2 * Copyright (c) 1996, 2003 VIA Networking Technologies, Inc.
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 2 of the License, or
8 * (at your option) any later version.
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
15 * You should have received a copy of the GNU General Public License along
16 * with this program; if not, write to the Free Software Foundation, Inc.,
17 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
22 * Purpose: Handles the 802.11 management functions
29 * nsMgrObjectInitial - Initialize Management Objet data structure
30 * vMgrObjectReset - Reset Management Objet data structure
31 * vMgrAssocBeginSta - Start associate function
32 * vMgrReAssocBeginSta - Start reassociate function
33 * vMgrDisassocBeginSta - Start disassociate function
34 * s_vMgrRxAssocRequest - Handle Rcv associate_request
35 * s_vMgrRxAssocResponse - Handle Rcv associate_response
36 * vMrgAuthenBeginSta - Start authentication function
37 * vMgrDeAuthenDeginSta - Start deauthentication function
38 * s_vMgrRxAuthentication - Handle Rcv authentication
39 * s_vMgrRxAuthenSequence_1 - Handle Rcv authentication sequence 1
40 * s_vMgrRxAuthenSequence_2 - Handle Rcv authentication sequence 2
41 * s_vMgrRxAuthenSequence_3 - Handle Rcv authentication sequence 3
42 * s_vMgrRxAuthenSequence_4 - Handle Rcv authentication sequence 4
43 * s_vMgrRxDisassociation - Handle Rcv disassociation
44 * s_vMgrRxBeacon - Handle Rcv Beacon
45 * vMgrCreateOwnIBSS - Create ad_hoc IBSS or AP BSS
46 * vMgrJoinBSSBegin - Join BSS function
47 * s_vMgrSynchBSS - Synch & adopt BSS parameters
48 * s_MgrMakeBeacon - Create Baecon frame
49 * s_MgrMakeProbeResponse - Create Probe Response frame
50 * s_MgrMakeAssocRequest - Create Associate Request frame
51 * s_MgrMakeReAssocRequest - Create ReAssociate Request frame
52 * s_vMgrRxProbeResponse - Handle Rcv probe_response
53 * s_vMrgRxProbeRequest - Handle Rcv probe_request
54 * bMgrPrepareBeaconToSend - Prepare Beacon frame
55 * s_vMgrLogStatus - Log 802.11 Status
56 * vMgrRxManagePacket - Rcv management frame dispatch function
57 * s_vMgrFormatTIM- Assember TIM field of beacon
58 * vMgrTimerInit- Initial 1-sec and command call back funtions
65 #if !defined(__TMACRO_H__)
68 #if !defined(__TBIT_H__)
71 #if !defined(__DESC_H__)
74 #if !defined(__DEVICE_H__)
77 #if !defined(__CARD_H__)
80 #if !defined(__80211HDR_H__)
83 #if !defined(__80211MGR_H__)
86 #if !defined(__WMGR_H__)
89 #if !defined(__WCMD_H__)
92 #if !defined(__MAC_H__)
95 #if !defined(__BSSDB_H__)
98 #if !defined(__POWER_H__)
101 #if !defined(__DATARATE_H__)
102 #include "datarate.h"
104 #if !defined(__BASEBAND_H__)
105 #include "baseband.h"
107 #if !defined(__RXTX_H__)
110 #if !defined(__WPA_H__)
113 #if !defined(__RF_H__)
116 #if !defined(__UMEM_H__)
119 #if !defined(__IOWPA_H__)
125 /*--------------------- Static Definitions -------------------------*/
129 /*--------------------- Static Classes ----------------------------*/
131 /*--------------------- Static Variables --------------------------*/
132 static int msglevel
=MSG_LEVEL_INFO
;
133 //static int msglevel =MSG_LEVEL_DEBUG;
135 /*--------------------- Static Functions --------------------------*/
136 //2008-8-4 <add> by chester
137 static BOOL
ChannelExceedZoneType(
139 IN BYTE byCurrChannel
142 // Association/diassociation functions
145 s_MgrMakeAssocRequest(
147 IN PSMgmtObject pMgmt
,
149 IN WORD wCurrCapInfo
,
150 IN WORD wListenInterval
,
151 IN PWLAN_IE_SSID pCurrSSID
,
152 IN PWLAN_IE_SUPP_RATES pCurrRates
,
153 IN PWLAN_IE_SUPP_RATES pCurrExtSuppRates
158 s_vMgrRxAssocRequest(
160 IN PSMgmtObject pMgmt
,
161 IN PSRxMgmtPacket pRxPacket
,
167 s_MgrMakeReAssocRequest(
169 IN PSMgmtObject pMgmt
,
171 IN WORD wCurrCapInfo
,
172 IN WORD wListenInterval
,
173 IN PWLAN_IE_SSID pCurrSSID
,
174 IN PWLAN_IE_SUPP_RATES pCurrRates
,
175 IN PWLAN_IE_SUPP_RATES pCurrExtSuppRates
180 s_vMgrRxAssocResponse(
182 IN PSMgmtObject pMgmt
,
183 IN PSRxMgmtPacket pRxPacket
,
189 s_vMgrRxDisassociation(
191 IN PSMgmtObject pMgmt
,
192 IN PSRxMgmtPacket pRxPacket
195 // Authentication/deauthen functions
198 s_vMgrRxAuthenSequence_1(
200 IN PSMgmtObject pMgmt
,
201 IN PWLAN_FR_AUTHEN pFrame
206 s_vMgrRxAuthenSequence_2(
208 IN PSMgmtObject pMgmt
,
209 IN PWLAN_FR_AUTHEN pFrame
214 s_vMgrRxAuthenSequence_3(
216 IN PSMgmtObject pMgmt
,
217 IN PWLAN_FR_AUTHEN pFrame
222 s_vMgrRxAuthenSequence_4(
224 IN PSMgmtObject pMgmt
,
225 IN PWLAN_FR_AUTHEN pFrame
230 s_vMgrRxAuthentication(
232 IN PSMgmtObject pMgmt
,
233 IN PSRxMgmtPacket pRxPacket
238 s_vMgrRxDeauthentication(
240 IN PSMgmtObject pMgmt
,
241 IN PSRxMgmtPacket pRxPacket
245 // probe request/response functions
248 s_vMgrRxProbeRequest(
250 IN PSMgmtObject pMgmt
,
251 IN PSRxMgmtPacket pRxPacket
256 s_vMgrRxProbeResponse(
258 IN PSMgmtObject pMgmt
,
259 IN PSRxMgmtPacket pRxPacket
267 IN PSMgmtObject pMgmt
,
268 IN PSRxMgmtPacket pRxPacket
,
275 IN PSMgmtObject pMgmt
,
283 IN PSMgmtObject pMgmt
,
284 IN WORD wCurrCapInfo
,
285 IN WORD wCurrBeaconPeriod
,
286 IN UINT uCurrChannel
,
287 IN WORD wCurrATIMWinodw
,
288 IN PWLAN_IE_SSID pCurrSSID
,
290 IN PWLAN_IE_SUPP_RATES pCurrSuppRates
,
291 IN PWLAN_IE_SUPP_RATES pCurrExtSuppRates
295 // Association response
298 s_MgrMakeAssocResponse(
300 IN PSMgmtObject pMgmt
,
301 IN WORD wCurrCapInfo
,
302 IN WORD wAssocStatus
,
305 IN PWLAN_IE_SUPP_RATES pCurrSuppRates
,
306 IN PWLAN_IE_SUPP_RATES pCurrExtSuppRates
309 // ReAssociation response
312 s_MgrMakeReAssocResponse(
314 IN PSMgmtObject pMgmt
,
315 IN WORD wCurrCapInfo
,
316 IN WORD wAssocStatus
,
319 IN PWLAN_IE_SUPP_RATES pCurrSuppRates
,
320 IN PWLAN_IE_SUPP_RATES pCurrExtSuppRates
326 s_MgrMakeProbeResponse(
328 IN PSMgmtObject pMgmt
,
329 IN WORD wCurrCapInfo
,
330 IN WORD wCurrBeaconPeriod
,
331 IN UINT uCurrChannel
,
332 IN WORD wCurrATIMWinodw
,
334 IN PWLAN_IE_SSID pCurrSSID
,
336 IN PWLAN_IE_SUPP_RATES pCurrSuppRates
,
337 IN PWLAN_IE_SUPP_RATES pCurrExtSuppRates
,
345 IN PSMgmtObject pMgmt
,
356 OUT PCMD_STATUS pStatus
362 IN PKnownBSS pBSSNode
,
363 IN NDIS_802_11_ENCRYPTION_STATUS EncStatus
,
368 static VOID
Encyption_Rebuild(
375 /*--------------------- Export Variables --------------------------*/
378 /*--------------------- Export Functions --------------------------*/
383 * Routine Description:
384 * Allocates and initializes the Management object.
393 IN HANDLE hDeviceContext
396 PSDevice pDevice
= (PSDevice
)hDeviceContext
;
397 PSMgmtObject pMgmt
= pDevice
->pMgmt
;
401 pMgmt
->pbyPSPacketPool
= &pMgmt
->byPSPacketPool
[0];
402 pMgmt
->pbyMgmtPacketPool
= &pMgmt
->byMgmtPacketPool
[0];
403 pMgmt
->uCurrChannel
= pDevice
->uChannel
;
404 for(ii
=0;ii
<WLAN_BSSID_LEN
;ii
++) {
405 pMgmt
->abyDesireBSSID
[ii
] = 0xFF;
407 pMgmt
->sAssocInfo
.AssocInfo
.Length
= sizeof(NDIS_802_11_ASSOCIATION_INFORMATION
);
408 //memset(pMgmt->abyDesireSSID, 0, WLAN_IEHDR_LEN + WLAN_SSID_MAXLEN +1);
409 pMgmt
->byCSSPK
= KEY_CTL_NONE
;
410 pMgmt
->byCSSGK
= KEY_CTL_NONE
;
411 pMgmt
->wIBSSBeaconPeriod
= DEFAULT_IBSS_BI
;
412 BSSvClearBSSList((HANDLE
)pDevice
, FALSE
);
419 * Routine Description:
420 * Initializes timer object
429 IN HANDLE hDeviceContext
432 PSDevice pDevice
= (PSDevice
)hDeviceContext
;
433 PSMgmtObject pMgmt
= pDevice
->pMgmt
;
436 init_timer(&pMgmt
->sTimerSecondCallback
);
437 pMgmt
->sTimerSecondCallback
.data
= (ULONG
)pDevice
;
438 pMgmt
->sTimerSecondCallback
.function
= (TimerFunction
)BSSvSecondCallBack
;
439 pMgmt
->sTimerSecondCallback
.expires
= RUN_AT(HZ
);
441 init_timer(&pDevice
->sTimerCommand
);
442 pDevice
->sTimerCommand
.data
= (ULONG
)pDevice
;
443 pDevice
->sTimerCommand
.function
= (TimerFunction
)vCommandTimer
;
444 pDevice
->sTimerCommand
.expires
= RUN_AT(HZ
);
447 init_timer(&pDevice
->sTimerTxData
);
448 pDevice
->sTimerTxData
.data
= (ULONG
)pDevice
;
449 pDevice
->sTimerTxData
.function
= (TimerFunction
)BSSvSecondTxData
;
450 pDevice
->sTimerTxData
.expires
= RUN_AT(10*HZ
); //10s callback
451 pDevice
->fTxDataInSleep
= FALSE
;
452 pDevice
->IsTxDataTrigger
= FALSE
;
453 pDevice
->nTxDataTimeCout
= 0;
456 pDevice
->cbFreeCmdQueue
= CMD_Q_SIZE
;
457 pDevice
->uCmdDequeueIdx
= 0;
458 pDevice
->uCmdEnqueueIdx
= 0;
467 * Routine Description:
468 * Reset the management object structure.
477 IN HANDLE hDeviceContext
480 PSDevice pDevice
= (PSDevice
)hDeviceContext
;
481 PSMgmtObject pMgmt
= pDevice
->pMgmt
;
483 pMgmt
->eCurrMode
= WMAC_MODE_STANDBY
;
484 pMgmt
->eCurrState
= WMAC_STATE_IDLE
;
485 pDevice
->bEnablePSMode
= FALSE
;
494 * Routine Description:
495 * Start the station association procedure. Namely, send an
496 * association request frame to the AP.
506 IN HANDLE hDeviceContext
,
507 IN PSMgmtObject pMgmt
,
508 OUT PCMD_STATUS pStatus
511 PSDevice pDevice
= (PSDevice
)hDeviceContext
;
512 PSTxMgmtPacket pTxPacket
;
515 pMgmt
->wCurrCapInfo
= 0;
516 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_ESS(1);
517 if (pDevice
->bEncryptionEnable
) {
518 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_PRIVACY(1);
520 // always allow receive short preamble
521 //if (pDevice->byPreambleType == 1) {
522 // pMgmt->wCurrCapInfo |= WLAN_SET_CAP_INFO_SHORTPREAMBLE(1);
524 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_SHORTPREAMBLE(1);
525 if (pMgmt
->wListenInterval
== 0)
526 pMgmt
->wListenInterval
= 1; // at least one.
528 // ERP Phy (802.11g) should support short preamble.
529 if (pMgmt
->eCurrentPHYMode
== PHY_TYPE_11G
) {
530 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_SHORTPREAMBLE(1);
531 if (CARDbIsShorSlotTime(pMgmt
->pAdapter
) == TRUE
) {
532 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_SHORTSLOTTIME(1);
534 } else if (pMgmt
->eCurrentPHYMode
== PHY_TYPE_11B
) {
535 if (CARDbIsShortPreamble(pMgmt
->pAdapter
) == TRUE
) {
536 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_SHORTPREAMBLE(1);
539 if (pMgmt
->b11hEnable
== TRUE
)
540 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_SPECTRUMMNG(1);
542 /* build an assocreq frame and send it */
543 pTxPacket
= s_MgrMakeAssocRequest
549 pMgmt
->wListenInterval
,
550 (PWLAN_IE_SSID
)pMgmt
->abyCurrSSID
,
551 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrSuppRates
,
552 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrExtSuppRates
555 if (pTxPacket
!= NULL
){
557 *pStatus
= csMgmt_xmit(pDevice
, pTxPacket
);
558 if (*pStatus
== CMD_STATUS_PENDING
) {
559 pMgmt
->eCurrState
= WMAC_STATE_ASSOCPENDING
;
560 *pStatus
= CMD_STATUS_SUCCESS
;
564 *pStatus
= CMD_STATUS_RESOURCES
;
572 * Routine Description:
573 * Start the station re-association procedure.
582 IN HANDLE hDeviceContext
,
583 IN PSMgmtObject pMgmt
,
584 OUT PCMD_STATUS pStatus
587 PSDevice pDevice
= (PSDevice
)hDeviceContext
;
588 PSTxMgmtPacket pTxPacket
;
592 pMgmt
->wCurrCapInfo
= 0;
593 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_ESS(1);
594 if (pDevice
->bEncryptionEnable
) {
595 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_PRIVACY(1);
598 //if (pDevice->byPreambleType == 1) {
599 // pMgmt->wCurrCapInfo |= WLAN_SET_CAP_INFO_SHORTPREAMBLE(1);
601 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_SHORTPREAMBLE(1);
603 if (pMgmt
->wListenInterval
== 0)
604 pMgmt
->wListenInterval
= 1; // at least one.
607 // ERP Phy (802.11g) should support short preamble.
608 if (pMgmt
->eCurrentPHYMode
== PHY_TYPE_11G
) {
609 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_SHORTPREAMBLE(1);
610 if (CARDbIsShorSlotTime(pMgmt
->pAdapter
) == TRUE
) {
611 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_SHORTSLOTTIME(1);
613 } else if (pMgmt
->eCurrentPHYMode
== PHY_TYPE_11B
) {
614 if (CARDbIsShortPreamble(pMgmt
->pAdapter
) == TRUE
) {
615 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_SHORTPREAMBLE(1);
618 if (pMgmt
->b11hEnable
== TRUE
)
619 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_SPECTRUMMNG(1);
622 pTxPacket
= s_MgrMakeReAssocRequest
628 pMgmt
->wListenInterval
,
629 (PWLAN_IE_SSID
)pMgmt
->abyCurrSSID
,
630 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrSuppRates
,
631 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrExtSuppRates
634 if (pTxPacket
!= NULL
){
636 *pStatus
= csMgmt_xmit(pDevice
, pTxPacket
);
637 if (*pStatus
!= CMD_STATUS_PENDING
) {
638 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Mgt:Reassociation tx failed.\n");
641 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Mgt:Reassociation tx sending.\n");
651 * Routine Description:
652 * Send an dis-association request frame to the AP.
660 vMgrDisassocBeginSta(
661 IN HANDLE hDeviceContext
,
662 IN PSMgmtObject pMgmt
,
663 IN PBYTE abyDestAddress
,
665 OUT PCMD_STATUS pStatus
668 PSDevice pDevice
= (PSDevice
)hDeviceContext
;
669 PSTxMgmtPacket pTxPacket
= NULL
;
670 WLAN_FR_DISASSOC sFrame
;
672 pTxPacket
= (PSTxMgmtPacket
)pMgmt
->pbyMgmtPacketPool
;
673 memset(pTxPacket
, 0, sizeof(STxMgmtPacket
) + WLAN_DISASSOC_FR_MAXLEN
);
674 pTxPacket
->p80211Header
= (PUWLAN_80211HDR
)((PBYTE
)pTxPacket
+ sizeof(STxMgmtPacket
));
676 // Setup the sFrame structure
677 sFrame
.pBuf
= (PBYTE
)pTxPacket
->p80211Header
;
678 sFrame
.len
= WLAN_DISASSOC_FR_MAXLEN
;
680 // format fixed field frame structure
681 vMgrEncodeDisassociation(&sFrame
);
684 sFrame
.pHdr
->sA3
.wFrameCtl
= cpu_to_le16(
686 WLAN_SET_FC_FTYPE(WLAN_TYPE_MGR
) |
687 WLAN_SET_FC_FSTYPE(WLAN_FSTYPE_DISASSOC
)
690 memcpy( sFrame
.pHdr
->sA3
.abyAddr1
, abyDestAddress
, WLAN_ADDR_LEN
);
691 memcpy( sFrame
.pHdr
->sA3
.abyAddr2
, pMgmt
->abyMACAddr
, WLAN_ADDR_LEN
);
692 memcpy( sFrame
.pHdr
->sA3
.abyAddr3
, pMgmt
->abyCurrBSSID
, WLAN_BSSID_LEN
);
695 *(sFrame
.pwReason
) = cpu_to_le16(wReason
);
696 pTxPacket
->cbMPDULen
= sFrame
.len
;
697 pTxPacket
->cbPayloadLen
= sFrame
.len
- WLAN_HDR_ADDR3_LEN
;
700 *pStatus
= csMgmt_xmit(pDevice
, pTxPacket
);
701 if (*pStatus
== CMD_STATUS_PENDING
) {
702 pMgmt
->eCurrState
= WMAC_STATE_IDLE
;
703 *pStatus
= CMD_STATUS_SUCCESS
;
713 * Routine Description:(AP function)
714 * Handle incoming station association request frames.
723 s_vMgrRxAssocRequest(
725 IN PSMgmtObject pMgmt
,
726 IN PSRxMgmtPacket pRxPacket
,
730 WLAN_FR_ASSOCREQ sFrame
;
732 PSTxMgmtPacket pTxPacket
;
733 WORD wAssocStatus
= 0;
735 UINT uRateLen
= WLAN_RATES_MAXLEN
;
736 BYTE abyCurrSuppRates
[WLAN_IEHDR_LEN
+ WLAN_RATES_MAXLEN
+ 1];
737 BYTE abyCurrExtSuppRates
[WLAN_IEHDR_LEN
+ WLAN_RATES_MAXLEN
+ 1];
740 if (pMgmt
->eCurrMode
!= WMAC_MODE_ESS_AP
)
742 // node index not found
746 //check if node is authenticated
748 memset(&sFrame
, 0, sizeof(WLAN_FR_ASSOCREQ
));
749 memset(abyCurrSuppRates
, 0, WLAN_IEHDR_LEN
+ WLAN_RATES_MAXLEN
+ 1);
750 memset(abyCurrExtSuppRates
, 0, WLAN_IEHDR_LEN
+ WLAN_RATES_MAXLEN
+ 1);
751 sFrame
.len
= pRxPacket
->cbMPDULen
;
752 sFrame
.pBuf
= (PBYTE
)pRxPacket
->p80211Header
;
754 vMgrDecodeAssocRequest(&sFrame
);
756 if (pMgmt
->sNodeDBTable
[uNodeIndex
].eNodeState
>= NODE_AUTH
) {
757 pMgmt
->sNodeDBTable
[uNodeIndex
].eNodeState
= NODE_ASSOC
;
758 pMgmt
->sNodeDBTable
[uNodeIndex
].wCapInfo
= cpu_to_le16(*sFrame
.pwCapInfo
);
759 pMgmt
->sNodeDBTable
[uNodeIndex
].wListenInterval
= cpu_to_le16(*sFrame
.pwListenInterval
);
760 pMgmt
->sNodeDBTable
[uNodeIndex
].bPSEnable
=
761 WLAN_GET_FC_PWRMGT(sFrame
.pHdr
->sA3
.wFrameCtl
) ? TRUE
: FALSE
;
762 // Todo: check sta basic rate, if ap can't support, set status code
763 if (pDevice
->eCurrentPHYType
== PHY_TYPE_11B
) {
764 uRateLen
= WLAN_RATES_MAXLEN_11B
;
766 abyCurrSuppRates
[0] = WLAN_EID_SUPP_RATES
;
767 abyCurrSuppRates
[1] = RATEuSetIE((PWLAN_IE_SUPP_RATES
)sFrame
.pSuppRates
,
768 (PWLAN_IE_SUPP_RATES
)abyCurrSuppRates
,
770 abyCurrExtSuppRates
[0] = WLAN_EID_EXTSUPP_RATES
;
771 if (pDevice
->eCurrentPHYType
== PHY_TYPE_11G
) {
772 abyCurrExtSuppRates
[1] = RATEuSetIE((PWLAN_IE_SUPP_RATES
)sFrame
.pExtSuppRates
,
773 (PWLAN_IE_SUPP_RATES
)abyCurrExtSuppRates
,
776 abyCurrExtSuppRates
[1] = 0;
780 RATEvParseMaxRate((PVOID
)pDevice
,
781 (PWLAN_IE_SUPP_RATES
)abyCurrSuppRates
,
782 (PWLAN_IE_SUPP_RATES
)abyCurrExtSuppRates
,
783 FALSE
, // do not change our basic rate
784 &(pMgmt
->sNodeDBTable
[uNodeIndex
].wMaxBasicRate
),
785 &(pMgmt
->sNodeDBTable
[uNodeIndex
].wMaxSuppRate
),
786 &(pMgmt
->sNodeDBTable
[uNodeIndex
].wSuppRate
),
787 &(pMgmt
->sNodeDBTable
[uNodeIndex
].byTopCCKBasicRate
),
788 &(pMgmt
->sNodeDBTable
[uNodeIndex
].byTopOFDMBasicRate
)
792 pMgmt
->sNodeDBTable
[uNodeIndex
].wTxDataRate
=
793 pMgmt
->sNodeDBTable
[uNodeIndex
].wMaxSuppRate
;
795 printk("RxAssocRequest:wTxDataRate is %d\n",pMgmt
->sNodeDBTable
[uNodeIndex
].wTxDataRate
);
797 // Todo: check sta preamble, if ap can't support, set status code
798 pMgmt
->sNodeDBTable
[uNodeIndex
].bShortPreamble
=
799 WLAN_GET_CAP_INFO_SHORTPREAMBLE(*sFrame
.pwCapInfo
);
800 pMgmt
->sNodeDBTable
[uNodeIndex
].bShortSlotTime
=
801 WLAN_GET_CAP_INFO_SHORTSLOTTIME(*sFrame
.pwCapInfo
);
802 pMgmt
->sNodeDBTable
[uNodeIndex
].wAID
= (WORD
)uNodeIndex
;
803 wAssocStatus
= WLAN_MGMT_STATUS_SUCCESS
;
804 wAssocAID
= (WORD
)uNodeIndex
;
805 // check if ERP support
806 if(pMgmt
->sNodeDBTable
[uNodeIndex
].wMaxSuppRate
> RATE_11M
)
807 pMgmt
->sNodeDBTable
[uNodeIndex
].bERPExist
= TRUE
;
809 if (pMgmt
->sNodeDBTable
[uNodeIndex
].wMaxSuppRate
<= RATE_11M
) {
811 pDevice
->bProtectMode
= TRUE
;
812 pDevice
->bNonERPPresent
= TRUE
;
814 if (pMgmt
->sNodeDBTable
[uNodeIndex
].bShortPreamble
== FALSE
) {
815 pDevice
->bBarkerPreambleMd
= TRUE
;
818 DBG_PRT(MSG_LEVEL_INFO
, KERN_INFO
"Associate AID= %d \n", wAssocAID
);
819 DBG_PRT(MSG_LEVEL_INFO
, KERN_INFO
"MAC=%2.2X:%2.2X:%2.2X:%2.2X:%2.2X:%2.2X \n",
820 sFrame
.pHdr
->sA3
.abyAddr2
[0],
821 sFrame
.pHdr
->sA3
.abyAddr2
[1],
822 sFrame
.pHdr
->sA3
.abyAddr2
[2],
823 sFrame
.pHdr
->sA3
.abyAddr2
[3],
824 sFrame
.pHdr
->sA3
.abyAddr2
[4],
825 sFrame
.pHdr
->sA3
.abyAddr2
[5]
827 DBG_PRT(MSG_LEVEL_INFO
, KERN_INFO
"Max Support rate = %d \n",
828 pMgmt
->sNodeDBTable
[uNodeIndex
].wMaxSuppRate
);
829 }//else { TODO: received STA under state1 handle }
835 // assoc response reply..
836 pTxPacket
= s_MgrMakeAssocResponse
843 sFrame
.pHdr
->sA3
.abyAddr2
,
844 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrSuppRates
,
845 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrExtSuppRates
847 if (pTxPacket
!= NULL
){
849 if (pDevice
->bEnableHostapd
) {
853 Status
= csMgmt_xmit(pDevice
, pTxPacket
);
854 if (Status
!= CMD_STATUS_PENDING
) {
855 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Mgt:Assoc response tx failed\n");
858 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Mgt:Assoc response tx sending..\n");
869 * Description:(AP function)
870 * Handle incoming station re-association request frames.
874 * pMgmt - Management Object structure
875 * pRxPacket - Received Packet
879 * Return Value: None.
885 s_vMgrRxReAssocRequest(
887 IN PSMgmtObject pMgmt
,
888 IN PSRxMgmtPacket pRxPacket
,
892 WLAN_FR_REASSOCREQ sFrame
;
894 PSTxMgmtPacket pTxPacket
;
895 WORD wAssocStatus
= 0;
897 UINT uRateLen
= WLAN_RATES_MAXLEN
;
898 BYTE abyCurrSuppRates
[WLAN_IEHDR_LEN
+ WLAN_RATES_MAXLEN
+ 1];
899 BYTE abyCurrExtSuppRates
[WLAN_IEHDR_LEN
+ WLAN_RATES_MAXLEN
+ 1];
901 if (pMgmt
->eCurrMode
!= WMAC_MODE_ESS_AP
)
903 // node index not found
906 //check if node is authenticated
908 memset(&sFrame
, 0, sizeof(WLAN_FR_REASSOCREQ
));
909 sFrame
.len
= pRxPacket
->cbMPDULen
;
910 sFrame
.pBuf
= (PBYTE
)pRxPacket
->p80211Header
;
911 vMgrDecodeReassocRequest(&sFrame
);
913 if (pMgmt
->sNodeDBTable
[uNodeIndex
].eNodeState
>= NODE_AUTH
) {
914 pMgmt
->sNodeDBTable
[uNodeIndex
].eNodeState
= NODE_ASSOC
;
915 pMgmt
->sNodeDBTable
[uNodeIndex
].wCapInfo
= cpu_to_le16(*sFrame
.pwCapInfo
);
916 pMgmt
->sNodeDBTable
[uNodeIndex
].wListenInterval
= cpu_to_le16(*sFrame
.pwListenInterval
);
917 pMgmt
->sNodeDBTable
[uNodeIndex
].bPSEnable
=
918 WLAN_GET_FC_PWRMGT(sFrame
.pHdr
->sA3
.wFrameCtl
) ? TRUE
: FALSE
;
919 // Todo: check sta basic rate, if ap can't support, set status code
921 if (pDevice
->eCurrentPHYType
== PHY_TYPE_11B
) {
922 uRateLen
= WLAN_RATES_MAXLEN_11B
;
925 abyCurrSuppRates
[0] = WLAN_EID_SUPP_RATES
;
926 abyCurrSuppRates
[1] = RATEuSetIE((PWLAN_IE_SUPP_RATES
)sFrame
.pSuppRates
,
927 (PWLAN_IE_SUPP_RATES
)abyCurrSuppRates
,
929 abyCurrExtSuppRates
[0] = WLAN_EID_EXTSUPP_RATES
;
930 if (pDevice
->eCurrentPHYType
== PHY_TYPE_11G
) {
931 abyCurrExtSuppRates
[1] = RATEuSetIE((PWLAN_IE_SUPP_RATES
)sFrame
.pExtSuppRates
,
932 (PWLAN_IE_SUPP_RATES
)abyCurrExtSuppRates
,
935 abyCurrExtSuppRates
[1] = 0;
939 RATEvParseMaxRate((PVOID
)pDevice
,
940 (PWLAN_IE_SUPP_RATES
)abyCurrSuppRates
,
941 (PWLAN_IE_SUPP_RATES
)abyCurrExtSuppRates
,
942 FALSE
, // do not change our basic rate
943 &(pMgmt
->sNodeDBTable
[uNodeIndex
].wMaxBasicRate
),
944 &(pMgmt
->sNodeDBTable
[uNodeIndex
].wMaxSuppRate
),
945 &(pMgmt
->sNodeDBTable
[uNodeIndex
].wSuppRate
),
946 &(pMgmt
->sNodeDBTable
[uNodeIndex
].byTopCCKBasicRate
),
947 &(pMgmt
->sNodeDBTable
[uNodeIndex
].byTopOFDMBasicRate
)
951 pMgmt
->sNodeDBTable
[uNodeIndex
].wTxDataRate
=
952 pMgmt
->sNodeDBTable
[uNodeIndex
].wMaxSuppRate
;
954 printk("RxReAssocRequest:TxDataRate is %d\n",pMgmt
->sNodeDBTable
[uNodeIndex
].wTxDataRate
);
956 // Todo: check sta preamble, if ap can't support, set status code
957 pMgmt
->sNodeDBTable
[uNodeIndex
].bShortPreamble
=
958 WLAN_GET_CAP_INFO_SHORTPREAMBLE(*sFrame
.pwCapInfo
);
959 pMgmt
->sNodeDBTable
[uNodeIndex
].bShortSlotTime
=
960 WLAN_GET_CAP_INFO_SHORTSLOTTIME(*sFrame
.pwCapInfo
);
961 pMgmt
->sNodeDBTable
[uNodeIndex
].wAID
= (WORD
)uNodeIndex
;
962 wAssocStatus
= WLAN_MGMT_STATUS_SUCCESS
;
963 wAssocAID
= (WORD
)uNodeIndex
;
966 if(pMgmt
->sNodeDBTable
[uNodeIndex
].wMaxSuppRate
> RATE_11M
)
967 pMgmt
->sNodeDBTable
[uNodeIndex
].bERPExist
= TRUE
;
969 if (pMgmt
->sNodeDBTable
[uNodeIndex
].wMaxSuppRate
<= RATE_11M
) {
971 pDevice
->bProtectMode
= TRUE
;
972 pDevice
->bNonERPPresent
= TRUE
;
974 if (pMgmt
->sNodeDBTable
[uNodeIndex
].bShortPreamble
== FALSE
) {
975 pDevice
->bBarkerPreambleMd
= TRUE
;
978 DBG_PRT(MSG_LEVEL_INFO
, KERN_INFO
"Rx ReAssociate AID= %d \n", wAssocAID
);
979 DBG_PRT(MSG_LEVEL_INFO
, KERN_INFO
"MAC=%2.2X:%2.2X:%2.2X:%2.2X:%2.2X:%2.2X \n",
980 sFrame
.pHdr
->sA3
.abyAddr2
[0],
981 sFrame
.pHdr
->sA3
.abyAddr2
[1],
982 sFrame
.pHdr
->sA3
.abyAddr2
[2],
983 sFrame
.pHdr
->sA3
.abyAddr2
[3],
984 sFrame
.pHdr
->sA3
.abyAddr2
[4],
985 sFrame
.pHdr
->sA3
.abyAddr2
[5]
987 DBG_PRT(MSG_LEVEL_INFO
, KERN_INFO
"Max Support rate = %d \n",
988 pMgmt
->sNodeDBTable
[uNodeIndex
].wMaxSuppRate
);
993 // assoc response reply..
994 pTxPacket
= s_MgrMakeReAssocResponse
1001 sFrame
.pHdr
->sA3
.abyAddr2
,
1002 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrSuppRates
,
1003 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrExtSuppRates
1006 if (pTxPacket
!= NULL
){
1007 /* send the frame */
1008 if (pDevice
->bEnableHostapd
) {
1011 Status
= csMgmt_xmit(pDevice
, pTxPacket
);
1012 if (Status
!= CMD_STATUS_PENDING
) {
1013 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Mgt:ReAssoc response tx failed\n");
1016 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Mgt:ReAssoc response tx sending..\n");
1025 * Routine Description:
1026 * Handle incoming association response frames.
1035 s_vMgrRxAssocResponse(
1036 IN PSDevice pDevice
,
1037 IN PSMgmtObject pMgmt
,
1038 IN PSRxMgmtPacket pRxPacket
,
1039 IN BOOL bReAssocType
1042 WLAN_FR_ASSOCRESP sFrame
;
1043 PWLAN_IE_SSID pItemSSID
;
1045 viawget_wpa_header
*wpahdr
;
1049 if (pMgmt
->eCurrState
== WMAC_STATE_ASSOCPENDING
||
1050 pMgmt
->eCurrState
== WMAC_STATE_ASSOC
) {
1052 sFrame
.len
= pRxPacket
->cbMPDULen
;
1053 sFrame
.pBuf
= (PBYTE
)pRxPacket
->p80211Header
;
1055 vMgrDecodeAssocResponse(&sFrame
);
1056 if ((sFrame
.pwCapInfo
== 0) ||
1057 (sFrame
.pwStatus
== 0) ||
1058 (sFrame
.pwAid
== 0) ||
1059 (sFrame
.pSuppRates
== 0)){
1064 pMgmt
->sAssocInfo
.AssocInfo
.ResponseFixedIEs
.Capabilities
= *(sFrame
.pwCapInfo
);
1065 pMgmt
->sAssocInfo
.AssocInfo
.ResponseFixedIEs
.StatusCode
= *(sFrame
.pwStatus
);
1066 pMgmt
->sAssocInfo
.AssocInfo
.ResponseFixedIEs
.AssociationId
= *(sFrame
.pwAid
);
1067 pMgmt
->sAssocInfo
.AssocInfo
.AvailableResponseFixedIEs
|= 0x07;
1069 pMgmt
->sAssocInfo
.AssocInfo
.ResponseIELength
= sFrame
.len
- 24 - 6;
1070 pMgmt
->sAssocInfo
.AssocInfo
.OffsetResponseIEs
= pMgmt
->sAssocInfo
.AssocInfo
.OffsetRequestIEs
+ pMgmt
->sAssocInfo
.AssocInfo
.RequestIELength
;
1071 pbyIEs
= pMgmt
->sAssocInfo
.abyIEs
;
1072 pbyIEs
+= pMgmt
->sAssocInfo
.AssocInfo
.RequestIELength
;
1073 memcpy(pbyIEs
, (sFrame
.pBuf
+ 24 +6), pMgmt
->sAssocInfo
.AssocInfo
.ResponseIELength
);
1075 // save values and set current BSS state
1076 if (cpu_to_le16((*(sFrame
.pwStatus
))) == WLAN_MGMT_STATUS_SUCCESS
){
1078 pMgmt
->wCurrAID
= cpu_to_le16((*(sFrame
.pwAid
)));
1079 if ( (pMgmt
->wCurrAID
>> 14) != (BIT0
| BIT1
) )
1081 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"AID from AP, has two msb clear.\n");
1083 DBG_PRT(MSG_LEVEL_INFO
, KERN_INFO
"Association Successful, AID=%d.\n", pMgmt
->wCurrAID
& ~(BIT14
|BIT15
));
1084 pMgmt
->eCurrState
= WMAC_STATE_ASSOC
;
1085 BSSvUpdateAPNode((HANDLE
)pDevice
, sFrame
.pwCapInfo
, sFrame
.pSuppRates
, sFrame
.pExtSuppRates
);
1086 pItemSSID
= (PWLAN_IE_SSID
)pMgmt
->abyCurrSSID
;
1087 DBG_PRT(MSG_LEVEL_INFO
, KERN_INFO
"Link with AP(SSID): %s\n", pItemSSID
->abySSID
);
1088 pDevice
->bLinkPass
= TRUE
;
1089 pDevice
->uBBVGADiffCount
= 0;
1090 if ((pDevice
->bWPADEVUp
) && (pDevice
->skb
!= NULL
)) {
1091 if(skb_tailroom(pDevice
->skb
) <(sizeof(viawget_wpa_header
)+pMgmt
->sAssocInfo
.AssocInfo
.ResponseIELength
+
1092 pMgmt
->sAssocInfo
.AssocInfo
.RequestIELength
)) { //data room not enough
1093 dev_kfree_skb(pDevice
->skb
);
1094 pDevice
->skb
= dev_alloc_skb((int)pDevice
->rx_buf_sz
);
1096 wpahdr
= (viawget_wpa_header
*)pDevice
->skb
->data
;
1097 wpahdr
->type
= VIAWGET_ASSOC_MSG
;
1098 wpahdr
->resp_ie_len
= pMgmt
->sAssocInfo
.AssocInfo
.ResponseIELength
;
1099 wpahdr
->req_ie_len
= pMgmt
->sAssocInfo
.AssocInfo
.RequestIELength
;
1100 memcpy(pDevice
->skb
->data
+ sizeof(viawget_wpa_header
), pMgmt
->sAssocInfo
.abyIEs
, wpahdr
->req_ie_len
);
1101 memcpy(pDevice
->skb
->data
+ sizeof(viawget_wpa_header
) + wpahdr
->req_ie_len
,
1105 skb_put(pDevice
->skb
, sizeof(viawget_wpa_header
) + wpahdr
->resp_ie_len
+ wpahdr
->req_ie_len
);
1106 pDevice
->skb
->dev
= pDevice
->wpadev
;
1107 skb_reset_mac_header(pDevice
->skb
);
1108 pDevice
->skb
->pkt_type
= PACKET_HOST
;
1109 pDevice
->skb
->protocol
= htons(ETH_P_802_2
);
1110 memset(pDevice
->skb
->cb
, 0, sizeof(pDevice
->skb
->cb
));
1111 netif_rx(pDevice
->skb
);
1112 pDevice
->skb
= dev_alloc_skb((int)pDevice
->rx_buf_sz
);
1115 //2008-0409-07, <Add> by Einsn Liu
1116 #ifdef WPA_SUPPLICANT_DRIVER_WEXT_SUPPORT
1117 //if(pDevice->bWPADevEnable == TRUE)
1121 union iwreq_data wrqu
;
1124 memset(buf
, 0, 512);
1126 len
= pMgmt
->sAssocInfo
.AssocInfo
.RequestIELength
;
1128 memcpy(buf
, pMgmt
->sAssocInfo
.abyIEs
, len
);
1129 memset(&wrqu
, 0, sizeof (wrqu
));
1130 wrqu
.data
.length
= len
;
1131 we_event
= IWEVASSOCREQIE
;
1132 wireless_send_event(pDevice
->dev
, we_event
, &wrqu
, buf
);
1135 memset(buf
, 0, 512);
1136 len
= pMgmt
->sAssocInfo
.AssocInfo
.ResponseIELength
;
1139 memcpy(buf
, pbyIEs
, len
);
1140 memset(&wrqu
, 0, sizeof (wrqu
));
1141 wrqu
.data
.length
= len
;
1142 we_event
= IWEVASSOCRESPIE
;
1143 wireless_send_event(pDevice
->dev
, we_event
, &wrqu
, buf
);
1147 memset(&wrqu
, 0, sizeof (wrqu
));
1148 memcpy(wrqu
.ap_addr
.sa_data
, &pMgmt
->abyCurrBSSID
[0], ETH_ALEN
);
1149 wrqu
.ap_addr
.sa_family
= ARPHRD_ETHER
;
1150 wireless_send_event(pDevice
->dev
, SIOCGIWAP
, &wrqu
, NULL
);
1152 #endif //#ifdef WPA_SUPPLICANT_DRIVER_WEXT_SUPPORT
1153 //End Add -- //2008-0409-07, <Add> by Einsn Liu
1157 pMgmt
->eCurrState
= WMAC_STATE_IDLE
;
1160 // jump back to the auth state and indicate the error
1161 pMgmt
->eCurrState
= WMAC_STATE_AUTH
;
1163 s_vMgrLogStatus(pMgmt
,cpu_to_le16((*(sFrame
.pwStatus
))));
1168 #ifdef WPA_SUPPLICANT_DRIVER_WEXT_SUPPORT
1169 //need clear flags related to Networkmanager
1171 pDevice
->bwextcount
= 0;
1172 pDevice
->bWPASuppWextEnabled
= FALSE
;
1176 if(pMgmt
->eCurrState
== WMAC_STATE_ASSOC
)
1177 timer_expire(pDevice
->sTimerCommand
, 0);
1185 * Routine Description:
1186 * Start the station authentication procedure. Namely, send an
1187 * authentication frame to the AP.
1196 IN HANDLE hDeviceContext
,
1197 IN PSMgmtObject pMgmt
,
1198 OUT PCMD_STATUS pStatus
1201 PSDevice pDevice
= (PSDevice
)hDeviceContext
;
1202 WLAN_FR_AUTHEN sFrame
;
1203 PSTxMgmtPacket pTxPacket
= NULL
;
1205 pTxPacket
= (PSTxMgmtPacket
)pMgmt
->pbyMgmtPacketPool
;
1206 memset(pTxPacket
, 0, sizeof(STxMgmtPacket
) + WLAN_AUTHEN_FR_MAXLEN
);
1207 pTxPacket
->p80211Header
= (PUWLAN_80211HDR
)((PBYTE
)pTxPacket
+ sizeof(STxMgmtPacket
));
1208 sFrame
.pBuf
= (PBYTE
)pTxPacket
->p80211Header
;
1209 sFrame
.len
= WLAN_AUTHEN_FR_MAXLEN
;
1210 vMgrEncodeAuthen(&sFrame
);
1212 sFrame
.pHdr
->sA3
.wFrameCtl
= cpu_to_le16(
1214 WLAN_SET_FC_FTYPE(WLAN_TYPE_MGR
) |
1215 WLAN_SET_FC_FSTYPE(WLAN_FSTYPE_AUTHEN
)
1217 memcpy( sFrame
.pHdr
->sA3
.abyAddr1
, pMgmt
->abyCurrBSSID
, WLAN_ADDR_LEN
);
1218 memcpy( sFrame
.pHdr
->sA3
.abyAddr2
, pMgmt
->abyMACAddr
, WLAN_ADDR_LEN
);
1219 memcpy( sFrame
.pHdr
->sA3
.abyAddr3
, pMgmt
->abyCurrBSSID
, WLAN_BSSID_LEN
);
1220 if (pMgmt
->bShareKeyAlgorithm
)
1221 *(sFrame
.pwAuthAlgorithm
) = cpu_to_le16(WLAN_AUTH_ALG_SHAREDKEY
);
1223 *(sFrame
.pwAuthAlgorithm
) = cpu_to_le16(WLAN_AUTH_ALG_OPENSYSTEM
);
1225 *(sFrame
.pwAuthSequence
) = cpu_to_le16(1);
1226 /* Adjust the length fields */
1227 pTxPacket
->cbMPDULen
= sFrame
.len
;
1228 pTxPacket
->cbPayloadLen
= sFrame
.len
- WLAN_HDR_ADDR3_LEN
;
1230 *pStatus
= csMgmt_xmit(pDevice
, pTxPacket
);
1231 if (*pStatus
== CMD_STATUS_PENDING
){
1232 pMgmt
->eCurrState
= WMAC_STATE_AUTHPENDING
;
1233 *pStatus
= CMD_STATUS_SUCCESS
;
1243 * Routine Description:
1244 * Start the station(AP) deauthentication procedure. Namely, send an
1245 * deauthentication frame to the AP or Sta.
1253 vMgrDeAuthenBeginSta(
1254 IN HANDLE hDeviceContext
,
1255 IN PSMgmtObject pMgmt
,
1256 IN PBYTE abyDestAddress
,
1258 OUT PCMD_STATUS pStatus
1261 PSDevice pDevice
= (PSDevice
)hDeviceContext
;
1262 WLAN_FR_DEAUTHEN sFrame
;
1263 PSTxMgmtPacket pTxPacket
= NULL
;
1266 pTxPacket
= (PSTxMgmtPacket
)pMgmt
->pbyMgmtPacketPool
;
1267 memset(pTxPacket
, 0, sizeof(STxMgmtPacket
) + WLAN_DEAUTHEN_FR_MAXLEN
);
1268 pTxPacket
->p80211Header
= (PUWLAN_80211HDR
)((PBYTE
)pTxPacket
+ sizeof(STxMgmtPacket
));
1269 sFrame
.pBuf
= (PBYTE
)pTxPacket
->p80211Header
;
1270 sFrame
.len
= WLAN_DEAUTHEN_FR_MAXLEN
;
1271 vMgrEncodeDeauthen(&sFrame
);
1273 sFrame
.pHdr
->sA3
.wFrameCtl
= cpu_to_le16(
1275 WLAN_SET_FC_FTYPE(WLAN_TYPE_MGR
) |
1276 WLAN_SET_FC_FSTYPE(WLAN_FSTYPE_DEAUTHEN
)
1279 memcpy( sFrame
.pHdr
->sA3
.abyAddr1
, abyDestAddress
, WLAN_ADDR_LEN
);
1280 memcpy( sFrame
.pHdr
->sA3
.abyAddr2
, pMgmt
->abyMACAddr
, WLAN_ADDR_LEN
);
1281 memcpy( sFrame
.pHdr
->sA3
.abyAddr3
, pMgmt
->abyCurrBSSID
, WLAN_BSSID_LEN
);
1283 *(sFrame
.pwReason
) = cpu_to_le16(wReason
); // deauthen. bcs left BSS
1284 /* Adjust the length fields */
1285 pTxPacket
->cbMPDULen
= sFrame
.len
;
1286 pTxPacket
->cbPayloadLen
= sFrame
.len
- WLAN_HDR_ADDR3_LEN
;
1288 *pStatus
= csMgmt_xmit(pDevice
, pTxPacket
);
1289 if (*pStatus
== CMD_STATUS_PENDING
){
1290 *pStatus
= CMD_STATUS_SUCCESS
;
1300 * Routine Description:
1301 * Handle incoming authentication frames.
1310 s_vMgrRxAuthentication(
1311 IN PSDevice pDevice
,
1312 IN PSMgmtObject pMgmt
,
1313 IN PSRxMgmtPacket pRxPacket
1316 WLAN_FR_AUTHEN sFrame
;
1318 // we better be an AP or a STA in AUTHPENDING otherwise ignore
1319 if (!(pMgmt
->eCurrMode
== WMAC_MODE_ESS_AP
||
1320 pMgmt
->eCurrState
== WMAC_STATE_AUTHPENDING
)) {
1325 sFrame
.len
= pRxPacket
->cbMPDULen
;
1326 sFrame
.pBuf
= (PBYTE
)pRxPacket
->p80211Header
;
1327 vMgrDecodeAuthen(&sFrame
);
1328 switch (cpu_to_le16((*(sFrame
.pwAuthSequence
)))){
1331 s_vMgrRxAuthenSequence_1(pDevice
,pMgmt
, &sFrame
);
1334 s_vMgrRxAuthenSequence_2(pDevice
, pMgmt
, &sFrame
);
1338 s_vMgrRxAuthenSequence_3(pDevice
, pMgmt
, &sFrame
);
1341 s_vMgrRxAuthenSequence_4(pDevice
, pMgmt
, &sFrame
);
1344 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Auth Sequence error, seq = %d\n",
1345 cpu_to_le16((*(sFrame
.pwAuthSequence
))));
1355 * Routine Description:
1356 * Handles incoming authen frames with sequence 1. Currently
1357 * assumes we're an AP. So far, no one appears to use authentication
1368 s_vMgrRxAuthenSequence_1(
1369 IN PSDevice pDevice
,
1370 IN PSMgmtObject pMgmt
,
1371 IN PWLAN_FR_AUTHEN pFrame
1374 PSTxMgmtPacket pTxPacket
= NULL
;
1376 WLAN_FR_AUTHEN sFrame
;
1377 PSKeyItem pTransmitKey
;
1379 // Insert a Node entry
1380 if (!BSSDBbIsSTAInNodeDB(pMgmt
, pFrame
->pHdr
->sA3
.abyAddr2
, &uNodeIndex
)) {
1381 BSSvCreateOneNode((PSDevice
)pDevice
, &uNodeIndex
);
1382 memcpy(pMgmt
->sNodeDBTable
[uNodeIndex
].abyMACAddr
, pFrame
->pHdr
->sA3
.abyAddr2
,
1386 if (pMgmt
->bShareKeyAlgorithm
) {
1387 pMgmt
->sNodeDBTable
[uNodeIndex
].eNodeState
= NODE_KNOWN
;
1388 pMgmt
->sNodeDBTable
[uNodeIndex
].byAuthSequence
= 1;
1391 pMgmt
->sNodeDBTable
[uNodeIndex
].eNodeState
= NODE_AUTH
;
1395 pTxPacket
= (PSTxMgmtPacket
)pMgmt
->pbyMgmtPacketPool
;
1396 memset(pTxPacket
, 0, sizeof(STxMgmtPacket
) + WLAN_AUTHEN_FR_MAXLEN
);
1397 pTxPacket
->p80211Header
= (PUWLAN_80211HDR
)((PBYTE
)pTxPacket
+ sizeof(STxMgmtPacket
));
1398 sFrame
.pBuf
= (PBYTE
)pTxPacket
->p80211Header
;
1399 sFrame
.len
= WLAN_AUTHEN_FR_MAXLEN
;
1400 // format buffer structure
1401 vMgrEncodeAuthen(&sFrame
);
1403 sFrame
.pHdr
->sA3
.wFrameCtl
= cpu_to_le16(
1405 WLAN_SET_FC_FTYPE(WLAN_TYPE_MGR
) |
1406 WLAN_SET_FC_FSTYPE(WLAN_FSTYPE_AUTHEN
)|
1407 WLAN_SET_FC_ISWEP(0)
1409 memcpy( sFrame
.pHdr
->sA3
.abyAddr1
, pFrame
->pHdr
->sA3
.abyAddr2
, WLAN_ADDR_LEN
);
1410 memcpy( sFrame
.pHdr
->sA3
.abyAddr2
, pMgmt
->abyMACAddr
, WLAN_ADDR_LEN
);
1411 memcpy( sFrame
.pHdr
->sA3
.abyAddr3
, pMgmt
->abyCurrBSSID
, WLAN_BSSID_LEN
);
1412 *(sFrame
.pwAuthAlgorithm
) = *(pFrame
->pwAuthAlgorithm
);
1413 *(sFrame
.pwAuthSequence
) = cpu_to_le16(2);
1415 if (cpu_to_le16(*(pFrame
->pwAuthAlgorithm
)) == WLAN_AUTH_ALG_SHAREDKEY
) {
1416 if (pMgmt
->bShareKeyAlgorithm
)
1417 *(sFrame
.pwStatus
) = cpu_to_le16(WLAN_MGMT_STATUS_SUCCESS
);
1419 *(sFrame
.pwStatus
) = cpu_to_le16(WLAN_MGMT_STATUS_UNSUPPORTED_AUTHALG
);
1422 if (pMgmt
->bShareKeyAlgorithm
)
1423 *(sFrame
.pwStatus
) = cpu_to_le16(WLAN_MGMT_STATUS_UNSUPPORTED_AUTHALG
);
1425 *(sFrame
.pwStatus
) = cpu_to_le16(WLAN_MGMT_STATUS_SUCCESS
);
1428 if (pMgmt
->bShareKeyAlgorithm
&&
1429 (cpu_to_le16(*(sFrame
.pwStatus
)) == WLAN_MGMT_STATUS_SUCCESS
)) {
1431 sFrame
.pChallenge
= (PWLAN_IE_CHALLENGE
)(sFrame
.pBuf
+ sFrame
.len
);
1432 sFrame
.len
+= WLAN_CHALLENGE_IE_LEN
;
1433 sFrame
.pChallenge
->byElementID
= WLAN_EID_CHALLENGE
;
1434 sFrame
.pChallenge
->len
= WLAN_CHALLENGE_LEN
;
1435 memset(pMgmt
->abyChallenge
, 0, WLAN_CHALLENGE_LEN
);
1437 if(KeybGetTransmitKey(&(pDevice
->sKey
), pDevice
->abyBroadcastAddr
, GROUP_KEY
, &pTransmitKey
) == TRUE
) {
1438 rc4_init(&pDevice
->SBox
, pDevice
->abyPRNG
, pTransmitKey
->uKeyLength
+3);
1439 rc4_encrypt(&pDevice
->SBox
, pMgmt
->abyChallenge
, pMgmt
->abyChallenge
, WLAN_CHALLENGE_LEN
);
1441 memcpy(sFrame
.pChallenge
->abyChallenge
, pMgmt
->abyChallenge
, WLAN_CHALLENGE_LEN
);
1444 /* Adjust the length fields */
1445 pTxPacket
->cbMPDULen
= sFrame
.len
;
1446 pTxPacket
->cbPayloadLen
= sFrame
.len
- WLAN_HDR_ADDR3_LEN
;
1448 if (pDevice
->bEnableHostapd
) {
1451 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Mgt:Authreq_reply sequence_1 tx.. \n");
1452 if (csMgmt_xmit(pDevice
, pTxPacket
) != CMD_STATUS_PENDING
) {
1453 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Mgt:Authreq_reply sequence_1 tx failed.\n");
1462 * Routine Description:
1463 * Handles incoming auth frames with sequence number 2. Currently
1464 * assumes we're a station.
1474 s_vMgrRxAuthenSequence_2(
1475 IN PSDevice pDevice
,
1476 IN PSMgmtObject pMgmt
,
1477 IN PWLAN_FR_AUTHEN pFrame
1480 WLAN_FR_AUTHEN sFrame
;
1481 PSTxMgmtPacket pTxPacket
= NULL
;
1484 switch (cpu_to_le16((*(pFrame
->pwAuthAlgorithm
))))
1486 case WLAN_AUTH_ALG_OPENSYSTEM
:
1487 if ( cpu_to_le16((*(pFrame
->pwStatus
))) == WLAN_MGMT_STATUS_SUCCESS
){
1488 DBG_PRT(MSG_LEVEL_INFO
, KERN_INFO
"802.11 Authen (OPEN) Successful.\n");
1489 pMgmt
->eCurrState
= WMAC_STATE_AUTH
;
1490 timer_expire(pDevice
->sTimerCommand
, 0);
1493 DBG_PRT(MSG_LEVEL_INFO
, KERN_INFO
"802.11 Authen (OPEN) Failed.\n");
1494 s_vMgrLogStatus(pMgmt
, cpu_to_le16((*(pFrame
->pwStatus
))));
1495 pMgmt
->eCurrState
= WMAC_STATE_IDLE
;
1497 if (pDevice
->eCommandState
== WLAN_AUTHENTICATE_WAIT
) {
1498 // spin_unlock_irq(&pDevice->lock);
1499 // vCommandTimerWait((HANDLE)pDevice, 0);
1500 // spin_lock_irq(&pDevice->lock);
1505 case WLAN_AUTH_ALG_SHAREDKEY
:
1507 if (cpu_to_le16((*(pFrame
->pwStatus
))) == WLAN_MGMT_STATUS_SUCCESS
) {
1508 pTxPacket
= (PSTxMgmtPacket
)pMgmt
->pbyMgmtPacketPool
;
1509 memset(pTxPacket
, 0, sizeof(STxMgmtPacket
) + WLAN_AUTHEN_FR_MAXLEN
);
1510 pTxPacket
->p80211Header
= (PUWLAN_80211HDR
)((PBYTE
)pTxPacket
+ sizeof(STxMgmtPacket
));
1511 sFrame
.pBuf
= (PBYTE
)pTxPacket
->p80211Header
;
1512 sFrame
.len
= WLAN_AUTHEN_FR_MAXLEN
;
1513 // format buffer structure
1514 vMgrEncodeAuthen(&sFrame
);
1516 sFrame
.pHdr
->sA3
.wFrameCtl
= cpu_to_le16(
1518 WLAN_SET_FC_FTYPE(WLAN_TYPE_MGR
) |
1519 WLAN_SET_FC_FSTYPE(WLAN_FSTYPE_AUTHEN
)|
1520 WLAN_SET_FC_ISWEP(1)
1522 memcpy( sFrame
.pHdr
->sA3
.abyAddr1
, pMgmt
->abyCurrBSSID
, WLAN_BSSID_LEN
);
1523 memcpy( sFrame
.pHdr
->sA3
.abyAddr2
, pMgmt
->abyMACAddr
, WLAN_ADDR_LEN
);
1524 memcpy( sFrame
.pHdr
->sA3
.abyAddr3
, pMgmt
->abyCurrBSSID
, WLAN_BSSID_LEN
);
1525 *(sFrame
.pwAuthAlgorithm
) = *(pFrame
->pwAuthAlgorithm
);
1526 *(sFrame
.pwAuthSequence
) = cpu_to_le16(3);
1527 *(sFrame
.pwStatus
) = cpu_to_le16(WLAN_MGMT_STATUS_SUCCESS
);
1528 sFrame
.pChallenge
= (PWLAN_IE_CHALLENGE
)(sFrame
.pBuf
+ sFrame
.len
);
1529 sFrame
.len
+= WLAN_CHALLENGE_IE_LEN
;
1530 sFrame
.pChallenge
->byElementID
= WLAN_EID_CHALLENGE
;
1531 sFrame
.pChallenge
->len
= WLAN_CHALLENGE_LEN
;
1532 memcpy( sFrame
.pChallenge
->abyChallenge
, pFrame
->pChallenge
->abyChallenge
, WLAN_CHALLENGE_LEN
);
1533 // Adjust the length fields
1534 pTxPacket
->cbMPDULen
= sFrame
.len
;
1535 pTxPacket
->cbPayloadLen
= sFrame
.len
- WLAN_HDR_ADDR3_LEN
;
1537 if (csMgmt_xmit(pDevice
, pTxPacket
) != CMD_STATUS_PENDING
) {
1538 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Mgt:Auth_reply sequence_2 tx failed.\n");
1540 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Mgt:Auth_reply sequence_2 tx ...\n");
1543 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Mgt:rx Auth_reply sequence_2 status error ...\n");
1544 if ( pDevice
->eCommandState
== WLAN_AUTHENTICATE_WAIT
) {
1545 // spin_unlock_irq(&pDevice->lock);
1546 // vCommandTimerWait((HANDLE)pDevice, 0);
1547 // spin_lock_irq(&pDevice->lock);
1549 s_vMgrLogStatus(pMgmt
, cpu_to_le16((*(pFrame
->pwStatus
))));
1553 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Mgt: rx auth.seq = 2 unknown AuthAlgorithm=%d\n", cpu_to_le16((*(pFrame
->pwAuthAlgorithm
))));
1563 * Routine Description:
1564 * Handles incoming authen frames with sequence 3. Currently
1565 * assumes we're an AP. This function assumes the frame has
1566 * already been successfully decrypted.
1576 s_vMgrRxAuthenSequence_3(
1577 IN PSDevice pDevice
,
1578 IN PSMgmtObject pMgmt
,
1579 IN PWLAN_FR_AUTHEN pFrame
1582 PSTxMgmtPacket pTxPacket
= NULL
;
1583 UINT uStatusCode
= 0 ;
1584 UINT uNodeIndex
= 0;
1585 WLAN_FR_AUTHEN sFrame
;
1587 if (!WLAN_GET_FC_ISWEP(pFrame
->pHdr
->sA3
.wFrameCtl
)) {
1588 uStatusCode
= WLAN_MGMT_STATUS_CHALLENGE_FAIL
;
1591 if (BSSDBbIsSTAInNodeDB(pMgmt
, pFrame
->pHdr
->sA3
.abyAddr2
, &uNodeIndex
)) {
1592 if (pMgmt
->sNodeDBTable
[uNodeIndex
].byAuthSequence
!= 1) {
1593 uStatusCode
= WLAN_MGMT_STATUS_RX_AUTH_NOSEQ
;
1596 if (memcmp(pMgmt
->abyChallenge
, pFrame
->pChallenge
->abyChallenge
, WLAN_CHALLENGE_LEN
) != 0) {
1597 uStatusCode
= WLAN_MGMT_STATUS_CHALLENGE_FAIL
;
1602 uStatusCode
= WLAN_MGMT_STATUS_UNSPEC_FAILURE
;
1607 pMgmt
->sNodeDBTable
[uNodeIndex
].eNodeState
= NODE_AUTH
;
1608 pMgmt
->sNodeDBTable
[uNodeIndex
].byAuthSequence
= 0;
1610 uStatusCode
= WLAN_MGMT_STATUS_SUCCESS
;
1611 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Challenge text check ok..\n");
1615 pTxPacket
= (PSTxMgmtPacket
)pMgmt
->pbyMgmtPacketPool
;
1616 memset(pTxPacket
, 0, sizeof(STxMgmtPacket
) + WLAN_AUTHEN_FR_MAXLEN
);
1617 pTxPacket
->p80211Header
= (PUWLAN_80211HDR
)((PBYTE
)pTxPacket
+ sizeof(STxMgmtPacket
));
1618 sFrame
.pBuf
= (PBYTE
)pTxPacket
->p80211Header
;
1619 sFrame
.len
= WLAN_AUTHEN_FR_MAXLEN
;
1620 // format buffer structure
1621 vMgrEncodeAuthen(&sFrame
);
1623 sFrame
.pHdr
->sA3
.wFrameCtl
= cpu_to_le16(
1625 WLAN_SET_FC_FTYPE(WLAN_TYPE_MGR
) |
1626 WLAN_SET_FC_FSTYPE(WLAN_FSTYPE_AUTHEN
)|
1627 WLAN_SET_FC_ISWEP(0)
1629 memcpy( sFrame
.pHdr
->sA3
.abyAddr1
, pFrame
->pHdr
->sA3
.abyAddr2
, WLAN_ADDR_LEN
);
1630 memcpy( sFrame
.pHdr
->sA3
.abyAddr2
, pMgmt
->abyMACAddr
, WLAN_ADDR_LEN
);
1631 memcpy( sFrame
.pHdr
->sA3
.abyAddr3
, pMgmt
->abyCurrBSSID
, WLAN_BSSID_LEN
);
1632 *(sFrame
.pwAuthAlgorithm
) = *(pFrame
->pwAuthAlgorithm
);
1633 *(sFrame
.pwAuthSequence
) = cpu_to_le16(4);
1634 *(sFrame
.pwStatus
) = cpu_to_le16(uStatusCode
);
1636 /* Adjust the length fields */
1637 pTxPacket
->cbMPDULen
= sFrame
.len
;
1638 pTxPacket
->cbPayloadLen
= sFrame
.len
- WLAN_HDR_ADDR3_LEN
;
1640 if (pDevice
->bEnableHostapd
) {
1643 if (csMgmt_xmit(pDevice
, pTxPacket
) != CMD_STATUS_PENDING
) {
1644 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Mgt:Authreq_reply sequence_4 tx failed.\n");
1654 * Routine Description:
1655 * Handles incoming authen frames with sequence 4
1664 s_vMgrRxAuthenSequence_4(
1665 IN PSDevice pDevice
,
1666 IN PSMgmtObject pMgmt
,
1667 IN PWLAN_FR_AUTHEN pFrame
1671 if ( cpu_to_le16((*(pFrame
->pwStatus
))) == WLAN_MGMT_STATUS_SUCCESS
){
1672 DBG_PRT(MSG_LEVEL_INFO
, KERN_INFO
"802.11 Authen (SHAREDKEY) Successful.\n");
1673 pMgmt
->eCurrState
= WMAC_STATE_AUTH
;
1674 timer_expire(pDevice
->sTimerCommand
, 0);
1677 DBG_PRT(MSG_LEVEL_INFO
, KERN_INFO
"802.11 Authen (SHAREDKEY) Failed.\n");
1678 s_vMgrLogStatus(pMgmt
, cpu_to_le16((*(pFrame
->pwStatus
))) );
1679 pMgmt
->eCurrState
= WMAC_STATE_IDLE
;
1682 if ( pDevice
->eCommandState
== WLAN_AUTHENTICATE_WAIT
) {
1683 // spin_unlock_irq(&pDevice->lock);
1684 // vCommandTimerWait((HANDLE)pDevice, 0);
1685 // spin_lock_irq(&pDevice->lock);
1692 * Routine Description:
1693 * Handles incoming disassociation frames
1703 s_vMgrRxDisassociation(
1704 IN PSDevice pDevice
,
1705 IN PSMgmtObject pMgmt
,
1706 IN PSRxMgmtPacket pRxPacket
1709 WLAN_FR_DISASSOC sFrame
;
1710 UINT uNodeIndex
= 0;
1711 // CMD_STATUS CmdStatus;
1712 viawget_wpa_header
*wpahdr
;
1714 if ( pMgmt
->eCurrMode
== WMAC_MODE_ESS_AP
){
1715 // if is acting an AP..
1716 // a STA is leaving this BSS..
1717 sFrame
.len
= pRxPacket
->cbMPDULen
;
1718 sFrame
.pBuf
= (PBYTE
)pRxPacket
->p80211Header
;
1719 if (BSSDBbIsSTAInNodeDB(pMgmt
, pRxPacket
->p80211Header
->sA3
.abyAddr2
, &uNodeIndex
)) {
1720 BSSvRemoveOneNode(pDevice
, uNodeIndex
);
1723 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Rx disassoc, sta not found\n");
1726 else if (pMgmt
->eCurrMode
== WMAC_MODE_ESS_STA
){
1727 sFrame
.len
= pRxPacket
->cbMPDULen
;
1728 sFrame
.pBuf
= (PBYTE
)pRxPacket
->p80211Header
;
1729 vMgrDecodeDisassociation(&sFrame
);
1730 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"AP disassociated me, reason=%d.\n", cpu_to_le16(*(sFrame
.pwReason
)));
1731 //TODO: do something let upper layer know or
1732 //try to send associate packet again because of inactivity timeout
1733 // if (pMgmt->eCurrState == WMAC_STATE_ASSOC) {
1734 // vMgrReAssocBeginSta((PSDevice)pDevice, pMgmt, &CmdStatus);
1736 if ((pDevice
->bWPADEVUp
) && (pDevice
->skb
!= NULL
)) {
1737 wpahdr
= (viawget_wpa_header
*)pDevice
->skb
->data
;
1738 wpahdr
->type
= VIAWGET_DISASSOC_MSG
;
1739 wpahdr
->resp_ie_len
= 0;
1740 wpahdr
->req_ie_len
= 0;
1741 skb_put(pDevice
->skb
, sizeof(viawget_wpa_header
));
1742 pDevice
->skb
->dev
= pDevice
->wpadev
;
1743 skb_reset_mac_header(pDevice
->skb
);
1745 pDevice
->skb
->pkt_type
= PACKET_HOST
;
1746 pDevice
->skb
->protocol
= htons(ETH_P_802_2
);
1747 memset(pDevice
->skb
->cb
, 0, sizeof(pDevice
->skb
->cb
));
1748 netif_rx(pDevice
->skb
);
1749 pDevice
->skb
= dev_alloc_skb((int)pDevice
->rx_buf_sz
);
1752 #ifdef WPA_SUPPLICANT_DRIVER_WEXT_SUPPORT
1753 // if(pDevice->bWPASuppWextEnabled == TRUE)
1755 union iwreq_data wrqu
;
1756 memset(&wrqu
, 0, sizeof (wrqu
));
1757 wrqu
.ap_addr
.sa_family
= ARPHRD_ETHER
;
1758 printk("wireless_send_event--->SIOCGIWAP(disassociated)\n");
1759 wireless_send_event(pDevice
->dev
, SIOCGIWAP
, &wrqu
, NULL
);
1763 /* else, ignore it */
1771 * Routine Description:
1772 * Handles incoming deauthentication frames
1782 s_vMgrRxDeauthentication(
1783 IN PSDevice pDevice
,
1784 IN PSMgmtObject pMgmt
,
1785 IN PSRxMgmtPacket pRxPacket
1788 WLAN_FR_DEAUTHEN sFrame
;
1789 UINT uNodeIndex
= 0;
1790 viawget_wpa_header
*wpahdr
;
1793 if (pMgmt
->eCurrMode
== WMAC_MODE_ESS_AP
){
1795 // if is acting an AP..
1796 // a STA is leaving this BSS..
1797 sFrame
.len
= pRxPacket
->cbMPDULen
;
1798 sFrame
.pBuf
= (PBYTE
)pRxPacket
->p80211Header
;
1799 if (BSSDBbIsSTAInNodeDB(pMgmt
, pRxPacket
->p80211Header
->sA3
.abyAddr2
, &uNodeIndex
)) {
1800 BSSvRemoveOneNode(pDevice
, uNodeIndex
);
1803 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"Rx deauth, sta not found\n");
1807 if (pMgmt
->eCurrMode
== WMAC_MODE_ESS_STA
) {
1808 sFrame
.len
= pRxPacket
->cbMPDULen
;
1809 sFrame
.pBuf
= (PBYTE
)pRxPacket
->p80211Header
;
1810 vMgrDecodeDeauthen(&sFrame
);
1811 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"AP deauthed me, reason=%d.\n", cpu_to_le16((*(sFrame
.pwReason
))));
1812 // TODO: update BSS list for specific BSSID if pre-authentication case
1813 if (IS_ETH_ADDRESS_EQUAL(sFrame
.pHdr
->sA3
.abyAddr3
, pMgmt
->abyCurrBSSID
)) {
1814 if (pMgmt
->eCurrState
>= WMAC_STATE_AUTHPENDING
) {
1815 pMgmt
->sNodeDBTable
[0].bActive
= FALSE
;
1816 pMgmt
->eCurrMode
= WMAC_MODE_STANDBY
;
1817 pMgmt
->eCurrState
= WMAC_STATE_IDLE
;
1818 netif_stop_queue(pDevice
->dev
);
1819 pDevice
->bLinkPass
= FALSE
;
1823 if ((pDevice
->bWPADEVUp
) && (pDevice
->skb
!= NULL
)) {
1824 wpahdr
= (viawget_wpa_header
*)pDevice
->skb
->data
;
1825 wpahdr
->type
= VIAWGET_DISASSOC_MSG
;
1826 wpahdr
->resp_ie_len
= 0;
1827 wpahdr
->req_ie_len
= 0;
1828 skb_put(pDevice
->skb
, sizeof(viawget_wpa_header
));
1829 pDevice
->skb
->dev
= pDevice
->wpadev
;
1830 skb_reset_mac_header(pDevice
->skb
);
1831 pDevice
->skb
->pkt_type
= PACKET_HOST
;
1832 pDevice
->skb
->protocol
= htons(ETH_P_802_2
);
1833 memset(pDevice
->skb
->cb
, 0, sizeof(pDevice
->skb
->cb
));
1834 netif_rx(pDevice
->skb
);
1835 pDevice
->skb
= dev_alloc_skb((int)pDevice
->rx_buf_sz
);
1838 #ifdef WPA_SUPPLICANT_DRIVER_WEXT_SUPPORT
1839 // if(pDevice->bWPASuppWextEnabled == TRUE)
1841 union iwreq_data wrqu
;
1842 memset(&wrqu
, 0, sizeof (wrqu
));
1843 wrqu
.ap_addr
.sa_family
= ARPHRD_ETHER
;
1844 PRINT_K("wireless_send_event--->SIOCGIWAP(disauthen)\n");
1845 wireless_send_event(pDevice
->dev
, SIOCGIWAP
, &wrqu
, NULL
);
1850 /* else, ignore it. TODO: IBSS authentication service
1851 would be implemented here */
1857 //2008-8-4 <add> by chester
1860 * Routine Description:
1861 * check if current channel is match ZoneType.
1870 ChannelExceedZoneType(
1871 IN PSDevice pDevice
,
1872 IN BYTE byCurrChannel
1877 switch(pDevice
->byZoneType
) {
1878 case 0x00: //USA:1~11
1879 if((byCurrChannel
<1) ||(byCurrChannel
>11))
1882 case 0x01: //Japan:1~13
1883 case 0x02: //Europe:1~13
1884 if((byCurrChannel
<1) ||(byCurrChannel
>13))
1887 default: //reserve for other zonetype
1897 * Routine Description:
1898 * Handles and analysis incoming beacon frames.
1909 IN PSDevice pDevice
,
1910 IN PSMgmtObject pMgmt
,
1911 IN PSRxMgmtPacket pRxPacket
,
1917 WLAN_FR_BEACON sFrame
;
1919 BOOL bIsBSSIDEqual
= FALSE
;
1920 BOOL bIsSSIDEqual
= FALSE
;
1921 BOOL bTSFLargeDiff
= FALSE
;
1922 BOOL bTSFOffsetPostive
= FALSE
;
1923 BOOL bUpdateTSF
= FALSE
;
1924 BOOL bIsAPBeacon
= FALSE
;
1925 BOOL bIsChannelEqual
= FALSE
;
1926 UINT uLocateByteIndex
;
1927 BYTE byTIMBitOn
= 0;
1928 WORD wAIDNumber
= 0;
1930 QWORD qwTimestamp
, qwLocalTSF
;
1932 WORD wStartIndex
= 0;
1934 BYTE byCurrChannel
= pRxPacket
->byRxChannel
;
1936 UINT uRateLen
= WLAN_RATES_MAXLEN
;
1937 BOOL bChannelHit
= FALSE
;
1938 BOOL bUpdatePhyParameter
= FALSE
;
1939 BYTE byIEChannel
= 0;
1942 memset(&sFrame
, 0, sizeof(WLAN_FR_BEACON
));
1943 sFrame
.len
= pRxPacket
->cbMPDULen
;
1944 sFrame
.pBuf
= (PBYTE
)pRxPacket
->p80211Header
;
1946 // decode the beacon frame
1947 vMgrDecodeBeacon(&sFrame
);
1949 if ((sFrame
.pwBeaconInterval
== 0) ||
1950 (sFrame
.pwCapInfo
== 0) ||
1951 (sFrame
.pSSID
== 0) ||
1952 (sFrame
.pSuppRates
== 0) ) {
1953 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Rx beacon frame error\n");
1958 if (sFrame
.pDSParms
!= NULL
) {
1959 if (byCurrChannel
> CB_MAX_CHANNEL_24G
) {
1960 // channel remapping to
1961 byIEChannel
= CARDbyGetChannelMapping(pDevice
, sFrame
.pDSParms
->byCurrChannel
, PHY_TYPE_11A
);
1963 byIEChannel
= sFrame
.pDSParms
->byCurrChannel
;
1965 if (byCurrChannel
!= byIEChannel
) {
1966 // adjust channel info. bcs we rcv adjcent channel pakckets
1967 bChannelHit
= FALSE
;
1968 byCurrChannel
= byIEChannel
;
1971 // no DS channel info
1974 //2008-0730-01<Add>by MikeLiu
1975 if(ChannelExceedZoneType(pDevice
,byCurrChannel
)==TRUE
)
1978 if (sFrame
.pERP
!= NULL
) {
1979 sERP
.byERP
= sFrame
.pERP
->byContext
;
1980 sERP
.bERPExist
= TRUE
;
1983 sERP
.bERPExist
= FALSE
;
1987 pBSSList
= BSSpAddrIsInBSSList((HANDLE
)pDevice
, sFrame
.pHdr
->sA3
.abyAddr3
, sFrame
.pSSID
);
1988 if (pBSSList
== NULL
) {
1989 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Beacon/insert: RxChannel = : %d\n", byCurrChannel
);
1990 BSSbInsertToBSSList((HANDLE
)pDevice
,
1991 sFrame
.pHdr
->sA3
.abyAddr3
,
1992 *sFrame
.pqwTimestamp
,
1993 *sFrame
.pwBeaconInterval
,
1998 sFrame
.pExtSuppRates
,
2004 sFrame
.len
- WLAN_HDR_ADDR3_LEN
,
2005 sFrame
.pHdr
->sA4
.abyAddr4
, // payload of beacon
2010 // DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"update bcn: RxChannel = : %d\n", byCurrChannel);
2011 BSSbUpdateToBSSList((HANDLE
)pDevice
,
2012 *sFrame
.pqwTimestamp
,
2013 *sFrame
.pwBeaconInterval
,
2019 sFrame
.pExtSuppRates
,
2026 sFrame
.len
- WLAN_HDR_ADDR3_LEN
,
2027 sFrame
.pHdr
->sA4
.abyAddr4
, // payload of probresponse
2037 if(byCurrChannel
== (BYTE
)pMgmt
->uCurrChannel
)
2038 bIsChannelEqual
= TRUE
;
2040 if (bIsChannelEqual
&& (pMgmt
->eCurrMode
== WMAC_MODE_ESS_AP
)) {
2042 // if rx beacon without ERP field
2043 if (sERP
.bERPExist
) {
2044 if (WLAN_GET_ERP_USE_PROTECTION(sERP
.byERP
)){
2045 pDevice
->byERPFlag
|= WLAN_SET_ERP_USE_PROTECTION(1);
2046 pDevice
->wUseProtectCntDown
= USE_PROTECT_PERIOD
;
2050 pDevice
->byERPFlag
|= WLAN_SET_ERP_USE_PROTECTION(1);
2051 pDevice
->wUseProtectCntDown
= USE_PROTECT_PERIOD
;
2054 if (pMgmt
->eCurrMode
== WMAC_MODE_IBSS_STA
) {
2055 if(!WLAN_GET_CAP_INFO_SHORTPREAMBLE(*sFrame
.pwCapInfo
))
2056 pDevice
->byERPFlag
|= WLAN_SET_ERP_BARKER_MODE(1);
2058 pDevice
->byERPFlag
|= WLAN_SET_ERP_NONERP_PRESENT(1);
2062 if (WLAN_GET_ERP_USE_PROTECTION(pDevice
->byERPFlag
)){
2063 if (!pDevice
->bProtectMode
) {
2064 MACvEnableProtectMD(pDevice
->PortOffset
);
2065 pDevice
->bProtectMode
= TRUE
;
2071 if (pMgmt
->eCurrMode
== WMAC_MODE_ESS_AP
)
2074 // check if BSSID the same
2075 if (memcmp(sFrame
.pHdr
->sA3
.abyAddr3
,
2076 pMgmt
->abyCurrBSSID
,
2077 WLAN_BSSID_LEN
) == 0) {
2079 bIsBSSIDEqual
= TRUE
;
2081 // 2008-05-21 <add> by Richardtai
2082 pDevice
->uCurrRSSI
= pRxPacket
->uRSSI
;
2083 pDevice
->byCurrSQ
= pRxPacket
->bySQ
;
2085 if (pMgmt
->sNodeDBTable
[0].uInActiveCount
!= 0) {
2086 pMgmt
->sNodeDBTable
[0].uInActiveCount
= 0;
2087 //DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"BCN:Wake Count= [%d]\n", pMgmt->wCountToWakeUp);
2090 // check if SSID the same
2091 if (sFrame
.pSSID
->len
== ((PWLAN_IE_SSID
)pMgmt
->abyCurrSSID
)->len
) {
2092 if (memcmp(sFrame
.pSSID
->abySSID
,
2093 ((PWLAN_IE_SSID
)pMgmt
->abyCurrSSID
)->abySSID
,
2096 bIsSSIDEqual
= TRUE
;
2100 if ((WLAN_GET_CAP_INFO_ESS(*sFrame
.pwCapInfo
)== TRUE
) &&
2101 (bIsBSSIDEqual
== TRUE
) &&
2102 (bIsSSIDEqual
== TRUE
) &&
2103 (pMgmt
->eCurrMode
== WMAC_MODE_ESS_STA
) &&
2104 (pMgmt
->eCurrState
== WMAC_STATE_ASSOC
)) {
2105 // add state check to prevent reconnect fail since we'll receive Beacon
2109 if (pBSSList
!= NULL
) {
2111 // Compare PHY paramater setting
2112 if (pMgmt
->wCurrCapInfo
!= pBSSList
->wCapInfo
) {
2113 bUpdatePhyParameter
= TRUE
;
2114 pMgmt
->wCurrCapInfo
= pBSSList
->wCapInfo
;
2116 if (sFrame
.pERP
!= NULL
) {
2117 if ((sFrame
.pERP
->byElementID
== WLAN_EID_ERP
) &&
2118 (pMgmt
->byERPContext
!= sFrame
.pERP
->byContext
)) {
2119 bUpdatePhyParameter
= TRUE
;
2120 pMgmt
->byERPContext
= sFrame
.pERP
->byContext
;
2124 // Basic Rate Set may change dynamiclly
2126 if (pBSSList
->eNetworkTypeInUse
== PHY_TYPE_11B
) {
2127 uRateLen
= WLAN_RATES_MAXLEN_11B
;
2129 pMgmt
->abyCurrSuppRates
[1] = RATEuSetIE((PWLAN_IE_SUPP_RATES
)pBSSList
->abySuppRates
,
2130 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrSuppRates
,
2132 pMgmt
->abyCurrExtSuppRates
[1] = RATEuSetIE((PWLAN_IE_SUPP_RATES
)pBSSList
->abyExtSuppRates
,
2133 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrExtSuppRates
,
2135 RATEvParseMaxRate( (PVOID
)pDevice
,
2136 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrSuppRates
,
2137 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrExtSuppRates
,
2139 &(pMgmt
->sNodeDBTable
[0].wMaxBasicRate
),
2140 &(pMgmt
->sNodeDBTable
[0].wMaxSuppRate
),
2141 &(pMgmt
->sNodeDBTable
[0].wSuppRate
),
2142 &(pMgmt
->sNodeDBTable
[0].byTopCCKBasicRate
),
2143 &(pMgmt
->sNodeDBTable
[0].byTopOFDMBasicRate
)
2146 //printk("RxBeacon:MaxSuppRate is %d\n",pMgmt->sNodeDBTable[0].wMaxSuppRate);
2148 if (bUpdatePhyParameter
== TRUE
) {
2149 CARDbSetPhyParameter( pMgmt
->pAdapter
,
2150 pMgmt
->eCurrentPHYMode
,
2151 pMgmt
->wCurrCapInfo
,
2152 pMgmt
->byERPContext
,
2153 pMgmt
->abyCurrSuppRates
,
2154 pMgmt
->abyCurrExtSuppRates
2157 if (sFrame
.pIE_PowerConstraint
!= NULL
) {
2158 CARDvSetPowerConstraint(pMgmt
->pAdapter
,
2159 (BYTE
) pBSSList
->uChannel
,
2160 sFrame
.pIE_PowerConstraint
->byPower
2163 if (sFrame
.pIE_CHSW
!= NULL
) {
2164 CARDbChannelSwitch( pMgmt
->pAdapter
,
2165 sFrame
.pIE_CHSW
->byMode
,
2166 CARDbyGetChannelMapping(pMgmt
->pAdapter
, sFrame
.pIE_CHSW
->byMode
, pMgmt
->eCurrentPHYMode
),
2167 sFrame
.pIE_CHSW
->byCount
2170 } else if (bIsChannelEqual
== FALSE
) {
2171 CARDbSetChannel(pMgmt
->pAdapter
, pBSSList
->uChannel
);
2176 // DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"Beacon 2 \n");
2177 // check if CF field exisit
2178 if (WLAN_GET_CAP_INFO_ESS(*sFrame
.pwCapInfo
)) {
2179 if (sFrame
.pCFParms
->wCFPDurRemaining
> 0) {
2180 // TODO: deal with CFP period to set NAV
2184 HIDWORD(qwTimestamp
) = cpu_to_le32(HIDWORD(*sFrame
.pqwTimestamp
));
2185 LODWORD(qwTimestamp
) = cpu_to_le32(LODWORD(*sFrame
.pqwTimestamp
));
2186 HIDWORD(qwLocalTSF
) = HIDWORD(pRxPacket
->qwLocalTSF
);
2187 LODWORD(qwLocalTSF
) = LODWORD(pRxPacket
->qwLocalTSF
);
2189 // check if beacon TSF larger or small than our local TSF
2190 if (HIDWORD(qwTimestamp
) == HIDWORD(qwLocalTSF
)) {
2191 if (LODWORD(qwTimestamp
) >= LODWORD(qwLocalTSF
)) {
2192 bTSFOffsetPostive
= TRUE
;
2195 bTSFOffsetPostive
= FALSE
;
2198 else if (HIDWORD(qwTimestamp
) > HIDWORD(qwLocalTSF
)) {
2199 bTSFOffsetPostive
= TRUE
;
2201 else if (HIDWORD(qwTimestamp
) < HIDWORD(qwLocalTSF
)) {
2202 bTSFOffsetPostive
= FALSE
;
2205 if (bTSFOffsetPostive
) {
2206 qwTSFOffset
= CARDqGetTSFOffset(pRxPacket
->byRxRate
, (qwTimestamp
), (qwLocalTSF
));
2209 qwTSFOffset
= CARDqGetTSFOffset(pRxPacket
->byRxRate
, (qwLocalTSF
), (qwTimestamp
));
2212 if (HIDWORD(qwTSFOffset
) != 0 ||
2213 (LODWORD(qwTSFOffset
) > TRIVIAL_SYNC_DIFFERENCE
)) {
2214 bTSFLargeDiff
= TRUE
;
2219 if (bIsAPBeacon
== TRUE
) {
2221 // Infra mode: Local TSF always follow AP's TSF if Difference huge.
2225 if ((pDevice
->bEnablePSMode
== TRUE
) &&(sFrame
.pTIM
!= 0)) {
2227 // deal with DTIM, analysis TIM
2228 pMgmt
->bMulticastTIM
= WLAN_MGMT_IS_MULTICAST_TIM(sFrame
.pTIM
->byBitMapCtl
) ? TRUE
: FALSE
;
2229 pMgmt
->byDTIMCount
= sFrame
.pTIM
->byDTIMCount
;
2230 pMgmt
->byDTIMPeriod
= sFrame
.pTIM
->byDTIMPeriod
;
2231 wAIDNumber
= pMgmt
->wCurrAID
& ~(BIT14
|BIT15
);
2233 // check if AID in TIM field bit on
2235 wStartIndex
= WLAN_MGMT_GET_TIM_OFFSET(sFrame
.pTIM
->byBitMapCtl
) << 1;
2237 wAIDIndex
= (wAIDNumber
>> 3);
2238 if ((wAIDNumber
> 0) && (wAIDIndex
>= wStartIndex
)) {
2239 uLocateByteIndex
= wAIDIndex
- wStartIndex
;
2240 // len = byDTIMCount + byDTIMPeriod + byDTIMPeriod + byVirtBitMap[0~250]
2241 if (sFrame
.pTIM
->len
>= (uLocateByteIndex
+ 4)) {
2242 byTIMBitOn
= (0x01) << ((wAIDNumber
) % 8);
2243 pMgmt
->bInTIM
= sFrame
.pTIM
->byVirtBitMap
[uLocateByteIndex
] & byTIMBitOn
? TRUE
: FALSE
;
2246 pMgmt
->bInTIM
= FALSE
;
2250 pMgmt
->bInTIM
= FALSE
;
2253 if (pMgmt
->bInTIM
||
2254 (pMgmt
->bMulticastTIM
&& (pMgmt
->byDTIMCount
== 0))) {
2255 pMgmt
->bInTIMWake
= TRUE
;
2256 // send out ps-poll packet
2257 // DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "BCN:In TIM\n");
2258 if (pMgmt
->bInTIM
) {
2259 PSvSendPSPOLL((PSDevice
)pDevice
);
2260 // DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "BCN:PS-POLL sent..\n");
2265 pMgmt
->bInTIMWake
= FALSE
;
2266 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"BCN: Not In TIM..\n");
2267 if (pDevice
->bPWBitOn
== FALSE
) {
2268 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"BCN: Send Null Packet\n");
2269 if (PSbSendNullPacket(pDevice
))
2270 pDevice
->bPWBitOn
= TRUE
;
2272 if(PSbConsiderPowerDown(pDevice
, FALSE
, FALSE
)) {
2273 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"BCN: Power down now...\n");
2281 if ((pMgmt
->eCurrMode
== WMAC_MODE_IBSS_STA
) && !bIsAPBeacon
&& bIsChannelEqual
) {
2282 if (bIsBSSIDEqual
) {
2283 // Use sNodeDBTable[0].uInActiveCount as IBSS beacons received count.
2284 if (pMgmt
->sNodeDBTable
[0].uInActiveCount
!= 0)
2285 pMgmt
->sNodeDBTable
[0].uInActiveCount
= 0;
2287 // adhoc mode:TSF updated only when beacon larger then local TSF
2288 if (bTSFLargeDiff
&& bTSFOffsetPostive
&&
2289 (pMgmt
->eCurrState
== WMAC_STATE_JOINTED
))
2292 // During dpc, already in spinlocked.
2293 if (BSSDBbIsSTAInNodeDB(pMgmt
, sFrame
.pHdr
->sA3
.abyAddr2
, &uNodeIndex
)) {
2295 // Update the STA, (Techically the Beacons of all the IBSS nodes
2296 // should be identical, but that's not happening in practice.
2297 pMgmt
->abyCurrSuppRates
[1] = RATEuSetIE((PWLAN_IE_SUPP_RATES
)sFrame
.pSuppRates
,
2298 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrSuppRates
,
2299 WLAN_RATES_MAXLEN_11B
);
2300 RATEvParseMaxRate( (PVOID
)pDevice
,
2301 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrSuppRates
,
2304 &(pMgmt
->sNodeDBTable
[uNodeIndex
].wMaxBasicRate
),
2305 &(pMgmt
->sNodeDBTable
[uNodeIndex
].wMaxSuppRate
),
2306 &(pMgmt
->sNodeDBTable
[uNodeIndex
].wSuppRate
),
2307 &(pMgmt
->sNodeDBTable
[uNodeIndex
].byTopCCKBasicRate
),
2308 &(pMgmt
->sNodeDBTable
[uNodeIndex
].byTopOFDMBasicRate
)
2310 pMgmt
->sNodeDBTable
[uNodeIndex
].bShortPreamble
= WLAN_GET_CAP_INFO_SHORTPREAMBLE(*sFrame
.pwCapInfo
);
2311 pMgmt
->sNodeDBTable
[uNodeIndex
].bShortSlotTime
= WLAN_GET_CAP_INFO_SHORTSLOTTIME(*sFrame
.pwCapInfo
);
2312 pMgmt
->sNodeDBTable
[uNodeIndex
].uInActiveCount
= 0;
2315 // Todo, initial Node content
2316 BSSvCreateOneNode((PSDevice
)pDevice
, &uNodeIndex
);
2318 pMgmt
->abyCurrSuppRates
[1] = RATEuSetIE((PWLAN_IE_SUPP_RATES
)sFrame
.pSuppRates
,
2319 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrSuppRates
,
2320 WLAN_RATES_MAXLEN_11B
);
2321 RATEvParseMaxRate( (PVOID
)pDevice
,
2322 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrSuppRates
,
2325 &(pMgmt
->sNodeDBTable
[uNodeIndex
].wMaxBasicRate
),
2326 &(pMgmt
->sNodeDBTable
[uNodeIndex
].wMaxSuppRate
),
2327 &(pMgmt
->sNodeDBTable
[uNodeIndex
].wSuppRate
),
2328 &(pMgmt
->sNodeDBTable
[uNodeIndex
].byTopCCKBasicRate
),
2329 &(pMgmt
->sNodeDBTable
[uNodeIndex
].byTopOFDMBasicRate
)
2332 memcpy(pMgmt
->sNodeDBTable
[uNodeIndex
].abyMACAddr
, sFrame
.pHdr
->sA3
.abyAddr2
, WLAN_ADDR_LEN
);
2333 pMgmt
->sNodeDBTable
[uNodeIndex
].bShortPreamble
= WLAN_GET_CAP_INFO_SHORTPREAMBLE(*sFrame
.pwCapInfo
);
2334 pMgmt
->sNodeDBTable
[uNodeIndex
].wTxDataRate
= pMgmt
->sNodeDBTable
[uNodeIndex
].wMaxSuppRate
;
2336 //if (uNodeIndex == 0)
2338 printk("s_vMgrRxBeacon:TxDataRate is %d,Index is %d\n",pMgmt
->sNodeDBTable
[uNodeIndex
].wTxDataRate
,uNodeIndex
);
2342 pMgmt->sNodeDBTable[uNodeIndex].bShortSlotTime = WLAN_GET_CAP_INFO_SHORTSLOTTIME(*sFrame.pwCapInfo);
2343 if(pMgmt->sNodeDBTable[uNodeIndex].wMaxSuppRate > RATE_11M)
2344 pMgmt->sNodeDBTable[uNodeIndex].bERPExist = TRUE;
2348 // if other stations jointed, indicate connect to upper layer..
2349 if (pMgmt
->eCurrState
== WMAC_STATE_STARTED
) {
2350 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Current IBSS State: [Started]........to: [Jointed] \n");
2351 pMgmt
->eCurrState
= WMAC_STATE_JOINTED
;
2352 pDevice
->bLinkPass
= TRUE
;
2353 if (netif_queue_stopped(pDevice
->dev
)){
2354 netif_wake_queue(pDevice
->dev
);
2356 pMgmt
->sNodeDBTable
[0].bActive
= TRUE
;
2357 pMgmt
->sNodeDBTable
[0].uInActiveCount
= 0;
2361 else if (bIsSSIDEqual
) {
2363 // See other adhoc sta with the same SSID but BSSID is different.
2364 // adpot this vars only when TSF larger then us.
2365 if (bTSFLargeDiff
&& bTSFOffsetPostive
) {
2366 // we don't support ATIM under adhoc mode
2367 // if ( sFrame.pIBSSParms->wATIMWindow == 0) {
2369 // TODO: check sFrame cap if privacy on, and support rate syn
2370 memcpy(pMgmt
->abyCurrBSSID
, sFrame
.pHdr
->sA3
.abyAddr3
, WLAN_BSSID_LEN
);
2371 memcpy(pDevice
->abyBSSID
, pMgmt
->abyCurrBSSID
, WLAN_BSSID_LEN
);
2372 pMgmt
->wCurrATIMWindow
= cpu_to_le16(sFrame
.pIBSSParms
->wATIMWindow
);
2373 pMgmt
->wCurrBeaconPeriod
= cpu_to_le16(*sFrame
.pwBeaconInterval
);
2374 pMgmt
->abyCurrSuppRates
[1] = RATEuSetIE((PWLAN_IE_SUPP_RATES
)sFrame
.pSuppRates
,
2375 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrSuppRates
,
2376 WLAN_RATES_MAXLEN_11B
);
2377 // set HW beacon interval and re-synchronizing....
2378 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Rejoining to Other Adhoc group with same SSID........\n");
2379 VNSvOutPortW(pDevice
->PortOffset
+ MAC_REG_BI
, pMgmt
->wCurrBeaconPeriod
);
2380 CARDbUpdateTSF(pDevice
, pRxPacket
->byRxRate
, qwTimestamp
, qwLocalTSF
);
2381 CARDvUpdateNextTBTT(pDevice
->PortOffset
, qwTimestamp
, pMgmt
->wCurrBeaconPeriod
);
2382 // Turn off bssid filter to avoid filter others adhoc station which bssid is different.
2383 MACvWriteBSSIDAddress(pDevice
->PortOffset
, pMgmt
->abyCurrBSSID
);
2385 CARDbSetPhyParameter ( pMgmt
->pAdapter
,
2386 pMgmt
->eCurrentPHYMode
,
2387 pMgmt
->wCurrCapInfo
,
2388 pMgmt
->byERPContext
,
2389 pMgmt
->abyCurrSuppRates
,
2390 pMgmt
->abyCurrExtSuppRates
);
2393 // MACvRegBitsOff(pDevice->PortOffset, MAC_REG_RCR, RCR_BSSID);
2394 // set highest basic rate
2395 // s_vSetHighestBasicRate(pDevice, (PWLAN_IE_SUPP_RATES)pMgmt->abyCurrSuppRates);
2396 // Prepare beacon frame
2397 bMgrPrepareBeaconToSend((HANDLE
)pDevice
, pMgmt
);
2405 CARDbGetCurrentTSF(pDevice
->PortOffset
, &qwCurrTSF
);
2406 CARDbUpdateTSF(pDevice
, pRxPacket
->byRxRate
, qwTimestamp
, pRxPacket
->qwLocalTSF
);
2407 CARDbGetCurrentTSF(pDevice
->PortOffset
, &qwCurrTSF
);
2408 CARDvUpdateNextTBTT(pDevice
->PortOffset
, qwTimestamp
, pMgmt
->wCurrBeaconPeriod
);
2418 * Routine Description:
2419 * Instructs the hw to create a bss using the supplied
2420 * attributes. Note that this implementation only supports Ad-Hoc
2430 IN HANDLE hDeviceContext
,
2431 OUT PCMD_STATUS pStatus
2434 PSDevice pDevice
= (PSDevice
)hDeviceContext
;
2435 PSMgmtObject pMgmt
= pDevice
->pMgmt
;
2438 BYTE byTopCCKBasicRate
;
2439 BYTE byTopOFDMBasicRate
;
2442 BYTE abyRATE
[] = {0x82, 0x84, 0x8B, 0x96, 0x24, 0x30, 0x48, 0x6C, 0x0C, 0x12, 0x18, 0x60};
2443 BYTE abyCCK_RATE
[] = {0x82, 0x84, 0x8B, 0x96};
2444 BYTE abyOFDM_RATE
[] = {0x0C, 0x12, 0x18, 0x24, 0x30, 0x48, 0x60, 0x6C};
2447 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Create Basic Service Set .......\n");
2449 if (pMgmt
->eConfigMode
== WMAC_CONFIG_IBSS_STA
) {
2450 if ((pMgmt
->eAuthenMode
== WMAC_AUTH_WPANONE
) &&
2451 (pDevice
->eEncryptionStatus
!= Ndis802_11Encryption2Enabled
) &&
2452 (pDevice
->eEncryptionStatus
!= Ndis802_11Encryption3Enabled
)) {
2453 // encryption mode error
2454 *pStatus
= CMD_STATUS_FAILURE
;
2459 pMgmt
->abyCurrSuppRates
[0] = WLAN_EID_SUPP_RATES
;
2460 pMgmt
->abyCurrExtSuppRates
[0] = WLAN_EID_EXTSUPP_RATES
;
2462 if (pMgmt
->eConfigMode
== WMAC_CONFIG_AP
) {
2463 pMgmt
->eCurrentPHYMode
= pMgmt
->byAPBBType
;
2465 if (pDevice
->byBBType
== BB_TYPE_11G
)
2466 pMgmt
->eCurrentPHYMode
= PHY_TYPE_11G
;
2467 if (pDevice
->byBBType
== BB_TYPE_11B
)
2468 pMgmt
->eCurrentPHYMode
= PHY_TYPE_11B
;
2469 if (pDevice
->byBBType
== BB_TYPE_11A
)
2470 pMgmt
->eCurrentPHYMode
= PHY_TYPE_11A
;
2473 if (pMgmt
->eCurrentPHYMode
!= PHY_TYPE_11A
) {
2474 pMgmt
->abyCurrSuppRates
[1] = WLAN_RATES_MAXLEN_11B
;
2475 pMgmt
->abyCurrExtSuppRates
[1] = 0;
2476 for (ii
= 0; ii
< 4; ii
++)
2477 pMgmt
->abyCurrSuppRates
[2+ii
] = abyRATE
[ii
];
2479 pMgmt
->abyCurrSuppRates
[1] = 8;
2480 pMgmt
->abyCurrExtSuppRates
[1] = 0;
2481 for (ii
= 0; ii
< 8; ii
++)
2482 pMgmt
->abyCurrSuppRates
[2+ii
] = abyRATE
[ii
];
2486 if (pMgmt
->eCurrentPHYMode
== PHY_TYPE_11G
) {
2487 pMgmt
->abyCurrSuppRates
[1] = 8;
2488 pMgmt
->abyCurrExtSuppRates
[1] = 4;
2489 for (ii
= 0; ii
< 4; ii
++)
2490 pMgmt
->abyCurrSuppRates
[2+ii
] = abyCCK_RATE
[ii
];
2491 for (ii
= 4; ii
< 8; ii
++)
2492 pMgmt
->abyCurrSuppRates
[2+ii
] = abyOFDM_RATE
[ii
-4];
2493 for (ii
= 0; ii
< 4; ii
++)
2494 pMgmt
->abyCurrExtSuppRates
[2+ii
] = abyOFDM_RATE
[ii
+4];
2498 // Disable Protect Mode
2499 pDevice
->bProtectMode
= 0;
2500 MACvDisableProtectMD(pDevice
->PortOffset
);
2502 pDevice
->bBarkerPreambleMd
= 0;
2503 MACvDisableBarkerPreambleMd(pDevice
->PortOffset
);
2505 // Kyle Test 2003.11.04
2507 // set HW beacon interval
2508 if (pMgmt
->wIBSSBeaconPeriod
== 0)
2509 pMgmt
->wIBSSBeaconPeriod
= DEFAULT_IBSS_BI
;
2512 CARDbGetCurrentTSF(pDevice
->PortOffset
, &qwCurrTSF
);
2513 // clear TSF counter
2514 VNSvOutPortB(pDevice
->PortOffset
+ MAC_REG_TFTCTL
, TFTCTL_TSFCNTRST
);
2515 // enable TSF counter
2516 VNSvOutPortB(pDevice
->PortOffset
+ MAC_REG_TFTCTL
, TFTCTL_TSFCNTREN
);
2519 CARDvSetFirstNextTBTT(pDevice
->PortOffset
, pMgmt
->wIBSSBeaconPeriod
);
2521 pMgmt
->uIBSSChannel
= pDevice
->uChannel
;
2523 if (pMgmt
->uIBSSChannel
== 0)
2524 pMgmt
->uIBSSChannel
= DEFAULT_IBSS_CHANNEL
;
2529 RATEvParseMaxRate((PVOID
)pDevice
, (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrSuppRates
,
2530 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrExtSuppRates
, TRUE
,
2531 &wMaxBasicRate
, &wMaxSuppRate
, &wSuppRate
,
2532 &byTopCCKBasicRate
, &byTopOFDMBasicRate
);
2535 if (pMgmt
->eConfigMode
== WMAC_CONFIG_AP
) {
2536 pMgmt
->eCurrMode
= WMAC_MODE_ESS_AP
;
2539 if (pMgmt
->eConfigMode
== WMAC_CONFIG_IBSS_STA
) {
2540 MEMvCopy(pMgmt
->abyIBSSDFSOwner
, pDevice
->abyCurrentNetAddr
, 6);
2541 pMgmt
->byIBSSDFSRecovery
= 10;
2542 pMgmt
->eCurrMode
= WMAC_MODE_IBSS_STA
;
2545 // Adopt pre-configured IBSS vars to current vars
2546 pMgmt
->eCurrState
= WMAC_STATE_STARTED
;
2547 pMgmt
->wCurrBeaconPeriod
= pMgmt
->wIBSSBeaconPeriod
;
2548 pMgmt
->uCurrChannel
= pMgmt
->uIBSSChannel
;
2549 pMgmt
->wCurrATIMWindow
= pMgmt
->wIBSSATIMWindow
;
2550 MACvWriteATIMW(pDevice
->PortOffset
, pMgmt
->wCurrATIMWindow
);
2551 pDevice
->uCurrRSSI
= 0;
2552 pDevice
->byCurrSQ
= 0;
2553 //memcpy(pMgmt->abyDesireSSID,pMgmt->abyAdHocSSID,
2554 // ((PWLAN_IE_SSID)pMgmt->abyAdHocSSID)->len + WLAN_IEHDR_LEN);
2555 memset(pMgmt
->abyCurrSSID
, 0, WLAN_IEHDR_LEN
+ WLAN_SSID_MAXLEN
+ 1);
2556 memcpy(pMgmt
->abyCurrSSID
,
2557 pMgmt
->abyDesireSSID
,
2558 ((PWLAN_IE_SSID
)pMgmt
->abyDesireSSID
)->len
+ WLAN_IEHDR_LEN
2561 if (pMgmt
->eCurrMode
== WMAC_MODE_ESS_AP
) {
2562 // AP mode BSSID = MAC addr
2563 memcpy(pMgmt
->abyCurrBSSID
, pMgmt
->abyMACAddr
, WLAN_ADDR_LEN
);
2564 DBG_PRT(MSG_LEVEL_INFO
, KERN_INFO
"AP beacon created BSSID:%02x-%02x-%02x-%02x-%02x-%02x \n",
2565 pMgmt
->abyCurrBSSID
[0],
2566 pMgmt
->abyCurrBSSID
[1],
2567 pMgmt
->abyCurrBSSID
[2],
2568 pMgmt
->abyCurrBSSID
[3],
2569 pMgmt
->abyCurrBSSID
[4],
2570 pMgmt
->abyCurrBSSID
[5]
2574 if (pMgmt
->eCurrMode
== WMAC_MODE_IBSS_STA
) {
2576 // BSSID selected must be randomized as spec 11.1.3
2577 pMgmt
->abyCurrBSSID
[5] = (BYTE
) (LODWORD(qwCurrTSF
)& 0x000000ff);
2578 pMgmt
->abyCurrBSSID
[4] = (BYTE
)((LODWORD(qwCurrTSF
)& 0x0000ff00) >> 8);
2579 pMgmt
->abyCurrBSSID
[3] = (BYTE
)((LODWORD(qwCurrTSF
)& 0x00ff0000) >> 16);
2580 pMgmt
->abyCurrBSSID
[2] = (BYTE
)((LODWORD(qwCurrTSF
)& 0x00000ff0) >> 4);
2581 pMgmt
->abyCurrBSSID
[1] = (BYTE
)((LODWORD(qwCurrTSF
)& 0x000ff000) >> 12);
2582 pMgmt
->abyCurrBSSID
[0] = (BYTE
)((LODWORD(qwCurrTSF
)& 0x0ff00000) >> 20);
2583 pMgmt
->abyCurrBSSID
[5] ^= pMgmt
->abyMACAddr
[0];
2584 pMgmt
->abyCurrBSSID
[4] ^= pMgmt
->abyMACAddr
[1];
2585 pMgmt
->abyCurrBSSID
[3] ^= pMgmt
->abyMACAddr
[2];
2586 pMgmt
->abyCurrBSSID
[2] ^= pMgmt
->abyMACAddr
[3];
2587 pMgmt
->abyCurrBSSID
[1] ^= pMgmt
->abyMACAddr
[4];
2588 pMgmt
->abyCurrBSSID
[0] ^= pMgmt
->abyMACAddr
[5];
2589 pMgmt
->abyCurrBSSID
[0] &= ~IEEE_ADDR_GROUP
;
2590 pMgmt
->abyCurrBSSID
[0] |= IEEE_ADDR_UNIVERSAL
;
2593 DBG_PRT(MSG_LEVEL_INFO
, KERN_INFO
"Adhoc beacon created bssid:%02x-%02x-%02x-%02x-%02x-%02x \n",
2594 pMgmt
->abyCurrBSSID
[0],
2595 pMgmt
->abyCurrBSSID
[1],
2596 pMgmt
->abyCurrBSSID
[2],
2597 pMgmt
->abyCurrBSSID
[3],
2598 pMgmt
->abyCurrBSSID
[4],
2599 pMgmt
->abyCurrBSSID
[5]
2603 // Set Capability Info
2604 pMgmt
->wCurrCapInfo
= 0;
2606 if (pMgmt
->eCurrMode
== WMAC_MODE_ESS_AP
) {
2607 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_ESS(1);
2608 pMgmt
->byDTIMPeriod
= DEFAULT_DTIM_PERIOD
;
2609 pMgmt
->byDTIMCount
= pMgmt
->byDTIMPeriod
- 1;
2612 if (pMgmt
->eCurrMode
== WMAC_MODE_IBSS_STA
) {
2613 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_IBSS(1);
2616 if (pDevice
->bEncryptionEnable
) {
2617 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_PRIVACY(1);
2618 if (pMgmt
->eAuthenMode
== WMAC_AUTH_WPANONE
) {
2619 if (pDevice
->eEncryptionStatus
== Ndis802_11Encryption3Enabled
) {
2620 pMgmt
->byCSSPK
= KEY_CTL_CCMP
;
2621 pMgmt
->byCSSGK
= KEY_CTL_CCMP
;
2622 } else if (pDevice
->eEncryptionStatus
== Ndis802_11Encryption2Enabled
) {
2623 pMgmt
->byCSSPK
= KEY_CTL_TKIP
;
2624 pMgmt
->byCSSGK
= KEY_CTL_TKIP
;
2626 pMgmt
->byCSSPK
= KEY_CTL_NONE
;
2627 pMgmt
->byCSSGK
= KEY_CTL_WEP
;
2630 pMgmt
->byCSSPK
= KEY_CTL_WEP
;
2631 pMgmt
->byCSSGK
= KEY_CTL_WEP
;
2635 pMgmt
->byERPContext
= 0;
2637 // memcpy(pDevice->abyBSSID, pMgmt->abyCurrBSSID, WLAN_BSSID_LEN);
2639 if (pMgmt
->eConfigMode
== WMAC_CONFIG_AP
) {
2640 CARDbSetBSSID(pMgmt
->pAdapter
, pMgmt
->abyCurrBSSID
, OP_MODE_AP
);
2642 CARDbSetBSSID(pMgmt
->pAdapter
, pMgmt
->abyCurrBSSID
, OP_MODE_ADHOC
);
2645 CARDbSetPhyParameter( pMgmt
->pAdapter
,
2646 pMgmt
->eCurrentPHYMode
,
2647 pMgmt
->wCurrCapInfo
,
2648 pMgmt
->byERPContext
,
2649 pMgmt
->abyCurrSuppRates
,
2650 pMgmt
->abyCurrExtSuppRates
2653 CARDbSetBeaconPeriod(pMgmt
->pAdapter
, pMgmt
->wIBSSBeaconPeriod
);
2654 // set channel and clear NAV
2655 CARDbSetChannel(pMgmt
->pAdapter
, pMgmt
->uIBSSChannel
);
2656 pMgmt
->uCurrChannel
= pMgmt
->uIBSSChannel
;
2658 if (CARDbIsShortPreamble(pMgmt
->pAdapter
)) {
2659 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_SHORTPREAMBLE(1);
2661 pMgmt
->wCurrCapInfo
&= (~WLAN_SET_CAP_INFO_SHORTPREAMBLE(1));
2664 if ((pMgmt
->b11hEnable
== TRUE
) &&
2665 (pMgmt
->eCurrentPHYMode
== PHY_TYPE_11A
)) {
2666 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_SPECTRUMMNG(1);
2668 pMgmt
->wCurrCapInfo
&= (~WLAN_SET_CAP_INFO_SPECTRUMMNG(1));
2671 pMgmt
->eCurrState
= WMAC_STATE_STARTED
;
2672 // Prepare beacon to send
2673 if (bMgrPrepareBeaconToSend((HANDLE
)pDevice
, pMgmt
)) {
2674 *pStatus
= CMD_STATUS_SUCCESS
;
2684 * Routine Description:
2685 * Instructs wmac to join a bss using the supplied attributes.
2686 * The arguments may the BSSID or SSID and the rest of the
2687 * attributes are obtained from the scan result of known bss list.
2697 IN HANDLE hDeviceContext
,
2698 OUT PCMD_STATUS pStatus
2702 PSDevice pDevice
= (PSDevice
)hDeviceContext
;
2703 PSMgmtObject pMgmt
= pDevice
->pMgmt
;
2704 PKnownBSS pCurr
= NULL
;
2706 PWLAN_IE_SUPP_RATES pItemRates
= NULL
;
2707 PWLAN_IE_SUPP_RATES pItemExtRates
= NULL
;
2708 PWLAN_IE_SSID pItemSSID
;
2709 UINT uRateLen
= WLAN_RATES_MAXLEN
;
2710 WORD wMaxBasicRate
= RATE_1M
;
2711 WORD wMaxSuppRate
= RATE_1M
;
2713 BYTE byTopCCKBasicRate
= RATE_1M
;
2714 BYTE byTopOFDMBasicRate
= RATE_1M
;
2717 for (ii
= 0; ii
< MAX_BSS_NUM
; ii
++) {
2718 if (pMgmt
->sBSSList
[ii
].bActive
== TRUE
)
2722 if (ii
== MAX_BSS_NUM
) {
2723 *pStatus
= CMD_STATUS_RESOURCES
;
2724 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"BSS finding:BSS list is empty.\n");
2728 // memset(pMgmt->abyDesireBSSID, 0, WLAN_BSSID_LEN);
2729 // Search known BSS list for prefer BSSID or SSID
2731 pCurr
= BSSpSearchBSSList(pDevice
,
2732 pMgmt
->abyDesireBSSID
,
2733 pMgmt
->abyDesireSSID
,
2734 pMgmt
->eConfigPHYMode
2738 *pStatus
= CMD_STATUS_RESOURCES
;
2739 pItemSSID
= (PWLAN_IE_SSID
)pMgmt
->abyDesireSSID
;
2740 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"Scanning [%s] not found, disconnected !\n", pItemSSID
->abySSID
);
2744 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"AP(BSS) finding:Found a AP(BSS)..\n");
2745 if (WLAN_GET_CAP_INFO_ESS(cpu_to_le16(pCurr
->wCapInfo
))){
2747 if ((pMgmt
->eAuthenMode
== WMAC_AUTH_WPA
)||(pMgmt
->eAuthenMode
== WMAC_AUTH_WPAPSK
)) {
2749 // patch for CISCO migration mode
2751 if (pDevice->eEncryptionStatus == Ndis802_11Encryption2Enabled) {
2752 if (WPA_SearchRSN(0, WPA_TKIP, pCurr) == FALSE) {
2753 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"No match RSN info. ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++\n");
2754 // encryption mode error
2755 pMgmt->eCurrState = WMAC_STATE_IDLE;
2758 } else if (pDevice->eEncryptionStatus == Ndis802_11Encryption3Enabled) {
2759 if (WPA_SearchRSN(0, WPA_AESCCMP, pCurr) == FALSE) {
2760 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"No match RSN info. ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++\n");
2761 // encryption mode error
2762 pMgmt->eCurrState = WMAC_STATE_IDLE;
2769 #ifdef WPA_SUPPLICANT_DRIVER_WEXT_SUPPORT
2770 //if(pDevice->bWPASuppWextEnabled == TRUE)
2771 Encyption_Rebuild(pDevice
, pCurr
);
2773 // Infrastructure BSS
2774 s_vMgrSynchBSS(pDevice
,
2780 if (*pStatus
== CMD_STATUS_SUCCESS
){
2782 // Adopt this BSS state vars in Mgmt Object
2783 pMgmt
->uCurrChannel
= pCurr
->uChannel
;
2785 memset(pMgmt
->abyCurrSuppRates
, 0 , WLAN_IEHDR_LEN
+ WLAN_RATES_MAXLEN
+ 1);
2786 memset(pMgmt
->abyCurrExtSuppRates
, 0 , WLAN_IEHDR_LEN
+ WLAN_RATES_MAXLEN
+ 1);
2788 if (pCurr
->eNetworkTypeInUse
== PHY_TYPE_11B
) {
2789 uRateLen
= WLAN_RATES_MAXLEN_11B
;
2792 pItemRates
= (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrSuppRates
;
2793 pItemExtRates
= (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrExtSuppRates
;
2795 // Parse Support Rate IE
2796 pItemRates
->byElementID
= WLAN_EID_SUPP_RATES
;
2797 pItemRates
->len
= RATEuSetIE((PWLAN_IE_SUPP_RATES
)pCurr
->abySuppRates
,
2801 // Parse Extension Support Rate IE
2802 pItemExtRates
->byElementID
= WLAN_EID_EXTSUPP_RATES
;
2803 pItemExtRates
->len
= RATEuSetIE((PWLAN_IE_SUPP_RATES
)pCurr
->abyExtSuppRates
,
2807 if ((pItemExtRates
->len
> 0) && (pItemRates
->len
< 8)) {
2808 for (ii
= 0; ii
< (UINT
)(8 - pItemRates
->len
); ) {
2809 pItemRates
->abyRates
[pItemRates
->len
+ ii
] = pItemExtRates
->abyRates
[ii
];
2811 if (pItemExtRates
->len
<= ii
)
2814 pItemRates
->len
+= (BYTE
)ii
;
2815 if (pItemExtRates
->len
- ii
> 0) {
2816 pItemExtRates
->len
-= (BYTE
)ii
;
2817 for (uu
= 0; uu
< pItemExtRates
->len
; uu
++) {
2818 pItemExtRates
->abyRates
[uu
] = pItemExtRates
->abyRates
[uu
+ ii
];
2821 pItemExtRates
->len
= 0;
2825 RATEvParseMaxRate((PVOID
)pDevice
, pItemRates
, pItemExtRates
, TRUE
,
2826 &wMaxBasicRate
, &wMaxSuppRate
, &wSuppRate
,
2827 &byTopCCKBasicRate
, &byTopOFDMBasicRate
);
2829 // TODO: deal with if wCapInfo the privacy is on, but station WEP is off
2830 // TODO: deal with if wCapInfo the PS-Pollable is on.
2831 pMgmt
->wCurrBeaconPeriod
= pCurr
->wBeaconInterval
;
2832 memset(pMgmt
->abyCurrSSID
, 0, WLAN_IEHDR_LEN
+ WLAN_SSID_MAXLEN
+ 1);
2833 memcpy(pMgmt
->abyCurrBSSID
, pCurr
->abyBSSID
, WLAN_BSSID_LEN
);
2834 memcpy(pMgmt
->abyCurrSSID
, pCurr
->abySSID
, WLAN_IEHDR_LEN
+ WLAN_SSID_MAXLEN
+ 1);
2836 pMgmt
->eCurrMode
= WMAC_MODE_ESS_STA
;
2838 pMgmt
->eCurrState
= WMAC_STATE_JOINTED
;
2839 // Adopt BSS state in Adapter Device Object
2840 //pDevice->byOpMode = OP_MODE_INFRASTRUCTURE;
2841 // memcpy(pDevice->abyBSSID, pCurr->abyBSSID, WLAN_BSSID_LEN);
2843 // Add current BSS to Candidate list
2844 // This should only works for WPA2 BSS, and WPA2 BSS check must be done before.
2845 if (pMgmt
->eAuthenMode
== WMAC_AUTH_WPA2
) {
2846 BOOL bResult
= bAdd_PMKID_Candidate((HANDLE
)pDevice
, pMgmt
->abyCurrBSSID
, &pCurr
->sRSNCapObj
);
2847 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"bAdd_PMKID_Candidate: 1(%d)\n", bResult
);
2848 if (bResult
== FALSE
) {
2849 vFlush_PMKID_Candidate((HANDLE
)pDevice
);
2850 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"vFlush_PMKID_Candidate: 4\n");
2851 bAdd_PMKID_Candidate((HANDLE
)pDevice
, pMgmt
->abyCurrBSSID
, &pCurr
->sRSNCapObj
);
2855 // Preamble type auto-switch: if AP can receive short-preamble cap,
2856 // we can turn on too.
2858 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Join ESS\n");
2862 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"End of Join AP -- A/B/G Action\n");
2865 pMgmt
->eCurrState
= WMAC_STATE_IDLE
;
2872 if (pMgmt
->eAuthenMode
== WMAC_AUTH_WPANONE
) {
2874 if (pDevice
->eEncryptionStatus
== Ndis802_11Encryption2Enabled
) {
2875 if (WPA_SearchRSN(0, WPA_TKIP
, pCurr
) == FALSE
) {
2876 // encryption mode error
2877 pMgmt
->eCurrState
= WMAC_STATE_IDLE
;
2880 } else if (pDevice
->eEncryptionStatus
== Ndis802_11Encryption3Enabled
) {
2881 if (WPA_SearchRSN(0, WPA_AESCCMP
, pCurr
) == FALSE
) {
2882 // encryption mode error
2883 pMgmt
->eCurrState
= WMAC_STATE_IDLE
;
2887 // encryption mode error
2888 pMgmt
->eCurrState
= WMAC_STATE_IDLE
;
2893 s_vMgrSynchBSS(pDevice
,
2899 if (*pStatus
== CMD_STATUS_SUCCESS
){
2900 // Adopt this BSS state vars in Mgmt Object
2901 // TODO: check if CapInfo privacy on, but we don't..
2902 pMgmt
->uCurrChannel
= pCurr
->uChannel
;
2905 // Parse Support Rate IE
2906 pMgmt
->abyCurrSuppRates
[0] = WLAN_EID_SUPP_RATES
;
2907 pMgmt
->abyCurrSuppRates
[1] = RATEuSetIE((PWLAN_IE_SUPP_RATES
)pCurr
->abySuppRates
,
2908 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrSuppRates
,
2909 WLAN_RATES_MAXLEN_11B
);
2911 RATEvParseMaxRate((PVOID
)pDevice
, (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrSuppRates
,
2912 NULL
, TRUE
, &wMaxBasicRate
, &wMaxSuppRate
, &wSuppRate
,
2913 &byTopCCKBasicRate
, &byTopOFDMBasicRate
);
2915 pMgmt
->wCurrCapInfo
= pCurr
->wCapInfo
;
2916 pMgmt
->wCurrBeaconPeriod
= pCurr
->wBeaconInterval
;
2917 memset(pMgmt
->abyCurrSSID
, 0, WLAN_IEHDR_LEN
+ WLAN_SSID_MAXLEN
);
2918 memcpy(pMgmt
->abyCurrBSSID
, pCurr
->abyBSSID
, WLAN_BSSID_LEN
);
2919 memcpy(pMgmt
->abyCurrSSID
, pCurr
->abySSID
, WLAN_IEHDR_LEN
+ WLAN_SSID_MAXLEN
);
2920 // pMgmt->wCurrATIMWindow = pCurr->wATIMWindow;
2921 MACvWriteATIMW(pDevice
->PortOffset
, pMgmt
->wCurrATIMWindow
);
2922 pMgmt
->eCurrMode
= WMAC_MODE_IBSS_STA
;
2924 pMgmt
->eCurrState
= WMAC_STATE_STARTED
;
2925 // Adopt BSS state in Adapter Device Object
2926 //pDevice->byOpMode = OP_MODE_ADHOC;
2927 // pDevice->bLinkPass = TRUE;
2928 // memcpy(pDevice->abyBSSID, pCurr->abyBSSID, WLAN_BSSID_LEN);
2930 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Join IBSS ok:%02x-%02x-%02x-%02x-%02x-%02x \n",
2931 pMgmt
->abyCurrBSSID
[0],
2932 pMgmt
->abyCurrBSSID
[1],
2933 pMgmt
->abyCurrBSSID
[2],
2934 pMgmt
->abyCurrBSSID
[3],
2935 pMgmt
->abyCurrBSSID
[4],
2936 pMgmt
->abyCurrBSSID
[5]
2938 // Preamble type auto-switch: if AP can receive short-preamble cap,
2939 // and if registry setting is short preamble we can turn on too.
2942 bMgrPrepareBeaconToSend((HANDLE
)pDevice
, pMgmt
);
2945 pMgmt
->eCurrState
= WMAC_STATE_IDLE
;
2955 * Routine Description:
2956 * Set HW to synchronize a specific BSS from known BSS list.
2966 IN PSDevice pDevice
,
2969 OUT PCMD_STATUS pStatus
2972 CARD_PHY_TYPE ePhyType
= PHY_TYPE_11B
;
2973 PSMgmtObject pMgmt
= pDevice
->pMgmt
;
2975 //1M, 2M, 5M, 11M, 18M, 24M, 36M, 54M
2976 BYTE abyCurrSuppRatesG
[] = {WLAN_EID_SUPP_RATES
, 8, 0x02, 0x04, 0x0B, 0x16, 0x24, 0x30, 0x48, 0x6C};
2977 BYTE abyCurrExtSuppRatesG
[] = {WLAN_EID_EXTSUPP_RATES
, 4, 0x0C, 0x12, 0x18, 0x60};
2979 BYTE abyCurrSuppRatesA
[] = {WLAN_EID_SUPP_RATES
, 8, 0x0C, 0x12, 0x18, 0x24, 0x30, 0x48, 0x60, 0x6C};
2980 BYTE abyCurrSuppRatesB
[] = {WLAN_EID_SUPP_RATES
, 4, 0x02, 0x04, 0x0B, 0x16};
2983 *pStatus
= CMD_STATUS_FAILURE
;
2985 if (s_bCipherMatch(pCurr
,
2986 pDevice
->eEncryptionStatus
,
2988 &(pMgmt
->byCSSGK
)) == FALSE
) {
2989 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"s_bCipherMatch Fail .......\n");
2993 pMgmt
->pCurrBSS
= pCurr
;
2995 // if previous mode is IBSS.
2996 if(pMgmt
->eCurrMode
== WMAC_MODE_IBSS_STA
) {
2997 MACvRegBitsOff(pDevice
->PortOffset
, MAC_REG_BCNDMACTL
, BEACON_READY
);
2998 MACvRegBitsOff(pDevice
->PortOffset
, MAC_REG_TCR
, TCR_AUTOBCNTX
);
3001 // Init the BSS informations
3002 pDevice
->bCCK
= TRUE
;
3003 pDevice
->bProtectMode
= FALSE
;
3004 MACvDisableProtectMD(pDevice
->PortOffset
);
3005 pDevice
->bBarkerPreambleMd
= FALSE
;
3006 MACvDisableBarkerPreambleMd(pDevice
->PortOffset
);
3007 pDevice
->bNonERPPresent
= FALSE
;
3008 pDevice
->byPreambleType
= 0;
3009 pDevice
->wBasicRate
= 0;
3011 CARDbAddBasicRate((PVOID
)pDevice
, RATE_1M
);
3012 // calculate TSF offset
3013 // TSF Offset = Received Timestamp TSF - Marked Local's TSF
3014 CARDbUpdateTSF(pDevice
, pCurr
->byRxRate
, pCurr
->qwBSSTimestamp
, pCurr
->qwLocalTSF
);
3016 CARDbSetBeaconPeriod(pDevice
, pCurr
->wBeaconInterval
);
3019 // Next TBTT = ((local_current_TSF / beacon_interval) + 1 ) * beacon_interval
3020 CARDvSetFirstNextTBTT(pDevice
->PortOffset
, pCurr
->wBeaconInterval
);
3023 MACvWriteBSSIDAddress(pDevice
->PortOffset
, pCurr
->abyBSSID
);
3025 MACvReadBSSIDAddress(pDevice
->PortOffset
, pMgmt
->abyCurrBSSID
);
3027 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Sync:set CurrBSSID address = %02x-%02x-%02x=%02x-%02x-%02x\n",
3028 pMgmt
->abyCurrBSSID
[0],
3029 pMgmt
->abyCurrBSSID
[1],
3030 pMgmt
->abyCurrBSSID
[2],
3031 pMgmt
->abyCurrBSSID
[3],
3032 pMgmt
->abyCurrBSSID
[4],
3033 pMgmt
->abyCurrBSSID
[5]);
3035 if (pCurr
->eNetworkTypeInUse
== PHY_TYPE_11A
) {
3036 if ((pMgmt
->eConfigPHYMode
== PHY_TYPE_11A
) ||
3037 (pMgmt
->eConfigPHYMode
== PHY_TYPE_AUTO
)) {
3038 ePhyType
= PHY_TYPE_11A
;
3042 } else if (pCurr
->eNetworkTypeInUse
== PHY_TYPE_11B
) {
3043 if ((pMgmt
->eConfigPHYMode
== PHY_TYPE_11B
) ||
3044 (pMgmt
->eConfigPHYMode
== PHY_TYPE_11G
) ||
3045 (pMgmt
->eConfigPHYMode
== PHY_TYPE_AUTO
)) {
3046 ePhyType
= PHY_TYPE_11B
;
3051 if ((pMgmt
->eConfigPHYMode
== PHY_TYPE_11G
) ||
3052 (pMgmt
->eConfigPHYMode
== PHY_TYPE_AUTO
)) {
3053 ePhyType
= PHY_TYPE_11G
;
3054 } else if (pMgmt
->eConfigPHYMode
== PHY_TYPE_11B
) {
3055 ePhyType
= PHY_TYPE_11B
;
3061 if (ePhyType
== PHY_TYPE_11A
) {
3062 MEMvCopy(pMgmt
->abyCurrSuppRates
, &abyCurrSuppRatesA
[0], sizeof(abyCurrSuppRatesA
));
3063 pMgmt
->abyCurrExtSuppRates
[1] = 0;
3064 } else if (ePhyType
== PHY_TYPE_11B
) {
3065 MEMvCopy(pMgmt
->abyCurrSuppRates
, &abyCurrSuppRatesB
[0], sizeof(abyCurrSuppRatesB
));
3066 pMgmt
->abyCurrExtSuppRates
[1] = 0;
3068 MEMvCopy(pMgmt
->abyCurrSuppRates
, &abyCurrSuppRatesG
[0], sizeof(abyCurrSuppRatesG
));
3069 MEMvCopy(pMgmt
->abyCurrExtSuppRates
, &abyCurrExtSuppRatesG
[0], sizeof(abyCurrExtSuppRatesG
));
3073 if (WLAN_GET_CAP_INFO_ESS(pCurr
->wCapInfo
)) {
3074 CARDbSetBSSID(pMgmt
->pAdapter
, pCurr
->abyBSSID
, OP_MODE_INFRASTRUCTURE
);
3075 // Add current BSS to Candidate list
3076 // This should only works for WPA2 BSS, and WPA2 BSS check must be done before.
3077 if (pMgmt
->eAuthenMode
== WMAC_AUTH_WPA2
) {
3078 CARDbAdd_PMKID_Candidate(pMgmt
->pAdapter
, pMgmt
->abyCurrBSSID
, pCurr
->sRSNCapObj
.bRSNCapExist
, pCurr
->sRSNCapObj
.wRSNCap
);
3081 CARDbSetBSSID(pMgmt
->pAdapter
, pCurr
->abyBSSID
, OP_MODE_ADHOC
);
3084 if (CARDbSetPhyParameter( pMgmt
->pAdapter
,
3088 pMgmt
->abyCurrSuppRates
,
3089 pMgmt
->abyCurrExtSuppRates
3091 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"<----s_bSynchBSS Set Phy Mode Fail [%d]\n", ePhyType
);
3094 // set channel and clear NAV
3095 if (CARDbSetChannel(pMgmt
->pAdapter
, pCurr
->uChannel
) == FALSE
) {
3096 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"<----s_bSynchBSS Set Channel [%d]\n", pCurr
->uChannel
);
3101 for (ii=0;ii<BB_VGA_LEVEL;ii++) {
3102 if (pCurr->ldBmMAX< pDevice->ldBmThreshold[ii]) {
3103 pDevice->byBBVGANew = pDevice->abyBBVGA[ii];
3108 if (pDevice->byBBVGANew != pDevice->byBBVGACurrent) {
3109 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"RSSI[%d] NewGain[%d] OldGain[%d] \n",
3110 (int)pCurr->ldBmMAX, pDevice->byBBVGANew, pDevice->byBBVGACurrent);
3111 printk("RSSI[%d] NewGain[%d] OldGain[%d] \n",
3112 (int)pCurr->ldBmMAX, pDevice->byBBVGANew, pDevice->byBBVGACurrent);
3113 BBvSetVGAGainOffset(pDevice, pDevice->byBBVGANew);
3115 printk("ldBmMAX[%d] NewGain[%d] OldGain[%d] \n",
3116 (int)pCurr->ldBmMAX, pDevice->byBBVGANew, pDevice->byBBVGACurrent);
3118 pMgmt
->uCurrChannel
= pCurr
->uChannel
;
3119 pMgmt
->eCurrentPHYMode
= ePhyType
;
3120 pMgmt
->byERPContext
= pCurr
->sERP
.byERP
;
3121 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Sync:Set to channel = [%d]\n", (INT
)pCurr
->uChannel
);
3124 *pStatus
= CMD_STATUS_SUCCESS
;
3130 //mike add: fix NetworkManager 0.7.0 hidden ssid mode in WPA encryption
3131 // ,need reset eAuthenMode and eEncryptionStatus
3132 static VOID
Encyption_Rebuild(
3133 IN PSDevice pDevice
,
3137 PSMgmtObject pMgmt
= &(pDevice
->sMgmtObj
);
3138 // UINT ii , uSameBssidNum=0;
3140 // for (ii = 0; ii < MAX_BSS_NUM; ii++) {
3141 // if (pMgmt->sBSSList[ii].bActive &&
3142 // IS_ETH_ADDRESS_EQUAL(pMgmt->sBSSList[ii].abyBSSID, pCurr->abyBSSID)) {
3146 // if( uSameBssidNum>=2) { //we only check AP in hidden sssid mode
3147 if ((pMgmt
->eAuthenMode
== WMAC_AUTH_WPAPSK
) || //networkmanager 0.7.0 does not give the pairwise-key selsection,
3148 (pMgmt
->eAuthenMode
== WMAC_AUTH_WPA2PSK
)) { // so we need re-selsect it according to real pairwise-key info.
3149 if(pCurr
->bWPAValid
== TRUE
) { //WPA-PSK
3150 pMgmt
->eAuthenMode
= WMAC_AUTH_WPAPSK
;
3151 if(pCurr
->abyPKType
[0] == WPA_TKIP
) {
3152 pDevice
->eEncryptionStatus
= Ndis802_11Encryption2Enabled
; //TKIP
3153 PRINT_K("Encyption_Rebuild--->ssid reset config to [WPAPSK-TKIP]\n");
3155 else if(pCurr
->abyPKType
[0] == WPA_AESCCMP
) {
3156 pDevice
->eEncryptionStatus
= Ndis802_11Encryption3Enabled
; //AES
3157 PRINT_K("Encyption_Rebuild--->ssid reset config to [WPAPSK-AES]\n");
3160 else if(pCurr
->bWPA2Valid
== TRUE
) { //WPA2-PSK
3161 pMgmt
->eAuthenMode
= WMAC_AUTH_WPA2PSK
;
3162 if(pCurr
->abyCSSPK
[0] == WLAN_11i_CSS_TKIP
) {
3163 pDevice
->eEncryptionStatus
= Ndis802_11Encryption2Enabled
; //TKIP
3164 PRINT_K("Encyption_Rebuild--->ssid reset config to [WPA2PSK-TKIP]\n");
3166 else if(pCurr
->abyCSSPK
[0] == WLAN_11i_CSS_CCMP
) {
3167 pDevice
->eEncryptionStatus
= Ndis802_11Encryption3Enabled
; //AES
3168 PRINT_K("Encyption_Rebuild--->ssid reset config to [WPA2PSK-AES]\n");
3179 * Routine Description:
3191 IN PSMgmtObject pMgmt
,
3192 IN PWLAN_IE_TIM pTIM
3195 BYTE byMask
[8] = {1, 2, 4, 8, 0x10, 0x20, 0x40, 0x80};
3198 BOOL bStartFound
= FALSE
;
3199 BOOL bMulticast
= FALSE
;
3200 WORD wStartIndex
= 0;
3204 // Find size of partial virtual bitmap
3205 for (ii
= 0; ii
< (MAX_NODE_NUM
+ 1); ii
++) {
3206 byMap
= pMgmt
->abyPSTxMap
[ii
];
3208 // Mask out the broadcast bit which is indicated separately.
3209 bMulticast
= (byMap
& byMask
[0]) != 0;
3211 pMgmt
->sNodeDBTable
[0].bRxPSPoll
= TRUE
;
3225 // Round start index down to nearest even number
3226 wStartIndex
&= ~BIT0
;
3228 // Round end index up to nearest even number
3229 wEndIndex
= ((wEndIndex
+ 1) & ~BIT0
);
3231 // Size of element payload
3233 pTIM
->len
= 3 + (wEndIndex
- wStartIndex
) + 1;
3235 // Fill in the Fixed parts of the TIM
3236 pTIM
->byDTIMCount
= pMgmt
->byDTIMCount
;
3237 pTIM
->byDTIMPeriod
= pMgmt
->byDTIMPeriod
;
3238 pTIM
->byBitMapCtl
= (bMulticast
? TIM_MULTICAST_MASK
: 0) |
3239 (((wStartIndex
>> 1) << 1) & TIM_BITMAPOFFSET_MASK
);
3241 // Append variable part of TIM
3243 for (ii
= wStartIndex
, jj
=0 ; ii
<= wEndIndex
; ii
++, jj
++) {
3244 pTIM
->byVirtBitMap
[jj
] = pMgmt
->abyPSTxMap
[ii
];
3247 // Aid = 0 don't used.
3248 pTIM
->byVirtBitMap
[0] &= ~BIT0
;
3254 * Routine Description:
3255 * Constructs an Beacon frame( Ad-hoc mode)
3259 * PTR to frame; or NULL on allocation failue
3266 IN PSDevice pDevice
,
3267 IN PSMgmtObject pMgmt
,
3268 IN WORD wCurrCapInfo
,
3269 IN WORD wCurrBeaconPeriod
,
3270 IN UINT uCurrChannel
,
3271 IN WORD wCurrATIMWinodw
,
3272 IN PWLAN_IE_SSID pCurrSSID
,
3273 IN PBYTE pCurrBSSID
,
3274 IN PWLAN_IE_SUPP_RATES pCurrSuppRates
,
3275 IN PWLAN_IE_SUPP_RATES pCurrExtSuppRates
3278 PSTxMgmtPacket pTxPacket
= NULL
;
3279 WLAN_FR_BEACON sFrame
;
3280 BYTE abyBroadcastAddr
[] = {0xff, 0xff, 0xff, 0xff, 0xff, 0xff};
3283 PWLAN_IE_IBSS_DFS pIBSSDFS
= NULL
;
3286 // prepare beacon frame
3287 pTxPacket
= (PSTxMgmtPacket
)pMgmt
->pbyMgmtPacketPool
;
3288 memset(pTxPacket
, 0, sizeof(STxMgmtPacket
) + WLAN_BEACON_FR_MAXLEN
);
3289 pTxPacket
->p80211Header
= (PUWLAN_80211HDR
)((PBYTE
)pTxPacket
+ sizeof(STxMgmtPacket
));
3290 // Setup the sFrame structure.
3291 sFrame
.pBuf
= (PBYTE
)pTxPacket
->p80211Header
;
3292 sFrame
.len
= WLAN_BEACON_FR_MAXLEN
;
3293 vMgrEncodeBeacon(&sFrame
);
3295 sFrame
.pHdr
->sA3
.wFrameCtl
= cpu_to_le16(
3297 WLAN_SET_FC_FTYPE(WLAN_TYPE_MGR
) |
3298 WLAN_SET_FC_FSTYPE(WLAN_FSTYPE_BEACON
)
3301 if (pDevice
->bEnablePSMode
) {
3302 sFrame
.pHdr
->sA3
.wFrameCtl
|= cpu_to_le16((WORD
)WLAN_SET_FC_PWRMGT(1));
3305 memcpy( sFrame
.pHdr
->sA3
.abyAddr1
, abyBroadcastAddr
, WLAN_ADDR_LEN
);
3306 memcpy( sFrame
.pHdr
->sA3
.abyAddr2
, pMgmt
->abyMACAddr
, WLAN_ADDR_LEN
);
3307 memcpy( sFrame
.pHdr
->sA3
.abyAddr3
, pCurrBSSID
, WLAN_BSSID_LEN
);
3308 *sFrame
.pwBeaconInterval
= cpu_to_le16(wCurrBeaconPeriod
);
3309 *sFrame
.pwCapInfo
= cpu_to_le16(wCurrCapInfo
);
3311 sFrame
.pSSID
= (PWLAN_IE_SSID
)(sFrame
.pBuf
+ sFrame
.len
);
3312 sFrame
.len
+= ((PWLAN_IE_SSID
)pMgmt
->abyCurrSSID
)->len
+ WLAN_IEHDR_LEN
;
3313 memcpy(sFrame
.pSSID
,
3315 ((PWLAN_IE_SSID
)pCurrSSID
)->len
+ WLAN_IEHDR_LEN
3317 // Copy the rate set
3318 sFrame
.pSuppRates
= (PWLAN_IE_SUPP_RATES
)(sFrame
.pBuf
+ sFrame
.len
);
3319 sFrame
.len
+= ((PWLAN_IE_SUPP_RATES
)pCurrSuppRates
)->len
+ WLAN_IEHDR_LEN
;
3320 memcpy(sFrame
.pSuppRates
,
3322 ((PWLAN_IE_SUPP_RATES
)pCurrSuppRates
)->len
+ WLAN_IEHDR_LEN
3325 if (pDevice
->eCurrentPHYType
!= PHY_TYPE_11A
) {
3326 sFrame
.pDSParms
= (PWLAN_IE_DS_PARMS
)(sFrame
.pBuf
+ sFrame
.len
);
3327 sFrame
.len
+= (1) + WLAN_IEHDR_LEN
;
3328 sFrame
.pDSParms
->byElementID
= WLAN_EID_DS_PARMS
;
3329 sFrame
.pDSParms
->len
= 1;
3330 sFrame
.pDSParms
->byCurrChannel
= (BYTE
)uCurrChannel
;
3333 if (pMgmt
->eCurrMode
== WMAC_MODE_ESS_AP
) {
3334 sFrame
.pTIM
= (PWLAN_IE_TIM
)(sFrame
.pBuf
+ sFrame
.len
);
3335 sFrame
.pTIM
->byElementID
= WLAN_EID_TIM
;
3336 s_vMgrFormatTIM(pMgmt
, sFrame
.pTIM
);
3337 sFrame
.len
+= (WLAN_IEHDR_LEN
+ sFrame
.pTIM
->len
);
3340 if (pMgmt
->eCurrMode
== WMAC_MODE_IBSS_STA
) {
3343 sFrame
.pIBSSParms
= (PWLAN_IE_IBSS_PARMS
)(sFrame
.pBuf
+ sFrame
.len
);
3344 sFrame
.len
+= (2) + WLAN_IEHDR_LEN
;
3345 sFrame
.pIBSSParms
->byElementID
= WLAN_EID_IBSS_PARMS
;
3346 sFrame
.pIBSSParms
->len
= 2;
3347 sFrame
.pIBSSParms
->wATIMWindow
= wCurrATIMWinodw
;
3348 if (pMgmt
->eAuthenMode
== WMAC_AUTH_WPANONE
) {
3350 sFrame
.pRSNWPA
= (PWLAN_IE_RSN_EXT
)(sFrame
.pBuf
+ sFrame
.len
);
3351 sFrame
.pRSNWPA
->byElementID
= WLAN_EID_RSN_WPA
;
3352 sFrame
.pRSNWPA
->len
= 12;
3353 sFrame
.pRSNWPA
->abyOUI
[0] = 0x00;
3354 sFrame
.pRSNWPA
->abyOUI
[1] = 0x50;
3355 sFrame
.pRSNWPA
->abyOUI
[2] = 0xf2;
3356 sFrame
.pRSNWPA
->abyOUI
[3] = 0x01;
3357 sFrame
.pRSNWPA
->wVersion
= 1;
3358 sFrame
.pRSNWPA
->abyMulticast
[0] = 0x00;
3359 sFrame
.pRSNWPA
->abyMulticast
[1] = 0x50;
3360 sFrame
.pRSNWPA
->abyMulticast
[2] = 0xf2;
3361 if (pDevice
->eEncryptionStatus
== Ndis802_11Encryption3Enabled
)
3362 sFrame
.pRSNWPA
->abyMulticast
[3] = 0x04;//AES
3363 else if (pDevice
->eEncryptionStatus
== Ndis802_11Encryption2Enabled
)
3364 sFrame
.pRSNWPA
->abyMulticast
[3] = 0x02;//TKIP
3365 else if (pDevice
->eEncryptionStatus
== Ndis802_11Encryption1Enabled
)
3366 sFrame
.pRSNWPA
->abyMulticast
[3] = 0x01;//WEP40
3368 sFrame
.pRSNWPA
->abyMulticast
[3] = 0x00;//NONE
3370 // Pairwise Key Cipher Suite
3371 sFrame
.pRSNWPA
->wPKCount
= 0;
3372 // Auth Key Management Suite
3373 *((PWORD
)(sFrame
.pBuf
+ sFrame
.len
+ sFrame
.pRSNWPA
->len
))=0;
3374 sFrame
.pRSNWPA
->len
+=2;
3377 *((PWORD
)(sFrame
.pBuf
+ sFrame
.len
+ sFrame
.pRSNWPA
->len
))=0;
3378 sFrame
.pRSNWPA
->len
+=2;
3379 sFrame
.len
+= sFrame
.pRSNWPA
->len
+ WLAN_IEHDR_LEN
;
3383 if ((pMgmt
->b11hEnable
== TRUE
) &&
3384 (pMgmt
->eCurrentPHYMode
== PHY_TYPE_11A
)) {
3386 pbyBuffer
= (PBYTE
)(sFrame
.pBuf
+ sFrame
.len
);
3387 CARDvSetCountryIE(pMgmt
->pAdapter
, pbyBuffer
);
3388 CARDvSetCountryInfo(pMgmt
->pAdapter
, PHY_TYPE_11A
, pbyBuffer
);
3389 uLength
+= ((PWLAN_IE_COUNTRY
) pbyBuffer
)->len
+ WLAN_IEHDR_LEN
;
3390 pbyBuffer
+= (((PWLAN_IE_COUNTRY
) pbyBuffer
)->len
+ WLAN_IEHDR_LEN
);
3391 // Power Constrain IE
3392 ((PWLAN_IE_PW_CONST
) pbyBuffer
)->byElementID
= WLAN_EID_PWR_CONSTRAINT
;
3393 ((PWLAN_IE_PW_CONST
) pbyBuffer
)->len
= 1;
3394 ((PWLAN_IE_PW_CONST
) pbyBuffer
)->byPower
= 0;
3395 pbyBuffer
+= (1) + WLAN_IEHDR_LEN
;
3396 uLength
+= (1) + WLAN_IEHDR_LEN
;
3397 if (pMgmt
->bSwitchChannel
== TRUE
) {
3398 // Channel Switch IE
3399 ((PWLAN_IE_CH_SW
) pbyBuffer
)->byElementID
= WLAN_EID_CH_SWITCH
;
3400 ((PWLAN_IE_CH_SW
) pbyBuffer
)->len
= 3;
3401 ((PWLAN_IE_CH_SW
) pbyBuffer
)->byMode
= 1;
3402 ((PWLAN_IE_CH_SW
) pbyBuffer
)->byChannel
= CARDbyGetChannelNumber(pMgmt
->pAdapter
, pMgmt
->byNewChannel
);
3403 ((PWLAN_IE_CH_SW
) pbyBuffer
)->byCount
= 0;
3404 pbyBuffer
+= (3) + WLAN_IEHDR_LEN
;
3405 uLength
+= (3) + WLAN_IEHDR_LEN
;
3408 ((PWLAN_IE_TPC_REP
) pbyBuffer
)->byElementID
= WLAN_EID_TPC_REP
;
3409 ((PWLAN_IE_TPC_REP
) pbyBuffer
)->len
= 2;
3410 ((PWLAN_IE_TPC_REP
) pbyBuffer
)->byTxPower
= CARDbyGetTransmitPower(pMgmt
->pAdapter
);
3411 ((PWLAN_IE_TPC_REP
) pbyBuffer
)->byLinkMargin
= 0;
3412 pbyBuffer
+= (2) + WLAN_IEHDR_LEN
;
3413 uLength
+= (2) + WLAN_IEHDR_LEN
;
3415 if (pMgmt
->eCurrMode
!= WMAC_MODE_ESS_AP
) {
3416 pIBSSDFS
= (PWLAN_IE_IBSS_DFS
) pbyBuffer
;
3417 pIBSSDFS
->byElementID
= WLAN_EID_IBSS_DFS
;
3419 MEMvCopy( pIBSSDFS
->abyDFSOwner
,
3420 pMgmt
->abyIBSSDFSOwner
,
3422 pIBSSDFS
->byDFSRecovery
= pMgmt
->byIBSSDFSRecovery
;
3423 pbyBuffer
+= (7) + WLAN_IEHDR_LEN
;
3424 uLength
+= (7) + WLAN_IEHDR_LEN
;
3425 for(ii
=CB_MAX_CHANNEL_24G
+1; ii
<=CB_MAX_CHANNEL
; ii
++ ) {
3426 if (CARDbGetChannelMapInfo(pMgmt
->pAdapter
, ii
, pbyBuffer
, pbyBuffer
+1) == TRUE
) {
3433 sFrame
.len
+= uLength
;
3436 if (pMgmt
->eCurrentPHYMode
== PHY_TYPE_11G
) {
3437 sFrame
.pERP
= (PWLAN_IE_ERP
)(sFrame
.pBuf
+ sFrame
.len
);
3438 sFrame
.len
+= 1 + WLAN_IEHDR_LEN
;
3439 sFrame
.pERP
->byElementID
= WLAN_EID_ERP
;
3440 sFrame
.pERP
->len
= 1;
3441 sFrame
.pERP
->byContext
= 0;
3442 if (pDevice
->bProtectMode
== TRUE
)
3443 sFrame
.pERP
->byContext
|= WLAN_EID_ERP_USE_PROTECTION
;
3444 if (pDevice
->bNonERPPresent
== TRUE
)
3445 sFrame
.pERP
->byContext
|= WLAN_EID_ERP_NONERP_PRESENT
;
3446 if (pDevice
->bBarkerPreambleMd
== TRUE
)
3447 sFrame
.pERP
->byContext
|= WLAN_EID_ERP_BARKER_MODE
;
3449 if (((PWLAN_IE_SUPP_RATES
)pCurrExtSuppRates
)->len
!= 0) {
3450 sFrame
.pExtSuppRates
= (PWLAN_IE_SUPP_RATES
)(sFrame
.pBuf
+ sFrame
.len
);
3451 sFrame
.len
+= ((PWLAN_IE_SUPP_RATES
)pCurrExtSuppRates
)->len
+ WLAN_IEHDR_LEN
;
3452 MEMvCopy(sFrame
.pExtSuppRates
,
3454 ((PWLAN_IE_SUPP_RATES
)pCurrExtSuppRates
)->len
+ WLAN_IEHDR_LEN
3457 // hostapd wpa/wpa2 IE
3458 if ((pMgmt
->eCurrMode
== WMAC_MODE_ESS_AP
) && (pDevice
->bEnableHostapd
== TRUE
)) {
3459 if (pMgmt
->eAuthenMode
== WMAC_AUTH_WPANONE
) {
3460 if (pMgmt
->wWPAIELen
!= 0) {
3461 sFrame
.pRSN
= (PWLAN_IE_RSN
)(sFrame
.pBuf
+ sFrame
.len
);
3462 memcpy(sFrame
.pRSN
, pMgmt
->abyWPAIE
, pMgmt
->wWPAIELen
);
3463 sFrame
.len
+= pMgmt
->wWPAIELen
;
3468 /* Adjust the length fields */
3469 pTxPacket
->cbMPDULen
= sFrame
.len
;
3470 pTxPacket
->cbPayloadLen
= sFrame
.len
- WLAN_HDR_ADDR3_LEN
;
3481 * Routine Description:
3482 * Constructs an Prob-response frame
3486 * PTR to frame; or NULL on allocation failue
3494 s_MgrMakeProbeResponse(
3495 IN PSDevice pDevice
,
3496 IN PSMgmtObject pMgmt
,
3497 IN WORD wCurrCapInfo
,
3498 IN WORD wCurrBeaconPeriod
,
3499 IN UINT uCurrChannel
,
3500 IN WORD wCurrATIMWinodw
,
3502 IN PWLAN_IE_SSID pCurrSSID
,
3503 IN PBYTE pCurrBSSID
,
3504 IN PWLAN_IE_SUPP_RATES pCurrSuppRates
,
3505 IN PWLAN_IE_SUPP_RATES pCurrExtSuppRates
,
3509 PSTxMgmtPacket pTxPacket
= NULL
;
3510 WLAN_FR_PROBERESP sFrame
;
3513 PWLAN_IE_IBSS_DFS pIBSSDFS
= NULL
;
3517 pTxPacket
= (PSTxMgmtPacket
)pMgmt
->pbyMgmtPacketPool
;
3518 memset(pTxPacket
, 0, sizeof(STxMgmtPacket
) + WLAN_PROBERESP_FR_MAXLEN
);
3519 pTxPacket
->p80211Header
= (PUWLAN_80211HDR
)((PBYTE
)pTxPacket
+ sizeof(STxMgmtPacket
));
3520 // Setup the sFrame structure.
3521 sFrame
.pBuf
= (PBYTE
)pTxPacket
->p80211Header
;
3522 sFrame
.len
= WLAN_PROBERESP_FR_MAXLEN
;
3523 vMgrEncodeProbeResponse(&sFrame
);
3525 sFrame
.pHdr
->sA3
.wFrameCtl
= cpu_to_le16(
3527 WLAN_SET_FC_FTYPE(WLAN_TYPE_MGR
) |
3528 WLAN_SET_FC_FSTYPE(WLAN_FSTYPE_PROBERESP
)
3530 memcpy( sFrame
.pHdr
->sA3
.abyAddr1
, pDstAddr
, WLAN_ADDR_LEN
);
3531 memcpy( sFrame
.pHdr
->sA3
.abyAddr2
, pMgmt
->abyMACAddr
, WLAN_ADDR_LEN
);
3532 memcpy( sFrame
.pHdr
->sA3
.abyAddr3
, pCurrBSSID
, WLAN_BSSID_LEN
);
3533 *sFrame
.pwBeaconInterval
= cpu_to_le16(wCurrBeaconPeriod
);
3534 *sFrame
.pwCapInfo
= cpu_to_le16(wCurrCapInfo
);
3536 if (byPHYType
== BB_TYPE_11B
) {
3537 *sFrame
.pwCapInfo
&= cpu_to_le16((WORD
)~(WLAN_SET_CAP_INFO_SHORTSLOTTIME(1)));
3541 sFrame
.pSSID
= (PWLAN_IE_SSID
)(sFrame
.pBuf
+ sFrame
.len
);
3542 sFrame
.len
+= ((PWLAN_IE_SSID
)pMgmt
->abyCurrSSID
)->len
+ WLAN_IEHDR_LEN
;
3543 memcpy(sFrame
.pSSID
,
3545 ((PWLAN_IE_SSID
)pCurrSSID
)->len
+ WLAN_IEHDR_LEN
3547 // Copy the rate set
3548 sFrame
.pSuppRates
= (PWLAN_IE_SUPP_RATES
)(sFrame
.pBuf
+ sFrame
.len
);
3550 sFrame
.len
+= ((PWLAN_IE_SUPP_RATES
)pCurrSuppRates
)->len
+ WLAN_IEHDR_LEN
;
3551 memcpy(sFrame
.pSuppRates
,
3553 ((PWLAN_IE_SUPP_RATES
)pCurrSuppRates
)->len
+ WLAN_IEHDR_LEN
3557 if (pDevice
->eCurrentPHYType
!= PHY_TYPE_11A
) {
3558 sFrame
.pDSParms
= (PWLAN_IE_DS_PARMS
)(sFrame
.pBuf
+ sFrame
.len
);
3559 sFrame
.len
+= (1) + WLAN_IEHDR_LEN
;
3560 sFrame
.pDSParms
->byElementID
= WLAN_EID_DS_PARMS
;
3561 sFrame
.pDSParms
->len
= 1;
3562 sFrame
.pDSParms
->byCurrChannel
= (BYTE
)uCurrChannel
;
3565 if (pMgmt
->eCurrMode
!= WMAC_MODE_ESS_AP
) {
3567 sFrame
.pIBSSParms
= (PWLAN_IE_IBSS_PARMS
)(sFrame
.pBuf
+ sFrame
.len
);
3568 sFrame
.len
+= (2) + WLAN_IEHDR_LEN
;
3569 sFrame
.pIBSSParms
->byElementID
= WLAN_EID_IBSS_PARMS
;
3570 sFrame
.pIBSSParms
->len
= 2;
3571 sFrame
.pIBSSParms
->wATIMWindow
= 0;
3573 if (pDevice
->eCurrentPHYType
== PHY_TYPE_11G
) {
3574 sFrame
.pERP
= (PWLAN_IE_ERP
)(sFrame
.pBuf
+ sFrame
.len
);
3575 sFrame
.len
+= 1 + WLAN_IEHDR_LEN
;
3576 sFrame
.pERP
->byElementID
= WLAN_EID_ERP
;
3577 sFrame
.pERP
->len
= 1;
3578 sFrame
.pERP
->byContext
= 0;
3579 if (pDevice
->bProtectMode
== TRUE
)
3580 sFrame
.pERP
->byContext
|= WLAN_EID_ERP_USE_PROTECTION
;
3581 if (pDevice
->bNonERPPresent
== TRUE
)
3582 sFrame
.pERP
->byContext
|= WLAN_EID_ERP_NONERP_PRESENT
;
3583 if (pDevice
->bBarkerPreambleMd
== TRUE
)
3584 sFrame
.pERP
->byContext
|= WLAN_EID_ERP_BARKER_MODE
;
3587 if ((pMgmt
->b11hEnable
== TRUE
) &&
3588 (pMgmt
->eCurrentPHYMode
== PHY_TYPE_11A
)) {
3590 pbyBuffer
= (PBYTE
)(sFrame
.pBuf
+ sFrame
.len
);
3591 CARDvSetCountryIE(pMgmt
->pAdapter
, pbyBuffer
);
3592 CARDvSetCountryInfo(pMgmt
->pAdapter
, PHY_TYPE_11A
, pbyBuffer
);
3593 uLength
+= ((PWLAN_IE_COUNTRY
) pbyBuffer
)->len
+ WLAN_IEHDR_LEN
;
3594 pbyBuffer
+= (((PWLAN_IE_COUNTRY
) pbyBuffer
)->len
+ WLAN_IEHDR_LEN
);
3595 // Power Constrain IE
3596 ((PWLAN_IE_PW_CONST
) pbyBuffer
)->byElementID
= WLAN_EID_PWR_CONSTRAINT
;
3597 ((PWLAN_IE_PW_CONST
) pbyBuffer
)->len
= 1;
3598 ((PWLAN_IE_PW_CONST
) pbyBuffer
)->byPower
= 0;
3599 pbyBuffer
+= (1) + WLAN_IEHDR_LEN
;
3600 uLength
+= (1) + WLAN_IEHDR_LEN
;
3601 if (pMgmt
->bSwitchChannel
== TRUE
) {
3602 // Channel Switch IE
3603 ((PWLAN_IE_CH_SW
) pbyBuffer
)->byElementID
= WLAN_EID_CH_SWITCH
;
3604 ((PWLAN_IE_CH_SW
) pbyBuffer
)->len
= 3;
3605 ((PWLAN_IE_CH_SW
) pbyBuffer
)->byMode
= 1;
3606 ((PWLAN_IE_CH_SW
) pbyBuffer
)->byChannel
= CARDbyGetChannelNumber(pMgmt
->pAdapter
, pMgmt
->byNewChannel
);
3607 ((PWLAN_IE_CH_SW
) pbyBuffer
)->byCount
= 0;
3608 pbyBuffer
+= (3) + WLAN_IEHDR_LEN
;
3609 uLength
+= (3) + WLAN_IEHDR_LEN
;
3612 ((PWLAN_IE_TPC_REP
) pbyBuffer
)->byElementID
= WLAN_EID_TPC_REP
;
3613 ((PWLAN_IE_TPC_REP
) pbyBuffer
)->len
= 2;
3614 ((PWLAN_IE_TPC_REP
) pbyBuffer
)->byTxPower
= CARDbyGetTransmitPower(pMgmt
->pAdapter
);
3615 ((PWLAN_IE_TPC_REP
) pbyBuffer
)->byLinkMargin
= 0;
3616 pbyBuffer
+= (2) + WLAN_IEHDR_LEN
;
3617 uLength
+= (2) + WLAN_IEHDR_LEN
;
3619 if (pMgmt
->eCurrMode
!= WMAC_MODE_ESS_AP
) {
3620 pIBSSDFS
= (PWLAN_IE_IBSS_DFS
) pbyBuffer
;
3621 pIBSSDFS
->byElementID
= WLAN_EID_IBSS_DFS
;
3623 MEMvCopy( pIBSSDFS
->abyDFSOwner
,
3624 pMgmt
->abyIBSSDFSOwner
,
3626 pIBSSDFS
->byDFSRecovery
= pMgmt
->byIBSSDFSRecovery
;
3627 pbyBuffer
+= (7) + WLAN_IEHDR_LEN
;
3628 uLength
+= (7) + WLAN_IEHDR_LEN
;
3629 for(ii
=CB_MAX_CHANNEL_24G
+1; ii
<=CB_MAX_CHANNEL
; ii
++ ) {
3630 if (CARDbGetChannelMapInfo(pMgmt
->pAdapter
, ii
, pbyBuffer
, pbyBuffer
+1) == TRUE
) {
3637 sFrame
.len
+= uLength
;
3641 if (((PWLAN_IE_SUPP_RATES
)pCurrExtSuppRates
)->len
!= 0) {
3642 sFrame
.pExtSuppRates
= (PWLAN_IE_SUPP_RATES
)(sFrame
.pBuf
+ sFrame
.len
);
3643 sFrame
.len
+= ((PWLAN_IE_SUPP_RATES
)pCurrExtSuppRates
)->len
+ WLAN_IEHDR_LEN
;
3644 MEMvCopy(sFrame
.pExtSuppRates
,
3646 ((PWLAN_IE_SUPP_RATES
)pCurrExtSuppRates
)->len
+ WLAN_IEHDR_LEN
3650 // hostapd wpa/wpa2 IE
3651 if ((pMgmt
->eCurrMode
== WMAC_MODE_ESS_AP
) && (pDevice
->bEnableHostapd
== TRUE
)) {
3652 if (pMgmt
->eAuthenMode
== WMAC_AUTH_WPANONE
) {
3653 if (pMgmt
->wWPAIELen
!= 0) {
3654 sFrame
.pRSN
= (PWLAN_IE_RSN
)(sFrame
.pBuf
+ sFrame
.len
);
3655 memcpy(sFrame
.pRSN
, pMgmt
->abyWPAIE
, pMgmt
->wWPAIELen
);
3656 sFrame
.len
+= pMgmt
->wWPAIELen
;
3661 // Adjust the length fields
3662 pTxPacket
->cbMPDULen
= sFrame
.len
;
3663 pTxPacket
->cbPayloadLen
= sFrame
.len
- WLAN_HDR_ADDR3_LEN
;
3672 * Routine Description:
3673 * Constructs an association request frame
3677 * A ptr to frame or NULL on allocation failue
3683 s_MgrMakeAssocRequest(
3684 IN PSDevice pDevice
,
3685 IN PSMgmtObject pMgmt
,
3687 IN WORD wCurrCapInfo
,
3688 IN WORD wListenInterval
,
3689 IN PWLAN_IE_SSID pCurrSSID
,
3690 IN PWLAN_IE_SUPP_RATES pCurrRates
,
3691 IN PWLAN_IE_SUPP_RATES pCurrExtSuppRates
3694 PSTxMgmtPacket pTxPacket
= NULL
;
3695 WLAN_FR_ASSOCREQ sFrame
;
3700 pTxPacket
= (PSTxMgmtPacket
)pMgmt
->pbyMgmtPacketPool
;
3701 memset(pTxPacket
, 0, sizeof(STxMgmtPacket
) + WLAN_ASSOCREQ_FR_MAXLEN
);
3702 pTxPacket
->p80211Header
= (PUWLAN_80211HDR
)((PBYTE
)pTxPacket
+ sizeof(STxMgmtPacket
));
3703 // Setup the sFrame structure.
3704 sFrame
.pBuf
= (PBYTE
)pTxPacket
->p80211Header
;
3705 sFrame
.len
= WLAN_ASSOCREQ_FR_MAXLEN
;
3706 // format fixed field frame structure
3707 vMgrEncodeAssocRequest(&sFrame
);
3709 sFrame
.pHdr
->sA3
.wFrameCtl
= cpu_to_le16(
3711 WLAN_SET_FC_FTYPE(WLAN_TYPE_MGR
) |
3712 WLAN_SET_FC_FSTYPE(WLAN_FSTYPE_ASSOCREQ
)
3714 memcpy( sFrame
.pHdr
->sA3
.abyAddr1
, pDAddr
, WLAN_ADDR_LEN
);
3715 memcpy( sFrame
.pHdr
->sA3
.abyAddr2
, pMgmt
->abyMACAddr
, WLAN_ADDR_LEN
);
3716 memcpy( sFrame
.pHdr
->sA3
.abyAddr3
, pMgmt
->abyCurrBSSID
, WLAN_BSSID_LEN
);
3718 // Set the capibility and listen interval
3719 *(sFrame
.pwCapInfo
) = cpu_to_le16(wCurrCapInfo
);
3720 *(sFrame
.pwListenInterval
) = cpu_to_le16(wListenInterval
);
3722 // sFrame.len point to end of fixed field
3723 sFrame
.pSSID
= (PWLAN_IE_SSID
)(sFrame
.pBuf
+ sFrame
.len
);
3724 sFrame
.len
+= pCurrSSID
->len
+ WLAN_IEHDR_LEN
;
3725 memcpy(sFrame
.pSSID
, pCurrSSID
, pCurrSSID
->len
+ WLAN_IEHDR_LEN
);
3727 pMgmt
->sAssocInfo
.AssocInfo
.RequestIELength
= pCurrSSID
->len
+ WLAN_IEHDR_LEN
;
3728 pMgmt
->sAssocInfo
.AssocInfo
.OffsetRequestIEs
= sizeof(NDIS_802_11_ASSOCIATION_INFORMATION
);
3729 pbyIEs
= pMgmt
->sAssocInfo
.abyIEs
;
3730 MEMvCopy(pbyIEs
, pCurrSSID
, pCurrSSID
->len
+ WLAN_IEHDR_LEN
);
3731 pbyIEs
+= pCurrSSID
->len
+ WLAN_IEHDR_LEN
;
3733 // Copy the rate set
3734 sFrame
.pSuppRates
= (PWLAN_IE_SUPP_RATES
)(sFrame
.pBuf
+ sFrame
.len
);
3735 if ((pDevice
->eCurrentPHYType
== PHY_TYPE_11B
) && (pCurrRates
->len
> 4))
3736 sFrame
.len
+= 4 + WLAN_IEHDR_LEN
;
3738 sFrame
.len
+= pCurrRates
->len
+ WLAN_IEHDR_LEN
;
3739 memcpy(sFrame
.pSuppRates
, pCurrRates
, pCurrRates
->len
+ WLAN_IEHDR_LEN
);
3741 // Copy the extension rate set
3742 if ((pDevice
->eCurrentPHYType
== PHY_TYPE_11G
) && (pCurrExtSuppRates
->len
> 0)) {
3743 sFrame
.pExtSuppRates
= (PWLAN_IE_SUPP_RATES
)(sFrame
.pBuf
+ sFrame
.len
);
3744 sFrame
.len
+= pCurrExtSuppRates
->len
+ WLAN_IEHDR_LEN
;
3745 memcpy(sFrame
.pExtSuppRates
, pCurrExtSuppRates
, pCurrExtSuppRates
->len
+ WLAN_IEHDR_LEN
);
3748 pMgmt
->sAssocInfo
.AssocInfo
.RequestIELength
+= pCurrRates
->len
+ WLAN_IEHDR_LEN
;
3749 MEMvCopy(pbyIEs
, pCurrRates
, pCurrRates
->len
+ WLAN_IEHDR_LEN
);
3750 pbyIEs
+= pCurrRates
->len
+ WLAN_IEHDR_LEN
;
3753 if (pMgmt
->b11hEnable
== TRUE
) {
3754 if (sFrame
.pCurrPowerCap
== NULL
) {
3755 sFrame
.pCurrPowerCap
= (PWLAN_IE_PW_CAP
)(sFrame
.pBuf
+ sFrame
.len
);
3756 sFrame
.len
+= (2 + WLAN_IEHDR_LEN
);
3757 sFrame
.pCurrPowerCap
->byElementID
= WLAN_EID_PWR_CAPABILITY
;
3758 sFrame
.pCurrPowerCap
->len
= 2;
3759 CARDvGetPowerCapability(pMgmt
->pAdapter
,
3760 &(sFrame
.pCurrPowerCap
->byMinPower
),
3761 &(sFrame
.pCurrPowerCap
->byMaxPower
)
3764 if (sFrame
.pCurrSuppCh
== NULL
) {
3765 sFrame
.pCurrSuppCh
= (PWLAN_IE_SUPP_CH
)(sFrame
.pBuf
+ sFrame
.len
);
3766 sFrame
.len
+= CARDbySetSupportChannels(pMgmt
->pAdapter
,(PBYTE
)sFrame
.pCurrSuppCh
);
3770 if (((pMgmt
->eAuthenMode
== WMAC_AUTH_WPA
) ||
3771 (pMgmt
->eAuthenMode
== WMAC_AUTH_WPAPSK
) ||
3772 (pMgmt
->eAuthenMode
== WMAC_AUTH_WPANONE
)) &&
3773 (pMgmt
->pCurrBSS
!= NULL
)) {
3775 sFrame
.pRSNWPA
= (PWLAN_IE_RSN_EXT
)(sFrame
.pBuf
+ sFrame
.len
);
3776 sFrame
.pRSNWPA
->byElementID
= WLAN_EID_RSN_WPA
;
3777 sFrame
.pRSNWPA
->len
= 16;
3778 sFrame
.pRSNWPA
->abyOUI
[0] = 0x00;
3779 sFrame
.pRSNWPA
->abyOUI
[1] = 0x50;
3780 sFrame
.pRSNWPA
->abyOUI
[2] = 0xf2;
3781 sFrame
.pRSNWPA
->abyOUI
[3] = 0x01;
3782 sFrame
.pRSNWPA
->wVersion
= 1;
3783 //Group Key Cipher Suite
3784 sFrame
.pRSNWPA
->abyMulticast
[0] = 0x00;
3785 sFrame
.pRSNWPA
->abyMulticast
[1] = 0x50;
3786 sFrame
.pRSNWPA
->abyMulticast
[2] = 0xf2;
3787 if (pMgmt
->byCSSGK
== KEY_CTL_WEP
) {
3788 sFrame
.pRSNWPA
->abyMulticast
[3] = pMgmt
->pCurrBSS
->byGKType
;
3789 } else if (pMgmt
->byCSSGK
== KEY_CTL_TKIP
) {
3790 sFrame
.pRSNWPA
->abyMulticast
[3] = WPA_TKIP
;
3791 } else if (pMgmt
->byCSSGK
== KEY_CTL_CCMP
) {
3792 sFrame
.pRSNWPA
->abyMulticast
[3] = WPA_AESCCMP
;
3794 sFrame
.pRSNWPA
->abyMulticast
[3] = WPA_NONE
;
3796 // Pairwise Key Cipher Suite
3797 sFrame
.pRSNWPA
->wPKCount
= 1;
3798 sFrame
.pRSNWPA
->PKSList
[0].abyOUI
[0] = 0x00;
3799 sFrame
.pRSNWPA
->PKSList
[0].abyOUI
[1] = 0x50;
3800 sFrame
.pRSNWPA
->PKSList
[0].abyOUI
[2] = 0xf2;
3801 if (pMgmt
->byCSSPK
== KEY_CTL_TKIP
) {
3802 sFrame
.pRSNWPA
->PKSList
[0].abyOUI
[3] = WPA_TKIP
;
3803 } else if (pMgmt
->byCSSPK
== KEY_CTL_CCMP
) {
3804 sFrame
.pRSNWPA
->PKSList
[0].abyOUI
[3] = WPA_AESCCMP
;
3806 sFrame
.pRSNWPA
->PKSList
[0].abyOUI
[3] = WPA_NONE
;
3808 // Auth Key Management Suite
3809 pbyRSN
= (PBYTE
)(sFrame
.pBuf
+ sFrame
.len
+ 2 + sFrame
.pRSNWPA
->len
);
3816 if (pMgmt
->eAuthenMode
== WMAC_AUTH_WPAPSK
) {
3817 *pbyRSN
++=WPA_AUTH_PSK
;
3819 else if (pMgmt
->eAuthenMode
== WMAC_AUTH_WPA
) {
3820 *pbyRSN
++=WPA_AUTH_IEEE802_1X
;
3826 sFrame
.pRSNWPA
->len
+=6;
3832 sFrame
.pRSNWPA
->len
+=2;
3834 sFrame
.len
+= sFrame
.pRSNWPA
->len
+ WLAN_IEHDR_LEN
;
3835 // copy to AssocInfo. for OID_802_11_ASSOCIATION_INFORMATION
3836 pMgmt
->sAssocInfo
.AssocInfo
.RequestIELength
+= sFrame
.pRSNWPA
->len
+ WLAN_IEHDR_LEN
;
3837 MEMvCopy(pbyIEs
, sFrame
.pRSNWPA
, sFrame
.pRSNWPA
->len
+ WLAN_IEHDR_LEN
);
3838 pbyIEs
+= sFrame
.pRSNWPA
->len
+ WLAN_IEHDR_LEN
;
3840 } else if (((pMgmt
->eAuthenMode
== WMAC_AUTH_WPA2
) ||
3841 (pMgmt
->eAuthenMode
== WMAC_AUTH_WPA2PSK
)) &&
3842 (pMgmt
->pCurrBSS
!= NULL
)) {
3847 sFrame
.pRSN
= (PWLAN_IE_RSN
)(sFrame
.pBuf
+ sFrame
.len
);
3848 sFrame
.pRSN
->byElementID
= WLAN_EID_RSN
;
3849 sFrame
.pRSN
->len
= 6; //Version(2)+GK(4)
3850 sFrame
.pRSN
->wVersion
= 1;
3851 //Group Key Cipher Suite
3852 sFrame
.pRSN
->abyRSN
[0] = 0x00;
3853 sFrame
.pRSN
->abyRSN
[1] = 0x0F;
3854 sFrame
.pRSN
->abyRSN
[2] = 0xAC;
3855 if (pMgmt
->byCSSGK
== KEY_CTL_WEP
) {
3856 sFrame
.pRSN
->abyRSN
[3] = pMgmt
->pCurrBSS
->byCSSGK
;
3857 } else if (pMgmt
->byCSSGK
== KEY_CTL_TKIP
) {
3858 sFrame
.pRSN
->abyRSN
[3] = WLAN_11i_CSS_TKIP
;
3859 } else if (pMgmt
->byCSSGK
== KEY_CTL_CCMP
) {
3860 sFrame
.pRSN
->abyRSN
[3] = WLAN_11i_CSS_CCMP
;
3862 sFrame
.pRSN
->abyRSN
[3] = WLAN_11i_CSS_UNKNOWN
;
3865 // Pairwise Key Cipher Suite
3866 sFrame
.pRSN
->abyRSN
[4] = 1;
3867 sFrame
.pRSN
->abyRSN
[5] = 0;
3868 sFrame
.pRSN
->abyRSN
[6] = 0x00;
3869 sFrame
.pRSN
->abyRSN
[7] = 0x0F;
3870 sFrame
.pRSN
->abyRSN
[8] = 0xAC;
3871 if (pMgmt
->byCSSPK
== KEY_CTL_TKIP
) {
3872 sFrame
.pRSN
->abyRSN
[9] = WLAN_11i_CSS_TKIP
;
3873 } else if (pMgmt
->byCSSPK
== KEY_CTL_CCMP
) {
3874 sFrame
.pRSN
->abyRSN
[9] = WLAN_11i_CSS_CCMP
;
3875 } else if (pMgmt
->byCSSPK
== KEY_CTL_NONE
) {
3876 sFrame
.pRSN
->abyRSN
[9] = WLAN_11i_CSS_USE_GROUP
;
3878 sFrame
.pRSN
->abyRSN
[9] = WLAN_11i_CSS_UNKNOWN
;
3880 sFrame
.pRSN
->len
+= 6;
3882 // Auth Key Management Suite
3883 sFrame
.pRSN
->abyRSN
[10] = 1;
3884 sFrame
.pRSN
->abyRSN
[11] = 0;
3885 sFrame
.pRSN
->abyRSN
[12] = 0x00;
3886 sFrame
.pRSN
->abyRSN
[13] = 0x0F;
3887 sFrame
.pRSN
->abyRSN
[14] = 0xAC;
3888 if (pMgmt
->eAuthenMode
== WMAC_AUTH_WPA2PSK
) {
3889 sFrame
.pRSN
->abyRSN
[15] = WLAN_11i_AKMSS_PSK
;
3890 } else if (pMgmt
->eAuthenMode
== WMAC_AUTH_WPA2
) {
3891 sFrame
.pRSN
->abyRSN
[15] = WLAN_11i_AKMSS_802_1X
;
3893 sFrame
.pRSN
->abyRSN
[15] = WLAN_11i_AKMSS_UNKNOWN
;
3895 sFrame
.pRSN
->len
+=6;
3898 if (pMgmt
->pCurrBSS
->sRSNCapObj
.bRSNCapExist
== TRUE
) {
3899 MEMvCopy(&sFrame
.pRSN
->abyRSN
[16], &pMgmt
->pCurrBSS
->sRSNCapObj
.wRSNCap
, 2);
3901 sFrame
.pRSN
->abyRSN
[16] = 0;
3902 sFrame
.pRSN
->abyRSN
[17] = 0;
3904 sFrame
.pRSN
->len
+=2;
3906 if ((pDevice
->gsPMKID
.BSSIDInfoCount
> 0) && (pDevice
->bRoaming
== TRUE
) && (pMgmt
->eAuthenMode
== WMAC_AUTH_WPA2
)) {
3908 pbyRSN
= &sFrame
.pRSN
->abyRSN
[18];
3909 pwPMKID
= (PWORD
)pbyRSN
; // Point to PMKID count
3910 *pwPMKID
= 0; // Initialize PMKID count
3911 pbyRSN
+= 2; // Point to PMKID list
3912 for (ii
= 0; ii
< pDevice
->gsPMKID
.BSSIDInfoCount
; ii
++) {
3913 if (MEMEqualMemory(&pDevice
->gsPMKID
.BSSIDInfo
[ii
].BSSID
[0], pMgmt
->abyCurrBSSID
, U_ETHER_ADDR_LEN
)) {
3915 MEMvCopy(pbyRSN
, pDevice
->gsPMKID
.BSSIDInfo
[ii
].PMKID
, 16);
3919 if (*pwPMKID
!= 0) {
3920 sFrame
.pRSN
->len
+= (2 + (*pwPMKID
)*16);
3924 sFrame
.len
+= sFrame
.pRSN
->len
+ WLAN_IEHDR_LEN
;
3925 // copy to AssocInfo. for OID_802_11_ASSOCIATION_INFORMATION
3926 pMgmt
->sAssocInfo
.AssocInfo
.RequestIELength
+= sFrame
.pRSN
->len
+ WLAN_IEHDR_LEN
;
3927 MEMvCopy(pbyIEs
, sFrame
.pRSN
, sFrame
.pRSN
->len
+ WLAN_IEHDR_LEN
);
3928 pbyIEs
+= sFrame
.pRSN
->len
+ WLAN_IEHDR_LEN
;
3932 // Adjust the length fields
3933 pTxPacket
->cbMPDULen
= sFrame
.len
;
3934 pTxPacket
->cbPayloadLen
= sFrame
.len
- WLAN_HDR_ADDR3_LEN
;
3947 * Routine Description:
3948 * Constructs an re-association request frame
3952 * A ptr to frame or NULL on allocation failue
3958 s_MgrMakeReAssocRequest(
3959 IN PSDevice pDevice
,
3960 IN PSMgmtObject pMgmt
,
3962 IN WORD wCurrCapInfo
,
3963 IN WORD wListenInterval
,
3964 IN PWLAN_IE_SSID pCurrSSID
,
3965 IN PWLAN_IE_SUPP_RATES pCurrRates
,
3966 IN PWLAN_IE_SUPP_RATES pCurrExtSuppRates
3969 PSTxMgmtPacket pTxPacket
= NULL
;
3970 WLAN_FR_REASSOCREQ sFrame
;
3975 pTxPacket
= (PSTxMgmtPacket
)pMgmt
->pbyMgmtPacketPool
;
3976 memset( pTxPacket
, 0, sizeof(STxMgmtPacket
) + WLAN_REASSOCREQ_FR_MAXLEN
);
3977 pTxPacket
->p80211Header
= (PUWLAN_80211HDR
)((PBYTE
)pTxPacket
+ sizeof(STxMgmtPacket
));
3978 /* Setup the sFrame structure. */
3979 sFrame
.pBuf
= (PBYTE
)pTxPacket
->p80211Header
;
3980 sFrame
.len
= WLAN_REASSOCREQ_FR_MAXLEN
;
3982 // format fixed field frame structure
3983 vMgrEncodeReassocRequest(&sFrame
);
3985 /* Setup the header */
3986 sFrame
.pHdr
->sA3
.wFrameCtl
= cpu_to_le16(
3988 WLAN_SET_FC_FTYPE(WLAN_TYPE_MGR
) |
3989 WLAN_SET_FC_FSTYPE(WLAN_FSTYPE_REASSOCREQ
)
3991 memcpy( sFrame
.pHdr
->sA3
.abyAddr1
, pDAddr
, WLAN_ADDR_LEN
);
3992 memcpy( sFrame
.pHdr
->sA3
.abyAddr2
, pMgmt
->abyMACAddr
, WLAN_ADDR_LEN
);
3993 memcpy( sFrame
.pHdr
->sA3
.abyAddr3
, pMgmt
->abyCurrBSSID
, WLAN_BSSID_LEN
);
3995 /* Set the capibility and listen interval */
3996 *(sFrame
.pwCapInfo
) = cpu_to_le16(wCurrCapInfo
);
3997 *(sFrame
.pwListenInterval
) = cpu_to_le16(wListenInterval
);
3999 memcpy(sFrame
.pAddrCurrAP
, pMgmt
->abyCurrBSSID
, WLAN_BSSID_LEN
);
4001 /* sFrame.len point to end of fixed field */
4002 sFrame
.pSSID
= (PWLAN_IE_SSID
)(sFrame
.pBuf
+ sFrame
.len
);
4003 sFrame
.len
+= pCurrSSID
->len
+ WLAN_IEHDR_LEN
;
4004 memcpy(sFrame
.pSSID
, pCurrSSID
, pCurrSSID
->len
+ WLAN_IEHDR_LEN
);
4006 pMgmt
->sAssocInfo
.AssocInfo
.RequestIELength
= pCurrSSID
->len
+ WLAN_IEHDR_LEN
;
4007 pMgmt
->sAssocInfo
.AssocInfo
.OffsetRequestIEs
= sizeof(NDIS_802_11_ASSOCIATION_INFORMATION
);
4008 pbyIEs
= pMgmt
->sAssocInfo
.abyIEs
;
4009 MEMvCopy(pbyIEs
, pCurrSSID
, pCurrSSID
->len
+ WLAN_IEHDR_LEN
);
4010 pbyIEs
+= pCurrSSID
->len
+ WLAN_IEHDR_LEN
;
4012 /* Copy the rate set */
4013 /* sFrame.len point to end of SSID */
4014 sFrame
.pSuppRates
= (PWLAN_IE_SUPP_RATES
)(sFrame
.pBuf
+ sFrame
.len
);
4015 sFrame
.len
+= pCurrRates
->len
+ WLAN_IEHDR_LEN
;
4016 memcpy(sFrame
.pSuppRates
, pCurrRates
, pCurrRates
->len
+ WLAN_IEHDR_LEN
);
4018 // Copy the extension rate set
4019 if ((pMgmt
->eCurrentPHYMode
== PHY_TYPE_11G
) && (pCurrExtSuppRates
->len
> 0)) {
4020 sFrame
.pExtSuppRates
= (PWLAN_IE_SUPP_RATES
)(sFrame
.pBuf
+ sFrame
.len
);
4021 sFrame
.len
+= pCurrExtSuppRates
->len
+ WLAN_IEHDR_LEN
;
4022 memcpy(sFrame
.pExtSuppRates
, pCurrExtSuppRates
, pCurrExtSuppRates
->len
+ WLAN_IEHDR_LEN
);
4025 pMgmt
->sAssocInfo
.AssocInfo
.RequestIELength
+= pCurrRates
->len
+ WLAN_IEHDR_LEN
;
4026 MEMvCopy(pbyIEs
, pCurrRates
, pCurrRates
->len
+ WLAN_IEHDR_LEN
);
4027 pbyIEs
+= pCurrRates
->len
+ WLAN_IEHDR_LEN
;
4029 if (((pMgmt
->eAuthenMode
== WMAC_AUTH_WPA
) ||
4030 (pMgmt
->eAuthenMode
== WMAC_AUTH_WPAPSK
) ||
4031 (pMgmt
->eAuthenMode
== WMAC_AUTH_WPANONE
)) &&
4032 (pMgmt
->pCurrBSS
!= NULL
)) {
4034 sFrame
.pRSNWPA
= (PWLAN_IE_RSN_EXT
)(sFrame
.pBuf
+ sFrame
.len
);
4035 sFrame
.pRSNWPA
->byElementID
= WLAN_EID_RSN_WPA
;
4036 sFrame
.pRSNWPA
->len
= 16;
4037 sFrame
.pRSNWPA
->abyOUI
[0] = 0x00;
4038 sFrame
.pRSNWPA
->abyOUI
[1] = 0x50;
4039 sFrame
.pRSNWPA
->abyOUI
[2] = 0xf2;
4040 sFrame
.pRSNWPA
->abyOUI
[3] = 0x01;
4041 sFrame
.pRSNWPA
->wVersion
= 1;
4042 //Group Key Cipher Suite
4043 sFrame
.pRSNWPA
->abyMulticast
[0] = 0x00;
4044 sFrame
.pRSNWPA
->abyMulticast
[1] = 0x50;
4045 sFrame
.pRSNWPA
->abyMulticast
[2] = 0xf2;
4046 if (pMgmt
->byCSSGK
== KEY_CTL_WEP
) {
4047 sFrame
.pRSNWPA
->abyMulticast
[3] = pMgmt
->pCurrBSS
->byGKType
;
4048 } else if (pMgmt
->byCSSGK
== KEY_CTL_TKIP
) {
4049 sFrame
.pRSNWPA
->abyMulticast
[3] = WPA_TKIP
;
4050 } else if (pMgmt
->byCSSGK
== KEY_CTL_CCMP
) {
4051 sFrame
.pRSNWPA
->abyMulticast
[3] = WPA_AESCCMP
;
4053 sFrame
.pRSNWPA
->abyMulticast
[3] = WPA_NONE
;
4055 // Pairwise Key Cipher Suite
4056 sFrame
.pRSNWPA
->wPKCount
= 1;
4057 sFrame
.pRSNWPA
->PKSList
[0].abyOUI
[0] = 0x00;
4058 sFrame
.pRSNWPA
->PKSList
[0].abyOUI
[1] = 0x50;
4059 sFrame
.pRSNWPA
->PKSList
[0].abyOUI
[2] = 0xf2;
4060 if (pMgmt
->byCSSPK
== KEY_CTL_TKIP
) {
4061 sFrame
.pRSNWPA
->PKSList
[0].abyOUI
[3] = WPA_TKIP
;
4062 } else if (pMgmt
->byCSSPK
== KEY_CTL_CCMP
) {
4063 sFrame
.pRSNWPA
->PKSList
[0].abyOUI
[3] = WPA_AESCCMP
;
4065 sFrame
.pRSNWPA
->PKSList
[0].abyOUI
[3] = WPA_NONE
;
4067 // Auth Key Management Suite
4068 pbyRSN
= (PBYTE
)(sFrame
.pBuf
+ sFrame
.len
+ 2 + sFrame
.pRSNWPA
->len
);
4075 if (pMgmt
->eAuthenMode
== WMAC_AUTH_WPAPSK
) {
4076 *pbyRSN
++=WPA_AUTH_PSK
;
4077 } else if (pMgmt
->eAuthenMode
== WMAC_AUTH_WPA
) {
4078 *pbyRSN
++=WPA_AUTH_IEEE802_1X
;
4083 sFrame
.pRSNWPA
->len
+=6;
4088 sFrame
.pRSNWPA
->len
+=2;
4090 sFrame
.len
+= sFrame
.pRSNWPA
->len
+ WLAN_IEHDR_LEN
;
4091 // copy to AssocInfo. for OID_802_11_ASSOCIATION_INFORMATION
4092 pMgmt
->sAssocInfo
.AssocInfo
.RequestIELength
+= sFrame
.pRSNWPA
->len
+ WLAN_IEHDR_LEN
;
4093 MEMvCopy(pbyIEs
, sFrame
.pRSNWPA
, sFrame
.pRSNWPA
->len
+ WLAN_IEHDR_LEN
);
4094 pbyIEs
+= sFrame
.pRSNWPA
->len
+ WLAN_IEHDR_LEN
;
4096 } else if (((pMgmt
->eAuthenMode
== WMAC_AUTH_WPA2
) ||
4097 (pMgmt
->eAuthenMode
== WMAC_AUTH_WPA2PSK
)) &&
4098 (pMgmt
->pCurrBSS
!= NULL
)) {
4103 sFrame
.pRSN
= (PWLAN_IE_RSN
)(sFrame
.pBuf
+ sFrame
.len
);
4104 sFrame
.pRSN
->byElementID
= WLAN_EID_RSN
;
4105 sFrame
.pRSN
->len
= 6; //Version(2)+GK(4)
4106 sFrame
.pRSN
->wVersion
= 1;
4107 //Group Key Cipher Suite
4108 sFrame
.pRSN
->abyRSN
[0] = 0x00;
4109 sFrame
.pRSN
->abyRSN
[1] = 0x0F;
4110 sFrame
.pRSN
->abyRSN
[2] = 0xAC;
4111 if (pMgmt
->byCSSGK
== KEY_CTL_WEP
) {
4112 sFrame
.pRSN
->abyRSN
[3] = pMgmt
->pCurrBSS
->byCSSGK
;
4113 } else if (pMgmt
->byCSSGK
== KEY_CTL_TKIP
) {
4114 sFrame
.pRSN
->abyRSN
[3] = WLAN_11i_CSS_TKIP
;
4115 } else if (pMgmt
->byCSSGK
== KEY_CTL_CCMP
) {
4116 sFrame
.pRSN
->abyRSN
[3] = WLAN_11i_CSS_CCMP
;
4118 sFrame
.pRSN
->abyRSN
[3] = WLAN_11i_CSS_UNKNOWN
;
4121 // Pairwise Key Cipher Suite
4122 sFrame
.pRSN
->abyRSN
[4] = 1;
4123 sFrame
.pRSN
->abyRSN
[5] = 0;
4124 sFrame
.pRSN
->abyRSN
[6] = 0x00;
4125 sFrame
.pRSN
->abyRSN
[7] = 0x0F;
4126 sFrame
.pRSN
->abyRSN
[8] = 0xAC;
4127 if (pMgmt
->byCSSPK
== KEY_CTL_TKIP
) {
4128 sFrame
.pRSN
->abyRSN
[9] = WLAN_11i_CSS_TKIP
;
4129 } else if (pMgmt
->byCSSPK
== KEY_CTL_CCMP
) {
4130 sFrame
.pRSN
->abyRSN
[9] = WLAN_11i_CSS_CCMP
;
4131 } else if (pMgmt
->byCSSPK
== KEY_CTL_NONE
) {
4132 sFrame
.pRSN
->abyRSN
[9] = WLAN_11i_CSS_USE_GROUP
;
4134 sFrame
.pRSN
->abyRSN
[9] = WLAN_11i_CSS_UNKNOWN
;
4136 sFrame
.pRSN
->len
+= 6;
4138 // Auth Key Management Suite
4139 sFrame
.pRSN
->abyRSN
[10] = 1;
4140 sFrame
.pRSN
->abyRSN
[11] = 0;
4141 sFrame
.pRSN
->abyRSN
[12] = 0x00;
4142 sFrame
.pRSN
->abyRSN
[13] = 0x0F;
4143 sFrame
.pRSN
->abyRSN
[14] = 0xAC;
4144 if (pMgmt
->eAuthenMode
== WMAC_AUTH_WPA2PSK
) {
4145 sFrame
.pRSN
->abyRSN
[15] = WLAN_11i_AKMSS_PSK
;
4146 } else if (pMgmt
->eAuthenMode
== WMAC_AUTH_WPA2
) {
4147 sFrame
.pRSN
->abyRSN
[15] = WLAN_11i_AKMSS_802_1X
;
4149 sFrame
.pRSN
->abyRSN
[15] = WLAN_11i_AKMSS_UNKNOWN
;
4151 sFrame
.pRSN
->len
+=6;
4154 if (pMgmt
->pCurrBSS
->sRSNCapObj
.bRSNCapExist
== TRUE
) {
4155 MEMvCopy(&sFrame
.pRSN
->abyRSN
[16], &pMgmt
->pCurrBSS
->sRSNCapObj
.wRSNCap
, 2);
4157 sFrame
.pRSN
->abyRSN
[16] = 0;
4158 sFrame
.pRSN
->abyRSN
[17] = 0;
4160 sFrame
.pRSN
->len
+=2;
4162 if ((pDevice
->gsPMKID
.BSSIDInfoCount
> 0) && (pDevice
->bRoaming
== TRUE
) && (pMgmt
->eAuthenMode
== WMAC_AUTH_WPA2
)) {
4164 pbyRSN
= &sFrame
.pRSN
->abyRSN
[18];
4165 pwPMKID
= (PWORD
)pbyRSN
; // Point to PMKID count
4166 *pwPMKID
= 0; // Initialize PMKID count
4167 pbyRSN
+= 2; // Point to PMKID list
4168 for (ii
= 0; ii
< pDevice
->gsPMKID
.BSSIDInfoCount
; ii
++) {
4169 if (MEMEqualMemory(&pDevice
->gsPMKID
.BSSIDInfo
[ii
].BSSID
[0], pMgmt
->abyCurrBSSID
, U_ETHER_ADDR_LEN
)) {
4171 MEMvCopy(pbyRSN
, pDevice
->gsPMKID
.BSSIDInfo
[ii
].PMKID
, 16);
4175 if (*pwPMKID
!= 0) {
4176 sFrame
.pRSN
->len
+= (2 + (*pwPMKID
)*16);
4180 sFrame
.len
+= sFrame
.pRSN
->len
+ WLAN_IEHDR_LEN
;
4181 // copy to AssocInfo. for OID_802_11_ASSOCIATION_INFORMATION
4182 pMgmt
->sAssocInfo
.AssocInfo
.RequestIELength
+= sFrame
.pRSN
->len
+ WLAN_IEHDR_LEN
;
4183 MEMvCopy(pbyIEs
, sFrame
.pRSN
, sFrame
.pRSN
->len
+ WLAN_IEHDR_LEN
);
4184 pbyIEs
+= sFrame
.pRSN
->len
+ WLAN_IEHDR_LEN
;
4188 /* Adjust the length fields */
4189 pTxPacket
->cbMPDULen
= sFrame
.len
;
4190 pTxPacket
->cbPayloadLen
= sFrame
.len
- WLAN_HDR_ADDR3_LEN
;
4199 * Routine Description:
4200 * Constructs an assoc-response frame
4204 * PTR to frame; or NULL on allocation failue
4210 s_MgrMakeAssocResponse(
4211 IN PSDevice pDevice
,
4212 IN PSMgmtObject pMgmt
,
4213 IN WORD wCurrCapInfo
,
4214 IN WORD wAssocStatus
,
4217 IN PWLAN_IE_SUPP_RATES pCurrSuppRates
,
4218 IN PWLAN_IE_SUPP_RATES pCurrExtSuppRates
4221 PSTxMgmtPacket pTxPacket
= NULL
;
4222 WLAN_FR_ASSOCRESP sFrame
;
4225 pTxPacket
= (PSTxMgmtPacket
)pMgmt
->pbyMgmtPacketPool
;
4226 memset(pTxPacket
, 0, sizeof(STxMgmtPacket
) + WLAN_ASSOCREQ_FR_MAXLEN
);
4227 pTxPacket
->p80211Header
= (PUWLAN_80211HDR
)((PBYTE
)pTxPacket
+ sizeof(STxMgmtPacket
));
4228 // Setup the sFrame structure
4229 sFrame
.pBuf
= (PBYTE
)pTxPacket
->p80211Header
;
4230 sFrame
.len
= WLAN_REASSOCRESP_FR_MAXLEN
;
4231 vMgrEncodeAssocResponse(&sFrame
);
4233 sFrame
.pHdr
->sA3
.wFrameCtl
= cpu_to_le16(
4235 WLAN_SET_FC_FTYPE(WLAN_TYPE_MGR
) |
4236 WLAN_SET_FC_FSTYPE(WLAN_FSTYPE_ASSOCRESP
)
4238 memcpy( sFrame
.pHdr
->sA3
.abyAddr1
, pDstAddr
, WLAN_ADDR_LEN
);
4239 memcpy( sFrame
.pHdr
->sA3
.abyAddr2
, pMgmt
->abyMACAddr
, WLAN_ADDR_LEN
);
4240 memcpy( sFrame
.pHdr
->sA3
.abyAddr3
, pMgmt
->abyCurrBSSID
, WLAN_BSSID_LEN
);
4242 *sFrame
.pwCapInfo
= cpu_to_le16(wCurrCapInfo
);
4243 *sFrame
.pwStatus
= cpu_to_le16(wAssocStatus
);
4244 *sFrame
.pwAid
= cpu_to_le16((WORD
)(wAssocAID
| BIT14
| BIT15
));
4246 // Copy the rate set
4247 sFrame
.pSuppRates
= (PWLAN_IE_SUPP_RATES
)(sFrame
.pBuf
+ sFrame
.len
);
4248 sFrame
.len
+= ((PWLAN_IE_SUPP_RATES
)pCurrSuppRates
)->len
+ WLAN_IEHDR_LEN
;
4249 memcpy(sFrame
.pSuppRates
,
4251 ((PWLAN_IE_SUPP_RATES
)pCurrSuppRates
)->len
+ WLAN_IEHDR_LEN
4254 if (((PWLAN_IE_SUPP_RATES
)pCurrExtSuppRates
)->len
!= 0) {
4255 sFrame
.pExtSuppRates
= (PWLAN_IE_SUPP_RATES
)(sFrame
.pBuf
+ sFrame
.len
);
4256 sFrame
.len
+= ((PWLAN_IE_SUPP_RATES
)pCurrExtSuppRates
)->len
+ WLAN_IEHDR_LEN
;
4257 MEMvCopy(sFrame
.pExtSuppRates
,
4259 ((PWLAN_IE_SUPP_RATES
)pCurrExtSuppRates
)->len
+ WLAN_IEHDR_LEN
4263 // Adjust the length fields
4264 pTxPacket
->cbMPDULen
= sFrame
.len
;
4265 pTxPacket
->cbPayloadLen
= sFrame
.len
- WLAN_HDR_ADDR3_LEN
;
4273 * Routine Description:
4274 * Constructs an reassoc-response frame
4278 * PTR to frame; or NULL on allocation failue
4284 s_MgrMakeReAssocResponse(
4285 IN PSDevice pDevice
,
4286 IN PSMgmtObject pMgmt
,
4287 IN WORD wCurrCapInfo
,
4288 IN WORD wAssocStatus
,
4291 IN PWLAN_IE_SUPP_RATES pCurrSuppRates
,
4292 IN PWLAN_IE_SUPP_RATES pCurrExtSuppRates
4295 PSTxMgmtPacket pTxPacket
= NULL
;
4296 WLAN_FR_REASSOCRESP sFrame
;
4299 pTxPacket
= (PSTxMgmtPacket
)pMgmt
->pbyMgmtPacketPool
;
4300 memset(pTxPacket
, 0, sizeof(STxMgmtPacket
) + WLAN_ASSOCREQ_FR_MAXLEN
);
4301 pTxPacket
->p80211Header
= (PUWLAN_80211HDR
)((PBYTE
)pTxPacket
+ sizeof(STxMgmtPacket
));
4302 // Setup the sFrame structure
4303 sFrame
.pBuf
= (PBYTE
)pTxPacket
->p80211Header
;
4304 sFrame
.len
= WLAN_REASSOCRESP_FR_MAXLEN
;
4305 vMgrEncodeReassocResponse(&sFrame
);
4307 sFrame
.pHdr
->sA3
.wFrameCtl
= cpu_to_le16(
4309 WLAN_SET_FC_FTYPE(WLAN_TYPE_MGR
) |
4310 WLAN_SET_FC_FSTYPE(WLAN_FSTYPE_REASSOCRESP
)
4312 memcpy( sFrame
.pHdr
->sA3
.abyAddr1
, pDstAddr
, WLAN_ADDR_LEN
);
4313 memcpy( sFrame
.pHdr
->sA3
.abyAddr2
, pMgmt
->abyMACAddr
, WLAN_ADDR_LEN
);
4314 memcpy( sFrame
.pHdr
->sA3
.abyAddr3
, pMgmt
->abyCurrBSSID
, WLAN_BSSID_LEN
);
4316 *sFrame
.pwCapInfo
= cpu_to_le16(wCurrCapInfo
);
4317 *sFrame
.pwStatus
= cpu_to_le16(wAssocStatus
);
4318 *sFrame
.pwAid
= cpu_to_le16((WORD
)(wAssocAID
| BIT14
| BIT15
));
4320 // Copy the rate set
4321 sFrame
.pSuppRates
= (PWLAN_IE_SUPP_RATES
)(sFrame
.pBuf
+ sFrame
.len
);
4322 sFrame
.len
+= ((PWLAN_IE_SUPP_RATES
)pCurrSuppRates
)->len
+ WLAN_IEHDR_LEN
;
4323 memcpy(sFrame
.pSuppRates
,
4325 ((PWLAN_IE_SUPP_RATES
)pCurrSuppRates
)->len
+ WLAN_IEHDR_LEN
4328 if (((PWLAN_IE_SUPP_RATES
)pCurrExtSuppRates
)->len
!= 0) {
4329 sFrame
.pExtSuppRates
= (PWLAN_IE_SUPP_RATES
)(sFrame
.pBuf
+ sFrame
.len
);
4330 sFrame
.len
+= ((PWLAN_IE_SUPP_RATES
)pCurrExtSuppRates
)->len
+ WLAN_IEHDR_LEN
;
4331 MEMvCopy(sFrame
.pExtSuppRates
,
4333 ((PWLAN_IE_SUPP_RATES
)pCurrExtSuppRates
)->len
+ WLAN_IEHDR_LEN
4337 // Adjust the length fields
4338 pTxPacket
->cbMPDULen
= sFrame
.len
;
4339 pTxPacket
->cbPayloadLen
= sFrame
.len
- WLAN_HDR_ADDR3_LEN
;
4347 * Routine Description:
4348 * Handles probe response management frames.
4358 s_vMgrRxProbeResponse(
4359 IN PSDevice pDevice
,
4360 IN PSMgmtObject pMgmt
,
4361 IN PSRxMgmtPacket pRxPacket
4364 PKnownBSS pBSSList
= NULL
;
4365 WLAN_FR_PROBERESP sFrame
;
4366 BYTE byCurrChannel
= pRxPacket
->byRxChannel
;
4368 BYTE byIEChannel
= 0;
4369 BOOL bChannelHit
= TRUE
;
4372 memset(&sFrame
, 0, sizeof(WLAN_FR_PROBERESP
));
4374 sFrame
.len
= pRxPacket
->cbMPDULen
;
4375 sFrame
.pBuf
= (PBYTE
)pRxPacket
->p80211Header
;
4376 vMgrDecodeProbeResponse(&sFrame
);
4378 if ((sFrame
.pqwTimestamp
== 0) ||
4379 (sFrame
.pwBeaconInterval
== 0) ||
4380 (sFrame
.pwCapInfo
== 0) ||
4381 (sFrame
.pSSID
== 0) ||
4382 (sFrame
.pSuppRates
== 0)) {
4383 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Probe resp:Fail addr:[%p] \n", pRxPacket
->p80211Header
);
4388 if(sFrame
.pSSID
->len
== 0)
4389 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Rx Probe resp: SSID len = 0 \n");
4391 if (sFrame
.pDSParms
!= 0) {
4392 if (byCurrChannel
> CB_MAX_CHANNEL_24G
) {
4393 // channel remapping to
4394 byIEChannel
= CARDbyGetChannelMapping(pMgmt
->pAdapter
, sFrame
.pDSParms
->byCurrChannel
, PHY_TYPE_11A
);
4396 byIEChannel
= sFrame
.pDSParms
->byCurrChannel
;
4398 if (byCurrChannel
!= byIEChannel
) {
4399 // adjust channel info. bcs we rcv adjcent channel pakckets
4400 bChannelHit
= FALSE
;
4401 byCurrChannel
= byIEChannel
;
4404 // no DS channel info
4408 //2008-0730-01<Add>by MikeLiu
4409 if(ChannelExceedZoneType(pDevice
,byCurrChannel
)==TRUE
)
4412 if (sFrame
.pERP
!= NULL
) {
4413 sERP
.byERP
= sFrame
.pERP
->byContext
;
4414 sERP
.bERPExist
= TRUE
;
4416 sERP
.bERPExist
= FALSE
;
4421 // update or insert the bss
4422 pBSSList
= BSSpAddrIsInBSSList((HANDLE
)pDevice
, sFrame
.pHdr
->sA3
.abyAddr3
, sFrame
.pSSID
);
4424 BSSbUpdateToBSSList((HANDLE
)pDevice
,
4425 *sFrame
.pqwTimestamp
,
4426 *sFrame
.pwBeaconInterval
,
4432 sFrame
.pExtSuppRates
,
4439 sFrame
.len
- WLAN_HDR_ADDR3_LEN
,
4440 sFrame
.pHdr
->sA4
.abyAddr4
, // payload of probresponse
4445 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Probe resp/insert: RxChannel = : %d\n", byCurrChannel
);
4446 BSSbInsertToBSSList((HANDLE
)pDevice
,
4447 sFrame
.pHdr
->sA3
.abyAddr3
,
4448 *sFrame
.pqwTimestamp
,
4449 *sFrame
.pwBeaconInterval
,
4454 sFrame
.pExtSuppRates
,
4460 sFrame
.len
- WLAN_HDR_ADDR3_LEN
,
4461 sFrame
.pHdr
->sA4
.abyAddr4
, // payload of beacon
4471 * Routine Description:(AP)or(Ad-hoc STA)
4472 * Handles probe request management frames.
4483 s_vMgrRxProbeRequest(
4484 IN PSDevice pDevice
,
4485 IN PSMgmtObject pMgmt
,
4486 IN PSRxMgmtPacket pRxPacket
4489 WLAN_FR_PROBEREQ sFrame
;
4491 PSTxMgmtPacket pTxPacket
;
4492 BYTE byPHYType
= BB_TYPE_11B
;
4494 // STA in Ad-hoc mode: when latest TBTT beacon transmit success,
4495 // STA have to response this request.
4496 if ((pMgmt
->eCurrMode
== WMAC_MODE_ESS_AP
) ||
4497 ((pMgmt
->eCurrMode
== WMAC_MODE_IBSS_STA
) && pDevice
->bBeaconSent
)) {
4499 memset(&sFrame
, 0, sizeof(WLAN_FR_PROBEREQ
));
4501 sFrame
.len
= pRxPacket
->cbMPDULen
;
4502 sFrame
.pBuf
= (PBYTE
)pRxPacket
->p80211Header
;
4503 vMgrDecodeProbeRequest(&sFrame
);
4505 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "Probe request rx:MAC addr:%02x-%02x-%02x=%02x-%02x-%02x \n",
4506 sFrame.pHdr->sA3.abyAddr2[0],
4507 sFrame.pHdr->sA3.abyAddr2[1],
4508 sFrame.pHdr->sA3.abyAddr2[2],
4509 sFrame.pHdr->sA3.abyAddr2[3],
4510 sFrame.pHdr->sA3.abyAddr2[4],
4511 sFrame.pHdr->sA3.abyAddr2[5]
4514 if (sFrame
.pSSID
->len
!= 0) {
4515 if (sFrame
.pSSID
->len
!= ((PWLAN_IE_SSID
)pMgmt
->abyCurrSSID
)->len
)
4517 if (memcmp(sFrame
.pSSID
->abySSID
,
4518 ((PWLAN_IE_SSID
)pMgmt
->abyCurrSSID
)->abySSID
,
4519 ((PWLAN_IE_SSID
)pMgmt
->abyCurrSSID
)->len
) != 0) {
4524 if ((sFrame
.pSuppRates
->len
> 4) || (sFrame
.pExtSuppRates
!= NULL
)) {
4525 byPHYType
= BB_TYPE_11G
;
4528 // Probe response reply..
4529 pTxPacket
= s_MgrMakeProbeResponse
4533 pMgmt
->wCurrCapInfo
,
4534 pMgmt
->wCurrBeaconPeriod
,
4535 pMgmt
->uCurrChannel
,
4537 sFrame
.pHdr
->sA3
.abyAddr2
,
4538 (PWLAN_IE_SSID
)pMgmt
->abyCurrSSID
,
4539 (PBYTE
)pMgmt
->abyCurrBSSID
,
4540 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrSuppRates
,
4541 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrExtSuppRates
,
4544 if (pTxPacket
!= NULL
){
4545 /* send the frame */
4546 Status
= csMgmt_xmit(pDevice
, pTxPacket
);
4547 if (Status
!= CMD_STATUS_PENDING
) {
4548 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Mgt:Probe response tx failed\n");
4551 // DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "Mgt:Probe response tx sending..\n");
4565 * Routine Description:
4567 * Entry point for the reception and handling of 802.11 management
4568 * frames. Makes a determination of the frame type and then calls
4569 * the appropriate function.
4580 IN HANDLE hDeviceContext
,
4581 IN PSMgmtObject pMgmt
,
4582 IN PSRxMgmtPacket pRxPacket
4585 PSDevice pDevice
= (PSDevice
)hDeviceContext
;
4586 BOOL bInScan
= FALSE
;
4587 UINT uNodeIndex
= 0;
4588 NODE_STATE eNodeState
= 0;
4592 if (pMgmt
->eCurrMode
== WMAC_MODE_ESS_AP
) {
4593 if (BSSDBbIsSTAInNodeDB(pMgmt
, pRxPacket
->p80211Header
->sA3
.abyAddr2
, &uNodeIndex
))
4594 eNodeState
= pMgmt
->sNodeDBTable
[uNodeIndex
].eNodeState
;
4597 switch( WLAN_GET_FC_FSTYPE((pRxPacket
->p80211Header
->sA3
.wFrameCtl
)) ){
4599 case WLAN_FSTYPE_ASSOCREQ
:
4601 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"rx assocreq\n");
4602 if (eNodeState
< NODE_AUTH
) {
4603 // send deauth notification
4604 // reason = (6) class 2 received from nonauth sta
4605 vMgrDeAuthenBeginSta(pDevice
,
4607 pRxPacket
->p80211Header
->sA3
.abyAddr2
,
4611 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"wmgr: send vMgrDeAuthenBeginSta 1\n");
4614 s_vMgrRxAssocRequest(pDevice
, pMgmt
, pRxPacket
, uNodeIndex
);
4618 case WLAN_FSTYPE_ASSOCRESP
:
4620 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"rx assocresp1\n");
4621 s_vMgrRxAssocResponse(pDevice
, pMgmt
, pRxPacket
, FALSE
);
4622 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"rx assocresp2\n");
4625 case WLAN_FSTYPE_REASSOCREQ
:
4627 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"rx reassocreq\n");
4629 if (eNodeState
< NODE_AUTH
) {
4630 // send deauth notification
4631 // reason = (6) class 2 received from nonauth sta
4632 vMgrDeAuthenBeginSta(pDevice
,
4634 pRxPacket
->p80211Header
->sA3
.abyAddr2
,
4638 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"wmgr: send vMgrDeAuthenBeginSta 2\n");
4641 s_vMgrRxReAssocRequest(pDevice
, pMgmt
, pRxPacket
, uNodeIndex
);
4644 case WLAN_FSTYPE_REASSOCRESP
:
4646 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"rx reassocresp\n");
4647 s_vMgrRxAssocResponse(pDevice
, pMgmt
, pRxPacket
, TRUE
);
4650 case WLAN_FSTYPE_PROBEREQ
:
4652 //DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "rx probereq\n");
4653 s_vMgrRxProbeRequest(pDevice
, pMgmt
, pRxPacket
);
4656 case WLAN_FSTYPE_PROBERESP
:
4658 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"rx proberesp\n");
4660 s_vMgrRxProbeResponse(pDevice
, pMgmt
, pRxPacket
);
4663 case WLAN_FSTYPE_BEACON
:
4665 //DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "rx beacon\n");
4666 if (pMgmt
->eScanState
!= WMAC_NO_SCANNING
) {
4669 s_vMgrRxBeacon(pDevice
, pMgmt
, pRxPacket
, bInScan
);
4672 case WLAN_FSTYPE_ATIM
:
4674 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"rx atim\n");
4677 case WLAN_FSTYPE_DISASSOC
:
4679 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"rx disassoc\n");
4680 if (eNodeState
< NODE_AUTH
) {
4681 // send deauth notification
4682 // reason = (6) class 2 received from nonauth sta
4683 vMgrDeAuthenBeginSta(pDevice
,
4685 pRxPacket
->p80211Header
->sA3
.abyAddr2
,
4689 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"wmgr: send vMgrDeAuthenBeginSta 3\n");
4691 s_vMgrRxDisassociation(pDevice
, pMgmt
, pRxPacket
);
4694 case WLAN_FSTYPE_AUTHEN
:
4696 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"rx authen\n");
4697 s_vMgrRxAuthentication(pDevice
, pMgmt
, pRxPacket
);
4700 case WLAN_FSTYPE_DEAUTHEN
:
4702 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"rx deauthen\n");
4703 s_vMgrRxDeauthentication(pDevice
, pMgmt
, pRxPacket
);
4707 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"rx unknown mgmt\n");
4718 * Routine Description:
4721 * Prepare beacon to send
4724 * TRUE if success; FALSE if failed.
4728 bMgrPrepareBeaconToSend(
4729 IN HANDLE hDeviceContext
,
4730 IN PSMgmtObject pMgmt
4733 PSDevice pDevice
= (PSDevice
)hDeviceContext
;
4734 PSTxMgmtPacket pTxPacket
;
4736 // pDevice->bBeaconBufReady = FALSE;
4737 if (pDevice
->bEncryptionEnable
|| pDevice
->bEnable8021x
){
4738 pMgmt
->wCurrCapInfo
|= WLAN_SET_CAP_INFO_PRIVACY(1);
4741 pMgmt
->wCurrCapInfo
&= ~WLAN_SET_CAP_INFO_PRIVACY(1);
4743 pTxPacket
= s_MgrMakeBeacon
4747 pMgmt
->wCurrCapInfo
,
4748 pMgmt
->wCurrBeaconPeriod
,
4749 pMgmt
->uCurrChannel
,
4750 pMgmt
->wCurrATIMWindow
, //0,
4751 (PWLAN_IE_SSID
)pMgmt
->abyCurrSSID
,
4752 (PBYTE
)pMgmt
->abyCurrBSSID
,
4753 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrSuppRates
,
4754 (PWLAN_IE_SUPP_RATES
)pMgmt
->abyCurrExtSuppRates
4757 if ((pMgmt
->eCurrMode
== WMAC_MODE_IBSS_STA
) &&
4758 (pMgmt
->abyCurrBSSID
[0] == 0))
4761 csBeacon_xmit(pDevice
, pTxPacket
);
4771 * Routine Description:
4773 * Log a warning message based on the contents of the Status
4774 * Code field of an 802.11 management frame. Defines are
4775 * derived from 802.11-1997 SPEC.
4784 IN PSMgmtObject pMgmt
,
4789 case WLAN_MGMT_STATUS_UNSPEC_FAILURE
:
4790 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"Status code == Unspecified error.\n");
4792 case WLAN_MGMT_STATUS_CAPS_UNSUPPORTED
:
4793 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"Status code == Can't support all requested capabilities.\n");
4795 case WLAN_MGMT_STATUS_REASSOC_NO_ASSOC
:
4796 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"Status code == Reassoc denied, can't confirm original Association.\n");
4798 case WLAN_MGMT_STATUS_ASSOC_DENIED_UNSPEC
:
4799 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"Status code == Assoc denied, undefine in spec\n");
4801 case WLAN_MGMT_STATUS_UNSUPPORTED_AUTHALG
:
4802 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"Status code == Peer doesn't support authen algorithm.\n");
4804 case WLAN_MGMT_STATUS_RX_AUTH_NOSEQ
:
4805 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"Status code == Authen frame received out of sequence.\n");
4807 case WLAN_MGMT_STATUS_CHALLENGE_FAIL
:
4808 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"Status code == Authen rejected, challenge failure.\n");
4810 case WLAN_MGMT_STATUS_AUTH_TIMEOUT
:
4811 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"Status code == Authen rejected, timeout waiting for next frame.\n");
4813 case WLAN_MGMT_STATUS_ASSOC_DENIED_BUSY
:
4814 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"Status code == Assoc denied, AP too busy.\n");
4816 case WLAN_MGMT_STATUS_ASSOC_DENIED_RATES
:
4817 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"Status code == Assoc denied, we haven't enough basic rates.\n");
4819 case WLAN_MGMT_STATUS_ASSOC_DENIED_SHORTPREAMBLE
:
4820 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"Status code == Assoc denied, we do not support short preamble.\n");
4822 case WLAN_MGMT_STATUS_ASSOC_DENIED_PBCC
:
4823 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"Status code == Assoc denied, we do not support PBCC.\n");
4825 case WLAN_MGMT_STATUS_ASSOC_DENIED_AGILITY
:
4826 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"Status code == Assoc denied, we do not support channel agility.\n");
4829 DBG_PRT(MSG_LEVEL_NOTICE
, KERN_INFO
"Unknown status code %d.\n", wStatus
);
4838 * Add BSSID in PMKID Candidate list.
4842 * hDeviceContext - device structure point
4843 * pbyBSSID - BSSID address for adding
4844 * wRSNCap - BSS's RSN capability
4848 * Return Value: none.
4852 bAdd_PMKID_Candidate (
4853 IN HANDLE hDeviceContext
,
4855 IN PSRSNCapObject psRSNCapObj
4858 PSDevice pDevice
= (PSDevice
)hDeviceContext
;
4859 PPMKID_CANDIDATE pCandidateList
;
4862 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"bAdd_PMKID_Candidate START: (%d)\n", (int)pDevice
->gsPMKIDCandidate
.NumCandidates
);
4864 if ((pDevice
== NULL
) || (pbyBSSID
== NULL
) || (psRSNCapObj
== NULL
))
4867 if (pDevice
->gsPMKIDCandidate
.NumCandidates
>= MAX_PMKIDLIST
)
4872 // Update Old Candidate
4873 for (ii
= 0; ii
< pDevice
->gsPMKIDCandidate
.NumCandidates
; ii
++) {
4874 pCandidateList
= &pDevice
->gsPMKIDCandidate
.CandidateList
[ii
];
4875 if (MEMEqualMemory(pCandidateList
->BSSID
, pbyBSSID
, U_ETHER_ADDR_LEN
)) {
4876 if ((psRSNCapObj
->bRSNCapExist
== TRUE
) && (psRSNCapObj
->wRSNCap
& BIT0
)) {
4877 pCandidateList
->Flags
|= NDIS_802_11_PMKID_CANDIDATE_PREAUTH_ENABLED
;
4879 pCandidateList
->Flags
&= ~(NDIS_802_11_PMKID_CANDIDATE_PREAUTH_ENABLED
);
4886 pCandidateList
= &pDevice
->gsPMKIDCandidate
.CandidateList
[pDevice
->gsPMKIDCandidate
.NumCandidates
];
4887 if ((psRSNCapObj
->bRSNCapExist
== TRUE
) && (psRSNCapObj
->wRSNCap
& BIT0
)) {
4888 pCandidateList
->Flags
|= NDIS_802_11_PMKID_CANDIDATE_PREAUTH_ENABLED
;
4890 pCandidateList
->Flags
&= ~(NDIS_802_11_PMKID_CANDIDATE_PREAUTH_ENABLED
);
4892 MEMvCopy(pCandidateList
->BSSID
, pbyBSSID
, U_ETHER_ADDR_LEN
);
4893 pDevice
->gsPMKIDCandidate
.NumCandidates
++;
4894 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"NumCandidates:%d\n", (int)pDevice
->gsPMKIDCandidate
.NumCandidates
);
4901 * Flush PMKID Candidate list.
4905 * hDeviceContext - device structure point
4909 * Return Value: none.
4913 vFlush_PMKID_Candidate (
4914 IN HANDLE hDeviceContext
4917 PSDevice pDevice
= (PSDevice
)hDeviceContext
;
4919 if (pDevice
== NULL
)
4922 ZERO_MEMORY(&pDevice
->gsPMKIDCandidate
, sizeof(SPMKIDCandidateEvent
));
4927 IN PKnownBSS pBSSNode
,
4928 IN NDIS_802_11_ENCRYPTION_STATUS EncStatus
,
4933 BYTE byMulticastCipher
= KEY_CTL_INVALID
;
4934 BYTE byCipherMask
= 0x00;
4937 if (pBSSNode
== NULL
)
4940 // check cap. of BSS
4941 if ((WLAN_GET_CAP_INFO_PRIVACY(pBSSNode
->wCapInfo
) != 0) &&
4942 (EncStatus
== Ndis802_11Encryption1Enabled
)) {
4943 // default is WEP only
4944 byMulticastCipher
= KEY_CTL_WEP
;
4947 if ((WLAN_GET_CAP_INFO_PRIVACY(pBSSNode
->wCapInfo
) != 0) &&
4948 (pBSSNode
->bWPA2Valid
== TRUE
) &&
4949 //20080123-01,<Add> by Einsn Liu
4950 ((EncStatus
== Ndis802_11Encryption3Enabled
)||(EncStatus
== Ndis802_11Encryption2Enabled
))) {
4952 // check Group Key Cipher
4953 if ((pBSSNode
->byCSSGK
== WLAN_11i_CSS_WEP40
) ||
4954 (pBSSNode
->byCSSGK
== WLAN_11i_CSS_WEP104
)) {
4955 byMulticastCipher
= KEY_CTL_WEP
;
4956 } else if (pBSSNode
->byCSSGK
== WLAN_11i_CSS_TKIP
) {
4957 byMulticastCipher
= KEY_CTL_TKIP
;
4958 } else if (pBSSNode
->byCSSGK
== WLAN_11i_CSS_CCMP
) {
4959 byMulticastCipher
= KEY_CTL_CCMP
;
4961 byMulticastCipher
= KEY_CTL_INVALID
;
4964 // check Pairwise Key Cipher
4965 for(i
=0;i
<pBSSNode
->wCSSPKCount
;i
++) {
4966 if ((pBSSNode
->abyCSSPK
[i
] == WLAN_11i_CSS_WEP40
) ||
4967 (pBSSNode
->abyCSSPK
[i
] == WLAN_11i_CSS_WEP104
)) {
4968 // this should not happen as defined 802.11i
4969 byCipherMask
|= 0x01;
4970 } else if (pBSSNode
->abyCSSPK
[i
] == WLAN_11i_CSS_TKIP
) {
4971 byCipherMask
|= 0x02;
4972 } else if (pBSSNode
->abyCSSPK
[i
] == WLAN_11i_CSS_CCMP
) {
4973 byCipherMask
|= 0x04;
4974 } else if (pBSSNode
->abyCSSPK
[i
] == WLAN_11i_CSS_USE_GROUP
) {
4975 // use group key only ignore all others
4977 i
= pBSSNode
->wCSSPKCount
;
4981 } else if ((WLAN_GET_CAP_INFO_PRIVACY(pBSSNode
->wCapInfo
) != 0) &&
4982 (pBSSNode
->bWPAValid
== TRUE
) &&
4983 ((EncStatus
== Ndis802_11Encryption3Enabled
) || (EncStatus
== Ndis802_11Encryption2Enabled
))) {
4985 // check Group Key Cipher
4986 if ((pBSSNode
->byGKType
== WPA_WEP40
) ||
4987 (pBSSNode
->byGKType
== WPA_WEP104
)) {
4988 byMulticastCipher
= KEY_CTL_WEP
;
4989 } else if (pBSSNode
->byGKType
== WPA_TKIP
) {
4990 byMulticastCipher
= KEY_CTL_TKIP
;
4991 } else if (pBSSNode
->byGKType
== WPA_AESCCMP
) {
4992 byMulticastCipher
= KEY_CTL_CCMP
;
4994 byMulticastCipher
= KEY_CTL_INVALID
;
4997 // check Pairwise Key Cipher
4998 for(i
=0;i
<pBSSNode
->wPKCount
;i
++) {
4999 if (pBSSNode
->abyPKType
[i
] == WPA_TKIP
) {
5000 byCipherMask
|= 0x02;
5001 } else if (pBSSNode
->abyPKType
[i
] == WPA_AESCCMP
) {
5002 byCipherMask
|= 0x04;
5003 } else if (pBSSNode
->abyPKType
[i
] == WPA_NONE
) {
5004 // use group key only ignore all others
5006 i
= pBSSNode
->wPKCount
;
5011 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"%d, %d, %d, %d, EncStatus:%d\n",
5012 byMulticastCipher
, byCipherMask
, pBSSNode
->bWPAValid
, pBSSNode
->bWPA2Valid
, EncStatus
);
5014 // mask our cap. with BSS
5015 if (EncStatus
== Ndis802_11Encryption1Enabled
) {
5017 // For supporting Cisco migration mode, don't care pairwise key cipher
5018 if ((byMulticastCipher
== KEY_CTL_WEP
) &&
5019 (byCipherMask
== 0)) {
5020 *pbyCCSGK
= KEY_CTL_WEP
;
5021 *pbyCCSPK
= KEY_CTL_NONE
;
5027 } else if (EncStatus
== Ndis802_11Encryption2Enabled
) {
5028 if ((byMulticastCipher
== KEY_CTL_TKIP
) &&
5029 (byCipherMask
== 0)) {
5030 *pbyCCSGK
= KEY_CTL_TKIP
;
5031 *pbyCCSPK
= KEY_CTL_NONE
;
5033 } else if ((byMulticastCipher
== KEY_CTL_WEP
) &&
5034 ((byCipherMask
& 0x02) != 0)) {
5035 *pbyCCSGK
= KEY_CTL_WEP
;
5036 *pbyCCSPK
= KEY_CTL_TKIP
;
5038 } else if ((byMulticastCipher
== KEY_CTL_TKIP
) &&
5039 ((byCipherMask
& 0x02) != 0)) {
5040 *pbyCCSGK
= KEY_CTL_TKIP
;
5041 *pbyCCSPK
= KEY_CTL_TKIP
;
5046 } else if (EncStatus
== Ndis802_11Encryption3Enabled
) {
5047 if ((byMulticastCipher
== KEY_CTL_CCMP
) &&
5048 (byCipherMask
== 0)) {
5049 // When CCMP is enable, "Use group cipher suite" shall not be a valid option.
5051 } else if ((byMulticastCipher
== KEY_CTL_WEP
) &&
5052 ((byCipherMask
& 0x04) != 0)) {
5053 *pbyCCSGK
= KEY_CTL_WEP
;
5054 *pbyCCSPK
= KEY_CTL_CCMP
;
5056 } else if ((byMulticastCipher
== KEY_CTL_TKIP
) &&
5057 ((byCipherMask
& 0x04) != 0)) {
5058 *pbyCCSGK
= KEY_CTL_TKIP
;
5059 *pbyCCSPK
= KEY_CTL_CCMP
;
5061 } else if ((byMulticastCipher
== KEY_CTL_CCMP
) &&
5062 ((byCipherMask
& 0x04) != 0)) {
5063 *pbyCCSGK
= KEY_CTL_CCMP
;
5064 *pbyCCSPK
= KEY_CTL_CCMP
;