702 + // Reset some internal control flags to make sure this scan works.
74703 + BssTableInit(&pAd->StaCfg.CCXBssTab);
74704 + pAd->StaCfg.ScanCnt = 0;
74705 + pAd->StaCfg.CCXScanChannel = pReq->Measurement.Channel;
74706 + pAd->StaCfg.CCXScanTime = pReq->Measurement.Duration;
74707 + pAd->StaCfg.CCXReqType = MSRN_TYPE_BEACON_REQ;
74708 + DBGPRINT(RT_DEBUG_TRACE, ("Duration %d!\n", pReq->Measurement.Duration));
74710 + // If it's non serving channel scan, send out a null frame with PSM bit on.
74711 + if (pAd->StaCfg.CCXScanChannel != pAd->CommonCfg.Channel)
74713 + // Use MLME enqueue method
74714 + NStatus = MlmeAllocateMemory(pAd, (PVOID)&pOutBuffer); //Get an unused nonpaged memory
74715 + if (NStatus != NDIS_STATUS_SUCCESS)
74718 + pNullFrame = (PHEADER_802_11) pOutBuffer;
74719 + // Make the power save Null frame with PSM bit on
74720 + MgtMacHeaderInit(pAd, pNullFrame, SUBTYPE_NULL_FUNC, 1, pAd->CommonCfg.Bssid, pAd->CommonCfg.Bssid);
74721 + pNullFrame->Duration = 0;
74722 + pNullFrame->FC.Type = BTYPE_DATA;
74723 + pNullFrame->FC.PwrMgmt = PWR_SAVE;
74725 + // Send using priority queue
74726 + MiniportMMRequest(pAd, 0, pOutBuffer, sizeof(HEADER_802_11));
74727 + MlmeFreeMemory(pAd, pOutBuffer);
74728 + DBGPRINT(RT_DEBUG_TRACE, ("Send PSM Data frame for off channel RM\n"));
74729 + RTMPusecDelay(5000);
74732 + pAd->Mlme.AironetMachine.CurrState = AIRONET_SCANNING;
74734 + else if (pReq->Measurement.ScanMode == MSRN_SCAN_MODE_BEACON_TABLE)
74736 + // Beacon report Mode, report all the APS in current bss table
74737 + DBGPRINT(RT_DEBUG_TRACE, ("Beacon Report Mode!\n"));
74739 + // Copy current BSS table to CCX table, we can omit this step later on.
74740 + NdisMoveMemory(&pAd->StaCfg.CCXBssTab, &pAd->ScanTab, sizeof(BSS_TABLE));
74742 + // Create beacon report from Bss table
74743 + AironetCreateBeaconReportFromBssTable(pAd);
74745 + // Set state to scanning
74746 + pAd->Mlme.AironetMachine.CurrState = AIRONET_SCANNING;
74748 + // Enqueue report request
74749 + // Cisco scan request is finished, prepare beacon report
74750 + MlmeEnqueue(pAd, AIRONET_STATE_MACHINE, MT2_AIRONET_SCAN_DONE, 0, NULL);
74754 + // Wrong scan Mode
74755 + DBGPRINT(RT_DEBUG_TRACE, ("Wrong Scan Mode!\n"));
74758 + DBGPRINT(RT_DEBUG_TRACE, ("BeaconRequestAction <-----\n"));
74762 + ========================================================================
74764 + Routine Description:
74773 + ========================================================================
74775 +VOID AironetReportAction(
74776 + IN PRTMP_ADAPTER pAd,
74777 + IN MLME_QUEUE_ELEM *Elem)
74779 + PRM_REQUEST_ACTION pReq;
74782 + NdisGetSystemUpTime(&Now32);
74783 + pAd->StaCfg.LastBeaconRxTime = Now32;
74785 + pReq = (PRM_REQUEST_ACTION) &pAd->StaCfg.MeasurementRequest[pAd->StaCfg.CurrentRMReqIdx];
74787 + DBGPRINT(RT_DEBUG_TRACE, ("AironetReportAction ----->\n"));
74789 + // 1. Parse measurement type and call appropriate functions
74790 + if (pReq->ReqElem.Type == MSRN_TYPE_CHANNEL_LOAD_REQ)
74791 + // Channel Load measurement request
74792 + ChannelLoadReportAction(pAd, pAd->StaCfg.CurrentRMReqIdx);
74793 + else if (pReq->ReqElem.Type == MSRN_TYPE_NOISE_HIST_REQ)
74794 + // Noise Histogram measurement request
74795 + NoiseHistReportAction(pAd, pAd->StaCfg.CurrentRMReqIdx);
74796 + else if (pReq->ReqElem.Type == MSRN_TYPE_BEACON_REQ)
74797 + // Beacon measurement request
74798 + BeaconReportAction(pAd, pAd->StaCfg.CurrentRMReqIdx);
74800 + // Unknown. Do nothing and return
74803 + // 2. Point to the correct index of action element, start from 0
74804 + pAd->StaCfg.CurrentRMReqIdx++;
74806 + // 3. Check for parallel actions
74807 + if (pAd->StaCfg.ParallelReq == TRUE)
74809 + pReq = (PRM_REQUEST_ACTION) &pAd->StaCfg.MeasurementRequest[pAd->StaCfg.CurrentRMReqIdx];
74811 + // Process next action right away
74812 + if (pReq->ReqElem.Type == MSRN_TYPE_CHANNEL_LOAD_REQ)
74813 + // Channel Load measurement request
74814 + ChannelLoadReportAction(pAd, pAd->StaCfg.CurrentRMReqIdx);
74815 + else if (pReq->ReqElem.Type == MSRN_TYPE_NOISE_HIST_REQ)
74816 + // Noise Histogram measurement request
74817 + NoiseHistReportAction(pAd, pAd->StaCfg.CurrentRMReqIdx);
74819 + pAd->StaCfg.ParallelReq = FALSE;
74820 + pAd->StaCfg.CurrentRMReqIdx++;
74823 + if (pAd->StaCfg.CurrentRMReqIdx >= pAd->StaCfg.RMReqCnt)
74825 + // 4. There is no more unprocessed measurement request, go for transmit this report
74826 + AironetFinalReportAction(pAd);
74827 + pAd->Mlme.AironetMachine.CurrState = AIRONET_IDLE;
74831 + pReq = (PRM_REQUEST_ACTION) &pAd->StaCfg.MeasurementRequest[pAd->StaCfg.CurrentRMReqIdx];
74833 + if (pReq->Measurement.Channel != pAd->CommonCfg.Channel)
74835 + RTMPusecDelay(100000);
74838 + // 5. There are more requests to be measure
74839 + MlmeEnqueue(pAd, AIRONET_STATE_MACHINE, MT2_AIRONET_SCAN_REQ, 0, NULL);
74840 + RT28XX_MLME_HANDLER(pAd);
74843 + DBGPRINT(RT_DEBUG_TRACE, ("AironetReportAction <-----\n"));
74847 + ========================================================================
74849 + Routine Description:
74858 + ========================================================================
74860 +VOID AironetFinalReportAction(
74861 + IN PRTMP_ADAPTER pAd)
74864 + PAIRONET_IAPP_HEADER pIAPP;
74865 + PHEADER_802_11 pHeader;
74866 + UCHAR AckRate = RATE_2;
74867 + USHORT AckDuration = 0;
74868 + NDIS_STATUS NStatus;
74869 + PUCHAR pOutBuffer = NULL;
74870 + ULONG FrameLen = 0;
74872 + DBGPRINT(RT_DEBUG_TRACE, ("AironetFinalReportAction ----->\n"));
74874 + // 0. Set up the frame pointer, Frame was inited at the end of message action
74875 + pDest = &pAd->StaCfg.FrameReportBuf[LENGTH_802_11];
74877 + // 1. Update report IAPP fields
74878 + pIAPP = (PAIRONET_IAPP_HEADER) pDest;
74880 + // 2. Copy Cisco SNAP header
74881 + NdisMoveMemory(pIAPP->CiscoSnapHeader, SNAP_AIRONET, LENGTH_802_1_H);
74883 + // 3. network order for this 16bit length
74884 + pIAPP->Length = cpu2be16(pAd->StaCfg.FrameReportLen - LENGTH_802_11 - LENGTH_802_1_H);
74886 + // 3.1 sanity check the report length, ignore it if there is nothing to report
74887 + if (be2cpu16(pIAPP->Length) <= 18)
74890 + // 4. Type must be 0x32
74891 + pIAPP->Type = AIRONET_IAPP_TYPE;
74893 + // 5. SubType for report must be 0x81
74894 + pIAPP->SubType = AIRONET_IAPP_SUBTYPE_REPORT;
74896 + // 6. DA is not used and must be zero, although the whole frame was cleared at the start of function
74897 + // We will do it again here. We can use BSSID instead
74898 + COPY_MAC_ADDR(pIAPP->DA, pAd->CommonCfg.Bssid);
74900 + // 7. SA is the client reporting which must be our MAC
74901 + COPY_MAC_ADDR(pIAPP->SA, pAd->CurrentAddress);
74903 + // 8. Copy the saved dialog token
74904 + pIAPP->Token = pAd->StaCfg.IAPPToken;
74906 + // 9. Make the Report frame 802.11 header
74907 + // Reuse function in wpa.c
74908 + pHeader = (PHEADER_802_11) pAd->StaCfg.FrameReportBuf;
74909 + pAd->Sequence ++;
74910 + WpaMacHeaderInit(pAd, pHeader, 0, pAd->CommonCfg.Bssid);
74912 + // ACK size is 14 include CRC, and its rate is based on real time information
74913 + AckRate = pAd->CommonCfg.ExpectedACKRate[pAd->CommonCfg.MlmeRate];
74914 + AckDuration = RTMPCalcDuration(pAd, AckRate, 14);
74915 + pHeader->Duration = pAd->CommonCfg.Dsifs + AckDuration;
74917 + // Use MLME enqueue method
74918 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
74919 + if (NStatus != NDIS_STATUS_SUCCESS)
74922 + // 10. Prepare report frame with dynamic outbuffer. Just simply copy everything.
74923 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
74924 + pAd->StaCfg.FrameReportLen, pAd->StaCfg.FrameReportBuf,
74927 + // 11. Send using priority queue
74928 + MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
74929 + MlmeFreeMemory(pAd, pOutBuffer);
74931 + pAd->StaCfg.CCXReqType = MSRN_TYPE_UNUSED;
74933 + DBGPRINT(RT_DEBUG_TRACE, ("AironetFinalReportAction <-----\n"));
74937 + ========================================================================
74939 + Routine Description:
74948 + ========================================================================
74950 +VOID ChannelLoadReportAction(
74951 + IN PRTMP_ADAPTER pAd,
74954 + PMEASUREMENT_REPORT_ELEMENT pReport;
74955 + PCHANNEL_LOAD_REPORT pLoad;
74957 + UCHAR CCABusyFraction;
74959 + DBGPRINT(RT_DEBUG_TRACE, ("ChannelLoadReportAction ----->\n"));
74961 + // Disable Rx with promiscuous reception, make it back to normal
74962 + RTMP_IO_WRITE32(pAd, RX_FILTR_CFG, STANORMAL); // Staion not drop control frame will fail WiFi Certification.
74964 + // 0. Setup pointer for processing beacon & probe response
74965 + pDest = (PUCHAR) &pAd->StaCfg.FrameReportBuf[pAd->StaCfg.FrameReportLen];
74966 + pReport = (PMEASUREMENT_REPORT_ELEMENT) pDest;
74968 + // 1. Fill Measurement report element field.
74969 + pReport->Eid = IE_MEASUREMENT_REPORT;
74970 + // Fixed Length at 9, not include Eid and length fields
74971 + pReport->Length = 9;
74972 + pReport->Token = pAd->StaCfg.MeasurementRequest[Index].ReqElem.Token;
74973 + pReport->Mode = pAd->StaCfg.MeasurementRequest[Index].ReqElem.Mode;
74974 + pReport->Type = MSRN_TYPE_CHANNEL_LOAD_REQ;
74976 + // 2. Fill channel report measurement data
74977 + pDest += sizeof(MEASUREMENT_REPORT_ELEMENT);
74978 + pLoad = (PCHANNEL_LOAD_REPORT) pDest;
74979 + pLoad->Channel = pAd->StaCfg.MeasurementRequest[Index].Measurement.Channel;
74980 + pLoad->Spare = 0;
74981 + pLoad->Duration = pAd->StaCfg.MeasurementRequest[Index].Measurement.Duration;
74983 + // 3. Calculate the CCA Busy Fraction
74984 + // (Bytes + ACK size) * 8 / Tx speed * 255 / 1000 / measurement duration, use 24 us Tx speed
74985 + // = (Bytes + ACK) / 12 / duration
74986 + // 9 is the good value for pAd->StaCfg.CLFactor
74987 + // CCABusyFraction = (UCHAR) (pAd->StaCfg.CLBusyBytes / 9 / pLoad->Duration);
74988 + CCABusyFraction = (UCHAR) (pAd->StaCfg.CLBusyBytes / pAd->StaCfg.CLFactor / pLoad->Duration);
74989 + if (CCABusyFraction < 10)
74990 + CCABusyFraction = (UCHAR) (pAd->StaCfg.CLBusyBytes / 3 / pLoad->Duration) + 1;
74992 + pLoad->CCABusy = CCABusyFraction;
74993 + DBGPRINT(RT_DEBUG_TRACE, ("CLBusyByte %ld, Duration %d, Result, %d\n", pAd->StaCfg.CLBusyBytes, pLoad->Duration, CCABusyFraction));
74995 + DBGPRINT(RT_DEBUG_TRACE, ("FrameReportLen %d\n", pAd->StaCfg.FrameReportLen));
74996 + pAd->StaCfg.FrameReportLen += (sizeof(MEASUREMENT_REPORT_ELEMENT) + sizeof(CHANNEL_LOAD_REPORT));
74997 + DBGPRINT(RT_DEBUG_TRACE, ("FrameReportLen %d\n", pAd->StaCfg.FrameReportLen));
74999 + // 4. Clear channel load measurement flag
75000 + RTMP_CLEAR_FLAG(pAd, fRTMP_ADAPTER_RADIO_MEASUREMENT);
75002 + // 5. reset to idle state
75003 + pAd->Mlme.AironetMachine.CurrState = AIRONET_IDLE;
75005 + DBGPRINT(RT_DEBUG_TRACE, ("ChannelLoadReportAction <-----\n"));
75009 + ========================================================================
75011 + Routine Description:
75020 + ========================================================================
75022 +VOID NoiseHistReportAction(
75023 + IN PRTMP_ADAPTER pAd,
75026 + PMEASUREMENT_REPORT_ELEMENT pReport;
75027 + PNOISE_HIST_REPORT pNoise;
75029 + UCHAR i,NoiseCnt;
75030 + USHORT TotalRPICnt, TotalRPISum;
75032 + DBGPRINT(RT_DEBUG_TRACE, ("NoiseHistReportAction ----->\n"));
75034 + // 0. Disable Rx with promiscuous reception, make it back to normal
75035 + RTMP_IO_WRITE32(pAd, RX_FILTR_CFG, STANORMAL); // Staion not drop control frame will fail WiFi Certification.
75036 + // 1. Setup pointer for processing beacon & probe response
75037 + pDest = (PUCHAR) &pAd->StaCfg.FrameReportBuf[pAd->StaCfg.FrameReportLen];
75038 + pReport = (PMEASUREMENT_REPORT_ELEMENT) pDest;
75040 + // 2. Fill Measurement report element field.
75041 + pReport->Eid = IE_MEASUREMENT_REPORT;
75042 + // Fixed Length at 16, not include Eid and length fields
75043 + pReport->Length = 16;
75044 + pReport->Token = pAd->StaCfg.MeasurementRequest[Index].ReqElem.Token;
75045 + pReport->Mode = pAd->StaCfg.MeasurementRequest[Index].ReqElem.Mode;
75046 + pReport->Type = MSRN_TYPE_NOISE_HIST_REQ;
75048 + // 3. Fill noise histogram report measurement data
75049 + pDest += sizeof(MEASUREMENT_REPORT_ELEMENT);
75050 + pNoise = (PNOISE_HIST_REPORT) pDest;
75051 + pNoise->Channel = pAd->StaCfg.MeasurementRequest[Index].Measurement.Channel;
75052 + pNoise->Spare = 0;
75053 + pNoise->Duration = pAd->StaCfg.MeasurementRequest[Index].Measurement.Duration;
75054 + // 4. Fill Noise histogram, the total RPI counts should be 0.4 * TU
75055 + // We estimate 4000 normal packets received durning 10 seconds test.
75056 + // Adjust it if required.
75057 + // 3 is a good value for pAd->StaCfg.NHFactor
75058 + // TotalRPICnt = pNoise->Duration * 3 / 10;
75059 + TotalRPICnt = pNoise->Duration * pAd->StaCfg.NHFactor / 10;
75062 + for (i = 0; i < 8; i++)
75064 + TotalRPISum += pAd->StaCfg.RPIDensity[i];
75065 + DBGPRINT(RT_DEBUG_TRACE, ("RPI %d Conuts %d\n", i, pAd->StaCfg.RPIDensity[i]));
75068 + // Double check if the counter is larger than our expectation.
75069 + // We will replace it with the total number plus a fraction.
75070 + if (TotalRPISum > TotalRPICnt)
75071 + TotalRPICnt = TotalRPISum + pNoise->Duration / 20;
75073 + DBGPRINT(RT_DEBUG_TRACE, ("Total RPI Conuts %d\n", TotalRPICnt));
75075 + // 5. Initialize noise count for the total summation of 0xff
75077 + for (i = 1; i < 8; i++)
75079 + pNoise->Density[i] = (UCHAR) (pAd->StaCfg.RPIDensity[i] * 255 / TotalRPICnt);
75080 + if ((pNoise->Density[i] == 0) && (pAd->StaCfg.RPIDensity[i] != 0))
75081 + pNoise->Density[i]++;
75082 + NoiseCnt += pNoise->Density[i];
75083 + DBGPRINT(RT_DEBUG_TRACE, ("Reported RPI[%d] = 0x%02x\n", i, pNoise->Density[i]));
75086 + // 6. RPI[0] represents the rest of counts
75087 + pNoise->Density[0] = 0xff - NoiseCnt;
75088 + DBGPRINT(RT_DEBUG_TRACE, ("Reported RPI[0] = 0x%02x\n", pNoise->Density[0]));
75090 + pAd->StaCfg.FrameReportLen += (sizeof(MEASUREMENT_REPORT_ELEMENT) + sizeof(NOISE_HIST_REPORT));
75092 + // 7. Clear channel load measurement flag
75093 + RTMP_CLEAR_FLAG(pAd, fRTMP_ADAPTER_RADIO_MEASUREMENT);
75095 + // 8. reset to idle state
75096 + pAd->Mlme.AironetMachine.CurrState = AIRONET_IDLE;
75098 + DBGPRINT(RT_DEBUG_TRACE, ("NoiseHistReportAction <-----\n"));
75102 + ========================================================================
75104 + Routine Description:
75105 + Prepare Beacon report action,
75108 + pAd Pointer to our adapter
75115 + ========================================================================
75117 +VOID BeaconReportAction(
75118 + IN PRTMP_ADAPTER pAd,
75121 + DBGPRINT(RT_DEBUG_TRACE, ("BeaconReportAction ----->\n"));
75123 + // Looks like we don't have anything thing need to do here.
75124 + // All measurement report already finished in AddBeaconReport
75125 + // The length is in the FrameReportLen
75127 + // reset Beacon index for next beacon request
75128 + pAd->StaCfg.LastBssIndex = 0xff;
75130 + // reset to idle state
75131 + pAd->Mlme.AironetMachine.CurrState = AIRONET_IDLE;
75133 + DBGPRINT(RT_DEBUG_TRACE, ("BeaconReportAction <-----\n"));
75137 + ========================================================================
75139 + Routine Description:
75142 + Index Current BSSID in CCXBsstab entry index
75148 + ========================================================================
75150 +VOID AironetAddBeaconReport(
75151 + IN PRTMP_ADAPTER pAd,
75153 + IN PMLME_QUEUE_ELEM pElem)
75156 + PUCHAR pSrc, pDest;
75160 + PFRAME_802_11 pFrame;
75161 + PMEASUREMENT_REPORT_ELEMENT pReport;
75162 + PEID_STRUCT pEid;
75163 + PBEACON_REPORT pBeaconReport;
75166 + // 0. Setup pointer for processing beacon & probe response
75167 + pMsg = pElem->Msg;
75168 + MsgLen = pElem->MsgLen;
75169 + pFrame = (PFRAME_802_11) pMsg;
75170 + pSrc = pFrame->Octet; // Start from AP TSF
75171 + pBss = (PBSS_ENTRY) &pAd->StaCfg.CCXBssTab.BssEntry[Index];
75172 + ReqIdx = pAd->StaCfg.CurrentRMReqIdx;
75174 + // 1 Check the Index, if we already create this entry, only update the average RSSI
75175 + if ((Index <= pAd->StaCfg.LastBssIndex) && (pAd->StaCfg.LastBssIndex != 0xff))
75177 + pDest = (PUCHAR) &pAd->StaCfg.FrameReportBuf[pAd->StaCfg.BssReportOffset[Index]];
75178 + // Point to bss report information
75179 + pDest += sizeof(MEASUREMENT_REPORT_ELEMENT);
75180 + pBeaconReport = (PBEACON_REPORT) pDest;
75182 + // Update Rx power, in dBm
75183 + // Get the original RSSI readback from BBP
75184 + pBeaconReport->RxPower += pAd->BbpRssiToDbmDelta;
75185 + // Average the Rssi reading
75186 + pBeaconReport->RxPower = (pBeaconReport->RxPower + pBss->Rssi) / 2;
75187 + // Get to dBm format
75188 + pBeaconReport->RxPower -= pAd->BbpRssiToDbmDelta;
75190 + DBGPRINT(RT_DEBUG_TRACE, ("Bssid %02x:%02x:%02x:%02x:%02x:%02x ",
75191 + pBss->Bssid[0], pBss->Bssid[1], pBss->Bssid[2],
75192 + pBss->Bssid[3], pBss->Bssid[4], pBss->Bssid[5]));
75193 + DBGPRINT(RT_DEBUG_TRACE, ("RxPower[%ld] Rssi %d, Avg Rssi %d\n", Index, (pBss->Rssi - pAd->BbpRssiToDbmDelta), pBeaconReport->RxPower - 256));
75194 + DBGPRINT(RT_DEBUG_TRACE, ("FrameReportLen = %d\n", pAd->StaCfg.BssReportOffset[Index]));
75196 + // Update other information here
75202 + // 2. Update reported Index
75203 + pAd->StaCfg.LastBssIndex = Index;
75205 + // 3. Setup the buffer address for copying this BSSID into reporting frame
75206 + // The offset should start after 802.11 header and report frame header.
75207 + pDest = (PUCHAR) &pAd->StaCfg.FrameReportBuf[pAd->StaCfg.FrameReportLen];
75209 + // 4. Save the start offset of each Bss in report frame
75210 + pAd->StaCfg.BssReportOffset[Index] = pAd->StaCfg.FrameReportLen;
75212 + // 5. Fill Measurement report fields
75213 + pReport = (PMEASUREMENT_REPORT_ELEMENT) pDest;
75214 + pReport->Eid = IE_MEASUREMENT_REPORT;
75215 + pReport->Length = 0;
75216 + pReport->Token = pAd->StaCfg.MeasurementRequest[ReqIdx].ReqElem.Token;
75217 + pReport->Mode = pAd->StaCfg.MeasurementRequest[ReqIdx].ReqElem.Mode;
75218 + pReport->Type = MSRN_TYPE_BEACON_REQ;
75219 + Length = sizeof(MEASUREMENT_REPORT_ELEMENT);
75220 + pDest += sizeof(MEASUREMENT_REPORT_ELEMENT);
75222 + // 6. Start thebeacon report format
75223 + pBeaconReport = (PBEACON_REPORT) pDest;
75224 + pDest += sizeof(BEACON_REPORT);
75225 + Length += sizeof(BEACON_REPORT);
75227 + // 7. Copy Channel number
75228 + pBeaconReport->Channel = pBss->Channel;
75229 + pBeaconReport->Spare = 0;
75230 + pBeaconReport->Duration = pAd->StaCfg.MeasurementRequest[ReqIdx].Measurement.Duration;
75231 + pBeaconReport->PhyType = ((pBss->SupRateLen+pBss->ExtRateLen > 4) ? PHY_ERP : PHY_DSS);
75232 + // 8. Rx power, in dBm
75233 + pBeaconReport->RxPower = pBss->Rssi - pAd->BbpRssiToDbmDelta;
75235 + DBGPRINT(RT_DEBUG_TRACE, ("Bssid %02x:%02x:%02x:%02x:%02x:%02x ",
75236 + pBss->Bssid[0], pBss->Bssid[1], pBss->Bssid[2],
75237 + pBss->Bssid[3], pBss->Bssid[4], pBss->Bssid[5]));
75238 + DBGPRINT(RT_DEBUG_TRACE, ("RxPower[%ld], Rssi %d\n", Index, pBeaconReport->RxPower - 256));
75239 + DBGPRINT(RT_DEBUG_TRACE, ("FrameReportLen = %d\n", pAd->StaCfg.FrameReportLen));
75241 + pBeaconReport->BeaconInterval = pBss->BeaconPeriod;
75242 + COPY_MAC_ADDR(pBeaconReport->BSSID, pFrame->Hdr.Addr3);
75243 + NdisMoveMemory(pBeaconReport->ParentTSF, pSrc, 4);
75244 + NdisMoveMemory(pBeaconReport->TargetTSF, &pElem->TimeStamp.u.LowPart, 4);
75245 + NdisMoveMemory(&pBeaconReport->TargetTSF[4], &pElem->TimeStamp.u.HighPart, 4);
75247 + // 9. Skip the beacon frame and offset to start of capabilityinfo since we already processed capabilityinfo
75248 + pSrc += (TIMESTAMP_LEN + 2);
75249 + pBeaconReport->CapabilityInfo = *(USHORT *)pSrc;
75251 + // 10. Point to start of element ID
75253 + pEid = (PEID_STRUCT) pSrc;
75255 + // 11. Start process all variable Eid oayload and add the appropriate to the frame report
75256 + while (((PUCHAR) pEid + pEid->Len + 1) < ((PUCHAR) pFrame + MsgLen))
75258 + // Only limited EID are required to report for CCX 2. It includes SSID, Supported rate,
75259 + // FH paramenter set, DS parameter set, CF parameter set, IBSS parameter set,
75260 + // TIM (report first 4 bytes only, radio measurement capability
75261 + switch (pEid->Eid)
75264 + case IE_SUPP_RATES:
75268 + case IE_IBSS_PARM:
75269 + NdisMoveMemory(pDest, pEid, pEid->Len + 2);
75270 + pDest += (pEid->Len + 2);
75271 + Length += (pEid->Len + 2);
75274 + case IE_MEASUREMENT_CAPABILITY:
75275 + // Since this IE is duplicated with WPA security IE, we has to do sanity check before
75277 + // 1. It also has fixed 6 bytes IE length.
75278 + if (pEid->Len != 6)
75280 + // 2. Check the Cisco Aironet OUI
75281 + if (NdisEqualMemory(CISCO_OUI, (pSrc + 2), 3))
75283 + // Matched, this is what we want
75284 + NdisMoveMemory(pDest, pEid, pEid->Len + 2);
75285 + pDest += (pEid->Len + 2);
75286 + Length += (pEid->Len + 2);
75291 + if (pEid->Len > 4)
75293 + // May truncate and report the first 4 bytes only, with the eid & len, total should be 6
75294 + NdisMoveMemory(pDest, pEid, 6);
75300 + NdisMoveMemory(pDest, pEid, pEid->Len + 2);
75301 + pDest += (pEid->Len + 2);
75302 + Length += (pEid->Len + 2);
75309 + // 12. Move to next element ID
75310 + pSrc += (2 + pEid->Len);
75311 + pEid = (PEID_STRUCT) pSrc;
75314 + // 13. Update the length in the header, not include EID and length
75315 + pReport->Length = Length - 4;
75317 + // 14. Update the frame report buffer data length
75318 + pAd->StaCfg.FrameReportLen += Length;
75319 + DBGPRINT(RT_DEBUG_TRACE, ("FR len = %d\n", pAd->StaCfg.FrameReportLen));
75323 + ========================================================================
75325 + Routine Description:
75328 + Index Current BSSID in CCXBsstab entry index
75334 + ========================================================================
75336 +VOID AironetCreateBeaconReportFromBssTable(
75337 + IN PRTMP_ADAPTER pAd)
75339 + PMEASUREMENT_REPORT_ELEMENT pReport;
75340 + PBEACON_REPORT pBeaconReport;
75341 + UCHAR Index, ReqIdx;
75346 + // 0. setup base pointer
75347 + ReqIdx = pAd->StaCfg.CurrentRMReqIdx;
75349 + for (Index = 0; Index < pAd->StaCfg.CCXBssTab.BssNr; Index++)
75351 + // 1. Setup the buffer address for copying this BSSID into reporting frame
75352 + // The offset should start after 802.11 header and report frame header.
75353 + pDest = (PUCHAR) &pAd->StaCfg.FrameReportBuf[pAd->StaCfg.FrameReportLen];
75354 + pBss = (PBSS_ENTRY) &pAd->StaCfg.CCXBssTab.BssEntry[Index];
75357 + // 2. Fill Measurement report fields
75358 + pReport = (PMEASUREMENT_REPORT_ELEMENT) pDest;
75359 + pReport->Eid = IE_MEASUREMENT_REPORT;
75360 + pReport->Length = 0;
75361 + pReport->Token = pAd->StaCfg.MeasurementRequest[ReqIdx].ReqElem.Token;
75362 + pReport->Mode = pAd->StaCfg.MeasurementRequest[ReqIdx].ReqElem.Mode;
75363 + pReport->Type = MSRN_TYPE_BEACON_REQ;
75364 + Length = sizeof(MEASUREMENT_REPORT_ELEMENT);
75365 + pDest += sizeof(MEASUREMENT_REPORT_ELEMENT);
75367 + // 3. Start the beacon report format
75368 + pBeaconReport = (PBEACON_REPORT) pDest;
75369 + pDest += sizeof(BEACON_REPORT);
75370 + Length += sizeof(BEACON_REPORT);
75372 + // 4. Copy Channel number
75373 + pBeaconReport->Channel = pBss->Channel;
75374 + pBeaconReport->Spare = 0;
75375 + pBeaconReport->Duration = pAd->StaCfg.MeasurementRequest[ReqIdx].Measurement.Duration;
75376 + pBeaconReport->PhyType = ((pBss->SupRateLen+pBss->ExtRateLen > 4) ? PHY_ERP : PHY_DSS);
75377 + pBeaconReport->RxPower = pBss->Rssi - pAd->BbpRssiToDbmDelta;
75378 + pBeaconReport->BeaconInterval = pBss->BeaconPeriod;
75379 + pBeaconReport->CapabilityInfo = pBss->CapabilityInfo;
75380 + COPY_MAC_ADDR(pBeaconReport->BSSID, pBss->Bssid);
75381 + NdisMoveMemory(pBeaconReport->ParentTSF, pBss->PTSF, 4);
75382 + NdisMoveMemory(pBeaconReport->TargetTSF, pBss->TTSF, 8);
75384 + // 5. Create SSID
75386 + *pDest++ = pBss->SsidLen;
75387 + NdisMoveMemory(pDest, pBss->Ssid, pBss->SsidLen);
75388 + pDest += pBss->SsidLen;
75389 + Length += (2 + pBss->SsidLen);
75391 + // 6. Create SupportRates
75393 + *pDest++ = pBss->SupRateLen;
75394 + NdisMoveMemory(pDest, pBss->SupRate, pBss->SupRateLen);
75395 + pDest += pBss->SupRateLen;
75396 + Length += (2 + pBss->SupRateLen);
75398 + // 7. DS Parameter
75401 + *pDest++ = pBss->Channel;
75404 + // 8. IBSS parameter if presents
75405 + if (pBss->BssType == BSS_ADHOC)
75409 + *(PUSHORT) pDest = pBss->AtimWin;
75414 + // 9. Update length field, not include EID and length
75415 + pReport->Length = Length - 4;
75417 + // 10. Update total frame size
75418 + pAd->StaCfg.FrameReportLen += Length;
75422 +++ b/drivers/staging/rt3070/sta/assoc.c
75425 + *************************************************************************
75426 + * Ralink Tech Inc.
75427 + * 5F., No.36, Taiyuan St., Jhubei City,
75428 + * Hsinchu County 302,
75431 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
75433 + * This program is free software; you can redistribute it and/or modify *
75434 + * it under the terms of the GNU General Public License as published by *
75435 + * the Free Software Foundation; either version 2 of the License, or *
75436 + * (at your option) any later version. *
75438 + * This program is distributed in the hope that it will be useful, *
75439 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
75440 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
75441 + * GNU General Public License for more details. *
75443 + * You should have received a copy of the GNU General Public License *
75444 + * along with this program; if not, write to the *
75445 + * Free Software Foundation, Inc., *
75446 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
75448 + *************************************************************************
75455 + Revision History:
75457 + -------- ---------- ----------------------------------------------
75458 + John 2004-9-3 porting from RT2500
75460 +#include "../rt_config.h"
75462 +UCHAR CipherWpaTemplate[] = {
75465 + 0x00, 0x50, 0xf2, 0x01, // oui
75466 + 0x01, 0x00, // Version
75467 + 0x00, 0x50, 0xf2, 0x02, // Multicast
75468 + 0x01, 0x00, // Number of unicast
75469 + 0x00, 0x50, 0xf2, 0x02, // unicast
75470 + 0x01, 0x00, // number of authentication method
75471 + 0x00, 0x50, 0xf2, 0x01 // authentication
75474 +UCHAR CipherWpa2Template[] = {
75477 + 0x01, 0x00, // Version
75478 + 0x00, 0x0f, 0xac, 0x02, // group cipher, TKIP
75479 + 0x01, 0x00, // number of pairwise
75480 + 0x00, 0x0f, 0xac, 0x02, // unicast
75481 + 0x01, 0x00, // number of authentication method
75482 + 0x00, 0x0f, 0xac, 0x02, // authentication
75483 + 0x00, 0x00, // RSN capability
75486 +UCHAR Ccx2IeInfo[] = { 0x00, 0x40, 0x96, 0x03, 0x02};
75489 + ==========================================================================
75491 + association state machine init, including state transition and timer init
75493 + S - pointer to the association state machine
75495 + IRQL = PASSIVE_LEVEL
75497 + ==========================================================================
75499 +VOID AssocStateMachineInit(
75500 + IN PRTMP_ADAPTER pAd,
75501 + IN STATE_MACHINE *S,
75502 + OUT STATE_MACHINE_FUNC Trans[])
75504 + StateMachineInit(S, Trans, MAX_ASSOC_STATE, MAX_ASSOC_MSG, (STATE_MACHINE_FUNC)Drop, ASSOC_IDLE, ASSOC_MACHINE_BASE);
75507 + StateMachineSetAction(S, ASSOC_IDLE, MT2_MLME_ASSOC_REQ, (STATE_MACHINE_FUNC)MlmeAssocReqAction);
75508 + StateMachineSetAction(S, ASSOC_IDLE, MT2_MLME_REASSOC_REQ, (STATE_MACHINE_FUNC)MlmeReassocReqAction);
75509 + StateMachineSetAction(S, ASSOC_IDLE, MT2_MLME_DISASSOC_REQ, (STATE_MACHINE_FUNC)MlmeDisassocReqAction);
75510 + StateMachineSetAction(S, ASSOC_IDLE, MT2_PEER_DISASSOC_REQ, (STATE_MACHINE_FUNC)PeerDisassocAction);
75513 + StateMachineSetAction(S, ASSOC_WAIT_RSP, MT2_MLME_ASSOC_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenAssoc);
75514 + StateMachineSetAction(S, ASSOC_WAIT_RSP, MT2_MLME_REASSOC_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenReassoc);
75515 + StateMachineSetAction(S, ASSOC_WAIT_RSP, MT2_MLME_DISASSOC_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenDisassociate);
75516 + StateMachineSetAction(S, ASSOC_WAIT_RSP, MT2_PEER_DISASSOC_REQ, (STATE_MACHINE_FUNC)PeerDisassocAction);
75517 + StateMachineSetAction(S, ASSOC_WAIT_RSP, MT2_PEER_ASSOC_RSP, (STATE_MACHINE_FUNC)PeerAssocRspAction);
75519 + // Patch 3Com AP MOde:3CRWE454G72
75520 + // We send Assoc request frame to this AP, it always send Reassoc Rsp not Associate Rsp.
75522 + StateMachineSetAction(S, ASSOC_WAIT_RSP, MT2_PEER_REASSOC_RSP, (STATE_MACHINE_FUNC)PeerAssocRspAction);
75523 + StateMachineSetAction(S, ASSOC_WAIT_RSP, MT2_ASSOC_TIMEOUT, (STATE_MACHINE_FUNC)AssocTimeoutAction);
75526 + StateMachineSetAction(S, REASSOC_WAIT_RSP, MT2_MLME_ASSOC_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenAssoc);
75527 + StateMachineSetAction(S, REASSOC_WAIT_RSP, MT2_MLME_REASSOC_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenReassoc);
75528 + StateMachineSetAction(S, REASSOC_WAIT_RSP, MT2_MLME_DISASSOC_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenDisassociate);
75529 + StateMachineSetAction(S, REASSOC_WAIT_RSP, MT2_PEER_DISASSOC_REQ, (STATE_MACHINE_FUNC)PeerDisassocAction);
75530 + StateMachineSetAction(S, REASSOC_WAIT_RSP, MT2_PEER_REASSOC_RSP, (STATE_MACHINE_FUNC)PeerReassocRspAction);
75532 + // Patch, AP doesn't send Reassociate Rsp frame to Station.
75534 + StateMachineSetAction(S, REASSOC_WAIT_RSP, MT2_PEER_ASSOC_RSP, (STATE_MACHINE_FUNC)PeerReassocRspAction);
75535 + StateMachineSetAction(S, REASSOC_WAIT_RSP, MT2_REASSOC_TIMEOUT, (STATE_MACHINE_FUNC)ReassocTimeoutAction);
75538 + StateMachineSetAction(S, DISASSOC_WAIT_RSP, MT2_MLME_ASSOC_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenAssoc);
75539 + StateMachineSetAction(S, DISASSOC_WAIT_RSP, MT2_MLME_REASSOC_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenReassoc);
75540 + StateMachineSetAction(S, DISASSOC_WAIT_RSP, MT2_MLME_DISASSOC_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenDisassociate);
75541 + StateMachineSetAction(S, DISASSOC_WAIT_RSP, MT2_PEER_DISASSOC_REQ, (STATE_MACHINE_FUNC)PeerDisassocAction);
75542 + StateMachineSetAction(S, DISASSOC_WAIT_RSP, MT2_DISASSOC_TIMEOUT, (STATE_MACHINE_FUNC)DisassocTimeoutAction);
75544 + // initialize the timer
75545 + RTMPInitTimer(pAd, &pAd->MlmeAux.AssocTimer, GET_TIMER_FUNCTION(AssocTimeout), pAd, FALSE);
75546 + RTMPInitTimer(pAd, &pAd->MlmeAux.ReassocTimer, GET_TIMER_FUNCTION(ReassocTimeout), pAd, FALSE);
75547 + RTMPInitTimer(pAd, &pAd->MlmeAux.DisassocTimer, GET_TIMER_FUNCTION(DisassocTimeout), pAd, FALSE);
75551 + ==========================================================================
75553 + Association timeout procedure. After association timeout, this function
75554 + will be called and it will put a message into the MLME queue
75556 + Standard timer parameters
75558 + IRQL = DISPATCH_LEVEL
75560 + ==========================================================================
75562 +VOID AssocTimeout(IN PVOID SystemSpecific1,
75563 + IN PVOID FunctionContext,
75564 + IN PVOID SystemSpecific2,
75565 + IN PVOID SystemSpecific3)
75567 + RTMP_ADAPTER *pAd = (RTMP_ADAPTER *)FunctionContext;
75569 + // Do nothing if the driver is starting halt state.
75570 + // This might happen when timer already been fired before cancel timer with mlmehalt
75571 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS | fRTMP_ADAPTER_NIC_NOT_EXIST))
75574 + MlmeEnqueue(pAd, ASSOC_STATE_MACHINE, MT2_ASSOC_TIMEOUT, 0, NULL);
75575 + RT28XX_MLME_HANDLER(pAd);
75579 + ==========================================================================
75581 + Reassociation timeout procedure. After reassociation timeout, this
75582 + function will be called and put a message into the MLME queue
75584 + Standard timer parameters
75586 + IRQL = DISPATCH_LEVEL
75588 + ==========================================================================
75590 +VOID ReassocTimeout(IN PVOID SystemSpecific1,
75591 + IN PVOID FunctionContext,
75592 + IN PVOID SystemSpecific2,
75593 + IN PVOID SystemSpecific3)
75595 + RTMP_ADAPTER *pAd = (RTMP_ADAPTER *)FunctionContext;
75597 + // Do nothing if the driver is starting halt state.
75598 + // This might happen when timer already been fired before cancel timer with mlmehalt
75599 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS | fRTMP_ADAPTER_NIC_NOT_EXIST))
75602 + MlmeEnqueue(pAd, ASSOC_STATE_MACHINE, MT2_REASSOC_TIMEOUT, 0, NULL);
75603 + RT28XX_MLME_HANDLER(pAd);
75607 + ==========================================================================
75609 + Disassociation timeout procedure. After disassociation timeout, this
75610 + function will be called and put a message into the MLME queue
75612 + Standard timer parameters
75614 + IRQL = DISPATCH_LEVEL
75616 + ==========================================================================
75618 +VOID DisassocTimeout(IN PVOID SystemSpecific1,
75619 + IN PVOID FunctionContext,
75620 + IN PVOID SystemSpecific2,
75621 + IN PVOID SystemSpecific3)
75623 + RTMP_ADAPTER *pAd = (RTMP_ADAPTER *)FunctionContext;
75625 + // Do nothing if the driver is starting halt state.
75626 + // This might happen when timer already been fired before cancel timer with mlmehalt
75627 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS | fRTMP_ADAPTER_NIC_NOT_EXIST))
75630 + MlmeEnqueue(pAd, ASSOC_STATE_MACHINE, MT2_DISASSOC_TIMEOUT, 0, NULL);
75631 + RT28XX_MLME_HANDLER(pAd);
75635 + ==========================================================================
75637 + mlme assoc req handling procedure
75639 + Adapter - Adapter pointer
75640 + Elem - MLME Queue Element
75642 + the station has been authenticated and the following information is stored in the config
75644 + -# supported rates and their length
75645 + -# listen interval (Adapter->StaCfg.default_listen_count)
75646 + -# Transmit power (Adapter->StaCfg.tx_power)
75648 + -# An association request frame is generated and sent to the air
75649 + -# Association timer starts
75650 + -# Association state -> ASSOC_WAIT_RSP
75652 + IRQL = DISPATCH_LEVEL
75654 + ==========================================================================
75656 +VOID MlmeAssocReqAction(
75657 + IN PRTMP_ADAPTER pAd,
75658 + IN MLME_QUEUE_ELEM *Elem)
75661 + HEADER_802_11 AssocHdr;
75662 + UCHAR Ccx2Len = 5;
75663 + UCHAR WmeIe[9] = {IE_VENDOR_SPECIFIC, 0x07, 0x00, 0x50, 0xf2, 0x02, 0x00, 0x01, 0x00};
75664 + USHORT ListenIntv;
75666 + USHORT CapabilityInfo;
75667 + BOOLEAN TimerCancelled;
75668 + PUCHAR pOutBuffer = NULL;
75669 + NDIS_STATUS NStatus;
75670 + ULONG FrameLen = 0;
75672 + USHORT VarIesOffset;
75674 + UCHAR CkipNegotiationBuffer[CKIP_NEGOTIATION_LENGTH];
75675 + UCHAR AironetCkipIe = IE_AIRONET_CKIP;
75676 + UCHAR AironetCkipLen = CKIP_NEGOTIATION_LENGTH;
75677 + UCHAR AironetIPAddressIE = IE_AIRONET_IPADDRESS;
75678 + UCHAR AironetIPAddressLen = AIRONET_IPADDRESS_LENGTH;
75679 + UCHAR AironetIPAddressBuffer[AIRONET_IPADDRESS_LENGTH] = {0x00, 0x40, 0x96, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0x00};
75682 + // Block all authentication request durning WPA block period
75683 + if (pAd->StaCfg.bBlockAssoc == TRUE)
75685 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - Block Assoc request durning WPA block period!\n"));
75686 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
75687 + Status = MLME_STATE_MACHINE_REJECT;
75688 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_ASSOC_CONF, 2, &Status);
75690 + // check sanity first
75691 + else if (MlmeAssocReqSanity(pAd, Elem->Msg, Elem->MsgLen, ApAddr, &CapabilityInfo, &Timeout, &ListenIntv))
75693 + RTMPCancelTimer(&pAd->MlmeAux.AssocTimer, &TimerCancelled);
75694 + COPY_MAC_ADDR(pAd->MlmeAux.Bssid, ApAddr);
75696 + // Get an unused nonpaged memory
75697 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer);
75698 + if (NStatus != NDIS_STATUS_SUCCESS)
75700 + DBGPRINT(RT_DEBUG_TRACE,("ASSOC - MlmeAssocReqAction() allocate memory failed \n"));
75701 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
75702 + Status = MLME_FAIL_NO_RESOURCE;
75703 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_ASSOC_CONF, 2, &Status);
75707 + // Add by James 03/06/27
75708 + pAd->StaCfg.AssocInfo.Length = sizeof(NDIS_802_11_ASSOCIATION_INFORMATION);
75709 + // Association don't need to report MAC address
75710 + pAd->StaCfg.AssocInfo.AvailableRequestFixedIEs =
75711 + NDIS_802_11_AI_REQFI_CAPABILITIES | NDIS_802_11_AI_REQFI_LISTENINTERVAL;
75712 + pAd->StaCfg.AssocInfo.RequestFixedIEs.Capabilities = CapabilityInfo;
75713 + pAd->StaCfg.AssocInfo.RequestFixedIEs.ListenInterval = ListenIntv;
75714 + // Only reassociate need this
75715 + //COPY_MAC_ADDR(pAd->StaCfg.AssocInfo.RequestFixedIEs.CurrentAPAddress, ApAddr);
75716 + pAd->StaCfg.AssocInfo.OffsetRequestIEs = sizeof(NDIS_802_11_ASSOCIATION_INFORMATION);
75718 + NdisZeroMemory(pAd->StaCfg.ReqVarIEs, MAX_VIE_LEN);
75719 + // First add SSID
75720 + VarIesOffset = 0;
75721 + NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, &SsidIe, 1);
75722 + VarIesOffset += 1;
75723 + NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, &pAd->MlmeAux.SsidLen, 1);
75724 + VarIesOffset += 1;
75725 + NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, pAd->MlmeAux.Ssid, pAd->MlmeAux.SsidLen);
75726 + VarIesOffset += pAd->MlmeAux.SsidLen;
75728 + // Second add Supported rates
75729 + NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, &SupRateIe, 1);
75730 + VarIesOffset += 1;
75731 + NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, &pAd->MlmeAux.SupRateLen, 1);
75732 + VarIesOffset += 1;
75733 + NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, pAd->MlmeAux.SupRate, pAd->MlmeAux.SupRateLen);
75734 + VarIesOffset += pAd->MlmeAux.SupRateLen;
75735 + // End Add by James
75737 + if ((pAd->CommonCfg.Channel > 14) &&
75738 + (pAd->CommonCfg.bIEEE80211H == TRUE))
75739 + CapabilityInfo |= 0x0100;
75741 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - Send ASSOC request...\n"));
75742 + MgtMacHeaderInit(pAd, &AssocHdr, SUBTYPE_ASSOC_REQ, 0, ApAddr, ApAddr);
75744 + // Build basic frame first
75745 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
75746 + sizeof(HEADER_802_11), &AssocHdr,
75747 + 2, &CapabilityInfo,
75750 + 1, &pAd->MlmeAux.SsidLen,
75751 + pAd->MlmeAux.SsidLen, pAd->MlmeAux.Ssid,
75753 + 1, &pAd->MlmeAux.SupRateLen,
75754 + pAd->MlmeAux.SupRateLen, pAd->MlmeAux.SupRate,
75757 + if (pAd->MlmeAux.ExtRateLen != 0)
75759 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
75761 + 1, &pAd->MlmeAux.ExtRateLen,
75762 + pAd->MlmeAux.ExtRateLen, pAd->MlmeAux.ExtRate,
75767 +#ifdef DOT11_N_SUPPORT
75769 + if ((pAd->MlmeAux.HtCapabilityLen > 0) && (pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED))
75773 + UCHAR BROADCOM[4] = {0x0, 0x90, 0x4c, 0x33};
75774 + if (pAd->StaActive.SupportedPhyInfo.bPreNHt == TRUE)
75776 + HtLen = SIZE_HT_CAP_IE + 4;
75777 + MakeOutgoingFrame(pOutBuffer + FrameLen, &TmpLen,
75781 + pAd->MlmeAux.HtCapabilityLen, &pAd->MlmeAux.HtCapability,
75786 +#ifdef RT_BIG_ENDIAN
75787 + HT_CAPABILITY_IE HtCapabilityTmp;
75790 +#ifndef RT_BIG_ENDIAN
75791 + MakeOutgoingFrame(pOutBuffer + FrameLen, &TmpLen,
75793 + 1, &pAd->MlmeAux.HtCapabilityLen,
75794 + pAd->MlmeAux.HtCapabilityLen, &pAd->MlmeAux.HtCapability,
75797 + NdisZeroMemory(&HtCapabilityTmp, sizeof(HT_CAPABILITY_IE));
75798 + NdisMoveMemory(&HtCapabilityTmp, &pAd->MlmeAux.HtCapability, pAd->MlmeAux.HtCapabilityLen);
75799 + *(USHORT *)(&HtCapabilityTmp.HtCapInfo) = SWAP16(*(USHORT *)(&HtCapabilityTmp.HtCapInfo));
75800 + *(USHORT *)(&HtCapabilityTmp.ExtHtCapInfo) = SWAP16(*(USHORT *)(&HtCapabilityTmp.ExtHtCapInfo));
75802 + MakeOutgoingFrame(pOutBuffer + FrameLen, &TmpLen,
75804 + 1, &pAd->MlmeAux.HtCapabilityLen,
75805 + pAd->MlmeAux.HtCapabilityLen,&HtCapabilityTmp,
75809 + FrameLen += TmpLen;
75811 +#endif // DOT11_N_SUPPORT //
75813 + // add Ralink proprietary IE to inform AP this STA is going to use AGGREGATION or PIGGY-BACK+AGGREGATION
75814 + // Case I: (Aggregation + Piggy-Back)
75815 + // 1. user enable aggregation, AND
75816 + // 2. Mac support piggy-back
75817 + // 3. AP annouces it's PIGGY-BACK+AGGREGATION-capable in BEACON
75818 + // Case II: (Aggregation)
75819 + // 1. user enable aggregation, AND
75820 + // 2. AP annouces it's AGGREGATION-capable in BEACON
75821 + if (pAd->CommonCfg.bAggregationCapable)
75823 + if ((pAd->CommonCfg.bPiggyBackCapable) && ((pAd->MlmeAux.APRalinkIe & 0x00000003) == 3))
75826 + UCHAR RalinkIe[9] = {IE_VENDOR_SPECIFIC, 7, 0x00, 0x0c, 0x43, 0x03, 0x00, 0x00, 0x00};
75827 + MakeOutgoingFrame(pOutBuffer+FrameLen, &TmpLen,
75830 + FrameLen += TmpLen;
75832 + else if (pAd->MlmeAux.APRalinkIe & 0x00000001)
75835 + UCHAR RalinkIe[9] = {IE_VENDOR_SPECIFIC, 7, 0x00, 0x0c, 0x43, 0x01, 0x00, 0x00, 0x00};
75836 + MakeOutgoingFrame(pOutBuffer+FrameLen, &TmpLen,
75839 + FrameLen += TmpLen;
75845 + UCHAR RalinkIe[9] = {IE_VENDOR_SPECIFIC, 7, 0x00, 0x0c, 0x43, 0x06, 0x00, 0x00, 0x00};
75846 + MakeOutgoingFrame(pOutBuffer+FrameLen, &TmpLen,
75849 + FrameLen += TmpLen;
75852 + if (pAd->MlmeAux.APEdcaParm.bValid)
75854 + if (pAd->CommonCfg.bAPSDCapable && pAd->MlmeAux.APEdcaParm.bAPSDCapable)
75856 + QBSS_STA_INFO_PARM QosInfo;
75858 + NdisZeroMemory(&QosInfo, sizeof(QBSS_STA_INFO_PARM));
75859 + QosInfo.UAPSD_AC_BE = pAd->CommonCfg.bAPSDAC_BE;
75860 + QosInfo.UAPSD_AC_BK = pAd->CommonCfg.bAPSDAC_BK;
75861 + QosInfo.UAPSD_AC_VI = pAd->CommonCfg.bAPSDAC_VI;
75862 + QosInfo.UAPSD_AC_VO = pAd->CommonCfg.bAPSDAC_VO;
75863 + QosInfo.MaxSPLength = pAd->CommonCfg.MaxSPLength;
75864 + WmeIe[8] |= *(PUCHAR)&QosInfo;
75868 + // The Parameter Set Count is set to ¡§0¡¨ in the association request frames
75869 + // WmeIe[8] |= (pAd->MlmeAux.APEdcaParm.EdcaUpdateCount & 0x0f);
75872 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
75879 + // Let WPA(#221) Element ID on the end of this association frame.
75880 + // Otherwise some AP will fail on parsing Element ID and set status fail on Assoc Rsp.
75881 + // For example: Put Vendor Specific IE on the front of WPA IE.
75882 + // This happens on AP (Model No:Linksys WRK54G)
75884 + if (((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK) ||
75885 + (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK) ||
75886 + (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA) ||
75887 + (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2)
75891 + UCHAR RSNIe = IE_WPA;
75893 + if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK) ||
75894 + (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2))
75899 +#ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
75900 +#ifdef SIOCSIWGENIE
75901 + if (pAd->StaCfg.WpaSupplicantUP != 1)
75902 +#endif // SIOCSIWGENIE //
75903 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
75904 + RTMPMakeRSNIE(pAd, pAd->StaCfg.AuthMode, pAd->StaCfg.WepStatus, BSS0);
75906 + // Check for WPA PMK cache list
75907 + if (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2)
75910 + BOOLEAN FoundPMK = FALSE;
75911 + // Search chched PMKID, append it if existed
75912 + for (idx = 0; idx < PMKID_NO; idx++)
75914 + if (NdisEqualMemory(ApAddr, &pAd->StaCfg.SavedPMK[idx].BSSID, 6))
75923 + // Set PMK number
75924 + *(PUSHORT) &pAd->StaCfg.RSN_IE[pAd->StaCfg.RSNIE_Len] = 1;
75925 + NdisMoveMemory(&pAd->StaCfg.RSN_IE[pAd->StaCfg.RSNIE_Len + 2], &pAd->StaCfg.SavedPMK[idx].PMKID, 16);
75926 + pAd->StaCfg.RSNIE_Len += 18;
75930 +#ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
75931 +#ifdef SIOCSIWGENIE
75932 + if (pAd->StaCfg.WpaSupplicantUP == 1)
75934 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
75935 + pAd->StaCfg.RSNIE_Len, pAd->StaCfg.RSN_IE,
75940 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
75942 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
75944 + 1, &pAd->StaCfg.RSNIE_Len,
75945 + pAd->StaCfg.RSNIE_Len, pAd->StaCfg.RSN_IE,
75951 +#ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
75952 +#ifdef SIOCSIWGENIE
75953 + if (pAd->StaCfg.WpaSupplicantUP != 1)
75955 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
75957 + // Append Variable IE
75958 + NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, &RSNIe, 1);
75959 + VarIesOffset += 1;
75960 + NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, &pAd->StaCfg.RSNIE_Len, 1);
75961 + VarIesOffset += 1;
75963 + NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, pAd->StaCfg.RSN_IE, pAd->StaCfg.RSNIE_Len);
75964 + VarIesOffset += pAd->StaCfg.RSNIE_Len;
75966 + // Set Variable IEs Length
75967 + pAd->StaCfg.ReqVarIELen = VarIesOffset;
75970 + // We have update that at PeerBeaconAtJoinRequest()
75971 + CkipFlag = pAd->StaCfg.CkipFlag;
75972 + if (CkipFlag != 0)
75974 + NdisZeroMemory(CkipNegotiationBuffer, CKIP_NEGOTIATION_LENGTH);
75975 + CkipNegotiationBuffer[2] = 0x66;
75976 + // Make it try KP & MIC, since we have to follow the result from AssocRsp
75977 + CkipNegotiationBuffer[8] = 0x18;
75978 + CkipNegotiationBuffer[CKIP_NEGOTIATION_LENGTH - 1] = 0x22;
75981 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
75982 + 1, &AironetCkipIe,
75983 + 1, &AironetCkipLen,
75984 + AironetCkipLen, CkipNegotiationBuffer,
75989 + // Add CCX v2 request if CCX2 admin state is on
75990 + if (pAd->StaCfg.CCXControl.field.Enable == 1)
75994 + // Add AironetIPAddressIE for Cisco CCX 2.X
75995 + // Add CCX Version
75997 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
75998 + 1, &AironetIPAddressIE,
75999 + 1, &AironetIPAddressLen,
76000 + AironetIPAddressLen, AironetIPAddressBuffer,
76003 + Ccx2Len, Ccx2IeInfo,
76008 + // Add CipherSuite CCKM or LeapTkip if setting.
76010 +#ifdef LEAP_SUPPORT
76011 + if (LEAP_CCKM_ON(pAd))
76013 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
76014 + CipherSuiteCiscoCCKMLen, CipherSuiteCiscoCCKM,
76019 + NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, CipherSuiteCiscoCCKM, CipherSuiteCiscoCCKMLen); //Save CipherSuite
76020 + VarIesOffset += CipherSuiteCiscoCCKMLen;
76022 + else if ((pAd->StaCfg.LeapAuthMode == CISCO_AuthModeLEAP) && (pAd->StaCfg.WepStatus == Ndis802_11Encryption2Enabled))
76024 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
76025 + CipherSuiteCCXTkipLen, CipherSuiteCCXTkip,
76030 + NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, CipherSuiteCCXTkip, CipherSuiteCCXTkipLen);
76031 + VarIesOffset += CipherSuiteCCXTkipLen;
76033 +#endif // LEAP_SUPPORT //
76035 + // Add by James 03/06/27
76036 + // Set Variable IEs Length
76037 + pAd->StaCfg.ReqVarIELen = VarIesOffset;
76038 + pAd->StaCfg.AssocInfo.RequestIELength = VarIesOffset;
76040 + // OffsetResponseIEs follow ReqVarIE
76041 + pAd->StaCfg.AssocInfo.OffsetResponseIEs = sizeof(NDIS_802_11_ASSOCIATION_INFORMATION) + pAd->StaCfg.ReqVarIELen;
76042 + // End Add by James
76046 + MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
76047 + MlmeFreeMemory(pAd, pOutBuffer);
76049 + RTMPSetTimer(&pAd->MlmeAux.AssocTimer, Timeout);
76050 + pAd->Mlme.AssocMachine.CurrState = ASSOC_WAIT_RSP;
76054 + DBGPRINT(RT_DEBUG_TRACE,("ASSOC - MlmeAssocReqAction() sanity check failed. BUG!!!!!! \n"));
76055 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
76056 + Status = MLME_INVALID_FORMAT;
76057 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_ASSOC_CONF, 2, &Status);
76063 + ==========================================================================
76065 + mlme reassoc req handling procedure
76069 + -# SSID (Adapter->StaCfg.ssid[])
76070 + -# BSSID (AP address, Adapter->StaCfg.bssid)
76071 + -# Supported rates (Adapter->StaCfg.supported_rates[])
76072 + -# Supported rates length (Adapter->StaCfg.supported_rates_len)
76073 + -# Tx power (Adapter->StaCfg.tx_power)
76075 + IRQL = DISPATCH_LEVEL
76077 + ==========================================================================
76079 +VOID MlmeReassocReqAction(
76080 + IN PRTMP_ADAPTER pAd,
76081 + IN MLME_QUEUE_ELEM *Elem)
76084 + HEADER_802_11 ReassocHdr;
76085 + UCHAR Ccx2Len = 5;
76086 + UCHAR WmeIe[9] = {IE_VENDOR_SPECIFIC, 0x07, 0x00, 0x50, 0xf2, 0x02, 0x00, 0x01, 0x00};
76087 + USHORT CapabilityInfo, ListenIntv;
76089 + ULONG FrameLen = 0;
76090 + BOOLEAN TimerCancelled;
76091 + NDIS_STATUS NStatus;
76093 + PUCHAR pOutBuffer = NULL;
76095 +#ifdef LEAP_SUPPORT
76097 + UCHAR CkipNegotiationBuffer[CKIP_NEGOTIATION_LENGTH];
76098 + UCHAR AironetCkipIe = IE_AIRONET_CKIP;
76099 + UCHAR AironetCkipLen = CKIP_NEGOTIATION_LENGTH;
76100 + UCHAR AironetIPAddressIE = IE_AIRONET_IPADDRESS;
76101 + UCHAR AironetIPAddressLen = AIRONET_IPADDRESS_LENGTH;
76102 + UCHAR AironetIPAddressBuffer[AIRONET_IPADDRESS_LENGTH] = {0x00, 0x40, 0x96, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0x00};
76103 + UCHAR AironetCCKMReassocIE = IE_AIRONET_CCKMREASSOC;
76104 + UCHAR AironetCCKMReassocLen = AIRONET_CCKMREASSOC_LENGTH;
76105 + UCHAR AironetCCKMReassocBuffer[AIRONET_CCKMREASSOC_LENGTH];
76106 + UCHAR AironetOUI[] = {0x00, 0x40, 0x96, 0x00};
76108 + UCHAR CalcMicBuffer[80];
76109 + ULONG CalcMicBufferLen = 0;
76110 +#endif // LEAP_SUPPORT //
76113 + // Block all authentication request durning WPA block period
76114 + if (pAd->StaCfg.bBlockAssoc == TRUE)
76116 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - Block ReAssoc request durning WPA block period!\n"));
76117 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
76118 + Status = MLME_STATE_MACHINE_REJECT;
76119 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_REASSOC_CONF, 2, &Status);
76121 + // the parameters are the same as the association
76122 + else if(MlmeAssocReqSanity(pAd, Elem->Msg, Elem->MsgLen, ApAddr, &CapabilityInfo, &Timeout, &ListenIntv))
76124 + RTMPCancelTimer(&pAd->MlmeAux.ReassocTimer, &TimerCancelled);
76126 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
76127 + if(NStatus != NDIS_STATUS_SUCCESS)
76129 + DBGPRINT(RT_DEBUG_TRACE,("ASSOC - MlmeReassocReqAction() allocate memory failed \n"));
76130 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
76131 + Status = MLME_FAIL_NO_RESOURCE;
76132 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_REASSOC_CONF, 2, &Status);
76136 + COPY_MAC_ADDR(pAd->MlmeAux.Bssid, ApAddr);
76138 + // make frame, use bssid as the AP address??
76139 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - Send RE-ASSOC request...\n"));
76140 + MgtMacHeaderInit(pAd, &ReassocHdr, SUBTYPE_REASSOC_REQ, 0, ApAddr, ApAddr);
76141 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
76142 + sizeof(HEADER_802_11), &ReassocHdr,
76143 + 2, &CapabilityInfo,
76145 + MAC_ADDR_LEN, ApAddr,
76147 + 1, &pAd->MlmeAux.SsidLen,
76148 + pAd->MlmeAux.SsidLen, pAd->MlmeAux.Ssid,
76150 + 1, &pAd->MlmeAux.SupRateLen,
76151 + pAd->MlmeAux.SupRateLen, pAd->MlmeAux.SupRate,
76154 + if (pAd->MlmeAux.ExtRateLen != 0)
76156 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
76158 + 1, &pAd->MlmeAux.ExtRateLen,
76159 + pAd->MlmeAux.ExtRateLen, pAd->MlmeAux.ExtRate,
76164 + if (pAd->MlmeAux.APEdcaParm.bValid)
76166 + if (pAd->CommonCfg.bAPSDCapable && pAd->MlmeAux.APEdcaParm.bAPSDCapable)
76168 + QBSS_STA_INFO_PARM QosInfo;
76170 + NdisZeroMemory(&QosInfo, sizeof(QBSS_STA_INFO_PARM));
76171 + QosInfo.UAPSD_AC_BE = pAd->CommonCfg.bAPSDAC_BE;
76172 + QosInfo.UAPSD_AC_BK = pAd->CommonCfg.bAPSDAC_BK;
76173 + QosInfo.UAPSD_AC_VI = pAd->CommonCfg.bAPSDAC_VI;
76174 + QosInfo.UAPSD_AC_VO = pAd->CommonCfg.bAPSDAC_VO;
76175 + QosInfo.MaxSPLength = pAd->CommonCfg.MaxSPLength;
76176 + WmeIe[8] |= *(PUCHAR)&QosInfo;
76179 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
76185 +#ifdef DOT11_N_SUPPORT
76187 + if ((pAd->MlmeAux.HtCapabilityLen > 0) && (pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED))
76191 + UCHAR BROADCOM[4] = {0x0, 0x90, 0x4c, 0x33};
76192 + if (pAd->StaActive.SupportedPhyInfo.bPreNHt == TRUE)
76194 + HtLen = SIZE_HT_CAP_IE + 4;
76195 + MakeOutgoingFrame(pOutBuffer + FrameLen, &TmpLen,
76199 + pAd->MlmeAux.HtCapabilityLen, &pAd->MlmeAux.HtCapability,
76204 + MakeOutgoingFrame(pOutBuffer + FrameLen, &TmpLen,
76206 + 1, &pAd->MlmeAux.HtCapabilityLen,
76207 + pAd->MlmeAux.HtCapabilityLen, &pAd->MlmeAux.HtCapability,
76210 + FrameLen += TmpLen;
76212 +#endif // DOT11_N_SUPPORT //
76214 + // add Ralink proprietary IE to inform AP this STA is going to use AGGREGATION or PIGGY-BACK+AGGREGATION
76215 + // Case I: (Aggregation + Piggy-Back)
76216 + // 1. user enable aggregation, AND
76217 + // 2. Mac support piggy-back
76218 + // 3. AP annouces it's PIGGY-BACK+AGGREGATION-capable in BEACON
76219 + // Case II: (Aggregation)
76220 + // 1. user enable aggregation, AND
76221 + // 2. AP annouces it's AGGREGATION-capable in BEACON
76222 + if (pAd->CommonCfg.bAggregationCapable)
76224 + if ((pAd->CommonCfg.bPiggyBackCapable) && ((pAd->MlmeAux.APRalinkIe & 0x00000003) == 3))
76227 + UCHAR RalinkIe[9] = {IE_VENDOR_SPECIFIC, 7, 0x00, 0x0c, 0x43, 0x03, 0x00, 0x00, 0x00};
76228 + MakeOutgoingFrame(pOutBuffer+FrameLen, &TmpLen,
76231 + FrameLen += TmpLen;
76233 + else if (pAd->MlmeAux.APRalinkIe & 0x00000001)
76236 + UCHAR RalinkIe[9] = {IE_VENDOR_SPECIFIC, 7, 0x00, 0x0c, 0x43, 0x01, 0x00, 0x00, 0x00};
76237 + MakeOutgoingFrame(pOutBuffer+FrameLen, &TmpLen,
76240 + FrameLen += TmpLen;
76246 + UCHAR RalinkIe[9] = {IE_VENDOR_SPECIFIC, 7, 0x00, 0x0c, 0x43, 0x04, 0x00, 0x00, 0x00};
76247 + MakeOutgoingFrame(pOutBuffer+FrameLen, &TmpLen,
76250 + FrameLen += TmpLen;
76252 +#ifdef LEAP_SUPPORT
76253 + if (LEAP_CCKM_ON(pAd) && (pAd->StaCfg.CCKMLinkUpFlag == TRUE))
76255 + CkipFlag = pAd->StaCfg.CkipFlag; // We have update that at PeerBeaconAtJoinRequest()
76256 + if (CkipFlag != 0)
76258 + NdisZeroMemory(CkipNegotiationBuffer, CKIP_NEGOTIATION_LENGTH);
76259 + CkipNegotiationBuffer[2] = 0x66;
76260 + // Make it try KP & MIC, since we have to follow the result from AssocRsp
76261 + CkipNegotiationBuffer[8] = 0x18;
76262 + CkipNegotiationBuffer[CKIP_NEGOTIATION_LENGTH - 1] = 0x22;
76264 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
76265 + 1, &AironetCkipIe,
76266 + 1, &AironetCkipLen,
76267 + AironetCkipLen, CkipNegotiationBuffer,
76272 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
76273 + 1, &AironetIPAddressIE,
76274 + 1, &AironetIPAddressLen,
76275 + AironetIPAddressLen, AironetIPAddressBuffer,
76280 + // The RN is incremented before each reassociation request.
76282 + pAd->StaCfg.CCKMRN++;
76284 + // Calculate MIC = hmac-md5(krk, STA-ID|BSSID|RSNIE|TSF|RN);
76286 + COPY_MAC_ADDR(CalcMicBuffer, pAd->CurrentAddress);
76287 + CalcMicBufferLen = MAC_ADDR_LEN;
76288 + COPY_MAC_ADDR(CalcMicBuffer + CalcMicBufferLen, pAd->MlmeAux.Bssid);
76289 + CalcMicBufferLen += MAC_ADDR_LEN;
76290 + NdisMoveMemory(CalcMicBuffer + CalcMicBufferLen, CipherSuiteCiscoCCKM, CipherSuiteCiscoCCKMLen);
76291 + CalcMicBufferLen += CipherSuiteCiscoCCKMLen;
76292 + NdisMoveMemory(CalcMicBuffer + CalcMicBufferLen, (PUCHAR) &pAd->StaCfg.CCKMBeaconAtJoinTimeStamp, sizeof(pAd->StaCfg.CCKMBeaconAtJoinTimeStamp));
76293 + CalcMicBufferLen += sizeof(pAd->StaCfg.CCKMBeaconAtJoinTimeStamp);
76294 + NdisMoveMemory(CalcMicBuffer + CalcMicBufferLen, (PUCHAR)&pAd->StaCfg.CCKMRN, sizeof(pAd->StaCfg.CCKMRN));
76295 + CalcMicBufferLen += sizeof(pAd->StaCfg.CCKMRN);
76296 + hmac_md5(pAd->StaCfg.KRK, LEN_EAP_MICK, CalcMicBuffer, CalcMicBufferLen, MICMN);
76299 + // fill up CCKM reassociation request element
76301 + NdisMoveMemory(AironetCCKMReassocBuffer, AironetOUI, 4);
76302 + NdisMoveMemory(AironetCCKMReassocBuffer + 4, (PUCHAR)&pAd->StaCfg.CCKMBeaconAtJoinTimeStamp, 8);
76303 + NdisMoveMemory(AironetCCKMReassocBuffer + 12, (PUCHAR) &pAd->StaCfg.CCKMRN, 4);
76304 + NdisMoveMemory(AironetCCKMReassocBuffer +16, MICMN, 8);
76306 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
76307 + 1, &AironetCCKMReassocIE,
76308 + 1, &AironetCCKMReassocLen,
76309 + AironetCCKMReassocLen, AironetCCKMReassocBuffer,
76313 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
76314 + CipherSuiteCiscoCCKMLen,CipherSuiteCiscoCCKM,
76318 +#endif // LEAP_SUPPORT //
76320 + // Add CCX v2 request if CCX2 admin state is on
76321 + if (pAd->StaCfg.CCXControl.field.Enable == 1)
76324 + // Add CCX Version
76326 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
76329 + Ccx2Len, Ccx2IeInfo,
76334 + MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
76335 + MlmeFreeMemory(pAd, pOutBuffer);
76337 + RTMPSetTimer(&pAd->MlmeAux.ReassocTimer, Timeout); /* in mSec */
76338 + pAd->Mlme.AssocMachine.CurrState = REASSOC_WAIT_RSP;
76342 + DBGPRINT(RT_DEBUG_TRACE,("ASSOC - MlmeReassocReqAction() sanity check failed. BUG!!!! \n"));
76343 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
76344 + Status = MLME_INVALID_FORMAT;
76345 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_REASSOC_CONF, 2, &Status);
76350 + ==========================================================================
76352 + Upper layer issues disassoc request
76356 + IRQL = PASSIVE_LEVEL
76358 + ==========================================================================
76360 +VOID MlmeDisassocReqAction(
76361 + IN PRTMP_ADAPTER pAd,
76362 + IN MLME_QUEUE_ELEM *Elem)
76364 + PMLME_DISASSOC_REQ_STRUCT pDisassocReq;
76365 + HEADER_802_11 DisassocHdr;
76366 + PHEADER_802_11 pDisassocHdr;
76367 + PUCHAR pOutBuffer = NULL;
76368 + ULONG FrameLen = 0;
76369 + NDIS_STATUS NStatus;
76370 + BOOLEAN TimerCancelled;
76371 + ULONG Timeout = 0;
76374 +#ifdef QOS_DLS_SUPPORT
76375 + // send DLS-TEAR_DOWN message,
76376 + if (pAd->CommonCfg.bDLSCapable)
76380 + // tear down local dls table entry
76381 + for (i=0; i<MAX_NUM_OF_INIT_DLS_ENTRY; i++)
76383 + if (pAd->StaCfg.DLSEntry[i].Valid && (pAd->StaCfg.DLSEntry[i].Status == DLS_FINISH))
76385 + RTMPSendDLSTearDownFrame(pAd, pAd->StaCfg.DLSEntry[i].MacAddr);
76386 + pAd->StaCfg.DLSEntry[i].Status = DLS_NONE;
76387 + pAd->StaCfg.DLSEntry[i].Valid = FALSE;
76391 + // tear down peer dls table entry
76392 + for (i=MAX_NUM_OF_INIT_DLS_ENTRY; i<MAX_NUM_OF_DLS_ENTRY; i++)
76394 + if (pAd->StaCfg.DLSEntry[i].Valid && (pAd->StaCfg.DLSEntry[i].Status == DLS_FINISH))
76396 + RTMPSendDLSTearDownFrame(pAd, pAd->StaCfg.DLSEntry[i].MacAddr);
76397 + pAd->StaCfg.DLSEntry[i].Status = DLS_NONE;
76398 + pAd->StaCfg.DLSEntry[i].Valid = FALSE;
76402 +#endif // QOS_DLS_SUPPORT //
76404 + // skip sanity check
76405 + pDisassocReq = (PMLME_DISASSOC_REQ_STRUCT)(Elem->Msg);
76407 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
76408 + if (NStatus != NDIS_STATUS_SUCCESS)
76410 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - MlmeDisassocReqAction() allocate memory failed\n"));
76411 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
76412 + Status = MLME_FAIL_NO_RESOURCE;
76413 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_DISASSOC_CONF, 2, &Status);
76419 + RTMPCancelTimer(&pAd->MlmeAux.DisassocTimer, &TimerCancelled);
76421 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - Send DISASSOC request[BSSID::%02x:%02x:%02x:%02x:%02x:%02x (Reason=%d)\n",
76422 + pDisassocReq->Addr[0], pDisassocReq->Addr[1], pDisassocReq->Addr[2],
76423 + pDisassocReq->Addr[3], pDisassocReq->Addr[4], pDisassocReq->Addr[5], pDisassocReq->Reason));
76424 + MgtMacHeaderInit(pAd, &DisassocHdr, SUBTYPE_DISASSOC, 0, pDisassocReq->Addr, pDisassocReq->Addr); // patch peap ttls switching issue
76425 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
76426 + sizeof(HEADER_802_11),&DisassocHdr,
76427 + 2, &pDisassocReq->Reason,
76429 + MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
76431 + // To patch Instance and Buffalo(N) AP
76432 + // Driver has to send deauth to Instance AP, but Buffalo(N) needs to send disassoc to reset Authenticator's state machine
76433 + // Therefore, we send both of them.
76434 + pDisassocHdr = (PHEADER_802_11)pOutBuffer;
76435 + pDisassocHdr->FC.SubType = SUBTYPE_DEAUTH;
76436 + MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
76438 + MlmeFreeMemory(pAd, pOutBuffer);
76440 + pAd->StaCfg.DisassocReason = REASON_DISASSOC_STA_LEAVING;
76441 + COPY_MAC_ADDR(pAd->StaCfg.DisassocSta, pDisassocReq->Addr);
76443 + RTMPSetTimer(&pAd->MlmeAux.DisassocTimer, Timeout); /* in mSec */
76444 + pAd->Mlme.AssocMachine.CurrState = DISASSOC_WAIT_RSP;
76446 +#ifdef WPA_SUPPLICANT_SUPPORT
76447 +#ifndef NATIVE_WPA_SUPPLICANT_SUPPORT
76448 + if (pAd->StaCfg.WpaSupplicantUP != WPA_SUPPLICANT_DISABLE)
76450 + union iwreq_data wrqu;
76451 + //send disassociate event to wpa_supplicant
76452 + memset(&wrqu, 0, sizeof(wrqu));
76453 + wrqu.data.flags = RT_DISASSOC_EVENT_FLAG;
76454 + wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, NULL);
76456 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
76457 +#endif // WPA_SUPPLICANT_SUPPORT //
76459 +#ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
76461 + union iwreq_data wrqu;
76462 + memset(wrqu.ap_addr.sa_data, 0, MAC_ADDR_LEN);
76463 + wireless_send_event(pAd->net_dev, SIOCGIWAP, &wrqu, NULL);
76465 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
76470 + ==========================================================================
76472 + peer sends assoc rsp back
76474 + Elme - MLME message containing the received frame
76476 + IRQL = DISPATCH_LEVEL
76478 + ==========================================================================
76480 +VOID PeerAssocRspAction(
76481 + IN PRTMP_ADAPTER pAd,
76482 + IN MLME_QUEUE_ELEM *Elem)
76484 + USHORT CapabilityInfo, Status, Aid;
76485 + UCHAR SupRate[MAX_LEN_OF_SUPPORTED_RATES], SupRateLen;
76486 + UCHAR ExtRate[MAX_LEN_OF_SUPPORTED_RATES], ExtRateLen;
76487 + UCHAR Addr2[MAC_ADDR_LEN];
76488 + BOOLEAN TimerCancelled;
76490 + EDCA_PARM EdcaParm;
76491 + HT_CAPABILITY_IE HtCapability;
76492 + ADD_HT_INFO_IE AddHtInfo; // AP might use this additional ht info IE
76493 + UCHAR HtCapabilityLen;
76494 + UCHAR AddHtInfoLen;
76495 + UCHAR NewExtChannelOffset = 0xff;
76497 + if (PeerAssocRspSanity(pAd, Elem->Msg, Elem->MsgLen, Addr2, &CapabilityInfo, &Status, &Aid, SupRate, &SupRateLen, ExtRate, &ExtRateLen,
76498 + &HtCapability,&AddHtInfo, &HtCapabilityLen,&AddHtInfoLen,&NewExtChannelOffset, &EdcaParm, &CkipFlag))
76500 + // The frame is for me ?
76501 + if(MAC_ADDR_EQUAL(Addr2, pAd->MlmeAux.Bssid))
76503 + DBGPRINT(RT_DEBUG_TRACE, ("PeerAssocRspAction():ASSOC - receive ASSOC_RSP to me (status=%d)\n", Status));
76504 +#ifdef DOT11_N_SUPPORT
76505 + DBGPRINT(RT_DEBUG_TRACE, ("PeerAssocRspAction():MacTable [%d].AMsduSize = %d. ClientStatusFlags = 0x%lx \n",Elem->Wcid, pAd->MacTab.Content[BSSID_WCID].AMsduSize, pAd->MacTab.Content[BSSID_WCID].ClientStatusFlags));
76506 +#endif // DOT11_N_SUPPORT //
76507 + RTMPCancelTimer(&pAd->MlmeAux.AssocTimer, &TimerCancelled);
76508 + if(Status == MLME_SUCCESS)
76510 + UCHAR MaxSupportedRateIn500Kbps = 0;
76513 + // supported rates array may not be sorted. sort it and find the maximum rate
76514 + for (idx=0; idx<SupRateLen; idx++)
76516 + if (MaxSupportedRateIn500Kbps < (SupRate[idx] & 0x7f))
76517 + MaxSupportedRateIn500Kbps = SupRate[idx] & 0x7f;
76520 + for (idx=0; idx<ExtRateLen; idx++)
76522 + if (MaxSupportedRateIn500Kbps < (ExtRate[idx] & 0x7f))
76523 + MaxSupportedRateIn500Kbps = ExtRate[idx] & 0x7f;
76525 + // go to procedure listed on page 376
76526 + AssocPostProc(pAd, Addr2, CapabilityInfo, Aid, SupRate, SupRateLen, ExtRate, ExtRateLen,
76527 + &EdcaParm, &HtCapability, HtCapabilityLen, &AddHtInfo);
76529 + StaAddMacTableEntry(pAd, &pAd->MacTab.Content[BSSID_WCID], MaxSupportedRateIn500Kbps, &HtCapability, HtCapabilityLen, CapabilityInfo);
76531 + pAd->StaCfg.CkipFlag = CkipFlag;
76532 + if (CkipFlag & 0x18)
76534 + NdisZeroMemory(pAd->StaCfg.TxSEQ, 4);
76535 + NdisZeroMemory(pAd->StaCfg.RxSEQ, 4);
76536 + NdisZeroMemory(pAd->StaCfg.CKIPMIC, 4);
76537 + pAd->StaCfg.GIV[0] = RandomByte(pAd);
76538 + pAd->StaCfg.GIV[1] = RandomByte(pAd);
76539 + pAd->StaCfg.GIV[2] = RandomByte(pAd);
76540 + pAd->StaCfg.bCkipOn = TRUE;
76541 + DBGPRINT(RT_DEBUG_TRACE, ("<CCX> pAd->StaCfg.CkipFlag = 0x%02x\n", pAd->StaCfg.CkipFlag));
76546 + // Faile on Association, we need to check the status code
76547 + // Is that a Rogue AP?
76548 +#ifdef LEAP_SUPPORT
76549 + if ((pAd->StaCfg.LeapAuthMode == CISCO_AuthModeLEAP) && (Status == MLME_ALG_NOT_SUPPORT))
76550 + { //Possibly Rogue AP
76551 + RogueApTableSetEntry(pAd, &pAd->StaCfg.RogueApTab, pAd->MlmeAux.Bssid, LEAP_REASON_INVALID_AUTH);
76553 +#endif // LEAP_SUPPORT //
76555 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
76556 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_ASSOC_CONF, 2, &Status);
76561 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - PeerAssocRspAction() sanity check fail\n"));
76566 + ==========================================================================
76568 + peer sends reassoc rsp
76570 + Elem - MLME message cntaining the received frame
76572 + IRQL = DISPATCH_LEVEL
76574 + ==========================================================================
76576 +VOID PeerReassocRspAction(
76577 + IN PRTMP_ADAPTER pAd,
76578 + IN MLME_QUEUE_ELEM *Elem)
76580 + USHORT CapabilityInfo;
76583 + UCHAR SupRate[MAX_LEN_OF_SUPPORTED_RATES], SupRateLen;
76584 + UCHAR ExtRate[MAX_LEN_OF_SUPPORTED_RATES], ExtRateLen;
76585 + UCHAR Addr2[MAC_ADDR_LEN];
76587 + BOOLEAN TimerCancelled;
76588 + EDCA_PARM EdcaParm;
76589 + HT_CAPABILITY_IE HtCapability;
76590 + ADD_HT_INFO_IE AddHtInfo; // AP might use this additional ht info IE
76591 + UCHAR HtCapabilityLen;
76592 + UCHAR AddHtInfoLen;
76593 + UCHAR NewExtChannelOffset = 0xff;
76595 + if(PeerAssocRspSanity(pAd, Elem->Msg, Elem->MsgLen, Addr2, &CapabilityInfo, &Status, &Aid, SupRate, &SupRateLen, ExtRate, &ExtRateLen,
76596 + &HtCapability, &AddHtInfo, &HtCapabilityLen, &AddHtInfoLen,&NewExtChannelOffset, &EdcaParm, &CkipFlag))
76598 + if(MAC_ADDR_EQUAL(Addr2, pAd->MlmeAux.Bssid)) // The frame is for me ?
76600 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - receive REASSOC_RSP to me (status=%d)\n", Status));
76601 + RTMPCancelTimer(&pAd->MlmeAux.ReassocTimer, &TimerCancelled);
76603 + if(Status == MLME_SUCCESS)
76605 + // go to procedure listed on page 376
76606 + AssocPostProc(pAd, Addr2, CapabilityInfo, Aid, SupRate, SupRateLen, ExtRate, ExtRateLen,
76607 + &EdcaParm, &HtCapability, HtCapabilityLen, &AddHtInfo);
76609 +#ifdef WPA_SUPPLICANT_SUPPORT
76610 +#ifndef NATIVE_WPA_SUPPLICANT_SUPPORT
76611 + if (pAd->StaCfg.WpaSupplicantUP != WPA_SUPPLICANT_DISABLE)
76613 + union iwreq_data wrqu;
76615 + SendAssocIEsToWpaSupplicant(pAd);
76616 + memset(&wrqu, 0, sizeof(wrqu));
76617 + wrqu.data.flags = RT_ASSOC_EVENT_FLAG;
76618 + wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, NULL);
76620 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
76621 +#endif // WPA_SUPPLICANT_SUPPORT //
76623 +#ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
76625 + union iwreq_data wrqu;
76626 + wext_notify_event_assoc(pAd);
76628 + memset(wrqu.ap_addr.sa_data, 0, MAC_ADDR_LEN);
76629 + memcpy(wrqu.ap_addr.sa_data, pAd->MlmeAux.Bssid, MAC_ADDR_LEN);
76630 + wireless_send_event(pAd->net_dev, SIOCGIWAP, &wrqu, NULL);
76633 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
76638 + // Cisco Leap CCKM supported Re-association.
76640 +#ifdef LEAP_SUPPORT
76641 + if (LEAP_CCKM_ON(pAd) && (pAd->StaCfg.CCKMLinkUpFlag == TRUE))
76643 + if (CCKMAssocRspSanity(pAd, Elem->Msg, Elem->MsgLen) == TRUE)
76645 + pAd->StaCfg.CkipFlag = CkipFlag;
76646 + if (CkipFlag & 0x18)
76648 + NdisZeroMemory(pAd->StaCfg.TxSEQ, 4);
76649 + NdisZeroMemory(pAd->StaCfg.RxSEQ, 4);
76650 + NdisZeroMemory(pAd->StaCfg.CKIPMIC, 4);
76651 + pAd->StaCfg.GIV[0] = RandomByte(pAd);
76652 + pAd->StaCfg.GIV[1] = RandomByte(pAd);
76653 + pAd->StaCfg.GIV[2] = RandomByte(pAd);
76654 + pAd->StaCfg.bCkipOn = TRUE;
76655 + DBGPRINT(RT_DEBUG_TRACE, ("<CCX> pAd->StaCfg.CkipFlag = 0x%02x\n", pAd->StaCfg.CkipFlag));
76658 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
76659 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_REASSOC_CONF, 2, &Status);
76663 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - CCKMAssocRspSanity() sanity check fail\n"));
76667 +#endif // LEAP_SUPPORT //
76669 + // CkipFlag is no use for reassociate
76670 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
76671 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_REASSOC_CONF, 2, &Status);
76677 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - PeerReassocRspAction() sanity check fail\n"));
76683 + ==========================================================================
76685 + procedures on IEEE 802.11/1999 p.376
76688 + IRQL = DISPATCH_LEVEL
76690 + ==========================================================================
76692 +VOID AssocPostProc(
76693 + IN PRTMP_ADAPTER pAd,
76694 + IN PUCHAR pAddr2,
76695 + IN USHORT CapabilityInfo,
76697 + IN UCHAR SupRate[],
76698 + IN UCHAR SupRateLen,
76699 + IN UCHAR ExtRate[],
76700 + IN UCHAR ExtRateLen,
76701 + IN PEDCA_PARM pEdcaParm,
76702 + IN HT_CAPABILITY_IE *pHtCapability,
76703 + IN UCHAR HtCapabilityLen,
76704 + IN ADD_HT_INFO_IE *pAddHtInfo) // AP might use this additional ht info IE
76708 + pAd->MlmeAux.BssType = BSS_INFRA;
76709 + COPY_MAC_ADDR(pAd->MlmeAux.Bssid, pAddr2);
76710 + pAd->MlmeAux.Aid = Aid;
76711 + pAd->MlmeAux.CapabilityInfo = CapabilityInfo & SUPPORTED_CAPABILITY_INFO;
76712 +#ifdef DOT11_N_SUPPORT
76713 + // Some HT AP might lost WMM IE. We add WMM ourselves. beacuase HT requires QoS on.
76714 + if ((HtCapabilityLen > 0) && (pEdcaParm->bValid == FALSE))
76716 + pEdcaParm->bValid = TRUE;
76717 + pEdcaParm->Aifsn[0] = 3;
76718 + pEdcaParm->Aifsn[1] = 7;
76719 + pEdcaParm->Aifsn[2] = 2;
76720 + pEdcaParm->Aifsn[3] = 2;
76722 + pEdcaParm->Cwmin[0] = 4;
76723 + pEdcaParm->Cwmin[1] = 4;
76724 + pEdcaParm->Cwmin[2] = 3;
76725 + pEdcaParm->Cwmin[3] = 2;
76727 + pEdcaParm->Cwmax[0] = 10;
76728 + pEdcaParm->Cwmax[1] = 10;
76729 + pEdcaParm->Cwmax[2] = 4;
76730 + pEdcaParm->Cwmax[3] = 3;
76732 + pEdcaParm->Txop[0] = 0;
76733 + pEdcaParm->Txop[1] = 0;
76734 + pEdcaParm->Txop[2] = 96;
76735 + pEdcaParm->Txop[3] = 48;
76738 +#endif // DOT11_N_SUPPORT //
76740 + NdisMoveMemory(&pAd->MlmeAux.APEdcaParm, pEdcaParm, sizeof(EDCA_PARM));
76742 + // filter out un-supported rates
76743 + pAd->MlmeAux.SupRateLen = SupRateLen;
76744 + NdisMoveMemory(pAd->MlmeAux.SupRate, SupRate, SupRateLen);
76745 + RTMPCheckRates(pAd, pAd->MlmeAux.SupRate, &pAd->MlmeAux.SupRateLen);
76747 + // filter out un-supported rates
76748 + pAd->MlmeAux.ExtRateLen = ExtRateLen;
76749 + NdisMoveMemory(pAd->MlmeAux.ExtRate, ExtRate, ExtRateLen);
76750 + RTMPCheckRates(pAd, pAd->MlmeAux.ExtRate, &pAd->MlmeAux.ExtRateLen);
76752 +#ifdef DOT11_N_SUPPORT
76753 + if (HtCapabilityLen > 0)
76755 + RTMPCheckHt(pAd, BSSID_WCID, pHtCapability, pAddHtInfo);
76757 + DBGPRINT(RT_DEBUG_TRACE, ("AssocPostProc===> AP.AMsduSize = %d. ClientStatusFlags = 0x%lx \n", pAd->MacTab.Content[BSSID_WCID].AMsduSize, pAd->MacTab.Content[BSSID_WCID].ClientStatusFlags));
76759 + DBGPRINT(RT_DEBUG_TRACE, ("AssocPostProc===> (Mmps=%d, AmsduSize=%d, )\n",
76760 + pAd->MacTab.Content[BSSID_WCID].MmpsMode, pAd->MacTab.Content[BSSID_WCID].AMsduSize));
76761 +#endif // DOT11_N_SUPPORT //
76763 + // Set New WPA information
76764 + Idx = BssTableSearch(&pAd->ScanTab, pAddr2, pAd->MlmeAux.Channel);
76765 + if (Idx == BSS_NOT_FOUND)
76767 + DBGPRINT_ERR(("ASSOC - Can't find BSS after receiving Assoc response\n"));
76772 + pAd->MacTab.Content[BSSID_WCID].RSNIE_Len = 0;
76773 + NdisZeroMemory(pAd->MacTab.Content[BSSID_WCID].RSN_IE, MAX_LEN_OF_RSNIE);
76775 + // Store appropriate RSN_IE for WPA SM negotiation later
76776 + if ((pAd->StaCfg.AuthMode >= Ndis802_11AuthModeWPA) && (pAd->ScanTab.BssEntry[Idx].VarIELen != 0))
76780 + PEID_STRUCT pEid;
76782 + pVIE = pAd->ScanTab.BssEntry[Idx].VarIEs;
76783 + len = pAd->ScanTab.BssEntry[Idx].VarIELen;
76787 + pEid = (PEID_STRUCT) pVIE;
76788 + // For WPA/WPAPSK
76789 + if ((pEid->Eid == IE_WPA) && (NdisEqualMemory(pEid->Octet, WPA_OUI, 4))
76790 + && (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA || pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK))
76792 + NdisMoveMemory(pAd->MacTab.Content[BSSID_WCID].RSN_IE, pVIE, (pEid->Len + 2));
76793 + pAd->MacTab.Content[BSSID_WCID].RSNIE_Len = (pEid->Len + 2);
76794 + DBGPRINT(RT_DEBUG_TRACE, ("AssocPostProc===> Store RSN_IE for WPA SM negotiation \n"));
76796 + // For WPA2/WPA2PSK
76797 + else if ((pEid->Eid == IE_RSN) && (NdisEqualMemory(pEid->Octet + 2, RSN_OUI, 3))
76798 + && (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2 || pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK))
76800 + NdisMoveMemory(pAd->MacTab.Content[BSSID_WCID].RSN_IE, pVIE, (pEid->Len + 2));
76801 + pAd->MacTab.Content[BSSID_WCID].RSNIE_Len = (pEid->Len + 2);
76802 + DBGPRINT(RT_DEBUG_TRACE, ("AssocPostProc===> Store RSN_IE for WPA2 SM negotiation \n"));
76805 + pVIE += (pEid->Len + 2);
76806 + len -= (pEid->Len + 2);
76810 + if (pAd->MacTab.Content[BSSID_WCID].RSNIE_Len == 0)
76812 + DBGPRINT(RT_DEBUG_TRACE, ("AssocPostProc===> no RSN_IE \n"));
76816 + hex_dump("RSN_IE", pAd->MacTab.Content[BSSID_WCID].RSN_IE, pAd->MacTab.Content[BSSID_WCID].RSNIE_Len);
76822 + ==========================================================================
76824 + left part of IEEE 802.11/1999 p.374
76826 + Elem - MLME message containing the received frame
76828 + IRQL = DISPATCH_LEVEL
76830 + ==========================================================================
76832 +VOID PeerDisassocAction(
76833 + IN PRTMP_ADAPTER pAd,
76834 + IN MLME_QUEUE_ELEM *Elem)
76836 + UCHAR Addr2[MAC_ADDR_LEN];
76839 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - PeerDisassocAction()\n"));
76840 + if(PeerDisassocSanity(pAd, Elem->Msg, Elem->MsgLen, Addr2, &Reason))
76842 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - PeerDisassocAction() Reason = %d\n", Reason));
76843 + if (INFRA_ON(pAd) && MAC_ADDR_EQUAL(pAd->CommonCfg.Bssid, Addr2))
76846 + if (pAd->CommonCfg.bWirelessEvent)
76848 + RTMPSendWirelessEvent(pAd, IW_DISASSOC_EVENT_FLAG, pAd->MacTab.Content[BSSID_WCID].Addr, BSS0, 0);
76852 +#ifdef LEAP_SUPPORT
76853 + if (pAd->StaCfg.LeapAuthMode == CISCO_AuthModeLEAP)
76855 + // Cisco_LEAP has start a timer
76856 + // We should cancel it if using LEAP
76857 + RTMPCancelTimer(&pAd->StaCfg.LeapAuthTimer, &TimerCancelled);
76858 + //Check is it mach the LEAP Authentication failed as possible a Rogue AP
76859 + //on it's PortSecured not equal to WPA_802_1X_PORT_SECURED while process the Association.
76860 + if ((pAd->Mlme.LeapMachine.CurrState != LEAP_IDLE) && (pAd->StaCfg.PortSecured != WPA_802_1X_PORT_SECURED))
76862 + RogueApTableSetEntry(pAd, &pAd->StaCfg.RogueApTab, Addr2, LEAP_REASON_AUTH_TIMEOUT);
76865 +#endif // LEAP_SUPPORT //
76867 + // Get Current System time and Turn on AdjacentAPReport
76869 + NdisGetSystemUpTime(&pAd->StaCfg.CCXAdjacentAPLinkDownTime);
76870 + pAd->StaCfg.CCXAdjacentAPReportFlag = TRUE;
76871 + LinkDown(pAd, TRUE);
76872 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
76874 +#ifdef WPA_SUPPLICANT_SUPPORT
76875 +#ifndef NATIVE_WPA_SUPPLICANT_SUPPORT
76876 + if (pAd->StaCfg.WpaSupplicantUP != WPA_SUPPLICANT_DISABLE)
76878 + union iwreq_data wrqu;
76879 + //send disassociate event to wpa_supplicant
76880 + memset(&wrqu, 0, sizeof(wrqu));
76881 + wrqu.data.flags = RT_DISASSOC_EVENT_FLAG;
76882 + wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, NULL);
76884 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
76885 +#endif // WPA_SUPPLICANT_SUPPORT //
76887 +#ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
76889 + union iwreq_data wrqu;
76890 + memset(wrqu.ap_addr.sa_data, 0, MAC_ADDR_LEN);
76891 + wireless_send_event(pAd->net_dev, SIOCGIWAP, &wrqu, NULL);
76893 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
76898 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - PeerDisassocAction() sanity check fail\n"));
76904 + ==========================================================================
76906 + what the state machine will do after assoc timeout
76910 + IRQL = DISPATCH_LEVEL
76912 + ==========================================================================
76914 +VOID AssocTimeoutAction(
76915 + IN PRTMP_ADAPTER pAd,
76916 + IN MLME_QUEUE_ELEM *Elem)
76919 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - AssocTimeoutAction\n"));
76920 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
76921 + Status = MLME_REJ_TIMEOUT;
76922 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_ASSOC_CONF, 2, &Status);
76926 + ==========================================================================
76928 + what the state machine will do after reassoc timeout
76930 + IRQL = DISPATCH_LEVEL
76932 + ==========================================================================
76934 +VOID ReassocTimeoutAction(
76935 + IN PRTMP_ADAPTER pAd,
76936 + IN MLME_QUEUE_ELEM *Elem)
76939 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - ReassocTimeoutAction\n"));
76940 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
76941 + Status = MLME_REJ_TIMEOUT;
76942 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_REASSOC_CONF, 2, &Status);
76946 + ==========================================================================
76948 + what the state machine will do after disassoc timeout
76950 + IRQL = DISPATCH_LEVEL
76952 + ==========================================================================
76954 +VOID DisassocTimeoutAction(
76955 + IN PRTMP_ADAPTER pAd,
76956 + IN MLME_QUEUE_ELEM *Elem)
76959 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - DisassocTimeoutAction\n"));
76960 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
76961 + Status = MLME_SUCCESS;
76962 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_DISASSOC_CONF, 2, &Status);
76965 +VOID InvalidStateWhenAssoc(
76966 + IN PRTMP_ADAPTER pAd,
76967 + IN MLME_QUEUE_ELEM *Elem)
76970 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - InvalidStateWhenAssoc(state=%ld), reset ASSOC state machine\n",
76971 + pAd->Mlme.AssocMachine.CurrState));
76972 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
76973 + Status = MLME_STATE_MACHINE_REJECT;
76974 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_ASSOC_CONF, 2, &Status);
76977 +VOID InvalidStateWhenReassoc(
76978 + IN PRTMP_ADAPTER pAd,
76979 + IN MLME_QUEUE_ELEM *Elem)
76982 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - InvalidStateWhenReassoc(state=%ld), reset ASSOC state machine\n",
76983 + pAd->Mlme.AssocMachine.CurrState));
76984 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
76985 + Status = MLME_STATE_MACHINE_REJECT;
76986 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_REASSOC_CONF, 2, &Status);
76989 +VOID InvalidStateWhenDisassociate(
76990 + IN PRTMP_ADAPTER pAd,
76991 + IN MLME_QUEUE_ELEM *Elem)
76994 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - InvalidStateWhenDisassoc(state=%ld), reset ASSOC state machine\n",
76995 + pAd->Mlme.AssocMachine.CurrState));
76996 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
76997 + Status = MLME_STATE_MACHINE_REJECT;
76998 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_DISASSOC_CONF, 2, &Status);
77002 + ==========================================================================
77004 + right part of IEEE 802.11/1999 page 374
77006 + This event should never cause ASSOC state machine perform state
77007 + transition, and has no relationship with CNTL machine. So we separate
77008 + this routine as a service outside of ASSOC state transition table.
77010 + IRQL = DISPATCH_LEVEL
77012 + ==========================================================================
77014 +VOID Cls3errAction(
77015 + IN PRTMP_ADAPTER pAd,
77018 + HEADER_802_11 DisassocHdr;
77019 + PHEADER_802_11 pDisassocHdr;
77020 + PUCHAR pOutBuffer = NULL;
77021 + ULONG FrameLen = 0;
77022 + NDIS_STATUS NStatus;
77023 + USHORT Reason = REASON_CLS3ERR;
77025 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
77026 + if (NStatus != NDIS_STATUS_SUCCESS)
77029 + DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - Class 3 Error, Send DISASSOC frame\n"));
77030 + MgtMacHeaderInit(pAd, &DisassocHdr, SUBTYPE_DISASSOC, 0, pAddr, pAd->CommonCfg.Bssid); // patch peap ttls switching issue
77031 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
77032 + sizeof(HEADER_802_11),&DisassocHdr,
77035 + MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
77037 + // To patch Instance and Buffalo(N) AP
77038 + // Driver has to send deauth to Instance AP, but Buffalo(N) needs to send disassoc to reset Authenticator's state machine
77039 + // Therefore, we send both of them.
77040 + pDisassocHdr = (PHEADER_802_11)pOutBuffer;
77041 + pDisassocHdr->FC.SubType = SUBTYPE_DEAUTH;
77042 + MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
77044 + MlmeFreeMemory(pAd, pOutBuffer);
77046 + pAd->StaCfg.DisassocReason = REASON_CLS3ERR;
77047 + COPY_MAC_ADDR(pAd->StaCfg.DisassocSta, pAddr);
77051 + ==========================================================================
77053 + Switch between WEP and CKIP upon new association up.
77056 + IRQL = DISPATCH_LEVEL
77058 + ==========================================================================
77060 +VOID SwitchBetweenWepAndCkip(
77061 + IN PRTMP_ADAPTER pAd)
77064 + SHAREDKEY_MODE_STRUC csr1;
77066 + // if KP is required. change the CipherAlg in hardware shard key table from WEP
77067 + // to CKIP. else remain as WEP
77068 + if (pAd->StaCfg.bCkipOn && (pAd->StaCfg.CkipFlag & 0x10))
77070 + // modify hardware key table so that MAC use correct algorithm to decrypt RX
77071 + RTMP_IO_READ32(pAd, SHARED_KEY_MODE_BASE, &csr1.word);
77072 + if (csr1.field.Bss0Key0CipherAlg == CIPHER_WEP64)
77073 + csr1.field.Bss0Key0CipherAlg = CIPHER_CKIP64;
77074 + else if (csr1.field.Bss0Key0CipherAlg == CIPHER_WEP128)
77075 + csr1.field.Bss0Key0CipherAlg = CIPHER_CKIP128;
77077 + if (csr1.field.Bss0Key1CipherAlg == CIPHER_WEP64)
77078 + csr1.field.Bss0Key1CipherAlg = CIPHER_CKIP64;
77079 + else if (csr1.field.Bss0Key1CipherAlg == CIPHER_WEP128)
77080 + csr1.field.Bss0Key1CipherAlg = CIPHER_CKIP128;
77082 + if (csr1.field.Bss0Key2CipherAlg == CIPHER_WEP64)
77083 + csr1.field.Bss0Key2CipherAlg = CIPHER_CKIP64;
77084 + else if (csr1.field.Bss0Key2CipherAlg == CIPHER_WEP128)
77085 + csr1.field.Bss0Key2CipherAlg = CIPHER_CKIP128;
77087 + if (csr1.field.Bss0Key3CipherAlg == CIPHER_WEP64)
77088 + csr1.field.Bss0Key3CipherAlg = CIPHER_CKIP64;
77089 + else if (csr1.field.Bss0Key3CipherAlg == CIPHER_WEP128)
77090 + csr1.field.Bss0Key3CipherAlg = CIPHER_CKIP128;
77091 + RTMP_IO_WRITE32(pAd, SHARED_KEY_MODE_BASE, csr1.word);
77092 + DBGPRINT(RT_DEBUG_TRACE, ("SwitchBetweenWepAndCkip: modify BSS0 cipher to %s\n", CipherName[csr1.field.Bss0Key0CipherAlg]));
77094 + // modify software key table so that driver can specify correct algorithm in TXD upon TX
77095 + for (i=0; i<SHARE_KEY_NUM; i++)
77097 + if (pAd->SharedKey[BSS0][i].CipherAlg == CIPHER_WEP64)
77098 + pAd->SharedKey[BSS0][i].CipherAlg = CIPHER_CKIP64;
77099 + else if (pAd->SharedKey[BSS0][i].CipherAlg == CIPHER_WEP128)
77100 + pAd->SharedKey[BSS0][i].CipherAlg = CIPHER_CKIP128;
77104 + // else if KP NOT inused. change the CipherAlg in hardware shard key table from CKIP
77108 + // modify hardware key table so that MAC use correct algorithm to decrypt RX
77109 + RTMP_IO_READ32(pAd, SHARED_KEY_MODE_BASE, &csr1.word);
77110 + if (csr1.field.Bss0Key0CipherAlg == CIPHER_CKIP64)
77111 + csr1.field.Bss0Key0CipherAlg = CIPHER_WEP64;
77112 + else if (csr1.field.Bss0Key0CipherAlg == CIPHER_CKIP128)
77113 + csr1.field.Bss0Key0CipherAlg = CIPHER_WEP128;
77115 + if (csr1.field.Bss0Key1CipherAlg == CIPHER_CKIP64)
77116 + csr1.field.Bss0Key1CipherAlg = CIPHER_WEP64;
77117 + else if (csr1.field.Bss0Key1CipherAlg == CIPHER_CKIP128)
77118 + csr1.field.Bss0Key1CipherAlg = CIPHER_WEP128;
77120 + if (csr1.field.Bss0Key2CipherAlg == CIPHER_CKIP64)
77121 + csr1.field.Bss0Key2CipherAlg = CIPHER_WEP64;
77122 + else if (csr1.field.Bss0Key2CipherAlg == CIPHER_CKIP128)
77123 + csr1.field.Bss0Key2CipherAlg = CIPHER_WEP128;
77125 + if (csr1.field.Bss0Key3CipherAlg == CIPHER_CKIP64)
77126 + csr1.field.Bss0Key3CipherAlg = CIPHER_WEP64;
77127 + else if (csr1.field.Bss0Key3CipherAlg == CIPHER_CKIP128)
77128 + csr1.field.Bss0Key3CipherAlg = CIPHER_WEP128;
77130 + // modify software key table so that driver can specify correct algorithm in TXD upon TX
77131 + for (i=0; i<SHARE_KEY_NUM; i++)
77133 + if (pAd->SharedKey[BSS0][i].CipherAlg == CIPHER_CKIP64)
77134 + pAd->SharedKey[BSS0][i].CipherAlg = CIPHER_WEP64;
77135 + else if (pAd->SharedKey[BSS0][i].CipherAlg == CIPHER_CKIP128)
77136 + pAd->SharedKey[BSS0][i].CipherAlg = CIPHER_WEP128;
77140 + // On WPA-NONE, must update CipherAlg.
77141 + // Because the OID_802_11_WEP_STATUS was been set after OID_802_11_ADD_KEY
77142 + // and CipherAlg will be CIPHER_NONE by Windows ZeroConfig.
77143 + // So we need to update CipherAlg after connect.
77145 + if (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPANone)
77147 + for (i = 0; i < SHARE_KEY_NUM; i++)
77149 + if (pAd->SharedKey[BSS0][i].KeyLen != 0)
77151 + if (pAd->StaCfg.WepStatus == Ndis802_11Encryption2Enabled)
77153 + pAd->SharedKey[BSS0][i].CipherAlg = CIPHER_TKIP;
77155 + else if (pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
77157 + pAd->SharedKey[BSS0][i].CipherAlg = CIPHER_AES;
77162 + pAd->SharedKey[BSS0][i].CipherAlg = CIPHER_NONE;
77166 + csr1.field.Bss0Key0CipherAlg = pAd->SharedKey[BSS0][0].CipherAlg;
77167 + csr1.field.Bss0Key1CipherAlg = pAd->SharedKey[BSS0][1].CipherAlg;
77168 + csr1.field.Bss0Key2CipherAlg = pAd->SharedKey[BSS0][2].CipherAlg;
77169 + csr1.field.Bss0Key3CipherAlg = pAd->SharedKey[BSS0][3].CipherAlg;
77171 + RTMP_IO_WRITE32(pAd, SHARED_KEY_MODE_BASE, csr1.word);
77172 + DBGPRINT(RT_DEBUG_TRACE, ("SwitchBetweenWepAndCkip: modify BSS0 cipher to %s\n", CipherName[csr1.field.Bss0Key0CipherAlg]));
77176 +#ifdef WPA_SUPPLICANT_SUPPORT
77177 +#ifndef NATIVE_WPA_SUPPLICANT_SUPPORT
77178 +VOID SendAssocIEsToWpaSupplicant(
77179 + IN PRTMP_ADAPTER pAd)
77181 + union iwreq_data wrqu;
77182 + unsigned char custom[IW_CUSTOM_MAX] = {0};
77184 + if ((pAd->StaCfg.ReqVarIELen + 17) <= IW_CUSTOM_MAX)
77186 + sprintf(custom, "ASSOCINFO_ReqIEs=");
77187 + NdisMoveMemory(custom+17, pAd->StaCfg.ReqVarIEs, pAd->StaCfg.ReqVarIELen);
77188 + memset(&wrqu, 0, sizeof(wrqu));
77189 + wrqu.data.length = pAd->StaCfg.ReqVarIELen + 17;
77190 + wrqu.data.flags = RT_REQIE_EVENT_FLAG;
77191 + wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, custom);
77193 + memset(&wrqu, 0, sizeof(wrqu));
77194 + wrqu.data.flags = RT_ASSOCINFO_EVENT_FLAG;
77195 + wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, NULL);
77198 + DBGPRINT(RT_DEBUG_TRACE, ("pAd->StaCfg.ReqVarIELen + 17 > MAX_CUSTOM_LEN\n"));
77202 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
77203 +#endif // WPA_SUPPLICANT_SUPPORT //
77205 +#ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
77206 +int wext_notify_event_assoc(
77207 + IN RTMP_ADAPTER *pAd)
77209 + union iwreq_data wrqu;
77210 + char custom[IW_CUSTOM_MAX] = {0};
77212 +#if WIRELESS_EXT > 17
77213 + if (pAd->StaCfg.ReqVarIELen <= IW_CUSTOM_MAX)
77215 + wrqu.data.length = pAd->StaCfg.ReqVarIELen;
77216 + memcpy(custom, pAd->StaCfg.ReqVarIEs, pAd->StaCfg.ReqVarIELen);
77217 + wireless_send_event(pAd->net_dev, IWEVASSOCREQIE, &wrqu, custom);
77220 + DBGPRINT(RT_DEBUG_TRACE, ("pAd->StaCfg.ReqVarIELen > MAX_CUSTOM_LEN\n"));
77222 + if (((pAd->StaCfg.ReqVarIELen*2) + 17) <= IW_CUSTOM_MAX)
77225 + wrqu.data.length = (pAd->StaCfg.ReqVarIELen*2) + 17;
77226 + sprintf(custom, "ASSOCINFO(ReqIEs=");
77227 + for (idx=0; idx<pAd->StaCfg.ReqVarIELen; idx++)
77228 + sprintf(custom, "%s%02x", custom, pAd->StaCfg.ReqVarIEs[idx]);
77229 + wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, custom);
77232 + DBGPRINT(RT_DEBUG_TRACE, ("(pAd->StaCfg.ReqVarIELen*2) + 17 > MAX_CUSTOM_LEN\n"));
77238 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
77241 +BOOLEAN StaAddMacTableEntry(
77242 + IN PRTMP_ADAPTER pAd,
77243 + IN PMAC_TABLE_ENTRY pEntry,
77244 + IN UCHAR MaxSupportedRateIn500Kbps,
77245 + IN HT_CAPABILITY_IE *pHtCapability,
77246 + IN UCHAR HtCapabilityLen,
77247 + IN USHORT CapabilityInfo)
77249 + UCHAR MaxSupportedRate = RATE_11;
77251 + if (ADHOC_ON(pAd))
77252 + CLIENT_STATUS_CLEAR_FLAG(pEntry, fCLIENT_STATUS_WMM_CAPABLE);
77254 + switch (MaxSupportedRateIn500Kbps)
77256 + case 108: MaxSupportedRate = RATE_54; break;
77257 + case 96: MaxSupportedRate = RATE_48; break;
77258 + case 72: MaxSupportedRate = RATE_36; break;
77259 + case 48: MaxSupportedRate = RATE_24; break;
77260 + case 36: MaxSupportedRate = RATE_18; break;
77261 + case 24: MaxSupportedRate = RATE_12; break;
77262 + case 18: MaxSupportedRate = RATE_9; break;
77263 + case 12: MaxSupportedRate = RATE_6; break;
77264 + case 22: MaxSupportedRate = RATE_11; break;
77265 + case 11: MaxSupportedRate = RATE_5_5; break;
77266 + case 4: MaxSupportedRate = RATE_2; break;
77267 + case 2: MaxSupportedRate = RATE_1; break;
77268 + default: MaxSupportedRate = RATE_11; break;
77271 + if ((pAd->CommonCfg.PhyMode == PHY_11G) && (MaxSupportedRate < RATE_FIRST_OFDM_RATE))
77274 +#ifdef DOT11_N_SUPPORT
77276 + if (((pAd->CommonCfg.PhyMode == PHY_11N_2_4G) || (pAd->CommonCfg.PhyMode == PHY_11N_5G))&& (HtCapabilityLen == 0))
77278 +#endif // DOT11_N_SUPPORT //
77283 + NdisAcquireSpinLock(&pAd->MacTabLock);
77286 + pEntry->PortSecured = WPA_802_1X_PORT_SECURED;
77287 + if ((MaxSupportedRate < RATE_FIRST_OFDM_RATE) ||
77288 + (pAd->CommonCfg.PhyMode == PHY_11B))
77290 + pEntry->RateLen = 4;
77291 + if (MaxSupportedRate >= RATE_FIRST_OFDM_RATE)
77292 + MaxSupportedRate = RATE_11;
77295 + pEntry->RateLen = 12;
77297 + pEntry->MaxHTPhyMode.word = 0;
77298 + pEntry->MinHTPhyMode.word = 0;
77299 + pEntry->HTPhyMode.word = 0;
77300 + pEntry->MaxSupportedRate = MaxSupportedRate;
77301 + if (pEntry->MaxSupportedRate < RATE_FIRST_OFDM_RATE)
77303 + pEntry->MaxHTPhyMode.field.MODE = MODE_CCK;
77304 + pEntry->MaxHTPhyMode.field.MCS = pEntry->MaxSupportedRate;
77305 + pEntry->MinHTPhyMode.field.MODE = MODE_CCK;
77306 + pEntry->MinHTPhyMode.field.MCS = pEntry->MaxSupportedRate;
77307 + pEntry->HTPhyMode.field.MODE = MODE_CCK;
77308 + pEntry->HTPhyMode.field.MCS = pEntry->MaxSupportedRate;
77312 + pEntry->MaxHTPhyMode.field.MODE = MODE_OFDM;
77313 + pEntry->MaxHTPhyMode.field.MCS = OfdmRateToRxwiMCS[pEntry->MaxSupportedRate];
77314 + pEntry->MinHTPhyMode.field.MODE = MODE_OFDM;
77315 + pEntry->MinHTPhyMode.field.MCS = OfdmRateToRxwiMCS[pEntry->MaxSupportedRate];
77316 + pEntry->HTPhyMode.field.MODE = MODE_OFDM;
77317 + pEntry->HTPhyMode.field.MCS = OfdmRateToRxwiMCS[pEntry->MaxSupportedRate];
77319 + pEntry->CapabilityInfo = CapabilityInfo;
77320 + CLIENT_STATUS_CLEAR_FLAG(pEntry, fCLIENT_STATUS_AGGREGATION_CAPABLE);
77321 + CLIENT_STATUS_CLEAR_FLAG(pEntry, fCLIENT_STATUS_PIGGYBACK_CAPABLE);
77324 +#ifdef DOT11_N_SUPPORT
77325 + // If this Entry supports 802.11n, upgrade to HT rate.
77326 + if ((HtCapabilityLen != 0) && (pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED))
77328 + UCHAR j, bitmask; //k,bitmask;
77331 + if (ADHOC_ON(pAd))
77332 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_WMM_CAPABLE);
77333 + if ((pHtCapability->HtCapInfo.GF) && (pAd->CommonCfg.DesiredHtPhy.GF))
77335 + pEntry->MaxHTPhyMode.field.MODE = MODE_HTGREENFIELD;
77339 + pEntry->MaxHTPhyMode.field.MODE = MODE_HTMIX;
77340 + pAd->MacTab.fAnyStationNonGF = TRUE;
77341 + pAd->CommonCfg.AddHTInfo.AddHtInfo2.NonGfPresent = 1;
77344 + if ((pHtCapability->HtCapInfo.ChannelWidth) && (pAd->CommonCfg.DesiredHtPhy.ChannelWidth))
77346 + pEntry->MaxHTPhyMode.field.BW= BW_40;
77347 + pEntry->MaxHTPhyMode.field.ShortGI = ((pAd->CommonCfg.DesiredHtPhy.ShortGIfor40)&(pHtCapability->HtCapInfo.ShortGIfor40));
77351 + pEntry->MaxHTPhyMode.field.BW = BW_20;
77352 + pEntry->MaxHTPhyMode.field.ShortGI = ((pAd->CommonCfg.DesiredHtPhy.ShortGIfor20)&(pHtCapability->HtCapInfo.ShortGIfor20));
77353 + pAd->MacTab.fAnyStation20Only = TRUE;
77357 + if (pAd->MACVersion >= RALINK_2883_VERSION && pAd->MACVersion < RALINK_3070_VERSION)
77358 + pEntry->MaxHTPhyMode.field.TxBF = pAd->CommonCfg.RegTransmitSetting.field.TxBF;
77360 + // find max fixed rate
77361 + for (i=23; i>=0; i--) // 3*3
77364 + bitmask = (1<<(i-(j*8)));
77365 + if ((pAd->StaCfg.DesiredHtPhyInfo.MCSSet[j] & bitmask) && (pHtCapability->MCSSet[j] & bitmask))
77367 + pEntry->MaxHTPhyMode.field.MCS = i;
77375 + if (pAd->StaCfg.DesiredTransmitSetting.field.MCS != MCS_AUTO)
77377 + if (pAd->StaCfg.DesiredTransmitSetting.field.MCS == 32)
77379 + // Fix MCS as HT Duplicated Mode
77380 + pEntry->MaxHTPhyMode.field.BW = 1;
77381 + pEntry->MaxHTPhyMode.field.MODE = MODE_HTMIX;
77382 + pEntry->MaxHTPhyMode.field.STBC = 0;
77383 + pEntry->MaxHTPhyMode.field.ShortGI = 0;
77384 + pEntry->MaxHTPhyMode.field.MCS = 32;
77386 + else if (pEntry->MaxHTPhyMode.field.MCS > pAd->StaCfg.HTPhyMode.field.MCS)
77388 + // STA supports fixed MCS
77389 + pEntry->MaxHTPhyMode.field.MCS = pAd->StaCfg.HTPhyMode.field.MCS;
77393 + pEntry->MaxHTPhyMode.field.STBC = (pHtCapability->HtCapInfo.RxSTBC & (pAd->CommonCfg.DesiredHtPhy.TxSTBC));
77394 + pEntry->MpduDensity = pHtCapability->HtCapParm.MpduDensity;
77395 + pEntry->MaxRAmpduFactor = pHtCapability->HtCapParm.MaxRAmpduFactor;
77396 + pEntry->MmpsMode = (UCHAR)pHtCapability->HtCapInfo.MimoPs;
77397 + pEntry->AMsduSize = (UCHAR)pHtCapability->HtCapInfo.AMsduSize;
77398 + pEntry->HTPhyMode.word = pEntry->MaxHTPhyMode.word;
77400 + if (pAd->CommonCfg.DesiredHtPhy.AmsduEnable && (pAd->CommonCfg.REGBACapability.field.AutoBA == FALSE))
77401 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_AMSDU_INUSED);
77402 + if (pHtCapability->HtCapInfo.ShortGIfor20)
77403 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_SGI20_CAPABLE);
77404 + if (pHtCapability->HtCapInfo.ShortGIfor40)
77405 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_SGI40_CAPABLE);
77406 + if (pHtCapability->HtCapInfo.TxSTBC)
77407 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_TxSTBC_CAPABLE);
77408 + if (pHtCapability->HtCapInfo.RxSTBC)
77409 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_RxSTBC_CAPABLE);
77410 + if (pHtCapability->ExtHtCapInfo.PlusHTC)
77411 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_HTC_CAPABLE);
77412 + if (pAd->CommonCfg.bRdg && pHtCapability->ExtHtCapInfo.RDGSupport)
77413 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_RDG_CAPABLE);
77414 + if (pHtCapability->ExtHtCapInfo.MCSFeedback == 0x03)
77415 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_MCSFEEDBACK_CAPABLE);
77419 + pAd->MacTab.fAnyStationIsLegacy = TRUE;
77422 + NdisMoveMemory(&pEntry->HTCapability, pHtCapability, sizeof(HT_CAPABILITY_IE));
77423 +#endif // DOT11_N_SUPPORT //
77425 + pEntry->HTPhyMode.word = pEntry->MaxHTPhyMode.word;
77426 + pEntry->CurrTxRate = pEntry->MaxSupportedRate;
77428 + // Set asic auto fall back
77429 + if (pAd->StaCfg.bAutoTxRateSwitch == TRUE)
77432 + UCHAR TableSize = 0;
77434 + MlmeSelectTxRateTable(pAd, pEntry, &pTable, &TableSize, &pEntry->CurrTxRateIndex);
77435 + pEntry->bAutoTxRateSwitch = TRUE;
77439 + pEntry->HTPhyMode.field.MODE = pAd->StaCfg.HTPhyMode.field.MODE;
77440 + pEntry->HTPhyMode.field.MCS = pAd->StaCfg.HTPhyMode.field.MCS;
77441 + pEntry->bAutoTxRateSwitch = FALSE;
77443 + // If the legacy mode is set, overwrite the transmit setting of this entry.
77444 + RTMPUpdateLegacyTxSetting((UCHAR)pAd->StaCfg.DesiredTransmitSetting.field.FixedTxMode, pEntry);
77447 + pEntry->PortSecured = WPA_802_1X_PORT_SECURED;
77448 + pEntry->Sst = SST_ASSOC;
77449 + pEntry->AuthState = AS_AUTH_OPEN;
77450 + pEntry->AuthMode = pAd->StaCfg.AuthMode;
77451 + pEntry->WepStatus = pAd->StaCfg.WepStatus;
77453 + NdisReleaseSpinLock(&pAd->MacTabLock);
77455 +#ifdef WPA_SUPPLICANT_SUPPORT
77456 +#ifndef NATIVE_WPA_SUPPLICANT_SUPPORT
77457 + if (pAd->StaCfg.WpaSupplicantUP)
77459 + union iwreq_data wrqu;
77461 + SendAssocIEsToWpaSupplicant(pAd);
77462 + memset(&wrqu, 0, sizeof(wrqu));
77463 + wrqu.data.flags = RT_ASSOC_EVENT_FLAG;
77464 + wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, NULL);
77466 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
77467 +#endif // WPA_SUPPLICANT_SUPPORT //
77469 +#ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
77471 + union iwreq_data wrqu;
77472 + wext_notify_event_assoc(pAd);
77474 + memset(wrqu.ap_addr.sa_data, 0, MAC_ADDR_LEN);
77475 + memcpy(wrqu.ap_addr.sa_data, pAd->MlmeAux.Bssid, MAC_ADDR_LEN);
77476 + wireless_send_event(pAd->net_dev, SIOCGIWAP, &wrqu, NULL);
77479 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
77485 +++ b/drivers/staging/rt3070/sta/auth.c
77488 + *************************************************************************
77489 + * Ralink Tech Inc.
77490 + * 5F., No.36, Taiyuan St., Jhubei City,
77491 + * Hsinchu County 302,
77494 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
77496 + * This program is free software; you can redistribute it and/or modify *
77497 + * it under the terms of the GNU General Public License as published by *
77498 + * the Free Software Foundation; either version 2 of the License, or *
77499 + * (at your option) any later version. *
77501 + * This program is distributed in the hope that it will be useful, *
77502 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
77503 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
77504 + * GNU General Public License for more details. *
77506 + * You should have received a copy of the GNU General Public License *
77507 + * along with this program; if not, write to the *
77508 + * Free Software Foundation, Inc., *
77509 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
77511 + *************************************************************************
77518 + Revision History:
77520 + -------- ---------- ----------------------------------------------
77521 + John 2004-9-3 porting from RT2500
77523 +#include "../rt_config.h"
77526 + ==========================================================================
77528 + authenticate state machine init, including state transition and timer init
77530 + Sm - pointer to the auth state machine
77532 + The state machine looks like this
77534 + AUTH_REQ_IDLE AUTH_WAIT_SEQ2 AUTH_WAIT_SEQ4
77535 + MT2_MLME_AUTH_REQ mlme_auth_req_action invalid_state_when_auth invalid_state_when_auth
77536 + MT2_PEER_AUTH_EVEN drop peer_auth_even_at_seq2_action peer_auth_even_at_seq4_action
77537 + MT2_AUTH_TIMEOUT Drop auth_timeout_action auth_timeout_action
77539 + IRQL = PASSIVE_LEVEL
77541 + ==========================================================================
77544 +void AuthStateMachineInit(
77545 + IN PRTMP_ADAPTER pAd,
77546 + IN STATE_MACHINE *Sm,
77547 + OUT STATE_MACHINE_FUNC Trans[])
77549 + StateMachineInit(Sm, Trans, MAX_AUTH_STATE, MAX_AUTH_MSG, (STATE_MACHINE_FUNC)Drop, AUTH_REQ_IDLE, AUTH_MACHINE_BASE);
77551 + // the first column
77552 + StateMachineSetAction(Sm, AUTH_REQ_IDLE, MT2_MLME_AUTH_REQ, (STATE_MACHINE_FUNC)MlmeAuthReqAction);
77554 + // the second column
77555 + StateMachineSetAction(Sm, AUTH_WAIT_SEQ2, MT2_MLME_AUTH_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenAuth);
77556 + StateMachineSetAction(Sm, AUTH_WAIT_SEQ2, MT2_PEER_AUTH_EVEN, (STATE_MACHINE_FUNC)PeerAuthRspAtSeq2Action);
77557 + StateMachineSetAction(Sm, AUTH_WAIT_SEQ2, MT2_AUTH_TIMEOUT, (STATE_MACHINE_FUNC)AuthTimeoutAction);
77559 + // the third column
77560 + StateMachineSetAction(Sm, AUTH_WAIT_SEQ4, MT2_MLME_AUTH_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenAuth);
77561 + StateMachineSetAction(Sm, AUTH_WAIT_SEQ4, MT2_PEER_AUTH_EVEN, (STATE_MACHINE_FUNC)PeerAuthRspAtSeq4Action);
77562 + StateMachineSetAction(Sm, AUTH_WAIT_SEQ4, MT2_AUTH_TIMEOUT, (STATE_MACHINE_FUNC)AuthTimeoutAction);
77564 + RTMPInitTimer(pAd, &pAd->MlmeAux.AuthTimer, GET_TIMER_FUNCTION(AuthTimeout), pAd, FALSE);
77568 + ==========================================================================
77570 + function to be executed at timer thread when auth timer expires
77572 + IRQL = DISPATCH_LEVEL
77574 + ==========================================================================
77577 + IN PVOID SystemSpecific1,
77578 + IN PVOID FunctionContext,
77579 + IN PVOID SystemSpecific2,
77580 + IN PVOID SystemSpecific3)
77582 + RTMP_ADAPTER *pAd = (RTMP_ADAPTER *)FunctionContext;
77584 + DBGPRINT(RT_DEBUG_TRACE,("AUTH - AuthTimeout\n"));
77586 + // Do nothing if the driver is starting halt state.
77587 + // This might happen when timer already been fired before cancel timer with mlmehalt
77588 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS | fRTMP_ADAPTER_NIC_NOT_EXIST))
77591 + // send a de-auth to reset AP's state machine (Patch AP-Dir635)
77592 + if (pAd->Mlme.AuthMachine.CurrState == AUTH_WAIT_SEQ2)
77593 + Cls2errAction(pAd, pAd->MlmeAux.Bssid);
77596 + MlmeEnqueue(pAd, AUTH_STATE_MACHINE, MT2_AUTH_TIMEOUT, 0, NULL);
77597 + RT28XX_MLME_HANDLER(pAd);
77602 + ==========================================================================
77605 + IRQL = DISPATCH_LEVEL
77607 + ==========================================================================
77609 +VOID MlmeAuthReqAction(
77610 + IN PRTMP_ADAPTER pAd,
77611 + IN MLME_QUEUE_ELEM *Elem)
77614 + USHORT Alg, Seq, Status;
77616 + HEADER_802_11 AuthHdr;
77617 + BOOLEAN TimerCancelled;
77618 + NDIS_STATUS NStatus;
77619 + PUCHAR pOutBuffer = NULL;
77620 + ULONG FrameLen = 0;
77622 + // Block all authentication request durning WPA block period
77623 + if (pAd->StaCfg.bBlockAssoc == TRUE)
77625 + DBGPRINT(RT_DEBUG_TRACE, ("AUTH - Block Auth request durning WPA block period!\n"));
77626 + pAd->Mlme.AuthMachine.CurrState = AUTH_REQ_IDLE;
77627 + Status = MLME_STATE_MACHINE_REJECT;
77628 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_AUTH_CONF, 2, &Status);
77630 + else if(MlmeAuthReqSanity(pAd, Elem->Msg, Elem->MsgLen, Addr, &Timeout, &Alg))
77633 + RTMPCancelTimer(&pAd->MlmeAux.AuthTimer, &TimerCancelled);
77634 + COPY_MAC_ADDR(pAd->MlmeAux.Bssid, Addr);
77635 + pAd->MlmeAux.Alg = Alg;
77637 + Status = MLME_SUCCESS;
77639 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
77640 + if(NStatus != NDIS_STATUS_SUCCESS)
77642 + DBGPRINT(RT_DEBUG_TRACE, ("AUTH - MlmeAuthReqAction(Alg:%d) allocate memory failed\n", Alg));
77643 + pAd->Mlme.AuthMachine.CurrState = AUTH_REQ_IDLE;
77644 + Status = MLME_FAIL_NO_RESOURCE;
77645 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_AUTH_CONF, 2, &Status);
77649 + DBGPRINT(RT_DEBUG_TRACE, ("AUTH - Send AUTH request seq#1 (Alg=%d)...\n", Alg));
77650 + MgtMacHeaderInit(pAd, &AuthHdr, SUBTYPE_AUTH, 0, Addr, pAd->MlmeAux.Bssid);
77651 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
77652 + sizeof(HEADER_802_11),&AuthHdr,
77657 + MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
77658 + MlmeFreeMemory(pAd, pOutBuffer);
77660 + RTMPSetTimer(&pAd->MlmeAux.AuthTimer, Timeout);
77661 + pAd->Mlme.AuthMachine.CurrState = AUTH_WAIT_SEQ2;
77665 + DBGPRINT_ERR(("AUTH - MlmeAuthReqAction() sanity check failed\n"));
77666 + pAd->Mlme.AuthMachine.CurrState = AUTH_REQ_IDLE;
77667 + Status = MLME_INVALID_FORMAT;
77668 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_AUTH_CONF, 2, &Status);
77673 + ==========================================================================
77676 + IRQL = DISPATCH_LEVEL
77678 + ==========================================================================
77680 +VOID PeerAuthRspAtSeq2Action(
77681 + IN PRTMP_ADAPTER pAd,
77682 + IN MLME_QUEUE_ELEM *Elem)
77684 + UCHAR Addr2[MAC_ADDR_LEN];
77685 + USHORT Seq, Status, RemoteStatus, Alg;
77686 + UCHAR ChlgText[CIPHER_TEXT_LEN];
77687 + UCHAR CyperChlgText[CIPHER_TEXT_LEN + 8 + 8];
77688 + UCHAR Element[2];
77689 + HEADER_802_11 AuthHdr;
77690 + BOOLEAN TimerCancelled;
77691 + PUCHAR pOutBuffer = NULL;
77692 + NDIS_STATUS NStatus;
77693 + ULONG FrameLen = 0;
77696 + if (PeerAuthSanity(pAd, Elem->Msg, Elem->MsgLen, Addr2, &Alg, &Seq, &Status, ChlgText))
77698 + if (MAC_ADDR_EQUAL(pAd->MlmeAux.Bssid, Addr2) && Seq == 2)
77700 + DBGPRINT(RT_DEBUG_TRACE, ("AUTH - Receive AUTH_RSP seq#2 to me (Alg=%d, Status=%d)\n", Alg, Status));
77701 + RTMPCancelTimer(&pAd->MlmeAux.AuthTimer, &TimerCancelled);
77703 + if (Status == MLME_SUCCESS)
77705 + // Authentication Mode "LEAP" has allow for CCX 1.X
77706 + if ((pAd->MlmeAux.Alg == Ndis802_11AuthModeOpen)
77707 +#ifdef LEAP_SUPPORT
77708 + || (pAd->StaCfg.LeapAuthMode == CISCO_AuthModeLEAP)
77709 +#endif // LEAP_SUPPORT //
77712 + pAd->Mlme.AuthMachine.CurrState = AUTH_REQ_IDLE;
77713 +#ifdef LEAP_SUPPORT
77714 + pAd->Mlme.LeapMachine.CurrState = LEAP_IDLE;
77715 +#endif // LEAP_SUPPORT //
77716 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_AUTH_CONF, 2, &Status);
77720 + // 2. shared key, need to be challenged
77722 + RemoteStatus = MLME_SUCCESS;
77724 + // Get an unused nonpaged memory
77725 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer);
77726 + if(NStatus != NDIS_STATUS_SUCCESS)
77728 + DBGPRINT(RT_DEBUG_TRACE, ("AUTH - PeerAuthRspAtSeq2Action() allocate memory fail\n"));
77729 + pAd->Mlme.AuthMachine.CurrState = AUTH_REQ_IDLE;
77730 + Status2 = MLME_FAIL_NO_RESOURCE;
77731 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_AUTH_CONF, 2, &Status2);
77735 + DBGPRINT(RT_DEBUG_TRACE, ("AUTH - Send AUTH request seq#3...\n"));
77736 + MgtMacHeaderInit(pAd, &AuthHdr, SUBTYPE_AUTH, 0, Addr2, pAd->MlmeAux.Bssid);
77737 + AuthHdr.FC.Wep = 1;
77738 + // Encrypt challenge text & auth information
77739 + RTMPInitWepEngine(
77741 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].Key,
77742 + pAd->StaCfg.DefaultKeyId,
77743 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].KeyLen,
77746 + Alg = cpu2le16(*(USHORT *)&Alg);
77747 + Seq = cpu2le16(*(USHORT *)&Seq);
77748 + RemoteStatus= cpu2le16(*(USHORT *)&RemoteStatus);
77750 + RTMPEncryptData(pAd, (PUCHAR) &Alg, CyperChlgText + 4, 2);
77751 + RTMPEncryptData(pAd, (PUCHAR) &Seq, CyperChlgText + 6, 2);
77752 + RTMPEncryptData(pAd, (PUCHAR) &RemoteStatus, CyperChlgText + 8, 2);
77754 + Element[1] = 128;
77755 + RTMPEncryptData(pAd, Element, CyperChlgText + 10, 2);
77756 + RTMPEncryptData(pAd, ChlgText, CyperChlgText + 12, 128);
77757 + RTMPSetICV(pAd, CyperChlgText + 140);
77758 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
77759 + sizeof(HEADER_802_11), &AuthHdr,
77760 + CIPHER_TEXT_LEN + 16, CyperChlgText,
77762 + MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
77763 + MlmeFreeMemory(pAd, pOutBuffer);
77765 + RTMPSetTimer(&pAd->MlmeAux.AuthTimer, AUTH_TIMEOUT);
77766 + pAd->Mlme.AuthMachine.CurrState = AUTH_WAIT_SEQ4;
77771 +#ifdef LEAP_SUPPORT
77772 + if (pAd->StaCfg.LeapAuthMode == CISCO_AuthModeLEAP)
77774 + //Invalid Authentication possible rogue AP
77775 + //Add this Ap to Rogue AP.
77776 + RogueApTableSetEntry(pAd, &pAd->StaCfg.RogueApTab, Addr2, LEAP_REASON_INVALID_AUTH);
77778 +#endif // LEAP_SUPPORT //
77779 + pAd->StaCfg.AuthFailReason = Status;
77780 + COPY_MAC_ADDR(pAd->StaCfg.AuthFailSta, Addr2);
77781 + pAd->Mlme.AuthMachine.CurrState = AUTH_REQ_IDLE;
77782 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_AUTH_CONF, 2, &Status);
77788 + DBGPRINT(RT_DEBUG_TRACE, ("AUTH - PeerAuthSanity() sanity check fail\n"));
77793 + ==========================================================================
77796 + IRQL = DISPATCH_LEVEL
77798 + ==========================================================================
77800 +VOID PeerAuthRspAtSeq4Action(
77801 + IN PRTMP_ADAPTER pAd,
77802 + IN MLME_QUEUE_ELEM *Elem)
77804 + UCHAR Addr2[MAC_ADDR_LEN];
77805 + USHORT Alg, Seq, Status;
77806 + CHAR ChlgText[CIPHER_TEXT_LEN];
77807 + BOOLEAN TimerCancelled;
77809 + if(PeerAuthSanity(pAd, Elem->Msg, Elem->MsgLen, Addr2, &Alg, &Seq, &Status, ChlgText))
77811 + if(MAC_ADDR_EQUAL(pAd->MlmeAux.Bssid, Addr2) && Seq == 4)
77813 + DBGPRINT(RT_DEBUG_TRACE, ("AUTH - Receive AUTH_RSP seq#4 to me\n"));
77814 + RTMPCancelTimer(&pAd->MlmeAux.AuthTimer, &TimerCancelled);
77816 + if (Status != MLME_SUCCESS)
77818 + pAd->StaCfg.AuthFailReason = Status;
77819 + COPY_MAC_ADDR(pAd->StaCfg.AuthFailSta, Addr2);
77822 + pAd->Mlme.AuthMachine.CurrState = AUTH_REQ_IDLE;
77823 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_AUTH_CONF, 2, &Status);
77828 + DBGPRINT(RT_DEBUG_TRACE, ("AUTH - PeerAuthRspAtSeq4Action() sanity check fail\n"));
77833 + ==========================================================================
77836 + IRQL = DISPATCH_LEVEL
77838 + ==========================================================================
77840 +VOID MlmeDeauthReqAction(
77841 + IN PRTMP_ADAPTER pAd,
77842 + IN MLME_QUEUE_ELEM *Elem)
77844 + MLME_DEAUTH_REQ_STRUCT *pInfo;
77845 + HEADER_802_11 DeauthHdr;
77846 + PUCHAR pOutBuffer = NULL;
77847 + NDIS_STATUS NStatus;
77848 + ULONG FrameLen = 0;
77851 + pInfo = (MLME_DEAUTH_REQ_STRUCT *)Elem->Msg;
77853 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
77854 + if (NStatus != NDIS_STATUS_SUCCESS)
77856 + DBGPRINT(RT_DEBUG_TRACE, ("AUTH - MlmeDeauthReqAction() allocate memory fail\n"));
77857 + pAd->Mlme.AuthMachine.CurrState = AUTH_REQ_IDLE;
77858 + Status = MLME_FAIL_NO_RESOURCE;
77859 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_DEAUTH_CONF, 2, &Status);
77864 + DBGPRINT(RT_DEBUG_TRACE, ("AUTH - Send DE-AUTH request (Reason=%d)...\n", pInfo->Reason));
77865 + MgtMacHeaderInit(pAd, &DeauthHdr, SUBTYPE_DEAUTH, 0, pInfo->Addr, pAd->MlmeAux.Bssid);
77866 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
77867 + sizeof(HEADER_802_11),&DeauthHdr,
77868 + 2, &pInfo->Reason,
77870 + MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
77871 + MlmeFreeMemory(pAd, pOutBuffer);
77873 + pAd->StaCfg.DeauthReason = pInfo->Reason;
77874 + COPY_MAC_ADDR(pAd->StaCfg.DeauthSta, pInfo->Addr);
77875 + pAd->Mlme.AuthMachine.CurrState = AUTH_REQ_IDLE;
77876 + Status = MLME_SUCCESS;
77877 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_DEAUTH_CONF, 2, &Status);
77879 + // send wireless event - for deauthentication
77880 + if (pAd->CommonCfg.bWirelessEvent)
77881 + RTMPSendWirelessEvent(pAd, IW_DEAUTH_EVENT_FLAG, pAd->MacTab.Content[BSSID_WCID].Addr, BSS0, 0);
77885 + ==========================================================================
77888 + IRQL = DISPATCH_LEVEL
77890 + ==========================================================================
77892 +VOID AuthTimeoutAction(
77893 + IN PRTMP_ADAPTER pAd,
77894 + IN MLME_QUEUE_ELEM *Elem)
77897 + DBGPRINT(RT_DEBUG_TRACE, ("AUTH - AuthTimeoutAction\n"));
77898 + pAd->Mlme.AuthMachine.CurrState = AUTH_REQ_IDLE;
77899 + Status = MLME_REJ_TIMEOUT;
77900 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_AUTH_CONF, 2, &Status);
77904 + ==========================================================================
77907 + IRQL = DISPATCH_LEVEL
77909 + ==========================================================================
77911 +VOID InvalidStateWhenAuth(
77912 + IN PRTMP_ADAPTER pAd,
77913 + IN MLME_QUEUE_ELEM *Elem)
77916 + DBGPRINT(RT_DEBUG_TRACE, ("AUTH - InvalidStateWhenAuth (state=%ld), reset AUTH state machine\n", pAd->Mlme.AuthMachine.CurrState));
77917 + pAd->Mlme.AuthMachine.CurrState = AUTH_REQ_IDLE;
77918 + Status = MLME_STATE_MACHINE_REJECT;
77919 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_AUTH_CONF, 2, &Status);
77923 + ==========================================================================
77927 + This action should never trigger AUTH state transition, therefore we
77928 + separate it from AUTH state machine, and make it as a standalone service
77930 + IRQL = DISPATCH_LEVEL
77932 + ==========================================================================
77934 +VOID Cls2errAction(
77935 + IN PRTMP_ADAPTER pAd,
77938 + HEADER_802_11 DeauthHdr;
77939 + PUCHAR pOutBuffer = NULL;
77940 + NDIS_STATUS NStatus;
77941 + ULONG FrameLen = 0;
77942 + USHORT Reason = REASON_CLS2ERR;
77944 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
77945 + if (NStatus != NDIS_STATUS_SUCCESS)
77948 + DBGPRINT(RT_DEBUG_TRACE, ("AUTH - Class 2 error, Send DEAUTH frame...\n"));
77949 + MgtMacHeaderInit(pAd, &DeauthHdr, SUBTYPE_DEAUTH, 0, pAddr, pAd->MlmeAux.Bssid);
77950 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
77951 + sizeof(HEADER_802_11),&DeauthHdr,
77954 + MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
77955 + MlmeFreeMemory(pAd, pOutBuffer);
77957 + pAd->StaCfg.DeauthReason = Reason;
77958 + COPY_MAC_ADDR(pAd->StaCfg.DeauthSta, pAddr);
77963 +++ b/drivers/staging/rt3070/sta/auth_rsp.c
77966 + *************************************************************************
77967 + * Ralink Tech Inc.
77968 + * 5F., No.36, Taiyuan St., Jhubei City,
77969 + * Hsinchu County 302,
77972 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
77974 + * This program is free software; you can redistribute it and/or modify *
77975 + * it under the terms of the GNU General Public License as published by *
77976 + * the Free Software Foundation; either version 2 of the License, or *
77977 + * (at your option) any later version. *
77979 + * This program is distributed in the hope that it will be useful, *
77980 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
77981 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
77982 + * GNU General Public License for more details. *
77984 + * You should have received a copy of the GNU General Public License *
77985 + * along with this program; if not, write to the *
77986 + * Free Software Foundation, Inc., *
77987 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
77989 + *************************************************************************
77996 + Revision History:
77998 + -------- ---------- ----------------------------------------------
77999 + John 2004-10-1 copy from RT2560
78001 +#include "../rt_config.h"
78004 + ==========================================================================
78006 + authentication state machine init procedure
78008 + Sm - the state machine
78010 + IRQL = PASSIVE_LEVEL
78012 + ==========================================================================
78014 +VOID AuthRspStateMachineInit(
78015 + IN PRTMP_ADAPTER pAd,
78016 + IN PSTATE_MACHINE Sm,
78017 + IN STATE_MACHINE_FUNC Trans[])
78019 + StateMachineInit(Sm, Trans, MAX_AUTH_RSP_STATE, MAX_AUTH_RSP_MSG, (STATE_MACHINE_FUNC)Drop, AUTH_RSP_IDLE, AUTH_RSP_MACHINE_BASE);
78022 + StateMachineSetAction(Sm, AUTH_RSP_IDLE, MT2_PEER_DEAUTH, (STATE_MACHINE_FUNC)PeerDeauthAction);
78025 + StateMachineSetAction(Sm, AUTH_RSP_WAIT_CHAL, MT2_PEER_DEAUTH, (STATE_MACHINE_FUNC)PeerDeauthAction);
78030 + ==========================================================================
78033 + IRQL = DISPATCH_LEVEL
78035 + ==========================================================================
78037 +VOID PeerAuthSimpleRspGenAndSend(
78038 + IN PRTMP_ADAPTER pAd,
78039 + IN PHEADER_802_11 pHdr80211,
78042 + IN USHORT Reason,
78043 + IN USHORT Status)
78045 + HEADER_802_11 AuthHdr;
78046 + ULONG FrameLen = 0;
78047 + PUCHAR pOutBuffer = NULL;
78048 + NDIS_STATUS NStatus;
78050 + if (Reason != MLME_SUCCESS)
78052 + DBGPRINT(RT_DEBUG_TRACE, ("Peer AUTH fail...\n"));
78056 + //Get an unused nonpaged memory
78057 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer);
78058 + if (NStatus != NDIS_STATUS_SUCCESS)
78061 + DBGPRINT(RT_DEBUG_TRACE, ("Send AUTH response (seq#2)...\n"));
78062 + MgtMacHeaderInit(pAd, &AuthHdr, SUBTYPE_AUTH, 0, pHdr80211->Addr2, pAd->MlmeAux.Bssid);
78063 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
78064 + sizeof(HEADER_802_11), &AuthHdr,
78069 + MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
78070 + MlmeFreeMemory(pAd, pOutBuffer);
78074 + ==========================================================================
78077 + IRQL = DISPATCH_LEVEL
78079 + ==========================================================================
78081 +VOID PeerDeauthAction(
78082 + IN PRTMP_ADAPTER pAd,
78083 + IN PMLME_QUEUE_ELEM Elem)
78085 + UCHAR Addr2[MAC_ADDR_LEN];
78088 + if (PeerDeauthSanity(pAd, Elem->Msg, Elem->MsgLen, Addr2, &Reason))
78090 + if (INFRA_ON(pAd) && MAC_ADDR_EQUAL(Addr2, pAd->CommonCfg.Bssid))
78092 + DBGPRINT(RT_DEBUG_TRACE,("AUTH_RSP - receive DE-AUTH from our AP (Reason=%d)\n", Reason));
78095 +#ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
78097 + union iwreq_data wrqu;
78098 + memset(wrqu.ap_addr.sa_data, 0, MAC_ADDR_LEN);
78099 + wireless_send_event(pAd->net_dev, SIOCGIWAP, &wrqu, NULL);
78101 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
78104 + // send wireless event - for deauthentication
78105 + if (pAd->CommonCfg.bWirelessEvent)
78106 + RTMPSendWirelessEvent(pAd, IW_DEAUTH_EVENT_FLAG, pAd->MacTab.Content[BSSID_WCID].Addr, BSS0, 0);
78108 + LinkDown(pAd, TRUE);
78110 + // Authentication Mode Cisco_LEAP has start a timer
78111 + // We should cancel it if using LEAP
78112 +#ifdef LEAP_SUPPORT
78113 + if (pAd->StaCfg.LeapAuthMode == CISCO_AuthModeLEAP)
78115 + RTMPCancelTimer(&pAd->StaCfg.LeapAuthTimer, &TimerCancelled);
78116 + //Check is it mach the LEAP Authentication failed as possible a Rogue AP
78117 + //on it's PortSecured not equal to WPA_802_1X_PORT_SECURED while process the Authenticaton.
78118 + if ((pAd->StaCfg.PortSecured != WPA_802_1X_PORT_SECURED) && (pAd->Mlme.LeapMachine.CurrState != LEAP_IDLE))
78120 + RogueApTableSetEntry(pAd, &pAd->StaCfg.RogueApTab, Addr2, LEAP_REASON_AUTH_TIMEOUT);
78123 +#endif // LEAP_SUPPORT //
78128 + DBGPRINT(RT_DEBUG_TRACE,("AUTH_RSP - PeerDeauthAction() sanity check fail\n"));
78133 +++ b/drivers/staging/rt3070/sta/connect.c
78136 + *************************************************************************
78137 + * Ralink Tech Inc.
78138 + * 5F., No.36, Taiyuan St., Jhubei City,
78139 + * Hsinchu County 302,
78142 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
78144 + * This program is free software; you can redistribute it and/or modify *
78145 + * it under the terms of the GNU General Public License as published by *
78146 + * the Free Software Foundation; either version 2 of the License, or *
78147 + * (at your option) any later version. *
78149 + * This program is distributed in the hope that it will be useful, *
78150 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
78151 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
78152 + * GNU General Public License for more details. *
78154 + * You should have received a copy of the GNU General Public License *
78155 + * along with this program; if not, write to the *
78156 + * Free Software Foundation, Inc., *
78157 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
78159 + *************************************************************************
78166 + Revision History:
78168 + -------- ---------- ----------------------------------------------
78169 + John 2004-08-08 Major modification from RT2560
78171 +#include "../rt_config.h"
78173 +UCHAR CipherSuiteWpaNoneTkip[] = {
78174 + 0x00, 0x50, 0xf2, 0x01, // oui
78175 + 0x01, 0x00, // Version
78176 + 0x00, 0x50, 0xf2, 0x02, // Multicast
78177 + 0x01, 0x00, // Number of unicast
78178 + 0x00, 0x50, 0xf2, 0x02, // unicast
78179 + 0x01, 0x00, // number of authentication method
78180 + 0x00, 0x50, 0xf2, 0x00 // authentication
78182 +UCHAR CipherSuiteWpaNoneTkipLen = (sizeof(CipherSuiteWpaNoneTkip) / sizeof(UCHAR));
78184 +UCHAR CipherSuiteWpaNoneAes[] = {
78185 + 0x00, 0x50, 0xf2, 0x01, // oui
78186 + 0x01, 0x00, // Version
78187 + 0x00, 0x50, 0xf2, 0x04, // Multicast
78188 + 0x01, 0x00, // Number of unicast
78189 + 0x00, 0x50, 0xf2, 0x04, // unicast
78190 + 0x01, 0x00, // number of authentication method
78191 + 0x00, 0x50, 0xf2, 0x00 // authentication
78193 +UCHAR CipherSuiteWpaNoneAesLen = (sizeof(CipherSuiteWpaNoneAes) / sizeof(UCHAR));
78195 +// The following MACRO is called after 1. starting an new IBSS, 2. succesfully JOIN an IBSS,
78196 +// or 3. succesfully ASSOCIATE to a BSS, 4. successfully RE_ASSOCIATE to a BSS
78197 +// All settings successfuly negotiated furing MLME state machines become final settings
78198 +// and are copied to pAd->StaActive
78199 +#define COPY_SETTINGS_FROM_MLME_AUX_TO_ACTIVE_CFG(_pAd) \
78201 + (_pAd)->CommonCfg.SsidLen = (_pAd)->MlmeAux.SsidLen; \
78202 + NdisMoveMemory((_pAd)->CommonCfg.Ssid, (_pAd)->MlmeAux.Ssid, (_pAd)->MlmeAux.SsidLen); \
78203 + COPY_MAC_ADDR((_pAd)->CommonCfg.Bssid, (_pAd)->MlmeAux.Bssid); \
78204 + (_pAd)->CommonCfg.Channel = (_pAd)->MlmeAux.Channel; \
78205 + (_pAd)->CommonCfg.CentralChannel = (_pAd)->MlmeAux.CentralChannel; \
78206 + (_pAd)->StaActive.Aid = (_pAd)->MlmeAux.Aid; \
78207 + (_pAd)->StaActive.AtimWin = (_pAd)->MlmeAux.AtimWin; \
78208 + (_pAd)->StaActive.CapabilityInfo = (_pAd)->MlmeAux.CapabilityInfo; \
78209 + (_pAd)->CommonCfg.BeaconPeriod = (_pAd)->MlmeAux.BeaconPeriod; \
78210 + (_pAd)->StaActive.CfpMaxDuration = (_pAd)->MlmeAux.CfpMaxDuration; \
78211 + (_pAd)->StaActive.CfpPeriod = (_pAd)->MlmeAux.CfpPeriod; \
78212 + (_pAd)->StaActive.SupRateLen = (_pAd)->MlmeAux.SupRateLen; \
78213 + NdisMoveMemory((_pAd)->StaActive.SupRate, (_pAd)->MlmeAux.SupRate, (_pAd)->MlmeAux.SupRateLen);\
78214 + (_pAd)->StaActive.ExtRateLen = (_pAd)->MlmeAux.ExtRateLen; \
78215 + NdisMoveMemory((_pAd)->StaActive.ExtRate, (_pAd)->MlmeAux.ExtRate, (_pAd)->MlmeAux.ExtRateLen);\
78216 + NdisMoveMemory(&(_pAd)->CommonCfg.APEdcaParm, &(_pAd)->MlmeAux.APEdcaParm, sizeof(EDCA_PARM));\
78217 + NdisMoveMemory(&(_pAd)->CommonCfg.APQosCapability, &(_pAd)->MlmeAux.APQosCapability, sizeof(QOS_CAPABILITY_PARM));\
78218 + NdisMoveMemory(&(_pAd)->CommonCfg.APQbssLoad, &(_pAd)->MlmeAux.APQbssLoad, sizeof(QBSS_LOAD_PARM));\
78219 + COPY_MAC_ADDR((_pAd)->MacTab.Content[BSSID_WCID].Addr, (_pAd)->MlmeAux.Bssid); \
78220 + (_pAd)->MacTab.Content[BSSID_WCID].Aid = (_pAd)->MlmeAux.Aid; \
78221 + (_pAd)->MacTab.Content[BSSID_WCID].PairwiseKey.CipherAlg = (_pAd)->StaCfg.PairCipher;\
78222 + COPY_MAC_ADDR((_pAd)->MacTab.Content[BSSID_WCID].PairwiseKey.BssId, (_pAd)->MlmeAux.Bssid);\
78223 + (_pAd)->MacTab.Content[BSSID_WCID].RateLen = (_pAd)->StaActive.SupRateLen + (_pAd)->StaActive.ExtRateLen;\
78227 + ==========================================================================
78230 + IRQL = PASSIVE_LEVEL
78232 + ==========================================================================
78234 +VOID MlmeCntlInit(
78235 + IN PRTMP_ADAPTER pAd,
78236 + IN STATE_MACHINE *S,
78237 + OUT STATE_MACHINE_FUNC Trans[])
78239 + // Control state machine differs from other state machines, the interface
78240 + // follows the standard interface
78241 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
78245 + ==========================================================================
78248 + IRQL = DISPATCH_LEVEL
78250 + ==========================================================================
78252 +VOID MlmeCntlMachinePerformAction(
78253 + IN PRTMP_ADAPTER pAd,
78254 + IN STATE_MACHINE *S,
78255 + IN MLME_QUEUE_ELEM *Elem)
78257 + switch(pAd->Mlme.CntlMachine.CurrState)
78261 + CntlIdleProc(pAd, Elem);
78264 + case CNTL_WAIT_DISASSOC:
78265 + CntlWaitDisassocProc(pAd, Elem);
78267 + case CNTL_WAIT_JOIN:
78268 + CntlWaitJoinProc(pAd, Elem);
78271 + // CNTL_WAIT_REASSOC is the only state in CNTL machine that does
78272 + // not triggered directly or indirectly by "RTMPSetInformation(OID_xxx)".
78273 + // Therefore not protected by NDIS's "only one outstanding OID request"
78274 + // rule. Which means NDIS may SET OID in the middle of ROAMing attempts.
78275 + // Current approach is to block new SET request at RTMPSetInformation()
78276 + // when CntlMachine.CurrState is not CNTL_IDLE
78277 + case CNTL_WAIT_REASSOC:
78278 + CntlWaitReassocProc(pAd, Elem);
78281 + case CNTL_WAIT_START:
78282 + CntlWaitStartProc(pAd, Elem);
78284 + case CNTL_WAIT_AUTH:
78285 + CntlWaitAuthProc(pAd, Elem);
78287 + case CNTL_WAIT_AUTH2:
78288 + CntlWaitAuthProc2(pAd, Elem);
78290 + case CNTL_WAIT_ASSOC:
78291 + CntlWaitAssocProc(pAd, Elem);
78294 + case CNTL_WAIT_OID_LIST_SCAN:
78295 + if(Elem->MsgType == MT2_SCAN_CONF)
78297 + // Resume TxRing after SCANING complete. We hope the out-of-service time
78298 + // won't be too long to let upper layer time-out the waiting frames
78299 + RTMPResumeMsduTransmission(pAd);
78300 + if (pAd->StaCfg.CCXReqType != MSRN_TYPE_UNUSED)
78302 + // Cisco scan request is finished, prepare beacon report
78303 + MlmeEnqueue(pAd, AIRONET_STATE_MACHINE, MT2_AIRONET_SCAN_DONE, 0, NULL);
78305 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
78308 + // Set LED status to previous status.
78310 + if (pAd->bLedOnScanning)
78312 + pAd->bLedOnScanning = FALSE;
78313 + RTMPSetLED(pAd, pAd->LedStatus);
78315 +#ifdef DOT11N_DRAFT3
78316 + // AP sent a 2040Coexistence mgmt frame, then station perform a scan, and then send back the respone.
78317 + if (pAd->CommonCfg.BSSCoexist2040.field.InfoReq == 1)
78319 + Update2040CoexistFrameAndNotify(pAd, BSSID_WCID, TRUE);
78321 +#endif // DOT11N_DRAFT3 //
78325 + case CNTL_WAIT_OID_DISASSOC:
78326 + if (Elem->MsgType == MT2_DISASSOC_CONF)
78328 + LinkDown(pAd, FALSE);
78329 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
78334 + // This state is for that we want to connect to an AP but
78335 + // it didn't find on BSS List table. So we need to scan the air first,
78336 + // after that we can try to connect to the desired AP if available.
78338 + case CNTL_WAIT_SCAN_FOR_CONNECT:
78339 + if(Elem->MsgType == MT2_SCAN_CONF)
78341 + // Resume TxRing after SCANING complete. We hope the out-of-service time
78342 + // won't be too long to let upper layer time-out the waiting frames
78343 + RTMPResumeMsduTransmission(pAd);
78344 +#ifdef CCX_SUPPORT
78345 + if (pAd->StaCfg.CCXReqType != MSRN_TYPE_UNUSED)
78347 + // Cisco scan request is finished, prepare beacon report
78348 + MlmeEnqueue(pAd, AIRONET_STATE_MACHINE, MT2_AIRONET_SCAN_DONE, 0, NULL);
78350 +#endif // CCX_SUPPORT //
78351 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
78354 + // Check if we can connect to.
78356 + BssTableSsidSort(pAd, &pAd->MlmeAux.SsidBssTab, pAd->MlmeAux.AutoReconnectSsid, pAd->MlmeAux.AutoReconnectSsidLen);
78357 + if (pAd->MlmeAux.SsidBssTab.BssNr > 0)
78359 + MlmeAutoReconnectLastSSID(pAd);
78363 +#endif // RT2870 //
78365 + DBGPRINT_ERR(("!ERROR! CNTL - Illegal message type(=%ld)", Elem->MsgType));
78372 + ==========================================================================
78375 + IRQL = DISPATCH_LEVEL
78377 + ==========================================================================
78379 +VOID CntlIdleProc(
78380 + IN PRTMP_ADAPTER pAd,
78381 + IN MLME_QUEUE_ELEM *Elem)
78383 + MLME_DISASSOC_REQ_STRUCT DisassocReq;
78385 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RADIO_OFF))
78388 + switch(Elem->MsgType)
78390 + case OID_802_11_SSID:
78391 + CntlOidSsidProc(pAd, Elem);
78394 + case OID_802_11_BSSID:
78395 + CntlOidRTBssidProc(pAd,Elem);
78398 + case OID_802_11_BSSID_LIST_SCAN:
78399 + CntlOidScanProc(pAd,Elem);
78402 + case OID_802_11_DISASSOCIATE:
78406 + DBGPRINT(RT_DEBUG_TRACE, ("The driver is in ATE mode now\n"));
78409 +#endif // RALINK_ATE //
78410 + DisassocParmFill(pAd, &DisassocReq, pAd->CommonCfg.Bssid, REASON_DISASSOC_STA_LEAVING);
78411 + MlmeEnqueue(pAd, ASSOC_STATE_MACHINE, MT2_MLME_DISASSOC_REQ, sizeof(MLME_DISASSOC_REQ_STRUCT), &DisassocReq);
78412 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_OID_DISASSOC;
78413 +#ifdef WPA_SUPPLICANT_SUPPORT
78414 + if (pAd->StaCfg.WpaSupplicantUP != WPA_SUPPLICANT_ENABLE_WITH_WEB_UI)
78415 +#endif // WPA_SUPPLICANT_SUPPORT //
78417 + // Set the AutoReconnectSsid to prevent it reconnect to old SSID
78418 + // Since calling this indicate user don't want to connect to that SSID anymore.
78419 + pAd->MlmeAux.AutoReconnectSsidLen= 32;
78420 + NdisZeroMemory(pAd->MlmeAux.AutoReconnectSsid, pAd->MlmeAux.AutoReconnectSsidLen);
78424 + case MT2_MLME_ROAMING_REQ:
78425 + CntlMlmeRoamingProc(pAd, Elem);
78428 + case OID_802_11_MIC_FAILURE_REPORT_FRAME:
78429 + WpaMicFailureReportFrame(pAd, Elem);
78432 +#ifdef QOS_DLS_SUPPORT
78433 + case RT_OID_802_11_SET_DLS_PARAM:
78434 + CntlOidDLSSetupProc(pAd, Elem);
78436 +#endif // QOS_DLS_SUPPORT //
78439 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - Illegal message in CntlIdleProc(MsgType=%ld)\n",Elem->MsgType));
78444 +VOID CntlOidScanProc(
78445 + IN PRTMP_ADAPTER pAd,
78446 + IN MLME_QUEUE_ELEM *Elem)
78448 + MLME_SCAN_REQ_STRUCT ScanReq;
78449 + ULONG BssIdx = BSS_NOT_FOUND;
78450 + BSS_ENTRY CurrBss;
78453 +/* Disable scanning when ATE is running. */
78456 +#endif // RALINK_ATE //
78459 + // record current BSS if network is connected.
78460 + // 2003-2-13 do not include current IBSS if this is the only STA in this IBSS.
78461 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED))
78463 + BssIdx = BssSsidTableSearch(&pAd->ScanTab, pAd->CommonCfg.Bssid, pAd->CommonCfg.Ssid, pAd->CommonCfg.SsidLen, pAd->CommonCfg.Channel);
78464 + if (BssIdx != BSS_NOT_FOUND)
78466 + NdisMoveMemory(&CurrBss, &pAd->ScanTab.BssEntry[BssIdx], sizeof(BSS_ENTRY));
78470 + // clean up previous SCAN result, add current BSS back to table if any
78471 + BssTableInit(&pAd->ScanTab);
78472 + if (BssIdx != BSS_NOT_FOUND)
78474 + // DDK Note: If the NIC is associated with a particular BSSID and SSID
78475 + // that are not contained in the list of BSSIDs generated by this scan, the
78476 + // BSSID description of the currently associated BSSID and SSID should be
78477 + // appended to the list of BSSIDs in the NIC's database.
78478 + // To ensure this, we append this BSS as the first entry in SCAN result
78479 + NdisMoveMemory(&pAd->ScanTab.BssEntry[0], &CurrBss, sizeof(BSS_ENTRY));
78480 + pAd->ScanTab.BssNr = 1;
78483 + ScanParmFill(pAd, &ScanReq, "", 0, BSS_ANY, SCAN_ACTIVE);
78484 + MlmeEnqueue(pAd, SYNC_STATE_MACHINE, MT2_MLME_SCAN_REQ,
78485 + sizeof(MLME_SCAN_REQ_STRUCT), &ScanReq);
78486 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_OID_LIST_SCAN;
78490 + ==========================================================================
78492 + Before calling this routine, user desired SSID should already been
78493 + recorded in CommonCfg.Ssid[]
78494 + IRQL = DISPATCH_LEVEL
78496 + ==========================================================================
78498 +VOID CntlOidSsidProc(
78499 + IN PRTMP_ADAPTER pAd,
78500 + IN MLME_QUEUE_ELEM * Elem)
78502 + PNDIS_802_11_SSID pOidSsid = (NDIS_802_11_SSID *)Elem->Msg;
78503 + MLME_DISASSOC_REQ_STRUCT DisassocReq;
78506 + // Step 1. record the desired user settings to MlmeAux
78507 + NdisZeroMemory(pAd->MlmeAux.Ssid, MAX_LEN_OF_SSID);
78508 + NdisMoveMemory(pAd->MlmeAux.Ssid, pOidSsid->Ssid, pOidSsid->SsidLength);
78509 + pAd->MlmeAux.SsidLen = (UCHAR)pOidSsid->SsidLength;
78510 + NdisZeroMemory(pAd->MlmeAux.Bssid, MAC_ADDR_LEN);
78511 + pAd->MlmeAux.BssType = pAd->StaCfg.BssType;
78515 + // Update Reconnect Ssid, that user desired to connect.
78517 + NdisZeroMemory(pAd->MlmeAux.AutoReconnectSsid, MAX_LEN_OF_SSID);
78518 + NdisMoveMemory(pAd->MlmeAux.AutoReconnectSsid, pAd->MlmeAux.Ssid, pAd->MlmeAux.SsidLen);
78519 + pAd->MlmeAux.AutoReconnectSsidLen = pAd->MlmeAux.SsidLen;
78521 + // step 2. find all matching BSS in the lastest SCAN result (inBssTab)
78522 + // & log them into MlmeAux.SsidBssTab for later-on iteration. Sort by RSSI order
78523 + BssTableSsidSort(pAd, &pAd->MlmeAux.SsidBssTab, pAd->MlmeAux.Ssid, pAd->MlmeAux.SsidLen);
78525 + DBGPRINT(RT_DEBUG_TRACE, ("CntlOidSsidProc():CNTL - %d BSS of %d BSS match the desire (%d)SSID - %s\n",
78526 + pAd->MlmeAux.SsidBssTab.BssNr, pAd->ScanTab.BssNr, pAd->MlmeAux.SsidLen, pAd->MlmeAux.Ssid));
78527 + NdisGetSystemUpTime(&Now);
78529 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED) &&
78530 + (pAd->CommonCfg.SsidLen == pAd->MlmeAux.SsidBssTab.BssEntry[0].SsidLen) &&
78531 + NdisEqualMemory(pAd->CommonCfg.Ssid, pAd->MlmeAux.SsidBssTab.BssEntry[0].Ssid, pAd->CommonCfg.SsidLen) &&
78532 + MAC_ADDR_EQUAL(pAd->CommonCfg.Bssid, pAd->MlmeAux.SsidBssTab.BssEntry[0].Bssid))
78534 + // Case 1. already connected with an AP who has the desired SSID
78535 + // with highest RSSI
78537 + // Add checking Mode "LEAP" for CCX 1.0
78538 + if (((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA) ||
78539 + (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK) ||
78540 + (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2) ||
78541 + (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK)
78542 +#ifdef LEAP_SUPPORT
78543 + || (pAd->StaCfg.LeapAuthMode == CISCO_AuthModeLEAP)
78544 +#endif // LEAP_SUPPORT //
78546 + (pAd->StaCfg.PortSecured == WPA_802_1X_PORT_NOT_SECURED))
78548 + // case 1.1 For WPA, WPA-PSK, if the 1x port is not secured, we have to redo
78549 + // connection process
78550 + DBGPRINT(RT_DEBUG_TRACE, ("CntlOidSsidProc():CNTL - disassociate with current AP...\n"));
78551 + DisassocParmFill(pAd, &DisassocReq, pAd->CommonCfg.Bssid, REASON_DISASSOC_STA_LEAVING);
78552 + MlmeEnqueue(pAd, ASSOC_STATE_MACHINE, MT2_MLME_DISASSOC_REQ,
78553 + sizeof(MLME_DISASSOC_REQ_STRUCT), &DisassocReq);
78554 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_DISASSOC;
78556 + else if (pAd->bConfigChanged == TRUE)
78558 + // case 1.2 Important Config has changed, we have to reconnect to the same AP
78559 + DBGPRINT(RT_DEBUG_TRACE, ("CntlOidSsidProc():CNTL - disassociate with current AP Because config changed...\n"));
78560 + DisassocParmFill(pAd, &DisassocReq, pAd->CommonCfg.Bssid, REASON_DISASSOC_STA_LEAVING);
78561 + MlmeEnqueue(pAd, ASSOC_STATE_MACHINE, MT2_MLME_DISASSOC_REQ,
78562 + sizeof(MLME_DISASSOC_REQ_STRUCT), &DisassocReq);
78563 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_DISASSOC;
78567 + // case 1.3. already connected to the SSID with highest RSSI.
78568 + DBGPRINT(RT_DEBUG_TRACE, ("CntlOidSsidProc():CNTL - already with this BSSID. ignore this SET_SSID request\n"));
78570 + // (HCT 12.1) 1c_wlan_mediaevents required
78571 + // media connect events are indicated when associating with the same AP
78573 + if (INFRA_ON(pAd))
78576 + // Since MediaState already is NdisMediaStateConnected
78577 + // We just indicate the connect event again to meet the WHQL required.
78579 + pAd->IndicateMediaState = NdisMediaStateConnected;
78580 + RTMP_IndicateMediaState(pAd);
78581 + pAd->ExtraInfo = GENERAL_LINK_UP; // Update extra information to link is up
78584 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
78585 +#ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
78587 + union iwreq_data wrqu;
78589 + memset(wrqu.ap_addr.sa_data, 0, MAC_ADDR_LEN);
78590 + memcpy(wrqu.ap_addr.sa_data, pAd->MlmeAux.Bssid, MAC_ADDR_LEN);
78591 + wireless_send_event(pAd->net_dev, SIOCGIWAP, &wrqu, NULL);
78594 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
78597 + else if (INFRA_ON(pAd))
78601 + // [88888] OID_802_11_SSID should have returned NDTEST_WEP_AP2(Returned: )
78602 + // RT61 may lost SSID, and not connect to NDTEST_WEP_AP2 and will connect to NDTEST_WEP_AP2 by Autoreconnect
78603 + // But media status is connected, so the SSID not report correctly.
78605 + if (!SSID_EQUAL(pAd->CommonCfg.Ssid, pAd->CommonCfg.SsidLen, pAd->MlmeAux.Ssid, pAd->MlmeAux.SsidLen))
78608 + // Different SSID means not Roaming case, so we let LinkDown() to Indicate a disconnect event.
78610 + pAd->MlmeAux.CurrReqIsFromNdis = TRUE;
78612 + // case 2. active INFRA association existent
78613 + // roaming is done within miniport driver, nothing to do with configuration
78614 + // utility. so upon a new SET(OID_802_11_SSID) is received, we just
78615 + // disassociate with the current associated AP,
78616 + // then perform a new association with this new SSID, no matter the
78617 + // new/old SSID are the same or not.
78618 + DBGPRINT(RT_DEBUG_TRACE, ("CntlOidSsidProc():CNTL - disassociate with current AP...\n"));
78619 + DisassocParmFill(pAd, &DisassocReq, pAd->CommonCfg.Bssid, REASON_DISASSOC_STA_LEAVING);
78620 + MlmeEnqueue(pAd, ASSOC_STATE_MACHINE, MT2_MLME_DISASSOC_REQ,
78621 + sizeof(MLME_DISASSOC_REQ_STRUCT), &DisassocReq);
78622 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_DISASSOC;
78626 + if (ADHOC_ON(pAd))
78628 + DBGPRINT(RT_DEBUG_TRACE, ("CntlOidSsidProc():CNTL - drop current ADHOC\n"));
78629 + LinkDown(pAd, FALSE);
78630 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED);
78631 + pAd->IndicateMediaState = NdisMediaStateDisconnected;
78632 + RTMP_IndicateMediaState(pAd);
78633 + pAd->ExtraInfo = GENERAL_LINK_DOWN;
78634 + DBGPRINT(RT_DEBUG_TRACE, ("CntlOidSsidProc():NDIS_STATUS_MEDIA_DISCONNECT Event C!\n"));
78637 + if ((pAd->MlmeAux.SsidBssTab.BssNr == 0) &&
78638 + (pAd->StaCfg.bAutoReconnect == TRUE) &&
78639 + (pAd->MlmeAux.BssType == BSS_INFRA) &&
78640 + (MlmeValidateSSID(pAd->MlmeAux.Ssid, pAd->MlmeAux.SsidLen) == TRUE)
78643 + MLME_SCAN_REQ_STRUCT ScanReq;
78645 + DBGPRINT(RT_DEBUG_TRACE, ("CntlOidSsidProc():CNTL - No matching BSS, start a new scan\n"));
78646 + ScanParmFill(pAd, &ScanReq, pAd->MlmeAux.Ssid, pAd->MlmeAux.SsidLen, BSS_ANY, SCAN_ACTIVE);
78647 + MlmeEnqueue(pAd, SYNC_STATE_MACHINE, MT2_MLME_SCAN_REQ, sizeof(MLME_SCAN_REQ_STRUCT), &ScanReq);
78648 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_OID_LIST_SCAN;
78649 + // Reset Missed scan number
78650 + pAd->StaCfg.LastScanTime = Now;
78654 + pAd->MlmeAux.BssIdx = 0;
78655 + IterateOnBssTab(pAd);
78662 + ==========================================================================
78665 + IRQL = DISPATCH_LEVEL
78667 + ==========================================================================
78669 +VOID CntlOidRTBssidProc(
78670 + IN PRTMP_ADAPTER pAd,
78671 + IN MLME_QUEUE_ELEM * Elem)
78674 + PUCHAR pOidBssid = (PUCHAR)Elem->Msg;
78675 + MLME_DISASSOC_REQ_STRUCT DisassocReq;
78676 + MLME_JOIN_REQ_STRUCT JoinReq;
78679 +/* No need to perform this routine when ATE is running. */
78682 +#endif // RALINK_ATE //
78684 + // record user desired settings
78685 + COPY_MAC_ADDR(pAd->MlmeAux.Bssid, pOidBssid);
78686 + pAd->MlmeAux.BssType = pAd->StaCfg.BssType;
78689 + // Update Reconnect Ssid, that user desired to connect.
78691 + NdisZeroMemory(pAd->MlmeAux.AutoReconnectSsid, MAX_LEN_OF_SSID);
78692 + pAd->MlmeAux.AutoReconnectSsidLen = pAd->MlmeAux.SsidLen;
78693 + NdisMoveMemory(pAd->MlmeAux.AutoReconnectSsid, pAd->MlmeAux.Ssid, pAd->MlmeAux.SsidLen);
78695 + // find the desired BSS in the latest SCAN result table
78696 + BssIdx = BssTableSearch(&pAd->ScanTab, pOidBssid, pAd->MlmeAux.Channel);
78697 + if (BssIdx == BSS_NOT_FOUND)
78699 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - BSSID not found. reply NDIS_STATUS_NOT_ACCEPTED\n"));
78700 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
78704 + // copy the matched BSS entry from ScanTab to MlmeAux.SsidBssTab. Why?
78705 + // Because we need this entry to become the JOIN target in later on SYNC state machine
78706 + pAd->MlmeAux.BssIdx = 0;
78707 + pAd->MlmeAux.SsidBssTab.BssNr = 1;
78708 + NdisMoveMemory(&pAd->MlmeAux.SsidBssTab.BssEntry[0], &pAd->ScanTab.BssEntry[BssIdx], sizeof(BSS_ENTRY));
78710 + //pAd->MlmeAux.AutoReconnectSsidLen = pAd->ScanTab.BssEntry[BssIdx].SsidLen;
78711 + //NdisMoveMemory(pAd->MlmeAux.AutoReconnectSsid, pAd->ScanTab.BssEntry[BssIdx].Ssid, pAd->ScanTab.BssEntry[BssIdx].SsidLen);
78713 + // Add SSID into MlmeAux for site surey joining hidden SSID
78714 + //pAd->MlmeAux.SsidLen = pAd->ScanTab.BssEntry[BssIdx].SsidLen;
78715 + //NdisMoveMemory(pAd->MlmeAux.Ssid, pAd->ScanTab.BssEntry[BssIdx].Ssid, pAd->MlmeAux.SsidLen);
78717 + // 2002-11-26 skip the following checking. i.e. if user wants to re-connect to same AP
78718 + // we just follow normal procedure. The reason of user doing this may because he/she changed
78719 + // AP to another channel, but we still received BEACON from it thus don't claim Link Down.
78720 + // Since user knows he's changed AP channel, he'll re-connect again. By skipping the following
78721 + // checking, we'll disassociate then re-do normal association with this AP at the new channel.
78722 + // 2003-1-6 Re-enable this feature based on microsoft requirement which prefer not to re-do
78723 + // connection when setting the same BSSID.
78724 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED) &&
78725 + MAC_ADDR_EQUAL(pAd->CommonCfg.Bssid, pOidBssid))
78727 + // already connected to the same BSSID, go back to idle state directly
78728 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - already in this BSSID. ignore this SET_BSSID request\n"));
78729 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
78730 +#ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
78732 + union iwreq_data wrqu;
78734 + memset(wrqu.ap_addr.sa_data, 0, MAC_ADDR_LEN);
78735 + memcpy(wrqu.ap_addr.sa_data, pAd->MlmeAux.Bssid, MAC_ADDR_LEN);
78736 + wireless_send_event(pAd->net_dev, SIOCGIWAP, &wrqu, NULL);
78739 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
78743 + if (INFRA_ON(pAd))
78745 + // disassoc from current AP first
78746 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - disassociate with current AP ...\n"));
78747 + DisassocParmFill(pAd, &DisassocReq, pAd->CommonCfg.Bssid, REASON_DISASSOC_STA_LEAVING);
78748 + MlmeEnqueue(pAd, ASSOC_STATE_MACHINE, MT2_MLME_DISASSOC_REQ,
78749 + sizeof(MLME_DISASSOC_REQ_STRUCT), &DisassocReq);
78751 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_DISASSOC;
78755 + if (ADHOC_ON(pAd))
78757 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - drop current ADHOC\n"));
78758 + LinkDown(pAd, FALSE);
78759 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED);
78760 + pAd->IndicateMediaState = NdisMediaStateDisconnected;
78761 + RTMP_IndicateMediaState(pAd);
78762 + pAd->ExtraInfo = GENERAL_LINK_DOWN;
78763 + DBGPRINT(RT_DEBUG_TRACE, ("NDIS_STATUS_MEDIA_DISCONNECT Event C!\n"));
78766 + // Change the wepstatus to original wepstatus
78767 + pAd->StaCfg.WepStatus = pAd->StaCfg.OrigWepStatus;
78768 + pAd->StaCfg.PairCipher = pAd->StaCfg.OrigWepStatus;
78769 + pAd->StaCfg.GroupCipher = pAd->StaCfg.OrigWepStatus;
78771 + // Check cipher suite, AP must have more secured cipher than station setting
78772 + // Set the Pairwise and Group cipher to match the intended AP setting
78773 + // We can only connect to AP with less secured cipher setting
78774 + if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA) || (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK))
78776 + pAd->StaCfg.GroupCipher = pAd->ScanTab.BssEntry[BssIdx].WPA.GroupCipher;
78778 + if (pAd->StaCfg.WepStatus == pAd->ScanTab.BssEntry[BssIdx].WPA.PairCipher)
78779 + pAd->StaCfg.PairCipher = pAd->ScanTab.BssEntry[BssIdx].WPA.PairCipher;
78780 + else if (pAd->ScanTab.BssEntry[BssIdx].WPA.PairCipherAux != Ndis802_11WEPDisabled)
78781 + pAd->StaCfg.PairCipher = pAd->ScanTab.BssEntry[BssIdx].WPA.PairCipherAux;
78782 + else // There is no PairCipher Aux, downgrade our capability to TKIP
78783 + pAd->StaCfg.PairCipher = Ndis802_11Encryption2Enabled;
78785 + else if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2) || (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK))
78787 + pAd->StaCfg.GroupCipher = pAd->ScanTab.BssEntry[BssIdx].WPA2.GroupCipher;
78789 + if (pAd->StaCfg.WepStatus == pAd->ScanTab.BssEntry[BssIdx].WPA2.PairCipher)
78790 + pAd->StaCfg.PairCipher = pAd->ScanTab.BssEntry[BssIdx].WPA2.PairCipher;
78791 + else if (pAd->ScanTab.BssEntry[BssIdx].WPA2.PairCipherAux != Ndis802_11WEPDisabled)
78792 + pAd->StaCfg.PairCipher = pAd->ScanTab.BssEntry[BssIdx].WPA2.PairCipherAux;
78793 + else // There is no PairCipher Aux, downgrade our capability to TKIP
78794 + pAd->StaCfg.PairCipher = Ndis802_11Encryption2Enabled;
78796 + // RSN capability
78797 + pAd->StaCfg.RsnCapability = pAd->ScanTab.BssEntry[BssIdx].WPA2.RsnCapability;
78800 + // Set Mix cipher flag
78801 + pAd->StaCfg.bMixCipher = (pAd->StaCfg.PairCipher == pAd->StaCfg.GroupCipher) ? FALSE : TRUE;
78802 + if (pAd->StaCfg.bMixCipher == TRUE)
78804 + // If mix cipher, re-build RSNIE
78805 + RTMPMakeRSNIE(pAd, pAd->StaCfg.AuthMode, pAd->StaCfg.WepStatus, 0);
78807 + // No active association, join the BSS immediately
78808 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - joining %02x:%02x:%02x:%02x:%02x:%02x ...\n",
78809 + pOidBssid[0],pOidBssid[1],pOidBssid[2],pOidBssid[3],pOidBssid[4],pOidBssid[5]));
78811 + JoinParmFill(pAd, &JoinReq, pAd->MlmeAux.BssIdx);
78812 + MlmeEnqueue(pAd, SYNC_STATE_MACHINE, MT2_MLME_JOIN_REQ, sizeof(MLME_JOIN_REQ_STRUCT), &JoinReq);
78814 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_JOIN;
78819 +// Roaming is the only external request triggering CNTL state machine
78820 +// despite of other "SET OID" operation. All "SET OID" related oerations
78821 +// happen in sequence, because no other SET OID will be sent to this device
78822 +// until the the previous SET operation is complete (successful o failed).
78823 +// So, how do we quarantee this ROAMING request won't corrupt other "SET OID"?
78824 +// or been corrupted by other "SET OID"?
78826 +// IRQL = DISPATCH_LEVEL
78827 +VOID CntlMlmeRoamingProc(
78828 + IN PRTMP_ADAPTER pAd,
78829 + IN MLME_QUEUE_ELEM *Elem)
78832 + // AP in different channel may show lower RSSI than actual value??
78833 + // should we add a weighting factor to compensate it?
78834 + DBGPRINT(RT_DEBUG_TRACE,("CNTL - Roaming in MlmeAux.RoamTab...\n"));
78836 + NdisMoveMemory(&pAd->MlmeAux.SsidBssTab, &pAd->MlmeAux.RoamTab, sizeof(pAd->MlmeAux.RoamTab));
78837 + pAd->MlmeAux.SsidBssTab.BssNr = pAd->MlmeAux.RoamTab.BssNr;
78839 + BssTableSortByRssi(&pAd->MlmeAux.SsidBssTab);
78840 + pAd->MlmeAux.BssIdx = 0;
78841 + IterateOnBssTab(pAd);
78844 +#ifdef QOS_DLS_SUPPORT
78846 + ==========================================================================
78849 + IRQL = DISPATCH_LEVEL
78851 + ==========================================================================
78853 +VOID CntlOidDLSSetupProc(
78854 + IN PRTMP_ADAPTER pAd,
78855 + IN MLME_QUEUE_ELEM *Elem)
78857 + PRT_802_11_DLS pDLS = (PRT_802_11_DLS)Elem->Msg;
78858 + MLME_DLS_REQ_STRUCT MlmeDlsReq;
78860 + USHORT reason = REASON_UNSPECIFY;
78862 + DBGPRINT(RT_DEBUG_TRACE,("CNTL - (OID set %02x:%02x:%02x:%02x:%02x:%02x with Valid=%d, Status=%d, TimeOut=%d, CountDownTimer=%d)\n",
78863 + pDLS->MacAddr[0], pDLS->MacAddr[1], pDLS->MacAddr[2], pDLS->MacAddr[3], pDLS->MacAddr[4], pDLS->MacAddr[5],
78864 + pDLS->Valid, pDLS->Status, pDLS->TimeOut, pDLS->CountDownTimer));
78866 + if (!pAd->CommonCfg.bDLSCapable)
78869 + // DLS will not be supported when Adhoc mode
78870 + if (INFRA_ON(pAd))
78872 + for (i = 0; i < MAX_NUM_OF_DLS_ENTRY; i++)
78874 + if (pDLS->Valid && pAd->StaCfg.DLSEntry[i].Valid && (pAd->StaCfg.DLSEntry[i].Status == DLS_FINISH) &&
78875 + (pDLS->TimeOut == pAd->StaCfg.DLSEntry[i].TimeOut) && MAC_ADDR_EQUAL(pDLS->MacAddr, pAd->StaCfg.DLSEntry[i].MacAddr))
78877 + // 1. Same setting, just drop it
78878 + DBGPRINT(RT_DEBUG_TRACE,("CNTL - setting unchanged\n"));
78881 + else if (!pDLS->Valid && pAd->StaCfg.DLSEntry[i].Valid && (pAd->StaCfg.DLSEntry[i].Status == DLS_FINISH) &&
78882 + MAC_ADDR_EQUAL(pDLS->MacAddr, pAd->StaCfg.DLSEntry[i].MacAddr))
78884 + // 2. Disable DLS link case, just tear down DLS link
78885 + reason = REASON_QOS_UNWANTED_MECHANISM;
78886 + pAd->StaCfg.DLSEntry[i].Valid = FALSE;
78887 + pAd->StaCfg.DLSEntry[i].Status = DLS_NONE;
78888 + DlsParmFill(pAd, &MlmeDlsReq, &pAd->StaCfg.DLSEntry[i], reason);
78889 + MlmeEnqueue(pAd, DLS_STATE_MACHINE, MT2_MLME_DLS_TEAR_DOWN, sizeof(MLME_DLS_REQ_STRUCT), &MlmeDlsReq);
78890 + DBGPRINT(RT_DEBUG_TRACE,("CNTL - start tear down procedure\n"));
78893 + else if ((i < MAX_NUM_OF_DLS_ENTRY) && pDLS->Valid && !pAd->StaCfg.DLSEntry[i].Valid)
78895 + // 3. Enable case, start DLS setup procedure
78896 + NdisMoveMemory(&pAd->StaCfg.DLSEntry[i], pDLS, sizeof(RT_802_11_DLS_UI));
78898 + //Update countdown timer
78899 + pAd->StaCfg.DLSEntry[i].CountDownTimer = pAd->StaCfg.DLSEntry[i].TimeOut;
78900 + DlsParmFill(pAd, &MlmeDlsReq, &pAd->StaCfg.DLSEntry[i], reason);
78901 + MlmeEnqueue(pAd, DLS_STATE_MACHINE, MT2_MLME_DLS_REQ, sizeof(MLME_DLS_REQ_STRUCT), &MlmeDlsReq);
78902 + DBGPRINT(RT_DEBUG_TRACE,("CNTL - DLS setup case\n"));
78905 + else if ((i < MAX_NUM_OF_DLS_ENTRY) && pDLS->Valid && pAd->StaCfg.DLSEntry[i].Valid &&
78906 + (pAd->StaCfg.DLSEntry[i].Status == DLS_FINISH) && !MAC_ADDR_EQUAL(pDLS->MacAddr, pAd->StaCfg.DLSEntry[i].MacAddr))
78908 + // 4. update mac case, tear down old DLS and setup new DLS
78909 + reason = REASON_QOS_UNWANTED_MECHANISM;
78910 + pAd->StaCfg.DLSEntry[i].Valid = FALSE;
78911 + pAd->StaCfg.DLSEntry[i].Status = DLS_NONE;
78912 + DlsParmFill(pAd, &MlmeDlsReq, &pAd->StaCfg.DLSEntry[i], reason);
78913 + MlmeEnqueue(pAd, DLS_STATE_MACHINE, MT2_MLME_DLS_TEAR_DOWN, sizeof(MLME_DLS_REQ_STRUCT), &MlmeDlsReq);
78914 + NdisMoveMemory(&pAd->StaCfg.DLSEntry[i], pDLS, sizeof(RT_802_11_DLS_UI));
78915 + DlsParmFill(pAd, &MlmeDlsReq, &pAd->StaCfg.DLSEntry[i], reason);
78916 + MlmeEnqueue(pAd, DLS_STATE_MACHINE, MT2_MLME_DLS_REQ, sizeof(MLME_DLS_REQ_STRUCT), &MlmeDlsReq);
78917 + DBGPRINT(RT_DEBUG_TRACE,("CNTL - DLS tear down and restart case\n"));
78920 + else if (pDLS->Valid && pAd->StaCfg.DLSEntry[i].Valid &&
78921 + MAC_ADDR_EQUAL(pDLS->MacAddr, pAd->StaCfg.DLSEntry[i].MacAddr) && (pAd->StaCfg.DLSEntry[i].TimeOut != pDLS->TimeOut))
78923 + // 5. update timeout case, start DLS setup procedure (no tear down)
78924 + pAd->StaCfg.DLSEntry[i].TimeOut = pDLS->TimeOut;
78925 + //Update countdown timer
78926 + pAd->StaCfg.DLSEntry[i].CountDownTimer = pAd->StaCfg.DLSEntry[i].TimeOut;
78927 + DlsParmFill(pAd, &MlmeDlsReq, &pAd->StaCfg.DLSEntry[i], reason);
78928 + MlmeEnqueue(pAd, DLS_STATE_MACHINE, MT2_MLME_DLS_REQ, sizeof(MLME_DLS_REQ_STRUCT), &MlmeDlsReq);
78929 + DBGPRINT(RT_DEBUG_TRACE,("CNTL - DLS update timeout case\n"));
78932 + else if (pDLS->Valid && pAd->StaCfg.DLSEntry[i].Valid &&
78933 + (pAd->StaCfg.DLSEntry[i].Status != DLS_FINISH) && MAC_ADDR_EQUAL(pDLS->MacAddr, pAd->StaCfg.DLSEntry[i].MacAddr))
78935 + // 6. re-setup case, start DLS setup procedure (no tear down)
78936 + DlsParmFill(pAd, &MlmeDlsReq, &pAd->StaCfg.DLSEntry[i], reason);
78937 + MlmeEnqueue(pAd, DLS_STATE_MACHINE, MT2_MLME_DLS_REQ, sizeof(MLME_DLS_REQ_STRUCT), &MlmeDlsReq);
78938 + DBGPRINT(RT_DEBUG_TRACE,("CNTL - DLS retry setup procedure\n"));
78943 + DBGPRINT(RT_DEBUG_WARN,("CNTL - DLS not changed in entry - %d - Valid=%d, Status=%d, TimeOut=%d\n",
78944 + i, pAd->StaCfg.DLSEntry[i].Valid, pAd->StaCfg.DLSEntry[i].Status, pAd->StaCfg.DLSEntry[i].TimeOut));
78949 +#endif // QOS_DLS_SUPPORT //
78952 + ==========================================================================
78955 + IRQL = DISPATCH_LEVEL
78957 + ==========================================================================
78959 +VOID CntlWaitDisassocProc(
78960 + IN PRTMP_ADAPTER pAd,
78961 + IN MLME_QUEUE_ELEM *Elem)
78963 + MLME_START_REQ_STRUCT StartReq;
78965 + if (Elem->MsgType == MT2_DISASSOC_CONF)
78967 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - Dis-associate successful\n"));
78969 + if (pAd->CommonCfg.bWirelessEvent)
78971 + RTMPSendWirelessEvent(pAd, IW_DISASSOC_EVENT_FLAG, pAd->MacTab.Content[BSSID_WCID].Addr, BSS0, 0);
78974 + LinkDown(pAd, FALSE);
78976 + // case 1. no matching BSS, and user wants ADHOC, so we just start a new one
78977 + if ((pAd->MlmeAux.SsidBssTab.BssNr==0) && (pAd->StaCfg.BssType == BSS_ADHOC))
78979 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - No matching BSS, start a new ADHOC (Ssid=%s)...\n",pAd->MlmeAux.Ssid));
78980 + StartParmFill(pAd, &StartReq, pAd->MlmeAux.Ssid, pAd->MlmeAux.SsidLen);
78981 + MlmeEnqueue(pAd, SYNC_STATE_MACHINE, MT2_MLME_START_REQ, sizeof(MLME_START_REQ_STRUCT), &StartReq);
78982 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_START;
78984 + // case 2. try each matched BSS
78987 + pAd->MlmeAux.BssIdx = 0;
78989 + IterateOnBssTab(pAd);
78995 + ==========================================================================
78998 + IRQL = DISPATCH_LEVEL
79000 + ==========================================================================
79002 +VOID CntlWaitJoinProc(
79003 + IN PRTMP_ADAPTER pAd,
79004 + IN MLME_QUEUE_ELEM *Elem)
79007 + MLME_AUTH_REQ_STRUCT AuthReq;
79009 + if (Elem->MsgType == MT2_JOIN_CONF)
79011 + NdisMoveMemory(&Reason, Elem->Msg, sizeof(USHORT));
79012 + if (Reason == MLME_SUCCESS)
79014 + // 1. joined an IBSS, we are pretty much done here
79015 + if (pAd->MlmeAux.BssType == BSS_ADHOC)
79018 + // 5G bands rules of Japan:
79019 + // Ad hoc must be disabled in W53(ch52,56,60,64) channels.
79021 + if ( (pAd->CommonCfg.bIEEE80211H == 1) &&
79022 + RadarChannelCheck(pAd, pAd->CommonCfg.Channel)
79025 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
79026 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - Channel=%d, Join adhoc on W53(52,56,60,64) Channels are not accepted\n", pAd->CommonCfg.Channel));
79030 + LinkUp(pAd, BSS_ADHOC);
79031 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
79032 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - join the IBSS = %02x:%02x:%02x:%02x:%02x:%02x ...\n",
79033 + pAd->CommonCfg.Bssid[0],pAd->CommonCfg.Bssid[1],pAd->CommonCfg.Bssid[2],
79034 + pAd->CommonCfg.Bssid[3],pAd->CommonCfg.Bssid[4],pAd->CommonCfg.Bssid[5]));
79036 + pAd->IndicateMediaState = NdisMediaStateConnected;
79037 + pAd->ExtraInfo = GENERAL_LINK_UP;
79039 + // 2. joined a new INFRA network, start from authentication
79042 +#ifdef LEAP_SUPPORT
79043 + // Add AuthMode "LEAP" for CCX 1.X
79044 + if (pAd->StaCfg.LeapAuthMode == CISCO_AuthModeLEAP)
79046 + AuthParmFill(pAd, &AuthReq, pAd->MlmeAux.Bssid, CISCO_AuthModeLEAP);
79049 +#endif // LEAP_SUPPORT //
79051 + // either Ndis802_11AuthModeShared or Ndis802_11AuthModeAutoSwitch, try shared key first
79052 + if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeShared) ||
79053 + (pAd->StaCfg.AuthMode == Ndis802_11AuthModeAutoSwitch))
79055 + AuthParmFill(pAd, &AuthReq, pAd->MlmeAux.Bssid, Ndis802_11AuthModeShared);
79059 + AuthParmFill(pAd, &AuthReq, pAd->MlmeAux.Bssid, Ndis802_11AuthModeOpen);
79062 + MlmeEnqueue(pAd, AUTH_STATE_MACHINE, MT2_MLME_AUTH_REQ,
79063 + sizeof(MLME_AUTH_REQ_STRUCT), &AuthReq);
79065 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_AUTH;
79070 + // 3. failed, try next BSS
79071 + pAd->MlmeAux.BssIdx++;
79072 + IterateOnBssTab(pAd);
79079 + ==========================================================================
79082 + IRQL = DISPATCH_LEVEL
79084 + ==========================================================================
79086 +VOID CntlWaitStartProc(
79087 + IN PRTMP_ADAPTER pAd,
79088 + IN MLME_QUEUE_ELEM *Elem)
79092 + if (Elem->MsgType == MT2_START_CONF)
79094 + NdisMoveMemory(&Result, Elem->Msg, sizeof(USHORT));
79095 + if (Result == MLME_SUCCESS)
79098 + // 5G bands rules of Japan:
79099 + // Ad hoc must be disabled in W53(ch52,56,60,64) channels.
79101 + if ( (pAd->CommonCfg.bIEEE80211H == 1) &&
79102 + RadarChannelCheck(pAd, pAd->CommonCfg.Channel)
79105 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
79106 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - Channel=%d, Start adhoc on W53(52,56,60,64) Channels are not accepted\n", pAd->CommonCfg.Channel));
79109 +#ifdef DOT11_N_SUPPORT
79110 + if (pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED)
79112 + N_ChannelCheck(pAd);
79113 + SetCommonHT(pAd);
79114 + NdisMoveMemory(&pAd->MlmeAux.AddHtInfo, &pAd->CommonCfg.AddHTInfo, sizeof(ADD_HT_INFO_IE));
79115 + RTMPCheckHt(pAd, BSSID_WCID, &pAd->CommonCfg.HtCapability, &pAd->CommonCfg.AddHTInfo);
79116 + pAd->StaActive.SupportedPhyInfo.bHtEnable = TRUE;
79117 + NdisZeroMemory(&pAd->StaActive.SupportedPhyInfo.MCSSet[0], 16);
79118 + NdisMoveMemory(&pAd->StaActive.SupportedPhyInfo.MCSSet[0], &pAd->CommonCfg.HtCapability.MCSSet[0], 16);
79119 + COPY_HTSETTINGS_FROM_MLME_AUX_TO_ACTIVE_CFG(pAd);
79121 + if ((pAd->CommonCfg.HtCapability.HtCapInfo.ChannelWidth == BW_40) &&
79122 + (pAd->CommonCfg.AddHTInfo.AddHtInfo.ExtChanOffset == EXTCHA_ABOVE))
79124 + pAd->MlmeAux.CentralChannel = pAd->CommonCfg.Channel + 2;
79126 + else if ((pAd->CommonCfg.HtCapability.HtCapInfo.ChannelWidth == BW_40) &&
79127 + (pAd->CommonCfg.AddHTInfo.AddHtInfo.ExtChanOffset == EXTCHA_BELOW))
79129 + pAd->MlmeAux.CentralChannel = pAd->CommonCfg.Channel - 2;
79133 +#endif // DOT11_N_SUPPORT //
79135 + pAd->StaActive.SupportedPhyInfo.bHtEnable = FALSE;
79137 + LinkUp(pAd, BSS_ADHOC);
79138 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
79139 + // Before send beacon, driver need do radar detection
79140 + if ((pAd->CommonCfg.Channel > 14 )
79141 + && (pAd->CommonCfg.bIEEE80211H == 1)
79142 + && RadarChannelCheck(pAd, pAd->CommonCfg.Channel))
79144 + pAd->CommonCfg.RadarDetect.RDMode = RD_SILENCE_MODE;
79145 + pAd->CommonCfg.RadarDetect.RDCount = 0;
79146 +#ifdef DFS_SUPPORT
79147 + BbpRadarDetectionStart(pAd);
79148 +#endif // DFS_SUPPORT //
79151 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - start a new IBSS = %02x:%02x:%02x:%02x:%02x:%02x ...\n",
79152 + pAd->CommonCfg.Bssid[0],pAd->CommonCfg.Bssid[1],pAd->CommonCfg.Bssid[2],
79153 + pAd->CommonCfg.Bssid[3],pAd->CommonCfg.Bssid[4],pAd->CommonCfg.Bssid[5]));
79157 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - Start IBSS fail. BUG!!!!!\n"));
79158 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
79164 + ==========================================================================
79167 + IRQL = DISPATCH_LEVEL
79169 + ==========================================================================
79171 +VOID CntlWaitAuthProc(
79172 + IN PRTMP_ADAPTER pAd,
79173 + IN MLME_QUEUE_ELEM *Elem)
79176 + MLME_ASSOC_REQ_STRUCT AssocReq;
79177 + MLME_AUTH_REQ_STRUCT AuthReq;
79179 + if (Elem->MsgType == MT2_AUTH_CONF)
79181 + NdisMoveMemory(&Reason, Elem->Msg, sizeof(USHORT));
79182 + if (Reason == MLME_SUCCESS)
79184 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - AUTH OK\n"));
79185 + AssocParmFill(pAd, &AssocReq, pAd->MlmeAux.Bssid, pAd->MlmeAux.CapabilityInfo,
79186 + ASSOC_TIMEOUT, pAd->StaCfg.DefaultListenCount);
79188 +#ifdef LEAP_SUPPORT
79190 + // Cisco Leap CCKM supported Re-association.
79192 + if (LEAP_CCKM_ON(pAd) && (pAd->StaCfg.CCKMLinkUpFlag == TRUE))
79194 + //if CCKM is turn on , that's mean Fast Reauthentication
79195 + //Use CCKM Reassociation instead of normal association for Fast Roaming.
79196 + MlmeEnqueue(pAd, ASSOC_STATE_MACHINE, MT2_MLME_REASSOC_REQ,
79197 + sizeof(MLME_ASSOC_REQ_STRUCT), &AssocReq);
79199 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_REASSOC;
79202 +#endif // LEAP_SUPPORT //
79204 + MlmeEnqueue(pAd, ASSOC_STATE_MACHINE, MT2_MLME_ASSOC_REQ,
79205 + sizeof(MLME_ASSOC_REQ_STRUCT), &AssocReq);
79207 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_ASSOC;
79212 + // This fail may because of the AP already keep us in its MAC table without
79213 + // ageing-out. The previous authentication attempt must have let it remove us.
79214 + // so try Authentication again may help. For D-Link DWL-900AP+ compatibility.
79215 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - AUTH FAIL, try again...\n"));
79216 +#ifdef LEAP_SUPPORT
79217 + //Add AuthMode "LEAP" for CCX 1.X
79218 + if (pAd->StaCfg.LeapAuthMode == CISCO_AuthModeLEAP)
79220 + AuthParmFill(pAd, &AuthReq, pAd->MlmeAux.Bssid, CISCO_AuthModeLEAP);
79223 +#endif // LEAP_SUPPORT //
79225 + if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeShared) ||
79226 + (pAd->StaCfg.AuthMode == Ndis802_11AuthModeAutoSwitch))
79228 + // either Ndis802_11AuthModeShared or Ndis802_11AuthModeAutoSwitch, try shared key first
79229 + AuthParmFill(pAd, &AuthReq, pAd->MlmeAux.Bssid, Ndis802_11AuthModeShared);
79233 + AuthParmFill(pAd, &AuthReq, pAd->MlmeAux.Bssid, Ndis802_11AuthModeOpen);
79236 + MlmeEnqueue(pAd, AUTH_STATE_MACHINE, MT2_MLME_AUTH_REQ,
79237 + sizeof(MLME_AUTH_REQ_STRUCT), &AuthReq);
79239 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_AUTH2;
79245 + ==========================================================================
79248 + IRQL = DISPATCH_LEVEL
79250 + ==========================================================================
79252 +VOID CntlWaitAuthProc2(
79253 + IN PRTMP_ADAPTER pAd,
79254 + IN MLME_QUEUE_ELEM *Elem)
79257 + MLME_ASSOC_REQ_STRUCT AssocReq;
79258 + MLME_AUTH_REQ_STRUCT AuthReq;
79260 + if (Elem->MsgType == MT2_AUTH_CONF)
79262 + NdisMoveMemory(&Reason, Elem->Msg, sizeof(USHORT));
79263 + if (Reason == MLME_SUCCESS)
79265 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - AUTH OK\n"));
79266 + AssocParmFill(pAd, &AssocReq, pAd->MlmeAux.Bssid, pAd->MlmeAux.CapabilityInfo,
79267 + ASSOC_TIMEOUT, pAd->StaCfg.DefaultListenCount);
79268 + MlmeEnqueue(pAd, ASSOC_STATE_MACHINE, MT2_MLME_ASSOC_REQ,
79269 + sizeof(MLME_ASSOC_REQ_STRUCT), &AssocReq);
79271 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_ASSOC;
79275 +#ifdef LEAP_SUPPORT
79276 + // Process LEAP first, since it use different control variable
79277 + // We don't want to affect other poven operation
79278 + if (pAd->StaCfg.LeapAuthMode == CISCO_AuthModeLEAP)
79280 + // LEAP Auth not success, try next BSS
79281 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - *LEAP* AUTH FAIL, give up; try next BSS\n"));
79282 + DBGPRINT(RT_DEBUG_TRACE, ("Total match BSSID [=%d]\n", pAd->MlmeAux.SsidBssTab.BssNr));
79283 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
79284 + pAd->MlmeAux.BssIdx++;
79285 + IterateOnBssTab(pAd);
79288 +#endif // LEAP_SUPPORT //
79289 + if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeAutoSwitch) &&
79290 + (pAd->MlmeAux.Alg == Ndis802_11AuthModeShared))
79292 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - AUTH FAIL, try OPEN system...\n"));
79293 + AuthParmFill(pAd, &AuthReq, pAd->MlmeAux.Bssid, Ndis802_11AuthModeOpen);
79294 + MlmeEnqueue(pAd, AUTH_STATE_MACHINE, MT2_MLME_AUTH_REQ,
79295 + sizeof(MLME_AUTH_REQ_STRUCT), &AuthReq);
79297 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_AUTH2;
79301 + // not success, try next BSS
79302 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - AUTH FAIL, give up; try next BSS\n"));
79303 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE; //???????
79304 + pAd->MlmeAux.BssIdx++;
79305 + IterateOnBssTab(pAd);
79312 + ==========================================================================
79315 + IRQL = DISPATCH_LEVEL
79317 + ==========================================================================
79319 +VOID CntlWaitAssocProc(
79320 + IN PRTMP_ADAPTER pAd,
79321 + IN MLME_QUEUE_ELEM *Elem)
79325 + if (Elem->MsgType == MT2_ASSOC_CONF)
79327 + NdisMoveMemory(&Reason, Elem->Msg, sizeof(USHORT));
79328 + if (Reason == MLME_SUCCESS)
79330 + LinkUp(pAd, BSS_INFRA);
79331 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
79332 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - Association successful on BSS #%ld\n",pAd->MlmeAux.BssIdx));
79334 + if (pAd->CommonCfg.bWirelessEvent)
79336 + RTMPSendWirelessEvent(pAd, IW_ASSOC_EVENT_FLAG, pAd->MacTab.Content[BSSID_WCID].Addr, BSS0, 0);
79341 + // not success, try next BSS
79342 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - Association fails on BSS #%ld\n",pAd->MlmeAux.BssIdx));
79343 + pAd->MlmeAux.BssIdx++;
79344 + IterateOnBssTab(pAd);
79350 + ==========================================================================
79353 + IRQL = DISPATCH_LEVEL
79355 + ==========================================================================
79357 +VOID CntlWaitReassocProc(
79358 + IN PRTMP_ADAPTER pAd,
79359 + IN MLME_QUEUE_ELEM *Elem)
79363 + if (Elem->MsgType == MT2_REASSOC_CONF)
79365 + NdisMoveMemory(&Result, Elem->Msg, sizeof(USHORT));
79366 + if (Result == MLME_SUCCESS)
79369 + // NDIS requires a new Link UP indication but no Link Down for RE-ASSOC
79371 + LinkUp(pAd, BSS_INFRA);
79373 + // send wireless event - for association
79374 + if (pAd->CommonCfg.bWirelessEvent)
79375 + RTMPSendWirelessEvent(pAd, IW_ASSOC_EVENT_FLAG, pAd->MacTab.Content[BSSID_WCID].Addr, BSS0, 0);
79378 +#ifdef LEAP_SUPPORT
79379 + if (LEAP_CCKM_ON(pAd))
79381 + STA_PORT_SECURED(pAd);
79382 + pAd->StaCfg.WpaState = SS_FINISH;
79384 +#endif // LEAP_SUPPORT //
79385 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
79386 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - Re-assocition successful on BSS #%ld\n", pAd->MlmeAux.RoamIdx));
79390 + // reassoc failed, try to pick next BSS in the BSS Table
79391 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - Re-assocition fails on BSS #%ld\n", pAd->MlmeAux.RoamIdx));
79392 + pAd->MlmeAux.RoamIdx++;
79393 + IterateOnBssTab2(pAd);
79399 +VOID AdhocTurnOnQos(
79400 + IN PRTMP_ADAPTER pAd)
79402 +#define AC0_DEF_TXOP 0
79403 +#define AC1_DEF_TXOP 0
79404 +#define AC2_DEF_TXOP 94
79405 +#define AC3_DEF_TXOP 47
79407 + // Turn on QOs if use HT rate.
79408 + if (pAd->CommonCfg.APEdcaParm.bValid == FALSE)
79410 + pAd->CommonCfg.APEdcaParm.bValid = TRUE;
79411 + pAd->CommonCfg.APEdcaParm.Aifsn[0] = 3;
79412 + pAd->CommonCfg.APEdcaParm.Aifsn[1] = 7;
79413 + pAd->CommonCfg.APEdcaParm.Aifsn[2] = 1;
79414 + pAd->CommonCfg.APEdcaParm.Aifsn[3] = 1;
79416 + pAd->CommonCfg.APEdcaParm.Cwmin[0] = 4;
79417 + pAd->CommonCfg.APEdcaParm.Cwmin[1] = 4;
79418 + pAd->CommonCfg.APEdcaParm.Cwmin[2] = 3;
79419 + pAd->CommonCfg.APEdcaParm.Cwmin[3] = 2;
79421 + pAd->CommonCfg.APEdcaParm.Cwmax[0] = 10;
79422 + pAd->CommonCfg.APEdcaParm.Cwmax[1] = 6;
79423 + pAd->CommonCfg.APEdcaParm.Cwmax[2] = 4;
79424 + pAd->CommonCfg.APEdcaParm.Cwmax[3] = 3;
79426 + pAd->CommonCfg.APEdcaParm.Txop[0] = 0;
79427 + pAd->CommonCfg.APEdcaParm.Txop[1] = 0;
79428 + pAd->CommonCfg.APEdcaParm.Txop[2] = AC2_DEF_TXOP;
79429 + pAd->CommonCfg.APEdcaParm.Txop[3] = AC3_DEF_TXOP;
79431 + AsicSetEdcaParm(pAd, &pAd->CommonCfg.APEdcaParm);
79435 + ==========================================================================
79438 + IRQL = DISPATCH_LEVEL
79440 + ==========================================================================
79443 + IN PRTMP_ADAPTER pAd,
79444 + IN UCHAR BssType)
79448 + BOOLEAN Cancelled;
79449 + UCHAR Value = 0, idx;
79450 + MAC_TABLE_ENTRY *pEntry = NULL, *pCurrEntry;
79452 + pEntry = &pAd->MacTab.Content[BSSID_WCID];
79455 + // ASSOC - DisassocTimeoutAction
79456 + // CNTL - Dis-associate successful
79457 + // !!! LINK DOWN !!!
79458 + // [88888] OID_802_11_SSID should have returned NDTEST_WEP_AP2(Returned: )
79460 + // To prevent DisassocTimeoutAction to call Link down after we link up,
79461 + // cancel the DisassocTimer no matter what it start or not.
79463 + RTMPCancelTimer(&pAd->MlmeAux.DisassocTimer, &Cancelled);
79465 + COPY_SETTINGS_FROM_MLME_AUX_TO_ACTIVE_CFG(pAd);
79467 +#ifdef DOT11_N_SUPPORT
79468 + COPY_HTSETTINGS_FROM_MLME_AUX_TO_ACTIVE_CFG(pAd);
79469 +#endif // DOT11_N_SUPPORT //
79470 + // It's quite difficult to tell if a newly added KEY is WEP or CKIP until a new BSS
79471 + // is formed (either ASSOC/RE-ASSOC done or IBSS started. LinkUP should be a safe place
79472 + // to examine if cipher algorithm switching is required.
79473 + //rt2860b. Don't know why need this
79474 + SwitchBetweenWepAndCkip(pAd);
79477 + if (BssType == BSS_ADHOC)
79479 + OPSTATUS_SET_FLAG(pAd, fOP_STATUS_ADHOC_ON);
79480 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_INFRA_ON);
79482 +#ifdef DOT11_N_SUPPORT
79483 + if ((pAd->CommonCfg.HtCapability.HtCapInfo.ChannelWidth == BW_40) &&
79484 + (pAd->CommonCfg.AddHTInfo.AddHtInfo.ExtChanOffset == EXTCHA_ABOVE))
79486 + pAd->CommonCfg.CentralChannel = pAd->CommonCfg.Channel + 2;
79488 + else if ((pAd->CommonCfg.Channel > 2) &&
79489 + (pAd->CommonCfg.HtCapability.HtCapInfo.ChannelWidth == BW_40) &&
79490 + (pAd->CommonCfg.AddHTInfo.AddHtInfo.ExtChanOffset == EXTCHA_BELOW))
79492 + pAd->CommonCfg.CentralChannel = pAd->CommonCfg.Channel - 2;
79494 +#endif // DOT11_N_SUPPORT //
79496 +#ifdef CARRIER_DETECTION_SUPPORT // Roger sync Carrier
79497 + // No carrier detection when adhoc
79498 + // CarrierDetectionStop(pAd);
79499 + pAd->CommonCfg.CarrierDetect.CD_State = CD_NORMAL;
79500 +#endif // CARRIER_DETECTION_SUPPORT //
79502 +#ifdef DOT11_N_SUPPORT
79503 + if (pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED)
79504 + AdhocTurnOnQos(pAd);
79505 +#endif // DOT11_N_SUPPORT //
79507 + DBGPRINT(RT_DEBUG_TRACE, ("!!!Adhoc LINK UP !!! \n" ));
79511 + OPSTATUS_SET_FLAG(pAd, fOP_STATUS_INFRA_ON);
79512 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_ADHOC_ON);
79514 + DBGPRINT(RT_DEBUG_TRACE, ("!!!Infra LINK UP !!! \n" ));
79518 + // reset Tx beamforming bit
79519 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &Value);
79520 + Value &= (~0x01);
79521 + Value |= pAd->CommonCfg.RegTransmitSetting.field.TxBF;
79522 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, Value);
79524 +#ifdef DOT11_N_SUPPORT
79525 + // Change to AP channel
79526 + if ((pAd->CommonCfg.CentralChannel > pAd->CommonCfg.Channel) && (pAd->MlmeAux.HtCapability.HtCapInfo.ChannelWidth == BW_40))
79528 + // Must using 40MHz.
79529 + pAd->CommonCfg.BBPCurrentBW = BW_40;
79530 + AsicSwitchChannel(pAd, pAd->CommonCfg.CentralChannel, FALSE);
79531 + AsicLockChannel(pAd, pAd->CommonCfg.CentralChannel);
79533 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &Value);
79534 + Value &= (~0x18);
79536 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, Value);
79538 + // RX : control channel at lower
79539 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &Value);
79540 + Value &= (~0x20);
79541 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, Value);
79543 + RTMP_IO_READ32(pAd, TX_BAND_CFG, &Data);
79544 + Data &= 0xfffffffe;
79545 + RTMP_IO_WRITE32(pAd, TX_BAND_CFG, Data);
79547 + if (pAd->MACVersion == 0x28600100)
79549 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R69, 0x1A);
79550 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R70, 0x0A);
79551 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R73, 0x16);
79552 + DBGPRINT(RT_DEBUG_TRACE, ("!!!rt2860C !!! \n" ));
79555 + DBGPRINT(RT_DEBUG_TRACE, ("!!!40MHz Lower LINK UP !!! Control Channel at Below. Central = %d \n", pAd->CommonCfg.CentralChannel ));
79557 + else if ((pAd->CommonCfg.CentralChannel < pAd->CommonCfg.Channel) && (pAd->MlmeAux.HtCapability.HtCapInfo.ChannelWidth == BW_40))
79559 + // Must using 40MHz.
79560 + pAd->CommonCfg.BBPCurrentBW = BW_40;
79561 + AsicSwitchChannel(pAd, pAd->CommonCfg.CentralChannel, FALSE);
79562 + AsicLockChannel(pAd, pAd->CommonCfg.CentralChannel);
79564 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &Value);
79565 + Value &= (~0x18);
79567 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, Value);
79569 + RTMP_IO_READ32(pAd, TX_BAND_CFG, &Data);
79571 + RTMP_IO_WRITE32(pAd, TX_BAND_CFG, Data);
79573 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &Value);
79575 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, Value);
79577 + if (pAd->MACVersion == 0x28600100)
79579 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R69, 0x1A);
79580 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R70, 0x0A);
79581 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R73, 0x16);
79582 + DBGPRINT(RT_DEBUG_TRACE, ("!!!rt2860C !!! \n" ));
79585 + DBGPRINT(RT_DEBUG_TRACE, ("!!! 40MHz Upper LINK UP !!! Control Channel at UpperCentral = %d \n", pAd->CommonCfg.CentralChannel ));
79588 +#endif // DOT11_N_SUPPORT //
79590 + pAd->CommonCfg.BBPCurrentBW = BW_20;
79591 + pAd->CommonCfg.CentralChannel = pAd->CommonCfg.Channel;
79592 + AsicSwitchChannel(pAd, pAd->CommonCfg.Channel, FALSE);
79593 + AsicLockChannel(pAd, pAd->CommonCfg.Channel);
79595 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &Value);
79596 + Value &= (~0x18);
79597 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, Value);
79599 + RTMP_IO_READ32(pAd, TX_BAND_CFG, &Data);
79600 + Data &= 0xfffffffe;
79601 + RTMP_IO_WRITE32(pAd, TX_BAND_CFG, Data);
79603 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &Value);
79604 + Value &= (~0x20);
79605 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, Value);
79607 + if (pAd->MACVersion == 0x28600100)
79609 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R69, 0x16);
79610 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R70, 0x08);
79611 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R73, 0x11);
79612 + DBGPRINT(RT_DEBUG_TRACE, ("!!!rt2860C !!! \n" ));
79615 + DBGPRINT(RT_DEBUG_TRACE, ("!!! 20MHz LINK UP !!! \n" ));
79618 + RTMPSetAGCInitValue(pAd, pAd->CommonCfg.BBPCurrentBW);
79620 + // Save BBP_R66 value, it will be used in RTUSBResumeMsduTransmission
79622 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R66, &pAd->BbpTuning.R66CurrentValue);
79624 + DBGPRINT(RT_DEBUG_TRACE, ("!!! LINK UP !!! (BssType=%d, AID=%d, ssid=%s, Channel=%d, CentralChannel = %d)\n",
79625 + BssType, pAd->StaActive.Aid, pAd->CommonCfg.Ssid, pAd->CommonCfg.Channel, pAd->CommonCfg.CentralChannel));
79627 +#ifdef DOT11_N_SUPPORT
79628 + DBGPRINT(RT_DEBUG_TRACE, ("!!! LINK UP !!! (Density =%d, )\n", pAd->MacTab.Content[BSSID_WCID].MpduDensity));
79629 +#endif // DOT11_N_SUPPORT //
79631 + AsicSetBssid(pAd, pAd->CommonCfg.Bssid);
79633 + AsicSetSlotTime(pAd, TRUE);
79634 + AsicSetEdcaParm(pAd, &pAd->CommonCfg.APEdcaParm);
79636 + // Call this for RTS protectionfor legacy rate, we will always enable RTS threshold, but normally it will not hit
79637 + AsicUpdateProtect(pAd, 0, (OFDMSETPROTECT | CCKSETPROTECT), TRUE, FALSE);
79639 +#ifdef DOT11_N_SUPPORT
79640 + if ((pAd->StaActive.SupportedPhyInfo.bHtEnable == TRUE))
79642 + // Update HT protectionfor based on AP's operating mode.
79643 + if (pAd->MlmeAux.AddHtInfo.AddHtInfo2.NonGfPresent == 1)
79645 + AsicUpdateProtect(pAd, pAd->MlmeAux.AddHtInfo.AddHtInfo2.OperaionMode, ALLN_SETPROTECT, FALSE, TRUE);
79648 + AsicUpdateProtect(pAd, pAd->MlmeAux.AddHtInfo.AddHtInfo2.OperaionMode, ALLN_SETPROTECT, FALSE, FALSE);
79650 +#endif // DOT11_N_SUPPORT //
79652 + NdisZeroMemory(&pAd->DrsCounters, sizeof(COUNTER_DRS));
79654 + NdisGetSystemUpTime(&Now);
79655 + pAd->StaCfg.LastBeaconRxTime = Now; // last RX timestamp
79657 + if ((pAd->CommonCfg.TxPreamble != Rt802_11PreambleLong) &&
79658 + CAP_IS_SHORT_PREAMBLE_ON(pAd->StaActive.CapabilityInfo))
79660 + MlmeSetTxPreamble(pAd, Rt802_11PreambleShort);
79663 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_AGGREGATION_INUSED);
79665 + if (pAd->CommonCfg.RadarDetect.RDMode == RD_SILENCE_MODE)
79667 +#ifdef DFS_SUPPORT
79668 + RadarDetectionStop(pAd);
79669 +#endif // DFS_SUPPORT //
79671 + pAd->CommonCfg.RadarDetect.RDMode = RD_NORMAL_MODE;
79673 + if (BssType == BSS_ADHOC)
79675 + MakeIbssBeacon(pAd);
79676 + if ((pAd->CommonCfg.Channel > 14)
79677 + && (pAd->CommonCfg.bIEEE80211H == 1)
79678 + && RadarChannelCheck(pAd, pAd->CommonCfg.Channel))
79684 + AsicEnableIbssSync(pAd);
79687 + // In ad hoc mode, use MAC table from index 1.
79688 + // p.s ASIC use all 0xff as termination of WCID table search.To prevent it's 0xff-ff-ff-ff-ff-ff, Write 0 here.
79689 + RTMP_IO_WRITE32(pAd, MAC_WCID_BASE, 0x00);
79690 + RTMP_IO_WRITE32(pAd, 0x1808, 0x00);
79692 + // If WEP is enabled, add key material and cipherAlg into Asic
79693 + // Fill in Shared Key Table(offset: 0x6c00) and Shared Key Mode(offset: 0x7000)
79695 + if (pAd->StaCfg.WepStatus == Ndis802_11WEPEnabled)
79700 + for (idx=0; idx < SHARE_KEY_NUM; idx++)
79702 + CipherAlg = pAd->SharedKey[BSS0][idx].CipherAlg;
79703 + Key = pAd->SharedKey[BSS0][idx].Key;
79705 + if (pAd->SharedKey[BSS0][idx].KeyLen > 0)
79707 + // Set key material and cipherAlg to Asic
79708 + AsicAddSharedKeyEntry(pAd, BSS0, idx, CipherAlg, Key, NULL, NULL);
79710 + if (idx == pAd->StaCfg.DefaultKeyId)
79712 + // Update WCID attribute table and IVEIV table for this group key table
79713 + RTMPAddWcidAttributeEntry(pAd, BSS0, idx, CipherAlg, NULL);
79720 + // If WPANone is enabled, add key material and cipherAlg into Asic
79721 + // Fill in Shared Key Table(offset: 0x6c00) and Shared Key Mode(offset: 0x7000)
79722 + else if (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPANone)
79724 + pAd->StaCfg.DefaultKeyId = 0; // always be zero
79726 + NdisZeroMemory(&pAd->SharedKey[BSS0][0], sizeof(CIPHER_KEY));
79727 + pAd->SharedKey[BSS0][0].KeyLen = LEN_TKIP_EK;
79728 + NdisMoveMemory(pAd->SharedKey[BSS0][0].Key, pAd->StaCfg.PMK, LEN_TKIP_EK);
79730 + if (pAd->StaCfg.PairCipher == Ndis802_11Encryption2Enabled)
79732 + NdisMoveMemory(pAd->SharedKey[BSS0][0].RxMic, &pAd->StaCfg.PMK[16], LEN_TKIP_RXMICK);
79733 + NdisMoveMemory(pAd->SharedKey[BSS0][0].TxMic, &pAd->StaCfg.PMK[16], LEN_TKIP_TXMICK);
79736 + // Decide its ChiperAlg
79737 + if (pAd->StaCfg.PairCipher == Ndis802_11Encryption2Enabled)
79738 + pAd->SharedKey[BSS0][0].CipherAlg = CIPHER_TKIP;
79739 + else if (pAd->StaCfg.PairCipher == Ndis802_11Encryption3Enabled)
79740 + pAd->SharedKey[BSS0][0].CipherAlg = CIPHER_AES;
79743 + DBGPRINT(RT_DEBUG_TRACE, ("Unknow Cipher (=%d), set Cipher to AES\n", pAd->StaCfg.PairCipher));
79744 + pAd->SharedKey[BSS0][0].CipherAlg = CIPHER_AES;
79747 + // Set key material and cipherAlg to Asic
79748 + AsicAddSharedKeyEntry(pAd,
79751 + pAd->SharedKey[BSS0][0].CipherAlg,
79752 + pAd->SharedKey[BSS0][0].Key,
79753 + pAd->SharedKey[BSS0][0].TxMic,
79754 + pAd->SharedKey[BSS0][0].RxMic);
79756 + // Update WCID attribute table and IVEIV table for this group key table
79757 + RTMPAddWcidAttributeEntry(pAd, BSS0, 0, pAd->SharedKey[BSS0][0].CipherAlg, NULL);
79762 + else // BSS_INFRA
79764 + // Check the new SSID with last SSID
79765 + while (Cancelled == TRUE)
79767 + if (pAd->CommonCfg.LastSsidLen == pAd->CommonCfg.SsidLen)
79769 + if (RTMPCompareMemory(pAd->CommonCfg.LastSsid, pAd->CommonCfg.Ssid, pAd->CommonCfg.LastSsidLen) == 0)
79771 + // Link to the old one no linkdown is required.
79775 + // Send link down event before set to link up
79776 + pAd->IndicateMediaState = NdisMediaStateDisconnected;
79777 + RTMP_IndicateMediaState(pAd);
79778 + pAd->ExtraInfo = GENERAL_LINK_DOWN;
79779 + DBGPRINT(RT_DEBUG_TRACE, ("NDIS_STATUS_MEDIA_DISCONNECT Event AA!\n"));
79784 + // On WPA mode, Remove All Keys if not connect to the last BSSID
79785 + // Key will be set after 4-way handshake.
79787 + if ((pAd->StaCfg.AuthMode >= Ndis802_11AuthModeWPA))
79791 + // Remove all WPA keys
79792 + RTMPWPARemoveAllKeys(pAd);
79793 + pAd->StaCfg.PortSecured = WPA_802_1X_PORT_NOT_SECURED;
79794 + pAd->StaCfg.PrivacyFilter = Ndis802_11PrivFilter8021xWEP;
79796 + // Fixed connection failed with Range Maximizer - 515 AP (Marvell Chip) when security is WPAPSK/TKIP
79797 + // If IV related values are too large in GroupMsg2, AP would ignore this message.
79799 + IV |= (pAd->StaCfg.DefaultKeyId << 30);
79800 + AsicUpdateWCIDIVEIV(pAd, BSSID_WCID, IV, 0);
79803 + // the decision of using "short slot time" or not may change dynamically due to
79804 + // new STA association to the AP. so we have to decide that upon parsing BEACON, not here
79807 + // the decision to use "RTC/CTS" or "CTS-to-self" protection or not may change dynamically
79808 + // due to new STA association to the AP. so we have to decide that upon parsing BEACON, not here
79810 + ComposePsPoll(pAd);
79811 + ComposeNullFrame(pAd);
79813 + AsicEnableBssSync(pAd);
79815 + // Add BSSID to WCID search table
79816 + AsicUpdateRxWCIDTable(pAd, BSSID_WCID, pAd->CommonCfg.Bssid);
79818 + NdisAcquireSpinLock(&pAd->MacTabLock);
79819 + // add this BSSID entry into HASH table
79823 + //pEntry = &pAd->MacTab.Content[BSSID_WCID];
79824 + HashIdx = MAC_ADDR_HASH_INDEX(pAd->CommonCfg.Bssid);
79825 + if (pAd->MacTab.Hash[HashIdx] == NULL)
79827 + pAd->MacTab.Hash[HashIdx] = pEntry;
79831 + pCurrEntry = pAd->MacTab.Hash[HashIdx];
79832 + while (pCurrEntry->pNext != NULL)
79833 + pCurrEntry = pCurrEntry->pNext;
79834 + pCurrEntry->pNext = pEntry;
79837 + NdisReleaseSpinLock(&pAd->MacTabLock);
79840 + // If WEP is enabled, add paiewise and shared key
79841 +#ifdef WPA_SUPPLICANT_SUPPORT
79842 + if (((pAd->StaCfg.WpaSupplicantUP)&&
79843 + (pAd->StaCfg.WepStatus == Ndis802_11WEPEnabled)&&
79844 + (pAd->StaCfg.PortSecured == WPA_802_1X_PORT_SECURED)) ||
79845 + ((pAd->StaCfg.WpaSupplicantUP == WPA_SUPPLICANT_DISABLE)&&
79846 + (pAd->StaCfg.WepStatus == Ndis802_11WEPEnabled)))
79848 + if (pAd->StaCfg.WepStatus == Ndis802_11WEPEnabled)
79849 +#endif // WPA_SUPPLICANT_SUPPORT //
79854 + for (idx=0; idx < SHARE_KEY_NUM; idx++)
79856 + CipherAlg = pAd->SharedKey[BSS0][idx].CipherAlg;
79857 + Key = pAd->SharedKey[BSS0][idx].Key;
79859 + if (pAd->SharedKey[BSS0][idx].KeyLen > 0)
79861 + // Set key material and cipherAlg to Asic
79862 + AsicAddSharedKeyEntry(pAd, BSS0, idx, CipherAlg, Key, NULL, NULL);
79864 + if (idx == pAd->StaCfg.DefaultKeyId)
79866 + // Assign group key info
79867 + RTMPAddWcidAttributeEntry(pAd, BSS0, idx, CipherAlg, NULL);
79869 + // Assign pairwise key info
79870 + RTMPAddWcidAttributeEntry(pAd, BSS0, idx, CipherAlg, pEntry);
79876 + // only INFRASTRUCTURE mode need to indicate connectivity immediately; ADHOC mode
79877 + // should wait until at least 2 active nodes in this BSSID.
79878 + OPSTATUS_SET_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED);
79881 + if (pAd->StaCfg.AuthMode < Ndis802_11AuthModeWPA)
79883 + pAd->IndicateMediaState = NdisMediaStateConnected;
79884 + pAd->ExtraInfo = GENERAL_LINK_UP;
79885 + RTMP_IndicateMediaState(pAd);
79889 + // Add BSSID in my MAC Table.
79890 + NdisAcquireSpinLock(&pAd->MacTabLock);
79891 + RTMPMoveMemory(pAd->MacTab.Content[BSSID_WCID].Addr, pAd->CommonCfg.Bssid, MAC_ADDR_LEN);
79892 + pAd->MacTab.Content[BSSID_WCID].Aid = BSSID_WCID;
79893 + pAd->MacTab.Content[BSSID_WCID].pAd = pAd;
79894 + pAd->MacTab.Content[BSSID_WCID].ValidAsCLI = TRUE; //Although this is bssid..still set ValidAsCl
79895 + pAd->MacTab.Size = 1; // infra mode always set MACtab size =1.
79896 + pAd->MacTab.Content[BSSID_WCID].Sst = SST_ASSOC;
79897 + pAd->MacTab.Content[BSSID_WCID].AuthState = SST_ASSOC;
79898 + pAd->MacTab.Content[BSSID_WCID].AuthMode = pAd->StaCfg.AuthMode;
79899 + pAd->MacTab.Content[BSSID_WCID].WepStatus = pAd->StaCfg.WepStatus;
79900 + NdisReleaseSpinLock(&pAd->MacTabLock);
79902 + DBGPRINT(RT_DEBUG_TRACE, ("!!! LINK UP !!! ClientStatusFlags=%lx)\n",
79903 + pAd->MacTab.Content[BSSID_WCID].ClientStatusFlags));
79905 + MlmeUpdateTxRates(pAd, TRUE, BSS0);
79906 +#ifdef DOT11_N_SUPPORT
79907 + MlmeUpdateHtTxRates(pAd, BSS0);
79908 + DBGPRINT(RT_DEBUG_TRACE, ("!!! LINK UP !! (StaActive.bHtEnable =%d, )\n", pAd->StaActive.SupportedPhyInfo.bHtEnable));
79909 +#endif // DOT11_N_SUPPORT //
79912 + // Report Adjacent AP report.
79914 +#ifdef LEAP_SUPPORT
79915 + CCXAdjacentAPReport(pAd);
79916 +#endif // LEAP_SUPPORT //
79918 + if (pAd->CommonCfg.bAggregationCapable)
79920 + if ((pAd->CommonCfg.bPiggyBackCapable) && (pAd->MlmeAux.APRalinkIe & 0x00000003) == 3)
79923 + OPSTATUS_SET_FLAG(pAd, fOP_STATUS_PIGGYBACK_INUSED);
79924 + OPSTATUS_SET_FLAG(pAd, fOP_STATUS_AGGREGATION_INUSED);
79925 + RTMPSetPiggyBack(pAd, TRUE);
79926 + DBGPRINT(RT_DEBUG_TRACE, ("Turn on Piggy-Back\n"));
79928 + else if (pAd->MlmeAux.APRalinkIe & 0x00000001)
79930 + OPSTATUS_SET_FLAG(pAd, fOP_STATUS_AGGREGATION_INUSED);
79934 + if (pAd->MlmeAux.APRalinkIe != 0x0)
79936 +#ifdef DOT11_N_SUPPORT
79937 + if (CLIENT_STATUS_TEST_FLAG(&pAd->MacTab.Content[BSSID_WCID], fCLIENT_STATUS_RDG_CAPABLE))
79939 + AsicEnableRDG(pAd);
79941 +#endif // DOT11_N_SUPPORT //
79942 + OPSTATUS_SET_FLAG(pAd, fCLIENT_STATUS_RALINK_CHIPSET);
79943 + CLIENT_STATUS_SET_FLAG(&pAd->MacTab.Content[BSSID_WCID], fCLIENT_STATUS_RALINK_CHIPSET);
79947 + OPSTATUS_CLEAR_FLAG(pAd, fCLIENT_STATUS_RALINK_CHIPSET);
79948 + CLIENT_STATUS_CLEAR_FLAG(&pAd->MacTab.Content[BSSID_WCID], fCLIENT_STATUS_RALINK_CHIPSET);
79952 +#ifdef DOT11_N_SUPPORT
79953 + DBGPRINT(RT_DEBUG_TRACE, ("NDIS_STATUS_MEDIA_CONNECT Event B!.BACapability = %x. ClientStatusFlags = %lx\n", pAd->CommonCfg.BACapability.word, pAd->MacTab.Content[BSSID_WCID].ClientStatusFlags));
79954 +#endif // DOT11_N_SUPPORT //
79957 + RTMPSetLED(pAd, LED_LINK_UP);
79959 + pAd->Mlme.PeriodicRound = 0;
79960 + pAd->Mlme.OneSecPeriodicRound = 0;
79961 + pAd->bConfigChanged = FALSE; // Reset config flag
79962 + pAd->ExtraInfo = GENERAL_LINK_UP; // Update extra information to link is up
79964 + // Set asic auto fall back
79967 + UCHAR TableSize = 0;
79969 + MlmeSelectTxRateTable(pAd, &pAd->MacTab.Content[BSSID_WCID], &pTable, &TableSize, &pAd->CommonCfg.TxRateIndex);
79970 + AsicUpdateAutoFallBackTable(pAd, pTable);
79973 + NdisAcquireSpinLock(&pAd->MacTabLock);
79974 + pEntry->HTPhyMode.word = pAd->StaCfg.HTPhyMode.word;
79975 + pEntry->MaxHTPhyMode.word = pAd->StaCfg.HTPhyMode.word;
79976 + if (pAd->StaCfg.bAutoTxRateSwitch == FALSE)
79978 + pEntry->bAutoTxRateSwitch = FALSE;
79979 +#ifdef DOT11_N_SUPPORT
79980 + if (pEntry->HTPhyMode.field.MCS == 32)
79981 + pEntry->HTPhyMode.field.ShortGI = GI_800;
79983 + if ((pEntry->HTPhyMode.field.MCS > MCS_7) || (pEntry->HTPhyMode.field.MCS == 32))
79984 + pEntry->HTPhyMode.field.STBC = STBC_NONE;
79985 +#endif // DOT11_N_SUPPORT //
79986 + // If the legacy mode is set, overwrite the transmit setting of this entry.
79987 + if (pEntry->HTPhyMode.field.MODE <= MODE_OFDM)
79988 + RTMPUpdateLegacyTxSetting((UCHAR)pAd->StaCfg.DesiredTransmitSetting.field.FixedTxMode, pEntry);
79991 + pEntry->bAutoTxRateSwitch = TRUE;
79992 + NdisReleaseSpinLock(&pAd->MacTabLock);
79994 + // Let Link Status Page display first initial rate.
79995 + pAd->LastTxRate = (USHORT)(pEntry->HTPhyMode.word);
79996 + // Select DAC according to HT or Legacy
79997 + if (pAd->StaActive.SupportedPhyInfo.MCSSet[0] != 0x00)
79999 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R1, &Value);
80000 + Value &= (~0x18);
80001 + if (pAd->Antenna.field.TxPath == 2)
80005 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R1, Value);
80009 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R1, &Value);
80010 + Value &= (~0x18);
80011 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R1, Value);
80014 +#ifdef DOT11_N_SUPPORT
80015 + if (pAd->StaActive.SupportedPhyInfo.bHtEnable == FALSE)
80018 + else if (pEntry->MaxRAmpduFactor == 0)
80020 + // If HT AP doesn't support MaxRAmpduFactor = 1, we need to set max PSDU to 0.
80021 + // Because our Init value is 1 at MACRegTable.
80022 + RTMP_IO_WRITE32(pAd, MAX_LEN_CFG, 0x0fff);
80024 +#endif // DOT11_N_SUPPORT //
80026 + // Patch for Marvel AP to gain high throughput
80027 + // Need to set as following,
80028 + // 1. Set txop in register-EDCA_AC0_CFG as 0x60
80029 + // 2. Set EnTXWriteBackDDONE in register-WPDMA_GLO_CFG as zero
80030 + // 3. PBF_MAX_PCNT as 0x1F3FBF9F
80031 + // 4. kick per two packets when dequeue
80033 + // Txop can only be modified when RDG is off, WMM is disable and TxBurst is enable
80035 + // if 1. Legacy AP WMM on, or 2. 11n AP, AMPDU disable. Force turn off burst no matter what bEnableTxBurst is.
80036 +#ifdef DOT11_N_SUPPORT
80037 +// if ((!IS_RT30xx(pAd)) &&
80038 + if (!((pAd->CommonCfg.RxStream == 1)&&(pAd->CommonCfg.TxStream == 1)) &&
80039 + (((pAd->StaActive.SupportedPhyInfo.bHtEnable == FALSE) && OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_WMM_INUSED))
80040 + || ((pAd->StaActive.SupportedPhyInfo.bHtEnable == TRUE) && (pAd->CommonCfg.BACapability.field.Policy == BA_NOTUSE))))
80042 + RTMP_IO_READ32(pAd, EDCA_AC0_CFG, &Data);
80043 + Data &= 0xFFFFFF00;
80044 + RTMP_IO_WRITE32(pAd, EDCA_AC0_CFG, Data);
80046 + RTMP_IO_WRITE32(pAd, PBF_MAX_PCNT, 0x1F3F7F9F);
80047 + DBGPRINT(RT_DEBUG_TRACE, ("Txburst 1\n"));
80050 +#endif // DOT11_N_SUPPORT //
80051 + if (pAd->CommonCfg.bEnableTxBurst)
80053 + RTMP_IO_READ32(pAd, EDCA_AC0_CFG, &Data);
80054 + Data &= 0xFFFFFF00;
80056 + RTMP_IO_WRITE32(pAd, EDCA_AC0_CFG, Data);
80057 + pAd->CommonCfg.IOTestParm.bNowAtherosBurstOn = TRUE;
80059 + RTMP_IO_WRITE32(pAd, PBF_MAX_PCNT, 0x1F3FBF9F);
80060 + DBGPRINT(RT_DEBUG_TRACE, ("Txburst 2\n"));
80064 + RTMP_IO_READ32(pAd, EDCA_AC0_CFG, &Data);
80065 + Data &= 0xFFFFFF00;
80066 + RTMP_IO_WRITE32(pAd, EDCA_AC0_CFG, Data);
80068 + RTMP_IO_WRITE32(pAd, PBF_MAX_PCNT, 0x1F3F7F9F);
80069 + DBGPRINT(RT_DEBUG_TRACE, ("Txburst 3\n"));
80072 +#ifdef DOT11_N_SUPPORT
80073 + // Re-check to turn on TX burst or not.
80074 + if ((pAd->CommonCfg.IOTestParm.bLastAtheros == TRUE) && ((STA_WEP_ON(pAd))||(STA_TKIP_ON(pAd))))
80076 + pAd->CommonCfg.IOTestParm.bNextDisableRxBA = TRUE;
80077 + if (pAd->CommonCfg.bEnableTxBurst)
80079 + UINT32 MACValue = 0;
80080 + // Force disable TXOP value in this case. The same action in MLMEUpdateProtect too.
80081 + // I didn't change PBF_MAX_PCNT setting.
80082 + RTMP_IO_READ32(pAd, EDCA_AC0_CFG, &MACValue);
80083 + MACValue &= 0xFFFFFF00;
80084 + RTMP_IO_WRITE32(pAd, EDCA_AC0_CFG, MACValue);
80085 + pAd->CommonCfg.IOTestParm.bNowAtherosBurstOn = FALSE;
80090 + pAd->CommonCfg.IOTestParm.bNextDisableRxBA = FALSE;
80092 +#endif // DOT11_N_SUPPORT //
80094 + pAd->CommonCfg.IOTestParm.bLastAtheros = FALSE;
80095 + COPY_MAC_ADDR(pAd->CommonCfg.LastBssid, pAd->CommonCfg.Bssid);
80096 + DBGPRINT(RT_DEBUG_TRACE, ("!!!pAd->bNextDisableRxBA= %d \n", pAd->CommonCfg.IOTestParm.bNextDisableRxBA));
80097 + // BSSID add in one MAC entry too. Because in Tx, ASIC need to check Cipher and IV/EIV, BAbitmap
80098 + // Pther information in MACTab.Content[BSSID_WCID] is not necessary for driver.
80099 + // Note: As STA, The MACTab.Content[BSSID_WCID]. PairwiseKey and Shared Key for BSS0 are the same.
80101 + if (pAd->StaCfg.WepStatus <= Ndis802_11WEPDisabled)
80103 + pAd->StaCfg.PortSecured = WPA_802_1X_PORT_SECURED;
80104 + pAd->StaCfg.PrivacyFilter = Ndis802_11PrivFilterAcceptAll;
80107 + NdisAcquireSpinLock(&pAd->MacTabLock);
80108 + pEntry->PortSecured = pAd->StaCfg.PortSecured;
80109 + NdisReleaseSpinLock(&pAd->MacTabLock);
80112 + // Patch Atheros AP TX will breakdown issue.
80113 + // AP Model: DLink DWL-8200AP
80115 + if (INFRA_ON(pAd) && OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_WMM_INUSED) && STA_TKIP_ON(pAd))
80117 + RTMP_IO_WRITE32(pAd, RX_PARSER_CFG, 0x01);
80121 + RTMP_IO_WRITE32(pAd, RX_PARSER_CFG, 0x00);
80124 + RTMP_CLEAR_FLAG(pAd, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS);
80126 +#ifdef DOT11_N_SUPPORT
80127 +#ifdef DOT11N_DRAFT3
80128 + if ((pAd->CommonCfg.BACapability.field.b2040CoexistScanSup) && (pAd->CommonCfg.Channel <= 11))
80130 + OPSTATUS_SET_FLAG(pAd, fOP_STATUS_SCAN_2040);
80131 + BuildEffectedChannelList(pAd);
80133 +#endif // DOT11N_DRAFT3 //
80134 +#endif // DOT11_N_SUPPORT //
80138 + ==========================================================================
80140 + Routine Description:
80141 + Disconnect current BSSID
80144 + pAd - Pointer to our adapter
80145 + IsReqFromAP - Request from AP
80150 + IRQL = DISPATCH_LEVEL
80153 + We need more information to know it's this requst from AP.
80154 + If yes! we need to do extra handling, for example, remove the WPA key.
80155 + Otherwise on 4-way handshaking will faied, since the WPA key didn't be
80156 + remove while auto reconnect.
80157 + Disconnect request from AP, it means we will start afresh 4-way handshaking
80160 + ==========================================================================
80163 + IN PRTMP_ADAPTER pAd,
80164 + IN BOOLEAN IsReqFromAP)
80166 + UCHAR i, ByteValue = 0;
80168 + // Do nothing if monitor mode is on
80169 + if (MONITOR_ON(pAd))
80173 + // Nothing to do in ATE mode.
80176 +#endif // RALINK_ATE //
80178 + if (pAd->CommonCfg.bWirelessEvent)
80180 + RTMPSendWirelessEvent(pAd, IW_STA_LINKDOWN_EVENT_FLAG, pAd->MacTab.Content[BSSID_WCID].Addr, BSS0, 0);
80183 + DBGPRINT(RT_DEBUG_TRACE, ("!!! LINK DOWN !!!\n"));
80184 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_AGGREGATION_INUSED);
80186 + if (ADHOC_ON(pAd)) // Adhoc mode link down
80188 + DBGPRINT(RT_DEBUG_TRACE, ("!!! LINK DOWN 1!!!\n"));
80190 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_ADHOC_ON);
80191 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED);
80192 + pAd->IndicateMediaState = NdisMediaStateDisconnected;
80193 + RTMP_IndicateMediaState(pAd);
80194 + pAd->ExtraInfo = GENERAL_LINK_DOWN;
80195 + BssTableDeleteEntry(&pAd->ScanTab, pAd->CommonCfg.Bssid, pAd->CommonCfg.Channel);
80196 + DBGPRINT(RT_DEBUG_TRACE, ("!!! MacTab.Size=%d !!!\n", pAd->MacTab.Size));
80198 + else // Infra structure mode
80200 + DBGPRINT(RT_DEBUG_TRACE, ("!!! LINK DOWN 2!!!\n"));
80202 +#ifdef QOS_DLS_SUPPORT
80203 + // DLS tear down frame must be sent before link down
80204 + // send DLS-TEAR_DOWN message
80205 + if (pAd->CommonCfg.bDLSCapable)
80207 + // tear down local dls table entry
80208 + for (i=0; i<MAX_NUM_OF_INIT_DLS_ENTRY; i++)
80210 + if (pAd->StaCfg.DLSEntry[i].Valid && (pAd->StaCfg.DLSEntry[i].Status == DLS_FINISH))
80212 + pAd->StaCfg.DLSEntry[i].Status = DLS_NONE;
80213 + RTMPSendDLSTearDownFrame(pAd, pAd->StaCfg.DLSEntry[i].MacAddr);
80217 + // tear down peer dls table entry
80218 + for (i=MAX_NUM_OF_INIT_DLS_ENTRY; i<MAX_NUM_OF_DLS_ENTRY; i++)
80220 + if (pAd->StaCfg.DLSEntry[i].Valid && (pAd->StaCfg.DLSEntry[i].Status == DLS_FINISH))
80222 + pAd->StaCfg.DLSEntry[i].Status = DLS_NONE;
80223 + RTMPSendDLSTearDownFrame(pAd, pAd->StaCfg.DLSEntry[i].MacAddr);
80227 +#endif // QOS_DLS_SUPPORT //
80229 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_INFRA_ON);
80230 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED);
80232 + // Saved last SSID for linkup comparison
80233 + pAd->CommonCfg.LastSsidLen = pAd->CommonCfg.SsidLen;
80234 + NdisMoveMemory(pAd->CommonCfg.LastSsid, pAd->CommonCfg.Ssid, pAd->CommonCfg.LastSsidLen);
80235 + COPY_MAC_ADDR(pAd->CommonCfg.LastBssid, pAd->CommonCfg.Bssid);
80236 + if (pAd->MlmeAux.CurrReqIsFromNdis == TRUE)
80238 + pAd->IndicateMediaState = NdisMediaStateDisconnected;
80239 + RTMP_IndicateMediaState(pAd);
80240 + pAd->ExtraInfo = GENERAL_LINK_DOWN;
80241 + DBGPRINT(RT_DEBUG_TRACE, ("NDIS_STATUS_MEDIA_DISCONNECT Event A!\n"));
80242 + pAd->MlmeAux.CurrReqIsFromNdis = FALSE;
80247 + // If disassociation request is from NDIS, then we don't need to delete BSSID from entry.
80248 + // Otherwise lost beacon or receive De-Authentication from AP,
80249 + // then we should delete BSSID from BssTable.
80250 + // If we don't delete from entry, roaming will fail.
80252 + BssTableDeleteEntry(&pAd->ScanTab, pAd->CommonCfg.Bssid, pAd->CommonCfg.Channel);
80255 + // restore back to -
80256 + // 1. long slot (20 us) or short slot (9 us) time
80257 + // 2. turn on/off RTS/CTS and/or CTS-to-self protection
80258 + // 3. short preamble
80259 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_BG_PROTECTION_INUSED);
80261 + if (pAd->StaCfg.CCXAdjacentAPReportFlag == TRUE)
80264 + // Record current AP's information.
80265 + // for later used reporting Adjacent AP report.
80267 + pAd->StaCfg.CCXAdjacentAPChannel = pAd->CommonCfg.Channel;
80268 + pAd->StaCfg.CCXAdjacentAPSsidLen = pAd->CommonCfg.SsidLen;
80269 + NdisMoveMemory(pAd->StaCfg.CCXAdjacentAPSsid, pAd->CommonCfg.Ssid, pAd->StaCfg.CCXAdjacentAPSsidLen);
80270 + COPY_MAC_ADDR(pAd->StaCfg.CCXAdjacentAPBssid, pAd->CommonCfg.Bssid);
80273 +#ifdef EXT_BUILD_CHANNEL_LIST
80274 + // Country IE of the AP will be evaluated and will be used.
80275 + if (pAd->StaCfg.IEEE80211dClientMode != Rt802_11_D_None)
80277 + NdisMoveMemory(&pAd->CommonCfg.CountryCode[0], &pAd->StaCfg.StaOriCountryCode[0], 2);
80278 + pAd->CommonCfg.Geography = pAd->StaCfg.StaOriGeography;
80279 + BuildChannelListEx(pAd);
80281 +#endif // EXT_BUILD_CHANNEL_LIST //
80285 + for (i=1; i<MAX_LEN_OF_MAC_TABLE; i++)
80287 + if (pAd->MacTab.Content[i].ValidAsCLI == TRUE)
80288 + MacTableDeleteEntry(pAd, pAd->MacTab.Content[i].Aid, pAd->MacTab.Content[i].Addr);
80291 + pAd->StaCfg.CCXQosECWMin = 4;
80292 + pAd->StaCfg.CCXQosECWMax = 10;
80294 + AsicSetSlotTime(pAd, TRUE); //FALSE);
80295 + AsicSetEdcaParm(pAd, NULL);
80298 + RTMPSetLED(pAd, LED_LINK_DOWN);
80299 + pAd->LedIndicatorStregth = 0xF0;
80300 + RTMPSetSignalLED(pAd, -100); // Force signal strength Led to be turned off, firmware is not done it.
80302 + AsicDisableSync(pAd);
80304 + pAd->Mlme.PeriodicRound = 0;
80305 + pAd->Mlme.OneSecPeriodicRound = 0;
80307 + if (pAd->StaCfg.BssType == BSS_INFRA)
80309 + // Remove StaCfg Information after link down
80310 + NdisZeroMemory(pAd->CommonCfg.Bssid, MAC_ADDR_LEN);
80311 + NdisZeroMemory(pAd->CommonCfg.Ssid, MAX_LEN_OF_SSID);
80312 + pAd->CommonCfg.SsidLen = 0;
80314 +#ifdef DOT11_N_SUPPORT
80315 + NdisZeroMemory(&pAd->MlmeAux.HtCapability, sizeof(HT_CAPABILITY_IE));
80316 + NdisZeroMemory(&pAd->MlmeAux.AddHtInfo, sizeof(ADD_HT_INFO_IE));
80317 + pAd->MlmeAux.HtCapabilityLen = 0;
80318 + pAd->MlmeAux.NewExtChannelOffset = 0xff;
80319 +#endif // DOT11_N_SUPPORT //
80321 + // Reset WPA-PSK state. Only reset when supplicant enabled
80322 + if (pAd->StaCfg.WpaState != SS_NOTUSE)
80324 + pAd->StaCfg.WpaState = SS_START;
80325 + // Clear Replay counter
80326 + NdisZeroMemory(pAd->StaCfg.ReplayCounter, 8);
80328 +#ifdef QOS_DLS_SUPPORT
80329 + if (pAd->CommonCfg.bDLSCapable)
80330 + NdisZeroMemory(pAd->StaCfg.DlsReplayCounter, 8);
80331 +#endif // QOS_DLS_SUPPORT //
80336 + // if link down come from AP, we need to remove all WPA keys on WPA mode.
80337 + // otherwise will cause 4-way handshaking failed, since the WPA key not empty.
80339 + if ((IsReqFromAP) && (pAd->StaCfg.AuthMode >= Ndis802_11AuthModeWPA))
80341 + // Remove all WPA keys
80342 + RTMPWPARemoveAllKeys(pAd);
80345 + // 802.1x port control
80346 +#ifdef WPA_SUPPLICANT_SUPPORT
80347 + // Prevent clear PortSecured here with static WEP
80348 + // NetworkManger set security policy first then set SSID to connect AP.
80349 + if (pAd->StaCfg.WpaSupplicantUP &&
80350 + (pAd->StaCfg.WepStatus == Ndis802_11WEPEnabled) &&
80351 + (pAd->StaCfg.IEEE8021X == FALSE))
80353 + pAd->StaCfg.PortSecured = WPA_802_1X_PORT_SECURED;
80356 +#endif // WPA_SUPPLICANT_SUPPORT //
80358 + pAd->StaCfg.PortSecured = WPA_802_1X_PORT_NOT_SECURED;
80359 + pAd->StaCfg.PrivacyFilter = Ndis802_11PrivFilter8021xWEP;
80362 + NdisAcquireSpinLock(&pAd->MacTabLock);
80363 + pAd->MacTab.Content[BSSID_WCID].PortSecured = pAd->StaCfg.PortSecured;
80364 + NdisReleaseSpinLock(&pAd->MacTabLock);
80366 + pAd->StaCfg.MicErrCnt = 0;
80368 + // Turn off Ckip control flag
80369 + pAd->StaCfg.bCkipOn = FALSE;
80370 + pAd->StaCfg.CCXEnable = FALSE;
80372 + pAd->IndicateMediaState = NdisMediaStateDisconnected;
80373 + // Update extra information to link is up
80374 + pAd->ExtraInfo = GENERAL_LINK_DOWN;
80376 + //pAd->StaCfg.AdhocBOnlyJoined = FALSE;
80377 + //pAd->StaCfg.AdhocBGJoined = FALSE;
80378 + //pAd->StaCfg.Adhoc20NJoined = FALSE;
80379 + pAd->StaActive.SupportedPhyInfo.bHtEnable = FALSE;
80381 + // Reset the Current AP's IP address
80382 + NdisZeroMemory(pAd->StaCfg.AironetIPAddress, 4);
80384 + pAd->bUsbTxBulkAggre = FALSE;
80385 +#endif // RT2870 //
80387 + // Clean association information
80388 + NdisZeroMemory(&pAd->StaCfg.AssocInfo, sizeof(NDIS_802_11_ASSOCIATION_INFORMATION));
80389 + pAd->StaCfg.AssocInfo.Length = sizeof(NDIS_802_11_ASSOCIATION_INFORMATION);
80390 + pAd->StaCfg.ReqVarIELen = 0;
80391 + pAd->StaCfg.ResVarIELen = 0;
80394 + // Reset RSSI value after link down
80396 + pAd->StaCfg.RssiSample.AvgRssi0 = 0;
80397 + pAd->StaCfg.RssiSample.AvgRssi0X8 = 0;
80398 + pAd->StaCfg.RssiSample.AvgRssi1 = 0;
80399 + pAd->StaCfg.RssiSample.AvgRssi1X8 = 0;
80400 + pAd->StaCfg.RssiSample.AvgRssi2 = 0;
80401 + pAd->StaCfg.RssiSample.AvgRssi2X8 = 0;
80403 + // Restore MlmeRate
80404 + pAd->CommonCfg.MlmeRate = pAd->CommonCfg.BasicMlmeRate;
80405 + pAd->CommonCfg.RtsRate = pAd->CommonCfg.BasicMlmeRate;
80407 +#ifdef DOT11_N_SUPPORT
80409 + // After Link down, reset piggy-back setting in ASIC. Disable RDG.
80411 + if (pAd->CommonCfg.BBPCurrentBW == BW_40)
80413 + pAd->CommonCfg.BBPCurrentBW = BW_20;
80414 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &ByteValue);
80415 + ByteValue &= (~0x18);
80416 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, ByteValue);
80418 +#endif // DOT11_N_SUPPORT //
80420 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R1, &ByteValue);
80421 + ByteValue &= (~0x18);
80422 + if (pAd->Antenna.field.TxPath == 2)
80424 + ByteValue |= 0x10;
80426 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R1, ByteValue);
80428 + RTMPSetPiggyBack(pAd,FALSE);
80429 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_PIGGYBACK_INUSED);
80431 +#ifdef DOT11_N_SUPPORT
80432 + pAd->CommonCfg.BACapability.word = pAd->CommonCfg.REGBACapability.word;
80433 +#endif // DOT11_N_SUPPORT //
80435 + // Restore all settings in the following.
80436 + AsicUpdateProtect(pAd, 0, (ALLN_SETPROTECT|CCKSETPROTECT|OFDMSETPROTECT), TRUE, FALSE);
80437 + AsicDisableRDG(pAd);
80438 + pAd->CommonCfg.IOTestParm.bCurrentAtheros = FALSE;
80439 + pAd->CommonCfg.IOTestParm.bNowAtherosBurstOn = FALSE;
80441 +#ifdef DOT11_N_SUPPORT
80442 +#ifdef DOT11N_DRAFT3
80443 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_SCAN_2040);
80444 + pAd->CommonCfg.BSSCoexist2040.word = 0;
80445 + TriEventInit(pAd);
80446 + for (i = 0; i < (pAd->ChannelListNum - 1); i++)
80448 + pAd->ChannelList[i].bEffectedChannel = FALSE;
80450 +#endif // DOT11N_DRAFT3 //
80451 +#endif // DOT11_N_SUPPORT //
80453 + RTMP_IO_WRITE32(pAd, MAX_LEN_CFG, 0x1fff);
80454 + RTMP_CLEAR_FLAG(pAd, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS);
80456 +#ifdef WPA_SUPPLICANT_SUPPORT
80457 +#ifndef NATIVE_WPA_SUPPLICANT_SUPPORT
80458 + if (pAd->StaCfg.WpaSupplicantUP) {
80459 + union iwreq_data wrqu;
80460 + //send disassociate event to wpa_supplicant
80461 + memset(&wrqu, 0, sizeof(wrqu));
80462 + wrqu.data.flags = RT_DISASSOC_EVENT_FLAG;
80463 + wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, NULL);
80465 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
80466 +#endif // WPA_SUPPLICANT_SUPPORT //
80468 +#ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
80470 + union iwreq_data wrqu;
80471 + memset(wrqu.ap_addr.sa_data, 0, MAC_ADDR_LEN);
80472 + wireless_send_event(pAd->net_dev, SIOCGIWAP, &wrqu, NULL);
80474 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
80477 + if (IS_RT3090(pAd))
80480 + // disable MMPS BBP control register
80481 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R3, &ByteValue);
80482 + ByteValue &= ~(0x04); //bit 2
80483 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R3, ByteValue);
80485 + // disable MMPS MAC control register
80486 + RTMP_IO_READ32(pAd, 0x1210, &macdata);
80487 + macdata &= ~(0x09); //bit 0, 3
80488 + RTMP_IO_WRITE32(pAd, 0x1210, macdata);
80490 +#endif // RT30xx //
80495 + ==========================================================================
80498 + IRQL = DISPATCH_LEVEL
80500 + ==========================================================================
80502 +VOID IterateOnBssTab(
80503 + IN PRTMP_ADAPTER pAd)
80505 + MLME_START_REQ_STRUCT StartReq;
80506 + MLME_JOIN_REQ_STRUCT JoinReq;
80509 + // Change the wepstatus to original wepstatus
80510 + pAd->StaCfg.WepStatus = pAd->StaCfg.OrigWepStatus;
80511 + pAd->StaCfg.PairCipher = pAd->StaCfg.OrigWepStatus;
80512 + pAd->StaCfg.GroupCipher = pAd->StaCfg.OrigWepStatus;
80514 + BssIdx = pAd->MlmeAux.BssIdx;
80515 + if (BssIdx < pAd->MlmeAux.SsidBssTab.BssNr)
80517 + // Check cipher suite, AP must have more secured cipher than station setting
80518 + // Set the Pairwise and Group cipher to match the intended AP setting
80519 + // We can only connect to AP with less secured cipher setting
80520 + if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA) || (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK))
80522 + pAd->StaCfg.GroupCipher = pAd->MlmeAux.SsidBssTab.BssEntry[BssIdx].WPA.GroupCipher;
80524 + if (pAd->StaCfg.WepStatus == pAd->MlmeAux.SsidBssTab.BssEntry[BssIdx].WPA.PairCipher)
80525 + pAd->StaCfg.PairCipher = pAd->MlmeAux.SsidBssTab.BssEntry[BssIdx].WPA.PairCipher;
80526 + else if (pAd->MlmeAux.SsidBssTab.BssEntry[BssIdx].WPA.PairCipherAux != Ndis802_11WEPDisabled)
80527 + pAd->StaCfg.PairCipher = pAd->MlmeAux.SsidBssTab.BssEntry[BssIdx].WPA.PairCipherAux;
80528 + else // There is no PairCipher Aux, downgrade our capability to TKIP
80529 + pAd->StaCfg.PairCipher = Ndis802_11Encryption2Enabled;
80531 + else if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2) || (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK))
80533 + pAd->StaCfg.GroupCipher = pAd->MlmeAux.SsidBssTab.BssEntry[BssIdx].WPA2.GroupCipher;
80535 + if (pAd->StaCfg.WepStatus == pAd->MlmeAux.SsidBssTab.BssEntry[BssIdx].WPA2.PairCipher)
80536 + pAd->StaCfg.PairCipher = pAd->MlmeAux.SsidBssTab.BssEntry[BssIdx].WPA2.PairCipher;
80537 + else if (pAd->MlmeAux.SsidBssTab.BssEntry[BssIdx].WPA2.PairCipherAux != Ndis802_11WEPDisabled)
80538 + pAd->StaCfg.PairCipher = pAd->MlmeAux.SsidBssTab.BssEntry[BssIdx].WPA2.PairCipherAux;
80539 + else // There is no PairCipher Aux, downgrade our capability to TKIP
80540 + pAd->StaCfg.PairCipher = Ndis802_11Encryption2Enabled;
80542 + // RSN capability
80543 + pAd->StaCfg.RsnCapability = pAd->MlmeAux.SsidBssTab.BssEntry[BssIdx].WPA2.RsnCapability;
80546 + // Set Mix cipher flag
80547 + pAd->StaCfg.bMixCipher = (pAd->StaCfg.PairCipher == pAd->StaCfg.GroupCipher) ? FALSE : TRUE;
80548 + if (pAd->StaCfg.bMixCipher == TRUE)
80550 + // If mix cipher, re-build RSNIE
80551 + RTMPMakeRSNIE(pAd, pAd->StaCfg.AuthMode, pAd->StaCfg.WepStatus, 0);
80554 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - iterate BSS %ld of %d\n", BssIdx, pAd->MlmeAux.SsidBssTab.BssNr));
80555 + JoinParmFill(pAd, &JoinReq, BssIdx);
80556 + MlmeEnqueue(pAd, SYNC_STATE_MACHINE, MT2_MLME_JOIN_REQ, sizeof(MLME_JOIN_REQ_STRUCT),
80558 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_JOIN;
80560 + else if (pAd->StaCfg.BssType == BSS_ADHOC)
80562 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - All BSS fail; start a new ADHOC (Ssid=%s)...\n",pAd->MlmeAux.Ssid));
80563 + StartParmFill(pAd, &StartReq, pAd->MlmeAux.Ssid, pAd->MlmeAux.SsidLen);
80564 + MlmeEnqueue(pAd, SYNC_STATE_MACHINE, MT2_MLME_START_REQ, sizeof(MLME_START_REQ_STRUCT), &StartReq);
80565 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_START;
80567 + else // no more BSS
80569 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - All roaming failed, stay @ ch #%d\n", pAd->CommonCfg.Channel));
80570 + AsicSwitchChannel(pAd, pAd->CommonCfg.Channel, FALSE);
80571 + AsicLockChannel(pAd, pAd->CommonCfg.Channel);
80572 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
80576 +// for re-association only
80577 +// IRQL = DISPATCH_LEVEL
80578 +VOID IterateOnBssTab2(
80579 + IN PRTMP_ADAPTER pAd)
80581 + MLME_REASSOC_REQ_STRUCT ReassocReq;
80585 + BssIdx = pAd->MlmeAux.RoamIdx;
80586 + pBss = &pAd->MlmeAux.RoamTab.BssEntry[BssIdx];
80588 + if (BssIdx < pAd->MlmeAux.RoamTab.BssNr)
80590 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - iterate BSS %ld of %d\n", BssIdx, pAd->MlmeAux.RoamTab.BssNr));
80592 + AsicSwitchChannel(pAd, pBss->Channel, FALSE);
80593 + AsicLockChannel(pAd, pBss->Channel);
80595 + // reassociate message has the same structure as associate message
80596 + AssocParmFill(pAd, &ReassocReq, pBss->Bssid, pBss->CapabilityInfo,
80597 + ASSOC_TIMEOUT, pAd->StaCfg.DefaultListenCount);
80598 + MlmeEnqueue(pAd, ASSOC_STATE_MACHINE, MT2_MLME_REASSOC_REQ,
80599 + sizeof(MLME_REASSOC_REQ_STRUCT), &ReassocReq);
80601 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_REASSOC;
80603 + else // no more BSS
80605 + DBGPRINT(RT_DEBUG_TRACE, ("CNTL - All fast roaming failed, back to ch #%d\n",pAd->CommonCfg.Channel));
80606 + AsicSwitchChannel(pAd, pAd->CommonCfg.Channel, FALSE);
80607 + AsicLockChannel(pAd, pAd->CommonCfg.Channel);
80608 + pAd->Mlme.CntlMachine.CurrState = CNTL_IDLE;
80613 + ==========================================================================
80616 + IRQL = DISPATCH_LEVEL
80618 + ==========================================================================
80620 +VOID JoinParmFill(
80621 + IN PRTMP_ADAPTER pAd,
80622 + IN OUT MLME_JOIN_REQ_STRUCT *JoinReq,
80625 + JoinReq->BssIdx = BssIdx;
80629 + ==========================================================================
80632 + IRQL = DISPATCH_LEVEL
80634 + ==========================================================================
80636 +VOID ScanParmFill(
80637 + IN PRTMP_ADAPTER pAd,
80638 + IN OUT MLME_SCAN_REQ_STRUCT *ScanReq,
80640 + IN UCHAR SsidLen,
80641 + IN UCHAR BssType,
80642 + IN UCHAR ScanType)
80644 + NdisZeroMemory(ScanReq->Ssid, MAX_LEN_OF_SSID);
80645 + ScanReq->SsidLen = SsidLen;
80646 + NdisMoveMemory(ScanReq->Ssid, Ssid, SsidLen);
80647 + ScanReq->BssType = BssType;
80648 + ScanReq->ScanType = ScanType;
80651 +#ifdef QOS_DLS_SUPPORT
80653 + ==========================================================================
80656 + IRQL = DISPATCH_LEVEL
80658 + ==========================================================================
80661 + IN PRTMP_ADAPTER pAd,
80662 + IN OUT MLME_DLS_REQ_STRUCT *pDlsReq,
80663 + IN PRT_802_11_DLS pDls,
80664 + IN USHORT reason)
80666 + pDlsReq->pDLS = pDls;
80667 + pDlsReq->Reason = reason;
80669 +#endif // QOS_DLS_SUPPORT //
80672 + ==========================================================================
80675 + IRQL = DISPATCH_LEVEL
80677 + ==========================================================================
80679 +VOID StartParmFill(
80680 + IN PRTMP_ADAPTER pAd,
80681 + IN OUT MLME_START_REQ_STRUCT *StartReq,
80683 + IN UCHAR SsidLen)
80685 + ASSERT(SsidLen <= MAX_LEN_OF_SSID);
80686 + NdisMoveMemory(StartReq->Ssid, Ssid, SsidLen);
80687 + StartReq->SsidLen = SsidLen;
80691 + ==========================================================================
80694 + IRQL = DISPATCH_LEVEL
80696 + ==========================================================================
80698 +VOID AuthParmFill(
80699 + IN PRTMP_ADAPTER pAd,
80700 + IN OUT MLME_AUTH_REQ_STRUCT *AuthReq,
80704 + COPY_MAC_ADDR(AuthReq->Addr, pAddr);
80705 + AuthReq->Alg = Alg;
80706 + AuthReq->Timeout = AUTH_TIMEOUT;
80710 + ==========================================================================
80713 + IRQL = DISPATCH_LEVEL
80715 + ==========================================================================
80721 +VOID MlmeCntlConfirm(
80722 + IN PRTMP_ADAPTER pAd,
80723 + IN ULONG MsgType,
80726 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MsgType, sizeof(USHORT), &Msg);
80729 +VOID ComposePsPoll(
80730 + IN PRTMP_ADAPTER pAd)
80732 + PTXINFO_STRUC pTxInfo;
80733 + PTXWI_STRUC pTxWI;
80735 + DBGPRINT(RT_DEBUG_TRACE, ("ComposePsPoll\n"));
80736 + NdisZeroMemory(&pAd->PsPollFrame, sizeof(PSPOLL_FRAME));
80738 + pAd->PsPollFrame.FC.PwrMgmt = 0;
80739 + pAd->PsPollFrame.FC.Type = BTYPE_CNTL;
80740 + pAd->PsPollFrame.FC.SubType = SUBTYPE_PS_POLL;
80741 + pAd->PsPollFrame.Aid = pAd->StaActive.Aid | 0xC000;
80742 + COPY_MAC_ADDR(pAd->PsPollFrame.Bssid, pAd->CommonCfg.Bssid);
80743 + COPY_MAC_ADDR(pAd->PsPollFrame.Ta, pAd->CurrentAddress);
80745 + RTMPZeroMemory(&pAd->PsPollContext.TransferBuffer->field.WirelessPacket[0], 100);
80746 + pTxInfo = (PTXINFO_STRUC)&pAd->PsPollContext.TransferBuffer->field.WirelessPacket[0];
80747 + RTMPWriteTxInfo(pAd, pTxInfo, (USHORT)(sizeof(PSPOLL_FRAME)+TXWI_SIZE), TRUE, EpToQueue[MGMTPIPEIDX], FALSE, FALSE);
80748 + pTxWI = (PTXWI_STRUC)&pAd->PsPollContext.TransferBuffer->field.WirelessPacket[TXINFO_SIZE];
80749 + RTMPWriteTxWI(pAd, pTxWI, FALSE, FALSE, FALSE, FALSE, TRUE, FALSE, 0, BSSID_WCID, (sizeof(PSPOLL_FRAME)),
80750 + 0, 0, (UCHAR)pAd->CommonCfg.MlmeTransmit.field.MCS, IFS_BACKOFF, FALSE, &pAd->CommonCfg.MlmeTransmit);
80751 + RTMPMoveMemory(&pAd->PsPollContext.TransferBuffer->field.WirelessPacket[TXWI_SIZE+TXINFO_SIZE], &pAd->PsPollFrame, sizeof(PSPOLL_FRAME));
80752 + // Append 4 extra zero bytes.
80753 + pAd->PsPollContext.BulkOutSize = TXINFO_SIZE + TXWI_SIZE + sizeof(PSPOLL_FRAME) + 4;
80756 +// IRQL = DISPATCH_LEVEL
80757 +VOID ComposeNullFrame(
80758 + IN PRTMP_ADAPTER pAd)
80760 + PTXINFO_STRUC pTxInfo;
80761 + PTXWI_STRUC pTxWI;
80763 + NdisZeroMemory(&pAd->NullFrame, sizeof(HEADER_802_11));
80764 + pAd->NullFrame.FC.Type = BTYPE_DATA;
80765 + pAd->NullFrame.FC.SubType = SUBTYPE_NULL_FUNC;
80766 + pAd->NullFrame.FC.ToDs = 1;
80767 + COPY_MAC_ADDR(pAd->NullFrame.Addr1, pAd->CommonCfg.Bssid);
80768 + COPY_MAC_ADDR(pAd->NullFrame.Addr2, pAd->CurrentAddress);
80769 + COPY_MAC_ADDR(pAd->NullFrame.Addr3, pAd->CommonCfg.Bssid);
80770 + RTMPZeroMemory(&pAd->NullContext.TransferBuffer->field.WirelessPacket[0], 100);
80771 + pTxInfo = (PTXINFO_STRUC)&pAd->NullContext.TransferBuffer->field.WirelessPacket[0];
80772 + RTMPWriteTxInfo(pAd, pTxInfo, (USHORT)(sizeof(HEADER_802_11)+TXWI_SIZE), TRUE, EpToQueue[MGMTPIPEIDX], FALSE, FALSE);
80773 + pTxWI = (PTXWI_STRUC)&pAd->NullContext.TransferBuffer->field.WirelessPacket[TXINFO_SIZE];
80774 + RTMPWriteTxWI(pAd, pTxWI, FALSE, FALSE, FALSE, FALSE, TRUE, FALSE, 0, BSSID_WCID, (sizeof(HEADER_802_11)),
80775 + 0, 0, (UCHAR)pAd->CommonCfg.MlmeTransmit.field.MCS, IFS_BACKOFF, FALSE, &pAd->CommonCfg.MlmeTransmit);
80776 + RTMPMoveMemory(&pAd->NullContext.TransferBuffer->field.WirelessPacket[TXWI_SIZE+TXINFO_SIZE], &pAd->NullFrame, sizeof(HEADER_802_11));
80777 + pAd->NullContext.BulkOutSize = TXINFO_SIZE + TXWI_SIZE + sizeof(pAd->NullFrame) + 4;
80779 +#endif // RT2870 //
80783 + ==========================================================================
80785 + Pre-build a BEACON frame in the shared memory
80787 + IRQL = PASSIVE_LEVEL
80788 + IRQL = DISPATCH_LEVEL
80790 + ==========================================================================
80792 +ULONG MakeIbssBeacon(
80793 + IN PRTMP_ADAPTER pAd)
80795 + UCHAR DsLen = 1, IbssLen = 2;
80796 + UCHAR LocalErpIe[3] = {IE_ERP, 1, 0x04};
80797 + HEADER_802_11 BcnHdr;
80798 + USHORT CapabilityInfo;
80799 + LARGE_INTEGER FakeTimestamp;
80800 + ULONG FrameLen = 0;
80801 + PTXWI_STRUC pTxWI = &pAd->BeaconTxWI;
80802 + CHAR *pBeaconFrame = pAd->BeaconBuf;
80804 + UCHAR SupRate[MAX_LEN_OF_SUPPORTED_RATES];
80805 + UCHAR SupRateLen = 0;
80806 + UCHAR ExtRate[MAX_LEN_OF_SUPPORTED_RATES];
80807 + UCHAR ExtRateLen = 0;
80808 + UCHAR RSNIe = IE_WPA;
80810 + if ((pAd->CommonCfg.PhyMode == PHY_11B) && (pAd->CommonCfg.Channel <= 14))
80812 + SupRate[0] = 0x82; // 1 mbps
80813 + SupRate[1] = 0x84; // 2 mbps
80814 + SupRate[2] = 0x8b; // 5.5 mbps
80815 + SupRate[3] = 0x96; // 11 mbps
80819 + else if (pAd->CommonCfg.Channel > 14)
80821 + SupRate[0] = 0x8C; // 6 mbps, in units of 0.5 Mbps, basic rate
80822 + SupRate[1] = 0x12; // 9 mbps, in units of 0.5 Mbps
80823 + SupRate[2] = 0x98; // 12 mbps, in units of 0.5 Mbps, basic rate
80824 + SupRate[3] = 0x24; // 18 mbps, in units of 0.5 Mbps
80825 + SupRate[4] = 0xb0; // 24 mbps, in units of 0.5 Mbps, basic rate
80826 + SupRate[5] = 0x48; // 36 mbps, in units of 0.5 Mbps
80827 + SupRate[6] = 0x60; // 48 mbps, in units of 0.5 Mbps
80828 + SupRate[7] = 0x6c; // 54 mbps, in units of 0.5 Mbps
80833 + // Also Update MlmeRate & RtsRate for G only & A only
80835 + pAd->CommonCfg.MlmeRate = RATE_6;
80836 + pAd->CommonCfg.RtsRate = RATE_6;
80837 + pAd->CommonCfg.MlmeTransmit.field.MODE = MODE_OFDM;
80838 + pAd->CommonCfg.MlmeTransmit.field.MCS = OfdmRateToRxwiMCS[pAd->CommonCfg.MlmeRate];
80839 + pAd->MacTab.Content[BSS0Mcast_WCID].HTPhyMode.field.MODE = MODE_OFDM;
80840 + pAd->MacTab.Content[BSS0Mcast_WCID].HTPhyMode.field.MCS = OfdmRateToRxwiMCS[pAd->CommonCfg.MlmeRate];
80844 + SupRate[0] = 0x82; // 1 mbps
80845 + SupRate[1] = 0x84; // 2 mbps
80846 + SupRate[2] = 0x8b; // 5.5 mbps
80847 + SupRate[3] = 0x96; // 11 mbps
80850 + ExtRate[0] = 0x0C; // 6 mbps, in units of 0.5 Mbps,
80851 + ExtRate[1] = 0x12; // 9 mbps, in units of 0.5 Mbps
80852 + ExtRate[2] = 0x18; // 12 mbps, in units of 0.5 Mbps,
80853 + ExtRate[3] = 0x24; // 18 mbps, in units of 0.5 Mbps
80854 + ExtRate[4] = 0x30; // 24 mbps, in units of 0.5 Mbps,
80855 + ExtRate[5] = 0x48; // 36 mbps, in units of 0.5 Mbps
80856 + ExtRate[6] = 0x60; // 48 mbps, in units of 0.5 Mbps
80857 + ExtRate[7] = 0x6c; // 54 mbps, in units of 0.5 Mbps
80861 + pAd->StaActive.SupRateLen = SupRateLen;
80862 + NdisMoveMemory(pAd->StaActive.SupRate, SupRate, SupRateLen);
80863 + pAd->StaActive.ExtRateLen = ExtRateLen;
80864 + NdisMoveMemory(pAd->StaActive.ExtRate, ExtRate, ExtRateLen);
80866 + // compose IBSS beacon frame
80867 + MgtMacHeaderInit(pAd, &BcnHdr, SUBTYPE_BEACON, 0, BROADCAST_ADDR, pAd->CommonCfg.Bssid);
80868 + Privacy = (pAd->StaCfg.WepStatus == Ndis802_11Encryption1Enabled) ||
80869 + (pAd->StaCfg.WepStatus == Ndis802_11Encryption2Enabled) ||
80870 + (pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled);
80871 + CapabilityInfo = CAP_GENERATE(0, 1, Privacy, (pAd->CommonCfg.TxPreamble == Rt802_11PreambleShort), 0, 0);
80873 + MakeOutgoingFrame(pBeaconFrame, &FrameLen,
80874 + sizeof(HEADER_802_11), &BcnHdr,
80875 + TIMESTAMP_LEN, &FakeTimestamp,
80876 + 2, &pAd->CommonCfg.BeaconPeriod,
80877 + 2, &CapabilityInfo,
80879 + 1, &pAd->CommonCfg.SsidLen,
80880 + pAd->CommonCfg.SsidLen, pAd->CommonCfg.Ssid,
80883 + SupRateLen, SupRate,
80886 + 1, &pAd->CommonCfg.Channel,
80889 + 2, &pAd->StaActive.AtimWin,
80892 + // add ERP_IE and EXT_RAE IE of in 802.11g
80897 + MakeOutgoingFrame(pBeaconFrame + FrameLen, &tmp,
80901 + ExtRateLen, ExtRate,
80906 + // If adhoc secruity is set for WPA-None, append the cipher suite IE
80907 + if (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPANone)
80910 + RTMPMakeRSNIE(pAd, pAd->StaCfg.AuthMode, pAd->StaCfg.WepStatus, BSS0);
80912 + MakeOutgoingFrame(pBeaconFrame + FrameLen, &tmp,
80914 + 1, &pAd->StaCfg.RSNIE_Len,
80915 + pAd->StaCfg.RSNIE_Len, pAd->StaCfg.RSN_IE,
80920 +#ifdef DOT11_N_SUPPORT
80921 + if ((pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED))
80924 + UCHAR HtLen, HtLen1;
80926 +#ifdef RT_BIG_ENDIAN
80927 + HT_CAPABILITY_IE HtCapabilityTmp;
80928 + ADD_HT_INFO_IE addHTInfoTmp;
80929 + USHORT b2lTmp, b2lTmp2;
80932 + // add HT Capability IE
80933 + HtLen = sizeof(pAd->CommonCfg.HtCapability);
80934 + HtLen1 = sizeof(pAd->CommonCfg.AddHTInfo);
80935 +#ifndef RT_BIG_ENDIAN
80936 + MakeOutgoingFrame(pBeaconFrame+FrameLen, &TmpLen,
80939 + HtLen, &pAd->CommonCfg.HtCapability,
80942 + HtLen1, &pAd->CommonCfg.AddHTInfo,
80945 + NdisMoveMemory(&HtCapabilityTmp, &pAd->CommonCfg.HtCapability, HtLen);
80946 + *(USHORT *)(&HtCapabilityTmp.HtCapInfo) = SWAP16(*(USHORT *)(&HtCapabilityTmp.HtCapInfo));
80947 + *(USHORT *)(&HtCapabilityTmp.ExtHtCapInfo) = SWAP16(*(USHORT *)(&HtCapabilityTmp.ExtHtCapInfo));
80949 + NdisMoveMemory(&addHTInfoTmp, &pAd->CommonCfg.AddHTInfo, HtLen1);
80950 + *(USHORT *)(&addHTInfoTmp.AddHtInfo2) = SWAP16(*(USHORT *)(&addHTInfoTmp.AddHtInfo2));
80951 + *(USHORT *)(&addHTInfoTmp.AddHtInfo3) = SWAP16(*(USHORT *)(&addHTInfoTmp.AddHtInfo3));
80953 + MakeOutgoingFrame(pBeaconFrame+FrameLen, &TmpLen,
80956 + HtLen, &HtCapabilityTmp,
80959 + HtLen1, &addHTInfoTmp,
80962 + FrameLen += TmpLen;
80964 +#endif // DOT11_N_SUPPORT //
80966 + //beacon use reserved WCID 0xff
80967 + if (pAd->CommonCfg.Channel > 14)
80969 + RTMPWriteTxWI(pAd, pTxWI, FALSE, FALSE, TRUE, FALSE, FALSE, TRUE, 0, 0xff, FrameLen,
80970 + PID_MGMT, PID_BEACON, RATE_1, IFS_HTTXOP, FALSE, &pAd->CommonCfg.MlmeTransmit);
80974 + // Set to use 1Mbps for Adhoc beacon.
80975 + HTTRANSMIT_SETTING Transmit;
80976 + Transmit.word = 0;
80977 + RTMPWriteTxWI(pAd, pTxWI, FALSE, FALSE, TRUE, FALSE, FALSE, TRUE, 0, 0xff, FrameLen,
80978 + PID_MGMT, PID_BEACON, RATE_1, IFS_HTTXOP, FALSE, &Transmit);
80981 +#ifdef RT_BIG_ENDIAN
80982 + RTMPFrameEndianChange(pAd, pBeaconFrame, DIR_WRITE, FALSE);
80983 + RTMPWIEndianChange((PUCHAR)pTxWI, TYPE_TXWI);
80986 + DBGPRINT(RT_DEBUG_TRACE, ("MakeIbssBeacon (len=%ld), SupRateLen=%d, ExtRateLen=%d, Channel=%d, PhyMode=%d\n",
80987 + FrameLen, SupRateLen, ExtRateLen, pAd->CommonCfg.Channel, pAd->CommonCfg.PhyMode));
80993 +++ b/drivers/staging/rt3070/sta/dls.c
80996 + *************************************************************************
80997 + * Ralink Tech Inc.
80998 + * 5F., No.36, Taiyuan St., Jhubei City,
80999 + * Hsinchu County 302,
81002 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
81004 + * This program is free software; you can redistribute it and/or modify *
81005 + * it under the terms of the GNU General Public License as published by *
81006 + * the Free Software Foundation; either version 2 of the License, or *
81007 + * (at your option) any later version. *
81009 + * This program is distributed in the hope that it will be useful, *
81010 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
81011 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
81012 + * GNU General Public License for more details. *
81014 + * You should have received a copy of the GNU General Public License *
81015 + * along with this program; if not, write to the *
81016 + * Free Software Foundation, Inc., *
81017 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
81019 + *************************************************************************
81025 + Handle WMM-DLS state machine
81027 + Revision History:
81029 + -------- ---------- ----------------------------------------------
81030 + Rory Chen 02-14-2006
81031 + Arvin Tai 06-03-2008 Modified for RT28xx
81034 +#include "../rt_config.h"
81037 + ==========================================================================
81039 + dls state machine init, including state transition and timer init
81041 + Sm - pointer to the dls state machine
81043 + The state machine looks like this
81046 + MT2_MLME_DLS_REQUEST MlmeDlsReqAction
81047 + MT2_PEER_DLS_REQUEST PeerDlsReqAction
81048 + MT2_PEER_DLS_RESPONSE PeerDlsRspAction
81049 + MT2_MLME_DLS_TEARDOWN MlmeTearDownAction
81050 + MT2_PEER_DLS_TEARDOWN PeerTearDownAction
81052 + IRQL = PASSIVE_LEVEL
81054 + ==========================================================================
81056 +void DlsStateMachineInit(
81057 + IN PRTMP_ADAPTER pAd,
81058 + IN STATE_MACHINE *Sm,
81059 + OUT STATE_MACHINE_FUNC Trans[])
81063 + StateMachineInit(Sm, (STATE_MACHINE_FUNC*)Trans, MAX_DLS_STATE, MAX_DLS_MSG, (STATE_MACHINE_FUNC)Drop, DLS_IDLE, DLS_MACHINE_BASE);
81065 + // the first column
81066 + StateMachineSetAction(Sm, DLS_IDLE, MT2_MLME_DLS_REQ, (STATE_MACHINE_FUNC)MlmeDlsReqAction);
81067 + StateMachineSetAction(Sm, DLS_IDLE, MT2_PEER_DLS_REQ, (STATE_MACHINE_FUNC)PeerDlsReqAction);
81068 + StateMachineSetAction(Sm, DLS_IDLE, MT2_PEER_DLS_RSP, (STATE_MACHINE_FUNC)PeerDlsRspAction);
81069 + StateMachineSetAction(Sm, DLS_IDLE, MT2_MLME_DLS_TEAR_DOWN, (STATE_MACHINE_FUNC)MlmeDlsTearDownAction);
81070 + StateMachineSetAction(Sm, DLS_IDLE, MT2_PEER_DLS_TEAR_DOWN, (STATE_MACHINE_FUNC)PeerDlsTearDownAction);
81072 + for (i=0; i<MAX_NUM_OF_DLS_ENTRY; i++)
81074 + pAd->StaCfg.DLSEntry[i].pAd = pAd;
81075 + RTMPInitTimer(pAd, &pAd->StaCfg.DLSEntry[i].Timer, GET_TIMER_FUNCTION(DlsTimeoutAction), pAd, FALSE);
81080 + ==========================================================================
81083 + IRQL = DISPATCH_LEVEL
81085 + ==========================================================================
81087 +VOID MlmeDlsReqAction(
81088 + IN PRTMP_ADAPTER pAd,
81089 + IN MLME_QUEUE_ELEM *Elem)
81091 + PUCHAR pOutBuffer = NULL;
81092 + NDIS_STATUS NStatus;
81093 + ULONG FrameLen = 0;
81094 + HEADER_802_11 DlsReqHdr;
81095 + PRT_802_11_DLS pDLS = NULL;
81096 + UCHAR Category = CATEGORY_DLS;
81097 + UCHAR Action = ACTION_DLS_REQUEST;
81101 + BOOLEAN TimerCancelled;
81103 + if(!MlmeDlsReqSanity(pAd, Elem->Msg, Elem->MsgLen, &pDLS, &reason))
81106 + DBGPRINT(RT_DEBUG_TRACE,("DLS - MlmeDlsReqAction() \n"));
81108 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
81109 + if (NStatus != NDIS_STATUS_SUCCESS)
81111 + DBGPRINT(RT_DEBUG_ERROR,("DLS - MlmeDlsReqAction() allocate memory failed \n"));
81115 + ActHeaderInit(pAd, &DlsReqHdr, pAd->CommonCfg.Bssid, pAd->CurrentAddress, pAd->CommonCfg.Bssid);
81117 + // Build basic frame first
81118 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
81119 + sizeof(HEADER_802_11), &DlsReqHdr,
81122 + 6, &pDLS->MacAddr,
81123 + 6, pAd->CurrentAddress,
81124 + 2, &pAd->StaActive.CapabilityInfo,
81125 + 2, &pDLS->TimeOut,
81127 + 1, &pAd->MlmeAux.SupRateLen,
81128 + pAd->MlmeAux.SupRateLen, pAd->MlmeAux.SupRate,
81131 + if (pAd->MlmeAux.ExtRateLen != 0)
81133 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
81135 + 1, &pAd->MlmeAux.ExtRateLen,
81136 + pAd->MlmeAux.ExtRateLen, pAd->MlmeAux.ExtRate,
81141 +#ifdef DOT11_N_SUPPORT
81142 + if ((pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED))
81146 +#ifdef RT_BIG_ENDIAN
81147 + HT_CAPABILITY_IE HtCapabilityTmp;
81150 + // add HT Capability IE
81151 + HtLen = sizeof(HT_CAPABILITY_IE);
81152 +#ifndef RT_BIG_ENDIAN
81153 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
81156 + HtLen, &pAd->CommonCfg.HtCapability,
81159 + NdisMoveMemory(&HtCapabilityTmp, &pAd->CommonCfg.HtCapability, HtLen);
81160 + *(USHORT *)(&HtCapabilityTmp.HtCapInfo) = SWAP16(*(USHORT *)(&HtCapabilityTmp.HtCapInfo));
81161 + *(USHORT *)(&HtCapabilityTmp.ExtHtCapInfo) = SWAP16(*(USHORT *)(&HtCapabilityTmp.ExtHtCapInfo));
81163 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
81166 + HtLen, &HtCapabilityTmp,
81169 + FrameLen = FrameLen + tmp;
81171 +#endif // DOT11_N_SUPPORT //
81173 + RTMPCancelTimer(&pDLS->Timer, &TimerCancelled);
81174 + Timeout = DLS_TIMEOUT;
81175 + RTMPSetTimer(&pDLS->Timer, Timeout);
81177 + MiniportMMRequest(pAd, QID_AC_BE, pOutBuffer, FrameLen);
81178 + MlmeFreeMemory(pAd, pOutBuffer);
81182 + ==========================================================================
81185 + IRQL = DISPATCH_LEVEL
81187 + ==========================================================================
81189 +VOID PeerDlsReqAction(
81190 + IN PRTMP_ADAPTER pAd,
81191 + IN MLME_QUEUE_ELEM *Elem)
81193 + PUCHAR pOutBuffer = NULL;
81194 + NDIS_STATUS NStatus;
81195 + ULONG FrameLen = 0;
81196 + USHORT StatusCode = MLME_SUCCESS;
81197 + HEADER_802_11 DlsRspHdr;
81198 + UCHAR Category = CATEGORY_DLS;
81199 + UCHAR Action = ACTION_DLS_RESPONSE;
81201 + USHORT CapabilityInfo;
81202 + UCHAR DA[MAC_ADDR_LEN], SA[MAC_ADDR_LEN];
81203 + USHORT DLSTimeOut;
81206 + BOOLEAN TimerCancelled;
81207 + PRT_802_11_DLS pDLS = NULL;
81208 + UCHAR MaxSupportedRateIn500Kbps = 0;
81209 + UCHAR SupportedRatesLen;
81210 + UCHAR SupportedRates[MAX_LEN_OF_SUPPORTED_RATES];
81211 + UCHAR HtCapabilityLen;
81212 + HT_CAPABILITY_IE HtCapability;
81214 + if (!PeerDlsReqSanity(pAd, Elem->Msg, Elem->MsgLen, DA, SA, &CapabilityInfo, &DLSTimeOut,
81215 + &SupportedRatesLen, &SupportedRates[0], &HtCapabilityLen, &HtCapability))
81218 + // supported rates array may not be sorted. sort it and find the maximum rate
81219 + for (i = 0; i < SupportedRatesLen; i++)
81221 + if (MaxSupportedRateIn500Kbps < (SupportedRates[i] & 0x7f))
81222 + MaxSupportedRateIn500Kbps = SupportedRates[i] & 0x7f;
81225 + DBGPRINT(RT_DEBUG_TRACE,("DLS - PeerDlsReqAction() from %02x:%02x:%02x:%02x:%02x:%02x\n", SA[0], SA[1], SA[2], SA[3], SA[4], SA[5]));
81227 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
81228 + if (NStatus != NDIS_STATUS_SUCCESS)
81230 + DBGPRINT(RT_DEBUG_ERROR,("DLS - PeerDlsReqAction() allocate memory failed \n"));
81234 + if (!INFRA_ON(pAd))
81236 + StatusCode = MLME_REQUEST_DECLINED;
81238 + else if (!pAd->CommonCfg.bWmmCapable)
81240 + StatusCode = MLME_DEST_STA_IS_NOT_A_QSTA;
81242 + else if (!pAd->CommonCfg.bDLSCapable)
81244 + StatusCode = MLME_REQUEST_DECLINED;
81248 + // find table to update parameters
81249 + for (i = (MAX_NUM_OF_DLS_ENTRY-1); i >= 0; i--)
81251 + if (pAd->StaCfg.DLSEntry[i].Valid && MAC_ADDR_EQUAL(SA, pAd->StaCfg.DLSEntry[i].MacAddr))
81253 + if (pAd->StaCfg.AuthMode >= Ndis802_11AuthModeWPA)
81254 + pAd->StaCfg.DLSEntry[i].Status = DLS_WAIT_KEY;
81257 + RTMPCancelTimer(&pAd->StaCfg.DLSEntry[i].Timer, &TimerCancelled);
81258 + pAd->StaCfg.DLSEntry[i].Status = DLS_FINISH;
81261 + pAd->StaCfg.DLSEntry[i].Sequence = 0;
81262 + pAd->StaCfg.DLSEntry[i].TimeOut = DLSTimeOut;
81263 + pAd->StaCfg.DLSEntry[i].CountDownTimer = DLSTimeOut;
81264 + if (HtCapabilityLen != 0)
81265 + pAd->StaCfg.DLSEntry[i].bHTCap = TRUE;
81267 + pAd->StaCfg.DLSEntry[i].bHTCap = FALSE;
81268 + pDLS = &pAd->StaCfg.DLSEntry[i];
81273 + // can not find in table, create a new one
81276 + DBGPRINT(RT_DEBUG_TRACE,("DLS - PeerDlsReqAction() can not find same entry \n"));
81277 + for (i=(MAX_NUM_OF_DLS_ENTRY - 1); i >= MAX_NUM_OF_INIT_DLS_ENTRY; i--)
81279 + if (!pAd->StaCfg.DLSEntry[i].Valid)
81281 + MAC_TABLE_ENTRY *pEntry;
81282 + UCHAR MaxSupportedRate = RATE_11;
81284 + if (pAd->StaCfg.AuthMode >= Ndis802_11AuthModeWPA)
81286 + pAd->StaCfg.DLSEntry[i].Status = DLS_WAIT_KEY;
81290 + RTMPCancelTimer(&pAd->StaCfg.DLSEntry[i].Timer, &TimerCancelled);
81291 + pAd->StaCfg.DLSEntry[i].Status = DLS_FINISH;
81294 + pAd->StaCfg.DLSEntry[i].Sequence = 0;
81295 + pAd->StaCfg.DLSEntry[i].Valid = TRUE;
81296 + pAd->StaCfg.DLSEntry[i].TimeOut = DLSTimeOut;
81297 + pAd->StaCfg.DLSEntry[i].CountDownTimer = DLSTimeOut;
81298 + NdisMoveMemory(pAd->StaCfg.DLSEntry[i].MacAddr, SA, MAC_ADDR_LEN);
81299 + if (HtCapabilityLen != 0)
81300 + pAd->StaCfg.DLSEntry[i].bHTCap = TRUE;
81302 + pAd->StaCfg.DLSEntry[i].bHTCap = FALSE;
81303 + pDLS = &pAd->StaCfg.DLSEntry[i];
81304 + pEntry = MacTableInsertDlsEntry(pAd, SA, i);
81306 + switch (MaxSupportedRateIn500Kbps)
81308 + case 108: MaxSupportedRate = RATE_54; break;
81309 + case 96: MaxSupportedRate = RATE_48; break;
81310 + case 72: MaxSupportedRate = RATE_36; break;
81311 + case 48: MaxSupportedRate = RATE_24; break;
81312 + case 36: MaxSupportedRate = RATE_18; break;
81313 + case 24: MaxSupportedRate = RATE_12; break;
81314 + case 18: MaxSupportedRate = RATE_9; break;
81315 + case 12: MaxSupportedRate = RATE_6; break;
81316 + case 22: MaxSupportedRate = RATE_11; break;
81317 + case 11: MaxSupportedRate = RATE_5_5; break;
81318 + case 4: MaxSupportedRate = RATE_2; break;
81319 + case 2: MaxSupportedRate = RATE_1; break;
81320 + default: MaxSupportedRate = RATE_11; break;
81323 + pEntry->MaxSupportedRate = min(pAd->CommonCfg.MaxTxRate, MaxSupportedRate);
81325 + if (pEntry->MaxSupportedRate < RATE_FIRST_OFDM_RATE)
81327 + pEntry->MaxHTPhyMode.field.MODE = MODE_CCK;
81328 + pEntry->MaxHTPhyMode.field.MCS = pEntry->MaxSupportedRate;
81329 + pEntry->MinHTPhyMode.field.MODE = MODE_CCK;
81330 + pEntry->MinHTPhyMode.field.MCS = pEntry->MaxSupportedRate;
81331 + pEntry->HTPhyMode.field.MODE = MODE_CCK;
81332 + pEntry->HTPhyMode.field.MCS = pEntry->MaxSupportedRate;
81336 + pEntry->MaxHTPhyMode.field.MODE = MODE_OFDM;
81337 + pEntry->MaxHTPhyMode.field.MCS = OfdmRateToRxwiMCS[pEntry->MaxSupportedRate];
81338 + pEntry->MinHTPhyMode.field.MODE = MODE_OFDM;
81339 + pEntry->MinHTPhyMode.field.MCS = OfdmRateToRxwiMCS[pEntry->MaxSupportedRate];
81340 + pEntry->HTPhyMode.field.MODE = MODE_OFDM;
81341 + pEntry->HTPhyMode.field.MCS = OfdmRateToRxwiMCS[pEntry->MaxSupportedRate];
81344 + pEntry->MaxHTPhyMode.field.BW = BW_20;
81345 + pEntry->MinHTPhyMode.field.BW = BW_20;
81347 +#ifdef DOT11_N_SUPPORT
81348 + pEntry->HTCapability.MCSSet[0] = 0;
81349 + pEntry->HTCapability.MCSSet[1] = 0;
81351 + // If this Entry supports 802.11n, upgrade to HT rate.
81352 + if ((HtCapabilityLen != 0) && (pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED))
81354 + UCHAR j, bitmask; //k,bitmask;
81357 + if ((HtCapability.HtCapInfo.GF) && (pAd->CommonCfg.DesiredHtPhy.GF))
81359 + pEntry->MaxHTPhyMode.field.MODE = MODE_HTGREENFIELD;
81363 + pEntry->MaxHTPhyMode.field.MODE = MODE_HTMIX;
81364 + pAd->MacTab.fAnyStationNonGF = TRUE;
81365 + pAd->CommonCfg.AddHTInfo.AddHtInfo2.NonGfPresent = 1;
81368 + if ((HtCapability.HtCapInfo.ChannelWidth) && (pAd->CommonCfg.DesiredHtPhy.ChannelWidth))
81370 + pEntry->MaxHTPhyMode.field.BW= BW_40;
81371 + pEntry->MaxHTPhyMode.field.ShortGI = ((pAd->CommonCfg.DesiredHtPhy.ShortGIfor40)&(HtCapability.HtCapInfo.ShortGIfor40));
81375 + pEntry->MaxHTPhyMode.field.BW = BW_20;
81376 + pEntry->MaxHTPhyMode.field.ShortGI = ((pAd->CommonCfg.DesiredHtPhy.ShortGIfor20)&(HtCapability.HtCapInfo.ShortGIfor20));
81377 + pAd->MacTab.fAnyStation20Only = TRUE;
81380 + // find max fixed rate
81381 + for (ii=15; ii>=0; ii--)
81384 + bitmask = (1<<(ii-(j*8)));
81385 + if ( (pAd->StaCfg.DesiredHtPhyInfo.MCSSet[j]&bitmask) && (HtCapability.MCSSet[j]&bitmask))
81387 + pEntry->MaxHTPhyMode.field.MCS = ii;
81395 + if (pAd->StaCfg.DesiredTransmitSetting.field.MCS != MCS_AUTO)
81398 + printk("@@@ pAd->CommonCfg.RegTransmitSetting.field.MCS = %d\n",
81399 + pAd->StaCfg.DesiredTransmitSetting.field.MCS);
81400 + if (pAd->StaCfg.DesiredTransmitSetting.field.MCS == 32)
81402 + // Fix MCS as HT Duplicated Mode
81403 + pEntry->MaxHTPhyMode.field.BW = 1;
81404 + pEntry->MaxHTPhyMode.field.MODE = MODE_HTMIX;
81405 + pEntry->MaxHTPhyMode.field.STBC = 0;
81406 + pEntry->MaxHTPhyMode.field.ShortGI = 0;
81407 + pEntry->MaxHTPhyMode.field.MCS = 32;
81409 + else if (pEntry->MaxHTPhyMode.field.MCS > pAd->StaCfg.HTPhyMode.field.MCS)
81411 + // STA supports fixed MCS
81412 + pEntry->MaxHTPhyMode.field.MCS = pAd->StaCfg.HTPhyMode.field.MCS;
81416 + pEntry->MaxHTPhyMode.field.STBC = (HtCapability.HtCapInfo.RxSTBC & (pAd->CommonCfg.DesiredHtPhy.TxSTBC));
81417 + pEntry->MpduDensity = HtCapability.HtCapParm.MpduDensity;
81418 + pEntry->MaxRAmpduFactor = HtCapability.HtCapParm.MaxRAmpduFactor;
81419 + pEntry->MmpsMode = (UCHAR)HtCapability.HtCapInfo.MimoPs;
81420 + pEntry->AMsduSize = (UCHAR)HtCapability.HtCapInfo.AMsduSize;
81421 + pEntry->HTPhyMode.word = pEntry->MaxHTPhyMode.word;
81423 + if (HtCapability.HtCapInfo.ShortGIfor20)
81424 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_SGI20_CAPABLE);
81425 + if (HtCapability.HtCapInfo.ShortGIfor40)
81426 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_SGI40_CAPABLE);
81427 + if (HtCapability.HtCapInfo.TxSTBC)
81428 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_TxSTBC_CAPABLE);
81429 + if (HtCapability.HtCapInfo.RxSTBC)
81430 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_RxSTBC_CAPABLE);
81431 + if (HtCapability.ExtHtCapInfo.PlusHTC)
81432 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_HTC_CAPABLE);
81433 + if (pAd->CommonCfg.bRdg && HtCapability.ExtHtCapInfo.RDGSupport)
81434 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_RDG_CAPABLE);
81435 + if (HtCapability.ExtHtCapInfo.MCSFeedback == 0x03)
81436 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_MCSFEEDBACK_CAPABLE);
81438 + NdisMoveMemory(&pEntry->HTCapability, &HtCapability, sizeof(HT_CAPABILITY_IE));
81440 +#endif // DOT11_N_SUPPORT //
81442 + pEntry->HTPhyMode.word = pEntry->MaxHTPhyMode.word;
81443 + pEntry->CurrTxRate = pEntry->MaxSupportedRate;
81444 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_WMM_CAPABLE);
81446 + if (pAd->StaCfg.bAutoTxRateSwitch == TRUE)
81449 + UCHAR TableSize = 0;
81451 + MlmeSelectTxRateTable(pAd, pEntry, &pTable, &TableSize, &pEntry->CurrTxRateIndex);
81452 + pEntry->bAutoTxRateSwitch = TRUE;
81456 + pEntry->HTPhyMode.field.MODE = pAd->StaCfg.HTPhyMode.field.MODE;
81457 + pEntry->HTPhyMode.field.MCS = pAd->StaCfg.HTPhyMode.field.MCS;
81458 + pEntry->bAutoTxRateSwitch = FALSE;
81460 + RTMPUpdateLegacyTxSetting((UCHAR)pAd->StaCfg.DesiredTransmitSetting.field.FixedTxMode, pEntry);
81462 + pEntry->RateLen = SupportedRatesLen;
81468 + StatusCode = MLME_SUCCESS;
81470 + // can not find in table, create a new one
81473 + StatusCode = MLME_QOS_UNSPECIFY;
81474 + DBGPRINT(RT_DEBUG_ERROR,("DLS - PeerDlsReqAction() DLSEntry table full(only can support %d DLS session) \n", MAX_NUM_OF_DLS_ENTRY - MAX_NUM_OF_INIT_DLS_ENTRY));
81478 + DBGPRINT(RT_DEBUG_TRACE,("DLS - PeerDlsReqAction() use entry(%d) %02x:%02x:%02x:%02x:%02x:%02x\n",
81479 + i, SA[0], SA[1], SA[2], SA[3], SA[4], SA[5]));
81483 + ActHeaderInit(pAd, &DlsRspHdr, pAd->CommonCfg.Bssid, pAd->CurrentAddress, pAd->CommonCfg.Bssid);
81485 + // Build basic frame first
81486 + if (StatusCode == MLME_SUCCESS)
81488 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
81489 + sizeof(HEADER_802_11), &DlsRspHdr,
81494 + 6, pAd->CurrentAddress,
81495 + 2, &pAd->StaActive.CapabilityInfo,
81497 + 1, &pAd->MlmeAux.SupRateLen,
81498 + pAd->MlmeAux.SupRateLen, pAd->MlmeAux.SupRate,
81501 + if (pAd->MlmeAux.ExtRateLen != 0)
81503 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
81505 + 1, &pAd->MlmeAux.ExtRateLen,
81506 + pAd->MlmeAux.ExtRateLen, pAd->MlmeAux.ExtRate,
81511 +#ifdef DOT11_N_SUPPORT
81512 + if ((pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED))
81516 +#ifdef RT_BIG_ENDIAN
81517 + HT_CAPABILITY_IE HtCapabilityTmp;
81520 + // add HT Capability IE
81521 + HtLen = sizeof(HT_CAPABILITY_IE);
81522 +#ifndef RT_BIG_ENDIAN
81523 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
81526 + HtLen, &pAd->CommonCfg.HtCapability,
81529 + NdisMoveMemory(&HtCapabilityTmp, &pAd->CommonCfg.HtCapability, HtLen);
81530 + *(USHORT *)(&HtCapabilityTmp.HtCapInfo) = SWAP16(*(USHORT *)(&HtCapabilityTmp.HtCapInfo));
81531 + *(USHORT *)(&HtCapabilityTmp.ExtHtCapInfo) = SWAP16(*(USHORT *)(&HtCapabilityTmp.ExtHtCapInfo));
81533 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
81536 + HtLen, &HtCapabilityTmp,
81539 + FrameLen = FrameLen + tmp;
81541 +#endif // DOT11_N_SUPPORT //
81543 + if (pDLS && (pDLS->Status != DLS_FINISH))
81545 + RTMPCancelTimer(&pDLS->Timer, &TimerCancelled);
81546 + Timeout = DLS_TIMEOUT;
81547 + RTMPSetTimer(&pDLS->Timer, Timeout);
81552 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
81553 + sizeof(HEADER_802_11), &DlsRspHdr,
81558 + 6, pAd->CurrentAddress,
81562 + MiniportMMRequest(pAd, QID_AC_BE, pOutBuffer, FrameLen);
81563 + MlmeFreeMemory(pAd, pOutBuffer);
81567 + ==========================================================================
81570 + IRQL = DISPATCH_LEVEL
81572 + ==========================================================================
81574 +VOID PeerDlsRspAction(
81575 + IN PRTMP_ADAPTER pAd,
81576 + IN MLME_QUEUE_ELEM *Elem)
81578 + USHORT CapabilityInfo;
81579 + UCHAR DA[MAC_ADDR_LEN], SA[MAC_ADDR_LEN];
81580 + USHORT StatusCode;
81582 + BOOLEAN TimerCancelled;
81583 + UCHAR MaxSupportedRateIn500Kbps = 0;
81584 + UCHAR SupportedRatesLen;
81585 + UCHAR SupportedRates[MAX_LEN_OF_SUPPORTED_RATES];
81586 + UCHAR HtCapabilityLen;
81587 + HT_CAPABILITY_IE HtCapability;
81589 + if (!pAd->CommonCfg.bDLSCapable)
81592 + if (!INFRA_ON(pAd))
81595 + if (!PeerDlsRspSanity(pAd, Elem->Msg, Elem->MsgLen, DA, SA, &CapabilityInfo, &StatusCode,
81596 + &SupportedRatesLen, &SupportedRates[0], &HtCapabilityLen, &HtCapability))
81599 + // supported rates array may not be sorted. sort it and find the maximum rate
81600 + for (i=0; i<SupportedRatesLen; i++)
81602 + if (MaxSupportedRateIn500Kbps < (SupportedRates[i] & 0x7f))
81603 + MaxSupportedRateIn500Kbps = SupportedRates[i] & 0x7f;
81606 + DBGPRINT(RT_DEBUG_TRACE,("DLS - PeerDlsRspAction() from %02x:%02x:%02x:%02x:%02x:%02x with StatusCode=%d, CapabilityInfo=0x%x\n",
81607 + SA[0], SA[1], SA[2], SA[3], SA[4], SA[5], StatusCode, CapabilityInfo));
81609 + for (i = 0; i < MAX_NUM_OF_INIT_DLS_ENTRY; i++)
81611 + if (pAd->StaCfg.DLSEntry[i].Valid && MAC_ADDR_EQUAL(SA, pAd->StaCfg.DLSEntry[i].MacAddr))
81613 + if (StatusCode == MLME_SUCCESS)
81615 + MAC_TABLE_ENTRY *pEntry;
81616 + UCHAR MaxSupportedRate = RATE_11;
81618 + pEntry = MacTableInsertDlsEntry(pAd, SA, i);
81620 + switch (MaxSupportedRateIn500Kbps)
81622 + case 108: MaxSupportedRate = RATE_54; break;
81623 + case 96: MaxSupportedRate = RATE_48; break;
81624 + case 72: MaxSupportedRate = RATE_36; break;
81625 + case 48: MaxSupportedRate = RATE_24; break;
81626 + case 36: MaxSupportedRate = RATE_18; break;
81627 + case 24: MaxSupportedRate = RATE_12; break;
81628 + case 18: MaxSupportedRate = RATE_9; break;
81629 + case 12: MaxSupportedRate = RATE_6; break;
81630 + case 22: MaxSupportedRate = RATE_11; break;
81631 + case 11: MaxSupportedRate = RATE_5_5; break;
81632 + case 4: MaxSupportedRate = RATE_2; break;
81633 + case 2: MaxSupportedRate = RATE_1; break;
81634 + default: MaxSupportedRate = RATE_11; break;
81637 + pEntry->MaxSupportedRate = min(pAd->CommonCfg.MaxTxRate, MaxSupportedRate);
81639 + if (pEntry->MaxSupportedRate < RATE_FIRST_OFDM_RATE)
81641 + pEntry->MaxHTPhyMode.field.MODE = MODE_CCK;
81642 + pEntry->MaxHTPhyMode.field.MCS = pEntry->MaxSupportedRate;
81643 + pEntry->MinHTPhyMode.field.MODE = MODE_CCK;
81644 + pEntry->MinHTPhyMode.field.MCS = pEntry->MaxSupportedRate;
81645 + pEntry->HTPhyMode.field.MODE = MODE_CCK;
81646 + pEntry->HTPhyMode.field.MCS = pEntry->MaxSupportedRate;
81650 + pEntry->MaxHTPhyMode.field.MODE = MODE_OFDM;
81651 + pEntry->MaxHTPhyMode.field.MCS = OfdmRateToRxwiMCS[pEntry->MaxSupportedRate];
81652 + pEntry->MinHTPhyMode.field.MODE = MODE_OFDM;
81653 + pEntry->MinHTPhyMode.field.MCS = OfdmRateToRxwiMCS[pEntry->MaxSupportedRate];
81654 + pEntry->HTPhyMode.field.MODE = MODE_OFDM;
81655 + pEntry->HTPhyMode.field.MCS = OfdmRateToRxwiMCS[pEntry->MaxSupportedRate];
81658 + pEntry->MaxHTPhyMode.field.BW = BW_20;
81659 + pEntry->MinHTPhyMode.field.BW = BW_20;
81661 +#ifdef DOT11_N_SUPPORT
81662 + pEntry->HTCapability.MCSSet[0] = 0;
81663 + pEntry->HTCapability.MCSSet[1] = 0;
81665 + // If this Entry supports 802.11n, upgrade to HT rate.
81666 + if ((HtCapabilityLen != 0) && (pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED))
81668 + UCHAR j, bitmask; //k,bitmask;
81671 + if ((HtCapability.HtCapInfo.GF) && (pAd->CommonCfg.DesiredHtPhy.GF))
81673 + pEntry->MaxHTPhyMode.field.MODE = MODE_HTGREENFIELD;
81677 + pEntry->MaxHTPhyMode.field.MODE = MODE_HTMIX;
81678 + pAd->MacTab.fAnyStationNonGF = TRUE;
81679 + pAd->CommonCfg.AddHTInfo.AddHtInfo2.NonGfPresent = 1;
81682 + if ((HtCapability.HtCapInfo.ChannelWidth) && (pAd->CommonCfg.DesiredHtPhy.ChannelWidth))
81684 + pEntry->MaxHTPhyMode.field.BW= BW_40;
81685 + pEntry->MaxHTPhyMode.field.ShortGI = ((pAd->CommonCfg.DesiredHtPhy.ShortGIfor40)&(HtCapability.HtCapInfo.ShortGIfor40));
81689 + pEntry->MaxHTPhyMode.field.BW = BW_20;
81690 + pEntry->MaxHTPhyMode.field.ShortGI = ((pAd->CommonCfg.DesiredHtPhy.ShortGIfor20)&(HtCapability.HtCapInfo.ShortGIfor20));
81691 + pAd->MacTab.fAnyStation20Only = TRUE;
81694 + // find max fixed rate
81695 + for (ii=15; ii>=0; ii--)
81698 + bitmask = (1<<(ii-(j*8)));
81699 + if ( (pAd->StaCfg.DesiredHtPhyInfo.MCSSet[j]&bitmask) && (HtCapability.MCSSet[j]&bitmask))
81701 + pEntry->MaxHTPhyMode.field.MCS = ii;
81708 + if (pAd->StaCfg.DesiredTransmitSetting.field.MCS != MCS_AUTO)
81710 + if (pAd->StaCfg.DesiredTransmitSetting.field.MCS == 32)
81712 + // Fix MCS as HT Duplicated Mode
81713 + pEntry->MaxHTPhyMode.field.BW = 1;
81714 + pEntry->MaxHTPhyMode.field.MODE = MODE_HTMIX;
81715 + pEntry->MaxHTPhyMode.field.STBC = 0;
81716 + pEntry->MaxHTPhyMode.field.ShortGI = 0;
81717 + pEntry->MaxHTPhyMode.field.MCS = 32;
81719 + else if (pEntry->MaxHTPhyMode.field.MCS > pAd->StaCfg.HTPhyMode.field.MCS)
81721 + // STA supports fixed MCS
81722 + pEntry->MaxHTPhyMode.field.MCS = pAd->StaCfg.HTPhyMode.field.MCS;
81726 + pEntry->MaxHTPhyMode.field.STBC = (HtCapability.HtCapInfo.RxSTBC & (pAd->CommonCfg.DesiredHtPhy.TxSTBC));
81727 + pEntry->MpduDensity = HtCapability.HtCapParm.MpduDensity;
81728 + pEntry->MaxRAmpduFactor = HtCapability.HtCapParm.MaxRAmpduFactor;
81729 + pEntry->MmpsMode = (UCHAR)HtCapability.HtCapInfo.MimoPs;
81730 + pEntry->AMsduSize = (UCHAR)HtCapability.HtCapInfo.AMsduSize;
81731 + pEntry->HTPhyMode.word = pEntry->MaxHTPhyMode.word;
81733 + if (HtCapability.HtCapInfo.ShortGIfor20)
81734 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_SGI20_CAPABLE);
81735 + if (HtCapability.HtCapInfo.ShortGIfor40)
81736 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_SGI40_CAPABLE);
81737 + if (HtCapability.HtCapInfo.TxSTBC)
81738 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_TxSTBC_CAPABLE);
81739 + if (HtCapability.HtCapInfo.RxSTBC)
81740 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_RxSTBC_CAPABLE);
81741 + if (HtCapability.ExtHtCapInfo.PlusHTC)
81742 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_HTC_CAPABLE);
81743 + if (pAd->CommonCfg.bRdg && HtCapability.ExtHtCapInfo.RDGSupport)
81744 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_RDG_CAPABLE);
81745 + if (HtCapability.ExtHtCapInfo.MCSFeedback == 0x03)
81746 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_MCSFEEDBACK_CAPABLE);
81748 + NdisMoveMemory(&pEntry->HTCapability, &HtCapability, sizeof(HT_CAPABILITY_IE));
81750 +#endif // DOT11_N_SUPPORT //
81751 + pEntry->HTPhyMode.word = pEntry->MaxHTPhyMode.word;
81752 + pEntry->CurrTxRate = pEntry->MaxSupportedRate;
81753 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_WMM_CAPABLE);
81755 + if (pAd->StaCfg.bAutoTxRateSwitch == TRUE)
81758 + UCHAR TableSize = 0;
81760 + MlmeSelectTxRateTable(pAd, pEntry, &pTable, &TableSize, &pEntry->CurrTxRateIndex);
81761 + pEntry->bAutoTxRateSwitch = TRUE;
81765 + pEntry->HTPhyMode.field.MODE = pAd->StaCfg.HTPhyMode.field.MODE;
81766 + pEntry->HTPhyMode.field.MCS = pAd->StaCfg.HTPhyMode.field.MCS;
81767 + pEntry->bAutoTxRateSwitch = FALSE;
81769 + RTMPUpdateLegacyTxSetting((UCHAR)pAd->StaCfg.DesiredTransmitSetting.field.FixedTxMode, pEntry);
81771 + pEntry->RateLen = SupportedRatesLen;
81773 + if (pAd->StaCfg.AuthMode >= Ndis802_11AuthModeWPA)
81775 + // If support WPA or WPA2, start STAKey hand shake,
81776 + // If failed hand shake, just tear down peer DLS
81777 + if (RTMPSendSTAKeyRequest(pAd, pAd->StaCfg.DLSEntry[i].MacAddr) != NDIS_STATUS_SUCCESS)
81779 + MLME_DLS_REQ_STRUCT MlmeDlsReq;
81780 + USHORT reason = REASON_QOS_CIPHER_NOT_SUPPORT;
81782 + DlsParmFill(pAd, &MlmeDlsReq, &pAd->StaCfg.DLSEntry[i], reason);
81783 + MlmeEnqueue(pAd, DLS_STATE_MACHINE, MT2_MLME_DLS_TEAR_DOWN, sizeof(MLME_DLS_REQ_STRUCT), &MlmeDlsReq);
81784 + pAd->StaCfg.DLSEntry[i].Status = DLS_NONE;
81785 + pAd->StaCfg.DLSEntry[i].Valid = FALSE;
81786 + DBGPRINT(RT_DEBUG_ERROR,("DLS - PeerDlsRspAction failed when call RTMPSendSTAKeyRequest \n"));
81790 + pAd->StaCfg.DLSEntry[i].Status = DLS_WAIT_KEY;
81791 + DBGPRINT(RT_DEBUG_TRACE,("DLS - waiting for STAKey handshake procedure\n"));
81796 + RTMPCancelTimer(&pAd->StaCfg.DLSEntry[i].Timer, &TimerCancelled);
81797 + pAd->StaCfg.DLSEntry[i].Status = DLS_FINISH;
81798 + DBGPRINT(RT_DEBUG_TRACE,("DLS - PeerDlsRspAction() from %02x:%02x:%02x:%02x:%02x:%02x Succeed with WEP or no security\n", SA[0], SA[1], SA[2], SA[3], SA[4], SA[5]));
81801 + //initialize seq no for DLS frames.
81802 + pAd->StaCfg.DLSEntry[i].Sequence = 0;
81803 + if (HtCapabilityLen != 0)
81804 + pAd->StaCfg.DLSEntry[i].bHTCap = TRUE;
81806 + pAd->StaCfg.DLSEntry[i].bHTCap = FALSE;
81810 + // DLS setup procedure failed.
81811 + pAd->StaCfg.DLSEntry[i].Status = DLS_NONE;
81812 + pAd->StaCfg.DLSEntry[i].Valid = FALSE;
81813 + RTMPCancelTimer(&pAd->StaCfg.DLSEntry[i].Timer, &TimerCancelled);
81814 + DBGPRINT(RT_DEBUG_ERROR,("DLS - PeerDlsRspAction failed with StatusCode=%d \n", StatusCode));
81819 + if (i >= MAX_NUM_OF_INIT_DLS_ENTRY)
81821 + DBGPRINT(RT_DEBUG_TRACE,("DLS - PeerDlsRspAction() update timeout value \n"));
81822 + for (i=(MAX_NUM_OF_DLS_ENTRY-1); i>=MAX_NUM_OF_INIT_DLS_ENTRY; i--)
81824 + if (pAd->StaCfg.DLSEntry[i].Valid && MAC_ADDR_EQUAL(SA, pAd->StaCfg.DLSEntry[i].MacAddr))
81826 + if (StatusCode == MLME_SUCCESS)
81828 + MAC_TABLE_ENTRY *pEntry;
81829 + UCHAR MaxSupportedRate = RATE_11;
81831 + pEntry = MacTableInsertDlsEntry(pAd, SA, i);
81833 + switch (MaxSupportedRateIn500Kbps)
81835 + case 108: MaxSupportedRate = RATE_54; break;
81836 + case 96: MaxSupportedRate = RATE_48; break;
81837 + case 72: MaxSupportedRate = RATE_36; break;
81838 + case 48: MaxSupportedRate = RATE_24; break;
81839 + case 36: MaxSupportedRate = RATE_18; break;
81840 + case 24: MaxSupportedRate = RATE_12; break;
81841 + case 18: MaxSupportedRate = RATE_9; break;
81842 + case 12: MaxSupportedRate = RATE_6; break;
81843 + case 22: MaxSupportedRate = RATE_11; break;
81844 + case 11: MaxSupportedRate = RATE_5_5; break;
81845 + case 4: MaxSupportedRate = RATE_2; break;
81846 + case 2: MaxSupportedRate = RATE_1; break;
81847 + default: MaxSupportedRate = RATE_11; break;
81850 + pEntry->MaxSupportedRate = min(pAd->CommonCfg.MaxTxRate, MaxSupportedRate);
81852 + if (pEntry->MaxSupportedRate < RATE_FIRST_OFDM_RATE)
81854 + pEntry->MaxHTPhyMode.field.MODE = MODE_CCK;
81855 + pEntry->MaxHTPhyMode.field.MCS = pEntry->MaxSupportedRate;
81856 + pEntry->MinHTPhyMode.field.MODE = MODE_CCK;
81857 + pEntry->MinHTPhyMode.field.MCS = pEntry->MaxSupportedRate;
81858 + pEntry->HTPhyMode.field.MODE = MODE_CCK;
81859 + pEntry->HTPhyMode.field.MCS = pEntry->MaxSupportedRate;
81863 + pEntry->MaxHTPhyMode.field.MODE = MODE_OFDM;
81864 + pEntry->MaxHTPhyMode.field.MCS = OfdmRateToRxwiMCS[pEntry->MaxSupportedRate];
81865 + pEntry->MinHTPhyMode.field.MODE = MODE_OFDM;
81866 + pEntry->MinHTPhyMode.field.MCS = OfdmRateToRxwiMCS[pEntry->MaxSupportedRate];
81867 + pEntry->HTPhyMode.field.MODE = MODE_OFDM;
81868 + pEntry->HTPhyMode.field.MCS = OfdmRateToRxwiMCS[pEntry->MaxSupportedRate];
81871 + pEntry->MaxHTPhyMode.field.BW = BW_20;
81872 + pEntry->MinHTPhyMode.field.BW = BW_20;
81874 +#ifdef DOT11_N_SUPPORT
81875 + pEntry->HTCapability.MCSSet[0] = 0;
81876 + pEntry->HTCapability.MCSSet[1] = 0;
81878 + // If this Entry supports 802.11n, upgrade to HT rate.
81879 + if ((HtCapabilityLen != 0) && (pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED))
81881 + UCHAR j, bitmask; //k,bitmask;
81884 + if ((HtCapability.HtCapInfo.GF) && (pAd->CommonCfg.DesiredHtPhy.GF))
81886 + pEntry->MaxHTPhyMode.field.MODE = MODE_HTGREENFIELD;
81890 + pEntry->MaxHTPhyMode.field.MODE = MODE_HTMIX;
81891 + pAd->MacTab.fAnyStationNonGF = TRUE;
81892 + pAd->CommonCfg.AddHTInfo.AddHtInfo2.NonGfPresent = 1;
81895 + if ((HtCapability.HtCapInfo.ChannelWidth) && (pAd->CommonCfg.DesiredHtPhy.ChannelWidth))
81897 + pEntry->MaxHTPhyMode.field.BW= BW_40;
81898 + pEntry->MaxHTPhyMode.field.ShortGI = ((pAd->CommonCfg.DesiredHtPhy.ShortGIfor40)&(HtCapability.HtCapInfo.ShortGIfor40));
81902 + pEntry->MaxHTPhyMode.field.BW = BW_20;
81903 + pEntry->MaxHTPhyMode.field.ShortGI = ((pAd->CommonCfg.DesiredHtPhy.ShortGIfor20)&(HtCapability.HtCapInfo.ShortGIfor20));
81904 + pAd->MacTab.fAnyStation20Only = TRUE;
81907 + // find max fixed rate
81908 + for (ii=15; ii>=0; ii--)
81911 + bitmask = (1<<(ii-(j*8)));
81912 + if ( (pAd->StaCfg.DesiredHtPhyInfo.MCSSet[j]&bitmask) && (HtCapability.MCSSet[j]&bitmask))
81914 + pEntry->MaxHTPhyMode.field.MCS = ii;
81921 + if (pAd->StaCfg.DesiredTransmitSetting.field.MCS != MCS_AUTO)
81923 + printk("@@@ pAd->CommonCfg.RegTransmitSetting.field.MCS = %d\n",
81924 + pAd->StaCfg.DesiredTransmitSetting.field.MCS);
81925 + if (pAd->StaCfg.DesiredTransmitSetting.field.MCS == 32)
81927 + // Fix MCS as HT Duplicated Mode
81928 + pEntry->MaxHTPhyMode.field.BW = 1;
81929 + pEntry->MaxHTPhyMode.field.MODE = MODE_HTMIX;
81930 + pEntry->MaxHTPhyMode.field.STBC = 0;
81931 + pEntry->MaxHTPhyMode.field.ShortGI = 0;
81932 + pEntry->MaxHTPhyMode.field.MCS = 32;
81934 + else if (pEntry->MaxHTPhyMode.field.MCS > pAd->StaCfg.HTPhyMode.field.MCS)
81936 + // STA supports fixed MCS
81937 + pEntry->MaxHTPhyMode.field.MCS = pAd->StaCfg.HTPhyMode.field.MCS;
81941 + pEntry->MaxHTPhyMode.field.STBC = (HtCapability.HtCapInfo.RxSTBC & (pAd->CommonCfg.DesiredHtPhy.TxSTBC));
81942 + pEntry->MpduDensity = HtCapability.HtCapParm.MpduDensity;
81943 + pEntry->MaxRAmpduFactor = HtCapability.HtCapParm.MaxRAmpduFactor;
81944 + pEntry->MmpsMode = (UCHAR)HtCapability.HtCapInfo.MimoPs;
81945 + pEntry->AMsduSize = (UCHAR)HtCapability.HtCapInfo.AMsduSize;
81946 + pEntry->HTPhyMode.word = pEntry->MaxHTPhyMode.word;
81948 + if (HtCapability.HtCapInfo.ShortGIfor20)
81949 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_SGI20_CAPABLE);
81950 + if (HtCapability.HtCapInfo.ShortGIfor40)
81951 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_SGI40_CAPABLE);
81952 + if (HtCapability.HtCapInfo.TxSTBC)
81953 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_TxSTBC_CAPABLE);
81954 + if (HtCapability.HtCapInfo.RxSTBC)
81955 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_RxSTBC_CAPABLE);
81956 + if (HtCapability.ExtHtCapInfo.PlusHTC)
81957 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_HTC_CAPABLE);
81958 + if (pAd->CommonCfg.bRdg && HtCapability.ExtHtCapInfo.RDGSupport)
81959 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_RDG_CAPABLE);
81960 + if (HtCapability.ExtHtCapInfo.MCSFeedback == 0x03)
81961 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_MCSFEEDBACK_CAPABLE);
81963 + NdisMoveMemory(&pEntry->HTCapability, &HtCapability, sizeof(HT_CAPABILITY_IE));
81965 +#endif // DOT11_N_SUPPORT //
81967 + pEntry->HTPhyMode.word = pEntry->MaxHTPhyMode.word;
81968 + pEntry->CurrTxRate = pEntry->MaxSupportedRate;
81969 + CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_WMM_CAPABLE);
81971 + if (pAd->StaCfg.bAutoTxRateSwitch == TRUE)
81974 + UCHAR TableSize = 0;
81976 + MlmeSelectTxRateTable(pAd, pEntry, &pTable, &TableSize, &pEntry->CurrTxRateIndex);
81977 + pEntry->bAutoTxRateSwitch = TRUE;
81981 + pEntry->HTPhyMode.field.MODE = pAd->StaCfg.HTPhyMode.field.MODE;
81982 + pEntry->HTPhyMode.field.MCS = pAd->StaCfg.HTPhyMode.field.MCS;
81983 + pEntry->bAutoTxRateSwitch = FALSE;
81985 + RTMPUpdateLegacyTxSetting((UCHAR)pAd->StaCfg.DesiredTransmitSetting.field.FixedTxMode, pEntry);
81987 + pEntry->RateLen = SupportedRatesLen;
81989 + if (pAd->StaCfg.AuthMode >= Ndis802_11AuthModeWPA)
81991 + // If support WPA or WPA2, start STAKey hand shake,
81992 + // If failed hand shake, just tear down peer DLS
81993 + if (RTMPSendSTAKeyRequest(pAd, pAd->StaCfg.DLSEntry[i].MacAddr) != NDIS_STATUS_SUCCESS)
81995 + MLME_DLS_REQ_STRUCT MlmeDlsReq;
81996 + USHORT reason = REASON_QOS_CIPHER_NOT_SUPPORT;
81998 + DlsParmFill(pAd, &MlmeDlsReq, &pAd->StaCfg.DLSEntry[i], reason);
81999 + MlmeEnqueue(pAd, DLS_STATE_MACHINE, MT2_MLME_DLS_TEAR_DOWN, sizeof(MLME_DLS_REQ_STRUCT), &MlmeDlsReq);
82000 + pAd->StaCfg.DLSEntry[i].Status = DLS_NONE;
82001 + pAd->StaCfg.DLSEntry[i].Valid = FALSE;
82002 + DBGPRINT(RT_DEBUG_ERROR,("DLS - PeerDlsRspAction failed when call RTMPSendSTAKeyRequest \n"));
82006 + pAd->StaCfg.DLSEntry[i].Status = DLS_WAIT_KEY;
82007 + DBGPRINT(RT_DEBUG_TRACE,("DLS - waiting for STAKey handshake procedure\n"));
82012 + RTMPCancelTimer(&pAd->StaCfg.DLSEntry[i].Timer, &TimerCancelled);
82013 + pAd->StaCfg.DLSEntry[i].Status = DLS_FINISH;
82014 + DBGPRINT(RT_DEBUG_TRACE,("DLS - PeerDlsRspAction() from %02x:%02x:%02x:%02x:%02x:%02x Succeed with WEP or no security\n", SA[0], SA[1], SA[2], SA[3], SA[4], SA[5]));
82016 + pAd->StaCfg.DLSEntry[i].Sequence = 0;
82017 + if (HtCapabilityLen != 0)
82018 + pAd->StaCfg.DLSEntry[i].bHTCap = TRUE;
82020 + pAd->StaCfg.DLSEntry[i].bHTCap = FALSE;
82024 + // DLS setup procedure failed.
82025 + pAd->StaCfg.DLSEntry[i].Status = DLS_NONE;
82026 + pAd->StaCfg.DLSEntry[i].Valid = FALSE;
82027 + RTMPCancelTimer(&pAd->StaCfg.DLSEntry[i].Timer, &TimerCancelled);
82028 + DBGPRINT(RT_DEBUG_ERROR,("DLS - PeerDlsRspAction failed with StatusCode=%d \n", StatusCode));
82036 + ==========================================================================
82039 + IRQL = DISPATCH_LEVEL
82041 + ==========================================================================
82043 +VOID MlmeDlsTearDownAction(
82044 + IN PRTMP_ADAPTER pAd,
82045 + IN MLME_QUEUE_ELEM *Elem)
82047 + PUCHAR pOutBuffer = NULL;
82048 + NDIS_STATUS NStatus;
82049 + ULONG FrameLen = 0;
82050 + UCHAR Category = CATEGORY_DLS;
82051 + UCHAR Action = ACTION_DLS_TEARDOWN;
82052 + USHORT ReasonCode = REASON_QOS_UNSPECIFY;
82053 + HEADER_802_11 DlsTearDownHdr;
82054 + PRT_802_11_DLS pDLS;
82055 + BOOLEAN TimerCancelled;
82058 + if(!MlmeDlsReqSanity(pAd, Elem->Msg, Elem->MsgLen, &pDLS, &ReasonCode))
82061 + DBGPRINT(RT_DEBUG_TRACE,("DLS - MlmeDlsTearDownAction() with ReasonCode=%d \n", ReasonCode));
82063 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
82064 + if (NStatus != NDIS_STATUS_SUCCESS)
82066 + DBGPRINT(RT_DEBUG_ERROR,("DLS - MlmeDlsTearDownAction() allocate memory failed \n"));
82070 + ActHeaderInit(pAd, &DlsTearDownHdr, pAd->CommonCfg.Bssid, pAd->CurrentAddress, pAd->CommonCfg.Bssid);
82072 + // Build basic frame first
82073 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
82074 + sizeof(HEADER_802_11), &DlsTearDownHdr,
82077 + 6, &pDLS->MacAddr,
82078 + 6, pAd->CurrentAddress,
82082 + MiniportMMRequest(pAd, QID_AC_BE, pOutBuffer, FrameLen);
82083 + MlmeFreeMemory(pAd, pOutBuffer);
82084 + RTMPCancelTimer(&pDLS->Timer, &TimerCancelled);
82086 + // Remove key in local dls table entry
82087 + for (i = 0; i < MAX_NUM_OF_INIT_DLS_ENTRY; i++)
82089 + if (MAC_ADDR_EQUAL(pDLS->MacAddr, pAd->StaCfg.DLSEntry[i].MacAddr))
82091 + MacTableDeleteDlsEntry(pAd, pAd->StaCfg.DLSEntry[i].MacTabMatchWCID, pAd->StaCfg.DLSEntry[i].MacAddr);
82095 + // clear peer dls table entry
82096 + for (i = MAX_NUM_OF_INIT_DLS_ENTRY; i < MAX_NUM_OF_DLS_ENTRY; i++)
82098 + if (MAC_ADDR_EQUAL(pDLS->MacAddr, pAd->StaCfg.DLSEntry[i].MacAddr))
82100 + pAd->StaCfg.DLSEntry[i].Status = DLS_NONE;
82101 + pAd->StaCfg.DLSEntry[i].Valid = FALSE;
82102 + RTMPCancelTimer(&pAd->StaCfg.DLSEntry[i].Timer, &TimerCancelled);
82103 + MacTableDeleteDlsEntry(pAd, pAd->StaCfg.DLSEntry[i].MacTabMatchWCID, pAd->StaCfg.DLSEntry[i].MacAddr);
82109 + ==========================================================================
82112 + IRQL = DISPATCH_LEVEL
82114 + ==========================================================================
82116 +VOID PeerDlsTearDownAction(
82117 + IN PRTMP_ADAPTER pAd,
82118 + IN MLME_QUEUE_ELEM *Elem)
82120 + UCHAR DA[MAC_ADDR_LEN], SA[MAC_ADDR_LEN];
82121 + USHORT ReasonCode;
82123 + BOOLEAN TimerCancelled;
82125 + if (!pAd->CommonCfg.bDLSCapable)
82128 + if (!INFRA_ON(pAd))
82131 + if (!PeerDlsTearDownSanity(pAd, Elem->Msg, Elem->MsgLen, DA, SA, &ReasonCode))
82134 + DBGPRINT(RT_DEBUG_TRACE,("DLS - PeerDlsTearDownAction() from %02x:%02x:%02x:%02x:%02x:%02x with ReasonCode=%d\n", SA[0], SA[1], SA[2], SA[3], SA[4], SA[5], ReasonCode));
82136 + // clear local dls table entry
82137 + for (i=0; i<MAX_NUM_OF_INIT_DLS_ENTRY; i++)
82139 + if (pAd->StaCfg.DLSEntry[i].Valid && MAC_ADDR_EQUAL(SA, pAd->StaCfg.DLSEntry[i].MacAddr))
82141 + pAd->StaCfg.DLSEntry[i].Status = DLS_NONE;
82142 + pAd->StaCfg.DLSEntry[i].Valid = FALSE;
82143 + RTMPCancelTimer(&pAd->StaCfg.DLSEntry[i].Timer, &TimerCancelled);
82144 + //AsicDelWcidTab(pAd, pAd->StaCfg.DLSEntry[i].MacTabMatchWCID);
82145 + //AsicRemovePairwiseKeyEntry(pAd, BSS0, pAd->StaCfg.DLSEntry[i].MacTabMatchWCID);
82146 + MacTableDeleteDlsEntry(pAd, pAd->StaCfg.DLSEntry[i].MacTabMatchWCID, pAd->StaCfg.DLSEntry[i].MacAddr);
82150 + // clear peer dls table entry
82151 + for (i=MAX_NUM_OF_INIT_DLS_ENTRY; i<MAX_NUM_OF_DLS_ENTRY; i++)
82153 + if (pAd->StaCfg.DLSEntry[i].Valid && MAC_ADDR_EQUAL(SA, pAd->StaCfg.DLSEntry[i].MacAddr))
82155 + pAd->StaCfg.DLSEntry[i].Status = DLS_NONE;
82156 + pAd->StaCfg.DLSEntry[i].Valid = FALSE;
82157 + RTMPCancelTimer(&pAd->StaCfg.DLSEntry[i].Timer, &TimerCancelled);
82158 + //AsicDelWcidTab(pAd, pAd->StaCfg.DLSEntry[i].MacTabMatchWCID);
82159 + //AsicRemovePairwiseKeyEntry(pAd, BSS0, pAd->StaCfg.DLSEntry[i].MacTabMatchWCID);
82160 + MacTableDeleteDlsEntry(pAd, pAd->StaCfg.DLSEntry[i].MacTabMatchWCID, pAd->StaCfg.DLSEntry[i].MacAddr);
82166 + ==========================================================================
82169 + IRQL = DISPATCH_LEVEL
82171 + ==========================================================================
82173 +VOID RTMPCheckDLSTimeOut(
82174 + IN PRTMP_ADAPTER pAd)
82177 + MLME_DLS_REQ_STRUCT MlmeDlsReq;
82178 + USHORT reason = REASON_QOS_UNSPECIFY;
82180 + if (! pAd->CommonCfg.bDLSCapable)
82183 + if (! INFRA_ON(pAd))
82186 + // If timeout value is equaled to zero, it means always not be timeout.
82188 + // update local dls table entry
82189 + for (i=0; i<MAX_NUM_OF_INIT_DLS_ENTRY; i++)
82191 + if ((pAd->StaCfg.DLSEntry[i].Valid) && (pAd->StaCfg.DLSEntry[i].Status == DLS_FINISH)
82192 + && (pAd->StaCfg.DLSEntry[i].TimeOut != 0))
82194 + pAd->StaCfg.DLSEntry[i].CountDownTimer --;
82196 + if (pAd->StaCfg.DLSEntry[i].CountDownTimer == 0)
82198 + reason = REASON_QOS_REQUEST_TIMEOUT;
82199 + pAd->StaCfg.DLSEntry[i].Valid = FALSE;
82200 + pAd->StaCfg.DLSEntry[i].Status = DLS_NONE;
82201 + DlsParmFill(pAd, &MlmeDlsReq, &pAd->StaCfg.DLSEntry[i], reason);
82202 + MlmeEnqueue(pAd, DLS_STATE_MACHINE, MT2_MLME_DLS_TEAR_DOWN, sizeof(MLME_DLS_REQ_STRUCT), &MlmeDlsReq);
82207 + // update peer dls table entry
82208 + for (i=MAX_NUM_OF_INIT_DLS_ENTRY; i<MAX_NUM_OF_DLS_ENTRY; i++)
82210 + if ((pAd->StaCfg.DLSEntry[i].Valid) && (pAd->StaCfg.DLSEntry[i].Status == DLS_FINISH)
82211 + && (pAd->StaCfg.DLSEntry[i].TimeOut != 0))
82213 + pAd->StaCfg.DLSEntry[i].CountDownTimer --;
82215 + if (pAd->StaCfg.DLSEntry[i].CountDownTimer == 0)
82217 + reason = REASON_QOS_REQUEST_TIMEOUT;
82218 + pAd->StaCfg.DLSEntry[i].Valid = FALSE;
82219 + pAd->StaCfg.DLSEntry[i].Status = DLS_NONE;
82220 + DlsParmFill(pAd, &MlmeDlsReq, &pAd->StaCfg.DLSEntry[i], reason);
82221 + MlmeEnqueue(pAd, DLS_STATE_MACHINE, MT2_MLME_DLS_TEAR_DOWN, sizeof(MLME_DLS_REQ_STRUCT), &MlmeDlsReq);
82228 + ==========================================================================
82231 + IRQL = DISPATCH_LEVEL
82233 + ==========================================================================
82235 +BOOLEAN RTMPRcvFrameDLSCheck(
82236 + IN PRTMP_ADAPTER pAd,
82237 + IN PHEADER_802_11 pHeader,
82239 + IN PRT28XX_RXD_STRUC pRxD)
82242 + BOOLEAN bFindEntry = FALSE;
82243 + BOOLEAN bSTAKeyFrame = FALSE;
82244 + PEAPOL_PACKET pEap;
82245 + PUCHAR pProto, pAddr = NULL;
82246 + PUCHAR pSTAKey = NULL;
82247 + UCHAR ZeroReplay[LEN_KEY_DESC_REPLAY];
82248 + UCHAR Mic[16], OldMic[16];
82249 + UCHAR digest[80];
82250 + UCHAR DlsPTK[80];
82252 + BOOLEAN TimerCancelled;
82253 + CIPHER_KEY PairwiseKey;
82256 + if (! pAd->CommonCfg.bDLSCapable)
82257 + return bSTAKeyFrame;
82259 + if (! INFRA_ON(pAd))
82260 + return bSTAKeyFrame;
82262 + if (! (pHeader->FC.SubType & 0x08))
82263 + return bSTAKeyFrame;
82265 + if (Len < LENGTH_802_11 + 6 + 2 + 2)
82266 + return bSTAKeyFrame;
82268 + pProto = (PUCHAR)pHeader + LENGTH_802_11 + 2 + 6; // QOS Control field , 0xAA 0xAA 0xAA 0x00 0x00 0x00
82269 + pAddr = pHeader->Addr2;
82271 + // L2PAD bit on will pad 2 bytes at LLC
82277 + if (RTMPEqualMemory(EAPOL, pProto, 2) && (pAd->StaCfg.AuthMode >= Ndis802_11AuthModeWPA))
82279 + pEap = (PEAPOL_PACKET) (pProto + 2);
82281 + DBGPRINT(RT_DEBUG_TRACE,("DLS - Sniff Len=%ld, DataLen=%d, KeyMic=%d, Install=%d, KeyAck=%d, Secure=%d, EKD_DL=%d, Error=%d, Request=%d\n", Len,
82282 + (LENGTH_802_11 + 6 + 2 + 2 + sizeof(EAPOL_PACKET) - MAX_LEN_OF_RSNIE + 16),
82283 + pEap->KeyDesc.KeyInfo.KeyMic,
82284 + pEap->KeyDesc.KeyInfo.Install,
82285 + pEap->KeyDesc.KeyInfo.KeyAck,
82286 + pEap->KeyDesc.KeyInfo.Secure,
82287 + pEap->KeyDesc.KeyInfo.EKD_DL,
82288 + pEap->KeyDesc.KeyInfo.Error,
82289 + pEap->KeyDesc.KeyInfo.Request));
82291 + if ((Len >= (LENGTH_802_11 + 6 + 2 + 2 + sizeof(EAPOL_PACKET) - MAX_LEN_OF_RSNIE + 16)) && pEap->KeyDesc.KeyInfo.KeyMic
82292 + && pEap->KeyDesc.KeyInfo.Install && pEap->KeyDesc.KeyInfo.KeyAck && pEap->KeyDesc.KeyInfo.Secure
82293 + && pEap->KeyDesc.KeyInfo.EKD_DL && !pEap->KeyDesc.KeyInfo.Error && !pEap->KeyDesc.KeyInfo.Request)
82295 + // First validate replay counter, only accept message with larger replay counter
82296 + // Let equal pass, some AP start with all zero replay counter
82297 + NdisZeroMemory(ZeroReplay, LEN_KEY_DESC_REPLAY);
82298 + if ((RTMPCompareMemory(pEap->KeyDesc.ReplayCounter, pAd->StaCfg.ReplayCounter, LEN_KEY_DESC_REPLAY) != 1) &&
82299 + (RTMPCompareMemory(pEap->KeyDesc.ReplayCounter, ZeroReplay, LEN_KEY_DESC_REPLAY) != 0))
82300 + return bSTAKeyFrame;
82302 + //RTMPMoveMemory(pAd->StaCfg.ReplayCounter, pEap->KeyDesc.ReplayCounter, LEN_KEY_DESC_REPLAY);
82303 + RTMPMoveMemory(pAd->StaCfg.DlsReplayCounter, pEap->KeyDesc.ReplayCounter, LEN_KEY_DESC_REPLAY);
82304 + DBGPRINT(RT_DEBUG_TRACE,("DLS - Sniff replay counter (%02x-%02x-%02x-%02x-%02x-%02x-%02x-%02x) Len=%ld, KeyDataLen=%d\n",
82305 + pAd->StaCfg.ReplayCounter[0], pAd->StaCfg.ReplayCounter[1], pAd->StaCfg.ReplayCounter[2],
82306 + pAd->StaCfg.ReplayCounter[3], pAd->StaCfg.ReplayCounter[4], pAd->StaCfg.ReplayCounter[5],
82307 + pAd->StaCfg.ReplayCounter[6], pAd->StaCfg.ReplayCounter[7], Len, pEap->KeyDesc.KeyData[1]));
82309 + // put these code segment to get the replay counter
82310 + if (pAd->StaCfg.PortSecured == WPA_802_1X_PORT_NOT_SECURED)
82311 + return bSTAKeyFrame;
82313 + // Check MIC value
82314 + // Save the MIC and replace with zero
82315 + // use proprietary PTK
82316 + NdisZeroMemory(temp, 64);
82317 + NdisMoveMemory(temp, "IEEE802.11 WIRELESS ACCESS POINT", 32);
82318 + WpaCountPTK(pAd, temp, temp, pAd->CommonCfg.Bssid, temp, pAd->CurrentAddress, DlsPTK, LEN_PTK);
82320 + NdisMoveMemory(OldMic, pEap->KeyDesc.KeyMic, LEN_KEY_DESC_MIC);
82321 + NdisZeroMemory(pEap->KeyDesc.KeyMic, LEN_KEY_DESC_MIC);
82322 + if (pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
82325 + HMAC_SHA1((PUCHAR) pEap, pEap->Body_Len[1] + 4, DlsPTK, LEN_EAP_MICK, digest);
82326 + NdisMoveMemory(Mic, digest, LEN_KEY_DESC_MIC);
82330 + hmac_md5(DlsPTK, LEN_EAP_MICK, (PUCHAR) pEap, pEap->Body_Len[1] + 4, Mic);
82333 + if (!NdisEqualMemory(OldMic, Mic, LEN_KEY_DESC_MIC))
82335 + DBGPRINT(RT_DEBUG_ERROR, ("MIC Different in Msg1 of STAKey handshake! \n"));
82336 + return bSTAKeyFrame;
82339 + DBGPRINT(RT_DEBUG_TRACE, ("MIC VALID in Msg1 of STAKey handshake! \n"));
82341 + if ((pEap->KeyDesc.KeyData[0] == 0xDD) && (pEap->KeyDesc.KeyData[2] == 0x00) && (pEap->KeyDesc.KeyData[3] == 0x0C)
82342 + && (pEap->KeyDesc.KeyData[4] == 0x43) && (pEap->KeyDesc.KeyData[5] == 0x02))
82344 + pAddr = pEap->KeyDesc.KeyData + 8; // Tpe(1), Len(1), OUI(3), DataType(1), Reserved(2)
82345 + pSTAKey = pEap->KeyDesc.KeyData + 14; // Tpe(1), Len(1), OUI(3), DataType(1), Reserved(2), STAKey_Mac_Addr(6)
82347 + DBGPRINT(RT_DEBUG_TRACE,("DLS - Receive STAKey Message-1 from %02x:%02x:%02x:%02x:%02x:%02x Len=%ld, KeyDataLen=%d\n",
82348 + pAddr[0], pAddr[1], pAddr[2], pAddr[3], pAddr[4], pAddr[5], Len, pEap->KeyDesc.KeyData[1]));
82350 + bSTAKeyFrame = TRUE;
82353 + if ((pEap->KeyDesc.KeyData[0] == 0xDD) && (pEap->KeyDesc.KeyData[2] == 0x00) && (pEap->KeyDesc.KeyData[3] == 0x0F)
82354 + && (pEap->KeyDesc.KeyData[4] == 0xAC) && (pEap->KeyDesc.KeyData[5] == 0x02))
82356 + pAddr = pEap->KeyDesc.KeyData + 8; // Tpe(1), Len(1), OUI(3), DataType(1), Reserved(2)
82357 + pSTAKey = pEap->KeyDesc.KeyData + 14; // Tpe(1), Len(1), OUI(3), DataType(1), Reserved(2), STAKey_Mac_Addr(6)
82359 + DBGPRINT(RT_DEBUG_TRACE,("DLS - Receive STAKey Message-1 from %02x:%02x:%02x:%02x:%02x:%02x Len=%d, KeyDataLen=%d\n",
82360 + pAddr[0], pAddr[1], pAddr[2], pAddr[3], pAddr[4], pAddr[5], Len, pEap->KeyDesc.KeyData[1]));
82362 + bSTAKeyFrame = TRUE;
82367 + else if (Len >= (LENGTH_802_11 + 6 + 2 + 2 + sizeof(EAPOL_PACKET) - MAX_LEN_OF_RSNIE))
82369 + RTMPMoveMemory(pAd->StaCfg.DlsReplayCounter, pEap->KeyDesc.ReplayCounter, LEN_KEY_DESC_REPLAY);
82370 + DBGPRINT(RT_DEBUG_TRACE,("DLS - Sniff replay counter 2(%02x-%02x-%02x-%02x-%02x-%02x-%02x-%02x) Len=%ld, KeyDataLen=%d\n",
82371 + pAd->StaCfg.ReplayCounter[0], pAd->StaCfg.ReplayCounter[1], pAd->StaCfg.ReplayCounter[2],
82372 + pAd->StaCfg.ReplayCounter[3], pAd->StaCfg.ReplayCounter[4], pAd->StaCfg.ReplayCounter[5],
82373 + pAd->StaCfg.ReplayCounter[6], pAd->StaCfg.ReplayCounter[7], Len, pEap->KeyDesc.KeyData[1]));
82378 + // If timeout value is equaled to zero, it means always not be timeout.
82379 + // update local dls table entry
82380 + for (i= 0; i < MAX_NUM_OF_INIT_DLS_ENTRY; i++)
82382 + if (pAd->StaCfg.DLSEntry[i].Valid && MAC_ADDR_EQUAL(pAddr, pAd->StaCfg.DLSEntry[i].MacAddr))
82384 + if (bSTAKeyFrame)
82386 + PMAC_TABLE_ENTRY pEntry;
82388 + // STAKey frame, add pairwise key table
82389 + pAd->StaCfg.DLSEntry[i].Status = DLS_FINISH;
82390 + RTMPCancelTimer(&pAd->StaCfg.DLSEntry[i].Timer, &TimerCancelled);
82392 + PairwiseKey.KeyLen = LEN_TKIP_EK;
82393 + NdisMoveMemory(PairwiseKey.Key, &pSTAKey[0], LEN_TKIP_EK);
82394 + NdisMoveMemory(PairwiseKey.TxMic, &pSTAKey[16], LEN_TKIP_RXMICK);
82395 + NdisMoveMemory(PairwiseKey.RxMic, &pSTAKey[24], LEN_TKIP_TXMICK);
82397 + PairwiseKey.CipherAlg = pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg;
82399 + pEntry = DlsEntryTableLookup(pAd, pAd->StaCfg.DLSEntry[i].MacAddr, TRUE);
82400 + //AsicAddKeyEntry(pAd, (USHORT)(i + 2), BSS0, 0, &PairwiseKey, TRUE, TRUE); // reserve 0 for multicast, 1 for unicast
82401 + //AsicUpdateRxWCIDTable(pAd, (USHORT)(i + 2), pAddr);
82402 + // Add Pair-wise key to Asic
82404 +//Benson modified for USB interface, avoid in interrupt when write key, 20080724 -->
82406 + RT_ADD_PAIRWISE_KEY_ENTRY KeyInfo;
82407 + COPY_MAC_ADDR(KeyInfo.MacAddr,pAd->StaCfg.DLSEntry[i].MacAddr);
82408 + KeyInfo.MacTabMatchWCID=pAd->StaCfg.DLSEntry[i].MacTabMatchWCID;
82409 + NdisMoveMemory(&KeyInfo.CipherKey, &PairwiseKey,sizeof(CIPHER_KEY));
82410 + RTUSBEnqueueInternalCmd(pAd, RT_CMD_SET_KEY_TABLE, &KeyInfo, sizeof(RT_ADD_PAIRWISE_KEY_ENTRY));
82413 + PMAC_TABLE_ENTRY pDLSEntry;
82414 + pDLSEntry = DlsEntryTableLookup(pAd, pAd->StaCfg.DLSEntry[i].MacAddr, TRUE);
82415 + pDLSEntry->PairwiseKey.CipherAlg=PairwiseKey.CipherAlg;
82416 + RTUSBEnqueueInternalCmd(pAd, RT_CMD_SET_RX_WCID_TABLE, pDLSEntry, sizeof(MAC_TABLE_ENTRY));
82418 +//Benson modified for USB interface, avoid in interrupt when write key, 20080724 <--
82419 +#endif // RT2870 //
82420 + NdisMoveMemory(&pEntry->PairwiseKey, &PairwiseKey, sizeof(CIPHER_KEY));
82421 + DBGPRINT(RT_DEBUG_TRACE,("DLS - Receive STAKey Message-1 (Peer STA MAC Address STAKey) \n"));
82423 + RTMPSendSTAKeyHandShake(pAd, pAd->StaCfg.DLSEntry[i].MacAddr);
82425 + DBGPRINT(RT_DEBUG_TRACE,("DLS - Finish STAKey handshake procedure (Initiator side)\n"));
82429 + // Data frame, update timeout value
82430 + if (pAd->StaCfg.DLSEntry[i].Status == DLS_FINISH)
82432 + pAd->StaCfg.DLSEntry[i].CountDownTimer = pAd->StaCfg.DLSEntry[i].TimeOut;
82433 + //AsicUpdateRxWCIDTable(pAd, (USHORT)(i + 2), pAddr);
82437 + bFindEntry = TRUE;
82441 + // update peer dls table entry
82442 + for (i=MAX_NUM_OF_INIT_DLS_ENTRY; i<MAX_NUM_OF_DLS_ENTRY; i++)
82444 + if (pAd->StaCfg.DLSEntry[i].Valid && MAC_ADDR_EQUAL(pAddr, pAd->StaCfg.DLSEntry[i].MacAddr))
82446 + if (bSTAKeyFrame)
82448 + PMAC_TABLE_ENTRY pEntry = NULL;
82450 + // STAKey frame, add pairwise key table, and send STAkey Msg-2
82451 + pAd->StaCfg.DLSEntry[i].Status = DLS_FINISH;
82452 + RTMPCancelTimer(&pAd->StaCfg.DLSEntry[i].Timer, &TimerCancelled);
82454 + PairwiseKey.KeyLen = LEN_TKIP_EK;
82455 + NdisMoveMemory(PairwiseKey.Key, &pSTAKey[0], LEN_TKIP_EK);
82456 + NdisMoveMemory(PairwiseKey.TxMic, &pSTAKey[16], LEN_TKIP_RXMICK);
82457 + NdisMoveMemory(PairwiseKey.RxMic, &pSTAKey[24], LEN_TKIP_TXMICK);
82459 + PairwiseKey.CipherAlg = pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg;
82461 + pEntry = DlsEntryTableLookup(pAd, pAd->StaCfg.DLSEntry[i].MacAddr, TRUE);
82462 + //AsicAddKeyEntry(pAd, (USHORT)(i + 2), BSS0, 0, &PairwiseKey, TRUE, TRUE); // reserve 0 for multicast, 1 for unicast
82463 + //AsicUpdateRxWCIDTable(pAd, (USHORT)(i + 2), pAddr);
82464 + // Add Pair-wise key to Asic
82466 +//Benson modified for USB interface, avoid in interrupt when write key, 20080724 -->
82468 + RT_ADD_PAIRWISE_KEY_ENTRY KeyInfo;
82469 + COPY_MAC_ADDR(KeyInfo.MacAddr,pAd->StaCfg.DLSEntry[i].MacAddr);
82470 + KeyInfo.MacTabMatchWCID=pAd->StaCfg.DLSEntry[i].MacTabMatchWCID;
82471 + NdisMoveMemory(&KeyInfo.CipherKey, &PairwiseKey,sizeof(CIPHER_KEY));
82472 + RTUSBEnqueueInternalCmd(pAd, RT_CMD_SET_KEY_TABLE, &KeyInfo, sizeof(RT_ADD_PAIRWISE_KEY_ENTRY));
82475 + PMAC_TABLE_ENTRY pDLSEntry;
82476 + pDLSEntry = DlsEntryTableLookup(pAd, pAd->StaCfg.DLSEntry[i].MacAddr, TRUE);
82477 + pDLSEntry->PairwiseKey.CipherAlg=PairwiseKey.CipherAlg;
82478 + RTUSBEnqueueInternalCmd(pAd, RT_CMD_SET_RX_WCID_TABLE, pDLSEntry, sizeof(MAC_TABLE_ENTRY));
82480 +//Benson modified for USB interface, avoid in interrupt when write key, 20080724 <--
82481 +#endif // RT2870 //
82482 + NdisMoveMemory(&pEntry->PairwiseKey, &PairwiseKey, sizeof(CIPHER_KEY));
82483 + DBGPRINT(RT_DEBUG_TRACE,("DLS - Receive STAKey Message-1 (Initiator STA MAC Address STAKey)\n"));
82485 + // If support WPA or WPA2, start STAKey hand shake,
82486 + // If failed hand shake, just tear down peer DLS
82487 + if (RTMPSendSTAKeyHandShake(pAd, pAddr) != NDIS_STATUS_SUCCESS)
82489 + MLME_DLS_REQ_STRUCT MlmeDlsReq;
82490 + USHORT reason = REASON_QOS_CIPHER_NOT_SUPPORT;
82492 + pAd->StaCfg.DLSEntry[i].Valid = FALSE;
82493 + pAd->StaCfg.DLSEntry[i].Status = DLS_NONE;
82494 + DlsParmFill(pAd, &MlmeDlsReq, &pAd->StaCfg.DLSEntry[i], reason);
82495 + MlmeEnqueue(pAd, DLS_STATE_MACHINE, MT2_MLME_DLS_TEAR_DOWN, sizeof(MLME_DLS_REQ_STRUCT), &MlmeDlsReq);
82499 + DBGPRINT(RT_DEBUG_TRACE,("DLS - Finish STAKey handshake procedure (Peer side)\n"));
82504 + // Data frame, update timeout value
82505 + if (pAd->StaCfg.DLSEntry[i].Status == DLS_FINISH)
82507 + pAd->StaCfg.DLSEntry[i].CountDownTimer = pAd->StaCfg.DLSEntry[i].TimeOut;
82511 + bFindEntry = TRUE;
82516 + return bSTAKeyFrame;
82520 + ========================================================================
82522 + Routine Description:
82523 + Check if the frame can be sent through DLS direct link interface
82526 + pAd Pointer to adapter
82533 + ========================================================================
82535 +INT RTMPCheckDLSFrame(
82536 + IN PRTMP_ADAPTER pAd,
82542 + if (!pAd->CommonCfg.bDLSCapable)
82545 + if (!INFRA_ON(pAd))
82549 + // check local dls table entry
82550 + for (i=0; i<MAX_NUM_OF_INIT_DLS_ENTRY; i++)
82552 + if (pAd->StaCfg.DLSEntry[i].Valid && (pAd->StaCfg.DLSEntry[i].Status == DLS_FINISH) &&
82553 + MAC_ADDR_EQUAL(pDA, pAd->StaCfg.DLSEntry[i].MacAddr))
82560 + // check peer dls table entry
82561 + for (i=MAX_NUM_OF_INIT_DLS_ENTRY; i<MAX_NUM_OF_DLS_ENTRY; i++)
82563 + if (pAd->StaCfg.DLSEntry[i].Valid && (pAd->StaCfg.DLSEntry[i].Status == DLS_FINISH) &&
82564 + MAC_ADDR_EQUAL(pDA, pAd->StaCfg.DLSEntry[i].MacAddr))
82576 + ==========================================================================
82579 + IRQL = DISPATCH_LEVEL
82581 + ==========================================================================
82583 +VOID RTMPSendDLSTearDownFrame(
82584 + IN PRTMP_ADAPTER pAd,
82587 + PUCHAR pOutBuffer = NULL;
82588 + NDIS_STATUS NStatus;
82589 + HEADER_802_11 DlsTearDownHdr;
82590 + ULONG FrameLen = 0;
82591 + USHORT Reason = REASON_QOS_QSTA_LEAVING_QBSS;
82592 + UCHAR Category = CATEGORY_DLS;
82593 + UCHAR Action = ACTION_DLS_TEARDOWN;
82596 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RESET_IN_PROGRESS) ||
82597 + RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS))
82600 + DBGPRINT(RT_DEBUG_TRACE, ("Send DLS TearDown Frame \n"));
82602 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
82603 + if (NStatus != NDIS_STATUS_SUCCESS)
82605 + DBGPRINT(RT_DEBUG_ERROR,("ASSOC - RTMPSendDLSTearDownFrame() allocate memory failed \n"));
82609 + ActHeaderInit(pAd, &DlsTearDownHdr, pAd->CommonCfg.Bssid, pAd->CurrentAddress, pAd->CommonCfg.Bssid);
82610 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
82611 + sizeof(HEADER_802_11), &DlsTearDownHdr,
82615 + 6, pAd->CurrentAddress,
82619 + MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
82620 + MlmeFreeMemory(pAd, pOutBuffer);
82622 + // Remove key in local dls table entry
82623 + for (i = 0; i < MAX_NUM_OF_INIT_DLS_ENTRY; i++)
82625 + if (pAd->StaCfg.DLSEntry[i].Valid && (pAd->StaCfg.DLSEntry[i].Status == DLS_FINISH)
82626 + && MAC_ADDR_EQUAL(pDA, pAd->StaCfg.DLSEntry[i].MacAddr))
82628 + MacTableDeleteDlsEntry(pAd, pAd->StaCfg.DLSEntry[i].MacTabMatchWCID, pAd->StaCfg.DLSEntry[i].MacAddr);
82632 + // Remove key in peer dls table entry
82633 + for (i=MAX_NUM_OF_INIT_DLS_ENTRY; i<MAX_NUM_OF_DLS_ENTRY; i++)
82635 + if (pAd->StaCfg.DLSEntry[i].Valid && (pAd->StaCfg.DLSEntry[i].Status == DLS_FINISH)
82636 + && MAC_ADDR_EQUAL(pDA, pAd->StaCfg.DLSEntry[i].MacAddr))
82638 + MacTableDeleteDlsEntry(pAd, pAd->StaCfg.DLSEntry[i].MacTabMatchWCID, pAd->StaCfg.DLSEntry[i].MacAddr);
82642 + DBGPRINT(RT_DEBUG_TRACE, ("Send DLS TearDown Frame and remove key in (i=%d) \n", i));
82646 + ==========================================================================
82649 + IRQL = DISPATCH_LEVEL
82651 + ==========================================================================
82653 +NDIS_STATUS RTMPSendSTAKeyRequest(
82654 + IN PRTMP_ADAPTER pAd,
82657 + UCHAR Header802_3[14];
82658 + NDIS_STATUS NStatus;
82659 + ULONG FrameLen = 0;
82660 + EAPOL_PACKET Packet;
82662 + UCHAR digest[80];
82663 + PUCHAR pOutBuffer = NULL;
82664 + PNDIS_PACKET pNdisPacket;
82666 + UCHAR DlsPTK[80];
82668 + DBGPRINT(RT_DEBUG_TRACE,("DLS - RTMPSendSTAKeyRequest() to %02x:%02x:%02x:%02x:%02x:%02x\n", pDA[0], pDA[1], pDA[2], pDA[3], pDA[4], pDA[5]));
82670 + pAd->Sequence ++;
82671 + MAKE_802_3_HEADER(Header802_3, pAd->CommonCfg.Bssid, pAd->CurrentAddress, EAPOL);
82673 + // Zero message body
82674 + NdisZeroMemory(&Packet, sizeof(Packet));
82675 + Packet.ProVer = EAPOL_VER;
82676 + Packet.ProType = EAPOLKey;
82677 + Packet.Body_Len[1] = sizeof(KEY_DESCRIPTER) - MAX_LEN_OF_RSNIE + 6 + MAC_ADDR_LEN; // data field contain KDE andPeer MAC address
82679 + // STAKey Message is as EAPOL-Key(1,1,0,0,G/0,0,0, MIC, 0,Peer MAC KDE)
82680 + if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA) || (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK))
82682 + Packet.KeyDesc.Type = WPA1_KEY_DESC;
82684 + else if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2) || (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK))
82686 + Packet.KeyDesc.Type = WPA2_KEY_DESC;
82689 + // Key descriptor version
82690 + Packet.KeyDesc.KeyInfo.KeyDescVer =
82691 + (((pAd->StaCfg.PairCipher == Ndis802_11Encryption3Enabled) || (pAd->StaCfg.GroupCipher == Ndis802_11Encryption3Enabled)) ? (DESC_TYPE_AES) : (DESC_TYPE_TKIP));
82693 + Packet.KeyDesc.KeyInfo.KeyMic = 1;
82694 + Packet.KeyDesc.KeyInfo.Secure = 1;
82695 + Packet.KeyDesc.KeyInfo.Request = 1;
82697 + Packet.KeyDesc.KeyDataLen[1] = 12;
82699 + // use our own OUI to distinguish proprietary with standard.
82700 + Packet.KeyDesc.KeyData[0] = 0xDD;
82701 + Packet.KeyDesc.KeyData[1] = 0x0A;
82702 + Packet.KeyDesc.KeyData[2] = 0x00;
82703 + Packet.KeyDesc.KeyData[3] = 0x0C;
82704 + Packet.KeyDesc.KeyData[4] = 0x43;
82705 + Packet.KeyDesc.KeyData[5] = 0x03;
82706 + NdisMoveMemory(&Packet.KeyDesc.KeyData[6], pDA, MAC_ADDR_LEN);
82708 + NdisMoveMemory(Packet.KeyDesc.ReplayCounter, pAd->StaCfg.DlsReplayCounter, LEN_KEY_DESC_REPLAY);
82710 + // Allocate buffer for transmitting message
82711 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer);
82712 + if (NStatus != NDIS_STATUS_SUCCESS)
82715 + // Prepare EAPOL frame for MIC calculation
82716 + // Be careful, only EAPOL frame is counted for MIC calculation
82717 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
82718 + Packet.Body_Len[1] + 4, &Packet,
82721 + // use proprietary PTK
82722 + NdisZeroMemory(temp, 64);
82723 + NdisMoveMemory(temp, "IEEE802.11 WIRELESS ACCESS POINT", 32);
82724 + WpaCountPTK(pAd, temp, temp, pAd->CommonCfg.Bssid, temp, pAd->CurrentAddress, DlsPTK, LEN_PTK);
82727 + if (pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
82730 + NdisZeroMemory(digest, sizeof(digest));
82731 + HMAC_SHA1(pOutBuffer, FrameLen, DlsPTK, LEN_EAP_MICK, digest);
82732 + NdisMoveMemory(Packet.KeyDesc.KeyMic, digest, LEN_KEY_DESC_MIC);
82736 + NdisZeroMemory(Mic, sizeof(Mic));
82737 + hmac_md5(DlsPTK, LEN_EAP_MICK, pOutBuffer, FrameLen, Mic);
82738 + NdisMoveMemory(Packet.KeyDesc.KeyMic, Mic, LEN_KEY_DESC_MIC);
82741 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
82742 + sizeof(Header802_3), Header802_3,
82743 + Packet.Body_Len[1] + 4, &Packet,
82746 + NStatus = RTMPAllocateNdisPacket(pAd, &pNdisPacket, NULL, 0, pOutBuffer, FrameLen);
82747 + if (NStatus == NDIS_STATUS_SUCCESS)
82749 + RTMP_SET_PACKET_WCID(pNdisPacket, BSSID_WCID);
82750 + STASendPacket(pAd, pNdisPacket);
82751 + RTMPDeQueuePacket(pAd, FALSE, NUM_OF_TX_RING, MAX_TX_PROCESS);
82754 + MlmeFreeMemory(pAd, pOutBuffer);
82756 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPSendSTAKeyRequest- Send STAKey request (NStatus=%x, FrameLen=%ld)\n", NStatus, FrameLen));
82762 + ==========================================================================
82765 + IRQL = DISPATCH_LEVEL
82767 + ==========================================================================
82769 +NDIS_STATUS RTMPSendSTAKeyHandShake(
82770 + IN PRTMP_ADAPTER pAd,
82773 + UCHAR Header802_3[14];
82774 + NDIS_STATUS NStatus;
82775 + ULONG FrameLen = 0;
82776 + EAPOL_PACKET Packet;
82778 + UCHAR digest[80];
82779 + PUCHAR pOutBuffer = NULL;
82780 + PNDIS_PACKET pNdisPacket;
82782 + UCHAR DlsPTK[80]; // Due to dirver can not get PTK, use proprietary PTK
82784 + DBGPRINT(RT_DEBUG_TRACE,("DLS - RTMPSendSTAKeyHandShake() to %02x:%02x:%02x:%02x:%02x:%02x\n", pDA[0], pDA[1], pDA[2], pDA[3], pDA[4], pDA[5]));
82786 + pAd->Sequence ++;
82787 + MAKE_802_3_HEADER(Header802_3, pAd->CommonCfg.Bssid, pAd->CurrentAddress, EAPOL);
82789 + // Zero message body
82790 + NdisZeroMemory(&Packet, sizeof(Packet));
82791 + Packet.ProVer = EAPOL_VER;
82792 + Packet.ProType = EAPOLKey;
82793 + Packet.Body_Len[1] = sizeof(KEY_DESCRIPTER) - MAX_LEN_OF_RSNIE + 6 + MAC_ADDR_LEN; // data field contain KDE and Peer MAC address
82795 + // STAKey Message is as EAPOL-Key(1,1,0,0,G/0,0,0, MIC, 0,Peer MAC KDE)
82796 + if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA) || (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK))
82798 + Packet.KeyDesc.Type = WPA1_KEY_DESC;
82800 + else if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2) || (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK))
82802 + Packet.KeyDesc.Type = WPA2_KEY_DESC;
82805 + // Key descriptor version
82806 + Packet.KeyDesc.KeyInfo.KeyDescVer =
82807 + (((pAd->StaCfg.PairCipher == Ndis802_11Encryption3Enabled) || (pAd->StaCfg.GroupCipher == Ndis802_11Encryption3Enabled)) ? (DESC_TYPE_AES) : (DESC_TYPE_TKIP));
82809 + Packet.KeyDesc.KeyInfo.KeyMic = 1;
82810 + Packet.KeyDesc.KeyInfo.Secure = 1;
82812 + Packet.KeyDesc.KeyDataLen[1] = 12;
82814 + // use our own OUI to distinguish proprietary with standard.
82815 + Packet.KeyDesc.KeyData[0] = 0xDD;
82816 + Packet.KeyDesc.KeyData[1] = 0x0A;
82817 + Packet.KeyDesc.KeyData[2] = 0x00;
82818 + Packet.KeyDesc.KeyData[3] = 0x0C;
82819 + Packet.KeyDesc.KeyData[4] = 0x43;
82820 + Packet.KeyDesc.KeyData[5] = 0x03;
82821 + NdisMoveMemory(&Packet.KeyDesc.KeyData[6], pDA, MAC_ADDR_LEN);
82823 + NdisMoveMemory(Packet.KeyDesc.ReplayCounter, pAd->StaCfg.DlsReplayCounter, LEN_KEY_DESC_REPLAY);
82825 + // Allocate buffer for transmitting message
82826 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer);
82827 + if (NStatus != NDIS_STATUS_SUCCESS)
82830 + // Prepare EAPOL frame for MIC calculation
82831 + // Be careful, only EAPOL frame is counted for MIC calculation
82832 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
82833 + Packet.Body_Len[1] + 4, &Packet,
82836 + // use proprietary PTK
82837 + NdisZeroMemory(temp, 64);
82838 + NdisMoveMemory(temp, "IEEE802.11 WIRELESS ACCESS POINT", 32);
82839 + WpaCountPTK(pAd, temp, temp, pAd->CommonCfg.Bssid, temp, pAd->CurrentAddress, DlsPTK, LEN_PTK);
82842 + if (pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
82845 + NdisZeroMemory(digest, sizeof(digest));
82846 + HMAC_SHA1(pOutBuffer, FrameLen, DlsPTK, LEN_EAP_MICK, digest);
82847 + NdisMoveMemory(Packet.KeyDesc.KeyMic, digest, LEN_KEY_DESC_MIC);
82851 + NdisZeroMemory(Mic, sizeof(Mic));
82852 + hmac_md5(DlsPTK, LEN_EAP_MICK, pOutBuffer, FrameLen, Mic);
82853 + NdisMoveMemory(Packet.KeyDesc.KeyMic, Mic, LEN_KEY_DESC_MIC);
82856 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
82857 + sizeof(Header802_3), Header802_3,
82858 + Packet.Body_Len[1] + 4, &Packet,
82861 + NStatus = RTMPAllocateNdisPacket(pAd, &pNdisPacket, NULL, 0, pOutBuffer, FrameLen);
82862 + if (NStatus == NDIS_STATUS_SUCCESS)
82864 + RTMP_SET_PACKET_WCID(pNdisPacket, BSSID_WCID);
82865 + STASendPacket(pAd, pNdisPacket);
82866 + RTMPDeQueuePacket(pAd, FALSE, NUM_OF_TX_RING, MAX_TX_PROCESS);
82869 + MlmeFreeMemory(pAd, pOutBuffer);
82871 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPSendSTAKeyHandShake- Send STAKey Message-2 (NStatus=%x, FrameLen=%ld)\n", NStatus, FrameLen));
82876 +VOID DlsTimeoutAction(
82877 + IN PVOID SystemSpecific1,
82878 + IN PVOID FunctionContext,
82879 + IN PVOID SystemSpecific2,
82880 + IN PVOID SystemSpecific3)
82882 + MLME_DLS_REQ_STRUCT MlmeDlsReq;
82884 + PRT_802_11_DLS pDLS = (PRT_802_11_DLS)FunctionContext;
82885 + PRTMP_ADAPTER pAd = pDLS->pAd;
82887 + DBGPRINT(RT_DEBUG_TRACE, ("DlsTimeout - Tear down DLS links (%02x:%02x:%02x:%02x:%02x:%02x)\n",
82888 + pDLS->MacAddr[0], pDLS->MacAddr[1], pDLS->MacAddr[2], pDLS->MacAddr[3], pDLS->MacAddr[4], pDLS->MacAddr[5]));
82890 + if ((pDLS) && (pDLS->Valid))
82892 + reason = REASON_QOS_REQUEST_TIMEOUT;
82893 + pDLS->Valid = FALSE;
82894 + pDLS->Status = DLS_NONE;
82895 + DlsParmFill(pAd, &MlmeDlsReq, pDLS, reason);
82896 + MlmeEnqueue(pAd, DLS_STATE_MACHINE, MT2_MLME_DLS_TEAR_DOWN, sizeof(MLME_DLS_REQ_STRUCT), &MlmeDlsReq);
82897 + RT28XX_MLME_HANDLER(pAd);
82902 +================================================================
82903 +Description : because DLS and CLI share the same WCID table in ASIC.
82904 +Mesh entry also insert to pAd->MacTab.content[]. Such is marked as ValidAsDls = TRUE.
82905 +Also fills the pairwise key.
82906 +Because front MAX_AID_BA entries have direct mapping to BAEntry, which is only used as CLI. So we insert Dls
82907 +from index MAX_AID_BA.
82908 +================================================================
82910 +MAC_TABLE_ENTRY *MacTableInsertDlsEntry(
82911 + IN PRTMP_ADAPTER pAd,
82913 + IN UINT DlsEntryIdx)
82915 + PMAC_TABLE_ENTRY pEntry = NULL;
82917 + DBGPRINT(RT_DEBUG_TRACE, ("====> MacTableInsertDlsEntry\n"));
82918 + // if FULL, return
82919 + if (pAd->MacTab.Size >= MAX_LEN_OF_MAC_TABLE)
82924 + if((pEntry = DlsEntryTableLookup(pAd, pAddr, TRUE)) != NULL)
82927 + // allocate one MAC entry
82928 + pEntry = MacTableInsertEntry(pAd, pAddr, DlsEntryIdx + MIN_NET_DEVICE_FOR_DLS, TRUE);
82931 + pAd->StaCfg.DLSEntry[DlsEntryIdx].MacTabMatchWCID = pEntry->Aid;
82932 + pEntry->MatchDlsEntryIdx = DlsEntryIdx;
82933 + pEntry->AuthMode = pAd->StaCfg.AuthMode;
82934 + pEntry->WepStatus = pAd->StaCfg.WepStatus;
82936 + DBGPRINT(RT_DEBUG_TRACE, ("MacTableInsertDlsEntry - allocate entry #%d, Total= %d\n",pEntry->Aid, pAd->MacTab.Size));
82938 + // If legacy WEP is used, set pair-wise cipherAlg into WCID attribute table for this entry
82939 + if ((pEntry->ValidAsDls) && (pEntry->WepStatus == Ndis802_11WEPEnabled))
82941 + UCHAR KeyIdx = 0;
82942 + UCHAR CipherAlg = 0;
82944 + KeyIdx = pAd->StaCfg.DefaultKeyId;
82946 + CipherAlg = pAd->SharedKey[BSS0][KeyIdx].CipherAlg;
82948 + RTMPAddWcidAttributeEntry(pAd,
82950 + pAd->StaCfg.DefaultKeyId,
82951 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg,
82959 + DBGPRINT(RT_DEBUG_TRACE, ("<==== MacTableInsertDlsEntry\n"));
82966 + ==========================================================================
82968 + Delete all Mesh Entry in pAd->MacTab
82969 + ==========================================================================
82971 +BOOLEAN MacTableDeleteDlsEntry(
82972 + IN PRTMP_ADAPTER pAd,
82976 + DBGPRINT(RT_DEBUG_TRACE, ("====> MacTableDeleteDlsEntry\n"));
82978 + if (!VALID_WCID(wcid))
82981 + MacTableDeleteEntry(pAd, wcid, pAddr);
82983 + DBGPRINT(RT_DEBUG_TRACE, ("<==== MacTableDeleteDlsEntry\n"));
82988 +MAC_TABLE_ENTRY *DlsEntryTableLookup(
82989 + IN PRTMP_ADAPTER pAd,
82991 + IN BOOLEAN bResetIdelCount)
82994 + MAC_TABLE_ENTRY *pEntry = NULL;
82996 + RTMP_SEM_LOCK(&pAd->MacTabLock);
82997 + HashIdx = MAC_ADDR_HASH_INDEX(pAddr);
82998 + pEntry = pAd->MacTab.Hash[HashIdx];
83002 + if ((pEntry->ValidAsDls == TRUE)
83003 + && MAC_ADDR_EQUAL(pEntry->Addr, pAddr))
83005 + if(bResetIdelCount)
83006 + pEntry->NoDataIdleCount = 0;
83010 + pEntry = pEntry->pNext;
83013 + RTMP_SEM_UNLOCK(&pAd->MacTabLock);
83017 +MAC_TABLE_ENTRY *DlsEntryTableLookupByWcid(
83018 + IN PRTMP_ADAPTER pAd,
83021 + IN BOOLEAN bResetIdelCount)
83024 + PMAC_TABLE_ENTRY pCurEntry = NULL;
83025 + PMAC_TABLE_ENTRY pEntry = NULL;
83027 + if (!VALID_WCID(wcid))
83030 + RTMP_SEM_LOCK(&pAd->MacTabLock);
83034 + pCurEntry = &pAd->MacTab.Content[wcid];
83037 + if ((pCurEntry) && (pCurEntry->ValidAsDls== TRUE))
83039 + DLsIndex = pCurEntry->MatchDlsEntryIdx;
83042 + if (DLsIndex == 0xff)
83045 + if (MAC_ADDR_EQUAL(pCurEntry->Addr, pAddr))
83047 + if(bResetIdelCount)
83048 + pCurEntry->NoDataIdleCount = 0;
83049 + pEntry = pCurEntry;
83054 + RTMP_SEM_UNLOCK(&pAd->MacTabLock);
83059 +INT Set_DlsEntryInfo_Display_Proc(
83060 + IN PRTMP_ADAPTER pAd,
83065 + printk("\n%-19s%-8s\n", "MAC", "TIMEOUT\n");
83066 + for (i=0; i<MAX_NUM_OF_DLS_ENTRY; i++)
83068 + if ((pAd->StaCfg.DLSEntry[i].Valid) && (pAd->StaCfg.DLSEntry[i].Status == DLS_FINISH))
83070 + printk("%02x:%02x:%02x:%02x:%02x:%02x ",
83071 + pAd->StaCfg.DLSEntry[i].MacAddr[0], pAd->StaCfg.DLSEntry[i].MacAddr[1], pAd->StaCfg.DLSEntry[i].MacAddr[2],
83072 + pAd->StaCfg.DLSEntry[i].MacAddr[3], pAd->StaCfg.DLSEntry[i].MacAddr[4], pAd->StaCfg.DLSEntry[i].MacAddr[5]);
83073 + printk("%-8d\n", pAd->StaCfg.DLSEntry[i].TimeOut);
83080 +INT Set_DlsAddEntry_Proc(
83081 + IN PRTMP_ADAPTER pAd,
83084 + UCHAR mac[MAC_ADDR_LEN];
83086 + char *token, sepValue[] = ":", DASH = '-';
83088 + RT_802_11_DLS Dls;
83090 + if(strlen(arg) < 19) //Mac address acceptable format 01:02:03:04:05:06 length 17 plus the "-" and timeout value in decimal format.
83093 + token = strchr(arg, DASH);
83094 + if ((token != NULL) && (strlen(token)>1))
83096 + Timeout = simple_strtol((token+1), 0, 10);
83099 + for (i = 0, token = rstrtok(arg, &sepValue[0]); token; token = rstrtok(NULL, &sepValue[0]), i++)
83101 + if((strlen(token) != 2) || (!isxdigit(*token)) || (!isxdigit(*(token+1))))
83103 + AtoH(token, (PUCHAR)(&mac[i]), 1);
83108 + printk("\n%02x:%02x:%02x:%02x:%02x:%02x-%d", mac[0], mac[1],
83109 + mac[2], mac[3], mac[4], mac[5], (int)Timeout);
83111 + NdisZeroMemory(&Dls, sizeof(RT_802_11_DLS));
83112 + Dls.TimeOut = Timeout;
83113 + COPY_MAC_ADDR(Dls.MacAddr, mac);
83117 + MLME_CNTL_STATE_MACHINE,
83118 + RT_OID_802_11_SET_DLS_PARAM,
83119 + sizeof(RT_802_11_DLS),
83129 +INT Set_DlsTearDownEntry_Proc(
83130 + IN PRTMP_ADAPTER pAd,
83133 + UCHAR macAddr[MAC_ADDR_LEN];
83136 + RT_802_11_DLS Dls;
83138 + if(strlen(arg) != 17) //Mac address acceptable format 01:02:03:04:05:06 length 17
83141 + for (i=0, value = rstrtok(arg,":"); value; value = rstrtok(NULL,":"))
83143 + if((strlen(value) != 2) || (!isxdigit(*value)) || (!isxdigit(*(value+1))) )
83144 + return FALSE; //Invalid
83146 + AtoH(value, &macAddr[i++], 2);
83149 + printk("\n%02x:%02x:%02x:%02x:%02x:%02x", macAddr[0], macAddr[1],
83150 + macAddr[2], macAddr[3], macAddr[4], macAddr[5]);
83152 + NdisZeroMemory(&Dls, sizeof(RT_802_11_DLS));
83153 + COPY_MAC_ADDR(Dls.MacAddr, macAddr);
83157 + MLME_CNTL_STATE_MACHINE,
83158 + RT_OID_802_11_SET_DLS_PARAM,
83159 + sizeof(RT_802_11_DLS),
83166 +++ b/drivers/staging/rt3070/sta_ioctl.c
83169 + *************************************************************************
83170 + * Ralink Tech Inc.
83171 + * 5F., No.36, Taiyuan St., Jhubei City,
83172 + * Hsinchu County 302,
83175 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
83177 + * This program is free software; you can redistribute it and/or modify *
83178 + * it under the terms of the GNU General Public License as published by *
83179 + * the Free Software Foundation; either version 2 of the License, or *
83180 + * (at your option) any later version. *
83182 + * This program is distributed in the hope that it will be useful, *
83183 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
83184 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
83185 + * GNU General Public License for more details. *
83187 + * You should have received a copy of the GNU General Public License *
83188 + * along with this program; if not, write to the *
83189 + * Free Software Foundation, Inc., *
83190 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
83192 + *************************************************************************
83198 + IOCTL related subroutines
83200 + Revision History:
83202 + -------- ---------- ----------------------------------------------
83203 + Rory Chen 01-03-2003 created
83204 + Rory Chen 02-14-2005 modify to support RT61
83207 +#include "rt_config.h"
83210 +extern ULONG RTDebugLevel;
83213 +#define NR_WEP_KEYS 4
83214 +#define WEP_SMALL_KEY_LEN (40/8)
83215 +#define WEP_LARGE_KEY_LEN (104/8)
83217 +#define GROUP_KEY_NO 4
83219 +extern UCHAR CipherWpa2Template[];
83220 +extern UCHAR CipherWpaPskTkip[];
83221 +extern UCHAR CipherWpaPskTkipLen;
83223 +typedef struct PACKED _RT_VERSION_INFO{
83224 + UCHAR DriverVersionW;
83225 + UCHAR DriverVersionX;
83226 + UCHAR DriverVersionY;
83227 + UCHAR DriverVersionZ;
83228 + UINT DriverBuildYear;
83229 + UINT DriverBuildMonth;
83230 + UINT DriverBuildDay;
83231 +} RT_VERSION_INFO, *PRT_VERSION_INFO;
83233 +struct iw_priv_args privtab[] = {
83234 +{ RTPRIV_IOCTL_SET,
83235 + IW_PRIV_TYPE_CHAR | 1024, 0,
83238 +{ RTPRIV_IOCTL_SHOW, 0, IW_PRIV_TYPE_CHAR | IW_PRIV_SIZE_MASK,
83240 +{ RTPRIV_IOCTL_SHOW, IW_PRIV_TYPE_CHAR | 1024, IW_PRIV_TYPE_CHAR | IW_PRIV_SIZE_MASK,
83242 +/* --- sub-ioctls definitions --- */
83243 + { SHOW_CONN_STATUS,
83244 + 0, IW_PRIV_TYPE_CHAR | IW_PRIV_SIZE_MASK, "connStatus" },
83245 + { SHOW_DRVIER_VERION,
83246 + 0, IW_PRIV_TYPE_CHAR | IW_PRIV_SIZE_MASK, "driverVer" },
83248 + 0, IW_PRIV_TYPE_CHAR | IW_PRIV_SIZE_MASK, "bainfo" },
83249 + { SHOW_DESC_INFO,
83250 + 0, IW_PRIV_TYPE_CHAR | IW_PRIV_SIZE_MASK, "descinfo" },
83252 + 0, IW_PRIV_TYPE_CHAR | IW_PRIV_SIZE_MASK, "radio_off" },
83254 + 0, IW_PRIV_TYPE_CHAR | IW_PRIV_SIZE_MASK, "radio_on" },
83255 +#ifdef QOS_DLS_SUPPORT
83256 + { SHOW_DLS_ENTRY_INFO,
83257 + 0, IW_PRIV_TYPE_CHAR | IW_PRIV_SIZE_MASK, "dlsentryinfo" },
83258 +#endif // QOS_DLS_SUPPORT //
83259 + { SHOW_CFG_VALUE,
83260 + IW_PRIV_TYPE_CHAR | 1024, IW_PRIV_TYPE_CHAR | IW_PRIV_SIZE_MASK, "show" },
83261 +/* --- sub-ioctls relations --- */
83264 +{ RTPRIV_IOCTL_BBP,
83265 + IW_PRIV_TYPE_CHAR | IW_PRIV_SIZE_MASK, IW_PRIV_TYPE_CHAR | IW_PRIV_SIZE_MASK,
83267 +{ RTPRIV_IOCTL_MAC,
83268 + IW_PRIV_TYPE_CHAR | 1024, IW_PRIV_TYPE_CHAR | 1024,
83271 +{ RTPRIV_IOCTL_RF,
83272 + IW_PRIV_TYPE_CHAR | IW_PRIV_SIZE_MASK, IW_PRIV_TYPE_CHAR | IW_PRIV_SIZE_MASK,
83274 +#endif // RT30xx //
83275 +{ RTPRIV_IOCTL_E2P,
83276 + IW_PRIV_TYPE_CHAR | 1024, IW_PRIV_TYPE_CHAR | 1024,
83280 +{ RTPRIV_IOCTL_STATISTICS,
83281 + 0, IW_PRIV_TYPE_CHAR | IW_PRIV_SIZE_MASK,
83283 +{ RTPRIV_IOCTL_GSITESURVEY,
83284 + 0, IW_PRIV_TYPE_CHAR | 1024,
83285 + "get_site_survey"},
83290 +INT Set_SSID_Proc(
83291 + IN PRTMP_ADAPTER pAdapter,
83294 +#ifdef WMM_SUPPORT
83295 +INT Set_WmmCapable_Proc(
83296 + IN PRTMP_ADAPTER pAd,
83300 +INT Set_NetworkType_Proc(
83301 + IN PRTMP_ADAPTER pAdapter,
83304 +INT Set_AuthMode_Proc(
83305 + IN PRTMP_ADAPTER pAdapter,
83308 +INT Set_EncrypType_Proc(
83309 + IN PRTMP_ADAPTER pAdapter,
83312 +INT Set_DefaultKeyID_Proc(
83313 + IN PRTMP_ADAPTER pAdapter,
83316 +INT Set_Key1_Proc(
83317 + IN PRTMP_ADAPTER pAdapter,
83320 +INT Set_Key2_Proc(
83321 + IN PRTMP_ADAPTER pAdapter,
83324 +INT Set_Key3_Proc(
83325 + IN PRTMP_ADAPTER pAdapter,
83328 +INT Set_Key4_Proc(
83329 + IN PRTMP_ADAPTER pAdapter,
83332 +INT Set_WPAPSK_Proc(
83333 + IN PRTMP_ADAPTER pAdapter,
83337 +INT Set_PSMode_Proc(
83338 + IN PRTMP_ADAPTER pAdapter,
83341 +#ifdef WPA_SUPPLICANT_SUPPORT
83342 +INT Set_Wpa_Support(
83343 + IN PRTMP_ADAPTER pAd,
83345 +#endif // WPA_SUPPLICANT_SUPPORT //
83349 +VOID RTMPIoctlMAC(
83350 + IN PRTMP_ADAPTER pAdapter,
83351 + IN struct iwreq *wrq);
83353 +VOID RTMPIoctlE2PROM(
83354 + IN PRTMP_ADAPTER pAdapter,
83355 + IN struct iwreq *wrq);
83359 + IN PRTMP_ADAPTER pAdapter,
83360 + IN struct iwreq *wrq);
83361 +#endif // RT30xx //
83365 +NDIS_STATUS RTMPWPANoneAddKeyProc(
83366 + IN PRTMP_ADAPTER pAd,
83369 +INT Set_FragTest_Proc(
83370 + IN PRTMP_ADAPTER pAdapter,
83373 +#ifdef DOT11_N_SUPPORT
83374 +INT Set_TGnWifiTest_Proc(
83375 + IN PRTMP_ADAPTER pAd,
83377 +#endif // DOT11_N_SUPPORT //
83379 +INT Set_LongRetryLimit_Proc(
83380 + IN PRTMP_ADAPTER pAdapter,
83383 +INT Set_ShortRetryLimit_Proc(
83384 + IN PRTMP_ADAPTER pAdapter,
83387 +#ifdef EXT_BUILD_CHANNEL_LIST
83388 +INT Set_Ieee80211dClientMode_Proc(
83389 + IN PRTMP_ADAPTER pAdapter,
83391 +#endif // EXT_BUILD_CHANNEL_LIST //
83393 +#ifdef CARRIER_DETECTION_SUPPORT
83394 +INT Set_CarrierDetect_Proc(
83395 + IN PRTMP_ADAPTER pAd,
83397 +#endif // CARRIER_DETECTION_SUPPORT //
83401 + INT (*set_proc)(PRTMP_ADAPTER pAdapter, PUCHAR arg);
83402 +} *PRTMP_PRIVATE_SET_PROC, RTMP_PRIVATE_SUPPORT_PROC[] = {
83403 + {"DriverVersion", Set_DriverVersion_Proc},
83404 + {"CountryRegion", Set_CountryRegion_Proc},
83405 + {"CountryRegionABand", Set_CountryRegionABand_Proc},
83406 + {"SSID", Set_SSID_Proc},
83407 + {"WirelessMode", Set_WirelessMode_Proc},
83408 + {"TxBurst", Set_TxBurst_Proc},
83409 + {"TxPreamble", Set_TxPreamble_Proc},
83410 + {"TxPower", Set_TxPower_Proc},
83411 + {"Channel", Set_Channel_Proc},
83412 + {"BGProtection", Set_BGProtection_Proc},
83413 + {"RTSThreshold", Set_RTSThreshold_Proc},
83414 + {"FragThreshold", Set_FragThreshold_Proc},
83415 +#ifdef DOT11_N_SUPPORT
83416 + {"HtBw", Set_HtBw_Proc},
83417 + {"HtMcs", Set_HtMcs_Proc},
83418 + {"HtGi", Set_HtGi_Proc},
83419 + {"HtOpMode", Set_HtOpMode_Proc},
83420 + {"HtExtcha", Set_HtExtcha_Proc},
83421 + {"HtMpduDensity", Set_HtMpduDensity_Proc},
83422 + {"HtBaWinSize", Set_HtBaWinSize_Proc},
83423 + {"HtRdg", Set_HtRdg_Proc},
83424 + {"HtAmsdu", Set_HtAmsdu_Proc},
83425 + {"HtAutoBa", Set_HtAutoBa_Proc},
83426 + {"HtBaDecline", Set_BADecline_Proc},
83427 + {"HtProtect", Set_HtProtect_Proc},
83428 + {"HtMimoPs", Set_HtMimoPs_Proc},
83429 +#endif // DOT11_N_SUPPORT //
83431 +#ifdef AGGREGATION_SUPPORT
83432 + {"PktAggregate", Set_PktAggregate_Proc},
83435 +#ifdef WMM_SUPPORT
83436 + {"WmmCapable", Set_WmmCapable_Proc},
83438 + {"IEEE80211H", Set_IEEE80211H_Proc},
83439 + {"NetworkType", Set_NetworkType_Proc},
83440 + {"AuthMode", Set_AuthMode_Proc},
83441 + {"EncrypType", Set_EncrypType_Proc},
83442 + {"DefaultKeyID", Set_DefaultKeyID_Proc},
83443 + {"Key1", Set_Key1_Proc},
83444 + {"Key2", Set_Key2_Proc},
83445 + {"Key3", Set_Key3_Proc},
83446 + {"Key4", Set_Key4_Proc},
83447 + {"WPAPSK", Set_WPAPSK_Proc},
83448 + {"ResetCounter", Set_ResetStatCounter_Proc},
83449 + {"PSMode", Set_PSMode_Proc},
83451 + {"Debug", Set_Debug_Proc},
83455 + {"ATE", Set_ATE_Proc},
83456 + {"ATEDA", Set_ATE_DA_Proc},
83457 + {"ATESA", Set_ATE_SA_Proc},
83458 + {"ATEBSSID", Set_ATE_BSSID_Proc},
83459 + {"ATECHANNEL", Set_ATE_CHANNEL_Proc},
83460 + {"ATETXPOW0", Set_ATE_TX_POWER0_Proc},
83461 + {"ATETXPOW1", Set_ATE_TX_POWER1_Proc},
83462 + {"ATETXANT", Set_ATE_TX_Antenna_Proc},
83463 + {"ATERXANT", Set_ATE_RX_Antenna_Proc},
83464 + {"ATETXFREQOFFSET", Set_ATE_TX_FREQOFFSET_Proc},
83465 + {"ATETXBW", Set_ATE_TX_BW_Proc},
83466 + {"ATETXLEN", Set_ATE_TX_LENGTH_Proc},
83467 + {"ATETXCNT", Set_ATE_TX_COUNT_Proc},
83468 + {"ATETXMCS", Set_ATE_TX_MCS_Proc},
83469 + {"ATETXMODE", Set_ATE_TX_MODE_Proc},
83470 + {"ATETXGI", Set_ATE_TX_GI_Proc},
83471 + {"ATERXFER", Set_ATE_RX_FER_Proc},
83472 + {"ATERRF", Set_ATE_Read_RF_Proc},
83473 + {"ATEWRF1", Set_ATE_Write_RF1_Proc},
83474 + {"ATEWRF2", Set_ATE_Write_RF2_Proc},
83475 + {"ATEWRF3", Set_ATE_Write_RF3_Proc},
83476 + {"ATEWRF4", Set_ATE_Write_RF4_Proc},
83477 + {"ATELDE2P", Set_ATE_Load_E2P_Proc},
83478 + {"ATERE2P", Set_ATE_Read_E2P_Proc},
83479 + {"ATESHOW", Set_ATE_Show_Proc},
83480 + {"ATEHELP", Set_ATE_Help_Proc},
83482 +#ifdef RALINK_28xx_QA
83483 + {"TxStop", Set_TxStop_Proc},
83484 + {"RxStop", Set_RxStop_Proc},
83485 +#endif // RALINK_28xx_QA //
83486 +#endif // RALINK_ATE //
83488 +#ifdef WPA_SUPPLICANT_SUPPORT
83489 + {"WpaSupport", Set_Wpa_Support},
83490 +#endif // WPA_SUPPLICANT_SUPPORT //
83494 + {"FixedTxMode", Set_FixedTxMode_Proc},
83495 +#ifdef CONFIG_APSTA_MIXED_SUPPORT
83496 + {"OpMode", Set_OpMode_Proc},
83497 +#endif // CONFIG_APSTA_MIXED_SUPPORT //
83498 +#ifdef DOT11_N_SUPPORT
83499 + {"TGnWifiTest", Set_TGnWifiTest_Proc},
83500 + {"ForceGF", Set_ForceGF_Proc},
83501 +#endif // DOT11_N_SUPPORT //
83502 +#ifdef QOS_DLS_SUPPORT
83503 + {"DlsAddEntry", Set_DlsAddEntry_Proc},
83504 + {"DlsTearDownEntry", Set_DlsTearDownEntry_Proc},
83505 +#endif // QOS_DLS_SUPPORT //
83506 + {"LongRetry", Set_LongRetryLimit_Proc},
83507 + {"ShortRetry", Set_ShortRetryLimit_Proc},
83508 +#ifdef EXT_BUILD_CHANNEL_LIST
83509 + {"11dClientMode", Set_Ieee80211dClientMode_Proc},
83510 +#endif // EXT_BUILD_CHANNEL_LIST //
83511 +#ifdef CARRIER_DETECTION_SUPPORT
83512 + {"CarrierDetect", Set_CarrierDetect_Proc},
83513 +#endif // CARRIER_DETECTION_SUPPORT //
83514 +//2008/09/11:KH add to support efuse<--
83516 + {"efuseFreeNumber", set_eFuseGetFreeBlockCount_Proc},
83517 + {"efuseDump", set_eFusedump_Proc},
83518 + {"efuseLoadFromBin", set_eFuseLoadFromBin_Proc},
83519 +#endif // RT30xx //
83520 +//2008/09/11:KH add to support efuse-->
83526 + IN PRTMP_ADAPTER pAd,
83527 + IN PNDIS_802_11_KEY pKey)
83530 + MAC_TABLE_ENTRY *pEntry;
83532 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPAddKey ------>\n"));
83534 + if (pAd->StaCfg.AuthMode >= Ndis802_11AuthModeWPA)
83536 + if (pKey->KeyIndex & 0x80000000)
83538 + if (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPANone)
83540 + NdisZeroMemory(pAd->StaCfg.PMK, 32);
83541 + NdisMoveMemory(pAd->StaCfg.PMK, pKey->KeyMaterial, pKey->KeyLength);
83545 + NdisZeroMemory(&pAd->SharedKey[BSS0][0], sizeof(CIPHER_KEY));
83546 + pAd->SharedKey[BSS0][0].KeyLen = LEN_TKIP_EK;
83547 + NdisMoveMemory(pAd->SharedKey[BSS0][0].Key, pKey->KeyMaterial, LEN_TKIP_EK);
83548 +#ifdef WPA_SUPPLICANT_SUPPORT
83549 + if (pAd->StaCfg.PairCipher == Ndis802_11Encryption2Enabled)
83551 + NdisMoveMemory(pAd->SharedKey[BSS0][0].RxMic, pKey->KeyMaterial + LEN_TKIP_EK, LEN_TKIP_TXMICK);
83552 + NdisMoveMemory(pAd->SharedKey[BSS0][0].TxMic, pKey->KeyMaterial + LEN_TKIP_EK + LEN_TKIP_TXMICK, LEN_TKIP_RXMICK);
83555 +#endif // WPA_SUPPLICANT_SUPPORT //
83557 + NdisMoveMemory(pAd->SharedKey[BSS0][0].TxMic, pKey->KeyMaterial + LEN_TKIP_EK, LEN_TKIP_TXMICK);
83558 + NdisMoveMemory(pAd->SharedKey[BSS0][0].RxMic, pKey->KeyMaterial + LEN_TKIP_EK + LEN_TKIP_TXMICK, LEN_TKIP_RXMICK);
83561 + // Decide its ChiperAlg
83562 + if (pAd->StaCfg.PairCipher == Ndis802_11Encryption2Enabled)
83563 + pAd->SharedKey[BSS0][0].CipherAlg = CIPHER_TKIP;
83564 + else if (pAd->StaCfg.PairCipher == Ndis802_11Encryption3Enabled)
83565 + pAd->SharedKey[BSS0][0].CipherAlg = CIPHER_AES;
83567 + pAd->SharedKey[BSS0][0].CipherAlg = CIPHER_NONE;
83569 + // Update these related information to MAC_TABLE_ENTRY
83570 + pEntry = &pAd->MacTab.Content[BSSID_WCID];
83571 + NdisMoveMemory(pEntry->PairwiseKey.Key, pAd->SharedKey[BSS0][0].Key, LEN_TKIP_EK);
83572 + NdisMoveMemory(pEntry->PairwiseKey.RxMic, pAd->SharedKey[BSS0][0].RxMic, LEN_TKIP_RXMICK);
83573 + NdisMoveMemory(pEntry->PairwiseKey.TxMic, pAd->SharedKey[BSS0][0].TxMic, LEN_TKIP_TXMICK);
83574 + pEntry->PairwiseKey.CipherAlg = pAd->SharedKey[BSS0][0].CipherAlg;
83576 + // Update pairwise key information to ASIC Shared Key Table
83577 + AsicAddSharedKeyEntry(pAd,
83580 + pAd->SharedKey[BSS0][0].CipherAlg,
83581 + pAd->SharedKey[BSS0][0].Key,
83582 + pAd->SharedKey[BSS0][0].TxMic,
83583 + pAd->SharedKey[BSS0][0].RxMic);
83585 + // Update ASIC WCID attribute table and IVEIV table
83586 + RTMPAddWcidAttributeEntry(pAd,
83589 + pAd->SharedKey[BSS0][0].CipherAlg,
83592 + if (pAd->StaCfg.AuthMode >= Ndis802_11AuthModeWPA2)
83594 + // set 802.1x port control
83595 + //pAd->StaCfg.PortSecured = WPA_802_1X_PORT_SECURED;
83596 + STA_PORT_SECURED(pAd);
83598 + // Indicate Connected for GUI
83599 + pAd->IndicateMediaState = NdisMediaStateConnected;
83605 + pAd->StaCfg.DefaultKeyId = (pKey->KeyIndex & 0xFF);
83606 + NdisZeroMemory(&pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId], sizeof(CIPHER_KEY));
83607 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].KeyLen = LEN_TKIP_EK;
83608 + NdisMoveMemory(pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].Key, pKey->KeyMaterial, LEN_TKIP_EK);
83609 +#ifdef WPA_SUPPLICANT_SUPPORT
83610 + if (pAd->StaCfg.GroupCipher == Ndis802_11Encryption2Enabled)
83612 + NdisMoveMemory(pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].RxMic, pKey->KeyMaterial + LEN_TKIP_EK, LEN_TKIP_TXMICK);
83613 + NdisMoveMemory(pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].TxMic, pKey->KeyMaterial + LEN_TKIP_EK + LEN_TKIP_TXMICK, LEN_TKIP_RXMICK);
83616 +#endif // WPA_SUPPLICANT_SUPPORT //
83618 + NdisMoveMemory(pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].TxMic, pKey->KeyMaterial + LEN_TKIP_EK, LEN_TKIP_TXMICK);
83619 + NdisMoveMemory(pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].RxMic, pKey->KeyMaterial + LEN_TKIP_EK + LEN_TKIP_TXMICK, LEN_TKIP_RXMICK);
83622 + // Update Shared Key CipherAlg
83623 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg = CIPHER_NONE;
83624 + if (pAd->StaCfg.GroupCipher == Ndis802_11Encryption2Enabled)
83625 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg = CIPHER_TKIP;
83626 + else if (pAd->StaCfg.GroupCipher == Ndis802_11Encryption3Enabled)
83627 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg = CIPHER_AES;
83629 + // Update group key information to ASIC Shared Key Table
83630 + AsicAddSharedKeyEntry(pAd,
83632 + pAd->StaCfg.DefaultKeyId,
83633 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg,
83634 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].Key,
83635 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].TxMic,
83636 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].RxMic);
83638 + // Update ASIC WCID attribute table and IVEIV table
83639 + RTMPAddWcidAttributeEntry(pAd,
83641 + pAd->StaCfg.DefaultKeyId,
83642 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg,
83645 + // set 802.1x port control
83646 + //pAd->StaCfg.PortSecured = WPA_802_1X_PORT_SECURED;
83647 + STA_PORT_SECURED(pAd);
83649 + // Indicate Connected for GUI
83650 + pAd->IndicateMediaState = NdisMediaStateConnected;
83653 + else // dynamic WEP from wpa_supplicant
83658 + if(pKey->KeyLength == 32)
83661 + KeyIdx = pKey->KeyIndex & 0x0fffffff;
83665 + // it is a default shared key, for Pairwise key setting
83666 + if (pKey->KeyIndex & 0x80000000)
83668 + pEntry = MacTableLookup(pAd, pKey->BSSID);
83672 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPAddKey: Set Pair-wise Key\n"));
83674 + // set key material and key length
83675 + pEntry->PairwiseKey.KeyLen = (UCHAR)pKey->KeyLength;
83676 + NdisMoveMemory(pEntry->PairwiseKey.Key, &pKey->KeyMaterial, pKey->KeyLength);
83678 + // set Cipher type
83679 + if (pKey->KeyLength == 5)
83680 + pEntry->PairwiseKey.CipherAlg = CIPHER_WEP64;
83682 + pEntry->PairwiseKey.CipherAlg = CIPHER_WEP128;
83684 + // Add Pair-wise key to Asic
83685 + AsicAddPairwiseKeyEntry(
83688 + (UCHAR)pEntry->Aid,
83689 + &pEntry->PairwiseKey);
83691 + // update WCID attribute table and IVEIV table for this entry
83692 + RTMPAddWcidAttributeEntry(
83695 + KeyIdx, // The value may be not zero
83696 + pEntry->PairwiseKey.CipherAlg,
83703 + // Default key for tx (shared key)
83704 + pAd->StaCfg.DefaultKeyId = (UCHAR) KeyIdx;
83706 + // set key material and key length
83707 + pAd->SharedKey[BSS0][KeyIdx].KeyLen = (UCHAR) pKey->KeyLength;
83708 + NdisMoveMemory(pAd->SharedKey[BSS0][KeyIdx].Key, &pKey->KeyMaterial, pKey->KeyLength);
83710 + // Set Ciper type
83711 + if (pKey->KeyLength == 5)
83712 + pAd->SharedKey[BSS0][KeyIdx].CipherAlg = CIPHER_WEP64;
83714 + pAd->SharedKey[BSS0][KeyIdx].CipherAlg = CIPHER_WEP128;
83716 + CipherAlg = pAd->SharedKey[BSS0][KeyIdx].CipherAlg;
83717 + Key = pAd->SharedKey[BSS0][KeyIdx].Key;
83719 + // Set Group key material to Asic
83720 + AsicAddSharedKeyEntry(pAd, BSS0, KeyIdx, CipherAlg, Key, NULL, NULL);
83722 + // Update WCID attribute table and IVEIV table for this group key table
83723 + RTMPAddWcidAttributeEntry(pAd, BSS0, KeyIdx, CipherAlg, NULL);
83732 +char * rtstrchr(const char * s, int c)
83734 + for(; *s != (char) c; ++s)
83737 + return (char *) s;
83741 +This is required for LinEX2004/kernel2.6.7 to provide iwlist scanning function
83745 +rt_ioctl_giwname(struct net_device *dev,
83746 + struct iw_request_info *info,
83747 + char *name, char *extra)
83749 +// PRTMP_ADAPTER pAdapter = dev->ml_priv;
83752 + strncpy(name, "RT2870 Wireless", IFNAMSIZ);
83753 +#endif // RT2870 //
83757 +int rt_ioctl_siwfreq(struct net_device *dev,
83758 + struct iw_request_info *info,
83759 + struct iw_freq *freq, char *extra)
83761 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
83764 + //check if the interface is down
83765 + if(!RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_INTERRUPT_IN_USE))
83767 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
83768 + return -ENETDOWN;
83775 + if((freq->e == 0) && (freq->m <= 1000))
83776 + chan = freq->m; // Setting by channel number
83778 + MAP_KHZ_TO_CHANNEL_ID( (freq->m /100) , chan); // Setting by frequency - search the table , like 2.412G, 2.422G,
83780 + if (ChannelSanity(pAdapter, chan) == TRUE)
83782 + pAdapter->CommonCfg.Channel = chan;
83783 + DBGPRINT(RT_DEBUG_ERROR, ("==>rt_ioctl_siwfreq::SIOCSIWFREQ[cmd=0x%x] (Channel=%d)\n", SIOCSIWFREQ, pAdapter->CommonCfg.Channel));
83790 +int rt_ioctl_giwfreq(struct net_device *dev,
83791 + struct iw_request_info *info,
83792 + struct iw_freq *freq, char *extra)
83794 + VIRTUAL_ADAPTER *pVirtualAd = NULL;
83795 + PRTMP_ADAPTER pAdapter;
83799 + if (dev->priv_flags == INT_MAIN)
83801 + pAdapter = dev->ml_priv;
83805 + pVirtualAd = dev->ml_priv;
83806 + pAdapter = pVirtualAd->RtmpDev->ml_priv;
83809 + if (pAdapter == NULL)
83811 + /* if 1st open fail, pAd will be free;
83812 + So the net_dev->ml_priv will be NULL in 2rd open */
83813 + return -ENETDOWN;
83816 + ch = pAdapter->CommonCfg.Channel;
83818 + DBGPRINT(RT_DEBUG_TRACE,("==>rt_ioctl_giwfreq %d\n", ch));
83820 + MAP_CHANNEL_ID_TO_KHZ(ch, m);
83821 + freq->m = m * 100;
83826 +int rt_ioctl_siwmode(struct net_device *dev,
83827 + struct iw_request_info *info,
83828 + __u32 *mode, char *extra)
83830 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
83832 + //check if the interface is down
83833 + if(!RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_INTERRUPT_IN_USE))
83835 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
83836 + return -ENETDOWN;
83841 + case IW_MODE_ADHOC:
83842 + Set_NetworkType_Proc(pAdapter, "Adhoc");
83844 + case IW_MODE_INFRA:
83845 + Set_NetworkType_Proc(pAdapter, "Infra");
83847 +#if (LINUX_VERSION_CODE > KERNEL_VERSION(2,4,20))
83848 + case IW_MODE_MONITOR:
83849 + Set_NetworkType_Proc(pAdapter, "Monitor");
83853 + DBGPRINT(RT_DEBUG_TRACE, ("===>rt_ioctl_siwmode::SIOCSIWMODE (unknown %d)\n", *mode));
83857 + // Reset Ralink supplicant to not use, it will be set to start when UI set PMK key
83858 + pAdapter->StaCfg.WpaState = SS_NOTUSE;
83863 +int rt_ioctl_giwmode(struct net_device *dev,
83864 + struct iw_request_info *info,
83865 + __u32 *mode, char *extra)
83867 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
83869 + if (ADHOC_ON(pAdapter))
83870 + *mode = IW_MODE_ADHOC;
83871 + else if (INFRA_ON(pAdapter))
83872 + *mode = IW_MODE_INFRA;
83873 +#if (LINUX_VERSION_CODE > KERNEL_VERSION(2,4,20))
83874 + else if (MONITOR_ON(pAdapter))
83876 + *mode = IW_MODE_MONITOR;
83880 + *mode = IW_MODE_AUTO;
83882 + DBGPRINT(RT_DEBUG_TRACE, ("==>rt_ioctl_giwmode(mode=%d)\n", *mode));
83886 +int rt_ioctl_siwsens(struct net_device *dev,
83887 + struct iw_request_info *info,
83888 + char *name, char *extra)
83890 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
83892 + //check if the interface is down
83893 + if(!RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_INTERRUPT_IN_USE))
83895 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
83896 + return -ENETDOWN;
83902 +int rt_ioctl_giwsens(struct net_device *dev,
83903 + struct iw_request_info *info,
83904 + char *name, char *extra)
83909 +int rt_ioctl_giwrange(struct net_device *dev,
83910 + struct iw_request_info *info,
83911 + struct iw_point *data, char *extra)
83913 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
83915 + struct iw_range *range = (struct iw_range *) extra;
83919 + DBGPRINT(RT_DEBUG_TRACE ,("===>rt_ioctl_giwrange\n"));
83920 + data->length = sizeof(struct iw_range);
83921 + memset(range, 0, sizeof(struct iw_range));
83923 + range->txpower_capa = IW_TXPOW_DBM;
83925 + if (INFRA_ON(pAdapter)||ADHOC_ON(pAdapter))
83927 + range->min_pmp = 1 * 1024;
83928 + range->max_pmp = 65535 * 1024;
83929 + range->min_pmt = 1 * 1024;
83930 + range->max_pmt = 1000 * 1024;
83931 + range->pmp_flags = IW_POWER_PERIOD;
83932 + range->pmt_flags = IW_POWER_TIMEOUT;
83933 + range->pm_capa = IW_POWER_PERIOD | IW_POWER_TIMEOUT |
83934 + IW_POWER_UNICAST_R | IW_POWER_ALL_R;
83937 + range->we_version_compiled = WIRELESS_EXT;
83938 + range->we_version_source = 14;
83940 + range->retry_capa = IW_RETRY_LIMIT;
83941 + range->retry_flags = IW_RETRY_LIMIT;
83942 + range->min_retry = 0;
83943 + range->max_retry = 255;
83945 + range->num_channels = pAdapter->ChannelListNum;
83948 + for (i = 1; i <= range->num_channels; i++)
83951 + range->freq[val].i = pAdapter->ChannelList[i-1].Channel;
83952 + MAP_CHANNEL_ID_TO_KHZ(pAdapter->ChannelList[i-1].Channel, m);
83953 + range->freq[val].m = m * 100; /* HZ */
83955 + range->freq[val].e = 1;
83957 + if (val == IW_MAX_FREQUENCIES)
83960 + range->num_frequency = val;
83962 + range->max_qual.qual = 100; /* what is correct max? This was not
83963 + * documented exactly. At least
83964 + * 69 has been observed. */
83965 + range->max_qual.level = 0; /* dB */
83966 + range->max_qual.noise = 0; /* dB */
83968 + /* What would be suitable values for "average/typical" qual? */
83969 + range->avg_qual.qual = 20;
83970 + range->avg_qual.level = -60;
83971 + range->avg_qual.noise = -95;
83972 + range->sensitivity = 3;
83974 + range->max_encoding_tokens = NR_WEP_KEYS;
83975 + range->num_encoding_sizes = 2;
83976 + range->encoding_size[0] = 5;
83977 + range->encoding_size[1] = 13;
83979 + range->min_rts = 0;
83980 + range->max_rts = 2347;
83981 + range->min_frag = 256;
83982 + range->max_frag = 2346;
83984 +#if WIRELESS_EXT > 17
83985 + /* IW_ENC_CAPA_* bit field */
83986 + range->enc_capa = IW_ENC_CAPA_WPA | IW_ENC_CAPA_WPA2 |
83987 + IW_ENC_CAPA_CIPHER_TKIP | IW_ENC_CAPA_CIPHER_CCMP;
83993 +int rt_ioctl_siwap(struct net_device *dev,
83994 + struct iw_request_info *info,
83995 + struct sockaddr *ap_addr, char *extra)
83997 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
83998 + NDIS_802_11_MAC_ADDRESS Bssid;
84000 + //check if the interface is down
84001 + if(!RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_INTERRUPT_IN_USE))
84003 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
84004 + return -ENETDOWN;
84007 + if (pAdapter->Mlme.CntlMachine.CurrState != CNTL_IDLE)
84009 + RT28XX_MLME_RESET_STATE_MACHINE(pAdapter);
84010 + DBGPRINT(RT_DEBUG_TRACE, ("!!! MLME busy, reset MLME state machine !!!\n"));
84013 + // tell CNTL state machine to call NdisMSetInformationComplete() after completing
84014 + // this request, because this request is initiated by NDIS.
84015 + pAdapter->MlmeAux.CurrReqIsFromNdis = FALSE;
84016 + // Prevent to connect AP again in STAMlmePeriodicExec
84017 + pAdapter->MlmeAux.AutoReconnectSsidLen= 32;
84019 + memset(Bssid, 0, MAC_ADDR_LEN);
84020 + memcpy(Bssid, ap_addr->sa_data, MAC_ADDR_LEN);
84021 + MlmeEnqueue(pAdapter,
84022 + MLME_CNTL_STATE_MACHINE,
84023 + OID_802_11_BSSID,
84024 + sizeof(NDIS_802_11_MAC_ADDRESS),
84027 + DBGPRINT(RT_DEBUG_TRACE, ("IOCTL::SIOCSIWAP %02x:%02x:%02x:%02x:%02x:%02x\n",
84028 + Bssid[0], Bssid[1], Bssid[2], Bssid[3], Bssid[4], Bssid[5]));
84033 +int rt_ioctl_giwap(struct net_device *dev,
84034 + struct iw_request_info *info,
84035 + struct sockaddr *ap_addr, char *extra)
84037 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
84039 + if (INFRA_ON(pAdapter) || ADHOC_ON(pAdapter))
84041 + ap_addr->sa_family = ARPHRD_ETHER;
84042 + memcpy(ap_addr->sa_data, &pAdapter->CommonCfg.Bssid, ETH_ALEN);
84044 +#ifdef WPA_SUPPLICANT_SUPPORT
84045 + // Add for RT2870
84046 + else if (pAdapter->StaCfg.WpaSupplicantUP != WPA_SUPPLICANT_DISABLE)
84048 + ap_addr->sa_family = ARPHRD_ETHER;
84049 + memcpy(ap_addr->sa_data, &pAdapter->MlmeAux.Bssid, ETH_ALEN);
84051 +#endif // WPA_SUPPLICANT_SUPPORT //
84054 + DBGPRINT(RT_DEBUG_TRACE, ("IOCTL::SIOCGIWAP(=EMPTY)\n"));
84055 + return -ENOTCONN;
84062 + * Units are in db above the noise floor. That means the
84063 + * rssi values reported in the tx/rx descriptors in the
84064 + * driver are the SNR expressed in db.
84066 + * If you assume that the noise floor is -95, which is an
84067 + * excellent assumption 99.5 % of the time, then you can
84068 + * derive the absolute signal level (i.e. -95 + rssi).
84069 + * There are some other slight factors to take into account
84070 + * depending on whether the rssi measurement is from 11b,
84071 + * 11g, or 11a. These differences are at most 2db and
84072 + * can be documented.
84074 + * NB: various calculations are based on the orinoco/wavelan
84075 + * drivers for compatibility
84077 +static void set_quality(PRTMP_ADAPTER pAdapter,
84078 + struct iw_quality *iq,
84079 + signed char rssi)
84081 + __u8 ChannelQuality;
84083 + // Normalize Rssi
84085 + ChannelQuality = 100;
84086 + else if (rssi >= -80) // between -50 ~ -80dbm
84087 + ChannelQuality = (__u8)(24 + ((rssi + 80) * 26)/10);
84088 + else if (rssi >= -90) // between -80 ~ -90dbm
84089 + ChannelQuality = (__u8)((rssi + 90) * 26)/10;
84091 + ChannelQuality = 0;
84093 + iq->qual = (__u8)ChannelQuality;
84095 + iq->level = (__u8)(rssi);
84096 + iq->noise = (pAdapter->BbpWriteLatch[66] > pAdapter->BbpTuning.FalseCcaUpperThreshold) ? ((__u8)pAdapter->BbpTuning.FalseCcaUpperThreshold) : ((__u8) pAdapter->BbpWriteLatch[66]); // noise level (dBm)
84097 + iq->noise += 256 - 143;
84098 + iq->updated = pAdapter->iw_stats.qual.updated;
84101 +int rt_ioctl_iwaplist(struct net_device *dev,
84102 + struct iw_request_info *info,
84103 + struct iw_point *data, char *extra)
84105 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
84107 + struct sockaddr addr[IW_MAX_AP];
84108 + struct iw_quality qual[IW_MAX_AP];
84111 + //check if the interface is down
84112 + if(!RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_INTERRUPT_IN_USE))
84114 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
84115 + data->length = 0;
84117 + //return -ENETDOWN;
84120 + for (i = 0; i <IW_MAX_AP ; i++)
84122 + if (i >= pAdapter->ScanTab.BssNr)
84124 + addr[i].sa_family = ARPHRD_ETHER;
84125 + memcpy(addr[i].sa_data, &pAdapter->ScanTab.BssEntry[i].Bssid, MAC_ADDR_LEN);
84126 + set_quality(pAdapter, &qual[i], pAdapter->ScanTab.BssEntry[i].Rssi);
84128 + data->length = i;
84129 + memcpy(extra, &addr, i*sizeof(addr[0]));
84130 + data->flags = 1; /* signal quality present (sort of) */
84131 + memcpy(extra + i*sizeof(addr[0]), &qual, i*sizeof(qual[i]));
84136 +#ifdef SIOCGIWSCAN
84137 +int rt_ioctl_siwscan(struct net_device *dev,
84138 + struct iw_request_info *info,
84139 + struct iw_point *data, char *extra)
84141 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
84144 + int Status = NDIS_STATUS_SUCCESS;
84146 + //check if the interface is down
84147 + if(!RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_INTERRUPT_IN_USE))
84149 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
84150 + return -ENETDOWN;
84153 + if (MONITOR_ON(pAdapter))
84155 + DBGPRINT(RT_DEBUG_TRACE, ("!!! Driver is in Monitor Mode now !!!\n"));
84160 +#ifdef WPA_SUPPLICANT_SUPPORT
84161 + if (pAdapter->StaCfg.WpaSupplicantUP == WPA_SUPPLICANT_ENABLE)
84163 + pAdapter->StaCfg.WpaSupplicantScanCount++;
84165 +#endif // WPA_SUPPLICANT_SUPPORT //
84167 + pAdapter->StaCfg.bScanReqIsFromWebUI = TRUE;
84168 + if (RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS))
84173 +#ifdef WPA_SUPPLICANT_SUPPORT
84174 + if ((pAdapter->StaCfg.WpaSupplicantUP == WPA_SUPPLICANT_ENABLE) &&
84175 + (pAdapter->StaCfg.WpaSupplicantScanCount > 3))
84177 + DBGPRINT(RT_DEBUG_TRACE, ("!!! WpaSupplicantScanCount > 3\n"));
84178 + Status = NDIS_STATUS_SUCCESS;
84181 +#endif // WPA_SUPPLICANT_SUPPORT //
84183 + if ((OPSTATUS_TEST_FLAG(pAdapter, fOP_STATUS_MEDIA_STATE_CONNECTED)) &&
84184 + ((pAdapter->StaCfg.AuthMode == Ndis802_11AuthModeWPA) ||
84185 + (pAdapter->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK)) &&
84186 + (pAdapter->StaCfg.PortSecured == WPA_802_1X_PORT_NOT_SECURED))
84188 + DBGPRINT(RT_DEBUG_TRACE, ("!!! Link UP, Port Not Secured! ignore this set::OID_802_11_BSSID_LIST_SCAN\n"));
84189 + Status = NDIS_STATUS_SUCCESS;
84193 + if (pAdapter->Mlme.CntlMachine.CurrState != CNTL_IDLE)
84195 + RT28XX_MLME_RESET_STATE_MACHINE(pAdapter);
84196 + DBGPRINT(RT_DEBUG_TRACE, ("!!! MLME busy, reset MLME state machine !!!\n"));
84199 + // tell CNTL state machine to call NdisMSetInformationComplete() after completing
84200 + // this request, because this request is initiated by NDIS.
84201 + pAdapter->MlmeAux.CurrReqIsFromNdis = FALSE;
84202 + // Reset allowed scan retries
84203 + pAdapter->StaCfg.ScanCnt = 0;
84204 + pAdapter->StaCfg.LastScanTime = Now;
84206 + MlmeEnqueue(pAdapter,
84207 + MLME_CNTL_STATE_MACHINE,
84208 + OID_802_11_BSSID_LIST_SCAN,
84212 + Status = NDIS_STATUS_SUCCESS;
84213 + RT28XX_MLME_HANDLER(pAdapter);
84218 +int rt_ioctl_giwscan(struct net_device *dev,
84219 + struct iw_request_info *info,
84220 + struct iw_point *data, char *extra)
84223 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
84225 + char *current_ev = extra, *previous_ev = extra;
84227 + char *current_val, custom[MAX_CUSTOM_LEN] = {0};
84230 +#endif // IWEVGENIE //
84231 + struct iw_event iwe;
84233 + if (RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS))
84236 + * Still scanning, indicate the caller should try again.
84242 +#ifdef WPA_SUPPLICANT_SUPPORT
84243 + if (pAdapter->StaCfg.WpaSupplicantUP == WPA_SUPPLICANT_ENABLE)
84245 + pAdapter->StaCfg.WpaSupplicantScanCount = 0;
84247 +#endif // WPA_SUPPLICANT_SUPPORT //
84249 + if (pAdapter->ScanTab.BssNr == 0)
84251 + data->length = 0;
84255 +#if WIRELESS_EXT >= 17
84256 + if (data->length > 0)
84257 + end_buf = extra + data->length;
84259 + end_buf = extra + IW_SCAN_MAX_DATA;
84261 + end_buf = extra + IW_SCAN_MAX_DATA;
84264 + for (i = 0; i < pAdapter->ScanTab.BssNr; i++)
84266 + if (current_ev >= end_buf)
84268 +#if WIRELESS_EXT >= 17
84276 + //================================
84277 + memset(&iwe, 0, sizeof(iwe));
84278 + iwe.cmd = SIOCGIWAP;
84279 + iwe.u.ap_addr.sa_family = ARPHRD_ETHER;
84280 + memcpy(iwe.u.ap_addr.sa_data, &pAdapter->ScanTab.BssEntry[i].Bssid, ETH_ALEN);
84282 + previous_ev = current_ev;
84283 + current_ev = iwe_stream_add_event(info, current_ev, end_buf, &iwe, IW_EV_ADDR_LEN);
84284 + if (current_ev == previous_ev)
84285 +#if WIRELESS_EXT >= 17
84293 + it will show scanned AP's WirelessMode .
84302 + memset(&iwe, 0, sizeof(iwe));
84303 + iwe.cmd = SIOCGIWNAME;
84307 + PBSS_ENTRY pBssEntry=&pAdapter->ScanTab.BssEntry[i];
84308 + BOOLEAN isGonly=FALSE;
84311 + if (pBssEntry->Channel>14)
84313 + if (pBssEntry->HtCapabilityLen!=0)
84314 + strcpy(iwe.u.name,"802.11a/n");
84316 + strcpy(iwe.u.name,"802.11a");
84321 + if one of non B mode rate is set supported rate . it mean G only.
84323 + for (rateCnt=0;rateCnt<pBssEntry->SupRateLen;rateCnt++)
84326 + 6Mbps(140) 9Mbps(146) and >=12Mbps(152) are supported rate , it mean G only.
84328 + if (pBssEntry->SupRate[rateCnt]==140 || pBssEntry->SupRate[rateCnt]==146 || pBssEntry->SupRate[rateCnt]>=152)
84332 + for (rateCnt=0;rateCnt<pBssEntry->ExtRateLen;rateCnt++)
84334 + if (pBssEntry->ExtRate[rateCnt]==140 || pBssEntry->ExtRate[rateCnt]==146 || pBssEntry->ExtRate[rateCnt]>=152)
84339 + if (pBssEntry->HtCapabilityLen!=0)
84341 + if (isGonly==TRUE)
84342 + strcpy(iwe.u.name,"802.11g/n");
84344 + strcpy(iwe.u.name,"802.11b/g/n");
84348 + if (isGonly==TRUE)
84349 + strcpy(iwe.u.name,"802.11g");
84352 + if (pBssEntry->SupRateLen==4 && pBssEntry->ExtRateLen==0)
84353 + strcpy(iwe.u.name,"802.11b");
84355 + strcpy(iwe.u.name,"802.11b/g");
84361 + previous_ev = current_ev;
84362 + current_ev = iwe_stream_add_event(info, current_ev, end_buf, &iwe, IW_EV_ADDR_LEN);
84363 + if (current_ev == previous_ev)
84364 +#if WIRELESS_EXT >= 17
84371 + //================================
84372 + memset(&iwe, 0, sizeof(iwe));
84373 + iwe.cmd = SIOCGIWESSID;
84374 + iwe.u.data.length = pAdapter->ScanTab.BssEntry[i].SsidLen;
84375 + iwe.u.data.flags = 1;
84377 + previous_ev = current_ev;
84378 + current_ev = iwe_stream_add_point(info, current_ev, end_buf, &iwe, pAdapter->ScanTab.BssEntry[i].Ssid);
84379 + if (current_ev == previous_ev)
84380 +#if WIRELESS_EXT >= 17
84387 + //================================
84388 + memset(&iwe, 0, sizeof(iwe));
84389 + iwe.cmd = SIOCGIWMODE;
84390 + if (pAdapter->ScanTab.BssEntry[i].BssType == Ndis802_11IBSS)
84392 + iwe.u.mode = IW_MODE_ADHOC;
84394 + else if (pAdapter->ScanTab.BssEntry[i].BssType == Ndis802_11Infrastructure)
84396 + iwe.u.mode = IW_MODE_INFRA;
84400 + iwe.u.mode = IW_MODE_AUTO;
84402 + iwe.len = IW_EV_UINT_LEN;
84404 + previous_ev = current_ev;
84405 + current_ev = iwe_stream_add_event(info, current_ev, end_buf, &iwe, IW_EV_UINT_LEN);
84406 + if (current_ev == previous_ev)
84407 +#if WIRELESS_EXT >= 17
84413 + //Channel and Frequency
84414 + //================================
84415 + memset(&iwe, 0, sizeof(iwe));
84416 + iwe.cmd = SIOCGIWFREQ;
84417 + if (INFRA_ON(pAdapter) || ADHOC_ON(pAdapter))
84418 + iwe.u.freq.m = pAdapter->ScanTab.BssEntry[i].Channel;
84420 + iwe.u.freq.m = pAdapter->ScanTab.BssEntry[i].Channel;
84421 + iwe.u.freq.e = 0;
84422 + iwe.u.freq.i = 0;
84424 + previous_ev = current_ev;
84425 + current_ev = iwe_stream_add_event(info, current_ev, end_buf, &iwe, IW_EV_FREQ_LEN);
84426 + if (current_ev == previous_ev)
84427 +#if WIRELESS_EXT >= 17
84433 + //Add quality statistics
84434 + //================================
84435 + memset(&iwe, 0, sizeof(iwe));
84436 + iwe.cmd = IWEVQUAL;
84437 + iwe.u.qual.level = 0;
84438 + iwe.u.qual.noise = 0;
84439 + set_quality(pAdapter, &iwe.u.qual, pAdapter->ScanTab.BssEntry[i].Rssi);
84440 + current_ev = iwe_stream_add_event(info, current_ev, end_buf, &iwe, IW_EV_QUAL_LEN);
84441 + if (current_ev == previous_ev)
84442 +#if WIRELESS_EXT >= 17
84449 + //================================
84450 + memset(&iwe, 0, sizeof(iwe));
84451 + iwe.cmd = SIOCGIWENCODE;
84452 + if (CAP_IS_PRIVACY_ON (pAdapter->ScanTab.BssEntry[i].CapabilityInfo ))
84453 + iwe.u.data.flags =IW_ENCODE_ENABLED | IW_ENCODE_NOKEY;
84455 + iwe.u.data.flags = IW_ENCODE_DISABLED;
84457 + previous_ev = current_ev;
84458 + current_ev = iwe_stream_add_point(info, current_ev, end_buf,&iwe, (char *)pAdapter->SharedKey[BSS0][(iwe.u.data.flags & IW_ENCODE_INDEX)-1].Key);
84459 + if (current_ev == previous_ev)
84460 +#if WIRELESS_EXT >= 17
84467 + //================================
84468 + if (pAdapter->ScanTab.BssEntry[i].SupRateLen)
84470 + UCHAR tmpRate = pAdapter->ScanTab.BssEntry[i].SupRate[pAdapter->ScanTab.BssEntry[i].SupRateLen-1];
84471 + memset(&iwe, 0, sizeof(iwe));
84472 + iwe.cmd = SIOCGIWRATE;
84473 + current_val = current_ev + IW_EV_LCP_LEN;
84474 + if (tmpRate == 0x82)
84475 + iwe.u.bitrate.value = 1 * 1000000;
84476 + else if (tmpRate == 0x84)
84477 + iwe.u.bitrate.value = 2 * 1000000;
84478 + else if (tmpRate == 0x8B)
84479 + iwe.u.bitrate.value = 5.5 * 1000000;
84480 + else if (tmpRate == 0x96)
84481 + iwe.u.bitrate.value = 11 * 1000000;
84483 + iwe.u.bitrate.value = (tmpRate/2) * 1000000;
84485 + iwe.u.bitrate.disabled = 0;
84486 + current_val = iwe_stream_add_value(info, current_ev,
84487 + current_val, end_buf, &iwe,
84488 + IW_EV_PARAM_LEN);
84490 + if((current_val-current_ev)>IW_EV_LCP_LEN)
84491 + current_ev = current_val;
84493 +#if WIRELESS_EXT >= 17
84502 + if (pAdapter->ScanTab.BssEntry[i].WpaIE.IELen > 0)
84504 + memset(&iwe, 0, sizeof(iwe));
84505 + memset(&custom[0], 0, MAX_CUSTOM_LEN);
84506 + memcpy(custom, &(pAdapter->ScanTab.BssEntry[i].WpaIE.IE[0]),
84507 + pAdapter->ScanTab.BssEntry[i].WpaIE.IELen);
84508 + iwe.cmd = IWEVGENIE;
84509 + iwe.u.data.length = pAdapter->ScanTab.BssEntry[i].WpaIE.IELen;
84510 + current_ev = iwe_stream_add_point(info, current_ev, end_buf, &iwe, custom);
84511 + if (current_ev == previous_ev)
84512 +#if WIRELESS_EXT >= 17
84520 + if (pAdapter->ScanTab.BssEntry[i].RsnIE.IELen > 0)
84522 + memset(&iwe, 0, sizeof(iwe));
84523 + memset(&custom[0], 0, MAX_CUSTOM_LEN);
84524 + memcpy(custom, &(pAdapter->ScanTab.BssEntry[i].RsnIE.IE[0]),
84525 + pAdapter->ScanTab.BssEntry[i].RsnIE.IELen);
84526 + iwe.cmd = IWEVGENIE;
84527 + iwe.u.data.length = pAdapter->ScanTab.BssEntry[i].RsnIE.IELen;
84528 + current_ev = iwe_stream_add_point(info, current_ev, end_buf, &iwe, custom);
84529 + if (current_ev == previous_ev)
84530 +#if WIRELESS_EXT >= 17
84538 + //================================
84539 + if (pAdapter->ScanTab.BssEntry[i].WpaIE.IELen > 0)
84541 + NdisZeroMemory(&iwe, sizeof(iwe));
84542 + memset(&custom[0], 0, MAX_CUSTOM_LEN);
84543 + iwe.cmd = IWEVCUSTOM;
84544 + iwe.u.data.length = (pAdapter->ScanTab.BssEntry[i].WpaIE.IELen * 2) + 7;
84545 + NdisMoveMemory(custom, "wpa_ie=", 7);
84546 + for (idx = 0; idx < pAdapter->ScanTab.BssEntry[i].WpaIE.IELen; idx++)
84547 + sprintf(custom, "%s%02x", custom, pAdapter->ScanTab.BssEntry[i].WpaIE.IE[idx]);
84548 + previous_ev = current_ev;
84549 + current_ev = iwe_stream_add_point(current_ev, end_buf, &iwe, custom);
84550 + if (current_ev == previous_ev)
84551 +#if WIRELESS_EXT >= 17
84559 + if (pAdapter->ScanTab.BssEntry[i].RsnIE.IELen > 0)
84561 + NdisZeroMemory(&iwe, sizeof(iwe));
84562 + memset(&custom[0], 0, MAX_CUSTOM_LEN);
84563 + iwe.cmd = IWEVCUSTOM;
84564 + iwe.u.data.length = (pAdapter->ScanTab.BssEntry[i].RsnIE.IELen * 2) + 7;
84565 + NdisMoveMemory(custom, "rsn_ie=", 7);
84566 + for (idx = 0; idx < pAdapter->ScanTab.BssEntry[i].RsnIE.IELen; idx++)
84567 + sprintf(custom, "%s%02x", custom, pAdapter->ScanTab.BssEntry[i].RsnIE.IE[idx]);
84568 + previous_ev = current_ev;
84569 + current_ev = iwe_stream_add_point(current_ev, end_buf, &iwe, custom);
84570 + if (current_ev == previous_ev)
84571 +#if WIRELESS_EXT >= 17
84577 +#endif // IWEVGENIE //
84580 + data->length = current_ev - extra;
84581 + pAdapter->StaCfg.bScanReqIsFromWebUI = FALSE;
84582 + DBGPRINT(RT_DEBUG_ERROR ,("===>rt_ioctl_giwscan. %d(%d) BSS returned, data->length = %d\n",i , pAdapter->ScanTab.BssNr, data->length));
84587 +int rt_ioctl_siwessid(struct net_device *dev,
84588 + struct iw_request_info *info,
84589 + struct iw_point *data, char *essid)
84591 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
84593 + //check if the interface is down
84594 + if(!RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_INTERRUPT_IN_USE))
84596 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
84597 + return -ENETDOWN;
84602 + PCHAR pSsidString = NULL;
84604 + // Includes null character.
84605 + if (data->length > (IW_ESSID_MAX_SIZE + 1))
84608 + pSsidString = (CHAR *) kmalloc(MAX_LEN_OF_SSID+1, MEM_ALLOC_FLAG);
84611 + NdisZeroMemory(pSsidString, MAX_LEN_OF_SSID+1);
84612 + NdisMoveMemory(pSsidString, essid, data->length);
84613 + if (Set_SSID_Proc(pAdapter, pSsidString) == FALSE)
84622 + if (Set_SSID_Proc(pAdapter, "") == FALSE)
84628 +int rt_ioctl_giwessid(struct net_device *dev,
84629 + struct iw_request_info *info,
84630 + struct iw_point *data, char *essid)
84632 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
84635 + if (MONITOR_ON(pAdapter))
84637 + data->length = 0;
84641 + if (OPSTATUS_TEST_FLAG(pAdapter, fOP_STATUS_MEDIA_STATE_CONNECTED))
84643 + DBGPRINT(RT_DEBUG_TRACE ,("MediaState is connected\n"));
84644 + data->length = pAdapter->CommonCfg.SsidLen;
84645 + memcpy(essid, pAdapter->CommonCfg.Ssid, pAdapter->CommonCfg.SsidLen);
84648 +#ifdef WPA_SUPPLICANT_SUPPORT
84649 + // Add for RT2870
84650 + else if (pAdapter->StaCfg.WpaSupplicantUP != WPA_SUPPLICANT_DISABLE)
84652 + data->length = pAdapter->CommonCfg.SsidLen;
84653 + memcpy(essid, pAdapter->CommonCfg.Ssid, pAdapter->CommonCfg.SsidLen);
84655 +#endif // WPA_SUPPLICANT_SUPPORT //
84656 +#endif // RT2870 //
84658 + {//the ANY ssid was specified
84659 + data->length = 0;
84660 + DBGPRINT(RT_DEBUG_TRACE ,("MediaState is not connected, ess\n"));
84667 +int rt_ioctl_siwnickn(struct net_device *dev,
84668 + struct iw_request_info *info,
84669 + struct iw_point *data, char *nickname)
84671 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
84673 + //check if the interface is down
84674 + if(!RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_INTERRUPT_IN_USE))
84676 + DBGPRINT(RT_DEBUG_TRACE ,("INFO::Network is down!\n"));
84677 + return -ENETDOWN;
84680 + if (data->length > IW_ESSID_MAX_SIZE)
84683 + memset(pAdapter->nickname, 0, IW_ESSID_MAX_SIZE + 1);
84684 + memcpy(pAdapter->nickname, nickname, data->length);
84690 +int rt_ioctl_giwnickn(struct net_device *dev,
84691 + struct iw_request_info *info,
84692 + struct iw_point *data, char *nickname)
84694 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
84696 + if (data->length > strlen(pAdapter->nickname) + 1)
84697 + data->length = strlen(pAdapter->nickname) + 1;
84698 + if (data->length > 0) {
84699 + memcpy(nickname, pAdapter->nickname, data->length-1);
84700 + nickname[data->length-1] = '\0';
84705 +int rt_ioctl_siwrts(struct net_device *dev,
84706 + struct iw_request_info *info,
84707 + struct iw_param *rts, char *extra)
84709 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
84712 + //check if the interface is down
84713 + if(!RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_INTERRUPT_IN_USE))
84715 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
84716 + return -ENETDOWN;
84719 + if (rts->disabled)
84720 + val = MAX_RTS_THRESHOLD;
84721 + else if (rts->value < 0 || rts->value > MAX_RTS_THRESHOLD)
84723 + else if (rts->value == 0)
84724 + val = MAX_RTS_THRESHOLD;
84726 + val = rts->value;
84728 + if (val != pAdapter->CommonCfg.RtsThreshold)
84729 + pAdapter->CommonCfg.RtsThreshold = val;
84734 +int rt_ioctl_giwrts(struct net_device *dev,
84735 + struct iw_request_info *info,
84736 + struct iw_param *rts, char *extra)
84738 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
84740 + //check if the interface is down
84741 + if(!RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_INTERRUPT_IN_USE))
84743 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
84744 + return -ENETDOWN;
84747 + rts->value = pAdapter->CommonCfg.RtsThreshold;
84748 + rts->disabled = (rts->value == MAX_RTS_THRESHOLD);
84754 +int rt_ioctl_siwfrag(struct net_device *dev,
84755 + struct iw_request_info *info,
84756 + struct iw_param *frag, char *extra)
84758 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
84761 + //check if the interface is down
84762 + if(!RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_INTERRUPT_IN_USE))
84764 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
84765 + return -ENETDOWN;
84768 + if (frag->disabled)
84769 + val = MAX_FRAG_THRESHOLD;
84770 + else if (frag->value >= MIN_FRAG_THRESHOLD || frag->value <= MAX_FRAG_THRESHOLD)
84771 + val = __cpu_to_le16(frag->value & ~0x1); /* even numbers only */
84772 + else if (frag->value == 0)
84773 + val = MAX_FRAG_THRESHOLD;
84777 + pAdapter->CommonCfg.FragmentThreshold = val;
84781 +int rt_ioctl_giwfrag(struct net_device *dev,
84782 + struct iw_request_info *info,
84783 + struct iw_param *frag, char *extra)
84785 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
84787 + //check if the interface is down
84788 + if(!RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_INTERRUPT_IN_USE))
84790 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
84791 + return -ENETDOWN;
84794 + frag->value = pAdapter->CommonCfg.FragmentThreshold;
84795 + frag->disabled = (frag->value == MAX_FRAG_THRESHOLD);
84801 +#define MAX_WEP_KEY_SIZE 13
84802 +#define MIN_WEP_KEY_SIZE 5
84803 +int rt_ioctl_siwencode(struct net_device *dev,
84804 + struct iw_request_info *info,
84805 + struct iw_point *erq, char *extra)
84807 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
84809 + //check if the interface is down
84810 + if(!RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_INTERRUPT_IN_USE))
84812 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
84813 + return -ENETDOWN;
84816 + if ((erq->length == 0) &&
84817 + (erq->flags & IW_ENCODE_DISABLED))
84819 + pAdapter->StaCfg.PairCipher = Ndis802_11WEPDisabled;
84820 + pAdapter->StaCfg.GroupCipher = Ndis802_11WEPDisabled;
84821 + pAdapter->StaCfg.WepStatus = Ndis802_11WEPDisabled;
84822 + pAdapter->StaCfg.OrigWepStatus = pAdapter->StaCfg.WepStatus;
84823 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeOpen;
84826 + else if (erq->flags & IW_ENCODE_RESTRICTED || erq->flags & IW_ENCODE_OPEN)
84828 + //pAdapter->StaCfg.PortSecured = WPA_802_1X_PORT_SECURED;
84829 + STA_PORT_SECURED(pAdapter);
84830 + pAdapter->StaCfg.PairCipher = Ndis802_11WEPEnabled;
84831 + pAdapter->StaCfg.GroupCipher = Ndis802_11WEPEnabled;
84832 + pAdapter->StaCfg.WepStatus = Ndis802_11WEPEnabled;
84833 + pAdapter->StaCfg.OrigWepStatus = pAdapter->StaCfg.WepStatus;
84834 + if (erq->flags & IW_ENCODE_RESTRICTED)
84835 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeShared;
84837 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeOpen;
84840 + if (erq->length > 0)
84842 + int keyIdx = (erq->flags & IW_ENCODE_INDEX) - 1;
84843 + /* Check the size of the key */
84844 + if (erq->length > MAX_WEP_KEY_SIZE)
84848 + /* Check key index */
84849 + if ((keyIdx < 0) || (keyIdx >= NR_WEP_KEYS))
84851 + DBGPRINT(RT_DEBUG_TRACE ,("==>rt_ioctl_siwencode::Wrong keyIdx=%d! Using default key instead (%d)\n",
84852 + keyIdx, pAdapter->StaCfg.DefaultKeyId));
84854 + //Using default key
84855 + keyIdx = pAdapter->StaCfg.DefaultKeyId;
84859 + pAdapter->StaCfg.DefaultKeyId=keyIdx;
84862 + NdisZeroMemory(pAdapter->SharedKey[BSS0][keyIdx].Key, 16);
84864 + if (erq->length == MAX_WEP_KEY_SIZE)
84866 + pAdapter->SharedKey[BSS0][keyIdx].KeyLen = MAX_WEP_KEY_SIZE;
84867 + pAdapter->SharedKey[BSS0][keyIdx].CipherAlg = CIPHER_WEP128;
84869 + else if (erq->length == MIN_WEP_KEY_SIZE)
84871 + pAdapter->SharedKey[BSS0][keyIdx].KeyLen = MIN_WEP_KEY_SIZE;
84872 + pAdapter->SharedKey[BSS0][keyIdx].CipherAlg = CIPHER_WEP64;
84875 + /* Disable the key */
84876 + pAdapter->SharedKey[BSS0][keyIdx].KeyLen = 0;
84878 + /* Check if the key is not marked as invalid */
84879 + if(!(erq->flags & IW_ENCODE_NOKEY))
84881 + /* Copy the key in the driver */
84882 + NdisMoveMemory(pAdapter->SharedKey[BSS0][keyIdx].Key, extra, erq->length);
84887 + /* Do we want to just set the transmit key index ? */
84888 + int index = (erq->flags & IW_ENCODE_INDEX) - 1;
84889 + if ((index >= 0) && (index < 4))
84891 + pAdapter->StaCfg.DefaultKeyId = index;
84894 + /* Don't complain if only change the mode */
84895 + if(!erq->flags & IW_ENCODE_MODE)
84902 + DBGPRINT(RT_DEBUG_TRACE ,("==>rt_ioctl_siwencode::erq->flags=%x\n",erq->flags));
84903 + DBGPRINT(RT_DEBUG_TRACE ,("==>rt_ioctl_siwencode::AuthMode=%x\n",pAdapter->StaCfg.AuthMode));
84904 + DBGPRINT(RT_DEBUG_TRACE ,("==>rt_ioctl_siwencode::DefaultKeyId=%x, KeyLen = %d\n",pAdapter->StaCfg.DefaultKeyId , pAdapter->SharedKey[BSS0][pAdapter->StaCfg.DefaultKeyId].KeyLen));
84905 + DBGPRINT(RT_DEBUG_TRACE ,("==>rt_ioctl_siwencode::WepStatus=%x\n",pAdapter->StaCfg.WepStatus));
84910 +rt_ioctl_giwencode(struct net_device *dev,
84911 + struct iw_request_info *info,
84912 + struct iw_point *erq, char *key)
84914 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
84917 + //check if the interface is down
84918 + if(!RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_INTERRUPT_IN_USE))
84920 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
84921 + return -ENETDOWN;
84924 + kid = erq->flags & IW_ENCODE_INDEX;
84925 + DBGPRINT(RT_DEBUG_TRACE, ("===>rt_ioctl_giwencode %d\n", erq->flags & IW_ENCODE_INDEX));
84927 + if (pAdapter->StaCfg.WepStatus == Ndis802_11WEPDisabled)
84930 + erq->flags = IW_ENCODE_DISABLED;
84932 + else if ((kid > 0) && (kid <=4))
84935 + erq->flags = kid ; /* NB: base 1 */
84936 + if (erq->length > pAdapter->SharedKey[BSS0][kid-1].KeyLen)
84937 + erq->length = pAdapter->SharedKey[BSS0][kid-1].KeyLen;
84938 + memcpy(key, pAdapter->SharedKey[BSS0][kid-1].Key, erq->length);
84939 + //if ((kid == pAdapter->PortCfg.DefaultKeyId))
84940 + //erq->flags |= IW_ENCODE_ENABLED; /* XXX */
84941 + if (pAdapter->StaCfg.AuthMode == Ndis802_11AuthModeShared)
84942 + erq->flags |= IW_ENCODE_RESTRICTED; /* XXX */
84944 + erq->flags |= IW_ENCODE_OPEN; /* XXX */
84947 + else if (kid == 0)
84949 + if (pAdapter->StaCfg.AuthMode == Ndis802_11AuthModeShared)
84950 + erq->flags |= IW_ENCODE_RESTRICTED; /* XXX */
84952 + erq->flags |= IW_ENCODE_OPEN; /* XXX */
84953 + erq->length = pAdapter->SharedKey[BSS0][pAdapter->StaCfg.DefaultKeyId].KeyLen;
84954 + memcpy(key, pAdapter->SharedKey[BSS0][pAdapter->StaCfg.DefaultKeyId].Key, erq->length);
84955 + // copy default key ID
84956 + if (pAdapter->StaCfg.AuthMode == Ndis802_11AuthModeShared)
84957 + erq->flags |= IW_ENCODE_RESTRICTED; /* XXX */
84959 + erq->flags |= IW_ENCODE_OPEN; /* XXX */
84960 + erq->flags = pAdapter->StaCfg.DefaultKeyId + 1; /* NB: base 1 */
84961 + erq->flags |= IW_ENCODE_ENABLED; /* XXX */
84969 +rt_ioctl_setparam(struct net_device *dev, struct iw_request_info *info,
84970 + void *w, char *extra)
84972 + VIRTUAL_ADAPTER *pVirtualAd = NULL;
84973 + PRTMP_ADAPTER pAdapter;
84975 + char *this_char = extra;
84979 + if (dev->priv_flags == INT_MAIN)
84981 + pAdapter = dev->ml_priv;
84985 + pVirtualAd = dev->ml_priv;
84986 + pAdapter = pVirtualAd->RtmpDev->ml_priv;
84988 + pObj = (POS_COOKIE) pAdapter->OS_Cookie;
84990 + if (pAdapter == NULL)
84992 + /* if 1st open fail, pAd will be free;
84993 + So the net_dev->ml_priv will be NULL in 2rd open */
84994 + return -ENETDOWN;
84998 + pObj->ioctl_if_type = INT_MAIN;
84999 + pObj->ioctl_if = MAIN_MBSSID;
85002 + //check if the interface is down
85003 + if(!RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_INTERRUPT_IN_USE))
85005 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
85006 + return -ENETDOWN;
85012 + if ((value = rtstrchr(this_char, '=')) != NULL)
85018 + // reject setting nothing besides ANY ssid(ssidLen=0)
85019 + if (!*value && (strcmp(this_char, "SSID") != 0))
85022 + for (PRTMP_PRIVATE_SET_PROC = RTMP_PRIVATE_SUPPORT_PROC; PRTMP_PRIVATE_SET_PROC->name; PRTMP_PRIVATE_SET_PROC++)
85024 + if (strcmp(this_char, PRTMP_PRIVATE_SET_PROC->name) == 0)
85026 + if(!PRTMP_PRIVATE_SET_PROC->set_proc(pAdapter, value))
85027 + { //FALSE:Set private failed then return Invalid argument
85028 + Status = -EINVAL;
85030 + break; //Exit for loop.
85034 + if(PRTMP_PRIVATE_SET_PROC->name == NULL)
85035 + { //Not found argument
85036 + Status = -EINVAL;
85037 + DBGPRINT(RT_DEBUG_TRACE, ("===>rt_ioctl_setparam:: (iwpriv) Not Support Set Command [%s=%s]\n", this_char, value));
85045 +rt_private_get_statistics(struct net_device *dev, struct iw_request_info *info,
85046 + struct iw_point *wrq, char *extra)
85049 + PRTMP_ADAPTER pAd = dev->ml_priv;
85051 + if (extra == NULL)
85057 + memset(extra, 0x00, IW_PRIV_SIZE_MASK);
85058 + sprintf(extra, "\n\n");
85063 + sprintf(extra+strlen(extra), "Tx success = %ld\n", (ULONG)pAd->ate.TxDoneCount);
85064 + //sprintf(extra+strlen(extra), "Tx success without retry = %ld\n", (ULONG)pAd->ate.TxDoneCount);
85067 +#endif // RALINK_ATE //
85069 + sprintf(extra+strlen(extra), "Tx success = %ld\n", (ULONG)pAd->WlanCounters.TransmittedFragmentCount.QuadPart);
85070 + sprintf(extra+strlen(extra), "Tx success without retry = %ld\n", (ULONG)pAd->WlanCounters.TransmittedFragmentCount.QuadPart - (ULONG)pAd->WlanCounters.RetryCount.QuadPart);
85072 + sprintf(extra+strlen(extra), "Tx success after retry = %ld\n", (ULONG)pAd->WlanCounters.RetryCount.QuadPart);
85073 + sprintf(extra+strlen(extra), "Tx fail to Rcv ACK after retry = %ld\n", (ULONG)pAd->WlanCounters.FailedCount.QuadPart);
85074 + sprintf(extra+strlen(extra), "RTS Success Rcv CTS = %ld\n", (ULONG)pAd->WlanCounters.RTSSuccessCount.QuadPart);
85075 + sprintf(extra+strlen(extra), "RTS Fail Rcv CTS = %ld\n", (ULONG)pAd->WlanCounters.RTSFailureCount.QuadPart);
85077 + sprintf(extra+strlen(extra), "Rx success = %ld\n", (ULONG)pAd->WlanCounters.ReceivedFragmentCount.QuadPart);
85078 + sprintf(extra+strlen(extra), "Rx with CRC = %ld\n", (ULONG)pAd->WlanCounters.FCSErrorCount.QuadPart);
85079 + sprintf(extra+strlen(extra), "Rx drop due to out of resource = %ld\n", (ULONG)pAd->Counters8023.RxNoBuffer);
85080 + sprintf(extra+strlen(extra), "Rx duplicate frame = %ld\n", (ULONG)pAd->WlanCounters.FrameDuplicateCount.QuadPart);
85082 + sprintf(extra+strlen(extra), "False CCA (one second) = %ld\n", (ULONG)pAd->RalinkCounters.OneSecFalseCCACnt);
85086 + if (pAd->ate.RxAntennaSel == 0)
85088 + sprintf(extra+strlen(extra), "RSSI-A = %ld\n", (LONG)(pAd->ate.LastRssi0 - pAd->BbpRssiToDbmDelta));
85089 + sprintf(extra+strlen(extra), "RSSI-B (if available) = %ld\n", (LONG)(pAd->ate.LastRssi1 - pAd->BbpRssiToDbmDelta));
85090 + sprintf(extra+strlen(extra), "RSSI-C (if available) = %ld\n\n", (LONG)(pAd->ate.LastRssi2 - pAd->BbpRssiToDbmDelta));
85094 + sprintf(extra+strlen(extra), "RSSI = %ld\n", (LONG)(pAd->ate.LastRssi0 - pAd->BbpRssiToDbmDelta));
85098 +#endif // RALINK_ATE //
85100 + sprintf(extra+strlen(extra), "RSSI-A = %ld\n", (LONG)(pAd->StaCfg.RssiSample.LastRssi0 - pAd->BbpRssiToDbmDelta));
85101 + sprintf(extra+strlen(extra), "RSSI-B (if available) = %ld\n", (LONG)(pAd->StaCfg.RssiSample.LastRssi1 - pAd->BbpRssiToDbmDelta));
85102 + sprintf(extra+strlen(extra), "RSSI-C (if available) = %ld\n\n", (LONG)(pAd->StaCfg.RssiSample.LastRssi2 - pAd->BbpRssiToDbmDelta));
85104 +#ifdef WPA_SUPPLICANT_SUPPORT
85105 + sprintf(extra+strlen(extra), "WpaSupplicantUP = %d\n\n", pAd->StaCfg.WpaSupplicantUP);
85106 +#endif // WPA_SUPPLICANT_SUPPORT //
85109 + wrq->length = strlen(extra) + 1; // 1: size of '\0'
85110 + DBGPRINT(RT_DEBUG_TRACE, ("<== rt_private_get_statistics, wrq->length = %d\n", wrq->length));
85115 +#ifdef DOT11_N_SUPPORT
85117 + IN PRTMP_ADAPTER pAd,
85118 + IN PUCHAR pOutBuf)
85121 + BA_ORI_ENTRY *pOriBAEntry;
85122 + BA_REC_ENTRY *pRecBAEntry;
85124 + for (i=0; i<MAX_LEN_OF_MAC_TABLE; i++)
85126 + PMAC_TABLE_ENTRY pEntry = &pAd->MacTab.Content[i];
85127 + if (((pEntry->ValidAsCLI || pEntry->ValidAsApCli) && (pEntry->Sst == SST_ASSOC))
85128 + || (pEntry->ValidAsWDS) || (pEntry->ValidAsMesh))
85130 + sprintf(pOutBuf, "%s\n%02X:%02X:%02X:%02X:%02X:%02X (Aid = %d) (AP) -\n",
85132 + pEntry->Addr[0], pEntry->Addr[1], pEntry->Addr[2],
85133 + pEntry->Addr[3], pEntry->Addr[4], pEntry->Addr[5], pEntry->Aid);
85135 + sprintf(pOutBuf, "%s[Recipient]\n", pOutBuf);
85136 + for (j=0; j < NUM_OF_TID; j++)
85138 + if (pEntry->BARecWcidArray[j] != 0)
85140 + pRecBAEntry =&pAd->BATable.BARecEntry[pEntry->BARecWcidArray[j]];
85141 + sprintf(pOutBuf, "%sTID=%d, BAWinSize=%d, LastIndSeq=%d, ReorderingPkts=%d\n", pOutBuf, j, pRecBAEntry->BAWinSize, pRecBAEntry->LastIndSeq, pRecBAEntry->list.qlen);
85144 + sprintf(pOutBuf, "%s\n", pOutBuf);
85146 + sprintf(pOutBuf, "%s[Originator]\n", pOutBuf);
85147 + for (j=0; j < NUM_OF_TID; j++)
85149 + if (pEntry->BAOriWcidArray[j] != 0)
85151 + pOriBAEntry =&pAd->BATable.BAOriEntry[pEntry->BAOriWcidArray[j]];
85152 + sprintf(pOutBuf, "%sTID=%d, BAWinSize=%d, StartSeq=%d, CurTxSeq=%d\n", pOutBuf, j, pOriBAEntry->BAWinSize, pOriBAEntry->Sequence, pEntry->TxSeq[j]);
85155 + sprintf(pOutBuf, "%s\n\n", pOutBuf);
85157 + if (strlen(pOutBuf) > (IW_PRIV_SIZE_MASK - 30))
85163 +#endif // DOT11_N_SUPPORT //
85166 +rt_private_show(struct net_device *dev, struct iw_request_info *info,
85167 + struct iw_point *wrq, char *extra)
85170 + VIRTUAL_ADAPTER *pVirtualAd = NULL;
85171 + PRTMP_ADAPTER pAd;
85173 + u32 subcmd = wrq->flags;
85175 + if (dev->priv_flags == INT_MAIN)
85176 + pAd = dev->ml_priv;
85179 + pVirtualAd = dev->ml_priv;
85180 + pAd = pVirtualAd->RtmpDev->ml_priv;
85182 + pObj = (POS_COOKIE) pAd->OS_Cookie;
85186 + /* if 1st open fail, pAd will be free;
85187 + So the net_dev->ml_priv will be NULL in 2rd open */
85188 + return -ENETDOWN;
85191 + if (extra == NULL)
85196 + memset(extra, 0x00, IW_PRIV_SIZE_MASK);
85199 + pObj->ioctl_if_type = INT_MAIN;
85200 + pObj->ioctl_if = MAIN_MBSSID;
85206 + case SHOW_CONN_STATUS:
85207 + if (MONITOR_ON(pAd))
85209 +#ifdef DOT11_N_SUPPORT
85210 + if (pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED &&
85211 + pAd->CommonCfg.RegTransmitSetting.field.BW)
85212 + sprintf(extra, "Monitor Mode(CentralChannel %d)\n", pAd->CommonCfg.CentralChannel);
85214 +#endif // DOT11_N_SUPPORT //
85215 + sprintf(extra, "Monitor Mode(Channel %d)\n", pAd->CommonCfg.Channel);
85219 + if (pAd->IndicateMediaState == NdisMediaStateConnected)
85221 + if (INFRA_ON(pAd))
85223 + sprintf(extra, "Connected(AP: %s[%02X:%02X:%02X:%02X:%02X:%02X])\n",
85224 + pAd->CommonCfg.Ssid,
85225 + pAd->CommonCfg.Bssid[0],
85226 + pAd->CommonCfg.Bssid[1],
85227 + pAd->CommonCfg.Bssid[2],
85228 + pAd->CommonCfg.Bssid[3],
85229 + pAd->CommonCfg.Bssid[4],
85230 + pAd->CommonCfg.Bssid[5]);
85231 + DBGPRINT(RT_DEBUG_TRACE ,("Ssid=%s ,Ssidlen = %d\n",pAd->CommonCfg.Ssid, pAd->CommonCfg.SsidLen));
85233 + else if (ADHOC_ON(pAd))
85234 + sprintf(extra, "Connected\n");
85238 + sprintf(extra, "Disconnected\n");
85239 + DBGPRINT(RT_DEBUG_TRACE ,("ConnStatus is not connected\n"));
85242 + wrq->length = strlen(extra) + 1; // 1: size of '\0'
85244 + case SHOW_DRVIER_VERION:
85245 + sprintf(extra, "Driver version-%s, %s %s\n", STA_DRIVER_VERSION, __DATE__, __TIME__ );
85246 + wrq->length = strlen(extra) + 1; // 1: size of '\0'
85248 +#ifdef DOT11_N_SUPPORT
85249 + case SHOW_BA_INFO:
85250 + getBaInfo(pAd, extra);
85251 + wrq->length = strlen(extra) + 1; // 1: size of '\0'
85253 +#endif // DOT11_N_SUPPORT //
85254 + case SHOW_DESC_INFO:
85256 + Show_DescInfo_Proc(pAd, NULL);
85257 + wrq->length = 0; // 1: size of '\0'
85261 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS))
85263 + sprintf(extra, "Scanning\n");
85264 + wrq->length = strlen(extra) + 1; // 1: size of '\0'
85267 + pAd->StaCfg.bSwRadio = FALSE;
85268 + if (pAd->StaCfg.bRadio != (pAd->StaCfg.bHwRadio && pAd->StaCfg.bSwRadio))
85270 + pAd->StaCfg.bRadio = (pAd->StaCfg.bHwRadio && pAd->StaCfg.bSwRadio);
85271 + if (pAd->StaCfg.bRadio == FALSE)
85273 + MlmeRadioOff(pAd);
85274 + // Update extra information
85275 + pAd->ExtraInfo = SW_RADIO_OFF;
85278 + sprintf(extra, "Radio Off\n");
85279 + wrq->length = strlen(extra) + 1; // 1: size of '\0'
85282 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS))
85284 + sprintf(extra, "Scanning\n");
85285 + wrq->length = strlen(extra) + 1; // 1: size of '\0'
85288 + pAd->StaCfg.bSwRadio = TRUE;
85289 + //if (pAd->StaCfg.bRadio != (pAd->StaCfg.bHwRadio && pAd->StaCfg.bSwRadio))
85291 + pAd->StaCfg.bRadio = (pAd->StaCfg.bHwRadio && pAd->StaCfg.bSwRadio);
85292 + if (pAd->StaCfg.bRadio == TRUE)
85294 + MlmeRadioOn(pAd);
85295 + // Update extra information
85296 + pAd->ExtraInfo = EXTRA_INFO_CLEAR;
85299 + sprintf(extra, "Radio On\n");
85300 + wrq->length = strlen(extra) + 1; // 1: size of '\0'
85304 +#ifdef QOS_DLS_SUPPORT
85305 + case SHOW_DLS_ENTRY_INFO:
85307 + Set_DlsEntryInfo_Display_Proc(pAd, NULL);
85308 + wrq->length = 0; // 1: size of '\0'
85311 +#endif // QOS_DLS_SUPPORT //
85313 + case SHOW_CFG_VALUE:
85315 + Status = RTMPShowCfgValue(pAd, wrq->pointer, extra);
85317 + wrq->length = strlen(extra) + 1; // 1: size of '\0'
85321 + DBGPRINT(RT_DEBUG_TRACE, ("%s - unknow subcmd = %d\n", __FUNCTION__, subcmd));
85328 +#ifdef SIOCSIWMLME
85329 +int rt_ioctl_siwmlme(struct net_device *dev,
85330 + struct iw_request_info *info,
85331 + union iwreq_data *wrqu,
85334 + PRTMP_ADAPTER pAd = dev->ml_priv;
85335 + struct iw_mlme *pMlme = (struct iw_mlme *)wrqu->data.pointer;
85336 + MLME_QUEUE_ELEM MsgElem;
85337 + MLME_DISASSOC_REQ_STRUCT DisAssocReq;
85338 + MLME_DEAUTH_REQ_STRUCT DeAuthReq;
85340 + DBGPRINT(RT_DEBUG_TRACE, ("====> %s\n", __FUNCTION__));
85342 + if (pMlme == NULL)
85345 + switch(pMlme->cmd)
85347 +#ifdef IW_MLME_DEAUTH
85348 + case IW_MLME_DEAUTH:
85349 + DBGPRINT(RT_DEBUG_TRACE, ("====> %s - IW_MLME_DEAUTH\n", __FUNCTION__));
85350 + COPY_MAC_ADDR(DeAuthReq.Addr, pAd->CommonCfg.Bssid);
85351 + DeAuthReq.Reason = pMlme->reason_code;
85352 + MsgElem.MsgLen = sizeof(MLME_DEAUTH_REQ_STRUCT);
85353 + NdisMoveMemory(MsgElem.Msg, &DeAuthReq, sizeof(MLME_DEAUTH_REQ_STRUCT));
85354 + MlmeDeauthReqAction(pAd, &MsgElem);
85355 + if (INFRA_ON(pAd))
85357 + LinkDown(pAd, FALSE);
85358 + pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
85361 +#endif // IW_MLME_DEAUTH //
85362 +#ifdef IW_MLME_DISASSOC
85363 + case IW_MLME_DISASSOC:
85364 + DBGPRINT(RT_DEBUG_TRACE, ("====> %s - IW_MLME_DISASSOC\n", __FUNCTION__));
85365 + COPY_MAC_ADDR(DisAssocReq.Addr, pAd->CommonCfg.Bssid);
85366 + DisAssocReq.Reason = pMlme->reason_code;
85368 + MsgElem.Machine = ASSOC_STATE_MACHINE;
85369 + MsgElem.MsgType = MT2_MLME_DISASSOC_REQ;
85370 + MsgElem.MsgLen = sizeof(MLME_DISASSOC_REQ_STRUCT);
85371 + NdisMoveMemory(MsgElem.Msg, &DisAssocReq, sizeof(MLME_DISASSOC_REQ_STRUCT));
85373 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_OID_DISASSOC;
85374 + MlmeDisassocReqAction(pAd, &MsgElem);
85376 +#endif // IW_MLME_DISASSOC //
85378 + DBGPRINT(RT_DEBUG_TRACE, ("====> %s - Unknow Command\n", __FUNCTION__));
85384 +#endif // SIOCSIWMLME //
85386 +#if WIRELESS_EXT > 17
85387 +int rt_ioctl_siwauth(struct net_device *dev,
85388 + struct iw_request_info *info,
85389 + union iwreq_data *wrqu, char *extra)
85391 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
85392 + struct iw_param *param = &wrqu->param;
85394 + //check if the interface is down
85395 + if(!RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_INTERRUPT_IN_USE))
85397 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
85398 + return -ENETDOWN;
85400 + switch (param->flags & IW_AUTH_INDEX) {
85401 + case IW_AUTH_WPA_VERSION:
85402 + if (param->value == IW_AUTH_WPA_VERSION_WPA)
85404 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeWPAPSK;
85405 + if (pAdapter->StaCfg.BssType == BSS_ADHOC)
85406 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeWPANone;
85408 + else if (param->value == IW_AUTH_WPA_VERSION_WPA2)
85409 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeWPA2PSK;
85411 + DBGPRINT(RT_DEBUG_TRACE, ("%s::IW_AUTH_WPA_VERSION - param->value = %d!\n", __FUNCTION__, param->value));
85413 + case IW_AUTH_CIPHER_PAIRWISE:
85414 + if (param->value == IW_AUTH_CIPHER_NONE)
85416 + pAdapter->StaCfg.WepStatus = Ndis802_11WEPDisabled;
85417 + pAdapter->StaCfg.OrigWepStatus = pAdapter->StaCfg.WepStatus;
85418 + pAdapter->StaCfg.PairCipher = Ndis802_11WEPDisabled;
85420 + else if (param->value == IW_AUTH_CIPHER_WEP40 ||
85421 + param->value == IW_AUTH_CIPHER_WEP104)
85423 + pAdapter->StaCfg.WepStatus = Ndis802_11WEPEnabled;
85424 + pAdapter->StaCfg.OrigWepStatus = pAdapter->StaCfg.WepStatus;
85425 + pAdapter->StaCfg.PairCipher = Ndis802_11WEPEnabled;
85426 +#ifdef WPA_SUPPLICANT_SUPPORT
85427 + pAdapter->StaCfg.IEEE8021X = FALSE;
85428 +#endif // WPA_SUPPLICANT_SUPPORT //
85430 + else if (param->value == IW_AUTH_CIPHER_TKIP)
85432 + pAdapter->StaCfg.WepStatus = Ndis802_11Encryption2Enabled;
85433 + pAdapter->StaCfg.OrigWepStatus = pAdapter->StaCfg.WepStatus;
85434 + pAdapter->StaCfg.PairCipher = Ndis802_11Encryption2Enabled;
85436 + else if (param->value == IW_AUTH_CIPHER_CCMP)
85438 + pAdapter->StaCfg.WepStatus = Ndis802_11Encryption3Enabled;
85439 + pAdapter->StaCfg.OrigWepStatus = pAdapter->StaCfg.WepStatus;
85440 + pAdapter->StaCfg.PairCipher = Ndis802_11Encryption3Enabled;
85442 + DBGPRINT(RT_DEBUG_TRACE, ("%s::IW_AUTH_CIPHER_PAIRWISE - param->value = %d!\n", __FUNCTION__, param->value));
85444 + case IW_AUTH_CIPHER_GROUP:
85445 + if (param->value == IW_AUTH_CIPHER_NONE)
85447 + pAdapter->StaCfg.GroupCipher = Ndis802_11WEPDisabled;
85449 + else if (param->value == IW_AUTH_CIPHER_WEP40 ||
85450 + param->value == IW_AUTH_CIPHER_WEP104)
85452 + pAdapter->StaCfg.GroupCipher = Ndis802_11WEPEnabled;
85454 + else if (param->value == IW_AUTH_CIPHER_TKIP)
85456 + pAdapter->StaCfg.GroupCipher = Ndis802_11Encryption2Enabled;
85458 + else if (param->value == IW_AUTH_CIPHER_CCMP)
85460 + pAdapter->StaCfg.GroupCipher = Ndis802_11Encryption3Enabled;
85462 + DBGPRINT(RT_DEBUG_TRACE, ("%s::IW_AUTH_CIPHER_GROUP - param->value = %d!\n", __FUNCTION__, param->value));
85464 + case IW_AUTH_KEY_MGMT:
85465 + if (param->value == IW_AUTH_KEY_MGMT_802_1X)
85467 + if (pAdapter->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK)
85469 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeWPA;
85470 +#ifdef WPA_SUPPLICANT_SUPPORT
85471 + pAdapter->StaCfg.IEEE8021X = FALSE;
85472 +#endif // WPA_SUPPLICANT_SUPPORT //
85474 + else if (pAdapter->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK)
85476 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeWPA2;
85477 +#ifdef WPA_SUPPLICANT_SUPPORT
85478 + pAdapter->StaCfg.IEEE8021X = FALSE;
85479 +#endif // WPA_SUPPLICANT_SUPPORT //
85481 +#ifdef WPA_SUPPLICANT_SUPPORT
85484 + pAdapter->StaCfg.IEEE8021X = TRUE;
85485 +#endif // WPA_SUPPLICANT_SUPPORT //
85487 + else if (param->value == 0)
85489 + //pAdapter->StaCfg.PortSecured = WPA_802_1X_PORT_SECURED;
85490 + STA_PORT_SECURED(pAdapter);
85492 + DBGPRINT(RT_DEBUG_TRACE, ("%s::IW_AUTH_KEY_MGMT - param->value = %d!\n", __FUNCTION__, param->value));
85494 + case IW_AUTH_RX_UNENCRYPTED_EAPOL:
85496 + case IW_AUTH_PRIVACY_INVOKED:
85497 + /*if (param->value == 0)
85499 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeOpen;
85500 + pAdapter->StaCfg.WepStatus = Ndis802_11WEPDisabled;
85501 + pAdapter->StaCfg.OrigWepStatus = pAdapter->StaCfg.WepStatus;
85502 + pAdapter->StaCfg.PairCipher = Ndis802_11WEPDisabled;
85503 + pAdapter->StaCfg.GroupCipher = Ndis802_11WEPDisabled;
85505 + DBGPRINT(RT_DEBUG_TRACE, ("%s::IW_AUTH_PRIVACY_INVOKED - param->value = %d!\n", __FUNCTION__, param->value));
85507 + case IW_AUTH_DROP_UNENCRYPTED:
85508 + if (param->value != 0)
85509 + pAdapter->StaCfg.PortSecured = WPA_802_1X_PORT_NOT_SECURED;
85512 + //pAdapter->StaCfg.PortSecured = WPA_802_1X_PORT_SECURED;
85513 + STA_PORT_SECURED(pAdapter);
85515 + DBGPRINT(RT_DEBUG_TRACE, ("%s::IW_AUTH_WPA_VERSION - param->value = %d!\n", __FUNCTION__, param->value));
85517 + case IW_AUTH_80211_AUTH_ALG:
85518 + if (param->value & IW_AUTH_ALG_SHARED_KEY)
85520 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeShared;
85522 + else if (param->value & IW_AUTH_ALG_OPEN_SYSTEM)
85524 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeOpen;
85528 + DBGPRINT(RT_DEBUG_TRACE, ("%s::IW_AUTH_80211_AUTH_ALG - param->value = %d!\n", __FUNCTION__, param->value));
85530 + case IW_AUTH_WPA_ENABLED:
85531 + DBGPRINT(RT_DEBUG_TRACE, ("%s::IW_AUTH_WPA_ENABLED - Driver supports WPA!(param->value = %d)\n", __FUNCTION__, param->value));
85534 + return -EOPNOTSUPP;
85540 +int rt_ioctl_giwauth(struct net_device *dev,
85541 + struct iw_request_info *info,
85542 + union iwreq_data *wrqu, char *extra)
85544 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
85545 + struct iw_param *param = &wrqu->param;
85547 + //check if the interface is down
85548 + if(!RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_INTERRUPT_IN_USE))
85550 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
85551 + return -ENETDOWN;
85554 + switch (param->flags & IW_AUTH_INDEX) {
85555 + case IW_AUTH_DROP_UNENCRYPTED:
85556 + param->value = (pAdapter->StaCfg.WepStatus == Ndis802_11WEPDisabled) ? 0 : 1;
85559 + case IW_AUTH_80211_AUTH_ALG:
85560 + param->value = (pAdapter->StaCfg.AuthMode == Ndis802_11AuthModeShared) ? IW_AUTH_ALG_SHARED_KEY : IW_AUTH_ALG_OPEN_SYSTEM;
85563 + case IW_AUTH_WPA_ENABLED:
85564 + param->value = (pAdapter->StaCfg.AuthMode >= Ndis802_11AuthModeWPA) ? 1 : 0;
85568 + return -EOPNOTSUPP;
85570 + DBGPRINT(RT_DEBUG_TRACE, ("rt_ioctl_giwauth::param->value = %d!\n", param->value));
85574 +void fnSetCipherKey(
85575 + IN PRTMP_ADAPTER pAdapter,
85577 + IN UCHAR CipherAlg,
85579 + IN struct iw_encode_ext *ext)
85581 + NdisZeroMemory(&pAdapter->SharedKey[BSS0][keyIdx], sizeof(CIPHER_KEY));
85582 + pAdapter->SharedKey[BSS0][keyIdx].KeyLen = LEN_TKIP_EK;
85583 + NdisMoveMemory(pAdapter->SharedKey[BSS0][keyIdx].Key, ext->key, LEN_TKIP_EK);
85584 + NdisMoveMemory(pAdapter->SharedKey[BSS0][keyIdx].TxMic, ext->key + LEN_TKIP_EK, LEN_TKIP_TXMICK);
85585 + NdisMoveMemory(pAdapter->SharedKey[BSS0][keyIdx].RxMic, ext->key + LEN_TKIP_EK + LEN_TKIP_TXMICK, LEN_TKIP_RXMICK);
85586 + pAdapter->SharedKey[BSS0][keyIdx].CipherAlg = CipherAlg;
85588 + // Update group key information to ASIC Shared Key Table
85589 + AsicAddSharedKeyEntry(pAdapter,
85592 + pAdapter->SharedKey[BSS0][keyIdx].CipherAlg,
85593 + pAdapter->SharedKey[BSS0][keyIdx].Key,
85594 + pAdapter->SharedKey[BSS0][keyIdx].TxMic,
85595 + pAdapter->SharedKey[BSS0][keyIdx].RxMic);
85598 + // Update ASIC WCID attribute table and IVEIV table
85599 + RTMPAddWcidAttributeEntry(pAdapter,
85602 + pAdapter->SharedKey[BSS0][keyIdx].CipherAlg,
85605 + // Update ASIC WCID attribute table and IVEIV table
85606 + RTMPAddWcidAttributeEntry(pAdapter,
85609 + pAdapter->SharedKey[BSS0][keyIdx].CipherAlg,
85610 + &pAdapter->MacTab.Content[BSSID_WCID]);
85613 +int rt_ioctl_siwencodeext(struct net_device *dev,
85614 + struct iw_request_info *info,
85615 + union iwreq_data *wrqu,
85618 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
85619 + struct iw_point *encoding = &wrqu->encoding;
85620 + struct iw_encode_ext *ext = (struct iw_encode_ext *)extra;
85621 + int keyIdx, alg = ext->alg;
85623 + //check if the interface is down
85624 + if(!RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_INTERRUPT_IN_USE))
85626 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
85627 + return -ENETDOWN;
85630 + if (encoding->flags & IW_ENCODE_DISABLED)
85632 + keyIdx = (encoding->flags & IW_ENCODE_INDEX) - 1;
85633 + // set BSSID wcid entry of the Pair-wise Key table as no-security mode
85634 + AsicRemovePairwiseKeyEntry(pAdapter, BSS0, BSSID_WCID);
85635 + pAdapter->SharedKey[BSS0][keyIdx].KeyLen = 0;
85636 + pAdapter->SharedKey[BSS0][keyIdx].CipherAlg = CIPHER_NONE;
85637 + AsicRemoveSharedKeyEntry(pAdapter, 0, (UCHAR)keyIdx);
85638 + NdisZeroMemory(&pAdapter->SharedKey[BSS0][keyIdx], sizeof(CIPHER_KEY));
85639 + DBGPRINT(RT_DEBUG_TRACE, ("%s::Remove all keys!(encoding->flags = %x)\n", __FUNCTION__, encoding->flags));
85643 + // Get Key Index and convet to our own defined key index
85644 + keyIdx = (encoding->flags & IW_ENCODE_INDEX) - 1;
85645 + if((keyIdx < 0) || (keyIdx >= NR_WEP_KEYS))
85648 + if (ext->ext_flags & IW_ENCODE_EXT_SET_TX_KEY)
85650 + pAdapter->StaCfg.DefaultKeyId = keyIdx;
85651 + DBGPRINT(RT_DEBUG_TRACE, ("%s::DefaultKeyId = %d\n", __FUNCTION__, pAdapter->StaCfg.DefaultKeyId));
85655 + case IW_ENCODE_ALG_NONE:
85656 + DBGPRINT(RT_DEBUG_TRACE, ("%s::IW_ENCODE_ALG_NONE\n", __FUNCTION__));
85658 + case IW_ENCODE_ALG_WEP:
85659 + DBGPRINT(RT_DEBUG_TRACE, ("%s::IW_ENCODE_ALG_WEP - ext->key_len = %d, keyIdx = %d\n", __FUNCTION__, ext->key_len, keyIdx));
85660 + if (ext->key_len == MAX_WEP_KEY_SIZE)
85662 + pAdapter->SharedKey[BSS0][keyIdx].KeyLen = MAX_WEP_KEY_SIZE;
85663 + pAdapter->SharedKey[BSS0][keyIdx].CipherAlg = CIPHER_WEP128;
85665 + else if (ext->key_len == MIN_WEP_KEY_SIZE)
85667 + pAdapter->SharedKey[BSS0][keyIdx].KeyLen = MIN_WEP_KEY_SIZE;
85668 + pAdapter->SharedKey[BSS0][keyIdx].CipherAlg = CIPHER_WEP64;
85673 + NdisZeroMemory(pAdapter->SharedKey[BSS0][keyIdx].Key, 16);
85674 + NdisMoveMemory(pAdapter->SharedKey[BSS0][keyIdx].Key, ext->key, ext->key_len);
85676 + case IW_ENCODE_ALG_TKIP:
85677 + DBGPRINT(RT_DEBUG_TRACE, ("%s::IW_ENCODE_ALG_TKIP - keyIdx = %d, ext->key_len = %d\n", __FUNCTION__, keyIdx, ext->key_len));
85678 + if (ext->key_len == 32)
85680 + if (ext->ext_flags & IW_ENCODE_EXT_SET_TX_KEY)
85682 + fnSetCipherKey(pAdapter, keyIdx, CIPHER_TKIP, FALSE, ext);
85683 + if (pAdapter->StaCfg.AuthMode >= Ndis802_11AuthModeWPA2)
85685 + //pAdapter->StaCfg.PortSecured = WPA_802_1X_PORT_SECURED;
85686 + STA_PORT_SECURED(pAdapter);
85689 + else if (ext->ext_flags & IW_ENCODE_EXT_GROUP_KEY)
85691 + fnSetCipherKey(pAdapter, keyIdx, CIPHER_TKIP, TRUE, ext);
85693 + // set 802.1x port control
85694 + //pAdapter->StaCfg.PortSecured = WPA_802_1X_PORT_SECURED;
85695 + STA_PORT_SECURED(pAdapter);
85701 + case IW_ENCODE_ALG_CCMP:
85702 + if (ext->ext_flags & IW_ENCODE_EXT_SET_TX_KEY)
85704 + fnSetCipherKey(pAdapter, keyIdx, CIPHER_AES, FALSE, ext);
85705 + if (pAdapter->StaCfg.AuthMode >= Ndis802_11AuthModeWPA2)
85706 + //pAdapter->StaCfg.PortSecured = WPA_802_1X_PORT_SECURED;
85707 + STA_PORT_SECURED(pAdapter);
85709 + else if (ext->ext_flags & IW_ENCODE_EXT_GROUP_KEY)
85711 + fnSetCipherKey(pAdapter, keyIdx, CIPHER_AES, TRUE, ext);
85713 + // set 802.1x port control
85714 + //pAdapter->StaCfg.PortSecured = WPA_802_1X_PORT_SECURED;
85715 + STA_PORT_SECURED(pAdapter);
85727 +rt_ioctl_giwencodeext(struct net_device *dev,
85728 + struct iw_request_info *info,
85729 + union iwreq_data *wrqu, char *extra)
85731 + PRTMP_ADAPTER pAd = dev->ml_priv;
85732 + PCHAR pKey = NULL;
85733 + struct iw_point *encoding = &wrqu->encoding;
85734 + struct iw_encode_ext *ext = (struct iw_encode_ext *)extra;
85735 + int idx, max_key_len;
85737 + DBGPRINT(RT_DEBUG_TRACE ,("===> rt_ioctl_giwencodeext\n"));
85739 + max_key_len = encoding->length - sizeof(*ext);
85740 + if (max_key_len < 0)
85743 + idx = encoding->flags & IW_ENCODE_INDEX;
85746 + if (idx < 1 || idx > 4)
85750 + if ((pAd->StaCfg.WepStatus == Ndis802_11Encryption2Enabled) ||
85751 + (pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled))
85753 + if (idx != pAd->StaCfg.DefaultKeyId)
85755 + ext->key_len = 0;
85761 + idx = pAd->StaCfg.DefaultKeyId;
85763 + encoding->flags = idx + 1;
85764 + memset(ext, 0, sizeof(*ext));
85766 + ext->key_len = 0;
85767 + switch(pAd->StaCfg.WepStatus) {
85768 + case Ndis802_11WEPDisabled:
85769 + ext->alg = IW_ENCODE_ALG_NONE;
85770 + encoding->flags |= IW_ENCODE_DISABLED;
85772 + case Ndis802_11WEPEnabled:
85773 + ext->alg = IW_ENCODE_ALG_WEP;
85774 + if (pAd->SharedKey[BSS0][idx].KeyLen > max_key_len)
85778 + ext->key_len = pAd->SharedKey[BSS0][idx].KeyLen;
85779 + pKey = &(pAd->SharedKey[BSS0][idx].Key[0]);
85782 + case Ndis802_11Encryption2Enabled:
85783 + case Ndis802_11Encryption3Enabled:
85784 + if (pAd->StaCfg.WepStatus == Ndis802_11Encryption2Enabled)
85785 + ext->alg = IW_ENCODE_ALG_TKIP;
85787 + ext->alg = IW_ENCODE_ALG_CCMP;
85789 + if (max_key_len < 32)
85793 + ext->key_len = 32;
85794 + pKey = &pAd->StaCfg.PMK[0];
85801 + if (ext->key_len && pKey)
85803 + encoding->flags |= IW_ENCODE_ENABLED;
85804 + memcpy(ext->key, pKey, ext->key_len);
85810 +#ifdef SIOCSIWGENIE
85811 +int rt_ioctl_siwgenie(struct net_device *dev,
85812 + struct iw_request_info *info,
85813 + union iwreq_data *wrqu, char *extra)
85815 + PRTMP_ADAPTER pAd = dev->ml_priv;
85817 + if (wrqu->data.length > MAX_LEN_OF_RSNIE ||
85818 + (wrqu->data.length && extra == NULL))
85821 + if (wrqu->data.length)
85823 + pAd->StaCfg.RSNIE_Len = wrqu->data.length;
85824 + NdisMoveMemory(&pAd->StaCfg.RSN_IE[0], extra, pAd->StaCfg.RSNIE_Len);
85828 + pAd->StaCfg.RSNIE_Len = 0;
85829 + NdisZeroMemory(&pAd->StaCfg.RSN_IE[0], MAX_LEN_OF_RSNIE);
85834 +#endif // SIOCSIWGENIE //
85836 +int rt_ioctl_giwgenie(struct net_device *dev,
85837 + struct iw_request_info *info,
85838 + union iwreq_data *wrqu, char *extra)
85840 + PRTMP_ADAPTER pAd = dev->ml_priv;
85842 + if ((pAd->StaCfg.RSNIE_Len == 0) ||
85843 + (pAd->StaCfg.AuthMode < Ndis802_11AuthModeWPA))
85845 + wrqu->data.length = 0;
85849 +#ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
85850 +#ifdef SIOCSIWGENIE
85851 + if (pAd->StaCfg.WpaSupplicantUP == WPA_SUPPLICANT_ENABLE)
85853 + if (wrqu->data.length < pAd->StaCfg.RSNIE_Len)
85856 + wrqu->data.length = pAd->StaCfg.RSNIE_Len;
85857 + memcpy(extra, &pAd->StaCfg.RSN_IE[0], pAd->StaCfg.RSNIE_Len);
85860 +#endif // SIOCSIWGENIE //
85861 +#endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
85863 + UCHAR RSNIe = IE_WPA;
85865 + if (wrqu->data.length < (pAd->StaCfg.RSNIE_Len + 2)) // ID, Len
85867 + wrqu->data.length = pAd->StaCfg.RSNIE_Len + 2;
85869 + if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK) ||
85870 + (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2))
85873 + extra[0] = (char)RSNIe;
85874 + extra[1] = pAd->StaCfg.RSNIE_Len;
85875 + memcpy(extra+2, &pAd->StaCfg.RSN_IE[0], pAd->StaCfg.RSNIE_Len);
85881 +int rt_ioctl_siwpmksa(struct net_device *dev,
85882 + struct iw_request_info *info,
85883 + union iwreq_data *wrqu,
85886 + PRTMP_ADAPTER pAd = dev->ml_priv;
85887 + struct iw_pmksa *pPmksa = (struct iw_pmksa *)wrqu->data.pointer;
85888 + INT CachedIdx = 0, idx = 0;
85890 + if (pPmksa == NULL)
85893 + DBGPRINT(RT_DEBUG_TRACE ,("===> rt_ioctl_siwpmksa\n"));
85894 + switch(pPmksa->cmd)
85896 + case IW_PMKSA_FLUSH:
85897 + NdisZeroMemory(pAd->StaCfg.SavedPMK, sizeof(BSSID_INFO)*PMKID_NO);
85898 + DBGPRINT(RT_DEBUG_TRACE ,("rt_ioctl_siwpmksa - IW_PMKSA_FLUSH\n"));
85900 + case IW_PMKSA_REMOVE:
85901 + for (CachedIdx = 0; CachedIdx < pAd->StaCfg.SavedPMKNum; CachedIdx++)
85903 + // compare the BSSID
85904 + if (NdisEqualMemory(pPmksa->bssid.sa_data, pAd->StaCfg.SavedPMK[CachedIdx].BSSID, MAC_ADDR_LEN))
85906 + NdisZeroMemory(pAd->StaCfg.SavedPMK[CachedIdx].BSSID, MAC_ADDR_LEN);
85907 + NdisZeroMemory(pAd->StaCfg.SavedPMK[CachedIdx].PMKID, 16);
85908 + for (idx = CachedIdx; idx < (pAd->StaCfg.SavedPMKNum - 1); idx++)
85910 + NdisMoveMemory(&pAd->StaCfg.SavedPMK[idx].BSSID[0], &pAd->StaCfg.SavedPMK[idx+1].BSSID[0], MAC_ADDR_LEN);
85911 + NdisMoveMemory(&pAd->StaCfg.SavedPMK[idx].PMKID[0], &pAd->StaCfg.SavedPMK[idx+1].PMKID[0], 16);
85913 + pAd->StaCfg.SavedPMKNum--;
85918 + DBGPRINT(RT_DEBUG_TRACE ,("rt_ioctl_siwpmksa - IW_PMKSA_REMOVE\n"));
85920 + case IW_PMKSA_ADD:
85921 + for (CachedIdx = 0; CachedIdx < pAd->StaCfg.SavedPMKNum; CachedIdx++)
85923 + // compare the BSSID
85924 + if (NdisEqualMemory(pPmksa->bssid.sa_data, pAd->StaCfg.SavedPMK[CachedIdx].BSSID, MAC_ADDR_LEN))
85928 + // Found, replace it
85929 + if (CachedIdx < PMKID_NO)
85931 + DBGPRINT(RT_DEBUG_OFF, ("Update PMKID, idx = %d\n", CachedIdx));
85932 + NdisMoveMemory(&pAd->StaCfg.SavedPMK[CachedIdx].BSSID[0], pPmksa->bssid.sa_data, MAC_ADDR_LEN);
85933 + NdisMoveMemory(&pAd->StaCfg.SavedPMK[CachedIdx].PMKID[0], pPmksa->pmkid, 16);
85934 + pAd->StaCfg.SavedPMKNum++;
85936 + // Not found, replace the last one
85939 + // Randomly replace one
85940 + CachedIdx = (pPmksa->bssid.sa_data[5] % PMKID_NO);
85941 + DBGPRINT(RT_DEBUG_OFF, ("Update PMKID, idx = %d\n", CachedIdx));
85942 + NdisMoveMemory(&pAd->StaCfg.SavedPMK[CachedIdx].BSSID[0], pPmksa->bssid.sa_data, MAC_ADDR_LEN);
85943 + NdisMoveMemory(&pAd->StaCfg.SavedPMK[CachedIdx].PMKID[0], pPmksa->pmkid, 16);
85946 + DBGPRINT(RT_DEBUG_TRACE ,("rt_ioctl_siwpmksa - IW_PMKSA_ADD\n"));
85949 + DBGPRINT(RT_DEBUG_TRACE ,("rt_ioctl_siwpmksa - Unknow Command!!\n"));
85955 +#endif // #if WIRELESS_EXT > 17
85959 +rt_private_ioctl_bbp(struct net_device *dev, struct iw_request_info *info,
85960 + struct iw_point *wrq, char *extra)
85963 + CHAR *value = NULL;
85964 + UCHAR regBBP = 0;
85965 +// CHAR arg[255]={0};
85968 + BOOLEAN bIsPrintAllBBP = FALSE;
85970 + PRTMP_ADAPTER pAdapter = dev->ml_priv;
85973 + memset(extra, 0x00, IW_PRIV_SIZE_MASK);
85975 + if (wrq->length > 1) //No parameters.
85977 + sprintf(extra, "\n");
85979 + //Parsing Read or Write
85980 + this_char = wrq->pointer;
85981 + DBGPRINT(RT_DEBUG_TRACE, ("this_char=%s\n", this_char));
85985 + if ((value = rtstrchr(this_char, '=')) != NULL)
85988 + if (!value || !*value)
85990 + DBGPRINT(RT_DEBUG_TRACE, ("this_char=%s, value=%s\n", this_char, value));
85991 + if (sscanf(this_char, "%d", &(bbpId)) == 1)
85994 + if (bbpId <= 136)
85995 +#endif // RT30xx //
85997 + if (bbpId <= 138) // edit by johnli, RF power sequence setup, add BBP R138 for ADC dynamic on/off control
85998 +#endif // RT30xx //
86001 + if (ATE_ON(pAdapter))
86003 + ATE_BBP_IO_READ8_BY_REG_ID(pAdapter, bbpId, ®BBP);
86006 +#endif // RALINK_ATE //
86008 + RTMP_BBP_IO_READ8_BY_REG_ID(pAdapter, bbpId, ®BBP);
86010 + sprintf(extra+strlen(extra), "R%02d[0x%02X]:%02X\n", bbpId, bbpId*2, regBBP);
86011 + wrq->length = strlen(extra) + 1; // 1: size of '\0'
86012 + DBGPRINT(RT_DEBUG_TRACE, ("msg=%s\n", extra));
86015 + {//Invalid parametes, so default printk all bbp
86016 + bIsPrintAllBBP = TRUE;
86021 + { //Invalid parametes, so default printk all bbp
86022 + bIsPrintAllBBP = TRUE;
86028 + if ((sscanf(this_char, "%d", &(bbpId)) == 1) && (sscanf(value, "%x", &(bbpValue)) == 1))
86031 + if (bbpId <= 136)
86032 +#endif // RT30xx //
86034 + if (bbpId <= 138) // edit by johnli, RF power sequence setup, add BBP R138 for ADC dynamic on/off control
86035 +#endif // RT30xx //
86038 + if (ATE_ON(pAdapter))
86040 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAdapter, bbpId, bbpValue);
86041 + //Read it back for showing
86042 + ATE_BBP_IO_READ8_BY_REG_ID(pAdapter, bbpId, ®BBP);
86045 +#endif // RALINK_ATE //
86047 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAdapter, bbpId, bbpValue);
86048 + //Read it back for showing
86049 + RTMP_BBP_IO_READ8_BY_REG_ID(pAdapter, bbpId, ®BBP);
86051 + sprintf(extra+strlen(extra), "R%02d[0x%02X]:%02X\n", bbpId, bbpId*2, regBBP);
86052 + wrq->length = strlen(extra) + 1; // 1: size of '\0'
86053 + DBGPRINT(RT_DEBUG_TRACE, ("msg=%s\n", extra));
86056 + {//Invalid parametes, so default printk all bbp
86057 + bIsPrintAllBBP = TRUE;
86062 + { //Invalid parametes, so default printk all bbp
86063 + bIsPrintAllBBP = TRUE;
86069 + bIsPrintAllBBP = TRUE;
86072 + if (bIsPrintAllBBP)
86074 + memset(extra, 0x00, IW_PRIV_SIZE_MASK);
86075 + sprintf(extra, "\n");
86077 + for (bbpId = 0; bbpId <= 136; bbpId++)
86078 +#endif // RT30xx //
86080 + for (bbpId = 0; bbpId <= 138; bbpId++) // edit by johnli, RF power sequence setup, add BBP R138 for ADC dynamic on/off control
86081 +#endif // RT30xx //
86083 + if (strlen(extra) >= (IW_PRIV_SIZE_MASK - 10))
86086 + if (ATE_ON(pAdapter))
86088 + ATE_BBP_IO_READ8_BY_REG_ID(pAdapter, bbpId, ®BBP);
86091 +#endif // RALINK_ATE //
86092 + RTMP_BBP_IO_READ8_BY_REG_ID(pAdapter, bbpId, ®BBP);
86094 + sprintf(extra+strlen(extra), "R%02d[0x%02X]:%02X ", bbpId, bbpId*2, regBBP);
86095 + if (bbpId%5 == 4)
86096 + sprintf(extra+strlen(extra), "\n");
86098 + sprintf(extra+strlen(extra), "%03d = %02X\n", bbpId, regBBP); // edit by johnli, change display format
86101 + wrq->length = strlen(extra) + 1; // 1: size of '\0'
86102 + DBGPRINT(RT_DEBUG_TRACE, ("wrq->length = %d\n", wrq->length));
86105 + DBGPRINT(RT_DEBUG_TRACE, ("<==rt_private_ioctl_bbp\n\n"));
86111 +int rt_ioctl_siwrate(struct net_device *dev,
86112 + struct iw_request_info *info,
86113 + union iwreq_data *wrqu, char *extra)
86115 + PRTMP_ADAPTER pAd = dev->ml_priv;
86116 + UINT32 rate = wrqu->bitrate.value, fixed = wrqu->bitrate.fixed;
86118 + //check if the interface is down
86119 + if(!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_INTERRUPT_IN_USE))
86121 + DBGPRINT(RT_DEBUG_TRACE, ("rt_ioctl_siwrate::Network is down!\n"));
86122 + return -ENETDOWN;
86125 + DBGPRINT(RT_DEBUG_TRACE, ("rt_ioctl_siwrate::(rate = %d, fixed = %d)\n", rate, fixed));
86126 + /* rate = -1 => auto rate
86127 + rate = X, fixed = 1 => (fixed rate X)
86132 + pAd->StaCfg.DesiredTransmitSetting.field.MCS = MCS_AUTO;
86133 + pAd->StaCfg.bAutoTxRateSwitch = TRUE;
86134 + if ((pAd->CommonCfg.PhyMode <= PHY_11G) ||
86135 + (pAd->MacTab.Content[BSSID_WCID].HTPhyMode.field.MODE <= MODE_OFDM))
86136 + RTMPSetDesiredRates(pAd, -1);
86138 +#ifdef DOT11_N_SUPPORT
86139 + SetCommonHT(pAd);
86140 +#endif // DOT11_N_SUPPORT //
86146 + pAd->StaCfg.bAutoTxRateSwitch = FALSE;
86147 + if ((pAd->CommonCfg.PhyMode <= PHY_11G) ||
86148 + (pAd->MacTab.Content[BSSID_WCID].HTPhyMode.field.MODE <= MODE_OFDM))
86149 + RTMPSetDesiredRates(pAd, rate);
86152 + pAd->StaCfg.DesiredTransmitSetting.field.MCS = MCS_AUTO;
86153 +#ifdef DOT11_N_SUPPORT
86154 + SetCommonHT(pAd);
86155 +#endif // DOT11_N_SUPPORT //
86157 + DBGPRINT(RT_DEBUG_TRACE, ("rt_ioctl_siwrate::(HtMcs=%d)\n",pAd->StaCfg.DesiredTransmitSetting.field.MCS));
86161 + // TODO: rate = X, fixed = 0 => (rates <= X)
86162 + return -EOPNOTSUPP;
86169 +int rt_ioctl_giwrate(struct net_device *dev,
86170 + struct iw_request_info *info,
86171 + union iwreq_data *wrqu, char *extra)
86173 + PRTMP_ADAPTER pAd = dev->ml_priv;
86174 + int rate_index = 0, rate_count = 0;
86175 + HTTRANSMIT_SETTING ht_setting;
86176 + __s32 ralinkrate[] =
86177 + {2, 4, 11, 22, // CCK
86178 + 12, 18, 24, 36, 48, 72, 96, 108, // OFDM
86179 + 13, 26, 39, 52, 78, 104, 117, 130, 26, 52, 78, 104, 156, 208, 234, 260, // 20MHz, 800ns GI, MCS: 0 ~ 15
86180 + 39, 78, 117, 156, 234, 312, 351, 390, // 20MHz, 800ns GI, MCS: 16 ~ 23
86181 + 27, 54, 81, 108, 162, 216, 243, 270, 54, 108, 162, 216, 324, 432, 486, 540, // 40MHz, 800ns GI, MCS: 0 ~ 15
86182 + 81, 162, 243, 324, 486, 648, 729, 810, // 40MHz, 800ns GI, MCS: 16 ~ 23
86183 + 14, 29, 43, 57, 87, 115, 130, 144, 29, 59, 87, 115, 173, 230, 260, 288, // 20MHz, 400ns GI, MCS: 0 ~ 15
86184 + 43, 87, 130, 173, 260, 317, 390, 433, // 20MHz, 400ns GI, MCS: 16 ~ 23
86185 + 30, 60, 90, 120, 180, 240, 270, 300, 60, 120, 180, 240, 360, 480, 540, 600, // 40MHz, 400ns GI, MCS: 0 ~ 15
86186 + 90, 180, 270, 360, 540, 720, 810, 900}; // 40MHz, 400ns GI, MCS: 16 ~ 23
86188 + rate_count = sizeof(ralinkrate)/sizeof(__s32);
86189 + //check if the interface is down
86190 + if(!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_INTERRUPT_IN_USE))
86192 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
86193 + return -ENETDOWN;
86196 + if ((pAd->StaCfg.bAutoTxRateSwitch == FALSE) &&
86197 + (INFRA_ON(pAd)) &&
86198 + ((pAd->CommonCfg.PhyMode <= PHY_11G) || (pAd->MacTab.Content[BSSID_WCID].HTPhyMode.field.MODE <= MODE_OFDM)))
86199 + ht_setting.word = pAd->StaCfg.HTPhyMode.word;
86201 + ht_setting.word = pAd->MacTab.Content[BSSID_WCID].HTPhyMode.word;
86203 +#ifdef DOT11_N_SUPPORT
86204 + if (ht_setting.field.MODE >= MODE_HTMIX)
86206 +// rate_index = 12 + ((UCHAR)ht_setting.field.BW *16) + ((UCHAR)ht_setting.field.ShortGI *32) + ((UCHAR)ht_setting.field.MCS);
86207 + rate_index = 12 + ((UCHAR)ht_setting.field.BW *24) + ((UCHAR)ht_setting.field.ShortGI *48) + ((UCHAR)ht_setting.field.MCS);
86210 +#endif // DOT11_N_SUPPORT //
86211 + if (ht_setting.field.MODE == MODE_OFDM)
86212 + rate_index = (UCHAR)(ht_setting.field.MCS) + 4;
86213 + else if (ht_setting.field.MODE == MODE_CCK)
86214 + rate_index = (UCHAR)(ht_setting.field.MCS);
86216 + if (rate_index < 0)
86219 + if (rate_index > rate_count)
86220 + rate_index = rate_count;
86222 + wrqu->bitrate.value = ralinkrate[rate_index] * 500000;
86223 + wrqu->bitrate.disabled = 0;
86228 +static const iw_handler rt_handler[] =
86230 + (iw_handler) NULL, /* SIOCSIWCOMMIT */
86231 + (iw_handler) rt_ioctl_giwname, /* SIOCGIWNAME */
86232 + (iw_handler) NULL, /* SIOCSIWNWID */
86233 + (iw_handler) NULL, /* SIOCGIWNWID */
86234 + (iw_handler) rt_ioctl_siwfreq, /* SIOCSIWFREQ */
86235 + (iw_handler) rt_ioctl_giwfreq, /* SIOCGIWFREQ */
86236 + (iw_handler) rt_ioctl_siwmode, /* SIOCSIWMODE */
86237 + (iw_handler) rt_ioctl_giwmode, /* SIOCGIWMODE */
86238 + (iw_handler) NULL, /* SIOCSIWSENS */
86239 + (iw_handler) NULL, /* SIOCGIWSENS */
86240 + (iw_handler) NULL /* not used */, /* SIOCSIWRANGE */
86241 + (iw_handler) rt_ioctl_giwrange, /* SIOCGIWRANGE */
86242 + (iw_handler) NULL /* not used */, /* SIOCSIWPRIV */
86243 + (iw_handler) NULL /* kernel code */, /* SIOCGIWPRIV */
86244 + (iw_handler) NULL /* not used */, /* SIOCSIWSTATS */
86245 + (iw_handler) rt28xx_get_wireless_stats /* kernel code */, /* SIOCGIWSTATS */
86246 + (iw_handler) NULL, /* SIOCSIWSPY */
86247 + (iw_handler) NULL, /* SIOCGIWSPY */
86248 + (iw_handler) NULL, /* SIOCSIWTHRSPY */
86249 + (iw_handler) NULL, /* SIOCGIWTHRSPY */
86250 + (iw_handler) rt_ioctl_siwap, /* SIOCSIWAP */
86251 + (iw_handler) rt_ioctl_giwap, /* SIOCGIWAP */
86252 +#ifdef SIOCSIWMLME
86253 + (iw_handler) rt_ioctl_siwmlme, /* SIOCSIWMLME */
86255 + (iw_handler) NULL, /* SIOCSIWMLME */
86256 +#endif // SIOCSIWMLME //
86257 + (iw_handler) rt_ioctl_iwaplist, /* SIOCGIWAPLIST */
86258 +#ifdef SIOCGIWSCAN
86259 + (iw_handler) rt_ioctl_siwscan, /* SIOCSIWSCAN */
86260 + (iw_handler) rt_ioctl_giwscan, /* SIOCGIWSCAN */
86262 + (iw_handler) NULL, /* SIOCSIWSCAN */
86263 + (iw_handler) NULL, /* SIOCGIWSCAN */
86264 +#endif /* SIOCGIWSCAN */
86265 + (iw_handler) rt_ioctl_siwessid, /* SIOCSIWESSID */
86266 + (iw_handler) rt_ioctl_giwessid, /* SIOCGIWESSID */
86267 + (iw_handler) rt_ioctl_siwnickn, /* SIOCSIWNICKN */
86268 + (iw_handler) rt_ioctl_giwnickn, /* SIOCGIWNICKN */
86269 + (iw_handler) NULL, /* -- hole -- */
86270 + (iw_handler) NULL, /* -- hole -- */
86271 + (iw_handler) rt_ioctl_siwrate, /* SIOCSIWRATE */
86272 + (iw_handler) rt_ioctl_giwrate, /* SIOCGIWRATE */
86273 + (iw_handler) rt_ioctl_siwrts, /* SIOCSIWRTS */
86274 + (iw_handler) rt_ioctl_giwrts, /* SIOCGIWRTS */
86275 + (iw_handler) rt_ioctl_siwfrag, /* SIOCSIWFRAG */
86276 + (iw_handler) rt_ioctl_giwfrag, /* SIOCGIWFRAG */
86277 + (iw_handler) NULL, /* SIOCSIWTXPOW */
86278 + (iw_handler) NULL, /* SIOCGIWTXPOW */
86279 + (iw_handler) NULL, /* SIOCSIWRETRY */
86280 + (iw_handler) NULL, /* SIOCGIWRETRY */
86281 + (iw_handler) rt_ioctl_siwencode, /* SIOCSIWENCODE */
86282 + (iw_handler) rt_ioctl_giwencode, /* SIOCGIWENCODE */
86283 + (iw_handler) NULL, /* SIOCSIWPOWER */
86284 + (iw_handler) NULL, /* SIOCGIWPOWER */
86285 + (iw_handler) NULL, /* -- hole -- */
86286 + (iw_handler) NULL, /* -- hole -- */
86287 +#if WIRELESS_EXT > 17
86288 + (iw_handler) rt_ioctl_siwgenie, /* SIOCSIWGENIE */
86289 + (iw_handler) rt_ioctl_giwgenie, /* SIOCGIWGENIE */
86290 + (iw_handler) rt_ioctl_siwauth, /* SIOCSIWAUTH */
86291 + (iw_handler) rt_ioctl_giwauth, /* SIOCGIWAUTH */
86292 + (iw_handler) rt_ioctl_siwencodeext, /* SIOCSIWENCODEEXT */
86293 + (iw_handler) rt_ioctl_giwencodeext, /* SIOCGIWENCODEEXT */
86294 + (iw_handler) rt_ioctl_siwpmksa, /* SIOCSIWPMKSA */
86298 +static const iw_handler rt_priv_handlers[] = {
86299 + (iw_handler) NULL, /* + 0x00 */
86300 + (iw_handler) NULL, /* + 0x01 */
86301 +#ifndef CONFIG_AP_SUPPORT
86302 + (iw_handler) rt_ioctl_setparam, /* + 0x02 */
86304 + (iw_handler) NULL, /* + 0x02 */
86305 +#endif // CONFIG_AP_SUPPORT //
86307 + (iw_handler) rt_private_ioctl_bbp, /* + 0x03 */
86309 + (iw_handler) NULL, /* + 0x03 */
86311 + (iw_handler) NULL, /* + 0x04 */
86312 + (iw_handler) NULL, /* + 0x05 */
86313 + (iw_handler) NULL, /* + 0x06 */
86314 + (iw_handler) NULL, /* + 0x07 */
86315 + (iw_handler) NULL, /* + 0x08 */
86316 + (iw_handler) rt_private_get_statistics, /* + 0x09 */
86317 + (iw_handler) NULL, /* + 0x0A */
86318 + (iw_handler) NULL, /* + 0x0B */
86319 + (iw_handler) NULL, /* + 0x0C */
86320 + (iw_handler) NULL, /* + 0x0D */
86321 + (iw_handler) NULL, /* + 0x0E */
86322 + (iw_handler) NULL, /* + 0x0F */
86323 + (iw_handler) NULL, /* + 0x10 */
86324 + (iw_handler) rt_private_show, /* + 0x11 */
86325 + (iw_handler) NULL, /* + 0x12 */
86326 + (iw_handler) NULL, /* + 0x13 */
86327 + (iw_handler) NULL, /* + 0x15 */
86328 + (iw_handler) NULL, /* + 0x17 */
86329 + (iw_handler) NULL, /* + 0x18 */
86332 +const struct iw_handler_def rt28xx_iw_handler_def =
86334 +#define N(a) (sizeof (a) / sizeof (a[0]))
86335 + .standard = (iw_handler *) rt_handler,
86336 + .num_standard = sizeof(rt_handler) / sizeof(iw_handler),
86337 + .private = (iw_handler *) rt_priv_handlers,
86338 + .num_private = N(rt_priv_handlers),
86339 + .private_args = (struct iw_priv_args *) privtab,
86340 + .num_private_args = N(privtab),
86341 +#if IW_HANDLER_VERSION >= 7
86342 + .get_wireless_stats = rt28xx_get_wireless_stats,
86346 +INT RTMPSetInformation(
86347 + IN PRTMP_ADAPTER pAdapter,
86348 + IN OUT struct ifreq *rq,
86351 + struct iwreq *wrq = (struct iwreq *) rq;
86352 + NDIS_802_11_SSID Ssid;
86353 + NDIS_802_11_MAC_ADDRESS Bssid;
86354 + RT_802_11_PHY_MODE PhyMode;
86355 + RT_802_11_STA_CONFIG StaConfig;
86356 + NDIS_802_11_RATES aryRates;
86357 + RT_802_11_PREAMBLE Preamble;
86358 + NDIS_802_11_WEP_STATUS WepStatus;
86359 + NDIS_802_11_AUTHENTICATION_MODE AuthMode = Ndis802_11AuthModeMax;
86360 + NDIS_802_11_NETWORK_INFRASTRUCTURE BssType;
86361 + NDIS_802_11_RTS_THRESHOLD RtsThresh;
86362 + NDIS_802_11_FRAGMENTATION_THRESHOLD FragThresh;
86363 + NDIS_802_11_POWER_MODE PowerMode;
86364 + PNDIS_802_11_KEY pKey = NULL;
86365 + PNDIS_802_11_WEP pWepKey =NULL;
86366 + PNDIS_802_11_REMOVE_KEY pRemoveKey = NULL;
86367 + NDIS_802_11_CONFIGURATION Config, *pConfig = NULL;
86368 + NDIS_802_11_NETWORK_TYPE NetType;
86371 + INT Status = NDIS_STATUS_SUCCESS, MaxPhyMode = PHY_11G;
86373 + BOOLEAN RadioState;
86374 + BOOLEAN StateMachineTouched = FALSE;
86375 +#ifdef DOT11_N_SUPPORT
86376 + OID_SET_HT_PHYMODE HT_PhyMode; //11n ,kathy
86377 +#endif // DOT11_N_SUPPORT //
86378 +#ifdef WPA_SUPPLICANT_SUPPORT
86379 + PNDIS_802_11_PMKID pPmkId = NULL;
86380 + BOOLEAN IEEE8021xState = FALSE;
86381 + BOOLEAN IEEE8021x_required_keys = FALSE;
86382 + UCHAR wpa_supplicant_enable = 0;
86383 +#endif // WPA_SUPPLICANT_SUPPORT //
86385 +#ifdef SNMP_SUPPORT
86386 + TX_RTY_CFG_STRUC tx_rty_cfg;
86387 + ULONG ShortRetryLimit, LongRetryLimit;
86389 +#endif // SNMP_SUPPORT //
86392 +#ifdef DOT11_N_SUPPORT
86393 + MaxPhyMode = PHY_11N_5G;
86394 +#endif // DOT11_N_SUPPORT //
86397 + DBGPRINT(RT_DEBUG_TRACE, ("-->RTMPSetInformation(), 0x%08x\n", cmd&0x7FFF));
86398 + switch(cmd & 0x7FFF) {
86399 + case RT_OID_802_11_COUNTRY_REGION:
86400 + if (wrq->u.data.length < sizeof(UCHAR))
86401 + Status = -EINVAL;
86402 + // Only avaliable when EEPROM not programming
86403 + else if (!(pAdapter->CommonCfg.CountryRegion & 0x80) && !(pAdapter->CommonCfg.CountryRegionForABand & 0x80))
86408 + Status = copy_from_user(&Country, wrq->u.data.pointer, wrq->u.data.length);
86409 + pAdapter->CommonCfg.CountryRegion = (UCHAR)(Country & 0x000000FF);
86410 + pAdapter->CommonCfg.CountryRegionForABand = (UCHAR)((Country >> 8) & 0x000000FF);
86411 + TmpPhy = pAdapter->CommonCfg.PhyMode;
86412 + pAdapter->CommonCfg.PhyMode = 0xff;
86413 + // Build all corresponding channel information
86414 + RTMPSetPhyMode(pAdapter, TmpPhy);
86415 +#ifdef DOT11_N_SUPPORT
86416 + SetCommonHT(pAdapter);
86417 +#endif // DOT11_N_SUPPORT //
86418 + DBGPRINT(RT_DEBUG_TRACE, ("Set::RT_OID_802_11_COUNTRY_REGION (A:%d B/G:%d)\n", pAdapter->CommonCfg.CountryRegionForABand,
86419 + pAdapter->CommonCfg.CountryRegion));
86422 + case OID_802_11_BSSID_LIST_SCAN:
86423 + #ifdef RALINK_ATE
86424 + if (ATE_ON(pAdapter))
86426 + DBGPRINT(RT_DEBUG_TRACE, ("The driver is in ATE mode now\n"));
86429 +#endif // RALINK_ATE //
86431 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_BSSID_LIST_SCAN, TxCnt = %d \n", pAdapter->RalinkCounters.LastOneSecTotalTxCount));
86433 + if (MONITOR_ON(pAdapter))
86435 + DBGPRINT(RT_DEBUG_TRACE, ("!!! Driver is in Monitor Mode now !!!\n"));
86439 + //Benson add 20080527, when radio off, sta don't need to scan
86440 + if (RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_RADIO_OFF))
86443 + if (RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS))
86445 + DBGPRINT(RT_DEBUG_TRACE, ("!!! Driver is scanning now !!!\n"));
86446 + pAdapter->StaCfg.bScanReqIsFromWebUI = TRUE;
86447 + Status = NDIS_STATUS_SUCCESS;
86451 + if (pAdapter->RalinkCounters.LastOneSecTotalTxCount > 100)
86453 + DBGPRINT(RT_DEBUG_TRACE, ("!!! Link UP, ignore this set::OID_802_11_BSSID_LIST_SCAN\n"));
86454 + Status = NDIS_STATUS_SUCCESS;
86455 + pAdapter->StaCfg.ScanCnt = 99; // Prevent auto scan triggered by this OID
86459 + if ((OPSTATUS_TEST_FLAG(pAdapter, fOP_STATUS_MEDIA_STATE_CONNECTED)) &&
86460 + ((pAdapter->StaCfg.AuthMode == Ndis802_11AuthModeWPA) ||
86461 + (pAdapter->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK) ||
86462 + (pAdapter->StaCfg.AuthMode == Ndis802_11AuthModeWPA2) ||
86463 + (pAdapter->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK)) &&
86464 + (pAdapter->StaCfg.PortSecured == WPA_802_1X_PORT_NOT_SECURED))
86466 + DBGPRINT(RT_DEBUG_TRACE, ("!!! Link UP, Port Not Secured! ignore this set::OID_802_11_BSSID_LIST_SCAN\n"));
86467 + Status = NDIS_STATUS_SUCCESS;
86468 + pAdapter->StaCfg.ScanCnt = 99; // Prevent auto scan triggered by this OID
86473 + if (pAdapter->Mlme.CntlMachine.CurrState != CNTL_IDLE)
86475 + RT28XX_MLME_RESET_STATE_MACHINE(pAdapter);
86476 + DBGPRINT(RT_DEBUG_TRACE, ("!!! MLME busy, reset MLME state machine !!!\n"));
86479 + // tell CNTL state machine to call NdisMSetInformationComplete() after completing
86480 + // this request, because this request is initiated by NDIS.
86481 + pAdapter->MlmeAux.CurrReqIsFromNdis = FALSE;
86482 + // Reset allowed scan retries
86483 + pAdapter->StaCfg.ScanCnt = 0;
86484 + pAdapter->StaCfg.LastScanTime = Now;
86486 + pAdapter->StaCfg.bScanReqIsFromWebUI = TRUE;
86487 + RTMP_SET_FLAG(pAdapter, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS);
86488 + MlmeEnqueue(pAdapter,
86489 + MLME_CNTL_STATE_MACHINE,
86490 + OID_802_11_BSSID_LIST_SCAN,
86494 + Status = NDIS_STATUS_SUCCESS;
86495 + StateMachineTouched = TRUE;
86497 + case OID_802_11_SSID:
86498 + if (wrq->u.data.length != sizeof(NDIS_802_11_SSID))
86499 + Status = -EINVAL;
86502 + PCHAR pSsidString = NULL;
86503 + Status = copy_from_user(&Ssid, wrq->u.data.pointer, wrq->u.data.length);
86505 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_SSID (Len=%d,Ssid=%s)\n", Ssid.SsidLength, Ssid.Ssid));
86506 + if (Ssid.SsidLength > MAX_LEN_OF_SSID)
86507 + Status = -EINVAL;
86510 + if (Ssid.SsidLength == 0)
86512 + Set_SSID_Proc(pAdapter, "");
86516 + pSsidString = (CHAR *) kmalloc(MAX_LEN_OF_SSID+1, MEM_ALLOC_FLAG);
86519 + NdisZeroMemory(pSsidString, MAX_LEN_OF_SSID+1);
86520 + NdisMoveMemory(pSsidString, Ssid.Ssid, Ssid.SsidLength);
86521 + Set_SSID_Proc(pAdapter, pSsidString);
86522 + kfree(pSsidString);
86525 + Status = -ENOMEM;
86530 + case OID_802_11_BSSID:
86532 + if (ATE_ON(pAdapter))
86534 + DBGPRINT(RT_DEBUG_TRACE, ("The driver is in ATE mode now\n"));
86537 +#endif // RALINK_ATE //
86538 + if (wrq->u.data.length != sizeof(NDIS_802_11_MAC_ADDRESS))
86539 + Status = -EINVAL;
86542 + Status = copy_from_user(&Bssid, wrq->u.data.pointer, wrq->u.data.length);
86544 + // tell CNTL state machine to call NdisMSetInformationComplete() after completing
86545 + // this request, because this request is initiated by NDIS.
86546 + pAdapter->MlmeAux.CurrReqIsFromNdis = FALSE;
86548 + // Prevent to connect AP again in STAMlmePeriodicExec
86549 + pAdapter->MlmeAux.AutoReconnectSsidLen= 32;
86551 + // Reset allowed scan retries
86552 + pAdapter->StaCfg.ScanCnt = 0;
86554 + if (pAdapter->Mlme.CntlMachine.CurrState != CNTL_IDLE)
86556 + RT28XX_MLME_RESET_STATE_MACHINE(pAdapter);
86557 + DBGPRINT(RT_DEBUG_TRACE, ("!!! MLME busy, reset MLME state machine !!!\n"));
86559 + MlmeEnqueue(pAdapter,
86560 + MLME_CNTL_STATE_MACHINE,
86561 + OID_802_11_BSSID,
86562 + sizeof(NDIS_802_11_MAC_ADDRESS),
86564 + Status = NDIS_STATUS_SUCCESS;
86565 + StateMachineTouched = TRUE;
86567 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_BSSID %02x:%02x:%02x:%02x:%02x:%02x\n",
86568 + Bssid[0], Bssid[1], Bssid[2], Bssid[3], Bssid[4], Bssid[5]));
86571 + case RT_OID_802_11_RADIO:
86572 + if (wrq->u.data.length != sizeof(BOOLEAN))
86573 + Status = -EINVAL;
86576 + Status = copy_from_user(&RadioState, wrq->u.data.pointer, wrq->u.data.length);
86577 + DBGPRINT(RT_DEBUG_TRACE, ("Set::RT_OID_802_11_RADIO (=%d)\n", RadioState));
86578 + if (pAdapter->StaCfg.bSwRadio != RadioState)
86580 + pAdapter->StaCfg.bSwRadio = RadioState;
86581 + if (pAdapter->StaCfg.bRadio != (pAdapter->StaCfg.bHwRadio && pAdapter->StaCfg.bSwRadio))
86583 + pAdapter->StaCfg.bRadio = (pAdapter->StaCfg.bHwRadio && pAdapter->StaCfg.bSwRadio);
86584 + if (pAdapter->StaCfg.bRadio == TRUE)
86586 + MlmeRadioOn(pAdapter);
86587 + // Update extra information
86588 + pAdapter->ExtraInfo = EXTRA_INFO_CLEAR;
86592 + MlmeRadioOff(pAdapter);
86593 + // Update extra information
86594 + pAdapter->ExtraInfo = SW_RADIO_OFF;
86600 + case RT_OID_802_11_PHY_MODE:
86601 + if (wrq->u.data.length != sizeof(RT_802_11_PHY_MODE))
86602 + Status = -EINVAL;
86605 + Status = copy_from_user(&PhyMode, wrq->u.data.pointer, wrq->u.data.length);
86606 + if (PhyMode <= MaxPhyMode)
86608 + RTMPSetPhyMode(pAdapter, PhyMode);
86609 +#ifdef DOT11_N_SUPPORT
86610 + SetCommonHT(pAdapter);
86611 +#endif // DOT11_N_SUPPORT //
86613 + DBGPRINT(RT_DEBUG_TRACE, ("Set::RT_OID_802_11_PHY_MODE (=%d)\n", PhyMode));
86616 + case RT_OID_802_11_STA_CONFIG:
86617 + if (wrq->u.data.length != sizeof(RT_802_11_STA_CONFIG))
86618 + Status = -EINVAL;
86621 + Status = copy_from_user(&StaConfig, wrq->u.data.pointer, wrq->u.data.length);
86622 + pAdapter->CommonCfg.bEnableTxBurst = StaConfig.EnableTxBurst;
86623 + pAdapter->CommonCfg.UseBGProtection = StaConfig.UseBGProtection;
86624 + pAdapter->CommonCfg.bUseShortSlotTime = 1; // 2003-10-30 always SHORT SLOT capable
86625 + if ((pAdapter->CommonCfg.PhyMode != StaConfig.AdhocMode) &&
86626 + (StaConfig.AdhocMode <= MaxPhyMode))
86628 + // allow dynamic change of "USE OFDM rate or not" in ADHOC mode
86629 + // if setting changed, need to reset current TX rate as well as BEACON frame format
86630 + pAdapter->CommonCfg.PhyMode = StaConfig.AdhocMode;
86631 + if (pAdapter->StaCfg.BssType == BSS_ADHOC)
86633 + RTMPSetPhyMode(pAdapter, PhyMode);
86634 + MlmeUpdateTxRates(pAdapter, FALSE, 0);
86635 + MakeIbssBeacon(pAdapter); // re-build BEACON frame
86636 + AsicEnableIbssSync(pAdapter); // copy to on-chip memory
86639 + DBGPRINT(RT_DEBUG_TRACE, ("Set::RT_OID_802_11_SET_STA_CONFIG (Burst=%d, Protection=%ld,ShortSlot=%d\n",
86640 + pAdapter->CommonCfg.bEnableTxBurst,
86641 + pAdapter->CommonCfg.UseBGProtection,
86642 + pAdapter->CommonCfg.bUseShortSlotTime));
86645 + case OID_802_11_DESIRED_RATES:
86646 + if (wrq->u.data.length != sizeof(NDIS_802_11_RATES))
86647 + Status = -EINVAL;
86650 + Status = copy_from_user(&aryRates, wrq->u.data.pointer, wrq->u.data.length);
86651 + NdisZeroMemory(pAdapter->CommonCfg.DesireRate, MAX_LEN_OF_SUPPORTED_RATES);
86652 + NdisMoveMemory(pAdapter->CommonCfg.DesireRate, &aryRates, sizeof(NDIS_802_11_RATES));
86653 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_DESIRED_RATES (%02x,%02x,%02x,%02x,%02x,%02x,%02x,%02x)\n",
86654 + pAdapter->CommonCfg.DesireRate[0],pAdapter->CommonCfg.DesireRate[1],
86655 + pAdapter->CommonCfg.DesireRate[2],pAdapter->CommonCfg.DesireRate[3],
86656 + pAdapter->CommonCfg.DesireRate[4],pAdapter->CommonCfg.DesireRate[5],
86657 + pAdapter->CommonCfg.DesireRate[6],pAdapter->CommonCfg.DesireRate[7] ));
86658 + // Changing DesiredRate may affect the MAX TX rate we used to TX frames out
86659 + MlmeUpdateTxRates(pAdapter, FALSE, 0);
86662 + case RT_OID_802_11_PREAMBLE:
86663 + if (wrq->u.data.length != sizeof(RT_802_11_PREAMBLE))
86664 + Status = -EINVAL;
86667 + Status = copy_from_user(&Preamble, wrq->u.data.pointer, wrq->u.data.length);
86668 + if (Preamble == Rt802_11PreambleShort)
86670 + pAdapter->CommonCfg.TxPreamble = Preamble;
86671 + MlmeSetTxPreamble(pAdapter, Rt802_11PreambleShort);
86673 + else if ((Preamble == Rt802_11PreambleLong) || (Preamble == Rt802_11PreambleAuto))
86675 + // if user wants AUTO, initialize to LONG here, then change according to AP's
86676 + // capability upon association.
86677 + pAdapter->CommonCfg.TxPreamble = Preamble;
86678 + MlmeSetTxPreamble(pAdapter, Rt802_11PreambleLong);
86682 + Status = -EINVAL;
86685 + DBGPRINT(RT_DEBUG_TRACE, ("Set::RT_OID_802_11_PREAMBLE (=%d)\n", Preamble));
86688 + case OID_802_11_WEP_STATUS:
86689 + if (wrq->u.data.length != sizeof(NDIS_802_11_WEP_STATUS))
86690 + Status = -EINVAL;
86693 + Status = copy_from_user(&WepStatus, wrq->u.data.pointer, wrq->u.data.length);
86694 + // Since TKIP, AES, WEP are all supported. It should not have any invalid setting
86695 + if (WepStatus <= Ndis802_11Encryption3KeyAbsent)
86697 + if (pAdapter->StaCfg.WepStatus != WepStatus)
86699 + // Config has changed
86700 + pAdapter->bConfigChanged = TRUE;
86702 + pAdapter->StaCfg.WepStatus = WepStatus;
86703 + pAdapter->StaCfg.OrigWepStatus = WepStatus;
86704 + pAdapter->StaCfg.PairCipher = WepStatus;
86705 + pAdapter->StaCfg.GroupCipher = WepStatus;
86709 + Status = -EINVAL;
86712 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_WEP_STATUS (=%d)\n",WepStatus));
86715 + case OID_802_11_AUTHENTICATION_MODE:
86716 + if (wrq->u.data.length != sizeof(NDIS_802_11_AUTHENTICATION_MODE))
86717 + Status = -EINVAL;
86720 + Status = copy_from_user(&AuthMode, wrq->u.data.pointer, wrq->u.data.length);
86721 + if (AuthMode > Ndis802_11AuthModeMax)
86723 + Status = -EINVAL;
86728 + if (pAdapter->StaCfg.AuthMode != AuthMode)
86730 + // Config has changed
86731 + pAdapter->bConfigChanged = TRUE;
86733 + pAdapter->StaCfg.AuthMode = AuthMode;
86735 + pAdapter->StaCfg.PortSecured = WPA_802_1X_PORT_NOT_SECURED;
86736 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_AUTHENTICATION_MODE (=%d) \n",pAdapter->StaCfg.AuthMode));
86739 + case OID_802_11_INFRASTRUCTURE_MODE:
86740 + if (wrq->u.data.length != sizeof(NDIS_802_11_NETWORK_INFRASTRUCTURE))
86741 + Status = -EINVAL;
86744 + Status = copy_from_user(&BssType, wrq->u.data.pointer, wrq->u.data.length);
86746 + if (BssType == Ndis802_11IBSS)
86747 + Set_NetworkType_Proc(pAdapter, "Adhoc");
86748 + else if (BssType == Ndis802_11Infrastructure)
86749 + Set_NetworkType_Proc(pAdapter, "Infra");
86750 + else if (BssType == Ndis802_11Monitor)
86751 + Set_NetworkType_Proc(pAdapter, "Monitor");
86754 + Status = -EINVAL;
86755 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_INFRASTRUCTURE_MODE (unknown)\n"));
86759 + case OID_802_11_REMOVE_WEP:
86760 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_REMOVE_WEP\n"));
86761 + if (wrq->u.data.length != sizeof(NDIS_802_11_KEY_INDEX))
86763 + Status = -EINVAL;
86767 + KeyIdx = *(NDIS_802_11_KEY_INDEX *) wrq->u.data.pointer;
86769 + if (KeyIdx & 0x80000000)
86771 + // Should never set default bit when remove key
86772 + Status = -EINVAL;
86776 + KeyIdx = KeyIdx & 0x0fffffff;
86777 + if (KeyIdx >= 4){
86778 + Status = -EINVAL;
86782 + pAdapter->SharedKey[BSS0][KeyIdx].KeyLen = 0;
86783 + pAdapter->SharedKey[BSS0][KeyIdx].CipherAlg = CIPHER_NONE;
86784 + AsicRemoveSharedKeyEntry(pAdapter, 0, (UCHAR)KeyIdx);
86789 + case RT_OID_802_11_RESET_COUNTERS:
86790 + NdisZeroMemory(&pAdapter->WlanCounters, sizeof(COUNTER_802_11));
86791 + NdisZeroMemory(&pAdapter->Counters8023, sizeof(COUNTER_802_3));
86792 + NdisZeroMemory(&pAdapter->RalinkCounters, sizeof(COUNTER_RALINK));
86793 + pAdapter->Counters8023.RxNoBuffer = 0;
86794 + pAdapter->Counters8023.GoodReceives = 0;
86795 + pAdapter->Counters8023.RxNoBuffer = 0;
86797 + pAdapter->BulkOutComplete = 0;
86798 + pAdapter->BulkOutCompleteOther= 0;
86799 + pAdapter->BulkOutCompleteCancel = 0;
86800 + pAdapter->BulkOutReq = 0;
86801 + pAdapter->BulkInReq= 0;
86802 + pAdapter->BulkInComplete = 0;
86803 + pAdapter->BulkInCompleteFail = 0;
86804 +#endif // RT2870 //
86805 + DBGPRINT(RT_DEBUG_TRACE, ("Set::RT_OID_802_11_RESET_COUNTERS \n"));
86807 + case OID_802_11_RTS_THRESHOLD:
86808 + if (wrq->u.data.length != sizeof(NDIS_802_11_RTS_THRESHOLD))
86809 + Status = -EINVAL;
86812 + Status = copy_from_user(&RtsThresh, wrq->u.data.pointer, wrq->u.data.length);
86813 + if (RtsThresh > MAX_RTS_THRESHOLD)
86814 + Status = -EINVAL;
86816 + pAdapter->CommonCfg.RtsThreshold = (USHORT)RtsThresh;
86818 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_RTS_THRESHOLD (=%ld)\n",RtsThresh));
86820 + case OID_802_11_FRAGMENTATION_THRESHOLD:
86821 + if (wrq->u.data.length != sizeof(NDIS_802_11_FRAGMENTATION_THRESHOLD))
86822 + Status = -EINVAL;
86825 + Status = copy_from_user(&FragThresh, wrq->u.data.pointer, wrq->u.data.length);
86826 + pAdapter->CommonCfg.bUseZeroToDisableFragment = FALSE;
86827 + if (FragThresh > MAX_FRAG_THRESHOLD || FragThresh < MIN_FRAG_THRESHOLD)
86829 + if (FragThresh == 0)
86831 + pAdapter->CommonCfg.FragmentThreshold = MAX_FRAG_THRESHOLD;
86832 + pAdapter->CommonCfg.bUseZeroToDisableFragment = TRUE;
86835 + Status = -EINVAL;
86838 + pAdapter->CommonCfg.FragmentThreshold = (USHORT)FragThresh;
86840 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_FRAGMENTATION_THRESHOLD (=%ld) \n",FragThresh));
86842 + case OID_802_11_POWER_MODE:
86843 + if (wrq->u.data.length != sizeof(NDIS_802_11_POWER_MODE))
86844 + Status = -EINVAL;
86847 + Status = copy_from_user(&PowerMode, wrq->u.data.pointer, wrq->u.data.length);
86848 + if (PowerMode == Ndis802_11PowerModeCAM)
86849 + Set_PSMode_Proc(pAdapter, "CAM");
86850 + else if (PowerMode == Ndis802_11PowerModeMAX_PSP)
86851 + Set_PSMode_Proc(pAdapter, "Max_PSP");
86852 + else if (PowerMode == Ndis802_11PowerModeFast_PSP)
86853 + Set_PSMode_Proc(pAdapter, "Fast_PSP");
86854 + else if (PowerMode == Ndis802_11PowerModeLegacy_PSP)
86855 + Set_PSMode_Proc(pAdapter, "Legacy_PSP");
86857 + Status = -EINVAL;
86859 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_POWER_MODE (=%d)\n",PowerMode));
86861 + case RT_OID_802_11_TX_POWER_LEVEL_1:
86862 + if (wrq->u.data.length < sizeof(ULONG))
86863 + Status = -EINVAL;
86866 + Status = copy_from_user(&PowerTemp, wrq->u.data.pointer, wrq->u.data.length);
86867 + if (PowerTemp > 100)
86868 + PowerTemp = 0xffffffff; // AUTO
86869 + pAdapter->CommonCfg.TxPowerDefault = PowerTemp; //keep current setting.
86870 + pAdapter->CommonCfg.TxPowerPercentage = pAdapter->CommonCfg.TxPowerDefault;
86871 + DBGPRINT(RT_DEBUG_TRACE, ("Set::RT_OID_802_11_TX_POWER_LEVEL_1 (=%ld)\n", pAdapter->CommonCfg.TxPowerPercentage));
86874 + case OID_802_11_NETWORK_TYPE_IN_USE:
86875 + if (wrq->u.data.length != sizeof(NDIS_802_11_NETWORK_TYPE))
86876 + Status = -EINVAL;
86879 + Status = copy_from_user(&NetType, wrq->u.data.pointer, wrq->u.data.length);
86881 + if (NetType == Ndis802_11DS)
86882 + RTMPSetPhyMode(pAdapter, PHY_11B);
86883 + else if (NetType == Ndis802_11OFDM24)
86884 + RTMPSetPhyMode(pAdapter, PHY_11BG_MIXED);
86885 + else if (NetType == Ndis802_11OFDM5)
86886 + RTMPSetPhyMode(pAdapter, PHY_11A);
86888 + Status = -EINVAL;
86889 +#ifdef DOT11_N_SUPPORT
86890 + if (Status == NDIS_STATUS_SUCCESS)
86891 + SetCommonHT(pAdapter);
86892 +#endif // DOT11_N_SUPPORT //
86893 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_NETWORK_TYPE_IN_USE (=%d)\n",NetType));
86896 + // For WPA PSK PMK key
86897 + case RT_OID_802_11_ADD_WPA:
86898 + pKey = kmalloc(wrq->u.data.length, MEM_ALLOC_FLAG);
86901 + Status = -ENOMEM;
86905 + Status = copy_from_user(pKey, wrq->u.data.pointer, wrq->u.data.length);
86906 + if (pKey->Length != wrq->u.data.length)
86908 + Status = -EINVAL;
86909 + DBGPRINT(RT_DEBUG_TRACE, ("Set::RT_OID_802_11_ADD_WPA, Failed!!\n"));
86913 + if ((pAdapter->StaCfg.AuthMode != Ndis802_11AuthModeWPAPSK) &&
86914 + (pAdapter->StaCfg.AuthMode != Ndis802_11AuthModeWPA2PSK) &&
86915 + (pAdapter->StaCfg.AuthMode != Ndis802_11AuthModeWPANone) )
86917 + Status = -EOPNOTSUPP;
86918 + DBGPRINT(RT_DEBUG_TRACE, ("Set::RT_OID_802_11_ADD_WPA, Failed!! [AuthMode != WPAPSK/WPA2PSK/WPANONE]\n"));
86920 + else if ((pAdapter->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK) ||
86921 + (pAdapter->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK) ||
86922 + (pAdapter->StaCfg.AuthMode == Ndis802_11AuthModeWPANone) ) // Only for WPA PSK mode
86924 + NdisMoveMemory(pAdapter->StaCfg.PMK, &pKey->KeyMaterial, pKey->KeyLength);
86925 + // Use RaConfig as PSK agent.
86926 + // Start STA supplicant state machine
86927 + if (pAdapter->StaCfg.AuthMode != Ndis802_11AuthModeWPANone)
86928 + pAdapter->StaCfg.WpaState = SS_START;
86930 + DBGPRINT(RT_DEBUG_TRACE, ("Set::RT_OID_802_11_ADD_WPA (id=0x%x, Len=%d-byte)\n", pKey->KeyIndex, pKey->KeyLength));
86934 + pAdapter->StaCfg.WpaState = SS_NOTUSE;
86935 + DBGPRINT(RT_DEBUG_TRACE, ("Set::RT_OID_802_11_ADD_WPA (id=0x%x, Len=%d-byte)\n", pKey->KeyIndex, pKey->KeyLength));
86940 + case OID_802_11_REMOVE_KEY:
86941 + pRemoveKey = kmalloc(wrq->u.data.length, MEM_ALLOC_FLAG);
86942 + if(pRemoveKey == NULL)
86944 + Status = -ENOMEM;
86948 + Status = copy_from_user(pRemoveKey, wrq->u.data.pointer, wrq->u.data.length);
86949 + if (pRemoveKey->Length != wrq->u.data.length)
86951 + Status = -EINVAL;
86952 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_REMOVE_KEY, Failed!!\n"));
86956 + if (pAdapter->StaCfg.AuthMode >= Ndis802_11AuthModeWPA)
86958 + RTMPWPARemoveKeyProc(pAdapter, pRemoveKey);
86959 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_REMOVE_KEY, Remove WPA Key!!\n"));
86963 + KeyIdx = pRemoveKey->KeyIndex;
86965 + if (KeyIdx & 0x80000000)
86967 + // Should never set default bit when remove key
86968 + Status = -EINVAL;
86969 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_REMOVE_KEY, Failed!!(Should never set default bit when remove key)\n"));
86973 + KeyIdx = KeyIdx & 0x0fffffff;
86976 + Status = -EINVAL;
86977 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_REMOVE_KEY, Failed!!(KeyId[%d] out of range)\n", KeyIdx));
86981 + pAdapter->SharedKey[BSS0][KeyIdx].KeyLen = 0;
86982 + pAdapter->SharedKey[BSS0][KeyIdx].CipherAlg = CIPHER_NONE;
86983 + AsicRemoveSharedKeyEntry(pAdapter, 0, (UCHAR)KeyIdx);
86984 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_REMOVE_KEY (id=0x%x, Len=%d-byte)\n", pRemoveKey->KeyIndex, pRemoveKey->Length));
86989 + kfree(pRemoveKey);
86992 + case OID_802_11_ADD_KEY:
86993 + pKey = kmalloc(wrq->u.data.length, MEM_ALLOC_FLAG);
86996 + Status = -ENOMEM;
86999 + Status = copy_from_user(pKey, wrq->u.data.pointer, wrq->u.data.length);
87000 + if (pKey->Length != wrq->u.data.length)
87002 + Status = -EINVAL;
87003 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_ADD_KEY, Failed!!\n"));
87007 + RTMPAddKey(pAdapter, pKey);
87008 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_ADD_KEY (id=0x%x, Len=%d-byte)\n", pKey->KeyIndex, pKey->KeyLength));
87012 + case OID_802_11_CONFIGURATION:
87013 + if (wrq->u.data.length != sizeof(NDIS_802_11_CONFIGURATION))
87014 + Status = -EINVAL;
87017 + Status = copy_from_user(&Config, wrq->u.data.pointer, wrq->u.data.length);
87018 + pConfig = &Config;
87020 + if ((pConfig->BeaconPeriod >= 20) && (pConfig->BeaconPeriod <=400))
87021 + pAdapter->CommonCfg.BeaconPeriod = (USHORT) pConfig->BeaconPeriod;
87023 + pAdapter->StaActive.AtimWin = (USHORT) pConfig->ATIMWindow;
87024 + MAP_KHZ_TO_CHANNEL_ID(pConfig->DSConfig, pAdapter->CommonCfg.Channel);
87026 + // Save the channel on MlmeAux for CntlOidRTBssidProc used.
87028 + pAdapter->MlmeAux.Channel = pAdapter->CommonCfg.Channel;
87030 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_CONFIGURATION (BeacnPeriod=%ld,AtimW=%ld,Ch=%d)\n",
87031 + pConfig->BeaconPeriod, pConfig->ATIMWindow, pAdapter->CommonCfg.Channel));
87032 + // Config has changed
87033 + pAdapter->bConfigChanged = TRUE;
87036 +#ifdef DOT11_N_SUPPORT
87037 + case RT_OID_802_11_SET_HT_PHYMODE:
87038 + if (wrq->u.data.length != sizeof(OID_SET_HT_PHYMODE))
87039 + Status = -EINVAL;
87042 + POID_SET_HT_PHYMODE pHTPhyMode = &HT_PhyMode;
87044 + Status = copy_from_user(&HT_PhyMode, wrq->u.data.pointer, wrq->u.data.length);
87045 + DBGPRINT(RT_DEBUG_TRACE, ("Set::pHTPhyMode (PhyMode = %d,TransmitNo = %d, HtMode = %d, ExtOffset = %d , MCS = %d, BW = %d, STBC = %d, SHORTGI = %d) \n",
87046 + pHTPhyMode->PhyMode, pHTPhyMode->TransmitNo,pHTPhyMode->HtMode,pHTPhyMode->ExtOffset,
87047 + pHTPhyMode->MCS, pHTPhyMode->BW, pHTPhyMode->STBC, pHTPhyMode->SHORTGI));
87048 + if (pAdapter->CommonCfg.PhyMode >= PHY_11ABGN_MIXED)
87049 + RTMPSetHT(pAdapter, pHTPhyMode);
87051 + DBGPRINT(RT_DEBUG_TRACE, ("Set::RT_OID_802_11_SET_HT_PHYMODE(MCS=%d,BW=%d,SGI=%d,STBC=%d)\n",
87052 + pAdapter->StaCfg.HTPhyMode.field.MCS, pAdapter->StaCfg.HTPhyMode.field.BW, pAdapter->StaCfg.HTPhyMode.field.ShortGI,
87053 + pAdapter->StaCfg.HTPhyMode.field.STBC));
87055 +#endif // DOT11_N_SUPPORT //
87056 + case RT_OID_802_11_SET_APSD_SETTING:
87057 + if (wrq->u.data.length != sizeof(ULONG))
87058 + Status = -EINVAL;
87062 + Status = copy_from_user(&apsd, wrq->u.data.pointer, wrq->u.data.length);
87064 + /*-------------------------------------------------------------------
87065 + |B31~B7 | B6~B5 | B4 | B3 | B2 | B1 | B0 |
87066 + ---------------------------------------------------------------------
87067 + | Rsvd | Max SP Len | AC_VO | AC_VI | AC_BK | AC_BE | APSD Capable |
87068 + ---------------------------------------------------------------------*/
87069 + pAdapter->CommonCfg.bAPSDCapable = (apsd & 0x00000001) ? TRUE : FALSE;
87070 + pAdapter->CommonCfg.bAPSDAC_BE = ((apsd & 0x00000002) >> 1) ? TRUE : FALSE;
87071 + pAdapter->CommonCfg.bAPSDAC_BK = ((apsd & 0x00000004) >> 2) ? TRUE : FALSE;
87072 + pAdapter->CommonCfg.bAPSDAC_VI = ((apsd & 0x00000008) >> 3) ? TRUE : FALSE;
87073 + pAdapter->CommonCfg.bAPSDAC_VO = ((apsd & 0x00000010) >> 4) ? TRUE : FALSE;
87074 + pAdapter->CommonCfg.MaxSPLength = (UCHAR)((apsd & 0x00000060) >> 5);
87076 + DBGPRINT(RT_DEBUG_TRACE, ("Set::RT_OID_802_11_SET_APSD_SETTING (apsd=0x%lx, APSDCap=%d, [BE,BK,VI,VO]=[%d/%d/%d/%d], MaxSPLen=%d)\n", apsd, pAdapter->CommonCfg.bAPSDCapable,
87077 + pAdapter->CommonCfg.bAPSDAC_BE, pAdapter->CommonCfg.bAPSDAC_BK, pAdapter->CommonCfg.bAPSDAC_VI, pAdapter->CommonCfg.bAPSDAC_VO, pAdapter->CommonCfg.MaxSPLength));
87081 + case RT_OID_802_11_SET_APSD_PSM:
87082 + if (wrq->u.data.length != sizeof(ULONG))
87083 + Status = -EINVAL;
87086 + // Driver needs to notify AP when PSM changes
87087 + Status = copy_from_user(&pAdapter->CommonCfg.bAPSDForcePowerSave, wrq->u.data.pointer, wrq->u.data.length);
87088 + if (pAdapter->CommonCfg.bAPSDForcePowerSave != pAdapter->StaCfg.Psm)
87090 + MlmeSetPsmBit(pAdapter, pAdapter->CommonCfg.bAPSDForcePowerSave);
87091 + RTMPSendNullFrame(pAdapter, pAdapter->CommonCfg.TxRate, TRUE);
87093 + DBGPRINT(RT_DEBUG_TRACE, ("Set::RT_OID_802_11_SET_APSD_PSM (bAPSDForcePowerSave:%d)\n", pAdapter->CommonCfg.bAPSDForcePowerSave));
87096 +#ifdef QOS_DLS_SUPPORT
87097 + case RT_OID_802_11_SET_DLS:
87098 + if (wrq->u.data.length != sizeof(ULONG))
87099 + Status = -EINVAL;
87102 + BOOLEAN oldvalue = pAdapter->CommonCfg.bDLSCapable;
87103 + Status = copy_from_user(&pAdapter->CommonCfg.bDLSCapable, wrq->u.data.pointer, wrq->u.data.length);
87104 + if (oldvalue && !pAdapter->CommonCfg.bDLSCapable)
87107 + // tear down local dls table entry
87108 + for (i=0; i<MAX_NUM_OF_INIT_DLS_ENTRY; i++)
87110 + if (pAdapter->StaCfg.DLSEntry[i].Valid && (pAdapter->StaCfg.DLSEntry[i].Status == DLS_FINISH))
87112 + pAdapter->StaCfg.DLSEntry[i].Status = DLS_NONE;
87113 + pAdapter->StaCfg.DLSEntry[i].Valid = FALSE;
87114 + RTMPSendDLSTearDownFrame(pAdapter, pAdapter->StaCfg.DLSEntry[i].MacAddr);
87118 + // tear down peer dls table entry
87119 + for (i=MAX_NUM_OF_INIT_DLS_ENTRY; i<MAX_NUM_OF_DLS_ENTRY; i++)
87121 + if (pAdapter->StaCfg.DLSEntry[i].Valid && (pAdapter->StaCfg.DLSEntry[i].Status == DLS_FINISH))
87123 + pAdapter->StaCfg.DLSEntry[i].Status = DLS_NONE;
87124 + pAdapter->StaCfg.DLSEntry[i].Valid = FALSE;
87125 + RTMPSendDLSTearDownFrame(pAdapter, pAdapter->StaCfg.DLSEntry[i].MacAddr);
87130 + DBGPRINT(RT_DEBUG_TRACE,("Set::RT_OID_802_11_SET_DLS (=%d)\n", pAdapter->CommonCfg.bDLSCapable));
87134 + case RT_OID_802_11_SET_DLS_PARAM:
87135 + if (wrq->u.data.length != sizeof(RT_802_11_DLS_UI))
87136 + Status = -EINVAL;
87139 + RT_802_11_DLS Dls;
87141 + NdisZeroMemory(&Dls, sizeof(RT_802_11_DLS));
87142 + RTMPMoveMemory(&Dls, wrq->u.data.pointer, sizeof(RT_802_11_DLS_UI));
87143 + MlmeEnqueue(pAdapter,
87144 + MLME_CNTL_STATE_MACHINE,
87145 + RT_OID_802_11_SET_DLS_PARAM,
87146 + sizeof(RT_802_11_DLS),
87148 + DBGPRINT(RT_DEBUG_TRACE,("Set::RT_OID_802_11_SET_DLS_PARAM \n"));
87151 +#endif // QOS_DLS_SUPPORT //
87152 + case RT_OID_802_11_SET_WMM:
87153 + if (wrq->u.data.length != sizeof(BOOLEAN))
87154 + Status = -EINVAL;
87157 + Status = copy_from_user(&pAdapter->CommonCfg.bWmmCapable, wrq->u.data.pointer, wrq->u.data.length);
87158 + DBGPRINT(RT_DEBUG_TRACE, ("Set::RT_OID_802_11_SET_WMM (=%d) \n", pAdapter->CommonCfg.bWmmCapable));
87162 + case OID_802_11_DISASSOCIATE:
87164 + if (ATE_ON(pAdapter))
87166 + DBGPRINT(RT_DEBUG_TRACE, ("The driver is in ATE mode now\n"));
87169 +#endif // RALINK_ATE //
87171 + // Set NdisRadioStateOff to TRUE, instead of called MlmeRadioOff.
87172 + // Later on, NDIS_802_11_BSSID_LIST_EX->NumberOfItems should be 0
87173 + // when query OID_802_11_BSSID_LIST.
87175 + // TRUE: NumberOfItems will set to 0.
87176 + // FALSE: NumberOfItems no change.
87178 + pAdapter->CommonCfg.NdisRadioStateOff = TRUE;
87179 + // Set to immediately send the media disconnect event
87180 + pAdapter->MlmeAux.CurrReqIsFromNdis = TRUE;
87181 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_DISASSOCIATE \n"));
87183 + if (INFRA_ON(pAdapter))
87185 + if (pAdapter->Mlme.CntlMachine.CurrState != CNTL_IDLE)
87187 + RT28XX_MLME_RESET_STATE_MACHINE(pAdapter);
87188 + DBGPRINT(RT_DEBUG_TRACE, ("!!! MLME busy, reset MLME state machine !!!\n"));
87191 + MlmeEnqueue(pAdapter,
87192 + MLME_CNTL_STATE_MACHINE,
87193 + OID_802_11_DISASSOCIATE,
87197 + StateMachineTouched = TRUE;
87201 +#ifdef DOT11_N_SUPPORT
87202 + case RT_OID_802_11_SET_IMME_BA_CAP:
87203 + if (wrq->u.data.length != sizeof(OID_BACAP_STRUC))
87204 + Status = -EINVAL;
87207 + OID_BACAP_STRUC Orde ;
87208 + Status = copy_from_user(&Orde, wrq->u.data.pointer, wrq->u.data.length);
87209 + if (Orde.Policy > BA_NOTUSE)
87211 + Status = NDIS_STATUS_INVALID_DATA;
87213 + else if (Orde.Policy == BA_NOTUSE)
87215 + pAdapter->CommonCfg.BACapability.field.Policy = BA_NOTUSE;
87216 + pAdapter->CommonCfg.BACapability.field.MpduDensity = Orde.MpduDensity;
87217 + pAdapter->CommonCfg.DesiredHtPhy.MpduDensity = Orde.MpduDensity;
87218 + pAdapter->CommonCfg.DesiredHtPhy.AmsduEnable = Orde.AmsduEnable;
87219 + pAdapter->CommonCfg.DesiredHtPhy.AmsduSize= Orde.AmsduSize;
87220 + pAdapter->CommonCfg.DesiredHtPhy.MimoPs= Orde.MMPSmode;
87221 + pAdapter->CommonCfg.BACapability.field.MMPSmode = Orde.MMPSmode;
87222 + // UPdata to HT IE
87223 + pAdapter->CommonCfg.HtCapability.HtCapInfo.MimoPs = Orde.MMPSmode;
87224 + pAdapter->CommonCfg.HtCapability.HtCapInfo.AMsduSize = Orde.AmsduSize;
87225 + pAdapter->CommonCfg.HtCapability.HtCapParm.MpduDensity = Orde.MpduDensity;
87229 + pAdapter->CommonCfg.BACapability.field.AutoBA = Orde.AutoBA;
87230 + pAdapter->CommonCfg.BACapability.field.Policy = IMMED_BA; // we only support immediate BA.
87231 + pAdapter->CommonCfg.BACapability.field.MpduDensity = Orde.MpduDensity;
87232 + pAdapter->CommonCfg.DesiredHtPhy.MpduDensity = Orde.MpduDensity;
87233 + pAdapter->CommonCfg.DesiredHtPhy.AmsduEnable = Orde.AmsduEnable;
87234 + pAdapter->CommonCfg.DesiredHtPhy.AmsduSize= Orde.AmsduSize;
87235 + pAdapter->CommonCfg.DesiredHtPhy.MimoPs = Orde.MMPSmode;
87236 + pAdapter->CommonCfg.BACapability.field.MMPSmode = Orde.MMPSmode;
87238 + // UPdata to HT IE
87239 + pAdapter->CommonCfg.HtCapability.HtCapInfo.MimoPs = Orde.MMPSmode;
87240 + pAdapter->CommonCfg.HtCapability.HtCapInfo.AMsduSize = Orde.AmsduSize;
87241 + pAdapter->CommonCfg.HtCapability.HtCapParm.MpduDensity = Orde.MpduDensity;
87243 + if (pAdapter->CommonCfg.BACapability.field.RxBAWinLimit > MAX_RX_REORDERBUF)
87244 + pAdapter->CommonCfg.BACapability.field.RxBAWinLimit = MAX_RX_REORDERBUF;
87248 + pAdapter->CommonCfg.REGBACapability.word = pAdapter->CommonCfg.BACapability.word;
87249 + DBGPRINT(RT_DEBUG_TRACE, ("Set::(Orde.AutoBA = %d) (Policy=%d)(ReBAWinLimit=%d)(TxBAWinLimit=%d)(AutoMode=%d)\n",Orde.AutoBA, pAdapter->CommonCfg.BACapability.field.Policy,
87250 + pAdapter->CommonCfg.BACapability.field.RxBAWinLimit,pAdapter->CommonCfg.BACapability.field.TxBAWinLimit, pAdapter->CommonCfg.BACapability.field.AutoBA));
87251 + DBGPRINT(RT_DEBUG_TRACE, ("Set::(MimoPs = %d)(AmsduEnable = %d) (AmsduSize=%d)(MpduDensity=%d)\n",pAdapter->CommonCfg.DesiredHtPhy.MimoPs, pAdapter->CommonCfg.DesiredHtPhy.AmsduEnable,
87252 + pAdapter->CommonCfg.DesiredHtPhy.AmsduSize, pAdapter->CommonCfg.DesiredHtPhy.MpduDensity));
87256 + case RT_OID_802_11_ADD_IMME_BA:
87257 + DBGPRINT(RT_DEBUG_TRACE, (" Set :: RT_OID_802_11_ADD_IMME_BA \n"));
87258 + if (wrq->u.data.length != sizeof(OID_ADD_BA_ENTRY))
87259 + Status = -EINVAL;
87263 + OID_ADD_BA_ENTRY BA;
87264 + MAC_TABLE_ENTRY *pEntry;
87266 + Status = copy_from_user(&BA, wrq->u.data.pointer, wrq->u.data.length);
87269 + Status = NDIS_STATUS_INVALID_DATA;
87274 + //BATableInsertEntry
87275 + //As ad-hoc mode, BA pair is not limited to only BSSID. so add via OID.
87277 + // in ad hoc mode, when adding BA pair, we should insert this entry into MACEntry too
87278 + pEntry = MacTableLookup(pAdapter, BA.MACAddr);
87281 + DBGPRINT(RT_DEBUG_TRACE, ("RT_OID_802_11_ADD_IMME_BA. break on no connection.----:%x:%x\n", BA.MACAddr[4], BA.MACAddr[5]));
87284 + if (BA.IsRecipient == FALSE)
87286 + if (pEntry->bIAmBadAtheros == TRUE)
87287 + pAdapter->CommonCfg.BACapability.field.RxBAWinLimit = 0x10;
87289 + BAOriSessionSetUp(pAdapter, pEntry, index, 0, 100, TRUE);
87293 + //BATableInsertEntry(pAdapter, pEntry->Aid, BA.MACAddr, 0, 0xffff, BA.TID, BA.nMSDU, BA.IsRecipient);
87296 + DBGPRINT(RT_DEBUG_TRACE, ("Set::RT_OID_802_11_ADD_IMME_BA. Rec = %d. Mac = %x:%x:%x:%x:%x:%x . \n",
87297 + BA.IsRecipient, BA.MACAddr[0], BA.MACAddr[1], BA.MACAddr[2], BA.MACAddr[2]
87298 + , BA.MACAddr[4], BA.MACAddr[5]));
87303 + case RT_OID_802_11_TEAR_IMME_BA:
87304 + DBGPRINT(RT_DEBUG_TRACE, ("Set :: RT_OID_802_11_TEAR_IMME_BA \n"));
87305 + if (wrq->u.data.length != sizeof(OID_ADD_BA_ENTRY))
87306 + Status = -EINVAL;
87309 + POID_ADD_BA_ENTRY pBA;
87310 + MAC_TABLE_ENTRY *pEntry;
87312 + pBA = kmalloc(wrq->u.data.length, MEM_ALLOC_FLAG);
87316 + DBGPRINT(RT_DEBUG_TRACE, ("Set :: RT_OID_802_11_TEAR_IMME_BA kmalloc() can't allocate enough memory\n"));
87317 + Status = NDIS_STATUS_FAILURE;
87321 + Status = copy_from_user(pBA, wrq->u.data.pointer, wrq->u.data.length);
87322 + DBGPRINT(RT_DEBUG_TRACE, ("Set :: RT_OID_802_11_TEAR_IMME_BA(TID=%d, bAllTid=%d)\n", pBA->TID, pBA->bAllTid));
87324 + if (!pBA->bAllTid && (pBA->TID > NUM_OF_TID))
87326 + Status = NDIS_STATUS_INVALID_DATA;
87330 + if (pBA->IsRecipient == FALSE)
87332 + pEntry = MacTableLookup(pAdapter, pBA->MACAddr);
87333 + DBGPRINT(RT_DEBUG_TRACE, (" pBA->IsRecipient == FALSE\n"));
87336 + DBGPRINT(RT_DEBUG_TRACE, (" pBA->pEntry\n"));
87337 + BAOriSessionTearDown(pAdapter, pEntry->Aid, pBA->TID, FALSE, TRUE);
87340 + DBGPRINT(RT_DEBUG_TRACE, ("Set :: Not found pEntry \n"));
87344 + pEntry = MacTableLookup(pAdapter, pBA->MACAddr);
87347 + BARecSessionTearDown( pAdapter, (UCHAR)pEntry->Aid, pBA->TID, TRUE);
87350 + DBGPRINT(RT_DEBUG_TRACE, ("Set :: Not found pEntry \n"));
87356 +#endif // DOT11_N_SUPPORT //
87358 + // For WPA_SUPPLICANT to set static wep key
87359 + case OID_802_11_ADD_WEP:
87360 + pWepKey = kmalloc(wrq->u.data.length, MEM_ALLOC_FLAG);
87362 + if(pWepKey == NULL)
87364 + Status = -ENOMEM;
87365 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_ADD_WEP, Failed!!\n"));
87368 + Status = copy_from_user(pWepKey, wrq->u.data.pointer, wrq->u.data.length);
87371 + Status = -EINVAL;
87372 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_ADD_WEP, Failed (length mismatch)!!\n"));
87376 + KeyIdx = pWepKey->KeyIndex & 0x0fffffff;
87377 + // KeyIdx must be 0 ~ 3
87380 + Status = -EINVAL;
87381 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_ADD_WEP, Failed (KeyIdx must be smaller than 4)!!\n"));
87385 + UCHAR CipherAlg = 0;
87388 + // set key material and key length
87389 + NdisZeroMemory(pAdapter->SharedKey[BSS0][KeyIdx].Key, 16);
87390 + pAdapter->SharedKey[BSS0][KeyIdx].KeyLen = (UCHAR) pWepKey->KeyLength;
87391 + NdisMoveMemory(pAdapter->SharedKey[BSS0][KeyIdx].Key, &pWepKey->KeyMaterial, pWepKey->KeyLength);
87393 + switch(pWepKey->KeyLength)
87396 + CipherAlg = CIPHER_WEP64;
87399 + CipherAlg = CIPHER_WEP128;
87402 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_ADD_WEP, only support CIPHER_WEP64(len:5) & CIPHER_WEP128(len:13)!!\n"));
87403 + Status = -EINVAL;
87406 + pAdapter->SharedKey[BSS0][KeyIdx].CipherAlg = CipherAlg;
87408 + // Default key for tx (shared key)
87409 + if (pWepKey->KeyIndex & 0x80000000)
87411 +#ifdef WPA_SUPPLICANT_SUPPORT
87412 + // set key material and key length
87413 + NdisZeroMemory(pAdapter->StaCfg.DesireSharedKey[KeyIdx].Key, 16);
87414 + pAdapter->StaCfg.DesireSharedKey[KeyIdx].KeyLen = (UCHAR) pWepKey->KeyLength;
87415 + NdisMoveMemory(pAdapter->StaCfg.DesireSharedKey[KeyIdx].Key, &pWepKey->KeyMaterial, pWepKey->KeyLength);
87416 + pAdapter->StaCfg.DesireSharedKeyId = KeyIdx;
87417 + pAdapter->StaCfg.DesireSharedKey[KeyIdx].CipherAlg = CipherAlg;
87418 +#endif // WPA_SUPPLICANT_SUPPORT //
87419 + pAdapter->StaCfg.DefaultKeyId = (UCHAR) KeyIdx;
87422 +#ifdef WPA_SUPPLICANT_SUPPORT
87423 + if (pAdapter->StaCfg.PortSecured == WPA_802_1X_PORT_SECURED)
87424 +#endif // WPA_SUPPLICANT_SUPPORT
87426 + Key = pAdapter->SharedKey[BSS0][KeyIdx].Key;
87428 + // Set key material and cipherAlg to Asic
87429 + AsicAddSharedKeyEntry(pAdapter, BSS0, KeyIdx, CipherAlg, Key, NULL, NULL);
87431 + if (pWepKey->KeyIndex & 0x80000000)
87433 + PMAC_TABLE_ENTRY pEntry = &pAdapter->MacTab.Content[BSSID_WCID];
87434 + // Assign group key info
87435 + RTMPAddWcidAttributeEntry(pAdapter, BSS0, KeyIdx, CipherAlg, NULL);
87436 + // Assign pairwise key info
87437 + RTMPAddWcidAttributeEntry(pAdapter, BSS0, KeyIdx, CipherAlg, pEntry);
87440 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_ADD_WEP (id=0x%x, Len=%d-byte), %s\n", pWepKey->KeyIndex, pWepKey->KeyLength, (pAdapter->StaCfg.PortSecured == WPA_802_1X_PORT_SECURED) ? "Port Secured":"Port NOT Secured"));
87445 +#ifdef WPA_SUPPLICANT_SUPPORT
87446 + case OID_SET_COUNTERMEASURES:
87447 + if (wrq->u.data.length != sizeof(int))
87448 + Status = -EINVAL;
87452 + Status = copy_from_user(&enabled, wrq->u.data.pointer, wrq->u.data.length);
87453 + if (enabled == 1)
87454 + pAdapter->StaCfg.bBlockAssoc = TRUE;
87456 + // WPA MIC error should block association attempt for 60 seconds
87457 + pAdapter->StaCfg.bBlockAssoc = FALSE;
87458 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_SET_COUNTERMEASURES bBlockAssoc=%s\n", pAdapter->StaCfg.bBlockAssoc ? "TRUE":"FALSE"));
87461 + case RT_OID_WPA_SUPPLICANT_SUPPORT:
87462 + if (wrq->u.data.length != sizeof(UCHAR))
87463 + Status = -EINVAL;
87466 + Status = copy_from_user(&wpa_supplicant_enable, wrq->u.data.pointer, wrq->u.data.length);
87467 + pAdapter->StaCfg.WpaSupplicantUP = wpa_supplicant_enable;
87468 + DBGPRINT(RT_DEBUG_TRACE, ("Set::RT_OID_WPA_SUPPLICANT_SUPPORT (=%d)\n", pAdapter->StaCfg.WpaSupplicantUP));
87471 + case OID_802_11_DEAUTHENTICATION:
87472 + if (wrq->u.data.length != sizeof(MLME_DEAUTH_REQ_STRUCT))
87473 + Status = -EINVAL;
87476 + MLME_DEAUTH_REQ_STRUCT *pInfo;
87477 + MLME_QUEUE_ELEM *MsgElem = (MLME_QUEUE_ELEM *) kmalloc(sizeof(MLME_QUEUE_ELEM), MEM_ALLOC_FLAG);
87479 + pInfo = (MLME_DEAUTH_REQ_STRUCT *) MsgElem->Msg;
87480 + Status = copy_from_user(pInfo, wrq->u.data.pointer, wrq->u.data.length);
87481 + MlmeDeauthReqAction(pAdapter, MsgElem);
87484 + if (INFRA_ON(pAdapter))
87486 + LinkDown(pAdapter, FALSE);
87487 + pAdapter->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
87489 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_DEAUTHENTICATION (Reason=%d)\n", pInfo->Reason));
87492 + case OID_802_11_DROP_UNENCRYPTED:
87493 + if (wrq->u.data.length != sizeof(int))
87494 + Status = -EINVAL;
87498 + Status = copy_from_user(&enabled, wrq->u.data.pointer, wrq->u.data.length);
87499 + if (enabled == 1)
87500 + pAdapter->StaCfg.PortSecured = WPA_802_1X_PORT_NOT_SECURED;
87502 + pAdapter->StaCfg.PortSecured = WPA_802_1X_PORT_SECURED;
87503 + NdisAcquireSpinLock(&pAdapter->MacTabLock);
87504 + pAdapter->MacTab.Content[BSSID_WCID].PortSecured = pAdapter->StaCfg.PortSecured;
87505 + NdisReleaseSpinLock(&pAdapter->MacTabLock);
87506 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_DROP_UNENCRYPTED (=%d)\n", enabled));
87509 + case OID_802_11_SET_IEEE8021X:
87510 + if (wrq->u.data.length != sizeof(BOOLEAN))
87511 + Status = -EINVAL;
87514 + Status = copy_from_user(&IEEE8021xState, wrq->u.data.pointer, wrq->u.data.length);
87515 + pAdapter->StaCfg.IEEE8021X = IEEE8021xState;
87516 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_SET_IEEE8021X (=%d)\n", IEEE8021xState));
87519 + case OID_802_11_SET_IEEE8021X_REQUIRE_KEY:
87520 + if (wrq->u.data.length != sizeof(BOOLEAN))
87521 + Status = -EINVAL;
87524 + Status = copy_from_user(&IEEE8021x_required_keys, wrq->u.data.pointer, wrq->u.data.length);
87525 + pAdapter->StaCfg.IEEE8021x_required_keys = IEEE8021x_required_keys;
87526 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_SET_IEEE8021X_REQUIRE_KEY (%d)\n", IEEE8021x_required_keys));
87529 + case OID_802_11_PMKID:
87530 + pPmkId = kmalloc(wrq->u.data.length, MEM_ALLOC_FLAG);
87532 + if(pPmkId == NULL) {
87533 + Status = -ENOMEM;
87536 + Status = copy_from_user(pPmkId, wrq->u.data.pointer, wrq->u.data.length);
87538 + // check the PMKID information
87539 + if (pPmkId->BSSIDInfoCount == 0)
87540 + NdisZeroMemory(pAdapter->StaCfg.SavedPMK, sizeof(BSSID_INFO)*PMKID_NO);
87543 + PBSSID_INFO pBssIdInfo;
87547 + for (BssIdx = 0; BssIdx < pPmkId->BSSIDInfoCount; BssIdx++)
87549 + // point to the indexed BSSID_INFO structure
87550 + pBssIdInfo = (PBSSID_INFO) ((PUCHAR) pPmkId + 2 * sizeof(UINT) + BssIdx * sizeof(BSSID_INFO));
87551 + // Find the entry in the saved data base.
87552 + for (CachedIdx = 0; CachedIdx < pAdapter->StaCfg.SavedPMKNum; CachedIdx++)
87554 + // compare the BSSID
87555 + if (NdisEqualMemory(pBssIdInfo->BSSID, pAdapter->StaCfg.SavedPMK[CachedIdx].BSSID, sizeof(NDIS_802_11_MAC_ADDRESS)))
87559 + // Found, replace it
87560 + if (CachedIdx < PMKID_NO)
87562 + DBGPRINT(RT_DEBUG_OFF, ("Update OID_802_11_PMKID, idx = %d\n", CachedIdx));
87563 + NdisMoveMemory(&pAdapter->StaCfg.SavedPMK[CachedIdx], pBssIdInfo, sizeof(BSSID_INFO));
87564 + pAdapter->StaCfg.SavedPMKNum++;
87566 + // Not found, replace the last one
87569 + // Randomly replace one
87570 + CachedIdx = (pBssIdInfo->BSSID[5] % PMKID_NO);
87571 + DBGPRINT(RT_DEBUG_OFF, ("Update OID_802_11_PMKID, idx = %d\n", CachedIdx));
87572 + NdisMoveMemory(&pAdapter->StaCfg.SavedPMK[CachedIdx], pBssIdInfo, sizeof(BSSID_INFO));
87579 +#endif // WPA_SUPPLICANT_SUPPORT //
87583 +#ifdef SNMP_SUPPORT
87584 + case OID_802_11_SHORTRETRYLIMIT:
87585 + if (wrq->u.data.length != sizeof(ULONG))
87586 + Status = -EINVAL;
87589 + Status = copy_from_user(&ShortRetryLimit, wrq->u.data.pointer, wrq->u.data.length);
87590 + RTMP_IO_READ32(pAdapter, TX_RTY_CFG, &tx_rty_cfg.word);
87591 + tx_rty_cfg.field.ShortRtyLimit = ShortRetryLimit;
87592 + RTMP_IO_WRITE32(pAdapter, TX_RTY_CFG, tx_rty_cfg.word);
87593 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_SHORTRETRYLIMIT (tx_rty_cfg.field.ShortRetryLimit=%d, ShortRetryLimit=%ld)\n", tx_rty_cfg.field.ShortRtyLimit, ShortRetryLimit));
87597 + case OID_802_11_LONGRETRYLIMIT:
87598 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_LONGRETRYLIMIT \n"));
87599 + if (wrq->u.data.length != sizeof(ULONG))
87600 + Status = -EINVAL;
87603 + Status = copy_from_user(&LongRetryLimit, wrq->u.data.pointer, wrq->u.data.length);
87604 + RTMP_IO_READ32(pAdapter, TX_RTY_CFG, &tx_rty_cfg.word);
87605 + tx_rty_cfg.field.LongRtyLimit = LongRetryLimit;
87606 + RTMP_IO_WRITE32(pAdapter, TX_RTY_CFG, tx_rty_cfg.word);
87607 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_LONGRETRYLIMIT (tx_rty_cfg.field.LongRetryLimit= %d,LongRetryLimit=%ld)\n", tx_rty_cfg.field.LongRtyLimit, LongRetryLimit));
87611 + case OID_802_11_WEPDEFAULTKEYVALUE:
87612 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_WEPDEFAULTKEYVALUE\n"));
87613 + pKey = kmalloc(wrq->u.data.length, GFP_KERNEL);
87614 + Status = copy_from_user(pKey, wrq->u.data.pointer, wrq->u.data.length);
87615 + //pKey = &WepKey;
87617 + if ( pKey->Length != wrq->u.data.length)
87619 + Status = -EINVAL;
87620 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_WEPDEFAULTKEYVALUE, Failed!!\n"));
87622 + KeyIdx = pKey->KeyIndex & 0x0fffffff;
87623 + DBGPRINT(RT_DEBUG_TRACE,("pKey->KeyIndex =%d, pKey->KeyLength=%d\n", pKey->KeyIndex, pKey->KeyLength));
87625 + // it is a shared key
87627 + Status = -EINVAL;
87630 + pAdapter->SharedKey[BSS0][pAdapter->StaCfg.DefaultKeyId].KeyLen = (UCHAR) pKey->KeyLength;
87631 + NdisMoveMemory(&pAdapter->SharedKey[BSS0][pAdapter->StaCfg.DefaultKeyId].Key, &pKey->KeyMaterial, pKey->KeyLength);
87632 + if (pKey->KeyIndex & 0x80000000)
87634 + // Default key for tx (shared key)
87635 + pAdapter->StaCfg.DefaultKeyId = (UCHAR) KeyIdx;
87637 + //RestartAPIsRequired = TRUE;
87642 + case OID_802_11_WEPDEFAULTKEYID:
87643 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_WEPDEFAULTKEYID \n"));
87645 + if (wrq->u.data.length != sizeof(UCHAR))
87646 + Status = -EINVAL;
87648 + Status = copy_from_user(&pAdapter->StaCfg.DefaultKeyId, wrq->u.data.pointer, wrq->u.data.length);
87653 + case OID_802_11_CURRENTCHANNEL:
87654 + DBGPRINT(RT_DEBUG_TRACE, ("Set::OID_802_11_CURRENTCHANNEL \n"));
87655 + if (wrq->u.data.length != sizeof(UCHAR))
87656 + Status = -EINVAL;
87659 + Status = copy_from_user(&ctmp, wrq->u.data.pointer, wrq->u.data.length);
87660 + sprintf(&ctmp,"%d", ctmp);
87661 + Set_Channel_Proc(pAdapter, &ctmp);
87669 + DBGPRINT(RT_DEBUG_TRACE, ("Set::unknown IOCTL's subcmd = 0x%08x\n", cmd));
87670 + Status = -EOPNOTSUPP;
87678 +INT RTMPQueryInformation(
87679 + IN PRTMP_ADAPTER pAdapter,
87680 + IN OUT struct ifreq *rq,
87683 + struct iwreq *wrq = (struct iwreq *) rq;
87684 + NDIS_802_11_BSSID_LIST_EX *pBssidList = NULL;
87685 + PNDIS_WLAN_BSSID_EX pBss;
87686 + NDIS_802_11_SSID Ssid;
87687 + NDIS_802_11_CONFIGURATION *pConfiguration = NULL;
87688 + RT_802_11_LINK_STATUS *pLinkStatus = NULL;
87689 + RT_802_11_STA_CONFIG *pStaConfig = NULL;
87690 + NDIS_802_11_STATISTICS *pStatistics = NULL;
87691 + NDIS_802_11_RTS_THRESHOLD RtsThresh;
87692 + NDIS_802_11_FRAGMENTATION_THRESHOLD FragThresh;
87693 + NDIS_802_11_POWER_MODE PowerMode;
87694 + NDIS_802_11_NETWORK_INFRASTRUCTURE BssType;
87695 + RT_802_11_PREAMBLE PreamType;
87696 + NDIS_802_11_AUTHENTICATION_MODE AuthMode;
87697 + NDIS_802_11_WEP_STATUS WepStatus;
87698 + NDIS_MEDIA_STATE MediaState;
87699 + ULONG BssBufSize, ulInfo=0, NetworkTypeList[4], apsd = 0;
87700 + USHORT BssLen = 0;
87701 + PUCHAR pBuf = NULL, pPtr;
87702 + INT Status = NDIS_STATUS_SUCCESS;
87703 + UINT we_version_compiled;
87704 + UCHAR i, Padding = 0;
87705 + BOOLEAN RadioState;
87706 + UCHAR driverVersion[8];
87707 + OID_SET_HT_PHYMODE *pHTPhyMode = NULL;
87710 +#ifdef SNMP_SUPPORT
87711 + //for snmp, kathy
87712 + DefaultKeyIdxValue *pKeyIdxValue;
87714 + TX_RTY_CFG_STRUC tx_rty_cfg;
87715 + ULONG ShortRetryLimit, LongRetryLimit;
87721 + case RT_OID_DEVICE_NAME:
87722 + wrq->u.data.length = sizeof(STA_NIC_DEVICE_NAME);
87723 + Status = copy_to_user(wrq->u.data.pointer, STA_NIC_DEVICE_NAME, wrq->u.data.length);
87725 + case RT_OID_VERSION_INFO:
87726 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_VERSION_INFO \n"));
87727 + wrq->u.data.length = 8*sizeof(UCHAR);
87728 + sprintf(&driverVersion[0], "%s", STA_DRIVER_VERSION);
87729 + driverVersion[7] = '\0';
87730 + if (copy_to_user(wrq->u.data.pointer, &driverVersion, wrq->u.data.length))
87732 + Status = -EFAULT;
87736 + case RT_QUERY_ATE_TXDONE_COUNT:
87737 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_QUERY_ATE_TXDONE_COUNT \n"));
87738 + wrq->u.data.length = sizeof(UINT32);
87739 + if (copy_to_user(wrq->u.data.pointer, &pAdapter->ate.TxDoneCount, wrq->u.data.length))
87741 + Status = -EFAULT;
87744 +#endif // RALINK_ATE //
87745 + case OID_802_11_BSSID_LIST:
87746 + if (RTMP_TEST_FLAG(pAdapter, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS))
87749 + * Still scanning, indicate the caller should try again.
87751 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_BSSID_LIST (Still scanning)\n"));
87754 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_BSSID_LIST (%d BSS returned)\n",pAdapter->ScanTab.BssNr));
87755 + pAdapter->StaCfg.bScanReqIsFromWebUI = FALSE;
87756 + // Claculate total buffer size required
87757 + BssBufSize = sizeof(ULONG);
87759 + for (i = 0; i < pAdapter->ScanTab.BssNr; i++)
87761 + // Align pointer to 4 bytes boundary.
87762 + //Padding = 4 - (pAdapter->ScanTab.BssEntry[i].VarIELen & 0x0003);
87763 + //if (Padding == 4)
87765 + BssBufSize += (sizeof(NDIS_WLAN_BSSID_EX) - 1 + sizeof(NDIS_802_11_FIXED_IEs) + pAdapter->ScanTab.BssEntry[i].VarIELen + Padding);
87768 + // For safety issue, we add 256 bytes just in case
87769 + BssBufSize += 256;
87770 + // Allocate the same size as passed from higher layer
87771 + pBuf = kmalloc(BssBufSize, MEM_ALLOC_FLAG);
87774 + Status = -ENOMEM;
87777 + // Init 802_11_BSSID_LIST_EX structure
87778 + NdisZeroMemory(pBuf, BssBufSize);
87779 + pBssidList = (PNDIS_802_11_BSSID_LIST_EX) pBuf;
87780 + pBssidList->NumberOfItems = pAdapter->ScanTab.BssNr;
87782 + // Calculate total buffer length
87783 + BssLen = 4; // Consist of NumberOfItems
87784 + // Point to start of NDIS_WLAN_BSSID_EX
87785 + // pPtr = pBuf + sizeof(ULONG);
87786 + pPtr = (PUCHAR) &pBssidList->Bssid[0];
87787 + for (i = 0; i < pAdapter->ScanTab.BssNr; i++)
87789 + pBss = (PNDIS_WLAN_BSSID_EX) pPtr;
87790 + NdisMoveMemory(&pBss->MacAddress, &pAdapter->ScanTab.BssEntry[i].Bssid, MAC_ADDR_LEN);
87791 + if ((pAdapter->ScanTab.BssEntry[i].Hidden == 1) && (pAdapter->StaCfg.bShowHiddenSSID == FALSE))
87794 + // We must return this SSID during 4way handshaking, otherwise Aegis will failed to parse WPA infomation
87795 + // and then failed to send EAPOl farame.
87797 + if ((pAdapter->StaCfg.AuthMode >= Ndis802_11AuthModeWPA) && (pAdapter->StaCfg.PortSecured != WPA_802_1X_PORT_SECURED))
87799 + pBss->Ssid.SsidLength = pAdapter->ScanTab.BssEntry[i].SsidLen;
87800 + NdisMoveMemory(pBss->Ssid.Ssid, pAdapter->ScanTab.BssEntry[i].Ssid, pAdapter->ScanTab.BssEntry[i].SsidLen);
87803 + pBss->Ssid.SsidLength = 0;
87807 + pBss->Ssid.SsidLength = pAdapter->ScanTab.BssEntry[i].SsidLen;
87808 + NdisMoveMemory(pBss->Ssid.Ssid, pAdapter->ScanTab.BssEntry[i].Ssid, pAdapter->ScanTab.BssEntry[i].SsidLen);
87810 + pBss->Privacy = pAdapter->ScanTab.BssEntry[i].Privacy;
87811 + pBss->Rssi = pAdapter->ScanTab.BssEntry[i].Rssi - pAdapter->BbpRssiToDbmDelta;
87812 + pBss->NetworkTypeInUse = NetworkTypeInUseSanity(&pAdapter->ScanTab.BssEntry[i]);
87813 + pBss->Configuration.Length = sizeof(NDIS_802_11_CONFIGURATION);
87814 + pBss->Configuration.BeaconPeriod = pAdapter->ScanTab.BssEntry[i].BeaconPeriod;
87815 + pBss->Configuration.ATIMWindow = pAdapter->ScanTab.BssEntry[i].AtimWin;
87817 + MAP_CHANNEL_ID_TO_KHZ(pAdapter->ScanTab.BssEntry[i].Channel, pBss->Configuration.DSConfig);
87819 + if (pAdapter->ScanTab.BssEntry[i].BssType == BSS_INFRA)
87820 + pBss->InfrastructureMode = Ndis802_11Infrastructure;
87822 + pBss->InfrastructureMode = Ndis802_11IBSS;
87824 + NdisMoveMemory(pBss->SupportedRates, pAdapter->ScanTab.BssEntry[i].SupRate, pAdapter->ScanTab.BssEntry[i].SupRateLen);
87825 + NdisMoveMemory(pBss->SupportedRates + pAdapter->ScanTab.BssEntry[i].SupRateLen,
87826 + pAdapter->ScanTab.BssEntry[i].ExtRate,
87827 + pAdapter->ScanTab.BssEntry[i].ExtRateLen);
87829 + if (pAdapter->ScanTab.BssEntry[i].VarIELen == 0)
87831 + pBss->IELength = sizeof(NDIS_802_11_FIXED_IEs);
87832 + NdisMoveMemory(pBss->IEs, &pAdapter->ScanTab.BssEntry[i].FixIEs, sizeof(NDIS_802_11_FIXED_IEs));
87833 + pPtr = pPtr + sizeof(NDIS_WLAN_BSSID_EX) - 1 + sizeof(NDIS_802_11_FIXED_IEs);
87837 + pBss->IELength = (ULONG)(sizeof(NDIS_802_11_FIXED_IEs) + pAdapter->ScanTab.BssEntry[i].VarIELen);
87838 + pPtr = pPtr + sizeof(NDIS_WLAN_BSSID_EX) - 1 + sizeof(NDIS_802_11_FIXED_IEs);
87839 + NdisMoveMemory(pBss->IEs, &pAdapter->ScanTab.BssEntry[i].FixIEs, sizeof(NDIS_802_11_FIXED_IEs));
87840 + NdisMoveMemory(pBss->IEs + sizeof(NDIS_802_11_FIXED_IEs), pAdapter->ScanTab.BssEntry[i].VarIEs, pAdapter->ScanTab.BssEntry[i].VarIELen);
87841 + pPtr += pAdapter->ScanTab.BssEntry[i].VarIELen;
87843 + pBss->Length = (ULONG)(sizeof(NDIS_WLAN_BSSID_EX) - 1 + sizeof(NDIS_802_11_FIXED_IEs) + pAdapter->ScanTab.BssEntry[i].VarIELen + Padding);
87845 +#if WIRELESS_EXT < 17
87846 + if ((BssLen + pBss->Length) < wrq->u.data.length)
87847 + BssLen += pBss->Length;
87850 + pBssidList->NumberOfItems = i;
87854 + BssLen += pBss->Length;
87858 +#if WIRELESS_EXT < 17
87859 + wrq->u.data.length = BssLen;
87861 + if (BssLen > wrq->u.data.length)
87863 + kfree(pBssidList);
87867 + wrq->u.data.length = BssLen;
87869 + Status = copy_to_user(wrq->u.data.pointer, pBssidList, BssLen);
87870 + kfree(pBssidList);
87872 + case OID_802_3_CURRENT_ADDRESS:
87873 + wrq->u.data.length = MAC_ADDR_LEN;
87874 + Status = copy_to_user(wrq->u.data.pointer, &pAdapter->CurrentAddress, wrq->u.data.length);
87876 + case OID_GEN_MEDIA_CONNECT_STATUS:
87877 + if (pAdapter->IndicateMediaState == NdisMediaStateConnected)
87878 + MediaState = NdisMediaStateConnected;
87880 + MediaState = NdisMediaStateDisconnected;
87882 + wrq->u.data.length = sizeof(NDIS_MEDIA_STATE);
87883 + Status = copy_to_user(wrq->u.data.pointer, &MediaState, wrq->u.data.length);
87885 + case OID_802_11_BSSID:
87887 + if (ATE_ON(pAdapter))
87889 + DBGPRINT(RT_DEBUG_TRACE, ("The driver is in ATE mode now\n"));
87890 + Status = NDIS_STATUS_RESOURCES;
87893 +#endif // RALINK_ATE //
87894 + if (INFRA_ON(pAdapter) || ADHOC_ON(pAdapter))
87896 + Status = copy_to_user(wrq->u.data.pointer, &pAdapter->CommonCfg.Bssid, sizeof(NDIS_802_11_MAC_ADDRESS));
87901 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_BSSID(=EMPTY)\n"));
87902 + Status = -ENOTCONN;
87905 + case OID_802_11_SSID:
87906 + NdisZeroMemory(&Ssid, sizeof(NDIS_802_11_SSID));
87907 + NdisZeroMemory(Ssid.Ssid, MAX_LEN_OF_SSID);
87908 + Ssid.SsidLength = pAdapter->CommonCfg.SsidLen;
87909 + memcpy(Ssid.Ssid, pAdapter->CommonCfg.Ssid, Ssid.SsidLength);
87910 + wrq->u.data.length = sizeof(NDIS_802_11_SSID);
87911 + Status = copy_to_user(wrq->u.data.pointer, &Ssid, wrq->u.data.length);
87912 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_SSID (Len=%d, ssid=%s)\n", Ssid.SsidLength,Ssid.Ssid));
87914 + case RT_OID_802_11_QUERY_LINK_STATUS:
87915 + pLinkStatus = (RT_802_11_LINK_STATUS *) kmalloc(sizeof(RT_802_11_LINK_STATUS), MEM_ALLOC_FLAG);
87918 + pLinkStatus->CurrTxRate = RateIdTo500Kbps[pAdapter->CommonCfg.TxRate]; // unit : 500 kbps
87919 + pLinkStatus->ChannelQuality = pAdapter->Mlme.ChannelQuality;
87920 + pLinkStatus->RxByteCount = pAdapter->RalinkCounters.ReceivedByteCount;
87921 + pLinkStatus->TxByteCount = pAdapter->RalinkCounters.TransmittedByteCount;
87922 + pLinkStatus->CentralChannel = pAdapter->CommonCfg.CentralChannel;
87923 + wrq->u.data.length = sizeof(RT_802_11_LINK_STATUS);
87924 + Status = copy_to_user(wrq->u.data.pointer, pLinkStatus, wrq->u.data.length);
87925 + kfree(pLinkStatus);
87926 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_QUERY_LINK_STATUS\n"));
87930 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_QUERY_LINK_STATUS(kmalloc failed)\n"));
87931 + Status = -EFAULT;
87934 + case OID_802_11_CONFIGURATION:
87935 + pConfiguration = (NDIS_802_11_CONFIGURATION *) kmalloc(sizeof(NDIS_802_11_CONFIGURATION), MEM_ALLOC_FLAG);
87936 + if (pConfiguration)
87938 + pConfiguration->Length = sizeof(NDIS_802_11_CONFIGURATION);
87939 + pConfiguration->BeaconPeriod = pAdapter->CommonCfg.BeaconPeriod;
87940 + pConfiguration->ATIMWindow = pAdapter->StaActive.AtimWin;
87941 + MAP_CHANNEL_ID_TO_KHZ(pAdapter->CommonCfg.Channel, pConfiguration->DSConfig);
87942 + wrq->u.data.length = sizeof(NDIS_802_11_CONFIGURATION);
87943 + Status = copy_to_user(wrq->u.data.pointer, pConfiguration, wrq->u.data.length);
87944 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_CONFIGURATION(BeaconPeriod=%ld,AtimW=%ld,Channel=%d) \n",
87945 + pConfiguration->BeaconPeriod, pConfiguration->ATIMWindow, pAdapter->CommonCfg.Channel));
87946 + kfree(pConfiguration);
87950 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_CONFIGURATION(kmalloc failed)\n"));
87951 + Status = -EFAULT;
87954 + case RT_OID_802_11_SNR_0:
87955 + if ((pAdapter->StaCfg.LastSNR0 > 0))
87957 + ulInfo = ((0xeb - pAdapter->StaCfg.LastSNR0) * 3) / 16 ;
87958 + wrq->u.data.length = sizeof(ulInfo);
87959 + Status = copy_to_user(wrq->u.data.pointer, &ulInfo, wrq->u.data.length);
87960 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_SNR_0(0x=%lx)\n", ulInfo));
87963 + Status = -EFAULT;
87965 + case RT_OID_802_11_SNR_1:
87966 + if ((pAdapter->Antenna.field.RxPath > 1) &&
87967 + (pAdapter->StaCfg.LastSNR1 > 0))
87969 + ulInfo = ((0xeb - pAdapter->StaCfg.LastSNR1) * 3) / 16 ;
87970 + wrq->u.data.length = sizeof(ulInfo);
87971 + Status = copy_to_user(wrq->u.data.pointer, &ulInfo, wrq->u.data.length);
87972 + DBGPRINT(RT_DEBUG_TRACE,("Query::RT_OID_802_11_SNR_1(0x=%lx)\n",ulInfo));
87975 + Status = -EFAULT;
87976 + DBGPRINT(RT_DEBUG_TRACE,("Query::RT_OID_802_11_SNR_1(pAdapter->StaCfg.LastSNR1=%d)\n",pAdapter->StaCfg.LastSNR1));
87978 + case OID_802_11_RSSI_TRIGGER:
87979 + ulInfo = pAdapter->StaCfg.RssiSample.LastRssi0 - pAdapter->BbpRssiToDbmDelta;
87980 + wrq->u.data.length = sizeof(ulInfo);
87981 + Status = copy_to_user(wrq->u.data.pointer, &ulInfo, wrq->u.data.length);
87982 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_RSSI_TRIGGER(=%ld)\n", ulInfo));
87984 + case OID_802_11_RSSI:
87985 + case RT_OID_802_11_RSSI:
87986 + ulInfo = pAdapter->StaCfg.RssiSample.LastRssi0;
87987 + wrq->u.data.length = sizeof(ulInfo);
87988 + Status = copy_to_user(wrq->u.data.pointer, &ulInfo, wrq->u.data.length);
87990 + case RT_OID_802_11_RSSI_1:
87991 + ulInfo = pAdapter->StaCfg.RssiSample.LastRssi1;
87992 + wrq->u.data.length = sizeof(ulInfo);
87993 + Status = copy_to_user(wrq->u.data.pointer, &ulInfo, wrq->u.data.length);
87995 + case RT_OID_802_11_RSSI_2:
87996 + ulInfo = pAdapter->StaCfg.RssiSample.LastRssi2;
87997 + wrq->u.data.length = sizeof(ulInfo);
87998 + Status = copy_to_user(wrq->u.data.pointer, &ulInfo, wrq->u.data.length);
88000 + case OID_802_11_STATISTICS:
88001 + pStatistics = (NDIS_802_11_STATISTICS *) kmalloc(sizeof(NDIS_802_11_STATISTICS), MEM_ALLOC_FLAG);
88004 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_STATISTICS \n"));
88005 + // add the most up-to-date h/w raw counters into software counters
88006 + NICUpdateRawCounters(pAdapter);
88008 + // Sanity check for calculation of sucessful count
88009 + if (pAdapter->WlanCounters.TransmittedFragmentCount.QuadPart < pAdapter->WlanCounters.RetryCount.QuadPart)
88010 + pAdapter->WlanCounters.TransmittedFragmentCount.QuadPart = pAdapter->WlanCounters.RetryCount.QuadPart;
88012 + pStatistics->TransmittedFragmentCount.QuadPart = pAdapter->WlanCounters.TransmittedFragmentCount.QuadPart;
88013 + pStatistics->MulticastTransmittedFrameCount.QuadPart = pAdapter->WlanCounters.MulticastTransmittedFrameCount.QuadPart;
88014 + pStatistics->FailedCount.QuadPart = pAdapter->WlanCounters.FailedCount.QuadPart;
88015 + pStatistics->RetryCount.QuadPart = pAdapter->WlanCounters.RetryCount.QuadPart;
88016 + pStatistics->MultipleRetryCount.QuadPart = pAdapter->WlanCounters.MultipleRetryCount.QuadPart;
88017 + pStatistics->RTSSuccessCount.QuadPart = pAdapter->WlanCounters.RTSSuccessCount.QuadPart;
88018 + pStatistics->RTSFailureCount.QuadPart = pAdapter->WlanCounters.RTSFailureCount.QuadPart;
88019 + pStatistics->ACKFailureCount.QuadPart = pAdapter->WlanCounters.ACKFailureCount.QuadPart;
88020 + pStatistics->FrameDuplicateCount.QuadPart = pAdapter->WlanCounters.FrameDuplicateCount.QuadPart;
88021 + pStatistics->ReceivedFragmentCount.QuadPart = pAdapter->WlanCounters.ReceivedFragmentCount.QuadPart;
88022 + pStatistics->MulticastReceivedFrameCount.QuadPart = pAdapter->WlanCounters.MulticastReceivedFrameCount.QuadPart;
88024 + pStatistics->FCSErrorCount = pAdapter->RalinkCounters.RealFcsErrCount;
88026 + pStatistics->FCSErrorCount.QuadPart = pAdapter->WlanCounters.FCSErrorCount.QuadPart;
88027 + pStatistics->FrameDuplicateCount.u.LowPart = pAdapter->WlanCounters.FrameDuplicateCount.u.LowPart / 100;
88029 + wrq->u.data.length = sizeof(NDIS_802_11_STATISTICS);
88030 + Status = copy_to_user(wrq->u.data.pointer, pStatistics, wrq->u.data.length);
88031 + kfree(pStatistics);
88035 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_STATISTICS(kmalloc failed)\n"));
88036 + Status = -EFAULT;
88039 + case OID_GEN_RCV_OK:
88040 + ulInfo = pAdapter->Counters8023.GoodReceives;
88041 + wrq->u.data.length = sizeof(ulInfo);
88042 + Status = copy_to_user(wrq->u.data.pointer, &ulInfo, wrq->u.data.length);
88044 + case OID_GEN_RCV_NO_BUFFER:
88045 + ulInfo = pAdapter->Counters8023.RxNoBuffer;
88046 + wrq->u.data.length = sizeof(ulInfo);
88047 + Status = copy_to_user(wrq->u.data.pointer, &ulInfo, wrq->u.data.length);
88049 + case RT_OID_802_11_PHY_MODE:
88050 + ulInfo = (ULONG)pAdapter->CommonCfg.PhyMode;
88051 + wrq->u.data.length = sizeof(ulInfo);
88052 + Status = copy_to_user(wrq->u.data.pointer, &ulInfo, wrq->u.data.length);
88053 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_PHY_MODE (=%ld)\n", ulInfo));
88055 + case RT_OID_802_11_STA_CONFIG:
88056 + pStaConfig = (RT_802_11_STA_CONFIG *) kmalloc(sizeof(RT_802_11_STA_CONFIG), MEM_ALLOC_FLAG);
88059 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_STA_CONFIG\n"));
88060 + pStaConfig->EnableTxBurst = pAdapter->CommonCfg.bEnableTxBurst;
88061 + pStaConfig->EnableTurboRate = 0;
88062 + pStaConfig->UseBGProtection = pAdapter->CommonCfg.UseBGProtection;
88063 + pStaConfig->UseShortSlotTime = pAdapter->CommonCfg.bUseShortSlotTime;
88064 + //pStaConfig->AdhocMode = pAdapter->StaCfg.AdhocMode;
88065 + pStaConfig->HwRadioStatus = (pAdapter->StaCfg.bHwRadio == TRUE) ? 1 : 0;
88066 + pStaConfig->Rsv1 = 0;
88067 + pStaConfig->SystemErrorBitmap = pAdapter->SystemErrorBitmap;
88068 + wrq->u.data.length = sizeof(RT_802_11_STA_CONFIG);
88069 + Status = copy_to_user(wrq->u.data.pointer, pStaConfig, wrq->u.data.length);
88070 + kfree(pStaConfig);
88074 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_STA_CONFIG(kmalloc failed)\n"));
88075 + Status = -EFAULT;
88078 + case OID_802_11_RTS_THRESHOLD:
88079 + RtsThresh = pAdapter->CommonCfg.RtsThreshold;
88080 + wrq->u.data.length = sizeof(RtsThresh);
88081 + Status = copy_to_user(wrq->u.data.pointer, &RtsThresh, wrq->u.data.length);
88082 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_RTS_THRESHOLD(=%ld)\n", RtsThresh));
88084 + case OID_802_11_FRAGMENTATION_THRESHOLD:
88085 + FragThresh = pAdapter->CommonCfg.FragmentThreshold;
88086 + if (pAdapter->CommonCfg.bUseZeroToDisableFragment == TRUE)
88088 + wrq->u.data.length = sizeof(FragThresh);
88089 + Status = copy_to_user(wrq->u.data.pointer, &FragThresh, wrq->u.data.length);
88090 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_FRAGMENTATION_THRESHOLD(=%ld)\n", FragThresh));
88092 + case OID_802_11_POWER_MODE:
88093 + PowerMode = pAdapter->StaCfg.WindowsPowerMode;
88094 + wrq->u.data.length = sizeof(PowerMode);
88095 + Status = copy_to_user(wrq->u.data.pointer, &PowerMode, wrq->u.data.length);
88096 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_POWER_MODE(=%d)\n", PowerMode));
88098 + case RT_OID_802_11_RADIO:
88099 + RadioState = (BOOLEAN) pAdapter->StaCfg.bSwRadio;
88100 + wrq->u.data.length = sizeof(RadioState);
88101 + Status = copy_to_user(wrq->u.data.pointer, &RadioState, wrq->u.data.length);
88102 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_QUERY_RADIO (=%d)\n", RadioState));
88104 + case OID_802_11_INFRASTRUCTURE_MODE:
88105 + if (pAdapter->StaCfg.BssType == BSS_ADHOC)
88106 + BssType = Ndis802_11IBSS;
88107 + else if (pAdapter->StaCfg.BssType == BSS_INFRA)
88108 + BssType = Ndis802_11Infrastructure;
88109 + else if (pAdapter->StaCfg.BssType == BSS_MONITOR)
88110 + BssType = Ndis802_11Monitor;
88112 + BssType = Ndis802_11AutoUnknown;
88114 + wrq->u.data.length = sizeof(BssType);
88115 + Status = copy_to_user(wrq->u.data.pointer, &BssType, wrq->u.data.length);
88116 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_INFRASTRUCTURE_MODE(=%d)\n", BssType));
88118 + case RT_OID_802_11_PREAMBLE:
88119 + PreamType = pAdapter->CommonCfg.TxPreamble;
88120 + wrq->u.data.length = sizeof(PreamType);
88121 + Status = copy_to_user(wrq->u.data.pointer, &PreamType, wrq->u.data.length);
88122 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_PREAMBLE(=%d)\n", PreamType));
88124 + case OID_802_11_AUTHENTICATION_MODE:
88125 + AuthMode = pAdapter->StaCfg.AuthMode;
88126 + wrq->u.data.length = sizeof(AuthMode);
88127 + Status = copy_to_user(wrq->u.data.pointer, &AuthMode, wrq->u.data.length);
88128 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_AUTHENTICATION_MODE(=%d)\n", AuthMode));
88130 + case OID_802_11_WEP_STATUS:
88131 + WepStatus = pAdapter->StaCfg.WepStatus;
88132 + wrq->u.data.length = sizeof(WepStatus);
88133 + Status = copy_to_user(wrq->u.data.pointer, &WepStatus, wrq->u.data.length);
88134 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_WEP_STATUS(=%d)\n", WepStatus));
88136 + case OID_802_11_TX_POWER_LEVEL:
88137 + wrq->u.data.length = sizeof(ULONG);
88138 + Status = copy_to_user(wrq->u.data.pointer, &pAdapter->CommonCfg.TxPower, wrq->u.data.length);
88139 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_TX_POWER_LEVEL %x\n",pAdapter->CommonCfg.TxPower));
88141 + case RT_OID_802_11_TX_POWER_LEVEL_1:
88142 + wrq->u.data.length = sizeof(ULONG);
88143 + Status = copy_to_user(wrq->u.data.pointer, &pAdapter->CommonCfg.TxPowerPercentage, wrq->u.data.length);
88144 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_TX_POWER_LEVEL_1 (=%ld)\n", pAdapter->CommonCfg.TxPowerPercentage));
88146 + case OID_802_11_NETWORK_TYPES_SUPPORTED:
88147 + if ((pAdapter->RfIcType == RFIC_2850) || (pAdapter->RfIcType == RFIC_2750))
88149 + NetworkTypeList[0] = 3; // NumberOfItems = 3
88150 + NetworkTypeList[1] = Ndis802_11DS; // NetworkType[1] = 11b
88151 + NetworkTypeList[2] = Ndis802_11OFDM24; // NetworkType[2] = 11g
88152 + NetworkTypeList[3] = Ndis802_11OFDM5; // NetworkType[3] = 11a
88153 + wrq->u.data.length = 16;
88154 + Status = copy_to_user(wrq->u.data.pointer, &NetworkTypeList[0], wrq->u.data.length);
88158 + NetworkTypeList[0] = 2; // NumberOfItems = 2
88159 + NetworkTypeList[1] = Ndis802_11DS; // NetworkType[1] = 11b
88160 + NetworkTypeList[2] = Ndis802_11OFDM24; // NetworkType[2] = 11g
88161 + wrq->u.data.length = 12;
88162 + Status = copy_to_user(wrq->u.data.pointer, &NetworkTypeList[0], wrq->u.data.length);
88164 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_NETWORK_TYPES_SUPPORTED\n"));
88166 + case OID_802_11_NETWORK_TYPE_IN_USE:
88167 + wrq->u.data.length = sizeof(ULONG);
88168 + if (pAdapter->CommonCfg.PhyMode == PHY_11A)
88169 + ulInfo = Ndis802_11OFDM5;
88170 + else if ((pAdapter->CommonCfg.PhyMode == PHY_11BG_MIXED) || (pAdapter->CommonCfg.PhyMode == PHY_11G))
88171 + ulInfo = Ndis802_11OFDM24;
88173 + ulInfo = Ndis802_11DS;
88174 + Status = copy_to_user(wrq->u.data.pointer, &ulInfo, wrq->u.data.length);
88176 + case RT_OID_802_11_QUERY_LAST_RX_RATE:
88177 + ulInfo = (ULONG)pAdapter->LastRxRate;
88178 + wrq->u.data.length = sizeof(ulInfo);
88179 + Status = copy_to_user(wrq->u.data.pointer, &ulInfo, wrq->u.data.length);
88180 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_QUERY_LAST_RX_RATE (=%ld)\n", ulInfo));
88182 + case RT_OID_802_11_QUERY_LAST_TX_RATE:
88183 + //ulInfo = (ULONG)pAdapter->LastTxRate;
88184 + ulInfo = (ULONG)pAdapter->MacTab.Content[BSSID_WCID].HTPhyMode.word;
88185 + wrq->u.data.length = sizeof(ulInfo);
88186 + Status = copy_to_user(wrq->u.data.pointer, &ulInfo, wrq->u.data.length);
88187 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_QUERY_LAST_TX_RATE (=%lx)\n", ulInfo));
88189 + case RT_OID_802_11_QUERY_EEPROM_VERSION:
88190 + wrq->u.data.length = sizeof(ULONG);
88191 + Status = copy_to_user(wrq->u.data.pointer, &pAdapter->EepromVersion, wrq->u.data.length);
88193 + case RT_OID_802_11_QUERY_FIRMWARE_VERSION:
88194 + wrq->u.data.length = sizeof(ULONG);
88195 + Status = copy_to_user(wrq->u.data.pointer, &pAdapter->FirmwareVersion, wrq->u.data.length);
88197 + case RT_OID_802_11_QUERY_NOISE_LEVEL:
88198 + wrq->u.data.length = sizeof(UCHAR);
88199 + Status = copy_to_user(wrq->u.data.pointer, &pAdapter->BbpWriteLatch[66], wrq->u.data.length);
88200 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_QUERY_NOISE_LEVEL (=%d)\n", pAdapter->BbpWriteLatch[66]));
88202 + case RT_OID_802_11_EXTRA_INFO:
88203 + wrq->u.data.length = sizeof(ULONG);
88204 + Status = copy_to_user(wrq->u.data.pointer, &pAdapter->ExtraInfo, wrq->u.data.length);
88205 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_EXTRA_INFO (=%ld)\n", pAdapter->ExtraInfo));
88207 + case RT_OID_WE_VERSION_COMPILED:
88208 + wrq->u.data.length = sizeof(UINT);
88209 + we_version_compiled = WIRELESS_EXT;
88210 + Status = copy_to_user(wrq->u.data.pointer, &we_version_compiled, wrq->u.data.length);
88212 + case RT_OID_802_11_QUERY_APSD_SETTING:
88213 + apsd = (pAdapter->CommonCfg.bAPSDCapable | (pAdapter->CommonCfg.bAPSDAC_BE << 1) | (pAdapter->CommonCfg.bAPSDAC_BK << 2)
88214 + | (pAdapter->CommonCfg.bAPSDAC_VI << 3) | (pAdapter->CommonCfg.bAPSDAC_VO << 4) | (pAdapter->CommonCfg.MaxSPLength << 5));
88216 + wrq->u.data.length = sizeof(ULONG);
88217 + Status = copy_to_user(wrq->u.data.pointer, &apsd, wrq->u.data.length);
88218 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_QUERY_APSD_SETTING (=0x%lx,APSDCap=%d,AC_BE=%d,AC_BK=%d,AC_VI=%d,AC_VO=%d,MAXSPLen=%d)\n",
88219 + apsd,pAdapter->CommonCfg.bAPSDCapable,pAdapter->CommonCfg.bAPSDAC_BE,pAdapter->CommonCfg.bAPSDAC_BK,pAdapter->CommonCfg.bAPSDAC_VI,pAdapter->CommonCfg.bAPSDAC_VO,pAdapter->CommonCfg.MaxSPLength));
88221 + case RT_OID_802_11_QUERY_APSD_PSM:
88222 + wrq->u.data.length = sizeof(ULONG);
88223 + Status = copy_to_user(wrq->u.data.pointer, &pAdapter->CommonCfg.bAPSDForcePowerSave, wrq->u.data.length);
88224 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_QUERY_APSD_PSM (=%d)\n", pAdapter->CommonCfg.bAPSDForcePowerSave));
88226 + case RT_OID_802_11_QUERY_WMM:
88227 + wrq->u.data.length = sizeof(BOOLEAN);
88228 + Status = copy_to_user(wrq->u.data.pointer, &pAdapter->CommonCfg.bWmmCapable, wrq->u.data.length);
88229 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_QUERY_WMM (=%d)\n", pAdapter->CommonCfg.bWmmCapable));
88231 +#ifdef WPA_SUPPLICANT_SUPPORT
88232 + case RT_OID_NEW_DRIVER:
88234 + UCHAR enabled = 1;
88235 + wrq->u.data.length = sizeof(UCHAR);
88236 + Status = copy_to_user(wrq->u.data.pointer, &enabled, wrq->u.data.length);
88237 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_NEW_DRIVER (=%d)\n", enabled));
88240 + case RT_OID_WPA_SUPPLICANT_SUPPORT:
88241 + wrq->u.data.length = sizeof(UCHAR);
88242 + Status = copy_to_user(wrq->u.data.pointer, &pAdapter->StaCfg.WpaSupplicantUP, wrq->u.data.length);
88243 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_WPA_SUPPLICANT_SUPPORT (=%d)\n", pAdapter->StaCfg.WpaSupplicantUP));
88245 +#endif // WPA_SUPPLICANT_SUPPORT //
88247 + case RT_OID_DRIVER_DEVICE_NAME:
88248 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_DRIVER_DEVICE_NAME \n"));
88249 + wrq->u.data.length = 16;
88250 + if (copy_to_user(wrq->u.data.pointer, pAdapter->StaCfg.dev_name, wrq->u.data.length))
88252 + Status = -EFAULT;
88255 + case RT_OID_802_11_QUERY_HT_PHYMODE:
88256 + pHTPhyMode = (OID_SET_HT_PHYMODE *) kmalloc(sizeof(OID_SET_HT_PHYMODE), MEM_ALLOC_FLAG);
88259 + pHTPhyMode->PhyMode = pAdapter->CommonCfg.PhyMode;
88260 + pHTPhyMode->HtMode = (UCHAR)pAdapter->MacTab.Content[BSSID_WCID].HTPhyMode.field.MODE;
88261 + pHTPhyMode->BW = (UCHAR)pAdapter->MacTab.Content[BSSID_WCID].HTPhyMode.field.BW;
88262 + pHTPhyMode->MCS= (UCHAR)pAdapter->MacTab.Content[BSSID_WCID].HTPhyMode.field.MCS;
88263 + pHTPhyMode->SHORTGI= (UCHAR)pAdapter->MacTab.Content[BSSID_WCID].HTPhyMode.field.ShortGI;
88264 + pHTPhyMode->STBC= (UCHAR)pAdapter->MacTab.Content[BSSID_WCID].HTPhyMode.field.STBC;
88266 + pHTPhyMode->ExtOffset = ((pAdapter->CommonCfg.CentralChannel < pAdapter->CommonCfg.Channel) ? (EXTCHA_BELOW) : (EXTCHA_ABOVE));
88267 + wrq->u.data.length = sizeof(OID_SET_HT_PHYMODE);
88268 + if (copy_to_user(wrq->u.data.pointer, pHTPhyMode, wrq->u.data.length))
88270 + Status = -EFAULT;
88272 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_QUERY_HT_PHYMODE (PhyMode = %d, MCS =%d, BW = %d, STBC = %d, ExtOffset=%d)\n",
88273 + pHTPhyMode->HtMode, pHTPhyMode->MCS, pHTPhyMode->BW, pHTPhyMode->STBC, pHTPhyMode->ExtOffset));
88274 + DBGPRINT(RT_DEBUG_TRACE, (" MlmeUpdateTxRates (.word = %x )\n", pAdapter->MacTab.Content[BSSID_WCID].HTPhyMode.word));
88278 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_STA_CONFIG(kmalloc failed)\n"));
88279 + Status = -EFAULT;
88282 + case RT_OID_802_11_COUNTRY_REGION:
88283 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_COUNTRY_REGION \n"));
88284 + wrq->u.data.length = sizeof(ulInfo);
88285 + ulInfo = pAdapter->CommonCfg.CountryRegionForABand;
88286 + ulInfo = (ulInfo << 8)|(pAdapter->CommonCfg.CountryRegion);
88287 + if (copy_to_user(wrq->u.data.pointer, &ulInfo, wrq->u.data.length))
88289 + Status = -EFAULT;
88292 + case RT_OID_802_11_QUERY_DAT_HT_PHYMODE:
88293 + pHTPhyMode = (OID_SET_HT_PHYMODE *) kmalloc(sizeof(OID_SET_HT_PHYMODE), MEM_ALLOC_FLAG);
88296 + pHTPhyMode->PhyMode = pAdapter->CommonCfg.PhyMode;
88297 + pHTPhyMode->HtMode = (UCHAR)pAdapter->CommonCfg.RegTransmitSetting.field.HTMODE;
88298 + pHTPhyMode->BW = (UCHAR)pAdapter->CommonCfg.RegTransmitSetting.field.BW;
88299 + pHTPhyMode->MCS= (UCHAR)pAdapter->StaCfg.DesiredTransmitSetting.field.MCS;
88300 + pHTPhyMode->SHORTGI= (UCHAR)pAdapter->CommonCfg.RegTransmitSetting.field.ShortGI;
88301 + pHTPhyMode->STBC= (UCHAR)pAdapter->CommonCfg.RegTransmitSetting.field.STBC;
88303 + wrq->u.data.length = sizeof(OID_SET_HT_PHYMODE);
88304 + if (copy_to_user(wrq->u.data.pointer, pHTPhyMode, wrq->u.data.length))
88306 + Status = -EFAULT;
88308 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_QUERY_HT_PHYMODE (PhyMode = %d, MCS =%d, BW = %d, STBC = %d, ExtOffset=%d)\n",
88309 + pHTPhyMode->HtMode, pHTPhyMode->MCS, pHTPhyMode->BW, pHTPhyMode->STBC, pHTPhyMode->ExtOffset));
88310 + DBGPRINT(RT_DEBUG_TRACE, (" MlmeUpdateTxRates (.word = %x )\n", pAdapter->MacTab.Content[BSSID_WCID].HTPhyMode.word));
88314 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_STA_CONFIG(kmalloc failed)\n"));
88315 + Status = -EFAULT;
88318 + case RT_OID_QUERY_MULTIPLE_CARD_SUPPORT:
88319 + wrq->u.data.length = sizeof(UCHAR);
88321 +#ifdef MULTIPLE_CARD_SUPPORT
88323 +#endif // MULTIPLE_CARD_SUPPORT //
88324 + if (copy_to_user(wrq->u.data.pointer, &i, wrq->u.data.length))
88326 + Status = -EFAULT;
88328 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_QUERY_MULTIPLE_CARD_SUPPORT(=%d) \n", i));
88330 +#ifdef SNMP_SUPPORT
88331 + case RT_OID_802_11_MAC_ADDRESS:
88332 + wrq->u.data.length = MAC_ADDR_LEN;
88333 + Status = copy_to_user(wrq->u.data.pointer, &pAdapter->CurrentAddress, wrq->u.data.length);
88336 + case RT_OID_802_11_MANUFACTUREROUI:
88337 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_MANUFACTUREROUI \n"));
88338 + wrq->u.data.length = ManufacturerOUI_LEN;
88339 + Status = copy_to_user(wrq->u.data.pointer, &pAdapter->CurrentAddress, wrq->u.data.length);
88342 + case RT_OID_802_11_MANUFACTURERNAME:
88343 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_MANUFACTURERNAME \n"));
88344 + wrq->u.data.length = strlen(ManufacturerNAME);
88345 + Status = copy_to_user(wrq->u.data.pointer, ManufacturerNAME, wrq->u.data.length);
88348 + case RT_OID_802_11_RESOURCETYPEIDNAME:
88349 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_RESOURCETYPEIDNAME \n"));
88350 + wrq->u.data.length = strlen(ResourceTypeIdName);
88351 + Status = copy_to_user(wrq->u.data.pointer, ResourceTypeIdName, wrq->u.data.length);
88354 + case RT_OID_802_11_PRIVACYOPTIONIMPLEMENTED:
88355 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_PRIVACYOPTIONIMPLEMENTED \n"));
88356 + ulInfo = 1; // 1 is support wep else 2 is not support.
88357 + wrq->u.data.length = sizeof(ulInfo);
88358 + Status = copy_to_user(wrq->u.data.pointer, &ulInfo, wrq->u.data.length);
88361 + case RT_OID_802_11_POWERMANAGEMENTMODE:
88362 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_POWERMANAGEMENTMODE \n"));
88363 + if (pAdapter->StaCfg.Psm == PSMP_ACTION)
88364 + ulInfo = 1; // 1 is power active else 2 is power save.
88368 + wrq->u.data.length = sizeof(ulInfo);
88369 + Status = copy_to_user(wrq->u.data.pointer, &ulInfo, wrq->u.data.length);
88372 + case OID_802_11_WEPDEFAULTKEYVALUE:
88373 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_WEPDEFAULTKEYVALUE \n"));
88374 + //KeyIdxValue.KeyIdx = pAd->PortCfg.MBSSID[pAd->IoctlIF].DefaultKeyId;
88375 + pKeyIdxValue = wrq->u.data.pointer;
88376 + DBGPRINT(RT_DEBUG_TRACE,("KeyIdxValue.KeyIdx = %d, \n",pKeyIdxValue->KeyIdx));
88377 + valueLen = pAdapter->SharedKey[BSS0][pAdapter->StaCfg.DefaultKeyId].KeyLen;
88378 + NdisMoveMemory(pKeyIdxValue->Value,
88379 + &pAdapter->SharedKey[BSS0][pAdapter->StaCfg.DefaultKeyId].Key,
88381 + pKeyIdxValue->Value[valueLen]='\0';
88383 + wrq->u.data.length = sizeof(DefaultKeyIdxValue);
88385 + Status = copy_to_user(wrq->u.data.pointer, pKeyIdxValue, wrq->u.data.length);
88386 + DBGPRINT(RT_DEBUG_TRACE,("DefaultKeyId = %d, total len = %d, str len=%d, KeyValue= %02x %02x %02x %02x \n", pAdapter->StaCfg.DefaultKeyId, wrq->u.data.length, pAdapter->SharedKey[BSS0][pAdapter->StaCfg.DefaultKeyId].KeyLen,
88387 + pAdapter->SharedKey[BSS0][0].Key[0],
88388 + pAdapter->SharedKey[BSS0][1].Key[0],
88389 + pAdapter->SharedKey[BSS0][2].Key[0],
88390 + pAdapter->SharedKey[BSS0][3].Key[0]));
88393 + case OID_802_11_WEPDEFAULTKEYID:
88394 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_WEPDEFAULTKEYID \n"));
88395 + wrq->u.data.length = sizeof(UCHAR);
88396 + Status = copy_to_user(wrq->u.data.pointer, &pAdapter->StaCfg.DefaultKeyId, wrq->u.data.length);
88397 + DBGPRINT(RT_DEBUG_TRACE, ("DefaultKeyId =%d \n", pAdapter->StaCfg.DefaultKeyId));
88400 + case RT_OID_802_11_WEPKEYMAPPINGLENGTH:
88401 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_WEPKEYMAPPINGLENGTH \n"));
88402 + wrq->u.data.length = sizeof(UCHAR);
88403 + Status = copy_to_user(wrq->u.data.pointer,
88404 + &pAdapter->SharedKey[BSS0][pAdapter->StaCfg.DefaultKeyId].KeyLen,
88405 + wrq->u.data.length);
88408 + case OID_802_11_SHORTRETRYLIMIT:
88409 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_SHORTRETRYLIMIT \n"));
88410 + wrq->u.data.length = sizeof(ULONG);
88411 + RTMP_IO_READ32(pAdapter, TX_RTY_CFG, &tx_rty_cfg.word);
88412 + ShortRetryLimit = tx_rty_cfg.field.ShortRtyLimit;
88413 + DBGPRINT(RT_DEBUG_TRACE, ("ShortRetryLimit =%ld, tx_rty_cfg.field.ShortRetryLimit=%d\n", ShortRetryLimit, tx_rty_cfg.field.ShortRtyLimit));
88414 + Status = copy_to_user(wrq->u.data.pointer, &ShortRetryLimit, wrq->u.data.length);
88417 + case OID_802_11_LONGRETRYLIMIT:
88418 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_LONGRETRYLIMIT \n"));
88419 + wrq->u.data.length = sizeof(ULONG);
88420 + RTMP_IO_READ32(pAdapter, TX_RTY_CFG, &tx_rty_cfg.word);
88421 + LongRetryLimit = tx_rty_cfg.field.LongRtyLimit;
88422 + DBGPRINT(RT_DEBUG_TRACE, ("LongRetryLimit =%ld, tx_rty_cfg.field.LongRtyLimit=%d\n", LongRetryLimit, tx_rty_cfg.field.LongRtyLimit));
88423 + Status = copy_to_user(wrq->u.data.pointer, &LongRetryLimit, wrq->u.data.length);
88426 + case RT_OID_802_11_PRODUCTID:
88427 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_PRODUCTID \n"));
88430 + sprintf(tmp, "%04x %04x\n", ((POS_COOKIE)pAdapter->OS_Cookie)->pUsb_Dev->descriptor.idVendor ,((POS_COOKIE)pAdapter->OS_Cookie)->pUsb_Dev->descriptor.idProduct);
88432 +#endif // RT2870 //
88433 + wrq->u.data.length = strlen(tmp);
88434 + Status = copy_to_user(wrq->u.data.pointer, tmp, wrq->u.data.length);
88437 + case RT_OID_802_11_MANUFACTUREID:
88438 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_MANUFACTUREID \n"));
88439 + wrq->u.data.length = strlen(ManufacturerNAME);
88440 + Status = copy_to_user(wrq->u.data.pointer, ManufacturerNAME, wrq->u.data.length);
88443 + case OID_802_11_CURRENTCHANNEL:
88444 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_CURRENTCHANNEL \n"));
88445 + wrq->u.data.length = sizeof(UCHAR);
88446 + DBGPRINT(RT_DEBUG_TRACE, ("sizeof UCHAR=%d, channel=%d \n", sizeof(UCHAR), pAdapter->CommonCfg.Channel));
88447 + Status = copy_to_user(wrq->u.data.pointer, &pAdapter->CommonCfg.Channel, wrq->u.data.length);
88448 + DBGPRINT(RT_DEBUG_TRACE, ("Status=%d\n", Status));
88450 +#endif //SNMP_SUPPORT
88452 + case OID_802_11_BUILD_CHANNEL_EX:
88455 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_BUILD_CHANNEL_EX \n"));
88456 + wrq->u.data.length = sizeof(UCHAR);
88457 +#ifdef EXT_BUILD_CHANNEL_LIST
88458 + DBGPRINT(RT_DEBUG_TRACE, ("Support EXT_BUILD_CHANNEL_LIST.\n"));
88461 + DBGPRINT(RT_DEBUG_TRACE, ("Doesn't support EXT_BUILD_CHANNEL_LIST.\n"));
88463 +#endif // EXT_BUILD_CHANNEL_LIST //
88464 + Status = copy_to_user(wrq->u.data.pointer, &value, 1);
88465 + DBGPRINT(RT_DEBUG_TRACE, ("Status=%d\n", Status));
88469 + case OID_802_11_GET_CH_LIST:
88471 + PRT_CHANNEL_LIST_INFO pChListBuf;
88473 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_GET_CH_LIST \n"));
88474 + if (pAdapter->ChannelListNum == 0)
88476 + wrq->u.data.length = 0;
88480 + pChListBuf = (RT_CHANNEL_LIST_INFO *) kmalloc(sizeof(RT_CHANNEL_LIST_INFO), MEM_ALLOC_FLAG);
88481 + if (pChListBuf == NULL)
88483 + wrq->u.data.length = 0;
88487 + pChListBuf->ChannelListNum = pAdapter->ChannelListNum;
88488 + for (i = 0; i < pChListBuf->ChannelListNum; i++)
88489 + pChListBuf->ChannelList[i] = pAdapter->ChannelList[i].Channel;
88491 + wrq->u.data.length = sizeof(RT_CHANNEL_LIST_INFO);
88492 + Status = copy_to_user(wrq->u.data.pointer, pChListBuf, sizeof(RT_CHANNEL_LIST_INFO));
88493 + DBGPRINT(RT_DEBUG_TRACE, ("Status=%d\n", Status));
88496 + kfree(pChListBuf);
88500 + case OID_802_11_GET_COUNTRY_CODE:
88501 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_GET_COUNTRY_CODE \n"));
88502 + wrq->u.data.length = 2;
88503 + Status = copy_to_user(wrq->u.data.pointer, &pAdapter->CommonCfg.CountryCode, 2);
88504 + DBGPRINT(RT_DEBUG_TRACE, ("Status=%d\n", Status));
88507 + case OID_802_11_GET_CHANNEL_GEOGRAPHY:
88508 + DBGPRINT(RT_DEBUG_TRACE, ("Query::OID_802_11_GET_CHANNEL_GEOGRAPHY \n"));
88509 + wrq->u.data.length = 1;
88510 + Status = copy_to_user(wrq->u.data.pointer, &pAdapter->CommonCfg.Geography, 1);
88511 + DBGPRINT(RT_DEBUG_TRACE, ("Status=%d\n", Status));
88515 +#ifdef QOS_DLS_SUPPORT
88516 + case RT_OID_802_11_QUERY_DLS:
88517 + wrq->u.data.length = sizeof(BOOLEAN);
88518 + Status = copy_to_user(wrq->u.data.pointer, &pAdapter->CommonCfg.bDLSCapable, wrq->u.data.length);
88519 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_QUERY_DLS(=%d)\n", pAdapter->CommonCfg.bDLSCapable));
88522 + case RT_OID_802_11_QUERY_DLS_PARAM:
88524 + PRT_802_11_DLS_INFO pDlsInfo = kmalloc(sizeof(RT_802_11_DLS_INFO), GFP_ATOMIC);
88525 + if (pDlsInfo == NULL)
88528 + for (i=0; i<MAX_NUM_OF_DLS_ENTRY; i++)
88530 + RTMPMoveMemory(&pDlsInfo->Entry[i], &pAdapter->StaCfg.DLSEntry[i], sizeof(RT_802_11_DLS_UI));
88533 + pDlsInfo->num = MAX_NUM_OF_DLS_ENTRY;
88534 + wrq->u.data.length = sizeof(RT_802_11_DLS_INFO);
88535 + Status = copy_to_user(wrq->u.data.pointer, pDlsInfo, wrq->u.data.length);
88536 + DBGPRINT(RT_DEBUG_TRACE, ("Query::RT_OID_802_11_QUERY_DLS_PARAM\n"));
88542 +#endif // QOS_DLS_SUPPORT //
88544 + DBGPRINT(RT_DEBUG_TRACE, ("Query::unknown IOCTL's subcmd = 0x%08x\n", cmd));
88545 + Status = -EOPNOTSUPP;
88551 +INT rt28xx_sta_ioctl(
88552 + IN struct net_device *net_dev,
88553 + IN OUT struct ifreq *rq,
88557 + VIRTUAL_ADAPTER *pVirtualAd = NULL;
88558 + RTMP_ADAPTER *pAd = NULL;
88559 + struct iwreq *wrq = (struct iwreq *) rq;
88560 + BOOLEAN StateMachineTouched = FALSE;
88561 + INT Status = NDIS_STATUS_SUCCESS;
88564 + if (net_dev->priv_flags == INT_MAIN)
88566 + pAd = net_dev->ml_priv;
88570 + pVirtualAd = net_dev->ml_priv;
88571 + pAd = pVirtualAd->RtmpDev->ml_priv;
88573 + pObj = (POS_COOKIE) pAd->OS_Cookie;
88577 + /* if 1st open fail, pAd will be free;
88578 + So the net_dev->ml_priv will be NULL in 2rd open */
88579 + return -ENETDOWN;
88582 + //check if the interface is down
88583 + if(!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_INTERRUPT_IN_USE))
88585 +#ifdef CONFIG_APSTA_MIXED_SUPPORT
88586 + if (wrq->u.data.pointer == NULL)
88591 + if (strstr(wrq->u.data.pointer, "OpMode") == NULL)
88592 +#endif // CONFIG_APSTA_MIXED_SUPPORT //
88594 + DBGPRINT(RT_DEBUG_TRACE, ("INFO::Network is down!\n"));
88595 + return -ENETDOWN;
88599 + { // determine this ioctl command is comming from which interface.
88600 + pObj->ioctl_if_type = INT_MAIN;
88601 + pObj->ioctl_if = MAIN_MBSSID;
88607 +#ifdef RALINK_28xx_QA
88608 + case RTPRIV_IOCTL_ATE:
88610 + RtmpDoAte(pAd, wrq);
88613 +#endif // RALINK_28xx_QA //
88614 +#endif // RALINK_ATE //
88615 + case SIOCGIFHWADDR:
88616 + DBGPRINT(RT_DEBUG_TRACE, ("IOCTL::SIOCGIFHWADDR\n"));
88617 + memcpy(wrq->u.name, pAd->CurrentAddress, ETH_ALEN);
88619 + case SIOCGIWNAME:
88621 + char *name=&wrq->u.name[0];
88622 + rt_ioctl_giwname(net_dev, NULL, name, NULL);
88625 + case SIOCGIWESSID: //Get ESSID
88627 + struct iw_point *essid=&wrq->u.essid;
88628 + rt_ioctl_giwessid(net_dev, NULL, essid, essid->pointer);
88631 + case SIOCSIWESSID: //Set ESSID
88633 + struct iw_point *essid=&wrq->u.essid;
88634 + rt_ioctl_siwessid(net_dev, NULL, essid, essid->pointer);
88637 + case SIOCSIWNWID: // set network id (the cell)
88638 + case SIOCGIWNWID: // get network id
88639 + Status = -EOPNOTSUPP;
88641 + case SIOCSIWFREQ: //set channel/frequency (Hz)
88643 + struct iw_freq *freq=&wrq->u.freq;
88644 + rt_ioctl_siwfreq(net_dev, NULL, freq, NULL);
88647 + case SIOCGIWFREQ: // get channel/frequency (Hz)
88649 + struct iw_freq *freq=&wrq->u.freq;
88650 + rt_ioctl_giwfreq(net_dev, NULL, freq, NULL);
88653 + case SIOCSIWNICKN: //set node name/nickname
88655 + struct iw_point *data=&wrq->u.data;
88656 + rt_ioctl_siwnickn(net_dev, NULL, data, NULL);
88659 + case SIOCGIWNICKN: //get node name/nickname
88661 + struct iw_point *data=&wrq->u.data;
88662 + rt_ioctl_giwnickn(net_dev, NULL, data, NULL);
88665 + case SIOCGIWRATE: //get default bit rate (bps)
88666 + rt_ioctl_giwrate(net_dev, NULL, &wrq->u, NULL);
88668 + case SIOCSIWRATE: //set default bit rate (bps)
88669 + rt_ioctl_siwrate(net_dev, NULL, &wrq->u, NULL);
88671 + case SIOCGIWRTS: // get RTS/CTS threshold (bytes)
88673 + struct iw_param *rts=&wrq->u.rts;
88674 + rt_ioctl_giwrts(net_dev, NULL, rts, NULL);
88677 + case SIOCSIWRTS: //set RTS/CTS threshold (bytes)
88679 + struct iw_param *rts=&wrq->u.rts;
88680 + rt_ioctl_siwrts(net_dev, NULL, rts, NULL);
88683 + case SIOCGIWFRAG: //get fragmentation thr (bytes)
88685 + struct iw_param *frag=&wrq->u.frag;
88686 + rt_ioctl_giwfrag(net_dev, NULL, frag, NULL);
88689 + case SIOCSIWFRAG: //set fragmentation thr (bytes)
88691 + struct iw_param *frag=&wrq->u.frag;
88692 + rt_ioctl_siwfrag(net_dev, NULL, frag, NULL);
88695 + case SIOCGIWENCODE: //get encoding token & mode
88697 + struct iw_point *erq=&wrq->u.encoding;
88699 + rt_ioctl_giwencode(net_dev, NULL, erq, erq->pointer);
88702 + case SIOCSIWENCODE: //set encoding token & mode
88704 + struct iw_point *erq=&wrq->u.encoding;
88706 + rt_ioctl_siwencode(net_dev, NULL, erq, erq->pointer);
88709 + case SIOCGIWAP: //get access point MAC addresses
88711 + struct sockaddr *ap_addr=&wrq->u.ap_addr;
88712 + rt_ioctl_giwap(net_dev, NULL, ap_addr, ap_addr->sa_data);
88715 + case SIOCSIWAP: //set access point MAC addresses
88717 + struct sockaddr *ap_addr=&wrq->u.ap_addr;
88718 + rt_ioctl_siwap(net_dev, NULL, ap_addr, ap_addr->sa_data);
88721 + case SIOCGIWMODE: //get operation mode
88723 + __u32 *mode=&wrq->u.mode;
88724 + rt_ioctl_giwmode(net_dev, NULL, mode, NULL);
88727 + case SIOCSIWMODE: //set operation mode
88729 + __u32 *mode=&wrq->u.mode;
88730 + rt_ioctl_siwmode(net_dev, NULL, mode, NULL);
88733 + case SIOCGIWSENS: //get sensitivity (dBm)
88734 + case SIOCSIWSENS: //set sensitivity (dBm)
88735 + case SIOCGIWPOWER: //get Power Management settings
88736 + case SIOCSIWPOWER: //set Power Management settings
88737 + case SIOCGIWTXPOW: //get transmit power (dBm)
88738 + case SIOCSIWTXPOW: //set transmit power (dBm)
88739 + case SIOCGIWRANGE: //Get range of parameters
88740 + case SIOCGIWRETRY: //get retry limits and lifetime
88741 + case SIOCSIWRETRY: //set retry limits and lifetime
88742 + Status = -EOPNOTSUPP;
88744 + case RT_PRIV_IOCTL:
88745 + case RT_PRIV_IOCTL_EXT:
88746 + subcmd = wrq->u.data.flags;
88747 + if( subcmd & OID_GET_SET_TOGGLE)
88748 + Status = RTMPSetInformation(pAd, rq, subcmd);
88750 + Status = RTMPQueryInformation(pAd, rq, subcmd);
88752 + case SIOCGIWPRIV:
88753 + if (wrq->u.data.pointer)
88755 + if ( access_ok(VERIFY_WRITE, wrq->u.data.pointer, sizeof(privtab)) != TRUE)
88757 + wrq->u.data.length = sizeof(privtab) / sizeof(privtab[0]);
88758 + if (copy_to_user(wrq->u.data.pointer, privtab, sizeof(privtab)))
88759 + Status = -EFAULT;
88762 + case RTPRIV_IOCTL_SET:
88763 + if(access_ok(VERIFY_READ, wrq->u.data.pointer, wrq->u.data.length) != TRUE)
88765 + rt_ioctl_setparam(net_dev, NULL, NULL, wrq->u.data.pointer);
88767 + case RTPRIV_IOCTL_GSITESURVEY:
88768 + RTMPIoctlGetSiteSurvey(pAd, wrq);
88771 + case RTPRIV_IOCTL_MAC:
88772 + RTMPIoctlMAC(pAd, wrq);
88774 + case RTPRIV_IOCTL_E2P:
88775 + RTMPIoctlE2PROM(pAd, wrq);
88778 + case RTPRIV_IOCTL_RF:
88779 + RTMPIoctlRF(pAd, wrq);
88781 +#endif // RT30xx //
88783 + case SIOCETHTOOL:
88786 + DBGPRINT(RT_DEBUG_ERROR, ("IOCTL::unknown IOCTL's cmd = 0x%08x\n", cmd));
88787 + Status = -EOPNOTSUPP;
88791 + if(StateMachineTouched) // Upper layer sent a MLME-related operations
88792 + RT28XX_MLME_HANDLER(pAd);
88798 + ==========================================================================
88802 + TRUE if all parameters are OK, FALSE otherwise
88803 + ==========================================================================
88805 +INT Set_SSID_Proc(
88806 + IN PRTMP_ADAPTER pAdapter,
88809 + NDIS_802_11_SSID Ssid, *pSsid=NULL;
88810 + BOOLEAN StateMachineTouched = FALSE;
88811 + int success = TRUE;
88813 + if( strlen(arg) <= MAX_LEN_OF_SSID)
88815 + NdisZeroMemory(&Ssid, sizeof(NDIS_802_11_SSID));
88816 + if (strlen(arg) != 0)
88818 + NdisMoveMemory(Ssid.Ssid, arg, strlen(arg));
88819 + Ssid.SsidLength = strlen(arg);
88823 + Ssid.SsidLength = 0;
88824 + memcpy(Ssid.Ssid, "", 0);
88825 + pAdapter->StaCfg.BssType = BSS_INFRA;
88826 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeOpen;
88827 + pAdapter->StaCfg.WepStatus = Ndis802_11EncryptionDisabled;
88831 + if (pAdapter->Mlme.CntlMachine.CurrState != CNTL_IDLE)
88833 + RT28XX_MLME_RESET_STATE_MACHINE(pAdapter);
88834 + DBGPRINT(RT_DEBUG_TRACE, ("!!! MLME busy, reset MLME state machine !!!\n"));
88837 + pAdapter->MlmeAux.CurrReqIsFromNdis = TRUE;
88838 + pAdapter->StaCfg.bScanReqIsFromWebUI = FALSE;
88839 + pAdapter->bConfigChanged = TRUE;
88841 + MlmeEnqueue(pAdapter,
88842 + MLME_CNTL_STATE_MACHINE,
88844 + sizeof(NDIS_802_11_SSID),
88847 + StateMachineTouched = TRUE;
88848 + DBGPRINT(RT_DEBUG_TRACE, ("Set_SSID_Proc::(Len=%d,Ssid=%s)\n", Ssid.SsidLength, Ssid.Ssid));
88853 + if (StateMachineTouched) // Upper layer sent a MLME-related operations
88854 + RT28XX_MLME_HANDLER(pAdapter);
88859 +#ifdef WMM_SUPPORT
88861 + ==========================================================================
88863 + Set WmmCapable Enable or Disable
88865 + TRUE if all parameters are OK, FALSE otherwise
88866 + ==========================================================================
88868 +INT Set_WmmCapable_Proc(
88869 + IN PRTMP_ADAPTER pAd,
88872 + BOOLEAN bWmmCapable;
88874 + bWmmCapable = simple_strtol(arg, 0, 10);
88876 + if ((bWmmCapable == 1)
88878 + && (pAd->NumberOfPipes >= 5)
88879 +#endif // RT2870 //
88881 + pAd->CommonCfg.bWmmCapable = TRUE;
88882 + else if (bWmmCapable == 0)
88883 + pAd->CommonCfg.bWmmCapable = FALSE;
88885 + return FALSE; //Invalid argument
88887 + DBGPRINT(RT_DEBUG_TRACE, ("Set_WmmCapable_Proc::(bWmmCapable=%d)\n",
88888 + pAd->CommonCfg.bWmmCapable));
88892 +#endif // WMM_SUPPORT //
88895 + ==========================================================================
88897 + Set Network Type(Infrastructure/Adhoc mode)
88899 + TRUE if all parameters are OK, FALSE otherwise
88900 + ==========================================================================
88902 +INT Set_NetworkType_Proc(
88903 + IN PRTMP_ADAPTER pAdapter,
88906 + UINT32 Value = 0;
88908 + if (strcmp(arg, "Adhoc") == 0)
88910 + if (pAdapter->StaCfg.BssType != BSS_ADHOC)
88912 + // Config has changed
88913 + pAdapter->bConfigChanged = TRUE;
88914 + if (MONITOR_ON(pAdapter))
88916 + RTMP_IO_WRITE32(pAdapter, RX_FILTR_CFG, STANORMAL);
88917 + RTMP_IO_READ32(pAdapter, MAC_SYS_CTRL, &Value);
88918 + Value &= (~0x80);
88919 + RTMP_IO_WRITE32(pAdapter, MAC_SYS_CTRL, Value);
88920 + OPSTATUS_CLEAR_FLAG(pAdapter, fOP_STATUS_MEDIA_STATE_CONNECTED);
88921 + pAdapter->StaCfg.bAutoReconnect = TRUE;
88922 + LinkDown(pAdapter, FALSE);
88924 + if (INFRA_ON(pAdapter))
88926 + //BOOLEAN Cancelled;
88927 + // Set the AutoReconnectSsid to prevent it reconnect to old SSID
88928 + // Since calling this indicate user don't want to connect to that SSID anymore.
88929 + pAdapter->MlmeAux.AutoReconnectSsidLen= 32;
88930 + NdisZeroMemory(pAdapter->MlmeAux.AutoReconnectSsid, pAdapter->MlmeAux.AutoReconnectSsidLen);
88932 + LinkDown(pAdapter, FALSE);
88934 + DBGPRINT(RT_DEBUG_TRACE, ("NDIS_STATUS_MEDIA_DISCONNECT Event BB!\n"));
88937 + pAdapter->StaCfg.BssType = BSS_ADHOC;
88938 + pAdapter->net_dev->type = pAdapter->StaCfg.OriDevType;
88939 + DBGPRINT(RT_DEBUG_TRACE, ("===>Set_NetworkType_Proc::(AD-HOC)\n"));
88941 + else if (strcmp(arg, "Infra") == 0)
88943 + if (pAdapter->StaCfg.BssType != BSS_INFRA)
88945 + // Config has changed
88946 + pAdapter->bConfigChanged = TRUE;
88947 + if (MONITOR_ON(pAdapter))
88949 + RTMP_IO_WRITE32(pAdapter, RX_FILTR_CFG, STANORMAL);
88950 + RTMP_IO_READ32(pAdapter, MAC_SYS_CTRL, &Value);
88951 + Value &= (~0x80);
88952 + RTMP_IO_WRITE32(pAdapter, MAC_SYS_CTRL, Value);
88953 + OPSTATUS_CLEAR_FLAG(pAdapter, fOP_STATUS_MEDIA_STATE_CONNECTED);
88954 + pAdapter->StaCfg.bAutoReconnect = TRUE;
88955 + LinkDown(pAdapter, FALSE);
88957 + if (ADHOC_ON(pAdapter))
88959 + // Set the AutoReconnectSsid to prevent it reconnect to old SSID
88960 + // Since calling this indicate user don't want to connect to that SSID anymore.
88961 + pAdapter->MlmeAux.AutoReconnectSsidLen= 32;
88962 + NdisZeroMemory(pAdapter->MlmeAux.AutoReconnectSsid, pAdapter->MlmeAux.AutoReconnectSsidLen);
88964 + LinkDown(pAdapter, FALSE);
88967 + pAdapter->StaCfg.BssType = BSS_INFRA;
88968 + pAdapter->net_dev->type = pAdapter->StaCfg.OriDevType;
88969 + DBGPRINT(RT_DEBUG_TRACE, ("===>Set_NetworkType_Proc::(INFRA)\n"));
88971 + pAdapter->StaCfg.BssType = BSS_INFRA;
88973 + else if (strcmp(arg, "Monitor") == 0)
88975 + UCHAR bbpValue = 0;
88976 + BCN_TIME_CFG_STRUC csr;
88977 + OPSTATUS_CLEAR_FLAG(pAdapter, fOP_STATUS_INFRA_ON);
88978 + OPSTATUS_CLEAR_FLAG(pAdapter, fOP_STATUS_ADHOC_ON);
88979 + OPSTATUS_SET_FLAG(pAdapter, fOP_STATUS_MEDIA_STATE_CONNECTED);
88980 + // disable all periodic state machine
88981 + pAdapter->StaCfg.bAutoReconnect = FALSE;
88982 + // reset all mlme state machine
88983 + RT28XX_MLME_RESET_STATE_MACHINE(pAdapter);
88984 + DBGPRINT(RT_DEBUG_TRACE, ("fOP_STATUS_MEDIA_STATE_CONNECTED \n"));
88985 + if (pAdapter->CommonCfg.CentralChannel == 0)
88987 +#ifdef DOT11_N_SUPPORT
88988 + if (pAdapter->CommonCfg.PhyMode == PHY_11AN_MIXED)
88989 + pAdapter->CommonCfg.CentralChannel = 36;
88991 +#endif // DOT11_N_SUPPORT //
88992 + pAdapter->CommonCfg.CentralChannel = 6;
88994 +#ifdef DOT11_N_SUPPORT
88996 + N_ChannelCheck(pAdapter);
88997 +#endif // DOT11_N_SUPPORT //
88999 +#ifdef DOT11_N_SUPPORT
89000 + if (pAdapter->CommonCfg.PhyMode >= PHY_11ABGN_MIXED &&
89001 + pAdapter->CommonCfg.RegTransmitSetting.field.BW == BW_40 &&
89002 + pAdapter->CommonCfg.RegTransmitSetting.field.EXTCHA == EXTCHA_ABOVE)
89004 + // 40MHz ,control channel at lower
89005 + RTMP_BBP_IO_READ8_BY_REG_ID(pAdapter, BBP_R4, &bbpValue);
89006 + bbpValue &= (~0x18);
89007 + bbpValue |= 0x10;
89008 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAdapter, BBP_R4, bbpValue);
89009 + pAdapter->CommonCfg.BBPCurrentBW = BW_40;
89010 + // RX : control channel at lower
89011 + RTMP_BBP_IO_READ8_BY_REG_ID(pAdapter, BBP_R3, &bbpValue);
89012 + bbpValue &= (~0x20);
89013 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAdapter, BBP_R3, bbpValue);
89015 + RTMP_IO_READ32(pAdapter, TX_BAND_CFG, &Value);
89016 + Value &= 0xfffffffe;
89017 + RTMP_IO_WRITE32(pAdapter, TX_BAND_CFG, Value);
89018 + pAdapter->CommonCfg.CentralChannel = pAdapter->CommonCfg.Channel + 2;
89019 + AsicSwitchChannel(pAdapter, pAdapter->CommonCfg.CentralChannel, FALSE);
89020 + AsicLockChannel(pAdapter, pAdapter->CommonCfg.CentralChannel);
89021 + DBGPRINT(RT_DEBUG_TRACE, ("BW_40 ,control_channel(%d), CentralChannel(%d) \n",
89022 + pAdapter->CommonCfg.Channel,
89023 + pAdapter->CommonCfg.CentralChannel));
89025 + else if (pAdapter->CommonCfg.PhyMode >= PHY_11ABGN_MIXED &&
89026 + pAdapter->CommonCfg.RegTransmitSetting.field.BW == BW_40 &&
89027 + pAdapter->CommonCfg.RegTransmitSetting.field.EXTCHA == EXTCHA_BELOW)
89029 + // 40MHz ,control channel at upper
89030 + RTMP_BBP_IO_READ8_BY_REG_ID(pAdapter, BBP_R4, &bbpValue);
89031 + bbpValue &= (~0x18);
89032 + bbpValue |= 0x10;
89033 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAdapter, BBP_R4, bbpValue);
89034 + pAdapter->CommonCfg.BBPCurrentBW = BW_40;
89035 + RTMP_IO_READ32(pAdapter, TX_BAND_CFG, &Value);
89037 + RTMP_IO_WRITE32(pAdapter, TX_BAND_CFG, Value);
89039 + RTMP_BBP_IO_READ8_BY_REG_ID(pAdapter, BBP_R3, &bbpValue);
89040 + bbpValue |= (0x20);
89041 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAdapter, BBP_R3, bbpValue);
89042 + pAdapter->CommonCfg.CentralChannel = pAdapter->CommonCfg.Channel - 2;
89043 + AsicSwitchChannel(pAdapter, pAdapter->CommonCfg.CentralChannel, FALSE);
89044 + AsicLockChannel(pAdapter, pAdapter->CommonCfg.CentralChannel);
89045 + DBGPRINT(RT_DEBUG_TRACE, ("BW_40 ,control_channel(%d), CentralChannel(%d) \n",
89046 + pAdapter->CommonCfg.Channel,
89047 + pAdapter->CommonCfg.CentralChannel));
89050 +#endif // DOT11_N_SUPPORT //
89053 + RTMP_BBP_IO_READ8_BY_REG_ID(pAdapter, BBP_R4, &bbpValue);
89054 + bbpValue &= (~0x18);
89055 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAdapter, BBP_R4, bbpValue);
89056 + pAdapter->CommonCfg.BBPCurrentBW = BW_20;
89057 + AsicSwitchChannel(pAdapter, pAdapter->CommonCfg.Channel, FALSE);
89058 + AsicLockChannel(pAdapter, pAdapter->CommonCfg.Channel);
89059 + DBGPRINT(RT_DEBUG_TRACE, ("BW_20, Channel(%d)\n", pAdapter->CommonCfg.Channel));
89061 + // Enable Rx with promiscuous reception
89062 + RTMP_IO_WRITE32(pAdapter, RX_FILTR_CFG, 0x3);
89063 + // ASIC supporsts sniffer function with replacing RSSI with timestamp.
89064 + //RTMP_IO_READ32(pAdapter, MAC_SYS_CTRL, &Value);
89065 + //Value |= (0x80);
89066 + //RTMP_IO_WRITE32(pAdapter, MAC_SYS_CTRL, Value);
89068 + RTMP_IO_READ32(pAdapter, BCN_TIME_CFG, &csr.word);
89069 + csr.field.bBeaconGen = 0;
89070 + csr.field.bTBTTEnable = 0;
89071 + csr.field.TsfSyncMode = 0;
89072 + RTMP_IO_WRITE32(pAdapter, BCN_TIME_CFG, csr.word);
89074 + pAdapter->StaCfg.BssType = BSS_MONITOR;
89075 + pAdapter->net_dev->type = ARPHRD_IEEE80211_PRISM; //ARPHRD_IEEE80211; // IEEE80211
89076 + DBGPRINT(RT_DEBUG_TRACE, ("===>Set_NetworkType_Proc::(MONITOR)\n"));
89079 + // Reset Ralink supplicant to not use, it will be set to start when UI set PMK key
89080 + pAdapter->StaCfg.WpaState = SS_NOTUSE;
89082 + DBGPRINT(RT_DEBUG_TRACE, ("Set_NetworkType_Proc::(NetworkType=%d)\n", pAdapter->StaCfg.BssType));
89088 + ==========================================================================
89090 + Set Authentication mode
89092 + TRUE if all parameters are OK, FALSE otherwise
89093 + ==========================================================================
89095 +INT Set_AuthMode_Proc(
89096 + IN PRTMP_ADAPTER pAdapter,
89099 + if ((strcmp(arg, "WEPAUTO") == 0) || (strcmp(arg, "wepauto") == 0))
89100 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeAutoSwitch;
89101 + else if ((strcmp(arg, "OPEN") == 0) || (strcmp(arg, "open") == 0))
89102 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeOpen;
89103 + else if ((strcmp(arg, "SHARED") == 0) || (strcmp(arg, "shared") == 0))
89104 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeShared;
89105 + else if ((strcmp(arg, "WPAPSK") == 0) || (strcmp(arg, "wpapsk") == 0))
89106 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeWPAPSK;
89107 + else if ((strcmp(arg, "WPANONE") == 0) || (strcmp(arg, "wpanone") == 0))
89108 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeWPANone;
89109 + else if ((strcmp(arg, "WPA2PSK") == 0) || (strcmp(arg, "wpa2psk") == 0))
89110 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeWPA2PSK;
89111 +#ifdef WPA_SUPPLICANT_SUPPORT
89112 + else if ((strcmp(arg, "WPA") == 0) || (strcmp(arg, "wpa") == 0))
89113 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeWPA;
89114 + else if ((strcmp(arg, "WPA2") == 0) || (strcmp(arg, "wpa2") == 0))
89115 + pAdapter->StaCfg.AuthMode = Ndis802_11AuthModeWPA2;
89116 +#endif // WPA_SUPPLICANT_SUPPORT //
89120 + pAdapter->StaCfg.PortSecured = WPA_802_1X_PORT_NOT_SECURED;
89122 + DBGPRINT(RT_DEBUG_TRACE, ("Set_AuthMode_Proc::(AuthMode=%d)\n", pAdapter->StaCfg.AuthMode));
89128 + ==========================================================================
89130 + Set Encryption Type
89132 + TRUE if all parameters are OK, FALSE otherwise
89133 + ==========================================================================
89135 +INT Set_EncrypType_Proc(
89136 + IN PRTMP_ADAPTER pAdapter,
89139 + if ((strcmp(arg, "NONE") == 0) || (strcmp(arg, "none") == 0))
89141 + if (pAdapter->StaCfg.AuthMode >= Ndis802_11AuthModeWPA)
89142 + return TRUE; // do nothing
89144 + pAdapter->StaCfg.WepStatus = Ndis802_11WEPDisabled;
89145 + pAdapter->StaCfg.PairCipher = Ndis802_11WEPDisabled;
89146 + pAdapter->StaCfg.GroupCipher = Ndis802_11WEPDisabled;
89148 + else if ((strcmp(arg, "WEP") == 0) || (strcmp(arg, "wep") == 0))
89150 + if (pAdapter->StaCfg.AuthMode >= Ndis802_11AuthModeWPA)
89151 + return TRUE; // do nothing
89153 + pAdapter->StaCfg.WepStatus = Ndis802_11WEPEnabled;
89154 + pAdapter->StaCfg.PairCipher = Ndis802_11WEPEnabled;
89155 + pAdapter->StaCfg.GroupCipher = Ndis802_11WEPEnabled;
89157 + else if ((strcmp(arg, "TKIP") == 0) || (strcmp(arg, "tkip") == 0))
89159 + if (pAdapter->StaCfg.AuthMode < Ndis802_11AuthModeWPA)
89160 + return TRUE; // do nothing
89162 + pAdapter->StaCfg.WepStatus = Ndis802_11Encryption2Enabled;
89163 + pAdapter->StaCfg.PairCipher = Ndis802_11Encryption2Enabled;
89164 + pAdapter->StaCfg.GroupCipher = Ndis802_11Encryption2Enabled;
89166 + else if ((strcmp(arg, "AES") == 0) || (strcmp(arg, "aes") == 0))
89168 + if (pAdapter->StaCfg.AuthMode < Ndis802_11AuthModeWPA)
89169 + return TRUE; // do nothing
89171 + pAdapter->StaCfg.WepStatus = Ndis802_11Encryption3Enabled;
89172 + pAdapter->StaCfg.PairCipher = Ndis802_11Encryption3Enabled;
89173 + pAdapter->StaCfg.GroupCipher = Ndis802_11Encryption3Enabled;
89178 + pAdapter->StaCfg.OrigWepStatus = pAdapter->StaCfg.WepStatus;
89180 + DBGPRINT(RT_DEBUG_TRACE, ("Set_EncrypType_Proc::(EncrypType=%d)\n", pAdapter->StaCfg.WepStatus));
89186 + ==========================================================================
89188 + Set Default Key ID
89190 + TRUE if all parameters are OK, FALSE otherwise
89191 + ==========================================================================
89193 +INT Set_DefaultKeyID_Proc(
89194 + IN PRTMP_ADAPTER pAdapter,
89199 + KeyIdx = simple_strtol(arg, 0, 10);
89200 + if((KeyIdx >= 1 ) && (KeyIdx <= 4))
89201 + pAdapter->StaCfg.DefaultKeyId = (UCHAR) (KeyIdx - 1 );
89203 + return FALSE; //Invalid argument
89205 + DBGPRINT(RT_DEBUG_TRACE, ("Set_DefaultKeyID_Proc::(DefaultKeyID=%d)\n", pAdapter->StaCfg.DefaultKeyId));
89211 + ==========================================================================
89215 + TRUE if all parameters are OK, FALSE otherwise
89216 + ==========================================================================
89218 +INT Set_Key1_Proc(
89219 + IN PRTMP_ADAPTER pAdapter,
89224 + UCHAR CipherAlg=CIPHER_WEP64;
89226 + if (pAdapter->StaCfg.AuthMode >= Ndis802_11AuthModeWPA)
89227 + return TRUE; // do nothing
89229 + KeyLen = strlen(arg);
89233 + case 5: //wep 40 Ascii type
89234 + pAdapter->SharedKey[BSS0][0].KeyLen = KeyLen;
89235 + memcpy(pAdapter->SharedKey[BSS0][0].Key, arg, KeyLen);
89236 + CipherAlg = CIPHER_WEP64;
89237 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key1_Proc::(Key1=%s and type=%s)\n", arg, "Ascii"));
89239 + case 10: //wep 40 Hex type
89240 + for(i=0; i < KeyLen; i++)
89242 + if( !isxdigit(*(arg+i)) )
89243 + return FALSE; //Not Hex value;
89245 + pAdapter->SharedKey[BSS0][0].KeyLen = KeyLen / 2 ;
89246 + AtoH(arg, pAdapter->SharedKey[BSS0][0].Key, KeyLen / 2);
89247 + CipherAlg = CIPHER_WEP64;
89248 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key1_Proc::(Key1=%s and type=%s)\n", arg, "Hex"));
89250 + case 13: //wep 104 Ascii type
89251 + pAdapter->SharedKey[BSS0][0].KeyLen = KeyLen;
89252 + memcpy(pAdapter->SharedKey[BSS0][0].Key, arg, KeyLen);
89253 + CipherAlg = CIPHER_WEP128;
89254 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key1_Proc::(Key1=%s and type=%s)\n", arg, "Ascii"));
89256 + case 26: //wep 104 Hex type
89257 + for(i=0; i < KeyLen; i++)
89259 + if( !isxdigit(*(arg+i)) )
89260 + return FALSE; //Not Hex value;
89262 + pAdapter->SharedKey[BSS0][0].KeyLen = KeyLen / 2 ;
89263 + AtoH(arg, pAdapter->SharedKey[BSS0][0].Key, KeyLen / 2);
89264 + CipherAlg = CIPHER_WEP128;
89265 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key1_Proc::(Key1=%s and type=%s)\n", arg, "Hex"));
89267 + default: //Invalid argument
89268 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key1_Proc::Invalid argument (=%s)\n", arg));
89272 + pAdapter->SharedKey[BSS0][0].CipherAlg = CipherAlg;
89274 + // Set keys (into ASIC)
89275 + if (pAdapter->StaCfg.AuthMode >= Ndis802_11AuthModeWPA)
89277 + else // Old WEP stuff
89279 + AsicAddSharedKeyEntry(pAdapter,
89282 + pAdapter->SharedKey[BSS0][0].CipherAlg,
89283 + pAdapter->SharedKey[BSS0][0].Key,
89291 + ==========================================================================
89296 + TRUE if all parameters are OK, FALSE otherwise
89297 + ==========================================================================
89299 +INT Set_Key2_Proc(
89300 + IN PRTMP_ADAPTER pAdapter,
89305 + UCHAR CipherAlg=CIPHER_WEP64;
89307 + if (pAdapter->StaCfg.AuthMode >= Ndis802_11AuthModeWPA)
89308 + return TRUE; // do nothing
89310 + KeyLen = strlen(arg);
89314 + case 5: //wep 40 Ascii type
89315 + pAdapter->SharedKey[BSS0][1].KeyLen = KeyLen;
89316 + memcpy(pAdapter->SharedKey[BSS0][1].Key, arg, KeyLen);
89317 + CipherAlg = CIPHER_WEP64;
89318 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key2_Proc::(Key2=%s and type=%s)\n", arg, "Ascii"));
89320 + case 10: //wep 40 Hex type
89321 + for(i=0; i < KeyLen; i++)
89323 + if( !isxdigit(*(arg+i)) )
89324 + return FALSE; //Not Hex value;
89326 + pAdapter->SharedKey[BSS0][1].KeyLen = KeyLen / 2 ;
89327 + AtoH(arg, pAdapter->SharedKey[BSS0][1].Key, KeyLen / 2);
89328 + CipherAlg = CIPHER_WEP64;
89329 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key2_Proc::(Key2=%s and type=%s)\n", arg, "Hex"));
89331 + case 13: //wep 104 Ascii type
89332 + pAdapter->SharedKey[BSS0][1].KeyLen = KeyLen;
89333 + memcpy(pAdapter->SharedKey[BSS0][1].Key, arg, KeyLen);
89334 + CipherAlg = CIPHER_WEP128;
89335 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key2_Proc::(Key2=%s and type=%s)\n", arg, "Ascii"));
89337 + case 26: //wep 104 Hex type
89338 + for(i=0; i < KeyLen; i++)
89340 + if( !isxdigit(*(arg+i)) )
89341 + return FALSE; //Not Hex value;
89343 + pAdapter->SharedKey[BSS0][1].KeyLen = KeyLen / 2 ;
89344 + AtoH(arg, pAdapter->SharedKey[BSS0][1].Key, KeyLen / 2);
89345 + CipherAlg = CIPHER_WEP128;
89346 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key2_Proc::(Key2=%s and type=%s)\n", arg, "Hex"));
89348 + default: //Invalid argument
89349 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key2_Proc::Invalid argument (=%s)\n", arg));
89352 + pAdapter->SharedKey[BSS0][1].CipherAlg = CipherAlg;
89354 + // Set keys (into ASIC)
89355 + if (pAdapter->StaCfg.AuthMode >= Ndis802_11AuthModeWPA)
89357 + else // Old WEP stuff
89359 + AsicAddSharedKeyEntry(pAdapter,
89362 + pAdapter->SharedKey[BSS0][1].CipherAlg,
89363 + pAdapter->SharedKey[BSS0][1].Key,
89371 + ==========================================================================
89375 + TRUE if all parameters are OK, FALSE otherwise
89376 + ==========================================================================
89378 +INT Set_Key3_Proc(
89379 + IN PRTMP_ADAPTER pAdapter,
89384 + UCHAR CipherAlg=CIPHER_WEP64;
89386 + if (pAdapter->StaCfg.AuthMode >= Ndis802_11AuthModeWPA)
89387 + return TRUE; // do nothing
89389 + KeyLen = strlen(arg);
89393 + case 5: //wep 40 Ascii type
89394 + pAdapter->SharedKey[BSS0][2].KeyLen = KeyLen;
89395 + memcpy(pAdapter->SharedKey[BSS0][2].Key, arg, KeyLen);
89396 + CipherAlg = CIPHER_WEP64;
89397 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key3_Proc::(Key3=%s and type=Ascii)\n", arg));
89399 + case 10: //wep 40 Hex type
89400 + for(i=0; i < KeyLen; i++)
89402 + if( !isxdigit(*(arg+i)) )
89403 + return FALSE; //Not Hex value;
89405 + pAdapter->SharedKey[BSS0][2].KeyLen = KeyLen / 2 ;
89406 + AtoH(arg, pAdapter->SharedKey[BSS0][2].Key, KeyLen / 2);
89407 + CipherAlg = CIPHER_WEP64;
89408 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key3_Proc::(Key3=%s and type=Hex)\n", arg));
89410 + case 13: //wep 104 Ascii type
89411 + pAdapter->SharedKey[BSS0][2].KeyLen = KeyLen;
89412 + memcpy(pAdapter->SharedKey[BSS0][2].Key, arg, KeyLen);
89413 + CipherAlg = CIPHER_WEP128;
89414 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key3_Proc::(Key3=%s and type=Ascii)\n", arg));
89416 + case 26: //wep 104 Hex type
89417 + for(i=0; i < KeyLen; i++)
89419 + if( !isxdigit(*(arg+i)) )
89420 + return FALSE; //Not Hex value;
89422 + pAdapter->SharedKey[BSS0][2].KeyLen = KeyLen / 2 ;
89423 + AtoH(arg, pAdapter->SharedKey[BSS0][2].Key, KeyLen / 2);
89424 + CipherAlg = CIPHER_WEP128;
89425 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key3_Proc::(Key3=%s and type=Hex)\n", arg));
89427 + default: //Invalid argument
89428 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key3_Proc::Invalid argument (=%s)\n", arg));
89431 + pAdapter->SharedKey[BSS0][2].CipherAlg = CipherAlg;
89433 + // Set keys (into ASIC)
89434 + if (pAdapter->StaCfg.AuthMode >= Ndis802_11AuthModeWPA)
89436 + else // Old WEP stuff
89438 + AsicAddSharedKeyEntry(pAdapter,
89441 + pAdapter->SharedKey[BSS0][2].CipherAlg,
89442 + pAdapter->SharedKey[BSS0][2].Key,
89450 + ==========================================================================
89454 + TRUE if all parameters are OK, FALSE otherwise
89455 + ==========================================================================
89457 +INT Set_Key4_Proc(
89458 + IN PRTMP_ADAPTER pAdapter,
89463 + UCHAR CipherAlg=CIPHER_WEP64;
89465 + if (pAdapter->StaCfg.AuthMode >= Ndis802_11AuthModeWPA)
89466 + return TRUE; // do nothing
89468 + KeyLen = strlen(arg);
89472 + case 5: //wep 40 Ascii type
89473 + pAdapter->SharedKey[BSS0][3].KeyLen = KeyLen;
89474 + memcpy(pAdapter->SharedKey[BSS0][3].Key, arg, KeyLen);
89475 + CipherAlg = CIPHER_WEP64;
89476 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key4_Proc::(Key4=%s and type=%s)\n", arg, "Ascii"));
89478 + case 10: //wep 40 Hex type
89479 + for(i=0; i < KeyLen; i++)
89481 + if( !isxdigit(*(arg+i)) )
89482 + return FALSE; //Not Hex value;
89484 + pAdapter->SharedKey[BSS0][3].KeyLen = KeyLen / 2 ;
89485 + AtoH(arg, pAdapter->SharedKey[BSS0][3].Key, KeyLen / 2);
89486 + CipherAlg = CIPHER_WEP64;
89487 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key4_Proc::(Key4=%s and type=%s)\n", arg, "Hex"));
89489 + case 13: //wep 104 Ascii type
89490 + pAdapter->SharedKey[BSS0][3].KeyLen = KeyLen;
89491 + memcpy(pAdapter->SharedKey[BSS0][3].Key, arg, KeyLen);
89492 + CipherAlg = CIPHER_WEP128;
89493 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key4_Proc::(Key4=%s and type=%s)\n", arg, "Ascii"));
89495 + case 26: //wep 104 Hex type
89496 + for(i=0; i < KeyLen; i++)
89498 + if( !isxdigit(*(arg+i)) )
89499 + return FALSE; //Not Hex value;
89501 + pAdapter->SharedKey[BSS0][3].KeyLen = KeyLen / 2 ;
89502 + AtoH(arg, pAdapter->SharedKey[BSS0][3].Key, KeyLen / 2);
89503 + CipherAlg = CIPHER_WEP128;
89504 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key4_Proc::(Key4=%s and type=%s)\n", arg, "Hex"));
89506 + default: //Invalid argument
89507 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Key4_Proc::Invalid argument (=%s)\n", arg));
89510 + pAdapter->SharedKey[BSS0][3].CipherAlg = CipherAlg;
89512 + // Set keys (into ASIC)
89513 + if (pAdapter->StaCfg.AuthMode >= Ndis802_11AuthModeWPA)
89515 + else // Old WEP stuff
89517 + AsicAddSharedKeyEntry(pAdapter,
89520 + pAdapter->SharedKey[BSS0][3].CipherAlg,
89521 + pAdapter->SharedKey[BSS0][3].Key,
89530 + ==========================================================================
89534 + TRUE if all parameters are OK, FALSE otherwise
89535 + ==========================================================================
89537 +INT Set_WPAPSK_Proc(
89538 + IN PRTMP_ADAPTER pAdapter,
89541 + UCHAR keyMaterial[40];
89543 + if ((pAdapter->StaCfg.AuthMode != Ndis802_11AuthModeWPAPSK) &&
89544 + (pAdapter->StaCfg.AuthMode != Ndis802_11AuthModeWPA2PSK) &&
89545 + (pAdapter->StaCfg.AuthMode != Ndis802_11AuthModeWPANone)
89547 + return TRUE; // do nothing
89549 + DBGPRINT(RT_DEBUG_TRACE, ("Set_WPAPSK_Proc::(WPAPSK=%s)\n", arg));
89551 + NdisZeroMemory(keyMaterial, 40);
89553 + if ((strlen(arg) < 8) || (strlen(arg) > 64))
89555 + DBGPRINT(RT_DEBUG_TRACE, ("Set failed!!(WPAPSK=%s), WPAPSK key-string required 8 ~ 64 characters \n", arg));
89559 + if (strlen(arg) == 64)
89561 + AtoH(arg, keyMaterial, 32);
89562 + NdisMoveMemory(pAdapter->StaCfg.PMK, keyMaterial, 32);
89567 + PasswordHash((char *)arg, pAdapter->MlmeAux.Ssid, pAdapter->MlmeAux.SsidLen, keyMaterial);
89568 + NdisMoveMemory(pAdapter->StaCfg.PMK, keyMaterial, 32);
89573 + if(pAdapter->StaCfg.BssType == BSS_ADHOC &&
89574 + pAdapter->StaCfg.AuthMode == Ndis802_11AuthModeWPANone)
89576 + pAdapter->StaCfg.WpaState = SS_NOTUSE;
89580 + // Start STA supplicant state machine
89581 + pAdapter->StaCfg.WpaState = SS_START;
89588 + ==========================================================================
89590 + Set Power Saving mode
89592 + TRUE if all parameters are OK, FALSE otherwise
89593 + ==========================================================================
89595 +INT Set_PSMode_Proc(
89596 + IN PRTMP_ADAPTER pAdapter,
89599 + if (pAdapter->StaCfg.BssType == BSS_INFRA)
89601 + if ((strcmp(arg, "Max_PSP") == 0) ||
89602 + (strcmp(arg, "max_psp") == 0) ||
89603 + (strcmp(arg, "MAX_PSP") == 0))
89605 + // do NOT turn on PSM bit here, wait until MlmeCheckForPsmChange()
89606 + // to exclude certain situations.
89607 + if (pAdapter->StaCfg.bWindowsACCAMEnable == FALSE)
89608 + pAdapter->StaCfg.WindowsPowerMode = Ndis802_11PowerModeMAX_PSP;
89609 + pAdapter->StaCfg.WindowsBatteryPowerMode = Ndis802_11PowerModeMAX_PSP;
89610 + OPSTATUS_SET_FLAG(pAdapter, fOP_STATUS_RECEIVE_DTIM);
89611 + pAdapter->StaCfg.DefaultListenCount = 5;
89614 + else if ((strcmp(arg, "Fast_PSP") == 0) ||
89615 + (strcmp(arg, "fast_psp") == 0) ||
89616 + (strcmp(arg, "FAST_PSP") == 0))
89618 + // do NOT turn on PSM bit here, wait until MlmeCheckForPsmChange()
89619 + // to exclude certain situations.
89620 + OPSTATUS_SET_FLAG(pAdapter, fOP_STATUS_RECEIVE_DTIM);
89621 + if (pAdapter->StaCfg.bWindowsACCAMEnable == FALSE)
89622 + pAdapter->StaCfg.WindowsPowerMode = Ndis802_11PowerModeFast_PSP;
89623 + pAdapter->StaCfg.WindowsBatteryPowerMode = Ndis802_11PowerModeFast_PSP;
89624 + pAdapter->StaCfg.DefaultListenCount = 3;
89626 + else if ((strcmp(arg, "Legacy_PSP") == 0) ||
89627 + (strcmp(arg, "legacy_psp") == 0) ||
89628 + (strcmp(arg, "LEGACY_PSP") == 0))
89630 + // do NOT turn on PSM bit here, wait until MlmeCheckForPsmChange()
89631 + // to exclude certain situations.
89632 + OPSTATUS_SET_FLAG(pAdapter, fOP_STATUS_RECEIVE_DTIM);
89633 + if (pAdapter->StaCfg.bWindowsACCAMEnable == FALSE)
89634 + pAdapter->StaCfg.WindowsPowerMode = Ndis802_11PowerModeLegacy_PSP;
89635 + pAdapter->StaCfg.WindowsBatteryPowerMode = Ndis802_11PowerModeLegacy_PSP;
89636 + pAdapter->StaCfg.DefaultListenCount = 3;
89640 + //Default Ndis802_11PowerModeCAM
89641 + // clear PSM bit immediately
89642 + MlmeSetPsmBit(pAdapter, PWR_ACTIVE);
89643 + OPSTATUS_SET_FLAG(pAdapter, fOP_STATUS_RECEIVE_DTIM);
89644 + if (pAdapter->StaCfg.bWindowsACCAMEnable == FALSE)
89645 + pAdapter->StaCfg.WindowsPowerMode = Ndis802_11PowerModeCAM;
89646 + pAdapter->StaCfg.WindowsBatteryPowerMode = Ndis802_11PowerModeCAM;
89649 + DBGPRINT(RT_DEBUG_TRACE, ("Set_PSMode_Proc::(PSMode=%ld)\n", pAdapter->StaCfg.WindowsPowerMode));
89658 +#ifdef WPA_SUPPLICANT_SUPPORT
89660 + ==========================================================================
89662 + Set WpaSupport flag.
89664 + 0: Driver ignore wpa_supplicant.
89665 + 1: wpa_supplicant initiates scanning and AP selection.
89666 + 2: driver takes care of scanning, AP selection, and IEEE 802.11 association parameters.
89668 + TRUE if all parameters are OK, FALSE otherwise
89669 + ==========================================================================
89671 +INT Set_Wpa_Support(
89672 + IN PRTMP_ADAPTER pAd,
89676 + if ( simple_strtol(arg, 0, 10) == 0)
89677 + pAd->StaCfg.WpaSupplicantUP = WPA_SUPPLICANT_DISABLE;
89678 + else if ( simple_strtol(arg, 0, 10) == 1)
89679 + pAd->StaCfg.WpaSupplicantUP = WPA_SUPPLICANT_ENABLE;
89680 + else if ( simple_strtol(arg, 0, 10) == 2)
89681 + pAd->StaCfg.WpaSupplicantUP = WPA_SUPPLICANT_ENABLE_WITH_WEB_UI;
89683 + pAd->StaCfg.WpaSupplicantUP = WPA_SUPPLICANT_DISABLE;
89685 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Wpa_Support::(WpaSupplicantUP=%d)\n", pAd->StaCfg.WpaSupplicantUP));
89689 +#endif // WPA_SUPPLICANT_SUPPORT //
89693 + ==========================================================================
89697 + pAdapter Pointer to our adapter
89698 + wrq Pointer to the ioctl argument
89705 + 1.) iwpriv ra0 mac 0 ==> read MAC where Addr=0x0
89706 + 2.) iwpriv ra0 mac 0=12 ==> write MAC where Addr=0x0, value=12
89707 + ==========================================================================
89709 +VOID RTMPIoctlMAC(
89710 + IN PRTMP_ADAPTER pAdapter,
89711 + IN struct iwreq *wrq)
89715 + INT j = 0, k = 0;
89718 + ULONG macAddr = 0;
89719 + UCHAR temp[16], temp2[16];
89720 + UINT32 macValue = 0;
89722 + BOOLEAN bIsPrintAllMAC = FALSE;
89725 + memset(msg, 0x00, 1024);
89726 + if (wrq->u.data.length > 1) //No parameters.
89728 + Status = copy_from_user(arg, wrq->u.data.pointer, (wrq->u.data.length > 255) ? 255 : wrq->u.data.length);
89729 + sprintf(msg, "\n");
89731 + //Parsing Read or Write
89736 + if ((value = rtstrchr(this_char, '=')) != NULL)
89739 + if (!value || !*value)
89742 + if(strlen(this_char) > 4)
89745 + j = strlen(this_char);
89748 + if(this_char[j] > 'f' || this_char[j] < '0')
89753 + k = j = strlen(this_char);
89756 + this_char[4-k+j] = this_char[j];
89760 + this_char[3-k++]='0';
89761 + this_char[4]='\0';
89763 + if(strlen(this_char) == 4)
89765 + AtoH(this_char, temp, 2);
89766 + macAddr = *temp*256 + temp[1];
89767 + if (macAddr < 0xFFFF)
89769 + RTMP_IO_READ32(pAdapter, macAddr, &macValue);
89770 + DBGPRINT(RT_DEBUG_TRACE, ("MacAddr=%lx, MacValue=%x\n", macAddr, macValue));
89771 + sprintf(msg+strlen(msg), "[0x%08lX]:%08X ", macAddr , macValue);
89774 + {//Invalid parametes, so default printk all mac
89775 + bIsPrintAllMAC = TRUE;
89782 + memcpy(&temp2, value, strlen(value));
89783 + temp2[strlen(value)] = '\0';
89786 + if((strlen(this_char) > 4) || strlen(temp2) > 8)
89789 + j = strlen(this_char);
89792 + if(this_char[j] > 'f' || this_char[j] < '0')
89796 + j = strlen(temp2);
89799 + if(temp2[j] > 'f' || temp2[j] < '0')
89804 + k = j = strlen(this_char);
89807 + this_char[4-k+j] = this_char[j];
89811 + this_char[3-k++]='0';
89812 + this_char[4]='\0';
89815 + k = j = strlen(temp2);
89818 + temp2[8-k+j] = temp2[j];
89822 + temp2[7-k++]='0';
89826 + AtoH(this_char, temp, 2);
89827 + macAddr = *temp*256 + temp[1];
89829 + AtoH(temp2, temp, 4);
89830 + macValue = *temp*256*256*256 + temp[1]*256*256 + temp[2]*256 + temp[3];
89833 + if (macAddr == (HW_DEBUG_SETTING_BASE + 4))
89835 + // 0x2bf4: byte0 non-zero: enable R17 tuning, 0: disable R17 tuning
89836 + if (macValue & 0x000000ff)
89838 + pAdapter->BbpTuning.bEnable = TRUE;
89839 + DBGPRINT(RT_DEBUG_TRACE,("turn on R17 tuning\n"));
89844 + pAdapter->BbpTuning.bEnable = FALSE;
89845 + R66 = 0x26 + GET_LNA_GAIN(pAdapter);
89847 + if (ATE_ON(pAdapter))
89849 + ATE_BBP_IO_WRITE8_BY_REG_ID(pAdapter, BBP_R66, (0x26 + GET_LNA_GAIN(pAdapter)));
89852 +#endif // RALINK_ATE //
89853 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAdapter, BBP_R66, (0x26 + GET_LNA_GAIN(pAdapter)));
89854 + DBGPRINT(RT_DEBUG_TRACE,("turn off R17 tuning, restore to 0x%02x\n", R66));
89859 + DBGPRINT(RT_DEBUG_TRACE, ("MacAddr=%02lx, MacValue=0x%x\n", macAddr, macValue));
89861 + RTMP_IO_WRITE32(pAdapter, macAddr, macValue);
89862 + sprintf(msg+strlen(msg), "[0x%08lX]:%08X ", macAddr, macValue);
89867 + bIsPrintAllMAC = TRUE;
89869 + if (bIsPrintAllMAC)
89871 + struct file *file_w;
89872 + PCHAR fileName = "MacDump.txt";
89873 + mm_segment_t orig_fs;
89875 + orig_fs = get_fs();
89876 + set_fs(KERNEL_DS);
89879 + file_w = filp_open(fileName, O_WRONLY|O_CREAT, 0);
89880 + if (IS_ERR(file_w))
89882 + DBGPRINT(RT_DEBUG_TRACE, ("-->2) %s: Error %ld opening %s\n", __FUNCTION__, -PTR_ERR(file_w), fileName));
89886 + if (file_w->f_op && file_w->f_op->write)
89888 + file_w->f_pos = 0;
89889 + macAddr = 0x1000;
89891 + while (macAddr <= 0x1800)
89893 + RTMP_IO_READ32(pAdapter, macAddr, &macValue);
89894 + sprintf(msg, "%08lx = %08X\n", macAddr, macValue);
89896 + // write data to file
89897 + file_w->f_op->write(file_w, msg, strlen(msg), &file_w->f_pos);
89899 + printk("%s", msg);
89902 + sprintf(msg, "\nDump all MAC values to %s\n", fileName);
89904 + filp_close(file_w, NULL);
89908 + if(strlen(msg) == 1)
89909 + sprintf(msg+strlen(msg), "===>Error command format!");
89911 + // Copy the information into the user buffer
89912 + wrq->u.data.length = strlen(msg);
89913 + Status = copy_to_user(wrq->u.data.pointer, msg, wrq->u.data.length);
89915 + DBGPRINT(RT_DEBUG_TRACE, ("<==RTMPIoctlMAC\n\n"));
89919 + ==========================================================================
89921 + Read / Write E2PROM
89923 + pAdapter Pointer to our adapter
89924 + wrq Pointer to the ioctl argument
89931 + 1.) iwpriv ra0 e2p 0 ==> read E2PROM where Addr=0x0
89932 + 2.) iwpriv ra0 e2p 0=1234 ==> write E2PROM where Addr=0x0, value=1234
89933 + ==========================================================================
89935 +VOID RTMPIoctlE2PROM(
89936 + IN PRTMP_ADAPTER pAdapter,
89937 + IN struct iwreq *wrq)
89941 + INT j = 0, k = 0;
89944 + USHORT eepAddr = 0;
89945 + UCHAR temp[16], temp2[16];
89948 + BOOLEAN bIsPrintAllE2P = FALSE;
89951 + memset(msg, 0x00, 1024);
89952 + if (wrq->u.data.length > 1) //No parameters.
89954 + Status = copy_from_user(arg, wrq->u.data.pointer, (wrq->u.data.length > 255) ? 255 : wrq->u.data.length);
89955 + sprintf(msg, "\n");
89957 + //Parsing Read or Write
89964 + if ((value = rtstrchr(this_char, '=')) != NULL)
89967 + if (!value || !*value)
89971 + if(strlen(this_char) > 4)
89974 + j = strlen(this_char);
89977 + if(this_char[j] > 'f' || this_char[j] < '0')
89982 + k = j = strlen(this_char);
89985 + this_char[4-k+j] = this_char[j];
89989 + this_char[3-k++]='0';
89990 + this_char[4]='\0';
89992 + if(strlen(this_char) == 4)
89994 + AtoH(this_char, temp, 2);
89995 + eepAddr = *temp*256 + temp[1];
89996 + if (eepAddr < 0xFFFF)
89998 + RT28xx_EEPROM_READ16(pAdapter, eepAddr, eepValue);
89999 + sprintf(msg+strlen(msg), "[0x%04X]:0x%04X ", eepAddr , eepValue);
90002 + {//Invalid parametes, so default printk all bbp
90003 + bIsPrintAllE2P = TRUE;
90010 + memcpy(&temp2, value, strlen(value));
90011 + temp2[strlen(value)] = '\0';
90014 + if((strlen(this_char) > 4) || strlen(temp2) > 8)
90017 + j = strlen(this_char);
90020 + if(this_char[j] > 'f' || this_char[j] < '0')
90023 + j = strlen(temp2);
90026 + if(temp2[j] > 'f' || temp2[j] < '0')
90031 + k = j = strlen(this_char);
90034 + this_char[4-k+j] = this_char[j];
90038 + this_char[3-k++]='0';
90039 + this_char[4]='\0';
90042 + k = j = strlen(temp2);
90045 + temp2[4-k+j] = temp2[j];
90049 + temp2[3-k++]='0';
90052 + AtoH(this_char, temp, 2);
90053 + eepAddr = *temp*256 + temp[1];
90055 + AtoH(temp2, temp, 2);
90056 + eepValue = *temp*256 + temp[1];
90058 + RT28xx_EEPROM_WRITE16(pAdapter, eepAddr, eepValue);
90059 + sprintf(msg+strlen(msg), "[0x%02X]:%02X ", eepAddr, eepValue);
90063 + bIsPrintAllE2P = TRUE;
90065 + if (bIsPrintAllE2P)
90067 + struct file *file_w;
90068 + PCHAR fileName = "EEPROMDump.txt";
90069 + mm_segment_t orig_fs;
90071 + orig_fs = get_fs();
90072 + set_fs(KERNEL_DS);
90075 + file_w = filp_open(fileName, O_WRONLY|O_CREAT, 0);
90076 + if (IS_ERR(file_w))
90078 + DBGPRINT(RT_DEBUG_TRACE, ("-->2) %s: Error %ld opening %s\n", __FUNCTION__, -PTR_ERR(file_w), fileName));
90082 + if (file_w->f_op && file_w->f_op->write)
90084 + file_w->f_pos = 0;
90087 + while (eepAddr <= 0xFE)
90089 + RT28xx_EEPROM_READ16(pAdapter, eepAddr, eepValue);
90090 + sprintf(msg, "%08x = %04x\n", eepAddr , eepValue);
90092 + // write data to file
90093 + file_w->f_op->write(file_w, msg, strlen(msg), &file_w->f_pos);
90095 + printk("%s", msg);
90098 + sprintf(msg, "\nDump all EEPROM values to %s\n", fileName);
90100 + filp_close(file_w, NULL);
90104 + if(strlen(msg) == 1)
90105 + sprintf(msg+strlen(msg), "===>Error command format!");
90108 + // Copy the information into the user buffer
90109 + wrq->u.data.length = strlen(msg);
90110 + Status = copy_to_user(wrq->u.data.pointer, msg, wrq->u.data.length);
90112 + DBGPRINT(RT_DEBUG_TRACE, ("<==RTMPIoctlE2PROM\n"));
90116 + ==========================================================================
90118 + Read / Write RF register
90120 + pAdapter Pointer to our adapter
90121 + wrq Pointer to the ioctl argument
90128 + 1.) iwpriv ra0 rf ==> read all RF registers
90129 + 2.) iwpriv ra0 rf 1 ==> read RF where RegID=1
90130 + 3.) iwpriv ra0 rf 1=10 ==> write RF R1=0x10
90131 + ==========================================================================
90134 + IN PRTMP_ADAPTER pAdapter,
90135 + IN struct iwreq *wrq)
90145 + BOOLEAN bIsPrintAllRF = FALSE;
90148 + memset(msg, 0x00, 2048);
90149 + if (wrq->u.data.length > 1) //No parameters.
90151 + Status = copy_from_user(arg, wrq->u.data.pointer, (wrq->u.data.length > 255) ? 255 : wrq->u.data.length);
90152 + sprintf(msg, "\n");
90154 + //Parsing Read or Write
90159 + if ((value = strchr(this_char, '=')) != NULL)
90162 + if (!value || !*value)
90164 + if (sscanf(this_char, "%d", &(rfId)) == 1)
90168 + // In RT2860 ATE mode, we do not load 8051 firmware.
90169 + //We must access RF directly.
90170 + // For RT2870 ATE mode, ATE_RF_IO_WRITE8(/READ8)_BY_REG_ID are redefined.
90172 + if (ATE_ON(pAdapter))
90174 + ATE_RF_IO_READ8_BY_REG_ID(pAdapter, rfId, ®RF);
90177 +#endif // RALINK_ATE //
90178 + // according to Andy, Gary, David require.
90179 + // the command rf shall read rf register directly for dubug.
90180 + // BBP_IO_READ8_BY_REG_ID(pAdapter, bbpId, ®BBP);
90181 + RT30xxReadRFRegister(pAdapter, rfId, ®RF);
90183 + sprintf(msg+strlen(msg), "R%02d[0x%02x]:%02X ", rfId, rfId*2, regRF);
90186 + {//Invalid parametes, so default printk all RF
90187 + bIsPrintAllRF = TRUE;
90192 + { //Invalid parametes, so default printk all RF
90193 + bIsPrintAllRF = TRUE;
90199 + if ((sscanf(this_char, "%d", &(rfId)) == 1) && (sscanf(value, "%lx", &(rfValue)) == 1))
90203 + // In RT2860 ATE mode, we do not load 8051 firmware.
90204 + // We should access RF registers directly.
90205 + // For RT2870 ATE mode, ATE_RF_IO_WRITE8/READ8_BY_REG_ID are redefined.
90207 + if (ATE_ON(pAdapter))
90209 + ATE_RF_IO_READ8_BY_REG_ID(pAdapter, rfId, ®RF);
90210 + ATE_RF_IO_WRITE8_BY_REG_ID(pAdapter, (UCHAR)rfId,(UCHAR) rfValue);
90211 + //Read it back for showing
90212 + ATE_RF_IO_READ8_BY_REG_ID(pAdapter, rfId, ®RF);
90213 + sprintf(msg+strlen(msg), "R%02d[0x%02X]:%02X\n", rfId, rfId*2, regRF);
90216 +#endif // RALINK_ATE //
90218 + // according to Andy, Gary, David require.
90219 + // the command RF shall read/write RF register directly for dubug.
90220 + //BBP_IO_READ8_BY_REG_ID(pAdapter, bbpId, ®BBP);
90221 + //BBP_IO_WRITE8_BY_REG_ID(pAdapter, (UCHAR)bbpId,(UCHAR) bbpValue);
90222 + RT30xxReadRFRegister(pAdapter, rfId, ®RF);
90223 + RT30xxWriteRFRegister(pAdapter, (UCHAR)rfId,(UCHAR) rfValue);
90224 + //Read it back for showing
90225 + //BBP_IO_READ8_BY_REG_ID(pAdapter, bbpId, ®BBP);
90226 + RT30xxReadRFRegister(pAdapter, rfId, ®RF);
90227 + sprintf(msg+strlen(msg), "R%02d[0x%02X]:%02X\n", rfId, rfId*2, regRF);
90231 + {//Invalid parametes, so default printk all RF
90232 + bIsPrintAllRF = TRUE;
90236 + { //Invalid parametes, so default printk all RF
90237 + bIsPrintAllRF = TRUE;
90242 + bIsPrintAllRF = TRUE;
90244 + if (bIsPrintAllRF)
90246 + memset(msg, 0x00, 2048);
90247 + sprintf(msg, "\n");
90248 + for (rfId = 0; rfId <= 31; rfId++)
90250 + // In RT2860 ATE mode, we do not load 8051 firmware.
90251 + // We should access RF registers directly.
90252 + // For RT2870 ATE mode, ATE_RF_IO_WRITE8/READ8_BY_REG_ID are redefined.
90254 + if (ATE_ON(pAdapter))
90256 + ATE_RF_IO_READ8_BY_REG_ID(pAdapter, rfId, ®RF);
90259 +#endif // RALINK_ATE //
90261 + // according to Andy, Gary, David require.
90262 + // the command RF shall read/write RF register directly for dubug.
90263 + RT30xxReadRFRegister(pAdapter, rfId, ®RF);
90264 + sprintf(msg+strlen(msg), "%03d = %02X\n", rfId, regRF);
90266 + // Copy the information into the user buffer
90267 + DBGPRINT(RT_DEBUG_TRACE, ("strlen(msg)=%d\n", (UINT32)strlen(msg)));
90268 + wrq->u.data.length = strlen(msg);
90269 + if (copy_to_user(wrq->u.data.pointer, msg, wrq->u.data.length))
90271 + DBGPRINT(RT_DEBUG_TRACE, ("%s: copy_to_user() fail\n", __FUNCTION__));
90276 + if(strlen(msg) == 1)
90277 + sprintf(msg+strlen(msg), "===>Error command format!");
90279 + DBGPRINT(RT_DEBUG_TRACE, ("copy to user [msg=%s]\n", msg));
90280 + // Copy the information into the user buffer
90281 + DBGPRINT(RT_DEBUG_TRACE, ("strlen(msg) =%d\n", (UINT32)strlen(msg)));
90283 + // Copy the information into the user buffer
90284 + wrq->u.data.length = strlen(msg);
90285 + Status = copy_to_user(wrq->u.data.pointer, msg, wrq->u.data.length);
90288 + DBGPRINT(RT_DEBUG_TRACE, ("<==RTMPIoctlRF\n\n"));
90290 +#endif // RT30xx //
90296 +INT Set_TGnWifiTest_Proc(
90297 + IN PRTMP_ADAPTER pAd,
90300 + if (simple_strtol(arg, 0, 10) == 0)
90301 + pAd->StaCfg.bTGnWifiTest = FALSE;
90303 + pAd->StaCfg.bTGnWifiTest = TRUE;
90305 + DBGPRINT(RT_DEBUG_TRACE, ("IF Set_TGnWifiTest_Proc::(bTGnWifiTest=%d)\n", pAd->StaCfg.bTGnWifiTest));
90309 +INT Set_LongRetryLimit_Proc(
90310 + IN PRTMP_ADAPTER pAdapter,
90313 + TX_RTY_CFG_STRUC tx_rty_cfg;
90314 + UCHAR LongRetryLimit = (UCHAR)simple_strtol(arg, 0, 10);
90316 + RTMP_IO_READ32(pAdapter, TX_RTY_CFG, &tx_rty_cfg.word);
90317 + tx_rty_cfg.field.LongRtyLimit = LongRetryLimit;
90318 + RTMP_IO_WRITE32(pAdapter, TX_RTY_CFG, tx_rty_cfg.word);
90319 + DBGPRINT(RT_DEBUG_TRACE, ("IF Set_LongRetryLimit_Proc::(tx_rty_cfg=0x%x)\n", tx_rty_cfg.word));
90323 +INT Set_ShortRetryLimit_Proc(
90324 + IN PRTMP_ADAPTER pAdapter,
90327 + TX_RTY_CFG_STRUC tx_rty_cfg;
90328 + UCHAR ShortRetryLimit = (UCHAR)simple_strtol(arg, 0, 10);
90330 + RTMP_IO_READ32(pAdapter, TX_RTY_CFG, &tx_rty_cfg.word);
90331 + tx_rty_cfg.field.ShortRtyLimit = ShortRetryLimit;
90332 + RTMP_IO_WRITE32(pAdapter, TX_RTY_CFG, tx_rty_cfg.word);
90333 + DBGPRINT(RT_DEBUG_TRACE, ("IF Set_ShortRetryLimit_Proc::(tx_rty_cfg=0x%x)\n", tx_rty_cfg.word));
90337 +#ifdef EXT_BUILD_CHANNEL_LIST
90338 +INT Set_Ieee80211dClientMode_Proc(
90339 + IN PRTMP_ADAPTER pAdapter,
90342 + if (simple_strtol(arg, 0, 10) == 0)
90343 + pAdapter->StaCfg.IEEE80211dClientMode = Rt802_11_D_None;
90344 + else if (simple_strtol(arg, 0, 10) == 1)
90345 + pAdapter->StaCfg.IEEE80211dClientMode = Rt802_11_D_Flexible;
90346 + else if (simple_strtol(arg, 0, 10) == 2)
90347 + pAdapter->StaCfg.IEEE80211dClientMode = Rt802_11_D_Strict;
90351 + DBGPRINT(RT_DEBUG_TRACE, ("Set_Ieee802dMode_Proc::(IEEEE0211dMode=%d)\n", pAdapter->StaCfg.IEEE80211dClientMode));
90354 +#endif // EXT_BUILD_CHANNEL_LIST //
90356 +#ifdef CARRIER_DETECTION_SUPPORT
90357 +INT Set_CarrierDetect_Proc(
90358 + IN PRTMP_ADAPTER pAd,
90361 + if (simple_strtol(arg, 0, 10) == 0)
90362 + pAd->CommonCfg.CarrierDetect.Enable = FALSE;
90364 + pAd->CommonCfg.CarrierDetect.Enable = TRUE;
90366 + DBGPRINT(RT_DEBUG_TRACE, ("IF Set_CarrierDetect_Proc::(CarrierDetect.Enable=%d)\n", pAd->CommonCfg.CarrierDetect.Enable));
90369 +#endif // CARRIER_DETECTION_SUPPORT //
90372 +++ b/drivers/staging/rt3070/sta/rtmp_data.c
90375 + *************************************************************************
90376 + * Ralink Tech Inc.
90377 + * 5F., No.36, Taiyuan St., Jhubei City,
90378 + * Hsinchu County 302,
90381 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
90383 + * This program is free software; you can redistribute it and/or modify *
90384 + * it under the terms of the GNU General Public License as published by *
90385 + * the Free Software Foundation; either version 2 of the License, or *
90386 + * (at your option) any later version. *
90388 + * This program is distributed in the hope that it will be useful, *
90389 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
90390 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
90391 + * GNU General Public License for more details. *
90393 + * You should have received a copy of the GNU General Public License *
90394 + * along with this program; if not, write to the *
90395 + * Free Software Foundation, Inc., *
90396 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
90398 + *************************************************************************
90404 + Data path subroutines
90406 + Revision History:
90408 + -------- ---------- ----------------------------------------------
90409 + John Aug/17/04 major modification for RT2561/2661
90410 + Jan Lee Mar/17/06 major modification for RT2860 New Ring Design
90412 +#include "../rt_config.h"
90416 +VOID STARxEAPOLFrameIndicate(
90417 + IN PRTMP_ADAPTER pAd,
90418 + IN MAC_TABLE_ENTRY *pEntry,
90419 + IN RX_BLK *pRxBlk,
90420 + IN UCHAR FromWhichBSSID)
90422 + PRT28XX_RXD_STRUC pRxD = &(pRxBlk->RxD);
90423 + PRXWI_STRUC pRxWI = pRxBlk->pRxWI;
90427 +#ifdef WPA_SUPPLICANT_SUPPORT
90428 + if (pAd->StaCfg.WpaSupplicantUP)
90430 + // All EAPoL frames have to pass to upper layer (ex. WPA_SUPPLICANT daemon)
90431 + // TBD : process fragmented EAPol frames
90433 + // In 802.1x mode, if the received frame is EAP-SUCCESS packet, turn on the PortSecured variable
90434 + if ( pAd->StaCfg.IEEE8021X == TRUE &&
90435 + (EAP_CODE_SUCCESS == WpaCheckEapCode(pAd, pRxBlk->pData, pRxBlk->DataSize, LENGTH_802_1_H)))
90441 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("Receive EAP-SUCCESS Packet\n"));
90442 + //pAd->StaCfg.PortSecured = WPA_802_1X_PORT_SECURED;
90443 + STA_PORT_SECURED(pAd);
90445 + if (pAd->StaCfg.IEEE8021x_required_keys == FALSE)
90447 + idx = pAd->StaCfg.DesireSharedKeyId;
90448 + CipherAlg = pAd->StaCfg.DesireSharedKey[idx].CipherAlg;
90449 + Key = pAd->StaCfg.DesireSharedKey[idx].Key;
90451 + if (pAd->StaCfg.DesireSharedKey[idx].KeyLen > 0)
90456 + char buf[sizeof(NDIS_802_11_WEP)+MAX_LEN_OF_KEY- 1];
90457 + NDIS_802_11_WEP keyinfo;
90462 + NdisZeroMemory(&WepKey, sizeof(WepKey));
90463 + len =pAd->StaCfg.DesireSharedKey[idx].KeyLen;
90465 + NdisMoveMemory(WepKey.keyinfo.KeyMaterial,
90466 + pAd->StaCfg.DesireSharedKey[idx].Key,
90467 + pAd->StaCfg.DesireSharedKey[idx].KeyLen);
90469 + WepKey.keyinfo.KeyIndex = 0x80000000 + idx;
90470 + WepKey.keyinfo.KeyLength = len;
90471 + pAd->SharedKey[BSS0][idx].KeyLen =(UCHAR) (len <= 5 ? 5 : 13);
90473 + pAd->IndicateMediaState = NdisMediaStateConnected;
90474 + pAd->ExtraInfo = GENERAL_LINK_UP;
90475 + // need to enqueue cmd to thread
90476 + RTUSBEnqueueCmdFromNdis(pAd, OID_802_11_ADD_WEP, TRUE, &WepKey, sizeof(WepKey.keyinfo) + len - 1);
90477 +#endif // RT2870 //
90478 + // For Preventing ShardKey Table is cleared by remove key procedure.
90479 + pAd->SharedKey[BSS0][idx].CipherAlg = CipherAlg;
90480 + pAd->SharedKey[BSS0][idx].KeyLen = pAd->StaCfg.DesireSharedKey[idx].KeyLen;
90481 + NdisMoveMemory(pAd->SharedKey[BSS0][idx].Key,
90482 + pAd->StaCfg.DesireSharedKey[idx].Key,
90483 + pAd->StaCfg.DesireSharedKey[idx].KeyLen);
90488 + Indicate_Legacy_Packet(pAd, pRxBlk, FromWhichBSSID);
90493 +#endif // WPA_SUPPLICANT_SUPPORT //
90495 + // Special DATA frame that has to pass to MLME
90496 + // 1. Cisco Aironet frames for CCX2. We need pass it to MLME for special process
90497 + // 2. EAPOL handshaking frames when driver supplicant enabled, pass to MLME for special process
90499 + pTmpBuf = pRxBlk->pData - LENGTH_802_11;
90500 + NdisMoveMemory(pTmpBuf, pRxBlk->pHeader, LENGTH_802_11);
90501 + REPORT_MGMT_FRAME_TO_MLME(pAd, pRxWI->WirelessCliID, pTmpBuf, pRxBlk->DataSize + LENGTH_802_11, pRxWI->RSSI0, pRxWI->RSSI1, pRxWI->RSSI2, pRxD->PlcpSignal);
90502 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("!!! report EAPOL/AIRONET DATA to MLME (len=%d) !!!\n", pRxBlk->DataSize));
90506 + RELEASE_NDIS_PACKET(pAd, pRxBlk->pRxPacket, NDIS_STATUS_FAILURE);
90511 +VOID STARxDataFrameAnnounce(
90512 + IN PRTMP_ADAPTER pAd,
90513 + IN MAC_TABLE_ENTRY *pEntry,
90514 + IN RX_BLK *pRxBlk,
90515 + IN UCHAR FromWhichBSSID)
90519 + if (!RTMPCheckWPAframe(pAd, pEntry, pRxBlk->pData, pRxBlk->DataSize, FromWhichBSSID))
90523 + // drop all non-EAP DATA frame before
90524 + // this client's Port-Access-Control is secured
90525 + if (pRxBlk->pHeader->FC.Wep)
90527 + // unsupported cipher suite
90528 + if (pAd->StaCfg.WepStatus == Ndis802_11EncryptionDisabled)
90530 + // release packet
90531 + RELEASE_NDIS_PACKET(pAd, pRxBlk->pRxPacket, NDIS_STATUS_FAILURE);
90537 + // encryption in-use but receive a non-EAPOL clear text frame, drop it
90538 + if ((pAd->StaCfg.WepStatus != Ndis802_11EncryptionDisabled) &&
90539 + (pAd->StaCfg.PortSecured == WPA_802_1X_PORT_NOT_SECURED))
90541 + // release packet
90542 + RELEASE_NDIS_PACKET(pAd, pRxBlk->pRxPacket, NDIS_STATUS_FAILURE);
90547 + RX_BLK_CLEAR_FLAG(pRxBlk, fRX_EAP);
90548 + if (!RX_BLK_TEST_FLAG(pRxBlk, fRX_ARALINK))
90550 + // Normal legacy, AMPDU or AMSDU
90551 + CmmRxnonRalinkFrameIndicate(pAd, pRxBlk, FromWhichBSSID);
90557 + CmmRxRalinkFrameIndicate(pAd, pEntry, pRxBlk, FromWhichBSSID);
90559 +#ifdef QOS_DLS_SUPPORT
90560 + RX_BLK_CLEAR_FLAG(pRxBlk, fRX_DLS);
90561 +#endif // QOS_DLS_SUPPORT //
90565 + RX_BLK_SET_FLAG(pRxBlk, fRX_EAP);
90566 +#ifdef DOT11_N_SUPPORT
90567 + if (RX_BLK_TEST_FLAG(pRxBlk, fRX_AMPDU) && (pAd->CommonCfg.bDisableReordering == 0))
90569 + Indicate_AMPDU_Packet(pAd, pRxBlk, FromWhichBSSID);
90572 +#endif // DOT11_N_SUPPORT //
90574 + // Determin the destination of the EAP frame
90575 + // to WPA state machine or upper layer
90576 + STARxEAPOLFrameIndicate(pAd, pEntry, pRxBlk, FromWhichBSSID);
90582 +// For TKIP frame, calculate the MIC value
90583 +BOOLEAN STACheckTkipMICValue(
90584 + IN PRTMP_ADAPTER pAd,
90585 + IN MAC_TABLE_ENTRY *pEntry,
90586 + IN RX_BLK *pRxBlk)
90588 + PHEADER_802_11 pHeader = pRxBlk->pHeader;
90589 + UCHAR *pData = pRxBlk->pData;
90590 + USHORT DataSize = pRxBlk->DataSize;
90591 + UCHAR UserPriority = pRxBlk->UserPriority;
90592 + PCIPHER_KEY pWpaKey;
90593 + UCHAR *pDA, *pSA;
90595 + pWpaKey = &pAd->SharedKey[BSS0][pRxBlk->pRxWI->KeyIndex];
90597 + pDA = pHeader->Addr1;
90598 + if (RX_BLK_TEST_FLAG(pRxBlk, fRX_INFRA))
90600 + pSA = pHeader->Addr3;
90604 + pSA = pHeader->Addr2;
90607 + if (RTMPTkipCompareMICValue(pAd,
90613 + DataSize) == FALSE)
90615 + DBGPRINT_RAW(RT_DEBUG_ERROR,("Rx MIC Value error 2\n"));
90617 +#ifdef WPA_SUPPLICANT_SUPPORT
90618 + if (pAd->StaCfg.WpaSupplicantUP)
90620 + WpaSendMicFailureToWpaSupplicant(pAd, (pWpaKey->Type == PAIRWISEKEY) ? TRUE : FALSE);
90623 +#endif // WPA_SUPPLICANT_SUPPORT //
90625 + RTMPReportMicError(pAd, pWpaKey);
90628 + // release packet
90629 + RELEASE_NDIS_PACKET(pAd, pRxBlk->pRxPacket, NDIS_STATUS_FAILURE);
90638 +// All Rx routines use RX_BLK structure to hande rx events
90639 +// It is very important to build pRxBlk attributes
90640 +// 1. pHeader pointer to 802.11 Header
90641 +// 2. pData pointer to payload including LLC (just skip Header)
90642 +// 3. set payload size including LLC to DataSize
90643 +// 4. set some flags with RX_BLK_SET_FLAG()
90645 +VOID STAHandleRxDataFrame(
90646 + IN PRTMP_ADAPTER pAd,
90647 + IN RX_BLK *pRxBlk)
90649 + PRT28XX_RXD_STRUC pRxD = &(pRxBlk->RxD);
90650 + PRXWI_STRUC pRxWI = pRxBlk->pRxWI;
90651 + PHEADER_802_11 pHeader = pRxBlk->pHeader;
90652 + PNDIS_PACKET pRxPacket = pRxBlk->pRxPacket;
90653 + BOOLEAN bFragment = FALSE;
90654 + MAC_TABLE_ENTRY *pEntry = NULL;
90655 + UCHAR FromWhichBSSID = BSS0;
90656 + UCHAR UserPriority = 0;
90659 + // before LINK UP, all DATA frames are rejected
90660 + if (!OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED))
90662 + // release packet
90663 + RELEASE_NDIS_PACKET(pAd, pRxPacket, NDIS_STATUS_FAILURE);
90667 +#ifdef QOS_DLS_SUPPORT
90668 + //if ((pHeader->FC.FrDs == 0) && (pHeader->FC.ToDs == 0))
90669 + if (RTMPRcvFrameDLSCheck(pAd, pHeader, pRxWI->MPDUtotalByteCount, pRxD))
90673 +#endif // QOS_DLS_SUPPORT //
90675 + // Drop not my BSS frames
90676 + if (pRxD->MyBss == 0)
90679 + // release packet
90680 + RELEASE_NDIS_PACKET(pAd, pRxPacket, NDIS_STATUS_FAILURE);
90685 + pAd->RalinkCounters.RxCountSinceLastNULL++;
90686 + if (pAd->CommonCfg.bAPSDCapable && pAd->CommonCfg.APEdcaParm.bAPSDCapable && (pHeader->FC.SubType & 0x08))
90689 + DBGPRINT(RT_DEBUG_TRACE,("bAPSDCapable\n"));
90692 + pData = (PUCHAR)pHeader + LENGTH_802_11;
90693 + if ((*pData >> 4) & 0x01)
90695 + DBGPRINT(RT_DEBUG_TRACE,("RxDone- Rcv EOSP frame, driver may fall into sleep\n"));
90696 + pAd->CommonCfg.bInServicePeriod = FALSE;
90698 + // Force driver to fall into sleep mode when rcv EOSP frame
90699 + if (!OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_DOZE))
90701 + USHORT TbttNumToNextWakeUp;
90702 + USHORT NextDtim = pAd->StaCfg.DtimPeriod;
90705 + NdisGetSystemUpTime(&Now);
90706 + NextDtim -= (USHORT)(Now - pAd->StaCfg.LastBeaconRxTime)/pAd->CommonCfg.BeaconPeriod;
90708 + TbttNumToNextWakeUp = pAd->StaCfg.DefaultListenCount;
90709 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_RECEIVE_DTIM) && (TbttNumToNextWakeUp > NextDtim))
90710 + TbttNumToNextWakeUp = NextDtim;
90712 + MlmeSetPsmBit(pAd, PWR_SAVE);
90713 + // if WMM-APSD is failed, try to disable following line
90714 + AsicSleepThenAutoWakeup(pAd, TbttNumToNextWakeUp);
90718 + if ((pHeader->FC.MoreData) && (pAd->CommonCfg.bInServicePeriod))
90720 + DBGPRINT(RT_DEBUG_TRACE,("Sending another trigger frame when More Data bit is set to 1\n"));
90724 + // Drop NULL, CF-ACK(no data), CF-POLL(no data), and CF-ACK+CF-POLL(no data) data frame
90725 + if ((pHeader->FC.SubType & 0x04)) // bit 2 : no DATA
90727 + // release packet
90728 + RELEASE_NDIS_PACKET(pAd, pRxPacket, NDIS_STATUS_FAILURE);
90732 + // Drop not my BSS frame (we can not only check the MyBss bit in RxD)
90733 +#ifdef QOS_DLS_SUPPORT
90734 + if (!pAd->CommonCfg.bDLSCapable)
90736 +#endif // QOS_DLS_SUPPORT //
90737 + if (INFRA_ON(pAd))
90739 + // Infrastructure mode, check address 2 for BSSID
90740 + if (!RTMPEqualMemory(&pHeader->Addr2, &pAd->CommonCfg.Bssid, 6))
90742 + // Receive frame not my BSSID
90743 + // release packet
90744 + RELEASE_NDIS_PACKET(pAd, pRxPacket, NDIS_STATUS_FAILURE);
90748 + else // Ad-Hoc mode or Not associated
90750 + // Ad-Hoc mode, check address 3 for BSSID
90751 + if (!RTMPEqualMemory(&pHeader->Addr3, &pAd->CommonCfg.Bssid, 6))
90753 + // Receive frame not my BSSID
90754 + // release packet
90755 + RELEASE_NDIS_PACKET(pAd, pRxPacket, NDIS_STATUS_FAILURE);
90759 +#ifdef QOS_DLS_SUPPORT
90761 +#endif // QOS_DLS_SUPPORT //
90766 + if (pRxWI->WirelessCliID < MAX_LEN_OF_MAC_TABLE)
90768 + pEntry = &pAd->MacTab.Content[pRxWI->WirelessCliID];
90772 + // 1. release packet if infra mode
90773 + // 2. new a pEntry if ad-hoc mode
90774 + RELEASE_NDIS_PACKET(pAd, pRxPacket, NDIS_STATUS_FAILURE);
90778 + // infra or ad-hoc
90779 + if (INFRA_ON(pAd))
90781 + RX_BLK_SET_FLAG(pRxBlk, fRX_INFRA);
90782 +#ifdef QOS_DLS_SUPPORT
90783 + if ((pHeader->FC.FrDs == 0) && (pHeader->FC.ToDs == 0))
90784 + RX_BLK_SET_FLAG(pRxBlk, fRX_DLS);
90786 +#endif // QOS_DLS_SUPPORT //
90787 + ASSERT(pRxWI->WirelessCliID == BSSID_WCID);
90790 + // check Atheros Client
90791 + if ((pEntry->bIAmBadAtheros == FALSE) && (pRxD->AMPDU == 1) && (pHeader->FC.Retry ))
90793 + pEntry->bIAmBadAtheros = TRUE;
90794 + pAd->CommonCfg.IOTestParm.bCurrentAtheros = TRUE;
90795 + pAd->CommonCfg.IOTestParm.bLastAtheros = TRUE;
90796 + if (!STA_AES_ON(pAd))
90798 + AsicUpdateProtect(pAd, 8, ALLN_SETPROTECT, TRUE, FALSE);
90803 + pRxBlk->pData = (UCHAR *)pHeader;
90806 + // update RxBlk->pData, DataSize
90807 + // 802.11 Header, QOS, HTC, Hw Padding
90810 + // 1. skip 802.11 HEADER
90812 + pRxBlk->pData += LENGTH_802_11;
90813 + pRxBlk->DataSize -= LENGTH_802_11;
90817 + if (pHeader->FC.SubType & 0x08)
90819 + RX_BLK_SET_FLAG(pRxBlk, fRX_QOS);
90820 + UserPriority = *(pRxBlk->pData) & 0x0f;
90821 + // bit 7 in QoS Control field signals the HT A-MSDU format
90822 + if ((*pRxBlk->pData) & 0x80)
90824 + RX_BLK_SET_FLAG(pRxBlk, fRX_AMSDU);
90827 + // skip QOS contorl field
90828 + pRxBlk->pData += 2;
90829 + pRxBlk->DataSize -=2;
90831 + pRxBlk->UserPriority = UserPriority;
90833 + // 3. Order bit: A-Ralink or HTC+
90834 + if (pHeader->FC.Order)
90836 +#ifdef AGGREGATION_SUPPORT
90837 + if ((pRxWI->PHYMODE <= MODE_OFDM) && (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_AGGREGATION_INUSED)))
90839 + RX_BLK_SET_FLAG(pRxBlk, fRX_ARALINK);
90844 +#ifdef DOT11_N_SUPPORT
90845 + RX_BLK_SET_FLAG(pRxBlk, fRX_HTC);
90846 + // skip HTC contorl field
90847 + pRxBlk->pData += 4;
90848 + pRxBlk->DataSize -= 4;
90849 +#endif // DOT11_N_SUPPORT //
90853 + // 4. skip HW padding
90856 + // just move pData pointer
90857 + // because DataSize excluding HW padding
90858 + RX_BLK_SET_FLAG(pRxBlk, fRX_PAD);
90859 + pRxBlk->pData += 2;
90862 +#ifdef DOT11_N_SUPPORT
90865 + RX_BLK_SET_FLAG(pRxBlk, fRX_AMPDU);
90867 +#endif // DOT11_N_SUPPORT //
90871 + // Case I Process Broadcast & Multicast data frame
90873 + if (pRxD->Bcast || pRxD->Mcast)
90875 + INC_COUNTER64(pAd->WlanCounters.MulticastReceivedFrameCount);
90877 + // Drop Mcast/Bcast frame with fragment bit on
90878 + if (pHeader->FC.MoreFrag)
90880 + // release packet
90881 + RELEASE_NDIS_PACKET(pAd, pRxPacket, NDIS_STATUS_FAILURE);
90885 + // Filter out Bcast frame which AP relayed for us
90886 + if (pHeader->FC.FrDs && MAC_ADDR_EQUAL(pHeader->Addr3, pAd->CurrentAddress))
90888 + // release packet
90889 + RELEASE_NDIS_PACKET(pAd, pRxPacket, NDIS_STATUS_FAILURE);
90893 + Indicate_Legacy_Packet(pAd, pRxBlk, FromWhichBSSID);
90896 + else if (pRxD->U2M)
90898 + pAd->LastRxRate = (USHORT)((pRxWI->MCS) + (pRxWI->BW <<7) + (pRxWI->ShortGI <<8)+ (pRxWI->PHYMODE <<14)) ;
90901 +#ifdef QOS_DLS_SUPPORT
90902 + if (RX_BLK_TEST_FLAG(pRxBlk, fRX_DLS))
90904 + MAC_TABLE_ENTRY *pDlsEntry = NULL;
90906 + pDlsEntry = DlsEntryTableLookupByWcid(pAd, pRxWI->WirelessCliID, pHeader->Addr2, TRUE);
90908 + Update_Rssi_Sample(pAd, &pDlsEntry->RssiSample, pRxWI);
90911 +#endif // QOS_DLS_SUPPORT //
90912 + if (ADHOC_ON(pAd))
90914 + pEntry = MacTableLookup(pAd, pHeader->Addr2);
90916 + Update_Rssi_Sample(pAd, &pEntry->RssiSample, pRxWI);
90920 + Update_Rssi_Sample(pAd, &pAd->StaCfg.RssiSample, pRxWI);
90922 + pAd->StaCfg.LastSNR0 = (UCHAR)(pRxWI->SNR0);
90923 + pAd->StaCfg.LastSNR1 = (UCHAR)(pRxWI->SNR1);
90925 + pAd->RalinkCounters.OneSecRxOkDataCnt++;
90928 + if (!((pHeader->Frag == 0) && (pHeader->FC.MoreFrag == 0)))
90930 + // re-assemble the fragmented packets
90931 + // return complete frame (pRxPacket) or NULL
90932 + bFragment = TRUE;
90933 + pRxPacket = RTMPDeFragmentDataFrame(pAd, pRxBlk);
90938 + pEntry = &pAd->MacTab.Content[pRxWI->WirelessCliID];
90940 + // process complete frame
90941 + if (bFragment && (pRxD->Decrypted) && (pEntry->WepStatus == Ndis802_11Encryption2Enabled))
90943 + // Minus MIC length
90944 + pRxBlk->DataSize -= 8;
90946 + // For TKIP frame, calculate the MIC value
90947 + if (STACheckTkipMICValue(pAd, pEntry, pRxBlk) == FALSE)
90953 + STARxDataFrameAnnounce(pAd, pEntry, pRxBlk, FromWhichBSSID);
90959 + // because RTMPDeFragmentDataFrame() will release rx packet,
90960 + // if packet is fragmented
90966 + // release packet
90967 + RELEASE_NDIS_PACKET(pAd, pRxPacket, NDIS_STATUS_FAILURE);
90970 +VOID STAHandleRxMgmtFrame(
90971 + IN PRTMP_ADAPTER pAd,
90972 + IN RX_BLK *pRxBlk)
90974 + PRT28XX_RXD_STRUC pRxD = &(pRxBlk->RxD);
90975 + PRXWI_STRUC pRxWI = pRxBlk->pRxWI;
90976 + PHEADER_802_11 pHeader = pRxBlk->pHeader;
90977 + PNDIS_PACKET pRxPacket = pRxBlk->pRxPacket;
90982 + // We should collect RSSI not only U2M data but also my beacon
90983 + if ((pHeader->FC.SubType == SUBTYPE_BEACON) && (MAC_ADDR_EQUAL(&pAd->CommonCfg.Bssid, &pHeader->Addr2))
90984 + && (pAd->RxAnt.EvaluatePeriod == 0))
90986 + Update_Rssi_Sample(pAd, &pAd->StaCfg.RssiSample, pRxWI);
90988 + pAd->StaCfg.LastSNR0 = (UCHAR)(pRxWI->SNR0);
90989 + pAd->StaCfg.LastSNR1 = (UCHAR)(pRxWI->SNR1);
90993 + // collect rssi information for antenna diversity
90994 + if (pAd->NicConfig2.field.AntDiversity)
90996 + if ((pRxD->U2M) || ((pHeader->FC.SubType == SUBTYPE_BEACON) && (MAC_ADDR_EQUAL(&pAd->CommonCfg.Bssid, &pHeader->Addr2))))
90998 + COLLECT_RX_ANTENNA_AVERAGE_RSSI(pAd, ConvertToRssi(pAd, (UCHAR)pRxWI->RSSI0, RSSI_0), 0); //Note: RSSI2 not used on RT73
90999 + pAd->StaCfg.NumOfAvgRssiSample ++;
91002 +#endif // RT30xx //
91004 + // First check the size, it MUST not exceed the mlme queue size
91005 + if (pRxWI->MPDUtotalByteCount > MGMT_DMA_BUFFER_SIZE)
91007 + DBGPRINT_ERR(("STAHandleRxMgmtFrame: frame too large, size = %d \n", pRxWI->MPDUtotalByteCount));
91011 + REPORT_MGMT_FRAME_TO_MLME(pAd, pRxWI->WirelessCliID, pHeader, pRxWI->MPDUtotalByteCount,
91012 + pRxWI->RSSI0, pRxWI->RSSI1, pRxWI->RSSI2, pRxD->PlcpSignal);
91015 + RELEASE_NDIS_PACKET(pAd, pRxPacket, NDIS_STATUS_SUCCESS);
91018 +VOID STAHandleRxControlFrame(
91019 + IN PRTMP_ADAPTER pAd,
91020 + IN RX_BLK *pRxBlk)
91022 +#ifdef DOT11_N_SUPPORT
91023 + PRXWI_STRUC pRxWI = pRxBlk->pRxWI;
91024 +#endif // DOT11_N_SUPPORT //
91025 + PHEADER_802_11 pHeader = pRxBlk->pHeader;
91026 + PNDIS_PACKET pRxPacket = pRxBlk->pRxPacket;
91028 + switch (pHeader->FC.SubType)
91030 + case SUBTYPE_BLOCK_ACK_REQ:
91031 +#ifdef DOT11_N_SUPPORT
91033 + CntlEnqueueForRecv(pAd, pRxWI->WirelessCliID, (pRxWI->MPDUtotalByteCount), (PFRAME_BA_REQ)pHeader);
91036 +#endif // DOT11_N_SUPPORT //
91037 + case SUBTYPE_BLOCK_ACK:
91038 + case SUBTYPE_ACK:
91043 + RELEASE_NDIS_PACKET(pAd, pRxPacket, NDIS_STATUS_FAILURE);
91048 + ========================================================================
91050 + Routine Description:
91051 + Process RxDone interrupt, running in DPC level
91054 + pAd Pointer to our adapter
91059 + IRQL = DISPATCH_LEVEL
91062 + This routine has to maintain Rx ring read pointer.
91063 + Need to consider QOS DATA format when converting to 802.3
91064 + ========================================================================
91066 +BOOLEAN STARxDoneInterruptHandle(
91067 + IN PRTMP_ADAPTER pAd,
91070 + NDIS_STATUS Status;
91071 + UINT32 RxProcessed, RxPending;
91072 + BOOLEAN bReschedule = FALSE;
91073 + RT28XX_RXD_STRUC *pRxD;
91075 + PRXWI_STRUC pRxWI;
91076 + PNDIS_PACKET pRxPacket;
91077 + PHEADER_802_11 pHeader;
91080 + RxProcessed = RxPending = 0;
91082 + // process whole rx ring
91086 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RADIO_OFF |
91087 + fRTMP_ADAPTER_RESET_IN_PROGRESS |
91088 + fRTMP_ADAPTER_HALT_IN_PROGRESS |
91089 + fRTMP_ADAPTER_NIC_NOT_EXIST) ||
91090 + !RTMP_TEST_FLAG(pAd,fRTMP_ADAPTER_START_UP))
91096 + RxProcessed ++; // test
91098 + // 1. allocate a new data packet into rx ring to replace received packet
91099 + // then processing the received packet
91100 + // 2. the callee must take charge of release of packet
91101 + // 3. As far as driver is concerned ,
91102 + // the rx packet must
91103 + // a. be indicated to upper layer or
91104 + // b. be released if it is discarded
91105 + pRxPacket = GetPacketFromRxRing(pAd, &(RxCell.RxD), &bReschedule, &RxPending);
91106 + if (pRxPacket == NULL)
91108 + // no more packet to process
91112 + // get rx ring descriptor
91113 + pRxD = &(RxCell.RxD);
91114 + // get rx data buffer
91115 + pData = GET_OS_PKT_DATAPTR(pRxPacket);
91116 + pRxWI = (PRXWI_STRUC) pData;
91117 + pHeader = (PHEADER_802_11) (pData+RXWI_SIZE) ;
91119 +#ifdef RT_BIG_ENDIAN
91120 + RTMPFrameEndianChange(pAd, (PUCHAR)pHeader, DIR_READ, TRUE);
91121 + RTMPWIEndianChange((PUCHAR)pRxWI, TYPE_RXWI);
91125 + RxCell.pRxWI = pRxWI;
91126 + RxCell.pHeader = pHeader;
91127 + RxCell.pRxPacket = pRxPacket;
91128 + RxCell.pData = (UCHAR *) pHeader;
91129 + RxCell.DataSize = pRxWI->MPDUtotalByteCount;
91130 + RxCell.Flags = 0;
91132 + // Increase Total receive byte counter after real data received no mater any error or not
91133 + pAd->RalinkCounters.ReceivedByteCount += pRxWI->MPDUtotalByteCount;
91134 + pAd->RalinkCounters.RxCount ++;
91136 + INC_COUNTER64(pAd->WlanCounters.ReceivedFragmentCount);
91138 + if (pRxWI->MPDUtotalByteCount < 14)
91139 + Status = NDIS_STATUS_FAILURE;
91141 + if (MONITOR_ON(pAd))
91143 + send_monitor_packets(pAd, &RxCell);
91146 + /* RT2870 invokes STARxDoneInterruptHandle() in rtusb_bulk.c */
91150 + pAd->ate.RxCntPerSec++;
91151 + ATESampleRssi(pAd, pRxWI);
91152 +#ifdef RALINK_28xx_QA
91153 + if (pAd->ate.bQARxStart == TRUE)
91155 + /* (*pRxD) has been swapped in GetPacketFromRxRing() */
91156 + ATE_QA_Statistics(pAd, pRxWI, pRxD, pHeader);
91158 +#endif // RALINK_28xx_QA //
91159 + RELEASE_NDIS_PACKET(pAd, pRxPacket, NDIS_STATUS_SUCCESS);
91162 +#endif // RALINK_ATE //
91164 + // Check for all RxD errors
91165 + Status = RTMPCheckRxError(pAd, pHeader, pRxWI, pRxD);
91167 + // Handle the received frame
91168 + if (Status == NDIS_STATUS_SUCCESS)
91170 + switch (pHeader->FC.Type)
91172 + // CASE I, receive a DATA frame
91175 + // process DATA frame
91176 + STAHandleRxDataFrame(pAd, &RxCell);
91179 + // CASE II, receive a MGMT frame
91182 + STAHandleRxMgmtFrame(pAd, &RxCell);
91185 + // CASE III. receive a CNTL frame
91188 + STAHandleRxControlFrame(pAd, &RxCell);
91191 + // discard other type
91193 + RELEASE_NDIS_PACKET(pAd, pRxPacket, NDIS_STATUS_FAILURE);
91199 + pAd->Counters8023.RxErrors++;
91200 + // discard this frame
91201 + RELEASE_NDIS_PACKET(pAd, pRxPacket, NDIS_STATUS_FAILURE);
91205 + return bReschedule;
91209 + ========================================================================
91211 + Routine Description:
91213 + pAd Pointer to our adapter
91215 + IRQL = DISPATCH_LEVEL
91217 + ========================================================================
91219 +VOID RTMPHandleTwakeupInterrupt(
91220 + IN PRTMP_ADAPTER pAd)
91222 + AsicForceWakeup(pAd, FALSE);
91226 +========================================================================
91227 +Routine Description:
91228 + Early checking and OS-depened parsing for Tx packet send to our STA driver.
91231 + NDIS_HANDLE MiniportAdapterContext Pointer refer to the device handle, i.e., the pAd.
91232 + PPNDIS_PACKET ppPacketArray The packet array need to do transmission.
91233 + UINT NumberOfPackets Number of packet in packet array.
91239 + This function do early checking and classification for send-out packet.
91240 + You only can put OS-depened & STA related code in here.
91241 +========================================================================
91243 +VOID STASendPackets(
91244 + IN NDIS_HANDLE MiniportAdapterContext,
91245 + IN PPNDIS_PACKET ppPacketArray,
91246 + IN UINT NumberOfPackets)
91249 + PRTMP_ADAPTER pAd = (PRTMP_ADAPTER) MiniportAdapterContext;
91250 + PNDIS_PACKET pPacket;
91251 + BOOLEAN allowToSend = FALSE;
91254 + for (Index = 0; Index < NumberOfPackets; Index++)
91256 + pPacket = ppPacketArray[Index];
91261 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RESET_IN_PROGRESS) ||
91262 + RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS) ||
91263 + RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RADIO_OFF))
91265 + // Drop send request since hardware is in reset state
91268 + else if (!INFRA_ON(pAd) && !ADHOC_ON(pAd))
91270 + // Drop send request since there are no physical connection yet
91275 + // Record that orignal packet source is from NDIS layer,so that
91276 + // later on driver knows how to release this NDIS PACKET
91277 +#ifdef QOS_DLS_SUPPORT
91278 + MAC_TABLE_ENTRY *pEntry;
91279 + PUCHAR pSrcBufVA = GET_OS_PKT_DATAPTR(pPacket);
91281 + pEntry = MacTableLookup(pAd, pSrcBufVA);
91282 + if (pEntry && (pEntry->ValidAsDls == TRUE))
91284 + RTMP_SET_PACKET_WCID(pPacket, pEntry->Aid);
91287 +#endif // QOS_DLS_SUPPORT //
91288 + RTMP_SET_PACKET_WCID(pPacket, 0); // this field is useless when in STA mode
91289 + RTMP_SET_PACKET_SOURCE(pPacket, PKTSRC_NDIS);
91290 + NDIS_SET_PACKET_STATUS(pPacket, NDIS_STATUS_PENDING);
91291 + pAd->RalinkCounters.PendingNdisPacketCount++;
91293 + allowToSend = TRUE;
91297 + if (allowToSend == TRUE)
91298 + STASendPacket(pAd, pPacket);
91300 + RELEASE_NDIS_PACKET(pAd, pPacket, NDIS_STATUS_FAILURE);
91303 + // Dequeue outgoing frames from TxSwQueue[] and process it
91304 + RTMPDeQueuePacket(pAd, FALSE, NUM_OF_TX_RING, MAX_TX_PROCESS);
91310 +========================================================================
91311 +Routine Description:
91312 + This routine is used to do packet parsing and classification for Tx packet
91313 + to STA device, and it will en-queue packets to our TxSwQueue depends on AC
91317 + pAd Pointer to our adapter
91318 + pPacket Pointer to send packet
91321 + NDIS_STATUS_SUCCESS If succes to queue the packet into TxSwQueue.
91322 + NDIS_STATUS_FAILURE If failed to do en-queue.
91325 + You only can put OS-indepened & STA related code in here.
91326 +========================================================================
91328 +NDIS_STATUS STASendPacket(
91329 + IN PRTMP_ADAPTER pAd,
91330 + IN PNDIS_PACKET pPacket)
91332 + PACKET_INFO PacketInfo;
91333 + PUCHAR pSrcBufVA;
91335 + UINT AllowFragSize;
91336 + UCHAR NumberOfFrag;
91337 +// UCHAR RTSRequired;
91338 + UCHAR QueIdx, UserPriority;
91339 + MAC_TABLE_ENTRY *pEntry = NULL;
91340 + unsigned int IrqFlags;
91341 + UCHAR FlgIsIP = 0;
91344 + // Prepare packet information structure for buffer descriptor
91345 + // chained within a single NDIS packet.
91346 + RTMP_QueryPacketInfo(pPacket, &PacketInfo, &pSrcBufVA, &SrcBufLen);
91348 + if (pSrcBufVA == NULL)
91350 + DBGPRINT(RT_DEBUG_ERROR,("STASendPacket --> pSrcBufVA == NULL !!!SrcBufLen=%x\n",SrcBufLen));
91351 + // Resourece is low, system did not allocate virtual address
91352 + // return NDIS_STATUS_FAILURE directly to upper layer
91353 + RELEASE_NDIS_PACKET(pAd, pPacket, NDIS_STATUS_FAILURE);
91354 + return NDIS_STATUS_FAILURE;
91358 + if (SrcBufLen < 14)
91360 + DBGPRINT(RT_DEBUG_ERROR,("STASendPacket --> Ndis Packet buffer error !!!\n"));
91361 + RELEASE_NDIS_PACKET(pAd, pPacket, NDIS_STATUS_FAILURE);
91362 + return (NDIS_STATUS_FAILURE);
91365 + // In HT rate adhoc mode, A-MPDU is often used. So need to lookup BA Table and MAC Entry.
91366 + // Note multicast packets in adhoc also use BSSID_WCID index.
91368 + if(INFRA_ON(pAd))
91370 +#ifdef QOS_DLS_SUPPORT
91373 + tmpWcid = RTMP_GET_PACKET_WCID(pPacket);
91374 + if (VALID_WCID(tmpWcid) &&
91375 + (pAd->MacTab.Content[tmpWcid].ValidAsDls== TRUE))
91377 + pEntry = &pAd->MacTab.Content[tmpWcid];
91378 + Rate = pAd->MacTab.Content[tmpWcid].CurrTxRate;
91381 +#endif // QOS_DLS_SUPPORT //
91383 + pEntry = &pAd->MacTab.Content[BSSID_WCID];
91384 + RTMP_SET_PACKET_WCID(pPacket, BSSID_WCID);
91385 + Rate = pAd->CommonCfg.TxRate;
91388 + else if (ADHOC_ON(pAd))
91390 + if (*pSrcBufVA & 0x01)
91392 + RTMP_SET_PACKET_WCID(pPacket, MCAST_WCID);
91393 + pEntry = &pAd->MacTab.Content[MCAST_WCID];
91397 + pEntry = MacTableLookup(pAd, pSrcBufVA);
91399 + Rate = pAd->CommonCfg.TxRate;
91405 + DBGPRINT(RT_DEBUG_ERROR,("STASendPacket->Cannot find pEntry(%2x:%2x:%2x:%2x:%2x:%2x) in MacTab!\n", PRINT_MAC(pSrcBufVA)));
91406 + // Resourece is low, system did not allocate virtual address
91407 + // return NDIS_STATUS_FAILURE directly to upper layer
91408 + RELEASE_NDIS_PACKET(pAd, pPacket, NDIS_STATUS_FAILURE);
91409 + return NDIS_STATUS_FAILURE;
91412 + if (ADHOC_ON(pAd)
91415 + RTMP_SET_PACKET_WCID(pPacket, (UCHAR)pEntry->Aid);
91419 + // Check the Ethernet Frame type of this packet, and set the RTMP_SET_PACKET_SPECIFIC flags.
91420 + // Here we set the PACKET_SPECIFIC flags(LLC, VLAN, DHCP/ARP, EAPOL).
91421 + RTMPCheckEtherType(pAd, pPacket);
91426 + // WPA 802.1x secured port control - drop all non-802.1x frame before port secured
91428 + if (((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA) ||
91429 + (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK) ||
91430 + (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2) ||
91431 + (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK)
91432 +#ifdef WPA_SUPPLICANT_SUPPORT
91433 + || (pAd->StaCfg.IEEE8021X == TRUE)
91434 +#endif // WPA_SUPPLICANT_SUPPORT //
91435 +#ifdef LEAP_SUPPORT
91436 + || (pAd->StaCfg.LeapAuthMode == CISCO_AuthModeLEAP)
91437 +#endif // LEAP_SUPPORT //
91439 + && ((pAd->StaCfg.PortSecured == WPA_802_1X_PORT_NOT_SECURED) || (pAd->StaCfg.MicErrCnt >= 2))
91440 + && (RTMP_GET_PACKET_EAPOL(pPacket)== FALSE)
91443 + DBGPRINT(RT_DEBUG_TRACE,("STASendPacket --> Drop packet before port secured !!!\n"));
91444 + RELEASE_NDIS_PACKET(pAd, pPacket, NDIS_STATUS_FAILURE);
91446 + return (NDIS_STATUS_FAILURE);
91450 + // STEP 1. Decide number of fragments required to deliver this MSDU.
91451 + // The estimation here is not very accurate because difficult to
91452 + // take encryption overhead into consideration here. The result
91453 + // "NumberOfFrag" is then just used to pre-check if enough free
91454 + // TXD are available to hold this MSDU.
91457 + if (*pSrcBufVA & 0x01) // fragmentation not allowed on multicast & broadcast
91458 + NumberOfFrag = 1;
91459 + else if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_AGGREGATION_INUSED))
91460 + NumberOfFrag = 1; // Aggregation overwhelms fragmentation
91461 + else if (CLIENT_STATUS_TEST_FLAG(pEntry, fCLIENT_STATUS_AMSDU_INUSED))
91462 + NumberOfFrag = 1; // Aggregation overwhelms fragmentation
91463 +#ifdef DOT11_N_SUPPORT
91464 + else if ((pAd->StaCfg.HTPhyMode.field.MODE == MODE_HTMIX) || (pAd->StaCfg.HTPhyMode.field.MODE == MODE_HTGREENFIELD))
91465 + NumberOfFrag = 1; // MIMO RATE overwhelms fragmentation
91466 +#endif // DOT11_N_SUPPORT //
91469 + // The calculated "NumberOfFrag" is a rough estimation because of various
91470 + // encryption/encapsulation overhead not taken into consideration. This number is just
91471 + // used to make sure enough free TXD are available before fragmentation takes place.
91472 + // In case the actual required number of fragments of an NDIS packet
91473 + // excceeds "NumberOfFrag"caculated here and not enough free TXD available, the
91474 + // last fragment (i.e. last MPDU) will be dropped in RTMPHardTransmit() due to out of
91475 + // resource, and the NDIS packet will be indicated NDIS_STATUS_FAILURE. This should
91476 + // rarely happen and the penalty is just like a TX RETRY fail. Affordable.
91478 + AllowFragSize = (pAd->CommonCfg.FragmentThreshold) - LENGTH_802_11 - LENGTH_CRC;
91479 + NumberOfFrag = ((PacketInfo.TotalPacketLength - LENGTH_802_3 + LENGTH_802_1_H) / AllowFragSize) + 1;
91480 + // To get accurate number of fragmentation, Minus 1 if the size just match to allowable fragment size
91481 + if (((PacketInfo.TotalPacketLength - LENGTH_802_3 + LENGTH_802_1_H) % AllowFragSize) == 0)
91487 + // Save fragment number to Ndis packet reserved field
91488 + RTMP_SET_PACKET_FRAGMENTS(pPacket, NumberOfFrag);
91491 + // STEP 2. Check the requirement of RTS:
91492 + // If multiple fragment required, RTS is required only for the first fragment
91493 + // if the fragment size large than RTS threshold
91494 + // For RT28xx, Let ASIC send RTS/CTS
91495 + RTMP_SET_PACKET_RTS(pPacket, 0);
91496 + RTMP_SET_PACKET_TXRATE(pPacket, pAd->CommonCfg.TxRate);
91499 + // STEP 3. Traffic classification. outcome = <UserPriority, QueIdx>
91501 + UserPriority = 0;
91502 + QueIdx = QID_AC_BE;
91503 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_WMM_INUSED) &&
91504 + CLIENT_STATUS_TEST_FLAG(pEntry, fCLIENT_STATUS_WMM_CAPABLE))
91507 + UCHAR LlcSnapLen = 0, Byte0, Byte1;
91510 + // get Ethernet protocol field
91511 + Protocol = (USHORT)((pSrcBufVA[12] << 8) + pSrcBufVA[13]);
91512 + if (Protocol <= 1500)
91514 + // get Ethernet protocol field from LLC/SNAP
91515 + if (Sniff2BytesFromNdisBuffer(PacketInfo.pFirstBuffer, LENGTH_802_3 + 6, &Byte0, &Byte1) != NDIS_STATUS_SUCCESS)
91518 + Protocol = (USHORT)((Byte0 << 8) + Byte1);
91522 + // always AC_BE for non-IP packet
91523 + if (Protocol != 0x0800)
91527 + if (Sniff2BytesFromNdisBuffer(PacketInfo.pFirstBuffer, LENGTH_802_3 + LlcSnapLen, &Byte0, &Byte1) != NDIS_STATUS_SUCCESS)
91530 + // return AC_BE if packet is not IPv4
91531 + if ((Byte0 & 0xf0) != 0x40)
91535 + UserPriority = (Byte1 & 0xe0) >> 5;
91536 + QueIdx = MapUserPriorityToAccessCategory[UserPriority];
91538 + // TODO: have to check ACM bit. apply TSPEC if ACM is ON
91539 + // TODO: downgrade UP & QueIdx before passing ACM
91540 + if (pAd->CommonCfg.APEdcaParm.bACM[QueIdx])
91542 + UserPriority = 0;
91543 + QueIdx = QID_AC_BE;
91548 + RTMP_SET_PACKET_UP(pPacket, UserPriority);
91552 + // Make sure SendTxWait queue resource won't be used by other threads
91553 + RTMP_IRQ_LOCK(&pAd->irq_lock, IrqFlags);
91554 + if (pAd->TxSwQueue[QueIdx].Number >= MAX_PACKETS_IN_QUEUE)
91556 + RTMP_IRQ_UNLOCK(&pAd->irq_lock, IrqFlags);
91557 +#ifdef BLOCK_NET_IF
91558 + StopNetIfQueue(pAd, QueIdx, pPacket);
91559 +#endif // BLOCK_NET_IF //
91560 + RELEASE_NDIS_PACKET(pAd, pPacket, NDIS_STATUS_FAILURE);
91562 + return NDIS_STATUS_FAILURE;
91566 + InsertTailQueue(&pAd->TxSwQueue[QueIdx], PACKET_TO_QUEUE_ENTRY(pPacket));
91568 + RTMP_IRQ_UNLOCK(&pAd->irq_lock, IrqFlags);
91570 +#ifdef DOT11_N_SUPPORT
91571 + if ((pAd->CommonCfg.BACapability.field.AutoBA == TRUE)&&
91572 + IS_HT_STA(pEntry))
91574 + //PMAC_TABLE_ENTRY pMacEntry = &pAd->MacTab.Content[BSSID_WCID];
91575 + if (((pEntry->TXBAbitmap & (1<<UserPriority)) == 0) &&
91576 + ((pEntry->BADeclineBitmap & (1<<UserPriority)) == 0) &&
91577 + (pEntry->PortSecured == WPA_802_1X_PORT_SECURED)
91578 + // For IOT compatibility, if
91579 + // 1. It is Ralink chip or
91580 + // 2. It is OPEN or AES mode,
91581 + // then BA session can be bulit.
91582 + && ((pEntry->ValidAsCLI && pAd->MlmeAux.APRalinkIe != 0x0) ||
91583 + (pEntry->WepStatus == Ndis802_11WEPDisabled || pEntry->WepStatus == Ndis802_11Encryption3Enabled))
91586 + BAOriSessionSetUp(pAd, pEntry, 0, 0, 10, FALSE);
91589 +#endif // DOT11_N_SUPPORT //
91591 + pAd->RalinkCounters.OneSecOsTxCount[QueIdx]++; // TODO: for debug only. to be removed
91592 + return NDIS_STATUS_SUCCESS;
91597 + ========================================================================
91599 + Routine Description:
91600 + This subroutine will scan through releative ring descriptor to find
91601 + out avaliable free ring descriptor and compare with request size.
91604 + pAd Pointer to our adapter
91605 + QueIdx Selected TX Ring
91608 + NDIS_STATUS_FAILURE Not enough free descriptor
91609 + NDIS_STATUS_SUCCESS Enough free descriptor
91611 + IRQL = PASSIVE_LEVEL
91612 + IRQL = DISPATCH_LEVEL
91616 + ========================================================================
91621 + Actually, this function used to check if the TxHardware Queue still has frame need to send.
91622 + If no frame need to send, go to sleep, else, still wake up.
91624 +NDIS_STATUS RTMPFreeTXDRequest(
91625 + IN PRTMP_ADAPTER pAd,
91627 + IN UCHAR NumberRequired,
91628 + IN PUCHAR FreeNumberIs)
91630 + //ULONG FreeNumber = 0;
91631 + NDIS_STATUS Status = NDIS_STATUS_FAILURE;
91632 + unsigned long IrqFlags;
91633 + HT_TX_CONTEXT *pHTTXContext;
91643 + pHTTXContext = &pAd->TxContext[QueIdx];
91644 + RTMP_IRQ_LOCK(&pAd->TxContextQueueLock[QueIdx], IrqFlags);
91645 + if ((pHTTXContext->CurWritePosition != pHTTXContext->ENextBulkOutPosition) ||
91646 + (pHTTXContext->IRPPending == TRUE))
91648 + Status = NDIS_STATUS_FAILURE;
91652 + Status = NDIS_STATUS_SUCCESS;
91654 + RTMP_IRQ_UNLOCK(&pAd->TxContextQueueLock[QueIdx], IrqFlags);
91659 + if (pAd->MgmtRing.TxSwFreeIdx != MGMT_RING_SIZE)
91660 + Status = NDIS_STATUS_FAILURE;
91662 + Status = NDIS_STATUS_SUCCESS;
91666 + DBGPRINT(RT_DEBUG_ERROR,("RTMPFreeTXDRequest::Invalid QueIdx(=%d)\n", QueIdx));
91673 +#endif // RT2870 //
91676 +VOID RTMPSendDisassociationFrame(
91677 + IN PRTMP_ADAPTER pAd)
91681 +VOID RTMPSendNullFrame(
91682 + IN PRTMP_ADAPTER pAd,
91684 + IN BOOLEAN bQosNull)
91686 + UCHAR NullFrame[48];
91688 + PHEADER_802_11 pHeader_802_11;
91696 +#endif // RALINK_ATE //
91698 + // WPA 802.1x secured port control
91699 + if (((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA) ||
91700 + (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK) ||
91701 + (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2) ||
91702 + (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK)
91703 +#ifdef WPA_SUPPLICANT_SUPPORT
91704 + || (pAd->StaCfg.IEEE8021X == TRUE)
91707 + (pAd->StaCfg.PortSecured == WPA_802_1X_PORT_NOT_SECURED))
91712 + NdisZeroMemory(NullFrame, 48);
91713 + Length = sizeof(HEADER_802_11);
91715 + pHeader_802_11 = (PHEADER_802_11) NullFrame;
91717 + pHeader_802_11->FC.Type = BTYPE_DATA;
91718 + pHeader_802_11->FC.SubType = SUBTYPE_NULL_FUNC;
91719 + pHeader_802_11->FC.ToDs = 1;
91720 + COPY_MAC_ADDR(pHeader_802_11->Addr1, pAd->CommonCfg.Bssid);
91721 + COPY_MAC_ADDR(pHeader_802_11->Addr2, pAd->CurrentAddress);
91722 + COPY_MAC_ADDR(pHeader_802_11->Addr3, pAd->CommonCfg.Bssid);
91724 + if (pAd->CommonCfg.bAPSDForcePowerSave)
91726 + pHeader_802_11->FC.PwrMgmt = PWR_SAVE;
91730 + pHeader_802_11->FC.PwrMgmt = (pAd->StaCfg.Psm == PWR_SAVE) ? 1: 0;
91732 + pHeader_802_11->Duration = pAd->CommonCfg.Dsifs + RTMPCalcDuration(pAd, TxRate, 14);
91735 + pHeader_802_11->Sequence = pAd->Sequence;
91737 + // Prepare QosNull function frame
91740 + pHeader_802_11->FC.SubType = SUBTYPE_QOS_NULL;
91742 + // copy QOS control bytes
91743 + NullFrame[Length] = 0;
91744 + NullFrame[Length+1] = 0;
91745 + Length += 2;// if pad with 2 bytes for alignment, APSD will fail
91748 + HAL_KickOutNullFrameTx(pAd, 0, NullFrame, Length);
91752 +// IRQL = DISPATCH_LEVEL
91753 +VOID RTMPSendRTSFrame(
91754 + IN PRTMP_ADAPTER pAd,
91756 + IN unsigned int NextMpduSize,
91758 + IN UCHAR RTSRate,
91759 + IN USHORT AckDuration,
91761 + IN UCHAR FrameGap)
91767 +// --------------------------------------------------------
91768 +// FIND ENCRYPT KEY AND DECIDE CIPHER ALGORITHM
91769 +// Find the WPA key, either Group or Pairwise Key
91770 +// LEAP + TKIP also use WPA key.
91771 +// --------------------------------------------------------
91772 +// Decide WEP bit and cipher suite to be used. Same cipher suite should be used for whole fragment burst
91773 +// In Cisco CCX 2.0 Leap Authentication
91774 +// WepStatus is Ndis802_11Encryption1Enabled but the key will use PairwiseKey
91775 +// Instead of the SharedKey, SharedKey Length may be Zero.
91776 +VOID STAFindCipherAlgorithm(
91777 + IN PRTMP_ADAPTER pAd,
91778 + IN TX_BLK *pTxBlk)
91780 + NDIS_802_11_ENCRYPTION_STATUS Cipher; // To indicate cipher used for this packet
91781 + UCHAR CipherAlg = CIPHER_NONE; // cipher alogrithm
91782 + UCHAR KeyIdx = 0xff;
91783 + PUCHAR pSrcBufVA;
91784 + PCIPHER_KEY pKey = NULL;
91786 + pSrcBufVA = GET_OS_PKT_DATAPTR(pTxBlk->pPacket);
91790 + if ((*pSrcBufVA & 0x01) && (ADHOC_ON(pAd)))
91791 + Cipher = pAd->StaCfg.GroupCipher; // Cipher for Multicast or Broadcast
91793 + Cipher = pAd->StaCfg.PairCipher; // Cipher for Unicast
91795 + if (RTMP_GET_PACKET_EAPOL(pTxBlk->pPacket))
91797 + ASSERT(pAd->SharedKey[BSS0][0].CipherAlg <= CIPHER_CKIP128);
91799 + // 4-way handshaking frame must be clear
91800 + if (!(TX_BLK_TEST_FLAG(pTxBlk, fTX_bClearEAPFrame)) && (pAd->SharedKey[BSS0][0].CipherAlg) &&
91801 + (pAd->SharedKey[BSS0][0].KeyLen))
91803 + CipherAlg = pAd->SharedKey[BSS0][0].CipherAlg;
91807 + else if (Cipher == Ndis802_11Encryption1Enabled)
91809 +#ifdef LEAP_SUPPORT
91810 + if (pAd->StaCfg.CkipFlag & 0x10) // Cisco CKIP KP is on
91812 + if (LEAP_CCKM_ON(pAd))
91814 + if (((*pSrcBufVA & 0x01) && (ADHOC_ON(pAd))))
91820 + KeyIdx = pAd->StaCfg.DefaultKeyId;
91822 + else if (pAd->StaCfg.CkipFlag & 0x08) // only CKIP CMIC
91823 + KeyIdx = pAd->StaCfg.DefaultKeyId;
91824 + else if (LEAP_CCKM_ON(pAd))
91826 + if ((*pSrcBufVA & 0x01) && (ADHOC_ON(pAd)))
91831 + else // standard WEP64 or WEP128
91832 +#endif // LEAP_SUPPORT //
91833 + KeyIdx = pAd->StaCfg.DefaultKeyId;
91835 + else if ((Cipher == Ndis802_11Encryption2Enabled) ||
91836 + (Cipher == Ndis802_11Encryption3Enabled))
91838 + if ((*pSrcBufVA & 0x01) && (ADHOC_ON(pAd))) // multicast
91839 + KeyIdx = pAd->StaCfg.DefaultKeyId;
91840 + else if (pAd->SharedKey[BSS0][0].KeyLen)
91843 + KeyIdx = pAd->StaCfg.DefaultKeyId;
91846 + if (KeyIdx == 0xff)
91847 + CipherAlg = CIPHER_NONE;
91848 + else if ((Cipher == Ndis802_11EncryptionDisabled) || (pAd->SharedKey[BSS0][KeyIdx].KeyLen == 0))
91849 + CipherAlg = CIPHER_NONE;
91850 +#ifdef WPA_SUPPLICANT_SUPPORT
91851 + else if ( pAd->StaCfg.WpaSupplicantUP &&
91852 + (Cipher == Ndis802_11Encryption1Enabled) &&
91853 + (pAd->StaCfg.IEEE8021X == TRUE) &&
91854 + (pAd->StaCfg.PortSecured == WPA_802_1X_PORT_NOT_SECURED))
91855 + CipherAlg = CIPHER_NONE;
91856 +#endif // WPA_SUPPLICANT_SUPPORT //
91859 + //Header_802_11.FC.Wep = 1;
91860 + CipherAlg = pAd->SharedKey[BSS0][KeyIdx].CipherAlg;
91861 + pKey = &pAd->SharedKey[BSS0][KeyIdx];
91865 + pTxBlk->CipherAlg = CipherAlg;
91866 + pTxBlk->pKey = pKey;
91870 +VOID STABuildCommon802_11Header(
91871 + IN PRTMP_ADAPTER pAd,
91872 + IN TX_BLK *pTxBlk)
91875 + HEADER_802_11 *pHeader_802_11;
91876 +#ifdef QOS_DLS_SUPPORT
91877 + BOOLEAN bDLSFrame = FALSE;
91878 + INT DlsEntryIndex = 0;
91879 +#endif // QOS_DLS_SUPPORT //
91882 + // MAKE A COMMON 802.11 HEADER
91885 + // normal wlan header size : 24 octets
91886 + pTxBlk->MpduHeaderLen = sizeof(HEADER_802_11);
91888 + pHeader_802_11 = (HEADER_802_11 *) &pTxBlk->HeaderBuf[TXINFO_SIZE + TXWI_SIZE];
91890 + NdisZeroMemory(pHeader_802_11, sizeof(HEADER_802_11));
91892 + pHeader_802_11->FC.FrDs = 0;
91893 + pHeader_802_11->FC.Type = BTYPE_DATA;
91894 + pHeader_802_11->FC.SubType = ((TX_BLK_TEST_FLAG(pTxBlk, fTX_bWMM)) ? SUBTYPE_QDATA : SUBTYPE_DATA);
91896 +#ifdef QOS_DLS_SUPPORT
91897 + if (INFRA_ON(pAd))
91899 + // Check if the frame can be sent through DLS direct link interface
91900 + // If packet can be sent through DLS, then force aggregation disable. (Hard to determine peer STA's capability)
91901 + DlsEntryIndex = RTMPCheckDLSFrame(pAd, pTxBlk->pSrcBufHeader);
91902 + if (DlsEntryIndex >= 0)
91903 + bDLSFrame = TRUE;
91905 + bDLSFrame = FALSE;
91907 +#endif // QOS_DLS_SUPPORT //
91909 + if (pTxBlk->pMacEntry)
91911 + if (TX_BLK_TEST_FLAG(pTxBlk, fTX_bForceNonQoS))
91913 + pHeader_802_11->Sequence = pTxBlk->pMacEntry->NonQosDataSeq;
91914 + pTxBlk->pMacEntry->NonQosDataSeq = (pTxBlk->pMacEntry->NonQosDataSeq+1) & MAXSEQ;
91918 +#ifdef QOS_DLS_SUPPORT
91921 + pHeader_802_11->Sequence = pAd->StaCfg.DLSEntry[DlsEntryIndex].Sequence;
91922 + pAd->StaCfg.DLSEntry[DlsEntryIndex].Sequence = (pAd->StaCfg.DLSEntry[DlsEntryIndex].Sequence+1) & MAXSEQ;
91925 +#endif // QOS_DLS_SUPPORT //
91927 + pHeader_802_11->Sequence = pTxBlk->pMacEntry->TxSeq[pTxBlk->UserPriority];
91928 + pTxBlk->pMacEntry->TxSeq[pTxBlk->UserPriority] = (pTxBlk->pMacEntry->TxSeq[pTxBlk->UserPriority]+1) & MAXSEQ;
91934 + pHeader_802_11->Sequence = pAd->Sequence;
91935 + pAd->Sequence = (pAd->Sequence+1) & MAXSEQ; // next sequence
91938 + pHeader_802_11->Frag = 0;
91940 + pHeader_802_11->FC.MoreData = TX_BLK_TEST_FLAG(pTxBlk, fTX_bMoreData);
91943 + if (INFRA_ON(pAd))
91945 +#ifdef QOS_DLS_SUPPORT
91948 + COPY_MAC_ADDR(pHeader_802_11->Addr1, pTxBlk->pSrcBufHeader);
91949 + COPY_MAC_ADDR(pHeader_802_11->Addr2, pAd->CurrentAddress);
91950 + COPY_MAC_ADDR(pHeader_802_11->Addr3, pAd->CommonCfg.Bssid);
91951 + pHeader_802_11->FC.ToDs = 0;
91954 +#endif // QOS_DLS_SUPPORT //
91956 + COPY_MAC_ADDR(pHeader_802_11->Addr1, pAd->CommonCfg.Bssid);
91957 + COPY_MAC_ADDR(pHeader_802_11->Addr2, pAd->CurrentAddress);
91958 + COPY_MAC_ADDR(pHeader_802_11->Addr3, pTxBlk->pSrcBufHeader);
91959 + pHeader_802_11->FC.ToDs = 1;
91962 + else if (ADHOC_ON(pAd))
91964 + COPY_MAC_ADDR(pHeader_802_11->Addr1, pTxBlk->pSrcBufHeader);
91965 + COPY_MAC_ADDR(pHeader_802_11->Addr2, pAd->CurrentAddress);
91966 + COPY_MAC_ADDR(pHeader_802_11->Addr3, pAd->CommonCfg.Bssid);
91967 + pHeader_802_11->FC.ToDs = 0;
91971 + if (pTxBlk->CipherAlg != CIPHER_NONE)
91972 + pHeader_802_11->FC.Wep = 1;
91974 + // -----------------------------------------------------------------
91975 + // STEP 2. MAKE A COMMON 802.11 HEADER SHARED BY ENTIRE FRAGMENT BURST. Fill sequence later.
91976 + // -----------------------------------------------------------------
91977 + if (pAd->CommonCfg.bAPSDForcePowerSave)
91978 + pHeader_802_11->FC.PwrMgmt = PWR_SAVE;
91980 + pHeader_802_11->FC.PwrMgmt = (pAd->StaCfg.Psm == PWR_SAVE);
91983 +#ifdef DOT11_N_SUPPORT
91984 +VOID STABuildCache802_11Header(
91985 + IN RTMP_ADAPTER *pAd,
91986 + IN TX_BLK *pTxBlk,
91987 + IN UCHAR *pHeader)
91989 + MAC_TABLE_ENTRY *pMacEntry;
91990 + PHEADER_802_11 pHeader80211;
91992 + pHeader80211 = (PHEADER_802_11)pHeader;
91993 + pMacEntry = pTxBlk->pMacEntry;
91996 + // Update the cached 802.11 HEADER
91999 + // normal wlan header size : 24 octets
92000 + pTxBlk->MpduHeaderLen = sizeof(HEADER_802_11);
92003 + pHeader80211->FC.MoreData = TX_BLK_TEST_FLAG(pTxBlk, fTX_bMoreData);
92006 + pHeader80211->Sequence = pMacEntry->TxSeq[pTxBlk->UserPriority];
92007 + pMacEntry->TxSeq[pTxBlk->UserPriority] = (pMacEntry->TxSeq[pTxBlk->UserPriority]+1) & MAXSEQ;
92010 + // Check if the frame can be sent through DLS direct link interface
92011 + // If packet can be sent through DLS, then force aggregation disable. (Hard to determine peer STA's capability)
92012 +#ifdef QOS_DLS_SUPPORT
92013 + BOOLEAN bDLSFrame = FALSE;
92014 + INT DlsEntryIndex = 0;
92016 + DlsEntryIndex = RTMPCheckDLSFrame(pAd, pTxBlk->pSrcBufHeader);
92017 + if (DlsEntryIndex >= 0)
92018 + bDLSFrame = TRUE;
92020 + bDLSFrame = FALSE;
92021 +#endif // QOS_DLS_SUPPORT //
92023 + // The addr3 of normal packet send from DS is Dest Mac address.
92024 +#ifdef QOS_DLS_SUPPORT
92027 + COPY_MAC_ADDR(pHeader80211->Addr1, pTxBlk->pSrcBufHeader);
92028 + COPY_MAC_ADDR(pHeader80211->Addr3, pAd->CommonCfg.Bssid);
92029 + pHeader80211->FC.ToDs = 0;
92032 +#endif // QOS_DLS_SUPPORT //
92033 + if (ADHOC_ON(pAd))
92034 + COPY_MAC_ADDR(pHeader80211->Addr3, pAd->CommonCfg.Bssid);
92036 + COPY_MAC_ADDR(pHeader80211->Addr3, pTxBlk->pSrcBufHeader);
92039 + // -----------------------------------------------------------------
92040 + // STEP 2. MAKE A COMMON 802.11 HEADER SHARED BY ENTIRE FRAGMENT BURST. Fill sequence later.
92041 + // -----------------------------------------------------------------
92042 + if (pAd->CommonCfg.bAPSDForcePowerSave)
92043 + pHeader80211->FC.PwrMgmt = PWR_SAVE;
92045 + pHeader80211->FC.PwrMgmt = (pAd->StaCfg.Psm == PWR_SAVE);
92047 +#endif // DOT11_N_SUPPORT //
92049 +static inline PUCHAR STA_Build_ARalink_Frame_Header(
92050 + IN RTMP_ADAPTER *pAd,
92051 + IN TX_BLK *pTxBlk)
92053 + PUCHAR pHeaderBufPtr;
92054 + HEADER_802_11 *pHeader_802_11;
92055 + PNDIS_PACKET pNextPacket;
92056 + UINT32 nextBufLen;
92057 + PQUEUE_ENTRY pQEntry;
92059 + STAFindCipherAlgorithm(pAd, pTxBlk);
92060 + STABuildCommon802_11Header(pAd, pTxBlk);
92063 + pHeaderBufPtr = &pTxBlk->HeaderBuf[TXINFO_SIZE + TXWI_SIZE];
92064 + pHeader_802_11 = (HEADER_802_11 *) pHeaderBufPtr;
92066 + // steal "order" bit to mark "aggregation"
92067 + pHeader_802_11->FC.Order = 1;
92069 + // skip common header
92070 + pHeaderBufPtr += pTxBlk->MpduHeaderLen;
92072 + if (TX_BLK_TEST_FLAG(pTxBlk, fTX_bWMM))
92075 + // build QOS Control bytes
92077 + *pHeaderBufPtr = (pTxBlk->UserPriority & 0x0F);
92079 + *(pHeaderBufPtr+1) = 0;
92080 + pHeaderBufPtr +=2;
92081 + pTxBlk->MpduHeaderLen += 2;
92084 + // padding at front of LLC header. LLC header should at 4-bytes aligment.
92085 + pTxBlk->HdrPadLen = (ULONG)pHeaderBufPtr;
92086 + pHeaderBufPtr = (PCHAR)ROUND_UP(pHeaderBufPtr, 4);
92087 + pTxBlk->HdrPadLen = (ULONG)(pHeaderBufPtr - pTxBlk->HdrPadLen);
92089 + // For RA Aggregation,
92090 + // put the 2nd MSDU length(extra 2-byte field) after QOS_CONTROL in little endian format
92091 + pQEntry = pTxBlk->TxPacketList.Head;
92092 + pNextPacket = QUEUE_ENTRY_TO_PKT(pQEntry);
92093 + nextBufLen = GET_OS_PKT_LEN(pNextPacket);
92094 + if (RTMP_GET_PACKET_VLAN(pNextPacket))
92095 + nextBufLen -= LENGTH_802_1Q;
92097 + *pHeaderBufPtr = (UCHAR)nextBufLen & 0xff;
92098 + *(pHeaderBufPtr+1) = (UCHAR)(nextBufLen >> 8);
92100 + pHeaderBufPtr += 2;
92101 + pTxBlk->MpduHeaderLen += 2;
92103 + return pHeaderBufPtr;
92107 +#ifdef DOT11_N_SUPPORT
92108 +static inline PUCHAR STA_Build_AMSDU_Frame_Header(
92109 + IN RTMP_ADAPTER *pAd,
92110 + IN TX_BLK *pTxBlk)
92112 + PUCHAR pHeaderBufPtr;//, pSaveBufPtr;
92113 + HEADER_802_11 *pHeader_802_11;
92116 + STAFindCipherAlgorithm(pAd, pTxBlk);
92117 + STABuildCommon802_11Header(pAd, pTxBlk);
92119 + pHeaderBufPtr = &pTxBlk->HeaderBuf[TXINFO_SIZE + TXWI_SIZE];
92120 + pHeader_802_11 = (HEADER_802_11 *) pHeaderBufPtr;
92122 + // skip common header
92123 + pHeaderBufPtr += pTxBlk->MpduHeaderLen;
92126 + // build QOS Control bytes
92128 + *pHeaderBufPtr = (pTxBlk->UserPriority & 0x0F);
92133 + *pHeaderBufPtr |= 0x80;
92135 + *(pHeaderBufPtr+1) = 0;
92136 + pHeaderBufPtr +=2;
92137 + pTxBlk->MpduHeaderLen += 2;
92139 + //pSaveBufPtr = pHeaderBufPtr;
92142 + // padding at front of LLC header
92143 + // LLC header should locate at 4-octets aligment
92145 + // @@@ MpduHeaderLen excluding padding @@@
92147 + pTxBlk->HdrPadLen = (ULONG)pHeaderBufPtr;
92148 + pHeaderBufPtr = (PCHAR) ROUND_UP(pHeaderBufPtr, 4);
92149 + pTxBlk->HdrPadLen = (ULONG)(pHeaderBufPtr - pTxBlk->HdrPadLen);
92151 + return pHeaderBufPtr;
92156 +VOID STA_AMPDU_Frame_Tx(
92157 + IN PRTMP_ADAPTER pAd,
92158 + IN TX_BLK *pTxBlk)
92160 + HEADER_802_11 *pHeader_802_11;
92161 + PUCHAR pHeaderBufPtr;
92162 + USHORT FreeNumber;
92163 + MAC_TABLE_ENTRY *pMacEntry;
92164 + BOOLEAN bVLANPkt;
92165 + PQUEUE_ENTRY pQEntry;
92169 + while(pTxBlk->TxPacketList.Head)
92171 + pQEntry = RemoveHeadQueue(&pTxBlk->TxPacketList);
92172 + pTxBlk->pPacket = QUEUE_ENTRY_TO_PACKET(pQEntry);
92173 + if ( RTMP_FillTxBlkInfo(pAd, pTxBlk) != TRUE)
92175 + RELEASE_NDIS_PACKET(pAd, pTxBlk->pPacket, NDIS_STATUS_FAILURE);
92179 + bVLANPkt = (RTMP_GET_PACKET_VLAN(pTxBlk->pPacket) ? TRUE : FALSE);
92181 + pMacEntry = pTxBlk->pMacEntry;
92182 + if (pMacEntry->isCached)
92184 + // NOTE: Please make sure the size of pMacEntry->CachedBuf[] is smaller than pTxBlk->HeaderBuf[]!!!!
92185 + NdisMoveMemory((PUCHAR)&pTxBlk->HeaderBuf[TXINFO_SIZE], (PUCHAR)&pMacEntry->CachedBuf[0], TXWI_SIZE + sizeof(HEADER_802_11));
92186 + pHeaderBufPtr = (PUCHAR)(&pTxBlk->HeaderBuf[TXINFO_SIZE + TXWI_SIZE]);
92187 + STABuildCache802_11Header(pAd, pTxBlk, pHeaderBufPtr);
92191 + STAFindCipherAlgorithm(pAd, pTxBlk);
92192 + STABuildCommon802_11Header(pAd, pTxBlk);
92194 + pHeaderBufPtr = &pTxBlk->HeaderBuf[TXINFO_SIZE + TXWI_SIZE];
92198 + pHeader_802_11 = (HEADER_802_11 *) pHeaderBufPtr;
92200 + // skip common header
92201 + pHeaderBufPtr += pTxBlk->MpduHeaderLen;
92204 + // build QOS Control bytes
92206 + *pHeaderBufPtr = (pTxBlk->UserPriority & 0x0F);
92207 + *(pHeaderBufPtr+1) = 0;
92208 + pHeaderBufPtr +=2;
92209 + pTxBlk->MpduHeaderLen += 2;
92213 + // HTC control filed following QoS field
92215 + if ((pAd->CommonCfg.bRdg == TRUE) && CLIENT_STATUS_TEST_FLAG(pTxBlk->pMacEntry, fCLIENT_STATUS_RDG_CAPABLE))
92217 + if (pMacEntry->isCached == FALSE)
92220 + pHeader_802_11->FC.Order = 1;
92222 + NdisZeroMemory(pHeaderBufPtr, 4);
92223 + *(pHeaderBufPtr+3) |= 0x80;
92225 + pHeaderBufPtr += 4;
92226 + pTxBlk->MpduHeaderLen += 4;
92229 + //pTxBlk->MpduHeaderLen = pHeaderBufPtr - pTxBlk->HeaderBuf - TXWI_SIZE - TXINFO_SIZE;
92230 + ASSERT(pTxBlk->MpduHeaderLen >= 24);
92232 + // skip 802.3 header
92233 + pTxBlk->pSrcBufData = pTxBlk->pSrcBufHeader + LENGTH_802_3;
92234 + pTxBlk->SrcBufLen -= LENGTH_802_3;
92239 + pTxBlk->pSrcBufData += LENGTH_802_1Q;
92240 + pTxBlk->SrcBufLen -= LENGTH_802_1Q;
92244 + // padding at front of LLC header
92245 + // LLC header should locate at 4-octets aligment
92247 + // @@@ MpduHeaderLen excluding padding @@@
92249 + pTxBlk->HdrPadLen = (ULONG)pHeaderBufPtr;
92250 + pHeaderBufPtr = (PCHAR) ROUND_UP(pHeaderBufPtr, 4);
92251 + pTxBlk->HdrPadLen = (ULONG)(pHeaderBufPtr - pTxBlk->HdrPadLen);
92256 + // Insert LLC-SNAP encapsulation - 8 octets
92258 + EXTRA_LLCSNAP_ENCAP_FROM_PKT_OFFSET(pTxBlk->pSrcBufData-2, pTxBlk->pExtraLlcSnapEncap);
92259 + if (pTxBlk->pExtraLlcSnapEncap)
92261 + NdisMoveMemory(pHeaderBufPtr, pTxBlk->pExtraLlcSnapEncap, 6);
92262 + pHeaderBufPtr += 6;
92263 + // get 2 octets (TypeofLen)
92264 + NdisMoveMemory(pHeaderBufPtr, pTxBlk->pSrcBufData-2, 2);
92265 + pHeaderBufPtr += 2;
92266 + pTxBlk->MpduHeaderLen += LENGTH_802_1_H;
92271 + if (pMacEntry->isCached)
92273 + RTMPWriteTxWI_Cache(pAd, (PTXWI_STRUC)(&pTxBlk->HeaderBuf[TXINFO_SIZE]), pTxBlk);
92277 + RTMPWriteTxWI_Data(pAd, (PTXWI_STRUC)(&pTxBlk->HeaderBuf[TXINFO_SIZE]), pTxBlk);
92279 + NdisZeroMemory((PUCHAR)(&pMacEntry->CachedBuf[0]), sizeof(pMacEntry->CachedBuf));
92280 + NdisMoveMemory((PUCHAR)(&pMacEntry->CachedBuf[0]), (PUCHAR)(&pTxBlk->HeaderBuf[TXINFO_SIZE]), (pHeaderBufPtr - (PUCHAR)(&pTxBlk->HeaderBuf[TXINFO_SIZE])));
92281 + pMacEntry->isCached = TRUE;
92284 + // calculate Transmitted AMPDU count and ByteCount
92286 + pAd->RalinkCounters.TransmittedMPDUsInAMPDUCount.u.LowPart ++;
92287 + pAd->RalinkCounters.TransmittedOctetsInAMPDUCount.QuadPart += pTxBlk->SrcBufLen;
92290 + //FreeNumber = GET_TXRING_FREENO(pAd, QueIdx);
92292 + HAL_WriteTxResource(pAd, pTxBlk, TRUE, &FreeNumber);
92297 + HAL_KickOutTx(pAd, pTxBlk, pTxBlk->QueIdx);
92299 + pAd->RalinkCounters.KickTxCount++;
92300 + pAd->RalinkCounters.OneSecTxDoneCount++;
92306 +VOID STA_AMSDU_Frame_Tx(
92307 + IN PRTMP_ADAPTER pAd,
92308 + IN TX_BLK *pTxBlk)
92310 + PUCHAR pHeaderBufPtr;
92311 + USHORT FreeNumber;
92312 + USHORT subFramePayloadLen = 0; // AMSDU Subframe length without AMSDU-Header / Padding.
92313 + USHORT totalMPDUSize=0;
92314 + UCHAR *subFrameHeader;
92315 + UCHAR padding = 0;
92316 + USHORT FirstTx = 0, LastTxIdx = 0;
92317 + BOOLEAN bVLANPkt;
92318 + int frameNum = 0;
92319 + PQUEUE_ENTRY pQEntry;
92324 + ASSERT((pTxBlk->TxPacketList.Number > 1));
92326 + while(pTxBlk->TxPacketList.Head)
92328 + pQEntry = RemoveHeadQueue(&pTxBlk->TxPacketList);
92329 + pTxBlk->pPacket = QUEUE_ENTRY_TO_PACKET(pQEntry);
92330 + if (RTMP_FillTxBlkInfo(pAd, pTxBlk) != TRUE)
92332 + RELEASE_NDIS_PACKET(pAd, pTxBlk->pPacket, NDIS_STATUS_FAILURE);
92336 + bVLANPkt = (RTMP_GET_PACKET_VLAN(pTxBlk->pPacket) ? TRUE : FALSE);
92338 + // skip 802.3 header
92339 + pTxBlk->pSrcBufData = pTxBlk->pSrcBufHeader + LENGTH_802_3;
92340 + pTxBlk->SrcBufLen -= LENGTH_802_3;
92345 + pTxBlk->pSrcBufData += LENGTH_802_1Q;
92346 + pTxBlk->SrcBufLen -= LENGTH_802_1Q;
92349 + if (frameNum == 0)
92351 + pHeaderBufPtr = STA_Build_AMSDU_Frame_Header(pAd, pTxBlk);
92353 + // NOTE: TxWI->MPDUtotalByteCount will be updated after final frame was handled.
92354 + RTMPWriteTxWI_Data(pAd, (PTXWI_STRUC)(&pTxBlk->HeaderBuf[TXINFO_SIZE]), pTxBlk);
92358 + pHeaderBufPtr = &pTxBlk->HeaderBuf[0];
92359 + padding = ROUND_UP(LENGTH_AMSDU_SUBFRAMEHEAD + subFramePayloadLen, 4) - (LENGTH_AMSDU_SUBFRAMEHEAD + subFramePayloadLen);
92360 + NdisZeroMemory(pHeaderBufPtr, padding + LENGTH_AMSDU_SUBFRAMEHEAD);
92361 + pHeaderBufPtr += padding;
92362 + pTxBlk->MpduHeaderLen = padding;
92366 + // A-MSDU subframe
92367 + // DA(6)+SA(6)+Length(2) + LLC/SNAP Encap
92369 + subFrameHeader = pHeaderBufPtr;
92370 + subFramePayloadLen = pTxBlk->SrcBufLen;
92372 + NdisMoveMemory(subFrameHeader, pTxBlk->pSrcBufHeader, 12);
92375 + pHeaderBufPtr += LENGTH_AMSDU_SUBFRAMEHEAD;
92376 + pTxBlk->MpduHeaderLen += LENGTH_AMSDU_SUBFRAMEHEAD;
92380 + // Insert LLC-SNAP encapsulation - 8 octets
92382 + EXTRA_LLCSNAP_ENCAP_FROM_PKT_OFFSET(pTxBlk->pSrcBufData-2, pTxBlk->pExtraLlcSnapEncap);
92384 + subFramePayloadLen = pTxBlk->SrcBufLen;
92386 + if (pTxBlk->pExtraLlcSnapEncap)
92388 + NdisMoveMemory(pHeaderBufPtr, pTxBlk->pExtraLlcSnapEncap, 6);
92389 + pHeaderBufPtr += 6;
92390 + // get 2 octets (TypeofLen)
92391 + NdisMoveMemory(pHeaderBufPtr, pTxBlk->pSrcBufData-2, 2);
92392 + pHeaderBufPtr += 2;
92393 + pTxBlk->MpduHeaderLen += LENGTH_802_1_H;
92394 + subFramePayloadLen += LENGTH_802_1_H;
92397 + // update subFrame Length field
92398 + subFrameHeader[12] = (subFramePayloadLen & 0xFF00) >> 8;
92399 + subFrameHeader[13] = subFramePayloadLen & 0xFF;
92401 + totalMPDUSize += pTxBlk->MpduHeaderLen + pTxBlk->SrcBufLen;
92403 + if (frameNum ==0)
92404 + FirstTx = HAL_WriteMultiTxResource(pAd, pTxBlk, frameNum, &FreeNumber);
92406 + LastTxIdx = HAL_WriteMultiTxResource(pAd, pTxBlk, frameNum, &FreeNumber);
92410 + pAd->RalinkCounters.KickTxCount++;
92411 + pAd->RalinkCounters.OneSecTxDoneCount++;
92413 + // calculate Transmitted AMSDU Count and ByteCount
92415 + pAd->RalinkCounters.TransmittedAMSDUCount.u.LowPart ++;
92416 + pAd->RalinkCounters.TransmittedOctetsInAMSDU.QuadPart += totalMPDUSize;
92421 + HAL_FinalWriteTxResource(pAd, pTxBlk, totalMPDUSize, FirstTx);
92422 + HAL_LastTxIdx(pAd, pTxBlk->QueIdx, LastTxIdx);
92427 + HAL_KickOutTx(pAd, pTxBlk, pTxBlk->QueIdx);
92429 +#endif // DOT11_N_SUPPORT //
92431 +VOID STA_Legacy_Frame_Tx(
92432 + IN PRTMP_ADAPTER pAd,
92433 + IN TX_BLK *pTxBlk)
92435 + HEADER_802_11 *pHeader_802_11;
92436 + PUCHAR pHeaderBufPtr;
92437 + USHORT FreeNumber;
92438 + BOOLEAN bVLANPkt;
92439 + PQUEUE_ENTRY pQEntry;
92444 + pQEntry = RemoveHeadQueue(&pTxBlk->TxPacketList);
92445 + pTxBlk->pPacket = QUEUE_ENTRY_TO_PACKET(pQEntry);
92446 + if (RTMP_FillTxBlkInfo(pAd, pTxBlk) != TRUE)
92448 + RELEASE_NDIS_PACKET(pAd, pTxBlk->pPacket, NDIS_STATUS_FAILURE);
92452 + if (pTxBlk->TxFrameType == TX_MCAST_FRAME)
92454 + INC_COUNTER64(pAd->WlanCounters.MulticastTransmittedFrameCount);
92457 + if (RTMP_GET_PACKET_RTS(pTxBlk->pPacket))
92458 + TX_BLK_SET_FLAG(pTxBlk, fTX_bRtsRequired);
92460 + TX_BLK_CLEAR_FLAG(pTxBlk, fTX_bRtsRequired);
92462 + bVLANPkt = (RTMP_GET_PACKET_VLAN(pTxBlk->pPacket) ? TRUE : FALSE);
92464 + if (pTxBlk->TxRate < pAd->CommonCfg.MinTxRate)
92465 + pTxBlk->TxRate = pAd->CommonCfg.MinTxRate;
92467 + STAFindCipherAlgorithm(pAd, pTxBlk);
92468 + STABuildCommon802_11Header(pAd, pTxBlk);
92471 + // skip 802.3 header
92472 + pTxBlk->pSrcBufData = pTxBlk->pSrcBufHeader + LENGTH_802_3;
92473 + pTxBlk->SrcBufLen -= LENGTH_802_3;
92478 + pTxBlk->pSrcBufData += LENGTH_802_1Q;
92479 + pTxBlk->SrcBufLen -= LENGTH_802_1Q;
92482 + pHeaderBufPtr = &pTxBlk->HeaderBuf[TXINFO_SIZE + TXWI_SIZE];
92483 + pHeader_802_11 = (HEADER_802_11 *) pHeaderBufPtr;
92485 + // skip common header
92486 + pHeaderBufPtr += pTxBlk->MpduHeaderLen;
92488 + if (TX_BLK_TEST_FLAG(pTxBlk, fTX_bWMM))
92491 + // build QOS Control bytes
92493 + *pHeaderBufPtr = (pTxBlk->UserPriority & 0x0F);
92494 + *(pHeaderBufPtr+1) = 0;
92495 + pHeaderBufPtr +=2;
92496 + pTxBlk->MpduHeaderLen += 2;
92499 + // The remaining content of MPDU header should locate at 4-octets aligment
92500 + pTxBlk->HdrPadLen = (ULONG)pHeaderBufPtr;
92501 + pHeaderBufPtr = (PCHAR) ROUND_UP(pHeaderBufPtr, 4);
92502 + pTxBlk->HdrPadLen = (ULONG)(pHeaderBufPtr - pTxBlk->HdrPadLen);
92507 + // Insert LLC-SNAP encapsulation - 8 octets
92510 + // if original Ethernet frame contains no LLC/SNAP,
92511 + // then an extra LLC/SNAP encap is required
92513 + EXTRA_LLCSNAP_ENCAP_FROM_PKT_START(pTxBlk->pSrcBufHeader, pTxBlk->pExtraLlcSnapEncap);
92514 + if (pTxBlk->pExtraLlcSnapEncap)
92518 + NdisMoveMemory(pHeaderBufPtr, pTxBlk->pExtraLlcSnapEncap, 6);
92519 + pHeaderBufPtr += 6;
92521 + vlan_size = (bVLANPkt) ? LENGTH_802_1Q : 0;
92522 + // get 2 octets (TypeofLen)
92523 + NdisMoveMemory(pHeaderBufPtr, pTxBlk->pSrcBufHeader+12+vlan_size, 2);
92524 + pHeaderBufPtr += 2;
92525 + pTxBlk->MpduHeaderLen += LENGTH_802_1_H;
92531 + // prepare for TXWI
92532 + // use Wcid as Key Index
92535 + RTMPWriteTxWI_Data(pAd, (PTXWI_STRUC)(&pTxBlk->HeaderBuf[TXINFO_SIZE]), pTxBlk);
92537 + //FreeNumber = GET_TXRING_FREENO(pAd, QueIdx);
92539 + HAL_WriteTxResource(pAd, pTxBlk, TRUE, &FreeNumber);
92541 + pAd->RalinkCounters.KickTxCount++;
92542 + pAd->RalinkCounters.OneSecTxDoneCount++;
92547 + HAL_KickOutTx(pAd, pTxBlk, pTxBlk->QueIdx);
92551 +VOID STA_ARalink_Frame_Tx(
92552 + IN PRTMP_ADAPTER pAd,
92553 + IN TX_BLK *pTxBlk)
92555 + PUCHAR pHeaderBufPtr;
92556 + USHORT FreeNumber;
92557 + USHORT totalMPDUSize=0;
92558 + USHORT FirstTx, LastTxIdx;
92559 + int frameNum = 0;
92560 + BOOLEAN bVLANPkt;
92561 + PQUEUE_ENTRY pQEntry;
92566 + ASSERT((pTxBlk->TxPacketList.Number== 2));
92569 + FirstTx = LastTxIdx = 0; // Is it ok init they as 0?
92570 + while(pTxBlk->TxPacketList.Head)
92572 + pQEntry = RemoveHeadQueue(&pTxBlk->TxPacketList);
92573 + pTxBlk->pPacket = QUEUE_ENTRY_TO_PACKET(pQEntry);
92575 + if (RTMP_FillTxBlkInfo(pAd, pTxBlk) != TRUE)
92577 + RELEASE_NDIS_PACKET(pAd, pTxBlk->pPacket, NDIS_STATUS_FAILURE);
92581 + bVLANPkt = (RTMP_GET_PACKET_VLAN(pTxBlk->pPacket) ? TRUE : FALSE);
92583 + // skip 802.3 header
92584 + pTxBlk->pSrcBufData = pTxBlk->pSrcBufHeader + LENGTH_802_3;
92585 + pTxBlk->SrcBufLen -= LENGTH_802_3;
92590 + pTxBlk->pSrcBufData += LENGTH_802_1Q;
92591 + pTxBlk->SrcBufLen -= LENGTH_802_1Q;
92594 + if (frameNum == 0)
92595 + { // For first frame, we need to create the 802.11 header + padding(optional) + RA-AGG-LEN + SNAP Header
92597 + pHeaderBufPtr = STA_Build_ARalink_Frame_Header(pAd, pTxBlk);
92599 + // It's ok write the TxWI here, because the TxWI->MPDUtotalByteCount
92600 + // will be updated after final frame was handled.
92601 + RTMPWriteTxWI_Data(pAd, (PTXWI_STRUC)(&pTxBlk->HeaderBuf[TXINFO_SIZE]), pTxBlk);
92605 + // Insert LLC-SNAP encapsulation - 8 octets
92607 + EXTRA_LLCSNAP_ENCAP_FROM_PKT_OFFSET(pTxBlk->pSrcBufData-2, pTxBlk->pExtraLlcSnapEncap);
92609 + if (pTxBlk->pExtraLlcSnapEncap)
92611 + NdisMoveMemory(pHeaderBufPtr, pTxBlk->pExtraLlcSnapEncap, 6);
92612 + pHeaderBufPtr += 6;
92613 + // get 2 octets (TypeofLen)
92614 + NdisMoveMemory(pHeaderBufPtr, pTxBlk->pSrcBufData-2, 2);
92615 + pHeaderBufPtr += 2;
92616 + pTxBlk->MpduHeaderLen += LENGTH_802_1_H;
92620 + { // For second aggregated frame, we need create the 802.3 header to headerBuf, because PCI will copy it to SDPtr0.
92622 + pHeaderBufPtr = &pTxBlk->HeaderBuf[0];
92623 + pTxBlk->MpduHeaderLen = 0;
92625 + // A-Ralink sub-sequent frame header is the same as 802.3 header.
92626 + // DA(6)+SA(6)+FrameType(2)
92627 + NdisMoveMemory(pHeaderBufPtr, pTxBlk->pSrcBufHeader, 12);
92628 + pHeaderBufPtr += 12;
92629 + // get 2 octets (TypeofLen)
92630 + NdisMoveMemory(pHeaderBufPtr, pTxBlk->pSrcBufData-2, 2);
92631 + pHeaderBufPtr += 2;
92632 + pTxBlk->MpduHeaderLen = LENGTH_ARALINK_SUBFRAMEHEAD;
92635 + totalMPDUSize += pTxBlk->MpduHeaderLen + pTxBlk->SrcBufLen;
92637 + //FreeNumber = GET_TXRING_FREENO(pAd, QueIdx);
92638 + if (frameNum ==0)
92639 + FirstTx = HAL_WriteMultiTxResource(pAd, pTxBlk, frameNum, &FreeNumber);
92641 + LastTxIdx = HAL_WriteMultiTxResource(pAd, pTxBlk, frameNum, &FreeNumber);
92645 + pAd->RalinkCounters.OneSecTxAggregationCount++;
92646 + pAd->RalinkCounters.KickTxCount++;
92647 + pAd->RalinkCounters.OneSecTxDoneCount++;
92651 + HAL_FinalWriteTxResource(pAd, pTxBlk, totalMPDUSize, FirstTx);
92652 + HAL_LastTxIdx(pAd, pTxBlk->QueIdx, LastTxIdx);
92657 + HAL_KickOutTx(pAd, pTxBlk, pTxBlk->QueIdx);
92662 +VOID STA_Fragment_Frame_Tx(
92663 + IN RTMP_ADAPTER *pAd,
92664 + IN TX_BLK *pTxBlk)
92666 + HEADER_802_11 *pHeader_802_11;
92667 + PUCHAR pHeaderBufPtr;
92668 + USHORT FreeNumber;
92669 + UCHAR fragNum = 0;
92670 + PACKET_INFO PacketInfo;
92671 + USHORT EncryptionOverhead = 0;
92672 + UINT32 FreeMpduSize, SrcRemainingBytes;
92673 + USHORT AckDuration;
92674 + UINT NextMpduSize;
92675 + BOOLEAN bVLANPkt;
92676 + PQUEUE_ENTRY pQEntry;
92681 + pQEntry = RemoveHeadQueue(&pTxBlk->TxPacketList);
92682 + pTxBlk->pPacket = QUEUE_ENTRY_TO_PACKET(pQEntry);
92683 + if (RTMP_FillTxBlkInfo(pAd, pTxBlk) != TRUE)
92685 + RELEASE_NDIS_PACKET(pAd, pTxBlk->pPacket, NDIS_STATUS_FAILURE);
92689 + ASSERT(TX_BLK_TEST_FLAG(pTxBlk, fTX_bAllowFrag));
92690 + bVLANPkt = (RTMP_GET_PACKET_VLAN(pTxBlk->pPacket) ? TRUE : FALSE);
92692 + STAFindCipherAlgorithm(pAd, pTxBlk);
92693 + STABuildCommon802_11Header(pAd, pTxBlk);
92695 + if (pTxBlk->CipherAlg == CIPHER_TKIP)
92697 + pTxBlk->pPacket = duplicate_pkt_with_TKIP_MIC(pAd, pTxBlk->pPacket);
92698 + if (pTxBlk->pPacket == NULL)
92700 + RTMP_QueryPacketInfo(pTxBlk->pPacket, &PacketInfo, &pTxBlk->pSrcBufHeader, &pTxBlk->SrcBufLen);
92703 + // skip 802.3 header
92704 + pTxBlk->pSrcBufData = pTxBlk->pSrcBufHeader + LENGTH_802_3;
92705 + pTxBlk->SrcBufLen -= LENGTH_802_3;
92711 + pTxBlk->pSrcBufData += LENGTH_802_1Q;
92712 + pTxBlk->SrcBufLen -= LENGTH_802_1Q;
92715 + pHeaderBufPtr = &pTxBlk->HeaderBuf[TXINFO_SIZE + TXWI_SIZE];
92716 + pHeader_802_11 = (HEADER_802_11 *)pHeaderBufPtr;
92719 + // skip common header
92720 + pHeaderBufPtr += pTxBlk->MpduHeaderLen;
92722 + if (TX_BLK_TEST_FLAG(pTxBlk, fTX_bWMM))
92725 + // build QOS Control bytes
92727 + *pHeaderBufPtr = (pTxBlk->UserPriority & 0x0F);
92729 + *(pHeaderBufPtr+1) = 0;
92730 + pHeaderBufPtr +=2;
92731 + pTxBlk->MpduHeaderLen += 2;
92735 + // padding at front of LLC header
92736 + // LLC header should locate at 4-octets aligment
92738 + pTxBlk->HdrPadLen = (ULONG)pHeaderBufPtr;
92739 + pHeaderBufPtr = (PCHAR) ROUND_UP(pHeaderBufPtr, 4);
92740 + pTxBlk->HdrPadLen = (ULONG)(pHeaderBufPtr - pTxBlk->HdrPadLen);
92745 + // Insert LLC-SNAP encapsulation - 8 octets
92748 + // if original Ethernet frame contains no LLC/SNAP,
92749 + // then an extra LLC/SNAP encap is required
92751 + EXTRA_LLCSNAP_ENCAP_FROM_PKT_START(pTxBlk->pSrcBufHeader, pTxBlk->pExtraLlcSnapEncap);
92752 + if (pTxBlk->pExtraLlcSnapEncap)
92756 + NdisMoveMemory(pHeaderBufPtr, pTxBlk->pExtraLlcSnapEncap, 6);
92757 + pHeaderBufPtr += 6;
92759 + vlan_size = (bVLANPkt) ? LENGTH_802_1Q : 0;
92760 + // get 2 octets (TypeofLen)
92761 + NdisMoveMemory(pHeaderBufPtr, pTxBlk->pSrcBufHeader+12+vlan_size, 2);
92762 + pHeaderBufPtr += 2;
92763 + pTxBlk->MpduHeaderLen += LENGTH_802_1_H;
92767 + // If TKIP is used and fragmentation is required. Driver has to
92768 + // append TKIP MIC at tail of the scatter buffer
92769 + // MAC ASIC will only perform IV/EIV/ICV insertion but no TKIP MIC
92770 + if (pTxBlk->CipherAlg == CIPHER_TKIP)
92773 + // NOTE: DON'T refer the skb->len directly after following copy. Becasue the length is not adjust
92774 + // to correct lenght, refer to pTxBlk->SrcBufLen for the packet length in following progress.
92775 + NdisMoveMemory(pTxBlk->pSrcBufData + pTxBlk->SrcBufLen, &pAd->PrivateInfo.Tx.MIC[0], 8);
92776 + //skb_put((RTPKT_TO_OSPKT(pTxBlk->pPacket))->tail, 8);
92777 + pTxBlk->SrcBufLen += 8;
92778 + pTxBlk->TotalFrameLen += 8;
92779 + pTxBlk->CipherAlg = CIPHER_TKIP_NO_MIC;
92783 + // calcuate the overhead bytes that encryption algorithm may add. This
92784 + // affects the calculate of "duration" field
92786 + if ((pTxBlk->CipherAlg == CIPHER_WEP64) || (pTxBlk->CipherAlg == CIPHER_WEP128))
92787 + EncryptionOverhead = 8; //WEP: IV[4] + ICV[4];
92788 + else if (pTxBlk->CipherAlg == CIPHER_TKIP_NO_MIC)
92789 + EncryptionOverhead = 12;//TKIP: IV[4] + EIV[4] + ICV[4], MIC will be added to TotalPacketLength
92790 + else if (pTxBlk->CipherAlg == CIPHER_TKIP)
92791 + EncryptionOverhead = 20;//TKIP: IV[4] + EIV[4] + ICV[4] + MIC[8]
92792 + else if (pTxBlk->CipherAlg == CIPHER_AES)
92793 + EncryptionOverhead = 16; // AES: IV[4] + EIV[4] + MIC[8]
92795 + EncryptionOverhead = 0;
92797 + // decide how much time an ACK/CTS frame will consume in the air
92798 + AckDuration = RTMPCalcDuration(pAd, pAd->CommonCfg.ExpectedACKRate[pTxBlk->TxRate], 14);
92800 + // Init the total payload length of this frame.
92801 + SrcRemainingBytes = pTxBlk->SrcBufLen;
92803 + pTxBlk->TotalFragNum = 0xff;
92807 + FreeMpduSize = pAd->CommonCfg.FragmentThreshold - LENGTH_CRC;
92809 + FreeMpduSize -= pTxBlk->MpduHeaderLen;
92811 + if (SrcRemainingBytes <= FreeMpduSize)
92812 + { // this is the last or only fragment
92814 + pTxBlk->SrcBufLen = SrcRemainingBytes;
92816 + pHeader_802_11->FC.MoreFrag = 0;
92817 + pHeader_802_11->Duration = pAd->CommonCfg.Dsifs + AckDuration;
92819 + // Indicate the lower layer that this's the last fragment.
92820 + pTxBlk->TotalFragNum = fragNum;
92823 + { // more fragment is required
92825 + pTxBlk->SrcBufLen = FreeMpduSize;
92827 + NextMpduSize = min(((UINT)SrcRemainingBytes - pTxBlk->SrcBufLen), ((UINT)pAd->CommonCfg.FragmentThreshold));
92828 + pHeader_802_11->FC.MoreFrag = 1;
92829 + pHeader_802_11->Duration = (3 * pAd->CommonCfg.Dsifs) + (2 * AckDuration) + RTMPCalcDuration(pAd, pTxBlk->TxRate, NextMpduSize + EncryptionOverhead);
92832 + if (fragNum == 0)
92833 + pTxBlk->FrameGap = IFS_HTTXOP;
92835 + pTxBlk->FrameGap = IFS_SIFS;
92837 + RTMPWriteTxWI_Data(pAd, (PTXWI_STRUC)(&pTxBlk->HeaderBuf[TXINFO_SIZE]), pTxBlk);
92839 + HAL_WriteFragTxResource(pAd, pTxBlk, fragNum, &FreeNumber);
92841 + pAd->RalinkCounters.KickTxCount++;
92842 + pAd->RalinkCounters.OneSecTxDoneCount++;
92844 + // Update the frame number, remaining size of the NDIS packet payload.
92846 + // space for 802.11 header.
92847 + if (fragNum == 0 && pTxBlk->pExtraLlcSnapEncap)
92848 + pTxBlk->MpduHeaderLen -= LENGTH_802_1_H;
92851 + SrcRemainingBytes -= pTxBlk->SrcBufLen;
92852 + pTxBlk->pSrcBufData += pTxBlk->SrcBufLen;
92854 + pHeader_802_11->Frag++; // increase Frag #
92856 + }while(SrcRemainingBytes > 0);
92861 + HAL_KickOutTx(pAd, pTxBlk, pTxBlk->QueIdx);
92865 +#define RELEASE_FRAMES_OF_TXBLK(_pAd, _pTxBlk, _pQEntry, _Status) \
92866 + while(_pTxBlk->TxPacketList.Head) \
92868 + _pQEntry = RemoveHeadQueue(&_pTxBlk->TxPacketList); \
92869 + RELEASE_NDIS_PACKET(_pAd, QUEUE_ENTRY_TO_PACKET(_pQEntry), _Status); \
92874 + ========================================================================
92876 + Routine Description:
92877 + Copy frame from waiting queue into relative ring buffer and set
92878 + appropriate ASIC register to kick hardware encryption before really
92882 + pAd Pointer to our adapter
92883 + PNDIS_PACKET Pointer to outgoing Ndis frame
92884 + NumberOfFrag Number of fragment required
92889 + IRQL = DISPATCH_LEVEL
92893 + ========================================================================
92895 +NDIS_STATUS STAHardTransmit(
92896 + IN PRTMP_ADAPTER pAd,
92897 + IN TX_BLK *pTxBlk,
92900 + NDIS_PACKET *pPacket;
92901 + PQUEUE_ENTRY pQEntry;
92903 + // ---------------------------------------------
92904 + // STEP 0. DO SANITY CHECK AND SOME EARLY PREPARATION.
92905 + // ---------------------------------------------
92907 + ASSERT(pTxBlk->TxPacketList.Number);
92908 + if (pTxBlk->TxPacketList.Head == NULL)
92910 + DBGPRINT(RT_DEBUG_ERROR, ("pTxBlk->TotalFrameNum == %ld!\n", pTxBlk->TxPacketList.Number));
92911 + return NDIS_STATUS_FAILURE;
92914 + pPacket = QUEUE_ENTRY_TO_PACKET(pTxBlk->TxPacketList.Head);
92916 + // ------------------------------------------------------------------
92917 + // STEP 1. WAKE UP PHY
92918 + // outgoing frame always wakeup PHY to prevent frame lost and
92919 + // turn off PSM bit to improve performance
92920 + // ------------------------------------------------------------------
92921 + // not to change PSM bit, just send this frame out?
92922 + if ((pAd->StaCfg.Psm == PWR_SAVE) && OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_DOZE))
92924 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("AsicForceWakeup At HardTx\n"));
92925 + AsicForceWakeup(pAd, TRUE);
92928 + // It should not change PSM bit, when APSD turn on.
92929 + if ((!(pAd->CommonCfg.bAPSDCapable && pAd->CommonCfg.APEdcaParm.bAPSDCapable) && (pAd->CommonCfg.bAPSDForcePowerSave == FALSE))
92930 + || (RTMP_GET_PACKET_EAPOL(pTxBlk->pPacket))
92931 + || (RTMP_GET_PACKET_WAI(pTxBlk->pPacket)))
92933 + if ((pAd->StaCfg.Psm == PWR_SAVE) &&
92934 + (pAd->StaCfg.WindowsPowerMode == Ndis802_11PowerModeFast_PSP))
92935 + MlmeSetPsmBit(pAd, PWR_ACTIVE);
92938 + switch (pTxBlk->TxFrameType)
92940 +#ifdef DOT11_N_SUPPORT
92941 + case TX_AMPDU_FRAME:
92942 + STA_AMPDU_Frame_Tx(pAd, pTxBlk);
92944 + case TX_AMSDU_FRAME:
92945 + STA_AMSDU_Frame_Tx(pAd, pTxBlk);
92947 +#endif // DOT11_N_SUPPORT //
92948 + case TX_LEGACY_FRAME:
92949 + STA_Legacy_Frame_Tx(pAd, pTxBlk);
92951 + case TX_MCAST_FRAME:
92952 + STA_Legacy_Frame_Tx(pAd, pTxBlk);
92954 + case TX_RALINK_FRAME:
92955 + STA_ARalink_Frame_Tx(pAd, pTxBlk);
92957 + case TX_FRAG_FRAME:
92958 + STA_Fragment_Frame_Tx(pAd, pTxBlk);
92962 + // It should not happened!
92963 + DBGPRINT(RT_DEBUG_ERROR, ("Send a pacekt was not classified!! It should not happen!\n"));
92964 + while(pTxBlk->TxPacketList.Number)
92966 + pQEntry = RemoveHeadQueue(&pTxBlk->TxPacketList);
92967 + pPacket = QUEUE_ENTRY_TO_PACKET(pQEntry);
92969 + RELEASE_NDIS_PACKET(pAd, pPacket, NDIS_STATUS_FAILURE);
92975 + return (NDIS_STATUS_SUCCESS);
92979 +ULONG HashBytesPolynomial(UCHAR *value, unsigned int len)
92981 + unsigned char *word = value;
92982 + unsigned int ret = 0;
92985 + for(i=0; i < len; i++)
92987 + int mod = i % 32;
92988 + ret ^=(unsigned int) (word[i]) << mod;
92989 + ret ^=(unsigned int) (word[i]) >> (32 - mod);
92994 +VOID Sta_Announce_or_Forward_802_3_Packet(
92995 + IN PRTMP_ADAPTER pAd,
92996 + IN PNDIS_PACKET pPacket,
92997 + IN UCHAR FromWhichBSSID)
93002 + announce_802_3_packet(pAd, pPacket);
93006 + // release packet
93007 + RELEASE_NDIS_PACKET(pAd, pPacket, NDIS_STATUS_FAILURE);
93012 +++ b/drivers/staging/rt3070/sta/sanity.c
93015 + *************************************************************************
93016 + * Ralink Tech Inc.
93017 + * 5F., No.36, Taiyuan St., Jhubei City,
93018 + * Hsinchu County 302,
93021 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
93023 + * This program is free software; you can redistribute it and/or modify *
93024 + * it under the terms of the GNU General Public License as published by *
93025 + * the Free Software Foundation; either version 2 of the License, or *
93026 + * (at your option) any later version. *
93028 + * This program is distributed in the hope that it will be useful, *
93029 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
93030 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
93031 + * GNU General Public License for more details. *
93033 + * You should have received a copy of the GNU General Public License *
93034 + * along with this program; if not, write to the *
93035 + * Free Software Foundation, Inc., *
93036 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
93038 + *************************************************************************
93045 + Revision History:
93047 + -------- ---------- ----------------------------------------------
93048 + John Chang 2004-09-01 add WMM support
93050 +#include "../rt_config.h"
93052 +extern UCHAR CISCO_OUI[];
93054 +extern UCHAR WPA_OUI[];
93055 +extern UCHAR RSN_OUI[];
93056 +extern UCHAR WME_INFO_ELEM[];
93057 +extern UCHAR WME_PARM_ELEM[];
93058 +extern UCHAR Ccx2QosInfo[];
93059 +extern UCHAR RALINK_OUI[];
93060 +extern UCHAR BROADCOM_OUI[];
93063 + ==========================================================================
93065 + MLME message sanity check
93067 + TRUE if all parameters are OK, FALSE otherwise
93068 + ==========================================================================
93070 +BOOLEAN MlmeStartReqSanity(
93071 + IN PRTMP_ADAPTER pAd,
93075 + OUT UCHAR *pSsidLen)
93077 + MLME_START_REQ_STRUCT *Info;
93079 + Info = (MLME_START_REQ_STRUCT *)(Msg);
93081 + if (Info->SsidLen > MAX_LEN_OF_SSID)
93083 + DBGPRINT(RT_DEBUG_TRACE, ("MlmeStartReqSanity fail - wrong SSID length\n"));
93087 + *pSsidLen = Info->SsidLen;
93088 + NdisMoveMemory(Ssid, Info->Ssid, *pSsidLen);
93094 + ==========================================================================
93096 + MLME message sanity check
93098 + TRUE if all parameters are OK, FALSE otherwise
93100 + IRQL = DISPATCH_LEVEL
93102 + ==========================================================================
93104 +BOOLEAN PeerAssocRspSanity(
93105 + IN PRTMP_ADAPTER pAd,
93108 + OUT PUCHAR pAddr2,
93109 + OUT USHORT *pCapabilityInfo,
93110 + OUT USHORT *pStatus,
93111 + OUT USHORT *pAid,
93112 + OUT UCHAR SupRate[],
93113 + OUT UCHAR *pSupRateLen,
93114 + OUT UCHAR ExtRate[],
93115 + OUT UCHAR *pExtRateLen,
93116 + OUT HT_CAPABILITY_IE *pHtCapability,
93117 + OUT ADD_HT_INFO_IE *pAddHtInfo, // AP might use this additional ht info IE
93118 + OUT UCHAR *pHtCapabilityLen,
93119 + OUT UCHAR *pAddHtInfoLen,
93120 + OUT UCHAR *pNewExtChannelOffset,
93121 + OUT PEDCA_PARM pEdcaParm,
93122 + OUT UCHAR *pCkipFlag)
93124 + CHAR IeType, *Ptr;
93125 + PFRAME_802_11 pFrame = (PFRAME_802_11)pMsg;
93126 + PEID_STRUCT pEid;
93127 + ULONG Length = 0;
93129 + *pNewExtChannelOffset = 0xff;
93130 + *pHtCapabilityLen = 0;
93131 + *pAddHtInfoLen = 0;
93132 + COPY_MAC_ADDR(pAddr2, pFrame->Hdr.Addr2);
93133 + Ptr = pFrame->Octet;
93134 + Length += LENGTH_802_11;
93136 + NdisMoveMemory(pCapabilityInfo, &pFrame->Octet[0], 2);
93138 + NdisMoveMemory(pStatus, &pFrame->Octet[2], 2);
93141 + *pExtRateLen = 0;
93142 + pEdcaParm->bValid = FALSE;
93144 + if (*pStatus != MLME_SUCCESS)
93147 + NdisMoveMemory(pAid, &pFrame->Octet[4], 2);
93150 + // Aid already swaped byte order in RTMPFrameEndianChange() for big endian platform
93151 + *pAid = (*pAid) & 0x3fff; // AID is low 14-bit
93153 + // -- get supported rates from payload and advance the pointer
93154 + IeType = pFrame->Octet[6];
93155 + *pSupRateLen = pFrame->Octet[7];
93156 + if ((IeType != IE_SUPP_RATES) || (*pSupRateLen > MAX_LEN_OF_SUPPORTED_RATES))
93158 + DBGPRINT(RT_DEBUG_TRACE, ("PeerAssocRspSanity fail - wrong SupportedRates IE\n"));
93162 + NdisMoveMemory(SupRate, &pFrame->Octet[8], *pSupRateLen);
93164 + Length = Length + 2 + *pSupRateLen;
93166 + // many AP implement proprietary IEs in non-standard order, we'd better
93167 + // tolerate mis-ordered IEs to get best compatibility
93168 + pEid = (PEID_STRUCT) &pFrame->Octet[8 + (*pSupRateLen)];
93170 + // get variable fields from payload and advance the pointer
93171 + while ((Length + 2 + pEid->Len) <= MsgLen)
93173 + switch (pEid->Eid)
93175 + case IE_EXT_SUPP_RATES:
93176 + if (pEid->Len <= MAX_LEN_OF_SUPPORTED_RATES)
93178 + NdisMoveMemory(ExtRate, pEid->Octet, pEid->Len);
93179 + *pExtRateLen = pEid->Len;
93185 + if (pEid->Len >= SIZE_HT_CAP_IE) //Note: allow extension.!!
93187 + NdisMoveMemory(pHtCapability, pEid->Octet, SIZE_HT_CAP_IE);
93189 + *(USHORT *)(&pHtCapability->HtCapInfo) = cpu2le16(*(USHORT *)(&pHtCapability->HtCapInfo));
93190 + *(USHORT *)(&pHtCapability->ExtHtCapInfo) = cpu2le16(*(USHORT *)(&pHtCapability->ExtHtCapInfo));
93192 + *pHtCapabilityLen = SIZE_HT_CAP_IE;
93196 + DBGPRINT(RT_DEBUG_WARN, ("PeerAssocRspSanity - wrong IE_HT_CAP. \n"));
93200 +#ifdef DOT11_N_SUPPORT
93203 + if (pEid->Len >= sizeof(ADD_HT_INFO_IE))
93205 + // This IE allows extension, but we can ignore extra bytes beyond our knowledge , so only
93206 + // copy first sizeof(ADD_HT_INFO_IE)
93207 + NdisMoveMemory(pAddHtInfo, pEid->Octet, sizeof(ADD_HT_INFO_IE));
93209 + *(USHORT *)(&pAddHtInfo->AddHtInfo2) = cpu2le16(*(USHORT *)(&pAddHtInfo->AddHtInfo2));
93210 + *(USHORT *)(&pAddHtInfo->AddHtInfo3) = cpu2le16(*(USHORT *)(&pAddHtInfo->AddHtInfo3));
93212 + *pAddHtInfoLen = SIZE_ADD_HT_INFO_IE;
93216 + DBGPRINT(RT_DEBUG_WARN, ("PeerAssocRspSanity - wrong IE_ADD_HT. \n"));
93220 + case IE_SECONDARY_CH_OFFSET:
93221 + if (pEid->Len == 1)
93223 + *pNewExtChannelOffset = pEid->Octet[0];
93227 + DBGPRINT(RT_DEBUG_WARN, ("PeerAssocRspSanity - wrong IE_SECONDARY_CH_OFFSET. \n"));
93229 +#endif // DOT11_N_SUPPORT //
93231 + case IE_AIRONET_CKIP:
93232 + // 0. Check Aironet IE length, it must be larger or equal to 28
93233 + // Cisco's AP VxWork version(will not be supported) used this IE length as 28
93234 + // Cisco's AP IOS version used this IE length as 30
93235 + if (pEid->Len < (CKIP_NEGOTIATION_LENGTH - 2))
93238 + // 1. Copy CKIP flag byte to buffer for process
93239 + *pCkipFlag = *(pEid->Octet + 8);
93242 + case IE_AIRONET_IPADDRESS:
93243 + if (pEid->Len != 0x0A)
93246 + // Get Cisco Aironet IP information
93247 + if (NdisEqualMemory(pEid->Octet, CISCO_OUI, 3) == 1)
93248 + NdisMoveMemory(pAd->StaCfg.AironetIPAddress, pEid->Octet + 4, 4);
93251 + // CCX2, WMM use the same IE value
93252 + // case IE_CCX_V2:
93253 + case IE_VENDOR_SPECIFIC:
93254 + // handle WME PARAMTER ELEMENT
93255 + if (NdisEqualMemory(pEid->Octet, WME_PARM_ELEM, 6) && (pEid->Len == 24))
93260 + // parsing EDCA parameters
93261 + pEdcaParm->bValid = TRUE;
93262 + pEdcaParm->bQAck = FALSE; // pEid->Octet[0] & 0x10;
93263 + pEdcaParm->bQueueRequest = FALSE; // pEid->Octet[0] & 0x20;
93264 + pEdcaParm->bTxopRequest = FALSE; // pEid->Octet[0] & 0x40;
93265 + //pEdcaParm->bMoreDataAck = FALSE; // pEid->Octet[0] & 0x80;
93266 + pEdcaParm->EdcaUpdateCount = pEid->Octet[6] & 0x0f;
93267 + pEdcaParm->bAPSDCapable = (pEid->Octet[6] & 0x80) ? 1 : 0;
93268 + ptr = &pEid->Octet[8];
93269 + for (i=0; i<4; i++)
93271 + UCHAR aci = (*ptr & 0x60) >> 5; // b5~6 is AC INDEX
93272 + pEdcaParm->bACM[aci] = (((*ptr) & 0x10) == 0x10); // b5 is ACM
93273 + pEdcaParm->Aifsn[aci] = (*ptr) & 0x0f; // b0~3 is AIFSN
93274 + pEdcaParm->Cwmin[aci] = *(ptr+1) & 0x0f; // b0~4 is Cwmin
93275 + pEdcaParm->Cwmax[aci] = *(ptr+1) >> 4; // b5~8 is Cwmax
93276 + pEdcaParm->Txop[aci] = *(ptr+2) + 256 * (*(ptr+3)); // in unit of 32-us
93277 + ptr += 4; // point to next AC
93284 + // 0. Check the size and CCX admin control
93285 + if (pAd->StaCfg.CCXControl.field.Enable == 0)
93287 + if (pEid->Len != 5)
93290 + // Turn CCX2 if matched
93291 + if (NdisEqualMemory(pEid->Octet, Ccx2IeInfo, 5) == 1)
93292 + pAd->StaCfg.CCXEnable = TRUE;
93298 + DBGPRINT(RT_DEBUG_TRACE, ("PeerAssocRspSanity - ignore unrecognized EID = %d\n", pEid->Eid));
93302 + Length = Length + 2 + pEid->Len;
93303 + pEid = (PEID_STRUCT)((UCHAR*)pEid + 2 + pEid->Len);
93306 + // Force CCX2 enable to TRUE for those AP didn't replay CCX v2 IE, we still force it to be on
93307 + if (pAd->StaCfg.CCXControl.field.Enable == 1)
93308 + pAd->StaCfg.CCXEnable = TRUE;
93314 + ==========================================================================
93316 + MLME message sanity check
93318 + TRUE if all parameters are OK, FALSE otherwise
93320 + IRQL = DISPATCH_LEVEL
93322 + ==========================================================================
93324 +BOOLEAN PeerProbeReqSanity(
93325 + IN PRTMP_ADAPTER pAd,
93328 + OUT PUCHAR pAddr2,
93330 + OUT UCHAR *pSsidLen)
93335 + PFRAME_802_11 pFrame = (PFRAME_802_11)Msg;
93337 + COPY_MAC_ADDR(pAddr2, pFrame->Hdr.Addr2);
93339 + if ((pFrame->Octet[0] != IE_SSID) || (pFrame->Octet[1] > MAX_LEN_OF_SSID))
93341 + DBGPRINT(RT_DEBUG_TRACE, ("PeerProbeReqSanity fail - wrong SSID IE(Type=%d,Len=%d)\n",pFrame->Octet[0],pFrame->Octet[1]));
93345 + *pSsidLen = pFrame->Octet[1];
93346 + NdisMoveMemory(Ssid, &pFrame->Octet[2], *pSsidLen);
93348 + Idx = *pSsidLen + 2;
93350 + // -- get supported rates from payload and advance the pointer
93351 + IeType = pFrame->Octet[Idx];
93352 + RateLen = pFrame->Octet[Idx + 1];
93353 + if (IeType != IE_SUPP_RATES)
93355 + DBGPRINT(RT_DEBUG_TRACE, ("PeerProbeReqSanity fail - wrong SupportRates IE(Type=%d,Len=%d)\n",pFrame->Octet[Idx],pFrame->Octet[Idx+1]));
93360 + if ((pAd->CommonCfg.PhyMode == PHY_11G) && (RateLen < 8))
93368 + ==========================================================================
93371 + IRQL = DISPATCH_LEVEL
93373 + ==========================================================================
93375 +BOOLEAN GetTimBit(
93378 + OUT UCHAR *TimLen,
93379 + OUT UCHAR *BcastFlag,
93380 + OUT UCHAR *DtimCount,
93381 + OUT UCHAR *DtimPeriod,
93382 + OUT UCHAR *MessageToMe)
93384 + UCHAR BitCntl, N1, N2, MyByte, MyBit;
93390 + *TimLen = *IdxPtr;
93392 + // get DTIM Count from TIM element
93394 + *DtimCount = *IdxPtr;
93396 + // get DTIM Period from TIM element
93398 + *DtimPeriod = *IdxPtr;
93400 + // get Bitmap Control from TIM element
93402 + BitCntl = *IdxPtr;
93404 + if ((*DtimCount == 0) && (BitCntl & 0x01))
93405 + *BcastFlag = TRUE;
93407 + *BcastFlag = FALSE;
93409 + // Parse Partial Virtual Bitmap from TIM element
93410 + N1 = BitCntl & 0xfe; // N1 is the first bitmap byte#
93411 + N2 = *TimLen - 4 + N1; // N2 is the last bitmap byte#
93413 + if ((Aid < (N1 << 3)) || (Aid >= ((N2 + 1) << 3)))
93414 + *MessageToMe = FALSE;
93417 + MyByte = (Aid >> 3) - N1; // my byte position in the bitmap byte-stream
93418 + MyBit = Aid % 16 - ((MyByte & 0x01)? 8:0);
93420 + IdxPtr += (MyByte + 1);
93423 + // DBGPRINT(RT_DEBUG_WARN, ("TIM bitmap = 0x%02x\n", *IdxPtr));
93425 + if (*IdxPtr & (0x01 << MyBit))
93426 + *MessageToMe = TRUE;
93428 + *MessageToMe = FALSE;
93435 +++ b/drivers/staging/rt3070/sta/sync.c
93438 + *************************************************************************
93439 + * Ralink Tech Inc.
93440 + * 5F., No.36, Taiyuan St., Jhubei City,
93441 + * Hsinchu County 302,
93444 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
93446 + * This program is free software; you can redistribute it and/or modify *
93447 + * it under the terms of the GNU General Public License as published by *
93448 + * the Free Software Foundation; either version 2 of the License, or *
93449 + * (at your option) any later version. *
93451 + * This program is distributed in the hope that it will be useful, *
93452 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
93453 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
93454 + * GNU General Public License for more details. *
93456 + * You should have received a copy of the GNU General Public License *
93457 + * along with this program; if not, write to the *
93458 + * Free Software Foundation, Inc., *
93459 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
93461 + *************************************************************************
93468 + Revision History:
93470 + -------- ---------- ----------------------------------------------
93471 + John Chang 2004-09-01 modified for rt2561/2661
93472 + Jan Lee 2006-08-01 modified for rt2860 for 802.11n
93474 +#include "../rt_config.h"
93476 +#define ADHOC_ENTRY_BEACON_LOST_TIME (2*OS_HZ) // 2 sec
93479 + ==========================================================================
93481 + The sync state machine,
93483 + Sm - pointer to the state machine
93485 + the state machine looks like the following
93487 + ==========================================================================
93489 +VOID SyncStateMachineInit(
93490 + IN PRTMP_ADAPTER pAd,
93491 + IN STATE_MACHINE *Sm,
93492 + OUT STATE_MACHINE_FUNC Trans[])
93494 + StateMachineInit(Sm, Trans, MAX_SYNC_STATE, MAX_SYNC_MSG, (STATE_MACHINE_FUNC)Drop, SYNC_IDLE, SYNC_MACHINE_BASE);
93497 + StateMachineSetAction(Sm, SYNC_IDLE, MT2_MLME_SCAN_REQ, (STATE_MACHINE_FUNC)MlmeScanReqAction);
93498 + StateMachineSetAction(Sm, SYNC_IDLE, MT2_MLME_JOIN_REQ, (STATE_MACHINE_FUNC)MlmeJoinReqAction);
93499 + StateMachineSetAction(Sm, SYNC_IDLE, MT2_MLME_START_REQ, (STATE_MACHINE_FUNC)MlmeStartReqAction);
93500 + StateMachineSetAction(Sm, SYNC_IDLE, MT2_PEER_BEACON, (STATE_MACHINE_FUNC)PeerBeacon);
93501 + StateMachineSetAction(Sm, SYNC_IDLE, MT2_PEER_PROBE_REQ, (STATE_MACHINE_FUNC)PeerProbeReqAction);
93504 + StateMachineSetAction(Sm, JOIN_WAIT_BEACON, MT2_MLME_SCAN_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenScan);
93505 + StateMachineSetAction(Sm, JOIN_WAIT_BEACON, MT2_MLME_JOIN_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenJoin);
93506 + StateMachineSetAction(Sm, JOIN_WAIT_BEACON, MT2_MLME_START_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenStart);
93507 + StateMachineSetAction(Sm, JOIN_WAIT_BEACON, MT2_PEER_BEACON, (STATE_MACHINE_FUNC)PeerBeaconAtJoinAction);
93508 + StateMachineSetAction(Sm, JOIN_WAIT_BEACON, MT2_BEACON_TIMEOUT, (STATE_MACHINE_FUNC)BeaconTimeoutAtJoinAction);
93511 + StateMachineSetAction(Sm, SCAN_LISTEN, MT2_MLME_SCAN_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenScan);
93512 + StateMachineSetAction(Sm, SCAN_LISTEN, MT2_MLME_JOIN_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenJoin);
93513 + StateMachineSetAction(Sm, SCAN_LISTEN, MT2_MLME_START_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenStart);
93514 + StateMachineSetAction(Sm, SCAN_LISTEN, MT2_PEER_BEACON, (STATE_MACHINE_FUNC)PeerBeaconAtScanAction);
93515 + StateMachineSetAction(Sm, SCAN_LISTEN, MT2_PEER_PROBE_RSP, (STATE_MACHINE_FUNC)PeerBeaconAtScanAction);
93516 + StateMachineSetAction(Sm, SCAN_LISTEN, MT2_SCAN_TIMEOUT, (STATE_MACHINE_FUNC)ScanTimeoutAction);
93519 + RTMPInitTimer(pAd, &pAd->MlmeAux.BeaconTimer, GET_TIMER_FUNCTION(BeaconTimeout), pAd, FALSE);
93520 + RTMPInitTimer(pAd, &pAd->MlmeAux.ScanTimer, GET_TIMER_FUNCTION(ScanTimeout), pAd, FALSE);
93524 + ==========================================================================
93526 + Beacon timeout handler, executed in timer thread
93528 + IRQL = DISPATCH_LEVEL
93530 + ==========================================================================
93532 +VOID BeaconTimeout(
93533 + IN PVOID SystemSpecific1,
93534 + IN PVOID FunctionContext,
93535 + IN PVOID SystemSpecific2,
93536 + IN PVOID SystemSpecific3)
93538 + RTMP_ADAPTER *pAd = (RTMP_ADAPTER *)FunctionContext;
93540 + DBGPRINT(RT_DEBUG_TRACE,("SYNC - BeaconTimeout\n"));
93542 + // Do nothing if the driver is starting halt state.
93543 + // This might happen when timer already been fired before cancel timer with mlmehalt
93544 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS))
93547 +#ifdef DOT11_N_SUPPORT
93548 + if ((pAd->CommonCfg.BBPCurrentBW == BW_40)
93551 + UCHAR BBPValue = 0;
93552 + AsicSwitchChannel(pAd, pAd->CommonCfg.CentralChannel, FALSE);
93553 + AsicLockChannel(pAd, pAd->CommonCfg.CentralChannel);
93554 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &BBPValue);
93555 + BBPValue &= (~0x18);
93556 + BBPValue |= 0x10;
93557 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, BBPValue);
93558 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - End of SCAN, restore to 40MHz channel %d, Total BSS[%02d]\n",pAd->CommonCfg.CentralChannel, pAd->ScanTab.BssNr));
93560 +#endif // DOT11_N_SUPPORT //
93562 + MlmeEnqueue(pAd, SYNC_STATE_MACHINE, MT2_BEACON_TIMEOUT, 0, NULL);
93563 + RT28XX_MLME_HANDLER(pAd);
93567 + ==========================================================================
93569 + Scan timeout handler, executed in timer thread
93571 + IRQL = DISPATCH_LEVEL
93573 + ==========================================================================
93576 + IN PVOID SystemSpecific1,
93577 + IN PVOID FunctionContext,
93578 + IN PVOID SystemSpecific2,
93579 + IN PVOID SystemSpecific3)
93581 + RTMP_ADAPTER *pAd = (RTMP_ADAPTER *)FunctionContext;
93584 + // Do nothing if the driver is starting halt state.
93585 + // This might happen when timer already been fired before cancel timer with mlmehalt
93586 + if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS))
93589 + if (MlmeEnqueue(pAd, SYNC_STATE_MACHINE, MT2_SCAN_TIMEOUT, 0, NULL))
93591 + RT28XX_MLME_HANDLER(pAd);
93595 + // To prevent SyncMachine.CurrState is SCAN_LISTEN forever.
93596 + pAd->MlmeAux.Channel = 0;
93597 + ScanNextChannel(pAd);
93598 + if (pAd->CommonCfg.bWirelessEvent)
93600 + RTMPSendWirelessEvent(pAd, IW_SCAN_ENQUEUE_FAIL_EVENT_FLAG, pAd->MacTab.Content[BSSID_WCID].Addr, BSS0, 0);
93606 + ==========================================================================
93608 + MLME SCAN req state machine procedure
93609 + ==========================================================================
93611 +VOID MlmeScanReqAction(
93612 + IN PRTMP_ADAPTER pAd,
93613 + IN MLME_QUEUE_ELEM *Elem)
93615 + UCHAR Ssid[MAX_LEN_OF_SSID], SsidLen, ScanType, BssType, BBPValue = 0;
93616 + BOOLEAN TimerCancelled;
93619 + PHEADER_802_11 pHdr80211;
93620 + PUCHAR pOutBuffer = NULL;
93621 + NDIS_STATUS NStatus;
93623 + // Check the total scan tries for one single OID command
93624 + // If this is the CCX 2.0 Case, skip that!
93625 + if ( !RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_START_UP))
93627 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - MlmeScanReqAction before Startup\n"));
93631 + // Increase the scan retry counters.
93632 + pAd->StaCfg.ScanCnt++;
93635 + // first check the parameter sanity
93636 + if (MlmeScanReqSanity(pAd,
93645 + // Check for channel load and noise hist request
93646 + // Suspend MSDU only at scan request, not the last two mentioned
93647 + if ((ScanType == SCAN_CISCO_NOISE) || (ScanType == SCAN_CISCO_CHANNEL_LOAD))
93649 + if (pAd->StaCfg.CCXScanChannel != pAd->CommonCfg.Channel)
93650 + RTMPSuspendMsduTransmission(pAd); // Suspend MSDU transmission here
93654 + // Suspend MSDU transmission here
93655 + RTMPSuspendMsduTransmission(pAd);
93659 + // To prevent data lost.
93660 + // Send an NULL data with turned PSM bit on to current associated AP before SCAN progress.
93661 + // And should send an NULL data with turned PSM bit off to AP, when scan progress done
93663 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED) && (INFRA_ON(pAd)))
93665 + NStatus = MlmeAllocateMemory(pAd, (PVOID)&pOutBuffer);
93666 + if (NStatus == NDIS_STATUS_SUCCESS)
93668 + pHdr80211 = (PHEADER_802_11) pOutBuffer;
93669 + MgtMacHeaderInit(pAd, pHdr80211, SUBTYPE_NULL_FUNC, 1, pAd->CommonCfg.Bssid, pAd->CommonCfg.Bssid);
93670 + pHdr80211->Duration = 0;
93671 + pHdr80211->FC.Type = BTYPE_DATA;
93672 + pHdr80211->FC.PwrMgmt = PWR_SAVE;
93674 + // Send using priority queue
93675 + MiniportMMRequest(pAd, 0, pOutBuffer, sizeof(HEADER_802_11));
93676 + DBGPRINT(RT_DEBUG_TRACE, ("MlmeScanReqAction -- Send PSM Data frame for off channel RM\n"));
93677 + MlmeFreeMemory(pAd, pOutBuffer);
93678 + RTMPusecDelay(5000);
93682 + NdisGetSystemUpTime(&Now);
93683 + pAd->StaCfg.LastScanTime = Now;
93684 + // reset all the timers
93685 + RTMPCancelTimer(&pAd->MlmeAux.BeaconTimer, &TimerCancelled);
93686 + RTMPCancelTimer(&pAd->MlmeAux.ScanTimer, &TimerCancelled);
93688 + // record desired BSS parameters
93689 + pAd->MlmeAux.BssType = BssType;
93690 + pAd->MlmeAux.ScanType = ScanType;
93691 + pAd->MlmeAux.SsidLen = SsidLen;
93692 + NdisZeroMemory(pAd->MlmeAux.Ssid, MAX_LEN_OF_SSID);
93693 + NdisMoveMemory(pAd->MlmeAux.Ssid, Ssid, SsidLen);
93695 + // start from the first channel
93696 + pAd->MlmeAux.Channel = FirstChannel(pAd);
93698 + // Change the scan channel when dealing with CCX beacon report
93699 + if ((ScanType == SCAN_CISCO_PASSIVE) || (ScanType == SCAN_CISCO_ACTIVE) ||
93700 + (ScanType == SCAN_CISCO_CHANNEL_LOAD) || (ScanType == SCAN_CISCO_NOISE))
93701 + pAd->MlmeAux.Channel = pAd->StaCfg.CCXScanChannel;
93703 + // Let BBP register at 20MHz to do scan
93704 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &BBPValue);
93705 + BBPValue &= (~0x18);
93706 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, BBPValue);
93707 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - BBP R4 to 20MHz.l\n"));
93708 + ScanNextChannel(pAd);
93712 + DBGPRINT_ERR(("SYNC - MlmeScanReqAction() sanity check fail\n"));
93713 + pAd->Mlme.SyncMachine.CurrState = SYNC_IDLE;
93714 + Status = MLME_INVALID_FORMAT;
93715 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_SCAN_CONF, 2, &Status);
93720 + ==========================================================================
93722 + MLME JOIN req state machine procedure
93723 + ==========================================================================
93725 +VOID MlmeJoinReqAction(
93726 + IN PRTMP_ADAPTER pAd,
93727 + IN MLME_QUEUE_ELEM *Elem)
93729 + UCHAR BBPValue = 0;
93731 + BOOLEAN TimerCancelled;
93732 + HEADER_802_11 Hdr80211;
93733 + NDIS_STATUS NStatus;
93734 + ULONG FrameLen = 0;
93735 + PUCHAR pOutBuffer = NULL;
93736 + PUCHAR pSupRate = NULL;
93737 + UCHAR SupRateLen;
93738 + PUCHAR pExtRate = NULL;
93739 + UCHAR ExtRateLen;
93740 + UCHAR ASupRate[] = {0x8C, 0x12, 0x98, 0x24, 0xb0, 0x48, 0x60, 0x6C};
93741 + UCHAR ASupRateLen = sizeof(ASupRate)/sizeof(UCHAR);
93742 + MLME_JOIN_REQ_STRUCT *pInfo = (MLME_JOIN_REQ_STRUCT *)(Elem->Msg);
93744 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - MlmeJoinReqAction(BSS #%ld)\n", pInfo->BssIdx));
93747 + // reset all the timers
93748 + RTMPCancelTimer(&pAd->MlmeAux.ScanTimer, &TimerCancelled);
93749 + RTMPCancelTimer(&pAd->MlmeAux.BeaconTimer, &TimerCancelled);
93751 + pBss = &pAd->MlmeAux.SsidBssTab.BssEntry[pInfo->BssIdx];
93753 + // record the desired SSID & BSSID we're waiting for
93754 + COPY_MAC_ADDR(pAd->MlmeAux.Bssid, pBss->Bssid);
93756 + // If AP's SSID is not hidden, it is OK for updating ssid to MlmeAux again.
93757 + if (pBss->Hidden == 0)
93759 + NdisMoveMemory(pAd->MlmeAux.Ssid, pBss->Ssid, pBss->SsidLen);
93760 + pAd->MlmeAux.SsidLen = pBss->SsidLen;
93763 + pAd->MlmeAux.BssType = pBss->BssType;
93764 + pAd->MlmeAux.Channel = pBss->Channel;
93765 + pAd->MlmeAux.CentralChannel = pBss->CentralChannel;
93767 +#ifdef EXT_BUILD_CHANNEL_LIST
93768 + // Country IE of the AP will be evaluated and will be used.
93769 + if ((pAd->StaCfg.IEEE80211dClientMode != Rt802_11_D_None) &&
93770 + (pBss->bHasCountryIE == TRUE))
93772 + NdisMoveMemory(&pAd->CommonCfg.CountryCode[0], &pBss->CountryString[0], 2);
93773 + if (pBss->CountryString[2] == 'I')
93774 + pAd->CommonCfg.Geography = IDOR;
93775 + else if (pBss->CountryString[2] == 'O')
93776 + pAd->CommonCfg.Geography = ODOR;
93778 + pAd->CommonCfg.Geography = BOTH;
93779 + BuildChannelListEx(pAd);
93781 +#endif // EXT_BUILD_CHANNEL_LIST //
93783 + // Let BBP register at 20MHz to do scan
93784 + RTMP_BBP_IO_READ8_BY_REG_ID(pAd, BBP_R4, &BBPValue);
93785 + BBPValue &= (~0x18);
93786 + RTMP_BBP_IO_WRITE8_BY_REG_ID(pAd, BBP_R4, BBPValue);
93787 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - BBP R4 to 20MHz.l\n"));
93789 + // switch channel and waiting for beacon timer
93790 + AsicSwitchChannel(pAd, pAd->MlmeAux.Channel, FALSE);
93791 + AsicLockChannel(pAd, pAd->MlmeAux.Channel);
93792 + RTMPSetTimer(&pAd->MlmeAux.BeaconTimer, JOIN_TIMEOUT);
93796 + if (((pAd->CommonCfg.bIEEE80211H == 1) &&
93797 + (pAd->MlmeAux.Channel > 14) &&
93798 + RadarChannelCheck(pAd, pAd->MlmeAux.Channel))
93799 +#ifdef CARRIER_DETECTION_SUPPORT // Roger sync Carrier
93800 + || (pAd->CommonCfg.CarrierDetect.Enable == TRUE)
93801 +#endif // CARRIER_DETECTION_SUPPORT //
93805 + // We can't send any Probe request frame to meet 802.11h.
93807 + if (pBss->Hidden == 0)
93812 + // send probe request
93814 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer);
93815 + if (NStatus == NDIS_STATUS_SUCCESS)
93817 + if (pAd->MlmeAux.Channel <= 14)
93819 + pSupRate = pAd->CommonCfg.SupRate;
93820 + SupRateLen = pAd->CommonCfg.SupRateLen;
93821 + pExtRate = pAd->CommonCfg.ExtRate;
93822 + ExtRateLen = pAd->CommonCfg.ExtRateLen;
93827 + // Overwrite Support Rate, CCK rate are not allowed
93829 + pSupRate = ASupRate;
93830 + SupRateLen = ASupRateLen;
93834 + if (pAd->MlmeAux.BssType == BSS_INFRA)
93835 + MgtMacHeaderInit(pAd, &Hdr80211, SUBTYPE_PROBE_REQ, 0, pAd->MlmeAux.Bssid, pAd->MlmeAux.Bssid);
93837 + MgtMacHeaderInit(pAd, &Hdr80211, SUBTYPE_PROBE_REQ, 0, BROADCAST_ADDR, BROADCAST_ADDR);
93839 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
93840 + sizeof(HEADER_802_11), &Hdr80211,
93842 + 1, &pAd->MlmeAux.SsidLen,
93843 + pAd->MlmeAux.SsidLen, pAd->MlmeAux.Ssid,
93846 + SupRateLen, pSupRate,
93852 + MakeOutgoingFrame(pOutBuffer + FrameLen, &Tmp,
93855 + ExtRateLen, pExtRate,
93861 + MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
93862 + MlmeFreeMemory(pAd, pOutBuffer);
93866 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - Switch to ch %d, Wait BEACON from %02x:%02x:%02x:%02x:%02x:%02x\n",
93867 + pBss->Channel, pBss->Bssid[0], pBss->Bssid[1], pBss->Bssid[2], pBss->Bssid[3], pBss->Bssid[4], pBss->Bssid[5]));
93869 + pAd->Mlme.SyncMachine.CurrState = JOIN_WAIT_BEACON;
93873 + ==========================================================================
93875 + MLME START Request state machine procedure, starting an IBSS
93876 + ==========================================================================
93878 +VOID MlmeStartReqAction(
93879 + IN PRTMP_ADAPTER pAd,
93880 + IN MLME_QUEUE_ELEM *Elem)
93882 + UCHAR Ssid[MAX_LEN_OF_SSID], SsidLen;
93883 + BOOLEAN TimerCancelled;
93885 + // New for WPA security suites
93886 + UCHAR VarIE[MAX_VIE_LEN]; // Total VIE length = MAX_VIE_LEN - -5
93887 + NDIS_802_11_VARIABLE_IEs *pVIE = NULL;
93888 + LARGE_INTEGER TimeStamp;
93892 + // Init Variable IE structure
93893 + pVIE = (PNDIS_802_11_VARIABLE_IEs) VarIE;
93894 + pVIE->Length = 0;
93895 + TimeStamp.u.LowPart = 0;
93896 + TimeStamp.u.HighPart = 0;
93898 + if (MlmeStartReqSanity(pAd, Elem->Msg, Elem->MsgLen, Ssid, &SsidLen))
93900 + // reset all the timers
93901 + RTMPCancelTimer(&pAd->MlmeAux.ScanTimer, &TimerCancelled);
93902 + RTMPCancelTimer(&pAd->MlmeAux.BeaconTimer, &TimerCancelled);
93905 + // Start a new IBSS. All IBSS parameters are decided now....
93907 + DBGPRINT(RT_DEBUG_TRACE, ("MlmeStartReqAction - Start a new IBSS. All IBSS parameters are decided now.... \n"));
93908 + pAd->MlmeAux.BssType = BSS_ADHOC;
93909 + NdisMoveMemory(pAd->MlmeAux.Ssid, Ssid, SsidLen);
93910 + pAd->MlmeAux.SsidLen = SsidLen;
93912 + // generate a radom number as BSSID
93913 + MacAddrRandomBssid(pAd, pAd->MlmeAux.Bssid);
93914 + DBGPRINT(RT_DEBUG_TRACE, ("MlmeStartReqAction - generate a radom number as BSSID \n"));
93916 + Privacy = (pAd->StaCfg.WepStatus == Ndis802_11Encryption1Enabled) ||
93917 + (pAd->StaCfg.WepStatus == Ndis802_11Encryption2Enabled) ||
93918 + (pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled);
93919 + pAd->MlmeAux.CapabilityInfo = CAP_GENERATE(0,1,Privacy, (pAd->CommonCfg.TxPreamble == Rt802_11PreambleShort), 1, 0);
93920 + pAd->MlmeAux.BeaconPeriod = pAd->CommonCfg.BeaconPeriod;
93921 + pAd->MlmeAux.AtimWin = pAd->StaCfg.AtimWin;
93922 + pAd->MlmeAux.Channel = pAd->CommonCfg.Channel;
93924 + pAd->CommonCfg.CentralChannel = pAd->CommonCfg.Channel;
93925 + pAd->MlmeAux.CentralChannel = pAd->CommonCfg.CentralChannel;
93927 + pAd->MlmeAux.SupRateLen= pAd->CommonCfg.SupRateLen;
93928 + NdisMoveMemory(pAd->MlmeAux.SupRate, pAd->CommonCfg.SupRate, MAX_LEN_OF_SUPPORTED_RATES);
93929 + RTMPCheckRates(pAd, pAd->MlmeAux.SupRate, &pAd->MlmeAux.SupRateLen);
93930 + pAd->MlmeAux.ExtRateLen = pAd->CommonCfg.ExtRateLen;
93931 + NdisMoveMemory(pAd->MlmeAux.ExtRate, pAd->CommonCfg.ExtRate, MAX_LEN_OF_SUPPORTED_RATES);
93932 + RTMPCheckRates(pAd, pAd->MlmeAux.ExtRate, &pAd->MlmeAux.ExtRateLen);
93933 +#ifdef DOT11_N_SUPPORT
93934 + if (pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED)
93936 + RTMPUpdateHTIE(&pAd->CommonCfg.DesiredHtPhy, &pAd->StaCfg.DesiredHtPhyInfo.MCSSet[0], &pAd->MlmeAux.HtCapability, &pAd->MlmeAux.AddHtInfo);
93937 + pAd->MlmeAux.HtCapabilityLen = sizeof(HT_CAPABILITY_IE);
93938 + // Not turn pAd->StaActive.SupportedHtPhy.bHtEnable = TRUE here.
93939 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC -pAd->StaActive.SupportedHtPhy.bHtEnable = TRUE\n"));
93942 +#endif // DOT11_N_SUPPORT //
93944 + pAd->MlmeAux.HtCapabilityLen = 0;
93945 + pAd->StaActive.SupportedPhyInfo.bHtEnable = FALSE;
93947 + // temporarily not support QOS in IBSS
93948 + NdisZeroMemory(&pAd->MlmeAux.APEdcaParm, sizeof(EDCA_PARM));
93949 + NdisZeroMemory(&pAd->MlmeAux.APQbssLoad, sizeof(QBSS_LOAD_PARM));
93950 + NdisZeroMemory(&pAd->MlmeAux.APQosCapability, sizeof(QOS_CAPABILITY_PARM));
93952 + AsicSwitchChannel(pAd, pAd->MlmeAux.Channel, FALSE);
93953 + AsicLockChannel(pAd, pAd->MlmeAux.Channel);
93955 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - MlmeStartReqAction(ch= %d,sup rates= %d, ext rates=%d)\n",
93956 + pAd->MlmeAux.Channel, pAd->MlmeAux.SupRateLen, pAd->MlmeAux.ExtRateLen));
93958 + pAd->Mlme.SyncMachine.CurrState = SYNC_IDLE;
93959 + Status = MLME_SUCCESS;
93960 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_START_CONF, 2, &Status);
93964 + DBGPRINT_ERR(("SYNC - MlmeStartReqAction() sanity check fail.\n"));
93965 + pAd->Mlme.SyncMachine.CurrState = SYNC_IDLE;
93966 + Status = MLME_INVALID_FORMAT;
93967 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_START_CONF, 2, &Status);
93972 + ==========================================================================
93974 + peer sends beacon back when scanning
93975 + ==========================================================================
93977 +VOID PeerBeaconAtScanAction(
93978 + IN PRTMP_ADAPTER pAd,
93979 + IN MLME_QUEUE_ELEM *Elem)
93981 + UCHAR Bssid[MAC_ADDR_LEN], Addr2[MAC_ADDR_LEN];
93982 + UCHAR Ssid[MAX_LEN_OF_SSID], BssType, Channel, NewChannel,
93983 + SsidLen, DtimCount, DtimPeriod, BcastFlag, MessageToMe;
93985 + USHORT BeaconPeriod, AtimWin, CapabilityInfo;
93986 + PFRAME_802_11 pFrame;
93987 + LARGE_INTEGER TimeStamp;
93989 + UCHAR SupRate[MAX_LEN_OF_SUPPORTED_RATES], ExtRate[MAX_LEN_OF_SUPPORTED_RATES];
93990 + UCHAR SupRateLen, ExtRateLen;
93993 + UCHAR AironetCellPowerLimit;
93994 + EDCA_PARM EdcaParm;
93995 + QBSS_LOAD_PARM QbssLoad;
93996 + QOS_CAPABILITY_PARM QosCapability;
93998 + UCHAR VarIE[MAX_VIE_LEN]; // Total VIE length = MAX_VIE_LEN - -5
93999 + NDIS_802_11_VARIABLE_IEs *pVIE = NULL;
94000 + HT_CAPABILITY_IE HtCapability;
94001 + ADD_HT_INFO_IE AddHtInfo; // AP might use this additional ht info IE
94002 + UCHAR HtCapabilityLen = 0, PreNHtCapabilityLen = 0;
94003 + UCHAR AddHtInfoLen;
94004 + UCHAR NewExtChannelOffset = 0xff;
94007 + // NdisFillMemory(Ssid, MAX_LEN_OF_SSID, 0x00);
94008 + pFrame = (PFRAME_802_11) Elem->Msg;
94009 + // Init Variable IE structure
94010 + pVIE = (PNDIS_802_11_VARIABLE_IEs) VarIE;
94011 + pVIE->Length = 0;
94012 +#ifdef DOT11_N_SUPPORT
94013 + RTMPZeroMemory(&HtCapability, sizeof(HtCapability));
94014 + RTMPZeroMemory(&AddHtInfo, sizeof(ADD_HT_INFO_IE));
94015 +#endif // DOT11_N_SUPPORT //
94017 + if (PeerBeaconAndProbeRspSanity(pAd,
94043 + &AironetCellPowerLimit,
94048 + &HtCapabilityLen,
94049 + &PreNHtCapabilityLen,
94053 + &NewExtChannelOffset,
94060 + Idx = BssTableSearch(&pAd->ScanTab, Bssid, Channel);
94061 + if (Idx != BSS_NOT_FOUND)
94062 + Rssi = pAd->ScanTab.BssEntry[Idx].Rssi;
94064 + Rssi = RTMPMaxRssi(pAd, ConvertToRssi(pAd, Elem->Rssi0, RSSI_0), ConvertToRssi(pAd, Elem->Rssi1, RSSI_1), ConvertToRssi(pAd, Elem->Rssi2, RSSI_2));
94067 +#ifdef DOT11_N_SUPPORT
94068 + if ((HtCapabilityLen > 0) || (PreNHtCapabilityLen > 0))
94069 + HtCapabilityLen = SIZE_HT_CAP_IE;
94070 +#endif // DOT11_N_SUPPORT //
94071 + if ((pAd->StaCfg.CCXReqType != MSRN_TYPE_UNUSED) && (Channel == pAd->StaCfg.CCXScanChannel))
94073 + Idx = BssTableSetEntry(pAd, &pAd->StaCfg.CCXBssTab, Bssid, Ssid, SsidLen, BssType, BeaconPeriod,
94074 + &CfParm, AtimWin, CapabilityInfo, SupRate, SupRateLen,ExtRate, ExtRateLen, &HtCapability,
94075 + &AddHtInfo, HtCapabilityLen, AddHtInfoLen, NewExtChannelOffset, Channel, Rssi, TimeStamp, CkipFlag,
94076 + &EdcaParm, &QosCapability, &QbssLoad, LenVIE, pVIE);
94077 + if (Idx != BSS_NOT_FOUND)
94079 + NdisMoveMemory(pAd->StaCfg.CCXBssTab.BssEntry[Idx].PTSF, &Elem->Msg[24], 4);
94080 + NdisMoveMemory(&pAd->StaCfg.CCXBssTab.BssEntry[Idx].TTSF[0], &Elem->TimeStamp.u.LowPart, 4);
94081 + NdisMoveMemory(&pAd->StaCfg.CCXBssTab.BssEntry[Idx].TTSF[4], &Elem->TimeStamp.u.LowPart, 4);
94082 + if (pAd->StaCfg.CCXReqType == MSRN_TYPE_BEACON_REQ)
94083 + AironetAddBeaconReport(pAd, Idx, Elem);
94088 + Idx = BssTableSetEntry(pAd, &pAd->ScanTab, Bssid, Ssid, SsidLen, BssType, BeaconPeriod,
94089 + &CfParm, AtimWin, CapabilityInfo, SupRate, SupRateLen, ExtRate, ExtRateLen, &HtCapability,
94090 + &AddHtInfo, HtCapabilityLen, AddHtInfoLen, NewExtChannelOffset, Channel, Rssi, TimeStamp, CkipFlag,
94091 + &EdcaParm, &QosCapability, &QbssLoad, LenVIE, pVIE);
94092 +#ifdef DOT11_N_SUPPORT
94093 +#ifdef DOT11N_DRAFT3
94094 + if (pAd->ChannelList[pAd->CommonCfg.ChannelListIdx].bEffectedChannel == TRUE)
94097 + PeerBeaconAndProbeRspSanity2(pAd, Elem->Msg, Elem->MsgLen, &RegClass);
94098 + TriEventTableSetEntry(pAd, &pAd->CommonCfg.TriggerEventTab, Bssid, &HtCapability, HtCapabilityLen, RegClass, Channel);
94100 +#endif // DOT11N_DRAFT3 //
94101 +#endif // DOT11_N_SUPPORT //
94102 + if (Idx != BSS_NOT_FOUND)
94104 + NdisMoveMemory(pAd->ScanTab.BssEntry[Idx].PTSF, &Elem->Msg[24], 4);
94105 + NdisMoveMemory(&pAd->ScanTab.BssEntry[Idx].TTSF[0], &Elem->TimeStamp.u.LowPart, 4);
94106 + NdisMoveMemory(&pAd->ScanTab.BssEntry[Idx].TTSF[4], &Elem->TimeStamp.u.LowPart, 4);
94110 + // sanity check fail, ignored
94114 + ==========================================================================
94116 + When waiting joining the (I)BSS, beacon received from external
94117 + ==========================================================================
94119 +VOID PeerBeaconAtJoinAction(
94120 + IN PRTMP_ADAPTER pAd,
94121 + IN MLME_QUEUE_ELEM *Elem)
94123 + UCHAR Bssid[MAC_ADDR_LEN], Addr2[MAC_ADDR_LEN];
94124 + UCHAR Ssid[MAX_LEN_OF_SSID], SsidLen, BssType, Channel, MessageToMe,
94125 + DtimCount, DtimPeriod, BcastFlag, NewChannel;
94126 + LARGE_INTEGER TimeStamp;
94127 + USHORT BeaconPeriod, AtimWin, CapabilityInfo;
94129 + BOOLEAN TimerCancelled;
94131 + UCHAR SupRate[MAX_LEN_OF_SUPPORTED_RATES], ExtRate[MAX_LEN_OF_SUPPORTED_RATES];
94132 + UCHAR SupRateLen, ExtRateLen;
94135 + UCHAR AironetCellPowerLimit;
94136 + EDCA_PARM EdcaParm;
94137 + QBSS_LOAD_PARM QbssLoad;
94138 + QOS_CAPABILITY_PARM QosCapability;
94140 + UCHAR VarIE[MAX_VIE_LEN]; // Total VIE length = MAX_VIE_LEN - -5
94141 + NDIS_802_11_VARIABLE_IEs *pVIE = NULL;
94144 + HT_CAPABILITY_IE HtCapability;
94145 + ADD_HT_INFO_IE AddHtInfo; // AP might use this additional ht info IE
94146 + UCHAR HtCapabilityLen = 0, PreNHtCapabilityLen = 0;
94147 + UCHAR AddHtInfoLen;
94148 + UCHAR NewExtChannelOffset = 0xff;
94149 +#ifdef DOT11_N_SUPPORT
94150 + UCHAR CentralChannel;
94151 +#endif // DOT11_N_SUPPORT //
94153 + // Init Variable IE structure
94154 + pVIE = (PNDIS_802_11_VARIABLE_IEs) VarIE;
94155 + pVIE->Length = 0;
94156 + RTMPZeroMemory(&HtCapability, sizeof(HtCapability));
94157 + RTMPZeroMemory(&AddHtInfo, sizeof(ADD_HT_INFO_IE));
94160 + if (PeerBeaconAndProbeRspSanity(pAd,
94186 + &AironetCellPowerLimit,
94191 + &HtCapabilityLen,
94192 + &PreNHtCapabilityLen,
94196 + &NewExtChannelOffset,
94200 + // Disqualify 11b only adhoc when we are in 11g only adhoc mode
94201 + if ((BssType == BSS_ADHOC) && (pAd->CommonCfg.PhyMode == PHY_11G) && ((SupRateLen+ExtRateLen)< 12))
94204 + // BEACON from desired BSS/IBSS found. We should be able to decide most
94205 + // BSS parameters here.
94206 + // Q. But what happen if this JOIN doesn't conclude a successful ASSOCIATEION?
94207 + // Do we need to receover back all parameters belonging to previous BSS?
94208 + // A. Should be not. There's no back-door recover to previous AP. It still need
94209 + // a new JOIN-AUTH-ASSOC sequence.
94210 + if (MAC_ADDR_EQUAL(pAd->MlmeAux.Bssid, Bssid))
94212 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - receive desired BEACON at JoinWaitBeacon... Channel = %d\n", Channel));
94213 + RTMPCancelTimer(&pAd->MlmeAux.BeaconTimer, &TimerCancelled);
94215 + // Update RSSI to prevent No signal display when cards first initialized
94216 + pAd->StaCfg.RssiSample.LastRssi0 = ConvertToRssi(pAd, Elem->Rssi0, RSSI_0);
94217 + pAd->StaCfg.RssiSample.LastRssi1 = ConvertToRssi(pAd, Elem->Rssi1, RSSI_1);
94218 + pAd->StaCfg.RssiSample.LastRssi2 = ConvertToRssi(pAd, Elem->Rssi2, RSSI_2);
94219 + pAd->StaCfg.RssiSample.AvgRssi0 = pAd->StaCfg.RssiSample.LastRssi0;
94220 + pAd->StaCfg.RssiSample.AvgRssi0X8 = pAd->StaCfg.RssiSample.AvgRssi0 << 3;
94221 + pAd->StaCfg.RssiSample.AvgRssi1 = pAd->StaCfg.RssiSample.LastRssi1;
94222 + pAd->StaCfg.RssiSample.AvgRssi1X8 = pAd->StaCfg.RssiSample.AvgRssi1 << 3;
94223 + pAd->StaCfg.RssiSample.AvgRssi2 = pAd->StaCfg.RssiSample.LastRssi2;
94224 + pAd->StaCfg.RssiSample.AvgRssi2X8 = pAd->StaCfg.RssiSample.AvgRssi2 << 3;
94227 + // We need to check if SSID only set to any, then we can record the current SSID.
94228 + // Otherwise will cause hidden SSID association failed.
94230 + if (pAd->MlmeAux.SsidLen == 0)
94232 + NdisMoveMemory(pAd->MlmeAux.Ssid, Ssid, SsidLen);
94233 + pAd->MlmeAux.SsidLen = SsidLen;
94237 + Idx = BssSsidTableSearch(&pAd->ScanTab, Bssid, pAd->MlmeAux.Ssid, pAd->MlmeAux.SsidLen, Channel);
94239 + if (Idx != BSS_NOT_FOUND)
94242 + // Multiple SSID case, used correct CapabilityInfo
94244 + CapabilityInfo = pAd->ScanTab.BssEntry[Idx].CapabilityInfo;
94247 + NdisMoveMemory(pAd->MlmeAux.Bssid, Bssid, MAC_ADDR_LEN);
94248 + pAd->MlmeAux.CapabilityInfo = CapabilityInfo & SUPPORTED_CAPABILITY_INFO;
94249 + pAd->MlmeAux.BssType = BssType;
94250 + pAd->MlmeAux.BeaconPeriod = BeaconPeriod;
94251 + pAd->MlmeAux.Channel = Channel;
94252 + pAd->MlmeAux.AtimWin = AtimWin;
94253 + pAd->MlmeAux.CfpPeriod = Cf.CfpPeriod;
94254 + pAd->MlmeAux.CfpMaxDuration = Cf.CfpMaxDuration;
94255 + pAd->MlmeAux.APRalinkIe = RalinkIe;
94257 + // Copy AP's supported rate to MlmeAux for creating assoication request
94258 + // Also filter out not supported rate
94259 + pAd->MlmeAux.SupRateLen = SupRateLen;
94260 + NdisMoveMemory(pAd->MlmeAux.SupRate, SupRate, SupRateLen);
94261 + RTMPCheckRates(pAd, pAd->MlmeAux.SupRate, &pAd->MlmeAux.SupRateLen);
94262 + pAd->MlmeAux.ExtRateLen = ExtRateLen;
94263 + NdisMoveMemory(pAd->MlmeAux.ExtRate, ExtRate, ExtRateLen);
94264 + RTMPCheckRates(pAd, pAd->MlmeAux.ExtRate, &pAd->MlmeAux.ExtRateLen);
94266 + NdisZeroMemory(pAd->StaActive.SupportedPhyInfo.MCSSet, 16);
94267 +#ifdef DOT11_N_SUPPORT
94268 + pAd->MlmeAux.NewExtChannelOffset = NewExtChannelOffset;
94269 + pAd->MlmeAux.HtCapabilityLen = HtCapabilityLen;
94271 + // filter out un-supported ht rates
94272 + if (((HtCapabilityLen > 0) || (PreNHtCapabilityLen > 0)) && (pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED))
94274 + RTMPZeroMemory(&pAd->MlmeAux.HtCapability, SIZE_HT_CAP_IE);
94275 + RTMPMoveMemory(&pAd->MlmeAux.AddHtInfo, &AddHtInfo, SIZE_ADD_HT_INFO_IE);
94277 + // StaActive.SupportedHtPhy.MCSSet stores Peer AP's 11n Rx capability
94278 + NdisMoveMemory(pAd->StaActive.SupportedPhyInfo.MCSSet, HtCapability.MCSSet, 16);
94279 + pAd->MlmeAux.NewExtChannelOffset = NewExtChannelOffset;
94280 + pAd->MlmeAux.HtCapabilityLen = SIZE_HT_CAP_IE;
94281 + pAd->StaActive.SupportedPhyInfo.bHtEnable = TRUE;
94282 + if (PreNHtCapabilityLen > 0)
94283 + pAd->StaActive.SupportedPhyInfo.bPreNHt = TRUE;
94284 + RTMPCheckHt(pAd, BSSID_WCID, &HtCapability, &AddHtInfo);
94285 + // Copy AP Parameter to StaActive. This is also in LinkUp.
94286 + DBGPRINT(RT_DEBUG_TRACE, ("PeerBeaconAtJoinAction! (MpduDensity=%d, MaxRAmpduFactor=%d, BW=%d)\n",
94287 + pAd->StaActive.SupportedHtPhy.MpduDensity, pAd->StaActive.SupportedHtPhy.MaxRAmpduFactor, HtCapability.HtCapInfo.ChannelWidth));
94289 + if (AddHtInfoLen > 0)
94291 + CentralChannel = AddHtInfo.ControlChan;
94292 + // Check again the Bandwidth capability of this AP.
94293 + if ((AddHtInfo.ControlChan > 2)&& (AddHtInfo.AddHtInfo.ExtChanOffset == EXTCHA_BELOW) && (HtCapability.HtCapInfo.ChannelWidth == BW_40))
94295 + CentralChannel = AddHtInfo.ControlChan - 2;
94297 + else if ((AddHtInfo.AddHtInfo.ExtChanOffset == EXTCHA_ABOVE) && (HtCapability.HtCapInfo.ChannelWidth == BW_40))
94299 + CentralChannel = AddHtInfo.ControlChan + 2;
94303 + if (pAd->MlmeAux.CentralChannel != CentralChannel)
94304 + DBGPRINT(RT_DEBUG_ERROR, ("PeerBeaconAtJoinAction HT===>Beacon Central Channel = %d, Control Channel = %d. Mlmeaux CentralChannel = %d\n", CentralChannel, AddHtInfo.ControlChan, pAd->MlmeAux.CentralChannel));
94306 + DBGPRINT(RT_DEBUG_TRACE, ("PeerBeaconAtJoinAction HT===>Central Channel = %d, Control Channel = %d, .\n", CentralChannel, AddHtInfo.ControlChan));
94312 +#endif // DOT11_N_SUPPORT //
94314 + // To prevent error, let legacy AP must have same CentralChannel and Channel.
94315 + if ((HtCapabilityLen == 0) && (PreNHtCapabilityLen == 0))
94316 + pAd->MlmeAux.CentralChannel = pAd->MlmeAux.Channel;
94318 + pAd->StaActive.SupportedPhyInfo.bHtEnable = FALSE;
94319 + RTMPZeroMemory(&pAd->MlmeAux.HtCapability, SIZE_HT_CAP_IE);
94320 + RTMPZeroMemory(&pAd->MlmeAux.AddHtInfo, SIZE_ADD_HT_INFO_IE);
94323 + RTMPUpdateMlmeRate(pAd);
94325 + // copy QOS related information
94326 + if ((pAd->CommonCfg.bWmmCapable)
94327 +#ifdef DOT11_N_SUPPORT
94328 + || (pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED)
94329 +#endif // DOT11_N_SUPPORT //
94332 + NdisMoveMemory(&pAd->MlmeAux.APEdcaParm, &EdcaParm, sizeof(EDCA_PARM));
94333 + NdisMoveMemory(&pAd->MlmeAux.APQbssLoad, &QbssLoad, sizeof(QBSS_LOAD_PARM));
94334 + NdisMoveMemory(&pAd->MlmeAux.APQosCapability, &QosCapability, sizeof(QOS_CAPABILITY_PARM));
94338 + NdisZeroMemory(&pAd->MlmeAux.APEdcaParm, sizeof(EDCA_PARM));
94339 + NdisZeroMemory(&pAd->MlmeAux.APQbssLoad, sizeof(QBSS_LOAD_PARM));
94340 + NdisZeroMemory(&pAd->MlmeAux.APQosCapability, sizeof(QOS_CAPABILITY_PARM));
94343 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - after JOIN, SupRateLen=%d, ExtRateLen=%d\n",
94344 + pAd->MlmeAux.SupRateLen, pAd->MlmeAux.ExtRateLen));
94346 +#ifdef LEAP_SUPPORT
94347 + // Update CkipFlag
94348 + pAd->StaCfg.CkipFlag = CkipFlag;
94350 + // Keep TimeStamp for Re-Association used.
94351 + if (LEAP_CCKM_ON(pAd) && (pAd->StaCfg.CCKMLinkUpFlag == TRUE))
94352 + pAd->StaCfg.CCKMBeaconAtJoinTimeStamp = TimeStamp;
94353 +#endif // LEAP_SUPPORT //
94355 + if (AironetCellPowerLimit != 0xFF)
94357 + //We need to change our TxPower for CCX 2.0 AP Control of Client Transmit Power
94358 + ChangeToCellPowerLimit(pAd, AironetCellPowerLimit);
94360 + else //Used the default TX Power Percentage.
94361 + pAd->CommonCfg.TxPowerPercentage = pAd->CommonCfg.TxPowerDefault;
94363 + pAd->Mlme.SyncMachine.CurrState = SYNC_IDLE;
94364 + Status = MLME_SUCCESS;
94365 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_JOIN_CONF, 2, &Status);
94367 + // not to me BEACON, ignored
94369 + // sanity check fail, ignore this frame
94373 + ==========================================================================
94375 + receive BEACON from peer
94377 + IRQL = DISPATCH_LEVEL
94379 + ==========================================================================
94382 + IN PRTMP_ADAPTER pAd,
94383 + IN MLME_QUEUE_ELEM *Elem)
94385 + UCHAR Bssid[MAC_ADDR_LEN], Addr2[MAC_ADDR_LEN];
94386 + CHAR Ssid[MAX_LEN_OF_SSID];
94388 + UCHAR SsidLen, MessageToMe=0, BssType, Channel, NewChannel, index=0;
94389 + UCHAR DtimCount=0, DtimPeriod=0, BcastFlag=0;
94390 + USHORT CapabilityInfo, AtimWin, BeaconPeriod;
94391 + LARGE_INTEGER TimeStamp;
94392 + USHORT TbttNumToNextWakeUp;
94394 + UCHAR SupRate[MAX_LEN_OF_SUPPORTED_RATES], ExtRate[MAX_LEN_OF_SUPPORTED_RATES];
94395 + UCHAR SupRateLen, ExtRateLen;
94398 + UCHAR AironetCellPowerLimit;
94399 + EDCA_PARM EdcaParm;
94400 + QBSS_LOAD_PARM QbssLoad;
94401 + QOS_CAPABILITY_PARM QosCapability;
94403 + // New for WPA security suites
94404 + UCHAR VarIE[MAX_VIE_LEN]; // Total VIE length = MAX_VIE_LEN - -5
94405 + NDIS_802_11_VARIABLE_IEs *pVIE = NULL;
94406 + HT_CAPABILITY_IE HtCapability;
94407 + ADD_HT_INFO_IE AddHtInfo; // AP might use this additional ht info IE
94408 + UCHAR HtCapabilityLen, PreNHtCapabilityLen;
94409 + UCHAR AddHtInfoLen;
94410 + UCHAR NewExtChannelOffset = 0xff;
94418 +#endif // RALINK_ATE //
94420 + if (!(INFRA_ON(pAd) || ADHOC_ON(pAd)
94424 + // Init Variable IE structure
94425 + pVIE = (PNDIS_802_11_VARIABLE_IEs) VarIE;
94426 + pVIE->Length = 0;
94427 + RTMPZeroMemory(&HtCapability, sizeof(HtCapability));
94428 + RTMPZeroMemory(&AddHtInfo, sizeof(ADD_HT_INFO_IE));
94430 + if (PeerBeaconAndProbeRspSanity(pAd,
94456 + &AironetCellPowerLimit,
94461 + &HtCapabilityLen,
94462 + &PreNHtCapabilityLen,
94466 + &NewExtChannelOffset,
94470 + BOOLEAN is_my_bssid, is_my_ssid;
94471 + ULONG Bssidx, Now;
94473 + CHAR RealRssi = RTMPMaxRssi(pAd, ConvertToRssi(pAd, Elem->Rssi0, RSSI_0), ConvertToRssi(pAd, Elem->Rssi1, RSSI_1), ConvertToRssi(pAd, Elem->Rssi2, RSSI_2));
94475 + is_my_bssid = MAC_ADDR_EQUAL(Bssid, pAd->CommonCfg.Bssid)? TRUE : FALSE;
94476 + is_my_ssid = SSID_EQUAL(Ssid, SsidLen, pAd->CommonCfg.Ssid, pAd->CommonCfg.SsidLen)? TRUE:FALSE;
94479 + // ignore BEACON not for my SSID
94480 + if ((! is_my_ssid) && (! is_my_bssid))
94483 + // It means STA waits disassoc completely from this AP, ignores this beacon.
94484 + if (pAd->Mlme.CntlMachine.CurrState == CNTL_WAIT_DISASSOC)
94487 +#ifdef DOT11_N_SUPPORT
94488 + // Copy Control channel for this BSSID.
94489 + if (AddHtInfoLen != 0)
94490 + Channel = AddHtInfo.ControlChan;
94492 + if ((HtCapabilityLen > 0) || (PreNHtCapabilityLen > 0))
94493 + HtCapabilityLen = SIZE_HT_CAP_IE;
94494 +#endif // DOT11_N_SUPPORT //
94497 + // Housekeeping "SsidBssTab" table for later-on ROAMing usage.
94499 + Bssidx = BssTableSearch(&pAd->ScanTab, Bssid, Channel);
94500 + if (Bssidx == BSS_NOT_FOUND)
94502 + // discover new AP of this network, create BSS entry
94503 + Bssidx = BssTableSetEntry(pAd, &pAd->ScanTab, Bssid, Ssid, SsidLen, BssType, BeaconPeriod,
94504 + &CfParm, AtimWin, CapabilityInfo, SupRate, SupRateLen, ExtRate, ExtRateLen,
94505 + &HtCapability, &AddHtInfo,HtCapabilityLen,AddHtInfoLen,NewExtChannelOffset, Channel,
94506 + RealRssi, TimeStamp, CkipFlag, &EdcaParm, &QosCapability,
94507 + &QbssLoad, LenVIE, pVIE);
94508 + if (Bssidx == BSS_NOT_FOUND) // return if BSS table full
94511 + NdisMoveMemory(pAd->ScanTab.BssEntry[Bssidx].PTSF, &Elem->Msg[24], 4);
94512 + NdisMoveMemory(&pAd->ScanTab.BssEntry[Bssidx].TTSF[0], &Elem->TimeStamp.u.LowPart, 4);
94513 + NdisMoveMemory(&pAd->ScanTab.BssEntry[Bssidx].TTSF[4], &Elem->TimeStamp.u.LowPart, 4);
94519 + if ((pAd->CommonCfg.bIEEE80211H == 1) && (NewChannel != 0) && (Channel != NewChannel))
94521 + // Switching to channel 1 can prevent from rescanning the current channel immediately (by auto reconnection).
94522 + // In addition, clear the MLME queue and the scan table to discard the RX packets and previous scanning results.
94523 + AsicSwitchChannel(pAd, 1, FALSE);
94524 + AsicLockChannel(pAd, 1);
94525 + LinkDown(pAd, FALSE);
94526 + MlmeQueueInit(&pAd->Mlme.Queue);
94527 + BssTableInit(&pAd->ScanTab);
94528 + RTMPusecDelay(1000000); // use delay to prevent STA do reassoc
94530 + // channel sanity check
94531 + for (index = 0 ; index < pAd->ChannelListNum; index++)
94533 + if (pAd->ChannelList[index].Channel == NewChannel)
94535 + pAd->ScanTab.BssEntry[Bssidx].Channel = NewChannel;
94536 + pAd->CommonCfg.Channel = NewChannel;
94537 + AsicSwitchChannel(pAd, pAd->CommonCfg.Channel, FALSE);
94538 + AsicLockChannel(pAd, pAd->CommonCfg.Channel);
94539 + DBGPRINT(RT_DEBUG_TRACE, ("PeerBeacon - STA receive channel switch announcement IE (New Channel =%d)\n", NewChannel));
94544 + if (index >= pAd->ChannelListNum)
94546 + DBGPRINT_ERR(("PeerBeacon(can not find New Channel=%d in ChannelList[%d]\n", pAd->CommonCfg.Channel, pAd->ChannelListNum));
94550 + // if the ssid matched & bssid unmatched, we should select the bssid with large value.
94551 + // This might happened when two STA start at the same time
94552 + if ((! is_my_bssid) && ADHOC_ON(pAd))
94556 + // Add the safeguard against the mismatch of adhoc wep status
94557 + if (pAd->StaCfg.WepStatus != pAd->ScanTab.BssEntry[Bssidx].WepStatus)
94559 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - Not matched wep status %d %d\n", pAd->StaCfg.WepStatus, pAd->ScanTab.BssEntry[Bssidx].WepStatus));
94560 + DBGPRINT(RT_DEBUG_TRACE, ("bssid=%s\n", pAd->ScanTab.BssEntry[Bssidx].Bssid));
94564 + // collapse into the ADHOC network which has bigger BSSID value.
94565 + for (i = 0; i < 6; i++)
94567 + if (Bssid[i] > pAd->CommonCfg.Bssid[i])
94569 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - merge to the IBSS with bigger BSSID=%02x:%02x:%02x:%02x:%02x:%02x\n",
94570 + Bssid[0], Bssid[1], Bssid[2], Bssid[3], Bssid[4], Bssid[5]));
94571 + AsicDisableSync(pAd);
94572 + COPY_MAC_ADDR(pAd->CommonCfg.Bssid, Bssid);
94573 + AsicSetBssid(pAd, pAd->CommonCfg.Bssid);
94574 + MakeIbssBeacon(pAd); // re-build BEACON frame
94575 + AsicEnableIbssSync(pAd); // copy BEACON frame to on-chip memory
94576 + is_my_bssid = TRUE;
94579 + else if (Bssid[i] < pAd->CommonCfg.Bssid[i])
94585 + NdisGetSystemUpTime(&Now);
94586 + pBss = &pAd->ScanTab.BssEntry[Bssidx];
94587 + pBss->Rssi = RealRssi; // lastest RSSI
94588 + pBss->LastBeaconRxTime = Now; // last RX timestamp
94591 + // BEACON from my BSSID - either IBSS or INFRA network
94597 + pAd->StaCfg.DtimCount = DtimCount;
94598 + pAd->StaCfg.DtimPeriod = DtimPeriod;
94599 + pAd->StaCfg.LastBeaconRxTime = Now;
94602 + RxWI.RSSI0 = Elem->Rssi0;
94603 + RxWI.RSSI1 = Elem->Rssi1;
94604 + RxWI.RSSI2 = Elem->Rssi2;
94606 + Update_Rssi_Sample(pAd, &pAd->StaCfg.RssiSample, &RxWI);
94607 + if (AironetCellPowerLimit != 0xFF)
94610 + // We get the Cisco (ccx) "TxPower Limit" required
94611 + // Changed to appropriate TxPower Limit for Ciso Compatible Extensions
94613 + ChangeToCellPowerLimit(pAd, AironetCellPowerLimit);
94618 + // AironetCellPowerLimit equal to 0xFF means the Cisco (ccx) "TxPower Limit" not exist.
94619 + // Used the default TX Power Percentage, that set from UI.
94621 + pAd->CommonCfg.TxPowerPercentage = pAd->CommonCfg.TxPowerDefault;
94624 + if (ADHOC_ON(pAd) && (CAP_IS_IBSS_ON(CapabilityInfo)))
94626 + UCHAR MaxSupportedRateIn500Kbps = 0;
94628 + MAC_TABLE_ENTRY *pEntry;
94630 + // supported rates array may not be sorted. sort it and find the maximum rate
94631 + for (idx=0; idx<SupRateLen; idx++)
94633 + if (MaxSupportedRateIn500Kbps < (SupRate[idx] & 0x7f))
94634 + MaxSupportedRateIn500Kbps = SupRate[idx] & 0x7f;
94637 + for (idx=0; idx<ExtRateLen; idx++)
94639 + if (MaxSupportedRateIn500Kbps < (ExtRate[idx] & 0x7f))
94640 + MaxSupportedRateIn500Kbps = ExtRate[idx] & 0x7f;
94643 + // look up the existing table
94644 + pEntry = MacTableLookup(pAd, Addr2);
94646 + // Ad-hoc mode is using MAC address as BA session. So we need to continuously find newly joined adhoc station by receiving beacon.
94647 + // To prevent always check this, we use wcid == RESERVED_WCID to recognize it as newly joined adhoc station.
94648 + if ((ADHOC_ON(pAd) && (Elem->Wcid == RESERVED_WCID)) ||
94649 + (pEntry && ((pEntry->LastBeaconRxTime + ADHOC_ENTRY_BEACON_LOST_TIME) < Now)))
94651 + if (pEntry == NULL)
94652 + // Another adhoc joining, add to our MAC table.
94653 + pEntry = MacTableInsertEntry(pAd, Addr2, BSS0, FALSE);
94655 + if (StaAddMacTableEntry(pAd, pEntry, MaxSupportedRateIn500Kbps, &HtCapability, HtCapabilityLen, CapabilityInfo) == FALSE)
94657 + DBGPRINT(RT_DEBUG_TRACE, ("ADHOC - Add Entry failed.\n"));
94662 + (Elem->Wcid == RESERVED_WCID))
94664 + idx = pAd->StaCfg.DefaultKeyId;
94665 + RT28XX_STA_SECURITY_INFO_ADD(pAd, BSS0, idx, pEntry);
94669 + if (pEntry && pEntry->ValidAsCLI)
94670 + pEntry->LastBeaconRxTime = Now;
94672 + // At least another peer in this IBSS, declare MediaState as CONNECTED
94673 + if (!OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED))
94675 + OPSTATUS_SET_FLAG(pAd, fOP_STATUS_MEDIA_STATE_CONNECTED);
94677 + pAd->IndicateMediaState = NdisMediaStateConnected;
94678 + RTMP_IndicateMediaState(pAd);
94679 + pAd->ExtraInfo = GENERAL_LINK_UP;
94680 + AsicSetBssid(pAd, pAd->CommonCfg.Bssid);
94682 + // 2003/03/12 - john
94683 + // Make sure this entry in "ScanTab" table, thus complies to Microsoft's policy that
94684 + // "site survey" result should always include the current connected network.
94686 + Bssidx = BssTableSearch(&pAd->ScanTab, Bssid, Channel);
94687 + if (Bssidx == BSS_NOT_FOUND)
94689 + Bssidx = BssTableSetEntry(pAd, &pAd->ScanTab, Bssid, Ssid, SsidLen, BssType, BeaconPeriod,
94690 + &CfParm, AtimWin, CapabilityInfo, SupRate, SupRateLen, ExtRate, ExtRateLen, &HtCapability,
94691 + &AddHtInfo, HtCapabilityLen, AddHtInfoLen, NewExtChannelOffset, Channel, RealRssi, TimeStamp, 0,
94692 + &EdcaParm, &QosCapability, &QbssLoad, LenVIE, pVIE);
94694 + DBGPRINT(RT_DEBUG_TRACE, ("ADHOC fOP_STATUS_MEDIA_STATE_CONNECTED.\n"));
94698 + if (INFRA_ON(pAd))
94700 + BOOLEAN bUseShortSlot, bUseBGProtection;
94702 + // decide to use/change to -
94703 + // 1. long slot (20 us) or short slot (9 us) time
94704 + // 2. turn on/off RTS/CTS and/or CTS-to-self protection
94705 + // 3. short preamble
94707 + //bUseShortSlot = pAd->CommonCfg.bUseShortSlotTime && CAP_IS_SHORT_SLOT(CapabilityInfo);
94708 + bUseShortSlot = CAP_IS_SHORT_SLOT(CapabilityInfo);
94709 + if (bUseShortSlot != OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_SHORT_SLOT_INUSED))
94710 + AsicSetSlotTime(pAd, bUseShortSlot);
94712 + bUseBGProtection = (pAd->CommonCfg.UseBGProtection == 1) || // always use
94713 + ((pAd->CommonCfg.UseBGProtection == 0) && ERP_IS_USE_PROTECTION(Erp));
94715 + if (pAd->CommonCfg.Channel > 14) // always no BG protection in A-band. falsely happened when switching A/G band to a dual-band AP
94716 + bUseBGProtection = FALSE;
94718 + if (bUseBGProtection != OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_BG_PROTECTION_INUSED))
94720 + if (bUseBGProtection)
94722 + OPSTATUS_SET_FLAG(pAd, fOP_STATUS_BG_PROTECTION_INUSED);
94723 + AsicUpdateProtect(pAd, pAd->MlmeAux.AddHtInfo.AddHtInfo2.OperaionMode, (OFDMSETPROTECT|CCKSETPROTECT|ALLN_SETPROTECT),FALSE,(pAd->MlmeAux.AddHtInfo.AddHtInfo2.NonGfPresent == 1));
94727 + OPSTATUS_CLEAR_FLAG(pAd, fOP_STATUS_BG_PROTECTION_INUSED);
94728 + AsicUpdateProtect(pAd, pAd->MlmeAux.AddHtInfo.AddHtInfo2.OperaionMode, (OFDMSETPROTECT|CCKSETPROTECT|ALLN_SETPROTECT),TRUE,(pAd->MlmeAux.AddHtInfo.AddHtInfo2.NonGfPresent == 1));
94731 + DBGPRINT(RT_DEBUG_WARN, ("SYNC - AP changed B/G protection to %d\n", bUseBGProtection));
94734 +#ifdef DOT11_N_SUPPORT
94735 + // check Ht protection mode. and adhere to the Non-GF device indication by AP.
94736 + if ((AddHtInfoLen != 0) &&
94737 + ((AddHtInfo.AddHtInfo2.OperaionMode != pAd->MlmeAux.AddHtInfo.AddHtInfo2.OperaionMode) ||
94738 + (AddHtInfo.AddHtInfo2.NonGfPresent != pAd->MlmeAux.AddHtInfo.AddHtInfo2.NonGfPresent)))
94740 + pAd->MlmeAux.AddHtInfo.AddHtInfo2.NonGfPresent = AddHtInfo.AddHtInfo2.NonGfPresent;
94741 + pAd->MlmeAux.AddHtInfo.AddHtInfo2.OperaionMode = AddHtInfo.AddHtInfo2.OperaionMode;
94742 + if (pAd->MlmeAux.AddHtInfo.AddHtInfo2.NonGfPresent == 1)
94744 + AsicUpdateProtect(pAd, pAd->MlmeAux.AddHtInfo.AddHtInfo2.OperaionMode, ALLN_SETPROTECT, FALSE, TRUE);
94747 + AsicUpdateProtect(pAd, pAd->MlmeAux.AddHtInfo.AddHtInfo2.OperaionMode, ALLN_SETPROTECT, FALSE, FALSE);
94749 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - AP changed N OperaionMode to %d\n", pAd->MlmeAux.AddHtInfo.AddHtInfo2.OperaionMode));
94751 +#endif // DOT11_N_SUPPORT //
94753 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_SHORT_PREAMBLE_INUSED) &&
94754 + ERP_IS_USE_BARKER_PREAMBLE(Erp))
94756 + MlmeSetTxPreamble(pAd, Rt802_11PreambleLong);
94757 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - AP forced to use LONG preamble\n"));
94760 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_WMM_INUSED) &&
94761 + (EdcaParm.bValid == TRUE) &&
94762 + (EdcaParm.EdcaUpdateCount != pAd->CommonCfg.APEdcaParm.EdcaUpdateCount))
94764 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - AP change EDCA parameters(from %d to %d)\n",
94765 + pAd->CommonCfg.APEdcaParm.EdcaUpdateCount,
94766 + EdcaParm.EdcaUpdateCount));
94767 + AsicSetEdcaParm(pAd, &EdcaParm);
94770 + // copy QOS related information
94771 + NdisMoveMemory(&pAd->CommonCfg.APQbssLoad, &QbssLoad, sizeof(QBSS_LOAD_PARM));
94772 + NdisMoveMemory(&pAd->CommonCfg.APQosCapability, &QosCapability, sizeof(QOS_CAPABILITY_PARM));
94775 + // only INFRASTRUCTURE mode support power-saving feature
94776 + if ((INFRA_ON(pAd) && (pAd->StaCfg.Psm == PWR_SAVE)) || (pAd->CommonCfg.bAPSDForcePowerSave))
94778 + UCHAR FreeNumber;
94779 + // 1. AP has backlogged unicast-to-me frame, stay AWAKE, send PSPOLL
94780 + // 2. AP has backlogged broadcast/multicast frame and we want those frames, stay AWAKE
94781 + // 3. we have outgoing frames in TxRing or MgmtRing, better stay AWAKE
94782 + // 4. Psm change to PWR_SAVE, but AP not been informed yet, we better stay AWAKE
94783 + // 5. otherwise, put PHY back to sleep to save battery.
94786 + if (pAd->CommonCfg.bAPSDCapable && pAd->CommonCfg.APEdcaParm.bAPSDCapable &&
94787 + pAd->CommonCfg.bAPSDAC_BE && pAd->CommonCfg.bAPSDAC_BK && pAd->CommonCfg.bAPSDAC_VI && pAd->CommonCfg.bAPSDAC_VO)
94789 + pAd->CommonCfg.bNeedSendTriggerFrame = TRUE;
94792 + RT28XX_PS_POLL_ENQUEUE(pAd);
94794 + else if (BcastFlag && (DtimCount == 0) && OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_RECEIVE_DTIM))
94797 + else if ((pAd->TxSwQueue[QID_AC_BK].Number != 0) ||
94798 + (pAd->TxSwQueue[QID_AC_BE].Number != 0) ||
94799 + (pAd->TxSwQueue[QID_AC_VI].Number != 0) ||
94800 + (pAd->TxSwQueue[QID_AC_VO].Number != 0) ||
94801 + (RTMPFreeTXDRequest(pAd, QID_AC_BK, TX_RING_SIZE - 1, &FreeNumber) != NDIS_STATUS_SUCCESS) ||
94802 + (RTMPFreeTXDRequest(pAd, QID_AC_BE, TX_RING_SIZE - 1, &FreeNumber) != NDIS_STATUS_SUCCESS) ||
94803 + (RTMPFreeTXDRequest(pAd, QID_AC_VI, TX_RING_SIZE - 1, &FreeNumber) != NDIS_STATUS_SUCCESS) ||
94804 + (RTMPFreeTXDRequest(pAd, QID_AC_VO, TX_RING_SIZE - 1, &FreeNumber) != NDIS_STATUS_SUCCESS) ||
94805 + (RTMPFreeTXDRequest(pAd, QID_MGMT, MGMT_RING_SIZE - 1, &FreeNumber) != NDIS_STATUS_SUCCESS))
94807 + // TODO: consider scheduled HCCA. might not be proper to use traditional DTIM-based power-saving scheme
94808 + // can we cheat here (i.e. just check MGMT & AC_BE) for better performance?
94812 + USHORT NextDtim = DtimCount;
94814 + if (NextDtim == 0)
94815 + NextDtim = DtimPeriod;
94817 + TbttNumToNextWakeUp = pAd->StaCfg.DefaultListenCount;
94818 + if (OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_RECEIVE_DTIM) && (TbttNumToNextWakeUp > NextDtim))
94819 + TbttNumToNextWakeUp = NextDtim;
94821 + if (!OPSTATUS_TEST_FLAG(pAd, fOP_STATUS_DOZE))
94823 + AsicSleepThenAutoWakeup(pAd, TbttNumToNextWakeUp);
94828 + // not my BSSID, ignore it
94830 + // sanity check fail, ignore this frame
94834 + ==========================================================================
94836 + Receive PROBE REQ from remote peer when operating in IBSS mode
94837 + ==========================================================================
94839 +VOID PeerProbeReqAction(
94840 + IN PRTMP_ADAPTER pAd,
94841 + IN MLME_QUEUE_ELEM *Elem)
94843 + UCHAR Addr2[MAC_ADDR_LEN];
94844 + CHAR Ssid[MAX_LEN_OF_SSID];
94846 +#ifdef DOT11_N_SUPPORT
94847 + UCHAR HtLen, AddHtLen, NewExtLen;
94848 +#endif // DOT11_N_SUPPORT //
94849 + HEADER_802_11 ProbeRspHdr;
94850 + NDIS_STATUS NStatus;
94851 + PUCHAR pOutBuffer = NULL;
94852 + ULONG FrameLen = 0;
94853 + LARGE_INTEGER FakeTimestamp;
94854 + UCHAR DsLen = 1, IbssLen = 2;
94855 + UCHAR LocalErpIe[3] = {IE_ERP, 1, 0};
94857 + USHORT CapabilityInfo;
94858 + UCHAR RSNIe = IE_WPA;
94860 + if (! ADHOC_ON(pAd))
94863 + if (PeerProbeReqSanity(pAd, Elem->Msg, Elem->MsgLen, Addr2, Ssid, &SsidLen))
94865 + if ((SsidLen == 0) || SSID_EQUAL(Ssid, SsidLen, pAd->CommonCfg.Ssid, pAd->CommonCfg.SsidLen))
94867 + // allocate and send out ProbeRsp frame
94868 + NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
94869 + if (NStatus != NDIS_STATUS_SUCCESS)
94872 + //pAd->StaCfg.AtimWin = 0; // ??????
94874 + Privacy = (pAd->StaCfg.WepStatus == Ndis802_11Encryption1Enabled) ||
94875 + (pAd->StaCfg.WepStatus == Ndis802_11Encryption2Enabled) ||
94876 + (pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled);
94877 + CapabilityInfo = CAP_GENERATE(0, 1, Privacy, (pAd->CommonCfg.TxPreamble == Rt802_11PreambleShort), 0, 0);
94879 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
94880 + sizeof(HEADER_802_11), &ProbeRspHdr,
94881 + TIMESTAMP_LEN, &FakeTimestamp,
94882 + 2, &pAd->CommonCfg.BeaconPeriod,
94883 + 2, &CapabilityInfo,
94885 + 1, &pAd->CommonCfg.SsidLen,
94886 + pAd->CommonCfg.SsidLen, pAd->CommonCfg.Ssid,
94888 + 1, &pAd->StaActive.SupRateLen,
94889 + pAd->StaActive.SupRateLen, pAd->StaActive.SupRate,
94892 + 1, &pAd->CommonCfg.Channel,
94895 + 2, &pAd->StaActive.AtimWin,
94898 + if (pAd->StaActive.ExtRateLen)
94901 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
94904 + 1, &pAd->StaActive.ExtRateLen,
94905 + pAd->StaActive.ExtRateLen, &pAd->StaActive.ExtRate,
94910 + // If adhoc secruity is set for WPA-None, append the cipher suite IE
94911 + if (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPANone)
94914 + MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
94916 + 1, &pAd->StaCfg.RSNIE_Len,
94917 + pAd->StaCfg.RSNIE_Len, pAd->StaCfg.RSN_IE,
94921 +#ifdef DOT11_N_SUPPORT
94922 + if (pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED)
94925 + UCHAR BROADCOM[4] = {0x0, 0x90, 0x4c, 0x33};
94926 + HtLen = sizeof(pAd->CommonCfg.HtCapability);
94927 + AddHtLen = sizeof(pAd->CommonCfg.AddHTInfo);
94929 + //New extension channel offset IE is included in Beacon, Probe Rsp or channel Switch Announcement Frame
94930 + if (pAd->bBroadComHT == TRUE)
94932 + MakeOutgoingFrame(pOutBuffer + FrameLen, &TmpLen,
94935 + pAd->MlmeAux.HtCapabilityLen, &pAd->MlmeAux.HtCapability,
94940 + MakeOutgoingFrame(pOutBuffer + FrameLen, &TmpLen,
94943 + sizeof(HT_CAPABILITY_IE), &pAd->CommonCfg.HtCapability,
94946 + sizeof(ADD_HT_INFO_IE), &pAd->CommonCfg.AddHTInfo,
94947 + 1, &NewExtChanIe,
94949 + sizeof(NEW_EXT_CHAN_IE), &pAd->CommonCfg.NewExtChanOffset,
94952 + FrameLen += TmpLen;
94954 +#endif // DOT11_N_SUPPORT //
94955 + MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
94956 + MlmeFreeMemory(pAd, pOutBuffer);
94961 +VOID BeaconTimeoutAtJoinAction(
94962 + IN PRTMP_ADAPTER pAd,
94963 + IN MLME_QUEUE_ELEM *Elem)
94966 + DBGPRINT(RT_DEBUG_TRACE, ("SYNC - BeaconTimeoutAtJoinAction\n"));
94967 + pAd->Mlme.SyncMachine.CurrState = SYNC_IDLE;
94968 + Status = MLME_REJ_TIMEOUT;
94969 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_JOIN_CONF, 2, &Status);
94973 + ==========================================================================
94975 + Scan timeout procedure. basically add channel index by 1 and rescan
94976 + ==========================================================================
94978 +VOID ScanTimeoutAction(
94979 + IN PRTMP_ADAPTER pAd,
94980 + IN MLME_QUEUE_ELEM *Elem)
94982 + pAd->MlmeAux.Channel = NextChannel(pAd, pAd->MlmeAux.Channel);
94984 + // Only one channel scanned for CISCO beacon request
94985 + if ((pAd->MlmeAux.ScanType == SCAN_CISCO_ACTIVE) ||
94986 + (pAd->MlmeAux.ScanType == SCAN_CISCO_PASSIVE) ||
94987 + (pAd->MlmeAux.ScanType == SCAN_CISCO_NOISE) ||
94988 + (pAd->MlmeAux.ScanType == SCAN_CISCO_CHANNEL_LOAD))
94989 + pAd->MlmeAux.Channel = 0;
94991 + // this routine will stop if pAd->MlmeAux.Channel == 0
94992 + ScanNextChannel(pAd);
94996 + ==========================================================================
94998 + ==========================================================================
95000 +VOID InvalidStateWhenScan(
95001 + IN PRTMP_ADAPTER pAd,
95002 + IN MLME_QUEUE_ELEM *Elem)
95005 + DBGPRINT(RT_DEBUG_TRACE, ("AYNC - InvalidStateWhenScan(state=%ld). Reset SYNC machine\n", pAd->Mlme.SyncMachine.CurrState));
95006 + pAd->Mlme.SyncMachine.CurrState = SYNC_IDLE;
95007 + Status = MLME_STATE_MACHINE_REJECT;
95008 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_SCAN_CONF, 2, &Status);
95012 + ==========================================================================
95014 + ==========================================================================
95016 +VOID InvalidStateWhenJoin(
95017 + IN PRTMP_ADAPTER pAd,
95018 + IN MLME_QUEUE_ELEM *Elem)
95021 + DBGPRINT(RT_DEBUG_TRACE, ("InvalidStateWhenJoin(state=%ld). Reset SYNC machine\n", pAd->Mlme.SyncMachine.CurrState));
95022 + pAd->Mlme.SyncMachine.CurrState = SYNC_IDLE;
95023 + Status = MLME_STATE_MACHINE_REJECT;
95024 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_JOIN_CONF, 2, &Status);
95028 + ==========================================================================
95030 + ==========================================================================
95032 +VOID InvalidStateWhenStart(
95033 + IN PRTMP_ADAPTER pAd,
95034 + IN MLME_QUEUE_ELEM *Elem)
95037 + DBGPRINT(RT_DEBUG_TRACE, ("InvalidStateWhenStart(state=%ld). Reset SYNC machine\n", pAd->Mlme.SyncMachine.CurrState));
95038 + pAd->Mlme.SyncMachine.CurrState = SYNC_IDLE;
95039 + Status = MLME_STATE_MACHINE_REJECT;
95040 + MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_START_CONF, 2, &Status);
95044 + ==========================================================================
95047 + IRQL = DISPATCH_LEVEL
95049 + ==========================================================================
95051 +VOID EnqueuePsPoll(
95052 + IN PRTMP_ADAPTER pAd)
95059 +#endif // RALINK_ATE //
95062 + if (pAd->StaCfg.WindowsPowerMode == Ndis802_11PowerModeLegacy_PSP)
95063 + pAd->PsPollFrame.FC.PwrMgmt = PWR_SAVE;
95064 + MiniportMMRequest(pAd, 0, (PUCHAR)&pAd->PsPollFrame, sizeof(PSPOLL_FRAME));
95069 + ==========================================================================
95071 + ==========================================================================
95073 +VOID EnqueueProbeRequest(
95074 + IN PRTMP_ADAPTER pAd)
95076 + NDIS_STATUS NState;
95077 + PUCHAR pOutBuffer;
95078 + ULONG FrameLen = 0;
95079 + HEADER_802_11 Hdr80211;
95081 + DBGPRINT(RT_DEBUG_TRACE, ("force out a ProbeRequest ...\n"));
95083 + NState = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
95084 + if (NState == NDIS_STATUS_SUCCESS)
95086 + MgtMacHeaderInit(pAd, &Hdr80211, SUBTYPE_PROBE_REQ, 0, BROADCAST_ADDR, BROADCAST_ADDR);
95088 + // this ProbeRequest explicitly specify SSID to reduce unwanted ProbeResponse
95089 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
95090 + sizeof(HEADER_802_11), &Hdr80211,
95092 + 1, &pAd->CommonCfg.SsidLen,
95093 + pAd->CommonCfg.SsidLen, pAd->CommonCfg.Ssid,
95095 + 1, &pAd->StaActive.SupRateLen,
95096 + pAd->StaActive.SupRateLen, pAd->StaActive.SupRate,
95098 + MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
95099 + MlmeFreeMemory(pAd, pOutBuffer);
95104 +#ifdef DOT11_N_SUPPORT
95105 +#ifdef DOT11N_DRAFT3
95106 +VOID BuildEffectedChannelList(
95107 + IN PRTMP_ADAPTER pAd)
95109 + UCHAR EChannel[11];
95111 + UCHAR UpperChannel = 0, LowerChannel = 0;
95113 + RTMPZeroMemory(EChannel, 11);
95115 + // Find upper channel and lower channel.
95116 + if (pAd->CommonCfg.CentralChannel < pAd->CommonCfg.Channel)
95118 + UpperChannel = pAd->CommonCfg.Channel;
95119 + LowerChannel = pAd->CommonCfg.CentralChannel;
95121 + else if (pAd->CommonCfg.CentralChannel > pAd->CommonCfg.Channel)
95123 + UpperChannel = pAd->CommonCfg.CentralChannel;
95124 + LowerChannel = pAd->CommonCfg.Channel;
95131 + // Record channels that is below lower channel..
95132 + if (LowerChannel > 1)
95134 + EChannel[0] = LowerChannel - 1;
95136 + if (LowerChannel > 2)
95138 + EChannel[1] = LowerChannel - 2;
95140 + if (LowerChannel > 3)
95142 + EChannel[2] = LowerChannel - 3;
95147 + // Record channels that is between lower channel and upper channel.
95148 + for (k = LowerChannel;k < UpperChannel;k++)
95153 + // Record channels that is above upper channel..
95154 + if (LowerChannel < 11)
95156 + EChannel[i] = UpperChannel + 1;
95158 + if (LowerChannel < 10)
95160 + EChannel[i] = LowerChannel + 2;
95162 + if (LowerChannel < 9)
95164 + EChannel[i] = LowerChannel + 3;
95170 + for (j = 0;j < i;j++)
95172 + for (k = 0;k < pAd->ChannelListNum;k++)
95174 + if (pAd->ChannelList[k].Channel == EChannel[j])
95176 + pAd->ChannelList[k].bEffectedChannel = TRUE;
95177 + DBGPRINT(RT_DEBUG_TRACE,(" EffectedChannel( =%d)\n", EChannel[j]));
95183 +#endif // DOT11N_DRAFT3 //
95184 +#endif // DOT11_N_SUPPORT //
95186 +BOOLEAN ScanRunning(
95187 + IN PRTMP_ADAPTER pAd)
95189 + return (pAd->Mlme.SyncMachine.CurrState == SCAN_LISTEN) ? TRUE : FALSE;
95193 +++ b/drivers/staging/rt3070/sta/wpa.c
95196 + *************************************************************************
95197 + * Ralink Tech Inc.
95198 + * 5F., No.36, Taiyuan St., Jhubei City,
95199 + * Hsinchu County 302,
95202 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
95204 + * This program is free software; you can redistribute it and/or modify *
95205 + * it under the terms of the GNU General Public License as published by *
95206 + * the Free Software Foundation; either version 2 of the License, or *
95207 + * (at your option) any later version. *
95209 + * This program is distributed in the hope that it will be useful, *
95210 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
95211 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
95212 + * GNU General Public License for more details. *
95214 + * You should have received a copy of the GNU General Public License *
95215 + * along with this program; if not, write to the *
95216 + * Free Software Foundation, Inc., *
95217 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
95219 + *************************************************************************
95226 + Revision History:
95228 + -------- ---------- ----------------------------------------------
95229 + Jan Lee 03-07-22 Initial
95230 + Paul Lin 03-11-28 Modify for supplicant
95232 +#include "../rt_config.h"
95234 +#define WPARSNIE 0xdd
95235 +#define WPA2RSNIE 0x30
95237 +//extern UCHAR BIT8[];
95238 +UCHAR CipherWpaPskTkip[] = {
95239 + 0xDD, 0x16, // RSN IE
95240 + 0x00, 0x50, 0xf2, 0x01, // oui
95241 + 0x01, 0x00, // Version
95242 + 0x00, 0x50, 0xf2, 0x02, // Multicast
95243 + 0x01, 0x00, // Number of unicast
95244 + 0x00, 0x50, 0xf2, 0x02, // unicast
95245 + 0x01, 0x00, // number of authentication method
95246 + 0x00, 0x50, 0xf2, 0x02 // authentication
95248 +UCHAR CipherWpaPskTkipLen = (sizeof(CipherWpaPskTkip) / sizeof(UCHAR));
95250 +UCHAR CipherWpaPskAes[] = {
95251 + 0xDD, 0x16, // RSN IE
95252 + 0x00, 0x50, 0xf2, 0x01, // oui
95253 + 0x01, 0x00, // Version
95254 + 0x00, 0x50, 0xf2, 0x04, // Multicast
95255 + 0x01, 0x00, // Number of unicast
95256 + 0x00, 0x50, 0xf2, 0x04, // unicast
95257 + 0x01, 0x00, // number of authentication method
95258 + 0x00, 0x50, 0xf2, 0x02 // authentication
95260 +UCHAR CipherWpaPskAesLen = (sizeof(CipherWpaPskAes) / sizeof(UCHAR));
95262 +UCHAR CipherSuiteCiscoCCKM[] = {
95263 + 0xDD, 0x16, // RSN IE
95264 + 0x00, 0x50, 0xf2, 0x01, // oui
95265 + 0x01, 0x00, // Version
95266 + 0x00, 0x40, 0x96, 0x01, // Multicast
95267 + 0x01, 0x00, // Number of uicast
95268 + 0x00, 0x40, 0x96, 0x01, // unicast
95269 + 0x01, 0x00, // number of authentication method
95270 + 0x00, 0x40, 0x96, 0x00 // Authentication
95272 +UCHAR CipherSuiteCiscoCCKMLen = (sizeof(CipherSuiteCiscoCCKM) / sizeof(UCHAR));
95274 +UCHAR CipherSuiteCiscoCCKM24[] = {
95275 + 0xDD, 0x18, // RSN IE
95276 + 0x00, 0x50, 0xf2, 0x01, // oui
95277 + 0x01, 0x00, // Version
95278 + 0x00, 0x40, 0x96, 0x01, // Multicast
95279 + 0x01, 0x00, // Number of uicast
95280 + 0x00, 0x40, 0x96, 0x01, // unicast
95281 + 0x01, 0x00, // number of authentication method
95282 + 0x00, 0x40, 0x96, 0x00,
95283 + 0x28, 0x00// Authentication
95286 +UCHAR CipherSuiteCiscoCCKM24Len = (sizeof(CipherSuiteCiscoCCKM24) / sizeof(UCHAR));
95288 +UCHAR CipherSuiteCCXTkip[] = {
95289 + 0xDD, 0x16, // RSN IE
95290 + 0x00, 0x50, 0xf2, 0x01, // oui
95291 + 0x01, 0x00, // Version
95292 + 0x00, 0x50, 0xf2, 0x02, // Multicast
95293 + 0x01, 0x00, // Number of unicast
95294 + 0x00, 0x50, 0xf2, 0x02, // unicast
95295 + 0x01, 0x00, // number of authentication method
95296 + 0x00, 0x50, 0xf2, 0x01 // authentication
95298 +UCHAR CipherSuiteCCXTkipLen = (sizeof(CipherSuiteCCXTkip) / sizeof(UCHAR));
95300 +UCHAR CCX_LLC_HDR[] = {0xAA, 0xAA, 0x03, 0x00, 0x40, 0x96, 0x00, 0x02};
95301 +UCHAR LLC_NORMAL[] = {0xAA, 0xAA, 0x03, 0x00, 0x00, 0x00};
95303 +UCHAR EAPOL_FRAME[] = {0x88, 0x8E};
95305 +BOOLEAN CheckRSNIE(
95306 + IN PRTMP_ADAPTER pAd,
95308 + IN UCHAR DataLen,
95309 + OUT UCHAR *Offset);
95311 +void inc_byte_array(UCHAR *counter, int len);
95314 + ========================================================================
95316 + Routine Description:
95317 + Classify WPA EAP message type
95320 + EAPType Value of EAP message type
95321 + MsgType Internal Message definition for MLME state machine
95324 + TRUE Found appropriate message type
95325 + FALSE No appropriate message type
95327 + IRQL = DISPATCH_LEVEL
95330 + All these constants are defined in wpa.h
95331 + For supplicant, there is only EAPOL Key message avaliable
95333 + ========================================================================
95335 +BOOLEAN WpaMsgTypeSubst(
95336 + IN UCHAR EAPType,
95337 + OUT INT *MsgType)
95342 + *MsgType = MT2_EAPPacket;
95345 + *MsgType = MT2_EAPOLStart;
95347 + case EAPOLLogoff:
95348 + *MsgType = MT2_EAPOLLogoff;
95351 + *MsgType = MT2_EAPOLKey;
95353 + case EAPOLASFAlert:
95354 + *MsgType = MT2_EAPOLASFAlert;
95363 + ==========================================================================
95365 + association state machine init, including state transition and timer init
95367 + S - pointer to the association state machine
95368 + ==========================================================================
95370 +VOID WpaPskStateMachineInit(
95371 + IN PRTMP_ADAPTER pAd,
95372 + IN STATE_MACHINE *S,
95373 + OUT STATE_MACHINE_FUNC Trans[])
95375 + StateMachineInit(S, Trans, MAX_WPA_PSK_STATE, MAX_WPA_PSK_MSG, (STATE_MACHINE_FUNC)Drop, WPA_PSK_IDLE, WPA_MACHINE_BASE);
95376 + StateMachineSetAction(S, WPA_PSK_IDLE, MT2_EAPOLKey, (STATE_MACHINE_FUNC)WpaEAPOLKeyAction);
95380 + ==========================================================================
95382 + This is state machine function.
95383 + When receiving EAPOL packets which is for 802.1x key management.
95384 + Use both in WPA, and WPAPSK case.
95385 + In this function, further dispatch to different functions according to the received packet. 3 categories are :
95386 + 1. normal 4-way pairwisekey and 2-way groupkey handshake
95387 + 2. MIC error (Countermeasures attack) report packet from STA.
95388 + 3. Request for pairwise/group key update from STA
95390 + ==========================================================================
95392 +VOID WpaEAPOLKeyAction(
95393 + IN PRTMP_ADAPTER pAd,
95394 + IN MLME_QUEUE_ELEM *Elem)
95397 + INT MsgType = EAPOL_MSG_INVALID;
95398 + PKEY_DESCRIPTER pKeyDesc;
95399 + PHEADER_802_11 pHeader; //red
95400 + UCHAR ZeroReplay[LEN_KEY_DESC_REPLAY];
95402 + KEY_INFO peerKeyInfo;
95404 + DBGPRINT(RT_DEBUG_TRACE, ("-----> WpaEAPOLKeyAction\n"));
95406 + // Get 802.11 header first
95407 + pHeader = (PHEADER_802_11) Elem->Msg;
95409 + // Get EAPoL-Key Descriptor
95410 + pKeyDesc = (PKEY_DESCRIPTER) &Elem->Msg[(LENGTH_802_11 + LENGTH_802_1_H + LENGTH_EAPOL_H)];
95412 + NdisZeroMemory((PUCHAR)&peerKeyInfo, sizeof(peerKeyInfo));
95413 + NdisMoveMemory((PUCHAR)&peerKeyInfo, (PUCHAR)&pKeyDesc->KeyInfo, sizeof(KEY_INFO));
95415 + *((USHORT *)&peerKeyInfo) = cpu2le16(*((USHORT *)&peerKeyInfo));
95418 + // 1. Check EAPOL frame version and type
95419 + EapolVr = (UCHAR) Elem->Msg[LENGTH_802_11+LENGTH_802_1_H];
95421 + if (((EapolVr != EAPOL_VER) && (EapolVr != EAPOL_VER2)) || ((pKeyDesc->Type != WPA1_KEY_DESC) && (pKeyDesc->Type != WPA2_KEY_DESC)))
95423 + DBGPRINT(RT_DEBUG_ERROR, ("Key descripter does not match with WPA rule\n"));
95427 + // First validate replay counter, only accept message with larger replay counter
95428 + // Let equal pass, some AP start with all zero replay counter
95429 + NdisZeroMemory(ZeroReplay, LEN_KEY_DESC_REPLAY);
95431 + if((RTMPCompareMemory(pKeyDesc->ReplayCounter, pAd->StaCfg.ReplayCounter, LEN_KEY_DESC_REPLAY) != 1) &&
95432 + (RTMPCompareMemory(pKeyDesc->ReplayCounter, ZeroReplay, LEN_KEY_DESC_REPLAY) != 0))
95434 + DBGPRINT(RT_DEBUG_ERROR, (" ReplayCounter not match \n"));
95438 + // Process WPA2PSK frame
95439 + if(pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK)
95441 + if((peerKeyInfo.KeyType == PAIRWISEKEY) &&
95442 + (peerKeyInfo.EKD_DL == 0) &&
95443 + (peerKeyInfo.KeyAck == 1) &&
95444 + (peerKeyInfo.KeyMic == 0) &&
95445 + (peerKeyInfo.Secure == 0) &&
95446 + (peerKeyInfo.Error == 0) &&
95447 + (peerKeyInfo.Request == 0))
95449 + MsgType = EAPOL_PAIR_MSG_1;
95450 + DBGPRINT(RT_DEBUG_TRACE, ("Receive EAPOL Key Pairwise Message 1\n"));
95451 + } else if((peerKeyInfo.KeyType == PAIRWISEKEY) &&
95452 + (peerKeyInfo.EKD_DL == 1) &&
95453 + (peerKeyInfo.KeyAck == 1) &&
95454 + (peerKeyInfo.KeyMic == 1) &&
95455 + (peerKeyInfo.Secure == 1) &&
95456 + (peerKeyInfo.Error == 0) &&
95457 + (peerKeyInfo.Request == 0))
95459 + MsgType = EAPOL_PAIR_MSG_3;
95460 + DBGPRINT(RT_DEBUG_TRACE, ("Receive EAPOL Key Pairwise Message 3\n"));
95461 + } else if((peerKeyInfo.KeyType == GROUPKEY) &&
95462 + (peerKeyInfo.EKD_DL == 1) &&
95463 + (peerKeyInfo.KeyAck == 1) &&
95464 + (peerKeyInfo.KeyMic == 1) &&
95465 + (peerKeyInfo.Secure == 1) &&
95466 + (peerKeyInfo.Error == 0) &&
95467 + (peerKeyInfo.Request == 0))
95469 + MsgType = EAPOL_GROUP_MSG_1;
95470 + DBGPRINT(RT_DEBUG_TRACE, ("Receive EAPOL Key Group Message 1\n"));
95473 + // We will assume link is up (assoc suceess and port not secured).
95474 + // All state has to be able to process message from previous state
95475 + switch(pAd->StaCfg.WpaState)
95478 + if(MsgType == EAPOL_PAIR_MSG_1)
95480 + Wpa2PairMsg1Action(pAd, Elem);
95481 + pAd->StaCfg.WpaState = SS_WAIT_MSG_3;
95485 + case SS_WAIT_MSG_3:
95486 + if(MsgType == EAPOL_PAIR_MSG_1)
95488 + Wpa2PairMsg1Action(pAd, Elem);
95489 + pAd->StaCfg.WpaState = SS_WAIT_MSG_3;
95491 + else if(MsgType == EAPOL_PAIR_MSG_3)
95493 + Wpa2PairMsg3Action(pAd, Elem);
95494 + pAd->StaCfg.WpaState = SS_WAIT_GROUP;
95498 + case SS_WAIT_GROUP: // When doing group key exchange
95499 + case SS_FINISH: // This happened when update group key
95500 + if(MsgType == EAPOL_PAIR_MSG_1)
95502 + // Reset port secured variable
95503 + pAd->StaCfg.PortSecured = WPA_802_1X_PORT_NOT_SECURED;
95504 + Wpa2PairMsg1Action(pAd, Elem);
95505 + pAd->StaCfg.WpaState = SS_WAIT_MSG_3;
95507 + else if(MsgType == EAPOL_PAIR_MSG_3)
95509 + // Reset port secured variable
95510 + pAd->StaCfg.PortSecured = WPA_802_1X_PORT_NOT_SECURED;
95511 + Wpa2PairMsg3Action(pAd, Elem);
95512 + pAd->StaCfg.WpaState = SS_WAIT_GROUP;
95514 + else if(MsgType == EAPOL_GROUP_MSG_1)
95516 + WpaGroupMsg1Action(pAd, Elem);
95517 + pAd->StaCfg.WpaState = SS_FINISH;
95525 + // Process WPAPSK Frame
95526 + // Classify message Type, either pairwise message 1, 3, or group message 1 for supplicant
95527 + else if(pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK)
95529 + if((peerKeyInfo.KeyType == PAIRWISEKEY) &&
95530 + (peerKeyInfo.KeyIndex == 0) &&
95531 + (peerKeyInfo.KeyAck == 1) &&
95532 + (peerKeyInfo.KeyMic == 0) &&
95533 + (peerKeyInfo.Secure == 0) &&
95534 + (peerKeyInfo.Error == 0) &&
95535 + (peerKeyInfo.Request == 0))
95537 + MsgType = EAPOL_PAIR_MSG_1;
95538 + DBGPRINT(RT_DEBUG_TRACE, ("Receive EAPOL Key Pairwise Message 1\n"));
95540 + else if((peerKeyInfo.KeyType == PAIRWISEKEY) &&
95541 + (peerKeyInfo.KeyIndex == 0) &&
95542 + (peerKeyInfo.KeyAck == 1) &&
95543 + (peerKeyInfo.KeyMic == 1) &&
95544 + (peerKeyInfo.Secure == 0) &&
95545 + (peerKeyInfo.Error == 0) &&
95546 + (peerKeyInfo.Request == 0))
95548 + MsgType = EAPOL_PAIR_MSG_3;
95549 + DBGPRINT(RT_DEBUG_TRACE, ("Receive EAPOL Key Pairwise Message 3\n"));
95551 + else if((peerKeyInfo.KeyType == GROUPKEY) &&
95552 + (peerKeyInfo.KeyIndex != 0) &&
95553 + (peerKeyInfo.KeyAck == 1) &&
95554 + (peerKeyInfo.KeyMic == 1) &&
95555 + (peerKeyInfo.Secure == 1) &&
95556 + (peerKeyInfo.Error == 0) &&
95557 + (peerKeyInfo.Request == 0))
95559 + MsgType = EAPOL_GROUP_MSG_1;
95560 + DBGPRINT(RT_DEBUG_TRACE, ("Receive EAPOL Key Group Message 1\n"));
95563 + // We will assume link is up (assoc suceess and port not secured).
95564 + // All state has to be able to process message from previous state
95565 + switch(pAd->StaCfg.WpaState)
95568 + if(MsgType == EAPOL_PAIR_MSG_1)
95570 + WpaPairMsg1Action(pAd, Elem);
95571 + pAd->StaCfg.WpaState = SS_WAIT_MSG_3;
95575 + case SS_WAIT_MSG_3:
95576 + if(MsgType == EAPOL_PAIR_MSG_1)
95578 + WpaPairMsg1Action(pAd, Elem);
95579 + pAd->StaCfg.WpaState = SS_WAIT_MSG_3;
95581 + else if(MsgType == EAPOL_PAIR_MSG_3)
95583 + WpaPairMsg3Action(pAd, Elem);
95584 + pAd->StaCfg.WpaState = SS_WAIT_GROUP;
95588 + case SS_WAIT_GROUP: // When doing group key exchange
95589 + case SS_FINISH: // This happened when update group key
95590 + if(MsgType == EAPOL_PAIR_MSG_1)
95592 + WpaPairMsg1Action(pAd, Elem);
95593 + pAd->StaCfg.WpaState = SS_WAIT_MSG_3;
95594 + // Reset port secured variable
95595 + pAd->StaCfg.PortSecured = WPA_802_1X_PORT_NOT_SECURED;
95597 + else if(MsgType == EAPOL_PAIR_MSG_3)
95599 + WpaPairMsg3Action(pAd, Elem);
95600 + pAd->StaCfg.WpaState = SS_WAIT_GROUP;
95601 + // Reset port secured variable
95602 + pAd->StaCfg.PortSecured = WPA_802_1X_PORT_NOT_SECURED;
95604 + else if(MsgType == EAPOL_GROUP_MSG_1)
95606 + WpaGroupMsg1Action(pAd, Elem);
95607 + pAd->StaCfg.WpaState = SS_FINISH;
95616 + DBGPRINT(RT_DEBUG_TRACE, ("<----- WpaEAPOLKeyAction\n"));
95620 + ========================================================================
95622 + Routine Description:
95623 + Process Pairwise key 4-way handshaking
95626 + pAd Pointer to our adapter
95627 + Elem Message body
95634 + ========================================================================
95636 +VOID WpaPairMsg1Action(
95637 + IN PRTMP_ADAPTER pAd,
95638 + IN MLME_QUEUE_ELEM *Elem)
95640 + PHEADER_802_11 pHeader;
95641 + UCHAR *mpool, *PTK, *digest;
95642 + PUCHAR pOutBuffer = NULL;
95643 + UCHAR Header802_3[14];
95644 + ULONG FrameLen = 0;
95645 + PEAPOL_PACKET pMsg1;
95646 + EAPOL_PACKET Packet;
95649 + DBGPRINT(RT_DEBUG_TRACE, ("WpaPairMsg1Action ----->\n"));
95651 + // allocate memory pool
95652 + os_alloc_mem(pAd, (PUCHAR *)&mpool, 256);
95654 + if (mpool == NULL)
95658 + PTK = (UCHAR *) ROUND_UP(mpool, 4);
95659 + // digest Len = 80.
95660 + digest = (UCHAR *) ROUND_UP(PTK + 80, 4);
95662 + pHeader = (PHEADER_802_11) Elem->Msg;
95664 + // Process message 1 from authenticator
95665 + pMsg1 = (PEAPOL_PACKET) &Elem->Msg[LENGTH_802_11 + LENGTH_802_1_H];
95667 + // 1. Save Replay counter, it will use to verify message 3 and construct message 2
95668 + NdisMoveMemory(pAd->StaCfg.ReplayCounter, pMsg1->KeyDesc.ReplayCounter, LEN_KEY_DESC_REPLAY);
95670 + // 2. Save ANonce
95671 + NdisMoveMemory(pAd->StaCfg.ANonce, pMsg1->KeyDesc.KeyNonce, LEN_KEY_DESC_NONCE);
95673 + // Generate random SNonce
95674 + GenRandom(pAd, pAd->CurrentAddress, pAd->StaCfg.SNonce);
95676 + // Calc PTK(ANonce, SNonce)
95679 + pAd->StaCfg.ANonce,
95680 + pAd->CommonCfg.Bssid,
95681 + pAd->StaCfg.SNonce,
95682 + pAd->CurrentAddress,
95686 + // Save key to PTK entry
95687 + NdisMoveMemory(pAd->StaCfg.PTK, PTK, LEN_PTK);
95689 + // init 802.3 header and Fill Packet
95690 + MAKE_802_3_HEADER(Header802_3, pAd->CommonCfg.Bssid, pAd->CurrentAddress, EAPOL);
95692 + // Zero Message 2 body
95693 + NdisZeroMemory(&Packet, sizeof(Packet));
95694 + Packet.ProVer = EAPOL_VER;
95695 + Packet.ProType = EAPOLKey;
95697 + // Message 2 as EAPOL-Key(0,1,0,0,0,P,0,SNonce,MIC,RSN IE)
95699 + Packet.KeyDesc.Type = WPA1_KEY_DESC;
95700 + // 1. Key descriptor version and appropriate RSN IE
95701 + if(pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
95703 + Packet.KeyDesc.KeyInfo.KeyDescVer = 2;
95707 + Packet.KeyDesc.KeyInfo.KeyDescVer = 1;
95710 + // fill in Data Material and its length
95711 + Packet.KeyDesc.KeyData[0] = IE_WPA;
95712 + Packet.KeyDesc.KeyData[1] = pAd->StaCfg.RSNIE_Len;
95713 + Packet.KeyDesc.KeyDataLen[1] = pAd->StaCfg.RSNIE_Len + 2;
95714 + NdisMoveMemory(&Packet.KeyDesc.KeyData[2], pAd->StaCfg.RSN_IE, pAd->StaCfg.RSNIE_Len);
95716 + // Update packet length after decide Key data payload
95717 + Packet.Body_Len[1] = sizeof(KEY_DESCRIPTER) - MAX_LEN_OF_RSNIE + Packet.KeyDesc.KeyDataLen[1];
95719 + // Update Key length
95720 + Packet.KeyDesc.KeyLength[0] = pMsg1->KeyDesc.KeyLength[0];
95721 + Packet.KeyDesc.KeyLength[1] = pMsg1->KeyDesc.KeyLength[1];
95722 + // 2. Key Type PeerKey
95723 + Packet.KeyDesc.KeyInfo.KeyType = PAIRWISEKEY;
95725 + // 3. KeyMic field presented
95726 + Packet.KeyDesc.KeyInfo.KeyMic = 1;
95728 + //Convert to little-endian format.
95729 + *((USHORT *)&Packet.KeyDesc.KeyInfo) = cpu2le16(*((USHORT *)&Packet.KeyDesc.KeyInfo));
95732 + // 4. Fill SNonce
95733 + NdisMoveMemory(Packet.KeyDesc.KeyNonce, pAd->StaCfg.SNonce, LEN_KEY_DESC_NONCE);
95735 + // 5. Key Replay Count
95736 + NdisMoveMemory(Packet.KeyDesc.ReplayCounter, pAd->StaCfg.ReplayCounter, LEN_KEY_DESC_REPLAY);
95738 + // Send EAPOL(0, 1, 0, 0, 0, P, 0, SNonce, MIC, RSN_IE)
95739 + // Out buffer for transmitting message 2
95740 + MlmeAllocateMemory(pAd, (PUCHAR *)&pOutBuffer); // allocate memory
95741 + if(pOutBuffer == NULL)
95743 + os_free_mem(pAd, mpool);
95746 + // Prepare EAPOL frame for MIC calculation
95747 + // Be careful, only EAPOL frame is counted for MIC calculation
95748 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
95749 + Packet.Body_Len[1] + 4, &Packet,
95752 + // 6. Prepare and Fill MIC value
95753 + NdisZeroMemory(Mic, sizeof(Mic));
95754 + if(pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
95757 + HMAC_SHA1(pOutBuffer, FrameLen, PTK, LEN_EAP_MICK, digest);
95758 + NdisMoveMemory(Mic, digest, LEN_KEY_DESC_MIC);
95762 + hmac_md5(PTK, LEN_EAP_MICK, pOutBuffer, FrameLen, Mic);
95764 + NdisMoveMemory(Packet.KeyDesc.KeyMic, Mic, LEN_KEY_DESC_MIC);
95766 + //hex_dump("MIC", Mic, LEN_KEY_DESC_MIC);
95768 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
95769 + LENGTH_802_3, &Header802_3,
95770 + Packet.Body_Len[1] + 4, &Packet,
95774 + // 5. Copy frame to Tx ring and send Msg 2 to authenticator
95775 + RTMPToWirelessSta(pAd, Header802_3, LENGTH_802_3, (PUCHAR)&Packet, Packet.Body_Len[1] + 4, TRUE);
95777 + MlmeFreeMemory(pAd, (PUCHAR)pOutBuffer);
95778 + os_free_mem(pAd, (PUCHAR)mpool);
95780 + DBGPRINT(RT_DEBUG_TRACE, ("WpaPairMsg1Action <-----\n"));
95783 +VOID Wpa2PairMsg1Action(
95784 + IN PRTMP_ADAPTER pAd,
95785 + IN MLME_QUEUE_ELEM *Elem)
95787 + PHEADER_802_11 pHeader;
95788 + UCHAR *mpool, *PTK, *digest;
95789 + PUCHAR pOutBuffer = NULL;
95790 + UCHAR Header802_3[14];
95791 + ULONG FrameLen = 0;
95792 + PEAPOL_PACKET pMsg1;
95793 + EAPOL_PACKET Packet;
95796 + DBGPRINT(RT_DEBUG_TRACE, ("Wpa2PairMsg1Action ----->\n"));
95798 + // allocate memory pool
95799 + os_alloc_mem(pAd, (PUCHAR *)&mpool, 256);
95801 + if (mpool == NULL)
95805 + PTK = (UCHAR *) ROUND_UP(mpool, 4);
95806 + // digest Len = 80.
95807 + digest = (UCHAR *) ROUND_UP(PTK + 80, 4);
95809 + pHeader = (PHEADER_802_11) Elem->Msg;
95811 + // Process message 1 from authenticator
95812 + pMsg1 = (PEAPOL_PACKET) &Elem->Msg[LENGTH_802_11 + LENGTH_802_1_H];
95814 + // 1. Save Replay counter, it will use to verify message 3 and construct message 2
95815 + NdisMoveMemory(pAd->StaCfg.ReplayCounter, pMsg1->KeyDesc.ReplayCounter, LEN_KEY_DESC_REPLAY);
95817 + // 2. Save ANonce
95818 + NdisMoveMemory(pAd->StaCfg.ANonce, pMsg1->KeyDesc.KeyNonce, LEN_KEY_DESC_NONCE);
95820 + // Generate random SNonce
95821 + GenRandom(pAd, pAd->CurrentAddress, pAd->StaCfg.SNonce);
95823 + if(pMsg1->KeyDesc.KeyDataLen[1] > 0 )
95828 + // Calc PTK(ANonce, SNonce)
95831 + pAd->StaCfg.ANonce,
95832 + pAd->CommonCfg.Bssid,
95833 + pAd->StaCfg.SNonce,
95834 + pAd->CurrentAddress,
95838 + // Save key to PTK entry
95839 + NdisMoveMemory(pAd->StaCfg.PTK, PTK, LEN_PTK);
95841 + // init 802.3 header and Fill Packet
95842 + MAKE_802_3_HEADER(Header802_3, pAd->CommonCfg.Bssid, pAd->CurrentAddress, EAPOL);
95844 + // Zero message 2 body
95845 + NdisZeroMemory(&Packet, sizeof(Packet));
95846 + Packet.ProVer = EAPOL_VER;
95847 + Packet.ProType = EAPOLKey;
95849 + // Message 2 as EAPOL-Key(0,1,0,0,0,P,0,SNonce,MIC,RSN IE)
95851 + Packet.KeyDesc.Type = WPA2_KEY_DESC;
95853 + // 1. Key descriptor version and appropriate RSN IE
95854 + if(pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
95856 + Packet.KeyDesc.KeyInfo.KeyDescVer = 2;
95860 + Packet.KeyDesc.KeyInfo.KeyDescVer = 1;
95863 + // fill in Data Material and its length
95864 + Packet.KeyDesc.KeyData[0] = IE_WPA2;
95865 + Packet.KeyDesc.KeyData[1] = pAd->StaCfg.RSNIE_Len;
95866 + Packet.KeyDesc.KeyDataLen[1] = pAd->StaCfg.RSNIE_Len + 2;
95867 + NdisMoveMemory(&Packet.KeyDesc.KeyData[2], pAd->StaCfg.RSN_IE, pAd->StaCfg.RSNIE_Len);
95869 + // Update packet length after decide Key data payload
95870 + Packet.Body_Len[1] = sizeof(KEY_DESCRIPTER) - MAX_LEN_OF_RSNIE + Packet.KeyDesc.KeyDataLen[1];
95872 + // 2. Key Type PeerKey
95873 + Packet.KeyDesc.KeyInfo.KeyType = PAIRWISEKEY;
95875 + // 3. KeyMic field presented
95876 + Packet.KeyDesc.KeyInfo.KeyMic = 1;
95878 + // Update Key Length
95879 + Packet.KeyDesc.KeyLength[0] = 0;
95880 + Packet.KeyDesc.KeyLength[1] = pMsg1->KeyDesc.KeyLength[1];
95882 + // 4. Fill SNonce
95883 + NdisMoveMemory(Packet.KeyDesc.KeyNonce, pAd->StaCfg.SNonce, LEN_KEY_DESC_NONCE);
95885 + // 5. Key Replay Count
95886 + NdisMoveMemory(Packet.KeyDesc.ReplayCounter, pAd->StaCfg.ReplayCounter, LEN_KEY_DESC_REPLAY);
95888 + // Convert to little-endian format.
95889 + *((USHORT *)&Packet.KeyDesc.KeyInfo) = cpu2le16(*((USHORT *)&Packet.KeyDesc.KeyInfo));
95891 + // Send EAPOL-Key(0,1,0,0,0,P,0,SNonce,MIC,RSN IE)
95892 + // Out buffer for transmitting message 2
95893 + MlmeAllocateMemory(pAd, (PUCHAR *)&pOutBuffer); // allocate memory
95894 + if(pOutBuffer == NULL)
95896 + os_free_mem(pAd, mpool);
95900 + // Prepare EAPOL frame for MIC calculation
95901 + // Be careful, only EAPOL frame is counted for MIC calculation
95902 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
95903 + Packet.Body_Len[1] + 4, &Packet,
95906 + // 6. Prepare and Fill MIC value
95907 + NdisZeroMemory(Mic, sizeof(Mic));
95908 + if(pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
95911 + HMAC_SHA1(pOutBuffer, FrameLen, PTK, LEN_EAP_MICK, digest);
95912 + NdisMoveMemory(Mic, digest, LEN_KEY_DESC_MIC);
95916 + hmac_md5(PTK, LEN_EAP_MICK, pOutBuffer, FrameLen, Mic);
95918 + NdisMoveMemory(Packet.KeyDesc.KeyMic, Mic, LEN_KEY_DESC_MIC);
95921 + // Make Transmitting frame
95922 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
95923 + LENGTH_802_3, &Header802_3,
95924 + Packet.Body_Len[1] + 4, &Packet,
95928 + // 5. Copy frame to Tx ring
95929 + RTMPToWirelessSta(pAd, Header802_3, LENGTH_802_3, (PUCHAR)&Packet, Packet.Body_Len[1] + 4, TRUE);
95931 + MlmeFreeMemory(pAd, pOutBuffer);
95932 + os_free_mem(pAd, mpool);
95934 + DBGPRINT(RT_DEBUG_TRACE, ("Wpa2PairMsg1Action <-----\n"));
95939 + ========================================================================
95941 + Routine Description:
95942 + Process Pairwise key 4-way handshaking
95945 + pAd Pointer to our adapter
95946 + Elem Message body
95953 + ========================================================================
95955 +VOID WpaPairMsg3Action(
95956 + IN PRTMP_ADAPTER pAd,
95957 + IN MLME_QUEUE_ELEM *Elem)
95960 + PHEADER_802_11 pHeader;
95961 + PUCHAR pOutBuffer = NULL;
95962 + UCHAR Header802_3[14];
95963 + ULONG FrameLen = 0;
95964 + EAPOL_PACKET Packet;
95965 + PEAPOL_PACKET pMsg3;
95966 + UCHAR Mic[16], OldMic[16];
95967 + MAC_TABLE_ENTRY *pEntry = NULL;
95968 + UCHAR skip_offset;
95969 + KEY_INFO peerKeyInfo;
95971 + DBGPRINT(RT_DEBUG_TRACE, ("WpaPairMsg3Action ----->\n"));
95973 + // Record 802.11 header & the received EAPOL packet Msg3
95974 + pHeader = (PHEADER_802_11) Elem->Msg;
95975 + pMsg3 = (PEAPOL_PACKET) &Elem->Msg[LENGTH_802_11 + LENGTH_802_1_H];
95977 + NdisZeroMemory((PUCHAR)&peerKeyInfo, sizeof(peerKeyInfo));
95978 + NdisMoveMemory((PUCHAR)&peerKeyInfo, (PUCHAR)&pMsg3->KeyDesc.KeyInfo, sizeof(KEY_INFO));
95980 + *((USHORT*)&peerKeyInfo) = cpu2le16(*((USHORT*)&peerKeyInfo));
95983 + // 1. Verify cipher type match
95984 + if (pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled && (peerKeyInfo.KeyDescVer != 2))
95988 + else if(pAd->StaCfg.WepStatus == Ndis802_11Encryption2Enabled && (peerKeyInfo.KeyDescVer != 1))
95994 + //if (!RTMPEqualMemory(pMsg3->KeyDesc.KeyData, pAd->MacTab.Content[BSSID_WCID].RSN_IE, pAd->MacTab.Content[BSSID_WCID].RSNIE_Len))
95995 + if (!CheckRSNIE(pAd, pMsg3->KeyDesc.KeyData, pMsg3->KeyDesc.KeyDataLen[1], &skip_offset))
95997 + DBGPRINT(RT_DEBUG_ERROR, ("RSN_IE Different in Msg 3 of WPA1 4-way handshake!! \n"));
95998 + hex_dump("The original RSN_IE", pAd->MacTab.Content[BSSID_WCID].RSN_IE, pAd->MacTab.Content[BSSID_WCID].RSNIE_Len);
95999 + hex_dump("The received RSN_IE", pMsg3->KeyDesc.KeyData, pMsg3->KeyDesc.KeyDataLen[1]);
96003 + DBGPRINT(RT_DEBUG_TRACE, ("RSN_IE VALID in Msg 3 of WPA1 4-way handshake!! \n"));
96006 + // 2. Check MIC value
96007 + // Save the MIC and replace with zero
96008 + NdisMoveMemory(OldMic, pMsg3->KeyDesc.KeyMic, LEN_KEY_DESC_MIC);
96009 + NdisZeroMemory(pMsg3->KeyDesc.KeyMic, LEN_KEY_DESC_MIC);
96010 + if(pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
96013 + UCHAR digest[80];
96015 + HMAC_SHA1((PUCHAR) pMsg3, pMsg3->Body_Len[1] + 4, pAd->StaCfg.PTK, LEN_EAP_MICK, digest);
96016 + NdisMoveMemory(Mic, digest, LEN_KEY_DESC_MIC);
96020 + hmac_md5(pAd->StaCfg.PTK, LEN_EAP_MICK, (PUCHAR) pMsg3, pMsg3->Body_Len[1] + 4, Mic);
96023 + if(!NdisEqualMemory(OldMic, Mic, LEN_KEY_DESC_MIC))
96025 + DBGPRINT(RT_DEBUG_ERROR, (" MIC Different in msg 3 of 4-way handshake!!!!!!!!!! \n"));
96029 + DBGPRINT(RT_DEBUG_TRACE, (" MIC VALID in msg 3 of 4-way handshake!!!!!!!!!! \n"));
96031 + // 3. Check Replay Counter, it has to be larger than last one. No need to be exact one larger
96032 + if(RTMPCompareMemory(pMsg3->KeyDesc.ReplayCounter, pAd->StaCfg.ReplayCounter, LEN_KEY_DESC_REPLAY) != 1)
96035 + // Update new replay counter
96036 + NdisMoveMemory(pAd->StaCfg.ReplayCounter, pMsg3->KeyDesc.ReplayCounter, LEN_KEY_DESC_REPLAY);
96038 + // 4. Double check ANonce
96039 + if(!NdisEqualMemory(pAd->StaCfg.ANonce, pMsg3->KeyDesc.KeyNonce, LEN_KEY_DESC_NONCE))
96042 + // init 802.3 header and Fill Packet
96043 + MAKE_802_3_HEADER(Header802_3, pAd->CommonCfg.Bssid, pAd->CurrentAddress, EAPOL);
96045 + // Zero Message 4 body
96046 + NdisZeroMemory(&Packet, sizeof(Packet));
96047 + Packet.ProVer = EAPOL_VER;
96048 + Packet.ProType = EAPOLKey;
96049 + Packet.Body_Len[1] = sizeof(KEY_DESCRIPTER) - MAX_LEN_OF_RSNIE; // No data field
96052 + // Message 4 as EAPOL-Key(0,1,0,0,0,P,0,0,MIC,0)
96054 + Packet.KeyDesc.Type = WPA1_KEY_DESC;
96056 + // Key descriptor version and appropriate RSN IE
96057 + Packet.KeyDesc.KeyInfo.KeyDescVer = peerKeyInfo.KeyDescVer;
96059 + // Update Key Length
96060 + Packet.KeyDesc.KeyLength[0] = pMsg3->KeyDesc.KeyLength[0];
96061 + Packet.KeyDesc.KeyLength[1] = pMsg3->KeyDesc.KeyLength[1];
96063 + // Key Type PeerKey
96064 + Packet.KeyDesc.KeyInfo.KeyType = PAIRWISEKEY;
96066 + // KeyMic field presented
96067 + Packet.KeyDesc.KeyInfo.KeyMic = 1;
96069 + // In Msg3, KeyInfo.secure =0 if Group Key HS to come. 1 if no group key HS
96070 + // Station sends Msg4 KeyInfo.secure should be the same as that in Msg.3
96071 + Packet.KeyDesc.KeyInfo.Secure= peerKeyInfo.Secure;
96073 + // Convert to little-endian format.
96074 + *((USHORT *)&Packet.KeyDesc.KeyInfo) = cpu2le16(*((USHORT *)&Packet.KeyDesc.KeyInfo));
96076 + // Key Replay count
96077 + NdisMoveMemory(Packet.KeyDesc.ReplayCounter, pMsg3->KeyDesc.ReplayCounter, LEN_KEY_DESC_REPLAY);
96079 + // Out buffer for transmitting message 4
96080 + MlmeAllocateMemory(pAd, (PUCHAR *)&pOutBuffer); // allocate memory
96081 + if(pOutBuffer == NULL)
96084 + // Prepare EAPOL frame for MIC calculation
96085 + // Be careful, only EAPOL frame is counted for MIC calculation
96086 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
96087 + Packet.Body_Len[1] + 4, &Packet,
96090 + // Prepare and Fill MIC value
96091 + NdisZeroMemory(Mic, sizeof(Mic));
96092 + if(pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
96095 + UCHAR digest[80];
96097 + HMAC_SHA1(pOutBuffer, FrameLen, pAd->StaCfg.PTK, LEN_EAP_MICK, digest);
96098 + NdisMoveMemory(Mic, digest, LEN_KEY_DESC_MIC);
96102 + hmac_md5(pAd->StaCfg.PTK, LEN_EAP_MICK, pOutBuffer, FrameLen, Mic);
96104 + NdisMoveMemory(Packet.KeyDesc.KeyMic, Mic, LEN_KEY_DESC_MIC);
96107 + // Prepare pair-wise key information into shared key table
96108 + NdisZeroMemory(&pAd->SharedKey[BSS0][0], sizeof(CIPHER_KEY));
96109 + pAd->SharedKey[BSS0][0].KeyLen = LEN_TKIP_EK;
96110 + NdisMoveMemory(pAd->SharedKey[BSS0][0].Key, &pAd->StaCfg.PTK[32], LEN_TKIP_EK);
96111 + NdisMoveMemory(pAd->SharedKey[BSS0][0].RxMic, &pAd->StaCfg.PTK[48], LEN_TKIP_RXMICK);
96112 + NdisMoveMemory(pAd->SharedKey[BSS0][0].TxMic, &pAd->StaCfg.PTK[48+LEN_TKIP_RXMICK], LEN_TKIP_TXMICK);
96114 + // Decide its ChiperAlg
96115 + if (pAd->StaCfg.PairCipher == Ndis802_11Encryption2Enabled)
96116 + pAd->SharedKey[BSS0][0].CipherAlg = CIPHER_TKIP;
96117 + else if (pAd->StaCfg.PairCipher == Ndis802_11Encryption3Enabled)
96118 + pAd->SharedKey[BSS0][0].CipherAlg = CIPHER_AES;
96120 + pAd->SharedKey[BSS0][0].CipherAlg = CIPHER_NONE;
96122 + // Update these related information to MAC_TABLE_ENTRY
96123 + pEntry = &pAd->MacTab.Content[BSSID_WCID];
96124 + NdisMoveMemory(pEntry->PairwiseKey.Key, &pAd->StaCfg.PTK[32], LEN_TKIP_EK);
96125 + NdisMoveMemory(pEntry->PairwiseKey.RxMic, &pAd->StaCfg.PTK[48], LEN_TKIP_RXMICK);
96126 + NdisMoveMemory(pEntry->PairwiseKey.TxMic, &pAd->StaCfg.PTK[48+LEN_TKIP_RXMICK], LEN_TKIP_TXMICK);
96127 + pEntry->PairwiseKey.CipherAlg = pAd->SharedKey[BSS0][0].CipherAlg;
96129 + // Update pairwise key information to ASIC Shared Key Table
96130 + AsicAddSharedKeyEntry(pAd,
96133 + pAd->SharedKey[BSS0][0].CipherAlg,
96134 + pAd->SharedKey[BSS0][0].Key,
96135 + pAd->SharedKey[BSS0][0].TxMic,
96136 + pAd->SharedKey[BSS0][0].RxMic);
96138 + // Update ASIC WCID attribute table and IVEIV table
96139 + RTMPAddWcidAttributeEntry(pAd,
96142 + pAd->SharedKey[BSS0][0].CipherAlg,
96145 + // Make transmitting frame
96146 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
96147 + LENGTH_802_3, &Header802_3,
96148 + Packet.Body_Len[1] + 4, &Packet,
96152 + // Copy frame to Tx ring and Send Message 4 to authenticator
96153 + RTMPToWirelessSta(pAd, Header802_3, LENGTH_802_3, (PUCHAR)&Packet, Packet.Body_Len[1] + 4, TRUE);
96155 + MlmeFreeMemory(pAd, (PUCHAR)pOutBuffer);
96157 + DBGPRINT(RT_DEBUG_TRACE, ("WpaPairMsg3Action <-----\n"));
96160 +VOID Wpa2PairMsg3Action(
96161 + IN PRTMP_ADAPTER pAd,
96162 + IN MLME_QUEUE_ELEM *Elem)
96165 + PHEADER_802_11 pHeader;
96166 + PUCHAR pOutBuffer = NULL;
96167 + UCHAR Header802_3[14];
96168 + ULONG FrameLen = 0;
96169 + EAPOL_PACKET Packet;
96170 + PEAPOL_PACKET pMsg3;
96171 + UCHAR Mic[16], OldMic[16];
96172 + UCHAR *mpool, *KEYDATA, *digest;
96174 + MAC_TABLE_ENTRY *pEntry = NULL;
96175 + KEY_INFO peerKeyInfo;
96177 + // allocate memory
96178 + os_alloc_mem(pAd, (PUCHAR *)&mpool, 1024);
96180 + if(mpool == NULL)
96183 + // KEYDATA Len = 512.
96184 + KEYDATA = (UCHAR *) ROUND_UP(mpool, 4);
96185 + // digest Len = 80.
96186 + digest = (UCHAR *) ROUND_UP(KEYDATA + 512, 4);
96188 + DBGPRINT(RT_DEBUG_TRACE, ("Wpa2PairMsg3Action ----->\n"));
96190 + pHeader = (PHEADER_802_11) Elem->Msg;
96192 + // Process message 3 frame.
96193 + pMsg3 = (PEAPOL_PACKET) &Elem->Msg[LENGTH_802_11 + LENGTH_802_1_H];
96195 + NdisZeroMemory((PUCHAR)&peerKeyInfo, sizeof(peerKeyInfo));
96196 + NdisMoveMemory((PUCHAR)&peerKeyInfo, (PUCHAR)&pMsg3->KeyDesc.KeyInfo, sizeof(KEY_INFO));
96198 + *((USHORT*)&peerKeyInfo) = cpu2le16(*((USHORT*)&peerKeyInfo));
96200 + // 1. Verify cipher type match
96201 + if (pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled && (peerKeyInfo.KeyDescVer!= 2))
96203 + os_free_mem(pAd, (PUCHAR)mpool);
96206 + else if(pAd->StaCfg.WepStatus == Ndis802_11Encryption2Enabled && (peerKeyInfo.KeyDescVer != 1))
96208 + os_free_mem(pAd, (PUCHAR)mpool);
96212 + // 2. Check MIC value
96213 + // Save the MIC and replace with zero
96214 + NdisMoveMemory(OldMic, pMsg3->KeyDesc.KeyMic, LEN_KEY_DESC_MIC);
96215 + NdisZeroMemory(pMsg3->KeyDesc.KeyMic, LEN_KEY_DESC_MIC);
96216 + if (pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
96219 + HMAC_SHA1((PUCHAR) pMsg3, pMsg3->Body_Len[1] + 4, pAd->StaCfg.PTK, LEN_EAP_MICK, digest);
96220 + NdisMoveMemory(Mic, digest, LEN_KEY_DESC_MIC);
96224 + hmac_md5(pAd->StaCfg.PTK, LEN_EAP_MICK, (PUCHAR) pMsg3, pMsg3->Body_Len[1] + 4, Mic);
96227 + if(!NdisEqualMemory(OldMic, Mic, LEN_KEY_DESC_MIC))
96229 + DBGPRINT(RT_DEBUG_ERROR, (" MIC Different in msg 3 of 4-way handshake!!!!!!!!!! \n"));
96230 + os_free_mem(pAd, (PUCHAR)mpool);
96234 + DBGPRINT(RT_DEBUG_TRACE, (" MIC VALID in msg 3 of 4-way handshake!!!!!!!!!! \n"));
96236 + // 3. Check Replay Counter, it has to be larger than last one. No need to be exact one larger
96237 + if(RTMPCompareMemory(pMsg3->KeyDesc.ReplayCounter, pAd->StaCfg.ReplayCounter, LEN_KEY_DESC_REPLAY) != 1)
96239 + os_free_mem(pAd, (PUCHAR)mpool);
96243 + // Update new replay counter
96244 + NdisMoveMemory(pAd->StaCfg.ReplayCounter, pMsg3->KeyDesc.ReplayCounter, LEN_KEY_DESC_REPLAY);
96246 + // 4. Double check ANonce
96247 + if(!NdisEqualMemory(pAd->StaCfg.ANonce, pMsg3->KeyDesc.KeyNonce, LEN_KEY_DESC_NONCE))
96249 + os_free_mem(pAd, (PUCHAR)mpool);
96254 + // 5. Decrypt GTK from Key Data
96255 + DBGPRINT_RAW(RT_DEBUG_TRACE, ("EKD = %d\n", peerKeyInfo.EKD_DL));
96256 + if(pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
96258 + // Decrypt AES GTK
96259 + AES_GTK_KEY_UNWRAP(&pAd->StaCfg.PTK[16], KEYDATA, pMsg3->KeyDesc.KeyDataLen[1],pMsg3->KeyDesc.KeyData);
96264 + // Decrypt TKIP GTK
96265 + // Construct 32 bytes RC4 Key
96266 + NdisMoveMemory(Key, pMsg3->KeyDesc.KeyIv, 16);
96267 + NdisMoveMemory(&Key[16], &pAd->StaCfg.PTK[16], 16);
96268 + ARCFOUR_INIT(&pAd->PrivateInfo.WEPCONTEXT, Key, 32);
96269 + //discard first 256 bytes
96270 + for(i = 0; i < 256; i++)
96271 + ARCFOUR_BYTE(&pAd->PrivateInfo.WEPCONTEXT);
96272 + // Decrypt GTK. Becareful, there is no ICV to check the result is correct or not
96273 + ARCFOUR_DECRYPT(&pAd->PrivateInfo.WEPCONTEXT, KEYDATA, pMsg3->KeyDesc.KeyData, pMsg3->KeyDesc.KeyDataLen[1]);
96276 + if (!ParseKeyData(pAd, KEYDATA, pMsg3->KeyDesc.KeyDataLen[1], 1))
96278 + os_free_mem(pAd, (PUCHAR)mpool);
96282 + // Update GTK to ASIC
96283 + // Update group key information to ASIC Shared Key Table
96284 + AsicAddSharedKeyEntry(pAd,
96286 + pAd->StaCfg.DefaultKeyId,
96287 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg,
96288 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].Key,
96289 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].TxMic,
96290 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].RxMic);
96292 + // Update ASIC WCID attribute table and IVEIV table
96293 + RTMPAddWcidAttributeEntry(pAd,
96295 + pAd->StaCfg.DefaultKeyId,
96296 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg,
96299 + // init 802.3 header and Fill Packet
96300 + MAKE_802_3_HEADER(Header802_3, pAd->CommonCfg.Bssid, pAd->CurrentAddress, EAPOL);
96302 + // Zero message 4 body
96303 + NdisZeroMemory(&Packet, sizeof(Packet));
96304 + Packet.ProVer = EAPOL_VER;
96305 + Packet.ProType = EAPOLKey;
96306 + Packet.Body_Len[1] = sizeof(KEY_DESCRIPTER) - MAX_LEN_OF_RSNIE; // No data field
96309 + // Message 4 as EAPOL-Key(0,1,0,0,0,P,0,0,MIC,0)
96311 + Packet.KeyDesc.Type = WPA2_KEY_DESC;
96313 + // Key descriptor version and appropriate RSN IE
96314 + Packet.KeyDesc.KeyInfo.KeyDescVer = peerKeyInfo.KeyDescVer;
96316 + // Update Key Length
96317 + Packet.KeyDesc.KeyLength[0] = pMsg3->KeyDesc.KeyLength[0];
96318 + Packet.KeyDesc.KeyLength[1] = pMsg3->KeyDesc.KeyLength[1];
96320 + // Key Type PeerKey
96321 + Packet.KeyDesc.KeyInfo.KeyType = PAIRWISEKEY;
96323 + // KeyMic field presented
96324 + Packet.KeyDesc.KeyInfo.KeyMic = 1;
96325 + Packet.KeyDesc.KeyInfo.Secure = 1;
96327 + // Convert to little-endian format.
96328 + *((USHORT *)&Packet.KeyDesc.KeyInfo) = cpu2le16(*((USHORT *)&Packet.KeyDesc.KeyInfo));
96330 + // Key Replay count
96331 + NdisMoveMemory(Packet.KeyDesc.ReplayCounter, pMsg3->KeyDesc.ReplayCounter, LEN_KEY_DESC_REPLAY);
96333 + // Out buffer for transmitting message 4
96334 + MlmeAllocateMemory(pAd, (PUCHAR *)&pOutBuffer); // allocate memory
96335 + if(pOutBuffer == NULL)
96337 + os_free_mem(pAd, (PUCHAR)mpool);
96341 + // Prepare EAPOL frame for MIC calculation
96342 + // Be careful, only EAPOL frame is counted for MIC calculation
96343 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
96344 + Packet.Body_Len[1] + 4, &Packet,
96347 + // Prepare and Fill MIC value
96348 + NdisZeroMemory(Mic, sizeof(Mic));
96349 + if(pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
96352 + HMAC_SHA1(pOutBuffer, FrameLen, pAd->StaCfg.PTK, LEN_EAP_MICK, digest);
96353 + NdisMoveMemory(Mic, digest, LEN_KEY_DESC_MIC);
96357 + hmac_md5(pAd->StaCfg.PTK, LEN_EAP_MICK, pOutBuffer, FrameLen, Mic);
96359 + NdisMoveMemory(Packet.KeyDesc.KeyMic, Mic, LEN_KEY_DESC_MIC);
96362 + // Prepare pair-wise key information into shared key table
96363 + NdisZeroMemory(&pAd->SharedKey[BSS0][0], sizeof(CIPHER_KEY));
96364 + pAd->SharedKey[BSS0][0].KeyLen = LEN_TKIP_EK;
96365 + NdisMoveMemory(pAd->SharedKey[BSS0][0].Key, &pAd->StaCfg.PTK[32], LEN_TKIP_EK);
96366 + NdisMoveMemory(pAd->SharedKey[BSS0][0].RxMic, &pAd->StaCfg.PTK[48], LEN_TKIP_RXMICK);
96367 + NdisMoveMemory(pAd->SharedKey[BSS0][0].TxMic, &pAd->StaCfg.PTK[48+LEN_TKIP_RXMICK], LEN_TKIP_TXMICK);
96369 + // Decide its ChiperAlg
96370 + if (pAd->StaCfg.PairCipher == Ndis802_11Encryption2Enabled)
96371 + pAd->SharedKey[BSS0][0].CipherAlg = CIPHER_TKIP;
96372 + else if (pAd->StaCfg.PairCipher == Ndis802_11Encryption3Enabled)
96373 + pAd->SharedKey[BSS0][0].CipherAlg = CIPHER_AES;
96375 + pAd->SharedKey[BSS0][0].CipherAlg = CIPHER_NONE;
96377 + // Update these related information to MAC_TABLE_ENTRY
96378 + pEntry = &pAd->MacTab.Content[BSSID_WCID];
96379 + NdisMoveMemory(&pEntry->PairwiseKey.Key, &pAd->StaCfg.PTK[32], LEN_TKIP_EK);
96380 + NdisMoveMemory(&pEntry->PairwiseKey.RxMic, &pAd->StaCfg.PTK[48], LEN_TKIP_RXMICK);
96381 + NdisMoveMemory(&pEntry->PairwiseKey.TxMic, &pAd->StaCfg.PTK[48+LEN_TKIP_RXMICK], LEN_TKIP_TXMICK);
96382 + pEntry->PairwiseKey.CipherAlg = pAd->SharedKey[BSS0][0].CipherAlg;
96384 + // Update pairwise key information to ASIC Shared Key Table
96385 + AsicAddSharedKeyEntry(pAd,
96388 + pAd->SharedKey[BSS0][0].CipherAlg,
96389 + pAd->SharedKey[BSS0][0].Key,
96390 + pAd->SharedKey[BSS0][0].TxMic,
96391 + pAd->SharedKey[BSS0][0].RxMic);
96393 + // Update ASIC WCID attribute table and IVEIV table
96394 + RTMPAddWcidAttributeEntry(pAd,
96397 + pAd->SharedKey[BSS0][0].CipherAlg,
96400 + // Make Transmitting frame
96401 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
96402 + LENGTH_802_3, &Header802_3,
96403 + Packet.Body_Len[1] + 4, &Packet,
96407 + // Copy frame to Tx ring and Send Message 4 to authenticator
96408 + RTMPToWirelessSta(pAd, Header802_3, LENGTH_802_3, (PUCHAR)&Packet, Packet.Body_Len[1] + 4, TRUE);
96410 + // set 802.1x port control
96411 + //pAd->StaCfg.PortSecured = WPA_802_1X_PORT_SECURED;
96412 + STA_PORT_SECURED(pAd);
96414 + // Indicate Connected for GUI
96415 + pAd->IndicateMediaState = NdisMediaStateConnected;
96417 + MlmeFreeMemory(pAd, (PUCHAR)pOutBuffer);
96418 + os_free_mem(pAd, (PUCHAR)mpool);
96421 + // send wireless event - for set key done WPA2
96422 + if (pAd->CommonCfg.bWirelessEvent)
96423 + RTMPSendWirelessEvent(pAd, IW_SET_KEY_DONE_WPA2_EVENT_FLAG, pEntry->Addr, BSS0, 0);
96425 + DBGPRINT(RT_DEBUG_ERROR, ("Wpa2PairMsg3Action <-----\n"));
96430 + ========================================================================
96432 + Routine Description:
96433 + Process Group key 2-way handshaking
96436 + pAd Pointer to our adapter
96437 + Elem Message body
96444 + ========================================================================
96446 +VOID WpaGroupMsg1Action(
96447 + IN PRTMP_ADAPTER pAd,
96448 + IN MLME_QUEUE_ELEM *Elem)
96451 + PUCHAR pOutBuffer = NULL;
96452 + UCHAR Header802_3[14];
96453 + ULONG FrameLen = 0;
96454 + EAPOL_PACKET Packet;
96455 + PEAPOL_PACKET pGroup;
96456 + UCHAR *mpool, *digest, *KEYDATA;
96457 + UCHAR Mic[16], OldMic[16];
96458 + UCHAR GTK[32], Key[32];
96459 + KEY_INFO peerKeyInfo;
96461 + // allocate memory
96462 + os_alloc_mem(pAd, (PUCHAR *)&mpool, 1024);
96464 + if(mpool == NULL)
96467 + // digest Len = 80.
96468 + digest = (UCHAR *) ROUND_UP(mpool, 4);
96469 + // KEYDATA Len = 512.
96470 + KEYDATA = (UCHAR *) ROUND_UP(digest + 80, 4);
96472 + DBGPRINT(RT_DEBUG_TRACE, ("WpaGroupMsg1Action ----->\n"));
96474 + // Process Group Message 1 frame. skip 802.11 header(24) & LLC_SNAP header(8)
96475 + pGroup = (PEAPOL_PACKET) &Elem->Msg[LENGTH_802_11 + LENGTH_802_1_H];
96477 + NdisZeroMemory((PUCHAR)&peerKeyInfo, sizeof(peerKeyInfo));
96478 + NdisMoveMemory((PUCHAR)&peerKeyInfo, (PUCHAR)&pGroup->KeyDesc.KeyInfo, sizeof(KEY_INFO));
96480 + *((USHORT*)&peerKeyInfo) = cpu2le16(*((USHORT*)&peerKeyInfo));
96482 + // 0. Check cipher type match
96483 + if (pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled && (peerKeyInfo.KeyDescVer != 2))
96485 + os_free_mem(pAd, (PUCHAR)mpool);
96488 + else if (pAd->StaCfg.WepStatus == Ndis802_11Encryption2Enabled && (peerKeyInfo.KeyDescVer != 1))
96490 + os_free_mem(pAd, (PUCHAR)mpool);
96494 + // 1. Verify Replay counter
96495 + // Check Replay Counter, it has to be larger than last one. No need to be exact one larger
96496 + if(RTMPCompareMemory(pGroup->KeyDesc.ReplayCounter, pAd->StaCfg.ReplayCounter, LEN_KEY_DESC_REPLAY) != 1)
96498 + os_free_mem(pAd, (PUCHAR)mpool);
96502 + // Update new replay counter
96503 + NdisMoveMemory(pAd->StaCfg.ReplayCounter, pGroup->KeyDesc.ReplayCounter, LEN_KEY_DESC_REPLAY);
96505 + // 2. Verify MIC is valid
96506 + // Save the MIC and replace with zero
96507 + NdisMoveMemory(OldMic, pGroup->KeyDesc.KeyMic, LEN_KEY_DESC_MIC);
96508 + NdisZeroMemory(pGroup->KeyDesc.KeyMic, LEN_KEY_DESC_MIC);
96510 + if(pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
96512 + HMAC_SHA1((PUCHAR) pGroup, pGroup->Body_Len[1] + 4, pAd->StaCfg.PTK, LEN_EAP_MICK, digest);
96513 + NdisMoveMemory(Mic, digest, LEN_KEY_DESC_MIC);
96517 + hmac_md5(pAd->StaCfg.PTK, LEN_EAP_MICK, (PUCHAR) pGroup, pGroup->Body_Len[1] + 4, Mic);
96520 + if(!NdisEqualMemory(OldMic, Mic, LEN_KEY_DESC_MIC))
96522 + DBGPRINT(RT_DEBUG_ERROR, (" MIC Different in group msg 1 of 2-way handshake!!!!!!!!!! \n"));
96523 + MlmeFreeMemory(pAd, (PUCHAR)mpool);
96527 + DBGPRINT(RT_DEBUG_TRACE, (" MIC VALID in group msg 1 of 2-way handshake!!!!!!!!!! \n"));
96530 + // 3. Decrypt GTK from Key Data
96531 + if (pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
96533 + // Decrypt AES GTK
96534 + AES_GTK_KEY_UNWRAP(&pAd->StaCfg.PTK[16], KEYDATA, pGroup->KeyDesc.KeyDataLen[1], pGroup->KeyDesc.KeyData);
96540 + // Decrypt TKIP GTK
96541 + // Construct 32 bytes RC4 Key
96542 + NdisMoveMemory(Key, pGroup->KeyDesc.KeyIv, 16);
96543 + NdisMoveMemory(&Key[16], &pAd->StaCfg.PTK[16], 16);
96544 + ARCFOUR_INIT(&pAd->PrivateInfo.WEPCONTEXT, Key, 32);
96545 + //discard first 256 bytes
96546 + for(i = 0; i < 256; i++)
96547 + ARCFOUR_BYTE(&pAd->PrivateInfo.WEPCONTEXT);
96548 + // Decrypt GTK. Becareful, there is no ICV to check the result is correct or not
96549 + ARCFOUR_DECRYPT(&pAd->PrivateInfo.WEPCONTEXT, KEYDATA, pGroup->KeyDesc.KeyData, pGroup->KeyDesc.KeyDataLen[1]);
96552 + // Process decrypted key data material
96553 + // Parse keyData to handle KDE format for WPA2PSK
96554 + if (peerKeyInfo.EKD_DL)
96556 + if (!ParseKeyData(pAd, KEYDATA, pGroup->KeyDesc.KeyDataLen[1], 0))
96558 + os_free_mem(pAd, (PUCHAR)mpool);
96564 + // set key material, TxMic and RxMic for WPAPSK
96565 + NdisMoveMemory(GTK, KEYDATA, 32);
96566 + NdisMoveMemory(pAd->StaCfg.GTK, GTK, 32);
96567 + pAd->StaCfg.DefaultKeyId = peerKeyInfo.KeyIndex;
96569 + // Prepare pair-wise key information into shared key table
96570 + NdisZeroMemory(&pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId], sizeof(CIPHER_KEY));
96571 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].KeyLen = LEN_TKIP_EK;
96572 + NdisMoveMemory(pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].Key, GTK, LEN_TKIP_EK);
96573 + NdisMoveMemory(pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].RxMic, >K[16], LEN_TKIP_RXMICK);
96574 + NdisMoveMemory(pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].TxMic, >K[24], LEN_TKIP_TXMICK);
96576 + // Update Shared Key CipherAlg
96577 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg = CIPHER_NONE;
96578 + if (pAd->StaCfg.GroupCipher == Ndis802_11Encryption2Enabled)
96579 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg = CIPHER_TKIP;
96580 + else if (pAd->StaCfg.GroupCipher == Ndis802_11Encryption3Enabled)
96581 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg = CIPHER_AES;
96583 + //hex_dump("Group Key :", pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].Key, LEN_TKIP_EK);
96586 + // Update group key information to ASIC Shared Key Table
96587 + AsicAddSharedKeyEntry(pAd,
96589 + pAd->StaCfg.DefaultKeyId,
96590 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg,
96591 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].Key,
96592 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].TxMic,
96593 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].RxMic);
96595 + // Update ASIC WCID attribute table and IVEIV table
96596 + RTMPAddWcidAttributeEntry(pAd,
96598 + pAd->StaCfg.DefaultKeyId,
96599 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg,
96602 + // set 802.1x port control
96603 + //pAd->StaCfg.PortSecured = WPA_802_1X_PORT_SECURED;
96604 + STA_PORT_SECURED(pAd);
96606 + // Indicate Connected for GUI
96607 + pAd->IndicateMediaState = NdisMediaStateConnected;
96609 + // init header and Fill Packet
96610 + MAKE_802_3_HEADER(Header802_3, pAd->CommonCfg.Bssid, pAd->CurrentAddress, EAPOL);
96612 + // Zero Group message 1 body
96613 + NdisZeroMemory(&Packet, sizeof(Packet));
96614 + Packet.ProVer = EAPOL_VER;
96615 + Packet.ProType = EAPOLKey;
96616 + Packet.Body_Len[1] = sizeof(KEY_DESCRIPTER) - MAX_LEN_OF_RSNIE; // No data field
96619 + // Group Message 2 as EAPOL-Key(1,0,0,0,G,0,0,MIC,0)
96621 + if (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK)
96623 + Packet.KeyDesc.Type = WPA2_KEY_DESC;
96627 + Packet.KeyDesc.Type = WPA1_KEY_DESC;
96630 + // Key descriptor version and appropriate RSN IE
96631 + Packet.KeyDesc.KeyInfo.KeyDescVer = peerKeyInfo.KeyDescVer;
96633 + // Update Key Length
96634 + Packet.KeyDesc.KeyLength[0] = pGroup->KeyDesc.KeyLength[0];
96635 + Packet.KeyDesc.KeyLength[1] = pGroup->KeyDesc.KeyLength[1];
96637 + // Key Index as G-Msg 1
96638 + if(pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK)
96639 + Packet.KeyDesc.KeyInfo.KeyIndex = peerKeyInfo.KeyIndex;
96641 + // Key Type Group key
96642 + Packet.KeyDesc.KeyInfo.KeyType = GROUPKEY;
96644 + // KeyMic field presented
96645 + Packet.KeyDesc.KeyInfo.KeyMic = 1;
96648 + Packet.KeyDesc.KeyInfo.Secure = 1;
96650 + // Convert to little-endian format.
96651 + *((USHORT *)&Packet.KeyDesc.KeyInfo) = cpu2le16(*((USHORT *)&Packet.KeyDesc.KeyInfo));
96653 + // Key Replay count
96654 + NdisMoveMemory(Packet.KeyDesc.ReplayCounter, pGroup->KeyDesc.ReplayCounter, LEN_KEY_DESC_REPLAY);
96656 + // Out buffer for transmitting group message 2
96657 + MlmeAllocateMemory(pAd, (PUCHAR *)&pOutBuffer); // allocate memory
96658 + if(pOutBuffer == NULL)
96660 + MlmeFreeMemory(pAd, (PUCHAR)mpool);
96664 + // Prepare EAPOL frame for MIC calculation
96665 + // Be careful, only EAPOL frame is counted for MIC calculation
96666 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
96667 + Packet.Body_Len[1] + 4, &Packet,
96670 + // Prepare and Fill MIC value
96671 + NdisZeroMemory(Mic, sizeof(Mic));
96672 + if(pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
96675 + HMAC_SHA1(pOutBuffer, FrameLen, pAd->StaCfg.PTK, LEN_EAP_MICK, digest);
96676 + NdisMoveMemory(Mic, digest, LEN_KEY_DESC_MIC);
96680 + hmac_md5(pAd->StaCfg.PTK, LEN_EAP_MICK, pOutBuffer, FrameLen, Mic);
96682 + NdisMoveMemory(Packet.KeyDesc.KeyMic, Mic, LEN_KEY_DESC_MIC);
96685 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
96686 + LENGTH_802_3, &Header802_3,
96687 + Packet.Body_Len[1] + 4, &Packet,
96691 + // 5. Copy frame to Tx ring and prepare for encryption
96692 + RTMPToWirelessSta(pAd, Header802_3, LENGTH_802_3, (PUCHAR)&Packet, Packet.Body_Len[1] + 4, FALSE);
96694 + // 6 Free allocated memory
96695 + MlmeFreeMemory(pAd, (PUCHAR)pOutBuffer);
96696 + os_free_mem(pAd, (PUCHAR)mpool);
96698 + // send wireless event - for set key done WPA2
96699 + if (pAd->CommonCfg.bWirelessEvent)
96700 + RTMPSendWirelessEvent(pAd, IW_SET_KEY_DONE_WPA2_EVENT_FLAG, pAd->MacTab.Content[BSSID_WCID].Addr, BSS0, 0);
96702 + DBGPRINT(RT_DEBUG_TRACE, ("WpaGroupMsg1Action <-----\n"));
96706 + ========================================================================
96708 + Routine Description:
96709 + Init WPA MAC header
96712 + pAd Pointer to our adapter
96719 + ========================================================================
96721 +VOID WpaMacHeaderInit(
96722 + IN PRTMP_ADAPTER pAd,
96723 + IN OUT PHEADER_802_11 pHdr80211,
96725 + IN PUCHAR pAddr1)
96727 + NdisZeroMemory(pHdr80211, sizeof(HEADER_802_11));
96728 + pHdr80211->FC.Type = BTYPE_DATA;
96729 + pHdr80211->FC.ToDs = 1;
96731 + pHdr80211->FC.Wep = 1;
96733 + // Addr1: BSSID, Addr2: SA, Addr3: DA
96734 + COPY_MAC_ADDR(pHdr80211->Addr1, pAddr1);
96735 + COPY_MAC_ADDR(pHdr80211->Addr2, pAd->CurrentAddress);
96736 + COPY_MAC_ADDR(pHdr80211->Addr3, pAd->CommonCfg.Bssid);
96737 + pHdr80211->Sequence = pAd->Sequence;
96741 + ========================================================================
96743 + Routine Description:
96744 + Copy frame from waiting queue into relative ring buffer and set
96745 + appropriate ASIC register to kick hardware encryption before really
96749 + pAd Pointer to our adapter
96750 + PNDIS_PACKET Pointer to outgoing Ndis frame
96751 + NumberOfFrag Number of fragment required
96758 + ========================================================================
96760 +VOID RTMPToWirelessSta(
96761 + IN PRTMP_ADAPTER pAd,
96762 + IN PUCHAR pHeader802_3,
96766 + IN BOOLEAN is4wayFrame)
96769 + NDIS_STATUS Status;
96770 + PNDIS_PACKET pPacket;
96775 + // 1. build a NDIS packet and call RTMPSendPacket();
96776 + // be careful about how/when to release this internal allocated NDIS PACKET buffer
96777 + Status = RTMPAllocateNdisPacket(pAd, &pPacket, pHeader802_3, HdrLen, pData, DataLen);
96778 + if (Status != NDIS_STATUS_SUCCESS)
96782 + RTMP_SET_PACKET_CLEAR_EAP_FRAME(pPacket, 1);
96784 + RTMP_SET_PACKET_CLEAR_EAP_FRAME(pPacket, 0);
96786 + // 2. send out the packet
96787 + Status = STASendPacket(pAd, pPacket);
96788 + if(Status == NDIS_STATUS_SUCCESS)
96790 + // Dequeue one frame from TxSwQueue0..3 queue and process it
96791 + // There are three place calling dequeue for TX ring.
96792 + // 1. Here, right after queueing the frame.
96793 + // 2. At the end of TxRingTxDone service routine.
96794 + // 3. Upon NDIS call RTMPSendPackets
96795 + if((!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_BSS_SCAN_IN_PROGRESS)) &&
96796 + (!RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_RESET_IN_PROGRESS)))
96798 + for(Index = 0; Index < 5; Index ++)
96799 + if(pAd->TxSwQueue[Index].Number > 0)
96800 + RTMPDeQueuePacket(pAd, FALSE, Index, MAX_TX_PROCESS);
96808 + ========================================================================
96810 + Routine Description:
96811 + Check Sanity RSN IE form AP
96818 + ========================================================================
96820 +BOOLEAN CheckRSNIE(
96821 + IN PRTMP_ADAPTER pAd,
96823 + IN UCHAR DataLen,
96824 + OUT UCHAR *Offset)
96828 + PEID_STRUCT pEid;
96829 + BOOLEAN result = FALSE;
96835 + while (len > sizeof(RSNIE2))
96837 + pEid = (PEID_STRUCT) pVIE;
96839 + if ((pEid->Eid == IE_WPA) && (NdisEqualMemory(pEid->Octet, WPA_OUI, 4)))
96841 + if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA || pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK) &&
96842 + (NdisEqualMemory(pVIE, pAd->MacTab.Content[BSSID_WCID].RSN_IE, pAd->MacTab.Content[BSSID_WCID].RSNIE_Len)) &&
96843 + (pAd->MacTab.Content[BSSID_WCID].RSNIE_Len == (pEid->Len + 2)))
96845 + DBGPRINT(RT_DEBUG_TRACE, ("CheckRSNIE ==> WPA/WPAPSK RSN IE matched in Msg 3, Length(%d) \n", (pEid->Len + 2)));
96849 + *Offset += (pEid->Len + 2);
96852 + else if ((pEid->Eid == IE_RSN) && (NdisEqualMemory(pEid->Octet + 2, RSN_OUI, 3)))
96854 + if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2 || pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK) &&
96855 + (NdisEqualMemory(pVIE, pAd->MacTab.Content[BSSID_WCID].RSN_IE, pAd->MacTab.Content[BSSID_WCID].RSNIE_Len)) &&
96856 + (pAd->MacTab.Content[BSSID_WCID].RSNIE_Len == (pEid->Len + 2)))
96858 + DBGPRINT(RT_DEBUG_TRACE, ("CheckRSNIE ==> WPA2/WPA2PSK RSN IE matched in Msg 3, Length(%d) \n", (pEid->Len + 2)));
96862 + *Offset += (pEid->Len + 2);
96869 + pVIE += (pEid->Len + 2);
96870 + len -= (pEid->Len + 2);
96873 + DBGPRINT(RT_DEBUG_TRACE, ("CheckRSNIE ==> skip_offset(%d) \n", *Offset));
96881 + ========================================================================
96883 + Routine Description:
96884 + Parse KEYDATA field. KEYDATA[] May contain 2 RSN IE and optionally GTK.
96885 + GTK is encaptulated in KDE format at p.83 802.11i D10
96894 + ========================================================================
96896 +BOOLEAN ParseKeyData(
96897 + IN PRTMP_ADAPTER pAd,
96898 + IN PUCHAR pKeyData,
96899 + IN UCHAR KeyDataLen,
96900 + IN UCHAR bPairewise)
96902 + PKDE_ENCAP pKDE = NULL;
96903 + PUCHAR pMyKeyData = pKeyData;
96904 + UCHAR KeyDataLength = KeyDataLen;
96906 + UCHAR skip_offset;
96908 + // Verify The RSN IE contained in Pairewise-Msg 3 and skip it
96911 + // Check RSN IE whether it is WPA2/WPA2PSK
96912 + if (!CheckRSNIE(pAd, pKeyData, KeyDataLen, &skip_offset))
96914 + DBGPRINT(RT_DEBUG_ERROR, ("ParseKeyData ==> WPA2/WPA2PSK RSN IE mismatched \n"));
96915 + hex_dump("Get KEYDATA :", pKeyData, KeyDataLen);
96921 + pMyKeyData += skip_offset;
96922 + KeyDataLength -= skip_offset;
96924 + //DBGPRINT(RT_DEBUG_TRACE, ("ParseKeyData ==> WPA2/WPA2PSK RSN IE matched in Msg 3, Length(%d) \n", skip_offset));
96928 + DBGPRINT(RT_DEBUG_TRACE,("ParseKeyData ==> KeyDataLength %d without RSN_IE \n", KeyDataLength));
96930 + // Parse EKD format
96931 + if (KeyDataLength >= 8)
96933 + pKDE = (PKDE_ENCAP) pMyKeyData;
96937 + DBGPRINT(RT_DEBUG_ERROR, ("ERROR: KeyDataLength is too short \n"));
96942 + // Sanity check - shared key index should not be 0
96943 + if (pKDE->GTKEncap.Kid == 0)
96945 + DBGPRINT(RT_DEBUG_ERROR, ("ERROR: GTK Key index zero \n"));
96949 + // Sanity check - KED length
96950 + if (KeyDataLength < (pKDE->Len + 2))
96952 + DBGPRINT(RT_DEBUG_ERROR, ("ERROR: The len from KDE is too short \n"));
96956 + // Get GTK length - refer to IEEE 802.11i-2004 p.82
96957 + GTKLEN = pKDE->Len -6;
96959 + if (GTKLEN < LEN_AES_KEY)
96961 + DBGPRINT(RT_DEBUG_ERROR, ("ERROR: GTK Key length is too short (%d) \n", GTKLEN));
96965 + DBGPRINT(RT_DEBUG_TRACE, ("GTK Key with KDE formet got index=%d, len=%d \n", pKDE->GTKEncap.Kid, GTKLEN));
96968 + // set key material, TxMic and RxMic for WPAPSK
96969 + NdisMoveMemory(pAd->StaCfg.GTK, pKDE->GTKEncap.GTK, 32);
96970 + pAd->StaCfg.DefaultKeyId = pKDE->GTKEncap.Kid;
96972 + // Update shared key table
96973 + NdisZeroMemory(&pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId], sizeof(CIPHER_KEY));
96974 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].KeyLen = LEN_TKIP_EK;
96975 + NdisMoveMemory(pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].Key, pKDE->GTKEncap.GTK, LEN_TKIP_EK);
96976 + NdisMoveMemory(pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].RxMic, &pKDE->GTKEncap.GTK[16], LEN_TKIP_RXMICK);
96977 + NdisMoveMemory(pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].TxMic, &pKDE->GTKEncap.GTK[24], LEN_TKIP_TXMICK);
96979 + // Update Shared Key CipherAlg
96980 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg = CIPHER_NONE;
96981 + if (pAd->StaCfg.GroupCipher == Ndis802_11Encryption2Enabled)
96982 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg = CIPHER_TKIP;
96983 + else if (pAd->StaCfg.GroupCipher == Ndis802_11Encryption3Enabled)
96984 + pAd->SharedKey[BSS0][pAd->StaCfg.DefaultKeyId].CipherAlg = CIPHER_AES;
96991 + ========================================================================
96993 + Routine Description:
96994 + Cisco CCKM PRF function
96997 + key Cisco Base Transient Key (BTK)
96998 + key_len The key length of the BTK
96999 + data Ruquest Number(RN) + BSSID
97000 + data_len The length of the data
97001 + output Store for PTK(Pairwise transient keys)
97002 + len The length of the output
97009 + ========================================================================
97016 + OUT UCHAR *output,
97020 + UCHAR input[1024];
97021 + INT currentindex = 0;
97024 + NdisMoveMemory(input, data, data_len);
97025 + total_len = data_len;
97026 + input[total_len] = 0;
97028 + for (i = 0; i < (len + 19) / 20; i++)
97030 + HMAC_SHA1(input, total_len, key, key_len, &output[currentindex]);
97031 + currentindex += 20;
97032 + input[total_len - 1]++;
97037 + ========================================================================
97039 + Routine Description:
97040 + Process MIC error indication and record MIC error timer.
97043 + pAd Pointer to our adapter
97044 + pWpaKey Pointer to the WPA key structure
97049 + IRQL = DISPATCH_LEVEL
97053 + ========================================================================
97055 +VOID RTMPReportMicError(
97056 + IN PRTMP_ADAPTER pAd,
97057 + IN PCIPHER_KEY pWpaKey)
97060 + UCHAR unicastKey = (pWpaKey->Type == PAIRWISE_KEY ? 1:0);
97062 + // Record Last MIC error time and count
97064 + if (pAd->StaCfg.MicErrCnt == 0)
97066 + pAd->StaCfg.MicErrCnt++;
97067 + pAd->StaCfg.LastMicErrorTime = Now;
97068 + NdisZeroMemory(pAd->StaCfg.ReplayCounter, 8);
97070 + else if (pAd->StaCfg.MicErrCnt == 1)
97072 + if ((pAd->StaCfg.LastMicErrorTime + (60 * OS_HZ)) < Now)
97074 + // Update Last MIC error time, this did not violate two MIC errors within 60 seconds
97075 + pAd->StaCfg.LastMicErrorTime = Now;
97080 + if (pAd->CommonCfg.bWirelessEvent)
97081 + RTMPSendWirelessEvent(pAd, IW_COUNTER_MEASURES_EVENT_FLAG, pAd->MacTab.Content[BSSID_WCID].Addr, BSS0, 0);
97083 + pAd->StaCfg.LastMicErrorTime = Now;
97084 + // Violate MIC error counts, MIC countermeasures kicks in
97085 + pAd->StaCfg.MicErrCnt++;
97086 + // We shall block all reception
97087 + // We shall clean all Tx ring and disassoicate from AP after next EAPOL frame
97089 + // No necessary to clean all Tx ring, on RTMPHardTransmit will stop sending non-802.1X EAPOL packets
97090 + // if pAd->StaCfg.MicErrCnt greater than 2.
97092 + // RTMPRingCleanUp(pAd, QID_AC_BK);
97093 + // RTMPRingCleanUp(pAd, QID_AC_BE);
97094 + // RTMPRingCleanUp(pAd, QID_AC_VI);
97095 + // RTMPRingCleanUp(pAd, QID_AC_VO);
97096 + // RTMPRingCleanUp(pAd, QID_HCCA);
97101 + // MIC error count >= 2
97102 + // This should not happen
97106 + MLME_CNTL_STATE_MACHINE,
97107 + OID_802_11_MIC_FAILURE_REPORT_FRAME,
97111 + if (pAd->StaCfg.MicErrCnt == 2)
97113 + RTMPSetTimer(&pAd->StaCfg.WpaDisassocAndBlockAssocTimer, 100);
97118 +#ifdef WPA_SUPPLICANT_SUPPORT
97119 +#define LENGTH_EAP_H 4
97120 +// If the received frame is EAP-Packet ,find out its EAP-Code (Request(0x01), Response(0x02), Success(0x03), Failure(0x04)).
97121 +INT WpaCheckEapCode(
97122 + IN PRTMP_ADAPTER pAd,
97123 + IN PUCHAR pFrame,
97124 + IN USHORT FrameLen,
97125 + IN USHORT OffSet)
97131 + if( FrameLen < OffSet + LENGTH_EAPOL_H + LENGTH_EAP_H )
97134 + pData = pFrame + OffSet; // skip offset bytes
97136 + if(*(pData+1) == EAPPacket) // 802.1x header - Packet Type
97138 + result = *(pData+4); // EAP header - Code
97144 +VOID WpaSendMicFailureToWpaSupplicant(
97145 + IN PRTMP_ADAPTER pAd,
97146 + IN BOOLEAN bUnicast)
97148 + union iwreq_data wrqu;
97149 + char custom[IW_CUSTOM_MAX] = {0};
97151 + sprintf(custom, "MLME-MICHAELMICFAILURE.indication");
97153 + sprintf(custom, "%s unicast", custom);
97154 + wrqu.data.length = strlen(custom);
97155 + wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, custom);
97159 +#endif // WPA_SUPPLICANT_SUPPORT //
97161 +VOID WpaMicFailureReportFrame(
97162 + IN PRTMP_ADAPTER pAd,
97163 + IN MLME_QUEUE_ELEM *Elem)
97165 + PUCHAR pOutBuffer = NULL;
97166 + UCHAR Header802_3[14];
97167 + ULONG FrameLen = 0;
97168 + EAPOL_PACKET Packet;
97170 + BOOLEAN bUnicast;
97172 + DBGPRINT(RT_DEBUG_TRACE, ("WpaMicFailureReportFrame ----->\n"));
97174 + bUnicast = (Elem->Msg[0] == 1 ? TRUE:FALSE);
97175 + pAd->Sequence = ((pAd->Sequence) + 1) & (MAX_SEQ_NUMBER);
97177 + // init 802.3 header and Fill Packet
97178 + MAKE_802_3_HEADER(Header802_3, pAd->CommonCfg.Bssid, pAd->CurrentAddress, EAPOL);
97180 + NdisZeroMemory(&Packet, sizeof(Packet));
97181 + Packet.ProVer = EAPOL_VER;
97182 + Packet.ProType = EAPOLKey;
97184 + Packet.KeyDesc.Type = WPA1_KEY_DESC;
97186 + // Request field presented
97187 + Packet.KeyDesc.KeyInfo.Request = 1;
97189 + if(pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
97191 + Packet.KeyDesc.KeyInfo.KeyDescVer = 2;
97195 + Packet.KeyDesc.KeyInfo.KeyDescVer = 1;
97198 + Packet.KeyDesc.KeyInfo.KeyType = (bUnicast ? PAIRWISEKEY : GROUPKEY);
97200 + // KeyMic field presented
97201 + Packet.KeyDesc.KeyInfo.KeyMic = 1;
97203 + // Error field presented
97204 + Packet.KeyDesc.KeyInfo.Error = 1;
97206 + // Update packet length after decide Key data payload
97207 + Packet.Body_Len[1] = sizeof(KEY_DESCRIPTER) - MAX_LEN_OF_RSNIE;
97209 + // Key Replay Count
97210 + NdisMoveMemory(Packet.KeyDesc.ReplayCounter, pAd->StaCfg.ReplayCounter, LEN_KEY_DESC_REPLAY);
97211 + inc_byte_array(pAd->StaCfg.ReplayCounter, 8);
97213 + // Convert to little-endian format.
97214 + *((USHORT *)&Packet.KeyDesc.KeyInfo) = cpu2le16(*((USHORT *)&Packet.KeyDesc.KeyInfo));
97217 + MlmeAllocateMemory(pAd, (PUCHAR *)&pOutBuffer); // allocate memory
97218 + if(pOutBuffer == NULL)
97223 + // Prepare EAPOL frame for MIC calculation
97224 + // Be careful, only EAPOL frame is counted for MIC calculation
97225 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
97226 + Packet.Body_Len[1] + 4, &Packet,
97229 + // Prepare and Fill MIC value
97230 + NdisZeroMemory(Mic, sizeof(Mic));
97231 + if(pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
97233 + UCHAR digest[20] = {0};
97234 + HMAC_SHA1(pOutBuffer, FrameLen, pAd->StaCfg.PTK, LEN_EAP_MICK, digest);
97235 + NdisMoveMemory(Mic, digest, LEN_KEY_DESC_MIC);
97239 + hmac_md5(pAd->StaCfg.PTK, LEN_EAP_MICK, pOutBuffer, FrameLen, Mic);
97241 + NdisMoveMemory(Packet.KeyDesc.KeyMic, Mic, LEN_KEY_DESC_MIC);
97243 + MakeOutgoingFrame(pOutBuffer, &FrameLen,
97244 + LENGTH_802_3, &Header802_3,
97245 + Packet.Body_Len[1] + 4, &Packet,
97248 + // opy frame to Tx ring and send MIC failure report frame to authenticator
97249 + RTMPToWirelessSta(pAd, Header802_3, LENGTH_802_3, (PUCHAR)&Packet, Packet.Body_Len[1] + 4, FALSE);
97251 + MlmeFreeMemory(pAd, (PUCHAR)pOutBuffer);
97253 + DBGPRINT(RT_DEBUG_TRACE, ("WpaMicFailureReportFrame <-----\n"));
97256 +/** from wpa_supplicant
97257 + * inc_byte_array - Increment arbitrary length byte array by one
97258 + * @counter: Pointer to byte array
97259 + * @len: Length of the counter in bytes
97261 + * This function increments the last byte of the counter by one and continues
97262 + * rolling over to more significant bytes if the byte was incremented from
97265 +void inc_byte_array(UCHAR *counter, int len)
97267 + int pos = len - 1;
97268 + while (pos >= 0) {
97270 + if (counter[pos] != 0)
97276 +VOID WpaDisassocApAndBlockAssoc(
97277 + IN PVOID SystemSpecific1,
97278 + IN PVOID FunctionContext,
97279 + IN PVOID SystemSpecific2,
97280 + IN PVOID SystemSpecific3)
97282 + RTMP_ADAPTER *pAd = (PRTMP_ADAPTER)FunctionContext;
97283 + MLME_DISASSOC_REQ_STRUCT DisassocReq;
97285 + // disassoc from current AP first
97286 + DBGPRINT(RT_DEBUG_TRACE, ("RTMPReportMicError - disassociate with current AP after sending second continuous EAPOL frame\n"));
97287 + DisassocParmFill(pAd, &DisassocReq, pAd->CommonCfg.Bssid, REASON_MIC_FAILURE);
97288 + MlmeEnqueue(pAd, ASSOC_STATE_MACHINE, MT2_MLME_DISASSOC_REQ, sizeof(MLME_DISASSOC_REQ_STRUCT), &DisassocReq);
97290 + pAd->Mlme.CntlMachine.CurrState = CNTL_WAIT_DISASSOC;
97291 + pAd->StaCfg.bBlockAssoc = TRUE;
97295 +++ b/drivers/staging/rt3070/wpa.h
97298 + *************************************************************************
97299 + * Ralink Tech Inc.
97300 + * 5F., No.36, Taiyuan St., Jhubei City,
97301 + * Hsinchu County 302,
97304 + * (c) Copyright 2002-2007, Ralink Technology, Inc.
97306 + * This program is free software; you can redistribute it and/or modify *
97307 + * it under the terms of the GNU General Public License as published by *
97308 + * the Free Software Foundation; either version 2 of the License, or *
97309 + * (at your option) any later version. *
97311 + * This program is distributed in the hope that it will be useful, *
97312 + * but WITHOUT ANY WARRANTY; without even the implied warranty of *
97313 + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
97314 + * GNU General Public License for more details. *
97316 + * You should have received a copy of the GNU General Public License *
97317 + * along with this program; if not, write to the *
97318 + * Free Software Foundation, Inc., *
97319 + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
97321 + *************************************************************************
97328 + Revision History:
97330 + -------- ---------- ----------------------------------------------
97331 + Name Date Modification logs
97337 +// EAPOL Key descripter frame format related length
97338 +#define LEN_KEY_DESC_NONCE 32
97339 +#define LEN_KEY_DESC_IV 16
97340 +#define LEN_KEY_DESC_RSC 8
97341 +#define LEN_KEY_DESC_ID 8
97342 +#define LEN_KEY_DESC_REPLAY 8
97343 +#define LEN_KEY_DESC_MIC 16
97345 +// The length is the EAPoL-Key frame except key data field.
97346 +// Please refer to 802.11i-2004 ,Figure 43u in p.78
97347 +#define LEN_EAPOL_KEY_MSG (sizeof(KEY_DESCRIPTER) - MAX_LEN_OF_RSNIE)
97350 +#define EAP_CODE_REQUEST 1
97351 +#define EAP_CODE_RESPONSE 2
97352 +#define EAP_CODE_SUCCESS 3
97353 +#define EAP_CODE_FAILURE 4
97355 +// EAPOL frame Protocol Version
97356 +#define EAPOL_VER 1
97357 +#define EAPOL_VER2 2
97359 +// EAPOL-KEY Descriptor Type
97360 +#define WPA1_KEY_DESC 0xfe
97361 +#define WPA2_KEY_DESC 0x02
97363 +// Key Descriptor Version of Key Information
97364 +#define DESC_TYPE_TKIP 1
97365 +#define DESC_TYPE_AES 2
97366 +#define DESC_TYPE_MESH 3
97368 +#define LEN_MSG1_2WAY 0x7f
97369 +#define MAX_LEN_OF_EAP_HS 256
97371 +#define LEN_MASTER_KEY 32
97374 +#define LEN_EAP_EK 16
97375 +#define LEN_EAP_MICK 16
97376 +#define LEN_EAP_KEY ((LEN_EAP_EK)+(LEN_EAP_MICK))
97377 +// TKIP key related
97378 +#define LEN_PMKID 16
97379 +#define LEN_TKIP_EK 16
97380 +#define LEN_TKIP_RXMICK 8
97381 +#define LEN_TKIP_TXMICK 8
97382 +#define LEN_AES_EK 16
97383 +#define LEN_AES_KEY LEN_AES_EK
97384 +#define LEN_TKIP_KEY ((LEN_TKIP_EK)+(LEN_TKIP_RXMICK)+(LEN_TKIP_TXMICK))
97385 +#define TKIP_AP_TXMICK_OFFSET ((LEN_EAP_KEY)+(LEN_TKIP_EK))
97386 +#define TKIP_AP_RXMICK_OFFSET (TKIP_AP_TXMICK_OFFSET+LEN_TKIP_TXMICK)
97387 +#define TKIP_GTK_LENGTH ((LEN_TKIP_EK)+(LEN_TKIP_RXMICK)+(LEN_TKIP_TXMICK))
97388 +#define LEN_PTK ((LEN_EAP_KEY)+(LEN_TKIP_KEY))
97390 +// RSN IE Length definition
97391 +#define MAX_LEN_OF_RSNIE 90
97392 +#define MIN_LEN_OF_RSNIE 8
97395 +#define EAPPacket 0
97396 +#define EAPOLStart 1
97397 +#define EAPOLLogoff 2
97398 +#define EAPOLKey 3
97399 +#define EAPOLASFAlert 4
97400 +#define EAPTtypeMax 5
97402 +#define EAPOL_MSG_INVALID 0
97403 +#define EAPOL_PAIR_MSG_1 1
97404 +#define EAPOL_PAIR_MSG_2 2
97405 +#define EAPOL_PAIR_MSG_3 3
97406 +#define EAPOL_PAIR_MSG_4 4
97407 +#define EAPOL_GROUP_MSG_1 5
97408 +#define EAPOL_GROUP_MSG_2 6
97410 +#define PAIRWISEKEY 1
97411 +#define GROUPKEY 0
97413 +// Retry timer counter initial value
97414 +#define PEER_MSG1_RETRY_TIMER_CTR 0
97415 +#define PEER_MSG3_RETRY_TIMER_CTR 10
97416 +#define GROUP_MSG1_RETRY_TIMER_CTR 20
97419 +#define EAPOL_START_DISABLE 0
97420 +#define EAPOL_START_PSK 1
97421 +#define EAPOL_START_1X 2
97423 +#define MIX_CIPHER_WPA_TKIP_ON(x) (((x) & 0x08) != 0)
97424 +#define MIX_CIPHER_WPA_AES_ON(x) (((x) & 0x04) != 0)
97425 +#define MIX_CIPHER_WPA2_TKIP_ON(x) (((x) & 0x02) != 0)
97426 +#define MIX_CIPHER_WPA2_AES_ON(x) (((x) & 0x01) != 0)
97428 +#define ROUND_UP(__x, __y) \
97429 + (((ULONG)((__x)+((__y)-1))) & ((ULONG)~((__y)-1)))
97431 +#define ADD_ONE_To_64BIT_VAR(_V) \
97433 + UCHAR cnt = LEN_KEY_DESC_REPLAY; \
97440 + }while (_V[cnt] == 0); \
97443 +#define IS_WPA_CAPABILITY(a) (((a) >= Ndis802_11AuthModeWPA) && ((a) <= Ndis802_11AuthModeWPA1PSKWPA2PSK))
97445 +// EAPOL Key Information definition within Key descriptor format
97446 +typedef struct PACKED _KEY_INFO
97448 +#ifdef RT_BIG_ENDIAN
97451 + UCHAR KeyIndex:2;
97453 + UCHAR KeyDescVer:3;
97455 + UCHAR EKD_DL:1; // EKD for AP; DL for STA
97465 + UCHAR EKD_DL:1; // EKD for AP; DL for STA
97467 + UCHAR KeyDescVer:3;
97469 + UCHAR KeyIndex:2;
97473 +} KEY_INFO, *PKEY_INFO;
97475 +// EAPOL Key descriptor format
97476 +typedef struct PACKED _KEY_DESCRIPTER
97479 + KEY_INFO KeyInfo;
97480 + UCHAR KeyLength[2];
97481 + UCHAR ReplayCounter[LEN_KEY_DESC_REPLAY];
97482 + UCHAR KeyNonce[LEN_KEY_DESC_NONCE];
97483 + UCHAR KeyIv[LEN_KEY_DESC_IV];
97484 + UCHAR KeyRsc[LEN_KEY_DESC_RSC];
97485 + UCHAR KeyId[LEN_KEY_DESC_ID];
97486 + UCHAR KeyMic[LEN_KEY_DESC_MIC];
97487 + UCHAR KeyDataLen[2];
97488 + UCHAR KeyData[MAX_LEN_OF_RSNIE];
97489 +} KEY_DESCRIPTER, *PKEY_DESCRIPTER;
97491 +typedef struct PACKED _EAPOL_PACKET
97495 + UCHAR Body_Len[2];
97496 + KEY_DESCRIPTER KeyDesc;
97497 +} EAPOL_PACKET, *PEAPOL_PACKET;
97499 +//802.11i D10 page 83
97500 +typedef struct PACKED _GTK_ENCAP
97502 +#ifndef RT_BIG_ENDIAN
97513 + UCHAR GTK[TKIP_GTK_LENGTH];
97514 +} GTK_ENCAP, *PGTK_ENCAP;
97516 +typedef struct PACKED _KDE_ENCAP
97522 + GTK_ENCAP GTKEncap;
97523 +} KDE_ENCAP, *PKDE_ENCAP;
97526 +typedef struct PACKED _RSNIE {
97537 +typedef struct PACKED _RSNIE2 {
97544 +} RSNIE2, *PRSNIE2;
97547 +typedef struct PACKED _RSNIE_AUTH {
97552 +} RSNIE_AUTH,*PRSNIE_AUTH;
97554 +typedef union PACKED _RSN_CAPABILITIES {
97556 +#ifdef RT_BIG_ENDIAN
97558 + USHORT GTKSA_R_Counter:2;
97559 + USHORT PTKSA_R_Counter:2;
97560 + USHORT No_Pairwise:1;
97561 + USHORT PreAuth:1;
97563 + USHORT PreAuth:1;
97564 + USHORT No_Pairwise:1;
97565 + USHORT PTKSA_R_Counter:2;
97566 + USHORT GTKSA_R_Counter:2;
97571 +} RSN_CAPABILITIES, *PRSN_CAPABILITIES;
97573 +typedef struct PACKED _EAP_HDR {
97576 + UCHAR Body_Len[2];
97578 + UCHAR identifier;
97579 + UCHAR length[2]; // including code and identifier, followed by length-2 octets of data
97580 +} EAP_HDR, *PEAP_HDR;
97582 +// For supplicant state machine states. 802.11i Draft 4.1, p. 97
97583 +// We simplified it
97584 +typedef enum _WpaState
97588 + SS_WAIT_MSG_3, // 2
97589 + SS_WAIT_GROUP, // 3
97591 + SS_KEYUPDATE, // 5
97595 +// The definition of the cipher combination
97597 +// bit3 bit2 bit1 bit0
97598 +// +------------+------------+
97600 +// +------+-----+------+-----+
97601 +// | TKIP | AES | TKIP | AES |
97602 +// | 0 | 1 | 1 | 0 | -> 0x06
97603 +// | 0 | 1 | 1 | 1 | -> 0x07
97604 +// | 1 | 0 | 0 | 1 | -> 0x09
97605 +// | 1 | 0 | 1 | 1 | -> 0x0B
97606 +// | 1 | 1 | 0 | 1 | -> 0x0D
97607 +// | 1 | 1 | 1 | 0 | -> 0x0E
97608 +// | 1 | 1 | 1 | 1 | -> 0x0F
97609 +// +------+-----+------+-----+
97611 +typedef enum _WpaMixPairCipher
97613 + MIX_CIPHER_NOTUSE = 0x00,
97614 + WPA_NONE_WPA2_TKIPAES = 0x03, // WPA2-TKIPAES
97615 + WPA_AES_WPA2_TKIP = 0x06,
97616 + WPA_AES_WPA2_TKIPAES = 0x07,
97617 + WPA_TKIP_WPA2_AES = 0x09,
97618 + WPA_TKIP_WPA2_TKIPAES = 0x0B,
97619 + WPA_TKIPAES_WPA2_NONE = 0x0C, // WPA-TKIPAES
97620 + WPA_TKIPAES_WPA2_AES = 0x0D,
97621 + WPA_TKIPAES_WPA2_TKIP = 0x0E,
97622 + WPA_TKIPAES_WPA2_TKIPAES = 0x0F,
97623 +} WPA_MIX_PAIR_CIPHER;
97625 +typedef struct PACKED _RSN_IE_HEADER_STRUCT {
97628 + USHORT Version; // Little endian format
97629 +} RSN_IE_HEADER_STRUCT, *PRSN_IE_HEADER_STRUCT;
97631 +// Cipher suite selector types
97632 +typedef struct PACKED _CIPHER_SUITE_STRUCT {
97635 +} CIPHER_SUITE_STRUCT, *PCIPHER_SUITE_STRUCT;
97637 +// Authentication and Key Management suite selector
97638 +typedef struct PACKED _AKM_SUITE_STRUCT {
97641 +} AKM_SUITE_STRUCT, *PAKM_SUITE_STRUCT;
97644 +typedef struct PACKED _RSN_CAPABILITY {
97646 + USHORT GTKSAReplayCnt:2;
97647 + USHORT PTKSAReplayCnt:2;
97648 + USHORT NoPairwise:1;
97649 + USHORT PreAuth:1;
97650 +} RSN_CAPABILITY, *PRSN_CAPABILITY;
projects / people / pmueller / ipfire-2.x.git / blob