Home Explore Help
Register Sign In
wareck
/
openwrt_lede
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
openwrt_lede
/
package
/
kernel
/
mac80211
/
patches
/
339-v5.1-0004-brcmfmac-support-monitor-frames-with-the-hardware-uc.patch

339-v5.1-0004-brcmfmac-support-monitor-frames-with-the-hardware-uc.patch 4.8 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147 
  1. From e665988be29ccea3584528967b432a5cfd801ca4 Mon Sep 17 00:00:00 2001
    2. 

  2. From: =?UTF-8?q?Rafa=C5=82=20Mi=C5=82ecki?= <rafal@milecki.pl>
    3. 

  3. Date: Fri, 8 Feb 2019 07:42:30 +0100
    4. 

  4. Subject: [PATCH] brcmfmac: support monitor frames with the hardware/ucode
    5. 

  5.  header
    6. 

  6. MIME-Version: 1.0
    7. 

  7. Content-Type: text/plain; charset=UTF-8
    8. 

  8. Content-Transfer-Encoding: 8bit
    9. 

  9. 

  10. So far there were two monitor frame formats:
    11. 

  11. 1) 802.11 frames (with frame (sub)type & all addresses)
    12. 

  12. 2) 802.11 frames with the radiotap header
    13. 

  13. 

  14. Testing the latest FullMAC firmwares for 4366b1/4366c0 resulted in
    15. 

  15. discovering a new format being used. It seems (almost?) identical to the
    16. 

  16. one known from ucode used in SoftMAC devices which is most likely the
    17. 

  17. same codebase anyway.
    18. 

  18. 

  19. While new firmwares will /announce/ radiotap header support using the
    20. 

  20. "rtap" fw capability string it seems no string was added for the new
    21. 

  21. ucode header format.
    22. 

  22. 

  23. All above means that:
    24. 

  24. 1) We need new format support when dealing with a received frame
    25. 

  25. 2) A new feature bit & mapping quirks have to be added manually
    26. 

  26. 

  27. As for now only an empty radiotap is being created. Adding support for
    28. 

  28. extracting some info (band, channel, signal, etc.) is planned for the
    29. 

  29. future.
    30. 

  30. 

  31. Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
    32. 

  32. Acked-by: Arend van Spriel <arend.vanspriel@broadcom.com>
    33. 

  33. Signed-off-by: Kalle Valo <kvalo@codeaurora.org>
    34. 

  34. ---
    35. 

  35.  .../broadcom/brcm80211/brcmfmac/core.c        | 55 +++++++++++++++++++
    36. 

  36.  .../broadcom/brcm80211/brcmfmac/feature.c     |  4 ++
    37. 

  37.  .../broadcom/brcm80211/brcmfmac/feature.h     |  4 +-
    38. 

  38.  3 files changed, 62 insertions(+), 1 deletion(-)
    39. 

  39. 

  40. --- a/drivers/net/wireless/broadcom/brcm80211/brcmfmac/core.c
    41. 

  41. +++ b/drivers/net/wireless/broadcom/brcm80211/brcmfmac/core.c
    42. 

  42. @@ -42,6 +42,36 @@
    43. 

  43.  
    44. 

  44.  #define BRCMF_BSSIDX_INVALID			-1
    45. 

  45.  
    46. 

  46. +#define	RXS_PBPRES				BIT(2)
    47. 

  47. +
    48. 

  48. +#define	D11_PHY_HDR_LEN				6
    49. 

  49. +
    50. 

  50. +struct d11rxhdr_le {
    51. 

  51. +	__le16 RxFrameSize;
    52. 

  52. +	u16 PAD;
    53. 

  53. +	__le16 PhyRxStatus_0;
    54. 

  54. +	__le16 PhyRxStatus_1;
    55. 

  55. +	__le16 PhyRxStatus_2;
    56. 

  56. +	__le16 PhyRxStatus_3;
    57. 

  57. +	__le16 PhyRxStatus_4;
    58. 

  58. +	__le16 PhyRxStatus_5;
    59. 

  59. +	__le16 RxStatus1;
    60. 

  60. +	__le16 RxStatus2;
    61. 

  61. +	__le16 RxTSFTime;
    62. 

  62. +	__le16 RxChan;
    63. 

  63. +	u8 unknown[12];
    64. 

  64. +} __packed;
    65. 

  65. +
    66. 

  66. +struct wlc_d11rxhdr {
    67. 

  67. +	struct d11rxhdr_le rxhdr;
    68. 

  68. +	__le32 tsf_l;
    69. 

  69. +	s8 rssi;
    70. 

  70. +	s8 rxpwr0;
    71. 

  71. +	s8 rxpwr1;
    72. 

  72. +	s8 do_rssi_ma;
    73. 

  73. +	s8 rxpwr[4];
    74. 

  74. +} __packed;
    75. 

  75. +
    76. 

  76.  char *brcmf_ifname(struct brcmf_if *ifp)
    77. 

  77.  {
    78. 

  78.  	if (!ifp)
    79. 

  79. @@ -361,6 +391,35 @@ void brcmf_netif_mon_rx(struct brcmf_if
    80. 

  80.  {
    81. 

  81.  	if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MONITOR_FMT_RADIOTAP)) {
    82. 

  82.  		/* Do nothing */
    83. 

  83. +	} else if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MONITOR_FMT_HW_RX_HDR)) {
    84. 

  84. +		struct wlc_d11rxhdr *wlc_rxhdr = (struct wlc_d11rxhdr *)skb->data;
    85. 

  85. +		struct ieee80211_radiotap_header *radiotap;
    86. 

  86. +		unsigned int offset;
    87. 

  87. +		u16 RxStatus1;
    88. 

  88. +
    89. 

  89. +		RxStatus1 = le16_to_cpu(wlc_rxhdr->rxhdr.RxStatus1);
    90. 

  90. +
    91. 

  91. +		offset = sizeof(struct wlc_d11rxhdr);
    92. 

  92. +		/* MAC inserts 2 pad bytes for a4 headers or QoS or A-MSDU
    93. 

  93. +		 * subframes
    94. 

  94. +		 */
    95. 

  95. +		if (RxStatus1 & RXS_PBPRES)
    96. 

  96. +			offset += 2;
    97. 

  97. +		offset += D11_PHY_HDR_LEN;
    98. 

  98. +
    99. 

  99. +		skb_pull(skb, offset);
    100. 

  100. +
    101. 

  101. +		/* TODO: use RX header to fill some radiotap data */
    102. 

  102. +#if LINUX_VERSION_CODE >= KERNEL_VERSION(4, 13, 0)
    103. 

  103. +		radiotap = skb_push(skb, sizeof(*radiotap));
    104. 

  104. +#else
    105. 

  105. +		radiotap = (struct ieee80211_radiotap_header *)skb_push(skb, sizeof(*radiotap));
    106. 

  106. +#endif
    107. 

  107. +		memset(radiotap, 0, sizeof(*radiotap));
    108. 

  108. +		radiotap->it_len = cpu_to_le16(sizeof(*radiotap));
    109. 

  109. +
    110. 

  110. +		/* TODO: 4 bytes with receive status? */
    111. 

  111. +		skb->len -= 4;
    112. 

  112.  	} else {
    113. 

  113.  		struct ieee80211_radiotap_header *radiotap;
    114. 

  114.  
    115. 

  115. --- a/drivers/net/wireless/broadcom/brcm80211/brcmfmac/feature.c
    116. 

  116. +++ b/drivers/net/wireless/broadcom/brcm80211/brcmfmac/feature.c
    117. 

  117. @@ -102,6 +102,10 @@ static const struct brcmf_feat_fwfeat br
    118. 

  118.  	{ "01-6cb8e269", BIT(BRCMF_FEAT_MONITOR) },
    119. 

  119.  	/* brcmfmac4366b-pcie.bin from linux-firmware.git commit 52442afee990 */
    120. 

  120.  	{ "01-c47a91a4", BIT(BRCMF_FEAT_MONITOR) },
    121. 

  121. +	/* brcmfmac4366b-pcie.bin from linux-firmware.git commit 211de1679a68 */
    122. 

  122. +	{ "01-801fb449", BIT(BRCMF_FEAT_MONITOR_FMT_HW_RX_HDR) },
    123. 

  123. +	/* brcmfmac4366c-pcie.bin from linux-firmware.git commit 211de1679a68 */
    124. 

  124. +	{ "01-d2cbb8fd", BIT(BRCMF_FEAT_MONITOR_FMT_HW_RX_HDR) },
    125. 

  125.  };
    126. 

  126.  
    127. 

  127.  static void brcmf_feat_firmware_overrides(struct brcmf_pub *drv)
    128. 

  128. --- a/drivers/net/wireless/broadcom/brcm80211/brcmfmac/feature.h
    129. 

  129. +++ b/drivers/net/wireless/broadcom/brcm80211/brcmfmac/feature.h
    130. 

  130. @@ -33,6 +33,7 @@
    131. 

  131.   * MFP: 802.11w Management Frame Protection.
    132. 

  132.   * MONITOR: firmware can pass monitor packets to host.
    133. 

  133.   * MONITOR_FMT_RADIOTAP: firmware provides monitor packets with radiotap header
    134. 

  134. + * MONITOR_FMT_HW_RX_HDR: firmware provides monitor packets with hw/ucode header
    135. 

  135.   */
    136. 

  136.  #define BRCMF_FEAT_LIST \
    137. 

  137.  	BRCMF_FEAT_DEF(MBSS) \
    138. 

  138. @@ -48,7 +49,8 @@
    139. 

  139.  	BRCMF_FEAT_DEF(WOWL_ARP_ND) \
    140. 

  140.  	BRCMF_FEAT_DEF(MFP) \
    141. 

  141.  	BRCMF_FEAT_DEF(MONITOR) \
    142. 

  142. -	BRCMF_FEAT_DEF(MONITOR_FMT_RADIOTAP)
    143. 

  143. +	BRCMF_FEAT_DEF(MONITOR_FMT_RADIOTAP) \
    144. 

  144. +	BRCMF_FEAT_DEF(MONITOR_FMT_HW_RX_HDR)
    145. 

  145.  
    146. 

  146.  /*
    147. 

  147.   * Quirks:
    148.