OMAPDSS: VENC: fix NULL pointer dereference in DSS2 VENC sysfs debug attr on OMAP4
[zen-stable.git] / drivers / net / wireless / wl12xx / scan.c
blobe24111ececc5c64ba40cf87133b1193b93b0aaa5
1 /*
2 * This file is part of wl1271
4 * Copyright (C) 2009-2010 Nokia Corporation
6 * Contact: Luciano Coelho <luciano.coelho@nokia.com>
8 * This program is free software; you can redistribute it and/or
9 * modify it under the terms of the GNU General Public License
10 * version 2 as published by the Free Software Foundation.
12 * This program is distributed in the hope that it will be useful, but
13 * WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15 * General Public License for more details.
17 * You should have received a copy of the GNU General Public License
18 * along with this program; if not, write to the Free Software
19 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
20 * 02110-1301 USA
24 #include <linux/ieee80211.h>
26 #include "wl12xx.h"
27 #include "debug.h"
28 #include "cmd.h"
29 #include "scan.h"
30 #include "acx.h"
31 #include "ps.h"
32 #include "tx.h"
34 void wl1271_scan_complete_work(struct work_struct *work)
36 struct delayed_work *dwork;
37 struct wl1271 *wl;
38 struct ieee80211_vif *vif;
39 struct wl12xx_vif *wlvif;
40 int ret;
41 bool is_sta, is_ibss;
43 dwork = container_of(work, struct delayed_work, work);
44 wl = container_of(dwork, struct wl1271, scan_complete_work);
46 wl1271_debug(DEBUG_SCAN, "Scanning complete");
48 mutex_lock(&wl->mutex);
50 if (wl->state == WL1271_STATE_OFF)
51 goto out;
53 if (wl->scan.state == WL1271_SCAN_STATE_IDLE)
54 goto out;
56 vif = wl->scan_vif;
57 wlvif = wl12xx_vif_to_data(vif);
59 wl->scan.state = WL1271_SCAN_STATE_IDLE;
60 memset(wl->scan.scanned_ch, 0, sizeof(wl->scan.scanned_ch));
61 wl->scan.req = NULL;
62 wl->scan_vif = NULL;
64 ret = wl1271_ps_elp_wakeup(wl);
65 if (ret < 0)
66 goto out;
68 if (test_bit(WLVIF_FLAG_STA_ASSOCIATED, &wlvif->flags)) {
69 /* restore hardware connection monitoring template */
70 wl1271_cmd_build_ap_probe_req(wl, wlvif, wlvif->probereq);
73 /* return to ROC if needed */
74 is_sta = (wlvif->bss_type == BSS_TYPE_STA_BSS);
75 is_ibss = (wlvif->bss_type == BSS_TYPE_IBSS);
76 if (((is_sta && !test_bit(WLVIF_FLAG_STA_ASSOCIATED, &wlvif->flags)) ||
77 (is_ibss && !test_bit(WLVIF_FLAG_IBSS_JOINED, &wlvif->flags))) &&
78 !test_bit(wlvif->dev_role_id, wl->roc_map)) {
79 /* restore remain on channel */
80 wl12xx_start_dev(wl, wlvif);
82 wl1271_ps_elp_sleep(wl);
84 if (wl->scan.failed) {
85 wl1271_info("Scan completed due to error.");
86 wl12xx_queue_recovery_work(wl);
89 ieee80211_scan_completed(wl->hw, false);
91 out:
92 mutex_unlock(&wl->mutex);
97 static int wl1271_get_scan_channels(struct wl1271 *wl,
98 struct cfg80211_scan_request *req,
99 struct basic_scan_channel_params *channels,
100 enum ieee80211_band band, bool passive)
102 struct conf_scan_settings *c = &wl->conf.scan;
103 int i, j;
104 u32 flags;
106 for (i = 0, j = 0;
107 i < req->n_channels && j < WL1271_SCAN_MAX_CHANNELS;
108 i++) {
109 flags = req->channels[i]->flags;
111 if (!test_bit(i, wl->scan.scanned_ch) &&
112 !(flags & IEEE80211_CHAN_DISABLED) &&
113 (req->channels[i]->band == band) &&
115 * In passive scans, we scan all remaining
116 * channels, even if not marked as such.
117 * In active scans, we only scan channels not
118 * marked as passive.
120 (passive || !(flags & IEEE80211_CHAN_PASSIVE_SCAN))) {
121 wl1271_debug(DEBUG_SCAN, "band %d, center_freq %d ",
122 req->channels[i]->band,
123 req->channels[i]->center_freq);
124 wl1271_debug(DEBUG_SCAN, "hw_value %d, flags %X",
125 req->channels[i]->hw_value,
126 req->channels[i]->flags);
127 wl1271_debug(DEBUG_SCAN,
128 "max_antenna_gain %d, max_power %d",
129 req->channels[i]->max_antenna_gain,
130 req->channels[i]->max_power);
131 wl1271_debug(DEBUG_SCAN, "beacon_found %d",
132 req->channels[i]->beacon_found);
134 if (!passive) {
135 channels[j].min_duration =
136 cpu_to_le32(c->min_dwell_time_active);
137 channels[j].max_duration =
138 cpu_to_le32(c->max_dwell_time_active);
139 } else {
140 channels[j].min_duration =
141 cpu_to_le32(c->min_dwell_time_passive);
142 channels[j].max_duration =
143 cpu_to_le32(c->max_dwell_time_passive);
145 channels[j].early_termination = 0;
146 channels[j].tx_power_att = req->channels[i]->max_power;
147 channels[j].channel = req->channels[i]->hw_value;
149 memset(&channels[j].bssid_lsb, 0xff, 4);
150 memset(&channels[j].bssid_msb, 0xff, 2);
152 /* Mark the channels we already used */
153 set_bit(i, wl->scan.scanned_ch);
155 j++;
159 return j;
162 #define WL1271_NOTHING_TO_SCAN 1
164 static int wl1271_scan_send(struct wl1271 *wl, struct ieee80211_vif *vif,
165 enum ieee80211_band band,
166 bool passive, u32 basic_rate)
168 struct wl12xx_vif *wlvif = wl12xx_vif_to_data(vif);
169 struct wl1271_cmd_scan *cmd;
170 struct wl1271_cmd_trigger_scan_to *trigger;
171 int ret;
172 u16 scan_options = 0;
174 /* skip active scans if we don't have SSIDs */
175 if (!passive && wl->scan.req->n_ssids == 0)
176 return WL1271_NOTHING_TO_SCAN;
178 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL);
179 trigger = kzalloc(sizeof(*trigger), GFP_KERNEL);
180 if (!cmd || !trigger) {
181 ret = -ENOMEM;
182 goto out;
185 if (passive)
186 scan_options |= WL1271_SCAN_OPT_PASSIVE;
188 if (WARN_ON(wlvif->role_id == WL12XX_INVALID_ROLE_ID)) {
189 ret = -EINVAL;
190 goto out;
192 cmd->params.role_id = wlvif->role_id;
193 cmd->params.scan_options = cpu_to_le16(scan_options);
195 cmd->params.n_ch = wl1271_get_scan_channels(wl, wl->scan.req,
196 cmd->channels,
197 band, passive);
198 if (cmd->params.n_ch == 0) {
199 ret = WL1271_NOTHING_TO_SCAN;
200 goto out;
203 cmd->params.tx_rate = cpu_to_le32(basic_rate);
204 cmd->params.n_probe_reqs = wl->conf.scan.num_probe_reqs;
205 cmd->params.tid_trigger = 0;
206 cmd->params.scan_tag = WL1271_SCAN_DEFAULT_TAG;
208 if (band == IEEE80211_BAND_2GHZ)
209 cmd->params.band = WL1271_SCAN_BAND_2_4_GHZ;
210 else
211 cmd->params.band = WL1271_SCAN_BAND_5_GHZ;
213 if (wl->scan.ssid_len && wl->scan.ssid) {
214 cmd->params.ssid_len = wl->scan.ssid_len;
215 memcpy(cmd->params.ssid, wl->scan.ssid, wl->scan.ssid_len);
218 memcpy(cmd->addr, vif->addr, ETH_ALEN);
220 ret = wl1271_cmd_build_probe_req(wl, wlvif, wl->scan.ssid,
221 wl->scan.ssid_len, wl->scan.req->ie,
222 wl->scan.req->ie_len, band);
223 if (ret < 0) {
224 wl1271_error("PROBE request template failed");
225 goto out;
228 /* disable the timeout */
229 trigger->timeout = 0;
230 ret = wl1271_cmd_send(wl, CMD_TRIGGER_SCAN_TO, trigger,
231 sizeof(*trigger), 0);
232 if (ret < 0) {
233 wl1271_error("trigger scan to failed for hw scan");
234 goto out;
237 wl1271_dump(DEBUG_SCAN, "SCAN: ", cmd, sizeof(*cmd));
239 ret = wl1271_cmd_send(wl, CMD_SCAN, cmd, sizeof(*cmd), 0);
240 if (ret < 0) {
241 wl1271_error("SCAN failed");
242 goto out;
245 out:
246 kfree(cmd);
247 kfree(trigger);
248 return ret;
251 void wl1271_scan_stm(struct wl1271 *wl, struct ieee80211_vif *vif)
253 struct wl12xx_vif *wlvif = wl12xx_vif_to_data(vif);
254 int ret = 0;
255 enum ieee80211_band band;
256 u32 rate, mask;
258 switch (wl->scan.state) {
259 case WL1271_SCAN_STATE_IDLE:
260 break;
262 case WL1271_SCAN_STATE_2GHZ_ACTIVE:
263 band = IEEE80211_BAND_2GHZ;
264 mask = wlvif->bitrate_masks[band];
265 if (wl->scan.req->no_cck) {
266 mask &= ~CONF_TX_CCK_RATES;
267 if (!mask)
268 mask = CONF_TX_RATE_MASK_BASIC_P2P;
270 rate = wl1271_tx_min_rate_get(wl, mask);
271 ret = wl1271_scan_send(wl, vif, band, false, rate);
272 if (ret == WL1271_NOTHING_TO_SCAN) {
273 wl->scan.state = WL1271_SCAN_STATE_2GHZ_PASSIVE;
274 wl1271_scan_stm(wl, vif);
277 break;
279 case WL1271_SCAN_STATE_2GHZ_PASSIVE:
280 band = IEEE80211_BAND_2GHZ;
281 mask = wlvif->bitrate_masks[band];
282 if (wl->scan.req->no_cck) {
283 mask &= ~CONF_TX_CCK_RATES;
284 if (!mask)
285 mask = CONF_TX_RATE_MASK_BASIC_P2P;
287 rate = wl1271_tx_min_rate_get(wl, mask);
288 ret = wl1271_scan_send(wl, vif, band, true, rate);
289 if (ret == WL1271_NOTHING_TO_SCAN) {
290 if (wl->enable_11a)
291 wl->scan.state = WL1271_SCAN_STATE_5GHZ_ACTIVE;
292 else
293 wl->scan.state = WL1271_SCAN_STATE_DONE;
294 wl1271_scan_stm(wl, vif);
297 break;
299 case WL1271_SCAN_STATE_5GHZ_ACTIVE:
300 band = IEEE80211_BAND_5GHZ;
301 rate = wl1271_tx_min_rate_get(wl, wlvif->bitrate_masks[band]);
302 ret = wl1271_scan_send(wl, vif, band, false, rate);
303 if (ret == WL1271_NOTHING_TO_SCAN) {
304 wl->scan.state = WL1271_SCAN_STATE_5GHZ_PASSIVE;
305 wl1271_scan_stm(wl, vif);
308 break;
310 case WL1271_SCAN_STATE_5GHZ_PASSIVE:
311 band = IEEE80211_BAND_5GHZ;
312 rate = wl1271_tx_min_rate_get(wl, wlvif->bitrate_masks[band]);
313 ret = wl1271_scan_send(wl, vif, band, true, rate);
314 if (ret == WL1271_NOTHING_TO_SCAN) {
315 wl->scan.state = WL1271_SCAN_STATE_DONE;
316 wl1271_scan_stm(wl, vif);
319 break;
321 case WL1271_SCAN_STATE_DONE:
322 wl->scan.failed = false;
323 cancel_delayed_work(&wl->scan_complete_work);
324 ieee80211_queue_delayed_work(wl->hw, &wl->scan_complete_work,
325 msecs_to_jiffies(0));
326 break;
328 default:
329 wl1271_error("invalid scan state");
330 break;
333 if (ret < 0) {
334 cancel_delayed_work(&wl->scan_complete_work);
335 ieee80211_queue_delayed_work(wl->hw, &wl->scan_complete_work,
336 msecs_to_jiffies(0));
340 int wl1271_scan(struct wl1271 *wl, struct ieee80211_vif *vif,
341 const u8 *ssid, size_t ssid_len,
342 struct cfg80211_scan_request *req)
345 * cfg80211 should guarantee that we don't get more channels
346 * than what we have registered.
348 BUG_ON(req->n_channels > WL1271_MAX_CHANNELS);
350 if (wl->scan.state != WL1271_SCAN_STATE_IDLE)
351 return -EBUSY;
353 wl->scan.state = WL1271_SCAN_STATE_2GHZ_ACTIVE;
355 if (ssid_len && ssid) {
356 wl->scan.ssid_len = ssid_len;
357 memcpy(wl->scan.ssid, ssid, ssid_len);
358 } else {
359 wl->scan.ssid_len = 0;
362 wl->scan_vif = vif;
363 wl->scan.req = req;
364 memset(wl->scan.scanned_ch, 0, sizeof(wl->scan.scanned_ch));
366 /* we assume failure so that timeout scenarios are handled correctly */
367 wl->scan.failed = true;
368 ieee80211_queue_delayed_work(wl->hw, &wl->scan_complete_work,
369 msecs_to_jiffies(WL1271_SCAN_TIMEOUT));
371 wl1271_scan_stm(wl, vif);
373 return 0;
376 int wl1271_scan_stop(struct wl1271 *wl)
378 struct wl1271_cmd_header *cmd = NULL;
379 int ret = 0;
381 if (WARN_ON(wl->scan.state == WL1271_SCAN_STATE_IDLE))
382 return -EINVAL;
384 wl1271_debug(DEBUG_CMD, "cmd scan stop");
386 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL);
387 if (!cmd) {
388 ret = -ENOMEM;
389 goto out;
392 ret = wl1271_cmd_send(wl, CMD_STOP_SCAN, cmd,
393 sizeof(*cmd), 0);
394 if (ret < 0) {
395 wl1271_error("cmd stop_scan failed");
396 goto out;
398 out:
399 kfree(cmd);
400 return ret;
403 static int
404 wl1271_scan_get_sched_scan_channels(struct wl1271 *wl,
405 struct cfg80211_sched_scan_request *req,
406 struct conn_scan_ch_params *channels,
407 u32 band, bool radar, bool passive,
408 int start, int max_channels)
410 struct conf_sched_scan_settings *c = &wl->conf.sched_scan;
411 int i, j;
412 u32 flags;
413 bool force_passive = !req->n_ssids;
415 for (i = 0, j = start;
416 i < req->n_channels && j < max_channels;
417 i++) {
418 flags = req->channels[i]->flags;
420 if (force_passive)
421 flags |= IEEE80211_CHAN_PASSIVE_SCAN;
423 if ((req->channels[i]->band == band) &&
424 !(flags & IEEE80211_CHAN_DISABLED) &&
425 (!!(flags & IEEE80211_CHAN_RADAR) == radar) &&
426 /* if radar is set, we ignore the passive flag */
427 (radar ||
428 !!(flags & IEEE80211_CHAN_PASSIVE_SCAN) == passive)) {
429 wl1271_debug(DEBUG_SCAN, "band %d, center_freq %d ",
430 req->channels[i]->band,
431 req->channels[i]->center_freq);
432 wl1271_debug(DEBUG_SCAN, "hw_value %d, flags %X",
433 req->channels[i]->hw_value,
434 req->channels[i]->flags);
435 wl1271_debug(DEBUG_SCAN, "max_power %d",
436 req->channels[i]->max_power);
438 if (flags & IEEE80211_CHAN_RADAR) {
439 channels[j].flags |= SCAN_CHANNEL_FLAGS_DFS;
441 channels[j].passive_duration =
442 cpu_to_le16(c->dwell_time_dfs);
443 } else {
444 channels[j].passive_duration =
445 cpu_to_le16(c->dwell_time_passive);
448 channels[j].min_duration =
449 cpu_to_le16(c->min_dwell_time_active);
450 channels[j].max_duration =
451 cpu_to_le16(c->max_dwell_time_active);
453 channels[j].tx_power_att = req->channels[i]->max_power;
454 channels[j].channel = req->channels[i]->hw_value;
456 j++;
460 return j - start;
463 static bool
464 wl1271_scan_sched_scan_channels(struct wl1271 *wl,
465 struct cfg80211_sched_scan_request *req,
466 struct wl1271_cmd_sched_scan_config *cfg)
468 cfg->passive[0] =
469 wl1271_scan_get_sched_scan_channels(wl, req, cfg->channels_2,
470 IEEE80211_BAND_2GHZ,
471 false, true, 0,
472 MAX_CHANNELS_2GHZ);
473 cfg->active[0] =
474 wl1271_scan_get_sched_scan_channels(wl, req, cfg->channels_2,
475 IEEE80211_BAND_2GHZ,
476 false, false,
477 cfg->passive[0],
478 MAX_CHANNELS_2GHZ);
479 cfg->passive[1] =
480 wl1271_scan_get_sched_scan_channels(wl, req, cfg->channels_5,
481 IEEE80211_BAND_5GHZ,
482 false, true, 0,
483 MAX_CHANNELS_5GHZ);
484 cfg->dfs =
485 wl1271_scan_get_sched_scan_channels(wl, req, cfg->channels_5,
486 IEEE80211_BAND_5GHZ,
487 true, true,
488 cfg->passive[1],
489 MAX_CHANNELS_5GHZ);
490 cfg->active[1] =
491 wl1271_scan_get_sched_scan_channels(wl, req, cfg->channels_5,
492 IEEE80211_BAND_5GHZ,
493 false, false,
494 cfg->passive[1] + cfg->dfs,
495 MAX_CHANNELS_5GHZ);
496 /* 802.11j channels are not supported yet */
497 cfg->passive[2] = 0;
498 cfg->active[2] = 0;
500 wl1271_debug(DEBUG_SCAN, " 2.4GHz: active %d passive %d",
501 cfg->active[0], cfg->passive[0]);
502 wl1271_debug(DEBUG_SCAN, " 5GHz: active %d passive %d",
503 cfg->active[1], cfg->passive[1]);
504 wl1271_debug(DEBUG_SCAN, " DFS: %d", cfg->dfs);
506 return cfg->passive[0] || cfg->active[0] ||
507 cfg->passive[1] || cfg->active[1] || cfg->dfs ||
508 cfg->passive[2] || cfg->active[2];
511 /* Returns the scan type to be used or a negative value on error */
512 static int
513 wl12xx_scan_sched_scan_ssid_list(struct wl1271 *wl,
514 struct cfg80211_sched_scan_request *req)
516 struct wl1271_cmd_sched_scan_ssid_list *cmd = NULL;
517 struct cfg80211_match_set *sets = req->match_sets;
518 struct cfg80211_ssid *ssids = req->ssids;
519 int ret = 0, type, i, j, n_match_ssids = 0;
521 wl1271_debug(DEBUG_CMD, "cmd sched scan ssid list");
523 /* count the match sets that contain SSIDs */
524 for (i = 0; i < req->n_match_sets; i++)
525 if (sets[i].ssid.ssid_len > 0)
526 n_match_ssids++;
528 /* No filter, no ssids or only bcast ssid */
529 if (!n_match_ssids &&
530 (!req->n_ssids ||
531 (req->n_ssids == 1 && req->ssids[0].ssid_len == 0))) {
532 type = SCAN_SSID_FILTER_ANY;
533 goto out;
536 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL);
537 if (!cmd) {
538 ret = -ENOMEM;
539 goto out;
542 if (!n_match_ssids) {
543 /* No filter, with ssids */
544 type = SCAN_SSID_FILTER_DISABLED;
546 for (i = 0; i < req->n_ssids; i++) {
547 cmd->ssids[cmd->n_ssids].type = (ssids[i].ssid_len) ?
548 SCAN_SSID_TYPE_HIDDEN : SCAN_SSID_TYPE_PUBLIC;
549 cmd->ssids[cmd->n_ssids].len = ssids[i].ssid_len;
550 memcpy(cmd->ssids[cmd->n_ssids].ssid, ssids[i].ssid,
551 ssids[i].ssid_len);
552 cmd->n_ssids++;
554 } else {
555 type = SCAN_SSID_FILTER_LIST;
557 /* Add all SSIDs from the filters */
558 for (i = 0; i < req->n_match_sets; i++) {
559 /* ignore sets without SSIDs */
560 if (!sets[i].ssid.ssid_len)
561 continue;
563 cmd->ssids[cmd->n_ssids].type = SCAN_SSID_TYPE_PUBLIC;
564 cmd->ssids[cmd->n_ssids].len = sets[i].ssid.ssid_len;
565 memcpy(cmd->ssids[cmd->n_ssids].ssid,
566 sets[i].ssid.ssid, sets[i].ssid.ssid_len);
567 cmd->n_ssids++;
569 if ((req->n_ssids > 1) ||
570 (req->n_ssids == 1 && req->ssids[0].ssid_len > 0)) {
572 * Mark all the SSIDs passed in the SSID list as HIDDEN,
573 * so they're used in probe requests.
575 for (i = 0; i < req->n_ssids; i++) {
576 if (!req->ssids[i].ssid_len)
577 continue;
579 for (j = 0; j < cmd->n_ssids; j++)
580 if (!memcmp(req->ssids[i].ssid,
581 cmd->ssids[j].ssid,
582 req->ssids[i].ssid_len)) {
583 cmd->ssids[j].type =
584 SCAN_SSID_TYPE_HIDDEN;
585 break;
587 /* Fail if SSID isn't present in the filters */
588 if (j == cmd->n_ssids) {
589 ret = -EINVAL;
590 goto out_free;
596 wl1271_dump(DEBUG_SCAN, "SSID_LIST: ", cmd, sizeof(*cmd));
598 ret = wl1271_cmd_send(wl, CMD_CONNECTION_SCAN_SSID_CFG, cmd,
599 sizeof(*cmd), 0);
600 if (ret < 0) {
601 wl1271_error("cmd sched scan ssid list failed");
602 goto out_free;
605 out_free:
606 kfree(cmd);
607 out:
608 if (ret < 0)
609 return ret;
610 return type;
613 int wl1271_scan_sched_scan_config(struct wl1271 *wl,
614 struct wl12xx_vif *wlvif,
615 struct cfg80211_sched_scan_request *req,
616 struct ieee80211_sched_scan_ies *ies)
618 struct wl1271_cmd_sched_scan_config *cfg = NULL;
619 struct conf_sched_scan_settings *c = &wl->conf.sched_scan;
620 int i, ret;
621 bool force_passive = !req->n_ssids;
623 wl1271_debug(DEBUG_CMD, "cmd sched_scan scan config");
625 cfg = kzalloc(sizeof(*cfg), GFP_KERNEL);
626 if (!cfg)
627 return -ENOMEM;
629 cfg->rssi_threshold = c->rssi_threshold;
630 cfg->snr_threshold = c->snr_threshold;
631 cfg->n_probe_reqs = c->num_probe_reqs;
632 /* cycles set to 0 it means infinite (until manually stopped) */
633 cfg->cycles = 0;
634 /* report APs when at least 1 is found */
635 cfg->report_after = 1;
636 /* don't stop scanning automatically when something is found */
637 cfg->terminate = 0;
638 cfg->tag = WL1271_SCAN_DEFAULT_TAG;
639 /* don't filter on BSS type */
640 cfg->bss_type = SCAN_BSS_TYPE_ANY;
641 /* currently NL80211 supports only a single interval */
642 for (i = 0; i < SCAN_MAX_CYCLE_INTERVALS; i++)
643 cfg->intervals[i] = cpu_to_le32(req->interval);
645 cfg->ssid_len = 0;
646 ret = wl12xx_scan_sched_scan_ssid_list(wl, req);
647 if (ret < 0)
648 goto out;
650 cfg->filter_type = ret;
652 wl1271_debug(DEBUG_SCAN, "filter_type = %d", cfg->filter_type);
654 if (!wl1271_scan_sched_scan_channels(wl, req, cfg)) {
655 wl1271_error("scan channel list is empty");
656 ret = -EINVAL;
657 goto out;
660 if (!force_passive && cfg->active[0]) {
661 ret = wl1271_cmd_build_probe_req(wl, wlvif, req->ssids[0].ssid,
662 req->ssids[0].ssid_len,
663 ies->ie[IEEE80211_BAND_2GHZ],
664 ies->len[IEEE80211_BAND_2GHZ],
665 IEEE80211_BAND_2GHZ);
666 if (ret < 0) {
667 wl1271_error("2.4GHz PROBE request template failed");
668 goto out;
672 if (!force_passive && cfg->active[1]) {
673 ret = wl1271_cmd_build_probe_req(wl, wlvif, req->ssids[0].ssid,
674 req->ssids[0].ssid_len,
675 ies->ie[IEEE80211_BAND_5GHZ],
676 ies->len[IEEE80211_BAND_5GHZ],
677 IEEE80211_BAND_5GHZ);
678 if (ret < 0) {
679 wl1271_error("5GHz PROBE request template failed");
680 goto out;
684 wl1271_dump(DEBUG_SCAN, "SCAN_CFG: ", cfg, sizeof(*cfg));
686 ret = wl1271_cmd_send(wl, CMD_CONNECTION_SCAN_CFG, cfg,
687 sizeof(*cfg), 0);
688 if (ret < 0) {
689 wl1271_error("SCAN configuration failed");
690 goto out;
692 out:
693 kfree(cfg);
694 return ret;
697 int wl1271_scan_sched_scan_start(struct wl1271 *wl, struct wl12xx_vif *wlvif)
699 struct wl1271_cmd_sched_scan_start *start;
700 int ret = 0;
702 wl1271_debug(DEBUG_CMD, "cmd periodic scan start");
704 if (wlvif->bss_type != BSS_TYPE_STA_BSS)
705 return -EOPNOTSUPP;
707 if (test_bit(WLVIF_FLAG_IN_USE, &wlvif->flags))
708 return -EBUSY;
710 start = kzalloc(sizeof(*start), GFP_KERNEL);
711 if (!start)
712 return -ENOMEM;
714 start->tag = WL1271_SCAN_DEFAULT_TAG;
716 ret = wl1271_cmd_send(wl, CMD_START_PERIODIC_SCAN, start,
717 sizeof(*start), 0);
718 if (ret < 0) {
719 wl1271_error("failed to send scan start command");
720 goto out_free;
723 out_free:
724 kfree(start);
725 return ret;
728 void wl1271_scan_sched_scan_results(struct wl1271 *wl)
730 wl1271_debug(DEBUG_SCAN, "got periodic scan results");
732 ieee80211_sched_scan_results(wl->hw);
735 void wl1271_scan_sched_scan_stop(struct wl1271 *wl)
737 struct wl1271_cmd_sched_scan_stop *stop;
738 int ret = 0;
740 wl1271_debug(DEBUG_CMD, "cmd periodic scan stop");
742 /* FIXME: what to do if alloc'ing to stop fails? */
743 stop = kzalloc(sizeof(*stop), GFP_KERNEL);
744 if (!stop) {
745 wl1271_error("failed to alloc memory to send sched scan stop");
746 return;
749 stop->tag = WL1271_SCAN_DEFAULT_TAG;
751 ret = wl1271_cmd_send(wl, CMD_STOP_PERIODIC_SCAN, stop,
752 sizeof(*stop), 0);
753 if (ret < 0) {
754 wl1271_error("failed to send sched scan stop command");
755 goto out_free;
758 out_free:
759 kfree(stop);