support different wifi bt chip auto compatible

[firefly-linux-kernel-4.4.55.git] / drivers / net / wireless / rockchip_wlan / combo_mt66xx / mt6620 / wlan / mgmt / assoc.c

/*
** $Id: //Department/DaVinci/BRANCHES/MT6620_WIFI_DRIVER_V2_3/mgmt/assoc.c#3 $
*/

/*! \file   "assoc.c"
    \brief  This file includes the association-related functions.

    This file includes the association-related functions.
*/



/*\
** $Log: assoc.c $
**
** 07 27 2012 yuche.tsai
** [ALPS00324337] [ALPS.JB][Hot-Spot] Driver update for Hot-Spot
** Fix wifi direct connection issue.
 *
 * 07 17 2012 yuche.tsai
 * NULL
 * Let netdev bring up.
 *
 * 07 17 2012 yuche.tsai
 * NULL
 * Compile no error before trial run.
 *
 * 06 13 2012 yuche.tsai
 * NULL
 * Update maintrunk driver.
 * Add support for driver compose assoc request frame.
 *
 * 06 08 2012 cp.wu
 * [WCXRP00001245] [MT6620 Wi-Fi][Driver][Firmware] NPS Software Development
 * add a pair of brace for compilation success.
 *
 * 06 04 2012 cp.wu
 * [WCXRP00001245] [MT6620 Wi-Fi][Driver][Firmware] NPS Software Development
 * discussed with WH, privacy bit in associate response is not necessary to be checked, and identified as association failure when mismatching with beacon/probe response
 *
 * 03 14 2012 wh.su
 * [WCXRP00001173] [MT6620 Wi-Fi][Driver] Adding the ICS Tethering WPA2-PSK supporting
 * Add code from 2.2
 *
 * 03 09 2012 terry.wu
 * NULL
 * Fix build error.
 *
 * 03 02 2012 terry.wu
 * NULL
 * Sync CFG80211 modification from branch 2,2.
 *
 * 01 16 2012 yuche.tsai
 * NULL
 * Update Driver for wifi driect gc join IE update issue.
 *
 * 11 10 2011 wh.su
 * [WCXRP00001078] [MT6620 Wi-Fi][Driver] Adding the mediatek log improment support : XLOG
 * change the debug module level.
 *
 * 10 25 2011 cm.chang
 * [WCXRP00001058] [All Wi-Fi][Driver] Fix sta_rec's phyTypeSet and OBSS scan in AP mode
 * Fix PhyTypeSet in STA_REC in AP mode
 *
 * 10 12 2011 wh.su
 * [WCXRP00001036] [MT6620 Wi-Fi][Driver][FW] Adding the 802.11w code for MFP
 * adding the 802.11w related function and define .
 *
 * 09 19 2011 yuche.tsai
 * NULL
 * Fix KE when enable hot-spot & any one client connect to this hot-spot.
 *
 * 09 14 2011 yuche.tsai
 * NULL
 * Add P2P IE in assoc response.
 *
 * 07 15 2011 terry.wu
 * [WCXRP00000855] [MT6620 Wi-Fi] [Driver] Workaround for Kingnet 710 AP wrong AID assignment
 * Update workaround for Kingnet AP.
 *
 * 07 15 2011 terry.wu
 * [WCXRP00000855] [MT6620 Wi-Fi] [Driver] Workaround for Kingnet 710 AP wrong AID assignment
 * Workaround for Kingnet 710 AP wrong AID assignment.
 *
 * 05 02 2011 eddie.chen
 * [WCXRP00000603] [MT6620 Wi-Fi][DRV] Fix Klocwork warning[WCXRP00000672] [MT6620 Wi-Fi][FW] Fix the PS event allocation
 * Check STA when rx assoc.
 *
 * 04 18 2011 terry.wu
 * [WCXRP00000660] [MT6620 Wi-Fi][Driver] Remove flag CFG_WIFI_DIRECT_MOVED
 * Remove flag CFG_WIFI_DIRECT_MOVED.
 *
 * 03 19 2011 yuche.tsai
 * [WCXRP00000581] [Volunteer Patch][MT6620][Driver] P2P IE in Assoc Req Issue
 * Make assoc req to append P2P IE if wifi direct is enabled.
 *
 * 03 17 2011 chinglan.wang
 * [WCXRP00000570] [MT6620 Wi-Fi][Driver] Add Wi-Fi Protected Setup v2.0 feature
 * .
 *
 * 03 16 2011 wh.su
 * [WCXRP00000530] [MT6620 Wi-Fi] [Driver] skip doing p2pRunEventAAAComplete after send assoc response Tx Done
 * enable the protected while at P2P start GO, and skip some security check .
 *
 * 03 14 2011 wh.su
 * [WCXRP00000545] [MT6620 Wi-Fi] [Driver] Fixed the p2p not enable, received a assoc rsp cause the rx assoc execute a null function
 * Modify file for avoid assert at BOW recieve a assoc response frame but no p2p fucntion.
 *
 * 03 08 2011 terry.wu
 * [WCXRP00000524] [MT6620 Wi-Fi][Driver] Fix p2p assoc request containing wrong IE format
 * Fix p2p assoc request containing wrong IE format.
 *
 * 03 02 2011 wh.su
 * [WCXRP00000506] [MT6620 Wi-Fi][Driver][FW] Add Security check related code
 * add code to let the beacon and probe response for Auto GO WSC .
 *
 * 02 15 2011 yuche.tsai
 * [WCXRP00000431] [Volunteer Patch][MT6620][Driver] Add MLME support for deauthentication under AP(Hot-Spot) mode.
 * Fix RX disassoc issue under Hot-spot mode.
 *
 * 02 09 2011 wh.su
 * [WCXRP00000432] [MT6620 Wi-Fi][Driver] Add STA privacy check at hotspot mode
 * adding the code for check STA privacy bit at AP mode, .
 *
 * 02 08 2011 eddie.chen
 * [WCXRP00000426] [MT6620 Wi-Fi][FW/Driver] Add STA aging timeout and defualtHwRatein AP mode
 * Add event STA agint timeout
 *
 * 01 25 2011 yuche.tsai
 * [WCXRP00000388] [Volunteer Patch][MT6620][Driver/Fw] change Station Type in station record.
 * Change Station Type in Station Record, Modify MACRO definition for getting station type & network type index & Role.
 *
 * 01 12 2011 yuche.tsai
 * [WCXRP00000353] [Volunteer Patch][MT6620][Driver] Desired Non-HT Rate Set update when STA record is created under AP Mode.
 * Update Phy Type Set. When legacy client is connected, it can use 11b rate,
 * but if the P2P device is connected, 11b rate is not allowed.
 *
 * 01 11 2011 yuche.tsai
 * [WCXRP00000353] [Volunteer Patch][MT6620][Driver] Desired Non-HT Rate Set update when STA record is created under AP Mode.
 * Update Desired Non-HT Rate Set.
 *
 * 12 30 2010 eddie.chen
 * [WCXRP00000322] Add WMM IE in beacon,

Add per station flow control when STA is in PS


 * Recover the code that was coverwritted..
 *
 * 12 29 2010 eddie.chen
 * [WCXRP00000322] Add WMM IE in beacon,
Add per station flow control when STA is in PS

 * 1) PS flow control event
 *
 * 2) WMM IE in beacon, assoc resp, probe resp
 *
 * 11 04 2010 wh.su
 * [WCXRP00000164] [MT6620 Wi-Fi][Driver] Support the p2p random SSID
 * adding the p2p random ssid support.
 *
 * 10 18 2010 cp.wu
 * [WCXRP00000052] [MT6620 Wi-Fi][Driver] Eliminate Linux Compile Warning
 * use definition macro to replace hard-coded constant
 *
 * 09 28 2010 wh.su
 * NULL
 * [WCXRP00000069][MT6620 Wi-Fi][Driver] Fix some code for phase 1 P2P Demo.
 *
 * 09 27 2010 chinghwa.yu
 * [WCXRP00000063] Update BCM CoEx design and settings[WCXRP00000065] Update BoW design and settings
 * Update BCM/BoW design and settings.
 *
 * 09 16 2010 cm.chang
 * NULL
 * Change conditional compiling options for BOW
 *
 * 09 03 2010 kevin.huang
 * NULL
 * Refine #include sequence and solve recursive/nested #include issue
 *
 * 09 01 2010 wh.su
 * NULL
 * adding the wapi support for integration test.
 *
 * 08 30 2010 cp.wu
 * NULL
 * eliminate klockwork errors
 *
 * 08 16 2010 yuche.tsai
 * NULL
 * Add SSID IE in assoc req frame which is sent by P2P GC.
 *
 * 08 16 2010 kevin.huang
 * NULL
 * Refine AAA functions
 *
 * 08 03 2010 cp.wu
 * NULL
 * surpress compilation warning.
 *
 * 07 20 2010 wh.su
 *
 * adding the wapi code.
 *
 * 07 09 2010 yarco.yang
 *
 * [MT6620 and MT5931] SW Migration: Add ADDBA support
 *
 * 07 08 2010 cp.wu
 *
 * [WPD00003833] [MT6620 and MT5931] Driver migration - move to new repository.
 *
 * 07 08 2010 cp.wu
 * [WPD00003833][MT6620 and MT5931] Driver migration
 * take use of RLM module for parsing/generating HT IEs for 11n capability
 *
 * 07 01 2010 cp.wu
 * [WPD00003833][MT6620 and MT5931] Driver migration
 * comment out RSN IE generation by CFG_RSN_MIGRATION compilation flag.
 *
 * 06 28 2010 cp.wu
 * [WPD00003833][MT6620 and MT5931] Driver migration
 * send MMPDU in basic rate.
 *
 * 06 21 2010 cp.wu
 * [WPD00003833][MT6620 and MT5931] Driver migration
 * add scan_fsm into building.
 *
 * 06 21 2010 cp.wu
 * [WPD00003833][MT6620 and MT5931] Driver migration
 * specify correct value for management frames.
 *
 * 06 18 2010 cm.chang
 * [WPD00003841][LITE Driver] Migrate RLM/CNM to host driver
 * Provide cnmMgtPktAlloc() and alloc/free function of msg/buf
 *
 * 06 18 2010 wh.su
 * [WPD00003840][MT6620 5931] Security migration
 * migration from MT6620 firmware.
 *
 * 06 15 2010 cp.wu
 * [WPD00003833][MT6620 and MT5931] Driver migration
 * revised.
 *
 * 06 14 2010 cp.wu
 * [WPD00003833][MT6620 and MT5931] Driver migration
 * add management dispatching function table.
 *
 * 06 11 2010 cp.wu
 * [WPD00003833][MT6620 and MT5931] Driver migration
 * auth.c is migrated.
 *
 * 06 11 2010 cp.wu
 * [WPD00003833][MT6620 and MT5931] Driver migration
 * 1) migrate assoc.c.
 * 2) add ucTxSeqNum for tracking frames which needs TX-DONE awareness
 * 3) add configuration options for CNM_MEM and RSN modules
 * 4) add data path for management frames
 * 5) eliminate rPacketInfo of MSDU_INFO_T
 *
 * 05 24 2010 kevin.huang
 * [BORA00000794][WIFISYS][New Feature]Power Management Support
 * Update assocProcessRxAssocReqFrame() to avoid redundant SSID IE {0,0} for IOT.
 *
 * 05 14 2010 kevin.huang
 * [BORA00000794][WIFISYS][New Feature]Power Management Support
 * Fix compile warning - macro > 10 line, initial value of an array
 *
 * 04 24 2010 cm.chang
 * [BORA00000018]Integrate WIFI part into BORA for the 1st time
 * g_aprBssInfo[] depends on CFG_SUPPORT_P2P and CFG_SUPPORT_BOW
 *
 * 04 22 2010 cm.chang
 * [BORA00000018]Integrate WIFI part into BORA for the 1st time
 * First draft code to support protection in AP mode
 *
 * 04 19 2010 kevin.huang
 * [BORA00000714][WIFISYS][New Feature]Beacon Timeout Support
 * Add Beacon Timeout Support
 *  *  *  *  *  *  *  *  and will send Null frame to diagnose connection
 *
 * 04 16 2010 wh.su
 * [BORA00000680][MT6620] Support the statistic for Microsoft os query
 * adding the wpa-none for ibss beacon.
 *
 * 03 25 2010 cm.chang
 * [BORA00000018]Integrate WIFI part into BORA for the 1st time
 * Remove compiling warning
 *
 * 03 24 2010 cm.chang
 * [BORA00000018]Integrate WIFI part into BORA for the 1st time
 * Not carry  HT cap when being associated with b/g only AP
 *
 * 02 04 2010 kevin.huang
 * [BORA00000603][WIFISYS] [New Feature] AAA Module Support
 * Add AAA Module Support, Revise Net Type to Net Type Index for array lookup
 *
 * 01 28 2010 wh.su
 * [BORA00000476][Wi-Fi][firmware] Add the security module initialize code
 * fixed the compiling warning.u1rwduu`wvpghlqg|rm+vp
 *
 * 01 27 2010 wh.su
 * [BORA00000476][Wi-Fi][firmware] Add the security module initialize code
 * add and fixed some security function.
 *
 * 01 11 2010 kevin.huang
 * [BORA00000018]Integrate WIFI part into BORA for the 1st time
 * Add Deauth and Disassoc Handler
 *
 * 01 07 2010 kevin.huang
 * [BORA00000018]Integrate WIFI part into BORA for the 1st time
 * [BORA00000018] Integrate WIFI part into BORA for the 1st time
 * Update Assoc ID for PS
 *
 * 01 04 2010 tehuang.liu
 * [BORA00000018]Integrate WIFI part into BORA for the 1st time
 * For working out the first connection Chariot-verified version
 *
 * 12 18 2009 cm.chang
 * [BORA00000018]Integrate WIFI part into BORA for the 1st time
 * .
 *
 * Dec 12 2009 mtk01104
 * [BORA00000018] Integrate WIFI part into BORA for the 1st time
 * Use new constant definition ELEM_MAX_LEN_EXT_CAP
 *
 * Dec 9 2009 mtk01104
 * [BORA00000018] Integrate WIFI part into BORA for the 1st time
 * Modify assoc req IE talbe for HT cap IE
 *
 * Dec 7 2009 mtk01461
 * [BORA00000018] Integrate WIFI part into BORA for the 1st time
 * update the assocComposeReAssocReqFrameHeader() and fix the u2EstimatedFrameLen in assocSendReAssocReqFrame()
 *
 * Dec 7 2009 mtk01088
 * [BORA00000476] [Wi-Fi][firmware] Add the security module initialize code
 * remove some space line
 *
 * Dec 7 2009 mtk01088
 * [BORA00000476] [Wi-Fi][firmware] Add the security module initialize code
 * adding the sending disassoc frame function
 *
 * Dec 4 2009 mtk01088
 * [BORA00000476] [Wi-Fi][firmware] Add the security module initialize code
 * adding the txassocReq IE table, adding for WPA/RSN
 *
 * Dec 3 2009 mtk01461
 * [BORA00000018] Integrate WIFI part into BORA for the 1st time
 * Fix eNetType not init in send AssocReq function
 *
 * Dec 3 2009 mtk01461
 * [BORA00000018] Integrate WIFI part into BORA for the 1st time
 * Integrate the send Assoc with TXM
 *
 * Dec 1 2009 mtk01088
 * [BORA00000476] [Wi-Fi][firmware] Add the security module initialize code
 * adding the code to indicate the assoc request and assoc response (now disable)
 *
 * Nov 24 2009 mtk01461
 * [BORA00000018] Integrate WIFI part into BORA for the 1st time
 * Remove unused variables
 *
 * Nov 23 2009 mtk01461
 * [BORA00000018] Integrate WIFI part into BORA for the 1st time
 *
*/

/*******************************************************************************
*                         C O M P I L E R   F L A G S
********************************************************************************
*/

/*******************************************************************************
*                    E X T E R N A L   R E F E R E N C E S
********************************************************************************
*/
#include "precomp.h"

/*******************************************************************************
*                              C O N S T A N T S
********************************************************************************
*/

/*******************************************************************************
*                             D A T A   T Y P E S
********************************************************************************
*/

/*******************************************************************************
*                            P U B L I C   D A T A
********************************************************************************
*/
APPEND_VAR_IE_ENTRY_T txAssocReqIETable[] = {
    { (ELEM_HDR_LEN + ELEM_MAX_LEN_HT_CAP),    NULL,     rlmReqGenerateHtCapIE },/* 45 */
#if CFG_SUPPORT_WPS2
        { (ELEM_HDR_LEN + ELEM_MAX_LEN_WSC),   NULL,      rsnGenerateWSCIE },     /* 221 */
#endif
#if CFG_SUPPORT_WAPI
    { (ELEM_HDR_LEN + ELEM_MAX_LEN_WAPI),   NULL,    wapiGenerateWAPIIE },   /* 68 */
#endif
#if CFG_RSN_MIGRATION
    { (ELEM_HDR_LEN + ELEM_MAX_LEN_WPA),   NULL,        rsnGenerateWPAIE },     /* 221 */
#endif
    { (ELEM_HDR_LEN + ELEM_MAX_LEN_EXT_CAP),   NULL,    rlmReqGenerateExtCapIE },  /* 127 */
    { (ELEM_HDR_LEN + ELEM_MAX_LEN_WMM_INFO),   NULL,   mqmGenerateWmmInfoIE },  /* 221 */
#if CFG_RSN_MIGRATION
    { (ELEM_HDR_LEN + ELEM_MAX_LEN_RSN),   NULL,        rsnGenerateRSNIE },    /* 48 */
#endif
};

#if CFG_SUPPORT_AAA
VERIFY_IE_ENTRY_T rxAssocReqIETable[] = {
    { ELEM_ID_RESERVED,                         NULL                    } /* 255 */
};


APPEND_VAR_IE_ENTRY_T txAssocRespIETable[] = {
    { (ELEM_HDR_LEN + ELEM_MAX_LEN_ERP),     NULL,     rlmRspGenerateErpIE   },        /* 42 */
    { (ELEM_HDR_LEN + ELEM_MAX_LEN_HT_CAP),      NULL,     rlmRspGenerateHtCapIE   },      /* 45 */
    { (ELEM_HDR_LEN + ELEM_MAX_LEN_HT_OP),     NULL,     rlmRspGenerateHtOpIE   },       /* 61 */
#if CFG_ENABLE_WIFI_DIRECT
    { (ELEM_HDR_LEN + ELEM_MAX_LEN_OBSS_SCAN),  NULL,   rlmRspGenerateObssScanIE   },   /* 74 */
    { (0),         p2pFuncCalculateP2p_IELenForAssocRsp,      p2pFuncGenerateP2p_IEForAssocRsp }, /* 221 */
#if CFG_SUPPORT_WFD
    { (0),         wfdFuncCalculateWfdIELenForAssocRsp,     wfdFuncGenerateWfdIEForAssocRsp }, /* 221 */
#endif
#endif
    { (ELEM_HDR_LEN + ELEM_MAX_LEN_EXT_CAP),     NULL,     rlmRspGenerateExtCapIE   },      /* 127 */
    { (ELEM_HDR_LEN + ELEM_MAX_LEN_WMM_PARAM),     NULL,    mqmGenerateWmmParamIE },         /* 221 */

    { (0),         p2pFuncCalculateWSC_IELenForAssocRsp,      p2pFuncGenerateWSC_IEForAssocRsp }  /* 221 */

};
#endif

/*******************************************************************************
*                           P R I V A T E   D A T A
********************************************************************************
*/

/*******************************************************************************
*                                 M A C R O S
********************************************************************************
*/

/*******************************************************************************
*                   F U N C T I O N   D E C L A R A T I O N S
********************************************************************************
*/

/*******************************************************************************
*                              F U N C T I O N S
********************************************************************************
*/
/*----------------------------------------------------------------------------*/
/*!
* @brief This function is used to compose the Capability Info Field.
*
* @param[in] prStaRec               Pointer to the STA_RECORD_T
*
* @retval Capability Info Field
*/
/*----------------------------------------------------------------------------*/
__KAL_INLINE__ UINT_16
assocBuildCapabilityInfo (
    IN P_ADAPTER_T prAdapter,
    IN P_STA_RECORD_T prStaRec
    )
{
    UINT_32 u4NonHTPhyType;
    UINT_16 u2CapInfo;


    ASSERT(prStaRec);


    /* Set up our requested capabilities. */
    u2CapInfo = CAP_INFO_ESS;
    u2CapInfo |= CAP_CF_STA_NOT_POLLABLE;

    if (prStaRec->u2CapInfo & CAP_INFO_PRIVACY) {
        u2CapInfo |= CAP_INFO_PRIVACY;
    }


    /* 7.3.1.4 */
    if (prStaRec->fgHasBasicPhyType) {
        u4NonHTPhyType = prStaRec->ucNonHTBasicPhyType;

        if ( (rNonHTPhyAttributes[u4NonHTPhyType].fgIsShortPreambleOptionImplemented) &&
            ( (prAdapter->rWifiVar.ePreambleType == PREAMBLE_TYPE_SHORT) || /* Short Preamble Option Enable is TRUE */
             ((prAdapter->rWifiVar.ePreambleType == PREAMBLE_TYPE_AUTO) &&
              (prStaRec->u2CapInfo & CAP_INFO_SHORT_PREAMBLE)) ) ) {

            /* Case I: Implemented == TRUE and Short Preamble Option Enable == TRUE.
             * Case II: Implemented == TRUE and Short Preamble == AUTO (depends on
             *          BSS_DESC_T's capability)
             */
            u2CapInfo |= CAP_INFO_SHORT_PREAMBLE;
        }

#if CFG_SUPPORT_SPEC_MGMT   /*Add for DFS support*/
        /* Support 802.11h */
        if(prAdapter->fgEnable5GBand == TRUE) {
            u2CapInfo |= CAP_INFO_SPEC_MGT;
        }
#endif

        if (rNonHTPhyAttributes[u4NonHTPhyType].fgIsShortSlotTimeOptionImplemented &&
            prAdapter->rWifiVar.fgIsShortSlotTimeOptionEnable) {
            u2CapInfo |= CAP_INFO_SHORT_SLOT_TIME;
        }
    }

    DBGLOG(SAA, LOUD, ("ASSOC REQ: Compose Capability = 0x%04x for Target BSS ["MACSTR"].\n",
        u2CapInfo, MAC2STR(prStaRec->aucMacAddr)));


    return u2CapInfo;

} /* end of assocBuildCapabilityInfo() */


/*----------------------------------------------------------------------------*/
/*!
* @brief This function is used to compose Common Information Elements for Association
*        Request Frame.
*
* @param[in] prMsduInfo     Pointer to the composed MSDU_INFO_T.
*
* @return (none)
*/
/*----------------------------------------------------------------------------*/
__KAL_INLINE__ VOID
assocBuildReAssocReqFrameCommonIEs (
    IN P_ADAPTER_T prAdapter,
    IN P_MSDU_INFO_T prMsduInfo
    )
{
    P_CONNECTION_SETTINGS_T prConnSettings;
    P_STA_RECORD_T prStaRec;
    PUINT_8 pucBuffer;
    UINT_16 u2SupportedRateSet;
    UINT_8 aucAllSupportedRates[RATE_NUM] = {0};
    UINT_8 ucAllSupportedRatesLen;
    UINT_8 ucSupRatesLen;
    UINT_8 ucExtSupRatesLen;

    prConnSettings = &(prAdapter->rWifiVar.rConnSettings);
    ASSERT(prMsduInfo);
    ASSERT(prMsduInfo->eSrc == TX_PACKET_MGMT);

    prStaRec = cnmGetStaRecByIndex(prAdapter, prMsduInfo->ucStaRecIndex);
    ASSERT(prStaRec);

    if(!prStaRec) {
        return;
    }

    pucBuffer = (PUINT_8)((UINT_32)prMsduInfo->prPacket +
                          (UINT_32)prMsduInfo->u2FrameLength);
    ASSERT(pucBuffer);

    if (IS_STA_IN_AIS(prStaRec)) {

        /* Fill the SSID element. */
        SSID_IE(pucBuffer)->ucId = ELEM_ID_SSID;

        /* NOTE(Kevin): We copy the SSID from CONNECTION_SETTINGS for the case of
         * Passive Scan and the target BSS didn't broadcast SSID on its Beacon Frame.
         */

        COPY_SSID(SSID_IE(pucBuffer)->aucSSID,
                  SSID_IE(pucBuffer)->ucLength,
                  prConnSettings->aucSSID,
                  prConnSettings->ucSSIDLen);

        prMsduInfo->u2FrameLength += IE_SIZE(pucBuffer);
        pucBuffer += IE_SIZE(pucBuffer);

    }
#if CFG_ENABLE_WIFI_DIRECT
    else if((prAdapter->fgIsP2PRegistered) &&
        (IS_STA_IN_P2P(prStaRec))) {
        pucBuffer = p2pBuildReAssocReqFrameCommonIEs(prAdapter, prMsduInfo, pucBuffer);
    }
#endif
#if CFG_ENABLE_BT_OVER_WIFI
    else if (IS_STA_IN_BOW(prStaRec)) {

        SSID_IE(pucBuffer)->ucId = ELEM_ID_SSID;

        /* NOTE(Kevin): We copy the SSID from CONNECTION_SETTINGS for the case of
         * Passive Scan and the target BSS didn't broadcast SSID on its Beacon Frame.
         */

        COPY_SSID(SSID_IE(pucBuffer)->aucSSID,
                  SSID_IE(pucBuffer)->ucLength,
                  prConnSettings->aucSSID,
                  prConnSettings->ucSSIDLen);

        prMsduInfo->u2FrameLength += IE_SIZE(pucBuffer);
        pucBuffer += IE_SIZE(pucBuffer);
    }
#endif

    else {
        /* TODO(Kevin): For other network */
    }

    /* NOTE(Kevin 2008/12/19): 16.3.6.3 MLME-ASSOCIATE.indication -
     * SupportedRates - The set of data rates that are supported by the STA
     * that is requesting association.
     * Original(Portable Driver): Only send the Rates that we'll support.
     * New: Send the Phy Rates if the result of following & operation == NULL.
     */
    //rateGetDataRatesFromRateSet((prBssDesc->u2OperationalRateSet &
    //                             rPhyAttributes[prBssDesc->ePhyType].u2SupportedRateSet),

    if (prStaRec->fgHasBasicPhyType) {
        UINT_32 u4NonHTPhyType;


        u4NonHTPhyType = prStaRec->ucNonHTBasicPhyType;

        u2SupportedRateSet = (prStaRec->u2OperationalRateSet &
                              rNonHTPhyAttributes[u4NonHTPhyType].u2SupportedRateSet);

        ASSERT(u2SupportedRateSet);

        if (!u2SupportedRateSet) {
            u2SupportedRateSet = rNonHTPhyAttributes[u4NonHTPhyType].u2SupportedRateSet;
        }

        /* TODO(Kevin): For P2P, we shouldn't send support rate set which contains 11b rate */

        rateGetDataRatesFromRateSet(u2SupportedRateSet,
                                    0,
                                    aucAllSupportedRates,
                                    &ucAllSupportedRatesLen);

        ucSupRatesLen = ((ucAllSupportedRatesLen > ELEM_MAX_LEN_SUP_RATES) ?
                         ELEM_MAX_LEN_SUP_RATES : ucAllSupportedRatesLen);

        ucExtSupRatesLen = ucAllSupportedRatesLen - ucSupRatesLen;


        /* Fill the Supported Rates element. */
        if (ucSupRatesLen) {
            SUP_RATES_IE(pucBuffer)->ucId = ELEM_ID_SUP_RATES;
            SUP_RATES_IE(pucBuffer)->ucLength = ucSupRatesLen;
            kalMemCopy(SUP_RATES_IE(pucBuffer)->aucSupportedRates,
                       aucAllSupportedRates,
                       ucSupRatesLen);

            prMsduInfo->u2FrameLength += IE_SIZE(pucBuffer);
            pucBuffer += IE_SIZE(pucBuffer);
        }


        /* Fill the Extended Supported Rates element. */
        if (ucExtSupRatesLen) {

            EXT_SUP_RATES_IE(pucBuffer)->ucId = ELEM_ID_EXTENDED_SUP_RATES;
            EXT_SUP_RATES_IE(pucBuffer)->ucLength = ucExtSupRatesLen;

            kalMemCopy(EXT_SUP_RATES_IE(pucBuffer)->aucExtSupportedRates,
                       &aucAllSupportedRates[ucSupRatesLen],
                       ucExtSupRatesLen);

            prMsduInfo->u2FrameLength += IE_SIZE(pucBuffer);
            pucBuffer += IE_SIZE(pucBuffer);
        }

        /* 7.3.2.19 Supported Channels element*/
#if CFG_SUPPORT_DFS // Add for DFS support
        if(prAdapter->fgEnable5GBand == TRUE) {
            SUPPORTED_CHANNELS_IE(pucBuffer)->ucId = ELEM_ID_SUP_CHS;
            SUPPORTED_CHANNELS_IE(pucBuffer)->ucLength = 8;

            SUPPORTED_CHANNELS_IE(pucBuffer)->ucChannelNum[0] = 36;
            SUPPORTED_CHANNELS_IE(pucBuffer)->ucChannelNum[1] = 4;
            SUPPORTED_CHANNELS_IE(pucBuffer)->ucChannelNum[2] = 52;
            SUPPORTED_CHANNELS_IE(pucBuffer)->ucChannelNum[3] = 4;
// Not China --- Start
            //SUPPORTED_CHANNELS_IE(pucBuffer)->ucChannelNum[4] = 100;
            //SUPPORTED_CHANNELS_IE(pucBuffer)->ucChannelNum[5] = 11;
// Not China --- End
            SUPPORTED_CHANNELS_IE(pucBuffer)->ucChannelNum[4] = 149;
            SUPPORTED_CHANNELS_IE(pucBuffer)->ucChannelNum[5] = 4;
            SUPPORTED_CHANNELS_IE(pucBuffer)->ucChannelNum[6] = 165;
            SUPPORTED_CHANNELS_IE(pucBuffer)->ucChannelNum[7] = 1;

            prMsduInfo->u2FrameLength += IE_SIZE(pucBuffer);
            pucBuffer += IE_SIZE(pucBuffer);
        }
#endif
    }

    return;
} /* end of assocBuildReAssocReqFrameCommonIEs() */


/*----------------------------------------------------------------------------*/
/*!
* @brief This function will compose the (Re)Association Request frame header and
*        its fixed fields
*
* @param[in] prStaRec               Pointer to the STA_RECORD_T
* @param[in] pucBuffer              Pointer to the frame buffer.
* @param[in] aucMACAddress          Given Our MAC Address.
* @param[in out] pu2PayloadLen      Return the length of the composed fixed fields
*
* @return (none)
*/
/*----------------------------------------------------------------------------*/
__KAL_INLINE__ VOID
assocComposeReAssocReqFrameHeaderAndFF (
    IN P_ADAPTER_T prAdapter,
    IN P_STA_RECORD_T prStaRec,
    IN PUINT_8 pucBuffer,
    IN UINT_8 aucMACAddress[],
    IN OUT PUINT_16 pu2PayloadLen
    )
{
    P_WLAN_ASSOC_REQ_FRAME_T prAssocFrame;
    BOOLEAN fgIsReAssoc;

    UINT_16 u2FrameCtrl;
    UINT_16 u2CapInfo;
    UINT_16 u2ListenInterval;


    ASSERT(prStaRec);
    ASSERT(pucBuffer);
    ASSERT(aucMACAddress);
    ASSERT(pu2PayloadLen);

    prAssocFrame = (P_WLAN_ASSOC_REQ_FRAME_T)pucBuffer;
    fgIsReAssoc = prStaRec->fgIsReAssoc;

    //4 <1> Compose the frame header of the (Re)Association Request  frame.
    /* Fill the Frame Control field. */
    if (fgIsReAssoc) {
        u2FrameCtrl = MAC_FRAME_REASSOC_REQ;
    }
    else {
        u2FrameCtrl = MAC_FRAME_ASSOC_REQ;
    }
    WLAN_SET_FIELD_16(&prAssocFrame->u2FrameCtrl, u2FrameCtrl);

    /* Fill the DA field with Target BSSID. */
    COPY_MAC_ADDR(prAssocFrame->aucDestAddr, prStaRec->aucMacAddr);

    /* Fill the SA field with our MAC Address. */
    COPY_MAC_ADDR(prAssocFrame->aucSrcAddr, aucMACAddress);

    /* Fill the BSSID field with Target BSSID. */
    COPY_MAC_ADDR(prAssocFrame->aucBSSID, prStaRec->aucMacAddr);

    /* Clear the SEQ/FRAG_NO field(HW won't overide the FRAG_NO, so we need to clear it). */
    prAssocFrame->u2SeqCtrl = 0;


    //4 <2> Compose the frame body's common fixed field part of the (Re)Association Request  frame.
    u2CapInfo = assocBuildCapabilityInfo(prAdapter, prStaRec);

    /* Fill the Capability Information field. */
    WLAN_SET_FIELD_16(&prAssocFrame->u2CapInfo, u2CapInfo);


    /* Calculate the listen interval for the maximum power mode. Currently, we
       set it to the value 2 times DTIM period. */
    if (prStaRec->ucDTIMPeriod) {
        u2ListenInterval = prStaRec->ucDTIMPeriod * DEFAULT_LISTEN_INTERVAL_BY_DTIM_PERIOD;
    }
    else {
        DBGLOG(SAA, TRACE, ("Use default listen interval\n"));
        u2ListenInterval = DEFAULT_LISTEN_INTERVAL;
    }
    prStaRec->u2ListenInterval = u2ListenInterval;

    /* Fill the Listen Interval field. */
    WLAN_SET_FIELD_16(&prAssocFrame->u2ListenInterval, u2ListenInterval);


    //4 <3> Compose the Current AP Address field for ReAssociation Request  frame.
    /* Fill the Current AP Address field. */
    if (prStaRec->fgIsReAssoc) {
        if (IS_STA_IN_AIS(prStaRec)) {

            P_AIS_BSS_INFO_T prAisBssInfo = &(prAdapter->rWifiVar.arBssInfo[NETWORK_TYPE_AIS_INDEX]);
            P_WLAN_REASSOC_REQ_FRAME_T prReAssocFrame =
                (P_WLAN_REASSOC_REQ_FRAME_T)prAssocFrame;

            COPY_MAC_ADDR(prReAssocFrame->aucCurrentAPAddr, prAisBssInfo->aucBSSID);
        }
        else {
            ASSERT(0); /* We don't support ReAssociation for other network */
        }

        *pu2PayloadLen = (CAP_INFO_FIELD_LEN +
                         LISTEN_INTERVAL_FIELD_LEN +
                         CURR_AP_ADDR_FIELD_LEN);
    }
    else {
        *pu2PayloadLen = (CAP_INFO_FIELD_LEN +
                         LISTEN_INTERVAL_FIELD_LEN);
    }

    return;
} /* end of assocComposeReAssocReqFrame() */


/*----------------------------------------------------------------------------*/
/*!
* @brief This function will send the (Re)Association Request frame
*
* @param[in] prStaRec           Pointer to the STA_RECORD_T
*
* @retval WLAN_STATUS_RESOURCES No available resource for frame composing.
* @retval WLAN_STATUS_SUCCESS   Successfully send frame to TX Module
*/
/*----------------------------------------------------------------------------*/
WLAN_STATUS
assocSendReAssocReqFrame (
    IN P_ADAPTER_T prAdapter,
    IN P_STA_RECORD_T prStaRec
    )
{
    P_MSDU_INFO_T prMsduInfo;
    P_BSS_INFO_T prBssInfo;

    UINT_16 u2PayloadLen;
    UINT_16 u2EstimatedFrameLen;
    UINT_16 u2EstimatedExtraIELen;
    BOOLEAN fgIsReAssoc;
    UINT_32 i;


    ASSERT(prStaRec);

    //4 <1> Allocate a PKT_INFO_T for Authentication Frame
    fgIsReAssoc = prStaRec->fgIsReAssoc;

    /* Init with MGMT Header Length + Length of Fixed Fields + Common IE Length */
    if (fgIsReAssoc) {
        u2EstimatedFrameLen = MAC_TX_RESERVED_FIELD + \
                              WLAN_MAC_MGMT_HEADER_LEN + \
                              CAP_INFO_FIELD_LEN + \
                              LISTEN_INTERVAL_FIELD_LEN + \
                              CURR_AP_ADDR_FIELD_LEN + \
                              (ELEM_HDR_LEN + ELEM_MAX_LEN_SSID) + \
                              (ELEM_HDR_LEN + ELEM_MAX_LEN_SUP_RATES) + \
                              (ELEM_HDR_LEN + (RATE_NUM - ELEM_MAX_LEN_SUP_RATES));
    }
    else {
        u2EstimatedFrameLen = MAC_TX_RESERVED_FIELD + \
                              WLAN_MAC_MGMT_HEADER_LEN + \
                              CAP_INFO_FIELD_LEN + \
                              LISTEN_INTERVAL_FIELD_LEN + \
                              (ELEM_HDR_LEN + ELEM_MAX_LEN_SSID) + \
                              (ELEM_HDR_LEN + ELEM_MAX_LEN_SUP_RATES) + \
                              (ELEM_HDR_LEN + (RATE_NUM - ELEM_MAX_LEN_SUP_RATES));
    }

    /* + Extra IE Length */
    u2EstimatedExtraIELen = 0;

#if CFG_ENABLE_WIFI_DIRECT_CFG_80211 && CFG_ENABLE_WIFI_DIRECT
    if (prStaRec->ucNetTypeIndex == NETWORK_TYPE_P2P_INDEX) {
        if ((prAdapter->fgIsP2PRegistered)) {
            u2EstimatedExtraIELen = p2pCalculate_IEForAssocReq(prAdapter,
                                                                    prStaRec->ucNetTypeIndex,
                                                                    prStaRec);
        }
        else {
            DBGLOG(P2P, TRACE, ("Function Linker Lost.\n"));
            ASSERT(FALSE);
        }
    }
    else {
        for (i = 0; i < sizeof(txAssocReqIETable)/sizeof(APPEND_VAR_IE_ENTRY_T); i++) {
            if (txAssocReqIETable[i].u2EstimatedFixedIELen != 0) {
                u2EstimatedExtraIELen += txAssocReqIETable[i].u2EstimatedFixedIELen;
            }
            else {
                u2EstimatedExtraIELen += (UINT_16)txAssocReqIETable[i].pfnCalculateVariableIELen(prAdapter,
                                                                                prStaRec->ucNetTypeIndex,
                                                                                prStaRec);
            }
        }
    }
#else
    for (i = 0; i < sizeof(txAssocReqIETable)/sizeof(APPEND_VAR_IE_ENTRY_T); i++) {
        if (txAssocReqIETable[i].u2EstimatedFixedIELen != 0) {
            u2EstimatedExtraIELen += txAssocReqIETable[i].u2EstimatedFixedIELen;
        }
        else {
            u2EstimatedExtraIELen += (UINT_16)txAssocReqIETable[i].pfnCalculateVariableIELen(prAdapter,
                                                                            prStaRec->ucNetTypeIndex,
                                                                            prStaRec);
        }
    }
#endif

    u2EstimatedFrameLen += u2EstimatedExtraIELen;

    /* Allocate a MSDU_INFO_T */
    if ( (prMsduInfo = cnmMgtPktAlloc(prAdapter, u2EstimatedFrameLen)) == NULL) {
        DBGLOG(SAA, WARN, ("No PKT_INFO_T for sending (Re)Assoc Request.\n"));
        return WLAN_STATUS_RESOURCES;
    }

    //4 <2> Compose (Re)Association Request frame header and fixed fields in MSDU_INfO_T.
    ASSERT(prStaRec->ucNetTypeIndex < NETWORK_TYPE_INDEX_NUM);
    prBssInfo = &(prAdapter->rWifiVar.arBssInfo[prStaRec->ucNetTypeIndex]);


    /* Compose Header and Fixed Field */
    assocComposeReAssocReqFrameHeaderAndFF(prAdapter,
            prStaRec,
            (PUINT_8)((UINT_32)(prMsduInfo->prPacket) + MAC_TX_RESERVED_FIELD),
            prBssInfo->aucOwnMacAddr,
            &u2PayloadLen);

    //4 <3> Update information of MSDU_INFO_T
    prMsduInfo->eSrc = TX_PACKET_MGMT;
    prMsduInfo->ucPacketType = HIF_TX_PACKET_TYPE_MGMT;
    prMsduInfo->ucStaRecIndex = prStaRec->ucIndex;
    prMsduInfo->ucNetworkType = prStaRec->ucNetTypeIndex;
    prMsduInfo->ucMacHeaderLength = WLAN_MAC_MGMT_HEADER_LEN;
    prMsduInfo->fgIs802_1x = FALSE;
    prMsduInfo->fgIs802_11 = TRUE;
    prMsduInfo->u2FrameLength = WLAN_MAC_MGMT_HEADER_LEN + u2PayloadLen;
    prMsduInfo->ucTxSeqNum = nicIncreaseTxSeqNum(prAdapter);
    prMsduInfo->pfTxDoneHandler = saaFsmRunEventTxDone;
    prMsduInfo->fgIsBasicRate = TRUE;

    //4 <4> Compose the frame body's IEs of the (Re)Association Request  frame.
    assocBuildReAssocReqFrameCommonIEs(prAdapter, prMsduInfo);


    //4 <5> Compose IEs in MSDU_INFO_T
#if CFG_ENABLE_WIFI_DIRECT_CFG_80211 && CFG_ENABLE_WIFI_DIRECT
    if (prStaRec->ucNetTypeIndex == NETWORK_TYPE_P2P_INDEX) {
        if ((prAdapter->fgIsP2PRegistered)) {
            p2pGenerate_IEForAssocReq(prAdapter, prMsduInfo);
        }
        else {
            DBGLOG(P2P, TRACE, ("Function Linker Lost.\n"));
            ASSERT(FALSE);
        }
    }
    else {
        /* Append IE */
        for (i = 0; i < sizeof(txAssocReqIETable)/sizeof(APPEND_VAR_IE_ENTRY_T); i++) {
            if (txAssocReqIETable[i].pfnAppendIE) {
                txAssocReqIETable[i].pfnAppendIE(prAdapter, prMsduInfo);
            }
        }
    }
#else
    /* Append IE */
    for (i = 0; i < sizeof(txAssocReqIETable)/sizeof(APPEND_VAR_IE_ENTRY_T); i++) {
        if (txAssocReqIETable[i].pfnAppendIE) {
            txAssocReqIETable[i].pfnAppendIE(prAdapter, prMsduInfo);
        }
    }
#endif

    //4 <6> Update the (Re)association request information
    if (IS_STA_IN_AIS(prStaRec)) {
        P_WLAN_ASSOC_REQ_FRAME_T prAssocFrame;

        prAssocFrame = (P_WLAN_ASSOC_REQ_FRAME_T)((UINT_32)(prMsduInfo->prPacket) + MAC_TX_RESERVED_FIELD);

#if CFG_RSN_MIGRATION
        kalUpdateReAssocReqInfo(prAdapter->prGlueInfo,
                                (PUINT_8)&prAssocFrame->u2CapInfo,
                                prMsduInfo->u2FrameLength - offsetof(WLAN_ASSOC_REQ_FRAME_T, u2CapInfo),
                                fgIsReAssoc);
#endif
    }

#if CFG_ENABLE_WIFI_DIRECT
    if ((prAdapter->fgIsP2PRegistered) && (IS_STA_IN_P2P(prStaRec))) {
        P_WLAN_ASSOC_REQ_FRAME_T prAssocFrame;

        prAssocFrame = (P_WLAN_ASSOC_REQ_FRAME_T)((UINT_32)(prMsduInfo->prPacket) + MAC_TX_RESERVED_FIELD);


        kalP2PUpdateAssocInfo(
            prAdapter->prGlueInfo,
            (PUINT_8)&prAssocFrame->u2CapInfo,
            prMsduInfo->u2FrameLength - offsetof(WLAN_ASSOC_REQ_FRAME_T, u2CapInfo),
            fgIsReAssoc);
    }
#endif

    /* TODO(Kevin): Also release the unused tail room of the composed MMPDU */

    //4 <6> Enqueue the frame to send this (Re)Association request frame.
    nicTxEnqueueMsdu(prAdapter, prMsduInfo);

    return WLAN_STATUS_SUCCESS;
} /* end of assocSendReAssocReqFrame() */


/*----------------------------------------------------------------------------*/
/*!
* @brief This function will strictly check the TX (Re)Association Request frame for
*        SAA event handling.
*
* @param[in] prMsduInfo         Pointer of MSDU_INFO_T
*
* @retval WLAN_STATUS_FAILURE   This is not the frame we should handle at current state.
* @retval WLAN_STATUS_SUCCESS   This is the frame we should handle.
*/
/*----------------------------------------------------------------------------*/
WLAN_STATUS
assocCheckTxReAssocReqFrame (
    IN P_ADAPTER_T      prAdapter,
    IN P_MSDU_INFO_T    prMsduInfo
    )
{
    P_WLAN_ASSOC_REQ_FRAME_T prAssocReqFrame;
    P_STA_RECORD_T prStaRec;
    UINT_16 u2TxFrameCtrl;


    ASSERT(prMsduInfo);
    ASSERT(prMsduInfo->eSrc == TX_PACKET_MGMT);

    prAssocReqFrame = (P_WLAN_ASSOC_REQ_FRAME_T)(prMsduInfo->prPacket);
    ASSERT(prAssocReqFrame);

    prStaRec = cnmGetStaRecByIndex(prAdapter, prMsduInfo->ucStaRecIndex);
    ASSERT(prStaRec);

    if(!prStaRec) {
        return WLAN_STATUS_INVALID_PACKET;
    }

    //WLAN_GET_FIELD_16(&prAssocReqFrame->u2FrameCtrl, &u2TxFrameCtrl)
    u2TxFrameCtrl = prAssocReqFrame->u2FrameCtrl; // NOTE(Kevin): Optimized for ARM
    u2TxFrameCtrl &= MASK_FRAME_TYPE;
    if (prStaRec->fgIsReAssoc) {
        if (u2TxFrameCtrl != MAC_FRAME_REASSOC_REQ) {
            return WLAN_STATUS_FAILURE;
        }
    }
    else {
        if (u2TxFrameCtrl != MAC_FRAME_ASSOC_REQ) {
            return WLAN_STATUS_FAILURE;
        }
    }

    return WLAN_STATUS_SUCCESS;

} /* end of assocCheckTxReAssocReqFrame() */


/*----------------------------------------------------------------------------*/
/*!
* @brief This function will strictly check the TX (Re)Association Response frame for
*        AAA event handling.
*
* @param[in] prMsduInfo         Pointer of MSDU_INFO_T
*
* @retval WLAN_STATUS_FAILURE   This is not the frame we should handle at current state.
* @retval WLAN_STATUS_SUCCESS   This is the frame we should handle.
*/
/*----------------------------------------------------------------------------*/
WLAN_STATUS
assocCheckTxReAssocRespFrame (
    IN P_ADAPTER_T   prAdapter,
    IN P_MSDU_INFO_T prMsduInfo
    )
{
    P_WLAN_ASSOC_RSP_FRAME_T prAssocRspFrame;
    P_STA_RECORD_T prStaRec;
    UINT_16 u2TxFrameCtrl;


    ASSERT(prMsduInfo);
    ASSERT(prMsduInfo->eSrc == TX_PACKET_MGMT);

    prAssocRspFrame = (P_WLAN_ASSOC_RSP_FRAME_T)(prMsduInfo->prPacket);
    ASSERT(prAssocRspFrame);

    prStaRec = cnmGetStaRecByIndex(prAdapter, prMsduInfo->ucStaRecIndex);
    ASSERT(prStaRec);

    if(!prStaRec) {
        return WLAN_STATUS_INVALID_PACKET;
    }

    //WLAN_GET_FIELD_16(&prAssocFrame->u2FrameCtrl, &u2TxFrameCtrl)
    u2TxFrameCtrl = prAssocRspFrame->u2FrameCtrl; // NOTE(Kevin): Optimized for ARM
    u2TxFrameCtrl &= MASK_FRAME_TYPE;
    if (prStaRec->fgIsReAssoc) {
        if (u2TxFrameCtrl != MAC_FRAME_REASSOC_RSP) {
            return WLAN_STATUS_FAILURE;
        }
    }
    else {
        if (u2TxFrameCtrl != MAC_FRAME_ASSOC_RSP) {
            return WLAN_STATUS_FAILURE;
        }
    }

    return WLAN_STATUS_SUCCESS;

} /* end of assocCheckTxReAssocRespFrame() */


/*----------------------------------------------------------------------------*/
/*!
* @brief This function will validate the incoming (Re)Association Frame and take out
*        the status code.
*
* @param[in] prSwRfb                Pointer to SW RFB data structure.
* @param[out] pu2StatusCode         Pointer to store the Status Code from Authentication.
*
* @retval WLAN_STATUS_FAILURE   This is not the frame we should handle at current state.
* @retval WLAN_STATUS_SUCCESS   This is the frame we should handle.
*/
/*----------------------------------------------------------------------------*/
WLAN_STATUS
assocCheckRxReAssocRspFrameStatus (
    IN P_ADAPTER_T  prAdapter,
    IN P_SW_RFB_T   prSwRfb,
    OUT PUINT_16    pu2StatusCode
    )
{
    P_STA_RECORD_T prStaRec;
    P_WLAN_ASSOC_RSP_FRAME_T prAssocRspFrame;
    UINT_16 u2RxFrameCtrl;
    UINT_16 u2RxCapInfo;
    UINT_16 u2RxStatusCode;
    UINT_16 u2RxAssocId;


    ASSERT(prSwRfb);
    ASSERT(pu2StatusCode);

    if ((prSwRfb->u2PacketLen - prSwRfb->u2HeaderLen) < (CAP_INFO_FIELD_LEN +
                                    STATUS_CODE_FIELD_LEN +
                                    AID_FIELD_LEN)) {
        ASSERT(0);
        return WLAN_STATUS_FAILURE;
    }

    DBGLOG(SAA, LOUD, ("prSwRfb->u2PayloadLength = %d\n", prSwRfb->u2PacketLen - prSwRfb->u2HeaderLen));

    prStaRec = cnmGetStaRecByIndex(prAdapter, prSwRfb->ucStaRecIdx);
    ASSERT(prStaRec);

    if(!prStaRec) {
        return WLAN_STATUS_INVALID_PACKET;
    }

    //4 <1> locate the (Re)Assocation Resp Frame.
    prAssocRspFrame = (P_WLAN_ASSOC_RSP_FRAME_T) prSwRfb->pvHeader;

    //4 <2> Parse the Header of (Re)Assocation Resp Frame.
    //WLAN_GET_FIELD_16(&prAssocRspFrame->u2FrameCtrl, &u2RxFrameCtrl);
    u2RxFrameCtrl = prAssocRspFrame->u2FrameCtrl; // NOTE(Kevin): Optimized for ARM
    u2RxFrameCtrl &= MASK_FRAME_TYPE;
    if (prStaRec->fgIsReAssoc) {
        if (u2RxFrameCtrl != MAC_FRAME_REASSOC_RSP) {
            return WLAN_STATUS_FAILURE;
        }
    }
    else {
        if (u2RxFrameCtrl != MAC_FRAME_ASSOC_RSP) {
            return WLAN_STATUS_FAILURE;
        }
    }

    //4 <3> Parse the Fixed Fields of (Re)Assocation Resp Frame Body.
    //WLAN_GET_FIELD_16(&prAssocRspFrame->u2CapInfo, &u2RxCapInfo);
    u2RxCapInfo = prAssocRspFrame->u2CapInfo; // NOTE(Kevin): Optimized for ARM

    //WLAN_GET_FIELD_16(&prAssocRspFrame->u2StatusCode, &u2RxStatusCode);
    u2RxStatusCode = prAssocRspFrame->u2StatusCode; // NOTE(Kevin): Optimized for ARM

    //4 <4> Check CAP_INFO
    /* NOTE(Kevin): CM suggest to add MGMT workaround for those APs didn't check
     * the CAP Privacy Bit to overcome a corner case that the Privacy Bit
     * of our SCAN result didn't consist with AP's Association Resp.
     */
    if (u2RxStatusCode == STATUS_CODE_SUCCESSFUL) {
#if CFG_SUPPORT_WAPI
        if (prAdapter->rWifiVar.rConnSettings.fgWapiMode) {
            /* WAPI AP allow the customer use WZC to join mode, the privacy bit is 0 */
            /* even at WAI & WAPI_PSK mode, but the assoc respose set the privacy bit set 1 */
            DBGLOG(SEC, TRACE, ("Workaround the WAPI AP allow the customer to use WZC to join\n"));
        }
        else
#endif
#if CFG_ENABLE_WIFI_DIRECT
        if (prAdapter->fgIsP2PRegistered && 1) {
        /* Todo:: Fixed this */
        }
        else
#endif
        {
        }

#if CFG_STRICT_CHECK_CAPINFO_PRIVACY
        if ((prStaRec->u2CapInfo & CAP_INFO_PRIVACY) ^ (u2RxCapInfo & CAP_INFO_PRIVACY)) {
            u2RxStatusCode = STATUS_CODE_CAP_NOT_SUPPORTED;
        }
#endif
    }

    if (u2RxStatusCode == STATUS_CODE_SUCCESSFUL) {
#if CFG_RSN_MIGRATION
        /* Update the information in the structure used to query and set
           OID_802_11_ASSOCIATION_INFORMATION. */
        kalUpdateReAssocRspInfo(prAdapter->prGlueInfo,
                               (PUINT_8)&prAssocRspFrame->u2CapInfo,
                               (UINT_32)(prSwRfb->u2PacketLen));
#endif
    }

    //4 <5> Update CAP_INFO and ASSOC_ID
    if (u2RxStatusCode == STATUS_CODE_SUCCESSFUL) {
        prStaRec->u2CapInfo = u2RxCapInfo;

        //WLAN_GET_FIELD_16(&prAssocRspFrame->u2AssocId, &u2RxAssocId);
        u2RxAssocId = prAssocRspFrame->u2AssocId; // NOTE(Kevin): Optimized for ARM

        /*  20110715 Workaround for Kingnet 710 AP (Realtek 8186)
                *   This AP raises the bit 6&7 not bit 14&15 in AID field.
                *   It cause wrong AID assignment.
                *   For AID = 2
                *     Normal case: 0xC002(1100 0000 0000 0010) => 2
                *     Kingnet 710:  0x00C2(0000 0000 1100 0010) => 194
                *     workaround: mask bit 6&7 for this AP
                */
        if((u2RxAssocId & BIT(6)) &&
           (u2RxAssocId & BIT(7)) &&
           !(u2RxAssocId & BITS(8, 15))) {
            prStaRec->u2AssocId = u2RxAssocId & ~BITS(6,7);
        } else {
            prStaRec->u2AssocId = u2RxAssocId & ~AID_MSB;
#if CFG_SUPPORT_802_11W
            if (prStaRec->ucNetTypeIndex == NETWORK_TYPE_AIS_INDEX) {
                P_AIS_SPECIFIC_BSS_INFO_T       prBssSpecInfo;

                prBssSpecInfo = &prAdapter->rWifiVar.rAisSpecificBssInfo;
                ASSERT(prBssSpecInfo);

                prBssSpecInfo->ucSaQueryTimedOut = 0;
            }
#endif
        }
    }

#if CFG_SUPPORT_802_11W
    if (u2RxStatusCode == STATUS_CODE_AUTH_ALGORITHM_NOT_SUPPORTED){
        DBGLOG(SAA, INFO, ("AP rejected due the authentication algorithm not support\n"));
    }
    else if (u2RxStatusCode == STATUS_CODE_ASSOC_REJECTED_TEMPORARILY) {
        PUINT_8 pucIE, pucTime;
        UINT_16 u2IELength;
        UINT_16 u2Offset = 0;

        u2IELength = prSwRfb->u2PacketLen - prSwRfb->u2HeaderLen;
        pucIE = (PUINT_8)((UINT_32)prSwRfb->pvHeader + prSwRfb->u2HeaderLen);

        IE_FOR_EACH(pucIE, u2IELength, u2Offset) {
            if (ELEM_ID_TIMEOUT_INTERVAL == IE_ID(pucIE) && IE_LEN(pucIE) == 5) {
                pucTime = ((P_IE_HDR_T)pucIE)->aucInfo;
                if (pucTime[0] == ACTION_SA_TIMEOUT_ASSOC_COMEBACK) {
                    UINT_32 tu;
                    WLAN_GET_FIELD_32(pucTime + 1, &tu);
                    DBGLOG(SAA, INFO, ("AP rejected association temporarily; comeback duration %u TU "
                           "(%u ms)\n", tu, TU_TO_MSEC(tu)));
                    if (tu > TX_ASSOCIATION_RETRY_TIMEOUT_TU) {
                        DBGLOG(SAA, INFO, ("Update timer based on comeback duration\n"));
                        //ieee80211_reschedule_timer(wpa_s, ms);
                    }
                }
                break;
            }
        } /* end of IE_FOR_EACH */
    }
#endif
    *pu2StatusCode = u2RxStatusCode;

    return WLAN_STATUS_SUCCESS;

} /* end of assocCheckRxReAssocRspFrameStatus() */


/*----------------------------------------------------------------------------*/
/*!
* \brief This function will compose the Disassociation frame
*
* @param[in] prStaRec               Pointer to the STA_RECORD_T
* @param[in] pucBuffer              Pointer to the frame buffer.
* @param[in] aucMACAddress     Given Our MAC Address.
* @param[in] u2ReasonCode      The reason code of disassociation
*
* \return (none)
*/
/*----------------------------------------------------------------------------*/
__KAL_INLINE__ VOID
assocComposeDisassocFrame (
    IN P_STA_RECORD_T   prStaRec,
    IN PUINT_8          pucBuffer,
    IN UINT_8           aucMACAddress[],
    IN UINT_16          u2ReasonCode
    )
{
    P_WLAN_DISASSOC_FRAME_T prDisAssocFrame;
    UINT_16 u2FrameCtrl;

    ASSERT(pucBuffer);
    ASSERT(pucBuffer);
    ASSERT(aucMACAddress);

    prDisAssocFrame = (P_WLAN_DISASSOC_FRAME_T)pucBuffer;

    //4 <1> Compose the frame header of the DisAssociation  frame.
    /* Fill the Frame Control field. */
    u2FrameCtrl = MAC_FRAME_DISASSOC;

    WLAN_SET_FIELD_16(&prDisAssocFrame->u2FrameCtrl, u2FrameCtrl);

    /* Fill the DA field with Target BSSID. */
    COPY_MAC_ADDR(prDisAssocFrame->aucDestAddr, prStaRec->aucMacAddr);

    /* Fill the SA field with our MAC Address. */
    COPY_MAC_ADDR(prDisAssocFrame->aucSrcAddr, aucMACAddress);

    /* Fill the BSSID field with Target BSSID. */
    COPY_MAC_ADDR(prDisAssocFrame->aucBSSID, prStaRec->aucMacAddr);

    /* Clear the SEQ/FRAG_NO field(HW won't overide the FRAG_NO, so we need to clear it). */
    prDisAssocFrame->u2SeqCtrl = 0;

    //4 <2> Compose the frame body's fixed field part of the Disassociation frame.
    /* Fill the Reason Code field. */
    WLAN_SET_FIELD_16(&prDisAssocFrame->u2ReasonCode, u2ReasonCode);

    return;
} /* end of assocComposeDisassocFrame() */


/*----------------------------------------------------------------------------*/
/*!
* @brief This function will send the Disassociation frame
*
* @param[in] prStaRec           Pointer to the STA_RECORD_T
* @param[in] u2ReasonCode  The reason code of disassociation
*
* @retval WLAN_STATUS_RESOURCES No available resource for frame composing.
* @retval WLAN_STATUS_SUCCESS   Successfully send frame to TX Module
*/
/*----------------------------------------------------------------------------*/
WLAN_STATUS
assocSendDisAssocFrame (
    IN P_ADAPTER_T    prAdapter,
    IN P_STA_RECORD_T prStaRec,
    IN UINT_16        u2ReasonCode
    )
{
    PUINT_8 pucMacAddress;
    P_MSDU_INFO_T prMsduInfo;
    UINT_16 u2PayloadLen;
    UINT_16 u2EstimatedFrameLen;
    //UINT_32 u4Status = WLAN_STATUS_SUCCESS;


    ASSERT(prStaRec);

    //4 <1> Allocate a PKT_INFO_T for Disassociation Frame
    /* Init with MGMT Header Length + Length of Fixed Fields + IE Length */
    u2EstimatedFrameLen = MAC_TX_RESERVED_FIELD + \
                          WLAN_MAC_MGMT_HEADER_LEN + \
                          REASON_CODE_FIELD_LEN;

    /* Allocate a MSDU_INFO_T */
    if ( (prMsduInfo = cnmMgtPktAlloc(prAdapter, u2EstimatedFrameLen)) == NULL) {
        DBGLOG(SAA, WARN, ("No PKT_INFO_T for sending DisAssoc.\n"));
        return WLAN_STATUS_RESOURCES;
    }

    //4 <2> Compose Disassociation  frame header and fixed fields in MSDU_INfO_T.
    ASSERT(prStaRec->ucNetTypeIndex < NETWORK_TYPE_INDEX_NUM);

    pucMacAddress = prAdapter->rWifiVar.arBssInfo[prStaRec->ucNetTypeIndex].aucOwnMacAddr;

    /* Compose Header and Fixed Field */
    assocComposeDisassocFrame(prStaRec,
                              (PUINT_8)((UINT_32)(prMsduInfo->prPacket) + MAC_TX_RESERVED_FIELD),
                              pucMacAddress,
                              u2ReasonCode);

#if CFG_SUPPORT_802_11W
    if (rsnCheckBipKeyInstalled(prAdapter, prStaRec)) {
        P_WLAN_DISASSOC_FRAME_T prDisassocFrame;

        prDisassocFrame = (P_WLAN_DEAUTH_FRAME_T)(PUINT_8)((UINT_32)(prMsduInfo->prPacket) + MAC_TX_RESERVED_FIELD);

        prDisassocFrame->u2FrameCtrl |= MASK_FC_PROTECTED_FRAME;
        DBGLOG(TX, WARN, ("assocSendDisAssocFrame with protection\n"));
    }
#endif

    u2PayloadLen = REASON_CODE_FIELD_LEN;

    //4 <3> Update information of MSDU_INFO_T
    ASSERT(prStaRec->ucNetTypeIndex < NETWORK_TYPE_INDEX_NUM);

    prMsduInfo->eSrc = TX_PACKET_MGMT;
    prMsduInfo->ucPacketType = HIF_TX_PACKET_TYPE_MGMT;
    prMsduInfo->ucStaRecIndex = prStaRec->ucIndex;
    prMsduInfo->ucNetworkType = prStaRec->ucNetTypeIndex;
    prMsduInfo->ucMacHeaderLength = WLAN_MAC_MGMT_HEADER_LEN;
    prMsduInfo->fgIs802_1x = FALSE;
    prMsduInfo->fgIs802_11 = TRUE;
    prMsduInfo->u2FrameLength = WLAN_MAC_MGMT_HEADER_LEN + u2PayloadLen;
    prMsduInfo->ucTxSeqNum = nicIncreaseTxSeqNum(prAdapter);
    prMsduInfo->pfTxDoneHandler = NULL;
    prMsduInfo->fgIsBasicRate = TRUE;

    //4 <4> Enqueue the frame to send this (Re)Association request frame.
    nicTxEnqueueMsdu(prAdapter, prMsduInfo);

    return WLAN_STATUS_SUCCESS;
} /* end of assocSendDisAssocFrame() */


/*----------------------------------------------------------------------------*/
/*!
* @brief This function will parse and process the incoming Disassociation frame
*        if the given BSSID is matched.
*
* @param[in] prSwRfb            Pointer to SW RFB data structure.
* @param[in] aucBSSID           Given BSSID
* @param[out] pu2ReasonCode     Pointer to store the Reason Code from Deauthentication.
*
* @retval WLAN_STATUS_FAILURE   This is not the frame we should handle at current state.
* @retval WLAN_STATUS_SUCCESS   This is the frame we should handle.
*/
/*----------------------------------------------------------------------------*/
WLAN_STATUS
assocProcessRxDisassocFrame (
    IN P_ADAPTER_T  prAdapter,
    IN P_SW_RFB_T   prSwRfb,
    IN UINT_8       aucBSSID[],
    OUT PUINT_16    pu2ReasonCode
    )
{
    P_WLAN_DISASSOC_FRAME_T prDisassocFrame;
    UINT_16 u2RxReasonCode;


    ASSERT(prSwRfb);
    ASSERT(aucBSSID);
    ASSERT(pu2ReasonCode);

    //4 <1> locate the Disassociation Frame.
    prDisassocFrame = (P_WLAN_DISASSOC_FRAME_T) prSwRfb->pvHeader;

    //4 <2> Parse the Header of Disassociation Frame.
    if ((prSwRfb->u2PacketLen - prSwRfb->u2HeaderLen) < REASON_CODE_FIELD_LEN) {
        ASSERT(0);
        return WLAN_STATUS_FAILURE;
    }

    /* Check if this Disassoc Frame is coming from Target BSSID */
    if (UNEQUAL_MAC_ADDR(prDisassocFrame->aucBSSID, aucBSSID)) {
        DBGLOG(SAA, LOUD, ("Ignore Disassoc Frame from other BSS ["MACSTR"]\n",
            MAC2STR(prDisassocFrame->aucSrcAddr)));
        return WLAN_STATUS_FAILURE;
    }

    //4 <3> Parse the Fixed Fields of Deauthentication Frame Body.
    WLAN_GET_FIELD_16(&prDisassocFrame->u2ReasonCode, &u2RxReasonCode);
    *pu2ReasonCode = u2RxReasonCode;

    return WLAN_STATUS_SUCCESS;

} /* end of assocProcessRxDisassocFrame() */


#if CFG_SUPPORT_AAA
/*----------------------------------------------------------------------------*/
/*!
* @brief This function will parse and process the incoming Association Req frame
*        and return a Status Code.
*
* @param[in] prAdapter          Pointer to the Adapter structure.
* @param[in] prSwRfb            Pointer to SW RFB data structure.
* @param[out] pu2StatusCode     Pointer to store the Status Code for carried in Association Response.
*
* @retval WLAN_STATUS_FAILURE   This is not the frame we should handle at current state.
* @retval WLAN_STATUS_SUCCESS   This is the frame we should handle.
*/
/*----------------------------------------------------------------------------*/
WLAN_STATUS
assocProcessRxAssocReqFrame (
    IN P_ADAPTER_T  prAdapter,
    IN P_SW_RFB_T   prSwRfb,
    OUT PUINT_16    pu2StatusCode
    )
{
    P_WLAN_ASSOC_REQ_FRAME_T prAssocReqFrame;
    P_STA_RECORD_T prStaRec;
    P_BSS_INFO_T prBssInfo;
    P_IE_SSID_T prIeSsid = (P_IE_SSID_T)NULL;
    P_RSN_INFO_ELEM_T prIeRsn = (P_RSN_INFO_ELEM_T)NULL;
    P_IE_SUPPORTED_RATE_T prIeSupportedRate = (P_IE_SUPPORTED_RATE_T)NULL;
    P_IE_EXT_SUPPORTED_RATE_T prIeExtSupportedRate = (P_IE_EXT_SUPPORTED_RATE_T)NULL;
    PUINT_8 pucIE, pucIEStart;
    UINT_16 u2IELength;
    UINT_16 u2Offset = 0;
    UINT_16 u2StatusCode = STATUS_CODE_SUCCESSFUL;
    UINT_16 u2RxFrameCtrl;
    UINT_16 u2BSSBasicRateSet;
    BOOLEAN fgIsUnknownBssBasicRate;
    UINT_32 i;


    ASSERT(prAdapter);
    ASSERT(prSwRfb);
    ASSERT(pu2StatusCode);

    prStaRec = cnmGetStaRecByIndex(prAdapter, prSwRfb->ucStaRecIdx);

    if (prStaRec == NULL) {
        return WLAN_STATUS_FAILURE;
    }

    //4 <1> locate the Association Req Frame.
    prAssocReqFrame = (P_WLAN_ASSOC_REQ_FRAME_T) prSwRfb->pvHeader;

    //4 <2> Parse the Header of Association Req Frame.
    if ((prSwRfb->u2PacketLen - prSwRfb->u2HeaderLen) <
            (CAP_INFO_FIELD_LEN + LISTEN_INTERVAL_FIELD_LEN)) {
        ASSERT(0);
        return WLAN_STATUS_FAILURE;
    }

    prBssInfo = &(prAdapter->rWifiVar.arBssInfo[prStaRec->ucNetTypeIndex]);

    /* Check if this Disassoc Frame is coming from Target BSSID */
    if (UNEQUAL_MAC_ADDR(prAssocReqFrame->aucBSSID, prBssInfo->aucBSSID)) {
        return WLAN_STATUS_FAILURE; /* Just Ignore this MMPDU */
    }

    //WLAN_GET_FIELD_16(&prAssocReqFrame->u2FrameCtrl, &u2RxFrameCtrl);
    u2RxFrameCtrl = prAssocReqFrame->u2FrameCtrl; // NOTE(Kevin): Optimized for ARM
    u2RxFrameCtrl &= MASK_FRAME_TYPE;
    if (MAC_FRAME_REASSOC_REQ == u2RxFrameCtrl) {
        prStaRec->fgIsReAssoc = TRUE;

        u2IELength = (prSwRfb->u2PacketLen - prSwRfb->u2HeaderLen) -
            (UINT_16)(OFFSET_OF(WLAN_REASSOC_REQ_FRAME_T, aucInfoElem[0]) - WLAN_MAC_MGMT_HEADER_LEN);

        pucIEStart = pucIE = ((P_WLAN_REASSOC_REQ_FRAME_T)(prSwRfb->pvHeader))->aucInfoElem;
    }
    else {
        prStaRec->fgIsReAssoc = FALSE;

        u2IELength = (prSwRfb->u2PacketLen - prSwRfb->u2HeaderLen) -
            (UINT_16)(OFFSET_OF(WLAN_ASSOC_REQ_FRAME_T, aucInfoElem[0]) - WLAN_MAC_MGMT_HEADER_LEN);

        pucIEStart = pucIE = prAssocReqFrame->aucInfoElem;
    }


    //4 <3> Parse the Fixed Fields of Assoc Req Frame Body.
    prStaRec->u2CapInfo = prAssocReqFrame->u2CapInfo;

#if CFG_ENABLE_WIFI_DIRECT && CFG_ENABLE_HOTSPOT_PRIVACY_CHECK
    if (prAdapter->fgIsP2PRegistered && IS_STA_IN_P2P(prStaRec)) {
        if (((prStaRec->u2CapInfo & CAP_INFO_PRIVACY) &&
                !kalP2PGetCipher(prAdapter->prGlueInfo))) {
            u2StatusCode = STATUS_CODE_CAP_NOT_SUPPORTED;
            DBGLOG(RSN, TRACE, ("STA Assoc req privacy bit check fail\n"));
            return WLAN_STATUS_SUCCESS;
        }
    }
#endif

    prStaRec->u2ListenInterval = prAssocReqFrame->u2ListenInterval;
    prStaRec->ucPhyTypeSet = 0;

    /* Might be legacy client or p2p gc. */
    prStaRec->eStaType = STA_TYPE_LEGACY_CLIENT;

    //4 <4> Parse the IE of Assoc Req Frame Body.
    IE_FOR_EACH(pucIE, u2IELength, u2Offset) {
        switch (IE_ID(pucIE)) {
        case ELEM_ID_SSID:
            if ((!prIeSsid) && /* NOTE(Kevin): Get SSID once */
                (IE_LEN(pucIE) <= ELEM_MAX_LEN_SSID)) {
                prIeSsid = (P_IE_SSID_T)pucIE;
            }
            break;

        case ELEM_ID_SUP_RATES:
            if ((!prIeSupportedRate) && (IE_LEN(pucIE) <= RATE_NUM)) {
                prIeSupportedRate = SUP_RATES_IE(pucIE);
            }
            break;

        case ELEM_ID_EXTENDED_SUP_RATES:
            if (!prIeExtSupportedRate)
                prIeExtSupportedRate = EXT_SUP_RATES_IE(pucIE);
            break;
        case ELEM_ID_HT_CAP:
            prStaRec->ucPhyTypeSet |= PHY_TYPE_BIT_HT;
                        kalMemCopy(&prStaRec->u2HtCapInfo, &(HT_CAP_IE(pucIE)->u2HtCapInfo), 2);
            break;
        case ELEM_ID_RSN:
            #if CFG_ENABLE_WIFI_DIRECT && CFG_ENABLE_HOTSPOT_PRIVACY_CHECK
            if (prAdapter->fgIsP2PRegistered && IS_STA_IN_P2P(prStaRec)) {
                prIeRsn = RSN_IE(pucIE);
                rsnParserCheckForRSNCCMPPSK(prAdapter, prIeRsn, &u2StatusCode);
                if (u2StatusCode != STATUS_CODE_SUCCESSFUL) {
                    *pu2StatusCode = u2StatusCode;
                    return WLAN_STATUS_SUCCESS;
                }
            }
            #endif
            break;
        case ELEM_ID_VENDOR:
            #if CFG_ENABLE_WIFI_DIRECT
            {
                if ((prAdapter->fgIsP2PRegistered)) {
                    UINT_8 ucOuiType = 0;

                    p2pFuncParseCheckForP2PInfoElem(prAdapter, pucIE, &ucOuiType);

                    if (ucOuiType == VENDOR_OUI_TYPE_P2P) {
                        DBGLOG(P2P, TRACE, ("Target Client is a P2P group client\n"));
                        prStaRec->eStaType = STA_TYPE_P2P_GC;
                    }
                }
            }
            #endif
            break;
        default:
            for (i = 0; i < (sizeof(rxAssocReqIETable) / sizeof(VERIFY_IE_ENTRY_T)); i++) {

                if ((IE_ID(pucIE)) == rxAssocReqIETable[i].ucElemID) {
                    rxAssocReqIETable[i].pfnVarifyIE(prAdapter, prSwRfb, (P_IE_HDR_T)pucIE, &u2StatusCode);

                    if (u2StatusCode != STATUS_CODE_SUCCESSFUL) {
                        *pu2StatusCode = u2StatusCode;
                        return WLAN_STATUS_SUCCESS;
                    }
                }
            }

            break;
        }
    } /* end of IE_FOR_EACH */

    // parsing for WMM related information (2010/12/21)
    mqmProcessAssocReq(
        prAdapter,
        prSwRfb,
        pucIEStart,
        u2IELength);

    do {
        if (prIeSsid) {
            if (UNEQUAL_SSID(prBssInfo->aucSSID, prBssInfo->ucSSIDLen,
                             prIeSsid->aucSSID, prIeSsid->ucLength)) {

                u2StatusCode = STATUS_CODE_UNSPECIFIED_FAILURE;
                break;
            }
        }
        else {
            u2StatusCode = STATUS_CODE_UNSPECIFIED_FAILURE;
            break;
        }

        prStaRec->u2OperationalRateSet = 0;
        prStaRec->u2BSSBasicRateSet = 0;

        if (prIeSupportedRate || prIeExtSupportedRate) {
            rateGetRateSetFromIEs(prIeSupportedRate,
                                  prIeExtSupportedRate,
                                  &prStaRec->u2OperationalRateSet,
                                  &u2BSSBasicRateSet, /* Ignore any Basic Bit */
                                  &fgIsUnknownBssBasicRate);

            if ((prBssInfo->u2BSSBasicRateSet & prStaRec->u2OperationalRateSet) !=
                 prBssInfo->u2BSSBasicRateSet) {

                u2StatusCode = STATUS_CODE_ASSOC_DENIED_RATE_NOT_SUPPORTED;
                break;
            }

            /* Accpet the Sta, update BSSBasicRateSet from Bss */

            prStaRec->u2BSSBasicRateSet = prBssInfo->u2BSSBasicRateSet;

            prStaRec->u2DesiredNonHTRateSet = (prStaRec->u2OperationalRateSet & RATE_SET_ALL_ABG);

            if (BAND_2G4 == HIF_RX_HDR_GET_RF_BAND(prSwRfb->prHifRxHdr)) {
            #if 0 /* Marked by CMC 20111024 */
                /* check if support 11n */
                if (!(u2BSSBasicRateSet & RATE_SET_BIT_HT_PHY)) {

                    if (prStaRec->u2OperationalRateSet & RATE_SET_OFDM) {
                        prStaRec->ucPhyTypeSet |= PHY_TYPE_BIT_ERP;
                    }


                    if (!(u2BSSBasicRateSet & RATE_SET_OFDM)) {
                        if (prStaRec->u2OperationalRateSet & RATE_SET_HR_DSSS) {
                            prStaRec->ucPhyTypeSet |= PHY_TYPE_BIT_HR_DSSS;
                        }

                    }

                }
            #else
                if (prStaRec->u2OperationalRateSet & RATE_SET_OFDM) {
                    prStaRec->ucPhyTypeSet |= PHY_TYPE_BIT_ERP;
                }
                if (prStaRec->u2OperationalRateSet & RATE_SET_HR_DSSS) {
                    prStaRec->ucPhyTypeSet |= PHY_TYPE_BIT_HR_DSSS;
                }
            #endif
            }
            else { /* (BAND_5G == prBssDesc->eBande) */
            #if 0 /* Marked by CMC 20111024 */
                if (!(u2BSSBasicRateSet & RATE_SET_BIT_HT_PHY)) {

                    prStaRec->ucPhyTypeSet |= PHY_TYPE_BIT_OFDM;
                }
                ASSERT((prStaRec->u2OperationalRateSet & RATE_SET_HR_DSSS) == 0);
            #else
                if (prStaRec->u2OperationalRateSet & RATE_SET_OFDM) {
                    prStaRec->ucPhyTypeSet |= PHY_TYPE_BIT_OFDM;
                }
            #endif
            }

        }
        else {
            ASSERT(0);
            u2StatusCode = STATUS_CODE_ASSOC_DENIED_RATE_NOT_SUPPORTED;
            break;
        }

#if CFG_ENABLE_WIFI_DIRECT && CFG_ENABLE_HOTSPOT_PRIVACY_CHECK
        if (prAdapter->fgIsP2PRegistered && IS_STA_IN_P2P(prStaRec)) {
            if (prIeRsn) {
                if (!kalP2PGetCipher(prAdapter->prGlueInfo)) {
                    u2StatusCode = STATUS_CODE_CIPHER_SUITE_REJECTED;
                    break;
                }
            }
            else {
                prStaRec->rSecInfo.fgAllowOnly1x = FALSE;
                if (kalP2PGetCipher(prAdapter->prGlueInfo)) {
                    //Only Allow 1x
                    prStaRec->rSecInfo.fgAllowOnly1x = TRUE;
                    break;
                }
            }
        }
#endif

    } while (FALSE);

#if CFG_ENABLE_WIFI_DIRECT
    if (prAdapter->fgIsP2PRegistered && IS_STA_IN_P2P(prStaRec)) {
        #if 1 /* ICS */
        {
            PUINT_8 cp = (PUINT_8)&prAssocReqFrame->u2CapInfo;
                        P_UINT_8 prNewAssocReqIe = NULL;
                        
                        if (u2IELength) {
                                prNewAssocReqIe= kalMemAlloc(u2IELength, VIR_MEM_TYPE);
                                if (NULL == prNewAssocReqIe) {
                                        DBGLOG(AIS, WARN, ("allocate memory for (Re)assocReqIe fail,IELength=%d!\n",u2IELength));
                                        u2StatusCode = STATUS_CODE_INVALID_INFO_ELEMENT;
                                        return WLAN_STATUS_FAILURE;
                                        /*note: if return WLAN_STATUS_FAILURE, we wouldn't reply the GC!so he need wait util timeout
                                           should we change to WLAN_STATUS_SUCCESS? but memory allocate fail may also cause reply fail*/
                                }
            } 
            if (prStaRec->fgIsReAssoc)
                cp += 10;
            else
                cp += 4;
            if (prStaRec->pucAssocReqIe) {
                                kalMemFree(prStaRec->pucAssocReqIe, VIR_MEM_TYPE, prStaRec->u2AssocReqIeLen);
                                prStaRec->pucAssocReqIe = NULL;
            }
            prStaRec->u2AssocReqIeLen = u2IELength;
            if (u2IELength) {
                                prStaRec->pucAssocReqIe = prNewAssocReqIe;
                kalMemCopy(prStaRec->pucAssocReqIe, cp, u2IELength);
            }
        }
        #endif
            kalP2PUpdateAssocInfo(prAdapter->prGlueInfo, (PUINT_8)&prAssocReqFrame->u2CapInfo, u2IELength + (prStaRec->fgIsReAssoc ? 10 : 4), prStaRec->fgIsReAssoc);
        }
#endif

    *pu2StatusCode = u2StatusCode;

    return WLAN_STATUS_SUCCESS;

} /* end of assocProcessRxAssocReqFrame() */


/*----------------------------------------------------------------------------*/
/*!
* @brief This function is used to compose Common Information Elements for Association
*        Response Frame.
*
* @param[in] prMsduInfo     Pointer to the composed MSDU_INFO_T.
* @param[in] prBssInfo      Pointer to the BSS_INFO_T.
*
* @return (none)
*/
/*----------------------------------------------------------------------------*/
__KAL_INLINE__ VOID
assocBuildReAssocRespFrameCommonIEs (
    IN P_ADAPTER_T prAdapter,
    IN P_MSDU_INFO_T prMsduInfo,
    IN P_BSS_INFO_T prBssInfo
    )
{
    PUINT_8 pucBuffer;
    P_STA_RECORD_T prStaRec;
    UINT_8 ucSupRatesLen;
    UINT_8 ucExtSupRatesLen;


    ASSERT(prMsduInfo);
    ASSERT(prMsduInfo->eSrc == TX_PACKET_MGMT);

    prStaRec = cnmGetStaRecByIndex(prAdapter, prMsduInfo->ucStaRecIndex);
    ASSERT(prStaRec);


    pucBuffer = (PUINT_8)((UINT_32)prMsduInfo->prPacket +
                          (UINT_32)prMsduInfo->u2FrameLength);
    ASSERT(pucBuffer);

    if (prBssInfo->ucAllSupportedRatesLen > ELEM_MAX_LEN_SUP_RATES) {

        ucSupRatesLen = ELEM_MAX_LEN_SUP_RATES;
        ucExtSupRatesLen = prBssInfo->ucAllSupportedRatesLen - ELEM_MAX_LEN_SUP_RATES;
    }
    else {
        ucSupRatesLen = prBssInfo->ucAllSupportedRatesLen;
        ucExtSupRatesLen = 0;
    }

    /* Fill the Supported Rates element. */
    if (ucSupRatesLen) {
        SUP_RATES_IE(pucBuffer)->ucId = ELEM_ID_SUP_RATES;
        SUP_RATES_IE(pucBuffer)->ucLength = ucSupRatesLen;
        kalMemCopy(SUP_RATES_IE(pucBuffer)->aucSupportedRates,
                   prBssInfo->aucAllSupportedRates,
                   ucSupRatesLen);

        prMsduInfo->u2FrameLength += IE_SIZE(pucBuffer);
        pucBuffer += IE_SIZE(pucBuffer);
    }


    /* Fill the Extended Supported Rates element. */
    if (ucExtSupRatesLen) {

        EXT_SUP_RATES_IE(pucBuffer)->ucId = ELEM_ID_EXTENDED_SUP_RATES;
        EXT_SUP_RATES_IE(pucBuffer)->ucLength = ucExtSupRatesLen;

        kalMemCopy(EXT_SUP_RATES_IE(pucBuffer)->aucExtSupportedRates,
                   &prBssInfo->aucAllSupportedRates[ucSupRatesLen],
                   ucExtSupRatesLen);

        prMsduInfo->u2FrameLength += IE_SIZE(pucBuffer);
    }

    return;
} /* end of assocBuildReAssocRespFrameCommonIEs() */


/*----------------------------------------------------------------------------*/
/*!
* @brief This function will compose the (Re)Association Response frame
*
* @param[in] prStaRec               Pointer to the STA_RECORD_T
* @param[in] pucBuffer              Pointer to the frame buffer.
* @param[in] aucBssid               Given BSSID.
* @param[in] u2CapInfo              Capability Field of current BSS.
* @param[in out] pu2PayloadLen      Return the length of the composed fixed fields
*
* @return (none)
*/
/*----------------------------------------------------------------------------*/
__KAL_INLINE__ VOID
assocComposeReAssocRespFrameHeaderAndFF (
    IN P_STA_RECORD_T prStaRec,
    IN PUINT_8 pucBuffer,
    IN UINT_8 aucBSSID[],
    IN UINT_16 u2CapInfo,
    IN OUT PUINT_16 pu2PayloadLen
    )
{
    P_WLAN_ASSOC_RSP_FRAME_T prAssocRspFrame;
    BOOLEAN fgIsReAssoc;

    UINT_16 u2FrameCtrl;


    ASSERT(prStaRec);
    ASSERT(pucBuffer);
    ASSERT(aucBSSID);
    ASSERT(pu2PayloadLen);

    prAssocRspFrame = (P_WLAN_ASSOC_RSP_FRAME_T)pucBuffer;
    fgIsReAssoc = prStaRec->fgIsReAssoc;

    //4 <1> Compose the frame header of the (Re)Association Request  frame.
    /* Fill the Frame Control field. */
    if (fgIsReAssoc) {
        u2FrameCtrl = MAC_FRAME_REASSOC_RSP;
    }
    else {
        u2FrameCtrl = MAC_FRAME_ASSOC_RSP;
    }
    //WLAN_SET_FIELD_16(&prAssocFrame->u2FrameCtrl, u2FrameCtrl);
    prAssocRspFrame->u2FrameCtrl = u2FrameCtrl; // NOTE(Kevin): Optimized for ARM

    /* Fill the DA field with Target MAC Address. */
    COPY_MAC_ADDR(prAssocRspFrame->aucDestAddr, prStaRec->aucMacAddr);

    /* Fill the SA field with current BSSID. */
    COPY_MAC_ADDR(prAssocRspFrame->aucSrcAddr, aucBSSID);

    /* Fill the BSSID field with current BSSID. */
    COPY_MAC_ADDR(prAssocRspFrame->aucBSSID, aucBSSID);

    /* Clear the SEQ/FRAG_NO field(HW won't overide the FRAG_NO, so we need to clear it). */
    prAssocRspFrame->u2SeqCtrl = 0;


    //4 <2> Compose the frame body's common fixed field part of the (Re)Association Request  frame.
    /* Fill the Capability Information field. */
    //WLAN_SET_FIELD_16(&prAssocFrame->u2CapInfo, u2CapInfo);
    prAssocRspFrame->u2CapInfo = u2CapInfo; // NOTE(Kevin): Optimized for ARM

    //WLAN_SET_FIELD_16(&prAssocFrame->u2StatusCode, prStaRec->u2StatusCode);
    prAssocRspFrame->u2StatusCode = prStaRec->u2StatusCode; // NOTE(Kevin): Optimized for ARM

    //WLAN_SET_FIELD_16(&prAssocFrame->u2AssocId, ((prStaRec->u2AssocId & AID_MASK) | AID_MSB));
    prAssocRspFrame->u2AssocId =
        ((prStaRec->u2AssocId & AID_MASK) | AID_MSB); // NOTE(Kevin): Optimized for ARM

    *pu2PayloadLen = (CAP_INFO_FIELD_LEN +
                      STATUS_CODE_FIELD_LEN +
                      AID_FIELD_LEN);

    return;
} /* end of assocComposeReAssocRespFrameHeaderAndFF() */


/*----------------------------------------------------------------------------*/
/*!
* @brief This function will send the (Re)Association Resp frame
*
* @param[in] prStaRec           Pointer to the STA_RECORD_T
*
* @retval WLAN_STATUS_RESOURCES No available resource for frame composing.
* @retval WLAN_STATUS_SUCCESS   Successfully send frame to TX Module
*/
/*----------------------------------------------------------------------------*/
WLAN_STATUS
assocSendReAssocRespFrame (
    IN P_ADAPTER_T      prAdapter,
    IN P_STA_RECORD_T   prStaRec
    )
{
    P_BSS_INFO_T prBssInfo;
    P_MSDU_INFO_T prMsduInfo;

    UINT_16 u2PayloadLen;
    UINT_16 u2EstimatedFrameLen;
    UINT_16 u2EstimatedExtraIELen;
    BOOLEAN fgIsReAssoc;
    UINT_32 i;


    ASSERT(prStaRec);


    //4 <1> Allocate a PKT_INFO_T for Authentication Frame
    fgIsReAssoc = prStaRec->fgIsReAssoc;

    /* Init with MGMT Header Length + Length of Fixed Fields + Common IE Length */
    u2EstimatedFrameLen = MAC_TX_RESERVED_FIELD + \
                          WLAN_MAC_MGMT_HEADER_LEN + \
                          CAP_INFO_FIELD_LEN + \
                          STATUS_CODE_FIELD_LEN + \
                          AID_FIELD_LEN + \
                          (ELEM_HDR_LEN + ELEM_MAX_LEN_SUP_RATES) + \
                          (ELEM_HDR_LEN + (RATE_NUM - ELEM_MAX_LEN_SUP_RATES));

    /* + Extra IE Length */
    u2EstimatedExtraIELen = 0;

    for (i = 0; i < sizeof(txAssocRespIETable)/sizeof(APPEND_VAR_IE_ENTRY_T); i++) {
        if (txAssocRespIETable[i].u2EstimatedFixedIELen != 0) {
            u2EstimatedExtraIELen += txAssocRespIETable[i].u2EstimatedFixedIELen;
        }
        else if (txAssocRespIETable[i].pfnCalculateVariableIELen != NULL) {
            u2EstimatedExtraIELen += (UINT_16)txAssocRespIETable[i].pfnCalculateVariableIELen(prAdapter,
                                                                                                        prStaRec->ucNetTypeIndex,
                                                                                                        prStaRec);
        }

    }

    u2EstimatedFrameLen += u2EstimatedExtraIELen;

    /* Allocate a MSDU_INFO_T */
    if ( (prMsduInfo = cnmMgtPktAlloc(prAdapter, u2EstimatedFrameLen)) == NULL) {
        DBGLOG(AAA, WARN, ("No PKT_INFO_T for sending (Re)Assoc Response.\n"));
        return WLAN_STATUS_RESOURCES;
    }

    //4 <2> Compose (Re)Association Request frame header and fixed fields in MSDU_INfO_T.
    ASSERT(prStaRec->ucNetTypeIndex != NETWORK_TYPE_AIS_INDEX);
    prBssInfo = &(prAdapter->rWifiVar.arBssInfo[prStaRec->ucNetTypeIndex]);

    /* Compose Header and Fixed Field */
    assocComposeReAssocRespFrameHeaderAndFF(prStaRec,
                                            (PUINT_8)((UINT_32)(prMsduInfo->prPacket) + MAC_TX_RESERVED_FIELD),
                                            prBssInfo->aucBSSID,
                                            prBssInfo->u2CapInfo,
                                            &u2PayloadLen);

    //4 <3> Update information of MSDU_INFO_T
    ASSERT(prStaRec->ucNetTypeIndex < NETWORK_TYPE_INDEX_NUM);

    prMsduInfo->eSrc = TX_PACKET_MGMT;
    prMsduInfo->ucPacketType = HIF_TX_PACKET_TYPE_MGMT;
    prMsduInfo->ucStaRecIndex = prStaRec->ucIndex;
    prMsduInfo->ucNetworkType = prStaRec->ucNetTypeIndex;
    prMsduInfo->ucMacHeaderLength = WLAN_MAC_MGMT_HEADER_LEN;
    prMsduInfo->fgIs802_1x = FALSE;
    prMsduInfo->fgIs802_11 = TRUE;
    prMsduInfo->u2FrameLength = WLAN_MAC_MGMT_HEADER_LEN + u2PayloadLen;
    prMsduInfo->ucTxSeqNum = nicIncreaseTxSeqNum(prAdapter);
    prMsduInfo->pfTxDoneHandler = aaaFsmRunEventTxDone;
    prMsduInfo->fgIsBasicRate = TRUE;

    //4 <4> Compose the frame body's IEs of the (Re)Association Request  frame.
    assocBuildReAssocRespFrameCommonIEs(prAdapter, prMsduInfo, prBssInfo);


    //4 <5> Compose IEs in MSDU_INFO_T

    /* Append IE */
    for (i = 0; i < sizeof(txAssocRespIETable)/sizeof(APPEND_VAR_IE_ENTRY_T); i++) {
        if (txAssocRespIETable[i].pfnAppendIE) {
            txAssocRespIETable[i].pfnAppendIE(prAdapter, prMsduInfo);
        }
    }

    /* TODO(Kevin): Also release the unused tail room of the composed MMPDU */

    //4 <6> Enqueue the frame to send this (Re)Association request frame.
    nicTxEnqueueMsdu(prAdapter, prMsduInfo);

    return WLAN_STATUS_SUCCESS;

} /* end of assocSendReAssocRespFrame() */
#endif /* CFG_SUPPORT_AAA */