1 /* Encapsulate basic setting changes and retrieval on Hermes hardware
3 * See copyright notice in main.c
5 #include <linux/kernel.h>
6 #include <linux/device.h>
7 #include <linux/if_arp.h>
8 #include <linux/ieee80211.h>
9 #include <linux/wireless.h>
10 #include <net/cfg80211.h>
12 #include "hermes_rid.h"
17 #define SYMBOL_MAX_VER_LEN (14)
19 /* Symbol firmware has a bug allocating buffers larger than this */
20 #define TX_NICBUF_SIZE_BUG 1585
22 /********************************************************************/
24 /********************************************************************/
26 /* This tables gives the actual meanings of the bitrate IDs returned
29 int bitrate
; /* in 100s of kilobits */
32 u16 intersil_txratectrl
;
34 {110, 1, 3, 15}, /* Entry 0 is the default */
43 #define BITRATE_TABLE_SIZE ARRAY_SIZE(bitrate_table)
45 /* Firmware version encoding */
47 u16 id
, variant
, major
, minor
;
50 static inline fwtype_t
determine_firmware_type(struct comp_id
*nic_id
)
52 if (nic_id
->id
< 0x8000)
53 return FIRMWARE_TYPE_AGERE
;
54 else if (nic_id
->id
== 0x8000 && nic_id
->major
== 0)
55 return FIRMWARE_TYPE_SYMBOL
;
57 return FIRMWARE_TYPE_INTERSIL
;
60 /* Set priv->firmware type, determine firmware properties
61 * This function can be called before we have registerred with netdev,
62 * so all errors go out with dev_* rather than printk
64 * If non-NULL stores a firmware description in fw_name.
65 * If non-NULL stores a HW version in hw_ver
67 * These are output via generic cfg80211 ethtool support.
69 int determine_fw_capabilities(struct orinoco_private
*priv
,
70 char *fw_name
, size_t fw_name_len
,
73 struct device
*dev
= priv
->dev
;
74 hermes_t
*hw
= &priv
->hw
;
76 struct comp_id nic_id
, sta_id
;
78 char tmp
[SYMBOL_MAX_VER_LEN
+1] __attribute__((aligned(2)));
80 /* Get the hardware version */
81 err
= HERMES_READ_RECORD(hw
, USER_BAP
, HERMES_RID_NICID
, &nic_id
);
83 dev_err(dev
, "Cannot read hardware identity: error %d\n",
88 le16_to_cpus(&nic_id
.id
);
89 le16_to_cpus(&nic_id
.variant
);
90 le16_to_cpus(&nic_id
.major
);
91 le16_to_cpus(&nic_id
.minor
);
92 dev_info(dev
, "Hardware identity %04x:%04x:%04x:%04x\n",
93 nic_id
.id
, nic_id
.variant
, nic_id
.major
, nic_id
.minor
);
96 *hw_ver
= (((nic_id
.id
& 0xff) << 24) |
97 ((nic_id
.variant
& 0xff) << 16) |
98 ((nic_id
.major
& 0xff) << 8) |
99 (nic_id
.minor
& 0xff));
101 priv
->firmware_type
= determine_firmware_type(&nic_id
);
103 /* Get the firmware version */
104 err
= HERMES_READ_RECORD(hw
, USER_BAP
, HERMES_RID_STAID
, &sta_id
);
106 dev_err(dev
, "Cannot read station identity: error %d\n",
111 le16_to_cpus(&sta_id
.id
);
112 le16_to_cpus(&sta_id
.variant
);
113 le16_to_cpus(&sta_id
.major
);
114 le16_to_cpus(&sta_id
.minor
);
115 dev_info(dev
, "Station identity %04x:%04x:%04x:%04x\n",
116 sta_id
.id
, sta_id
.variant
, sta_id
.major
, sta_id
.minor
);
120 dev_err(dev
, "Primary firmware is active\n");
123 dev_err(dev
, "Tertiary firmware is active\n");
125 case 0x1f: /* Intersil, Agere, Symbol Spectrum24 */
126 case 0x21: /* Symbol Spectrum24 Trilogy */
129 dev_notice(dev
, "Unknown station ID, please report\n");
133 /* Default capabilities */
134 priv
->has_sensitivity
= 1;
136 priv
->has_preamble
= 0;
140 priv
->has_big_wep
= 0;
141 priv
->has_alt_txcntl
= 0;
142 priv
->has_ext_scan
= 0;
144 priv
->do_fw_download
= 0;
146 /* Determine capabilities from the firmware version */
147 switch (priv
->firmware_type
) {
148 case FIRMWARE_TYPE_AGERE
:
149 /* Lucent Wavelan IEEE, Lucent Orinoco, Cabletron RoamAbout,
150 ELSA, Melco, HP, IBM, Dell 1150, Compaq 110/210 */
152 snprintf(fw_name
, fw_name_len
, "Lucent/Agere %d.%02d",
153 sta_id
.major
, sta_id
.minor
);
155 firmver
= ((unsigned long)sta_id
.major
<< 16) | sta_id
.minor
;
157 priv
->has_ibss
= (firmver
>= 0x60006);
158 priv
->has_wep
= (firmver
>= 0x40020);
159 priv
->has_big_wep
= 1;
160 priv
->has_mwo
= (firmver
>= 0x60000);
161 priv
->has_pm
= (firmver
>= 0x40020); /* Don't work in 7.52 ? */
163 priv
->has_hostscan
= (firmver
>= 0x8000a);
164 priv
->do_fw_download
= 1;
165 priv
->broken_monitor
= (firmver
>= 0x80000);
166 priv
->has_alt_txcntl
= (firmver
>= 0x90000); /* All 9.x ? */
167 priv
->has_ext_scan
= (firmver
>= 0x90000); /* All 9.x ? */
168 priv
->has_wpa
= (firmver
>= 0x9002a);
169 /* Tested with Agere firmware :
170 * 1.16 ; 4.08 ; 4.52 ; 6.04 ; 6.16 ; 7.28 => Jean II
171 * Tested CableTron firmware : 4.32 => Anton */
173 case FIRMWARE_TYPE_SYMBOL
:
174 /* Symbol , 3Com AirConnect, Intel, Ericsson WLAN */
175 /* Intel MAC : 00:02:B3:* */
176 /* 3Com MAC : 00:50:DA:* */
177 memset(tmp
, 0, sizeof(tmp
));
178 /* Get the Symbol firmware version */
179 err
= hw
->ops
->read_ltv(hw
, USER_BAP
,
180 HERMES_RID_SECONDARYVERSION_SYMBOL
,
181 SYMBOL_MAX_VER_LEN
, NULL
, &tmp
);
183 dev_warn(dev
, "Error %d reading Symbol firmware info. "
184 "Wildly guessing capabilities...\n", err
);
188 /* The firmware revision is a string, the format is
189 * something like : "V2.20-01".
190 * Quick and dirty parsing... - Jean II
192 firmver
= ((tmp
[1] - '0') << 16)
193 | ((tmp
[3] - '0') << 12)
194 | ((tmp
[4] - '0') << 8)
195 | ((tmp
[6] - '0') << 4)
198 tmp
[SYMBOL_MAX_VER_LEN
] = '\0';
202 snprintf(fw_name
, fw_name_len
, "Symbol %s", tmp
);
204 priv
->has_ibss
= (firmver
>= 0x20000);
205 priv
->has_wep
= (firmver
>= 0x15012);
206 priv
->has_big_wep
= (firmver
>= 0x20000);
207 priv
->has_pm
= (firmver
>= 0x20000 && firmver
< 0x22000) ||
208 (firmver
>= 0x29000 && firmver
< 0x30000) ||
210 priv
->has_preamble
= (firmver
>= 0x20000);
213 /* Symbol firmware is found on various cards, but
214 * there has been no attempt to check firmware
215 * download on non-spectrum_cs based cards.
217 * Given that the Agere firmware download works
218 * differently, we should avoid doing a firmware
219 * download with the Symbol algorithm on non-spectrum
222 * For now we can identify a spectrum_cs based card
223 * because it has a firmware reset function.
225 priv
->do_fw_download
= (priv
->stop_fw
!= NULL
);
227 priv
->broken_disableport
= (firmver
== 0x25013) ||
228 (firmver
>= 0x30000 && firmver
<= 0x31000);
229 priv
->has_hostscan
= (firmver
>= 0x31001) ||
230 (firmver
>= 0x29057 && firmver
< 0x30000);
231 /* Tested with Intel firmware : 0x20015 => Jean II */
232 /* Tested with 3Com firmware : 0x15012 & 0x22001 => Jean II */
234 case FIRMWARE_TYPE_INTERSIL
:
235 /* D-Link, Linksys, Adtron, ZoomAir, and many others...
236 * Samsung, Compaq 100/200 and Proxim are slightly
237 * different and less well tested */
238 /* D-Link MAC : 00:40:05:* */
239 /* Addtron MAC : 00:90:D1:* */
241 snprintf(fw_name
, fw_name_len
, "Intersil %d.%d.%d",
242 sta_id
.major
, sta_id
.minor
, sta_id
.variant
);
244 firmver
= ((unsigned long)sta_id
.major
<< 16) |
245 ((unsigned long)sta_id
.minor
<< 8) | sta_id
.variant
;
247 priv
->has_ibss
= (firmver
>= 0x000700);
248 priv
->has_big_wep
= priv
->has_wep
= (firmver
>= 0x000800);
249 priv
->has_pm
= (firmver
>= 0x000700);
250 priv
->has_hostscan
= (firmver
>= 0x010301);
252 if (firmver
>= 0x000800)
255 dev_notice(dev
, "Intersil firmware earlier than v0.8.x"
256 " - several features not supported\n");
262 dev_info(dev
, "Firmware determined as %s\n", fw_name
);
264 #ifndef CONFIG_HERMES_PRISM
265 if (priv
->firmware_type
== FIRMWARE_TYPE_INTERSIL
) {
266 dev_err(dev
, "Support for Prism chipset is not enabled\n");
274 /* Read settings from EEPROM into our private structure.
275 * MAC address gets dropped into callers buffer
276 * Can be called before netdev registration.
278 int orinoco_hw_read_card_settings(struct orinoco_private
*priv
, u8
*dev_addr
)
280 struct device
*dev
= priv
->dev
;
281 struct hermes_idstring nickbuf
;
282 hermes_t
*hw
= &priv
->hw
;
287 /* Get the MAC address */
288 err
= hw
->ops
->read_ltv(hw
, USER_BAP
, HERMES_RID_CNFOWNMACADDR
,
289 ETH_ALEN
, NULL
, dev_addr
);
291 dev_warn(dev
, "Failed to read MAC address!\n");
295 dev_dbg(dev
, "MAC address %pM\n", dev_addr
);
297 /* Get the station name */
298 err
= hw
->ops
->read_ltv(hw
, USER_BAP
, HERMES_RID_CNFOWNNAME
,
299 sizeof(nickbuf
), &reclen
, &nickbuf
);
301 dev_err(dev
, "failed to read station name\n");
305 len
= min(IW_ESSID_MAX_SIZE
, (int)le16_to_cpu(nickbuf
.len
));
307 len
= min(IW_ESSID_MAX_SIZE
, 2 * reclen
);
308 memcpy(priv
->nick
, &nickbuf
.val
, len
);
309 priv
->nick
[len
] = '\0';
311 dev_dbg(dev
, "Station name \"%s\"\n", priv
->nick
);
313 /* Get allowed channels */
314 err
= hermes_read_wordrec(hw
, USER_BAP
, HERMES_RID_CHANNELLIST
,
315 &priv
->channel_mask
);
317 dev_err(dev
, "Failed to read channel list!\n");
321 /* Get initial AP density */
322 err
= hermes_read_wordrec(hw
, USER_BAP
, HERMES_RID_CNFSYSTEMSCALE
,
324 if (err
|| priv
->ap_density
< 1 || priv
->ap_density
> 3)
325 priv
->has_sensitivity
= 0;
327 /* Get initial RTS threshold */
328 err
= hermes_read_wordrec(hw
, USER_BAP
, HERMES_RID_CNFRTSTHRESHOLD
,
331 dev_err(dev
, "Failed to read RTS threshold!\n");
335 /* Get initial fragmentation settings */
337 err
= hermes_read_wordrec(hw
, USER_BAP
,
338 HERMES_RID_CNFMWOROBUST_AGERE
,
341 err
= hermes_read_wordrec(hw
, USER_BAP
,
342 HERMES_RID_CNFFRAGMENTATIONTHRESHOLD
,
345 dev_err(dev
, "Failed to read fragmentation settings!\n");
349 /* Power management setup */
353 err
= hermes_read_wordrec(hw
, USER_BAP
,
354 HERMES_RID_CNFMAXSLEEPDURATION
,
357 dev_err(dev
, "Failed to read power management "
361 err
= hermes_read_wordrec(hw
, USER_BAP
,
362 HERMES_RID_CNFPMHOLDOVERDURATION
,
365 dev_err(dev
, "Failed to read power management "
372 if (priv
->has_preamble
) {
373 err
= hermes_read_wordrec(hw
, USER_BAP
,
374 HERMES_RID_CNFPREAMBLE_SYMBOL
,
377 dev_err(dev
, "Failed to read preamble setup\n");
383 err
= hermes_read_wordrec(hw
, USER_BAP
, HERMES_RID_SHORTRETRYLIMIT
,
384 &priv
->short_retry_limit
);
386 dev_err(dev
, "Failed to read short retry limit\n");
390 err
= hermes_read_wordrec(hw
, USER_BAP
, HERMES_RID_LONGRETRYLIMIT
,
391 &priv
->long_retry_limit
);
393 dev_err(dev
, "Failed to read long retry limit\n");
397 err
= hermes_read_wordrec(hw
, USER_BAP
, HERMES_RID_MAXTRANSMITLIFETIME
,
398 &priv
->retry_lifetime
);
400 dev_err(dev
, "Failed to read max retry lifetime\n");
408 /* Can be called before netdev registration */
409 int orinoco_hw_allocate_fid(struct orinoco_private
*priv
)
411 struct device
*dev
= priv
->dev
;
412 struct hermes
*hw
= &priv
->hw
;
415 err
= hw
->ops
->allocate(hw
, priv
->nicbuf_size
, &priv
->txfid
);
416 if (err
== -EIO
&& priv
->nicbuf_size
> TX_NICBUF_SIZE_BUG
) {
417 priv
->nicbuf_size
= TX_NICBUF_SIZE_BUG
;
418 err
= hw
->ops
->allocate(hw
, priv
->nicbuf_size
, &priv
->txfid
);
420 dev_warn(dev
, "Firmware ALLOC bug detected "
421 "(old Symbol firmware?). Work around %s\n",
422 err
? "failed!" : "ok.");
428 int orinoco_get_bitratemode(int bitrate
, int automatic
)
433 if ((bitrate
!= 10) && (bitrate
!= 20) &&
434 (bitrate
!= 55) && (bitrate
!= 110))
437 for (i
= 0; i
< BITRATE_TABLE_SIZE
; i
++) {
438 if ((bitrate_table
[i
].bitrate
== bitrate
) &&
439 (bitrate_table
[i
].automatic
== automatic
)) {
447 void orinoco_get_ratemode_cfg(int ratemode
, int *bitrate
, int *automatic
)
449 BUG_ON((ratemode
< 0) || (ratemode
>= BITRATE_TABLE_SIZE
));
451 *bitrate
= bitrate_table
[ratemode
].bitrate
* 100000;
452 *automatic
= bitrate_table
[ratemode
].automatic
;
455 int orinoco_hw_program_rids(struct orinoco_private
*priv
)
457 struct net_device
*dev
= priv
->ndev
;
458 struct wireless_dev
*wdev
= netdev_priv(dev
);
459 hermes_t
*hw
= &priv
->hw
;
461 struct hermes_idstring idbuf
;
463 /* Set the MAC address */
464 err
= hw
->ops
->write_ltv(hw
, USER_BAP
, HERMES_RID_CNFOWNMACADDR
,
465 HERMES_BYTES_TO_RECLEN(ETH_ALEN
),
468 printk(KERN_ERR
"%s: Error %d setting MAC address\n",
473 /* Set up the link mode */
474 err
= hermes_write_wordrec(hw
, USER_BAP
, HERMES_RID_CNFPORTTYPE
,
477 printk(KERN_ERR
"%s: Error %d setting port type\n",
481 /* Set the channel/frequency */
482 if (priv
->channel
!= 0 && priv
->iw_mode
!= NL80211_IFTYPE_STATION
) {
483 err
= hermes_write_wordrec(hw
, USER_BAP
,
484 HERMES_RID_CNFOWNCHANNEL
,
487 printk(KERN_ERR
"%s: Error %d setting channel %d\n",
488 dev
->name
, err
, priv
->channel
);
493 if (priv
->has_ibss
) {
496 if ((strlen(priv
->desired_essid
) == 0) && (priv
->createibss
)) {
497 printk(KERN_WARNING
"%s: This firmware requires an "
498 "ESSID in IBSS-Ad-Hoc mode.\n", dev
->name
);
499 /* With wvlan_cs, in this case, we would crash.
500 * hopefully, this driver will behave better...
504 createibss
= priv
->createibss
;
507 err
= hermes_write_wordrec(hw
, USER_BAP
,
508 HERMES_RID_CNFCREATEIBSS
,
511 printk(KERN_ERR
"%s: Error %d setting CREATEIBSS\n",
517 /* Set the desired BSSID */
518 err
= __orinoco_hw_set_wap(priv
);
520 printk(KERN_ERR
"%s: Error %d setting AP address\n",
525 /* Set the desired ESSID */
526 idbuf
.len
= cpu_to_le16(strlen(priv
->desired_essid
));
527 memcpy(&idbuf
.val
, priv
->desired_essid
, sizeof(idbuf
.val
));
528 /* WinXP wants partner to configure OWNSSID even in IBSS mode. (jimc) */
529 err
= hw
->ops
->write_ltv(hw
, USER_BAP
, HERMES_RID_CNFOWNSSID
,
530 HERMES_BYTES_TO_RECLEN(strlen(priv
->desired_essid
)+2),
533 printk(KERN_ERR
"%s: Error %d setting OWNSSID\n",
537 err
= hw
->ops
->write_ltv(hw
, USER_BAP
, HERMES_RID_CNFDESIREDSSID
,
538 HERMES_BYTES_TO_RECLEN(strlen(priv
->desired_essid
)+2),
541 printk(KERN_ERR
"%s: Error %d setting DESIREDSSID\n",
546 /* Set the station name */
547 idbuf
.len
= cpu_to_le16(strlen(priv
->nick
));
548 memcpy(&idbuf
.val
, priv
->nick
, sizeof(idbuf
.val
));
549 err
= hw
->ops
->write_ltv(hw
, USER_BAP
, HERMES_RID_CNFOWNNAME
,
550 HERMES_BYTES_TO_RECLEN(strlen(priv
->nick
)+2),
553 printk(KERN_ERR
"%s: Error %d setting nickname\n",
559 if (priv
->has_sensitivity
) {
560 err
= hermes_write_wordrec(hw
, USER_BAP
,
561 HERMES_RID_CNFSYSTEMSCALE
,
564 printk(KERN_WARNING
"%s: Error %d setting SYSTEMSCALE. "
565 "Disabling sensitivity control\n",
568 priv
->has_sensitivity
= 0;
572 /* Set RTS threshold */
573 err
= hermes_write_wordrec(hw
, USER_BAP
, HERMES_RID_CNFRTSTHRESHOLD
,
576 printk(KERN_ERR
"%s: Error %d setting RTS threshold\n",
581 /* Set fragmentation threshold or MWO robustness */
583 err
= hermes_write_wordrec(hw
, USER_BAP
,
584 HERMES_RID_CNFMWOROBUST_AGERE
,
587 err
= hermes_write_wordrec(hw
, USER_BAP
,
588 HERMES_RID_CNFFRAGMENTATIONTHRESHOLD
,
591 printk(KERN_ERR
"%s: Error %d setting fragmentation\n",
597 err
= __orinoco_hw_set_bitrate(priv
);
599 printk(KERN_ERR
"%s: Error %d setting bitrate\n",
604 /* Set power management */
606 err
= hermes_write_wordrec(hw
, USER_BAP
,
607 HERMES_RID_CNFPMENABLED
,
610 printk(KERN_ERR
"%s: Error %d setting up PM\n",
615 err
= hermes_write_wordrec(hw
, USER_BAP
,
616 HERMES_RID_CNFMULTICASTRECEIVE
,
619 printk(KERN_ERR
"%s: Error %d setting up PM\n",
623 err
= hermes_write_wordrec(hw
, USER_BAP
,
624 HERMES_RID_CNFMAXSLEEPDURATION
,
627 printk(KERN_ERR
"%s: Error %d setting up PM\n",
631 err
= hermes_write_wordrec(hw
, USER_BAP
,
632 HERMES_RID_CNFPMHOLDOVERDURATION
,
635 printk(KERN_ERR
"%s: Error %d setting up PM\n",
641 /* Set preamble - only for Symbol so far... */
642 if (priv
->has_preamble
) {
643 err
= hermes_write_wordrec(hw
, USER_BAP
,
644 HERMES_RID_CNFPREAMBLE_SYMBOL
,
647 printk(KERN_ERR
"%s: Error %d setting preamble\n",
653 /* Set up encryption */
654 if (priv
->has_wep
|| priv
->has_wpa
) {
655 err
= __orinoco_hw_setup_enc(priv
);
657 printk(KERN_ERR
"%s: Error %d activating encryption\n",
663 if (priv
->iw_mode
== NL80211_IFTYPE_MONITOR
) {
664 /* Enable monitor mode */
665 dev
->type
= ARPHRD_IEEE80211
;
666 err
= hw
->ops
->cmd_wait(hw
, HERMES_CMD_TEST
|
667 HERMES_TEST_MONITOR
, 0, NULL
);
669 /* Disable monitor mode */
670 dev
->type
= ARPHRD_ETHER
;
671 err
= hw
->ops
->cmd_wait(hw
, HERMES_CMD_TEST
|
672 HERMES_TEST_STOP
, 0, NULL
);
677 /* Reset promiscuity / multicast*/
678 priv
->promiscuous
= 0;
681 /* Record mode change */
682 wdev
->iftype
= priv
->iw_mode
;
687 /* Get tsc from the firmware */
688 int orinoco_hw_get_tkip_iv(struct orinoco_private
*priv
, int key
, u8
*tsc
)
690 hermes_t
*hw
= &priv
->hw
;
692 u8 tsc_arr
[4][ORINOCO_SEQ_LEN
];
694 if ((key
< 0) || (key
>= 4))
697 err
= hw
->ops
->read_ltv(hw
, USER_BAP
, HERMES_RID_CURRENT_TKIP_IV
,
698 sizeof(tsc_arr
), NULL
, &tsc_arr
);
700 memcpy(tsc
, &tsc_arr
[key
][0], sizeof(tsc_arr
[0]));
705 int __orinoco_hw_set_bitrate(struct orinoco_private
*priv
)
707 hermes_t
*hw
= &priv
->hw
;
708 int ratemode
= priv
->bitratemode
;
711 if (ratemode
>= BITRATE_TABLE_SIZE
) {
712 printk(KERN_ERR
"%s: BUG: Invalid bitrate mode %d\n",
713 priv
->ndev
->name
, ratemode
);
717 switch (priv
->firmware_type
) {
718 case FIRMWARE_TYPE_AGERE
:
719 err
= hermes_write_wordrec(hw
, USER_BAP
,
720 HERMES_RID_CNFTXRATECONTROL
,
721 bitrate_table
[ratemode
].agere_txratectrl
);
723 case FIRMWARE_TYPE_INTERSIL
:
724 case FIRMWARE_TYPE_SYMBOL
:
725 err
= hermes_write_wordrec(hw
, USER_BAP
,
726 HERMES_RID_CNFTXRATECONTROL
,
727 bitrate_table
[ratemode
].intersil_txratectrl
);
736 int orinoco_hw_get_act_bitrate(struct orinoco_private
*priv
, int *bitrate
)
738 hermes_t
*hw
= &priv
->hw
;
743 err
= hermes_read_wordrec(hw
, USER_BAP
,
744 HERMES_RID_CURRENTTXRATE
, &val
);
748 switch (priv
->firmware_type
) {
749 case FIRMWARE_TYPE_AGERE
: /* Lucent style rate */
750 /* Note : in Lucent firmware, the return value of
751 * HERMES_RID_CURRENTTXRATE is the bitrate in Mb/s,
752 * and therefore is totally different from the
753 * encoding of HERMES_RID_CNFTXRATECONTROL.
754 * Don't forget that 6Mb/s is really 5.5Mb/s */
758 *bitrate
= val
* 1000000;
760 case FIRMWARE_TYPE_INTERSIL
: /* Intersil style rate */
761 case FIRMWARE_TYPE_SYMBOL
: /* Symbol style rate */
762 for (i
= 0; i
< BITRATE_TABLE_SIZE
; i
++)
763 if (bitrate_table
[i
].intersil_txratectrl
== val
)
766 if (i
>= BITRATE_TABLE_SIZE
)
767 printk(KERN_INFO
"%s: Unable to determine current bitrate (0x%04hx)\n",
768 priv
->ndev
->name
, val
);
770 *bitrate
= bitrate_table
[i
].bitrate
* 100000;
779 /* Set fixed AP address */
780 int __orinoco_hw_set_wap(struct orinoco_private
*priv
)
784 hermes_t
*hw
= &priv
->hw
;
786 switch (priv
->firmware_type
) {
787 case FIRMWARE_TYPE_AGERE
:
790 case FIRMWARE_TYPE_INTERSIL
:
791 if (priv
->bssid_fixed
)
796 err
= hermes_write_wordrec(hw
, USER_BAP
,
797 HERMES_RID_CNFROAMINGMODE
,
800 case FIRMWARE_TYPE_SYMBOL
:
801 err
= HERMES_WRITE_RECORD(hw
, USER_BAP
,
802 HERMES_RID_CNFMANDATORYBSSID_SYMBOL
,
803 &priv
->desired_bssid
);
809 /* Change the WEP keys and/or the current keys. Can be called
810 * either from __orinoco_hw_setup_enc() or directly from
811 * orinoco_ioctl_setiwencode(). In the later case the association
812 * with the AP is not broken (if the firmware can handle it),
813 * which is needed for 802.1x implementations. */
814 int __orinoco_hw_setup_wepkeys(struct orinoco_private
*priv
)
816 hermes_t
*hw
= &priv
->hw
;
820 switch (priv
->firmware_type
) {
821 case FIRMWARE_TYPE_AGERE
:
823 struct orinoco_key keys
[ORINOCO_MAX_KEYS
];
825 memset(&keys
, 0, sizeof(keys
));
826 for (i
= 0; i
< ORINOCO_MAX_KEYS
; i
++) {
827 int len
= min(priv
->keys
[i
].key_len
,
828 ORINOCO_MAX_KEY_SIZE
);
829 memcpy(&keys
[i
].data
, priv
->keys
[i
].key
, len
);
830 if (len
> SMALL_KEY_SIZE
)
831 keys
[i
].len
= cpu_to_le16(LARGE_KEY_SIZE
);
833 keys
[i
].len
= cpu_to_le16(SMALL_KEY_SIZE
);
835 keys
[i
].len
= cpu_to_le16(0);
838 err
= HERMES_WRITE_RECORD(hw
, USER_BAP
,
839 HERMES_RID_CNFWEPKEYS_AGERE
,
843 err
= hermes_write_wordrec(hw
, USER_BAP
,
844 HERMES_RID_CNFTXKEY_AGERE
,
850 case FIRMWARE_TYPE_INTERSIL
:
851 case FIRMWARE_TYPE_SYMBOL
:
855 keylen
= priv
->keys
[priv
->tx_key
].key_len
;
857 if (keylen
> LARGE_KEY_SIZE
) {
858 printk(KERN_ERR
"%s: BUG: Key %d has oversize length %d.\n",
859 priv
->ndev
->name
, priv
->tx_key
, keylen
);
861 } else if (keylen
> SMALL_KEY_SIZE
)
862 keylen
= LARGE_KEY_SIZE
;
864 keylen
= SMALL_KEY_SIZE
;
868 /* Write all 4 keys */
869 for (i
= 0; i
< ORINOCO_MAX_KEYS
; i
++) {
870 u8 key
[LARGE_KEY_SIZE
] = { 0 };
872 memcpy(key
, priv
->keys
[i
].key
,
873 priv
->keys
[i
].key_len
);
875 err
= hw
->ops
->write_ltv(hw
, USER_BAP
,
876 HERMES_RID_CNFDEFAULTKEY0
+ i
,
877 HERMES_BYTES_TO_RECLEN(keylen
),
883 /* Write the index of the key used in transmission */
884 err
= hermes_write_wordrec(hw
, USER_BAP
,
885 HERMES_RID_CNFWEPDEFAULTKEYID
,
896 int __orinoco_hw_setup_enc(struct orinoco_private
*priv
)
898 hermes_t
*hw
= &priv
->hw
;
905 if (priv
->encode_alg
== ORINOCO_ALG_WEP
)
906 __orinoco_hw_setup_wepkeys(priv
);
908 if (priv
->wep_restrict
)
909 auth_flag
= HERMES_AUTH_SHARED_KEY
;
911 auth_flag
= HERMES_AUTH_OPEN
;
913 if (priv
->wpa_enabled
)
915 else if (priv
->encode_alg
== ORINOCO_ALG_WEP
)
920 switch (priv
->firmware_type
) {
921 case FIRMWARE_TYPE_AGERE
: /* Agere style WEP */
922 if (priv
->encode_alg
== ORINOCO_ALG_WEP
) {
923 /* Enable the shared-key authentication. */
924 err
= hermes_write_wordrec(hw
, USER_BAP
,
925 HERMES_RID_CNFAUTHENTICATION_AGERE
,
928 err
= hermes_write_wordrec(hw
, USER_BAP
,
929 HERMES_RID_CNFWEPENABLED_AGERE
,
935 /* Set WPA key management */
936 err
= hermes_write_wordrec(hw
, USER_BAP
,
937 HERMES_RID_CNFSETWPAAUTHMGMTSUITE_AGERE
,
945 case FIRMWARE_TYPE_INTERSIL
: /* Intersil style WEP */
946 case FIRMWARE_TYPE_SYMBOL
: /* Symbol style WEP */
947 if (priv
->encode_alg
== ORINOCO_ALG_WEP
) {
948 if (priv
->wep_restrict
||
949 (priv
->firmware_type
== FIRMWARE_TYPE_SYMBOL
))
950 master_wep_flag
= HERMES_WEP_PRIVACY_INVOKED
|
951 HERMES_WEP_EXCL_UNENCRYPTED
;
953 master_wep_flag
= HERMES_WEP_PRIVACY_INVOKED
;
955 err
= hermes_write_wordrec(hw
, USER_BAP
,
956 HERMES_RID_CNFAUTHENTICATION
,
963 if (priv
->iw_mode
== NL80211_IFTYPE_MONITOR
)
964 master_wep_flag
|= HERMES_WEP_HOST_DECRYPT
;
966 /* Master WEP setting : on/off */
967 err
= hermes_write_wordrec(hw
, USER_BAP
,
968 HERMES_RID_CNFWEPFLAGS_INTERSIL
,
979 /* key must be 32 bytes, including the tx and rx MIC keys.
980 * rsc must be NULL or up to 8 bytes
981 * tsc must be NULL or up to 8 bytes
983 int __orinoco_hw_set_tkip_key(struct orinoco_private
*priv
, int key_idx
,
984 int set_tx
, u8
*key
, u8
*rsc
, size_t rsc_len
,
985 u8
*tsc
, size_t tsc_len
)
989 u8 rsc
[ORINOCO_SEQ_LEN
];
991 u8 tx_mic
[MIC_KEYLEN
];
992 u8 rx_mic
[MIC_KEYLEN
];
993 u8 tsc
[ORINOCO_SEQ_LEN
];
995 hermes_t
*hw
= &priv
->hw
;
1006 buf
.idx
= cpu_to_le16(key_idx
);
1007 memcpy(buf
.key
, key
,
1008 sizeof(buf
.key
) + sizeof(buf
.tx_mic
) + sizeof(buf
.rx_mic
));
1010 if (rsc_len
> sizeof(buf
.rsc
))
1011 rsc_len
= sizeof(buf
.rsc
);
1013 if (tsc_len
> sizeof(buf
.tsc
))
1014 tsc_len
= sizeof(buf
.tsc
);
1016 memset(buf
.rsc
, 0, sizeof(buf
.rsc
));
1017 memset(buf
.tsc
, 0, sizeof(buf
.tsc
));
1020 memcpy(buf
.rsc
, rsc
, rsc_len
);
1023 memcpy(buf
.tsc
, tsc
, tsc_len
);
1027 /* Wait upto 100ms for tx queue to empty */
1028 for (k
= 100; k
> 0; k
--) {
1030 ret
= hermes_read_wordrec(hw
, USER_BAP
, HERMES_RID_TXQUEUEEMPTY
,
1032 if (ret
|| !xmitting
)
1039 err
= HERMES_WRITE_RECORD(hw
, USER_BAP
,
1040 HERMES_RID_CNFADDDEFAULTTKIPKEY_AGERE
,
1043 return ret
? ret
: err
;
1046 int orinoco_clear_tkip_key(struct orinoco_private
*priv
, int key_idx
)
1048 hermes_t
*hw
= &priv
->hw
;
1051 err
= hermes_write_wordrec(hw
, USER_BAP
,
1052 HERMES_RID_CNFREMDEFAULTTKIPKEY_AGERE
,
1055 printk(KERN_WARNING
"%s: Error %d clearing TKIP key %d\n",
1056 priv
->ndev
->name
, err
, key_idx
);
1060 int __orinoco_hw_set_multicast_list(struct orinoco_private
*priv
,
1061 struct net_device
*dev
,
1062 int mc_count
, int promisc
)
1064 hermes_t
*hw
= &priv
->hw
;
1067 if (promisc
!= priv
->promiscuous
) {
1068 err
= hermes_write_wordrec(hw
, USER_BAP
,
1069 HERMES_RID_CNFPROMISCUOUSMODE
,
1072 printk(KERN_ERR
"%s: Error %d setting PROMISCUOUSMODE to 1.\n",
1073 priv
->ndev
->name
, err
);
1075 priv
->promiscuous
= promisc
;
1078 /* If we're not in promiscuous mode, then we need to set the
1079 * group address if either we want to multicast, or if we were
1080 * multicasting and want to stop */
1081 if (!promisc
&& (mc_count
|| priv
->mc_count
)) {
1082 struct netdev_hw_addr
*ha
;
1083 struct hermes_multicast mclist
;
1086 netdev_for_each_mc_addr(ha
, dev
) {
1089 memcpy(mclist
.addr
[i
++], ha
->addr
, ETH_ALEN
);
1092 err
= hw
->ops
->write_ltv(hw
, USER_BAP
,
1093 HERMES_RID_CNFGROUPADDRESSES
,
1094 HERMES_BYTES_TO_RECLEN(mc_count
* ETH_ALEN
),
1097 printk(KERN_ERR
"%s: Error %d setting multicast list.\n",
1098 priv
->ndev
->name
, err
);
1100 priv
->mc_count
= mc_count
;
1105 /* Return : < 0 -> error code ; >= 0 -> length */
1106 int orinoco_hw_get_essid(struct orinoco_private
*priv
, int *active
,
1107 char buf
[IW_ESSID_MAX_SIZE
+1])
1109 hermes_t
*hw
= &priv
->hw
;
1111 struct hermes_idstring essidbuf
;
1112 char *p
= (char *)(&essidbuf
.val
);
1114 unsigned long flags
;
1116 if (orinoco_lock(priv
, &flags
) != 0)
1119 if (strlen(priv
->desired_essid
) > 0) {
1120 /* We read the desired SSID from the hardware rather
1121 than from priv->desired_essid, just in case the
1122 firmware is allowed to change it on us. I'm not
1124 /* My guess is that the OWNSSID should always be whatever
1125 * we set to the card, whereas CURRENT_SSID is the one that
1126 * may change... - Jean II */
1131 rid
= (priv
->port_type
== 3) ? HERMES_RID_CNFOWNSSID
:
1132 HERMES_RID_CNFDESIREDSSID
;
1134 err
= hw
->ops
->read_ltv(hw
, USER_BAP
, rid
, sizeof(essidbuf
),
1141 err
= hw
->ops
->read_ltv(hw
, USER_BAP
, HERMES_RID_CURRENTSSID
,
1142 sizeof(essidbuf
), NULL
, &essidbuf
);
1147 len
= le16_to_cpu(essidbuf
.len
);
1148 BUG_ON(len
> IW_ESSID_MAX_SIZE
);
1150 memset(buf
, 0, IW_ESSID_MAX_SIZE
);
1151 memcpy(buf
, p
, len
);
1155 orinoco_unlock(priv
, &flags
);
1160 int orinoco_hw_get_freq(struct orinoco_private
*priv
)
1162 hermes_t
*hw
= &priv
->hw
;
1166 unsigned long flags
;
1168 if (orinoco_lock(priv
, &flags
) != 0)
1171 err
= hermes_read_wordrec(hw
, USER_BAP
, HERMES_RID_CURRENTCHANNEL
,
1176 /* Intersil firmware 1.3.5 returns 0 when the interface is down */
1182 if ((channel
< 1) || (channel
> NUM_CHANNELS
)) {
1183 printk(KERN_WARNING
"%s: Channel out of range (%d)!\n",
1184 priv
->ndev
->name
, channel
);
1189 freq
= ieee80211_dsss_chan_to_freq(channel
);
1192 orinoco_unlock(priv
, &flags
);
1196 return err
? err
: freq
;
1199 int orinoco_hw_get_bitratelist(struct orinoco_private
*priv
,
1200 int *numrates
, s32
*rates
, int max
)
1202 hermes_t
*hw
= &priv
->hw
;
1203 struct hermes_idstring list
;
1204 unsigned char *p
= (unsigned char *)&list
.val
;
1208 unsigned long flags
;
1210 if (orinoco_lock(priv
, &flags
) != 0)
1213 err
= hw
->ops
->read_ltv(hw
, USER_BAP
, HERMES_RID_SUPPORTEDDATARATES
,
1214 sizeof(list
), NULL
, &list
);
1215 orinoco_unlock(priv
, &flags
);
1220 num
= le16_to_cpu(list
.len
);
1222 num
= min(num
, max
);
1224 for (i
= 0; i
< num
; i
++)
1225 rates
[i
] = (p
[i
] & 0x7f) * 500000; /* convert to bps */
1230 int orinoco_hw_trigger_scan(struct orinoco_private
*priv
,
1231 const struct cfg80211_ssid
*ssid
)
1233 struct net_device
*dev
= priv
->ndev
;
1234 hermes_t
*hw
= &priv
->hw
;
1235 unsigned long flags
;
1238 if (orinoco_lock(priv
, &flags
) != 0)
1241 /* Scanning with port 0 disabled would fail */
1242 if (!netif_running(dev
)) {
1247 /* In monitor mode, the scan results are always empty.
1248 * Probe responses are passed to the driver as received
1249 * frames and could be processed in software. */
1250 if (priv
->iw_mode
== NL80211_IFTYPE_MONITOR
) {
1255 if (priv
->has_hostscan
) {
1256 switch (priv
->firmware_type
) {
1257 case FIRMWARE_TYPE_SYMBOL
:
1258 err
= hermes_write_wordrec(hw
, USER_BAP
,
1259 HERMES_RID_CNFHOSTSCAN_SYMBOL
,
1260 HERMES_HOSTSCAN_SYMBOL_ONCE
|
1261 HERMES_HOSTSCAN_SYMBOL_BCAST
);
1263 case FIRMWARE_TYPE_INTERSIL
: {
1266 req
[0] = cpu_to_le16(0x3fff); /* All channels */
1267 req
[1] = cpu_to_le16(0x0001); /* rate 1 Mbps */
1268 req
[2] = 0; /* Any ESSID */
1269 err
= HERMES_WRITE_RECORD(hw
, USER_BAP
,
1270 HERMES_RID_CNFHOSTSCAN
, &req
);
1273 case FIRMWARE_TYPE_AGERE
:
1274 if (ssid
->ssid_len
> 0) {
1275 struct hermes_idstring idbuf
;
1276 size_t len
= ssid
->ssid_len
;
1278 idbuf
.len
= cpu_to_le16(len
);
1279 memcpy(idbuf
.val
, ssid
->ssid
, len
);
1281 err
= hw
->ops
->write_ltv(hw
, USER_BAP
,
1282 HERMES_RID_CNFSCANSSID_AGERE
,
1283 HERMES_BYTES_TO_RECLEN(len
+ 2),
1286 err
= hermes_write_wordrec(hw
, USER_BAP
,
1287 HERMES_RID_CNFSCANSSID_AGERE
,
1292 if (priv
->has_ext_scan
) {
1293 err
= hermes_write_wordrec(hw
, USER_BAP
,
1294 HERMES_RID_CNFSCANCHANNELS2GHZ
,
1299 err
= hermes_inquire(hw
,
1300 HERMES_INQ_CHANNELINFO
);
1302 err
= hermes_inquire(hw
, HERMES_INQ_SCAN
);
1307 err
= hermes_inquire(hw
, HERMES_INQ_SCAN
);
1310 orinoco_unlock(priv
, &flags
);
1315 /* Disassociate from node with BSSID addr */
1316 int orinoco_hw_disassociate(struct orinoco_private
*priv
,
1317 u8
*addr
, u16 reason_code
)
1319 hermes_t
*hw
= &priv
->hw
;
1327 /* Currently only supported by WPA enabled Agere fw */
1331 memcpy(buf
.addr
, addr
, ETH_ALEN
);
1332 buf
.reason_code
= cpu_to_le16(reason_code
);
1333 err
= HERMES_WRITE_RECORD(hw
, USER_BAP
,
1334 HERMES_RID_CNFDISASSOCIATE
,
1339 int orinoco_hw_get_current_bssid(struct orinoco_private
*priv
,
1342 hermes_t
*hw
= &priv
->hw
;
1345 err
= hw
->ops
->read_ltv(hw
, USER_BAP
, HERMES_RID_CURRENTBSSID
,
1346 ETH_ALEN
, NULL
, addr
);