1/* 2 * Copyright (C) 1999-2013, Broadcom Corporation 3 * 4 * Permission to use, copy, modify, and/or distribute this software for any 5 * purpose with or without fee is hereby granted, provided that the above 6 * copyright notice and this permission notice appear in all copies. 7 * 8 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES 9 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF 10 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY 11 * SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES 12 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION 13 * OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN 14 * CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. 15 * 16 * Fundamental types and constants relating to 802.11 17 * 18 * $Id: 802.11.h 386067 2013-02-19 15:24:20Z $ 19 */ 20 21#ifndef _802_11_H_ 22#define _802_11_H_ 23 24#ifndef _TYPEDEFS_H_ 25#include <typedefs.h> 26#endif 27 28#ifndef _NET_ETHERNET_H_ 29#include <proto/ethernet.h> 30#endif 31 32#include <proto/wpa.h> 33 34/* This marks the start of a packed structure section. */ 35#include <packed_section_start.h> 36 37 38#define DOT11_TU_TO_US 1024 /* 802.11 Time Unit is 1024 microseconds */ 39 40/* Generic 802.11 frame constants */ 41#define DOT11_A3_HDR_LEN 24 /* d11 header length with A3 */ 42#define DOT11_A4_HDR_LEN 30 /* d11 header length with A4 */ 43#define DOT11_MAC_HDR_LEN DOT11_A3_HDR_LEN /* MAC header length */ 44#define DOT11_FCS_LEN 4 /* d11 FCS length */ 45#define DOT11_ICV_LEN 4 /* d11 ICV length */ 46#define DOT11_ICV_AES_LEN 8 /* d11 ICV/AES length */ 47#define DOT11_QOS_LEN 2 /* d11 QoS length */ 48#define DOT11_HTC_LEN 4 /* d11 HT Control field length */ 49 50#define DOT11_KEY_INDEX_SHIFT 6 /* d11 key index shift */ 51#define DOT11_IV_LEN 4 /* d11 IV length */ 52#define DOT11_IV_TKIP_LEN 8 /* d11 IV TKIP length */ 53#define DOT11_IV_AES_OCB_LEN 4 /* d11 IV/AES/OCB length */ 54#define DOT11_IV_AES_CCM_LEN 8 /* d11 IV/AES/CCM length */ 55#define DOT11_IV_MAX_LEN 8 /* maximum iv len for any encryption */ 56 57/* Includes MIC */ 58#define DOT11_MAX_MPDU_BODY_LEN 2304 /* max MPDU body length */ 59/* A4 header + QoS + CCMP + PDU + ICV + FCS = 2352 */ 60#define DOT11_MAX_MPDU_LEN (DOT11_A4_HDR_LEN + \ 61 DOT11_QOS_LEN + \ 62 DOT11_IV_AES_CCM_LEN + \ 63 DOT11_MAX_MPDU_BODY_LEN + \ 64 DOT11_ICV_LEN + \ 65 DOT11_FCS_LEN) /* d11 max MPDU length */ 66 67#define DOT11_MAX_SSID_LEN 32 /* d11 max ssid length */ 68 69/* dot11RTSThreshold */ 70#define DOT11_DEFAULT_RTS_LEN 2347 /* d11 default RTS length */ 71#define DOT11_MAX_RTS_LEN 2347 /* d11 max RTS length */ 72 73/* dot11FragmentationThreshold */ 74#define DOT11_MIN_FRAG_LEN 256 /* d11 min fragmentation length */ 75#define DOT11_MAX_FRAG_LEN 2346 /* Max frag is also limited by aMPDUMaxLength 76 * of the attached PHY 77 */ 78#define DOT11_DEFAULT_FRAG_LEN 2346 /* d11 default fragmentation length */ 79 80/* dot11BeaconPeriod */ 81#define DOT11_MIN_BEACON_PERIOD 1 /* d11 min beacon period */ 82#define DOT11_MAX_BEACON_PERIOD 0xFFFF /* d11 max beacon period */ 83 84/* dot11DTIMPeriod */ 85#define DOT11_MIN_DTIM_PERIOD 1 /* d11 min DTIM period */ 86#define DOT11_MAX_DTIM_PERIOD 0xFF /* d11 max DTIM period */ 87 88/* 802.2 LLC/SNAP header used by 802.11 per 802.1H */ 89#define DOT11_LLC_SNAP_HDR_LEN 8 /* d11 LLC/SNAP header length */ 90#define DOT11_OUI_LEN 3 /* d11 OUI length */ 91BWL_PRE_PACKED_STRUCT struct dot11_llc_snap_header { 92 uint8 dsap; /* always 0xAA */ 93 uint8 ssap; /* always 0xAA */ 94 uint8 ctl; /* always 0x03 */ 95 uint8 oui[DOT11_OUI_LEN]; /* RFC1042: 0x00 0x00 0x00 96 * Bridge-Tunnel: 0x00 0x00 0xF8 97 */ 98 uint16 type; /* ethertype */ 99} BWL_POST_PACKED_STRUCT; 100 101/* RFC1042 header used by 802.11 per 802.1H */ 102#define RFC1042_HDR_LEN (ETHER_HDR_LEN + DOT11_LLC_SNAP_HDR_LEN) /* RCF1042 header length */ 103 104/* Generic 802.11 MAC header */ 105/* 106 * N.B.: This struct reflects the full 4 address 802.11 MAC header. 107 * The fields are defined such that the shorter 1, 2, and 3 108 * address headers just use the first k fields. 109 */ 110BWL_PRE_PACKED_STRUCT struct dot11_header { 111 uint16 fc; /* frame control */ 112 uint16 durid; /* duration/ID */ 113 struct ether_addr a1; /* address 1 */ 114 struct ether_addr a2; /* address 2 */ 115 struct ether_addr a3; /* address 3 */ 116 uint16 seq; /* sequence control */ 117 struct ether_addr a4; /* address 4 */ 118} BWL_POST_PACKED_STRUCT; 119 120/* Control frames */ 121 122BWL_PRE_PACKED_STRUCT struct dot11_rts_frame { 123 uint16 fc; /* frame control */ 124 uint16 durid; /* duration/ID */ 125 struct ether_addr ra; /* receiver address */ 126 struct ether_addr ta; /* transmitter address */ 127} BWL_POST_PACKED_STRUCT; 128#define DOT11_RTS_LEN 16 /* d11 RTS frame length */ 129 130BWL_PRE_PACKED_STRUCT struct dot11_cts_frame { 131 uint16 fc; /* frame control */ 132 uint16 durid; /* duration/ID */ 133 struct ether_addr ra; /* receiver address */ 134} BWL_POST_PACKED_STRUCT; 135#define DOT11_CTS_LEN 10 /* d11 CTS frame length */ 136 137BWL_PRE_PACKED_STRUCT struct dot11_ack_frame { 138 uint16 fc; /* frame control */ 139 uint16 durid; /* duration/ID */ 140 struct ether_addr ra; /* receiver address */ 141} BWL_POST_PACKED_STRUCT; 142#define DOT11_ACK_LEN 10 /* d11 ACK frame length */ 143 144BWL_PRE_PACKED_STRUCT struct dot11_ps_poll_frame { 145 uint16 fc; /* frame control */ 146 uint16 durid; /* AID */ 147 struct ether_addr bssid; /* receiver address, STA in AP */ 148 struct ether_addr ta; /* transmitter address */ 149} BWL_POST_PACKED_STRUCT; 150#define DOT11_PS_POLL_LEN 16 /* d11 PS poll frame length */ 151 152BWL_PRE_PACKED_STRUCT struct dot11_cf_end_frame { 153 uint16 fc; /* frame control */ 154 uint16 durid; /* duration/ID */ 155 struct ether_addr ra; /* receiver address */ 156 struct ether_addr bssid; /* transmitter address, STA in AP */ 157} BWL_POST_PACKED_STRUCT; 158#define DOT11_CS_END_LEN 16 /* d11 CF-END frame length */ 159 160/* RWL wifi protocol: The Vendor Specific Action frame is defined for vendor-specific signaling 161* category+OUI+vendor specific content ( this can be variable) 162*/ 163BWL_PRE_PACKED_STRUCT struct dot11_action_wifi_vendor_specific { 164 uint8 category; 165 uint8 OUI[3]; 166 uint8 type; 167 uint8 subtype; 168 uint8 data[1040]; 169} BWL_POST_PACKED_STRUCT; 170typedef struct dot11_action_wifi_vendor_specific dot11_action_wifi_vendor_specific_t; 171 172/* generic vender specific action frame with variable length */ 173BWL_PRE_PACKED_STRUCT struct dot11_action_vs_frmhdr { 174 uint8 category; 175 uint8 OUI[3]; 176 uint8 type; 177 uint8 subtype; 178 uint8 data[1]; 179} BWL_POST_PACKED_STRUCT; 180typedef struct dot11_action_vs_frmhdr dot11_action_vs_frmhdr_t; 181#define DOT11_ACTION_VS_HDR_LEN 6 182 183#define BCM_ACTION_OUI_BYTE0 0x00 184#define BCM_ACTION_OUI_BYTE1 0x90 185#define BCM_ACTION_OUI_BYTE2 0x4c 186 187/* BA/BAR Control parameters */ 188#define DOT11_BA_CTL_POLICY_NORMAL 0x0000 /* normal ack */ 189#define DOT11_BA_CTL_POLICY_NOACK 0x0001 /* no ack */ 190#define DOT11_BA_CTL_POLICY_MASK 0x0001 /* ack policy mask */ 191 192#define DOT11_BA_CTL_MTID 0x0002 /* multi tid BA */ 193#define DOT11_BA_CTL_COMPRESSED 0x0004 /* compressed bitmap */ 194 195#define DOT11_BA_CTL_NUMMSDU_MASK 0x0FC0 /* num msdu in bitmap mask */ 196#define DOT11_BA_CTL_NUMMSDU_SHIFT 6 /* num msdu in bitmap shift */ 197 198#define DOT11_BA_CTL_TID_MASK 0xF000 /* tid mask */ 199#define DOT11_BA_CTL_TID_SHIFT 12 /* tid shift */ 200 201/* control frame header (BA/BAR) */ 202BWL_PRE_PACKED_STRUCT struct dot11_ctl_header { 203 uint16 fc; /* frame control */ 204 uint16 durid; /* duration/ID */ 205 struct ether_addr ra; /* receiver address */ 206 struct ether_addr ta; /* transmitter address */ 207} BWL_POST_PACKED_STRUCT; 208#define DOT11_CTL_HDR_LEN 16 /* control frame hdr len */ 209 210/* BAR frame payload */ 211BWL_PRE_PACKED_STRUCT struct dot11_bar { 212 uint16 bar_control; /* BAR Control */ 213 uint16 seqnum; /* Starting Sequence control */ 214} BWL_POST_PACKED_STRUCT; 215#define DOT11_BAR_LEN 4 /* BAR frame payload length */ 216 217#define DOT11_BA_BITMAP_LEN 128 /* bitmap length */ 218#define DOT11_BA_CMP_BITMAP_LEN 8 /* compressed bitmap length */ 219/* BA frame payload */ 220BWL_PRE_PACKED_STRUCT struct dot11_ba { 221 uint16 ba_control; /* BA Control */ 222 uint16 seqnum; /* Starting Sequence control */ 223 uint8 bitmap[DOT11_BA_BITMAP_LEN]; /* Block Ack Bitmap */ 224} BWL_POST_PACKED_STRUCT; 225#define DOT11_BA_LEN 4 /* BA frame payload len (wo bitmap) */ 226 227/* Management frame header */ 228BWL_PRE_PACKED_STRUCT struct dot11_management_header { 229 uint16 fc; /* frame control */ 230 uint16 durid; /* duration/ID */ 231 struct ether_addr da; /* receiver address */ 232 struct ether_addr sa; /* transmitter address */ 233 struct ether_addr bssid; /* BSS ID */ 234 uint16 seq; /* sequence control */ 235} BWL_POST_PACKED_STRUCT; 236#define DOT11_MGMT_HDR_LEN 24 /* d11 management header length */ 237 238/* Management frame payloads */ 239 240BWL_PRE_PACKED_STRUCT struct dot11_bcn_prb { 241 uint32 timestamp[2]; 242 uint16 beacon_interval; 243 uint16 capability; 244} BWL_POST_PACKED_STRUCT; 245#define DOT11_BCN_PRB_LEN 12 /* 802.11 beacon/probe frame fixed length */ 246#define DOT11_BCN_PRB_FIXED_LEN 12 /* 802.11 beacon/probe frame fixed length */ 247 248BWL_PRE_PACKED_STRUCT struct dot11_auth { 249 uint16 alg; /* algorithm */ 250 uint16 seq; /* sequence control */ 251 uint16 status; /* status code */ 252} BWL_POST_PACKED_STRUCT; 253#define DOT11_AUTH_FIXED_LEN 6 /* length of auth frame without challenge IE */ 254 255BWL_PRE_PACKED_STRUCT struct dot11_assoc_req { 256 uint16 capability; /* capability information */ 257 uint16 listen; /* listen interval */ 258} BWL_POST_PACKED_STRUCT; 259#define DOT11_ASSOC_REQ_FIXED_LEN 4 /* length of assoc frame without info elts */ 260 261BWL_PRE_PACKED_STRUCT struct dot11_reassoc_req { 262 uint16 capability; /* capability information */ 263 uint16 listen; /* listen interval */ 264 struct ether_addr ap; /* Current AP address */ 265} BWL_POST_PACKED_STRUCT; 266#define DOT11_REASSOC_REQ_FIXED_LEN 10 /* length of assoc frame without info elts */ 267 268BWL_PRE_PACKED_STRUCT struct dot11_assoc_resp { 269 uint16 capability; /* capability information */ 270 uint16 status; /* status code */ 271 uint16 aid; /* association ID */ 272} BWL_POST_PACKED_STRUCT; 273#define DOT11_ASSOC_RESP_FIXED_LEN 6 /* length of assoc resp frame without info elts */ 274 275BWL_PRE_PACKED_STRUCT struct dot11_action_measure { 276 uint8 category; 277 uint8 action; 278 uint8 token; 279 uint8 data[1]; 280} BWL_POST_PACKED_STRUCT; 281#define DOT11_ACTION_MEASURE_LEN 3 /* d11 action measurement header length */ 282 283BWL_PRE_PACKED_STRUCT struct dot11_action_ht_ch_width { 284 uint8 category; 285 uint8 action; 286 uint8 ch_width; 287} BWL_POST_PACKED_STRUCT; 288 289BWL_PRE_PACKED_STRUCT struct dot11_action_ht_mimops { 290 uint8 category; 291 uint8 action; 292 uint8 control; 293} BWL_POST_PACKED_STRUCT; 294 295BWL_PRE_PACKED_STRUCT struct dot11_action_sa_query { 296 uint8 category; 297 uint8 action; 298 uint16 id; 299} BWL_POST_PACKED_STRUCT; 300 301BWL_PRE_PACKED_STRUCT struct dot11_action_vht_oper_mode { 302 uint8 category; 303 uint8 action; 304 uint8 mode; 305} BWL_POST_PACKED_STRUCT; 306 307#define SM_PWRSAVE_ENABLE 1 308#define SM_PWRSAVE_MODE 2 309 310/* ************* 802.11h related definitions. ************* */ 311BWL_PRE_PACKED_STRUCT struct dot11_power_cnst { 312 uint8 id; 313 uint8 len; 314 uint8 power; 315} BWL_POST_PACKED_STRUCT; 316typedef struct dot11_power_cnst dot11_power_cnst_t; 317 318BWL_PRE_PACKED_STRUCT struct dot11_power_cap { 319 uint8 min; 320 uint8 max; 321} BWL_POST_PACKED_STRUCT; 322typedef struct dot11_power_cap dot11_power_cap_t; 323 324BWL_PRE_PACKED_STRUCT struct dot11_tpc_rep { 325 uint8 id; 326 uint8 len; 327 uint8 tx_pwr; 328 uint8 margin; 329} BWL_POST_PACKED_STRUCT; 330typedef struct dot11_tpc_rep dot11_tpc_rep_t; 331#define DOT11_MNG_IE_TPC_REPORT_LEN 2 /* length of IE data, not including 2 byte header */ 332 333BWL_PRE_PACKED_STRUCT struct dot11_supp_channels { 334 uint8 id; 335 uint8 len; 336 uint8 first_channel; 337 uint8 num_channels; 338} BWL_POST_PACKED_STRUCT; 339typedef struct dot11_supp_channels dot11_supp_channels_t; 340 341/* Extension Channel Offset IE: 802.11n-D1.0 spec. added sideband 342 * offset for 40MHz operation. The possible 3 values are: 343 * 1 = above control channel 344 * 3 = below control channel 345 * 0 = no extension channel 346 */ 347BWL_PRE_PACKED_STRUCT struct dot11_extch { 348 uint8 id; /* IE ID, 62, DOT11_MNG_EXT_CHANNEL_OFFSET */ 349 uint8 len; /* IE length */ 350 uint8 extch; 351} BWL_POST_PACKED_STRUCT; 352typedef struct dot11_extch dot11_extch_ie_t; 353 354BWL_PRE_PACKED_STRUCT struct dot11_brcm_extch { 355 uint8 id; /* IE ID, 221, DOT11_MNG_PROPR_ID */ 356 uint8 len; /* IE length */ 357 uint8 oui[3]; /* Proprietary OUI, BRCM_PROP_OUI */ 358 uint8 type; /* type inidicates what follows */ 359 uint8 extch; 360} BWL_POST_PACKED_STRUCT; 361typedef struct dot11_brcm_extch dot11_brcm_extch_ie_t; 362 363#define BRCM_EXTCH_IE_LEN 5 364#define BRCM_EXTCH_IE_TYPE 53 /* 802.11n ID not yet assigned */ 365#define DOT11_EXTCH_IE_LEN 1 366#define DOT11_EXT_CH_MASK 0x03 /* extension channel mask */ 367#define DOT11_EXT_CH_UPPER 0x01 /* ext. ch. on upper sb */ 368#define DOT11_EXT_CH_LOWER 0x03 /* ext. ch. on lower sb */ 369#define DOT11_EXT_CH_NONE 0x00 /* no extension ch. */ 370 371BWL_PRE_PACKED_STRUCT struct dot11_action_frmhdr { 372 uint8 category; 373 uint8 action; 374 uint8 data[1]; 375} BWL_POST_PACKED_STRUCT; 376#define DOT11_ACTION_FRMHDR_LEN 2 377 378/* CSA IE data structure */ 379BWL_PRE_PACKED_STRUCT struct dot11_channel_switch { 380 uint8 id; /* id DOT11_MNG_CHANNEL_SWITCH_ID */ 381 uint8 len; /* length of IE */ 382 uint8 mode; /* mode 0 or 1 */ 383 uint8 channel; /* channel switch to */ 384 uint8 count; /* number of beacons before switching */ 385} BWL_POST_PACKED_STRUCT; 386typedef struct dot11_channel_switch dot11_chan_switch_ie_t; 387 388#define DOT11_SWITCH_IE_LEN 3 /* length of IE data, not including 2 byte header */ 389/* CSA mode - 802.11h-2003 $7.3.2.20 */ 390#define DOT11_CSA_MODE_ADVISORY 0 /* no DOT11_CSA_MODE_NO_TX restriction imposed */ 391#define DOT11_CSA_MODE_NO_TX 1 /* no transmission upon receiving CSA frame. */ 392 393BWL_PRE_PACKED_STRUCT struct dot11_action_switch_channel { 394 uint8 category; 395 uint8 action; 396 dot11_chan_switch_ie_t chan_switch_ie; /* for switch IE */ 397 dot11_brcm_extch_ie_t extch_ie; /* extension channel offset */ 398} BWL_POST_PACKED_STRUCT; 399 400BWL_PRE_PACKED_STRUCT struct dot11_csa_body { 401 uint8 mode; /* mode 0 or 1 */ 402 uint8 reg; /* regulatory class */ 403 uint8 channel; /* channel switch to */ 404 uint8 count; /* number of beacons before switching */ 405} BWL_POST_PACKED_STRUCT; 406 407/* 11n Extended Channel Switch IE data structure */ 408BWL_PRE_PACKED_STRUCT struct dot11_ext_csa { 409 uint8 id; /* id DOT11_MNG_EXT_CHANNEL_SWITCH_ID */ 410 uint8 len; /* length of IE */ 411 struct dot11_csa_body b; /* body of the ie */ 412} BWL_POST_PACKED_STRUCT; 413typedef struct dot11_ext_csa dot11_ext_csa_ie_t; 414#define DOT11_EXT_CSA_IE_LEN 4 /* length of extended channel switch IE body */ 415 416BWL_PRE_PACKED_STRUCT struct dot11_action_ext_csa { 417 uint8 category; 418 uint8 action; 419 dot11_ext_csa_ie_t chan_switch_ie; /* for switch IE */ 420} BWL_POST_PACKED_STRUCT; 421 422BWL_PRE_PACKED_STRUCT struct dot11y_action_ext_csa { 423 uint8 category; 424 uint8 action; 425 struct dot11_csa_body b; /* body of the ie */ 426} BWL_POST_PACKED_STRUCT; 427 428/* Wide Bandwidth Channel Switch IE data structure */ 429BWL_PRE_PACKED_STRUCT struct dot11_wide_bw_channel_switch { 430 uint8 id; /* id DOT11_MNG_WIDE_BW_CHANNEL_SWITCH_ID */ 431 uint8 len; /* length of IE */ 432 uint8 channel_width; /* new channel width */ 433 uint8 center_frequency_segment_0; /* center frequency segment 0 */ 434 uint8 center_frequency_segment_1; /* center frequency segment 1 */ 435} BWL_POST_PACKED_STRUCT; 436typedef struct dot11_wide_bw_channel_switch dot11_wide_bw_chan_switch_ie_t; 437 438#define DOT11_WIDE_BW_SWITCH_IE_LEN 3 /* length of IE data, not including 2 byte header */ 439 440/* Channel Switch Wrapper IE data structure */ 441BWL_PRE_PACKED_STRUCT struct dot11_channel_switch_wrapper { 442 uint8 id; /* id DOT11_MNG_WIDE_BW_CHANNEL_SWITCH_ID */ 443 uint8 len; /* length of IE */ 444 dot11_wide_bw_chan_switch_ie_t wb_chan_switch_ie; 445} BWL_POST_PACKED_STRUCT; 446typedef struct dot11_channel_switch_wrapper dot11_chan_switch_wrapper_ie_t; 447 448/* VHT Transmit Power Envelope IE data structure */ 449BWL_PRE_PACKED_STRUCT struct dot11_vht_transmit_power_envelope { 450 uint8 id; /* id DOT11_MNG_WIDE_BW_CHANNEL_SWITCH_ID */ 451 uint8 len; /* length of IE */ 452 uint8 transmit_power_info; 453 uint8 local_max_transmit_power_20; 454} BWL_POST_PACKED_STRUCT; 455typedef struct dot11_vht_transmit_power_envelope dot11_vht_transmit_power_envelope_ie_t; 456 457 458BWL_PRE_PACKED_STRUCT struct dot11_obss_coex { 459 uint8 id; 460 uint8 len; 461 uint8 info; 462} BWL_POST_PACKED_STRUCT; 463typedef struct dot11_obss_coex dot11_obss_coex_t; 464#define DOT11_OBSS_COEXINFO_LEN 1 /* length of OBSS Coexistence INFO IE */ 465 466#define DOT11_OBSS_COEX_INFO_REQ 0x01 467#define DOT11_OBSS_COEX_40MHZ_INTOLERANT 0x02 468#define DOT11_OBSS_COEX_20MHZ_WIDTH_REQ 0x04 469 470BWL_PRE_PACKED_STRUCT struct dot11_obss_chanlist { 471 uint8 id; 472 uint8 len; 473 uint8 regclass; 474 uint8 chanlist[1]; 475} BWL_POST_PACKED_STRUCT; 476typedef struct dot11_obss_chanlist dot11_obss_chanlist_t; 477#define DOT11_OBSS_CHANLIST_FIXED_LEN 1 /* fixed length of regclass */ 478 479BWL_PRE_PACKED_STRUCT struct dot11_extcap_ie { 480 uint8 id; 481 uint8 len; 482 uint8 cap[1]; 483} BWL_POST_PACKED_STRUCT; 484typedef struct dot11_extcap_ie dot11_extcap_ie_t; 485 486#define DOT11_EXTCAP_LEN_MAX 8 487 488#define DOT11_EXTCAP_LEN_COEX 1 489#define DOT11_EXTCAP_LEN_BT 3 490#define DOT11_EXTCAP_LEN_IW 4 491#define DOT11_EXTCAP_LEN_SI 6 492 493#define DOT11_EXTCAP_LEN_TDLS 5 494#define DOT11_11AC_EXTCAP_LEN_TDLS 8 495 496#define DOT11_EXTCAP_LEN_FMS 2 497#define DOT11_EXTCAP_LEN_PROXY_ARP 2 498#define DOT11_EXTCAP_LEN_TFS 3 499#define DOT11_EXTCAP_LEN_WNM_SLEEP 3 500#define DOT11_EXTCAP_LEN_TIMBC 3 501#define DOT11_EXTCAP_LEN_BSSTRANS 3 502#define DOT11_EXTCAP_LEN_DMS 4 503#define DOT11_EXTCAP_LEN_WNM_NOTIFICATION 6 504#define DOT11_EXTCAP_LEN_TDLS_WBW 8 505#define DOT11_EXTCAP_LEN_OPMODE_NOTIFICATION 8 506 507BWL_PRE_PACKED_STRUCT struct dot11_extcap { 508 uint8 extcap[DOT11_EXTCAP_LEN_MAX]; 509} BWL_POST_PACKED_STRUCT; 510typedef struct dot11_extcap dot11_extcap_t; 511 512/* TDLS Capabilities */ 513#define DOT11_TDLS_CAP_TDLS 37 /* TDLS support */ 514#define DOT11_TDLS_CAP_PU_BUFFER_STA 28 /* TDLS Peer U-APSD buffer STA support */ 515#define DOT11_TDLS_CAP_PEER_PSM 20 /* TDLS Peer PSM support */ 516#define DOT11_TDLS_CAP_CH_SW 30 /* TDLS Channel switch */ 517#define DOT11_TDLS_CAP_PROH 38 /* TDLS prohibited */ 518#define DOT11_TDLS_CAP_CH_SW_PROH 39 /* TDLS Channel switch prohibited */ 519#define DOT11_TDLS_CAP_TDLS_WIDER_BW 61 /* TDLS Wider Band-Width */ 520 521#define TDLS_CAP_MAX_BIT 39 /* TDLS max bit defined in ext cap */ 522 523/* 802.11h/802.11k Measurement Request/Report IEs */ 524/* Measurement Type field */ 525#define DOT11_MEASURE_TYPE_BASIC 0 /* d11 measurement basic type */ 526#define DOT11_MEASURE_TYPE_CCA 1 /* d11 measurement CCA type */ 527#define DOT11_MEASURE_TYPE_RPI 2 /* d11 measurement RPI type */ 528#define DOT11_MEASURE_TYPE_CHLOAD 3 /* d11 measurement Channel Load type */ 529#define DOT11_MEASURE_TYPE_NOISE 4 /* d11 measurement Noise Histogram type */ 530#define DOT11_MEASURE_TYPE_BEACON 5 /* d11 measurement Beacon type */ 531#define DOT11_MEASURE_TYPE_FRAME 6 /* d11 measurement Frame type */ 532#define DOT11_MEASURE_TYPE_STAT 7 /* d11 measurement STA Statistics type */ 533#define DOT11_MEASURE_TYPE_LCI 8 /* d11 measurement LCI type */ 534#define DOT11_MEASURE_TYPE_TXSTREAM 9 /* d11 measurement TX Stream type */ 535#define DOT11_MEASURE_TYPE_PAUSE 255 /* d11 measurement pause type */ 536 537/* Measurement Request Modes */ 538#define DOT11_MEASURE_MODE_PARALLEL (1<<0) /* d11 measurement parallel */ 539#define DOT11_MEASURE_MODE_ENABLE (1<<1) /* d11 measurement enable */ 540#define DOT11_MEASURE_MODE_REQUEST (1<<2) /* d11 measurement request */ 541#define DOT11_MEASURE_MODE_REPORT (1<<3) /* d11 measurement report */ 542#define DOT11_MEASURE_MODE_DUR (1<<4) /* d11 measurement dur mandatory */ 543/* Measurement Report Modes */ 544#define DOT11_MEASURE_MODE_LATE (1<<0) /* d11 measurement late */ 545#define DOT11_MEASURE_MODE_INCAPABLE (1<<1) /* d11 measurement incapable */ 546#define DOT11_MEASURE_MODE_REFUSED (1<<2) /* d11 measurement refuse */ 547/* Basic Measurement Map bits */ 548#define DOT11_MEASURE_BASIC_MAP_BSS ((uint8)(1<<0)) /* d11 measurement basic map BSS */ 549#define DOT11_MEASURE_BASIC_MAP_OFDM ((uint8)(1<<1)) /* d11 measurement map OFDM */ 550#define DOT11_MEASURE_BASIC_MAP_UKNOWN ((uint8)(1<<2)) /* d11 measurement map unknown */ 551#define DOT11_MEASURE_BASIC_MAP_RADAR ((uint8)(1<<3)) /* d11 measurement map radar */ 552#define DOT11_MEASURE_BASIC_MAP_UNMEAS ((uint8)(1<<4)) /* d11 measurement map unmeasuremnt */ 553 554BWL_PRE_PACKED_STRUCT struct dot11_meas_req { 555 uint8 id; 556 uint8 len; 557 uint8 token; 558 uint8 mode; 559 uint8 type; 560 uint8 channel; 561 uint8 start_time[8]; 562 uint16 duration; 563} BWL_POST_PACKED_STRUCT; 564typedef struct dot11_meas_req dot11_meas_req_t; 565#define DOT11_MNG_IE_MREQ_LEN 14 /* d11 measurement request IE length */ 566/* length of Measure Request IE data not including variable len */ 567#define DOT11_MNG_IE_MREQ_FIXED_LEN 3 /* d11 measurement request IE fixed length */ 568 569BWL_PRE_PACKED_STRUCT struct dot11_meas_rep { 570 uint8 id; 571 uint8 len; 572 uint8 token; 573 uint8 mode; 574 uint8 type; 575 BWL_PRE_PACKED_STRUCT union 576 { 577 BWL_PRE_PACKED_STRUCT struct { 578 uint8 channel; 579 uint8 start_time[8]; 580 uint16 duration; 581 uint8 map; 582 } BWL_POST_PACKED_STRUCT basic; 583 uint8 data[1]; 584 } BWL_POST_PACKED_STRUCT rep; 585} BWL_POST_PACKED_STRUCT; 586typedef struct dot11_meas_rep dot11_meas_rep_t; 587 588/* length of Measure Report IE data not including variable len */ 589#define DOT11_MNG_IE_MREP_FIXED_LEN 3 /* d11 measurement response IE fixed length */ 590 591BWL_PRE_PACKED_STRUCT struct dot11_meas_rep_basic { 592 uint8 channel; 593 uint8 start_time[8]; 594 uint16 duration; 595 uint8 map; 596} BWL_POST_PACKED_STRUCT; 597typedef struct dot11_meas_rep_basic dot11_meas_rep_basic_t; 598#define DOT11_MEASURE_BASIC_REP_LEN 12 /* d11 measurement basic report length */ 599 600BWL_PRE_PACKED_STRUCT struct dot11_quiet { 601 uint8 id; 602 uint8 len; 603 uint8 count; /* TBTTs until beacon interval in quiet starts */ 604 uint8 period; /* Beacon intervals between periodic quiet periods ? */ 605 uint16 duration; /* Length of quiet period, in TU's */ 606 uint16 offset; /* TU's offset from TBTT in Count field */ 607} BWL_POST_PACKED_STRUCT; 608typedef struct dot11_quiet dot11_quiet_t; 609 610BWL_PRE_PACKED_STRUCT struct chan_map_tuple { 611 uint8 channel; 612 uint8 map; 613} BWL_POST_PACKED_STRUCT; 614typedef struct chan_map_tuple chan_map_tuple_t; 615 616BWL_PRE_PACKED_STRUCT struct dot11_ibss_dfs { 617 uint8 id; 618 uint8 len; 619 uint8 eaddr[ETHER_ADDR_LEN]; 620 uint8 interval; 621 chan_map_tuple_t map[1]; 622} BWL_POST_PACKED_STRUCT; 623typedef struct dot11_ibss_dfs dot11_ibss_dfs_t; 624 625/* WME Elements */ 626#define WME_OUI "\x00\x50\xf2" /* WME OUI */ 627#define WME_OUI_LEN 3 628#define WME_OUI_TYPE 2 /* WME type */ 629#define WME_TYPE 2 /* WME type, deprecated */ 630#define WME_SUBTYPE_IE 0 /* Information Element */ 631#define WME_SUBTYPE_PARAM_IE 1 /* Parameter Element */ 632#define WME_SUBTYPE_TSPEC 2 /* Traffic Specification */ 633#define WME_VER 1 /* WME version */ 634 635/* WME Access Category Indices (ACIs) */ 636#define AC_BE 0 /* Best Effort */ 637#define AC_BK 1 /* Background */ 638#define AC_VI 2 /* Video */ 639#define AC_VO 3 /* Voice */ 640#define AC_COUNT 4 /* number of ACs */ 641 642typedef uint8 ac_bitmap_t; /* AC bitmap of (1 << AC_xx) */ 643 644#define AC_BITMAP_NONE 0x0 /* No ACs */ 645#define AC_BITMAP_ALL 0xf /* All ACs */ 646#define AC_BITMAP_TST(ab, ac) (((ab) & (1 << (ac))) != 0) 647#define AC_BITMAP_SET(ab, ac) (((ab) |= (1 << (ac)))) 648#define AC_BITMAP_RESET(ab, ac) (((ab) &= ~(1 << (ac)))) 649 650/* WME Information Element (IE) */ 651BWL_PRE_PACKED_STRUCT struct wme_ie { 652 uint8 oui[3]; 653 uint8 type; 654 uint8 subtype; 655 uint8 version; 656 uint8 qosinfo; 657} BWL_POST_PACKED_STRUCT; 658typedef struct wme_ie wme_ie_t; 659#define WME_IE_LEN 7 /* WME IE length */ 660 661BWL_PRE_PACKED_STRUCT struct edcf_acparam { 662 uint8 ACI; 663 uint8 ECW; 664 uint16 TXOP; /* stored in network order (ls octet first) */ 665} BWL_POST_PACKED_STRUCT; 666typedef struct edcf_acparam edcf_acparam_t; 667 668/* WME Parameter Element (PE) */ 669BWL_PRE_PACKED_STRUCT struct wme_param_ie { 670 uint8 oui[3]; 671 uint8 type; 672 uint8 subtype; 673 uint8 version; 674 uint8 qosinfo; 675 uint8 rsvd; 676 edcf_acparam_t acparam[AC_COUNT]; 677} BWL_POST_PACKED_STRUCT; 678typedef struct wme_param_ie wme_param_ie_t; 679#define WME_PARAM_IE_LEN 24 /* WME Parameter IE length */ 680 681/* QoS Info field for IE as sent from AP */ 682#define WME_QI_AP_APSD_MASK 0x80 /* U-APSD Supported mask */ 683#define WME_QI_AP_APSD_SHIFT 7 /* U-APSD Supported shift */ 684#define WME_QI_AP_COUNT_MASK 0x0f /* Parameter set count mask */ 685#define WME_QI_AP_COUNT_SHIFT 0 /* Parameter set count shift */ 686 687/* QoS Info field for IE as sent from STA */ 688#define WME_QI_STA_MAXSPLEN_MASK 0x60 /* Max Service Period Length mask */ 689#define WME_QI_STA_MAXSPLEN_SHIFT 5 /* Max Service Period Length shift */ 690#define WME_QI_STA_APSD_ALL_MASK 0xf /* APSD all AC bits mask */ 691#define WME_QI_STA_APSD_ALL_SHIFT 0 /* APSD all AC bits shift */ 692#define WME_QI_STA_APSD_BE_MASK 0x8 /* APSD AC_BE mask */ 693#define WME_QI_STA_APSD_BE_SHIFT 3 /* APSD AC_BE shift */ 694#define WME_QI_STA_APSD_BK_MASK 0x4 /* APSD AC_BK mask */ 695#define WME_QI_STA_APSD_BK_SHIFT 2 /* APSD AC_BK shift */ 696#define WME_QI_STA_APSD_VI_MASK 0x2 /* APSD AC_VI mask */ 697#define WME_QI_STA_APSD_VI_SHIFT 1 /* APSD AC_VI shift */ 698#define WME_QI_STA_APSD_VO_MASK 0x1 /* APSD AC_VO mask */ 699#define WME_QI_STA_APSD_VO_SHIFT 0 /* APSD AC_VO shift */ 700 701/* ACI */ 702#define EDCF_AIFSN_MIN 1 /* AIFSN minimum value */ 703#define EDCF_AIFSN_MAX 15 /* AIFSN maximum value */ 704#define EDCF_AIFSN_MASK 0x0f /* AIFSN mask */ 705#define EDCF_ACM_MASK 0x10 /* ACM mask */ 706#define EDCF_ACI_MASK 0x60 /* ACI mask */ 707#define EDCF_ACI_SHIFT 5 /* ACI shift */ 708#define EDCF_AIFSN_SHIFT 12 /* 4 MSB(0xFFF) in ifs_ctl for AC idx */ 709 710/* ECW */ 711#define EDCF_ECW_MIN 0 /* cwmin/cwmax exponent minimum value */ 712#define EDCF_ECW_MAX 15 /* cwmin/cwmax exponent maximum value */ 713#define EDCF_ECW2CW(exp) ((1 << (exp)) - 1) 714#define EDCF_ECWMIN_MASK 0x0f /* cwmin exponent form mask */ 715#define EDCF_ECWMAX_MASK 0xf0 /* cwmax exponent form mask */ 716#define EDCF_ECWMAX_SHIFT 4 /* cwmax exponent form shift */ 717 718/* TXOP */ 719#define EDCF_TXOP_MIN 0 /* TXOP minimum value */ 720#define EDCF_TXOP_MAX 65535 /* TXOP maximum value */ 721#define EDCF_TXOP2USEC(txop) ((txop) << 5) 722 723/* Default BE ACI value for non-WME connection STA */ 724#define NON_EDCF_AC_BE_ACI_STA 0x02 725 726/* Default EDCF parameters that AP advertises for STA to use; WMM draft Table 12 */ 727#define EDCF_AC_BE_ACI_STA 0x03 /* STA ACI value for best effort AC */ 728#define EDCF_AC_BE_ECW_STA 0xA4 /* STA ECW value for best effort AC */ 729#define EDCF_AC_BE_TXOP_STA 0x0000 /* STA TXOP value for best effort AC */ 730#define EDCF_AC_BK_ACI_STA 0x27 /* STA ACI value for background AC */ 731#define EDCF_AC_BK_ECW_STA 0xA4 /* STA ECW value for background AC */ 732#define EDCF_AC_BK_TXOP_STA 0x0000 /* STA TXOP value for background AC */ 733#define EDCF_AC_VI_ACI_STA 0x42 /* STA ACI value for video AC */ 734#define EDCF_AC_VI_ECW_STA 0x43 /* STA ECW value for video AC */ 735#define EDCF_AC_VI_TXOP_STA 0x005e /* STA TXOP value for video AC */ 736#define EDCF_AC_VO_ACI_STA 0x62 /* STA ACI value for audio AC */ 737#define EDCF_AC_VO_ECW_STA 0x32 /* STA ECW value for audio AC */ 738#define EDCF_AC_VO_TXOP_STA 0x002f /* STA TXOP value for audio AC */ 739 740/* Default EDCF parameters that AP uses; WMM draft Table 14 */ 741#define EDCF_AC_BE_ACI_AP 0x03 /* AP ACI value for best effort AC */ 742#define EDCF_AC_BE_ECW_AP 0x64 /* AP ECW value for best effort AC */ 743#define EDCF_AC_BE_TXOP_AP 0x0000 /* AP TXOP value for best effort AC */ 744#define EDCF_AC_BK_ACI_AP 0x27 /* AP ACI value for background AC */ 745#define EDCF_AC_BK_ECW_AP 0xA4 /* AP ECW value for background AC */ 746#define EDCF_AC_BK_TXOP_AP 0x0000 /* AP TXOP value for background AC */ 747#define EDCF_AC_VI_ACI_AP 0x41 /* AP ACI value for video AC */ 748#define EDCF_AC_VI_ECW_AP 0x43 /* AP ECW value for video AC */ 749#define EDCF_AC_VI_TXOP_AP 0x005e /* AP TXOP value for video AC */ 750#define EDCF_AC_VO_ACI_AP 0x61 /* AP ACI value for audio AC */ 751#define EDCF_AC_VO_ECW_AP 0x32 /* AP ECW value for audio AC */ 752#define EDCF_AC_VO_TXOP_AP 0x002f /* AP TXOP value for audio AC */ 753 754/* EDCA Parameter IE */ 755BWL_PRE_PACKED_STRUCT struct edca_param_ie { 756 uint8 qosinfo; 757 uint8 rsvd; 758 edcf_acparam_t acparam[AC_COUNT]; 759} BWL_POST_PACKED_STRUCT; 760typedef struct edca_param_ie edca_param_ie_t; 761#define EDCA_PARAM_IE_LEN 18 /* EDCA Parameter IE length */ 762 763/* QoS Capability IE */ 764BWL_PRE_PACKED_STRUCT struct qos_cap_ie { 765 uint8 qosinfo; 766} BWL_POST_PACKED_STRUCT; 767typedef struct qos_cap_ie qos_cap_ie_t; 768 769BWL_PRE_PACKED_STRUCT struct dot11_qbss_load_ie { 770 uint8 id; /* 11, DOT11_MNG_QBSS_LOAD_ID */ 771 uint8 length; 772 uint16 station_count; /* total number of STAs associated */ 773 uint8 channel_utilization; /* % of time, normalized to 255, QAP sensed medium busy */ 774 uint16 aac; /* available admission capacity */ 775} BWL_POST_PACKED_STRUCT; 776typedef struct dot11_qbss_load_ie dot11_qbss_load_ie_t; 777#define BSS_LOAD_IE_SIZE 7 /* BSS load IE size */ 778 779/* nom_msdu_size */ 780#define FIXED_MSDU_SIZE 0x8000 /* MSDU size is fixed */ 781#define MSDU_SIZE_MASK 0x7fff /* (Nominal or fixed) MSDU size */ 782 783/* surplus_bandwidth */ 784/* Represented as 3 bits of integer, binary point, 13 bits fraction */ 785#define INTEGER_SHIFT 13 /* integer shift */ 786#define FRACTION_MASK 0x1FFF /* fraction mask */ 787 788/* Management Notification Frame */ 789BWL_PRE_PACKED_STRUCT struct dot11_management_notification { 790 uint8 category; /* DOT11_ACTION_NOTIFICATION */ 791 uint8 action; 792 uint8 token; 793 uint8 status; 794 uint8 data[1]; /* Elements */ 795} BWL_POST_PACKED_STRUCT; 796#define DOT11_MGMT_NOTIFICATION_LEN 4 /* Fixed length */ 797 798/* Timeout Interval IE */ 799BWL_PRE_PACKED_STRUCT struct ti_ie { 800 uint8 ti_type; 801 uint32 ti_val; 802} BWL_POST_PACKED_STRUCT; 803typedef struct ti_ie ti_ie_t; 804#define TI_TYPE_REASSOC_DEADLINE 1 805#define TI_TYPE_KEY_LIFETIME 2 806 807/* WME Action Codes */ 808#define WME_ADDTS_REQUEST 0 /* WME ADDTS request */ 809#define WME_ADDTS_RESPONSE 1 /* WME ADDTS response */ 810#define WME_DELTS_REQUEST 2 /* WME DELTS request */ 811 812/* WME Setup Response Status Codes */ 813#define WME_ADMISSION_ACCEPTED 0 /* WME admission accepted */ 814#define WME_INVALID_PARAMETERS 1 /* WME invalide parameters */ 815#define WME_ADMISSION_REFUSED 3 /* WME admission refused */ 816 817/* Macro to take a pointer to a beacon or probe response 818 * body and return the char* pointer to the SSID info element 819 */ 820#define BCN_PRB_SSID(body) ((char*)(body) + DOT11_BCN_PRB_LEN) 821 822/* Authentication frame payload constants */ 823#define DOT11_OPEN_SYSTEM 0 /* d11 open authentication */ 824#define DOT11_SHARED_KEY 1 /* d11 shared authentication */ 825#define DOT11_FAST_BSS 2 /* d11 fast bss authentication */ 826#define DOT11_CHALLENGE_LEN 128 /* d11 challenge text length */ 827 828/* Frame control macros */ 829#define FC_PVER_MASK 0x3 /* PVER mask */ 830#define FC_PVER_SHIFT 0 /* PVER shift */ 831#define FC_TYPE_MASK 0xC /* type mask */ 832#define FC_TYPE_SHIFT 2 /* type shift */ 833#define FC_SUBTYPE_MASK 0xF0 /* subtype mask */ 834#define FC_SUBTYPE_SHIFT 4 /* subtype shift */ 835#define FC_TODS 0x100 /* to DS */ 836#define FC_TODS_SHIFT 8 /* to DS shift */ 837#define FC_FROMDS 0x200 /* from DS */ 838#define FC_FROMDS_SHIFT 9 /* from DS shift */ 839#define FC_MOREFRAG 0x400 /* more frag. */ 840#define FC_MOREFRAG_SHIFT 10 /* more frag. shift */ 841#define FC_RETRY 0x800 /* retry */ 842#define FC_RETRY_SHIFT 11 /* retry shift */ 843#define FC_PM 0x1000 /* PM */ 844#define FC_PM_SHIFT 12 /* PM shift */ 845#define FC_MOREDATA 0x2000 /* more data */ 846#define FC_MOREDATA_SHIFT 13 /* more data shift */ 847#define FC_WEP 0x4000 /* WEP */ 848#define FC_WEP_SHIFT 14 /* WEP shift */ 849#define FC_ORDER 0x8000 /* order */ 850#define FC_ORDER_SHIFT 15 /* order shift */ 851 852/* sequence control macros */ 853#define SEQNUM_SHIFT 4 /* seq. number shift */ 854#define SEQNUM_MAX 0x1000 /* max seqnum + 1 */ 855#define FRAGNUM_MASK 0xF /* frag. number mask */ 856 857/* Frame Control type/subtype defs */ 858 859/* FC Types */ 860#define FC_TYPE_MNG 0 /* management type */ 861#define FC_TYPE_CTL 1 /* control type */ 862#define FC_TYPE_DATA 2 /* data type */ 863 864/* Management Subtypes */ 865#define FC_SUBTYPE_ASSOC_REQ 0 /* assoc. request */ 866#define FC_SUBTYPE_ASSOC_RESP 1 /* assoc. response */ 867#define FC_SUBTYPE_REASSOC_REQ 2 /* reassoc. request */ 868#define FC_SUBTYPE_REASSOC_RESP 3 /* reassoc. response */ 869#define FC_SUBTYPE_PROBE_REQ 4 /* probe request */ 870#define FC_SUBTYPE_PROBE_RESP 5 /* probe response */ 871#define FC_SUBTYPE_BEACON 8 /* beacon */ 872#define FC_SUBTYPE_ATIM 9 /* ATIM */ 873#define FC_SUBTYPE_DISASSOC 10 /* disassoc. */ 874#define FC_SUBTYPE_AUTH 11 /* authentication */ 875#define FC_SUBTYPE_DEAUTH 12 /* de-authentication */ 876#define FC_SUBTYPE_ACTION 13 /* action */ 877#define FC_SUBTYPE_ACTION_NOACK 14 /* action no-ack */ 878 879/* Control Subtypes */ 880#define FC_SUBTYPE_CTL_WRAPPER 7 /* Control Wrapper */ 881#define FC_SUBTYPE_BLOCKACK_REQ 8 /* Block Ack Req */ 882#define FC_SUBTYPE_BLOCKACK 9 /* Block Ack */ 883#define FC_SUBTYPE_PS_POLL 10 /* PS poll */ 884#define FC_SUBTYPE_RTS 11 /* RTS */ 885#define FC_SUBTYPE_CTS 12 /* CTS */ 886#define FC_SUBTYPE_ACK 13 /* ACK */ 887#define FC_SUBTYPE_CF_END 14 /* CF-END */ 888#define FC_SUBTYPE_CF_END_ACK 15 /* CF-END ACK */ 889 890/* Data Subtypes */ 891#define FC_SUBTYPE_DATA 0 /* Data */ 892#define FC_SUBTYPE_DATA_CF_ACK 1 /* Data + CF-ACK */ 893#define FC_SUBTYPE_DATA_CF_POLL 2 /* Data + CF-Poll */ 894#define FC_SUBTYPE_DATA_CF_ACK_POLL 3 /* Data + CF-Ack + CF-Poll */ 895#define FC_SUBTYPE_NULL 4 /* Null */ 896#define FC_SUBTYPE_CF_ACK 5 /* CF-Ack */ 897#define FC_SUBTYPE_CF_POLL 6 /* CF-Poll */ 898#define FC_SUBTYPE_CF_ACK_POLL 7 /* CF-Ack + CF-Poll */ 899#define FC_SUBTYPE_QOS_DATA 8 /* QoS Data */ 900#define FC_SUBTYPE_QOS_DATA_CF_ACK 9 /* QoS Data + CF-Ack */ 901#define FC_SUBTYPE_QOS_DATA_CF_POLL 10 /* QoS Data + CF-Poll */ 902#define FC_SUBTYPE_QOS_DATA_CF_ACK_POLL 11 /* QoS Data + CF-Ack + CF-Poll */ 903#define FC_SUBTYPE_QOS_NULL 12 /* QoS Null */ 904#define FC_SUBTYPE_QOS_CF_POLL 14 /* QoS CF-Poll */ 905#define FC_SUBTYPE_QOS_CF_ACK_POLL 15 /* QoS CF-Ack + CF-Poll */ 906 907/* Data Subtype Groups */ 908#define FC_SUBTYPE_ANY_QOS(s) (((s) & 8) != 0) 909#define FC_SUBTYPE_ANY_NULL(s) (((s) & 4) != 0) 910#define FC_SUBTYPE_ANY_CF_POLL(s) (((s) & 2) != 0) 911#define FC_SUBTYPE_ANY_CF_ACK(s) (((s) & 1) != 0) 912#define FC_SUBTYPE_ANY_PSPOLL(s) (((s) & 10) != 0) 913 914/* Type/Subtype Combos */ 915#define FC_KIND_MASK (FC_TYPE_MASK | FC_SUBTYPE_MASK) /* FC kind mask */ 916 917#define FC_KIND(t, s) (((t) << FC_TYPE_SHIFT) | ((s) << FC_SUBTYPE_SHIFT)) /* FC kind */ 918 919#define FC_SUBTYPE(fc) (((fc) & FC_SUBTYPE_MASK) >> FC_SUBTYPE_SHIFT) /* Subtype from FC */ 920#define FC_TYPE(fc) (((fc) & FC_TYPE_MASK) >> FC_TYPE_SHIFT) /* Type from FC */ 921 922#define FC_ASSOC_REQ FC_KIND(FC_TYPE_MNG, FC_SUBTYPE_ASSOC_REQ) /* assoc. request */ 923#define FC_ASSOC_RESP FC_KIND(FC_TYPE_MNG, FC_SUBTYPE_ASSOC_RESP) /* assoc. response */ 924#define FC_REASSOC_REQ FC_KIND(FC_TYPE_MNG, FC_SUBTYPE_REASSOC_REQ) /* reassoc. request */ 925#define FC_REASSOC_RESP FC_KIND(FC_TYPE_MNG, FC_SUBTYPE_REASSOC_RESP) /* reassoc. response */ 926#define FC_PROBE_REQ FC_KIND(FC_TYPE_MNG, FC_SUBTYPE_PROBE_REQ) /* probe request */ 927#define FC_PROBE_RESP FC_KIND(FC_TYPE_MNG, FC_SUBTYPE_PROBE_RESP) /* probe response */ 928#define FC_BEACON FC_KIND(FC_TYPE_MNG, FC_SUBTYPE_BEACON) /* beacon */ 929#define FC_DISASSOC FC_KIND(FC_TYPE_MNG, FC_SUBTYPE_DISASSOC) /* disassoc */ 930#define FC_AUTH FC_KIND(FC_TYPE_MNG, FC_SUBTYPE_AUTH) /* authentication */ 931#define FC_DEAUTH FC_KIND(FC_TYPE_MNG, FC_SUBTYPE_DEAUTH) /* deauthentication */ 932#define FC_ACTION FC_KIND(FC_TYPE_MNG, FC_SUBTYPE_ACTION) /* action */ 933#define FC_ACTION_NOACK FC_KIND(FC_TYPE_MNG, FC_SUBTYPE_ACTION_NOACK) /* action no-ack */ 934 935#define FC_CTL_WRAPPER FC_KIND(FC_TYPE_CTL, FC_SUBTYPE_CTL_WRAPPER) /* Control Wrapper */ 936#define FC_BLOCKACK_REQ FC_KIND(FC_TYPE_CTL, FC_SUBTYPE_BLOCKACK_REQ) /* Block Ack Req */ 937#define FC_BLOCKACK FC_KIND(FC_TYPE_CTL, FC_SUBTYPE_BLOCKACK) /* Block Ack */ 938#define FC_PS_POLL FC_KIND(FC_TYPE_CTL, FC_SUBTYPE_PS_POLL) /* PS poll */ 939#define FC_RTS FC_KIND(FC_TYPE_CTL, FC_SUBTYPE_RTS) /* RTS */ 940#define FC_CTS FC_KIND(FC_TYPE_CTL, FC_SUBTYPE_CTS) /* CTS */ 941#define FC_ACK FC_KIND(FC_TYPE_CTL, FC_SUBTYPE_ACK) /* ACK */ 942#define FC_CF_END FC_KIND(FC_TYPE_CTL, FC_SUBTYPE_CF_END) /* CF-END */ 943#define FC_CF_END_ACK FC_KIND(FC_TYPE_CTL, FC_SUBTYPE_CF_END_ACK) /* CF-END ACK */ 944 945#define FC_DATA FC_KIND(FC_TYPE_DATA, FC_SUBTYPE_DATA) /* data */ 946#define FC_NULL_DATA FC_KIND(FC_TYPE_DATA, FC_SUBTYPE_NULL) /* null data */ 947#define FC_DATA_CF_ACK FC_KIND(FC_TYPE_DATA, FC_SUBTYPE_DATA_CF_ACK) /* data CF ACK */ 948#define FC_QOS_DATA FC_KIND(FC_TYPE_DATA, FC_SUBTYPE_QOS_DATA) /* QoS data */ 949#define FC_QOS_NULL FC_KIND(FC_TYPE_DATA, FC_SUBTYPE_QOS_NULL) /* QoS null */ 950 951/* QoS Control Field */ 952 953/* 802.1D Priority */ 954#define QOS_PRIO_SHIFT 0 /* QoS priority shift */ 955#define QOS_PRIO_MASK 0x0007 /* QoS priority mask */ 956#define QOS_PRIO(qos) (((qos) & QOS_PRIO_MASK) >> QOS_PRIO_SHIFT) /* QoS priority */ 957 958/* Traffic Identifier */ 959#define QOS_TID_SHIFT 0 /* QoS TID shift */ 960#define QOS_TID_MASK 0x000f /* QoS TID mask */ 961#define QOS_TID(qos) (((qos) & QOS_TID_MASK) >> QOS_TID_SHIFT) /* QoS TID */ 962 963/* End of Service Period (U-APSD) */ 964#define QOS_EOSP_SHIFT 4 /* QoS End of Service Period shift */ 965#define QOS_EOSP_MASK 0x0010 /* QoS End of Service Period mask */ 966#define QOS_EOSP(qos) (((qos) & QOS_EOSP_MASK) >> QOS_EOSP_SHIFT) /* Qos EOSP */ 967 968/* Ack Policy */ 969#define QOS_ACK_NORMAL_ACK 0 /* Normal Ack */ 970#define QOS_ACK_NO_ACK 1 /* No Ack (eg mcast) */ 971#define QOS_ACK_NO_EXP_ACK 2 /* No Explicit Ack */ 972#define QOS_ACK_BLOCK_ACK 3 /* Block Ack */ 973#define QOS_ACK_SHIFT 5 /* QoS ACK shift */ 974#define QOS_ACK_MASK 0x0060 /* QoS ACK mask */ 975#define QOS_ACK(qos) (((qos) & QOS_ACK_MASK) >> QOS_ACK_SHIFT) /* QoS ACK */ 976 977/* A-MSDU flag */ 978#define QOS_AMSDU_SHIFT 7 /* AMSDU shift */ 979#define QOS_AMSDU_MASK 0x0080 /* AMSDU mask */ 980 981/* Management Frames */ 982 983/* Management Frame Constants */ 984 985/* Fixed fields */ 986#define DOT11_MNG_AUTH_ALGO_LEN 2 /* d11 management auth. algo. length */ 987#define DOT11_MNG_AUTH_SEQ_LEN 2 /* d11 management auth. seq. length */ 988#define DOT11_MNG_BEACON_INT_LEN 2 /* d11 management beacon interval length */ 989#define DOT11_MNG_CAP_LEN 2 /* d11 management cap. length */ 990#define DOT11_MNG_AP_ADDR_LEN 6 /* d11 management AP address length */ 991#define DOT11_MNG_LISTEN_INT_LEN 2 /* d11 management listen interval length */ 992#define DOT11_MNG_REASON_LEN 2 /* d11 management reason length */ 993#define DOT11_MNG_AID_LEN 2 /* d11 management AID length */ 994#define DOT11_MNG_STATUS_LEN 2 /* d11 management status length */ 995#define DOT11_MNG_TIMESTAMP_LEN 8 /* d11 management timestamp length */ 996 997/* DUR/ID field in assoc resp is 0xc000 | AID */ 998#define DOT11_AID_MASK 0x3fff /* d11 AID mask */ 999 1000/* Reason Codes */ 1001#define DOT11_RC_RESERVED 0 /* d11 RC reserved */ 1002#define DOT11_RC_UNSPECIFIED 1 /* Unspecified reason */ 1003#define DOT11_RC_AUTH_INVAL 2 /* Previous authentication no longer valid */ 1004#define DOT11_RC_DEAUTH_LEAVING 3 /* Deauthenticated because sending station 1005 * is leaving (or has left) IBSS or ESS 1006 */ 1007#define DOT11_RC_INACTIVITY 4 /* Disassociated due to inactivity */ 1008#define DOT11_RC_BUSY 5 /* Disassociated because AP is unable to handle 1009 * all currently associated stations 1010 */ 1011#define DOT11_RC_INVAL_CLASS_2 6 /* Class 2 frame received from 1012 * nonauthenticated station 1013 */ 1014#define DOT11_RC_INVAL_CLASS_3 7 /* Class 3 frame received from 1015 * nonassociated station 1016 */ 1017#define DOT11_RC_DISASSOC_LEAVING 8 /* Disassociated because sending station is 1018 * leaving (or has left) BSS 1019 */ 1020#define DOT11_RC_NOT_AUTH 9 /* Station requesting (re)association is not 1021 * authenticated with responding station 1022 */ 1023#define DOT11_RC_BAD_PC 10 /* Unacceptable power capability element */ 1024#define DOT11_RC_BAD_CHANNELS 11 /* Unacceptable supported channels element */ 1025/* 12 is unused */ 1026 1027/* 32-39 are QSTA specific reasons added in 11e */ 1028#define DOT11_RC_UNSPECIFIED_QOS 32 /* unspecified QoS-related reason */ 1029#define DOT11_RC_INSUFFCIENT_BW 33 /* QAP lacks sufficient bandwidth */ 1030#define DOT11_RC_EXCESSIVE_FRAMES 34 /* excessive number of frames need ack */ 1031#define DOT11_RC_TX_OUTSIDE_TXOP 35 /* transmitting outside the limits of txop */ 1032#define DOT11_RC_LEAVING_QBSS 36 /* QSTA is leaving the QBSS (or restting) */ 1033#define DOT11_RC_BAD_MECHANISM 37 /* does not want to use the mechanism */ 1034#define DOT11_RC_SETUP_NEEDED 38 /* mechanism needs a setup */ 1035#define DOT11_RC_TIMEOUT 39 /* timeout */ 1036 1037#define DOT11_RC_MAX 23 /* Reason codes > 23 are reserved */ 1038 1039#define DOT11_RC_TDLS_PEER_UNREACH 25 1040#define DOT11_RC_TDLS_DOWN_UNSPECIFIED 26 1041 1042/* Status Codes */ 1043#define DOT11_SC_SUCCESS 0 /* Successful */ 1044#define DOT11_SC_FAILURE 1 /* Unspecified failure */ 1045#define DOT11_SC_TDLS_WAKEUP_SCH_ALT 2 /* TDLS wakeup schedule rejected but alternative */ 1046 /* schedule provided */ 1047#define DOT11_SC_TDLS_WAKEUP_SCH_REJ 3 /* TDLS wakeup schedule rejected */ 1048#define DOT11_SC_TDLS_SEC_DISABLED 5 /* TDLS Security disabled */ 1049#define DOT11_SC_LIFETIME_REJ 6 /* Unacceptable lifetime */ 1050#define DOT11_SC_NOT_SAME_BSS 7 /* Not in same BSS */ 1051#define DOT11_SC_CAP_MISMATCH 10 /* Cannot support all requested 1052 * capabilities in the Capability 1053 * Information field 1054 */ 1055#define DOT11_SC_REASSOC_FAIL 11 /* Reassociation denied due to inability 1056 * to confirm that association exists 1057 */ 1058#define DOT11_SC_ASSOC_FAIL 12 /* Association denied due to reason 1059 * outside the scope of this standard 1060 */ 1061#define DOT11_SC_AUTH_MISMATCH 13 /* Responding station does not support 1062 * the specified authentication 1063 * algorithm 1064 */ 1065#define DOT11_SC_AUTH_SEQ 14 /* Received an Authentication frame 1066 * with authentication transaction 1067 * sequence number out of expected 1068 * sequence 1069 */ 1070#define DOT11_SC_AUTH_CHALLENGE_FAIL 15 /* Authentication rejected because of 1071 * challenge failure 1072 */ 1073#define DOT11_SC_AUTH_TIMEOUT 16 /* Authentication rejected due to timeout 1074 * waiting for next frame in sequence 1075 */ 1076#define DOT11_SC_ASSOC_BUSY_FAIL 17 /* Association denied because AP is 1077 * unable to handle additional 1078 * associated stations 1079 */ 1080#define DOT11_SC_ASSOC_RATE_MISMATCH 18 /* Association denied due to requesting 1081 * station not supporting all of the 1082 * data rates in the BSSBasicRateSet 1083 * parameter 1084 */ 1085#define DOT11_SC_ASSOC_SHORT_REQUIRED 19 /* Association denied due to requesting 1086 * station not supporting the Short 1087 * Preamble option 1088 */ 1089#define DOT11_SC_ASSOC_PBCC_REQUIRED 20 /* Association denied due to requesting 1090 * station not supporting the PBCC 1091 * Modulation option 1092 */ 1093#define DOT11_SC_ASSOC_AGILITY_REQUIRED 21 /* Association denied due to requesting 1094 * station not supporting the Channel 1095 * Agility option 1096 */ 1097#define DOT11_SC_ASSOC_SPECTRUM_REQUIRED 22 /* Association denied because Spectrum 1098 * Management capability is required. 1099 */ 1100#define DOT11_SC_ASSOC_BAD_POWER_CAP 23 /* Association denied because the info 1101 * in the Power Cap element is 1102 * unacceptable. 1103 */ 1104#define DOT11_SC_ASSOC_BAD_SUP_CHANNELS 24 /* Association denied because the info 1105 * in the Supported Channel element is 1106 * unacceptable 1107 */ 1108#define DOT11_SC_ASSOC_SHORTSLOT_REQUIRED 25 /* Association denied due to requesting 1109 * station not supporting the Short Slot 1110 * Time option 1111 */ 1112#define DOT11_SC_ASSOC_ERPBCC_REQUIRED 26 /* Association denied due to requesting 1113 * station not supporting the ER-PBCC 1114 * Modulation option 1115 */ 1116#define DOT11_SC_ASSOC_DSSSOFDM_REQUIRED 27 /* Association denied due to requesting 1117 * station not supporting the DSS-OFDM 1118 * option 1119 */ 1120#define DOT11_SC_ASSOC_R0KH_UNREACHABLE 28 /* Association denied due to AP 1121 * being unable to reach the R0 Key Holder 1122 */ 1123#define DOT11_SC_ASSOC_TRY_LATER 30 /* Association denied temporarily, try again later 1124 */ 1125#define DOT11_SC_ASSOC_MFP_VIOLATION 31 /* Association denied due to Robust Management 1126 * frame policy violation 1127 */ 1128#define DOT11_SC_ASSOC_HT_REQUIRED 32 /* Association denied because the requesting 1129 * station does not support HT features 1130 */ 1131 1132#define DOT11_SC_DECLINED 37 /* request declined */ 1133#define DOT11_SC_INVALID_PARAMS 38 /* One or more params have invalid values */ 1134#define DOT11_SC_INVALID_PAIRWISE_CIPHER 42 /* invalid pairwise cipher */ 1135#define DOT11_SC_INVALID_AKMP 43 /* Association denied due to invalid AKMP */ 1136#define DOT11_SC_INVALID_RSNIE_CAP 45 /* invalid RSN IE capabilities */ 1137#define DOT11_SC_DLS_NOT_ALLOWED 48 /* DLS is not allowed in the BSS by policy */ 1138#define DOT11_SC_INVALID_PMKID 53 /* Association denied due to invalid PMKID */ 1139#define DOT11_SC_INVALID_MDID 54 /* Association denied due to invalid MDID */ 1140#define DOT11_SC_INVALID_FTIE 55 /* Association denied due to invalid FTIE */ 1141 1142#define DOT11_SC_ADV_PROTO_NOT_SUPPORTED 59 /* ad proto not supported */ 1143#define DOT11_SC_NO_OUTSTAND_REQ 60 /* no outstanding req */ 1144#define DOT11_SC_RSP_NOT_RX_FROM_SERVER 61 /* no response from server */ 1145#define DOT11_SC_TIMEOUT 62 /* timeout */ 1146#define DOT11_SC_QUERY_RSP_TOO_LARGE 63 /* query rsp too large */ 1147#define DOT11_SC_SERVER_UNREACHABLE 65 /* server unreachable */ 1148 1149#define DOT11_SC_UNEXP_MSG 70 /* Unexpected message */ 1150#define DOT11_SC_INVALID_SNONCE 71 /* Invalid SNonce */ 1151#define DOT11_SC_INVALID_RSNIE 72 /* Invalid contents of RSNIE */ 1152#define DOT11_SC_ASSOC_VHT_REQUIRED 104 /* Association denied because the requesting 1153 * station does not support VHT features. 1154 */ 1155 1156#define DOT11_SC_TRANSMIT_FAILURE 79 /* transmission failure */ 1157 1158/* Info Elts, length of INFORMATION portion of Info Elts */ 1159#define DOT11_MNG_DS_PARAM_LEN 1 /* d11 management DS parameter length */ 1160#define DOT11_MNG_IBSS_PARAM_LEN 2 /* d11 management IBSS parameter length */ 1161 1162/* TIM Info element has 3 bytes fixed info in INFORMATION field, 1163 * followed by 1 to 251 bytes of Partial Virtual Bitmap 1164 */ 1165#define DOT11_MNG_TIM_FIXED_LEN 3 /* d11 management TIM fixed length */ 1166#define DOT11_MNG_TIM_DTIM_COUNT 0 /* d11 management DTIM count */ 1167#define DOT11_MNG_TIM_DTIM_PERIOD 1 /* d11 management DTIM period */ 1168#define DOT11_MNG_TIM_BITMAP_CTL 2 /* d11 management TIM BITMAP control */ 1169#define DOT11_MNG_TIM_PVB 3 /* d11 management TIM PVB */ 1170 1171/* TLV defines */ 1172#define TLV_TAG_OFF 0 /* tag offset */ 1173#define TLV_LEN_OFF 1 /* length offset */ 1174#define TLV_HDR_LEN 2 /* header length */ 1175#define TLV_BODY_OFF 2 /* body offset */ 1176 1177/* Management Frame Information Element IDs */ 1178#define DOT11_MNG_SSID_ID 0 /* d11 management SSID id */ 1179#define DOT11_MNG_RATES_ID 1 /* d11 management rates id */ 1180#define DOT11_MNG_FH_PARMS_ID 2 /* d11 management FH parameter id */ 1181#define DOT11_MNG_DS_PARMS_ID 3 /* d11 management DS parameter id */ 1182#define DOT11_MNG_CF_PARMS_ID 4 /* d11 management CF parameter id */ 1183#define DOT11_MNG_TIM_ID 5 /* d11 management TIM id */ 1184#define DOT11_MNG_IBSS_PARMS_ID 6 /* d11 management IBSS parameter id */ 1185#define DOT11_MNG_COUNTRY_ID 7 /* d11 management country id */ 1186#define DOT11_MNG_HOPPING_PARMS_ID 8 /* d11 management hopping parameter id */ 1187#define DOT11_MNG_HOPPING_TABLE_ID 9 /* d11 management hopping table id */ 1188#define DOT11_MNG_REQUEST_ID 10 /* d11 management request id */ 1189#define DOT11_MNG_QBSS_LOAD_ID 11 /* d11 management QBSS Load id */ 1190#define DOT11_MNG_EDCA_PARAM_ID 12 /* 11E EDCA Parameter id */ 1191#define DOT11_MNG_TSPEC_ID 13 /* d11 management TSPEC id */ 1192#define DOT11_MNG_TCLAS_ID 14 /* d11 management TCLAS id */ 1193#define DOT11_MNG_CHALLENGE_ID 16 /* d11 management chanllenge id */ 1194#define DOT11_MNG_PWR_CONSTRAINT_ID 32 /* 11H PowerConstraint */ 1195#define DOT11_MNG_PWR_CAP_ID 33 /* 11H PowerCapability */ 1196#define DOT11_MNG_TPC_REQUEST_ID 34 /* 11H TPC Request */ 1197#define DOT11_MNG_TPC_REPORT_ID 35 /* 11H TPC Report */ 1198#define DOT11_MNG_SUPP_CHANNELS_ID 36 /* 11H Supported Channels */ 1199#define DOT11_MNG_CHANNEL_SWITCH_ID 37 /* 11H ChannelSwitch Announcement */ 1200#define DOT11_MNG_MEASURE_REQUEST_ID 38 /* 11H MeasurementRequest */ 1201#define DOT11_MNG_MEASURE_REPORT_ID 39 /* 11H MeasurementReport */ 1202#define DOT11_MNG_QUIET_ID 40 /* 11H Quiet */ 1203#define DOT11_MNG_IBSS_DFS_ID 41 /* 11H IBSS_DFS */ 1204#define DOT11_MNG_ERP_ID 42 /* d11 management ERP id */ 1205#define DOT11_MNG_TS_DELAY_ID 43 /* d11 management TS Delay id */ 1206#define DOT11_MNG_TCLAS_PROC_ID 44 /* d11 management TCLAS processing id */ 1207#define DOT11_MNG_HT_CAP 45 /* d11 mgmt HT cap id */ 1208#define DOT11_MNG_QOS_CAP_ID 46 /* 11E QoS Capability id */ 1209#define DOT11_MNG_NONERP_ID 47 /* d11 management NON-ERP id */ 1210#define DOT11_MNG_RSN_ID 48 /* d11 management RSN id */ 1211#define DOT11_MNG_EXT_RATES_ID 50 /* d11 management ext. rates id */ 1212#define DOT11_MNG_AP_CHREP_ID 51 /* 11k AP Channel report id */ 1213#define DOT11_MNG_NEIGHBOR_REP_ID 52 /* 11k & 11v Neighbor report id */ 1214#define DOT11_MNG_RCPI_ID 53 /* 11k RCPI */ 1215#define DOT11_MNG_MDIE_ID 54 /* 11r Mobility domain id */ 1216#define DOT11_MNG_FTIE_ID 55 /* 11r Fast Bss Transition id */ 1217#define DOT11_MNG_FT_TI_ID 56 /* 11r Timeout Interval id */ 1218#define DOT11_MNG_RDE_ID 57 /* 11r RIC Data Element id */ 1219#define DOT11_MNG_REGCLASS_ID 59 /* d11 management regulatory class id */ 1220#define DOT11_MNG_EXT_CSA_ID 60 /* d11 Extended CSA */ 1221#define DOT11_MNG_HT_ADD 61 /* d11 mgmt additional HT info */ 1222#define DOT11_MNG_EXT_CHANNEL_OFFSET 62 /* d11 mgmt ext channel offset */ 1223#define DOT11_MNG_BSS_AVR_ACCESS_DELAY_ID 63 /* 11k bss average access delay */ 1224#define DOT11_MNG_ANTENNA_ID 64 /* 11k antenna id */ 1225#define DOT11_MNG_RSNI_ID 65 /* 11k RSNI id */ 1226#define DOT11_MNG_MEASUREMENT_PILOT_TX_ID 66 /* 11k measurement pilot tx info id */ 1227#define DOT11_MNG_BSS_AVAL_ADMISSION_CAP_ID 67 /* 11k bss aval admission cap id */ 1228#define DOT11_MNG_BSS_AC_ACCESS_DELAY_ID 68 /* 11k bss AC access delay id */ 1229#define DOT11_MNG_WAPI_ID 68 /* d11 management WAPI id */ 1230#define DOT11_MNG_TIME_ADVERTISE_ID 69 /* 11p time advertisement */ 1231#define DOT11_MNG_RRM_CAP_ID 70 /* 11k radio measurement capability */ 1232#define DOT11_MNG_MULTIPLE_BSSID_ID 71 /* 11k multiple BSSID id */ 1233#define DOT11_MNG_HT_BSS_COEXINFO_ID 72 /* d11 mgmt OBSS Coexistence INFO */ 1234#define DOT11_MNG_HT_BSS_CHANNEL_REPORT_ID 73 /* d11 mgmt OBSS Intolerant Channel list */ 1235#define DOT11_MNG_HT_OBSS_ID 74 /* d11 mgmt OBSS HT info */ 1236#define DOT11_MNG_MMIE_ID 76 /* d11 mgmt MIC IE */ 1237#define DOT11_MNG_BSS_MAX_IDLE_PERIOD_ID 90 /* 11v bss max idle id */ 1238#define DOT11_MNG_TFS_REQUEST_ID 91 /* 11v tfs request id */ 1239#define DOT11_MNG_TFS_RESPONSE_ID 92 /* 11v tfs response id */ 1240#define DOT11_MNG_WNM_SLEEP_MODE_ID 93 /* 11v wnm-sleep mode id */ 1241#define DOT11_MNG_TIMBC_REQ_ID 94 /* 11v TIM broadcast request id */ 1242#define DOT11_MNG_TIMBC_RESP_ID 95 /* 11v TIM broadcast response id */ 1243#define DOT11_MNG_CHANNEL_USAGE 97 /* 11v channel usage */ 1244#define DOT11_MNG_TIME_ZONE_ID 98 /* 11v time zone */ 1245#define DOT11_MNG_DMS_REQUEST_ID 99 /* 11v dms request id */ 1246#define DOT11_MNG_DMS_RESPONSE_ID 100 /* 11v dms response id */ 1247#define DOT11_MNG_LINK_IDENTIFIER_ID 101 /* 11z TDLS Link Identifier IE */ 1248#define DOT11_MNG_WAKEUP_SCHEDULE_ID 102 /* 11z TDLS Wakeup Schedule IE */ 1249#define DOT11_MNG_CHANNEL_SWITCH_TIMING_ID 104 /* 11z TDLS Channel Switch Timing IE */ 1250#define DOT11_MNG_PTI_CONTROL_ID 105 /* 11z TDLS PTI Control IE */ 1251#define DOT11_MNG_PU_BUFFER_STATUS_ID 106 /* 11z TDLS PU Buffer Status IE */ 1252#define DOT11_MNG_INTERWORKING_ID 107 /* 11u interworking */ 1253#define DOT11_MNG_ADVERTISEMENT_ID 108 /* 11u advertisement protocol */ 1254#define DOT11_MNG_EXP_BW_REQ_ID 109 /* 11u expedited bandwith request */ 1255#define DOT11_MNG_QOS_MAP_ID 110 /* 11u QoS map set */ 1256#define DOT11_MNG_ROAM_CONSORT_ID 111 /* 11u roaming consortium */ 1257#define DOT11_MNG_EMERGCY_ALERT_ID 112 /* 11u emergency alert identifier */ 1258#define DOT11_MNG_EXT_CAP_ID 127 /* d11 mgmt ext capability */ 1259#define DOT11_MNG_VHT_CAP_ID 191 /* d11 mgmt VHT cap id */ 1260#define DOT11_MNG_VHT_OPERATION_ID 192 /* d11 mgmt VHT op id */ 1261#define DOT11_MNG_WIDE_BW_CHANNEL_SWITCH_ID 194 /* Wide BW Channel Switch IE */ 1262#define DOT11_MNG_VHT_TRANSMIT_POWER_ENVELOPE_ID 195 /* VHT transmit Power Envelope IE */ 1263#define DOT11_MNG_CHANNEL_SWITCH_WRAPPER_ID 196 /* Channel Switch Wrapper IE */ 1264#define DOT11_MNG_AID_ID 197 /* Association ID IE */ 1265#define DOT11_MNG_OPER_MODE_NOTIF_ID 199 /* d11 mgmt VHT oper mode notif */ 1266 1267 1268#define DOT11_MNG_WPA_ID 221 /* d11 management WPA id */ 1269#define DOT11_MNG_PROPR_ID 221 /* d11 management proprietary id */ 1270/* should start using this one instead of above two */ 1271#define DOT11_MNG_VS_ID 221 /* d11 management Vendor Specific IE */ 1272 1273/* Rate Defines */ 1274 1275/* Valid rates for the Supported Rates and Extended Supported Rates IEs. 1276 * Encoding is the rate in 500kbps units, rouding up for fractional values. 1277 * 802.11-2012, section 6.5.5.2, DATA_RATE parameter enumerates all the values. 1278 * The rate values cover DSSS, HR/DSSS, ERP, and OFDM phy rates. 1279 * The defines below do not cover the rates specific to 10MHz, {3, 4.5, 27}, 1280 * and 5MHz, {1.5, 2.25, 3, 4.5, 13.5}, which are not supported by Broadcom devices. 1281 */ 1282 1283#define DOT11_RATE_1M 2 /* 1 Mbps in 500kbps units */ 1284#define DOT11_RATE_2M 4 /* 2 Mbps in 500kbps units */ 1285#define DOT11_RATE_5M5 11 /* 5.5 Mbps in 500kbps units */ 1286#define DOT11_RATE_11M 22 /* 11 Mbps in 500kbps units */ 1287#define DOT11_RATE_6M 12 /* 6 Mbps in 500kbps units */ 1288#define DOT11_RATE_9M 18 /* 9 Mbps in 500kbps units */ 1289#define DOT11_RATE_12M 24 /* 12 Mbps in 500kbps units */ 1290#define DOT11_RATE_18M 36 /* 18 Mbps in 500kbps units */ 1291#define DOT11_RATE_24M 48 /* 24 Mbps in 500kbps units */ 1292#define DOT11_RATE_36M 72 /* 36 Mbps in 500kbps units */ 1293#define DOT11_RATE_48M 96 /* 48 Mbps in 500kbps units */ 1294#define DOT11_RATE_54M 108 /* 54 Mbps in 500kbps units */ 1295#define DOT11_RATE_MAX 108 /* highest rate (54 Mbps) in 500kbps units */ 1296 1297/* Supported Rates and Extended Supported Rates IEs 1298 * The supported rates octets are defined a the MSB indicatin a Basic Rate 1299 * and bits 0-6 as the rate value 1300 */ 1301#define DOT11_RATE_BASIC 0x80 /* flag for a Basic Rate */ 1302#define DOT11_RATE_MASK 0x7F /* mask for numeric part of rate */ 1303 1304/* BSS Membership Selector parameters 1305 * 802.11-2012 and 802.11ac_D4.0 sec 8.4.2.3 1306 * These selector values are advertised in Supported Rates and Extended Supported Rates IEs 1307 * in the supported rates list with the Basic rate bit set. 1308 * Constants below include the basic bit. 1309 */ 1310#define DOT11_BSS_MEMBERSHIP_HT 0xFF /* Basic 0x80 + 127, HT Required to join */ 1311#define DOT11_BSS_MEMBERSHIP_VHT 0xFE /* Basic 0x80 + 126, VHT Required to join */ 1312 1313/* ERP info element bit values */ 1314#define DOT11_MNG_ERP_LEN 1 /* ERP is currently 1 byte long */ 1315#define DOT11_MNG_NONERP_PRESENT 0x01 /* NonERP (802.11b) STAs are present 1316 *in the BSS 1317 */ 1318#define DOT11_MNG_USE_PROTECTION 0x02 /* Use protection mechanisms for 1319 *ERP-OFDM frames 1320 */ 1321#define DOT11_MNG_BARKER_PREAMBLE 0x04 /* Short Preambles: 0 == allowed, 1322 * 1 == not allowed 1323 */ 1324/* TS Delay element offset & size */ 1325#define DOT11_MGN_TS_DELAY_LEN 4 /* length of TS DELAY IE */ 1326#define TS_DELAY_FIELD_SIZE 4 /* TS DELAY field size */ 1327 1328/* Capability Information Field */ 1329#define DOT11_CAP_ESS 0x0001 /* d11 cap. ESS */ 1330#define DOT11_CAP_IBSS 0x0002 /* d11 cap. IBSS */ 1331#define DOT11_CAP_POLLABLE 0x0004 /* d11 cap. pollable */ 1332#define DOT11_CAP_POLL_RQ 0x0008 /* d11 cap. poll request */ 1333#define DOT11_CAP_PRIVACY 0x0010 /* d11 cap. privacy */ 1334#define DOT11_CAP_SHORT 0x0020 /* d11 cap. short */ 1335#define DOT11_CAP_PBCC 0x0040 /* d11 cap. PBCC */ 1336#define DOT11_CAP_AGILITY 0x0080 /* d11 cap. agility */ 1337#define DOT11_CAP_SPECTRUM 0x0100 /* d11 cap. spectrum */ 1338#define DOT11_CAP_QOS 0x0200 /* d11 cap. qos */ 1339#define DOT11_CAP_SHORTSLOT 0x0400 /* d11 cap. shortslot */ 1340#define DOT11_CAP_APSD 0x0800 /* d11 cap. apsd */ 1341#define DOT11_CAP_RRM 0x1000 /* d11 cap. 11k radio measurement */ 1342#define DOT11_CAP_CCK_OFDM 0x2000 /* d11 cap. CCK/OFDM */ 1343#define DOT11_CAP_DELAY_BA 0x4000 /* d11 cap. delayed block ack */ 1344#define DOT11_CAP_IMMEDIATE_BA 0x8000 /* d11 cap. immediate block ack */ 1345 1346/* Extended capabilities IE bitfields */ 1347/* 20/40 BSS Coexistence Management support bit position */ 1348#define DOT11_EXT_CAP_OBSS_COEX_MGMT 0 1349/* scheduled PSMP support bit position */ 1350#define DOT11_EXT_CAP_SPSMP 6 1351/* Flexible Multicast Service */ 1352#define DOT11_EXT_CAP_FMS 11 1353/* proxy ARP service support bit position */ 1354#define DOT11_EXT_CAP_PROXY_ARP 12 1355/* Traffic Filter Service */ 1356#define DOT11_EXT_CAP_TFS 16 1357/* WNM-Sleep Mode */ 1358#define DOT11_EXT_CAP_WNM_SLEEP 17 1359/* TIM Broadcast service */ 1360#define DOT11_EXT_CAP_TIMBC 18 1361/* BSS Transition Management support bit position */ 1362#define DOT11_EXT_CAP_BSSTRANS_MGMT 19 1363/* Direct Multicast Service */ 1364#define DOT11_EXT_CAP_DMS 26 1365/* Interworking support bit position */ 1366#define DOT11_EXT_CAP_IW 31 1367/* service Interval granularity bit position and mask */ 1368#define DOT11_EXT_CAP_SI 41 1369#define DOT11_EXT_CAP_SI_MASK 0x0E 1370/* WNM notification */ 1371#define DOT11_EXT_CAP_WNM_NOTIF 46 1372/* Operating mode notification - VHT (11ac D3.0 - 8.4.2.29) */ 1373#define DOT11_EXT_CAP_OPER_MODE_NOTIF 62 1374 1375/* VHT Operating mode bit fields - (11ac D3.0 - 8.4.1.50) */ 1376#define DOT11_OPER_MODE_CHANNEL_WIDTH_SHIFT 0 1377#define DOT11_OPER_MODE_CHANNEL_WIDTH_MASK 0x3 1378#define DOT11_OPER_MODE_RXNSS_SHIFT 4 1379#define DOT11_OPER_MODE_RXNSS_MASK 0x70 1380#define DOT11_OPER_MODE_RXNSS_TYPE_SHIFT 7 1381#define DOT11_OPER_MODE_RXNSS_TYPE_MASK 0x80 1382 1383#define DOT11_OPER_MODE(type, nss, chanw) (\ 1384 ((type) << DOT11_OPER_MODE_RXNSS_TYPE_SHIFT &\ 1385 DOT11_OPER_MODE_RXNSS_TYPE_MASK) |\ 1386 (((nss) - 1) << DOT11_OPER_MODE_RXNSS_SHIFT & DOT11_OPER_MODE_RXNSS_MASK) |\ 1387 ((chanw) << DOT11_OPER_MODE_CHANNEL_WIDTH_SHIFT &\ 1388 DOT11_OPER_MODE_CHANNEL_WIDTH_MASK)) 1389 1390#define DOT11_OPER_MODE_CHANNEL_WIDTH(mode) \ 1391 (((mode) & DOT11_OPER_MODE_CHANNEL_WIDTH_MASK)\ 1392 >> DOT11_OPER_MODE_CHANNEL_WIDTH_SHIFT) 1393#define DOT11_OPER_MODE_RXNSS(mode) \ 1394 ((((mode) & DOT11_OPER_MODE_RXNSS_MASK) \ 1395 >> DOT11_OPER_MODE_RXNSS_SHIFT) + 1) 1396#define DOT11_OPER_MODE_RXNSS_TYPE(mode) \ 1397 (((mode) & DOT11_OPER_MODE_RXNSS_TYPE_MASK)\ 1398 >> DOT11_OPER_MODE_RXNSS_TYPE_SHIFT) 1399 1400#define DOT11_OPER_MODE_20MHZ 0 1401#define DOT11_OPER_MODE_40MHZ 1 1402#define DOT11_OPER_MODE_80MHZ 2 1403#define DOT11_OPER_MODE_160MHZ 3 1404#define DOT11_OPER_MODE_8080MHZ 3 1405 1406#define DOT11_OPER_MODE_CHANNEL_WIDTH_20MHZ(mode) (\ 1407 ((mode) & DOT11_OPER_MODE_CHANNEL_WIDTH_MASK) == DOT11_OPER_MODE_20MHZ) 1408#define DOT11_OPER_MODE_CHANNEL_WIDTH_40MHZ(mode) (\ 1409 ((mode) & DOT11_OPER_MODE_CHANNEL_WIDTH_MASK) == DOT11_OPER_MODE_40MHZ) 1410#define DOT11_OPER_MODE_CHANNEL_WIDTH_80MHZ(mode) (\ 1411 ((mode) & DOT11_OPER_MODE_CHANNEL_WIDTH_MASK) == DOT11_OPER_MODE_80MHZ) 1412#define DOT11_OPER_MODE_CHANNEL_WIDTH_160MHZ(mode) (\ 1413 ((mode) & DOT11_OPER_MODE_CHANNEL_WIDTH_MASK) == DOT11_OPER_MODE_160MHZ) 1414#define DOT11_OPER_MODE_CHANNEL_WIDTH_8080MHZ(mode) (\ 1415 ((mode) & DOT11_OPER_MODE_CHANNEL_WIDTH_MASK) == DOT11_OPER_MODE_8080MHZ) 1416 1417/* Operating mode information element 802.11ac D3.0 - 8.4.2.168 */ 1418BWL_PRE_PACKED_STRUCT struct dot11_oper_mode_notif_ie { 1419 uint8 mode; 1420} BWL_POST_PACKED_STRUCT; 1421typedef struct dot11_oper_mode_notif_ie dot11_oper_mode_notif_ie_t; 1422 1423#define DOT11_OPER_MODE_NOTIF_IE_LEN 1 1424 1425/* Extended Capability Information Field */ 1426#define DOT11_OBSS_COEX_MNG_SUPPORT 0x01 /* 20/40 BSS Coexistence Management support */ 1427 1428/* 1429 * Action Frame Constants 1430 */ 1431#define DOT11_ACTION_HDR_LEN 2 /* action frame category + action field */ 1432#define DOT11_ACTION_CAT_OFF 0 /* category offset */ 1433#define DOT11_ACTION_ACT_OFF 1 /* action offset */ 1434 1435/* Action Category field (sec 8.4.1.11) */ 1436#define DOT11_ACTION_CAT_ERR_MASK 0x80 /* category error mask */ 1437#define DOT11_ACTION_CAT_MASK 0x7F /* category mask */ 1438#define DOT11_ACTION_CAT_SPECT_MNG 0 /* category spectrum management */ 1439#define DOT11_ACTION_CAT_QOS 1 /* category QoS */ 1440#define DOT11_ACTION_CAT_DLS 2 /* category DLS */ 1441#define DOT11_ACTION_CAT_BLOCKACK 3 /* category block ack */ 1442#define DOT11_ACTION_CAT_PUBLIC 4 /* category public */ 1443#define DOT11_ACTION_CAT_RRM 5 /* category radio measurements */ 1444#define DOT11_ACTION_CAT_FBT 6 /* category fast bss transition */ 1445#define DOT11_ACTION_CAT_HT 7 /* category for HT */ 1446#define DOT11_ACTION_CAT_SA_QUERY 8 /* security association query */ 1447#define DOT11_ACTION_CAT_PDPA 9 /* protected dual of public action */ 1448#define DOT11_ACTION_CAT_WNM 10 /* category for WNM */ 1449#define DOT11_ACTION_CAT_UWNM 11 /* category for Unprotected WNM */ 1450#define DOT11_ACTION_NOTIFICATION 17 1451#define DOT11_ACTION_CAT_VHT 21 /* VHT action */ 1452#define DOT11_ACTION_CAT_VSP 126 /* protected vendor specific */ 1453#define DOT11_ACTION_CAT_VS 127 /* category Vendor Specific */ 1454 1455/* Spectrum Management Action IDs (sec 7.4.1) */ 1456#define DOT11_SM_ACTION_M_REQ 0 /* d11 action measurement request */ 1457#define DOT11_SM_ACTION_M_REP 1 /* d11 action measurement response */ 1458#define DOT11_SM_ACTION_TPC_REQ 2 /* d11 action TPC request */ 1459#define DOT11_SM_ACTION_TPC_REP 3 /* d11 action TPC response */ 1460#define DOT11_SM_ACTION_CHANNEL_SWITCH 4 /* d11 action channel switch */ 1461#define DOT11_SM_ACTION_EXT_CSA 5 /* d11 extened CSA for 11n */ 1462 1463/* HT action ids */ 1464#define DOT11_ACTION_ID_HT_CH_WIDTH 0 /* notify channel width action id */ 1465#define DOT11_ACTION_ID_HT_MIMO_PS 1 /* mimo ps action id */ 1466 1467/* Public action ids */ 1468#define DOT11_PUB_ACTION_BSS_COEX_MNG 0 /* 20/40 Coexistence Management action id */ 1469#define DOT11_PUB_ACTION_CHANNEL_SWITCH 4 /* d11 action channel switch */ 1470 1471/* Block Ack action types */ 1472#define DOT11_BA_ACTION_ADDBA_REQ 0 /* ADDBA Req action frame type */ 1473#define DOT11_BA_ACTION_ADDBA_RESP 1 /* ADDBA Resp action frame type */ 1474#define DOT11_BA_ACTION_DELBA 2 /* DELBA action frame type */ 1475 1476/* ADDBA action parameters */ 1477#define DOT11_ADDBA_PARAM_AMSDU_SUP 0x0001 /* AMSDU supported under BA */ 1478#define DOT11_ADDBA_PARAM_POLICY_MASK 0x0002 /* policy mask(ack vs delayed) */ 1479#define DOT11_ADDBA_PARAM_POLICY_SHIFT 1 /* policy shift */ 1480#define DOT11_ADDBA_PARAM_TID_MASK 0x003c /* tid mask */ 1481#define DOT11_ADDBA_PARAM_TID_SHIFT 2 /* tid shift */ 1482#define DOT11_ADDBA_PARAM_BSIZE_MASK 0xffc0 /* buffer size mask */ 1483#define DOT11_ADDBA_PARAM_BSIZE_SHIFT 6 /* buffer size shift */ 1484 1485#define DOT11_ADDBA_POLICY_DELAYED 0 /* delayed BA policy */ 1486#define DOT11_ADDBA_POLICY_IMMEDIATE 1 /* immediate BA policy */ 1487 1488/* Fast Transition action types */ 1489#define DOT11_FT_ACTION_FT_RESERVED 0 1490#define DOT11_FT_ACTION_FT_REQ 1 /* FBT request - for over-the-DS FBT */ 1491#define DOT11_FT_ACTION_FT_RES 2 /* FBT response - for over-the-DS FBT */ 1492#define DOT11_FT_ACTION_FT_CON 3 /* FBT confirm - for OTDS with RRP */ 1493#define DOT11_FT_ACTION_FT_ACK 4 /* FBT ack */ 1494 1495/* DLS action types */ 1496#define DOT11_DLS_ACTION_REQ 0 /* DLS Request */ 1497#define DOT11_DLS_ACTION_RESP 1 /* DLS Response */ 1498#define DOT11_DLS_ACTION_TD 2 /* DLS Teardown */ 1499 1500/* Wireless Network Management (WNM) action types */ 1501#define DOT11_WNM_ACTION_EVENT_REQ 0 1502#define DOT11_WNM_ACTION_EVENT_REP 1 1503#define DOT11_WNM_ACTION_DIAG_REQ 2 1504#define DOT11_WNM_ACTION_DIAG_REP 3 1505#define DOT11_WNM_ACTION_LOC_CFG_REQ 4 1506#define DOT11_WNM_ACTION_LOC_RFG_RESP 5 1507#define DOT11_WNM_ACTION_BSSTRANS_QUERY 6 1508#define DOT11_WNM_ACTION_BSSTRANS_REQ 7 1509#define DOT11_WNM_ACTION_BSSTRANS_RESP 8 1510#define DOT11_WNM_ACTION_FMS_REQ 9 1511#define DOT11_WNM_ACTION_FMS_RESP 10 1512#define DOT11_WNM_ACTION_COL_INTRFRNCE_REQ 11 1513#define DOT11_WNM_ACTION_COL_INTRFRNCE_REP 12 1514#define DOT11_WNM_ACTION_TFS_REQ 13 1515#define DOT11_WNM_ACTION_TFS_RESP 14 1516#define DOT11_WNM_ACTION_TFS_NOTIFY 15 1517#define DOT11_WNM_ACTION_WNM_SLEEP_REQ 16 1518#define DOT11_WNM_ACTION_WNM_SLEEP_RESP 17 1519#define DOT11_WNM_ACTION_TIMBC_REQ 18 1520#define DOT11_WNM_ACTION_TIMBC_RESP 19 1521#define DOT11_WNM_ACTION_QOS_TRFC_CAP_UPD 20 1522#define DOT11_WNM_ACTION_CHAN_USAGE_REQ 21 1523#define DOT11_WNM_ACTION_CHAN_USAGE_RESP 22 1524#define DOT11_WNM_ACTION_DMS_REQ 23 1525#define DOT11_WNM_ACTION_DMS_RESP 24 1526#define DOT11_WNM_ACTION_TMNG_MEASUR_REQ 25 1527#define DOT11_WNM_ACTION_NOTFCTN_REQ 26 1528#define DOT11_WNM_ACTION_NOTFCTN_RESP 27 1529 1530/* Unprotected Wireless Network Management (WNM) action types */ 1531#define DOT11_UWNM_ACTION_TIM 0 1532#define DOT11_UWNM_ACTION_TIMING_MEASUREMENT 1 1533 1534#define DOT11_MNG_COUNTRY_ID_LEN 3 1535 1536/* VHT category action types - 802.11ac D3.0 - 8.5.23.1 */ 1537#define DOT11_VHT_ACTION_CBF 0 /* Compressed Beamforming */ 1538#define DOT11_VHT_ACTION_GID_MGMT 1 /* Group ID Management */ 1539#define DOT11_VHT_ACTION_OPER_MODE_NOTIF 2 /* Operating mode notif'n */ 1540 1541/* DLS Request frame header */ 1542BWL_PRE_PACKED_STRUCT struct dot11_dls_req { 1543 uint8 category; /* category of action frame (2) */ 1544 uint8 action; /* DLS action: req (0) */ 1545 struct ether_addr da; /* destination address */ 1546 struct ether_addr sa; /* source address */ 1547 uint16 cap; /* capability */ 1548 uint16 timeout; /* timeout value */ 1549 uint8 data[1]; /* IE:support rate, extend support rate, HT cap */ 1550} BWL_POST_PACKED_STRUCT; 1551typedef struct dot11_dls_req dot11_dls_req_t; 1552#define DOT11_DLS_REQ_LEN 18 /* Fixed length */ 1553 1554/* DLS response frame header */ 1555BWL_PRE_PACKED_STRUCT struct dot11_dls_resp { 1556 uint8 category; /* category of action frame (2) */ 1557 uint8 action; /* DLS action: req (0) */ 1558 uint16 status; /* status code field */ 1559 struct ether_addr da; /* destination address */ 1560 struct ether_addr sa; /* source address */ 1561 uint8 data[1]; /* optional: capability, rate ... */ 1562} BWL_POST_PACKED_STRUCT; 1563typedef struct dot11_dls_resp dot11_dls_resp_t; 1564#define DOT11_DLS_RESP_LEN 16 /* Fixed length */ 1565 1566 1567/* ************* 802.11v related definitions. ************* */ 1568 1569/* BSS Management Transition Query frame header */ 1570BWL_PRE_PACKED_STRUCT struct dot11_bsstrans_query { 1571 uint8 category; /* category of action frame (10) */ 1572 uint8 action; /* WNM action: trans_query (6) */ 1573 uint8 token; /* dialog token */ 1574 uint8 reason; /* transition query reason */ 1575 uint8 data[1]; /* Elements */ 1576} BWL_POST_PACKED_STRUCT; 1577typedef struct dot11_bsstrans_query dot11_bsstrans_query_t; 1578#define DOT11_BSSTRANS_QUERY_LEN 4 /* Fixed length */ 1579 1580/* BSS Management Transition Request frame header */ 1581BWL_PRE_PACKED_STRUCT struct dot11_bsstrans_req { 1582 uint8 category; /* category of action frame (10) */ 1583 uint8 action; /* WNM action: trans_req (7) */ 1584 uint8 token; /* dialog token */ 1585 uint8 reqmode; /* transition request mode */ 1586 uint16 disassoc_tmr; /* disassociation timer */ 1587 uint8 validity_intrvl; /* validity interval */ 1588 uint8 data[1]; /* optional: BSS term duration, ... */ 1589 /* ...session info URL, candidate list */ 1590} BWL_POST_PACKED_STRUCT; 1591typedef struct dot11_bsstrans_req dot11_bsstrans_req_t; 1592#define DOT11_BSSTRANS_REQ_LEN 7 /* Fixed length */ 1593 1594/* BSS Mgmt Transition Request Mode Field - 802.11v */ 1595#define DOT11_BSSTRANS_REQMODE_PREF_LIST_INCL 0x01 1596#define DOT11_BSSTRANS_REQMODE_ABRIDGED 0x02 1597#define DOT11_BSSTRANS_REQMODE_DISASSOC_IMMINENT 0x04 1598#define DOT11_BSSTRANS_REQMODE_BSS_TERM_INCL 0x08 1599#define DOT11_BSSTRANS_REQMODE_ESS_DISASSOC_IMNT 0x10 1600 1601/* BSS Management transition response frame header */ 1602BWL_PRE_PACKED_STRUCT struct dot11_bsstrans_resp { 1603 uint8 category; /* category of action frame (10) */ 1604 uint8 action; /* WNM action: trans_resp (8) */ 1605 uint8 token; /* dialog token */ 1606 uint8 status; /* transition status */ 1607 uint8 term_delay; /* validity interval */ 1608 uint8 data[1]; /* optional: BSSID target, candidate list */ 1609} BWL_POST_PACKED_STRUCT; 1610typedef struct dot11_bsstrans_resp dot11_bsstrans_resp_t; 1611#define DOT11_BSSTRANS_RESP_LEN 5 /* Fixed length */ 1612 1613/* BSS Mgmt Transition Response Status Field */ 1614#define DOT11_BSSTRANS_RESP_STATUS_ACCEPT 0 1615#define DOT11_BSSTRANS_RESP_STATUS_REJECT 1 1616#define DOT11_BSSTRANS_RESP_STATUS_REJ_INSUFF_BCN 2 1617#define DOT11_BSSTRANS_RESP_STATUS_REJ_INSUFF_CAP 3 1618#define DOT11_BSSTRANS_RESP_STATUS_REJ_TERM_UNDESIRED 4 1619#define DOT11_BSSTRANS_RESP_STATUS_REJ_TERM_DELAY_REQ 5 1620#define DOT11_BSSTRANS_RESP_STATUS_REJ_BSS_LIST_PROVIDED 6 1621#define DOT11_BSSTRANS_RESP_STATUS_REJ_NO_SUITABLE_BSS 7 1622#define DOT11_BSSTRANS_RESP_STATUS_REJ_LEAVING_ESS 8 1623 1624 1625/* BSS Max Idle Period information element */ 1626BWL_PRE_PACKED_STRUCT struct dot11_bss_max_idle_period_ie { 1627 uint8 id; /* 90, DOT11_MNG_BSS_MAX_IDLE_PERIOD_ID */ 1628 uint8 len; 1629 uint16 max_idle_period; /* in unit of 1000 TUs */ 1630 uint8 idle_opt; 1631} BWL_POST_PACKED_STRUCT; 1632typedef struct dot11_bss_max_idle_period_ie dot11_bss_max_idle_period_ie_t; 1633#define DOT11_BSS_MAX_IDLE_PERIOD_IE_LEN 3 /* bss max idle period IE size */ 1634#define DOT11_BSS_MAX_IDLE_PERIOD_OPT_PROTECTED 1 /* BSS max idle option */ 1635 1636/* TIM Broadcast request information element */ 1637BWL_PRE_PACKED_STRUCT struct dot11_timbc_req_ie { 1638 uint8 id; /* 94, DOT11_MNG_TIMBC_REQ_ID */ 1639 uint8 len; 1640 uint8 interval; /* in unit of beacon interval */ 1641} BWL_POST_PACKED_STRUCT; 1642typedef struct dot11_timbc_req_ie dot11_timbc_req_ie_t; 1643#define DOT11_TIMBC_REQ_IE_LEN 1 /* Fixed length */ 1644 1645/* TIM Broadcast request frame header */ 1646BWL_PRE_PACKED_STRUCT struct dot11_timbc_req { 1647 uint8 category; /* category of action frame (10) */ 1648 uint8 action; /* WNM action: DOT11_WNM_ACTION_TIMBC_REQ(18) */ 1649 uint8 token; /* dialog token */ 1650 uint8 data[1]; /* TIM broadcast request element */ 1651} BWL_POST_PACKED_STRUCT; 1652typedef struct dot11_timbc_req dot11_timbc_req_t; 1653#define DOT11_TIMBC_REQ_LEN 3 /* Fixed length */ 1654 1655/* TIM Broadcast response information element */ 1656BWL_PRE_PACKED_STRUCT struct dot11_timbc_resp_ie { 1657 uint8 id; /* 95, DOT11_MNG_TIM_BROADCAST_RESP_ID */ 1658 uint8 len; 1659 uint8 status; /* status of add request */ 1660 uint8 interval; /* in unit of beacon interval */ 1661 int32 offset; /* in unit of ms */ 1662 uint16 high_rate; /* in unit of 0.5 Mb/s */ 1663 uint16 low_rate; /* in unit of 0.5 Mb/s */ 1664} BWL_POST_PACKED_STRUCT; 1665typedef struct dot11_timbc_resp_ie dot11_timbc_resp_ie_t; 1666#define DOT11_TIMBC_DENY_RESP_IE_LEN 1 /* Deny. Fixed length */ 1667#define DOT11_TIMBC_ACCEPT_RESP_IE_LEN 10 /* Accept. Fixed length */ 1668 1669#define DOT11_TIMBC_STATUS_ACCEPT 0 1670#define DOT11_TIMBC_STATUS_ACCEPT_TSTAMP 1 1671#define DOT11_TIMBC_STATUS_DENY 2 1672#define DOT11_TIMBC_STATUS_OVERRIDDEN 3 1673 1674/* TIM Broadcast request frame header */ 1675BWL_PRE_PACKED_STRUCT struct dot11_timbc_resp { 1676 uint8 category; /* category of action frame (10) */ 1677 uint8 action; /* action: DOT11_WNM_ACTION_TIMBC_RESP(19) */ 1678 uint8 token; /* dialog token */ 1679 uint8 data[1]; /* TIM broadcast response element */ 1680} BWL_POST_PACKED_STRUCT; 1681typedef struct dot11_timbc_resp dot11_timbc_resp_t; 1682#define DOT11_TIMBC_RESP_LEN 3 /* Fixed length */ 1683 1684/* TIM element */ 1685BWL_PRE_PACKED_STRUCT struct dot11_tim_ie { 1686 uint8 id; /* 5, DOT11_MNG_TIM_ID */ 1687 uint8 len; /* 4 - 255 */ 1688 uint8 dtim_count; /* DTIM decrementing counter */ 1689 uint8 dtim_period; /* DTIM period */ 1690 uint8 bitmap_control; /* AID 0 + bitmap offset */ 1691 uint8 pvb[1]; /* Partial Virtual Bitmap, variable length */ 1692} BWL_POST_PACKED_STRUCT; 1693typedef struct dot11_tim_ie dot11_tim_ie_t; 1694#define DOT11_TIM_IE_FIXED_LEN 3 /* Fixed length, without id and len */ 1695#define DOT11_TIM_IE_FIXED_TOTAL_LEN 5 /* Fixed length, with id and len */ 1696 1697/* TIM Broadcast frame header */ 1698BWL_PRE_PACKED_STRUCT struct dot11_timbc { 1699 uint8 category; /* category of action frame (11) */ 1700 uint8 action; /* action: TIM (0) */ 1701 uint8 check_beacon; /* need to check-beacon */ 1702 uint8 tsf[8]; /* Time Synchronization Function */ 1703 dot11_tim_ie_t tim_ie; /* TIM element */ 1704} BWL_POST_PACKED_STRUCT; 1705typedef struct dot11_timbc dot11_timbc_t; 1706#define DOT11_TIMBC_HDR_LEN (sizeof(dot11_timbc_t) - sizeof(dot11_tim_ie_t)) 1707#define DOT11_TIMBC_FIXED_LEN (sizeof(dot11_timbc_t) - 1) /* Fixed length */ 1708#define DOT11_TIMBC_LEN 11 /* Fixed length */ 1709 1710/* TCLAS frame classifier type */ 1711BWL_PRE_PACKED_STRUCT struct dot11_tclas_fc_hdr { 1712 uint8 type; 1713 uint8 mask; 1714 uint8 data[1]; 1715} BWL_POST_PACKED_STRUCT; 1716typedef struct dot11_tclas_fc_hdr dot11_tclas_fc_hdr_t; 1717#define DOT11_TCLAS_FC_HDR_LEN 2 /* Fixed length */ 1718 1719#define DOT11_TCLAS_MASK_0 0x1 1720#define DOT11_TCLAS_MASK_1 0x2 1721#define DOT11_TCLAS_MASK_2 0x4 1722#define DOT11_TCLAS_MASK_3 0x8 1723#define DOT11_TCLAS_MASK_4 0x10 1724#define DOT11_TCLAS_MASK_5 0x20 1725#define DOT11_TCLAS_MASK_6 0x40 1726#define DOT11_TCLAS_MASK_7 0x80 1727 1728#define DOT11_TCLAS_FC_0_ETH 0 1729#define DOT11_TCLAS_FC_1_IP 1 1730#define DOT11_TCLAS_FC_2_8021Q 2 1731#define DOT11_TCLAS_FC_3_OFFSET 3 1732#define DOT11_TCLAS_FC_4_IP_HIGHER 4 1733#define DOT11_TCLAS_FC_5_8021D 5 1734 1735/* TCLAS frame classifier type 0 parameters for Ethernet */ 1736BWL_PRE_PACKED_STRUCT struct dot11_tclas_fc_0_eth { 1737 uint8 type; 1738 uint8 mask; 1739 uint8 sa[ETHER_ADDR_LEN]; 1740 uint8 da[ETHER_ADDR_LEN]; 1741 uint16 eth_type; 1742} BWL_POST_PACKED_STRUCT; 1743typedef struct dot11_tclas_fc_0_eth dot11_tclas_fc_0_eth_t; 1744#define DOT11_TCLAS_FC_0_ETH_LEN 16 1745 1746/* TCLAS frame classifier type 1 parameters for IPV4 */ 1747BWL_PRE_PACKED_STRUCT struct dot11_tclas_fc_1_ipv4 { 1748 uint8 type; 1749 uint8 mask; 1750 uint8 version; 1751 uint32 src_ip; 1752 uint32 dst_ip; 1753 uint16 src_port; 1754 uint16 dst_port; 1755 uint8 dscp; 1756 uint8 protocol; 1757 uint8 reserved; 1758} BWL_POST_PACKED_STRUCT; 1759typedef struct dot11_tclas_fc_1_ipv4 dot11_tclas_fc_1_ipv4_t; 1760#define DOT11_TCLAS_FC_1_IPV4_LEN 18 1761 1762/* TCLAS frame classifier type 2 parameters for 802.1Q */ 1763BWL_PRE_PACKED_STRUCT struct dot11_tclas_fc_2_8021q { 1764 uint8 type; 1765 uint8 mask; 1766 uint16 tci; 1767} BWL_POST_PACKED_STRUCT; 1768typedef struct dot11_tclas_fc_2_8021q dot11_tclas_fc_2_8021q_t; 1769#define DOT11_TCLAS_FC_2_8021Q_LEN 4 1770 1771/* TCLAS frame classifier type 3 parameters for filter offset */ 1772BWL_PRE_PACKED_STRUCT struct dot11_tclas_fc_3_filter { 1773 uint8 type; 1774 uint8 mask; 1775 uint16 offset; 1776 uint8 data[1]; 1777} BWL_POST_PACKED_STRUCT; 1778typedef struct dot11_tclas_fc_3_filter dot11_tclas_fc_3_filter_t; 1779#define DOT11_TCLAS_FC_3_FILTER_LEN 4 1780 1781/* TCLAS frame classifier type 4 parameters for IPV4 is the same as TCLAS type 1 */ 1782typedef struct dot11_tclas_fc_1_ipv4 dot11_tclas_fc_4_ipv4_t; 1783#define DOT11_TCLAS_FC_4_IPV4_LEN DOT11_TCLAS_FC_1_IPV4_LEN 1784 1785/* TCLAS frame classifier type 4 parameters for IPV6 */ 1786BWL_PRE_PACKED_STRUCT struct dot11_tclas_fc_4_ipv6 { 1787 uint8 type; 1788 uint8 mask; 1789 uint8 version; 1790 uint8 saddr[16]; 1791 uint8 daddr[16]; 1792 uint16 src_port; 1793 uint16 dst_port; 1794 uint8 dscp; 1795 uint8 nexthdr; 1796 uint8 flow_lbl[3]; 1797} BWL_POST_PACKED_STRUCT; 1798typedef struct dot11_tclas_fc_4_ipv6 dot11_tclas_fc_4_ipv6_t; 1799#define DOT11_TCLAS_FC_4_IPV6_LEN 44 1800 1801/* TCLAS frame classifier type 5 parameters for 802.1D */ 1802BWL_PRE_PACKED_STRUCT struct dot11_tclas_fc_5_8021d { 1803 uint8 type; 1804 uint8 mask; 1805 uint8 pcp; 1806 uint8 cfi; 1807 uint16 vid; 1808} BWL_POST_PACKED_STRUCT; 1809typedef struct dot11_tclas_fc_5_8021d dot11_tclas_fc_5_8021d_t; 1810#define DOT11_TCLAS_FC_5_8021D_LEN 6 1811 1812/* TCLAS frame classifier type parameters */ 1813BWL_PRE_PACKED_STRUCT union dot11_tclas_fc { 1814 uint8 data[1]; 1815 dot11_tclas_fc_hdr_t hdr; 1816 dot11_tclas_fc_0_eth_t t0_eth; 1817 dot11_tclas_fc_1_ipv4_t t1_ipv4; 1818 dot11_tclas_fc_2_8021q_t t2_8021q; 1819 dot11_tclas_fc_3_filter_t t3_filter; 1820 dot11_tclas_fc_4_ipv4_t t4_ipv4; 1821 dot11_tclas_fc_4_ipv6_t t4_ipv6; 1822 dot11_tclas_fc_5_8021d_t t5_8021d; 1823} BWL_POST_PACKED_STRUCT; 1824typedef union dot11_tclas_fc dot11_tclas_fc_t; 1825 1826#define DOT11_TCLAS_FC_MIN_LEN 4 1827#define DOT11_TCLAS_FC_MAX_LEN 254 1828 1829/* TCLAS information element */ 1830BWL_PRE_PACKED_STRUCT struct dot11_tclas_ie { 1831 uint8 id; /* 14, DOT11_MNG_TCLAS_ID */ 1832 uint8 len; 1833 uint8 user_priority; 1834 dot11_tclas_fc_t fc; 1835} BWL_POST_PACKED_STRUCT; 1836typedef struct dot11_tclas_ie dot11_tclas_ie_t; 1837#define DOT11_TCLAS_IE_LEN 3 /* Fixed length, include id and len */ 1838 1839/* TCLAS processing information element */ 1840BWL_PRE_PACKED_STRUCT struct dot11_tclas_proc_ie { 1841 uint8 id; /* 44, DOT11_MNG_TCLAS_PROC_ID */ 1842 uint8 len; 1843 uint8 process; 1844} BWL_POST_PACKED_STRUCT; 1845typedef struct dot11_tclas_proc_ie dot11_tclas_proc_ie_t; 1846#define DOT11_TCLAS_PROC_IE_LEN 3 /* Fixed length, include id and len */ 1847 1848#define DOT11_TCLAS_PROC_MATCHALL 0 /* All high level element need to match */ 1849#define DOT11_TCLAS_PROC_MATCHONE 1 /* One high level element need to match */ 1850#define DOT11_TCLAS_PROC_NONMATCH 2 /* Non match to any high level element */ 1851 1852 1853/* TSPEC element defined in 802.11 std section 8.4.2.32 - Not supported */ 1854#define DOT11_TSPEC_IE_LEN 57 /* Fixed length */ 1855 1856/* TFS request information element */ 1857BWL_PRE_PACKED_STRUCT struct dot11_tfs_req_ie { 1858 uint8 id; /* 91, DOT11_MNG_TFS_REQUEST_ID */ 1859 uint8 len; 1860 uint8 tfs_id; 1861 uint8 tfs_actcode; 1862 uint8 data[1]; 1863} BWL_POST_PACKED_STRUCT; 1864typedef struct dot11_tfs_req_ie dot11_tfs_req_ie_t; 1865#define DOT11_TFS_REQ_IE_LEN 4 /* Fixed length, include id and len */ 1866 1867#define DOT11_TFS_ACTCODE_DELETE 1 1868#define DOT11_TFS_ACTCODE_MODIFY 2 1869 1870/* TFS request subelement */ 1871BWL_PRE_PACKED_STRUCT struct dot11_tfs_req_se { 1872 uint8 sub_id; 1873 uint8 length; 1874 uint8 data[1]; 1875} BWL_POST_PACKED_STRUCT; 1876typedef struct dot11_tfs_req_se dot11_tfs_req_se_t; 1877 1878BWL_PRE_PACKED_STRUCT struct dot11_tfs_se { 1879 uint8 sub_id; 1880 uint8 len; 1881 uint8 data[1]; 1882} BWL_POST_PACKED_STRUCT; 1883typedef struct dot11_tfs_se dot11_tfs_se_t; 1884#define DOT11_TFS_REQ_SUBELEM_LEN 2 /* Fixed length, include id and len */ 1885 1886#define DOT11_TFS_SUBELEM_ID_TFS 1 1887#define DOT11_TFS_SUBELEM_ID_VENDOR 221 1888 1889/* TFS response information element */ 1890BWL_PRE_PACKED_STRUCT struct dot11_tfs_resp_ie { 1891 uint8 id; /* 92, DOT11_MNG_TFS_RESPONSE_ID */ 1892 uint8 len; 1893 uint8 data[1]; 1894} BWL_POST_PACKED_STRUCT; 1895typedef struct dot11_tfs_resp_ie dot11_tfs_resp_ie_t; 1896#define DOT11_TFS_RESP_IE_LEN 2 /* Fixed length, include id and len */ 1897 1898/* TFS status subelement */ 1899BWL_PRE_PACKED_STRUCT struct dot11_tfs_status_se { 1900 uint8 id; /* 92, DOT11_MNG_TFS_RESPONSE_ID */ 1901 uint8 len; 1902 uint8 resp_st; 1903 uint8 tfs_id; 1904} BWL_POST_PACKED_STRUCT; 1905typedef struct dot11_tfs_status_se dot11_tfs_status_se_t; 1906 1907#define DOT11_TFS_STATUS_SE_LEN 4 /* TFS Status Subelement length */ 1908#define DOT11_TFS_STATUS_SE_DATA_LEN 2 /* TFS status Subelement Data length */ 1909 1910#define DOT11_TFS_STATUS_SE_ID_TFS_ST 1 1911#define DOT11_TFS_STATUS_SE_ID_TFS 2 1912#define DOT11_TFS_STATUS_SE_ID_VENDOR 221 1913 1914#define DOT11_TFS_RESP_ST_ACCEPT 0 1915#define DOT11_TFS_RESP_ST_DENY_FORMAT 1 1916#define DOT11_TFS_RESP_ST_DENY_RESOURCE 2 1917#define DOT11_TFS_RESP_ST_DENY_POLICY 4 1918#define DOT11_TFS_RESP_ST_PREFERRED_AP_INCAP 14 1919 1920 1921/* TFS Management Request frame header */ 1922BWL_PRE_PACKED_STRUCT struct dot11_tfs_req { 1923 uint8 category; /* category of action frame (10) */ 1924 uint8 action; /* WNM action: tfs request (13) */ 1925 uint8 token; /* dialog token */ 1926 uint8 data[1]; /* Elements */ 1927} BWL_POST_PACKED_STRUCT; 1928typedef struct dot11_tfs_req dot11_tfs_req_t; 1929#define DOT11_TFS_REQ_LEN 3 /* Fixed length */ 1930 1931/* TFS Management Response frame header */ 1932BWL_PRE_PACKED_STRUCT struct dot11_tfs_resp { 1933 uint8 category; /* category of action frame (10) */ 1934 uint8 action; /* WNM action: tfs request (14) */ 1935 uint8 token; /* dialog token */ 1936 uint8 data[1]; /* Elements */ 1937} BWL_POST_PACKED_STRUCT; 1938typedef struct dot11_tfs_resp dot11_tfs_resp_t; 1939#define DOT11_TFS_RESP_LEN 3 /* Fixed length */ 1940 1941/* TFS Management Notify frame header */ 1942BWL_PRE_PACKED_STRUCT struct dot11_tfs_notify { 1943 uint8 category; /* category of action frame (10) */ 1944 uint8 action; /* WNM action: tfs request (15) */ 1945 uint8 num_tfs_id; /* number of TFS IDs */ 1946 uint8 data[1]; /* Elements */ 1947} BWL_POST_PACKED_STRUCT; 1948typedef struct dot11_tfs_notify dot11_tfs_notify_t; 1949#define DOT11_TFS_NOTIFY_LEN 3 /* Fixed length */ 1950 1951#define DOT11_TFS_NOTIFY_ACT_DEL 1 1952#define DOT11_TFS_NOTIFY_ACT_NOTIFY 2 1953 1954/* WNM-Sleep Management Request frame header */ 1955BWL_PRE_PACKED_STRUCT struct dot11_wnm_sleep_req { 1956 uint8 category; /* category of action frame (10) */ 1957 uint8 action; /* WNM action: wnm-sleep request (16) */ 1958 uint8 token; /* dialog token */ 1959 uint8 data[1]; /* Elements */ 1960} BWL_POST_PACKED_STRUCT; 1961typedef struct dot11_wnm_sleep_req dot11_wnm_sleep_req_t; 1962#define DOT11_WNM_SLEEP_REQ_LEN 3 /* Fixed length */ 1963 1964/* WNM-Sleep Management Response frame header */ 1965BWL_PRE_PACKED_STRUCT struct dot11_wnm_sleep_resp { 1966 uint8 category; /* category of action frame (10) */ 1967 uint8 action; /* WNM action: wnm-sleep request (17) */ 1968 uint8 token; /* dialog token */ 1969 uint16 key_len; /* key data length */ 1970 uint8 data[1]; /* Elements */ 1971} BWL_POST_PACKED_STRUCT; 1972typedef struct dot11_wnm_sleep_resp dot11_wnm_sleep_resp_t; 1973#define DOT11_WNM_SLEEP_RESP_LEN 5 /* Fixed length */ 1974 1975#define DOT11_WNM_SLEEP_SUBELEM_ID_GTK 0 1976#define DOT11_WNM_SLEEP_SUBELEM_ID_IGTK 1 1977 1978BWL_PRE_PACKED_STRUCT struct dot11_wnm_sleep_subelem_gtk { 1979 uint8 sub_id; 1980 uint8 len; 1981 uint16 key_info; 1982 uint8 key_length; 1983 uint8 rsc[8]; 1984 uint8 key[1]; 1985} BWL_POST_PACKED_STRUCT; 1986typedef struct dot11_wnm_sleep_subelem_gtk dot11_wnm_sleep_subelem_gtk_t; 1987#define DOT11_WNM_SLEEP_SUBELEM_GTK_FIXED_LEN 11 /* without sub_id, len, and key */ 1988#define DOT11_WNM_SLEEP_SUBELEM_GTK_MAX_LEN 43 /* without sub_id and len */ 1989 1990BWL_PRE_PACKED_STRUCT struct dot11_wnm_sleep_subelem_igtk { 1991 uint8 sub_id; 1992 uint8 len; 1993 uint16 key_id; 1994 uint8 pn[6]; 1995 uint8 key[16]; 1996} BWL_POST_PACKED_STRUCT; 1997typedef struct dot11_wnm_sleep_subelem_igtk dot11_wnm_sleep_subelem_igtk_t; 1998#define DOT11_WNM_SLEEP_SUBELEM_IGTK_LEN 24 /* Fixed length */ 1999 2000BWL_PRE_PACKED_STRUCT struct dot11_wnm_sleep_ie { 2001 uint8 id; /* 93, DOT11_MNG_WNM_SLEEP_MODE_ID */ 2002 uint8 len; 2003 uint8 act_type; 2004 uint8 resp_status; 2005 uint16 interval; 2006} BWL_POST_PACKED_STRUCT; 2007typedef struct dot11_wnm_sleep_ie dot11_wnm_sleep_ie_t; 2008#define DOT11_WNM_SLEEP_IE_LEN 4 /* Fixed length */ 2009 2010#define DOT11_WNM_SLEEP_ACT_TYPE_ENTER 0 2011#define DOT11_WNM_SLEEP_ACT_TYPE_EXIT 1 2012 2013#define DOT11_WNM_SLEEP_RESP_ACCEPT 0 2014#define DOT11_WNM_SLEEP_RESP_UPDATE 1 2015#define DOT11_WNM_SLEEP_RESP_DENY 2 2016#define DOT11_WNM_SLEEP_RESP_DENY_TEMP 3 2017#define DOT11_WNM_SLEEP_RESP_DENY_KEY 4 2018#define DOT11_WNM_SLEEP_RESP_DENY_INUSE 5 2019#define DOT11_WNM_SLEEP_RESP_LAST 6 2020 2021/* DMS Management Request frame header */ 2022BWL_PRE_PACKED_STRUCT struct dot11_dms_req { 2023 uint8 category; /* category of action frame (10) */ 2024 uint8 action; /* WNM action: dms request (23) */ 2025 uint8 token; /* dialog token */ 2026 uint8 data[1]; /* Elements */ 2027} BWL_POST_PACKED_STRUCT; 2028typedef struct dot11_dms_req dot11_dms_req_t; 2029#define DOT11_DMS_REQ_LEN 3 /* Fixed length */ 2030 2031/* DMS Management Response frame header */ 2032BWL_PRE_PACKED_STRUCT struct dot11_dms_resp { 2033 uint8 category; /* category of action frame (10) */ 2034 uint8 action; /* WNM action: dms request (24) */ 2035 uint8 token; /* dialog token */ 2036 uint8 data[1]; /* Elements */ 2037} BWL_POST_PACKED_STRUCT; 2038typedef struct dot11_dms_resp dot11_dms_resp_t; 2039#define DOT11_DMS_RESP_LEN 3 /* Fixed length */ 2040 2041/* DMS request information element */ 2042BWL_PRE_PACKED_STRUCT struct dot11_dms_req_ie { 2043 uint8 id; /* 99, DOT11_MNG_DMS_REQUEST_ID */ 2044 uint8 len; 2045 uint8 data[1]; 2046} BWL_POST_PACKED_STRUCT; 2047typedef struct dot11_dms_req_ie dot11_dms_req_ie_t; 2048#define DOT11_DMS_REQ_IE_LEN 2 /* Fixed length */ 2049 2050/* DMS response information element */ 2051BWL_PRE_PACKED_STRUCT struct dot11_dms_resp_ie { 2052 uint8 id; /* 100, DOT11_MNG_DMS_RESPONSE_ID */ 2053 uint8 len; 2054 uint8 data[1]; 2055} BWL_POST_PACKED_STRUCT; 2056typedef struct dot11_dms_resp_ie dot11_dms_resp_ie_t; 2057#define DOT11_DMS_RESP_IE_LEN 2 /* Fixed length */ 2058 2059/* DMS request descriptor */ 2060BWL_PRE_PACKED_STRUCT struct dot11_dms_req_desc { 2061 uint8 dms_id; 2062 uint8 len; 2063 uint8 type; 2064 uint8 data[1]; 2065} BWL_POST_PACKED_STRUCT; 2066typedef struct dot11_dms_req_desc dot11_dms_req_desc_t; 2067#define DOT11_DMS_REQ_DESC_LEN 3 /* Fixed length */ 2068 2069#define DOT11_DMS_REQ_TYPE_ADD 0 2070#define DOT11_DMS_REQ_TYPE_REMOVE 1 2071#define DOT11_DMS_REQ_TYPE_CHANGE 2 2072 2073/* DMS response status */ 2074BWL_PRE_PACKED_STRUCT struct dot11_dms_resp_st { 2075 uint8 dms_id; 2076 uint8 len; 2077 uint8 type; 2078 uint16 lsc; 2079 uint8 data[1]; 2080} BWL_POST_PACKED_STRUCT; 2081typedef struct dot11_dms_resp_st dot11_dms_resp_st_t; 2082#define DOT11_DMS_RESP_STATUS_LEN 5 /* Fixed length */ 2083 2084#define DOT11_DMS_RESP_TYPE_ACCEPT 0 2085#define DOT11_DMS_RESP_TYPE_DENY 1 2086#define DOT11_DMS_RESP_TYPE_TERM 2 2087 2088#define DOT11_DMS_RESP_LSC_UNSUPPORTED 0xFFFF 2089 2090BWL_PRE_PACKED_STRUCT struct dot11_addba_req { 2091 uint8 category; /* category of action frame (3) */ 2092 uint8 action; /* action: addba req */ 2093 uint8 token; /* identifier */ 2094 uint16 addba_param_set; /* parameter set */ 2095 uint16 timeout; /* timeout in seconds */ 2096 uint16 start_seqnum; /* starting sequence number */ 2097} BWL_POST_PACKED_STRUCT; 2098typedef struct dot11_addba_req dot11_addba_req_t; 2099#define DOT11_ADDBA_REQ_LEN 9 /* length of addba req frame */ 2100 2101BWL_PRE_PACKED_STRUCT struct dot11_addba_resp { 2102 uint8 category; /* category of action frame (3) */ 2103 uint8 action; /* action: addba resp */ 2104 uint8 token; /* identifier */ 2105 uint16 status; /* status of add request */ 2106 uint16 addba_param_set; /* negotiated parameter set */ 2107 uint16 timeout; /* negotiated timeout in seconds */ 2108} BWL_POST_PACKED_STRUCT; 2109typedef struct dot11_addba_resp dot11_addba_resp_t; 2110#define DOT11_ADDBA_RESP_LEN 9 /* length of addba resp frame */ 2111 2112/* DELBA action parameters */ 2113#define DOT11_DELBA_PARAM_INIT_MASK 0x0800 /* initiator mask */ 2114#define DOT11_DELBA_PARAM_INIT_SHIFT 11 /* initiator shift */ 2115#define DOT11_DELBA_PARAM_TID_MASK 0xf000 /* tid mask */ 2116#define DOT11_DELBA_PARAM_TID_SHIFT 12 /* tid shift */ 2117 2118BWL_PRE_PACKED_STRUCT struct dot11_delba { 2119 uint8 category; /* category of action frame (3) */ 2120 uint8 action; /* action: addba req */ 2121 uint16 delba_param_set; /* paarmeter set */ 2122 uint16 reason; /* reason for dellba */ 2123} BWL_POST_PACKED_STRUCT; 2124typedef struct dot11_delba dot11_delba_t; 2125#define DOT11_DELBA_LEN 6 /* length of delba frame */ 2126 2127/* SA Query action field value */ 2128#define SA_QUERY_REQUEST 0 2129#define SA_QUERY_RESPONSE 1 2130 2131/* ************* 802.11r related definitions. ************* */ 2132 2133/* Over-the-DS Fast Transition Request frame header */ 2134BWL_PRE_PACKED_STRUCT struct dot11_ft_req { 2135 uint8 category; /* category of action frame (6) */ 2136 uint8 action; /* action: ft req */ 2137 uint8 sta_addr[ETHER_ADDR_LEN]; 2138 uint8 tgt_ap_addr[ETHER_ADDR_LEN]; 2139 uint8 data[1]; /* Elements */ 2140} BWL_POST_PACKED_STRUCT; 2141typedef struct dot11_ft_req dot11_ft_req_t; 2142#define DOT11_FT_REQ_FIXED_LEN 14 2143 2144/* Over-the-DS Fast Transition Response frame header */ 2145BWL_PRE_PACKED_STRUCT struct dot11_ft_res { 2146 uint8 category; /* category of action frame (6) */ 2147 uint8 action; /* action: ft resp */ 2148 uint8 sta_addr[ETHER_ADDR_LEN]; 2149 uint8 tgt_ap_addr[ETHER_ADDR_LEN]; 2150 uint16 status; /* status code */ 2151 uint8 data[1]; /* Elements */ 2152} BWL_POST_PACKED_STRUCT; 2153typedef struct dot11_ft_res dot11_ft_res_t; 2154#define DOT11_FT_RES_FIXED_LEN 16 2155 2156/* RDE RIC Data Element. */ 2157BWL_PRE_PACKED_STRUCT struct dot11_rde_ie { 2158 uint8 id; /* 11r, DOT11_MNG_RDE_ID */ 2159 uint8 length; 2160 uint8 rde_id; /* RDE identifier. */ 2161 uint8 rd_count; /* Resource Descriptor Count. */ 2162 uint16 status; /* Status Code. */ 2163} BWL_POST_PACKED_STRUCT; 2164typedef struct dot11_rde_ie dot11_rde_ie_t; 2165 2166/* 11r - Size of the RDE (RIC Data Element) IE, including TLV header. */ 2167#define DOT11_MNG_RDE_IE_LEN sizeof(dot11_rde_ie_t) 2168 2169 2170/* ************* 802.11k related definitions. ************* */ 2171 2172/* Radio measurements enabled capability ie */ 2173 2174#define DOT11_RRM_CAP_LEN 5 /* length of rrm cap bitmap */ 2175#define RCPI_IE_LEN 1 2176#define RSNI_IE_LEN 1 2177BWL_PRE_PACKED_STRUCT struct dot11_rrm_cap_ie { 2178 uint8 cap[DOT11_RRM_CAP_LEN]; 2179} BWL_POST_PACKED_STRUCT; 2180typedef struct dot11_rrm_cap_ie dot11_rrm_cap_ie_t; 2181 2182/* Bitmap definitions for cap ie */ 2183#define DOT11_RRM_CAP_LINK 0 2184#define DOT11_RRM_CAP_NEIGHBOR_REPORT 1 2185#define DOT11_RRM_CAP_PARALLEL 2 2186#define DOT11_RRM_CAP_REPEATED 3 2187#define DOT11_RRM_CAP_BCN_PASSIVE 4 2188#define DOT11_RRM_CAP_BCN_ACTIVE 5 2189#define DOT11_RRM_CAP_BCN_TABLE 6 2190#define DOT11_RRM_CAP_BCN_REP_COND 7 2191#define DOT11_RRM_CAP_AP_CHANREP 16 2192 2193 2194/* Operating Class (formerly "Regulatory Class") definitions */ 2195#define DOT11_OP_CLASS_NONE 255 2196 2197BWL_PRE_PACKED_STRUCT struct do11_ap_chrep { 2198 uint8 id; 2199 uint8 len; 2200 uint8 reg; 2201 uint8 chanlist[1]; 2202} BWL_POST_PACKED_STRUCT; 2203typedef struct do11_ap_chrep dot11_ap_chrep_t; 2204 2205/* Radio Measurements action ids */ 2206#define DOT11_RM_ACTION_RM_REQ 0 /* Radio measurement request */ 2207#define DOT11_RM_ACTION_RM_REP 1 /* Radio measurement report */ 2208#define DOT11_RM_ACTION_LM_REQ 2 /* Link measurement request */ 2209#define DOT11_RM_ACTION_LM_REP 3 /* Link measurement report */ 2210#define DOT11_RM_ACTION_NR_REQ 4 /* Neighbor report request */ 2211#define DOT11_RM_ACTION_NR_REP 5 /* Neighbor report response */ 2212 2213/* Generic radio measurement action frame header */ 2214BWL_PRE_PACKED_STRUCT struct dot11_rm_action { 2215 uint8 category; /* category of action frame (5) */ 2216 uint8 action; /* radio measurement action */ 2217 uint8 token; /* dialog token */ 2218 uint8 data[1]; 2219} BWL_POST_PACKED_STRUCT; 2220typedef struct dot11_rm_action dot11_rm_action_t; 2221#define DOT11_RM_ACTION_LEN 3 2222 2223BWL_PRE_PACKED_STRUCT struct dot11_rmreq { 2224 uint8 category; /* category of action frame (5) */ 2225 uint8 action; /* radio measurement action */ 2226 uint8 token; /* dialog token */ 2227 uint16 reps; /* no. of repetitions */ 2228 uint8 data[1]; 2229} BWL_POST_PACKED_STRUCT; 2230typedef struct dot11_rmreq dot11_rmreq_t; 2231#define DOT11_RMREQ_LEN 5 2232 2233BWL_PRE_PACKED_STRUCT struct dot11_rm_ie { 2234 uint8 id; 2235 uint8 len; 2236 uint8 token; 2237 uint8 mode; 2238 uint8 type; 2239} BWL_POST_PACKED_STRUCT; 2240typedef struct dot11_rm_ie dot11_rm_ie_t; 2241#define DOT11_RM_IE_LEN 5 2242 2243/* Definitions for "mode" bits in rm req */ 2244#define DOT11_RMREQ_MODE_PARALLEL 1 2245#define DOT11_RMREQ_MODE_ENABLE 2 2246#define DOT11_RMREQ_MODE_REQUEST 4 2247#define DOT11_RMREQ_MODE_REPORT 8 2248#define DOT11_RMREQ_MODE_DURMAND 0x10 /* Duration Mandatory */ 2249 2250/* Definitions for "mode" bits in rm rep */ 2251#define DOT11_RMREP_MODE_LATE 1 2252#define DOT11_RMREP_MODE_INCAPABLE 2 2253#define DOT11_RMREP_MODE_REFUSED 4 2254 2255BWL_PRE_PACKED_STRUCT struct dot11_rmreq_bcn { 2256 uint8 id; 2257 uint8 len; 2258 uint8 token; 2259 uint8 mode; 2260 uint8 type; 2261 uint8 reg; 2262 uint8 channel; 2263 uint16 interval; 2264 uint16 duration; 2265 uint8 bcn_mode; 2266 struct ether_addr bssid; 2267} BWL_POST_PACKED_STRUCT; 2268typedef struct dot11_rmreq_bcn dot11_rmreq_bcn_t; 2269#define DOT11_RMREQ_BCN_LEN 18 2270 2271BWL_PRE_PACKED_STRUCT struct dot11_rmrep_bcn { 2272 uint8 reg; 2273 uint8 channel; 2274 uint32 starttime[2]; 2275 uint16 duration; 2276 uint8 frame_info; 2277 uint8 rcpi; 2278 uint8 rsni; 2279 struct ether_addr bssid; 2280 uint8 antenna_id; 2281 uint32 parent_tsf; 2282} BWL_POST_PACKED_STRUCT; 2283typedef struct dot11_rmrep_bcn dot11_rmrep_bcn_t; 2284#define DOT11_RMREP_BCN_LEN 26 2285 2286/* Beacon request measurement mode */ 2287#define DOT11_RMREQ_BCN_PASSIVE 0 2288#define DOT11_RMREQ_BCN_ACTIVE 1 2289#define DOT11_RMREQ_BCN_TABLE 2 2290 2291/* Sub-element IDs for Beacon Request */ 2292#define DOT11_RMREQ_BCN_SSID_ID 0 2293#define DOT11_RMREQ_BCN_REPINFO_ID 1 2294#define DOT11_RMREQ_BCN_REPDET_ID 2 2295#define DOT11_RMREQ_BCN_REQUEST_ID 10 2296#define DOT11_RMREQ_BCN_APCHREP_ID DOT11_MNG_AP_CHREP_ID 2297 2298/* Reporting Detail element definition */ 2299#define DOT11_RMREQ_BCN_REPDET_FIXED 0 /* Fixed length fields only */ 2300#define DOT11_RMREQ_BCN_REPDET_REQUEST 1 /* + requested information elems */ 2301#define DOT11_RMREQ_BCN_REPDET_ALL 2 /* All fields */ 2302 2303/* Sub-element IDs for Beacon Report */ 2304#define DOT11_RMREP_BCN_FRM_BODY 1 2305 2306/* Sub-element IDs for Frame Report */ 2307#define DOT11_RMREP_FRAME_COUNT_REPORT 1 2308 2309/* Channel load request */ 2310BWL_PRE_PACKED_STRUCT struct dot11_rmreq_chanload { 2311 uint8 id; 2312 uint8 len; 2313 uint8 token; 2314 uint8 mode; 2315 uint8 type; 2316 uint8 reg; 2317 uint8 channel; 2318 uint16 interval; 2319 uint16 duration; 2320} BWL_POST_PACKED_STRUCT; 2321typedef struct dot11_rmreq_chanload dot11_rmreq_chanload_t; 2322#define DOT11_RMREQ_CHANLOAD_LEN 11 2323 2324/* Channel load report */ 2325BWL_PRE_PACKED_STRUCT struct dot11_rmrep_chanload { 2326 uint8 reg; 2327 uint8 channel; 2328 uint32 starttime[2]; 2329 uint16 duration; 2330 uint8 channel_load; 2331} BWL_POST_PACKED_STRUCT; 2332typedef struct dot11_rmrep_chanload dot11_rmrep_chanload_t; 2333#define DOT11_RMREP_CHANLOAD_LEN 13 2334 2335/* Noise histogram request */ 2336BWL_PRE_PACKED_STRUCT struct dot11_rmreq_noise { 2337 uint8 id; 2338 uint8 len; 2339 uint8 token; 2340 uint8 mode; 2341 uint8 type; 2342 uint8 reg; 2343 uint8 channel; 2344 uint16 interval; 2345 uint16 duration; 2346} BWL_POST_PACKED_STRUCT; 2347typedef struct dot11_rmreq_noise dot11_rmreq_noise_t; 2348#define DOT11_RMREQ_NOISE_LEN 11 2349 2350/* Noise histogram report */ 2351BWL_PRE_PACKED_STRUCT struct dot11_rmrep_noise { 2352 uint8 reg; 2353 uint8 channel; 2354 uint32 starttime[2]; 2355 uint16 duration; 2356 uint8 antid; 2357 uint8 anpi; 2358 uint8 ipi0_dens; 2359 uint8 ipi1_dens; 2360 uint8 ipi2_dens; 2361 uint8 ipi3_dens; 2362 uint8 ipi4_dens; 2363 uint8 ipi5_dens; 2364 uint8 ipi6_dens; 2365 uint8 ipi7_dens; 2366 uint8 ipi8_dens; 2367 uint8 ipi9_dens; 2368 uint8 ipi10_dens; 2369} BWL_POST_PACKED_STRUCT; 2370typedef struct dot11_rmrep_noise dot11_rmrep_noise_t; 2371#define DOT11_RMREP_NOISE_LEN 25 2372 2373/* Frame request */ 2374BWL_PRE_PACKED_STRUCT struct dot11_rmreq_frame { 2375 uint8 id; 2376 uint8 len; 2377 uint8 token; 2378 uint8 mode; 2379 uint8 type; 2380 uint8 reg; 2381 uint8 channel; 2382 uint16 interval; 2383 uint16 duration; 2384 uint8 req_type; 2385 struct ether_addr ta; 2386} BWL_POST_PACKED_STRUCT; 2387typedef struct dot11_rmreq_frame dot11_rmreq_frame_t; 2388#define DOT11_RMREQ_FRAME_LEN 18 2389 2390/* Frame report */ 2391BWL_PRE_PACKED_STRUCT struct dot11_rmrep_frame { 2392 uint8 reg; 2393 uint8 channel; 2394 uint32 starttime[2]; 2395 uint16 duration; 2396} BWL_POST_PACKED_STRUCT; 2397typedef struct dot11_rmrep_frame dot11_rmrep_frame_t; 2398#define DOT11_RMREP_FRAME_LEN 12 2399 2400/* Frame report entry */ 2401BWL_PRE_PACKED_STRUCT struct dot11_rmrep_frmentry { 2402 struct ether_addr ta; 2403 struct ether_addr bssid; 2404 uint8 phy_type; 2405 uint8 avg_rcpi; 2406 uint8 last_rsni; 2407 uint8 last_rcpi; 2408 uint8 ant_id; 2409 uint16 frame_cnt; 2410} BWL_POST_PACKED_STRUCT; 2411typedef struct dot11_rmrep_frmentry dot11_rmrep_frmentry_t; 2412#define DOT11_RMREP_FRMENTRY_LEN 19 2413 2414/* STA statistics request */ 2415BWL_PRE_PACKED_STRUCT struct dot11_rmreq_stat { 2416 uint8 id; 2417 uint8 len; 2418 uint8 token; 2419 uint8 mode; 2420 uint8 type; 2421 struct ether_addr peer; 2422 uint16 interval; 2423 uint16 duration; 2424 uint8 group_id; 2425} BWL_POST_PACKED_STRUCT; 2426typedef struct dot11_rmreq_stat dot11_rmreq_stat_t; 2427#define DOT11_RMREQ_STAT_LEN 16 2428 2429/* STA statistics report */ 2430BWL_PRE_PACKED_STRUCT struct dot11_rmrep_stat { 2431 uint16 duration; 2432 uint8 group_id; 2433} BWL_POST_PACKED_STRUCT; 2434typedef struct dot11_rmrep_stat dot11_rmrep_stat_t; 2435 2436/* Transmit stream/category measurement request */ 2437BWL_PRE_PACKED_STRUCT struct dot11_rmreq_tx_stream { 2438 uint8 id; 2439 uint8 len; 2440 uint8 token; 2441 uint8 mode; 2442 uint8 type; 2443 uint16 interval; 2444 uint16 duration; 2445 struct ether_addr peer; 2446 uint8 traffic_id; 2447 uint8 bin0_range; 2448} BWL_POST_PACKED_STRUCT; 2449typedef struct dot11_rmreq_tx_stream dot11_rmreq_tx_stream_t; 2450 2451/* Transmit stream/category measurement report */ 2452BWL_PRE_PACKED_STRUCT struct dot11_rmrep_tx_stream { 2453 uint32 starttime[2]; 2454 uint16 duration; 2455 struct ether_addr peer; 2456 uint8 traffic_id; 2457 uint8 reason; 2458 uint32 txmsdu_cnt; 2459 uint32 msdu_discarded_cnt; 2460 uint32 msdufailed_cnt; 2461 uint32 msduretry_cnt; 2462 uint32 cfpolls_lost_cnt; 2463 uint32 avrqueue_delay; 2464 uint32 avrtx_delay; 2465 uint8 bin0_range; 2466 uint32 bin0; 2467 uint32 bin1; 2468 uint32 bin2; 2469 uint32 bin3; 2470 uint32 bin4; 2471 uint32 bin5; 2472} BWL_POST_PACKED_STRUCT; 2473typedef struct dot11_rmrep_tx_stream dot11_rmrep_tx_stream_t; 2474 2475/* Measurement pause request */ 2476BWL_PRE_PACKED_STRUCT struct dot11_rmreq_pause_time { 2477 uint8 id; 2478 uint8 len; 2479 uint8 token; 2480 uint8 mode; 2481 uint8 type; 2482 uint16 pause_time; 2483} BWL_POST_PACKED_STRUCT; 2484typedef struct dot11_rmreq_pause_time dot11_rmreq_pause_time_t; 2485 2486 2487/* Neighbor Report subelements ID (11k & 11v) */ 2488#define DOT11_NGBR_TSF_INFO_SE_ID 1 2489#define DOT11_NGBR_CCS_SE_ID 2 2490#define DOT11_NGBR_BSSTRANS_PREF_SE_ID 3 2491#define DOT11_NGBR_BSS_TERM_DUR_SE_ID 4 2492#define DOT11_NGBR_BEARING_SE_ID 5 2493 2494/* Neighbor Report, BSS Transition Candidate Preference subelement */ 2495BWL_PRE_PACKED_STRUCT struct dot11_ngbr_bsstrans_pref_se { 2496 uint8 sub_id; 2497 uint8 len; 2498 uint8 preference; 2499} BWL_POST_PACKED_STRUCT; 2500typedef struct dot11_ngbr_bsstrans_pref_se dot11_ngbr_bsstrans_pref_se_t; 2501#define DOT11_NGBR_BSSTRANS_PREF_SE_LEN 1 2502 2503/* Neighbor Report, BSS Termination Duration subelement */ 2504BWL_PRE_PACKED_STRUCT struct dot11_ngbr_bss_term_dur_se { 2505 uint8 sub_id; 2506 uint8 len; 2507 uint8 tsf[8]; 2508 uint16 duration; 2509} BWL_POST_PACKED_STRUCT; 2510typedef struct dot11_ngbr_bss_term_dur_se dot11_ngbr_bss_term_dur_se_t; 2511#define DOT11_NGBR_BSS_TERM_DUR_SE_LEN 10 2512 2513/* Neighbor Report BSSID Information Field */ 2514#define DOT11_NGBR_BI_REACHABILTY_UNKN 0x0002 2515#define DOT11_NGBR_BI_REACHABILTY 0x0003 2516#define DOT11_NGBR_BI_SEC 0x0004 2517#define DOT11_NGBR_BI_KEY_SCOPE 0x0008 2518#define DOT11_NGBR_BI_CAP 0x03f0 2519#define DOT11_NGBR_BI_CAP_SPEC_MGMT 0x0010 2520#define DOT11_NGBR_BI_CAP_QOS 0x0020 2521#define DOT11_NGBR_BI_CAP_APSD 0x0040 2522#define DOT11_NGBR_BI_CAP_RDIO_MSMT 0x0080 2523#define DOT11_NGBR_BI_CAP_DEL_BA 0x0100 2524#define DOT11_NGBR_BI_CAP_IMM_BA 0x0200 2525#define DOT11_NGBR_BI_MOBILITY 0x0400 2526#define DOT11_NGBR_BI_HT 0x0800 2527 2528/* Neighbor Report element (11k & 11v) */ 2529BWL_PRE_PACKED_STRUCT struct dot11_neighbor_rep_ie { 2530 uint8 id; 2531 uint8 len; 2532 struct ether_addr bssid; 2533 uint32 bssid_info; 2534 uint8 reg; /* Operating class */ 2535 uint8 channel; 2536 uint8 phytype; 2537 uint8 data[1]; /* Variable size subelements */ 2538} BWL_POST_PACKED_STRUCT; 2539typedef struct dot11_neighbor_rep_ie dot11_neighbor_rep_ie_t; 2540#define DOT11_NEIGHBOR_REP_IE_FIXED_LEN 13 2541 2542 2543/* MLME Enumerations */ 2544#define DOT11_BSSTYPE_INFRASTRUCTURE 0 /* d11 infrastructure */ 2545#define DOT11_BSSTYPE_INDEPENDENT 1 /* d11 independent */ 2546#define DOT11_BSSTYPE_ANY 2 /* d11 any BSS type */ 2547#define DOT11_SCANTYPE_ACTIVE 0 /* d11 scan active */ 2548#define DOT11_SCANTYPE_PASSIVE 1 /* d11 scan passive */ 2549 2550/* Link Measurement */ 2551BWL_PRE_PACKED_STRUCT struct dot11_lmreq { 2552 uint8 category; /* category of action frame (5) */ 2553 uint8 action; /* radio measurement action */ 2554 uint8 token; /* dialog token */ 2555 uint8 txpwr; /* Transmit Power Used */ 2556 uint8 maxtxpwr; /* Max Transmit Power */ 2557} BWL_POST_PACKED_STRUCT; 2558typedef struct dot11_lmreq dot11_lmreq_t; 2559#define DOT11_LMREQ_LEN 5 2560 2561BWL_PRE_PACKED_STRUCT struct dot11_lmrep { 2562 uint8 category; /* category of action frame (5) */ 2563 uint8 action; /* radio measurement action */ 2564 uint8 token; /* dialog token */ 2565 dot11_tpc_rep_t tpc; /* TPC element */ 2566 uint8 rxant; /* Receive Antenna ID */ 2567 uint8 txant; /* Transmit Antenna ID */ 2568 uint8 rcpi; /* RCPI */ 2569 uint8 rsni; /* RSNI */ 2570} BWL_POST_PACKED_STRUCT; 2571typedef struct dot11_lmrep dot11_lmrep_t; 2572#define DOT11_LMREP_LEN 11 2573 2574/* 802.11 BRCM "Compromise" Pre N constants */ 2575#define PREN_PREAMBLE 24 /* green field preamble time */ 2576#define PREN_MM_EXT 12 /* extra mixed mode preamble time */ 2577#define PREN_PREAMBLE_EXT 4 /* extra preamble (multiply by unique_streams-1) */ 2578 2579/* 802.11N PHY constants */ 2580#define RIFS_11N_TIME 2 /* NPHY RIFS time */ 2581 2582/* 802.11 HT PLCP format 802.11n-2009, sec 20.3.9.4.3 2583 * HT-SIG is composed of two 24 bit parts, HT-SIG1 and HT-SIG2 2584 */ 2585/* HT-SIG1 */ 2586#define HT_SIG1_MCS_MASK 0x00007F 2587#define HT_SIG1_CBW 0x000080 2588#define HT_SIG1_HT_LENGTH 0xFFFF00 2589 2590/* HT-SIG2 */ 2591#define HT_SIG2_SMOOTHING 0x000001 2592#define HT_SIG2_NOT_SOUNDING 0x000002 2593#define HT_SIG2_RESERVED 0x000004 2594#define HT_SIG2_AGGREGATION 0x000008 2595#define HT_SIG2_STBC_MASK 0x000030 2596#define HT_SIG2_STBC_SHIFT 4 2597#define HT_SIG2_FEC_CODING 0x000040 2598#define HT_SIG2_SHORT_GI 0x000080 2599#define HT_SIG2_ESS_MASK 0x000300 2600#define HT_SIG2_ESS_SHIFT 8 2601#define HT_SIG2_CRC 0x03FC00 2602#define HT_SIG2_TAIL 0x1C0000 2603 2604/* HT Timing-related parameters (802.11-2012, sec 20.3.6) */ 2605#define HT_T_LEG_PREAMBLE 16 2606#define HT_T_L_SIG 4 2607#define HT_T_SIG 8 2608#define HT_T_LTF1 4 2609#define HT_T_GF_LTF1 8 2610#define HT_T_LTFs 4 2611#define HT_T_STF 4 2612#define HT_T_GF_STF 8 2613#define HT_T_SYML 4 2614 2615#define HT_N_SERVICE 16 /* bits in SERVICE field */ 2616#define HT_N_TAIL 6 /* tail bits per BCC encoder */ 2617 2618/* 802.11 A PHY constants */ 2619#define APHY_SLOT_TIME 9 /* APHY slot time */ 2620#define APHY_SIFS_TIME 16 /* APHY SIFS time */ 2621#define APHY_DIFS_TIME (APHY_SIFS_TIME + (2 * APHY_SLOT_TIME)) /* APHY DIFS time */ 2622#define APHY_PREAMBLE_TIME 16 /* APHY preamble time */ 2623#define APHY_SIGNAL_TIME 4 /* APHY signal time */ 2624#define APHY_SYMBOL_TIME 4 /* APHY symbol time */ 2625#define APHY_SERVICE_NBITS 16 /* APHY service nbits */ 2626#define APHY_TAIL_NBITS 6 /* APHY tail nbits */ 2627#define APHY_CWMIN 15 /* APHY cwmin */ 2628 2629/* 802.11 B PHY constants */ 2630#define BPHY_SLOT_TIME 20 /* BPHY slot time */ 2631#define BPHY_SIFS_TIME 10 /* BPHY SIFS time */ 2632#define BPHY_DIFS_TIME 50 /* BPHY DIFS time */ 2633#define BPHY_PLCP_TIME 192 /* BPHY PLCP time */ 2634#define BPHY_PLCP_SHORT_TIME 96 /* BPHY PLCP short time */ 2635#define BPHY_CWMIN 31 /* BPHY cwmin */ 2636 2637/* 802.11 G constants */ 2638#define DOT11_OFDM_SIGNAL_EXTENSION 6 /* d11 OFDM signal extension */ 2639 2640#define PHY_CWMAX 1023 /* PHY cwmax */ 2641 2642#define DOT11_MAXNUMFRAGS 16 /* max # fragments per MSDU */ 2643 2644/* 802.11 VHT constants */ 2645 2646typedef int vht_group_id_t; 2647 2648/* for VHT-A1 */ 2649/* SIG-A1 reserved bits */ 2650#define VHT_SIGA1_CONST_MASK 0x800004 2651 2652#define VHT_SIGA1_BW_MASK 0x000003 2653#define VHT_SIGA1_20MHZ_VAL 0x000000 2654#define VHT_SIGA1_40MHZ_VAL 0x000001 2655#define VHT_SIGA1_80MHZ_VAL 0x000002 2656#define VHT_SIGA1_160MHZ_VAL 0x000003 2657 2658#define VHT_SIGA1_STBC 0x000008 2659 2660#define VHT_SIGA1_GID_MASK 0x0003f0 2661#define VHT_SIGA1_GID_SHIFT 4 2662#define VHT_SIGA1_GID_TO_AP 0x00 2663#define VHT_SIGA1_GID_NOT_TO_AP 0x3f 2664#define VHT_SIGA1_GID_MAX_GID 0x3f 2665 2666#define VHT_SIGA1_NSTS_SHIFT_MASK_USER0 0x001C00 2667#define VHT_SIGA1_NSTS_SHIFT 10 2668 2669#define VHT_SIGA1_PARTIAL_AID_MASK 0x3fe000 2670#define VHT_SIGA1_PARTIAL_AID_SHIFT 13 2671 2672#define VHT_SIGA1_TXOP_PS_NOT_ALLOWED 0x400000 2673 2674/* for VHT-A2 */ 2675#define VHT_SIGA2_GI_NONE 0x000000 2676#define VHT_SIGA2_GI_SHORT 0x000001 2677#define VHT_SIGA2_GI_W_MOD10 0x000002 2678#define VHT_SIGA2_CODING_LDPC 0x000004 2679#define VHT_SIGA2_LDPC_EXTRA_OFDM_SYM 0x000008 2680#define VHT_SIGA2_BEAMFORM_ENABLE 0x000100 2681#define VHT_SIGA2_MCS_SHIFT 4 2682 2683#define VHT_SIGA2_B9_RESERVED 0x000200 2684#define VHT_SIGA2_TAIL_MASK 0xfc0000 2685#define VHT_SIGA2_TAIL_VALUE 0x000000 2686 2687/* VHT Timing-related parameters (802.11ac D4.0, sec 22.3.6) */ 2688#define VHT_T_LEG_PREAMBLE 16 2689#define VHT_T_L_SIG 4 2690#define VHT_T_SIG_A 8 2691#define VHT_T_LTF 4 2692#define VHT_T_STF 4 2693#define VHT_T_SIG_B 4 2694#define VHT_T_SYML 4 2695 2696#define VHT_N_SERVICE 16 /* bits in SERVICE field */ 2697#define VHT_N_TAIL 6 /* tail bits per BCC encoder */ 2698 2699 2700/* dot11Counters Table - 802.11 spec., Annex D */ 2701typedef struct d11cnt { 2702 uint32 txfrag; /* dot11TransmittedFragmentCount */ 2703 uint32 txmulti; /* dot11MulticastTransmittedFrameCount */ 2704 uint32 txfail; /* dot11FailedCount */ 2705 uint32 txretry; /* dot11RetryCount */ 2706 uint32 txretrie; /* dot11MultipleRetryCount */ 2707 uint32 rxdup; /* dot11FrameduplicateCount */ 2708 uint32 txrts; /* dot11RTSSuccessCount */ 2709 uint32 txnocts; /* dot11RTSFailureCount */ 2710 uint32 txnoack; /* dot11ACKFailureCount */ 2711 uint32 rxfrag; /* dot11ReceivedFragmentCount */ 2712 uint32 rxmulti; /* dot11MulticastReceivedFrameCount */ 2713 uint32 rxcrc; /* dot11FCSErrorCount */ 2714 uint32 txfrmsnt; /* dot11TransmittedFrameCount */ 2715 uint32 rxundec; /* dot11WEPUndecryptableCount */ 2716} d11cnt_t; 2717 2718/* OUI for BRCM proprietary IE */ 2719#define BRCM_PROP_OUI "\x00\x90\x4C" /* Broadcom proprietary OUI */ 2720 2721 2722/* brcm syscap_ie cap */ 2723#define BRCM_SYSCAP_WET_TUNNEL 0x0100 /* Device with WET_TUNNEL support */ 2724 2725/* BRCM OUI: Used in the proprietary(221) IE in all broadcom devices */ 2726#define BRCM_OUI "\x00\x10\x18" /* Broadcom OUI */ 2727 2728/* BRCM info element */ 2729BWL_PRE_PACKED_STRUCT struct brcm_ie { 2730 uint8 id; /* IE ID, 221, DOT11_MNG_PROPR_ID */ 2731 uint8 len; /* IE length */ 2732 uint8 oui[3]; /* Proprietary OUI, BRCM_OUI */ 2733 uint8 ver; /* type/ver of this IE */ 2734 uint8 assoc; /* # of assoc STAs */ 2735 uint8 flags; /* misc flags */ 2736 uint8 flags1; /* misc flags */ 2737 uint16 amsdu_mtu_pref; /* preferred A-MSDU MTU */ 2738} BWL_POST_PACKED_STRUCT; 2739typedef struct brcm_ie brcm_ie_t; 2740#define BRCM_IE_LEN 11 /* BRCM IE length */ 2741#define BRCM_IE_VER 2 /* BRCM IE version */ 2742#define BRCM_IE_LEGACY_AES_VER 1 /* BRCM IE legacy AES version */ 2743 2744/* brcm_ie flags */ 2745#define BRF_LZWDS 0x4 /* lazy wds enabled */ 2746#define BRF_BLOCKACK 0x8 /* BlockACK capable */ 2747 2748/* brcm_ie flags1 */ 2749#define BRF1_AMSDU 0x1 /* A-MSDU capable */ 2750#define BRF1_WMEPS 0x4 /* AP is capable of handling WME + PS w/o APSD */ 2751#define BRF1_PSOFIX 0x8 /* AP has fixed PS mode out-of-order packets */ 2752#define BRF1_RX_LARGE_AGG 0x10 /* device can rx large aggregates */ 2753#define BRF1_RFAWARE_DCS 0x20 /* RFAWARE dynamic channel selection (DCS) */ 2754#define BRF1_SOFTAP 0x40 /* Configure as Broadcom SOFTAP */ 2755#define BRF1_DWDS 0x80 /* DWDS capable */ 2756 2757/* Vendor IE structure */ 2758BWL_PRE_PACKED_STRUCT struct vndr_ie { 2759 uchar id; 2760 uchar len; 2761 uchar oui [3]; 2762 uchar data [1]; /* Variable size data */ 2763} BWL_POST_PACKED_STRUCT; 2764typedef struct vndr_ie vndr_ie_t; 2765 2766#define VNDR_IE_HDR_LEN 2 /* id + len field */ 2767#define VNDR_IE_MIN_LEN 3 /* size of the oui field */ 2768#define VNDR_IE_FIXED_LEN (VNDR_IE_HDR_LEN + VNDR_IE_MIN_LEN) 2769 2770#define VNDR_IE_MAX_LEN 255 /* vendor IE max length, without ID and len */ 2771 2772/* BRCM PROP DEVICE PRIMARY MAC ADDRESS IE */ 2773BWL_PRE_PACKED_STRUCT struct member_of_brcm_prop_ie { 2774 uchar id; 2775 uchar len; 2776 uchar oui[3]; 2777 uint8 type; /* type inidicates what follows */ 2778 struct ether_addr ea; /* Device Primary MAC Adrress */ 2779} BWL_POST_PACKED_STRUCT; 2780typedef struct member_of_brcm_prop_ie member_of_brcm_prop_ie_t; 2781 2782#define MEMBER_OF_BRCM_PROP_IE_LEN 10 /* IE max length */ 2783#define MEMBER_OF_BRCM_PROP_IE_TYPE 54 2784 2785/* BRCM Reliable Multicast IE */ 2786BWL_PRE_PACKED_STRUCT struct relmcast_brcm_prop_ie { 2787 uchar id; 2788 uchar len; 2789 uchar oui[3]; 2790 uint8 type; /* type inidicates what follows */ 2791 struct ether_addr ea; /* The ack sender's MAC Adrress */ 2792 struct ether_addr mcast_ea; /* The multicast MAC address */ 2793 uint8 updtmo; /* time interval(second) for client to send null packet to report its rssi */ 2794} BWL_POST_PACKED_STRUCT; 2795typedef struct relmcast_brcm_prop_ie relmcast_brcm_prop_ie_t; 2796 2797#define RELMCAST_BRCM_PROP_IE_LEN (sizeof(relmcast_brcm_prop_ie_t)-2) /* IE length */ 2798#define RELMCAST_BRCM_PROP_IE_TYPE 55 2799 2800/* ************* HT definitions. ************* */ 2801#define MCSSET_LEN 16 /* 16-bits per 8-bit set to give 128-bits bitmap of MCS Index */ 2802#define MAX_MCS_NUM (128) /* max mcs number = 128 */ 2803 2804BWL_PRE_PACKED_STRUCT struct ht_cap_ie { 2805 uint16 cap; 2806 uint8 params; 2807 uint8 supp_mcs[MCSSET_LEN]; 2808 uint16 ext_htcap; 2809 uint32 txbf_cap; 2810 uint8 as_cap; 2811} BWL_POST_PACKED_STRUCT; 2812typedef struct ht_cap_ie ht_cap_ie_t; 2813 2814BWL_PRE_PACKED_STRUCT struct dot11_ht_cap_ie { 2815 uint8 id; 2816 uint8 len; 2817 ht_cap_ie_t ht_cap; 2818} BWL_POST_PACKED_STRUCT; 2819typedef struct dot11_ht_cap_ie dot11_ht_cap_ie_t; 2820 2821/* CAP IE: HT 1.0 spec. simply stole a 802.11 IE, we use our prop. IE until this is resolved */ 2822/* the capability IE is primarily used to convey this nodes abilities */ 2823BWL_PRE_PACKED_STRUCT struct ht_prop_cap_ie { 2824 uint8 id; /* IE ID, 221, DOT11_MNG_PROPR_ID */ 2825 uint8 len; /* IE length */ 2826 uint8 oui[3]; /* Proprietary OUI, BRCM_PROP_OUI */ 2827 uint8 type; /* type inidicates what follows */ 2828 ht_cap_ie_t cap_ie; 2829} BWL_POST_PACKED_STRUCT; 2830typedef struct ht_prop_cap_ie ht_prop_cap_ie_t; 2831 2832#define HT_PROP_IE_OVERHEAD 4 /* overhead bytes for prop oui ie */ 2833#define HT_CAP_IE_LEN 26 /* HT capability len (based on .11n d2.0) */ 2834#define HT_CAP_IE_TYPE 51 2835 2836#define HT_CAP_LDPC_CODING 0x0001 /* Support for rx of LDPC coded pkts */ 2837#define HT_CAP_40MHZ 0x0002 /* FALSE:20Mhz, TRUE:20/40MHZ supported */ 2838#define HT_CAP_MIMO_PS_MASK 0x000C /* Mimo PS mask */ 2839#define HT_CAP_MIMO_PS_SHIFT 0x0002 /* Mimo PS shift */ 2840#define HT_CAP_MIMO_PS_OFF 0x0003 /* Mimo PS, no restriction */ 2841#define HT_CAP_MIMO_PS_RTS 0x0001 /* Mimo PS, send RTS/CTS around MIMO frames */ 2842#define HT_CAP_MIMO_PS_ON 0x0000 /* Mimo PS, MIMO disallowed */ 2843#define HT_CAP_GF 0x0010 /* Greenfield preamble support */ 2844#define HT_CAP_SHORT_GI_20 0x0020 /* 20MHZ short guard interval support */ 2845#define HT_CAP_SHORT_GI_40 0x0040 /* 40Mhz short guard interval support */ 2846#define HT_CAP_TX_STBC 0x0080 /* Tx STBC support */ 2847#define HT_CAP_RX_STBC_MASK 0x0300 /* Rx STBC mask */ 2848#define HT_CAP_RX_STBC_SHIFT 8 /* Rx STBC shift */ 2849#define HT_CAP_DELAYED_BA 0x0400 /* delayed BA support */ 2850#define HT_CAP_MAX_AMSDU 0x0800 /* Max AMSDU size in bytes , 0=3839, 1=7935 */ 2851 2852#define HT_CAP_DSSS_CCK 0x1000 /* DSSS/CCK supported by the BSS */ 2853#define HT_CAP_PSMP 0x2000 /* Power Save Multi Poll support */ 2854#define HT_CAP_40MHZ_INTOLERANT 0x4000 /* 40MHz Intolerant */ 2855#define HT_CAP_LSIG_TXOP 0x8000 /* L-SIG TXOP protection support */ 2856 2857#define HT_CAP_RX_STBC_NO 0x0 /* no rx STBC support */ 2858#define HT_CAP_RX_STBC_ONE_STREAM 0x1 /* rx STBC support of 1 spatial stream */ 2859#define HT_CAP_RX_STBC_TWO_STREAM 0x2 /* rx STBC support of 1-2 spatial streams */ 2860#define HT_CAP_RX_STBC_THREE_STREAM 0x3 /* rx STBC support of 1-3 spatial streams */ 2861 2862 2863#define HT_CAP_TXBF_CAP_IMPLICIT_TXBF_RX 0x1 2864#define HT_CAP_TXBF_CAP_NDP_TX 0x8 2865#define HT_CAP_TXBF_CAP_NDP_RX 0x10 2866#define HT_CAP_TXBF_CAP_EXPLICIT_CSI 0x100 2867#define HT_CAP_TXBF_CAP_EXPLICIT_NC_STEERING 0x200 2868#define HT_CAP_TXBF_CAP_EXPLICIT_C_STEERING 0x400 2869#define HT_CAP_TXBF_CAP_EXPLICIT_CSI_FB_MASK 0x1800 2870#define HT_CAP_TXBF_CAP_EXPLICIT_CSI_FB_SHIFT 11 2871#define HT_CAP_TXBF_CAP_EXPLICIT_NC_FB_MASK 0x6000 2872#define HT_CAP_TXBF_CAP_EXPLICIT_NC_FB_SHIFT 13 2873#define HT_CAP_TXBF_CAP_EXPLICIT_C_FB_MASK 0x18000 2874#define HT_CAP_TXBF_CAP_EXPLICIT_C_FB_SHIFT 15 2875#define HT_CAP_TXBF_CAP_CSI_BFR_ANT_SHIFT 19 2876#define HT_CAP_TXBF_CAP_NC_BFR_ANT_SHIFT 21 2877#define HT_CAP_TXBF_CAP_C_BFR_ANT_SHIFT 23 2878#define HT_CAP_TXBF_CAP_C_BFR_ANT_MASK 0x1800000 2879 2880#define HT_CAP_TXBF_CAP_CHAN_ESTIM_SHIFT 27 2881#define HT_CAP_TXBF_CAP_CHAN_ESTIM_MASK 0x18000000 2882 2883#define HT_CAP_TXBF_FB_TYPE_NONE 0 2884#define HT_CAP_TXBF_FB_TYPE_DELAYED 1 2885#define HT_CAP_TXBF_FB_TYPE_IMMEDIATE 2 2886#define HT_CAP_TXBF_FB_TYPE_BOTH 3 2887 2888#define HT_CAP_TX_BF_CAP_EXPLICIT_CSI_FB_MASK 0x400 2889#define HT_CAP_TX_BF_CAP_EXPLICIT_CSI_FB_SHIFT 10 2890#define HT_CAP_TX_BF_CAP_EXPLICIT_COMPRESSED_FB_MASK 0x18000 2891#define HT_CAP_TX_BF_CAP_EXPLICIT_COMPRESSED_FB_SHIFT 15 2892 2893#define VHT_MAX_MPDU 11454 /* max mpdu size for now (bytes) */ 2894#define VHT_MPDU_MSDU_DELTA 56 /* Difference in spec - vht mpdu, amsdu len */ 2895/* Max AMSDU len - per spec */ 2896#define VHT_MAX_AMSDU (VHT_MAX_MPDU - VHT_MPDU_MSDU_DELTA) 2897 2898#define HT_MAX_AMSDU 7935 /* max amsdu size (bytes) per the HT spec */ 2899#define HT_MIN_AMSDU 3835 /* min amsdu size (bytes) per the HT spec */ 2900 2901#define HT_PARAMS_RX_FACTOR_MASK 0x03 /* ampdu rcv factor mask */ 2902#define HT_PARAMS_DENSITY_MASK 0x1C /* ampdu density mask */ 2903#define HT_PARAMS_DENSITY_SHIFT 2 /* ampdu density shift */ 2904 2905/* HT/AMPDU specific define */ 2906#define AMPDU_MAX_MPDU_DENSITY 7 /* max mpdu density; in 1/4 usec units */ 2907#define AMPDU_DENSITY_NONE 0 /* No density requirement */ 2908#define AMPDU_DENSITY_1over4_US 1 /* 1/4 us density */ 2909#define AMPDU_DENSITY_1over2_US 2 /* 1/2 us density */ 2910#define AMPDU_DENSITY_1_US 3 /* 1 us density */ 2911#define AMPDU_DENSITY_2_US 4 /* 2 us density */ 2912#define AMPDU_DENSITY_4_US 5 /* 4 us density */ 2913#define AMPDU_DENSITY_8_US 6 /* 8 us density */ 2914#define AMPDU_DENSITY_16_US 7 /* 16 us density */ 2915#define AMPDU_RX_FACTOR_8K 0 /* max rcv ampdu len (8kb) */ 2916#define AMPDU_RX_FACTOR_16K 1 /* max rcv ampdu len (16kb) */ 2917#define AMPDU_RX_FACTOR_32K 2 /* max rcv ampdu len (32kb) */ 2918#define AMPDU_RX_FACTOR_64K 3 /* max rcv ampdu len (64kb) */ 2919#define AMPDU_RX_FACTOR_BASE 8*1024 /* ampdu factor base for rx len */ 2920 2921#define AMPDU_DELIMITER_LEN 4 /* length of ampdu delimiter */ 2922#define AMPDU_DELIMITER_LEN_MAX 63 /* max length of ampdu delimiter(enforced in HW) */ 2923 2924#define HT_CAP_EXT_PCO 0x0001 2925#define HT_CAP_EXT_PCO_TTIME_MASK 0x0006 2926#define HT_CAP_EXT_PCO_TTIME_SHIFT 1 2927#define HT_CAP_EXT_MCS_FEEDBACK_MASK 0x0300 2928#define HT_CAP_EXT_MCS_FEEDBACK_SHIFT 8 2929#define HT_CAP_EXT_HTC 0x0400 2930#define HT_CAP_EXT_RD_RESP 0x0800 2931 2932BWL_PRE_PACKED_STRUCT struct ht_add_ie { 2933 uint8 ctl_ch; /* control channel number */ 2934 uint8 byte1; /* ext ch,rec. ch. width, RIFS support */ 2935 uint16 opmode; /* operation mode */ 2936 uint16 misc_bits; /* misc bits */ 2937 uint8 basic_mcs[MCSSET_LEN]; /* required MCS set */ 2938} BWL_POST_PACKED_STRUCT; 2939typedef struct ht_add_ie ht_add_ie_t; 2940 2941/* ADD IE: HT 1.0 spec. simply stole a 802.11 IE, we use our prop. IE until this is resolved */ 2942/* the additional IE is primarily used to convey the current BSS configuration */ 2943BWL_PRE_PACKED_STRUCT struct ht_prop_add_ie { 2944 uint8 id; /* IE ID, 221, DOT11_MNG_PROPR_ID */ 2945 uint8 len; /* IE length */ 2946 uint8 oui[3]; /* Proprietary OUI, BRCM_PROP_OUI */ 2947 uint8 type; /* indicates what follows */ 2948 ht_add_ie_t add_ie; 2949} BWL_POST_PACKED_STRUCT; 2950typedef struct ht_prop_add_ie ht_prop_add_ie_t; 2951 2952#define HT_ADD_IE_LEN 22 2953#define HT_ADD_IE_TYPE 52 2954 2955/* byte1 defn's */ 2956#define HT_BW_ANY 0x04 /* set, STA can use 20 or 40MHz */ 2957#define HT_RIFS_PERMITTED 0x08 /* RIFS allowed */ 2958 2959/* opmode defn's */ 2960#define HT_OPMODE_MASK 0x0003 /* protection mode mask */ 2961#define HT_OPMODE_SHIFT 0 /* protection mode shift */ 2962#define HT_OPMODE_PURE 0x0000 /* protection mode PURE */ 2963#define HT_OPMODE_OPTIONAL 0x0001 /* protection mode optional */ 2964#define HT_OPMODE_HT20IN40 0x0002 /* protection mode 20MHz HT in 40MHz BSS */ 2965#define HT_OPMODE_MIXED 0x0003 /* protection mode Mixed Mode */ 2966#define HT_OPMODE_NONGF 0x0004 /* protection mode non-GF */ 2967#define DOT11N_TXBURST 0x0008 /* Tx burst limit */ 2968#define DOT11N_OBSS_NONHT 0x0010 /* OBSS Non-HT STA present */ 2969 2970/* misc_bites defn's */ 2971#define HT_BASIC_STBC_MCS 0x007f /* basic STBC MCS */ 2972#define HT_DUAL_STBC_PROT 0x0080 /* Dual STBC Protection */ 2973#define HT_SECOND_BCN 0x0100 /* Secondary beacon support */ 2974#define HT_LSIG_TXOP 0x0200 /* L-SIG TXOP Protection full support */ 2975#define HT_PCO_ACTIVE 0x0400 /* PCO active */ 2976#define HT_PCO_PHASE 0x0800 /* PCO phase */ 2977#define HT_DUALCTS_PROTECTION 0x0080 /* DUAL CTS protection needed */ 2978 2979/* Tx Burst Limits */ 2980#define DOT11N_2G_TXBURST_LIMIT 6160 /* 2G band Tx burst limit per 802.11n Draft 1.10 (usec) */ 2981#define DOT11N_5G_TXBURST_LIMIT 3080 /* 5G band Tx burst limit per 802.11n Draft 1.10 (usec) */ 2982 2983/* Macros for opmode */ 2984#define GET_HT_OPMODE(add_ie) ((ltoh16_ua(&add_ie->opmode) & HT_OPMODE_MASK) \ 2985 >> HT_OPMODE_SHIFT) 2986#define HT_MIXEDMODE_PRESENT(add_ie) ((ltoh16_ua(&add_ie->opmode) & HT_OPMODE_MASK) \ 2987 == HT_OPMODE_MIXED) /* mixed mode present */ 2988#define HT_HT20_PRESENT(add_ie) ((ltoh16_ua(&add_ie->opmode) & HT_OPMODE_MASK) \ 2989 == HT_OPMODE_HT20IN40) /* 20MHz HT present */ 2990#define HT_OPTIONAL_PRESENT(add_ie) ((ltoh16_ua(&add_ie->opmode) & HT_OPMODE_MASK) \ 2991 == HT_OPMODE_OPTIONAL) /* Optional protection present */ 2992#define HT_USE_PROTECTION(add_ie) (HT_HT20_PRESENT((add_ie)) || \ 2993 HT_MIXEDMODE_PRESENT((add_ie))) /* use protection */ 2994#define HT_NONGF_PRESENT(add_ie) ((ltoh16_ua(&add_ie->opmode) & HT_OPMODE_NONGF) \ 2995 == HT_OPMODE_NONGF) /* non-GF present */ 2996#define DOT11N_TXBURST_PRESENT(add_ie) ((ltoh16_ua(&add_ie->opmode) & DOT11N_TXBURST) \ 2997 == DOT11N_TXBURST) /* Tx Burst present */ 2998#define DOT11N_OBSS_NONHT_PRESENT(add_ie) ((ltoh16_ua(&add_ie->opmode) & DOT11N_OBSS_NONHT) \ 2999 == DOT11N_OBSS_NONHT) /* OBSS Non-HT present */ 3000 3001BWL_PRE_PACKED_STRUCT struct obss_params { 3002 uint16 passive_dwell; 3003 uint16 active_dwell; 3004 uint16 bss_widthscan_interval; 3005 uint16 passive_total; 3006 uint16 active_total; 3007 uint16 chanwidth_transition_dly; 3008 uint16 activity_threshold; 3009} BWL_POST_PACKED_STRUCT; 3010typedef struct obss_params obss_params_t; 3011 3012BWL_PRE_PACKED_STRUCT struct dot11_obss_ie { 3013 uint8 id; 3014 uint8 len; 3015 obss_params_t obss_params; 3016} BWL_POST_PACKED_STRUCT; 3017typedef struct dot11_obss_ie dot11_obss_ie_t; 3018#define DOT11_OBSS_SCAN_IE_LEN sizeof(obss_params_t) /* HT OBSS len (based on 802.11n d3.0) */ 3019 3020/* HT control field */ 3021#define HT_CTRL_LA_TRQ 0x00000002 /* sounding request */ 3022#define HT_CTRL_LA_MAI 0x0000003C /* MCS request or antenna selection indication */ 3023#define HT_CTRL_LA_MAI_SHIFT 2 3024#define HT_CTRL_LA_MAI_MRQ 0x00000004 /* MCS request */ 3025#define HT_CTRL_LA_MAI_MSI 0x00000038 /* MCS request sequence identifier */ 3026#define HT_CTRL_LA_MFSI 0x000001C0 /* MFB sequence identifier */ 3027#define HT_CTRL_LA_MFSI_SHIFT 6 3028#define HT_CTRL_LA_MFB_ASELC 0x0000FE00 /* MCS feedback, antenna selection command/data */ 3029#define HT_CTRL_LA_MFB_ASELC_SH 9 3030#define HT_CTRL_LA_ASELC_CMD 0x00000C00 /* ASEL command */ 3031#define HT_CTRL_LA_ASELC_DATA 0x0000F000 /* ASEL data */ 3032#define HT_CTRL_CAL_POS 0x00030000 /* Calibration position */ 3033#define HT_CTRL_CAL_SEQ 0x000C0000 /* Calibration sequence */ 3034#define HT_CTRL_CSI_STEERING 0x00C00000 /* CSI/Steering */ 3035#define HT_CTRL_CSI_STEER_SHIFT 22 3036#define HT_CTRL_CSI_STEER_NFB 0 /* no fedback required */ 3037#define HT_CTRL_CSI_STEER_CSI 1 /* CSI, H matrix */ 3038#define HT_CTRL_CSI_STEER_NCOM 2 /* non-compressed beamforming */ 3039#define HT_CTRL_CSI_STEER_COM 3 /* compressed beamforming */ 3040#define HT_CTRL_NDP_ANNOUNCE 0x01000000 /* NDP announcement */ 3041#define HT_CTRL_AC_CONSTRAINT 0x40000000 /* AC Constraint */ 3042#define HT_CTRL_RDG_MOREPPDU 0x80000000 /* RDG/More PPDU */ 3043 3044#define HT_OPMODE_OPTIONAL 0x0001 /* protection mode optional */ 3045#define HT_OPMODE_HT20IN40 0x0002 /* protection mode 20MHz HT in 40MHz BSS */ 3046#define HT_OPMODE_MIXED 0x0003 /* protection mode Mixed Mode */ 3047#define HT_OPMODE_NONGF 0x0004 /* protection mode non-GF */ 3048#define DOT11N_TXBURST 0x0008 /* Tx burst limit */ 3049#define DOT11N_OBSS_NONHT 0x0010 /* OBSS Non-HT STA present */ 3050 3051/* ************* VHT definitions. ************* */ 3052 3053/* 3054 * VHT Capabilites IE (sec 8.4.2.160) 3055 */ 3056 3057BWL_PRE_PACKED_STRUCT struct vht_cap_ie { 3058 uint32 vht_cap_info; 3059 /* supported MCS set - 64 bit field */ 3060 uint16 rx_mcs_map; 3061 uint16 rx_max_rate; 3062 uint16 tx_mcs_map; 3063 uint16 tx_max_rate; 3064} BWL_POST_PACKED_STRUCT; 3065typedef struct vht_cap_ie vht_cap_ie_t; 3066 3067/* 4B cap_info + 8B supp_mcs */ 3068#define VHT_CAP_IE_LEN 12 3069 3070/* VHT Capabilities Info field - 32bit - in VHT Cap IE */ 3071#define VHT_CAP_INFO_MAX_MPDU_LEN_MASK 0x00000003 3072#define VHT_CAP_INFO_SUPP_CHAN_WIDTH_MASK 0x0000000c 3073#define VHT_CAP_INFO_LDPC 0x00000010 3074#define VHT_CAP_INFO_SGI_80MHZ 0x00000020 3075#define VHT_CAP_INFO_SGI_160MHZ 0x00000040 3076#define VHT_CAP_INFO_TX_STBC 0x00000080 3077#define VHT_CAP_INFO_RX_STBC_MASK 0x00000700 3078#define VHT_CAP_INFO_RX_STBC_SHIFT 8 3079#define VHT_CAP_INFO_SU_BEAMFMR 0x00000800 3080#define VHT_CAP_INFO_SU_BEAMFMEE 0x00001000 3081#define VHT_CAP_INFO_NUM_BMFMR_ANT_MASK 0x0000e000 3082#define VHT_CAP_INFO_NUM_BMFMR_ANT_SHIFT 13 3083#define VHT_CAP_INFO_NUM_SOUNDING_DIM_MASK 0x00070000 3084#define VHT_CAP_INFO_NUM_SOUNDING_DIM_SHIFT 16 3085#define VHT_CAP_INFO_MU_BEAMFMR 0x00080000 3086#define VHT_CAP_INFO_MU_BEAMFMEE 0x00100000 3087#define VHT_CAP_INFO_TXOPPS 0x00200000 3088#define VHT_CAP_INFO_HTCVHT 0x00400000 3089#define VHT_CAP_INFO_AMPDU_MAXLEN_EXP_MASK 0x03800000 3090#define VHT_CAP_INFO_AMPDU_MAXLEN_EXP_SHIFT 23 3091#define VHT_CAP_INFO_LINK_ADAPT_CAP_MASK 0x0c000000 3092#define VHT_CAP_INFO_LINK_ADAPT_CAP_SHIFT 26 3093 3094/* VHT Supported MCS Set - 64-bit - in VHT Cap IE */ 3095#define VHT_CAP_SUPP_MCS_RX_HIGHEST_RATE_MASK 0x1fff 3096#define VHT_CAP_SUPP_MCS_RX_HIGHEST_RATE_SHIFT 0 3097 3098#define VHT_CAP_SUPP_MCS_TX_HIGHEST_RATE_MASK 0x1fff 3099#define VHT_CAP_SUPP_MCS_TX_HIGHEST_RATE_SHIFT 0 3100 3101#define VHT_CAP_MCS_MAP_0_7 0 3102#define VHT_CAP_MCS_MAP_0_8 1 3103#define VHT_CAP_MCS_MAP_0_9 2 3104#define VHT_CAP_MCS_MAP_NONE 3 3105#define VHT_CAP_MCS_MAP_S 2 /* num bits for 1-stream */ 3106#define VHT_CAP_MCS_MAP_M 0x3 /* mask for 1-stream */ 3107/* assumes VHT_CAP_MCS_MAP_NONE is 3 and 2 bits are used for encoding */ 3108#define VHT_CAP_MCS_MAP_NONE_ALL 0xffff 3109/* mcsmap with MCS0-9 for Nss = 3 */ 3110#define VHT_CAP_MCS_MAP_0_9_NSS3 \ 3111 ((VHT_CAP_MCS_MAP_0_9 << VHT_MCS_MAP_GET_SS_IDX(1)) | \ 3112 (VHT_CAP_MCS_MAP_0_9 << VHT_MCS_MAP_GET_SS_IDX(2)) | \ 3113 (VHT_CAP_MCS_MAP_0_9 << VHT_MCS_MAP_GET_SS_IDX(3))) 3114 3115#define VHT_CAP_MCS_MAP_NSS_MAX 8 3116 3117/* get mcsmap with given mcs for given nss streams */ 3118#define VHT_CAP_MCS_MAP_CREATE(mcsmap, nss, mcs) \ 3119 do { \ 3120 int i; \ 3121 for (i = 1; i <= nss; i++) { \ 3122 VHT_MCS_MAP_SET_MCS_PER_SS(i, mcs, mcsmap); \ 3123 } \ 3124 } while (0) 3125 3126/* Map the mcs code to mcs bit map */ 3127#define VHT_MCS_CODE_TO_MCS_MAP(mcs_code) \ 3128 ((mcs_code == VHT_CAP_MCS_MAP_0_7) ? 0xff : \ 3129 (mcs_code == VHT_CAP_MCS_MAP_0_8) ? 0x1ff : \ 3130 (mcs_code == VHT_CAP_MCS_MAP_0_9) ? 0x3ff : 0) 3131 3132/* Map the mcs bit map to mcs code */ 3133#define VHT_MCS_MAP_TO_MCS_CODE(mcs_map) \ 3134 ((mcs_map == 0xff) ? VHT_CAP_MCS_MAP_0_7 : \ 3135 (mcs_map == 0x1ff) ? VHT_CAP_MCS_MAP_0_8 : \ 3136 (mcs_map == 0x3ff) ? VHT_CAP_MCS_MAP_0_9 : VHT_CAP_MCS_MAP_NONE) 3137 3138/* VHT Capabilities Supported Channel Width */ 3139typedef enum vht_cap_chan_width { 3140 VHT_CAP_CHAN_WIDTH_SUPPORT_MANDATORY = 0x00, 3141 VHT_CAP_CHAN_WIDTH_SUPPORT_160 = 0x04, 3142 VHT_CAP_CHAN_WIDTH_SUPPORT_160_8080 = 0x08 3143} vht_cap_chan_width_t; 3144 3145/* VHT Capabilities Supported max MPDU LEN (sec 8.4.2.160.2) */ 3146typedef enum vht_cap_max_mpdu_len { 3147 VHT_CAP_MPDU_MAX_4K = 0x00, 3148 VHT_CAP_MPDU_MAX_8K = 0x01, 3149 VHT_CAP_MPDU_MAX_11K = 0x02 3150} vht_cap_max_mpdu_len_t; 3151 3152/* Maximum MPDU Length byte counts for the VHT Capabilities advertised limits */ 3153#define VHT_MPDU_LIMIT_4K 3895 3154#define VHT_MPDU_LIMIT_8K 7991 3155#define VHT_MPDU_LIMIT_11K 11454 3156 3157 3158/* 3159 * VHT Operation IE (sec 8.4.2.161) 3160 */ 3161 3162BWL_PRE_PACKED_STRUCT struct vht_op_ie { 3163 uint8 chan_width; 3164 uint8 chan1; 3165 uint8 chan2; 3166 uint16 supp_mcs; /* same def as above in vht cap */ 3167} BWL_POST_PACKED_STRUCT; 3168typedef struct vht_op_ie vht_op_ie_t; 3169 3170/* 3B VHT Op info + 2B Basic MCS */ 3171#define VHT_OP_IE_LEN 5 3172 3173typedef enum vht_op_chan_width { 3174 VHT_OP_CHAN_WIDTH_20_40 = 0, 3175 VHT_OP_CHAN_WIDTH_80 = 1, 3176 VHT_OP_CHAN_WIDTH_160 = 2, 3177 VHT_OP_CHAN_WIDTH_80_80 = 3 3178} vht_op_chan_width_t; 3179 3180/* AID length */ 3181#define AID_IE_LEN 2 3182/* 3183 * BRCM vht features IE header 3184 * The header if the fixed part of the IE 3185 * On the 5GHz band this is the entire IE, 3186 * on 2.4GHz the VHT IEs as defined in the 802.11ac 3187 * specification follows 3188 * 3189 * 3190 * VHT features rates bitmap. 3191 * Bit0: 5G MCS 0-9 BW 160MHz 3192 * Bit1: 5G MCS 0-9 support BW 80MHz 3193 * Bit2: 5G MCS 0-9 support BW 20MHz 3194 * Bit3: 2.4G MCS 0-9 support BW 20MHz 3195 * Bits:4-7 Reserved for future use 3196 * 3197 */ 3198#define VHT_FEATURES_IE_TYPE 0x4 3199BWL_PRE_PACKED_STRUCT struct vht_features_ie_hdr { 3200 uint8 oui[3]; /* Proprietary OUI, BRCM_PROP_OUI */ 3201 uint8 type; /* type of this IE = 4 */ 3202 uint8 rate_mask; /* VHT rate mask */ 3203} BWL_POST_PACKED_STRUCT; 3204typedef struct vht_features_ie_hdr vht_features_ie_hdr_t; 3205 3206/* Def for rx & tx basic mcs maps - ea ss num has 2 bits of info */ 3207#define VHT_MCS_MAP_GET_SS_IDX(nss) (((nss)-1) * VHT_CAP_MCS_MAP_S) 3208#define VHT_MCS_MAP_GET_MCS_PER_SS(nss, mcsMap) \ 3209 (((mcsMap) >> VHT_MCS_MAP_GET_SS_IDX(nss)) & VHT_CAP_MCS_MAP_M) 3210#define VHT_MCS_MAP_SET_MCS_PER_SS(nss, numMcs, mcsMap) \ 3211 do { \ 3212 (mcsMap) &= (~(VHT_CAP_MCS_MAP_M << VHT_MCS_MAP_GET_SS_IDX(nss))); \ 3213 (mcsMap) |= (((numMcs) & VHT_CAP_MCS_MAP_M) << VHT_MCS_MAP_GET_SS_IDX(nss)); \ 3214 } while (0) 3215#define VHT_MCS_SS_SUPPORTED(nss, mcsMap) \ 3216 (VHT_MCS_MAP_GET_MCS_PER_SS((nss), (mcsMap)) != VHT_CAP_MCS_MAP_NONE) 3217 3218 3219/* ************* WPA definitions. ************* */ 3220#define WPA_OUI "\x00\x50\xF2" /* WPA OUI */ 3221#define WPA_OUI_LEN 3 /* WPA OUI length */ 3222#define WPA_OUI_TYPE 1 3223#define WPA_VERSION 1 /* WPA version */ 3224#define WPA2_OUI "\x00\x0F\xAC" /* WPA2 OUI */ 3225#define WPA2_OUI_LEN 3 /* WPA2 OUI length */ 3226#define WPA2_VERSION 1 /* WPA2 version */ 3227#define WPA2_VERSION_LEN 2 /* WAP2 version length */ 3228 3229/* ************* WPS definitions. ************* */ 3230#define WPS_OUI "\x00\x50\xF2" /* WPS OUI */ 3231#define WPS_OUI_LEN 3 /* WPS OUI length */ 3232#define WPS_OUI_TYPE 4 3233 3234/* ************* WFA definitions. ************* */ 3235 3236#ifdef P2P_IE_OVRD 3237#define WFA_OUI MAC_OUI 3238#else 3239#define WFA_OUI "\x50\x6F\x9A" /* WFA OUI */ 3240#endif /* P2P_IE_OVRD */ 3241#define WFA_OUI_LEN 3 /* WFA OUI length */ 3242#ifdef P2P_IE_OVRD 3243#define WFA_OUI_TYPE_P2P MAC_OUI_TYPE_P2P 3244#else 3245#define WFA_OUI_TYPE_TPC 8 3246#define WFA_OUI_TYPE_P2P 9 3247#endif 3248 3249#define WFA_OUI_TYPE_TPC 8 3250#ifdef WLTDLS 3251#define WFA_OUI_TYPE_TPQ 4 /* WFD Tunneled Probe ReQuest */ 3252#define WFA_OUI_TYPE_TPS 5 /* WFD Tunneled Probe ReSponse */ 3253#define WFA_OUI_TYPE_WFD 10 3254#endif /* WTDLS */ 3255#define WFA_OUI_TYPE_HS20 0x10 3256 3257/* RSN authenticated key managment suite */ 3258#define RSN_AKM_NONE 0 /* None (IBSS) */ 3259#define RSN_AKM_UNSPECIFIED 1 /* Over 802.1x */ 3260#define RSN_AKM_PSK 2 /* Pre-shared Key */ 3261#define RSN_AKM_FBT_1X 3 /* Fast Bss transition using 802.1X */ 3262#define RSN_AKM_FBT_PSK 4 /* Fast Bss transition using Pre-shared Key */ 3263#define RSN_AKM_MFP_1X 5 /* SHA256 key derivation, using 802.1X */ 3264#define RSN_AKM_MFP_PSK 6 /* SHA256 key derivation, using Pre-shared Key */ 3265#define RSN_AKM_TPK 7 /* TPK(TDLS Peer Key) handshake */ 3266 3267/* Key related defines */ 3268#define DOT11_MAX_DEFAULT_KEYS 4 /* number of default keys */ 3269#define DOT11_MAX_KEY_SIZE 32 /* max size of any key */ 3270#define DOT11_MAX_IV_SIZE 16 /* max size of any IV */ 3271#define DOT11_EXT_IV_FLAG (1<<5) /* flag to indicate IV is > 4 bytes */ 3272#define DOT11_WPA_KEY_RSC_LEN 8 /* WPA RSC key len */ 3273 3274#define WEP1_KEY_SIZE 5 /* max size of any WEP key */ 3275#define WEP1_KEY_HEX_SIZE 10 /* size of WEP key in hex. */ 3276#define WEP128_KEY_SIZE 13 /* max size of any WEP key */ 3277#define WEP128_KEY_HEX_SIZE 26 /* size of WEP key in hex. */ 3278#define TKIP_MIC_SIZE 8 /* size of TKIP MIC */ 3279#define TKIP_EOM_SIZE 7 /* max size of TKIP EOM */ 3280#define TKIP_EOM_FLAG 0x5a /* TKIP EOM flag byte */ 3281#define TKIP_KEY_SIZE 32 /* size of any TKIP key */ 3282#define TKIP_MIC_AUTH_TX 16 /* offset to Authenticator MIC TX key */ 3283#define TKIP_MIC_AUTH_RX 24 /* offset to Authenticator MIC RX key */ 3284#define TKIP_MIC_SUP_RX TKIP_MIC_AUTH_TX /* offset to Supplicant MIC RX key */ 3285#define TKIP_MIC_SUP_TX TKIP_MIC_AUTH_RX /* offset to Supplicant MIC TX key */ 3286#define AES_KEY_SIZE 16 /* size of AES key */ 3287#define AES_MIC_SIZE 8 /* size of AES MIC */ 3288#define BIP_KEY_SIZE 16 /* size of BIP key */ 3289#define BIP_MIC_SIZE 8 /* sizeof BIP MIC */ 3290 3291/* WCN */ 3292#define WCN_OUI "\x00\x50\xf2" /* WCN OUI */ 3293#define WCN_TYPE 4 /* WCN type */ 3294 3295 3296/* 802.11r protocol definitions */ 3297 3298/* Mobility Domain IE */ 3299BWL_PRE_PACKED_STRUCT struct dot11_mdid_ie { 3300 uint8 id; 3301 uint8 len; 3302 uint16 mdid; /* Mobility Domain Id */ 3303 uint8 cap; 3304} BWL_POST_PACKED_STRUCT; 3305typedef struct dot11_mdid_ie dot11_mdid_ie_t; 3306 3307#define FBT_MDID_CAP_OVERDS 0x01 /* Fast Bss transition over the DS support */ 3308#define FBT_MDID_CAP_RRP 0x02 /* Resource request protocol support */ 3309 3310/* Fast Bss Transition IE */ 3311BWL_PRE_PACKED_STRUCT struct dot11_ft_ie { 3312 uint8 id; 3313 uint8 len; 3314 uint16 mic_control; /* Mic Control */ 3315 uint8 mic[16]; 3316 uint8 anonce[32]; 3317 uint8 snonce[32]; 3318} BWL_POST_PACKED_STRUCT; 3319typedef struct dot11_ft_ie dot11_ft_ie_t; 3320 3321#define TIE_TYPE_RESERVED 0 3322#define TIE_TYPE_REASSOC_DEADLINE 1 3323#define TIE_TYPE_KEY_LIEFTIME 2 3324#define TIE_TYPE_ASSOC_COMEBACK 3 3325BWL_PRE_PACKED_STRUCT struct dot11_timeout_ie { 3326 uint8 id; 3327 uint8 len; 3328 uint8 type; /* timeout interval type */ 3329 uint32 value; /* timeout interval value */ 3330} BWL_POST_PACKED_STRUCT; 3331typedef struct dot11_timeout_ie dot11_timeout_ie_t; 3332 3333/* GTK ie */ 3334BWL_PRE_PACKED_STRUCT struct dot11_gtk_ie { 3335 uint8 id; 3336 uint8 len; 3337 uint16 key_info; 3338 uint8 key_len; 3339 uint8 rsc[8]; 3340 uint8 data[1]; 3341} BWL_POST_PACKED_STRUCT; 3342typedef struct dot11_gtk_ie dot11_gtk_ie_t; 3343 3344/* Management MIC ie */ 3345BWL_PRE_PACKED_STRUCT struct mmic_ie { 3346 uint8 id; /* IE ID: 0xDD */ 3347 uint8 len; /* IE length */ 3348 uint16 key_id; /* key id */ 3349 uint8 ipn[6]; /* ipn */ 3350 uint8 mic[BIP_MIC_SIZE]; /* mic */ 3351} BWL_POST_PACKED_STRUCT; 3352typedef struct mmic_ie mmic_ie_t; 3353 3354#define BSSID_INVALID "\x00\x00\x00\x00\x00\x00" 3355#define BSSID_BROADCAST "\xFF\xFF\xFF\xFF\xFF\xFF" 3356 3357 3358/* ************* WMM Parameter definitions. ************* */ 3359#define WMM_OUI "\x00\x50\xF2" /* WNN OUI */ 3360#define WMM_OUI_LEN 3 /* WMM OUI length */ 3361#define WMM_OUI_TYPE 2 /* WMM OUT type */ 3362#define WMM_VERSION 1 3363#define WMM_VERSION_LEN 1 3364 3365/* WMM OUI subtype */ 3366#define WMM_OUI_SUBTYPE_PARAMETER 1 3367#define WMM_PARAMETER_IE_LEN 24 3368 3369/* Link Identifier Element */ 3370BWL_PRE_PACKED_STRUCT struct link_id_ie { 3371 uint8 id; 3372 uint8 len; 3373 struct ether_addr bssid; 3374 struct ether_addr tdls_init_mac; 3375 struct ether_addr tdls_resp_mac; 3376} BWL_POST_PACKED_STRUCT; 3377typedef struct link_id_ie link_id_ie_t; 3378#define TDLS_LINK_ID_IE_LEN 18 3379 3380/* Link Wakeup Schedule Element */ 3381BWL_PRE_PACKED_STRUCT struct wakeup_sch_ie { 3382 uint8 id; 3383 uint8 len; 3384 uint32 offset; /* in ms between TSF0 and start of 1st Awake Window */ 3385 uint32 interval; /* in ms bwtween the start of 2 Awake Windows */ 3386 uint32 awake_win_slots; /* in backof slots, duration of Awake Window */ 3387 uint32 max_wake_win; /* in ms, max duration of Awake Window */ 3388 uint16 idle_cnt; /* number of consecutive Awake Windows */ 3389} BWL_POST_PACKED_STRUCT; 3390typedef struct wakeup_sch_ie wakeup_sch_ie_t; 3391#define TDLS_WAKEUP_SCH_IE_LEN 18 3392 3393/* Channel Switch Timing Element */ 3394BWL_PRE_PACKED_STRUCT struct channel_switch_timing_ie { 3395 uint8 id; 3396 uint8 len; 3397 uint16 switch_time; /* in ms, time to switch channels */ 3398 uint16 switch_timeout; /* in ms */ 3399} BWL_POST_PACKED_STRUCT; 3400typedef struct channel_switch_timing_ie channel_switch_timing_ie_t; 3401#define TDLS_CHANNEL_SWITCH_TIMING_IE_LEN 4 3402 3403/* PTI Control Element */ 3404BWL_PRE_PACKED_STRUCT struct pti_control_ie { 3405 uint8 id; 3406 uint8 len; 3407 uint8 tid; 3408 uint16 seq_control; 3409} BWL_POST_PACKED_STRUCT; 3410typedef struct pti_control_ie pti_control_ie_t; 3411#define TDLS_PTI_CONTROL_IE_LEN 3 3412 3413/* PU Buffer Status Element */ 3414BWL_PRE_PACKED_STRUCT struct pu_buffer_status_ie { 3415 uint8 id; 3416 uint8 len; 3417 uint8 status; 3418} BWL_POST_PACKED_STRUCT; 3419typedef struct pu_buffer_status_ie pu_buffer_status_ie_t; 3420#define TDLS_PU_BUFFER_STATUS_IE_LEN 1 3421#define TDLS_PU_BUFFER_STATUS_AC_BK 1 3422#define TDLS_PU_BUFFER_STATUS_AC_BE 2 3423#define TDLS_PU_BUFFER_STATUS_AC_VI 4 3424#define TDLS_PU_BUFFER_STATUS_AC_VO 8 3425 3426/* 802.11u GAS action frames */ 3427#define GAS_REQUEST_ACTION_FRAME 10 3428#define GAS_RESPONSE_ACTION_FRAME 11 3429#define GAS_COMEBACK_REQUEST_ACTION_FRAME 12 3430#define GAS_COMEBACK_RESPONSE_ACTION_FRAME 13 3431 3432/* 802.11u interworking access network options */ 3433#define IW_ANT_MASK 0x0f 3434#define IW_INTERNET_MASK 0x10 3435#define IW_ASRA_MASK 0x20 3436#define IW_ESR_MASK 0x40 3437#define IW_UESA_MASK 0x80 3438 3439/* 802.11u interworking access network type */ 3440#define IW_ANT_PRIVATE_NETWORK 0 3441#define IW_ANT_PRIVATE_NETWORK_WITH_GUEST 1 3442#define IW_ANT_CHARGEABLE_PUBLIC_NETWORK 2 3443#define IW_ANT_FREE_PUBLIC_NETWORK 3 3444#define IW_ANT_PERSONAL_DEVICE_NETWORK 4 3445#define IW_ANT_EMERGENCY_SERVICES_NETWORK 5 3446#define IW_ANT_TEST_NETWORK 14 3447#define IW_ANT_WILDCARD_NETWORK 15 3448 3449/* 802.11u advertisement protocol */ 3450#define ADVP_ANQP_PROTOCOL_ID 0 3451 3452/* 802.11u advertisement protocol masks */ 3453#define ADVP_QRL_MASK 0x7f 3454#define ADVP_PAME_BI_MASK 0x80 3455 3456/* 802.11u advertisement protocol values */ 3457#define ADVP_QRL_REQUEST 0x00 3458#define ADVP_QRL_RESPONSE 0x7f 3459#define ADVP_PAME_BI_DEPENDENT 0x00 3460#define ADVP_PAME_BI_INDEPENDENT ADVP_PAME_BI_MASK 3461 3462/* 802.11u ANQP information ID */ 3463#define ANQP_ID_QUERY_LIST 256 3464#define ANQP_ID_CAPABILITY_LIST 257 3465#define ANQP_ID_VENUE_NAME_INFO 258 3466#define ANQP_ID_EMERGENCY_CALL_NUMBER_INFO 259 3467#define ANQP_ID_NETWORK_AUTHENTICATION_TYPE_INFO 260 3468#define ANQP_ID_ROAMING_CONSORTIUM_LIST 261 3469#define ANQP_ID_IP_ADDRESS_TYPE_AVAILABILITY_INFO 262 3470#define ANQP_ID_NAI_REALM_LIST 263 3471#define ANQP_ID_G3PP_CELLULAR_NETWORK_INFO 264 3472#define ANQP_ID_AP_GEOSPATIAL_LOCATION 265 3473#define ANQP_ID_AP_CIVIC_LOCATION 266 3474#define ANQP_ID_AP_LOCATION_PUBLIC_ID_URI 267 3475#define ANQP_ID_DOMAIN_NAME_LIST 268 3476#define ANQP_ID_EMERGENCY_ALERT_ID_URI 269 3477#define ANQP_ID_EMERGENCY_NAI 271 3478#define ANQP_ID_VENDOR_SPECIFIC_LIST 56797 3479 3480/* 802.11u ANQP OUI */ 3481#define ANQP_OUI_SUBTYPE 9 3482 3483/* 802.11u venue name */ 3484#define VENUE_LANGUAGE_CODE_SIZE 3 3485#define VENUE_NAME_SIZE 255 3486 3487/* 802.11u venue groups */ 3488#define VENUE_UNSPECIFIED 0 3489#define VENUE_ASSEMBLY 1 3490#define VENUE_BUSINESS 2 3491#define VENUE_EDUCATIONAL 3 3492#define VENUE_FACTORY 4 3493#define VENUE_INSTITUTIONAL 5 3494#define VENUE_MERCANTILE 6 3495#define VENUE_RESIDENTIAL 7 3496#define VENUE_STORAGE 8 3497#define VENUE_UTILITY 9 3498#define VENUE_VEHICULAR 10 3499#define VENUE_OUTDOOR 11 3500 3501/* 802.11u network authentication type indicator */ 3502#define NATI_ACCEPTANCE_OF_TERMS_CONDITIONS 0 3503#define NATI_ONLINE_ENROLLMENT_SUPPORTED 1 3504#define NATI_HTTP_HTTPS_REDIRECTION 2 3505#define NATI_DNS_REDIRECTION 3 3506 3507/* 802.11u IP address type availability - IPv6 */ 3508#define IPA_IPV6_SHIFT 0 3509#define IPA_IPV6_MASK (0x03 << IPA_IPV6_SHIFT) 3510#define IPA_IPV6_NOT_AVAILABLE 0x00 3511#define IPA_IPV6_AVAILABLE 0x01 3512#define IPA_IPV6_UNKNOWN_AVAILABILITY 0x02 3513 3514/* 802.11u IP address type availability - IPv4 */ 3515#define IPA_IPV4_SHIFT 2 3516#define IPA_IPV4_MASK (0x3f << IPA_IPV4_SHIFT) 3517#define IPA_IPV4_NOT_AVAILABLE 0x00 3518#define IPA_IPV4_PUBLIC 0x01 3519#define IPA_IPV4_PORT_RESTRICT 0x02 3520#define IPA_IPV4_SINGLE_NAT 0x03 3521#define IPA_IPV4_DOUBLE_NAT 0x04 3522#define IPA_IPV4_PORT_RESTRICT_SINGLE_NAT 0x05 3523#define IPA_IPV4_PORT_RESTRICT_DOUBLE_NAT 0x06 3524#define IPA_IPV4_UNKNOWN_AVAILABILITY 0x07 3525 3526/* 802.11u NAI realm encoding */ 3527#define REALM_ENCODING_RFC4282 0 3528#define REALM_ENCODING_UTF8 1 3529 3530/* 802.11u IANA EAP method type numbers */ 3531#define REALM_EAP_TLS 13 3532#define REALM_EAP_SIM 18 3533#define REALM_EAP_TTLS 21 3534#define REALM_EAP_AKA 23 3535#define REALM_EAP_PSK 47 3536#define REALM_EAP_AKAP 50 3537 3538/* 802.11u authentication ID */ 3539#define REALM_EXPANDED_EAP 1 3540#define REALM_NON_EAP_INNER_AUTHENTICATION 2 3541#define REALM_INNER_AUTHENTICATION_EAP 3 3542#define REALM_EXPANDED_INNER_EAP 4 3543#define REALM_CREDENTIAL 5 3544#define REALM_TUNNELED_EAP_CREDENTIAL 6 3545#define REALM_VENDOR_SPECIFIC_EAP 221 3546 3547/* 802.11u non-EAP inner authentication type */ 3548#define REALM_PAP 1 3549#define REALM_CHAP 2 3550#define REALM_MSCHAP 3 3551#define REALM_MSCHAPV2 4 3552 3553/* 802.11u credential type */ 3554#define REALM_SIM 1 3555#define REALM_USIM 2 3556#define REALM_NFC 3 3557#define REALM_HARDWARE_TOKEN 4 3558#define REALM_SOFTOKEN 5 3559#define REALM_CERTIFICATE 6 3560#define REALM_USERNAME_PASSWORD 7 3561#define REALM_SERVER_SIDE 8 3562 3563/* 802.11u 3GPP PLMN */ 3564#define G3PP_GUD_VERSION 0 3565#define G3PP_PLMN_LIST_IE 0 3566 3567/* hotspot2.0 indication element (vendor specific) */ 3568BWL_PRE_PACKED_STRUCT struct hs20_ie { 3569 uint8 oui[3]; 3570 uint8 type; 3571 uint8 config; 3572} BWL_POST_PACKED_STRUCT; 3573typedef struct hs20_ie hs20_ie_t; 3574#define HS20_IE_LEN 5 /* HS20 IE length */ 3575 3576/* This marks the end of a packed structure section. */ 3577#include <packed_section_end.h> 3578 3579#endif /* _802_11_H_ */ 3580