From owner-freebsd-wireless@FreeBSD.ORG Sun Feb 5 17:41:47 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 694AB106566C for ; Sun, 5 Feb 2012 17:41:47 +0000 (UTC) (envelope-from adrian.chadd@gmail.com) Received: from mail-ww0-f50.google.com (mail-ww0-f50.google.com [74.125.82.50]) by mx1.freebsd.org (Postfix) with ESMTP id F3E838FC19 for ; Sun, 5 Feb 2012 17:41:46 +0000 (UTC) Received: by wgbdq11 with SMTP id dq11so5539474wgb.31 for ; Sun, 05 Feb 2012 09:41:45 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type; bh=OWbC8uoOu2Bv+6ySSbx208coopQmE2dugj15m8LutTI=; b=wD/NT/9BnayE/Pt0wJ6s5U+WYNQnYXdL2JvYta5407PBbpNpxz/L0MP8MPvyg5/EZb n9eim9cBLqMFHnORj482UGXdVG7gx40uPFL/OBUkPcVZfz+NNV65V+ajIFUFpE8igt7v bxRjzjcuN1llqYWVDxZYZdM5af8E55nAsWXMI= MIME-Version: 1.0 Received: by 10.180.92.229 with SMTP id cp5mr5879871wib.8.1328463705572; Sun, 05 Feb 2012 09:41:45 -0800 (PST) Sender: adrian.chadd@gmail.com Received: by 10.180.93.169 with HTTP; Sun, 5 Feb 2012 09:41:45 -0800 (PST) In-Reply-To: <1328388378.20159@da3m0n8t3r.com> References: <1328388378.20159@da3m0n8t3r.com> Date: Sun, 5 Feb 2012 09:41:45 -0800 X-Google-Sender-Auth: 6voLG1fNI4l2WbpWJ2TwbVhIN2c Message-ID: From: Adrian Chadd To: Waitman Gobble Content-Type: text/plain; charset=ISO-8859-1 Cc: freebsd-wireless@freebsd.org Subject: Re: [net80211] support vendor bitmap entries; teach if_ath to export PHY error code in error frames X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 05 Feb 2012 17:41:47 -0000 On 4 February 2012 12:46, Waitman Gobble wrote: > btw, setting options ATH_ENABLE_11N (think that must have been the culprit?) and finally connecting 802.11na/5GHz/ht40 is MUCH faster, smokin'.. thanks so much. Yup, that's very likely the culprit. Adrian From owner-freebsd-wireless@FreeBSD.ORG Mon Feb 6 11:07:17 2012 Return-Path: Delivered-To: freebsd-wireless@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0DC9A106566B for ; Mon, 6 Feb 2012 11:07:17 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id EF1A68FC0A for ; Mon, 6 Feb 2012 11:07:16 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q16B7GUb007999 for ; Mon, 6 Feb 2012 11:07:16 GMT (envelope-from owner-bugmaster@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q16B7GjA007997 for freebsd-wireless@FreeBSD.org; Mon, 6 Feb 2012 11:07:16 GMT (envelope-from owner-bugmaster@FreeBSD.org) Date: Mon, 6 Feb 2012 11:07:16 GMT Message-Id: <201202061107.q16B7GjA007997@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: gnats set sender to owner-bugmaster@FreeBSD.org using -f From: FreeBSD bugmaster To: freebsd-wireless@FreeBSD.org Cc: Subject: Current problem reports assigned to freebsd-wireless@FreeBSD.org X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Feb 2012 11:07:17 -0000 Note: to view an individual PR, use: http://www.freebsd.org/cgi/query-pr.cgi?pr=(number). The following is a listing of current problems submitted by FreeBSD users. These represent problem reports covering all versions including experimental development code and obsolete releases. S Tracker Resp. Description -------------------------------------------------------------------------------- o kern/164721 wireless [ath] ath device timeouts o kern/164499 wireless [wi] [patch] if_wi needs fix for big endian architectu o kern/164382 wireless [ath] crash when down/deleting a vap - inside ieee8021 o kern/164365 wireless [iwi] iwi0: UP/DOWN in o bin/164102 wireless hostapd not configured for 802.11n o kern/163759 wireless [ath] ath(4) "stops working" in hostap mode o kern/163724 wireless [mwl] [patch] NULL check before dereference o kern/163719 wireless [ath] ath interface do not receive multicast o kern/163689 wireless [ath] TX timeouts when sending probe/mgmt frames durin o kern/163574 wireless [net80211] overly-frequent HT occupancy changes o kern/163573 wireless [ath] hostap mode TX buffer hang o kern/163559 wireless [ath] kernel panic AH_DEBUG o kern/163318 wireless [ath] ath(4) stops working o kern/163312 wireless [panic] [ath driver] kernel panic: page fault with ath o kern/163082 wireless [ath] ar9285 diversity fixes o kern/162648 wireless [ath] AR9227 ADC DC calibration failure o kern/162647 wireless [ath] 11n TX aggregation session / TX hang o kern/161293 wireless [iwn] hang at startup when starting network o kern/161035 wireless [ieee80211] Incorrect number describing 11ng MCS rate o kern/160391 wireless [ieee80211] [patch] Panic in mesh mode o kern/160296 wireless [zyd] [panic] 802.11 usb device reboots system on 'ifc o misc/160176 wireless [mips] [panic] Kernel panic on AR7161 platform with AR o kern/157449 wireless [ath] MAC address conflict causes system to freeze o kern/157243 wireless [ath] investigate beacon TX (AP) / RX (STA) when under o kern/156904 wireless [ath] AR9285 antenna diversity algorithm is buggy and o kern/156884 wireless [ath] ath instablity o kern/156327 wireless [bwn] bwn driver causes 20%-50% packet loss o kern/156322 wireless [wpi] no ahdemo support for if_wpi o kern/156321 wireless [ath] ahdemo doesn't work with if_ath o kern/155498 wireless [ral] ral(4) needs to be resynced with OpenBSD's to ga o kern/155100 wireless [ath] ath driver on busy channel: "stuck beacon" p kern/154598 wireless [ath] Atheros 5424/2424 can't connect to WPA network o kern/154567 wireless [ath] ath(4) lot of bad series(0) o kern/154327 wireless [ath] AR5416 in station mode hangs when transmitting f o kern/154284 wireless [ath] Modern ath wifi cards (such as AR9285) have miss o kern/154153 wireless [ath] AR5213 + MIPS + WPA group key packet corruption o kern/153448 wireless [ath] ath networking device loses association after a o kern/152750 wireless [ath] ath0 lot of bad series hwrate o kern/151198 wireless [ath] ath/5416 fails bgscan with "ath0: ath_chan_set: o kern/149786 wireless [bwn] bwn on Dell Inspiron 1150: connections stall o kern/149516 wireless [ath] ath(4) hostap with fake MAC/BSSID results in sta o kern/149373 wireless [realtek/atheros]: None of my network card working o kern/148322 wireless [ath] Triggering atheros wifi beacon misses in hostap o kern/148317 wireless [ath] FreeBSD 7.x hostap memory leak in net80211 or At o kern/148078 wireless [ath] wireless networking stops functioning o kern/145826 wireless [panic] [ath] Unable to configure adhoc mode on ath0/w o kern/144987 wireless [wpi] [panic] injecting packets with wlaninject using o bin/144109 wireless hostapd(8) uses the MAC of the wireless interface, but o conf/143079 wireless hostapd(8) startup missing multi wlan functionality p kern/140567 wireless [ath] [patch] ath is not worked on my notebook PC o kern/140245 wireless [ath] [panic] Kernel panic during network activity on o kern/137592 wireless [ath] panic - 7-STABLE (Aug 7, 2009 UTC) crashes on ne p bin/137484 wireless [patch] Integer overflow in wpa_supplicant(8) base64 e o kern/136943 wireless [wpi] [lor] wpi0_com_lock / wpi0 o kern/136836 wireless [ath] atheros card stops functioning after about 12 ho o kern/132722 wireless [ath] Wifi ath0 associates fine with AP, but DHCP or I o bin/131549 wireless ifconfig(8) can't clear 'monitor' mode on the wireless o kern/126475 wireless [ath] [panic] ath pcmcia card inevitably panics under o kern/125721 wireless [ath] Terrible throughput/high ping latency with Ubiqu o kern/125617 wireless [ath] [panic] ath(4) related panic o kern/125501 wireless [ath] atheros cardbus driver hangs o kern/125332 wireless [ath] [panic] crash under any non-tiny networking unde o kern/124767 wireless [iwi] Wireless connection using iwi0 driver (Intel 220 o kern/124753 wireless [ieee80211] net80211 discards power-save queue packets o docs/120456 wireless ath(4) needs to specify requirement on wlan_scan_sta o kern/119513 wireless [ath] [irq] inserting dlink dwl-g630 wireless card res o kern/116747 wireless [ndis] FreeBSD 7.0-CURRENT crash with Dell TrueMobile f kern/105348 wireless [ath] ath device stopps TX 68 problems total. From owner-freebsd-wireless@FreeBSD.ORG Mon Feb 6 14:55:20 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0A5EB106564A for ; Mon, 6 Feb 2012 14:55:20 +0000 (UTC) (envelope-from merlin@merlinsbox.net) Received: from mail-tul01m020-f182.google.com (mail-tul01m020-f182.google.com [209.85.214.182]) by mx1.freebsd.org (Postfix) with ESMTP id D33538FC24 for ; Mon, 6 Feb 2012 14:55:19 +0000 (UTC) Received: by obcwo16 with SMTP id wo16so9858138obc.13 for ; Mon, 06 Feb 2012 06:55:19 -0800 (PST) MIME-Version: 1.0 Received: by 10.182.193.2 with SMTP id hk2mr16974043obc.20.1328538762832; Mon, 06 Feb 2012 06:32:42 -0800 (PST) Received: by 10.60.17.42 with HTTP; Mon, 6 Feb 2012 06:32:42 -0800 (PST) X-Originating-IP: [76.169.108.219] Date: Mon, 6 Feb 2012 14:32:42 +0000 Message-ID: From: Merlin Corey To: freebsd-wireless@freebsd.org Content-Type: text/plain; charset=ISO-8859-1 Subject: FreeBSD 9.0 ath driver injection with aireplay_ng returns input/output error in AHDemo and Monitor mode X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Feb 2012 14:55:20 -0000 Hello, Like some a year before me, from a thread two years before me ( http://forums.freebsd.org/showthread.php?t=10042 ), I am interested in making my (pun intended) penultimate pen-testing netbook on my favorite operating system, FreeBSD; alas, I am not able to make use of the atheros card in said netbook for the purposes of injection. It is perhaps worth nothing that I started this project on FreeBSD 8.x, but my card (AR9285 card=0x10891a3b chip=0x002b168c rev=0x01 hdr= 0x00) was only working at what seemed half power and would constantly take itself up/down. I have since updated the system to 9.0-RELEASE and experienced what appeared to be fully functioning wireless until now. In the thread linked above, there is a mention of a kernel patch which allows writing in monitor mode - I desperately applied this patch after finding that the instructions to patch aircrack itself seem to have already been applied either in ports or upstream. Now, I can run airodump just fine, but when I try to do injection test with aireplay in either ahdemo or monitor mode, I simply end up with a bunch of "wi_write(): Input/output error" messages. I am not really sure how to proceed in further debugging this issue; should I turn wlandebug on, and if so, which bit is best, or should I just throw them all? Perhaps something else entirely? Is this maybe a problem with my card itself? Any push in the right direction would be greatly appreciated. Thanks, Merlin From owner-freebsd-wireless@FreeBSD.ORG Mon Feb 6 16:38:13 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 51FAA1065674; Mon, 6 Feb 2012 16:38:13 +0000 (UTC) (envelope-from bschmidt@techwires.net) Received: from mail-lpp01m010-f54.google.com (mail-lpp01m010-f54.google.com [209.85.215.54]) by mx1.freebsd.org (Postfix) with ESMTP id A604F8FC17; Mon, 6 Feb 2012 16:38:12 +0000 (UTC) Received: by lagz14 with SMTP id z14so4336251lag.13 for ; Mon, 06 Feb 2012 08:38:11 -0800 (PST) MIME-Version: 1.0 Received: by 10.152.112.132 with SMTP id iq4mr9786953lab.28.1328546291290; Mon, 06 Feb 2012 08:38:11 -0800 (PST) Received: by 10.152.22.231 with HTTP; Mon, 6 Feb 2012 08:38:11 -0800 (PST) X-Originating-IP: [79.140.39.245] In-Reply-To: References: Date: Mon, 6 Feb 2012 17:38:11 +0100 Message-ID: From: Bernhard Schmidt To: Adrian Chadd Content-Type: text/plain; charset=ISO-8859-1 Cc: freebsd-wireless@freebsd.org Subject: Re: [net80211] support vendor bitmap entries; teach if_ath to export PHY error code in error frames X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Feb 2012 16:38:13 -0000 On Sat, Feb 4, 2012 at 05:26, Adrian Chadd wrote: > Hi, > > As part of my radar project, I'm going to try and teach the BSD/Linux > ath driver and radiotap API about vendor extensions and implement a > (reasonably) well documented way to expose what I need. > > The driver already exports the whole PHY error frame payload via > radiotap and you can select which PHY error types are passed up by > setting bits in the dev.ath.X.monpass sysctl. The trouble is the PHY > error code isn't exposed so it currently isn't possible to know > whether its a data or a PHY error frame. > > This patch is a WIP and implements what I need. In short: > > * The net80211 radiotap code doesn't know about vendor extension > bitmap(s), so there's currently no way to take those into account when > calculating the channel state offset in the header. Since the radiotap > code directly writes into that (rather than have the driver do it per > frame), adding any vendor bitmaps does mess things up quite a bit. > > * define a vendor attribute in if_athioctl.h - this should move to > ieee80211_radiotap.h at some point. > > * Add fields to the ath RX radiotap struct, which includes the vendor > bitmap, vendor attribute and the vendor payload. > > * Add a vendor payload, which includes the Atheros OUI and the RX > status + PHY error code. > > With this, userland tools can be built to read the radar and spectral > scan PHY error frames in userland. It makes prototyping code much, > much easier. > > What I'm going to do to this: > > * Move the vendor attribute definition into ieee80211_radiotap.h; > * Finalise on the Atheros vendor attribute layout. It doesn't match > what is used in the reference driver but I'll use different vendor > bitmap/namespace bytes, so things won't clash. > * Document the new ieee80211_radiotap_attachv() and why it exists. > > I'd appreciate some feedback. > > Thanks! > static void > +ath_rx_tap_vendor(struct ifnet *ifp, struct mbuf *m, > + const struct ath_rx_status *rs, u_int64_t tsf, int16_t nf) > +{ > + struct ath_softc *sc = ifp->if_softc; > + > + /* Fill in the extension bitmap */ > + sc->sc_rx_th.wr_ext_bitmap = htole32(1 << ATH_RADIOTAP_VENDOR_HEADER); > + > + /* Fill in the vendor header */ > + sc->sc_rx_th.wr_vh.oui[0] = 0x7f; > + sc->sc_rx_th.wr_vh.oui[1] = 0x03; > + sc->sc_rx_th.wr_vh.oui[2] = 0x00; > + > + /* XXX what should this be? */ > + sc->sc_rx_th.wr_vh.sub_namespace = 0; Are you sure about that? If I get the "Vendor Namespace" description on radiotap.org right the wr_vh.sub_namespace field should actually contain what you moved into wr_ext_bitmap. Otherwise ATH_RADIOTAP_VENDOR_HEADER must be defined by radiotap and have it's own data. If I'm right we don't need wr_ext_bitmap at all and therefore neither ieee80211_radiotap_attachv() and the different offset handling, only setting IEEE80211_RADIOTAP_VENDOREXT is required (not IEEE80211_RADIOTAP_EXT). -- Bernhard From owner-freebsd-wireless@FreeBSD.ORG Mon Feb 6 17:35:44 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1AAEF106566B; Mon, 6 Feb 2012 17:35:44 +0000 (UTC) (envelope-from bschmidt@techwires.net) Received: from mail-bk0-f54.google.com (mail-bk0-f54.google.com [209.85.214.54]) by mx1.freebsd.org (Postfix) with ESMTP id 4B8278FC23; Mon, 6 Feb 2012 17:35:42 +0000 (UTC) Received: by bkbzx1 with SMTP id zx1so6742011bkb.13 for ; Mon, 06 Feb 2012 09:35:42 -0800 (PST) Received: by 10.205.121.2 with SMTP id ga2mr8735062bkc.38.1328549742082; Mon, 06 Feb 2012 09:35:42 -0800 (PST) Received: from amy.lab.techwires.net (dslb-088-067-204-237.pools.arcor-ip.net. [88.67.204.237]) by mx.google.com with ESMTPS id y9sm379757bkw.5.2012.02.06.09.35.39 (version=SSLv3 cipher=OTHER); Mon, 06 Feb 2012 09:35:41 -0800 (PST) Sender: Bernhard Schmidt From: Bernhard Schmidt To: freebsd-wireless@freebsd.org Date: Mon, 6 Feb 2012 18:35:42 +0100 User-Agent: KMail/1.13.7 (FreeBSD/9.0-PRERELEASE; KDE/4.7.3; amd64; ; ) References: In-Reply-To: MIME-Version: 1.0 Content-Type: Text/Plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Message-Id: <201202061835.43116.bschmidt@freebsd.org> Cc: rpaulo@freebsd.org Subject: Re: FreeBSD 9.0 ath driver injection with aireplay_ng returns input/output error in AHDemo and Monitor mode X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Feb 2012 17:35:44 -0000 On Monday 06 February 2012 15:32:42 Merlin Corey wrote: > Hello, > > Like some a year before me, from a thread two years before me ( > http://forums.freebsd.org/showthread.php?t=10042 ), I am interested in > making my (pun intended) penultimate pen-testing netbook on my > favorite operating system, FreeBSD; alas, I am not able to make use of > the atheros card in said netbook for the purposes of injection. > > It is perhaps worth nothing that I started this project on FreeBSD > 8.x, but my card (AR9285 card=0x10891a3b chip=0x002b168c rev=0x01 hdr= > 0x00) was only working at what seemed half power and would constantly > take itself up/down. I have since updated the system to 9.0-RELEASE > and experienced what appeared to be fully functioning wireless until > now. > > In the thread linked above, there is a mention of a kernel patch which > allows writing in monitor mode - I desperately applied this patch > after finding that the instructions to patch aircrack itself seem to > have already been applied either in ports or upstream. > > Now, I can run airodump just fine, but when I try to do injection test > with aireplay in either ahdemo or monitor mode, I simply end up with a > bunch of "wi_write(): Input/output error" messages. > > I am not really sure how to proceed in further debugging this issue; > should I turn wlandebug on, and if so, which bit is best, or should I > just throw them all? Perhaps something else entirely? > > Is this maybe a problem with my card itself? > > Any push in the right direction would be greatly appreciated. Can you set a channel and ssid before starting any kind of injection? Something like ifconfig wlan0 create wlandev ath0 wlanmode ahdemo ifconfig wlan0 channel 1 ssid foobar up If I remember correctly, the interface will otherwise scan indefinitely trying to find an open network to connect to. Setting a channel/ssid will ensure that the interface moves into RUN state (you can verify that with wlandebug +state) which should allow injection. Trying to do so while in eg. SCAN state is really too racy due to all the channel changes going on. Basically, injection is a real mess currently and neither monitor nor ahdemo mode are really that well suited for that purpose. Monitor mode is designed to be totally mute while ahdemo is adhoc mode without mgmt frames but a lot of unnecessary logic behind it. Guess we should really think about a new mode specially designed to handle those needs, or re-enable injection in monitor mode which would break it's initial purpose.. thoughts? -- Bernhard From owner-freebsd-wireless@FreeBSD.ORG Mon Feb 6 18:53:11 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D45501065672 for ; Mon, 6 Feb 2012 18:53:11 +0000 (UTC) (envelope-from merlin@merlinsbox.net) Received: from mail-tul01m020-f182.google.com (mail-tul01m020-f182.google.com [209.85.214.182]) by mx1.freebsd.org (Postfix) with ESMTP id A31BE8FC0C for ; Mon, 6 Feb 2012 18:53:11 +0000 (UTC) Received: by obcwo16 with SMTP id wo16so10209608obc.13 for ; Mon, 06 Feb 2012 10:53:11 -0800 (PST) MIME-Version: 1.0 Received: by 10.182.193.2 with SMTP id hk2mr17877289obc.20.1328554391068; Mon, 06 Feb 2012 10:53:11 -0800 (PST) Received: by 10.60.17.42 with HTTP; Mon, 6 Feb 2012 10:53:11 -0800 (PST) X-Originating-IP: [76.169.108.219] In-Reply-To: References: <201202061835.43116.bschmidt@freebsd.org> Date: Mon, 6 Feb 2012 18:53:11 +0000 Message-ID: From: Merlin Corey To: freebsd-wireless@freebsd.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Subject: Re: FreeBSD 9.0 ath driver injection with aireplay_ng returns input/output error in AHDemo and Monitor mode X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Feb 2012 18:53:12 -0000 Hello, On Mon, Feb 6, 2012 at 5:35 PM, Bernhard Schmidt wro= te: > On Monday 06 February 2012 15:32:42 Merlin Corey wrote: >> Hello, >> >> Like some a year before me, from a thread two years before me ( >> http://forums.freebsd.org/showthread.php?t=3D10042 ), I am interested in >> making my (pun intended) penultimate pen-testing netbook on my >> favorite operating system, FreeBSD; alas, I am not able to make use of >> the atheros card in said netbook for the purposes of injection. >> >> It is perhaps worth nothing that I started this project on FreeBSD >> 8.x, but my card (AR9285 card=3D0x10891a3b chip=3D0x002b168c rev=3D0x01 = hdr=3D >> 0x00) was only working at what seemed half power and would constantly >> take itself up/down. =A0I have since updated the system to 9.0-RELEASE >> and experienced what appeared to be fully functioning wireless until >> now. >> >> In the thread linked above, there is a mention of a kernel patch which >> allows writing in monitor mode - I desperately applied this patch >> after finding that the instructions to patch aircrack itself seem to >> have already been applied either in ports or upstream. >> >> Now, I can run airodump just fine, but when I try to do injection test >> with aireplay in either ahdemo or monitor mode, I simply end up with a >> bunch of "wi_write(): Input/output error" messages. >> >> I am not really sure how to proceed in further debugging this issue; >> should I turn wlandebug on, and if so, which bit is best, or should I >> just throw them all? =A0Perhaps something else entirely? >> >> Is this maybe a problem with my card itself? >> >> Any push in the right direction would be greatly appreciated. > > Can you set a channel and ssid before starting any kind of injection? Som= ething like > ifconfig wlan0 create wlandev ath0 wlanmode ahdemo > ifconfig wlan0 channel 1 ssid foobar up > Yes, apologies for not being clear about my methods. =A0I have tested both with setting the initial channel and ssid before attempting to inject as well as not. > If I remember correctly, the interface will otherwise scan indefinitely t= rying to find an open network to connect to. Setting a channel/ssid will en= sure that the interface moves into RUN state (you can verify that with wlan= debug +state) which should allow injection. Trying to do so while in eg. SC= AN state is really too racy due to all the channel changes going on. You might be surprised to learn that in the case of NOT setting the channel it successfully finds APs on each channel and attempts injection, but fails with a write error every time. Thank you for wladebug +state, I will test this in a little bit to see if it is indeed stuck in the SCAN state instead of the RUN state. > > Basically, injection is a real mess currently and neither monitor nor ahd= emo mode are really that well suited for that purpose. Monitor mode is desi= gned to be totally mute while ahdemo is adhoc mode without mgmt frames but = a lot of unnecessary logic behind it. Guess we should really think about a = new mode specially designed to handle those needs, or re-enable injection i= n monitor mode which would break it's initial purpose.. thoughts? > > -- > Bernhard Regarding re-enabling write in monitor mode, I have lready done this, but it does not seem to have solved the problem, as I still receive an input/output error (as opposed to permission denied, which the thread indicates I will receive in monitor mode if I do not have the ability to write). I am all for a new mode and willing to test it from CURRENT or whatever I may do to help it along. Thanks, Merlin From owner-freebsd-wireless@FreeBSD.ORG Mon Feb 6 18:53:47 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id EE7C21065674; Mon, 6 Feb 2012 18:53:47 +0000 (UTC) (envelope-from adrian.chadd@gmail.com) Received: from mail-we0-f182.google.com (mail-we0-f182.google.com [74.125.82.182]) by mx1.freebsd.org (Postfix) with ESMTP id 375C98FC08; Mon, 6 Feb 2012 18:53:46 +0000 (UTC) Received: by werm13 with SMTP id m13so7222803wer.13 for ; Mon, 06 Feb 2012 10:53:46 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=nwEvUXnm5/C06ENqWjioRhyRbuRbs7Qr7Ro7K+b/CIo=; b=pL2P7uNK42PhX69sA5Rt9I6aUe7qnq8v3tdAG+aNexb2LbfM4C4GhIpqFvqkis6MEg Ij1kFQ5VSStXCBkvn/YYqmgXOkuuGduG7EMy5TI3MfbyIZzQCsGzUcWyPUd6HLmlG+5P Z4oyQi2Jhblv0qPQ6xRcxr2DQfvBJl6VDPAA0= MIME-Version: 1.0 Received: by 10.216.137.210 with SMTP id y60mr3812588wei.14.1328554426222; Mon, 06 Feb 2012 10:53:46 -0800 (PST) Sender: adrian.chadd@gmail.com Received: by 10.216.175.136 with HTTP; Mon, 6 Feb 2012 10:53:46 -0800 (PST) In-Reply-To: <201202061835.43116.bschmidt@freebsd.org> References: <201202061835.43116.bschmidt@freebsd.org> Date: Mon, 6 Feb 2012 10:53:46 -0800 X-Google-Sender-Auth: OUEYBtN0Q347wSiXeYLdvxIfgxM Message-ID: From: Adrian Chadd To: Bernhard Schmidt Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: freebsd-wireless@freebsd.org, rpaulo@freebsd.org Subject: Re: FreeBSD 9.0 ath driver injection with aireplay_ng returns input/output error in AHDemo and Monitor mode X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Feb 2012 18:53:48 -0000 On 6 February 2012 09:35, Bernhard Schmidt wrote: > Basically, injection is a real mess currently and neither monitor nor ahd= emo mode are really that well suited for that purpose. Monitor mode is desi= gned to be totally mute while ahdemo is adhoc mode without mgmt frames but = a lot of unnecessary logic behind it. Guess we should really think about a = new mode specially designed to handle those needs, or re-enable injection i= n monitor mode which would break it's initial purpose.. thoughts? I'd prefer a new mode. It'd give us a chance to further abstract and tidy up the multi-mode suppor= t. It also will give me an excuse to figure out how to implement injection for 11n TX aggregation. Adrian From owner-freebsd-wireless@FreeBSD.ORG Mon Feb 6 19:18:04 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 114E11065674 for ; Mon, 6 Feb 2012 19:18:04 +0000 (UTC) (envelope-from adrian.chadd@gmail.com) Received: from mail-we0-f182.google.com (mail-we0-f182.google.com [74.125.82.182]) by mx1.freebsd.org (Postfix) with ESMTP id 9B4498FC18 for ; Mon, 6 Feb 2012 19:18:03 +0000 (UTC) Received: by werm13 with SMTP id m13so7246206wer.13 for ; Mon, 06 Feb 2012 11:18:02 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=lC4ZbjJPi9OYwT9XoSEpxLCMF5rNLRhYqHXUlR32LMA=; b=elKWNoAefwSlfus/Z0sZPhcMQOKatF80P5mqYEPywg4zOuKQDV85gcrOzVQizDhhoW pwwLZZb2L/7fqsB8KKF7HCCH/gL5M0iF/2X7hsi02CcdakacMTpHp5MmsidOJYU2nmLM bikDHAWgm3/xmo6Fgw8W8Z8Z950kIEt6aVpmA= MIME-Version: 1.0 Received: by 10.216.137.210 with SMTP id y60mr3845749wei.14.1328555882592; Mon, 06 Feb 2012 11:18:02 -0800 (PST) Sender: adrian.chadd@gmail.com Received: by 10.216.175.136 with HTTP; Mon, 6 Feb 2012 11:18:02 -0800 (PST) In-Reply-To: References: Date: Mon, 6 Feb 2012 11:18:02 -0800 X-Google-Sender-Auth: 5B8ZLc7MMEr8lbH5S1DTg54DOcU Message-ID: From: Adrian Chadd To: Bernhard Schmidt Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: freebsd-wireless@freebsd.org Subject: Re: [net80211] support vendor bitmap entries; teach if_ath to export PHY error code in error frames X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Feb 2012 19:18:04 -0000 On 6 February 2012 08:38, Bernhard Schmidt wrote: >> + =A0 =A0 /* XXX what should this be? */ >> + =A0 =A0 sc->sc_rx_th.wr_vh.sub_namespace =3D 0; > > Are you sure about that? If I get the "Vendor Namespace" description > on radiotap.org right the wr_vh.sub_namespace field should actually > contain what you moved into wr_ext_bitmap. Otherwise Nono - the sub_namespace defines how to interpret the 29 bit bitmask (with bits 29, 30, 31 being always defined as vendor/radiotap/ext bits, regardless of which namespace you're in.) Ie: * in radiotap mode, the namespace is "radiotap" * when you set the vendor bit in the bitmask (and ext), the next bitmap is a vendor bitmask in the namespace defined by "sub_namespace"; * then you set the radiotap (and ext) bit in the vendor bitmask, the next bitmask is in the radiotap namespace again. > ATH_RADIOTAP_VENDOR_HEADER must be defined by radiotap and have it's > own data. If I'm right we don't need wr_ext_bitmap at all and > therefore neither ieee80211_radiotap_attachv() and the different > offset handling, only setting IEEE80211_RADIOTAP_VENDOREXT is required > (not IEEE80211_RADIOTAP_EXT). I haven't checked to see whether I can get away with just setting VENDOREXT but not EXT. I've checked this with Johannes and it looks right. But the lack of documentation and the existance of a 6 bit vendor header that precludes the vendor payload being in any way "naturally aligned" without hacks is just .. grr. I'll post an updated patch in an hour or two. I have this now working complete with a userland radar phy frame parsing app. I'll go and post all of this soon. Adrian From owner-freebsd-wireless@FreeBSD.ORG Mon Feb 6 19:57:36 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0A666106564A; Mon, 6 Feb 2012 19:57:36 +0000 (UTC) (envelope-from merlin@merlinsbox.net) Received: from mail-tul01m020-f182.google.com (mail-tul01m020-f182.google.com [209.85.214.182]) by mx1.freebsd.org (Postfix) with ESMTP id A44D08FC14; Mon, 6 Feb 2012 19:57:35 +0000 (UTC) Received: by obcwo16 with SMTP id wo16so10298951obc.13 for ; Mon, 06 Feb 2012 11:57:35 -0800 (PST) MIME-Version: 1.0 Received: by 10.182.193.2 with SMTP id hk2mr18092302obc.20.1328558255064; Mon, 06 Feb 2012 11:57:35 -0800 (PST) Received: by 10.60.17.42 with HTTP; Mon, 6 Feb 2012 11:57:35 -0800 (PST) X-Originating-IP: [76.169.108.219] In-Reply-To: <201202061835.43116.bschmidt@freebsd.org> References: <201202061835.43116.bschmidt@freebsd.org> Date: Mon, 6 Feb 2012 19:57:35 +0000 Message-ID: From: Merlin Corey To: Bernhard Schmidt Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: freebsd-wireless@freebsd.org, rpaulo@freebsd.org Subject: Re: FreeBSD 9.0 ath driver injection with aireplay_ng returns input/output error in AHDemo and Monitor mode X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Feb 2012 19:57:36 -0000 Hello, On Mon, Feb 6, 2012 at 5:35 PM, Bernhard Schmidt wro= te: > On Monday 06 February 2012 15:32:42 Merlin Corey wrote: >> Hello, >> >> Like some a year before me, from a thread two years before me ( >> http://forums.freebsd.org/showthread.php?t=3D10042 ), I am interested in >> making my (pun intended) penultimate pen-testing netbook on my >> favorite operating system, FreeBSD; alas, I am not able to make use of >> the atheros card in said netbook for the purposes of injection. >> >> It is perhaps worth nothing that I started this project on FreeBSD >> 8.x, but my card (AR9285 card=3D0x10891a3b chip=3D0x002b168c rev=3D0x01 = hdr=3D >> 0x00) was only working at what seemed half power and would constantly >> take itself up/down. =A0I have since updated the system to 9.0-RELEASE >> and experienced what appeared to be fully functioning wireless until >> now. >> >> In the thread linked above, there is a mention of a kernel patch which >> allows writing in monitor mode - I desperately applied this patch >> after finding that the instructions to patch aircrack itself seem to >> have already been applied either in ports or upstream. >> >> Now, I can run airodump just fine, but when I try to do injection test >> with aireplay in either ahdemo or monitor mode, I simply end up with a >> bunch of "wi_write(): Input/output error" messages. >> >> I am not really sure how to proceed in further debugging this issue; >> should I turn wlandebug on, and if so, which bit is best, or should I >> just throw them all? =A0Perhaps something else entirely? >> >> Is this maybe a problem with my card itself? >> >> Any push in the right direction would be greatly appreciated. > > Can you set a channel and ssid before starting any kind of injection? Som= ething like > ifconfig wlan0 create wlandev ath0 wlanmode ahdemo > ifconfig wlan0 channel 1 ssid foobar up > > If I remember correctly, the interface will otherwise scan indefinitely t= rying to find an open network to connect to. Setting a channel/ssid will en= sure that the interface moves into RUN state (you can verify that with wlan= debug +state) which should allow injection. Trying to do so while in eg. SC= AN state is really too racy due to all the channel changes going on. > > Basically, injection is a real mess currently and neither monitor nor ahd= emo mode are really that well suited for that purpose. Monitor mode is desi= gned to be totally mute while ahdemo is adhoc mode without mgmt frames but = a lot of unnecessary logic behind it. Guess we should really think about a = new mode specially designed to handle those needs, or re-enable injection i= n monitor mode which would break it's initial purpose.. thoughts? > > -- > Bernhard As per the directions given to me by Bernhard, I have tested ahdemo and monitor mode injection with wlandebug +states. In short, it seems that indeed ahdemo mode complains about moving from INIT to RUN state unexpectedly, and monitor mode goes back to SCAN state making it not very useful for this purpose given the stated issues with SCAN state. First, the general output of aireplay-ng -9: wi_write(): Input/output error ... repeat last message 28 times ... wi_write(): Input/output error wi_write(): Input/output error 19:34:43 0/30: 0% Finally, below my signature, I have included the /var/log/messages output annotated with comments indicating which shell commands were being run before the messages were output in the form of comments with three hashmarks. Thanks, Merlin Addendum -------- $ sudo tail -f /var/log/messages Feb 6 19:25:35 frakir kernel: Root mount waiting for: usbus4 Feb 6 19:25:35 frakir kernel: ugen4.2: at usbus4 Feb 6 19:25:35 frakir kernel: Trying to mount root from zfs:rpool/r/freebsd []... Feb 6 19:25:35 frakir kernel: WARNING: TMPFS is considered to be a highly experimental feature in FreeBSD. Feb 6 19:25:37 frakir dbus[1626]: [system] Activating service name=3D'org.freedesktop.ConsoleKit' (using servicehelper) Feb 6 19:25:37 frakir dbus[1626]: [system] Activating service name=3D'org.freedesktop.PolicyKit1' (using servicehelper) Feb 6 19:25:38 frakir dbus[1626]: [system] Successfully activated service 'org.freedesktop.PolicyKit1' Feb 6 19:25:38 frakir dbus[1626]: [system] Successfully activated service 'org.freedesktop.ConsoleKit' Feb 6 19:28:07 frakir sudo: merlin : TTY=3Dpts/1 ; PWD=3D/usr/home/merlin ; USER=3Droot ; COMMAND=3D/usr/local/bin/zsh Feb 6 19:28:14 frakir sudo: merlin : TTY=3Dpts/2 ; PWD=3D/usr/home/merlin ; USER=3Droot ; COMMAND=3D/usr/bin/tail -f /var/log/messages ### ifconfig wlan0 create wlandev ath0 wlanmode ahdemo Feb 6 19:29:11 frakir kernel: wlan0: Ethernet address: 74:2f:68:8e:4f:2d ### airodump-ng wlan0 Feb 6 19:29:38 frakir kernel: wlan0: permanently promiscuous mode enabled Feb 6 19:29:38 frakir kernel: wlan0: start running, 0 vaps running Feb 6 19:29:38 frakir kernel: wlan0: ieee80211_start_locked: up parent ath= 0 Feb 6 19:29:38 frakir kernel: wlan0: start running, 1 vaps running Feb 6 19:29:38 frakir kernel: wlan0: ieee80211_new_state_locked: INIT -> SCAN (nrunning 0 nscanning 0) Feb 6 19:29:38 frakir kernel: wlan0: ieee80211_newstate_cb: INIT -> INIT a= rg 0 Feb 6 19:29:38 frakir kernel: wlan0: adhoc_newstate: INIT -> INIT (0) Feb 6 19:29:38 frakir kernel: wlan0: ieee80211_newstate_cb: INIT -> SCAN a= rg 0 Feb 6 19:29:38 frakir kernel: wlan0: adhoc_newstate: INIT -> SCAN (0) Feb 6 19:29:38 frakir kernel: wlan0: ieee80211_new_state_locked: SCAN -> SCAN (nrunning 0 nscanning 0) Feb 6 19:29:43 frakir last message repeated 22 times Feb 6 19:29:43 frakir kernel: wlan0: ieee80211_newstate_cb: SCAN -> SCAN a= rg 0 Feb 6 19:29:43 frakir kernel: wlan0: adhoc_newstate: SCAN -> SCAN (0) Feb 6 19:29:44 frakir kernel: wlan0: ieee80211_new_state_locked: SCAN -> SCAN (nrunning 0 nscanning 0) Feb 6 19:29:49 frakir last message repeated 21 times Feb 6 19:29:49 frakir kernel: wlan0: ieee80211_newstate_cb: SCAN -> SCAN a= rg 0 Feb 6 19:29:49 frakir kernel: wlan0: adhoc_newstate: SCAN -> SCAN (0) Feb 6 19:29:49 frakir kernel: wlan0: ieee80211_new_state_locked: SCAN -> SCAN (nrunning 0 nscanning 0) Feb 6 19:29:51 frakir last message repeated 6 times Feb 6 19:29:54 frakir kernel: wlan0: ieee80211_newstate_cb: SCAN -> SCAN a= rg 0 Feb 6 19:29:54 frakir kernel: wlan0: adhoc_newstate: SCAN -> SCAN (0) ### ifconfig wlan0 ssid bssid channel up Feb 6 19:30:32 frakir kernel: wlan0: ieee80211_init Feb 6 19:30:32 frakir kernel: wlan0: start running, 1 vaps running Feb 6 19:30:32 frakir kernel: wlan0: ieee80211_new_state_locked: SCAN -> SCAN (nrunning 0 nscanning 0) Feb 6 19:30:32 frakir kernel: wlan0: ieee80211_init Feb 6 19:30:32 frakir kernel: wlan0: start running, 1 vaps running Feb 6 19:30:32 frakir kernel: wlan0: ieee80211_new_state_locked: SCAN -> SCAN (nrunning 0 nscanning 0) Feb 6 19:30:32 frakir kernel: wlan0: ieee80211_new_state_locked: SCAN -> SCAN (nrunning 0 nscanning 0) Feb 6 19:30:33 frakir kernel: wlan0: ieee80211_new_state_locked: SCAN -> RUN (nrunning 0 nscanning 0) Feb 6 19:30:33 frakir kernel: wlan0: ieee80211_newstate_cb: SCAN -> INIT a= rg -1 Feb 6 19:30:33 frakir kernel: wlan0: adhoc_newstate: SCAN -> INIT (-1) Feb 6 19:30:33 frakir kernel: wlan0: ieee80211_newstate_cb: INIT -> RUN ar= g -1 Feb 6 19:30:33 frakir kernel: wlan0: adhoc_newstate: INIT -> RUN (-1) Feb 6 19:30:33 frakir kernel: wlan0: adhoc_newstate: unexpected state transition INIT -> RUN ### aireplay-ng -9 wlan0 -e ssid -a bssid Feb 6 19:32:23 frakir kernel: wlan0: ieee80211_new_state_locked: RUN -> SCAN (nrunning 0 nscanning 0) Feb 6 19:32:23 frakir kernel: wlan0: ieee80211_newstate_cb: RUN -> SCAN ar= g 0 Feb 6 19:32:23 frakir kernel: wlan0: adhoc_newstate: RUN -> SCAN (0) Feb 6 19:32:23 frakir kernel: wlan0: ieee80211_new_state_locked: SCAN -> SCAN (nrunning 0 nscanning 0) Feb 6 19:32:26 frakir kernel: wlan0: ieee80211_new_state_locked: SCAN -> RUN (nrunning 0 nscanning 0) Feb 6 19:32:26 frakir kernel: wlan0: ieee80211_newstate_cb: SCAN -> RUN ar= g -1 Feb 6 19:32:26 frakir kernel: wlan0: adhoc_newstate: SCAN -> RUN (-1) Feb 6 19:32:34 frakir kernel: ath0: bb hang detected (0x1) ### ifconfig wlan0 destroy && ifconfig wlan0 create wlandev ath0 wlanmode monitor Feb 6 19:32:48 frakir kernel: wlan0: ieee80211_vap_detach: AHDEMO parent a= th0 Feb 6 19:32:48 frakir kernel: wlan0: stop running, 1 vaps running Feb 6 19:32:48 frakir kernel: wlan0: ieee80211_new_state_locked: RUN -> INIT (nrunning 0 nscanning 0) Feb 6 19:32:48 frakir kernel: wlan0: down parent ath0 Feb 6 19:32:48 frakir kernel: wlan0: ieee80211_newstate_cb: RUN -> INIT ar= g -1 Feb 6 19:32:48 frakir kernel: wlan0: adhoc_newstate: RUN -> INIT (-1) Feb 6 19:46:01 frakir kernel: wlan0: Ethernet address: 74:2f:68:8e:4f:2d ### airodump-ng wlan0 Feb 6 19:46:36 frakir kernel: wlan0: permanently promiscuous mode enabled Feb 6 19:46:36 frakir kernel: wlan0: start running, 0 vaps running Feb 6 19:46:36 frakir kernel: wlan0: ieee80211_start_locked: up parent ath= 0 Feb 6 19:46:36 frakir kernel: wlan0: start running, 1 vaps running Feb 6 19:46:36 frakir kernel: wlan0: ieee80211_new_state_locked: INIT -> RUN (nrunning 0 nscanning 0) Feb 6 19:46:36 frakir kernel: wlan0: ieee80211_newstate_cb: INIT -> INIT a= rg -1 Feb 6 19:46:36 frakir kernel: wlan0: monitor_newstate: INIT -> INIT (-1) Feb 6 19:46:36 frakir kernel: wlan0: ieee80211_newstate_cb: INIT -> RUN ar= g -1 Feb 6 19:46:36 frakir kernel: wlan0: monitor_newstate: INIT -> RUN (-1) Feb 6 19:46:36 frakir kernel: wlan0: ieee80211_new_state_locked: RUN -> RUN (nrunning 0 nscanning 0) Feb 6 19:46:36 frakir kernel: wlan0: ieee80211_newstate_cb: RUN -> RUN arg= -1 Feb 6 19:46:36 frakir kernel: wlan0: monitor_newstate: RUN -> RUN (-1) # ifconfig wlan0 ssid bssid channel up Feb 6 19:47:13 frakir kernel: wlan0: ieee80211_init Feb 6 19:47:13 frakir kernel: wlan0: start running, 1 vaps running Feb 6 19:47:13 frakir kernel: wlan0: ieee80211_new_state_locked: RUN -> RUN (nrunning 0 nscanning 0) Feb 6 19:47:13 frakir kernel: wlan0: ieee80211_newstate_cb: RUN -> INIT ar= g -1 Feb 6 19:47:13 frakir kernel: wlan0: ieee80211_init Feb 6 19:47:13 frakir kernel: wlan0: monitor_newstate: RUN -> INIT (-1) Feb 6 19:47:13 frakir kernel: wlan0: ieee80211_newstate_cb: INIT -> RUN ar= g -1 Feb 6 19:47:13 frakir kernel: wlan0: monitor_newstate: INIT -> RUN (-1) Feb 6 19:47:13 frakir kernel: wlan0: ieee80211_new_state_locked: RUN -> RUN (nrunning 0 nscanning 0) Feb 6 19:47:13 frakir kernel: wlan0: start running, 1 vaps running Feb 6 19:47:13 frakir kernel: wlan0: ieee80211_new_state_locked: RUN -> RUN (nrunning 0 nscanning 0) Feb 6 19:47:13 frakir kernel: wlan0: ieee80211_newstate_cb: RUN -> INIT ar= g -1 Feb 6 19:47:13 frakir kernel: wlan0: monitor_newstate: RUN -> INIT (-1) Feb 6 19:47:13 frakir kernel: wlan0: ieee80211_newstate_cb: INIT -> RUN ar= g -1 Feb 6 19:47:13 frakir kernel: wlan0: monitor_newstate: INIT -> RUN (-1) Feb 6 19:47:13 frakir kernel: wlan0: ieee80211_new_state_locked: RUN -> RUN (nrunning 0 nscanning 0) Feb 6 19:47:13 frakir kernel: wlan0: ieee80211_newstate_cb: RUN -> RUN arg= -1 Feb 6 19:47:13 frakir kernel: wlan0: monitor_newstate: RUN -> RUN (-1) ## aireplay_ng -9 wlan0 -e ssid -a bssid Feb 6 19:47:38 frakir kernel: wlan0: ieee80211_new_state_locked: RUN -> SCAN (nrunning 0 nscanning 0) Feb 6 19:47:38 frakir kernel: wlan0: ieee80211_newstate_cb: RUN -> SCAN ar= g 0 Feb 6 19:47:38 frakir kernel: wlan0: monitor_newstate: RUN -> SCAN (0) Feb 6 19:47:38 frakir kernel: wlan0: ieee80211_new_state_locked: SCAN -> SCAN (nrunning 0 nscanning 0) Feb 6 19:47:38 frakir kernel: wlan0: ieee80211_newstate_cb: SCAN -> SCAN a= rg 0 Feb 6 19:47:38 frakir kernel: wlan0: monitor_newstate: SCAN -> SCAN (0) Feb 6 19:47:42 frakir kernel: ath0: bb hang detected (0x1) ^C% ------ End Addendum From owner-freebsd-wireless@FreeBSD.ORG Mon Feb 6 19:59:11 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 56C8C1065672; Mon, 6 Feb 2012 19:59:11 +0000 (UTC) (envelope-from bschmidt@techwires.net) Received: from mail-bk0-f54.google.com (mail-bk0-f54.google.com [209.85.214.54]) by mx1.freebsd.org (Postfix) with ESMTP id B1BD28FC18; Mon, 6 Feb 2012 19:59:10 +0000 (UTC) Received: by bkbzx1 with SMTP id zx1so6873793bkb.13 for ; Mon, 06 Feb 2012 11:59:09 -0800 (PST) Received: by 10.204.9.198 with SMTP id m6mr8939830bkm.74.1328558349461; Mon, 06 Feb 2012 11:59:09 -0800 (PST) Received: from amy.lab.techwires.net (dslb-088-067-204-237.pools.arcor-ip.net. [88.67.204.237]) by mx.google.com with ESMTPS id x20sm48533949bka.9.2012.02.06.11.59.06 (version=SSLv3 cipher=OTHER); Mon, 06 Feb 2012 11:59:08 -0800 (PST) Sender: Bernhard Schmidt From: Bernhard Schmidt To: Adrian Chadd Date: Mon, 6 Feb 2012 20:59:16 +0100 User-Agent: KMail/1.13.7 (FreeBSD/9.0-PRERELEASE; KDE/4.7.3; amd64; ; ) References: In-Reply-To: MIME-Version: 1.0 Content-Type: Text/Plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Message-Id: <201202062059.16816.bschmidt@freebsd.org> Cc: freebsd-wireless@freebsd.org Subject: Re: [net80211] support vendor bitmap entries; teach if_ath to export PHY error code in error frames X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Feb 2012 19:59:11 -0000 On Monday 06 February 2012 20:18:02 Adrian Chadd wrote: > On 6 February 2012 08:38, Bernhard Schmidt wrote: > > >> + /* XXX what should this be? */ > >> + sc->sc_rx_th.wr_vh.sub_namespace = 0; > > > > Are you sure about that? If I get the "Vendor Namespace" description > > on radiotap.org right the wr_vh.sub_namespace field should actually > > contain what you moved into wr_ext_bitmap. Otherwise > > Nono - the sub_namespace defines how to interpret the 29 bit bitmask > (with bits 29, 30, 31 being always defined as vendor/radiotap/ext > bits, regardless of which namespace you're in.) > Ie: > > * in radiotap mode, the namespace is "radiotap" > * when you set the vendor bit in the bitmask (and ext), the next > bitmap is a vendor bitmask in the namespace defined by > "sub_namespace"; > * then you set the radiotap (and ext) bit in the vendor bitmask, the > next bitmask is in the radiotap namespace again. You're right, found a sample capture which confirmed that. > > ATH_RADIOTAP_VENDOR_HEADER must be defined by radiotap and have it's > > own data. If I'm right we don't need wr_ext_bitmap at all and > > therefore neither ieee80211_radiotap_attachv() and the different > > offset handling, only setting IEEE80211_RADIOTAP_VENDOREXT is required > > (not IEEE80211_RADIOTAP_EXT). > > I haven't checked to see whether I can get away with just setting > VENDOREXT but not EXT. > > I've checked this with Johannes and it looks right. But the lack of > documentation and the existance of a 6 bit vendor header that > precludes the vendor payload being in any way "naturally aligned" > without hacks is just .. grr. > > I'll post an updated patch in an hour or two. I have this now working > complete with a userland radar phy frame parsing app. I'll go and post > all of this soon. Given that the calculation of the offsets is totally unrelated to the length of the actually vendor specific data, couldn't you just add the length of the additional ext field + padding based on the presents of VENDOREXT? -- Bernhard From owner-freebsd-wireless@FreeBSD.ORG Mon Feb 6 20:05:27 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 27EC71065674 for ; Mon, 6 Feb 2012 20:05:27 +0000 (UTC) (envelope-from bschmidt@techwires.net) Received: from mail-bk0-f54.google.com (mail-bk0-f54.google.com [209.85.214.54]) by mx1.freebsd.org (Postfix) with ESMTP id ADB288FC1A for ; Mon, 6 Feb 2012 20:05:26 +0000 (UTC) Received: by bkbzx1 with SMTP id zx1so6879167bkb.13 for ; Mon, 06 Feb 2012 12:05:25 -0800 (PST) Received: by 10.204.157.148 with SMTP id b20mr9207858bkx.89.1328558725480; Mon, 06 Feb 2012 12:05:25 -0800 (PST) Received: from amy.lab.techwires.net (dslb-088-067-204-237.pools.arcor-ip.net. [88.67.204.237]) by mx.google.com with ESMTPS id cg2sm48549833bkb.12.2012.02.06.12.05.23 (version=SSLv3 cipher=OTHER); Mon, 06 Feb 2012 12:05:24 -0800 (PST) Sender: Bernhard Schmidt From: Bernhard Schmidt To: Merlin Corey Date: Mon, 6 Feb 2012 21:05:32 +0100 User-Agent: KMail/1.13.7 (FreeBSD/9.0-PRERELEASE; KDE/4.7.3; amd64; ; ) References: <201202061835.43116.bschmidt@freebsd.org> In-Reply-To: MIME-Version: 1.0 Content-Type: Text/Plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Message-Id: <201202062105.33007.bschmidt@freebsd.org> Cc: freebsd-wireless@freebsd.org Subject: Re: FreeBSD 9.0 ath driver injection with aireplay_ng returns input/output error in AHDemo and Monitor mode X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Feb 2012 20:05:27 -0000 On Monday 06 February 2012 20:57:35 Merlin Corey wrote: > Hello, > > On Mon, Feb 6, 2012 at 5:35 PM, Bernhard Schmidt wrote: > > On Monday 06 February 2012 15:32:42 Merlin Corey wrote: > >> Hello, > >> > >> Like some a year before me, from a thread two years before me ( > >> http://forums.freebsd.org/showthread.php?t=10042 ), I am interested in > >> making my (pun intended) penultimate pen-testing netbook on my > >> favorite operating system, FreeBSD; alas, I am not able to make use of > >> the atheros card in said netbook for the purposes of injection. > >> > >> It is perhaps worth nothing that I started this project on FreeBSD > >> 8.x, but my card (AR9285 card=0x10891a3b chip=0x002b168c rev=0x01 hdr= > >> 0x00) was only working at what seemed half power and would constantly > >> take itself up/down. I have since updated the system to 9.0-RELEASE > >> and experienced what appeared to be fully functioning wireless until > >> now. > >> > >> In the thread linked above, there is a mention of a kernel patch which > >> allows writing in monitor mode - I desperately applied this patch > >> after finding that the instructions to patch aircrack itself seem to > >> have already been applied either in ports or upstream. > >> > >> Now, I can run airodump just fine, but when I try to do injection test > >> with aireplay in either ahdemo or monitor mode, I simply end up with a > >> bunch of "wi_write(): Input/output error" messages. > >> > >> I am not really sure how to proceed in further debugging this issue; > >> should I turn wlandebug on, and if so, which bit is best, or should I > >> just throw them all? Perhaps something else entirely? > >> > >> Is this maybe a problem with my card itself? > >> > >> Any push in the right direction would be greatly appreciated. > > > > Can you set a channel and ssid before starting any kind of injection? Something like > > ifconfig wlan0 create wlandev ath0 wlanmode ahdemo > > ifconfig wlan0 channel 1 ssid foobar up > > > > If I remember correctly, the interface will otherwise scan indefinitely trying to find an open network to connect to. Setting a channel/ssid will ensure that the interface moves into RUN state (you can verify that with wlandebug +state) which should allow injection. Trying to do so while in eg. SCAN state is really too racy due to all the channel changes going on. > > > > Basically, injection is a real mess currently and neither monitor nor ahdemo mode are really that well suited for that purpose. Monitor mode is designed to be totally mute while ahdemo is adhoc mode without mgmt frames but a lot of unnecessary logic behind it. Guess we should really think about a new mode specially designed to handle those needs, or re-enable injection in monitor mode which would break it's initial purpose.. thoughts? > > > > -- > > Bernhard > > As per the directions given to me by Bernhard, I have tested ahdemo > and monitor mode injection with wlandebug +states. In short, it seems > that indeed ahdemo mode complains about moving from INIT to RUN state > unexpectedly, and monitor mode goes back to SCAN state making it not > very useful for this purpose given the stated issues with SCAN state. > > First, the general output of aireplay-ng -9: > wi_write(): Input/output error > ... repeat last message 28 times ... > wi_write(): Input/output error > wi_write(): Input/output error > 19:34:43 0/30: 0% > > Finally, below my signature, I have included the /var/log/messages > output annotated with comments indicating which shell commands were > being run before the messages were output in the form of comments with > three hashmarks. Yeah.. air* does a lot of stuff, not all of it being that useful. It might simple be that it resets the device and therefore the configuration. I'll have a look tomorrow. I the mean time, can you give /usr/src/tools/tools/net80211/wlaninect a shot? -- Bernhard From owner-freebsd-wireless@FreeBSD.ORG Mon Feb 6 20:12:36 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D8189106566C; Mon, 6 Feb 2012 20:12:36 +0000 (UTC) (envelope-from adrian.chadd@gmail.com) Received: from mail-ww0-f50.google.com (mail-ww0-f50.google.com [74.125.82.50]) by mx1.freebsd.org (Postfix) with ESMTP id C76758FC0A; Mon, 6 Feb 2012 20:12:35 +0000 (UTC) Received: by wgbdq11 with SMTP id dq11so6642187wgb.31 for ; Mon, 06 Feb 2012 12:12:34 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type; bh=FIAzCqaMV2uTtjDedAq1eToM9STEEzQHeA7NlfoHmmU=; b=BGxhmNsMZSY7jAwuPBvIvWI7dJ/lOajg/vKu9KreGBFLFXfQzahZcT0bPE61fovACs 8/CQ5DCMABaM6HdeUED/pJuJteAP5+2+7+MpYzzRbpucFdr2YjCk0cW6ujQtzW11BzrD gmhn76dhxw/wCTZegX/xlvvIf8p9t2spqplIA= MIME-Version: 1.0 Received: by 10.180.107.34 with SMTP id gz2mr29350487wib.21.1328559154803; Mon, 06 Feb 2012 12:12:34 -0800 (PST) Sender: adrian.chadd@gmail.com Received: by 10.216.175.136 with HTTP; Mon, 6 Feb 2012 12:12:34 -0800 (PST) In-Reply-To: <201202062059.16816.bschmidt@freebsd.org> References: <201202062059.16816.bschmidt@freebsd.org> Date: Mon, 6 Feb 2012 12:12:34 -0800 X-Google-Sender-Auth: KM62c8NF1qUC7_VGBzvxUuc78tk Message-ID: From: Adrian Chadd To: Bernhard Schmidt Content-Type: text/plain; charset=ISO-8859-1 Cc: freebsd-wireless@freebsd.org Subject: Re: [net80211] support vendor bitmap entries; teach if_ath to export PHY error code in error frames X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Feb 2012 20:12:36 -0000 On 6 February 2012 11:59, Bernhard Schmidt wrote: > Given that the calculation of the offsets is totally unrelated to the length of the actually vendor specific data, couldn't you just add the length of the additional ext field + padding based on the presents of VENDOREXT? Well, the problem is the lack of documented alignment requirements for a variable-length vendor data chunk. I'm aligning the vendor header @ a 4 byte boundary (which wireshark seems to accept) and johannes' reference radiotap parser comes with vendor chunks which are also 4 byte aligned. But: * the vendor header is 6 bytes, so * there's two bytes between it and the next 4 / 8 byte boundary; * there's no requirement for the vendor header to be 8 byte aligned, so you can't store uint64_t's inside the vendor data blob and assume they'll be "naturally aligned." For now I've just added a 2 byte pad (1 byte version, one byte rx chainmask) to pad it out to a 4 byte array, then all my sub-fields assume 4 byte alignment. Along with plenty of comments about alignment assumptions. I haven't yet tested my patch out on MIPS to ensure that I haven't busted alignment constraints. I'll do that before I finally commit it. Adrian From owner-freebsd-wireless@FreeBSD.ORG Tue Feb 7 08:17:11 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D48401065676; Tue, 7 Feb 2012 08:17:11 +0000 (UTC) (envelope-from lars@e-new.0x20.net) Received: from mail.0x20.net (mail.0x20.net [IPv6:2001:aa8:fffb:1::3]) by mx1.freebsd.org (Postfix) with ESMTP id 184208FC0A; Tue, 7 Feb 2012 08:17:10 +0000 (UTC) Received: from mail.0x20.net (mail.0x20.net [217.69.76.211]) by mail.0x20.net (Postfix) with ESMTP id 9E1296A6647; Tue, 7 Feb 2012 09:17:09 +0100 (CET) X-Virus-Scanned: amavisd-new at mail.0x20.net Received: from mail.0x20.net ([217.69.76.211]) by mail.0x20.net (mail.0x20.net [217.69.76.211]) (amavisd-new, port 10024) with ESMTP id tTyV2ELw0xL0; Tue, 7 Feb 2012 09:17:09 +0100 (CET) Received: from e-new.0x20.net (mail.0x20.net [IPv6:2001:aa8:fffb:1::3]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.0x20.net (Postfix) with ESMTPS id 408C96A6245; Tue, 7 Feb 2012 09:17:09 +0100 (CET) Received: from e-new.0x20.net (localhost [127.0.0.1]) by e-new.0x20.net (8.14.4/8.14.4) with ESMTP id q178H83I026819; Tue, 7 Feb 2012 09:17:08 +0100 (CET) (envelope-from lars@e-new.0x20.net) Received: (from lars@localhost) by e-new.0x20.net (8.14.4/8.14.4/Submit) id q178H8BH026375; Tue, 7 Feb 2012 09:17:08 +0100 (CET) (envelope-from lars) Date: Tue, 7 Feb 2012 09:17:08 +0100 From: Lars Engels To: Bernhard Schmidt Message-ID: <20120207081707.GK4776@e-new.0x20.net> References: <201202061835.43116.bschmidt@freebsd.org> <201202062105.33007.bschmidt@freebsd.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="Ucgz5Oc/kKURWzXs" Content-Disposition: inline In-Reply-To: <201202062105.33007.bschmidt@freebsd.org> X-Editor: VIM - Vi IMproved 7.3 X-Operation-System: FreeBSD 8.2-RELEASE-p3 User-Agent: Mutt/1.5.21 (2010-09-15) Cc: freebsd-wireless@freebsd.org Subject: Re: FreeBSD 9.0 ath driver injection with aireplay_ng returns input/output error in AHDemo and Monitor mode X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 07 Feb 2012 08:17:11 -0000 --Ucgz5Oc/kKURWzXs Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Feb 06, 2012 at 09:05:32PM +0100, Bernhard Schmidt wrote: > On Monday 06 February 2012 20:57:35 Merlin Corey wrote: > > Hello, > >=20 > > On Mon, Feb 6, 2012 at 5:35 PM, Bernhard Schmidt = wrote: > > > On Monday 06 February 2012 15:32:42 Merlin Corey wrote: > > >> Hello, > > >> > > >> Like some a year before me, from a thread two years before me ( > > >> http://forums.freebsd.org/showthread.php?t=3D10042 ), I am intereste= d in > > >> making my (pun intended) penultimate pen-testing netbook on my > > >> favorite operating system, FreeBSD; alas, I am not able to make use = of > > >> the atheros card in said netbook for the purposes of injection. > > >> > > >> It is perhaps worth nothing that I started this project on FreeBSD > > >> 8.x, but my card (AR9285 card=3D0x10891a3b chip=3D0x002b168c rev=3D0= x01 hdr=3D > > >> 0x00) was only working at what seemed half power and would constantly > > >> take itself up/down. I have since updated the system to 9.0-RELEASE > > >> and experienced what appeared to be fully functioning wireless until > > >> now. > > >> > > >> In the thread linked above, there is a mention of a kernel patch whi= ch > > >> allows writing in monitor mode - I desperately applied this patch > > >> after finding that the instructions to patch aircrack itself seem to > > >> have already been applied either in ports or upstream. > > >> > > >> Now, I can run airodump just fine, but when I try to do injection te= st > > >> with aireplay in either ahdemo or monitor mode, I simply end up with= a > > >> bunch of "wi_write(): Input/output error" messages. > > >> > > >> I am not really sure how to proceed in further debugging this issue; > > >> should I turn wlandebug on, and if so, which bit is best, or should I > > >> just throw them all? Perhaps something else entirely? > > >> > > >> Is this maybe a problem with my card itself? > > >> > > >> Any push in the right direction would be greatly appreciated. > > > > > > Can you set a channel and ssid before starting any kind of injection?= Something like > > > ifconfig wlan0 create wlandev ath0 wlanmode ahdemo > > > ifconfig wlan0 channel 1 ssid foobar up > > > > > > If I remember correctly, the interface will otherwise scan > > > indefinitely trying to find an open network to connect to. Setting > > > a channel/ssid will ensure that the interface moves into RUN state > > > (you can verify that with wlandebug +state) which should allow > > > injection. Trying to do so while in eg. SCAN state is really too > > > racy due to all the channel changes going on. > > > > > > Basically, injection is a real mess currently and neither monitor > > > nor ahdemo mode are really that well suited for that purpose. > > > Monitor mode is designed to be totally mute while ahdemo is adhoc > > > mode without mgmt frames but a lot of unnecessary logic behind it. > > > Guess we should really think about a new mode specially designed > > > to handle those needs, or re-enable injection in monitor mode > > > which would break it's initial purpose.. thoughts? > > > > > > -- > > > Bernhard > >=20 > > As per the directions given to me by Bernhard, I have tested ahdemo > > and monitor mode injection with wlandebug +states. In short, it seems > > that indeed ahdemo mode complains about moving from INIT to RUN state > > unexpectedly, and monitor mode goes back to SCAN state making it not > > very useful for this purpose given the stated issues with SCAN state. > >=20 > > First, the general output of aireplay-ng -9: > > wi_write(): Input/output error > > ... repeat last message 28 times ... > > wi_write(): Input/output error > > wi_write(): Input/output error > > 19:34:43 0/30: 0% > >=20 > > Finally, below my signature, I have included the /var/log/messages > > output annotated with comments indicating which shell commands were > > being run before the messages were output in the form of comments with > > three hashmarks. >=20 > Yeah.. air* does a lot of stuff, not all of it being that useful. It > might simple be that it resets the device and therefore the > configuration. I'll have a look tomorrow. Yup, maybe we can improve aircrack-ng and get some patches upstream? >=20 > I the mean time, can you give /usr/src/tools/tools/net80211/wlaninect > a shot? --Ucgz5Oc/kKURWzXs Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.18 (FreeBSD) iEYEARECAAYFAk8w3gMACgkQKc512sD3afhO0wCfeh5Vw3AoNHet++z4BlJxgdmT IhsAnA5z29bPepg3967BY8xX6rMZzqHo =e1tk -----END PGP SIGNATURE----- --Ucgz5Oc/kKURWzXs-- From owner-freebsd-wireless@FreeBSD.ORG Tue Feb 7 20:12:25 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C26BB106564A for ; Tue, 7 Feb 2012 20:12:25 +0000 (UTC) (envelope-from pgl@bok.net) Received: from mail-pw0-f54.google.com (mail-pw0-f54.google.com [209.85.160.54]) by mx1.freebsd.org (Postfix) with ESMTP id A46AE8FC18 for ; Tue, 7 Feb 2012 20:12:25 +0000 (UTC) Received: by pbdv10 with SMTP id v10so7795979pbd.13 for ; Tue, 07 Feb 2012 12:12:25 -0800 (PST) Received: by 10.68.72.70 with SMTP id b6mr60350809pbv.58.1328644174527; Tue, 07 Feb 2012 11:49:34 -0800 (PST) Received: from localhost ([64.9.243.203]) by mx.google.com with ESMTPS id p2sm18780760pbb.14.2012.02.07.11.49.32 (version=TLSv1/SSLv3 cipher=OTHER); Tue, 07 Feb 2012 11:49:33 -0800 (PST) Date: Tue, 7 Feb 2012 11:49:31 -0800 From: Peter Lazar To: freebsd-wireless@freebsd.org Message-ID: <20120207194931.GB1676@pgl-P5K-E> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.5.21 (2010-09-15) Subject: wi driver X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 07 Feb 2012 20:12:25 -0000 Hi there, After reading http://forums.freebsd.org/archive/index.php/t-27830.html Here's my two cents on the wi driver. I tried/tested the wi driver with the following PCMCIA cards: Lucent Orinoco Gold (also known as: Lucent WaveLAN) SENAO 2511CD PLUS EXT2 On two different laptops: Dell LS400 IBM T42 With the following FreeBSD RELEASE versions: 7.4 (and 7.2) 8.2 9.0 On a home wireless network off Linksys WRT54G. I find as follows: 1. Both cards work on 7.4 and 7.2 2. Both cards fail to work correctly on 8.2, and on 9.0. after: ifconfig wlan0 create wlandev wi0 ifconfig wlan0 ssid xxxx wepmode on weptxkey 1 wepkey 0xxxxx up command ifconf wlan0 shows there is either no association, or ssid is empty (""). and, as expected, attempt to "dhclient wi0" fails. 3. When inserted, on a laptop with either 8.2 and 9.0, Lucent Orinoco gives the following console message: interrupt storm detected on "irq11:" throttling interrupt source wi0: at port 0x100-0x13f irq11 function 0 config 1 on pccard1 wi0: [ITHREAD] on LS400, it is irq10 on T42, it is irq11 Lastly, here's my conclusion: 1. prior to introduction of "wlan" (generic link-layer), wi driver works as desired. 2. on and after introduction of "wlan", wi driver does not work. Regards, Peter Lazar Mountain View, CA, U.S.A. pgl@bok.net From owner-freebsd-wireless@FreeBSD.ORG Tue Feb 7 20:42:21 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7A11E106564A for ; Tue, 7 Feb 2012 20:42:21 +0000 (UTC) (envelope-from adrian.chadd@gmail.com) Received: from mail-ww0-f50.google.com (mail-ww0-f50.google.com [74.125.82.50]) by mx1.freebsd.org (Postfix) with ESMTP id 131C08FC12 for ; Tue, 7 Feb 2012 20:42:20 +0000 (UTC) Received: by wgbdq11 with SMTP id dq11so7771690wgb.31 for ; Tue, 07 Feb 2012 12:42:20 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=LrBvbHvBGFHa/S+kixwetT836b6OciFdo0+q7YKTfLc=; b=g00flNCoja/4yug6s50hWOZgglQaMjGh7VjcNjdd2gJVHCY3REJBgdZm0w/Z/22R3L HI+K7yoHHW/QKKNJIJ9AKPOwb5Cl0VVxSMseIij4w5Da+Tnm64OJ5w/81y3rOHYUDTY5 quh/J1XGhwQFb4b+wzt/lTaH9gdrzZzRvatv0= MIME-Version: 1.0 Received: by 10.181.11.227 with SMTP id el3mr36423215wid.18.1328647339863; Tue, 07 Feb 2012 12:42:19 -0800 (PST) Sender: adrian.chadd@gmail.com Received: by 10.216.175.136 with HTTP; Tue, 7 Feb 2012 12:42:19 -0800 (PST) In-Reply-To: <20120207194931.GB1676@pgl-P5K-E> References: <20120207194931.GB1676@pgl-P5K-E> Date: Tue, 7 Feb 2012 12:42:19 -0800 X-Google-Sender-Auth: wYhjHBLNm5XHrfEG6Jc2frcxVmw Message-ID: From: Adrian Chadd To: Peter Lazar Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: freebsd-wireless@freebsd.org Subject: Re: wi driver X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 07 Feb 2012 20:42:21 -0000 On 7 February 2012 11:49, Peter Lazar wrote: > Hi there, > > After reading > > =A0http://forums.freebsd.org/archive/index.php/t-27830.html > > Here's my two cents on the wi driver. Hi, What about 8.0 ? There are other changes that have occured in the kernel besides wireless. A lot of the "stuff used to work, now it doesn't" issues stem from PCI/PCMCIA/cardbus resource allocation changes. adrian From owner-freebsd-wireless@FreeBSD.ORG Wed Feb 8 07:59:38 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 663B01065672; Wed, 8 Feb 2012 07:59:38 +0000 (UTC) (envelope-from smithi@nimnet.asn.au) Received: from sola.nimnet.asn.au (paqi.nimnet.asn.au [115.70.110.159]) by mx1.freebsd.org (Postfix) with ESMTP id A00978FC0C; Wed, 8 Feb 2012 07:59:37 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by sola.nimnet.asn.au (8.14.2/8.14.2) with ESMTP id q187KCsm088049; Wed, 8 Feb 2012 18:20:12 +1100 (EST) (envelope-from smithi@nimnet.asn.au) Date: Wed, 8 Feb 2012 18:20:12 +1100 (EST) From: Ian Smith To: Adrian Chadd In-Reply-To: Message-ID: <20120208174845.A53709@sola.nimnet.asn.au> References: <20120207194931.GB1676@pgl-P5K-E> MIME-Version: 1.0 Content-Type: MULTIPART/MIXED; BOUNDARY="0-1303104072-1328685612=:53709" Cc: freebsd-wireless@freebsd.org, Peter Lazar Subject: Re: wi driver X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Feb 2012 07:59:38 -0000 This message is in MIME format. The first part should be readable text, while the remaining parts are likely unreadable without MIME-aware tools. --0-1303104072-1328685612=:53709 Content-Type: TEXT/PLAIN; charset=ISO-8859-1 Content-Transfer-Encoding: 8BIT On Tue, 7 Feb 2012, Adrian Chadd wrote: > On 7 February 2012 11:49, Peter Lazar wrote: > > Hi there, > > > > After reading > > > >  http://forums.freebsd.org/archive/index.php/t-27830.html > > > > Here's my two cents on the wi driver. > > Hi, > > What about 8.0 ? Rummaging through my old messages* shows I'd never tried wi on 8.0 through 8.1-stable, nor apparently 7.x, though I used to use it infrequently but successfully on 4.8-R, 5.5-S and 6.1-R. I can confirm Peter's report for my Cabletron Roamabout (Wavelan clone) on 8.2-R, now: interrupt storm detected on "irq11:"; throttling interrupt source wi0: at port 0x100-0x13f irq 11 function 0 config 1 on pccard0 wi0: [ITHREAD] wlan0: Ethernet address: 00:e0:63:82:d9:47 t23# ifconfig wlan0 create wlandev wi0 t23# ifconfig [..] wi0: flags=8802 metric 0 mtu 2290 ether 00:e0:63:82:d9:47 media: IEEE 802.11 Wireless Ethernet autoselect (autoselect) status: no carrier wlan0: flags=8802 metric 0 mtu 1500 ether 00:e0:63:82:d9:47 media: IEEE 802.11 Wireless Ethernet autoselect (autoselect) status: no carrier ssid "" channel 1 (2412 MHz 11b) country US authmode OPEN privacy OFF txpower 0 bmiss 7 scanvalid 60 bintval 0 With nothing to talk to here, I didn't try configuring wlan0 further. wi0: detached One earlier attempt on 8.2 shows the same interrupt storm on insertion, except on an immediately subsequent insertion, it picked on irq 5 - ah, but that was trying it in the other slot. On that occasion I didn't bother trying to configure wlan0. Oct 31 17:54:25 t23 kernel: interrupt storm detected on "irq11:"; throttling interrupt source Oct 31 17:54:25 t23 kernel: wi0: at port 0x100-0x13f irq 11 function 0 config 1 on pccard0 Oct 31 17:54:25 t23 kernel: wi0: [ITHREAD] Oct 31 17:56:22 t23 kernel: wi0: detached Oct 31 17:56:41 t23 kernel: interrupt storm detected on "irq5:"; throttling interrupt source Oct 31 17:56:41 t23 kernel: wi0: at port 0x100-0x13f irq 5 function 0 config 1 on pccard1 Oct 31 17:56:41 t23 kernel: wi0: [ITHREAD] Oct 31 17:58:27 t23 kernel: wi0: wi_seek_bap: timeout, id ffff off 0 Oct 31 17:58:27 t23 last message repeated 2 times Oct 31 17:58:28 t23 kernel: wi0: detached > There are other changes that have occured in the kernel besides > wireless. A lot of the "stuff used to work, now it doesn't" issues > stem from PCI/PCMCIA/cardbus resource allocation changes. Could be, but I vaguely recall a few other threads saying wi was broken? cheers, Ian --0-1303104072-1328685612=:53709-- From owner-freebsd-wireless@FreeBSD.ORG Thu Feb 9 14:05:25 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 13A081065670 for ; Thu, 9 Feb 2012 14:05:25 +0000 (UTC) (envelope-from jake@mischler.com) Received: from teaspoon.mischlersflorist.com (rrcs-72-45-221-198.nys.biz.rr.com [72.45.221.198]) by mx1.freebsd.org (Postfix) with ESMTP id 9E7168FC12 for ; Thu, 9 Feb 2012 14:05:24 +0000 (UTC) Received: from [192.168.163.29] ([192.168.163.29]) by teaspoon.mischlersflorist.com (8.14.5/8.14.4) with ESMTP id q18J3NtB087450 for ; Wed, 8 Feb 2012 14:03:24 -0500 (EST) (envelope-from jake@mischler.com) From: Dave Mischler To: freebsd-wireless@freebsd.org Content-Type: text/plain; charset="us-ascii" Date: Wed, 08 Feb 2012 14:03:23 -0500 Message-ID: <1328727803.90839.15.camel@firkin.mischler.com> Mime-Version: 1.0 X-Mailer: Evolution 2.32.1 FreeBSD GNOME Team Port Content-Transfer-Encoding: 7bit Subject: No WiFi on Acer Aspire One 751h X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: jake@mischler.com List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Feb 2012 14:05:25 -0000 I have an Acer Aspire One A0751h-1279. It came with an AR5BHB63, and I have also tried an AR5B95. Wifi works on this netbook under Ubuntu 10.10 (i.e. I can get a list of nearby networks and connect to one and transfer data), so I think the hardware is OK. Under FreeBSD-8.2 I had this problem: http://lists.freebsd.org/pipermail/freebsd-mobile/2011-June/012364.html but even after solving that issue (as described) no networks were ever found while scanning. I have since tried 9.0-RELEASE, 9.0-STABLE, and even 10.0-CURRENT as of 5-Feb-2012. There is a switch that is supposed to enable/disable the Wifi card, but I don't seem to have to do anything with it under Ubuntu. I have tried turning the Wifi card on at various points in the boot and configuration process with no change. Here is what shows up in dmesg.today for ath0 witn the AR5BHB63 installed: ath0: mem 0xd0000000-0xd000ffff irq 17 at device 0.0 on pci3 ath0: AR2425 mac 14.2 RF5424 phy 7.0 and this is what shows up from pciconf -lv: ath0@pci0:3:0:0: class=0x020000 card=0xe00d105b chip=0x001c168c rev=0x01 hdr=0x00 vendor = 'Atheros Communications Inc.' device = 'AR242x / AR542x Wireless Network Adapter (PCI-Express)' class = network subclass = ethernet I boot the system and run the following commands and never get any responses: ifconfig wlan0 create wlandev ath0 ifconfig wlan0 up scan ifconfig wlan0 list scan Here is a sample of the output of ifconfig: re0: flags=8843 metric 0 mtu 1500 options=389b ether 00:23:8b:b1:1b:92 inet6 fe80::223:8bff:feb1:1b92%re0 prefixlen 64 scopeid 0x1 inet 192.168.163.61 netmask 0xffffff00 broadcast 192.168.163.255 nd6 options=23 media: Ethernet autoselect (100baseTX ) status: active ath0: flags=8843 metric 0 mtu 2290 ether 00:24:2c:5d:ed:55 nd6 options=21 media: IEEE 802.11 Wireless Ethernet autoselect mode 11g status: associated lo0: flags=8049 metric 0 mtu 16384 options=3 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x7 inet 127.0.0.1 netmask 0xff000000 nd6 options=21 wlan0: flags=8c43 metric 0 mtu 1500 ether 00:24:2c:5d:ed:55 inet6 fe80::224:2cff:fe5d:ed55%wlan0 prefixlen 64 scopeid 0x8 nd6 options=23 media: IEEE 802.11 Wireless Ethernet autoselect (autoselect) status: no carrier ssid "" channel 2 (2417 MHz 11g) regdomain 101 indoor ecm authmode OPEN privacy OFF txpower 20 bmiss 7 scanvalid 60 bgscan bgscanintvl 300 bgscanidle 250 roam:rssi 7 roam:rate 5 protmode CTS wme burst bintval 0 Is there any hope of this working? Is there anything I can do to assist in debugging this? From owner-freebsd-wireless@FreeBSD.ORG Thu Feb 9 20:34:12 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 14544106566C for ; Thu, 9 Feb 2012 20:34:12 +0000 (UTC) (envelope-from adrian.chadd@gmail.com) Received: from mail-we0-f182.google.com (mail-we0-f182.google.com [74.125.82.182]) by mx1.freebsd.org (Postfix) with ESMTP id A18B18FC08 for ; Thu, 9 Feb 2012 20:34:11 +0000 (UTC) Received: by werm13 with SMTP id m13so2223218wer.13 for ; Thu, 09 Feb 2012 12:34:10 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type; bh=fZEJEyAf3nfU7LJNGFVZ64N/wp5HIBe7ohk1k5nBKcM=; b=UQ+xbePA4oUF1bP1ogHLZp6dvebbpL0c7OnmkiOvE+gRUxowYKxNSTFaWGrMkgzbFd dbtZOlnF2BnKHRODw7NqHnE0pgw3cM0WWl+VMu7dzYqAwpWdmqqysaA2loV1vbC9OkLK Imr8+qyc7A79+kL7nukemb+jvd7RJdcZcm3cY= MIME-Version: 1.0 Received: by 10.216.82.201 with SMTP id o51mr1313035wee.6.1328819650447; Thu, 09 Feb 2012 12:34:10 -0800 (PST) Sender: adrian.chadd@gmail.com Received: by 10.216.175.136 with HTTP; Thu, 9 Feb 2012 12:34:10 -0800 (PST) In-Reply-To: <1328727803.90839.15.camel@firkin.mischler.com> References: <1328727803.90839.15.camel@firkin.mischler.com> Date: Thu, 9 Feb 2012 12:34:10 -0800 X-Google-Sender-Auth: p3qKcmaja3Tt6A2QBj5VFV9mxdQ Message-ID: From: Adrian Chadd To: jake@mischler.com Content-Type: text/plain; charset=ISO-8859-1 Cc: freebsd-wireless@freebsd.org Subject: Re: No WiFi on Acer Aspire One 751h X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Feb 2012 20:34:12 -0000 Hi, The AR2427 and AR9285 should both work absolutely fine. What's the output of 'ifconfig -v wlan0' and 'ifconfig -v wlan0 list channel' ? Adrian From owner-freebsd-wireless@FreeBSD.ORG Thu Feb 9 23:21:33 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 25B21106566C for ; Thu, 9 Feb 2012 23:21:33 +0000 (UTC) (envelope-from udo.lindemann@berlin.de) Received: from david.daybyday.de (david.daybyday.de [213.191.85.50]) by mx1.freebsd.org (Postfix) with ESMTP id DBCAA8FC12 for ; Thu, 9 Feb 2012 23:21:32 +0000 (UTC) Received: from hugo.localnet (unknown [89.204.139.163]) (Authenticated sender: udo.lindemann@berlin.de) by david.daybyday.de (Postfix) with ESMTPA id 7C7BC1D04B3 for ; Fri, 10 Feb 2012 00:06:19 +0100 (CET) X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.97.3 at david From: Udo Lindemann To: freebsd-wireless@freebsd.org Date: Fri, 10 Feb 2012 00:06:13 +0100 User-Agent: KMail/1.13.7 (FreeBSD/10.0-CURRENT; KDE/4.7.4; amd64; ; ) References: <1328727803.90839.15.camel@firkin.mischler.com> In-Reply-To: MIME-Version: 1.0 Content-Type: Text/Plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Message-Id: <201202100006.13574.udo.lindemann@berlin.de> X-Spam-Status: No, score=-1.9 required=18.0 tests=BAYES_00 autolearn=no version=3.3.1 X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on david.daybyday.de Subject: AR9287 X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Feb 2012 23:21:33 -0000 Hello, I am running 10-current on fujitsu lifebook e750 with AR9287 -- FreeBSD hugo 10.0-CURRENT FreeBSD 10.0-CURRENT #22 r231133M: Tue Feb 7 18:12:28 CET 2012 root@hugo:/usr/obj/usr/src/sys/HUGO amd64 Problem is permanent errormessages ( about every 3 seconds ) ath0: ath_start: sc_inreset_cnt > 0; bailing, sometimes ath0: ath_rx_tasklet: sc_inreset_cnt > 0; skipping which make ttyv0 unusable. As far as I remember, after fresh support ( 9-current ) everything was ok. In the moment I cannot really connect, but for example ifconfig wlan0 up scan works as expected. Did I miss something? Thanks Udo Lindemann From owner-freebsd-wireless@FreeBSD.ORG Thu Feb 9 23:25:01 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3B6871065674 for ; Thu, 9 Feb 2012 23:25:01 +0000 (UTC) (envelope-from adrian.chadd@gmail.com) Received: from mail-ww0-f42.google.com (mail-ww0-f42.google.com [74.125.82.42]) by mx1.freebsd.org (Postfix) with ESMTP id C185D8FC16 for ; Thu, 9 Feb 2012 23:25:00 +0000 (UTC) Received: by wgbgn7 with SMTP id gn7so6797760wgb.1 for ; Thu, 09 Feb 2012 15:24:59 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=e92Njsd9iDVfPiGt6Osnk6KdXp6kzBd7OUMpuHqrX6c=; b=XcHUs27mMXJk76XuP/2ARB2wu8vjxMQZFoEYlEbiR0HskxhayV71lrxuUIXKiFYzPg 69k4MQpUrGpsveUk708yzRKAX9AUGn3zJ/7ds/o1XyLqxgoIaOW3W8LUs3J2gKFRJtbB UnhFg9KS9sGnVge5alIhqg0hMUgVkqRcL6H1Y= MIME-Version: 1.0 Received: by 10.216.133.205 with SMTP id q55mr9398196wei.6.1328829899687; Thu, 09 Feb 2012 15:24:59 -0800 (PST) Sender: adrian.chadd@gmail.com Received: by 10.216.175.136 with HTTP; Thu, 9 Feb 2012 15:24:59 -0800 (PST) In-Reply-To: <201202100006.13574.udo.lindemann@berlin.de> References: <1328727803.90839.15.camel@firkin.mischler.com> <201202100006.13574.udo.lindemann@berlin.de> Date: Thu, 9 Feb 2012 15:24:59 -0800 X-Google-Sender-Auth: 6Gc8L0poeqMFSFU1LcTr6ilRLM4 Message-ID: From: Adrian Chadd To: Udo Lindemann Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: freebsd-wireless@freebsd.org Subject: Re: AR9287 X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Feb 2012 23:25:01 -0000 hi, That's a whole lot of debugging that I added to the -HEAD driver in order to find where parallel, interfering operations are occuring. For example, what you're seeing are; * when something is queuing a TX whilst the chip is being reset; * when an RX has been scheduled (ie, an RX interrupt has occured and the RX task has been scheduled) when a chip reset is occuring. Just disable background scan (ifconfig wlan0 -bgscan). That's the biggest cause of problems at the moment. Let me know if that helps. Adrian On 9 February 2012 15:06, Udo Lindemann wrote: > Hello, > > I am running 10-current on fujitsu lifebook e750 with AR9287 -- > FreeBSD hugo 10.0-CURRENT FreeBSD 10.0-CURRENT #22 r231133M: Tue Feb =A07 > 18:12:28 CET 2012 =A0 =A0 root@hugo:/usr/obj/usr/src/sys/HUGO =A0amd64 > > Problem is permanent =A0errormessages ( about every 3 seconds ) > =A0ath0: ath_start: sc_inreset_cnt > 0; bailing, > sometimes > =A0ath0: ath_rx_tasklet: sc_inreset_cnt > 0; skipping > which make ttyv0 unusable. > > As far as I remember, after fresh support ( 9-current ) everything was ok= . > In the moment I cannot really connect, but for example > ifconfig wlan0 up scan works as expected. > > Did I miss something? > > Thanks > Udo Lindemann > _______________________________________________ > freebsd-wireless@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-wireless > To unsubscribe, send any mail to "freebsd-wireless-unsubscribe@freebsd.or= g" From owner-freebsd-wireless@FreeBSD.ORG Fri Feb 10 07:18:15 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B55AD1065670; Fri, 10 Feb 2012 07:18:15 +0000 (UTC) (envelope-from adrian.chadd@gmail.com) Received: from mail-wi0-f182.google.com (mail-wi0-f182.google.com [209.85.212.182]) by mx1.freebsd.org (Postfix) with ESMTP id 1018F8FC0A; Fri, 10 Feb 2012 07:18:14 +0000 (UTC) Received: by wibhn14 with SMTP id hn14so2641657wib.13 for ; Thu, 09 Feb 2012 23:18:14 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type; bh=bV6n6EQB1ACI5vXMuxw8iT0Z4o6qcO6VcAmNPzvH4ts=; b=GPpw75WJCteBfAjYarVRQp8WKqkksx9r6VN5W8rWn1emXsj7A0ABAXV897j2YQwSY4 bGg5a/DwtDssYv+6UqHfQgsKdHEvTWI4OOIdiVlhHa6d1WhMLmM/fDl0MJaglljM8Hnj WIjWorgQwAUNY0NylkjkbJaz4MKfOWFjVgw1I= MIME-Version: 1.0 Received: by 10.180.96.8 with SMTP id do8mr1282559wib.21.1328858293993; Thu, 09 Feb 2012 23:18:13 -0800 (PST) Sender: adrian.chadd@gmail.com Received: by 10.216.175.136 with HTTP; Thu, 9 Feb 2012 23:18:13 -0800 (PST) In-Reply-To: References: <201202062059.16816.bschmidt@freebsd.org> Date: Thu, 9 Feb 2012 23:18:13 -0800 X-Google-Sender-Auth: obJq4NO3ciSZF9x8DZ6gHZAy40I Message-ID: From: Adrian Chadd To: Bernhard Schmidt Content-Type: multipart/mixed; boundary=f46d0444813b92008104b896eed1 Cc: freebsd-wireless@freebsd.org Subject: Re: [net80211] support vendor bitmap entries; teach if_ath to export PHY error code in error frames X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 10 Feb 2012 07:18:15 -0000 --f46d0444813b92008104b896eed1 Content-Type: text/plain; charset=ISO-8859-1 Hi, Please find the second pass of this attached. Fixes: * I was missing a call to ath_rx_tap_vendor() when processing normal frames * I've extended the data stored in the radiotap vendor header to include the EVM and per-chain RSSI. * I'm also storing the _raw_ combined RSSI in the radiotap header. * The rs_status and rs_phyerr_code fields are also stored. The EVM isn't strictly needed for radar work and the only RSSI required for radar is rssi_ctl[0] and rssi_ext[0] (with the combined RSSI used in some instances.) What's left: * I have a need for some continuous feedback about how busy the primary/extension channels are. I may add some method of encoding this in the radiotap header as a vendor extension; I'm not sure yet. I don't like the idea of doing this via radiotap but I need a way to encode this live as part of the stream so it can be played back with the rest of the radar error frames. I'm not sure if I really _want_ this to be part of the default FreeBSD build but honestly, having these as vendor extensions will make debugging a few things a lot easier moving forward. For example, users could begin writing live traffic sniffing applications that track per-RX-rate EVM in userland and provide graphical feedback. Bernhard: what do you think? Adrian --f46d0444813b92008104b896eed1 Content-Type: text/x-patch; charset=US-ASCII; name="net80211-ath-radiotap-phyerr-2.diff" Content-Disposition: attachment; filename="net80211-ath-radiotap-phyerr-2.diff" Content-Transfer-Encoding: base64 X-Attachment-Id: f_gygvycys0 SW5kZXg6IHN5cy9uZXQ4MDIxMS9pZWVlODAyMTFfbm9kZS5jCj09PT09PT09PT09PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT0KLS0tIHN5cy9u ZXQ4MDIxMS9pZWVlODAyMTFfbm9kZS5jCShyZXZpc2lvbiAyMzA4NTUpCisrKyBzeXMvbmV0ODAy MTEvaWVlZTgwMjExX25vZGUuYwkod29ya2luZyBjb3B5KQpAQCAtMzQsNiArMzQsOCBAQAogI2lu Y2x1ZGUgPHN5cy9tYnVmLmg+ICAgCiAjaW5jbHVkZSA8c3lzL21hbGxvYy5oPgogI2luY2x1ZGUg PHN5cy9rZXJuZWwuaD4KKyNpbmNsdWRlIDxzeXMvdHlwZXMuaD4KKyNpbmNsdWRlIDxzeXMvcHJv Yy5oPgogCiAjaW5jbHVkZSA8c3lzL3NvY2tldC5oPgogIApAQCAtNDMxLDYgKzQzMyw5IEBACiAJ bmkgPSBpZWVlODAyMTFfYWxsb2Nfbm9kZSgmaWMtPmljX3N0YSwgdmFwLCB2YXAtPml2X215YWRk cik7CiAJS0FTU0VSVChuaSAhPSBOVUxMLCAoInVuYWJsZSB0byBzZXR1cCBpbml0aWFsIEJTUyBu b2RlIikpOwogCW9ic3MgPSB2YXAtPml2X2JzczsKKwlwcmludGYoIlslbGxkXTogJXM6IGl2X2Jz cz0lcCwgbmV3IGl2X2Jzcz0lcFxuIiwKKwkgICAgKGxvbmcgbG9uZyBpbnQpIGN1cnRocmVhZC0+ dGRfdGlkLAorCSAgICBfX2Z1bmNfXyx2YXAtPml2X2JzcywgbmkpOwogCXZhcC0+aXZfYnNzID0g aWVlZTgwMjExX3JlZl9ub2RlKG5pKTsKIAlpZiAob2JzcyAhPSBOVUxMKSB7CiAJCWNvcHlfYnNz KG5pLCBvYnNzKTsKQEAgLTcwMCw2ICs3MDUsOSBAQAogCS8qCiAJICogQ29tbWl0dGVkIHRvIHNl bGJzLCBzZXR1cCBzdGF0ZS4KIAkgKi8KKwlwcmludGYoIlslbGxkXTogJXM6IHNlbGJzPSVwLCBv YnNzPSVwXG4iLAorCSAgICAobG9uZyBsb25nIGludCkgY3VydGhyZWFkLT50ZF90aWQsCisJICAg IF9fZnVuY19fLCBzZWxicywgdmFwLT5pdl9ic3MpOwogCW9ic3MgPSB2YXAtPml2X2JzczsKIAkv KgogCSAqIENoZWNrIGlmIG9sZCtuZXcgbm9kZSBoYXZlIHRoZSBzYW1lIGFkZHJlc3MgaW4gd2hp Y2gKSW5kZXg6IHN5cy9uZXQ4MDIxMS9pZWVlODAyMTFfd2RzLmMKPT09PT09PT09PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PQotLS0gc3lz L25ldDgwMjExL2llZWU4MDIxMV93ZHMuYwkocmV2aXNpb24gMjMwODU1KQorKysgc3lzL25ldDgw MjExL2llZWU4MDIxMV93ZHMuYwkod29ya2luZyBjb3B5KQpAQCAtNDYsNiArNDYsOCBAQAogI2lu Y2x1ZGUgPHN5cy9lcnJuby5oPgogI2luY2x1ZGUgPHN5cy9wcm9jLmg+CiAjaW5jbHVkZSA8c3lz L3N5c2N0bC5oPgorI2luY2x1ZGUgPHN5cy90eXBlcy5oPgorI2luY2x1ZGUgPHN5cy9wcm9jLmg+ CiAKICNpbmNsdWRlIDxuZXQvaWYuaD4KICNpbmNsdWRlIDxuZXQvaWZfbWVkaWEuaD4KQEAgLTE3 NSw2ICsxNzcsOSBAQAogCQkJLyoKIAkJCSAqIENvbW1pdHRlZCB0byBuZXcgbm9kZSwgc2V0dXAg c3RhdGUuCiAJCQkgKi8KKwkJCXByaW50ZigiWyVsbGRdOiAlczogaXZfYnNzPSVwLCBuZXcgaXZf YnNzPSVwXG4iLAorCQkJICAgIChsb25nIGxvbmcgaW50KSAoY3VydGhyZWFkLT50ZF90aWQpLAor CQkJICAgIF9fZnVuY19fLCB2YXAtPml2X2JzcywgbmkpOwogCQkJb2JzcyA9IHZhcC0+aXZfYnNz OwogCQkJdmFwLT5pdl9ic3MgPSBuaTsKIAkJCW5pLT5uaV93ZHN2YXAgPSB2YXA7CkBAIC0xOTcs NiArMjAyLDkgQEAKIAkJICovCiAJCW5pID0gaWVlZTgwMjExX25vZGVfY3JlYXRlX3dkcyh2YXAs IHZhcC0+aXZfZGVzX2Jzc2lkLCBjaGFuKTsKIAkJaWYgKG5pICE9IE5VTEwpIHsKKwkJCXByaW50 ZigiWyVsbGRdOiAlczogaXZfYnNzPSVwLCBuZXcgaXZfYnNzPSVwXG4iLAorCQkJICAgIChsb25n IGxvbmcgaW50KSAoY3VydGhyZWFkLT50ZF90aWQpLAorCQkJICAgIF9fZnVuY19fLCB2YXAtPml2 X2JzcywgbmkpOwogCQkJb2JzcyA9IHZhcC0+aXZfYnNzOwogCQkJdmFwLT5pdl9ic3MgPSBpZWVl ODAyMTFfcmVmX25vZGUobmkpOwogCQkJbmktPm5pX2ZsYWdzIHw9IElFRUU4MDIxMV9OT0RFX0FS RUY7CkluZGV4OiBzeXMvbmV0ODAyMTEvaWVlZTgwMjExX3Zhci5oCj09PT09PT09PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT0KLS0tIHN5 cy9uZXQ4MDIxMS9pZWVlODAyMTFfdmFyLmgJKHJldmlzaW9uIDIzMDg1NSkKKysrIHN5cy9uZXQ4 MDIxMS9pZWVlODAyMTFfdmFyLmgJKHdvcmtpbmcgY29weSkKQEAgLTcwMCw2ICs3MDAsMTEgQEAK IAkJdWludDMyX3QgdHhfcmFkaW90YXAsCiAJICAgIHN0cnVjdCBpZWVlODAyMTFfcmFkaW90YXBf aGVhZGVyICpyaCwgaW50IHJsZW4sCiAJCXVpbnQzMl90IHJ4X3JhZGlvdGFwKTsKK3ZvaWQJaWVl ZTgwMjExX3JhZGlvdGFwX2F0dGFjaHYoc3RydWN0IGllZWU4MDIxMWNvbSAqLAorCSAgICBzdHJ1 Y3QgaWVlZTgwMjExX3JhZGlvdGFwX2hlYWRlciAqdGgsCisJICAgIGludCB0bGVuLCBpbnQgbl90 eF92LCB1aW50MzJfdCB0eF9yYWRpb3RhcCwKKwkgICAgc3RydWN0IGllZWU4MDIxMV9yYWRpb3Rh cF9oZWFkZXIgKnJoLAorCSAgICBpbnQgcmxlbiwgaW50IG5fcnhfdiwgdWludDMyX3QgcnhfcmFk aW90YXApOwogdm9pZAlpZWVlODAyMTFfcmFkaW90YXBfZGV0YWNoKHN0cnVjdCBpZWVlODAyMTFj b20gKik7CiB2b2lkCWllZWU4MDIxMV9yYWRpb3RhcF92YXR0YWNoKHN0cnVjdCBpZWVlODAyMTF2 YXAgKik7CiB2b2lkCWllZWU4MDIxMV9yYWRpb3RhcF92ZGV0YWNoKHN0cnVjdCBpZWVlODAyMTF2 YXAgKik7CkluZGV4OiBzeXMvbmV0ODAyMTEvaWVlZTgwMjExX3JhZGlvdGFwLmMKPT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09 PQotLS0gc3lzL25ldDgwMjExL2llZWU4MDIxMV9yYWRpb3RhcC5jCShyZXZpc2lvbiAyMzA4NTUp CisrKyBzeXMvbmV0ODAyMTEvaWVlZTgwMjExX3JhZGlvdGFwLmMJKHdvcmtpbmcgY29weSkKQEAg LTQ3LDEzICs0NywyNCBAQAogCiAjaW5jbHVkZSA8bmV0ODAyMTEvaWVlZTgwMjExX3Zhci5oPgog Ci1zdGF0aWMgaW50IHJhZGlvdGFwX29mZnNldChzdHJ1Y3QgaWVlZTgwMjExX3JhZGlvdGFwX2hl YWRlciAqLCBpbnQpOworc3RhdGljIGludCByYWRpb3RhcF9vZmZzZXQoc3RydWN0IGllZWU4MDIx MV9yYWRpb3RhcF9oZWFkZXIgKiwgaW50LCBpbnQpOwogCiB2b2lkCiBpZWVlODAyMTFfcmFkaW90 YXBfYXR0YWNoKHN0cnVjdCBpZWVlODAyMTFjb20gKmljLAogCXN0cnVjdCBpZWVlODAyMTFfcmFk aW90YXBfaGVhZGVyICp0aCwgaW50IHRsZW4sIHVpbnQzMl90IHR4X3JhZGlvdGFwLAogCXN0cnVj dCBpZWVlODAyMTFfcmFkaW90YXBfaGVhZGVyICpyaCwgaW50IHJsZW4sIHVpbnQzMl90IHJ4X3Jh ZGlvdGFwKQogeworCWllZWU4MDIxMV9yYWRpb3RhcF9hdHRhY2h2KGljLCB0aCwgdGxlbiwgMCwg dHhfcmFkaW90YXAsCisJICAgIHJoLCBybGVuLCAwLCByeF9yYWRpb3RhcCk7Cit9CisKK3ZvaWQK K2llZWU4MDIxMV9yYWRpb3RhcF9hdHRhY2h2KHN0cnVjdCBpZWVlODAyMTFjb20gKmljLAorCXN0 cnVjdCBpZWVlODAyMTFfcmFkaW90YXBfaGVhZGVyICp0aCwKKwlpbnQgdGxlbiwgaW50IG5fdHhf diwgdWludDMyX3QgdHhfcmFkaW90YXAsCisJc3RydWN0IGllZWU4MDIxMV9yYWRpb3RhcF9oZWFk ZXIgKnJoLAorCWludCBybGVuLCBpbnQgbl9yeF92LCB1aW50MzJfdCByeF9yYWRpb3RhcCkKK3sK ICNkZWZpbmUJQihfdikJKDE8PChfdikpCiAJaW50IG9mZjsKIApAQCAtNjMsOSArNzQsOSBAQAog CS8qIGNhbGN1bGF0ZSBvZmZzZXQgdG8gY2hhbm5lbCBkYXRhICovCiAJb2ZmID0gLTE7CiAJaWYg KHR4X3JhZGlvdGFwICYgQihJRUVFODAyMTFfUkFESU9UQVBfQ0hBTk5FTCkpCi0JCW9mZiA9IHJh ZGlvdGFwX29mZnNldCh0aCwgSUVFRTgwMjExX1JBRElPVEFQX0NIQU5ORUwpOworCQlvZmYgPSBy YWRpb3RhcF9vZmZzZXQodGgsIG5fdHhfdiwgSUVFRTgwMjExX1JBRElPVEFQX0NIQU5ORUwpOwog CWVsc2UgaWYgKHR4X3JhZGlvdGFwICYgQihJRUVFODAyMTFfUkFESU9UQVBfWENIQU5ORUwpKQot CQlvZmYgPSByYWRpb3RhcF9vZmZzZXQodGgsIElFRUU4MDIxMV9SQURJT1RBUF9YQ0hBTk5FTCk7 CisJCW9mZiA9IHJhZGlvdGFwX29mZnNldCh0aCwgbl90eF92LCBJRUVFODAyMTFfUkFESU9UQVBf WENIQU5ORUwpOwogCWlmIChvZmYgPT0gLTEpIHsKIAkJaWZfcHJpbnRmKGljLT5pY19pZnAsICIl czogbm8gdHggY2hhbm5lbCwgcmFkaW90YXAgMHgleCIsCiAJCSAgICBfX2Z1bmNfXywgdHhfcmFk aW90YXApOwpAQCAtNzksOSArOTAsOSBAQAogCS8qIGNhbGN1bGF0ZSBvZmZzZXQgdG8gY2hhbm5l bCBkYXRhICovCiAJb2ZmID0gLTE7CiAJaWYgKHJ4X3JhZGlvdGFwICYgQihJRUVFODAyMTFfUkFE SU9UQVBfQ0hBTk5FTCkpCi0JCW9mZiA9IHJhZGlvdGFwX29mZnNldChyaCwgSUVFRTgwMjExX1JB RElPVEFQX0NIQU5ORUwpOworCQlvZmYgPSByYWRpb3RhcF9vZmZzZXQocmgsIG5fcnhfdiwgSUVF RTgwMjExX1JBRElPVEFQX0NIQU5ORUwpOwogCWVsc2UgaWYgKHJ4X3JhZGlvdGFwICYgQihJRUVF ODAyMTFfUkFESU9UQVBfWENIQU5ORUwpKQotCQlvZmYgPSByYWRpb3RhcF9vZmZzZXQocmgsIElF RUU4MDIxMV9SQURJT1RBUF9YQ0hBTk5FTCk7CisJCW9mZiA9IHJhZGlvdGFwX29mZnNldChyaCwg bl9yeF92LCBJRUVFODAyMTFfUkFESU9UQVBfWENIQU5ORUwpOwogCWlmIChvZmYgPT0gLTEpIHsK IAkJaWZfcHJpbnRmKGljLT5pY19pZnAsICIlczogbm8gcnggY2hhbm5lbCwgcmFkaW90YXAgMHgl eCIsCiAJCSAgICBfX2Z1bmNfXywgcnhfcmFkaW90YXApOwpAQCAtMjYwLDcgKzI3MSw4IEBACiAg KiBrbm93biAtMSBpcyByZXR1cm5lZC4KICAqLwogc3RhdGljIGludAotcmFkaW90YXBfb2Zmc2V0 KHN0cnVjdCBpZWVlODAyMTFfcmFkaW90YXBfaGVhZGVyICpyaCwgaW50IGl0ZW0pCityYWRpb3Rh cF9vZmZzZXQoc3RydWN0IGllZWU4MDIxMV9yYWRpb3RhcF9oZWFkZXIgKnJoLAorICAgIGludCBu X3ZlbmRvcl9hdHRyaWJ1dGVzLCBpbnQgaXRlbSkKIHsKIAlzdGF0aWMgY29uc3Qgc3RydWN0IHsK IAkJc2l6ZV90CWFsaWduLCB3aWR0aDsKQEAgLTMzNCw2ICszNDYsOCBAQAogCWludCBvZmYsIGk7 CiAKIAlvZmYgPSBzaXplb2Yoc3RydWN0IGllZWU4MDIxMV9yYWRpb3RhcF9oZWFkZXIpOworCW9m ZiArPSBuX3ZlbmRvcl9hdHRyaWJ1dGVzICogKHNpemVvZih1aW50MzJfdCkpOworCiAJZm9yIChp ID0gMDsgaSA8IElFRUU4MDIxMV9SQURJT1RBUF9FWFQ7IGkrKykgewogCQlpZiAoKHByZXNlbnQg JiAoMTw8aSkpID09IDApCiAJCQljb250aW51ZTsKSW5kZXg6IHN5cy9uZXQ4MDIxMS9pZWVlODAy MTFfcmFkaW90YXAuaAo9PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09Ci0tLSBzeXMvbmV0ODAyMTEvaWVlZTgwMjExX3JhZGlv dGFwLmgJKHJldmlzaW9uIDIzMDg1NSkKKysrIHN5cy9uZXQ4MDIxMS9pZWVlODAyMTFfcmFkaW90 YXAuaAkod29ya2luZyBjb3B5KQpAQCAtNTQsNiArNTQsMTIgQEAKIAogI2RlZmluZQlJRUVFODAy MTFfUkFESU9UQVBfSERSTEVOCTY0CS8qIFhYWCBkZXByZWNhdGVkICovCiAKK3N0cnVjdCBpZWVl ODAyMTFfcmFkaW90YXBfdmVuZG9yX2hlYWRlciB7CisJdWludDhfdAkJdmhfb3VpWzNdOwkvKiAz IGJ5dGUgdmVuZG9yIE9VSSAqLworCXVpbnQ4X3QJCXZoX3N1Yl9uczsJLyogU3ViIG5hbWVzcGFj ZSBvZiB0aGlzIHNlY3Rpb24gKi8KKwl1aW50MTZfdAl2aF9za2lwX2xlbjsJLyogTGVuZ3RoIG9m IHRoaXMgdmVuZG9yIHNlY3Rpb24gKi8KK30gX19wYWNrZWQ7CisKIC8qCiAgKiBUaGUgcmFkaW8g Y2FwdHVyZSBoZWFkZXIgcHJlY2VkZXMgdGhlIDgwMi4xMSBoZWFkZXIuCiAgKgpJbmRleDogc3lz L2Rldi9hdGgvYXRoX2hhbC9hcjU0MTYvYXI1NDE2X21pc2MuYwo9PT09PT09PT09PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09Ci0tLSBzeXMv ZGV2L2F0aC9hdGhfaGFsL2FyNTQxNi9hcjU0MTZfbWlzYy5jCShyZXZpc2lvbiAyMzA4NTUpCisr KyBzeXMvZGV2L2F0aC9hdGhfaGFsL2FyNTQxNi9hcjU0MTZfbWlzYy5jCSh3b3JraW5nIGNvcHkp CkBAIC03MTQsMTMgKzcxNCwxMSBAQAogCXBlLT5wZV9yZWxwd3IgPSBNUyh2YWwsIEFSX1BIWV9S QURBUl8xX1JFTFBXUl9USFJFU0gpOwogCWlmICh0ZW1wKQogCQlwZS0+cGVfcmVscHdyIHw9IEhB TF9QSFlFUlJfUEFSQU1fRU5BQkxFOwotCXRlbXAgPSB2YWwgJiBBUl9QSFlfUkFEQVJfMV9SRUxT VEVQX0NIRUNLOwogCXBlLT5wZV9yZWxzdGVwID0gTVModmFsLCBBUl9QSFlfUkFEQVJfMV9SRUxT VEVQX1RIUkVTSCk7Ci0JaWYgKHRlbXApCi0JCXBlLT5wZV9lbmFibGVkID0gMTsKLQllbHNlCi0J CXBlLT5wZV9lbmFibGVkID0gMDsKIAorCXBlLT5wZV9lbmFibGVkID0gISEKKwkgICAgKE9TX1JF R19SRUFEKGFoLCBBUl9QSFlfUkFEQVJfMCkgJiBBUl9QSFlfUkFEQVJfMF9FTkEpOworCiAJcGUt PnBlX21heGxlbiA9IE1TKHZhbCwgQVJfUEhZX1JBREFSXzFfTUFYTEVOKTsKIAlwZS0+cGVfZXh0 Y2hhbm5lbCA9ICEhIChPU19SRUdfUkVBRChhaCwgQVJfUEhZX1JBREFSX0VYVCkgJgogCSAgICBB Ul9QSFlfUkFEQVJfRVhUX0VOQSk7CkBAIC03NjcsOSArNzY1LDE1IEBACiAKIAkvKkVuYWJsZSBG RlQgZGF0YSovCiAJdmFsIHw9IEFSX1BIWV9SQURBUl8wX0ZGVF9FTkE7CisJT1NfUkVHX1dSSVRF KGFoLCBBUl9QSFlfUkFEQVJfMCwgdmFsKTsKIAotCU9TX1JFR19XUklURShhaCwgQVJfUEhZX1JB REFSXzAsIHZhbCB8IEFSX1BIWV9SQURBUl8wX0VOQSk7CisJLyogSW1wbGljaXRseSBlbmFibGUg Ki8KKwlpZiAocGUtPnBlX2VuYWJsZWQgPT0gMSkKKwkJT1NfUkVHX1NFVF9CSVQoYWgsIEFSX1BI WV9SQURBUl8wLCBBUl9QSFlfUkFEQVJfMF9FTkEpOworCWVsc2UgaWYgKHBlLT5wZV9lbmFibGVk ID09IDApCisJCU9TX1JFR19DTFJfQklUKGFoLCBBUl9QSFlfUkFEQVJfMCwgQVJfUEhZX1JBREFS XzBfRU5BKTsKIAorCS8qIFhYWCBpcyB0aGlzIGFyb3VuZCB0aGUgY29ycmVjdCB3YXk/ISAqLwog CWlmIChwZS0+cGVfdXNlZmlyMTI4ID09IDEpCiAJCU9TX1JFR19DTFJfQklUKGFoLCBBUl9QSFlf UkFEQVJfMSwgQVJfUEhZX1JBREFSXzFfVVNFX0ZJUjEyOCk7CiAJZWxzZSBpZiAocGUtPnBlX3Vz ZWZpcjEyOCA9PSAwKQpJbmRleDogc3lzL2Rldi9hdGgvaWZfYXRoaW9jdGwuaAo9PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09 Ci0tLSBzeXMvZGV2L2F0aC9pZl9hdGhpb2N0bC5oCShyZXZpc2lvbiAyMzA4NTUpCisrKyBzeXMv ZGV2L2F0aC9pZl9hdGhpb2N0bC5oCSh3b3JraW5nIGNvcHkpCkBAIC0xODgsMTAgKzE4OCw3MCBA QAogCSgxIDw8IElFRUU4MDIxMV9SQURJT1RBUF9EQk1fQU5UU0lHTkFMKQl8IFwKIAkoMSA8PCBJ RUVFODAyMTFfUkFESU9UQVBfREJNX0FOVE5PSVNFKQl8IFwKIAkoMSA8PCBJRUVFODAyMTFfUkFE SU9UQVBfWENIQU5ORUwpCXwgXAorCSgxIDw8IElFRUU4MDIxMV9SQURJT1RBUF9WRU5ET1JFWFQp CXwgXAorCSgxIDw8IElFRUU4MDIxMV9SQURJT1RBUF9FWFQpCQl8IFwKIAkwKQogCisvKgorICog VGhpcyBpcyBoaWdoZXIgdGhhbiB0aGUgdmVuZG9yIGJpdG1hcCB1c2VkIGluc2lkZQorICogdGhl IEF0aGVyb3MgcmVmZXJlbmNlIGNvZGViYXNlLgorICovCisKKy8qIEJpdCA4ICovCisjZGVmaW5l CUFUSF9SQURJT1RBUF9WRU5ET1JfSEVBREVSCTgKKworCisvKgorICogVXNpbmcgZm91ciBjaGFp bnMgbWFrZXMgYWxsIHRoZSBmaWVsZHMgaW4gdGhlCisgKiBwZXItY2hhaW4gaW5mbyBoZWFkZXIg YmUgNC1ieXRlIGFsaWduZWQuCisgKi8KKyNkZWZpbmUJQVRIX1JBRElPVEFQX01BWF9DSEFJTlMJ CTQKKworLyoKKyAqIFRoZSB2ZW5kb3IgcmFkaW90YXAgaGVhZGVyIGRhdGEgbmVlZHMgdG8gYmU6 CisgKgorICogKyBBbGlnbmVkIHRvIGEgNCBieXRlIGFkZHJlc3MKKyAqICsgLi4gc28gYWxsIGlu dGVybmFsIGZpZWxkcyBhcmUgNCBieXRlcyBhbGlnbmVkOworICogKyAuLiBhbmQgbm8gNjQgYml0 IGZpZWxkcyBhcmUgYWxsb3dlZC4KKyAqCisgKiBTbyBwYWRkaW5nIGlzIHJlcXVpcmVkIHRvIGVu c3VyZSB0aGlzIGlzIHRoZSBjYXNlLgorICoKKyAqIE5vdGUgdGhhdCBiZWNhdXNlIG9mIHRoZSBs YWNrIG9mIGFsaWdubWVudCB3aXRoIHRoZQorICogdmVuZG9yIGhlYWRlciAoNiBieXRlcyksIHRo ZSBmaXJzdCBmaWVsZCBtdXN0IGJlCisgKiB0d28gYnl0ZXMgc28gaXQgY2FuIGJlIGFjY2Vzc2Vk IGJ5IGFsaWdubWVudC1zdHJpY3QKKyAqIHBsYXRmb3JtIChlZyBNSVBTLikKKyAqLworc3RydWN0 IGF0aF9yYWRpb3RhcF92ZW5kb3JfaGRyIHsJCS8qIDMwIGJ5dGVzICovCisJdV9pbnQ4X3QJdmhf dmVyc2lvbjsJCS8qIDEgKi8KKwl1X2ludDhfdAl2aF9yeF9jaGFpbm1hc2s7CS8qIDEgKi8KKwor CS8qIEF0IHRoaXMgcG9pbnQgaXQgc2hvdWxkIGJlIDQgYnl0ZSBhbGlnbmVkICovCisJdV9pbnQz Ml90CWV2bVtBVEhfUkFESU9UQVBfTUFYX0NIQUlOU107CS8qIDQgKiA0ID0gMTYgKi8KKworCXVf aW50OF90CXJzc2lfY3RsW0FUSF9SQURJT1RBUF9NQVhfQ0hBSU5TXTsJLyogNCAqLworCXVfaW50 OF90CXJzc2lfZXh0W0FUSF9SQURJT1RBUF9NQVhfQ0hBSU5TXTsJLyogNCAqLworCisJdV9pbnQ4 X3QJdmhfcGh5ZXJyX2NvZGU7CS8qIFBoeSBlcnJvciBjb2RlLCBvciAweGZmICovCisJdV9pbnQ4 X3QJdmhfcnNfc3RhdHVzOwkvKiBSWCBzdGF0dXMgKi8KKwl1X2ludDhfdAl2aF9yc3NpOwkvKiBS YXcgUlNTSSAqLworCXVfaW50OF90CXZoX3BhZDFbMV07CS8qIFBhZCB0byA0IGJ5dGUgYm91bmRh cnkgKi8KK30gX19wYWNrZWQ7CisKIHN0cnVjdCBhdGhfcnhfcmFkaW90YXBfaGVhZGVyIHsKLQlz dHJ1Y3QgaWVlZTgwMjExX3JhZGlvdGFwX2hlYWRlciB3cl9paGRyOworCXN0cnVjdCBpZWVlODAy MTFfcmFkaW90YXBfaGVhZGVyIHdyX2loZHI7CS8qIDggKi8KKwkvKiBWZW5kb3IgZXh0ZW5zaW9u IGhlYWRlciBiaXRtYXAgKi8KKwl1X2ludDMyX3QJd3JfZXh0X2JpdG1hcDsJCS8qIDQgKi8KKwor CS8qCisJICogVGhpcyBwYWRkaW5nIGlzIG5lZWRlZCBiZWNhdXNlOgorCSAqICsgdGhlIHJhZGlv dGFwIGhlYWRlciBpcyA4IGJ5dGVzOworCSAqICsgdGhlIGV4dGVuc2lvbiBiaXRtYXAgaXMgNCBi eXRlczsKKwkgKiArIHRoZSB0c2YgaXMgOCBieXRlcywgc28gaXQgbXVzdCBzdGFydCBvbiBhbiA4 IGJ5dGUKKwkgKiAgIGJvdW5kYXJ5LgorCSAqLworCXVfaW50MzJfdAl3cl9wYWQxOworCisJLyog Tm9ybWFsIHJhZGlvdGFwIGZpZWxkcyAqLwogCXVfaW50NjRfdAl3cl90c2Y7CiAJdV9pbnQ4X3QJ d3JfZmxhZ3M7CiAJdV9pbnQ4X3QJd3JfcmF0ZTsKQEAgLTIwMyw2ICsyNjMsMjQgQEAKIAl1X2lu dDE2X3QJd3JfY2hhbl9mcmVxOwogCXVfaW50OF90CXdyX2NoYW5faWVlZTsKIAlpbnQ4X3QJCXdy X2NoYW5fbWF4cG93OworCisJLyoKKwkgKiBWZW5kb3IgaGVhZGVyIHNlY3Rpb24sIGFzIHJlcXVp cmVkIGJ5IHRoZQorCSAqIHByZXNlbmNlIG9mIHRoZSB2ZW5kb3IgZXh0ZW5zaW9uIGJpdCBhbmQg Yml0bWFwCisJICogZW50cnkuCisJICoKKwkgKiBYWFggVGhpcyBtdXN0IGJlIGFsaWduZWQgdG8g YSA0IGJ5dGUgYWRkcmVzcz8KKwkgKiBYWFggb3IgOCBieXRlIGFkZHJlc3M/CisJICovCisJc3Ry dWN0IGllZWU4MDIxMV9yYWRpb3RhcF92ZW5kb3JfaGVhZGVyCXdyX3ZoOwkvKiA2IGJ5dGVzICov CisKKwkvKgorCSAqIEJlY2F1c2Ugb2YgdGhlIGxhY2sgb2YgYWxpZ25tZW50IGVuZm9yY2VkIGJ5 IHRoZSBhYm92ZQorCSAqIGhlYWRlciwgdGhpcyB2ZW5kb3Igc2VjdGlvbiB3b24ndCBiZSBhbGln bmVkIGluIGFueQorCSAqIHVzZWZ1bCB3YXkuICBTbywgdGhpcyB3aWxsIGluY2x1ZGUgYSB0d28t Ynl0ZSB2ZXJzaW9uCisJICogdmFsdWUgd2hpY2ggd2lsbCBmb3JjZSB0aGUgc3RydWN0dXJlIHRv IGJlIDQtYnl0ZSBhbGlnbmVkLgorCSAqLworCXN0cnVjdCBhdGhfcmFkaW90YXBfdmVuZG9yX2hk cgl3cl92OwogfSBfX3BhY2tlZDsKIAogI2RlZmluZSBBVEhfVFhfUkFESU9UQVBfUFJFU0VOVCAo CQlcCkluZGV4OiBzeXMvZGV2L2F0aC9hdGhfZGZzL251bGwvZGZzX251bGwuYwo9PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09 Ci0tLSBzeXMvZGV2L2F0aC9hdGhfZGZzL251bGwvZGZzX251bGwuYwkocmV2aXNpb24gMjMxMDk5 KQorKysgc3lzL2Rldi9hdGgvYXRoX2Rmcy9udWxsL2Rmc19udWxsLmMJKHdvcmtpbmcgY29weSkK QEAgLTEyMCw3ICsxMjAsNyBAQAogaW50CiBhdGhfZGZzX3JhZGFyX2VuYWJsZShzdHJ1Y3QgYXRo X3NvZnRjICpzYywgc3RydWN0IGllZWU4MDIxMV9jaGFubmVsICpjaGFuKQogewotI2lmIDAKKyNp ZiAxCiAJSEFMX1BIWUVSUl9QQVJBTSBwZTsKIAogCS8qIENoZWNrIGlmIHRoZSBjdXJyZW50IGNo YW5uZWwgaXMgcmFkYXItZW5hYmxlZCAqLwpJbmRleDogc3lzL2Rldi9hdGgvaWZfYXRoLmMKPT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09 PT09PT09PQotLS0gc3lzL2Rldi9hdGgvaWZfYXRoLmMJKHJldmlzaW9uIDIzMDg1NSkKKysrIHN5 cy9kZXYvYXRoL2lmX2F0aC5jCSh3b3JraW5nIGNvcHkpCkBAIC03NjYsMTAgKzc2NiwxNCBAQAog CWljLT5pY19hZGRiYV9zdG9wID0gYXRoX2FkZGJhX3N0b3A7CiAJaWMtPmljX2Jhcl9yZXNwb25z ZSA9IGF0aF9iYXJfcmVzcG9uc2U7CiAKLQlpZWVlODAyMTFfcmFkaW90YXBfYXR0YWNoKGljLAot CSAgICAmc2MtPnNjX3R4X3RoLnd0X2loZHIsIHNpemVvZihzYy0+c2NfdHhfdGgpLAorCS8qCisJ ICogVGhlcmUncyBvbmUgdmVuZG9yIGJpdG1hcCBlbnRyeSBpbiB0aGUgUlggcmFkaW90YXAKKwkg KiBoZWFkZXI7IG1ha2Ugc3VyZSB0aGF0J3MgdGFrZW4gaW50byBhY2NvdW50LgorCSAqLworCWll ZWU4MDIxMV9yYWRpb3RhcF9hdHRhY2h2KGljLAorCSAgICAmc2MtPnNjX3R4X3RoLnd0X2loZHIs IHNpemVvZihzYy0+c2NfdHhfdGgpLCAwLAogCQlBVEhfVFhfUkFESU9UQVBfUFJFU0VOVCwKLQkg ICAgJnNjLT5zY19yeF90aC53cl9paGRyLCBzaXplb2Yoc2MtPnNjX3J4X3RoKSwKKwkgICAgJnNj LT5zY19yeF90aC53cl9paGRyLCBzaXplb2Yoc2MtPnNjX3J4X3RoKSwgMSwKIAkJQVRIX1JYX1JB RElPVEFQX1BSRVNFTlQpOwogCiAJLyoKQEAgLTM4ODQsNiArMzg4OCw1MyBAQAogfQogCiBzdGF0 aWMgdm9pZAorYXRoX3J4X3RhcF92ZW5kb3Ioc3RydWN0IGlmbmV0ICppZnAsIHN0cnVjdCBtYnVm ICptLAorICAgIGNvbnN0IHN0cnVjdCBhdGhfcnhfc3RhdHVzICpycywgdV9pbnQ2NF90IHRzZiwg aW50MTZfdCBuZikKK3sKKwlzdHJ1Y3QgYXRoX3NvZnRjICpzYyA9IGlmcC0+aWZfc29mdGM7CisK KwkvKiBGaWxsIGluIHRoZSBleHRlbnNpb24gYml0bWFwICovCisJc2MtPnNjX3J4X3RoLndyX2V4 dF9iaXRtYXAgPSBodG9sZTMyKDEgPDwgQVRIX1JBRElPVEFQX1ZFTkRPUl9IRUFERVIpOworCisJ LyogRmlsbCBpbiB0aGUgdmVuZG9yIGhlYWRlciAqLworCXNjLT5zY19yeF90aC53cl92aC52aF9v dWlbMF0gPSAweDdmOworCXNjLT5zY19yeF90aC53cl92aC52aF9vdWlbMV0gPSAweDAzOworCXNj LT5zY19yeF90aC53cl92aC52aF9vdWlbMl0gPSAweDAwOworCisJLyogWFhYIHdoYXQgc2hvdWxk IHRoaXMgYmU/ICovCisJc2MtPnNjX3J4X3RoLndyX3ZoLnZoX3N1Yl9ucyA9IDA7CisJc2MtPnNj X3J4X3RoLndyX3ZoLnZoX3NraXBfbGVuID0KKwkgICAgaHRvbGUxNihzaXplb2Yoc3RydWN0IGF0 aF9yYWRpb3RhcF92ZW5kb3JfaGRyKSk7CisKKwkvKiBHZW5lcmFsIHZlcnNpb24gaW5mbyAqLwor CXNjLT5zY19yeF90aC53cl92LnZoX3ZlcnNpb24gPSAxOworCisJc2MtPnNjX3J4X3RoLndyX3Yu dmhfcnhfY2hhaW5tYXNrID0gc2MtPnNjX3J4Y2hhaW5tYXNrOworCisJLyogcnNzaSAqLworCXNj LT5zY19yeF90aC53cl92LnJzc2lfY3RsWzBdID0gcnMtPnJzX3Jzc2lfY3RsWzBdOworCXNjLT5z Y19yeF90aC53cl92LnJzc2lfY3RsWzFdID0gcnMtPnJzX3Jzc2lfY3RsWzFdOworCXNjLT5zY19y eF90aC53cl92LnJzc2lfY3RsWzJdID0gcnMtPnJzX3Jzc2lfY3RsWzJdOworCXNjLT5zY19yeF90 aC53cl92LnJzc2lfZXh0WzBdID0gcnMtPnJzX3Jzc2lfZXh0WzBdOworCXNjLT5zY19yeF90aC53 cl92LnJzc2lfZXh0WzFdID0gcnMtPnJzX3Jzc2lfZXh0WzFdOworCXNjLT5zY19yeF90aC53cl92 LnJzc2lfZXh0WzJdID0gcnMtPnJzX3Jzc2lfZXh0WzJdOworCisJLyogZXZtICovCisJc2MtPnNj X3J4X3RoLndyX3YuZXZtWzBdID0gcnMtPnJzX2V2bTA7CisJc2MtPnNjX3J4X3RoLndyX3YuZXZt WzFdID0gcnMtPnJzX2V2bTE7CisJc2MtPnNjX3J4X3RoLndyX3YuZXZtWzJdID0gcnMtPnJzX2V2 bTI7CisJLyogWFhYIFRPRE86IGV4dGVuZCB0aGlzIHRvIGluY2x1ZGUgMy1zdHJlYW0gRVZNICov CisKKwkvKiBwaHllcnIgaW5mbyAqLworCWlmIChycy0+cnNfc3RhdHVzICYgSEFMX1JYRVJSX1BI WSkKKwkJc2MtPnNjX3J4X3RoLndyX3YudmhfcGh5ZXJyX2NvZGUgPSBycy0+cnNfcGh5ZXJyOwor CWVsc2UKKwkJc2MtPnNjX3J4X3RoLndyX3YudmhfcGh5ZXJyX2NvZGUgPSAweGZmOworCXNjLT5z Y19yeF90aC53cl92LnZoX3JzX3N0YXR1cyA9IHJzLT5yc19zdGF0dXM7CisJc2MtPnNjX3J4X3Ro LndyX3YudmhfcnNzaSA9IHJzLT5yc19yc3NpOworfQorCitzdGF0aWMgdm9pZAogYXRoX3J4X3Rh cChzdHJ1Y3QgaWZuZXQgKmlmcCwgc3RydWN0IG1idWYgKm0sCiAJY29uc3Qgc3RydWN0IGF0aF9y eF9zdGF0dXMgKnJzLCB1X2ludDY0X3QgdHNmLCBpbnQxNl90IG5mKQogewpAQCAtMzkxNSw3ICsz OTY2LDcgQEAKIAkJCXNjLT5zY19yeF90aC53cl9mbGFncyB8PSBJRUVFODAyMTFfUkFESU9UQVBf Rl9TSE9SVEdJOwogCX0KICNlbmRpZgotCXNjLT5zY19yeF90aC53cl90c2YgPSBodG9sZTY0KGF0 aF9leHRlbmRfdHNmKHNjLCBycy0+cnNfdHN0YW1wLCB0c2YpKTsKKwlzYy0+c2NfcnhfdGgud3Jf dHNmID0gdHNmOwogCWlmIChycy0+cnNfc3RhdHVzICYgSEFMX1JYRVJSX0NSQykKIAkJc2MtPnNj X3J4X3RoLndyX2ZsYWdzIHw9IElFRUU4MDIxMV9SQURJT1RBUF9GX0JBREZDUzsKIAkvKiBYWFgg cHJvcGFnYXRlIG90aGVyIGVycm9yIGZsYWdzIGZyb20gZGVzY3JpcHRvciAqLwpAQCAtNDE1Niw2 ICs0MjA3LDcgQEAKIAkJCQltLT5tX3BrdGhkci5sZW4gPSBtLT5tX2xlbiA9IGxlbjsKIAkJCQli Zi0+YmZfbSA9IE5VTEw7CiAJCQkJYXRoX3J4X3RhcChpZnAsIG0sIHJzLCByc3RhbXAsIG5mKTsK KwkJCQlhdGhfcnhfdGFwX3ZlbmRvcihpZnAsIG0sIHJzLCByc3RhbXAsIG5mKTsKIAkJCQlpZWVl ODAyMTFfcmFkaW90YXBfcnhfYWxsKGljLCBtKTsKIAkJCQltX2ZyZWVtKG0pOwogCQkJfQpAQCAt NDI1MSw4ICs0MzAzLDEwIEBACiAJCSAqIG1hdGVyaWFsIHJlcXVpcmVkIGJ5IGllZWU4MDIxMV9p bnB1dC4gIE5vdGUgdGhhdAogCQkgKiBub2lzZSBzZXR0aW5nIGlzIGZpbGxlZCBpbiBhYm92ZS4K IAkJICovCi0JCWlmIChpZWVlODAyMTFfcmFkaW90YXBfYWN0aXZlKGljKSkKKwkJaWYgKGllZWU4 MDIxMV9yYWRpb3RhcF9hY3RpdmUoaWMpKSB7CiAJCQlhdGhfcnhfdGFwKGlmcCwgbSwgcnMsIHJz dGFtcCwgbmYpOworCQkJYXRoX3J4X3RhcF92ZW5kb3IoaWZwLCBtLCBycywgcnN0YW1wLCBuZik7 CisJCX0KIAogCQkvKgogCQkgKiBGcm9tIHRoaXMgcG9pbnQgb24gd2UgYXNzdW1lIHRoZSBmcmFt ZSBpcyBhdCBsZWFzdAo= --f46d0444813b92008104b896eed1-- From owner-freebsd-wireless@FreeBSD.ORG Fri Feb 10 08:17:15 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E49D31065673; Fri, 10 Feb 2012 08:17:15 +0000 (UTC) (envelope-from misho@elwix.org) Received: from x0r.aitnet.org (unknown [IPv6:2a00:e40:deba:1::5]) by mx1.freebsd.org (Postfix) with ESMTP id 6D84F8FC16; Fri, 10 Feb 2012 08:17:15 +0000 (UTC) Received: from localhost (unknown [127.0.0.1]) by x0r.aitnet.org (Postfix) with ESMTP id 593AD3F769; Fri, 10 Feb 2012 10:17:14 +0200 (EET) X-Virus-Scanned: amavisd-new at aitnet.org Received: from x0r.aitnet.org ([127.0.0.1]) by localhost (x0r.aitnet.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5FOVI9gtUxGY; Fri, 10 Feb 2012 10:17:13 +0200 (EET) Received: from misho.batmbg.com (unknown [212.116.129.162]) by x0r.aitnet.org (Postfix) with ESMTPSA id CCEC43F72B; Fri, 10 Feb 2012 10:17:13 +0200 (EET) Date: Fri, 10 Feb 2012 10:17:15 +0200 From: Michael Pounov To: adrian@freebsd.org Message-Id: <20120210101715.a95d0487.misho@elwix.org> In-Reply-To: References: <201202062059.16816.bschmidt@freebsd.org> Organization: ELWIX X-Mailer: Sylpheed 3.1.2 (GTK+ 2.24.6; i386-portbld-freebsd9.0) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Cc: freebsd-wireless@freebsd.org Subject: Problem build of if_ath driver with certain mode X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 10 Feb 2012 08:17:16 -0000 Hi, Adrian I working with atheros driver intensively. After last build of -current with my kernel config I found crash in build process. After some investigation I found missing variable *ic if you use IEEE80211_SUPPORT_SUPERG. Index: sys/dev/ath/if_ath.c =================================================================== RCS file: /home/ncvs/src/sys/dev/ath/if_ath.c,v retrieving revision 1.380 diff -r1.380 if_ath.c 4891a4892,4893 > struct ifnet *ifp = sc->sc_ifp; > struct ieee80211com *ic = ifp->if_l2com; Look at a patch and if you think it is ok, may be is good to include. Best Regards -- Michael Pounov From owner-freebsd-wireless@FreeBSD.ORG Fri Feb 10 11:40:18 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0B14B106564A for ; Fri, 10 Feb 2012 11:40:18 +0000 (UTC) (envelope-from jake@mischler.com) Received: from teaspoon.mischlersflorist.com (rrcs-72-45-221-198.nys.biz.rr.com [72.45.221.198]) by mx1.freebsd.org (Postfix) with ESMTP id A916F8FC1D for ; Fri, 10 Feb 2012 11:40:17 +0000 (UTC) Received: from [192.168.254.253] ([192.168.254.253]) by teaspoon.mischlersflorist.com (8.14.5/8.14.4) with ESMTP id q1ABeFkZ001479; Fri, 10 Feb 2012 06:40:15 -0500 (EST) (envelope-from jake@mischler.com) From: Dave Mischler To: adrian chadd Content-Type: text/plain; charset="us-ascii" Date: Fri, 10 Feb 2012 06:40:14 -0500 Message-ID: <1328874014.5892.7.camel@barrel.mischler.com> Mime-Version: 1.0 X-Mailer: Evolution 2.32.1 FreeBSD GNOME Team Port Content-Transfer-Encoding: 7bit Cc: freebsd-wireless@freebsd.org Subject: Re: No WiFi on Acer Aspire One 751h X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: jake@mischler.com List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 10 Feb 2012 11:40:18 -0000 > The AR2427 and AR9285 should both work absolutely fine. > > What's the output of 'ifconfig -v wlan0' and 'ifconfig -v wlan0 list > channel' ? Here is the output of 'ifconfig -v wlan0' wlan0: flags=8843 metric 0 mtu 1500 ether 00:24:2c:5d:ed:55 nd6 options=29 media: IEEE 802.11 Wireless Ethernet autoselect (autoselect) status: no carrier ssid "" channel 11 (2462 MHz 11g) bssid 00:00:00:00:00:00 regdomain 101 country DEBUG indoor ecm authmode OPEN -wps -tsn privacy OFF deftxkey UNDEF powersavemode OFF powersavesleep 100 txpower 20 txpowmax 50.0 -dotd rtsthreshold 2346 fragthreshold 2346 bmiss 7 11a ucast NONE mgmt 6 Mb/s mcast 6 Mb/s maxretry 6 11b ucast NONE mgmt 1 Mb/s mcast 1 Mb/s maxretry 6 11g ucast NONE mgmt 1 Mb/s mcast 1 Mb/s maxretry 6 turboA ucast NONE mgmt 6 Mb/s mcast 6 Mb/s maxretry 6 turboG ucast NONE mgmt 1 Mb/s mcast 1 Mb/s maxretry 6 sturbo ucast NONE mgmt 6 Mb/s mcast 6 Mb/s maxretry 6 11na ucast NONE mgmt 12 MCS mcast 12 MCS maxretry 6 11ng ucast NONE mgmt 2 MCS mcast 2 MCS maxretry 6 half ucast NONE mgmt 3 Mb/s mcast 3 Mb/s maxretry 6 quarter ucast NONE mgmt 1 Mb/s mcast 1 Mb/s maxretry 6 scanvalid 60 bgscan bgscanintvl 300 bgscanidle 250 roam:11a rssi 7dBm rate 12 Mb/s roam:11b rssi 7dBm rate 1 Mb/s roam:11g rssi 7dBm rate 5 Mb/s roam:turboA rssi 7dBm rate 12 Mb/s roam:turboG rssi 7dBm rate 12 Mb/s roam:sturbo rssi 7dBm rate 12 Mb/s roam:11na rssi 7dBm MCS 1 roam:11ng rssi 7dBm MCS 1 roam:half rssi 7dBm rate 6 Mb/s roam:quarter rssi 7dBm rate 3 Mb/s -pureg protmode CTS -ht -htcompat -ampdu ampdulimit 8k ampdudensity 8 -amsdu -shortgi htprotmode RTSCTS -puren smps -rifs wme burst -dwds roaming AUTO bintval 0 AC_BE cwmin 0 cwmax 0 aifs 0 txopLimit 0 -acm ack cwmin 0 cwmax 0 aifs 0 txopLimit 0 -acm AC_BK cwmin 0 cwmax 0 aifs 0 txopLimit 0 -acm ack cwmin 0 cwmax 0 aifs 0 txopLimit 0 -acm AC_VI cwmin 0 cwmax 0 aifs 0 txopLimit 0 -acm ack cwmin 0 cwmax 0 aifs 0 txopLimit 0 -acm AC_VO cwmin 0 cwmax 0 aifs 0 txopLimit 0 -acm ack cwmin 0 cwmax 0 aifs 0 txopLimit 0 -acm groups: wlan And here is the output of 'ifconfig -v wlan0 list channel' Channel 1 : 2412 MHz 11b Channel 7 : 2442 MHz 11g Channel 1 : 2412 MHz 11g Channel 8 : 2447 MHz 11b Channel 2 : 2417 MHz 11b Channel 8 : 2447 MHz 11g Channel 2 : 2417 MHz 11g Channel 9 : 2452 MHz 11b Channel 3 : 2422 MHz 11b Channel 9 : 2452 MHz 11g Channel 3 : 2422 MHz 11g Channel 10 : 2457 MHz 11b Channel 4 : 2427 MHz 11b Channel 10 : 2457 MHz 11g Channel 4 : 2427 MHz 11g Channel 11 : 2462 MHz 11b Channel 5 : 2432 MHz 11b Channel 11 : 2462 MHz 11g Channel 5 : 2432 MHz 11g Channel 12 : 2467 MHz 11b Channel 6 : 2437 MHz 11b Channel 12 : 2467 MHz 11g Channel 6 : 2437 MHz 11g Channel 13 : 2472 MHz 11b Channel 7 : 2442 MHz 11b Channel 13 : 2472 MHz 11g From owner-freebsd-wireless@FreeBSD.ORG Fri Feb 10 15:38:47 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B38AD1065670 for ; Fri, 10 Feb 2012 15:38:47 +0000 (UTC) (envelope-from adrian.chadd@gmail.com) Received: from mail-ww0-f50.google.com (mail-ww0-f50.google.com [74.125.82.50]) by mx1.freebsd.org (Postfix) with ESMTP id 444C68FC14 for ; Fri, 10 Feb 2012 15:38:46 +0000 (UTC) Received: by wgbdq11 with SMTP id dq11so3036827wgb.31 for ; Fri, 10 Feb 2012 07:38:46 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=5KBKDy6wALXw4PLdoilJHlu6fAMdB76gWxfHk1HRmRU=; b=qziNqFVkoiYedzhsecyzRgIffamB1LgzP1TTUdCHBK+QCxzdPWhLYUmEmyXscGLA+/ X0T/FpTdXeNwIISAatfPbp/0TPRm3g4nE15chgAvlub9i4kEUm9b1DmbJ6CjN/4ELCa9 lI9kJRB1YUyDR9dvErX7OGk7wTY1TfaPsq5y0= MIME-Version: 1.0 Received: by 10.181.11.227 with SMTP id el3mr9966162wid.18.1328888326137; Fri, 10 Feb 2012 07:38:46 -0800 (PST) Received: by 10.216.175.136 with HTTP; Fri, 10 Feb 2012 07:38:46 -0800 (PST) In-Reply-To: <1328874014.5892.7.camel@barrel.mischler.com> References: <1328874014.5892.7.camel@barrel.mischler.com> Date: Fri, 10 Feb 2012 07:38:46 -0800 Message-ID: From: Adrian Chadd To: jake@mischler.com Content-Type: text/plain; charset=ISO-8859-1 Cc: freebsd-wireless@freebsd.org Subject: Re: No WiFi on Acer Aspire One 751h X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 10 Feb 2012 15:38:47 -0000 That should be fine. What about doing "up" and "scan" on different lines? Also, try "wlandebug +scan" and see what it outputs. (And then wlandebug 0 to disable.) Adrian From owner-freebsd-wireless@FreeBSD.ORG Sat Feb 11 00:32:51 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A3925106564A for ; Sat, 11 Feb 2012 00:32:51 +0000 (UTC) (envelope-from venture37@gmail.com) Received: from mail-wi0-f182.google.com (mail-wi0-f182.google.com [209.85.212.182]) by mx1.freebsd.org (Postfix) with ESMTP id 2F6618FC0A for ; Sat, 11 Feb 2012 00:32:50 +0000 (UTC) Received: by wibhn14 with SMTP id hn14so3548842wib.13 for ; Fri, 10 Feb 2012 16:32:50 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=iKwBrwZGQVeZzGg+mbRmbbONs331rRBUKDHVwFJJqkY=; b=iuNWXoI9lCsbshL8Z3pGnO1AzpVjOCc5k7tVDaf0S7Du78QgN/zu4UcPUDJF20SeH5 g147/dPx9Ycaq9AcdxTuAkS3d5wWZLzX1/g4oj21cdymL5+vImO/yuP78wV9Z2L+wy9P 1WGoZIaG/F1NH1yeat9tMPkSvyuXTdSOXIRII= Received: by 10.180.19.97 with SMTP id d1mr12312765wie.12.1328919052016; Fri, 10 Feb 2012 16:10:52 -0800 (PST) Received: from Sevans-MacBook-Pro.local (cpc2-brig17-2-0-cust527.3-3.cable.virginmedia.com. [81.101.198.16]) by mx.google.com with ESMTPS id q7sm6466574wix.5.2012.02.10.16.10.50 (version=SSLv3 cipher=OTHER); Fri, 10 Feb 2012 16:10:50 -0800 (PST) Message-ID: <4F35B209.4060809@gmail.com> Date: Sat, 11 Feb 2012 00:10:49 +0000 From: Sevan / Venture37 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.7; rv:10.0) Gecko/20120129 Thunderbird/10.0 MIME-Version: 1.0 To: freebsd-wireless@freebsd.org References: <20120207194931.GB1676@pgl-P5K-E> <20120208174845.A53709@sola.nimnet.asn.au> In-Reply-To: <20120208174845.A53709@sola.nimnet.asn.au> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Re: wi driver X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 11 Feb 2012 00:32:51 -0000 Marking the interface as up without any configuration of the interface will cause a kernel panic for me on my ThinkPad X61s Fatal trap 12: page fault while in kernel mode cpuid = 0; apic id = 00 fault virtual address = 0x2f8 fault code = supervisor read data, page not present instruction pointer = 0x20:0xffffffff8073a781 stack pointer = 0x28:0xffffff822ba0bab0 frame pointer = 0x28:0xffffff822ba0bb10 code segment = base 0x0, limit 0xfffff, type 0x1b = DPL 0, pres 1, long 1, def32 0, gran 1 processor eflags = interrupt enabled, resume, IOPL = 0 current process = 12 (irq16: cbb0 wi0+) trap number = 12 panic: page fault cpuid = 0 KDB: stack backtrace: #0 0xffffffff808680fe at kdb_backtrace+0x5e #1 0xffffffff80832cb7 at panic+0x187 #2 0xffffffff80b18400 at trap_fatal+0x290 #3 0xffffffff80b18749 at trap_pfault+0x1f9 #4 0xffffffff80b18c0f at trap+0x3df #5 0xffffffff80b0313f at calltrap+0x8 #6 0xffffffff8073b46f at wi_intr+0x25f #7 0xffffffff80809644 at intr_event_execute_handlers+0x104 #8 0xffffffff8080ae04 at ithread_loop+0xa4 #9 0xffffffff8080682f at fork_exit+0x11f #10 0xffffffff80b0366e at fork_trampoline+0xe wi0: at port 0x4000-0x403f irq 16 function 0 config 1 on pccard0 My card was originally a silver but I re-flashed it as gold. https://www.geeklan.co.uk/?p=32 Sevan / Venture37 From owner-freebsd-wireless@FreeBSD.ORG Sat Feb 11 00:41:06 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9C3EF10656AE for ; Sat, 11 Feb 2012 00:41:06 +0000 (UTC) (envelope-from adrian.chadd@gmail.com) Received: from mail-iy0-f182.google.com (mail-iy0-f182.google.com [209.85.210.182]) by mx1.freebsd.org (Postfix) with ESMTP id 635B68FC12 for ; Sat, 11 Feb 2012 00:41:06 +0000 (UTC) Received: by iaeo4 with SMTP id o4so1322114iae.13 for ; Fri, 10 Feb 2012 16:41:05 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:date:from:to:reply-to:subject:in-reply-to:x-mailer :mime-version:content-type; bh=7OZ9vOfxgjdMQOSrrLxqP43d3SsG5Uz2qQuTxl10VwI=; b=jVHFqfaf8KDnW+8uW5NKG7RdKtqpjvr7NLgWTDbvv5t+QhS20axDOGSfePi3Ur7kDa aJ23YnbCwyd/7nvW94CyOe65W8DvIG9dGIDbfyVuekWzH4yDNBcgd/8dzqlKylqE9fZG A1JHzdlv0SHU3Bj46DYYTQyq3Rev9wpNbcdeg= Received: by 10.50.207.72 with SMTP id lu8mr15269751igc.0.1328920865548; Fri, 10 Feb 2012 16:41:05 -0800 (PST) Received: from www.palm.com ([166.191.167.27]) by mx.google.com with ESMTPS id d15sm14615165ibf.7.2012.02.10.16.40.58 (version=SSLv3 cipher=OTHER); Fri, 10 Feb 2012 16:41:04 -0800 (PST) Message-ID: <4f35b920.4f2de70a.547c.ffffd746@mx.google.com> Date: Fri, 10 Feb 2012 16:41:04 -0800 From: "Adrian Chadd" To: "Sevan / Venture37" , "freebsd-wireless@freebsd.org" In-Reply-To: <4F35B209.4060809@gmail.com> X-Mailer: Palm webOS v1.0.1 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: Subject: Re: wi driver X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Adrian Chadd List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 11 Feb 2012 00:41:06 -0000 Can you get a backtrace from a crashdump, so I can see what line it's crash= ing on? Adrian Sent from my Palm Pre on AT&T On Feb 10, 2012 4:33 PM, Sevan / Venture37 <venture37@gmail.com> wrot= e:=20 Marking the interface as up without any configuration of the interface=20 will cause a kernel panic for me on my ThinkPad X61s Fatal trap 12: page fault while in kernel mode cpuid =3D 0; apic id =3D 00 fault virtual address =3D 0x2f8 fault code =3D supervisor read data, page not present instruction pointer =3D 0x20:0xffffffff8073a781 stack pointer =3D 0x28:0xffffff822ba0bab0 frame pointer =3D 0x28:0xffffff822ba0bb10 code segment =3D base 0x0, limit 0xfffff, type 0x1b =3D DPL 0, pres 1, long 1, def32 0, gran 1 processor eflags =3D interrupt enabled, resume, IOPL =3D 0 current process =3D 12 (irq16: cbb0 wi0+) trap number =3D 12 panic: page fault cpuid =3D 0 KDB: stack backtrace: #0 0xffffffff808680fe at kdb_backtrace+0x5e #1 0xffffffff80832cb7 at panic+0x187 #2 0xffffffff80b18400 at trap_fatal+0x290 #3 0xffffffff80b18749 at trap_pfault+0x1f9 #4 0xffffffff80b18c0f at trap+0x3df #5 0xffffffff80b0313f at calltrap+0x8 #6 0xffffffff8073b46f at wi_intr+0x25f #7 0xffffffff80809644 at intr_event_execute_handlers+0x104 #8 0xffffffff8080ae04 at ithread_loop+0xa4 #9 0xffffffff8080682f at fork_exit+0x11f #10 0xffffffff80b0366e at fork_trampoline+0xe wi0: <Avaya Communication Avaya Wireless PC Card> at port 0x4000-0x40= 3f=20 irq 16 function 0 config 1 on pccard0 My card was originally a silver but I re-flashed it as gold. https://www.geeklan.co.uk/?p=3D32 Sevan / Venture37 _______________________________________________ freebsd-wireless@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-wireless To unsubscribe, send any mail to "freebsd-wireless-unsubscribe@freebsd.org" From owner-freebsd-wireless@FreeBSD.ORG Sat Feb 11 10:55:02 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 124C91065676 for ; Sat, 11 Feb 2012 10:55:02 +0000 (UTC) (envelope-from jake@mischler.com) Received: from teaspoon.mischlersflorist.com (rrcs-72-45-221-198.nys.biz.rr.com [72.45.221.198]) by mx1.freebsd.org (Postfix) with ESMTP id CA9F98FC0A for ; Sat, 11 Feb 2012 10:55:01 +0000 (UTC) Received: from [192.168.254.253] ([192.168.254.253]) by teaspoon.mischlersflorist.com (8.14.5/8.14.4) with ESMTP id q1BAsxIV085511; Sat, 11 Feb 2012 05:54:59 -0500 (EST) (envelope-from jake@mischler.com) From: Dave Mischler To: adrian chadd Content-Type: text/plain; charset="us-ascii" Date: Sat, 11 Feb 2012 05:54:59 -0500 Message-ID: <1328957699.69821.7.camel@barrel.mischler.com> Mime-Version: 1.0 X-Mailer: Evolution 2.32.1 FreeBSD GNOME Team Port Content-Transfer-Encoding: 7bit Cc: freebsd-wireless@freebsd.org Subject: Re: No WiFi on Acer Aspire One 751h X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: jake@mischler.com List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 11 Feb 2012 10:55:02 -0000 > What about doing "up" and "scan" on different lines? OK. It doesn't seem to make any difference. > Also, try "wlandebug +scan" and see what it outputs. A whole lot of this: Feb 11 10:37:46 halfpint kernel: wlan0: Ethernet address: 00:24:2c:5d:ed:55 Feb 11 10:38:02 halfpint kernel: wlan0: ieee80211_check_scan: active scan, append Feb 11 10:38:02 halfpint kernel: wlan0: scan_update_locked: current scanner is , switch to Feb 11 10:38:02 halfpint kernel: wlan0: start_scan_locked: active scan, duration 2147483647 mindwell 0 maxdwell 0, desired mode auto, flush Feb 11 10:38:02 halfpint kernel: wlan0: scan set 1g, 6g, 11g, 7g, 13g, 2g, 3g, 4g, 5g, 8g, 9g, 10g, 12g dwell min 20ms max 200ms Feb 11 10:38:02 halfpint kernel: wlan0: scan_task: chan 1b -> 1g [active, dwell min 20ms max 200ms] Feb 11 10:38:02 halfpint kernel: wlan0: scan_task: chan 1g -> 6g [active, dwell min 20ms max 200ms] Feb 11 10:38:03 halfpint kernel: wlan0: scan_task: chan 6g -> 11g [active, dwell min 20ms max 200ms] Feb 11 10:38:03 halfpint kernel: wlan0: scan_task: chan 11g -> 7g [active, dwell min 20ms max 200ms] Feb 11 10:38:04 halfpint kernel: wlan0: scan_task: chan 7g -> 13g [active, dwell min 20ms max 200ms] Feb 11 10:38:04 halfpint kernel: wlan0: scan_task: chan 13g -> 2g [active, dwell min 20ms max 200ms] Feb 11 10:38:05 halfpint kernel: wlan0: scan_task: chan 2g -> 3g [active, dwell min 20ms max 200ms] Feb 11 10:38:05 halfpint kernel: wlan0: scan_task: chan 3g -> 4g [active, dwell min 20ms max 200ms] Feb 11 10:38:06 halfpint kernel: wlan0: scan_task: chan 4g -> 5g [active, dwell min 20ms max 200ms] Feb 11 10:38:06 halfpint kernel: wlan0: scan_task: chan 5g -> 8g [active, dwell min 20ms max 200ms] Feb 11 10:38:07 halfpint kernel: wlan0: scan_task: chan 8g -> 9g [active, dwell min 20ms max 200ms] Feb 11 10:38:07 halfpint kernel: wlan0: scan_task: chan 9g -> 10g [active, dwell min 20ms max 200ms] Feb 11 10:38:08 halfpint kernel: wlan0: scan_task: chan 10g -> 12g [active, dwell min 20ms max 200ms] Feb 11 10:38:08 halfpint kernel: wlan0: sta_pick_bss: no scan candidate Feb 11 10:38:08 halfpint kernel: wlan0: scan_task: done, restart [ticks 77877, dwell min 20 scanend 2147555309] Feb 11 10:38:08 halfpint kernel: wlan0: scan_task: chan 12g -> 1g [active, dwell min 20ms max 200ms] Feb 11 10:38:09 halfpint kernel: wlan0: scan_task: chan 1g -> 6g [active, dwell min 20ms max 200ms] Feb 11 10:38:09 halfpint kernel: wlan0: scan_task: chan 6g -> 11g [active, dwell min 20ms max 200ms] Feb 11 10:38:10 halfpint kernel: wlan0: scan_task: chan 11g -> 7g [active, dwell min 20ms max 200ms] Feb 11 10:38:10 halfpint kernel: wlan0: scan_task: chan 7g -> 13g [active, dwell min 20ms max 200ms] Feb 11 10:38:11 halfpint kernel: wlan0: scan_task: chan 13g -> 2g [active, dwell min 20ms max 200ms] Feb 11 10:38:11 halfpint kernel: wlan0: scan_task: chan 2g -> 3g [active, dwell min 20ms max 200ms] Feb 11 10:38:12 halfpint kernel: wlan0: ieee80211_scanreq: flags 0x1b duration 0x7fffffff mindwell 0 maxdwell 0 nssid 0 Feb 11 10:38:12 halfpint kernel: wlan0: start_scan_locked: active scan already in progress Feb 11 10:38:12 halfpint kernel: wlan0: scan_task: chan 3g -> 4g [active, dwell min 20ms max 200ms] Feb 11 10:38:12 halfpint kernel: wlan0: scan_task: chan 4g -> 5g [active, dwell min 20ms max 200ms] Feb 11 10:38:13 halfpint kernel: wlan0: scan_task: chan 5g -> 8g [active, dwell min 20ms max 200ms] Feb 11 10:38:13 halfpint kernel: wlan0: scan_task: chan 8g -> 9g [active, dwell min 20ms max 200ms] Feb 11 10:38:14 halfpint kernel: wlan0: scan_task: chan 9g -> 10g [active, dwell min 20ms max 200ms] Feb 11 10:38:14 halfpint kernel: wlan0: scan_task: chan 10g -> 12g [active, dwell min 20ms max 200ms] Feb 11 10:38:14 halfpint kernel: wlan0: sta_pick_bss: no scan candidate Feb 11 10:38:14 halfpint kernel: wlan0: scan_task: done, restart [ticks 84024, dwell min 20 scanend 2147561527] Feb 11 10:38:14 halfpint kernel: wlan0: scan_task: chan 12g -> 1g [active, dwell min 20ms max 200ms] Feb 11 10:38:15 halfpint kernel: wlan0: scan_task: chan 1g -> 6g [active, dwell min 20ms max 200ms] Feb 11 10:38:15 halfpint kernel: wlan0: scan_task: chan 6g -> 11g [active, dwell min 20ms max 200ms] Feb 11 10:38:16 halfpint kernel: wlan0: scan_task: chan 11g -> 7g [active, dwell min 20ms max 200ms] Feb 11 10:38:16 halfpint kernel: wlan0: scan_task: chan 7g -> 13g [active, dwell min 20ms max 200ms] Feb 11 10:38:17 halfpint kernel: wlan0: scan_task: chan 13g -> 2g [active, dwell min 20ms max 200ms] Feb 11 10:38:17 halfpint kernel: wlan0: scan_task: chan 2g -> 3g [active, dwell min 20ms max 200ms] Feb 11 10:38:18 halfpint kernel: wlan0: scan_task: chan 3g -> 4g [active, dwell min 20ms max 200ms] Feb 11 10:38:18 halfpint kernel: wlan0: scan_task: chan 4g -> 5g [active, dwell min 20ms max 200ms] Feb 11 10:38:18 halfpint kernel: wlan0: scan_task: chan 5g -> 8g [active, dwell min 20ms max 200ms] Feb 11 10:38:19 halfpint kernel: wlan0: scan_task: chan 8g -> 9g [active, dwell min 20ms max 200ms] Feb 11 10:38:19 halfpint kernel: wlan0: scan_task: chan 9g -> 10g [active, dwell min 20ms max 200ms] Feb 11 10:38:20 halfpint kernel: wlan0: scan_task: chan 10g -> 12g [active, dwell min 20ms max 200ms] Feb 11 10:38:20 halfpint kernel: wlan0: sta_pick_bss: no scan candidate Feb 11 10:38:20 halfpint kernel: wlan0: scan_task: done, restart [ticks 89703, dwell min 20 scanend 2147567673] Feb 11 10:38:20 halfpint kernel: wlan0: scan_task: chan 12g -> 1g [active, dwell min 20ms max 200ms] Feb 11 10:38:20 halfpint kernel: wlan0: scan_task: chan 1g -> 6g [active, dwell min 20ms max 200ms] Feb 11 10:38:21 halfpint kernel: wlan0: scan_task: chan 6g -> 11g [active, dwell min 20ms max 200ms] Feb 11 10:38:21 halfpint kernel: wlan0: scan_task: chan 11g -> 7g [active, dwell min 20ms max 200ms] Feb 11 10:38:22 halfpint kernel: wlan0: scan_task: chan 7g -> 13g [active, dwell min 20ms max 200ms] Feb 11 10:38:22 halfpint kernel: wlan0: scan_task: chan 13g -> 2g [active, dwell min 20ms max 200ms] Feb 11 10:38:23 halfpint kernel: wlan0: scan_task: chan 2g -> 3g [active, dwell min 20ms max 200ms] Feb 11 10:38:23 halfpint kernel: wlan0: scan_task: chan 3g -> 4g [active, dwell min 20ms max 200ms] Feb 11 10:38:24 halfpint kernel: wlan0: scan_task: chan 4g -> 5g [active, dwell min 20ms max 200ms] Feb 11 10:38:24 halfpint kernel: wlan0: scan_task: chan 5g -> 8g [active, dwell min 20ms max 200ms] Feb 11 10:38:24 halfpint kernel: wlan0: scan_task: chan 8g -> 9g [active, dwell min 20ms max 200ms] Feb 11 10:38:25 halfpint kernel: wlan0: scan_task: chan 9g -> 10g [active, dwell min 20ms max 200ms] Feb 11 10:38:25 halfpint kernel: wlan0: scan_task: chan 10g -> 12g [active, dwell min 20ms max 200ms] Feb 11 10:38:26 halfpint kernel: wlan0: sta_pick_bss: no scan candidate Feb 11 10:38:26 halfpint kernel: wlan0: scan_task: done, restart [ticks 95616, dwell min 20 scanend 2147573352] Feb 11 10:38:26 halfpint kernel: wlan0: scan_task: chan 12g -> 1g [active, dwell min 20ms max 200ms] Feb 11 10:38:27 halfpint kernel: wlan0: scan_task: chan 1g -> 6g [active, dwell min 20ms max 200ms] Feb 11 10:38:27 halfpint kernel: wlan0: scan_task: chan 6g -> 11g [active, dwell min 20ms max 200ms] Feb 11 10:38:28 halfpint kernel: wlan0: scan_task: chan 11g -> 7g [active, dwell min 20ms max 200ms] Feb 11 10:38:28 halfpint kernel: wlan0: scan_task: chan 7g -> 13g [active, dwell min 20ms max 200ms] Feb 11 10:38:28 halfpint kernel: wlan0: scan_task: chan 13g -> 2g [active, dwell min 20ms max 200ms] Feb 11 10:38:29 halfpint kernel: wlan0: scan_task: chan 2g -> 3g [active, dwell min 20ms max 200ms] Feb 11 10:38:29 halfpint kernel: wlan0: scan_task: chan 3g -> 4g [active, dwell min 20ms max 200ms] Feb 11 10:38:30 halfpint kernel: wlan0: scan_task: chan 4g -> 5g [active, dwell min 20ms max 200ms] Feb 11 10:38:30 halfpint kernel: wlan0: scan_task: chan 5g -> 8g [active, dwell min 20ms max 200ms] Feb 11 10:38:31 halfpint kernel: wlan0: scan_task: chan 8g -> 9g [active, dwell min 20ms max 200ms] Feb 11 10:38:31 halfpint kernel: wlan0: scan_task: chan 9g -> 10g [active, dwell min 20ms max 200ms] Feb 11 10:38:32 halfpint kernel: wlan0: scan_task: chan 10g -> 12g [active, dwell min 20ms max 200ms] Feb 11 10:38:32 halfpint kernel: wlan0: sta_pick_bss: no scan candidate Feb 11 10:38:32 halfpint kernel: wlan0: scan_task: done, restart [ticks 101590, dwell min 20 scanend 2147579266] Feb 11 10:38:32 halfpint kernel: wlan0: scan_task: chan 12g -> 1g [active, dwell min 20ms max 200ms] Feb 11 10:38:32 halfpint kernel: wlan0: scan_task: chan 1g -> 6g [active, dwell min 20ms max 200ms] Feb 11 10:38:33 halfpint kernel: wlan0: scan_task: chan 6g -> 11g [active, dwell min 20ms max 200ms] Feb 11 10:38:33 halfpint kernel: wlan0: scan_task: chan 11g -> 7g [active, dwell min 20ms max 200ms] Feb 11 10:38:34 halfpint kernel: wlan0: scan_task: chan 7g -> 13g [active, dwell min 20ms max 200ms] Feb 11 10:38:34 halfpint kernel: wlan0: scan_task: chan 13g -> 2g [active, dwell min 20ms max 200ms] Feb 11 10:38:35 halfpint kernel: wlan0: scan_task: chan 2g -> 3g [active, dwell min 20ms max 200ms] Feb 11 10:38:35 halfpint kernel: wlan0: scan_task: chan 3g -> 4g [active, dwell min 20ms max 200ms] Feb 11 10:38:36 halfpint kernel: wlan0: scan_task: chan 4g -> 5g [active, dwell min 20ms max 200ms] Feb 11 10:38:36 halfpint kernel: wlan0: scan_task: chan 5g -> 8g [active, dwell min 20ms max 200ms] Feb 11 10:38:36 halfpint kernel: wlan0: scan_task: chan 8g -> 9g [active, dwell min 20ms max 200ms] Feb 11 10:38:37 halfpint kernel: wlan0: scan_task: chan 9g -> 10g [active, dwell min 20ms max 200ms] Feb 11 10:38:38 halfpint kernel: wlan0: scan_task: chan 10g -> 12g [active, dwell min 20ms max 200ms] Feb 11 10:38:38 halfpint kernel: wlan0: sta_pick_bss: no scan candidate Feb 11 10:38:38 halfpint kernel: wlan0: scan_task: done, restart [ticks 107543, dwell min 20 scanend 2147585239] I watched it for quite a while and it never says anything else in there. From owner-freebsd-wireless@FreeBSD.ORG Sat Feb 11 16:07:13 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D501D106566C for ; Sat, 11 Feb 2012 16:07:13 +0000 (UTC) (envelope-from venture37@gmail.com) Received: from mail-wi0-f182.google.com (mail-wi0-f182.google.com [209.85.212.182]) by mx1.freebsd.org (Postfix) with ESMTP id 6219B8FC0A for ; Sat, 11 Feb 2012 16:07:13 +0000 (UTC) Received: by wibhn14 with SMTP id hn14so3997954wib.13 for ; Sat, 11 Feb 2012 08:07:12 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=HHUx93zzoehTbs9Gv3AKGL+FRqkW3J8yUyPptAcewa8=; b=YfyGHPpYra5l5Ctvh9Ad2tL3qBl9yJNBJSBcqvmxl95OIV8J3Qaw8o0ktvlYS0Tqjc 0gzSpVF67uES1nuUzbelr2tvbVFY5046pkGW40iQB053wLtteLy5TVxYiUhbiZhfaQ0Y riYvWWLDPU/OxcdY6qBRDZMj9I0EIQTbCUZD8= Received: by 10.216.52.198 with SMTP id e48mr2389561wec.18.1328976432359; Sat, 11 Feb 2012 08:07:12 -0800 (PST) Received: from Sevans-MacBook-Pro.local (cpc2-brig17-2-0-cust527.3-3.cable.virginmedia.com. [81.101.198.16]) by mx.google.com with ESMTPS id fl2sm18879659wib.4.2012.02.11.08.07.11 (version=SSLv3 cipher=OTHER); Sat, 11 Feb 2012 08:07:11 -0800 (PST) Message-ID: <4F36922D.5080904@gmail.com> Date: Sat, 11 Feb 2012 16:07:09 +0000 From: Sevan / Venture37 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.7; rv:10.0) Gecko/20120129 Thunderbird/10.0 MIME-Version: 1.0 To: "freebsd-wireless@freebsd.org" References: <4f35b920.4f2de70a.547c.ffffd746@mx.google.com> In-Reply-To: <4f35b920.4f2de70a.547c.ffffd746@mx.google.com> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Subject: Re: wi driver X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 11 Feb 2012 16:07:14 -0000 On 11/02/2012 00:41, Adrian Chadd wrote: > Can you get a backtrace from a crashdump, so I can see what line it's > crashing on? For the archives, photo of cashdump in url below http://twitpic.com/8iikgm Sevan From owner-freebsd-wireless@FreeBSD.ORG Sat Feb 11 19:29:34 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E0B761065674 for ; Sat, 11 Feb 2012 19:29:34 +0000 (UTC) (envelope-from adrian.chadd@gmail.com) Received: from mail-wi0-f182.google.com (mail-wi0-f182.google.com [209.85.212.182]) by mx1.freebsd.org (Postfix) with ESMTP id 748358FC15 for ; Sat, 11 Feb 2012 19:29:34 +0000 (UTC) Received: by wibhn14 with SMTP id hn14so4106443wib.13 for ; Sat, 11 Feb 2012 11:29:33 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type; bh=rlppt5qil6jVwy+HxBTDllW+byqKRhSHPhkQKSF1o9g=; b=cl4ZkkYLPCLfF76X216oCoVCs4YsubnBJP86mYO7FudpM14aZH9p2Ob9EDrCBZSmWv 1WIEfDbJtgqQiHMLFV10yAZV/uaQqOcNaCl+clIbbe0iSJVSEf5ZoxuHZ6AAaPqC5147 3WPXEKrxzwXaktPbsLX9v6J5Oes9PeiLALwb0= MIME-Version: 1.0 Received: by 10.180.107.34 with SMTP id gz2mr15850706wib.21.1328988573418; Sat, 11 Feb 2012 11:29:33 -0800 (PST) Sender: adrian.chadd@gmail.com Received: by 10.216.175.136 with HTTP; Sat, 11 Feb 2012 11:29:33 -0800 (PST) In-Reply-To: <4F36922D.5080904@gmail.com> References: <4f35b920.4f2de70a.547c.ffffd746@mx.google.com> <4F36922D.5080904@gmail.com> Date: Sat, 11 Feb 2012 11:29:33 -0800 X-Google-Sender-Auth: Al-lJxSrbR3_jFg1_LO4wLh5WoY Message-ID: From: Adrian Chadd To: "Sevan / Venture37" Content-Type: text/plain; charset=ISO-8859-1 Cc: "freebsd-wireless@freebsd.org" Subject: Re: wi driver X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 11 Feb 2012 19:29:35 -0000 I mean, do you get a kernel crash dump? Or a text dump in /var/crash/ ? something that lists exactly where in your kernel it died. It died inside wi_intr() but I'd like to know -what- is going on inside there.. Adrian On 11 February 2012 08:07, Sevan / Venture37 wrote: > On 11/02/2012 00:41, Adrian Chadd wrote: >> >> Can you get a backtrace from a crashdump, so I can see what line it's >> crashing on? > > > For the archives, photo of cashdump in url below > http://twitpic.com/8iikgm > > > Sevan > > _______________________________________________ > freebsd-wireless@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-wireless > To unsubscribe, send any mail to "freebsd-wireless-unsubscribe@freebsd.org" From owner-freebsd-wireless@FreeBSD.ORG Sat Feb 11 19:55:38 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id EB82B1065670 for ; Sat, 11 Feb 2012 19:55:38 +0000 (UTC) (envelope-from adrian.chadd@gmail.com) Received: from mail-wi0-f182.google.com (mail-wi0-f182.google.com [209.85.212.182]) by mx1.freebsd.org (Postfix) with ESMTP id 8177F8FC0C for ; Sat, 11 Feb 2012 19:55:38 +0000 (UTC) Received: by wibhn14 with SMTP id hn14so4119657wib.13 for ; Sat, 11 Feb 2012 11:55:37 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=qd3Kj/BbwRwCgOgQpiHUfVHGJTY5BIazdEeLvljfCEs=; b=gViXgnWIggumz5Y64mN9juaoFcXQC8FbWL00LdR+KIqmbnIET7BKeOt7AHH9NpN9EI gp/N0aVJoqXAwK3vC6QuQNhFreJzVXmsny8gZzVCHM3C9omjjIyxEkpH+O8byA6ZnzNl OA3pczwojsXZorq47SBhmGmm1pgxX06YokjGk= MIME-Version: 1.0 Received: by 10.180.78.6 with SMTP id x6mr9891733wiw.18.1328990137532; Sat, 11 Feb 2012 11:55:37 -0800 (PST) Received: by 10.216.175.136 with HTTP; Sat, 11 Feb 2012 11:55:37 -0800 (PST) In-Reply-To: <1328957699.69821.7.camel@barrel.mischler.com> References: <1328957699.69821.7.camel@barrel.mischler.com> Date: Sat, 11 Feb 2012 11:55:37 -0800 Message-ID: From: Adrian Chadd To: jake@mischler.com Content-Type: text/plain; charset=ISO-8859-1 Cc: freebsd-wireless@freebsd.org Subject: Re: No WiFi on Acer Aspire One 751h X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 11 Feb 2012 19:55:39 -0000 Wow, ok. Erm, I wonder how many external antennas are configured. Can you please compile up athstats (/usr/src/tools/tools/ath/athstats) and make sure your kernel has the following options: options ATH_DEBUG options AH_DEBUG options ATH_DIAGAPI Then run scan for a while and use athstats to see what (if any) is being received. Something tells me it's a weird antenna or RX gain issue. You should be _seeing_ something, even if you aren't able to TX probe request frames correctly. Also, you could fiddle with diversity/RX antenna settings: sysctl dev.ath.0.diversity=0 # or 1 to re-enable diversity sysctl dev.ath.0.rxantenna=0 # or 1 or 2 to hard-code antenna selection sysctl dev.ath.0.txantenna=0 # or 1 or 2 to hard-code antenna selection I've seen weird behaviour before where only one antenna was connected. Adrian From owner-freebsd-wireless@FreeBSD.ORG Sat Feb 11 21:16:37 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0F3971065670 for ; Sat, 11 Feb 2012 21:16:37 +0000 (UTC) (envelope-from venture37@gmail.com) Received: from mail-we0-f182.google.com (mail-we0-f182.google.com [74.125.82.182]) by mx1.freebsd.org (Postfix) with ESMTP id 87E298FC08 for ; Sat, 11 Feb 2012 21:16:35 +0000 (UTC) Received: by werm13 with SMTP id m13so4147503wer.13 for ; Sat, 11 Feb 2012 13:16:35 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-type:content-transfer-encoding; bh=Yy6bsmoGz6rtibtMEX3YKXRBRO0OfThDpPGkp0GoEe8=; b=mR3lsPqqEwHZbYxlyAHz76fmYEUDEyDU6EyqByeNTMBqQR6htul8chDTSqfjWCkq+K dyapDJ13m6m6grCuMq9cW9OWITNICzdLESkJZZfS//yWVIgi89ZAkNYEOMChOhDLtJJ4 oe9yoygx9R07XX02YgUBONp31PwHSj4Ac+wu0= Received: by 10.180.80.8 with SMTP id n8mr16434879wix.14.1328994995235; Sat, 11 Feb 2012 13:16:35 -0800 (PST) Received: from Sevans-MacBook-Pro.local (cpc2-brig17-2-0-cust527.3-3.cable.virginmedia.com. [81.101.198.16]) by mx.google.com with ESMTPS id cs4sm30781915wib.8.2012.02.11.13.16.33 (version=SSLv3 cipher=OTHER); Sat, 11 Feb 2012 13:16:34 -0800 (PST) Message-ID: <4F36DAB0.2020803@gmail.com> Date: Sat, 11 Feb 2012 21:16:32 +0000 From: Sevan / Venture37 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.7; rv:10.0) Gecko/20120129 Thunderbird/10.0 MIME-Version: 1.0 To: Adrian Chadd References: <4f35b920.4f2de70a.547c.ffffd746@mx.google.com> <4F36922D.5080904@gmail.com> In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: "freebsd-wireless@freebsd.org" Subject: Re: wi driver X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 11 Feb 2012 21:16:37 -0000 On 11/02/2012 19:29, Adrian Chadd wrote: > I mean, do you get a kernel crash dump? Or a text dump in/var/crash/ > ? something that lists exactly where in your kernel it died. > > It died inside wi_intr() but I'd like to know -what- is going on inside there.. > > > Adrian I have a dump in /var/crash & in core.txt is the following at the beginning panic: GNU gdb 6.1.1 [FreeBSD] Copyright 2004 Free Software Foundation, Inc. GDB is free software, covered by the GNU General Public License, and you are welcome to change it and/or distribute copies of it under certain conditions. Type "show copying" to see the conditions. There is absolutely no warranty for GDB. Type "show warranty" for details. This GDB was configured as "amd64-marcel-freebsd"... Unread portion of the kernel message buffer: interrupt enabled, resume, IOPL = 0 current process = 12 (irq16: cbb0 wi0+) Dumping 418 out of 8098 MB:..4%..12%..23%..31%..43%..54%..62%..73%..81%..92% Reading symbols from /boot/kernel/acpi_video.ko...Reading symbols from /boot/kernel/acpi_video.ko.symbols...done. done. Loaded symbols for /boot/kernel/acpi_video.ko Reading symbols from /boot/kernel/acpi_ibm.ko...Reading symbols from /boot/kernel/acpi_ibm.ko.symbols...done. done. Loaded symbols for /boot/kernel/acpi_ibm.ko Reading symbols from /boot/kernel/acpi_dock.ko...Reading symbols from /boot/kernel/acpi_dock.ko.symbols...done. done. Loaded symbols for /boot/kernel/acpi_dock.ko Reading symbols from /boot/kernel/green_saver.ko...Reading symbols from /boot/kernel/green_saver.ko.symbols...done. done. Loaded symbols for /boot/kernel/green_saver.ko #0 doadump (textdump=0) at /usr/src/sys/kern/kern_shutdown.c:260 260 if (textdump && textdump_pending) { (kgdb) #0 doadump (textdump=0) at /usr/src/sys/kern/kern_shutdown.c:260 #1 0xffffffff8031d770 in db_dump (dummy=Variable "dummy" is not available. ) at /usr/src/sys/ddb/db_command.c:537 #2 0xffffffff8031d0a1 in db_command (last_cmdp=0xffffffff8116a340, cmd_table=Variable "cmd_table" is not available. ) at /usr/src/sys/ddb/db_command.c:448 #3 0xffffffff8031d2f0 in db_command_loop () at /usr/src/sys/ddb/db_command.c:501 #4 0xffffffff8031f429 in db_trap (type=Variable "type" is not available. ) at /usr/src/sys/ddb/db_main.c:229 #5 0xffffffff8089cc71 in kdb_trap (type=12, code=0, tf=0xffffff822b85fa00) at /usr/src/sys/kern/subr_kdb.c:620 #6 0xffffffff80b659cd in trap_fatal (frame=0xffffff822b85fa00, eva=Variable "eva" is not available. ) at /usr/src/sys/amd64/amd64/trap.c:814 #7 0xffffffff80b65d36 in trap_pfault (frame=0xffffff822b85fa00, usermode=0) at /usr/src/sys/amd64/amd64/trap.c:735 #8 0xffffffff80b661ff in trap (frame=0xffffff822b85fa00) at /usr/src/sys/amd64/amd64/trap.c:474 #9 0xffffffff80b50203 in calltrap () at /usr/src/sys/amd64/amd64/exception.S:228 #10 0xffffffff807657f1 in wi_info_intr (sc=0xfffffe0008037000) at /usr/src/sys/dev/wi/if_wi.c:1562 #11 0xffffffff807664df in wi_intr (arg=Variable "arg" is not available. ) at /usr/src/sys/dev/wi/if_wi.c:610 #12 0xffffffff80839324 in intr_event_execute_handlers (p=Variable "p" is not available. ) at /usr/src/sys/kern/kern_intr.c:1257 #13 0xffffffff8083aae4 in ithread_loop (arg=0xfffffe00058913a0) at /usr/src/sys/kern/kern_intr.c:1270 #14 0xffffffff808359bf in fork_exit ( callout=0xffffffff8083aa40 , arg=0xfffffe00058913a0, frame=0xffffff822b85fc50) at /usr/src/sys/kern/kern_fork.c:995 #15 0xffffffff80b5072e in fork_trampoline () at /usr/src/sys/amd64/amd64/exception.S:602 #16 0x0000000000000000 in ?? () #17 0x0000000000000000 in ?? () #18 0x0000000000000001 in ?? () #19 0x0000000000000000 in ?? () #20 0x0000000000000000 in ?? () #21 0x0000000000000000 in ?? () #22 0x0000000000000000 in ?? () #23 0x0000000000000000 in ?? () #24 0x0000000000000000 in ?? () #25 0x0000000000000000 in ?? () #26 0x0000000000000000 in ?? () #27 0x0000000000000000 in ?? () #28 0x0000000000000000 in ?? () #29 0x0000000000000000 in ?? () #30 0x0000000000000000 in ?? () #31 0x0000000000000000 in ?? () #32 0x0000000000000000 in ?? () #33 0x0000000000000000 in ?? () #34 0x0000000000000000 in ?? () #35 0x0000000000000000 in ?? () #36 0x0000000000000000 in ?? () #37 0x0000000000000000 in ?? () #38 0x0000000000000000 in ?? () #39 0x0000000000000000 in ?? () #40 0xffffffff811bfe80 in tdq_cpu () #41 0xfffffe00058888c0 in ?? () #42 0x0000000000000000 in ?? () #43 0xfffffe00058888c0 in ?? () #44 0xffffff822b85fb40 in ?? () #45 0xffffff822b85fae8 in ?? () #46 0xfffffe00051a2000 in ?? () #47 0xffffffff8088f8c0 in sched_switch (td=0xffffffff8083aa40, newtd=0xfffffe00058913a0, flags=Variable "flags" is not available. ) at /usr/src/sys/kern/sched_ule.c:1848 Previous frame inner to this frame (corrupt stack?) (kgdb) From owner-freebsd-wireless@FreeBSD.ORG Sat Feb 11 21:36:51 2012 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7CF911065672; Sat, 11 Feb 2012 21:36:51 +0000 (UTC) (envelope-from adrian.chadd@gmail.com) Received: from mail-pz0-f54.google.com (mail-pz0-f54.google.com [209.85.210.54]) by mx1.freebsd.org (Postfix) with ESMTP id 44DAF8FC08; Sat, 11 Feb 2012 21:36:51 +0000 (UTC) Received: by daec6 with SMTP id c6so4096092dae.13 for ; Sat, 11 Feb 2012 13:36:50 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:date:from:to:cc:reply-to:subject:in-reply-to:x-mailer :mime-version:content-type; bh=dEwoOvhOuj9gHtdN1QGPGB4toiu8SpalXrFvMdzoDwI=; b=VcD7nraOu4XHhwrdZi9Mj14PQdw1SL9Vt/n8KcW8d5wt7srjrwRkzEIQD5Iqohuh1+ WIofdNpjx/E/kBMySm4mKpg04QTrcBIKnj8XbSCEBmoFfLeao1I2BRxI4LFqoGgepgSk lIlndVAT8JcEjR8DE6JAF8vKCMLv+mTngIC2k= Received: by 10.68.74.170 with SMTP id u10mr30272540pbv.99.1328996210829; Sat, 11 Feb 2012 13:36:50 -0800 (PST) Received: from www.palm.com ([166.191.57.93]) by mx.google.com with ESMTPS id f1sm5350900pbq.15.2012.02.11.13.36.42 (version=SSLv3 cipher=OTHER); Sat, 11 Feb 2012 13:36:49 -0800 (PST) Message-ID: <4f36df71.2139440a.10ce.fffffb81@mx.google.com> Date: Sat, 11 Feb 2012 13:36:34 -0800 From: "Adrian Chadd" To: "Sevan / Venture37" , "Adrian Chadd" In-Reply-To: <4F36DAB0.2020803@gmail.com> X-Mailer: Palm webOS v1.0.1 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: "freebsd-wireless@freebsd.org" Subject: Re: wi driver X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Adrian Chadd List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 11 Feb 2012 21:36:51 -0000 Perfect. I'll dissect this shortly. Adrian Sent from my Palm Pre on AT&T On Feb 11, 2012 1:16 PM, Sevan / Venture37 <venture37@gmail.com> wrot= e:=20 On 11/02/2012 19:29, Adrian Chadd wrote: > I mean, do you get a kernel crash dump? Or a text dump in/var/crash/ > ? something that lists exactly where in your kernel it died. > > It died inside wi_intr() but I'd like to know -what- is going on insid= e there.. > > > Adrian I have a dump in /var/crash & in core.txt is the following at the begin= ning panic: GNU gdb 6.1.1 [FreeBSD] Copyright 2004 Free Software Foundation, Inc. GDB is free software, covered by the GNU General Public License, and you are welcome to change it and/or distribute copies of it under certain=20 conditions. Type "show copying" to see the conditions. There is absolutely no warranty for GDB. Type "show warranty" for details. This GDB was configured as "amd64-marcel-freebsd"... Unread portion of the kernel message buffer: interrupt enabled, resume, IOPL =3D 0 current process =3D 12 (irq16: cbb0 wi0+) Dumping 418 out of 8098 MB:..4%..12%..23%..31%..43%..54%..62%..73%..81%..92% Reading symbols from /boot/kernel/acpi_video.ko...Reading symbols from=20 /boot/kernel/acpi_video.ko.symbols...done. done. Loaded symbols for /boot/kernel/acpi_video.ko Reading symbols from /boot/kernel/acpi_ibm.ko...Reading symbols from=20 /boot/kernel/acpi_ibm.ko.symbols...done. done. Loaded symbols for /boot/kernel/acpi_ibm.ko Reading symbols from /boot/kernel/acpi_dock.ko...Reading symbols from=20 /boot/kernel/acpi_dock.ko.symbols...done. done. Loaded symbols for /boot/kernel/acpi_dock.ko Reading symbols from /boot/kernel/green_saver.ko...Reading symbols from=20 /boot/kernel/green_saver.ko.symbols...done. done. Loaded symbols for /boot/kernel/green_saver.ko #0 doadump (textdump=3D0) at /usr/src/sys/kern/kern_shutdown.c:260 260 if (textdump && textdump_pending) { (kgdb) #0 doadump (textdump=3D0) at /usr/src/sys/kern/kern_shutdown.c:260 #1 0xffffffff8031d770 in db_dump (dummy=3DVariable "dummy" is not availabl= e. ) at /usr/src/sys/ddb/db_command.c:537 #2 0xffffffff8031d0a1 in db_command (last_cmdp=3D0xffffffff8116a340,=20 cmd_table=3DVariable "cmd_table" is not available. ) at /usr/src/sys/ddb/db_command.c:448 #3 0xffffffff8031d2f0 in db_command_loop () at /usr/src/sys/ddb/db_command.c:501 #4 0xffffffff8031f429 in db_trap (type=3DVariable "type" is not available. ) at /usr/src/sys/ddb/db_main.c:229 #5 0xffffffff8089cc71 in kdb_trap (type=3D12, code=3D0, tf=3D0xffffff822b8= 5fa00) at /usr/src/sys/kern/subr_kdb.c:620 #6 0xffffffff80b659cd in trap_fatal (frame=3D0xffffff822b85fa00,=20 eva=3DVariable "eva" is not available. ) at /usr/src/sys/amd64/amd64/trap.c:814 #7 0xffffffff80b65d36 in trap_pfault (frame=3D0xffffff822b85fa00, usermode= =3D0) at /usr/src/sys/amd64/amd64/trap.c:735 #8 0xffffffff80b661ff in trap (frame=3D0xffffff822b85fa00) at /usr/src/sys/amd64/amd64/trap.c:474 #9 0xffffffff80b50203 in calltrap () at /usr/src/sys/amd64/amd64/exception.S:228 #10 0xffffffff807657f1 in wi_info_intr (sc=3D0xfffffe0008037000) at /usr/src/sys/dev/wi/if_wi.c:1562 #11 0xffffffff807664df in wi_intr (arg=3DVariable "arg" is not available. ) at /usr/src/sys/dev/wi/if_wi.c:610 #12 0xffffffff80839324 in intr_event_execute_handlers (p=3DVariable "p" is= not available. ) at /usr/src/sys/kern/kern_intr.c:1257 #13 0xffffffff8083aae4 in ithread_loop (arg=3D0xfffffe00058913a0) at /usr/src/sys/kern/kern_intr.c:1270 #14 0xffffffff808359bf in fork_exit ( callout=3D0xffffffff8083aa40 <ithread_loop>, arg=3D0xfffffe00058= 913a0, frame=3D0xffffff822b85fc50) at /usr/src/sys/kern/kern_fork.c:995 #15 0xffffffff80b5072e in fork_trampoline () at /usr/src/sys/amd64/amd64/exception.S:602 #16 0x0000000000000000 in ?? () #17 0x0000000000000000 in ?? () #18 0x0000000000000001 in ?? () #19 0x0000000000000000 in ?? () #20 0x0000000000000000 in ?? () #21 0x0000000000000000 in ?? () #22 0x0000000000000000 in ?? () #23 0x0000000000000000 in ?? () #24 0x0000000000000000 in ?? () #25 0x0000000000000000 in ?? () #26 0x0000000000000000 in ?? () #27 0x0000000000000000 in ?? () #28 0x0000000000000000 in ?? () #29 0x0000000000000000 in ?? () #30 0x0000000000000000 in ?? () #31 0x0000000000000000 in ?? () #32 0x0000000000000000 in ?? () #33 0x0000000000000000 in ?? () #34 0x0000000000000000 in ?? () #35 0x0000000000000000 in ?? () #36 0x0000000000000000 in ?? () #37 0x0000000000000000 in ?? () #38 0x0000000000000000 in ?? () #39 0x0000000000000000 in ?? () #40 0xffffffff811bfe80 in tdq_cpu () #41 0xfffffe00058888c0 in ?? () #42 0x0000000000000000 in ?? () #43 0xfffffe00058888c0 in ?? () #44 0xffffff822b85fb40 in ?? () #45 0xffffff822b85fae8 in ?? () #46 0xfffffe00051a2000 in ?? () #47 0xffffffff8088f8c0 in sched_switch (td=3D0xffffffff8083aa40, newtd=3D0xfffffe00058913a0, flags=3DVariable "flags" is not available. ) at /usr/src/sys/kern/sched_ule.c:1848 Previous frame inner to this frame (corrupt stack?) (kgdb) _______________________________________________ freebsd-wireless@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-wireless To unsubscribe, send any mail to "freebsd-wireless-unsubscribe@freebsd.org"