1 // SPDX-License-Identifier: ISC
2 /*
3 * Copyright (C) 2022 MediaTek Inc.
4 */
5
6 #if defined(__FreeBSD__)
7 #define LINUXKPI_PARAM_PREFIX mt7996_
8 #endif
9
10 #include <linux/firmware.h>
11 #include <linux/fs.h>
12 #include "mt7996.h"
13 #include "mcu.h"
14 #include "mac.h"
15 #include "eeprom.h"
16
17 #define fw_name(_dev, name, ...) ({ \
18 char *_fw; \
19 switch (mt76_chip(&(_dev)->mt76)) { \
20 case MT7992_DEVICE_ID: \
21 switch ((_dev)->var.type) { \
22 case MT7992_VAR_TYPE_23: \
23 _fw = MT7992_##name##_23; \
24 break; \
25 default: \
26 _fw = MT7992_##name; \
27 } \
28 break; \
29 case MT7990_DEVICE_ID: \
30 _fw = MT7990_##name; \
31 break; \
32 case MT7996_DEVICE_ID: \
33 default: \
34 switch ((_dev)->var.type) { \
35 case MT7996_VAR_TYPE_233: \
36 _fw = MT7996_##name##_233; \
37 break; \
38 default: \
39 _fw = MT7996_##name; \
40 } \
41 break; \
42 } \
43 _fw; \
44 })
45
46 struct mt7996_patch_hdr {
47 char build_date[16];
48 char platform[4];
49 __be32 hw_sw_ver;
50 __be32 patch_ver;
51 __be16 checksum;
52 u16 reserved;
53 struct {
54 __be32 patch_ver;
55 __be32 subsys;
56 __be32 feature;
57 __be32 n_region;
58 __be32 crc;
59 u32 reserved[11];
60 } desc;
61 } __packed;
62
63 struct mt7996_patch_sec {
64 __be32 type;
65 __be32 offs;
66 __be32 size;
67 union {
68 __be32 spec[13];
69 struct {
70 __be32 addr;
71 __be32 len;
72 __be32 sec_key_idx;
73 __be32 align_len;
74 u32 reserved[9];
75 } info;
76 };
77 } __packed;
78
79 struct mt7996_fw_trailer {
80 u8 chip_id;
81 u8 eco_code;
82 u8 n_region;
83 u8 format_ver;
84 u8 format_flag;
85 u8 reserved[2];
86 char fw_ver[10];
87 char build_date[15];
88 u32 crc;
89 } __packed;
90
91 struct mt7996_fw_region {
92 __le32 decomp_crc;
93 __le32 decomp_len;
94 __le32 decomp_blk_sz;
95 u8 reserved[4];
96 __le32 addr;
97 __le32 len;
98 u8 feature_set;
99 u8 reserved1[15];
100 } __packed;
101
102 #define MCU_PATCH_ADDRESS 0x200000
103
104 #define HE_PHY(p, c) u8_get_bits(c, IEEE80211_HE_PHY_##p)
105 #define HE_MAC(m, c) u8_get_bits(c, IEEE80211_HE_MAC_##m)
106 #define EHT_PHY(p, c) u8_get_bits(c, IEEE80211_EHT_PHY_##p)
107
108 static bool sr_scene_detect = true;
109 module_param(sr_scene_detect, bool, 0644);
110 MODULE_PARM_DESC(sr_scene_detect, "Enable firmware scene detection algorithm");
111
112 static u8
mt7996_mcu_get_sta_nss(u16 mcs_map)113 mt7996_mcu_get_sta_nss(u16 mcs_map)
114 {
115 u8 nss;
116
117 for (nss = 8; nss > 0; nss--) {
118 u8 nss_mcs = (mcs_map >> (2 * (nss - 1))) & 3;
119
120 if (nss_mcs != IEEE80211_VHT_MCS_NOT_SUPPORTED)
121 break;
122 }
123
124 return nss - 1;
125 }
126
127 static void
mt7996_mcu_set_sta_he_mcs(struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link,__le16 * he_mcs,u16 mcs_map)128 mt7996_mcu_set_sta_he_mcs(struct ieee80211_link_sta *link_sta,
129 struct mt7996_vif_link *link,
130 __le16 *he_mcs, u16 mcs_map)
131 {
132 int nss, max_nss = link_sta->rx_nss > 3 ? 4 : link_sta->rx_nss;
133 enum nl80211_band band = link->phy->mt76->chandef.chan->band;
134 const u16 *mask = link->bitrate_mask.control[band].he_mcs;
135
136 for (nss = 0; nss < max_nss; nss++) {
137 int mcs;
138
139 switch ((mcs_map >> (2 * nss)) & 0x3) {
140 case IEEE80211_HE_MCS_SUPPORT_0_11:
141 mcs = GENMASK(11, 0);
142 break;
143 case IEEE80211_HE_MCS_SUPPORT_0_9:
144 mcs = GENMASK(9, 0);
145 break;
146 case IEEE80211_HE_MCS_SUPPORT_0_7:
147 mcs = GENMASK(7, 0);
148 break;
149 default:
150 mcs = 0;
151 }
152
153 mcs = mcs ? fls(mcs & mask[nss]) - 1 : -1;
154
155 switch (mcs) {
156 case 0 ... 7:
157 mcs = IEEE80211_HE_MCS_SUPPORT_0_7;
158 break;
159 case 8 ... 9:
160 mcs = IEEE80211_HE_MCS_SUPPORT_0_9;
161 break;
162 case 10 ... 11:
163 mcs = IEEE80211_HE_MCS_SUPPORT_0_11;
164 break;
165 default:
166 mcs = IEEE80211_HE_MCS_NOT_SUPPORTED;
167 break;
168 }
169 mcs_map &= ~(0x3 << (nss * 2));
170 mcs_map |= mcs << (nss * 2);
171 }
172
173 *he_mcs = cpu_to_le16(mcs_map);
174 }
175
176 static void
mt7996_mcu_set_sta_vht_mcs(struct ieee80211_link_sta * link_sta,__le16 * vht_mcs,const u16 * mask)177 mt7996_mcu_set_sta_vht_mcs(struct ieee80211_link_sta *link_sta,
178 __le16 *vht_mcs, const u16 *mask)
179 {
180 u16 mcs, mcs_map = le16_to_cpu(link_sta->vht_cap.vht_mcs.rx_mcs_map);
181 int nss, max_nss = link_sta->rx_nss > 3 ? 4 : link_sta->rx_nss;
182
183 for (nss = 0; nss < max_nss; nss++, mcs_map >>= 2) {
184 switch (mcs_map & 0x3) {
185 case IEEE80211_VHT_MCS_SUPPORT_0_9:
186 mcs = GENMASK(9, 0);
187 break;
188 case IEEE80211_VHT_MCS_SUPPORT_0_8:
189 mcs = GENMASK(8, 0);
190 break;
191 case IEEE80211_VHT_MCS_SUPPORT_0_7:
192 mcs = GENMASK(7, 0);
193 break;
194 default:
195 mcs = 0;
196 }
197
198 vht_mcs[nss] = cpu_to_le16(mcs & mask[nss]);
199 }
200 }
201
202 static void
mt7996_mcu_set_sta_ht_mcs(struct ieee80211_link_sta * link_sta,u8 * ht_mcs,const u8 * mask)203 mt7996_mcu_set_sta_ht_mcs(struct ieee80211_link_sta *link_sta,
204 u8 *ht_mcs, const u8 *mask)
205 {
206 int nss, max_nss = link_sta->rx_nss > 3 ? 4 : link_sta->rx_nss;
207
208 for (nss = 0; nss < max_nss; nss++)
209 ht_mcs[nss] = link_sta->ht_cap.mcs.rx_mask[nss] & mask[nss];
210 }
211
212 static int
mt7996_mcu_parse_response(struct mt76_dev * mdev,int cmd,struct sk_buff * skb,int seq)213 mt7996_mcu_parse_response(struct mt76_dev *mdev, int cmd,
214 struct sk_buff *skb, int seq)
215 {
216 struct mt7996_mcu_rxd *rxd;
217 struct mt7996_mcu_uni_event *event;
218 int mcu_cmd = FIELD_GET(__MCU_CMD_FIELD_ID, cmd);
219 int ret = 0;
220
221 if (!skb) {
222 dev_err(mdev->dev, "Message %08x (seq %d) timeout\n",
223 cmd, seq);
224 return -ETIMEDOUT;
225 }
226
227 rxd = (struct mt7996_mcu_rxd *)skb->data;
228 if (seq != rxd->seq)
229 return -EAGAIN;
230
231 if (cmd == MCU_CMD(PATCH_SEM_CONTROL)) {
232 skb_pull(skb, sizeof(*rxd) - 4);
233 ret = *skb->data;
234 } else if ((rxd->option & MCU_UNI_CMD_EVENT) &&
235 rxd->eid == MCU_UNI_EVENT_RESULT) {
236 skb_pull(skb, sizeof(*rxd));
237 event = (struct mt7996_mcu_uni_event *)skb->data;
238 ret = le32_to_cpu(event->status);
239 /* skip invalid event */
240 if (mcu_cmd != event->cid)
241 ret = -EAGAIN;
242 } else {
243 skb_pull(skb, sizeof(struct mt7996_mcu_rxd));
244 }
245
246 return ret;
247 }
248
249 static int
mt7996_mcu_send_message(struct mt76_dev * mdev,struct sk_buff * skb,int cmd,int * wait_seq)250 mt7996_mcu_send_message(struct mt76_dev *mdev, struct sk_buff *skb,
251 int cmd, int *wait_seq)
252 {
253 struct mt7996_dev *dev = container_of(mdev, struct mt7996_dev, mt76);
254 int txd_len, mcu_cmd = FIELD_GET(__MCU_CMD_FIELD_ID, cmd);
255 struct mt76_connac2_mcu_uni_txd *uni_txd;
256 struct mt76_connac2_mcu_txd *mcu_txd;
257 enum mt76_mcuq_id qid;
258 __le32 *txd;
259 u32 val;
260 u8 seq;
261
262 mdev->mcu.timeout = 20 * HZ;
263
264 seq = ++dev->mt76.mcu.msg_seq & 0xf;
265 if (!seq)
266 seq = ++dev->mt76.mcu.msg_seq & 0xf;
267
268 if (cmd == MCU_CMD(FW_SCATTER)) {
269 qid = MT_MCUQ_FWDL;
270 goto exit;
271 }
272
273 txd_len = cmd & __MCU_CMD_FIELD_UNI ? sizeof(*uni_txd) : sizeof(*mcu_txd);
274 txd = (__le32 *)skb_push(skb, txd_len);
275 if (test_bit(MT76_STATE_MCU_RUNNING, &dev->mphy.state) && mt7996_has_wa(dev))
276 qid = MT_MCUQ_WA;
277 else
278 qid = MT_MCUQ_WM;
279
280 val = FIELD_PREP(MT_TXD0_TX_BYTES, skb->len) |
281 FIELD_PREP(MT_TXD0_PKT_FMT, MT_TX_TYPE_CMD) |
282 FIELD_PREP(MT_TXD0_Q_IDX, MT_TX_MCU_PORT_RX_Q0);
283 txd[0] = cpu_to_le32(val);
284
285 val = FIELD_PREP(MT_TXD1_HDR_FORMAT, MT_HDR_FORMAT_CMD);
286 txd[1] = cpu_to_le32(val);
287
288 if (cmd & __MCU_CMD_FIELD_UNI) {
289 uni_txd = (struct mt76_connac2_mcu_uni_txd *)txd;
290 uni_txd->len = cpu_to_le16(skb->len - sizeof(uni_txd->txd));
291 uni_txd->cid = cpu_to_le16(mcu_cmd);
292 uni_txd->s2d_index = MCU_S2D_H2CN;
293 uni_txd->pkt_type = MCU_PKT_ID;
294 uni_txd->seq = seq;
295
296 if (cmd & __MCU_CMD_FIELD_QUERY)
297 uni_txd->option = MCU_CMD_UNI_QUERY_ACK;
298 else
299 uni_txd->option = MCU_CMD_UNI_EXT_ACK;
300
301 if ((cmd & __MCU_CMD_FIELD_WA) && (cmd & __MCU_CMD_FIELD_WM))
302 uni_txd->s2d_index = MCU_S2D_H2CN;
303 else if (cmd & __MCU_CMD_FIELD_WA)
304 uni_txd->s2d_index = MCU_S2D_H2C;
305 else if (cmd & __MCU_CMD_FIELD_WM)
306 uni_txd->s2d_index = MCU_S2D_H2N;
307
308 goto exit;
309 }
310
311 mcu_txd = (struct mt76_connac2_mcu_txd *)txd;
312 mcu_txd->len = cpu_to_le16(skb->len - sizeof(mcu_txd->txd));
313 mcu_txd->pq_id = cpu_to_le16(MCU_PQ_ID(MT_TX_PORT_IDX_MCU,
314 MT_TX_MCU_PORT_RX_Q0));
315 mcu_txd->pkt_type = MCU_PKT_ID;
316 mcu_txd->seq = seq;
317
318 mcu_txd->cid = FIELD_GET(__MCU_CMD_FIELD_ID, cmd);
319 mcu_txd->set_query = MCU_Q_NA;
320 mcu_txd->ext_cid = FIELD_GET(__MCU_CMD_FIELD_EXT_ID, cmd);
321 if (mcu_txd->ext_cid) {
322 mcu_txd->ext_cid_ack = 1;
323
324 if (cmd & __MCU_CMD_FIELD_QUERY)
325 mcu_txd->set_query = MCU_Q_QUERY;
326 else
327 mcu_txd->set_query = MCU_Q_SET;
328 }
329
330 if (cmd & __MCU_CMD_FIELD_WA)
331 mcu_txd->s2d_index = MCU_S2D_H2C;
332 else
333 mcu_txd->s2d_index = MCU_S2D_H2N;
334
335 exit:
336 if (wait_seq)
337 *wait_seq = seq;
338
339 return mt76_tx_queue_skb_raw(dev, mdev->q_mcu[qid], skb, 0);
340 }
341
mt7996_mcu_wa_cmd(struct mt7996_dev * dev,int cmd,u32 a1,u32 a2,u32 a3)342 int mt7996_mcu_wa_cmd(struct mt7996_dev *dev, int cmd, u32 a1, u32 a2, u32 a3)
343 {
344 struct {
345 u8 _rsv[4];
346
347 __le16 tag;
348 __le16 len;
349 __le32 args[3];
350 } __packed req = {
351 .args = {
352 cpu_to_le32(a1),
353 cpu_to_le32(a2),
354 cpu_to_le32(a3),
355 },
356 };
357
358 if (mt7996_has_wa(dev))
359 return mt76_mcu_send_msg(&dev->mt76, cmd, &req.args,
360 sizeof(req.args), false);
361
362 req.tag = cpu_to_le16(cmd == MCU_WA_PARAM_CMD(QUERY) ? UNI_CMD_SDO_QUERY :
363 UNI_CMD_SDO_SET);
364 req.len = cpu_to_le16(sizeof(req) - 4);
365
366 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_UNI_CMD(SDO), &req,
367 sizeof(req), false);
368 }
369
370 static void
mt7996_mcu_csa_finish(void * priv,u8 * mac,struct ieee80211_vif * vif)371 mt7996_mcu_csa_finish(void *priv, u8 *mac, struct ieee80211_vif *vif)
372 {
373 if (!vif->bss_conf.csa_active || vif->type == NL80211_IFTYPE_STATION)
374 return;
375
376 ieee80211_csa_finish(vif, 0);
377 }
378
379 static void
mt7996_mcu_rx_radar_detected(struct mt7996_dev * dev,struct sk_buff * skb)380 mt7996_mcu_rx_radar_detected(struct mt7996_dev *dev, struct sk_buff *skb)
381 {
382 struct mt76_phy *mphy = &dev->mt76.phy;
383 struct mt7996_mcu_rdd_report *r;
384
385 r = (struct mt7996_mcu_rdd_report *)skb->data;
386
387 switch (r->rdd_idx) {
388 case MT_RDD_IDX_BAND2:
389 mphy = dev->mt76.phys[MT_BAND2];
390 break;
391 case MT_RDD_IDX_BAND1:
392 mphy = dev->mt76.phys[MT_BAND1];
393 break;
394 case MT_RDD_IDX_BACKGROUND:
395 if (!dev->rdd2_phy)
396 return;
397 mphy = dev->rdd2_phy->mt76;
398 break;
399 default:
400 dev_err(dev->mt76.dev, "Unknown RDD idx %d\n", r->rdd_idx);
401 return;
402 }
403
404 if (!mphy)
405 return;
406
407 if (r->rdd_idx == MT_RDD_IDX_BACKGROUND)
408 cfg80211_background_radar_event(mphy->hw->wiphy,
409 &dev->rdd2_chandef,
410 GFP_ATOMIC);
411 else
412 ieee80211_radar_detected(mphy->hw, NULL);
413 dev->hw_pattern++;
414 }
415
416 static void
mt7996_mcu_rx_log_message(struct mt7996_dev * dev,struct sk_buff * skb)417 mt7996_mcu_rx_log_message(struct mt7996_dev *dev, struct sk_buff *skb)
418 {
419 #define UNI_EVENT_FW_LOG_FORMAT 0
420 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
421 const char *data = (char *)&rxd[1] + 4, *type;
422 #if defined(__linux__)
423 struct tlv *tlv = (struct tlv *)data;
424 #elif defined(__FreeBSD__)
425 const struct tlv *tlv = (const struct tlv *)data;
426 #endif
427 int len;
428
429 if (!(rxd->option & MCU_UNI_CMD_EVENT)) {
430 len = skb->len - sizeof(*rxd);
431 data = (char *)&rxd[1];
432 goto out;
433 }
434
435 if (le16_to_cpu(tlv->tag) != UNI_EVENT_FW_LOG_FORMAT)
436 return;
437
438 data += sizeof(*tlv) + 4;
439 len = le16_to_cpu(tlv->len) - sizeof(*tlv) - 4;
440
441 out:
442 switch (rxd->s2d_index) {
443 case 0:
444 #if defined(CONFIG_MT7996_DEBUGFS)
445 if (mt7996_debugfs_rx_log(dev, data, len))
446 return;
447 #endif
448
449 type = "WM";
450 break;
451 case 2:
452 type = "WA";
453 break;
454 default:
455 type = "unknown";
456 break;
457 }
458
459 wiphy_info(mt76_hw(dev)->wiphy, "%s: %.*s", type, len, data);
460 }
461
462 static void
mt7996_mcu_cca_finish(void * priv,u8 * mac,struct ieee80211_vif * vif)463 mt7996_mcu_cca_finish(void *priv, u8 *mac, struct ieee80211_vif *vif)
464 {
465 if (!vif->bss_conf.color_change_active || vif->type == NL80211_IFTYPE_STATION)
466 return;
467
468 ieee80211_color_change_finish(vif, 0);
469 }
470
471 static void
mt7996_mcu_ie_countdown(struct mt7996_dev * dev,struct sk_buff * skb)472 mt7996_mcu_ie_countdown(struct mt7996_dev *dev, struct sk_buff *skb)
473 {
474 #define UNI_EVENT_IE_COUNTDOWN_CSA 0
475 #define UNI_EVENT_IE_COUNTDOWN_BCC 1
476 struct header {
477 u8 band;
478 u8 rsv[3];
479 };
480 struct mt76_phy *mphy = &dev->mt76.phy;
481 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
482 const char *data = (char *)&rxd[1], *tail;
483 #if defined(__linux__)
484 struct header *hdr = (struct header *)data;
485 struct tlv *tlv = (struct tlv *)(data + 4);
486 #elif defined(__FreeBSD__)
487 const struct header *hdr = (const struct header *)data;
488 const struct tlv *tlv = (const struct tlv *)(data + 4);
489 #endif
490
491 if (hdr->band >= ARRAY_SIZE(dev->mt76.phys))
492 return;
493
494 if (hdr->band && dev->mt76.phys[hdr->band])
495 mphy = dev->mt76.phys[hdr->band];
496
497 tail = skb->data + skb->len;
498 data += sizeof(struct header);
499 while (data + sizeof(struct tlv) < tail && le16_to_cpu(tlv->len)) {
500 switch (le16_to_cpu(tlv->tag)) {
501 case UNI_EVENT_IE_COUNTDOWN_CSA:
502 ieee80211_iterate_active_interfaces_atomic(mphy->hw,
503 IEEE80211_IFACE_ITER_RESUME_ALL,
504 mt7996_mcu_csa_finish, mphy->hw);
505 break;
506 case UNI_EVENT_IE_COUNTDOWN_BCC:
507 ieee80211_iterate_active_interfaces_atomic(mphy->hw,
508 IEEE80211_IFACE_ITER_RESUME_ALL,
509 mt7996_mcu_cca_finish, mphy->hw);
510 break;
511 }
512
513 data += le16_to_cpu(tlv->len);
514 #if defined(__linux__)
515 tlv = (struct tlv *)data;
516 #elif defined(__FreeBSD__)
517 tlv = (const struct tlv *)data;
518 #endif
519 }
520 }
521
522 static int
mt7996_mcu_update_tx_gi(struct rate_info * rate,struct all_sta_trx_rate * mcu_rate)523 mt7996_mcu_update_tx_gi(struct rate_info *rate, struct all_sta_trx_rate *mcu_rate)
524 {
525 switch (mcu_rate->tx_mode) {
526 case MT_PHY_TYPE_CCK:
527 case MT_PHY_TYPE_OFDM:
528 break;
529 case MT_PHY_TYPE_HT:
530 case MT_PHY_TYPE_HT_GF:
531 case MT_PHY_TYPE_VHT:
532 if (mcu_rate->tx_gi)
533 rate->flags |= RATE_INFO_FLAGS_SHORT_GI;
534 else
535 rate->flags &= ~RATE_INFO_FLAGS_SHORT_GI;
536 break;
537 case MT_PHY_TYPE_HE_SU:
538 case MT_PHY_TYPE_HE_EXT_SU:
539 case MT_PHY_TYPE_HE_TB:
540 case MT_PHY_TYPE_HE_MU:
541 if (mcu_rate->tx_gi > NL80211_RATE_INFO_HE_GI_3_2)
542 return -EINVAL;
543 rate->he_gi = mcu_rate->tx_gi;
544 break;
545 case MT_PHY_TYPE_EHT_SU:
546 case MT_PHY_TYPE_EHT_TRIG:
547 case MT_PHY_TYPE_EHT_MU:
548 if (mcu_rate->tx_gi > NL80211_RATE_INFO_EHT_GI_3_2)
549 return -EINVAL;
550 rate->eht_gi = mcu_rate->tx_gi;
551 break;
552 default:
553 return -EINVAL;
554 }
555
556 return 0;
557 }
558
559 static void
mt7996_mcu_rx_all_sta_info_event(struct mt7996_dev * dev,struct sk_buff * skb)560 mt7996_mcu_rx_all_sta_info_event(struct mt7996_dev *dev, struct sk_buff *skb)
561 {
562 struct mt7996_mcu_all_sta_info_event *res;
563 u16 i;
564
565 skb_pull(skb, sizeof(struct mt7996_mcu_rxd));
566
567 res = (struct mt7996_mcu_all_sta_info_event *)skb->data;
568
569 for (i = 0; i < le16_to_cpu(res->sta_num); i++) {
570 u8 ac;
571 u16 wlan_idx;
572 struct mt76_wcid *wcid;
573
574 switch (le16_to_cpu(res->tag)) {
575 case UNI_ALL_STA_TXRX_RATE:
576 wlan_idx = le16_to_cpu(res->rate[i].wlan_idx);
577 wcid = mt76_wcid_ptr(dev, wlan_idx);
578
579 if (!wcid)
580 break;
581
582 if (mt7996_mcu_update_tx_gi(&wcid->rate, &res->rate[i]))
583 dev_err(dev->mt76.dev, "Failed to update TX GI\n");
584 break;
585 case UNI_ALL_STA_TXRX_ADM_STAT:
586 wlan_idx = le16_to_cpu(res->adm_stat[i].wlan_idx);
587 wcid = mt76_wcid_ptr(dev, wlan_idx);
588
589 if (!wcid)
590 break;
591
592 for (ac = 0; ac < IEEE80211_NUM_ACS; ac++) {
593 wcid->stats.tx_bytes +=
594 le32_to_cpu(res->adm_stat[i].tx_bytes[ac]);
595 wcid->stats.rx_bytes +=
596 le32_to_cpu(res->adm_stat[i].rx_bytes[ac]);
597 }
598 break;
599 case UNI_ALL_STA_TXRX_MSDU_COUNT:
600 wlan_idx = le16_to_cpu(res->msdu_cnt[i].wlan_idx);
601 wcid = mt76_wcid_ptr(dev, wlan_idx);
602
603 if (!wcid)
604 break;
605
606 wcid->stats.tx_packets +=
607 le32_to_cpu(res->msdu_cnt[i].tx_msdu_cnt);
608 wcid->stats.rx_packets +=
609 le32_to_cpu(res->msdu_cnt[i].rx_msdu_cnt);
610 break;
611 default:
612 break;
613 }
614 }
615 }
616
617 static void
mt7996_mcu_rx_thermal_notify(struct mt7996_dev * dev,struct sk_buff * skb)618 mt7996_mcu_rx_thermal_notify(struct mt7996_dev *dev, struct sk_buff *skb)
619 {
620 #define THERMAL_NOTIFY_TAG 0x4
621 #define THERMAL_NOTIFY 0x2
622 struct mt76_phy *mphy = &dev->mt76.phy;
623 struct mt7996_mcu_thermal_notify *n;
624 struct mt7996_phy *phy;
625
626 n = (struct mt7996_mcu_thermal_notify *)skb->data;
627
628 if (le16_to_cpu(n->tag) != THERMAL_NOTIFY_TAG)
629 return;
630
631 if (n->event_id != THERMAL_NOTIFY)
632 return;
633
634 if (n->band_idx > MT_BAND2)
635 return;
636
637 mphy = dev->mt76.phys[n->band_idx];
638 if (!mphy)
639 return;
640
641 phy = (struct mt7996_phy *)mphy->priv;
642 phy->throttle_state = n->duty_percent;
643 }
644
645 static void
mt7996_mcu_rx_ext_event(struct mt7996_dev * dev,struct sk_buff * skb)646 mt7996_mcu_rx_ext_event(struct mt7996_dev *dev, struct sk_buff *skb)
647 {
648 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
649
650 switch (rxd->ext_eid) {
651 case MCU_EXT_EVENT_FW_LOG_2_HOST:
652 mt7996_mcu_rx_log_message(dev, skb);
653 break;
654 default:
655 break;
656 }
657 }
658
659 static void
mt7996_mcu_rx_unsolicited_event(struct mt7996_dev * dev,struct sk_buff * skb)660 mt7996_mcu_rx_unsolicited_event(struct mt7996_dev *dev, struct sk_buff *skb)
661 {
662 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
663
664 switch (rxd->eid) {
665 case MCU_EVENT_EXT:
666 mt7996_mcu_rx_ext_event(dev, skb);
667 break;
668 case MCU_UNI_EVENT_THERMAL:
669 mt7996_mcu_rx_thermal_notify(dev, skb);
670 break;
671 default:
672 break;
673 }
674 dev_kfree_skb(skb);
675 }
676
677 static void
mt7996_mcu_wed_rro_event(struct mt7996_dev * dev,struct sk_buff * skb)678 mt7996_mcu_wed_rro_event(struct mt7996_dev *dev, struct sk_buff *skb)
679 {
680 struct mt7996_mcu_wed_rro_event *event = (void *)skb->data;
681
682 if (!dev->has_rro)
683 return;
684
685 skb_pull(skb, sizeof(struct mt7996_mcu_rxd) + 4);
686
687 switch (le16_to_cpu(event->tag)) {
688 case UNI_WED_RRO_BA_SESSION_STATUS: {
689 struct mt7996_mcu_wed_rro_ba_event *e;
690
691 while (skb->len >= sizeof(*e)) {
692 struct mt76_rx_tid *tid;
693 struct mt76_wcid *wcid;
694 u16 idx;
695
696 e = (void *)skb->data;
697 idx = le16_to_cpu(e->wlan_id);
698 wcid = mt76_wcid_ptr(dev, idx);
699 if (!wcid || !wcid->sta)
700 break;
701
702 if (e->tid >= ARRAY_SIZE(wcid->aggr))
703 break;
704
705 tid = rcu_dereference(wcid->aggr[e->tid]);
706 if (!tid)
707 break;
708
709 tid->id = le16_to_cpu(e->id);
710 skb_pull(skb, sizeof(*e));
711 }
712 break;
713 }
714 case UNI_WED_RRO_BA_SESSION_DELETE: {
715 struct mt7996_mcu_wed_rro_ba_delete_event *e;
716
717 while (skb->len >= sizeof(*e)) {
718 struct mt7996_wed_rro_session_id *session;
719
720 e = (void *)skb->data;
721 session = kzalloc(sizeof(*session), GFP_ATOMIC);
722 if (!session)
723 break;
724
725 session->id = le16_to_cpu(e->session_id);
726
727 spin_lock_bh(&dev->wed_rro.lock);
728 list_add_tail(&session->list, &dev->wed_rro.poll_list);
729 spin_unlock_bh(&dev->wed_rro.lock);
730
731 ieee80211_queue_work(mt76_hw(dev), &dev->wed_rro.work);
732 skb_pull(skb, sizeof(*e));
733 }
734 break;
735 }
736 default:
737 break;
738 }
739 }
740
741 static void
mt7996_mcu_uni_rx_unsolicited_event(struct mt7996_dev * dev,struct sk_buff * skb)742 mt7996_mcu_uni_rx_unsolicited_event(struct mt7996_dev *dev, struct sk_buff *skb)
743 {
744 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
745
746 switch (rxd->eid) {
747 case MCU_UNI_EVENT_FW_LOG_2_HOST:
748 mt7996_mcu_rx_log_message(dev, skb);
749 break;
750 case MCU_UNI_EVENT_IE_COUNTDOWN:
751 mt7996_mcu_ie_countdown(dev, skb);
752 break;
753 case MCU_UNI_EVENT_RDD_REPORT:
754 mt7996_mcu_rx_radar_detected(dev, skb);
755 break;
756 case MCU_UNI_EVENT_ALL_STA_INFO:
757 mt7996_mcu_rx_all_sta_info_event(dev, skb);
758 break;
759 case MCU_UNI_EVENT_WED_RRO:
760 mt7996_mcu_wed_rro_event(dev, skb);
761 break;
762 default:
763 break;
764 }
765 dev_kfree_skb(skb);
766 }
767
mt7996_mcu_rx_event(struct mt7996_dev * dev,struct sk_buff * skb)768 void mt7996_mcu_rx_event(struct mt7996_dev *dev, struct sk_buff *skb)
769 {
770 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
771
772 if (rxd->option & MCU_UNI_CMD_UNSOLICITED_EVENT) {
773 mt7996_mcu_uni_rx_unsolicited_event(dev, skb);
774 return;
775 }
776
777 /* WA still uses legacy event*/
778 if (rxd->ext_eid == MCU_EXT_EVENT_FW_LOG_2_HOST ||
779 !rxd->seq)
780 mt7996_mcu_rx_unsolicited_event(dev, skb);
781 else
782 mt76_mcu_rx_event(&dev->mt76, skb);
783 }
784
785 static struct tlv *
mt7996_mcu_add_uni_tlv(struct sk_buff * skb,u16 tag,u16 len)786 mt7996_mcu_add_uni_tlv(struct sk_buff *skb, u16 tag, u16 len)
787 {
788 struct tlv *ptlv = skb_put_zero(skb, len);
789
790 ptlv->tag = cpu_to_le16(tag);
791 ptlv->len = cpu_to_le16(len);
792
793 return ptlv;
794 }
795
796 static void
mt7996_mcu_bss_rfch_tlv(struct sk_buff * skb,struct mt7996_phy * phy)797 mt7996_mcu_bss_rfch_tlv(struct sk_buff *skb, struct mt7996_phy *phy)
798 {
799 static const u8 rlm_ch_band[] = {
800 [NL80211_BAND_2GHZ] = 1,
801 [NL80211_BAND_5GHZ] = 2,
802 [NL80211_BAND_6GHZ] = 3,
803 };
804 struct cfg80211_chan_def *chandef = &phy->mt76->chandef;
805 struct bss_rlm_tlv *ch;
806 struct tlv *tlv;
807 int freq1 = chandef->center_freq1;
808
809 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_RLM, sizeof(*ch));
810
811 ch = (struct bss_rlm_tlv *)tlv;
812 ch->control_channel = chandef->chan->hw_value;
813 ch->center_chan = ieee80211_frequency_to_channel(freq1);
814 ch->bw = mt76_connac_chan_bw(chandef);
815 ch->tx_streams = hweight8(phy->mt76->antenna_mask);
816 ch->rx_streams = hweight8(phy->mt76->antenna_mask);
817 ch->band = rlm_ch_band[chandef->chan->band];
818
819 if (chandef->width == NL80211_CHAN_WIDTH_80P80) {
820 int freq2 = chandef->center_freq2;
821
822 ch->center_chan2 = ieee80211_frequency_to_channel(freq2);
823 }
824 }
825
826 static void
mt7996_mcu_bss_ra_tlv(struct sk_buff * skb,struct mt7996_phy * phy)827 mt7996_mcu_bss_ra_tlv(struct sk_buff *skb, struct mt7996_phy *phy)
828 {
829 struct bss_ra_tlv *ra;
830 struct tlv *tlv;
831
832 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_RA, sizeof(*ra));
833
834 ra = (struct bss_ra_tlv *)tlv;
835 ra->short_preamble = true;
836 }
837
838 static void
mt7996_mcu_bss_he_tlv(struct sk_buff * skb,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct mt7996_phy * phy)839 mt7996_mcu_bss_he_tlv(struct sk_buff *skb, struct ieee80211_vif *vif,
840 struct ieee80211_bss_conf *link_conf,
841 struct mt7996_phy *phy)
842 {
843 #define DEFAULT_HE_PE_DURATION 4
844 #define DEFAULT_HE_DURATION_RTS_THRES 1023
845 const struct ieee80211_sta_he_cap *cap;
846 struct bss_info_uni_he *he;
847 struct tlv *tlv;
848
849 cap = mt76_connac_get_he_phy_cap(phy->mt76, vif);
850
851 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_HE_BASIC, sizeof(*he));
852
853 he = (struct bss_info_uni_he *)tlv;
854 he->he_pe_duration = link_conf->htc_trig_based_pkt_ext;
855 if (!he->he_pe_duration)
856 he->he_pe_duration = DEFAULT_HE_PE_DURATION;
857
858 he->he_rts_thres = cpu_to_le16(link_conf->frame_time_rts_th);
859 if (!he->he_rts_thres)
860 he->he_rts_thres = cpu_to_le16(DEFAULT_HE_DURATION_RTS_THRES);
861
862 he->max_nss_mcs[CMD_HE_MCS_BW80] = cap->he_mcs_nss_supp.tx_mcs_80;
863 he->max_nss_mcs[CMD_HE_MCS_BW160] = cap->he_mcs_nss_supp.tx_mcs_160;
864 he->max_nss_mcs[CMD_HE_MCS_BW8080] = cap->he_mcs_nss_supp.tx_mcs_80p80;
865 }
866
867 static void
mt7996_mcu_bss_mbssid_tlv(struct sk_buff * skb,struct ieee80211_bss_conf * link_conf,bool enable)868 mt7996_mcu_bss_mbssid_tlv(struct sk_buff *skb, struct ieee80211_bss_conf *link_conf,
869 bool enable)
870 {
871 struct bss_info_uni_mbssid *mbssid;
872 struct tlv *tlv;
873
874 if (!link_conf->bssid_indicator && enable)
875 return;
876
877 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_11V_MBSSID, sizeof(*mbssid));
878
879 mbssid = (struct bss_info_uni_mbssid *)tlv;
880
881 if (enable) {
882 mbssid->max_indicator = link_conf->bssid_indicator;
883 mbssid->mbss_idx = link_conf->bssid_index;
884 mbssid->tx_bss_omac_idx = 0;
885 }
886 }
887
888 static void
mt7996_mcu_bss_bmc_tlv(struct sk_buff * skb,struct mt76_vif_link * mlink,struct mt7996_phy * phy)889 mt7996_mcu_bss_bmc_tlv(struct sk_buff *skb, struct mt76_vif_link *mlink,
890 struct mt7996_phy *phy)
891 {
892 struct bss_rate_tlv *bmc;
893 struct cfg80211_chan_def *chandef = &phy->mt76->chandef;
894 enum nl80211_band band = chandef->chan->band;
895 struct tlv *tlv;
896 u8 idx = mlink->mcast_rates_idx ?
897 mlink->mcast_rates_idx : mlink->basic_rates_idx;
898
899 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_RATE, sizeof(*bmc));
900
901 bmc = (struct bss_rate_tlv *)tlv;
902
903 bmc->short_preamble = (band == NL80211_BAND_2GHZ);
904 bmc->bc_fixed_rate = idx;
905 bmc->mc_fixed_rate = idx;
906 }
907
908 static void
mt7996_mcu_bss_txcmd_tlv(struct sk_buff * skb,bool en)909 mt7996_mcu_bss_txcmd_tlv(struct sk_buff *skb, bool en)
910 {
911 struct bss_txcmd_tlv *txcmd;
912 struct tlv *tlv;
913
914 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_TXCMD, sizeof(*txcmd));
915
916 txcmd = (struct bss_txcmd_tlv *)tlv;
917 txcmd->txcmd_mode = en;
918 }
919
920 static void
mt7996_mcu_bss_mld_tlv(struct sk_buff * skb,struct mt76_vif_link * mlink)921 mt7996_mcu_bss_mld_tlv(struct sk_buff *skb, struct mt76_vif_link *mlink)
922 {
923 struct bss_mld_tlv *mld;
924 struct tlv *tlv;
925
926 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_MLD, sizeof(*mld));
927
928 mld = (struct bss_mld_tlv *)tlv;
929 mld->group_mld_id = 0xff;
930 mld->own_mld_id = mlink->idx;
931 mld->remap_idx = 0xff;
932 }
933
934 static void
mt7996_mcu_bss_sec_tlv(struct sk_buff * skb,struct mt76_vif_link * mlink)935 mt7996_mcu_bss_sec_tlv(struct sk_buff *skb, struct mt76_vif_link *mlink)
936 {
937 struct bss_sec_tlv *sec;
938 struct tlv *tlv;
939
940 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_SEC, sizeof(*sec));
941
942 sec = (struct bss_sec_tlv *)tlv;
943 sec->cipher = mlink->cipher;
944 }
945
946 static int
mt7996_mcu_muar_config(struct mt7996_dev * dev,struct mt76_vif_link * mlink,const u8 * addr,bool bssid,bool enable)947 mt7996_mcu_muar_config(struct mt7996_dev *dev, struct mt76_vif_link *mlink,
948 const u8 *addr, bool bssid, bool enable)
949 {
950 #define UNI_MUAR_ENTRY 2
951 u32 idx = mlink->omac_idx - REPEATER_BSSID_START;
952 struct {
953 struct {
954 u8 band;
955 u8 __rsv[3];
956 } hdr;
957
958 __le16 tag;
959 __le16 len;
960
961 bool smesh;
962 u8 bssid;
963 u8 index;
964 u8 entry_add;
965 u8 addr[ETH_ALEN];
966 u8 __rsv[2];
967 } __packed req = {
968 .hdr.band = mlink->band_idx,
969 .tag = cpu_to_le16(UNI_MUAR_ENTRY),
970 .len = cpu_to_le16(sizeof(req) - sizeof(req.hdr)),
971 .smesh = false,
972 .index = idx * 2 + bssid,
973 .entry_add = true,
974 };
975
976 if (enable)
977 memcpy(req.addr, addr, ETH_ALEN);
978
979 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(REPT_MUAR), &req,
980 sizeof(req), true);
981 }
982
983 static void
mt7996_mcu_bss_ifs_timing_tlv(struct sk_buff * skb,struct mt7996_phy * phy)984 mt7996_mcu_bss_ifs_timing_tlv(struct sk_buff *skb, struct mt7996_phy *phy)
985 {
986 struct bss_ifs_time_tlv *ifs_time;
987 struct tlv *tlv;
988 bool is_2ghz = phy->mt76->chandef.chan->band == NL80211_BAND_2GHZ;
989
990 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_IFS_TIME, sizeof(*ifs_time));
991
992 ifs_time = (struct bss_ifs_time_tlv *)tlv;
993 ifs_time->slot_valid = true;
994 ifs_time->sifs_valid = true;
995 ifs_time->rifs_valid = true;
996 ifs_time->eifs_valid = true;
997
998 ifs_time->slot_time = cpu_to_le16(phy->slottime);
999 ifs_time->sifs_time = cpu_to_le16(10);
1000 ifs_time->rifs_time = cpu_to_le16(2);
1001 ifs_time->eifs_time = cpu_to_le16(is_2ghz ? 78 : 84);
1002
1003 if (is_2ghz) {
1004 ifs_time->eifs_cck_valid = true;
1005 ifs_time->eifs_cck_time = cpu_to_le16(314);
1006 }
1007 }
1008
1009 static int
mt7996_mcu_bss_basic_tlv(struct sk_buff * skb,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct mt76_vif_link * mvif,struct mt76_phy * phy,u16 wlan_idx,bool enable)1010 mt7996_mcu_bss_basic_tlv(struct sk_buff *skb,
1011 struct ieee80211_vif *vif,
1012 struct ieee80211_bss_conf *link_conf,
1013 struct mt76_vif_link *mvif,
1014 struct mt76_phy *phy, u16 wlan_idx,
1015 bool enable)
1016 {
1017 struct cfg80211_chan_def *chandef = &phy->chandef;
1018 struct mt76_connac_bss_basic_tlv *bss;
1019 u32 type = CONNECTION_INFRA_AP;
1020 u16 sta_wlan_idx = wlan_idx;
1021 struct ieee80211_sta *sta;
1022 struct tlv *tlv;
1023 int idx;
1024
1025 switch (vif->type) {
1026 case NL80211_IFTYPE_MESH_POINT:
1027 case NL80211_IFTYPE_AP:
1028 case NL80211_IFTYPE_MONITOR:
1029 break;
1030 case NL80211_IFTYPE_STATION:
1031 if (enable) {
1032 rcu_read_lock();
1033 sta = ieee80211_find_sta(vif, vif->bss_conf.bssid);
1034 /* TODO: enable BSS_INFO_UAPSD & BSS_INFO_PM */
1035 if (sta) {
1036 struct mt76_wcid *wcid;
1037
1038 wcid = (struct mt76_wcid *)sta->drv_priv;
1039 sta_wlan_idx = wcid->idx;
1040 }
1041 rcu_read_unlock();
1042 }
1043 type = CONNECTION_INFRA_STA;
1044 break;
1045 case NL80211_IFTYPE_ADHOC:
1046 type = CONNECTION_IBSS_ADHOC;
1047 break;
1048 default:
1049 WARN_ON(1);
1050 break;
1051 }
1052
1053 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_BASIC, sizeof(*bss));
1054
1055 bss = (struct mt76_connac_bss_basic_tlv *)tlv;
1056 bss->bcn_interval = cpu_to_le16(link_conf->beacon_int);
1057 bss->dtim_period = link_conf->dtim_period;
1058 bss->bmc_tx_wlan_idx = cpu_to_le16(wlan_idx);
1059 bss->sta_idx = cpu_to_le16(sta_wlan_idx);
1060 bss->conn_type = cpu_to_le32(type);
1061 bss->omac_idx = mvif->omac_idx;
1062 bss->band_idx = mvif->band_idx;
1063 bss->wmm_idx = mvif->wmm_idx;
1064 bss->conn_state = !enable;
1065 bss->active = enable;
1066
1067 idx = mvif->omac_idx > EXT_BSSID_START ? HW_BSSID_0 : mvif->omac_idx;
1068 bss->hw_bss_idx = idx;
1069
1070 if (vif->type == NL80211_IFTYPE_MONITOR) {
1071 memcpy(bss->bssid, phy->macaddr, ETH_ALEN);
1072 return 0;
1073 }
1074
1075 memcpy(bss->bssid, link_conf->bssid, ETH_ALEN);
1076 bss->bcn_interval = cpu_to_le16(link_conf->beacon_int);
1077 bss->dtim_period = vif->bss_conf.dtim_period;
1078 bss->phymode = mt76_connac_get_phy_mode(phy, vif,
1079 chandef->chan->band, NULL);
1080 bss->phymode_ext = mt76_connac_get_phy_mode_ext(phy, &vif->bss_conf,
1081 chandef->chan->band);
1082
1083 return 0;
1084 }
1085
1086 static struct sk_buff *
__mt7996_mcu_alloc_bss_req(struct mt76_dev * dev,struct mt76_vif_link * mvif,int len)1087 __mt7996_mcu_alloc_bss_req(struct mt76_dev *dev, struct mt76_vif_link *mvif, int len)
1088 {
1089 struct bss_req_hdr hdr = {
1090 .bss_idx = mvif->idx,
1091 };
1092 struct sk_buff *skb;
1093
1094 skb = mt76_mcu_msg_alloc(dev, NULL, len);
1095 if (!skb)
1096 return ERR_PTR(-ENOMEM);
1097
1098 skb_put_data(skb, &hdr, sizeof(hdr));
1099
1100 return skb;
1101 }
1102
mt7996_mcu_add_bss_info(struct mt7996_phy * phy,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct mt76_vif_link * mlink,struct mt7996_sta_link * msta_link,int enable)1103 int mt7996_mcu_add_bss_info(struct mt7996_phy *phy, struct ieee80211_vif *vif,
1104 struct ieee80211_bss_conf *link_conf,
1105 struct mt76_vif_link *mlink,
1106 struct mt7996_sta_link *msta_link, int enable)
1107 {
1108 struct mt7996_dev *dev = phy->dev;
1109 struct sk_buff *skb;
1110
1111 if (mlink->omac_idx >= REPEATER_BSSID_START) {
1112 mt7996_mcu_muar_config(dev, mlink, link_conf->addr, false, enable);
1113 mt7996_mcu_muar_config(dev, mlink, link_conf->bssid, true, enable);
1114 }
1115
1116 skb = __mt7996_mcu_alloc_bss_req(&dev->mt76, mlink,
1117 MT7996_BSS_UPDATE_MAX_SIZE);
1118 if (IS_ERR(skb))
1119 return PTR_ERR(skb);
1120
1121 /* bss_basic must be first */
1122 mt7996_mcu_bss_basic_tlv(skb, vif, link_conf, mlink, phy->mt76,
1123 msta_link->wcid.idx, enable);
1124 mt7996_mcu_bss_sec_tlv(skb, mlink);
1125
1126 if (vif->type == NL80211_IFTYPE_MONITOR)
1127 goto out;
1128
1129 if (enable) {
1130 mt7996_mcu_bss_rfch_tlv(skb, phy);
1131 mt7996_mcu_bss_bmc_tlv(skb, mlink, phy);
1132 mt7996_mcu_bss_ra_tlv(skb, phy);
1133 mt7996_mcu_bss_txcmd_tlv(skb, true);
1134 mt7996_mcu_bss_ifs_timing_tlv(skb, phy);
1135
1136 if (vif->bss_conf.he_support)
1137 mt7996_mcu_bss_he_tlv(skb, vif, link_conf, phy);
1138
1139 /* this tag is necessary no matter if the vif is MLD */
1140 mt7996_mcu_bss_mld_tlv(skb, mlink);
1141 }
1142
1143 mt7996_mcu_bss_mbssid_tlv(skb, link_conf, enable);
1144
1145 out:
1146 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1147 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
1148 }
1149
mt7996_mcu_set_timing(struct mt7996_phy * phy,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf)1150 int mt7996_mcu_set_timing(struct mt7996_phy *phy, struct ieee80211_vif *vif,
1151 struct ieee80211_bss_conf *link_conf)
1152 {
1153 struct mt7996_dev *dev = phy->dev;
1154 struct mt76_vif_link *mlink = mt76_vif_conf_link(&dev->mt76, vif, link_conf);
1155 struct sk_buff *skb;
1156
1157 skb = __mt7996_mcu_alloc_bss_req(&dev->mt76, mlink,
1158 MT7996_BSS_UPDATE_MAX_SIZE);
1159 if (IS_ERR(skb))
1160 return PTR_ERR(skb);
1161
1162 mt7996_mcu_bss_ifs_timing_tlv(skb, phy);
1163
1164 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1165 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
1166 }
1167
1168 static int
mt7996_mcu_sta_ba(struct mt7996_dev * dev,struct mt76_vif_link * mvif,struct ieee80211_ampdu_params * params,bool enable,bool tx)1169 mt7996_mcu_sta_ba(struct mt7996_dev *dev, struct mt76_vif_link *mvif,
1170 struct ieee80211_ampdu_params *params,
1171 bool enable, bool tx)
1172 {
1173 struct mt76_wcid *wcid = (struct mt76_wcid *)params->sta->drv_priv;
1174 struct sta_rec_ba_uni *ba;
1175 struct sk_buff *skb;
1176 struct tlv *tlv;
1177
1178 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, mvif, wcid,
1179 MT7996_STA_UPDATE_MAX_SIZE);
1180 if (IS_ERR(skb))
1181 return PTR_ERR(skb);
1182
1183 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_BA, sizeof(*ba));
1184
1185 ba = (struct sta_rec_ba_uni *)tlv;
1186 ba->ba_type = tx ? MT_BA_TYPE_ORIGINATOR : MT_BA_TYPE_RECIPIENT;
1187 ba->winsize = cpu_to_le16(params->buf_size);
1188 ba->ssn = cpu_to_le16(params->ssn);
1189 ba->ba_en = enable << params->tid;
1190 ba->amsdu = params->amsdu;
1191 ba->tid = params->tid;
1192 ba->ba_rdd_rro = !tx && enable && dev->has_rro;
1193
1194 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1195 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
1196 }
1197
1198 /** starec & wtbl **/
mt7996_mcu_add_tx_ba(struct mt7996_dev * dev,struct ieee80211_ampdu_params * params,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link,bool enable)1199 int mt7996_mcu_add_tx_ba(struct mt7996_dev *dev,
1200 struct ieee80211_ampdu_params *params,
1201 struct mt7996_vif_link *link,
1202 struct mt7996_sta_link *msta_link, bool enable)
1203 {
1204 if (enable && !params->amsdu)
1205 msta_link->wcid.amsdu = false;
1206
1207 return mt7996_mcu_sta_ba(dev, &link->mt76, params, enable, true);
1208 }
1209
mt7996_mcu_add_rx_ba(struct mt7996_dev * dev,struct ieee80211_ampdu_params * params,struct mt7996_vif_link * link,bool enable)1210 int mt7996_mcu_add_rx_ba(struct mt7996_dev *dev,
1211 struct ieee80211_ampdu_params *params,
1212 struct mt7996_vif_link *link, bool enable)
1213 {
1214 return mt7996_mcu_sta_ba(dev, &link->mt76, params, enable, false);
1215 }
1216
1217 static void
mt7996_mcu_sta_he_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link)1218 mt7996_mcu_sta_he_tlv(struct sk_buff *skb,
1219 struct ieee80211_link_sta *link_sta,
1220 struct mt7996_vif_link *link)
1221 {
1222 struct ieee80211_he_cap_elem *elem = &link_sta->he_cap.he_cap_elem;
1223 struct ieee80211_he_mcs_nss_supp mcs_map;
1224 struct sta_rec_he_v2 *he;
1225 struct tlv *tlv;
1226 int i = 0;
1227
1228 if (!link_sta->he_cap.has_he)
1229 return;
1230
1231 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HE_V2, sizeof(*he));
1232
1233 he = (struct sta_rec_he_v2 *)tlv;
1234 for (i = 0; i < 11; i++) {
1235 if (i < 6)
1236 he->he_mac_cap[i] = elem->mac_cap_info[i];
1237 he->he_phy_cap[i] = elem->phy_cap_info[i];
1238 }
1239
1240 mcs_map = link_sta->he_cap.he_mcs_nss_supp;
1241 switch (link_sta->bandwidth) {
1242 case IEEE80211_STA_RX_BW_160:
1243 if (elem->phy_cap_info[0] &
1244 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G)
1245 mt7996_mcu_set_sta_he_mcs(link_sta, link,
1246 &he->max_nss_mcs[CMD_HE_MCS_BW8080],
1247 le16_to_cpu(mcs_map.rx_mcs_80p80));
1248
1249 mt7996_mcu_set_sta_he_mcs(link_sta, link,
1250 &he->max_nss_mcs[CMD_HE_MCS_BW160],
1251 le16_to_cpu(mcs_map.rx_mcs_160));
1252 fallthrough;
1253 default:
1254 mt7996_mcu_set_sta_he_mcs(link_sta, link,
1255 &he->max_nss_mcs[CMD_HE_MCS_BW80],
1256 le16_to_cpu(mcs_map.rx_mcs_80));
1257 break;
1258 }
1259
1260 he->pkt_ext = 2;
1261 }
1262
1263 static void
mt7996_mcu_sta_he_6g_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta)1264 mt7996_mcu_sta_he_6g_tlv(struct sk_buff *skb,
1265 struct ieee80211_link_sta *link_sta)
1266 {
1267 struct sta_rec_he_6g_capa *he_6g;
1268 struct tlv *tlv;
1269
1270 if (!link_sta->he_6ghz_capa.capa)
1271 return;
1272
1273 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HE_6G, sizeof(*he_6g));
1274
1275 he_6g = (struct sta_rec_he_6g_capa *)tlv;
1276 he_6g->capa = link_sta->he_6ghz_capa.capa;
1277 }
1278
1279 static void
mt7996_mcu_sta_eht_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta)1280 mt7996_mcu_sta_eht_tlv(struct sk_buff *skb,
1281 struct ieee80211_link_sta *link_sta)
1282 {
1283 struct mt7996_sta *msta = (struct mt7996_sta *)link_sta->sta->drv_priv;
1284 struct ieee80211_vif *vif = container_of((void *)msta->vif,
1285 struct ieee80211_vif, drv_priv);
1286 struct ieee80211_eht_mcs_nss_supp *mcs_map;
1287 struct ieee80211_eht_cap_elem_fixed *elem;
1288 struct sta_rec_eht *eht;
1289 struct tlv *tlv;
1290
1291 if (!link_sta->eht_cap.has_eht)
1292 return;
1293
1294 mcs_map = &link_sta->eht_cap.eht_mcs_nss_supp;
1295 elem = &link_sta->eht_cap.eht_cap_elem;
1296
1297 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_EHT, sizeof(*eht));
1298
1299 eht = (struct sta_rec_eht *)tlv;
1300 eht->tid_bitmap = 0xff;
1301 eht->mac_cap = cpu_to_le16(*(u16 *)elem->mac_cap_info);
1302 eht->phy_cap = cpu_to_le64(*(u64 *)elem->phy_cap_info);
1303 eht->phy_cap_ext = cpu_to_le64(elem->phy_cap_info[8]);
1304
1305 if (vif->type != NL80211_IFTYPE_STATION &&
1306 (link_sta->he_cap.he_cap_elem.phy_cap_info[0] &
1307 (IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_IN_2G |
1308 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_80MHZ_IN_5G |
1309 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G |
1310 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G)) == 0) {
1311 memcpy(eht->mcs_map_bw20, &mcs_map->only_20mhz,
1312 sizeof(eht->mcs_map_bw20));
1313 return;
1314 }
1315
1316 memcpy(eht->mcs_map_bw80, &mcs_map->bw._80, sizeof(eht->mcs_map_bw80));
1317 memcpy(eht->mcs_map_bw160, &mcs_map->bw._160, sizeof(eht->mcs_map_bw160));
1318 memcpy(eht->mcs_map_bw320, &mcs_map->bw._320, sizeof(eht->mcs_map_bw320));
1319 }
1320
1321 static void
mt7996_mcu_sta_ht_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta)1322 mt7996_mcu_sta_ht_tlv(struct sk_buff *skb, struct ieee80211_link_sta *link_sta)
1323 {
1324 struct sta_rec_ht_uni *ht;
1325 struct tlv *tlv;
1326
1327 if (!link_sta->ht_cap.ht_supported)
1328 return;
1329
1330 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HT, sizeof(*ht));
1331
1332 ht = (struct sta_rec_ht_uni *)tlv;
1333 ht->ht_cap = cpu_to_le16(link_sta->ht_cap.cap);
1334 ht->ampdu_param = u8_encode_bits(link_sta->ht_cap.ampdu_factor,
1335 IEEE80211_HT_AMPDU_PARM_FACTOR) |
1336 u8_encode_bits(link_sta->ht_cap.ampdu_density,
1337 IEEE80211_HT_AMPDU_PARM_DENSITY);
1338 }
1339
1340 static void
mt7996_mcu_sta_vht_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta)1341 mt7996_mcu_sta_vht_tlv(struct sk_buff *skb, struct ieee80211_link_sta *link_sta)
1342 {
1343 struct sta_rec_vht *vht;
1344 struct tlv *tlv;
1345
1346 /* For 6G band, this tlv is necessary to let hw work normally */
1347 if (!link_sta->he_6ghz_capa.capa && !link_sta->vht_cap.vht_supported)
1348 return;
1349
1350 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_VHT, sizeof(*vht));
1351
1352 vht = (struct sta_rec_vht *)tlv;
1353 vht->vht_cap = cpu_to_le32(link_sta->vht_cap.cap);
1354 vht->vht_rx_mcs_map = link_sta->vht_cap.vht_mcs.rx_mcs_map;
1355 vht->vht_tx_mcs_map = link_sta->vht_cap.vht_mcs.tx_mcs_map;
1356 }
1357
1358 static void
mt7996_mcu_sta_amsdu_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_vif * vif,struct ieee80211_link_sta * link_sta,struct mt7996_sta_link * msta_link)1359 mt7996_mcu_sta_amsdu_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1360 struct ieee80211_vif *vif,
1361 struct ieee80211_link_sta *link_sta,
1362 struct mt7996_sta_link *msta_link)
1363 {
1364 struct sta_rec_amsdu *amsdu;
1365 struct tlv *tlv;
1366
1367 if (vif->type != NL80211_IFTYPE_STATION &&
1368 vif->type != NL80211_IFTYPE_MESH_POINT &&
1369 vif->type != NL80211_IFTYPE_AP)
1370 return;
1371
1372 if (!link_sta->agg.max_amsdu_len)
1373 return;
1374
1375 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HW_AMSDU, sizeof(*amsdu));
1376 amsdu = (struct sta_rec_amsdu *)tlv;
1377 amsdu->max_amsdu_num = 8;
1378 amsdu->amsdu_en = true;
1379 msta_link->wcid.amsdu = true;
1380
1381 switch (link_sta->agg.max_amsdu_len) {
1382 case IEEE80211_MAX_MPDU_LEN_VHT_11454:
1383 amsdu->max_mpdu_size =
1384 IEEE80211_VHT_CAP_MAX_MPDU_LENGTH_11454;
1385 return;
1386 case IEEE80211_MAX_MPDU_LEN_HT_7935:
1387 case IEEE80211_MAX_MPDU_LEN_VHT_7991:
1388 amsdu->max_mpdu_size = IEEE80211_VHT_CAP_MAX_MPDU_LENGTH_7991;
1389 return;
1390 default:
1391 amsdu->max_mpdu_size = IEEE80211_VHT_CAP_MAX_MPDU_LENGTH_3895;
1392 return;
1393 }
1394 }
1395
1396 static void
mt7996_mcu_sta_muru_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta)1397 mt7996_mcu_sta_muru_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1398 struct ieee80211_bss_conf *link_conf,
1399 struct ieee80211_link_sta *link_sta)
1400 {
1401 struct ieee80211_he_cap_elem *elem = &link_sta->he_cap.he_cap_elem;
1402 struct sta_rec_muru *muru;
1403 struct tlv *tlv;
1404
1405 if (link_conf->vif->type != NL80211_IFTYPE_STATION &&
1406 link_conf->vif->type != NL80211_IFTYPE_AP)
1407 return;
1408
1409 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_MURU, sizeof(*muru));
1410
1411 muru = (struct sta_rec_muru *)tlv;
1412 muru->cfg.mimo_dl_en = link_conf->eht_mu_beamformer ||
1413 link_conf->he_mu_beamformer ||
1414 link_conf->vht_mu_beamformer ||
1415 link_conf->vht_mu_beamformee;
1416 muru->cfg.ofdma_dl_en = true;
1417
1418 if (link_sta->vht_cap.vht_supported)
1419 muru->mimo_dl.vht_mu_bfee =
1420 !!(link_sta->vht_cap.cap & IEEE80211_VHT_CAP_MU_BEAMFORMEE_CAPABLE);
1421
1422 if (!link_sta->he_cap.has_he)
1423 return;
1424
1425 muru->mimo_dl.partial_bw_dl_mimo =
1426 HE_PHY(CAP6_PARTIAL_BANDWIDTH_DL_MUMIMO, elem->phy_cap_info[6]);
1427
1428 muru->mimo_ul.full_ul_mimo =
1429 HE_PHY(CAP2_UL_MU_FULL_MU_MIMO, elem->phy_cap_info[2]);
1430 muru->mimo_ul.partial_ul_mimo =
1431 HE_PHY(CAP2_UL_MU_PARTIAL_MU_MIMO, elem->phy_cap_info[2]);
1432
1433 muru->ofdma_dl.punc_pream_rx =
1434 HE_PHY(CAP1_PREAMBLE_PUNC_RX_MASK, elem->phy_cap_info[1]);
1435 muru->ofdma_dl.he_20m_in_40m_2g =
1436 HE_PHY(CAP8_20MHZ_IN_40MHZ_HE_PPDU_IN_2G, elem->phy_cap_info[8]);
1437 muru->ofdma_dl.he_20m_in_160m =
1438 HE_PHY(CAP8_20MHZ_IN_160MHZ_HE_PPDU, elem->phy_cap_info[8]);
1439 muru->ofdma_dl.he_80m_in_160m =
1440 HE_PHY(CAP8_80MHZ_IN_160MHZ_HE_PPDU, elem->phy_cap_info[8]);
1441
1442 muru->ofdma_ul.t_frame_dur =
1443 HE_MAC(CAP1_TF_MAC_PAD_DUR_MASK, elem->mac_cap_info[1]);
1444 muru->ofdma_ul.mu_cascading =
1445 HE_MAC(CAP2_MU_CASCADING, elem->mac_cap_info[2]);
1446 muru->ofdma_ul.uo_ra =
1447 HE_MAC(CAP3_OFDMA_RA, elem->mac_cap_info[3]);
1448 muru->ofdma_ul.rx_ctrl_frame_to_mbss =
1449 HE_MAC(CAP3_RX_CTRL_FRAME_TO_MULTIBSS, elem->mac_cap_info[3]);
1450 }
1451
1452 static inline bool
mt7996_is_ebf_supported(struct mt7996_phy * phy,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,bool bfee)1453 mt7996_is_ebf_supported(struct mt7996_phy *phy,
1454 struct ieee80211_bss_conf *link_conf,
1455 struct ieee80211_link_sta *link_sta, bool bfee)
1456 {
1457 int sts = hweight16(phy->mt76->chainmask);
1458
1459 if (link_conf->vif->type != NL80211_IFTYPE_STATION &&
1460 link_conf->vif->type != NL80211_IFTYPE_AP)
1461 return false;
1462
1463 if (!bfee && sts < 2)
1464 return false;
1465
1466 if (link_sta->eht_cap.has_eht) {
1467 struct ieee80211_sta_eht_cap *pc = &link_sta->eht_cap;
1468 struct ieee80211_eht_cap_elem_fixed *pe = &pc->eht_cap_elem;
1469
1470 if (bfee)
1471 return link_conf->eht_su_beamformee &&
1472 EHT_PHY(CAP0_SU_BEAMFORMER, pe->phy_cap_info[0]);
1473 else
1474 return link_conf->eht_su_beamformer &&
1475 EHT_PHY(CAP0_SU_BEAMFORMEE, pe->phy_cap_info[0]);
1476 }
1477
1478 if (link_sta->he_cap.has_he) {
1479 struct ieee80211_he_cap_elem *pe = &link_sta->he_cap.he_cap_elem;
1480
1481 if (bfee)
1482 return link_conf->he_su_beamformee &&
1483 HE_PHY(CAP3_SU_BEAMFORMER, pe->phy_cap_info[3]);
1484 else
1485 return link_conf->he_su_beamformer &&
1486 HE_PHY(CAP4_SU_BEAMFORMEE, pe->phy_cap_info[4]);
1487 }
1488
1489 if (link_sta->vht_cap.vht_supported) {
1490 u32 cap = link_sta->vht_cap.cap;
1491
1492 if (bfee)
1493 return link_conf->vht_su_beamformee &&
1494 (cap & IEEE80211_VHT_CAP_SU_BEAMFORMER_CAPABLE);
1495 else
1496 return link_conf->vht_su_beamformer &&
1497 (cap & IEEE80211_VHT_CAP_SU_BEAMFORMEE_CAPABLE);
1498 }
1499
1500 return false;
1501 }
1502
1503 static void
mt7996_mcu_sta_sounding_rate(struct sta_rec_bf * bf,struct mt7996_phy * phy)1504 mt7996_mcu_sta_sounding_rate(struct sta_rec_bf *bf, struct mt7996_phy *phy)
1505 {
1506 bf->sounding_phy = MT_PHY_TYPE_OFDM;
1507 bf->ndp_rate = 0; /* mcs0 */
1508 if (is_mt7996(phy->mt76->dev))
1509 bf->ndpa_rate = MT7996_CFEND_RATE_DEFAULT; /* ofdm 24m */
1510 else
1511 bf->ndpa_rate = MT7992_CFEND_RATE_DEFAULT; /* ofdm 6m */
1512
1513 bf->rept_poll_rate = MT7996_CFEND_RATE_DEFAULT; /* ofdm 24m */
1514 }
1515
1516 static void
mt7996_mcu_sta_bfer_ht(struct ieee80211_link_sta * link_sta,struct mt7996_phy * phy,struct sta_rec_bf * bf,bool explicit)1517 mt7996_mcu_sta_bfer_ht(struct ieee80211_link_sta *link_sta,
1518 struct mt7996_phy *phy, struct sta_rec_bf *bf,
1519 bool explicit)
1520 {
1521 struct ieee80211_mcs_info *mcs = &link_sta->ht_cap.mcs;
1522 u8 n = 0;
1523
1524 bf->tx_mode = MT_PHY_TYPE_HT;
1525
1526 if ((mcs->tx_params & IEEE80211_HT_MCS_TX_RX_DIFF) &&
1527 (mcs->tx_params & IEEE80211_HT_MCS_TX_DEFINED))
1528 n = FIELD_GET(IEEE80211_HT_MCS_TX_MAX_STREAMS_MASK,
1529 mcs->tx_params);
1530 else if (mcs->rx_mask[3])
1531 n = 3;
1532 else if (mcs->rx_mask[2])
1533 n = 2;
1534 else if (mcs->rx_mask[1])
1535 n = 1;
1536
1537 bf->nrow = hweight8(phy->mt76->antenna_mask) - 1;
1538 bf->ncol = min_t(u8, bf->nrow, n);
1539 bf->ibf_ncol = explicit ? min_t(u8, MT7996_IBF_MAX_NC, bf->ncol) :
1540 min_t(u8, MT7996_IBF_MAX_NC, n);
1541 }
1542
1543 static void
mt7996_mcu_sta_bfer_vht(struct ieee80211_link_sta * link_sta,struct mt7996_phy * phy,struct sta_rec_bf * bf,bool explicit)1544 mt7996_mcu_sta_bfer_vht(struct ieee80211_link_sta *link_sta,
1545 struct mt7996_phy *phy, struct sta_rec_bf *bf,
1546 bool explicit)
1547 {
1548 struct ieee80211_sta_vht_cap *pc = &link_sta->vht_cap;
1549 struct ieee80211_sta_vht_cap *vc = &phy->mt76->sband_5g.sband.vht_cap;
1550 u16 mcs_map = le16_to_cpu(pc->vht_mcs.rx_mcs_map);
1551 u8 nss_mcs = mt7996_mcu_get_sta_nss(mcs_map);
1552 u8 tx_ant = hweight8(phy->mt76->antenna_mask) - 1;
1553
1554 bf->tx_mode = MT_PHY_TYPE_VHT;
1555
1556 if (explicit) {
1557 u8 sts, snd_dim;
1558
1559 mt7996_mcu_sta_sounding_rate(bf, phy);
1560
1561 sts = FIELD_GET(IEEE80211_VHT_CAP_BEAMFORMEE_STS_MASK,
1562 pc->cap);
1563 snd_dim = FIELD_GET(IEEE80211_VHT_CAP_SOUNDING_DIMENSIONS_MASK,
1564 vc->cap);
1565 bf->nrow = min_t(u8, min_t(u8, snd_dim, sts), tx_ant);
1566 bf->ncol = min_t(u8, nss_mcs, bf->nrow);
1567 bf->ibf_ncol = min_t(u8, MT7996_IBF_MAX_NC, bf->ncol);
1568
1569 if (link_sta->bandwidth == IEEE80211_STA_RX_BW_160)
1570 bf->nrow = 1;
1571 } else {
1572 bf->nrow = tx_ant;
1573 bf->ncol = min_t(u8, nss_mcs, bf->nrow);
1574 bf->ibf_ncol = min_t(u8, MT7996_IBF_MAX_NC, nss_mcs);
1575
1576 if (link_sta->bandwidth == IEEE80211_STA_RX_BW_160)
1577 bf->ibf_nrow = 1;
1578 }
1579 }
1580
1581 static void
mt7996_mcu_sta_bfer_he(struct ieee80211_link_sta * link_sta,struct ieee80211_vif * vif,struct mt7996_phy * phy,struct sta_rec_bf * bf,bool explicit)1582 mt7996_mcu_sta_bfer_he(struct ieee80211_link_sta *link_sta,
1583 struct ieee80211_vif *vif, struct mt7996_phy *phy,
1584 struct sta_rec_bf *bf, bool explicit)
1585 {
1586 struct ieee80211_sta_he_cap *pc = &link_sta->he_cap;
1587 struct ieee80211_he_cap_elem *pe = &pc->he_cap_elem;
1588 const struct ieee80211_sta_he_cap *vc =
1589 mt76_connac_get_he_phy_cap(phy->mt76, vif);
1590 const struct ieee80211_he_cap_elem *ve = &vc->he_cap_elem;
1591 u16 mcs_map = le16_to_cpu(pc->he_mcs_nss_supp.rx_mcs_80);
1592 u8 nss_mcs = mt7996_mcu_get_sta_nss(mcs_map);
1593 u8 snd_dim, sts;
1594
1595 if (!vc)
1596 return;
1597
1598 bf->tx_mode = MT_PHY_TYPE_HE_SU;
1599
1600 mt7996_mcu_sta_sounding_rate(bf, phy);
1601
1602 bf->trigger_su = HE_PHY(CAP6_TRIG_SU_BEAMFORMING_FB,
1603 pe->phy_cap_info[6]);
1604 bf->trigger_mu = HE_PHY(CAP6_TRIG_MU_BEAMFORMING_PARTIAL_BW_FB,
1605 pe->phy_cap_info[6]);
1606 snd_dim = HE_PHY(CAP5_BEAMFORMEE_NUM_SND_DIM_UNDER_80MHZ_MASK,
1607 ve->phy_cap_info[5]);
1608 sts = HE_PHY(CAP4_BEAMFORMEE_MAX_STS_UNDER_80MHZ_MASK,
1609 pe->phy_cap_info[4]);
1610 bf->nrow = min_t(u8, snd_dim, sts);
1611 bf->ncol = min_t(u8, nss_mcs, bf->nrow);
1612 bf->ibf_ncol = explicit ? min_t(u8, MT7996_IBF_MAX_NC, bf->ncol) :
1613 min_t(u8, MT7996_IBF_MAX_NC, nss_mcs);
1614
1615 if (link_sta->bandwidth != IEEE80211_STA_RX_BW_160)
1616 return;
1617
1618 /* go over for 160MHz and 80p80 */
1619 if (pe->phy_cap_info[0] &
1620 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G) {
1621 mcs_map = le16_to_cpu(pc->he_mcs_nss_supp.rx_mcs_160);
1622 nss_mcs = mt7996_mcu_get_sta_nss(mcs_map);
1623
1624 bf->ncol_gt_bw80 = nss_mcs;
1625 }
1626
1627 if (pe->phy_cap_info[0] &
1628 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G) {
1629 mcs_map = le16_to_cpu(pc->he_mcs_nss_supp.rx_mcs_80p80);
1630 nss_mcs = mt7996_mcu_get_sta_nss(mcs_map);
1631
1632 if (bf->ncol_gt_bw80)
1633 bf->ncol_gt_bw80 = min_t(u8, bf->ncol_gt_bw80, nss_mcs);
1634 else
1635 bf->ncol_gt_bw80 = nss_mcs;
1636 }
1637
1638 snd_dim = HE_PHY(CAP5_BEAMFORMEE_NUM_SND_DIM_ABOVE_80MHZ_MASK,
1639 ve->phy_cap_info[5]);
1640 sts = HE_PHY(CAP4_BEAMFORMEE_MAX_STS_ABOVE_80MHZ_MASK,
1641 pe->phy_cap_info[4]);
1642
1643 bf->nrow_gt_bw80 = min_t(int, snd_dim, sts);
1644 }
1645
1646 static void
mt7996_mcu_sta_bfer_eht(struct ieee80211_link_sta * link_sta,struct ieee80211_vif * vif,struct mt7996_phy * phy,struct sta_rec_bf * bf,bool explicit)1647 mt7996_mcu_sta_bfer_eht(struct ieee80211_link_sta *link_sta,
1648 struct ieee80211_vif *vif, struct mt7996_phy *phy,
1649 struct sta_rec_bf *bf, bool explicit)
1650 {
1651 struct ieee80211_sta_eht_cap *pc = &link_sta->eht_cap;
1652 struct ieee80211_eht_cap_elem_fixed *pe = &pc->eht_cap_elem;
1653 struct ieee80211_eht_mcs_nss_supp *eht_nss = &pc->eht_mcs_nss_supp;
1654 const struct ieee80211_sta_eht_cap *vc =
1655 mt76_connac_get_eht_phy_cap(phy->mt76, vif);
1656 const struct ieee80211_eht_cap_elem_fixed *ve = &vc->eht_cap_elem;
1657 u8 nss_mcs = u8_get_bits(eht_nss->bw._80.rx_tx_mcs9_max_nss,
1658 IEEE80211_EHT_MCS_NSS_RX) - 1;
1659 u8 snd_dim, sts;
1660
1661 bf->tx_mode = MT_PHY_TYPE_EHT_MU;
1662
1663 mt7996_mcu_sta_sounding_rate(bf, phy);
1664
1665 bf->trigger_su = EHT_PHY(CAP3_TRIG_SU_BF_FDBK, pe->phy_cap_info[3]);
1666 bf->trigger_mu = EHT_PHY(CAP3_TRIG_MU_BF_PART_BW_FDBK, pe->phy_cap_info[3]);
1667 snd_dim = EHT_PHY(CAP2_SOUNDING_DIM_80MHZ_MASK, ve->phy_cap_info[2]);
1668 sts = EHT_PHY(CAP0_BEAMFORMEE_SS_80MHZ_MASK, pe->phy_cap_info[0]) +
1669 (EHT_PHY(CAP1_BEAMFORMEE_SS_80MHZ_MASK, pe->phy_cap_info[1]) << 1);
1670 bf->nrow = min_t(u8, snd_dim, sts);
1671 bf->ncol = min_t(u8, nss_mcs, bf->nrow);
1672 bf->ibf_ncol = explicit ? min_t(u8, MT7996_IBF_MAX_NC, bf->ncol) :
1673 min_t(u8, MT7996_IBF_MAX_NC, nss_mcs);
1674
1675 if (link_sta->bandwidth < IEEE80211_STA_RX_BW_160)
1676 return;
1677
1678 switch (link_sta->bandwidth) {
1679 case IEEE80211_STA_RX_BW_160:
1680 snd_dim = EHT_PHY(CAP2_SOUNDING_DIM_160MHZ_MASK, ve->phy_cap_info[2]);
1681 sts = EHT_PHY(CAP1_BEAMFORMEE_SS_160MHZ_MASK, pe->phy_cap_info[1]);
1682 nss_mcs = u8_get_bits(eht_nss->bw._160.rx_tx_mcs9_max_nss,
1683 IEEE80211_EHT_MCS_NSS_RX) - 1;
1684
1685 bf->nrow_gt_bw80 = min_t(u8, snd_dim, sts);
1686 bf->ncol_gt_bw80 = nss_mcs;
1687 break;
1688 case IEEE80211_STA_RX_BW_320:
1689 snd_dim = EHT_PHY(CAP2_SOUNDING_DIM_320MHZ_MASK, ve->phy_cap_info[2]) +
1690 (EHT_PHY(CAP3_SOUNDING_DIM_320MHZ_MASK,
1691 ve->phy_cap_info[3]) << 1);
1692 sts = EHT_PHY(CAP1_BEAMFORMEE_SS_320MHZ_MASK, pe->phy_cap_info[1]);
1693 nss_mcs = u8_get_bits(eht_nss->bw._320.rx_tx_mcs9_max_nss,
1694 IEEE80211_EHT_MCS_NSS_RX) - 1;
1695
1696 bf->nrow_gt_bw80 = min_t(u8, snd_dim, sts) << 4;
1697 bf->ncol_gt_bw80 = nss_mcs << 4;
1698 break;
1699 default:
1700 break;
1701 }
1702 }
1703
1704 static void
mt7996_mcu_sta_bfer_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link)1705 mt7996_mcu_sta_bfer_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1706 struct ieee80211_bss_conf *link_conf,
1707 struct ieee80211_link_sta *link_sta,
1708 struct mt7996_vif_link *link)
1709 {
1710 #define EBF_MODE BIT(0)
1711 #define IBF_MODE BIT(1)
1712 #define BF_MAT_ORDER 4
1713 struct ieee80211_vif *vif = link_conf->vif;
1714 struct mt7996_phy *phy = link->phy;
1715 int tx_ant = hweight16(phy->mt76->chainmask) - 1;
1716 struct sta_rec_bf *bf;
1717 struct tlv *tlv;
1718 static const u8 matrix[BF_MAT_ORDER][BF_MAT_ORDER] = {
1719 {0, 0, 0, 0},
1720 {1, 1, 0, 0}, /* 2x1, 2x2, 2x3, 2x4 */
1721 {2, 4, 4, 0}, /* 3x1, 3x2, 3x3, 3x4 */
1722 {3, 5, 6, 0} /* 4x1, 4x2, 4x3, 4x4 */
1723 };
1724 bool ebf;
1725
1726 if (!(link_sta->ht_cap.ht_supported || link_sta->he_cap.has_he))
1727 return;
1728
1729 ebf = mt7996_is_ebf_supported(phy, link_conf, link_sta, false);
1730 if (!ebf && !dev->ibf)
1731 return;
1732
1733 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_BF, sizeof(*bf));
1734 bf = (struct sta_rec_bf *)tlv;
1735
1736 /* he/eht: eBF only, except mt7992 that has 5T on 5GHz also supports iBF
1737 * vht: support eBF and iBF
1738 * ht: iBF only, since mac80211 lacks of eBF support
1739 */
1740 if (link_sta->eht_cap.has_eht)
1741 mt7996_mcu_sta_bfer_eht(link_sta, vif, link->phy, bf, ebf);
1742 else if (link_sta->he_cap.has_he)
1743 mt7996_mcu_sta_bfer_he(link_sta, vif, link->phy, bf, ebf);
1744 else if (link_sta->vht_cap.vht_supported)
1745 mt7996_mcu_sta_bfer_vht(link_sta, link->phy, bf, ebf);
1746 else if (link_sta->ht_cap.ht_supported)
1747 mt7996_mcu_sta_bfer_ht(link_sta, link->phy, bf, ebf);
1748 else
1749 return;
1750
1751 bf->bf_cap = ebf ? EBF_MODE : (dev->ibf ? IBF_MODE : 0);
1752 if (is_mt7992(&dev->mt76) && tx_ant == 4)
1753 bf->bf_cap |= IBF_MODE;
1754
1755 bf->bw = link_sta->bandwidth;
1756 bf->ibf_dbw = link_sta->bandwidth;
1757 bf->ibf_nrow = tx_ant;
1758
1759 if (link_sta->eht_cap.has_eht || link_sta->he_cap.has_he)
1760 bf->ibf_timeout = is_mt7996(&dev->mt76) ? MT7996_IBF_TIMEOUT :
1761 MT7992_IBF_TIMEOUT;
1762 else if (!ebf && link_sta->bandwidth <= IEEE80211_STA_RX_BW_40 && !bf->ncol)
1763 bf->ibf_timeout = MT7996_IBF_TIMEOUT_LEGACY;
1764 else
1765 bf->ibf_timeout = MT7996_IBF_TIMEOUT;
1766
1767 if (bf->ncol < BF_MAT_ORDER) {
1768 if (ebf)
1769 bf->mem_20m = tx_ant < BF_MAT_ORDER ?
1770 matrix[tx_ant][bf->ncol] : 0;
1771 else
1772 bf->mem_20m = bf->nrow < BF_MAT_ORDER ?
1773 matrix[bf->nrow][bf->ncol] : 0;
1774 }
1775
1776 switch (link_sta->bandwidth) {
1777 case IEEE80211_STA_RX_BW_160:
1778 case IEEE80211_STA_RX_BW_80:
1779 bf->mem_total = bf->mem_20m * 2;
1780 break;
1781 case IEEE80211_STA_RX_BW_40:
1782 bf->mem_total = bf->mem_20m;
1783 break;
1784 case IEEE80211_STA_RX_BW_20:
1785 default:
1786 break;
1787 }
1788 }
1789
1790 static void
mt7996_mcu_sta_bfee_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link)1791 mt7996_mcu_sta_bfee_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1792 struct ieee80211_bss_conf *link_conf,
1793 struct ieee80211_link_sta *link_sta,
1794 struct mt7996_vif_link *link)
1795 {
1796 struct mt7996_phy *phy = link->phy;
1797 int tx_ant = hweight8(phy->mt76->antenna_mask) - 1;
1798 struct sta_rec_bfee *bfee;
1799 struct tlv *tlv;
1800 u8 nrow = 0;
1801
1802 if (!(link_sta->vht_cap.vht_supported || link_sta->he_cap.has_he))
1803 return;
1804
1805 if (!mt7996_is_ebf_supported(phy, link_conf, link_sta, true))
1806 return;
1807
1808 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_BFEE, sizeof(*bfee));
1809 bfee = (struct sta_rec_bfee *)tlv;
1810
1811 if (link_sta->he_cap.has_he) {
1812 struct ieee80211_he_cap_elem *pe = &link_sta->he_cap.he_cap_elem;
1813
1814 nrow = HE_PHY(CAP5_BEAMFORMEE_NUM_SND_DIM_UNDER_80MHZ_MASK,
1815 pe->phy_cap_info[5]);
1816 } else if (link_sta->vht_cap.vht_supported) {
1817 struct ieee80211_sta_vht_cap *pc = &link_sta->vht_cap;
1818
1819 nrow = FIELD_GET(IEEE80211_VHT_CAP_SOUNDING_DIMENSIONS_MASK,
1820 pc->cap);
1821 }
1822
1823 /* reply with identity matrix to avoid 2x2 BF negative gain */
1824 bfee->fb_identity_matrix = (nrow == 1 && tx_ant == 2);
1825 }
1826
1827 static void
mt7996_mcu_sta_tx_proc_tlv(struct sk_buff * skb)1828 mt7996_mcu_sta_tx_proc_tlv(struct sk_buff *skb)
1829 {
1830 struct sta_rec_tx_proc *tx_proc;
1831 struct tlv *tlv;
1832
1833 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_TX_PROC, sizeof(*tx_proc));
1834
1835 tx_proc = (struct sta_rec_tx_proc *)tlv;
1836 tx_proc->flag = cpu_to_le32(0);
1837 }
1838
1839 static void
mt7996_mcu_sta_hdrt_tlv(struct mt7996_dev * dev,struct sk_buff * skb)1840 mt7996_mcu_sta_hdrt_tlv(struct mt7996_dev *dev, struct sk_buff *skb)
1841 {
1842 struct sta_rec_hdrt *hdrt;
1843 struct tlv *tlv;
1844
1845 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HDRT, sizeof(*hdrt));
1846
1847 hdrt = (struct sta_rec_hdrt *)tlv;
1848 hdrt->hdrt_mode = 1;
1849 }
1850
1851 static void
mt7996_mcu_sta_hdr_trans_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_vif * vif,struct mt76_wcid * wcid)1852 mt7996_mcu_sta_hdr_trans_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1853 struct ieee80211_vif *vif, struct mt76_wcid *wcid)
1854 {
1855 struct sta_rec_hdr_trans *hdr_trans;
1856 struct tlv *tlv;
1857
1858 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HDR_TRANS, sizeof(*hdr_trans));
1859 hdr_trans = (struct sta_rec_hdr_trans *)tlv;
1860 hdr_trans->dis_rx_hdr_tran = true;
1861
1862 if (vif->type == NL80211_IFTYPE_STATION)
1863 hdr_trans->to_ds = true;
1864 else
1865 hdr_trans->from_ds = true;
1866
1867 if (!wcid)
1868 return;
1869
1870 hdr_trans->dis_rx_hdr_tran = !test_bit(MT_WCID_FLAG_HDR_TRANS, &wcid->flags);
1871 if (test_bit(MT_WCID_FLAG_4ADDR, &wcid->flags)) {
1872 hdr_trans->to_ds = true;
1873 hdr_trans->from_ds = true;
1874 }
1875
1876 if (vif->type == NL80211_IFTYPE_MESH_POINT) {
1877 hdr_trans->to_ds = true;
1878 hdr_trans->from_ds = true;
1879 hdr_trans->mesh = true;
1880 }
1881 }
1882
1883 static enum mcu_mmps_mode
mt7996_mcu_get_mmps_mode(enum ieee80211_smps_mode smps)1884 mt7996_mcu_get_mmps_mode(enum ieee80211_smps_mode smps)
1885 {
1886 switch (smps) {
1887 case IEEE80211_SMPS_OFF:
1888 return MCU_MMPS_DISABLE;
1889 case IEEE80211_SMPS_STATIC:
1890 return MCU_MMPS_STATIC;
1891 case IEEE80211_SMPS_DYNAMIC:
1892 return MCU_MMPS_DYNAMIC;
1893 default:
1894 return MCU_MMPS_DISABLE;
1895 }
1896 }
1897
mt7996_mcu_set_fixed_rate_ctrl(struct mt7996_dev * dev,void * data,u16 version)1898 int mt7996_mcu_set_fixed_rate_ctrl(struct mt7996_dev *dev,
1899 void *data, u16 version)
1900 {
1901 struct uni_header hdr = {};
1902 struct ra_fixed_rate *req;
1903 struct sk_buff *skb;
1904 struct tlv *tlv;
1905 int len;
1906
1907 len = sizeof(hdr) + sizeof(*req);
1908
1909 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
1910 if (!skb)
1911 return -ENOMEM;
1912
1913 skb_put_data(skb, &hdr, sizeof(hdr));
1914
1915 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_RA_FIXED_RATE, sizeof(*req));
1916 req = (struct ra_fixed_rate *)tlv;
1917 req->version = cpu_to_le16(version);
1918 memcpy(&req->rate, data, sizeof(req->rate));
1919
1920 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1921 MCU_WM_UNI_CMD(RA), true);
1922 }
1923
mt7996_mcu_set_fixed_field(struct mt7996_dev * dev,struct mt7996_sta * msta,void * data,u8 link_id,u32 field)1924 int mt7996_mcu_set_fixed_field(struct mt7996_dev *dev, struct mt7996_sta *msta,
1925 void *data, u8 link_id, u32 field)
1926 {
1927 struct mt7996_vif *mvif = msta->vif;
1928 struct mt7996_sta_link *msta_link;
1929 struct sta_rec_ra_fixed_uni *ra;
1930 struct sta_phy_uni *phy = data;
1931 struct mt76_vif_link *mlink;
1932 struct sk_buff *skb;
1933 int err = -ENODEV;
1934 struct tlv *tlv;
1935
1936 rcu_read_lock();
1937
1938 mlink = rcu_dereference(mvif->mt76.link[link_id]);
1939 if (!mlink)
1940 goto error_unlock;
1941
1942 msta_link = rcu_dereference(msta->link[link_id]);
1943 if (!msta_link)
1944 goto error_unlock;
1945
1946 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, mlink,
1947 &msta_link->wcid,
1948 MT7996_STA_UPDATE_MAX_SIZE);
1949 if (IS_ERR(skb)) {
1950 err = PTR_ERR(skb);
1951 goto error_unlock;
1952 }
1953
1954 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_RA_UPDATE, sizeof(*ra));
1955 ra = (struct sta_rec_ra_fixed_uni *)tlv;
1956
1957 switch (field) {
1958 case RATE_PARAM_AUTO:
1959 break;
1960 case RATE_PARAM_FIXED:
1961 case RATE_PARAM_FIXED_MCS:
1962 case RATE_PARAM_FIXED_GI:
1963 case RATE_PARAM_FIXED_HE_LTF:
1964 if (phy)
1965 ra->phy = *phy;
1966 break;
1967 case RATE_PARAM_MMPS_UPDATE: {
1968 struct ieee80211_sta *sta = wcid_to_sta(&msta_link->wcid);
1969 struct ieee80211_link_sta *link_sta;
1970
1971 link_sta = rcu_dereference(sta->link[link_id]);
1972 if (!link_sta) {
1973 dev_kfree_skb(skb);
1974 goto error_unlock;
1975 }
1976
1977 ra->mmps_mode = mt7996_mcu_get_mmps_mode(link_sta->smps_mode);
1978 break;
1979 }
1980 default:
1981 break;
1982 }
1983 ra->field = cpu_to_le32(field);
1984
1985 rcu_read_unlock();
1986
1987 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1988 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
1989 error_unlock:
1990 rcu_read_unlock();
1991
1992 return err;
1993 }
1994
1995 static int
mt7996_mcu_add_rate_ctrl_fixed(struct mt7996_dev * dev,struct mt7996_sta * msta,struct ieee80211_vif * vif,u8 link_id)1996 mt7996_mcu_add_rate_ctrl_fixed(struct mt7996_dev *dev, struct mt7996_sta *msta,
1997 struct ieee80211_vif *vif, u8 link_id)
1998 {
1999 struct ieee80211_link_sta *link_sta;
2000 struct cfg80211_bitrate_mask mask;
2001 struct mt7996_sta_link *msta_link;
2002 struct mt7996_vif_link *link;
2003 struct sta_phy_uni phy = {};
2004 struct ieee80211_sta *sta;
2005 int ret, nrates = 0, idx;
2006 enum nl80211_band band;
2007 bool has_he;
2008
2009 #define __sta_phy_bitrate_mask_check(_mcs, _gi, _ht, _he) \
2010 do { \
2011 u8 i, gi = mask.control[band]._gi; \
2012 gi = (_he) ? gi : gi == NL80211_TXRATE_FORCE_SGI; \
2013 phy.sgi = gi; \
2014 phy.he_ltf = mask.control[band].he_ltf; \
2015 for (i = 0; i < ARRAY_SIZE(mask.control[band]._mcs); i++) { \
2016 if (!mask.control[band]._mcs[i]) \
2017 continue; \
2018 nrates += hweight16(mask.control[band]._mcs[i]); \
2019 phy.mcs = ffs(mask.control[band]._mcs[i]) - 1; \
2020 if (_ht) \
2021 phy.mcs += 8 * i; \
2022 } \
2023 } while (0)
2024
2025 rcu_read_lock();
2026
2027 link = mt7996_vif_link(dev, vif, link_id);
2028 if (!link)
2029 goto error_unlock;
2030
2031 msta_link = rcu_dereference(msta->link[link_id]);
2032 if (!msta_link)
2033 goto error_unlock;
2034
2035 sta = wcid_to_sta(&msta_link->wcid);
2036 link_sta = rcu_dereference(sta->link[link_id]);
2037 if (!link_sta)
2038 goto error_unlock;
2039
2040 band = link->phy->mt76->chandef.chan->band;
2041 has_he = link_sta->he_cap.has_he;
2042 mask = link->bitrate_mask;
2043 idx = msta_link->wcid.idx;
2044
2045 if (has_he) {
2046 __sta_phy_bitrate_mask_check(he_mcs, he_gi, 0, 1);
2047 } else if (link_sta->vht_cap.vht_supported) {
2048 __sta_phy_bitrate_mask_check(vht_mcs, gi, 0, 0);
2049 } else if (link_sta->ht_cap.ht_supported) {
2050 __sta_phy_bitrate_mask_check(ht_mcs, gi, 1, 0);
2051 } else {
2052 nrates = hweight32(mask.control[band].legacy);
2053 phy.mcs = ffs(mask.control[band].legacy) - 1;
2054 }
2055
2056 rcu_read_unlock();
2057
2058 #undef __sta_phy_bitrate_mask_check
2059
2060 /* fall back to auto rate control */
2061 if (mask.control[band].gi == NL80211_TXRATE_DEFAULT_GI &&
2062 mask.control[band].he_gi == GENMASK(7, 0) &&
2063 mask.control[band].he_ltf == GENMASK(7, 0) &&
2064 nrates != 1)
2065 return 0;
2066
2067 /* fixed single rate */
2068 if (nrates == 1) {
2069 ret = mt7996_mcu_set_fixed_field(dev, msta, &phy, link_id,
2070 RATE_PARAM_FIXED_MCS);
2071 if (ret)
2072 return ret;
2073 }
2074
2075 /* fixed GI */
2076 if (mask.control[band].gi != NL80211_TXRATE_DEFAULT_GI ||
2077 mask.control[band].he_gi != GENMASK(7, 0)) {
2078 u32 addr;
2079
2080 /* firmware updates only TXCMD but doesn't take WTBL into
2081 * account, so driver should update here to reflect the
2082 * actual txrate hardware sends out.
2083 */
2084 addr = mt7996_mac_wtbl_lmac_addr(dev, idx, 7);
2085 if (has_he)
2086 mt76_rmw_field(dev, addr, GENMASK(31, 24), phy.sgi);
2087 else
2088 mt76_rmw_field(dev, addr, GENMASK(15, 12), phy.sgi);
2089
2090 ret = mt7996_mcu_set_fixed_field(dev, msta, &phy, link_id,
2091 RATE_PARAM_FIXED_GI);
2092 if (ret)
2093 return ret;
2094 }
2095
2096 /* fixed HE_LTF */
2097 if (mask.control[band].he_ltf != GENMASK(7, 0)) {
2098 ret = mt7996_mcu_set_fixed_field(dev, msta, &phy, link_id,
2099 RATE_PARAM_FIXED_HE_LTF);
2100 if (ret)
2101 return ret;
2102 }
2103
2104 return 0;
2105
2106 error_unlock:
2107 rcu_read_unlock();
2108
2109 return -ENODEV;
2110 }
2111
2112 static void
mt7996_mcu_sta_rate_ctrl_tlv(struct sk_buff * skb,struct mt7996_dev * dev,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link)2113 mt7996_mcu_sta_rate_ctrl_tlv(struct sk_buff *skb, struct mt7996_dev *dev,
2114 struct ieee80211_vif *vif,
2115 struct ieee80211_bss_conf *link_conf,
2116 struct ieee80211_link_sta *link_sta,
2117 struct mt7996_vif_link *link)
2118 {
2119 #define INIT_RCPI 180
2120 struct mt76_phy *mphy = link->phy->mt76;
2121 struct cfg80211_chan_def *chandef = &mphy->chandef;
2122 struct cfg80211_bitrate_mask *mask = &link->bitrate_mask;
2123 u32 cap = link_sta->sta->wme ? STA_CAP_WMM : 0;
2124 enum nl80211_band band = chandef->chan->band;
2125 struct sta_rec_ra_uni *ra;
2126 struct tlv *tlv;
2127 u32 supp_rate = link_sta->supp_rates[band];
2128
2129 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_RA, sizeof(*ra));
2130 ra = (struct sta_rec_ra_uni *)tlv;
2131
2132 ra->valid = true;
2133 ra->auto_rate = true;
2134 ra->phy_mode = mt76_connac_get_phy_mode(mphy, vif, band, link_sta);
2135 ra->channel = chandef->chan->hw_value;
2136 ra->bw = (link_sta->bandwidth == IEEE80211_STA_RX_BW_320) ?
2137 CMD_CBW_320MHZ : link_sta->bandwidth;
2138 ra->phy.bw = ra->bw;
2139 ra->mmps_mode = mt7996_mcu_get_mmps_mode(link_sta->smps_mode);
2140
2141 if (supp_rate) {
2142 supp_rate &= mask->control[band].legacy;
2143 ra->rate_len = hweight32(supp_rate);
2144
2145 if (band == NL80211_BAND_2GHZ) {
2146 ra->supp_mode = MODE_CCK;
2147 ra->supp_cck_rate = supp_rate & GENMASK(3, 0);
2148
2149 if (ra->rate_len > 4) {
2150 ra->supp_mode |= MODE_OFDM;
2151 ra->supp_ofdm_rate = supp_rate >> 4;
2152 }
2153 } else {
2154 ra->supp_mode = MODE_OFDM;
2155 ra->supp_ofdm_rate = supp_rate;
2156 }
2157 }
2158
2159 if (link_sta->ht_cap.ht_supported) {
2160 ra->supp_mode |= MODE_HT;
2161 ra->af = link_sta->ht_cap.ampdu_factor;
2162 ra->ht_gf = !!(link_sta->ht_cap.cap & IEEE80211_HT_CAP_GRN_FLD);
2163
2164 cap |= STA_CAP_HT;
2165 if (link_sta->ht_cap.cap & IEEE80211_HT_CAP_SGI_20)
2166 cap |= STA_CAP_SGI_20;
2167 if (link_sta->ht_cap.cap & IEEE80211_HT_CAP_SGI_40)
2168 cap |= STA_CAP_SGI_40;
2169 if (link_sta->ht_cap.cap & IEEE80211_HT_CAP_TX_STBC)
2170 cap |= STA_CAP_TX_STBC;
2171 if (link_sta->ht_cap.cap & IEEE80211_HT_CAP_RX_STBC)
2172 cap |= STA_CAP_RX_STBC;
2173 if (link_conf->ht_ldpc &&
2174 (link_sta->ht_cap.cap & IEEE80211_HT_CAP_LDPC_CODING))
2175 cap |= STA_CAP_LDPC;
2176
2177 mt7996_mcu_set_sta_ht_mcs(link_sta, ra->ht_mcs,
2178 mask->control[band].ht_mcs);
2179 ra->supp_ht_mcs = *(__le32 *)ra->ht_mcs;
2180 }
2181
2182 if (link_sta->vht_cap.vht_supported) {
2183 u8 af;
2184
2185 ra->supp_mode |= MODE_VHT;
2186 af = FIELD_GET(IEEE80211_VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MASK,
2187 link_sta->vht_cap.cap);
2188 ra->af = max_t(u8, ra->af, af);
2189
2190 cap |= STA_CAP_VHT;
2191 if (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_SHORT_GI_80)
2192 cap |= STA_CAP_VHT_SGI_80;
2193 if (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_SHORT_GI_160)
2194 cap |= STA_CAP_VHT_SGI_160;
2195 if (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_TXSTBC)
2196 cap |= STA_CAP_VHT_TX_STBC;
2197 if (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_RXSTBC_1)
2198 cap |= STA_CAP_VHT_RX_STBC;
2199 if ((vif->type != NL80211_IFTYPE_AP || link_conf->vht_ldpc) &&
2200 (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_RXLDPC))
2201 cap |= STA_CAP_VHT_LDPC;
2202
2203 mt7996_mcu_set_sta_vht_mcs(link_sta, ra->supp_vht_mcs,
2204 mask->control[band].vht_mcs);
2205 }
2206
2207 if (link_sta->he_cap.has_he) {
2208 ra->supp_mode |= MODE_HE;
2209 cap |= STA_CAP_HE;
2210
2211 if (link_sta->he_6ghz_capa.capa)
2212 ra->af = le16_get_bits(link_sta->he_6ghz_capa.capa,
2213 IEEE80211_HE_6GHZ_CAP_MAX_AMPDU_LEN_EXP);
2214 }
2215 ra->sta_cap = cpu_to_le32(cap);
2216
2217 memset(ra->rx_rcpi, INIT_RCPI, sizeof(ra->rx_rcpi));
2218 }
2219
mt7996_mcu_add_rate_ctrl(struct mt7996_dev * dev,struct mt7996_sta * msta,struct ieee80211_vif * vif,u8 link_id,bool changed)2220 int mt7996_mcu_add_rate_ctrl(struct mt7996_dev *dev, struct mt7996_sta *msta,
2221 struct ieee80211_vif *vif, u8 link_id,
2222 bool changed)
2223 {
2224 struct ieee80211_bss_conf *link_conf;
2225 struct ieee80211_link_sta *link_sta;
2226 struct mt7996_sta_link *msta_link;
2227 struct mt7996_vif_link *link;
2228 struct ieee80211_sta *sta;
2229 struct sk_buff *skb;
2230 int ret = -ENODEV;
2231
2232 rcu_read_lock();
2233
2234 link = mt7996_vif_link(dev, vif, link_id);
2235 if (!link)
2236 goto error_unlock;
2237
2238 msta_link = rcu_dereference(msta->link[link_id]);
2239 if (!msta_link)
2240 goto error_unlock;
2241
2242 sta = wcid_to_sta(&msta_link->wcid);
2243 link_sta = rcu_dereference(sta->link[link_id]);
2244 if (!link_sta)
2245 goto error_unlock;
2246
2247 link_conf = rcu_dereference(vif->link_conf[link_id]);
2248 if (!link_conf)
2249 goto error_unlock;
2250
2251 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76,
2252 &msta_link->wcid,
2253 MT7996_STA_UPDATE_MAX_SIZE);
2254 if (IS_ERR(skb)) {
2255 ret = PTR_ERR(skb);
2256 goto error_unlock;
2257 }
2258
2259 /* firmware rc algorithm refers to sta_rec_he for HE control.
2260 * once dev->rc_work changes the settings driver should also
2261 * update sta_rec_he here.
2262 */
2263 if (changed)
2264 mt7996_mcu_sta_he_tlv(skb, link_sta, link);
2265
2266 /* sta_rec_ra accommodates BW, NSS and only MCS range format
2267 * i.e 0-{7,8,9} for VHT.
2268 */
2269 mt7996_mcu_sta_rate_ctrl_tlv(skb, dev, vif, link_conf, link_sta, link);
2270
2271 rcu_read_unlock();
2272
2273 ret = mt76_mcu_skb_send_msg(&dev->mt76, skb,
2274 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
2275 if (ret)
2276 return ret;
2277
2278 return mt7996_mcu_add_rate_ctrl_fixed(dev, msta, vif, link_id);
2279
2280 error_unlock:
2281 rcu_read_unlock();
2282
2283 return ret;
2284 }
2285
2286 static int
mt7996_mcu_add_group(struct mt7996_dev * dev,struct ieee80211_vif * vif,struct ieee80211_sta * sta)2287 mt7996_mcu_add_group(struct mt7996_dev *dev, struct ieee80211_vif *vif,
2288 struct ieee80211_sta *sta)
2289 {
2290 #define MT_STA_BSS_GROUP 1
2291 struct mt7996_vif *mvif = (struct mt7996_vif *)vif->drv_priv;
2292 struct mt7996_sta_link *msta_link;
2293 struct mt7996_sta *msta;
2294 struct {
2295 u8 __rsv1[4];
2296
2297 __le16 tag;
2298 __le16 len;
2299 __le16 wlan_idx;
2300 u8 __rsv2[2];
2301 __le32 action;
2302 __le32 val;
2303 u8 __rsv3[8];
2304 } __packed req = {
2305 .tag = cpu_to_le16(UNI_VOW_DRR_CTRL),
2306 .len = cpu_to_le16(sizeof(req) - 4),
2307 .action = cpu_to_le32(MT_STA_BSS_GROUP),
2308 .val = cpu_to_le32(mvif->deflink.mt76.idx % 16),
2309 };
2310
2311 msta = sta ? (struct mt7996_sta *)sta->drv_priv : NULL;
2312 msta_link = msta ? &msta->deflink : &mvif->deflink.msta_link;
2313 req.wlan_idx = cpu_to_le16(msta_link->wcid.idx);
2314
2315 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(VOW), &req,
2316 sizeof(req), true);
2317 }
2318
2319 static void
mt7996_mcu_sta_mld_setup_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_vif * vif,struct ieee80211_sta * sta)2320 mt7996_mcu_sta_mld_setup_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
2321 struct ieee80211_vif *vif,
2322 struct ieee80211_sta *sta)
2323 {
2324 struct mt7996_sta *msta = (struct mt7996_sta *)sta->drv_priv;
2325 unsigned int nlinks = hweight16(sta->valid_links);
2326 struct mld_setup_link *mld_setup_link;
2327 struct ieee80211_link_sta *link_sta;
2328 struct sta_rec_mld_setup *mld_setup;
2329 struct mt7996_sta_link *msta_link;
2330 unsigned int link_id;
2331 struct tlv *tlv;
2332
2333 msta_link = mt76_dereference(msta->link[msta->deflink_id], &dev->mt76);
2334 if (!msta_link)
2335 return;
2336
2337 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_MLD,
2338 sizeof(struct sta_rec_mld_setup) +
2339 sizeof(struct mld_setup_link) * nlinks);
2340
2341 mld_setup = (struct sta_rec_mld_setup *)tlv;
2342 memcpy(mld_setup->mld_addr, sta->addr, ETH_ALEN);
2343 mld_setup->setup_wcid = cpu_to_le16(msta_link->wcid.idx);
2344 mld_setup->primary_id = cpu_to_le16(msta_link->wcid.idx);
2345
2346 if (nlinks > 1) {
2347 link_id = __ffs(sta->valid_links & ~BIT(msta->deflink_id));
2348 msta_link = mt76_dereference(msta->link[link_id], &dev->mt76);
2349 if (!msta_link)
2350 return;
2351 }
2352 mld_setup->seconed_id = cpu_to_le16(msta_link->wcid.idx);
2353 mld_setup->link_num = nlinks;
2354
2355 mld_setup_link = (struct mld_setup_link *)mld_setup->link_info;
2356 for_each_sta_active_link(vif, sta, link_sta, link_id) {
2357 struct mt7996_vif_link *link;
2358
2359 msta_link = mt76_dereference(msta->link[link_id], &dev->mt76);
2360 if (!msta_link)
2361 continue;
2362
2363 link = mt7996_vif_link(dev, vif, link_id);
2364 if (!link)
2365 continue;
2366
2367 mld_setup_link->wcid = cpu_to_le16(msta_link->wcid.idx);
2368 mld_setup_link->bss_idx = link->mt76.idx;
2369 mld_setup_link++;
2370 }
2371 }
2372
2373 static void
mt7996_mcu_sta_eht_mld_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_sta * sta)2374 mt7996_mcu_sta_eht_mld_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
2375 struct ieee80211_sta *sta)
2376 {
2377 struct sta_rec_eht_mld *eht_mld;
2378 struct tlv *tlv;
2379 int i;
2380
2381 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_EHT_MLD, sizeof(*eht_mld));
2382 eht_mld = (struct sta_rec_eht_mld *)tlv;
2383
2384 for (i = 0; i < ARRAY_SIZE(eht_mld->str_cap); i++)
2385 eht_mld->str_cap[i] = 0x7;
2386 }
2387
mt7996_mcu_add_sta(struct mt7996_dev * dev,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link,int conn_state,bool newly)2388 int mt7996_mcu_add_sta(struct mt7996_dev *dev,
2389 struct ieee80211_bss_conf *link_conf,
2390 struct ieee80211_link_sta *link_sta,
2391 struct mt7996_vif_link *link,
2392 struct mt7996_sta_link *msta_link,
2393 int conn_state, bool newly)
2394 {
2395 struct mt76_wcid *wcid = msta_link ? &msta_link->wcid : link->mt76.wcid;
2396 struct ieee80211_sta *sta = link_sta ? link_sta->sta : NULL;
2397 struct sk_buff *skb;
2398 int ret;
2399
2400 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76, wcid,
2401 MT7996_STA_UPDATE_MAX_SIZE);
2402 if (IS_ERR(skb))
2403 return PTR_ERR(skb);
2404
2405 /* starec basic */
2406 mt76_connac_mcu_sta_basic_tlv(&dev->mt76, skb, link_conf, link_sta,
2407 conn_state, newly);
2408
2409 if (conn_state == CONN_STATE_DISCONNECT)
2410 goto out;
2411
2412 /* starec hdr trans */
2413 mt7996_mcu_sta_hdr_trans_tlv(dev, skb, link_conf->vif, wcid);
2414 /* starec tx proc */
2415 mt7996_mcu_sta_tx_proc_tlv(skb);
2416
2417 /* tag order is in accordance with firmware dependency. */
2418 if (link_sta) {
2419 /* starec hdrt mode */
2420 mt7996_mcu_sta_hdrt_tlv(dev, skb);
2421 if (conn_state == CONN_STATE_CONNECT) {
2422 /* starec bfer */
2423 mt7996_mcu_sta_bfer_tlv(dev, skb, link_conf, link_sta,
2424 link);
2425 /* starec bfee */
2426 mt7996_mcu_sta_bfee_tlv(dev, skb, link_conf, link_sta,
2427 link);
2428 }
2429 /* starec ht */
2430 mt7996_mcu_sta_ht_tlv(skb, link_sta);
2431 /* starec vht */
2432 mt7996_mcu_sta_vht_tlv(skb, link_sta);
2433 /* starec uapsd */
2434 mt76_connac_mcu_sta_uapsd(skb, link_conf->vif, sta);
2435 /* starec amsdu */
2436 mt7996_mcu_sta_amsdu_tlv(dev, skb, link_conf->vif, link_sta,
2437 msta_link);
2438 /* starec he */
2439 mt7996_mcu_sta_he_tlv(skb, link_sta, link);
2440 /* starec he 6g*/
2441 mt7996_mcu_sta_he_6g_tlv(skb, link_sta);
2442 /* starec eht */
2443 mt7996_mcu_sta_eht_tlv(skb, link_sta);
2444 /* starec muru */
2445 mt7996_mcu_sta_muru_tlv(dev, skb, link_conf, link_sta);
2446
2447 if (sta->mlo) {
2448 mt7996_mcu_sta_mld_setup_tlv(dev, skb, link_conf->vif,
2449 sta);
2450 mt7996_mcu_sta_eht_mld_tlv(dev, skb, sta);
2451 }
2452 }
2453
2454 ret = mt7996_mcu_add_group(dev, link_conf->vif, sta);
2455 if (ret) {
2456 dev_kfree_skb(skb);
2457 return ret;
2458 }
2459 out:
2460 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
2461 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
2462 }
2463
mt7996_mcu_teardown_mld_sta(struct mt7996_dev * dev,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link)2464 int mt7996_mcu_teardown_mld_sta(struct mt7996_dev *dev,
2465 struct mt7996_vif_link *link,
2466 struct mt7996_sta_link *msta_link)
2467 {
2468 struct sk_buff *skb;
2469
2470 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76,
2471 &msta_link->wcid,
2472 MT7996_STA_UPDATE_MAX_SIZE);
2473 if (IS_ERR(skb))
2474 return PTR_ERR(skb);
2475
2476 mt76_connac_mcu_add_tlv(skb, STA_REC_MLD_OFF, sizeof(struct tlv));
2477
2478 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
2479 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
2480 }
2481
2482 static int
mt7996_mcu_sta_key_tlv(struct mt76_wcid * wcid,struct sk_buff * skb,struct ieee80211_key_conf * key,enum set_key_cmd cmd)2483 mt7996_mcu_sta_key_tlv(struct mt76_wcid *wcid,
2484 struct sk_buff *skb,
2485 struct ieee80211_key_conf *key,
2486 enum set_key_cmd cmd)
2487 {
2488 struct sta_rec_sec_uni *sec;
2489 struct tlv *tlv;
2490
2491 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_KEY_V2, sizeof(*sec));
2492 sec = (struct sta_rec_sec_uni *)tlv;
2493 sec->add = cmd;
2494
2495 if (cmd == SET_KEY) {
2496 struct sec_key_uni *sec_key;
2497 u8 cipher;
2498
2499 cipher = mt76_connac_mcu_get_cipher(key->cipher);
2500 if (cipher == MCU_CIPHER_NONE)
2501 return -EOPNOTSUPP;
2502
2503 sec_key = &sec->key[0];
2504 sec_key->wlan_idx = cpu_to_le16(wcid->idx);
2505 sec_key->mgmt_prot = 0;
2506 sec_key->cipher_id = cipher;
2507 sec_key->cipher_len = sizeof(*sec_key);
2508 sec_key->key_id = key->keyidx;
2509 sec_key->key_len = key->keylen;
2510 sec_key->need_resp = 0;
2511 memcpy(sec_key->key, key->key, key->keylen);
2512
2513 if (cipher == MCU_CIPHER_TKIP) {
2514 /* Rx/Tx MIC keys are swapped */
2515 memcpy(sec_key->key + 16, key->key + 24, 8);
2516 memcpy(sec_key->key + 24, key->key + 16, 8);
2517 }
2518
2519 sec->n_cipher = 1;
2520 } else {
2521 sec->n_cipher = 0;
2522 }
2523
2524 return 0;
2525 }
2526
mt7996_mcu_add_key(struct mt76_dev * dev,struct ieee80211_vif * vif,struct ieee80211_key_conf * key,int mcu_cmd,struct mt76_wcid * wcid,enum set_key_cmd cmd)2527 int mt7996_mcu_add_key(struct mt76_dev *dev, struct ieee80211_vif *vif,
2528 struct ieee80211_key_conf *key, int mcu_cmd,
2529 struct mt76_wcid *wcid, enum set_key_cmd cmd)
2530 {
2531 struct mt76_vif_link *mvif = (struct mt76_vif_link *)vif->drv_priv;
2532 struct sk_buff *skb;
2533 int ret;
2534
2535 skb = __mt76_connac_mcu_alloc_sta_req(dev, mvif, wcid,
2536 MT7996_STA_UPDATE_MAX_SIZE);
2537 if (IS_ERR(skb))
2538 return PTR_ERR(skb);
2539
2540 ret = mt7996_mcu_sta_key_tlv(wcid, skb, key, cmd);
2541 if (ret)
2542 return ret;
2543
2544 return mt76_mcu_skb_send_msg(dev, skb, mcu_cmd, true);
2545 }
2546
mt7996_mcu_get_pn(struct mt7996_dev * dev,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link,u8 * pn)2547 static int mt7996_mcu_get_pn(struct mt7996_dev *dev,
2548 struct mt7996_vif_link *link,
2549 struct mt7996_sta_link *msta_link, u8 *pn)
2550 {
2551 #define TSC_TYPE_BIGTK_PN 2
2552 struct sta_rec_pn_info *pn_info;
2553 struct sk_buff *skb, *rskb;
2554 struct tlv *tlv;
2555 int ret;
2556
2557 skb = mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76,
2558 &msta_link->wcid);
2559 if (IS_ERR(skb))
2560 return PTR_ERR(skb);
2561
2562 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_PN_INFO, sizeof(*pn_info));
2563 pn_info = (struct sta_rec_pn_info *)tlv;
2564
2565 pn_info->tsc_type = TSC_TYPE_BIGTK_PN;
2566 ret = mt76_mcu_skb_send_and_get_msg(&dev->mt76, skb,
2567 MCU_WM_UNI_CMD_QUERY(STA_REC_UPDATE),
2568 true, &rskb);
2569 if (ret)
2570 return ret;
2571
2572 skb_pull(rskb, 4);
2573
2574 pn_info = (struct sta_rec_pn_info *)rskb->data;
2575 if (le16_to_cpu(pn_info->tag) == STA_REC_PN_INFO)
2576 memcpy(pn, pn_info->pn, 6);
2577
2578 dev_kfree_skb(rskb);
2579 return 0;
2580 }
2581
mt7996_mcu_bcn_prot_enable(struct mt7996_dev * dev,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link,struct ieee80211_key_conf * key)2582 int mt7996_mcu_bcn_prot_enable(struct mt7996_dev *dev,
2583 struct mt7996_vif_link *link,
2584 struct mt7996_sta_link *msta_link,
2585 struct ieee80211_key_conf *key)
2586 {
2587 struct mt7996_mcu_bcn_prot_tlv *bcn_prot;
2588 struct sk_buff *skb;
2589 struct tlv *tlv;
2590 u8 pn[6] = {};
2591 int len = sizeof(struct bss_req_hdr) +
2592 sizeof(struct mt7996_mcu_bcn_prot_tlv);
2593 int ret;
2594
2595 skb = __mt7996_mcu_alloc_bss_req(&dev->mt76, &link->mt76, len);
2596 if (IS_ERR(skb))
2597 return PTR_ERR(skb);
2598
2599 tlv = mt76_connac_mcu_add_tlv(skb, UNI_BSS_INFO_BCN_PROT, sizeof(*bcn_prot));
2600
2601 bcn_prot = (struct mt7996_mcu_bcn_prot_tlv *)tlv;
2602
2603 ret = mt7996_mcu_get_pn(dev, link, msta_link, pn);
2604 if (ret) {
2605 dev_kfree_skb(skb);
2606 return ret;
2607 }
2608
2609 switch (key->cipher) {
2610 case WLAN_CIPHER_SUITE_AES_CMAC:
2611 bcn_prot->cipher_id = MCU_CIPHER_BCN_PROT_CMAC_128;
2612 break;
2613 case WLAN_CIPHER_SUITE_BIP_GMAC_128:
2614 bcn_prot->cipher_id = MCU_CIPHER_BCN_PROT_GMAC_128;
2615 break;
2616 case WLAN_CIPHER_SUITE_BIP_GMAC_256:
2617 bcn_prot->cipher_id = MCU_CIPHER_BCN_PROT_GMAC_256;
2618 break;
2619 case WLAN_CIPHER_SUITE_BIP_CMAC_256:
2620 default:
2621 dev_err(dev->mt76.dev, "Not supported Bigtk Cipher\n");
2622 dev_kfree_skb(skb);
2623 return -EOPNOTSUPP;
2624 }
2625
2626 pn[0]++;
2627 memcpy(bcn_prot->pn, pn, 6);
2628 bcn_prot->enable = BP_SW_MODE;
2629 memcpy(bcn_prot->key, key->key, WLAN_MAX_KEY_LEN);
2630 bcn_prot->key_id = key->keyidx;
2631
2632 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
2633 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
2634 }
2635
mt7996_mcu_add_dev_info(struct mt7996_phy * phy,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct mt76_vif_link * mlink,bool enable)2636 int mt7996_mcu_add_dev_info(struct mt7996_phy *phy, struct ieee80211_vif *vif,
2637 struct ieee80211_bss_conf *link_conf,
2638 struct mt76_vif_link *mlink, bool enable)
2639 {
2640 struct mt7996_dev *dev = phy->dev;
2641 struct {
2642 struct req_hdr {
2643 u8 omac_idx;
2644 u8 band_idx;
2645 u8 __rsv[2];
2646 } __packed hdr;
2647 struct req_tlv {
2648 __le16 tag;
2649 __le16 len;
2650 u8 active;
2651 u8 __rsv;
2652 u8 omac_addr[ETH_ALEN];
2653 } __packed tlv;
2654 } data = {
2655 .hdr = {
2656 .omac_idx = mlink->omac_idx,
2657 .band_idx = mlink->band_idx,
2658 },
2659 .tlv = {
2660 .tag = cpu_to_le16(DEV_INFO_ACTIVE),
2661 .len = cpu_to_le16(sizeof(struct req_tlv)),
2662 .active = enable,
2663 },
2664 };
2665
2666 if (mlink->omac_idx >= REPEATER_BSSID_START)
2667 return mt7996_mcu_muar_config(dev, mlink, link_conf->addr, false, enable);
2668
2669 memcpy(data.tlv.omac_addr, link_conf->addr, ETH_ALEN);
2670 return mt76_mcu_send_msg(&dev->mt76, MCU_WMWA_UNI_CMD(DEV_INFO_UPDATE),
2671 &data, sizeof(data), true);
2672 }
2673
2674 static void
mt7996_mcu_beacon_cntdwn(struct sk_buff * rskb,struct sk_buff * skb,struct ieee80211_mutable_offsets * offs,bool csa)2675 mt7996_mcu_beacon_cntdwn(struct sk_buff *rskb, struct sk_buff *skb,
2676 struct ieee80211_mutable_offsets *offs,
2677 bool csa)
2678 {
2679 struct bss_bcn_cntdwn_tlv *info;
2680 struct tlv *tlv;
2681 u16 tag;
2682
2683 if (!offs->cntdwn_counter_offs[0])
2684 return;
2685
2686 tag = csa ? UNI_BSS_INFO_BCN_CSA : UNI_BSS_INFO_BCN_BCC;
2687
2688 tlv = mt7996_mcu_add_uni_tlv(rskb, tag, sizeof(*info));
2689
2690 info = (struct bss_bcn_cntdwn_tlv *)tlv;
2691 info->cnt = skb->data[offs->cntdwn_counter_offs[0]];
2692 }
2693
2694 static void
mt7996_mcu_beacon_mbss(struct sk_buff * rskb,struct sk_buff * skb,struct bss_bcn_content_tlv * bcn,struct ieee80211_mutable_offsets * offs)2695 mt7996_mcu_beacon_mbss(struct sk_buff *rskb, struct sk_buff *skb,
2696 struct bss_bcn_content_tlv *bcn,
2697 struct ieee80211_mutable_offsets *offs)
2698 {
2699 struct bss_bcn_mbss_tlv *mbss;
2700 const struct element *elem;
2701 struct tlv *tlv;
2702
2703 tlv = mt7996_mcu_add_uni_tlv(rskb, UNI_BSS_INFO_BCN_MBSSID, sizeof(*mbss));
2704
2705 mbss = (struct bss_bcn_mbss_tlv *)tlv;
2706 mbss->offset[0] = cpu_to_le16(offs->tim_offset);
2707 mbss->bitmap = cpu_to_le32(1);
2708
2709 for_each_element_id(elem, WLAN_EID_MULTIPLE_BSSID,
2710 &skb->data[offs->mbssid_off],
2711 skb->len - offs->mbssid_off) {
2712 const struct element *sub_elem;
2713
2714 if (elem->datalen < 2)
2715 continue;
2716
2717 for_each_element(sub_elem, elem->data + 1, elem->datalen - 1) {
2718 const struct ieee80211_bssid_index *idx;
2719 const u8 *idx_ie;
2720
2721 /* not a valid BSS profile */
2722 if (sub_elem->id || sub_elem->datalen < 4)
2723 continue;
2724
2725 /* Find WLAN_EID_MULTI_BSSID_IDX
2726 * in the merged nontransmitted profile
2727 */
2728 idx_ie = cfg80211_find_ie(WLAN_EID_MULTI_BSSID_IDX,
2729 sub_elem->data, sub_elem->datalen);
2730 if (!idx_ie || idx_ie[1] < sizeof(*idx))
2731 continue;
2732
2733 #if defined(__linux__)
2734 idx = (void *)(idx_ie + 2);
2735 #elif defined(__FreeBSD__)
2736 idx = (const void *)(idx_ie + 2);
2737 #endif
2738 if (!idx->bssid_index || idx->bssid_index > 31)
2739 continue;
2740
2741 mbss->offset[idx->bssid_index] = cpu_to_le16(idx_ie -
2742 skb->data);
2743 mbss->bitmap |= cpu_to_le32(BIT(idx->bssid_index));
2744 }
2745 }
2746 }
2747
2748 static void
mt7996_mcu_beacon_cont(struct mt7996_dev * dev,struct ieee80211_bss_conf * link_conf,struct sk_buff * rskb,struct sk_buff * skb,struct bss_bcn_content_tlv * bcn,struct ieee80211_mutable_offsets * offs)2749 mt7996_mcu_beacon_cont(struct mt7996_dev *dev,
2750 struct ieee80211_bss_conf *link_conf,
2751 struct sk_buff *rskb, struct sk_buff *skb,
2752 struct bss_bcn_content_tlv *bcn,
2753 struct ieee80211_mutable_offsets *offs)
2754 {
2755 struct mt76_wcid *wcid = &dev->mt76.global_wcid;
2756 u8 *buf;
2757
2758 bcn->pkt_len = cpu_to_le16(MT_TXD_SIZE + skb->len);
2759 bcn->tim_ie_pos = cpu_to_le16(offs->tim_offset);
2760
2761 if (offs->cntdwn_counter_offs[0]) {
2762 u16 offset = offs->cntdwn_counter_offs[0];
2763
2764 if (link_conf->csa_active)
2765 bcn->csa_ie_pos = cpu_to_le16(offset - 4);
2766 if (link_conf->color_change_active)
2767 bcn->bcc_ie_pos = cpu_to_le16(offset - 3);
2768 }
2769
2770 buf = (u8 *)bcn + sizeof(*bcn);
2771 mt7996_mac_write_txwi(dev, (__le32 *)buf, skb, wcid, NULL, 0, 0,
2772 BSS_CHANGED_BEACON);
2773
2774 memcpy(buf + MT_TXD_SIZE, skb->data, skb->len);
2775 }
2776
mt7996_mcu_add_beacon(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf)2777 int mt7996_mcu_add_beacon(struct ieee80211_hw *hw, struct ieee80211_vif *vif,
2778 struct ieee80211_bss_conf *link_conf)
2779 {
2780 struct mt7996_dev *dev = mt7996_hw_dev(hw);
2781 struct mt7996_vif_link *link = mt7996_vif_conf_link(dev, vif, link_conf);
2782 struct mt76_vif_link *mlink = link ? &link->mt76 : NULL;
2783 struct ieee80211_mutable_offsets offs;
2784 struct ieee80211_tx_info *info;
2785 struct sk_buff *skb, *rskb;
2786 struct tlv *tlv;
2787 struct bss_bcn_content_tlv *bcn;
2788 int len, extra_len = 0;
2789 bool enabled = link_conf->enable_beacon;
2790
2791 if (link_conf->nontransmitted)
2792 return 0;
2793
2794 if (!mlink)
2795 return -EINVAL;
2796
2797 if (link->phy && link->phy->mt76->offchannel)
2798 enabled = false;
2799
2800 rskb = __mt7996_mcu_alloc_bss_req(&dev->mt76, mlink,
2801 MT7996_MAX_BSS_OFFLOAD_SIZE);
2802 if (IS_ERR(rskb))
2803 return PTR_ERR(rskb);
2804
2805 skb = ieee80211_beacon_get_template(hw, vif, &offs, link_conf->link_id);
2806 if (enabled && !skb) {
2807 dev_kfree_skb(rskb);
2808 return -EINVAL;
2809 }
2810
2811 if (skb) {
2812 if (skb->len > MT7996_MAX_BEACON_SIZE) {
2813 dev_err(dev->mt76.dev, "Bcn size limit exceed\n");
2814 dev_kfree_skb(rskb);
2815 dev_kfree_skb(skb);
2816 return -EINVAL;
2817 }
2818
2819 extra_len = skb->len;
2820 }
2821
2822 len = ALIGN(sizeof(*bcn) + MT_TXD_SIZE + extra_len, 4);
2823 tlv = mt7996_mcu_add_uni_tlv(rskb, UNI_BSS_INFO_BCN_CONTENT, len);
2824 bcn = (struct bss_bcn_content_tlv *)tlv;
2825 bcn->enable = enabled;
2826 if (!bcn->enable)
2827 goto out;
2828
2829 info = IEEE80211_SKB_CB(skb);
2830 info->hw_queue |= FIELD_PREP(MT_TX_HW_QUEUE_PHY, mlink->band_idx);
2831
2832 mt7996_mcu_beacon_cont(dev, link_conf, rskb, skb, bcn, &offs);
2833 if (link_conf->bssid_indicator)
2834 mt7996_mcu_beacon_mbss(rskb, skb, bcn, &offs);
2835 mt7996_mcu_beacon_cntdwn(rskb, skb, &offs, link_conf->csa_active);
2836 out:
2837 dev_kfree_skb(skb);
2838 return mt76_mcu_skb_send_msg(&dev->mt76, rskb,
2839 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
2840 }
2841
mt7996_mcu_beacon_inband_discov(struct mt7996_dev * dev,struct ieee80211_bss_conf * link_conf,struct mt7996_vif_link * link,u32 changed)2842 int mt7996_mcu_beacon_inband_discov(struct mt7996_dev *dev,
2843 struct ieee80211_bss_conf *link_conf,
2844 struct mt7996_vif_link *link, u32 changed)
2845 {
2846 #define OFFLOAD_TX_MODE_SU BIT(0)
2847 #define OFFLOAD_TX_MODE_MU BIT(1)
2848 struct ieee80211_vif *vif = link_conf->vif;
2849 struct ieee80211_hw *hw = mt76_hw(dev);
2850 struct mt7996_phy *phy = link->phy;
2851 struct mt76_wcid *wcid = &dev->mt76.global_wcid;
2852 struct bss_inband_discovery_tlv *discov;
2853 struct ieee80211_tx_info *info;
2854 struct sk_buff *rskb, *skb = NULL;
2855 struct cfg80211_chan_def *chandef;
2856 enum nl80211_band band;
2857 struct tlv *tlv;
2858 u8 *buf, interval;
2859 int len;
2860
2861 if (!phy)
2862 return -EINVAL;
2863
2864 chandef = &phy->mt76->chandef;
2865 band = chandef->chan->band;
2866
2867 if (link_conf->nontransmitted)
2868 return 0;
2869
2870 rskb = __mt7996_mcu_alloc_bss_req(&dev->mt76, &link->mt76,
2871 MT7996_MAX_BSS_OFFLOAD_SIZE);
2872 if (IS_ERR(rskb))
2873 return PTR_ERR(rskb);
2874
2875 if (changed & BSS_CHANGED_FILS_DISCOVERY &&
2876 link_conf->fils_discovery.max_interval) {
2877 interval = link_conf->fils_discovery.max_interval;
2878 skb = ieee80211_get_fils_discovery_tmpl(hw, vif);
2879 } else if (changed & BSS_CHANGED_UNSOL_BCAST_PROBE_RESP &&
2880 link_conf->unsol_bcast_probe_resp_interval) {
2881 interval = link_conf->unsol_bcast_probe_resp_interval;
2882 skb = ieee80211_get_unsol_bcast_probe_resp_tmpl(hw, vif);
2883 }
2884
2885 if (!skb) {
2886 dev_kfree_skb(rskb);
2887 return -EINVAL;
2888 }
2889
2890 if (skb->len > MT7996_MAX_BEACON_SIZE) {
2891 dev_err(dev->mt76.dev, "inband discovery size limit exceed\n");
2892 dev_kfree_skb(rskb);
2893 dev_kfree_skb(skb);
2894 return -EINVAL;
2895 }
2896
2897 info = IEEE80211_SKB_CB(skb);
2898 info->control.vif = vif;
2899 info->band = band;
2900 info->hw_queue |= FIELD_PREP(MT_TX_HW_QUEUE_PHY, phy->mt76->band_idx);
2901
2902 len = ALIGN(sizeof(*discov) + MT_TXD_SIZE + skb->len, 4);
2903 tlv = mt7996_mcu_add_uni_tlv(rskb, UNI_BSS_INFO_OFFLOAD, len);
2904
2905 discov = (struct bss_inband_discovery_tlv *)tlv;
2906 discov->tx_mode = OFFLOAD_TX_MODE_SU;
2907 /* 0: UNSOL PROBE RESP, 1: FILS DISCOV */
2908 discov->tx_type = !!(changed & BSS_CHANGED_FILS_DISCOVERY);
2909 discov->tx_interval = interval;
2910 discov->prob_rsp_len = cpu_to_le16(MT_TXD_SIZE + skb->len);
2911 discov->enable = true;
2912 discov->wcid = cpu_to_le16(MT7996_WTBL_RESERVED);
2913
2914 buf = (u8 *)tlv + sizeof(*discov);
2915
2916 mt7996_mac_write_txwi(dev, (__le32 *)buf, skb, wcid, NULL, 0, 0, changed);
2917
2918 memcpy(buf + MT_TXD_SIZE, skb->data, skb->len);
2919
2920 dev_kfree_skb(skb);
2921
2922 return mt76_mcu_skb_send_msg(&dev->mt76, rskb,
2923 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
2924 }
2925
mt7996_driver_own(struct mt7996_dev * dev,u8 band)2926 static int mt7996_driver_own(struct mt7996_dev *dev, u8 band)
2927 {
2928 mt76_wr(dev, MT_TOP_LPCR_HOST_BAND(band), MT_TOP_LPCR_HOST_DRV_OWN);
2929 if (!mt76_poll_msec(dev, MT_TOP_LPCR_HOST_BAND(band),
2930 MT_TOP_LPCR_HOST_FW_OWN_STAT, 0, 500)) {
2931 dev_err(dev->mt76.dev, "Timeout for driver own\n");
2932 return -EIO;
2933 }
2934
2935 /* clear irq when the driver own success */
2936 mt76_wr(dev, MT_TOP_LPCR_HOST_BAND_IRQ_STAT(band),
2937 MT_TOP_LPCR_HOST_BAND_STAT);
2938
2939 return 0;
2940 }
2941
mt7996_patch_sec_mode(u32 key_info)2942 static u32 mt7996_patch_sec_mode(u32 key_info)
2943 {
2944 u32 sec = u32_get_bits(key_info, MT7996_PATCH_SEC), key = 0;
2945
2946 if (key_info == GENMASK(31, 0) || sec == MT7996_SEC_MODE_PLAIN)
2947 return 0;
2948
2949 if (sec == MT7996_SEC_MODE_AES)
2950 key = u32_get_bits(key_info, MT7996_PATCH_AES_KEY);
2951 else
2952 key = u32_get_bits(key_info, MT7996_PATCH_SCRAMBLE_KEY);
2953
2954 return MT7996_SEC_ENCRYPT | MT7996_SEC_IV |
2955 u32_encode_bits(key, MT7996_SEC_KEY_IDX);
2956 }
2957
mt7996_load_patch(struct mt7996_dev * dev)2958 static int mt7996_load_patch(struct mt7996_dev *dev)
2959 {
2960 const struct mt7996_patch_hdr *hdr;
2961 const struct firmware *fw = NULL;
2962 int i, ret, sem;
2963
2964 sem = mt76_connac_mcu_patch_sem_ctrl(&dev->mt76, 1);
2965 switch (sem) {
2966 case PATCH_IS_DL:
2967 return 0;
2968 case PATCH_NOT_DL_SEM_SUCCESS:
2969 break;
2970 default:
2971 dev_err(dev->mt76.dev, "Failed to get patch semaphore\n");
2972 return -EAGAIN;
2973 }
2974
2975 ret = request_firmware(&fw, fw_name(dev, ROM_PATCH), dev->mt76.dev);
2976 if (ret)
2977 goto out;
2978
2979 if (!fw || !fw->data || fw->size < sizeof(*hdr)) {
2980 dev_err(dev->mt76.dev, "Invalid firmware\n");
2981 ret = -EINVAL;
2982 goto out;
2983 }
2984
2985 hdr = (const struct mt7996_patch_hdr *)(fw->data);
2986
2987 dev_info(dev->mt76.dev, "HW/SW Version: 0x%x, Build Time: %.16s\n",
2988 be32_to_cpu(hdr->hw_sw_ver), hdr->build_date);
2989
2990 for (i = 0; i < be32_to_cpu(hdr->desc.n_region); i++) {
2991 #if defined(__linux__)
2992 struct mt7996_patch_sec *sec;
2993 #elif defined(__FreeBSD__)
2994 const struct mt7996_patch_sec *sec;
2995 #endif
2996 const u8 *dl;
2997 u32 len, addr, sec_key_idx, mode = DL_MODE_NEED_RSP;
2998
2999 #if defined(__linux__)
3000 sec = (struct mt7996_patch_sec *)(fw->data + sizeof(*hdr) +
3001 #elif defined(__FreeBSD__)
3002 sec = (const struct mt7996_patch_sec *)(fw->data + sizeof(*hdr) +
3003 #endif
3004 i * sizeof(*sec));
3005 if ((be32_to_cpu(sec->type) & PATCH_SEC_TYPE_MASK) !=
3006 PATCH_SEC_TYPE_INFO) {
3007 ret = -EINVAL;
3008 goto out;
3009 }
3010
3011 addr = be32_to_cpu(sec->info.addr);
3012 len = be32_to_cpu(sec->info.len);
3013 sec_key_idx = be32_to_cpu(sec->info.sec_key_idx);
3014 dl = fw->data + be32_to_cpu(sec->offs);
3015
3016 mode |= mt7996_patch_sec_mode(sec_key_idx);
3017
3018 ret = mt76_connac_mcu_init_download(&dev->mt76, addr, len,
3019 mode);
3020 if (ret) {
3021 dev_err(dev->mt76.dev, "Download request failed\n");
3022 goto out;
3023 }
3024
3025 ret = __mt76_mcu_send_firmware(&dev->mt76, MCU_CMD(FW_SCATTER),
3026 dl, len, 4096);
3027 if (ret) {
3028 dev_err(dev->mt76.dev, "Failed to send patch\n");
3029 goto out;
3030 }
3031 }
3032
3033 ret = mt76_connac_mcu_start_patch(&dev->mt76);
3034 if (ret)
3035 dev_err(dev->mt76.dev, "Failed to start patch\n");
3036
3037 out:
3038 sem = mt76_connac_mcu_patch_sem_ctrl(&dev->mt76, 0);
3039 switch (sem) {
3040 case PATCH_REL_SEM_SUCCESS:
3041 break;
3042 default:
3043 ret = -EAGAIN;
3044 dev_err(dev->mt76.dev, "Failed to release patch semaphore\n");
3045 break;
3046 }
3047 release_firmware(fw);
3048
3049 return ret;
3050 }
3051
3052 static int
mt7996_mcu_send_ram_firmware(struct mt7996_dev * dev,const struct mt7996_fw_trailer * hdr,const u8 * data,enum mt7996_ram_type type)3053 mt7996_mcu_send_ram_firmware(struct mt7996_dev *dev,
3054 const struct mt7996_fw_trailer *hdr,
3055 const u8 *data, enum mt7996_ram_type type)
3056 {
3057 int i, offset = 0;
3058 u32 override = 0, option = 0;
3059
3060 for (i = 0; i < hdr->n_region; i++) {
3061 const struct mt7996_fw_region *region;
3062 int err;
3063 u32 len, addr, mode;
3064
3065 region = (const struct mt7996_fw_region *)((const u8 *)hdr -
3066 (hdr->n_region - i) * sizeof(*region));
3067 /* DSP and WA use same mode */
3068 mode = mt76_connac_mcu_gen_dl_mode(&dev->mt76,
3069 region->feature_set,
3070 type != MT7996_RAM_TYPE_WM);
3071 len = le32_to_cpu(region->len);
3072 addr = le32_to_cpu(region->addr);
3073
3074 if (region->feature_set & FW_FEATURE_OVERRIDE_ADDR)
3075 override = addr;
3076
3077 err = mt76_connac_mcu_init_download(&dev->mt76, addr, len,
3078 mode);
3079 if (err) {
3080 dev_err(dev->mt76.dev, "Download request failed\n");
3081 return err;
3082 }
3083
3084 err = __mt76_mcu_send_firmware(&dev->mt76, MCU_CMD(FW_SCATTER),
3085 data + offset, len, 4096);
3086 if (err) {
3087 dev_err(dev->mt76.dev, "Failed to send firmware.\n");
3088 return err;
3089 }
3090
3091 offset += len;
3092 }
3093
3094 if (override)
3095 option |= FW_START_OVERRIDE;
3096
3097 if (type == MT7996_RAM_TYPE_WA)
3098 option |= FW_START_WORKING_PDA_CR4;
3099 else if (type == MT7996_RAM_TYPE_DSP)
3100 option |= FW_START_WORKING_PDA_DSP;
3101
3102 return mt76_connac_mcu_start_firmware(&dev->mt76, override, option);
3103 }
3104
__mt7996_load_ram(struct mt7996_dev * dev,const char * fw_type,const char * fw_file,enum mt7996_ram_type ram_type)3105 static int __mt7996_load_ram(struct mt7996_dev *dev, const char *fw_type,
3106 const char *fw_file, enum mt7996_ram_type ram_type)
3107 {
3108 const struct mt7996_fw_trailer *hdr;
3109 const struct firmware *fw;
3110 int ret;
3111
3112 ret = request_firmware(&fw, fw_file, dev->mt76.dev);
3113 if (ret)
3114 return ret;
3115
3116 if (!fw || !fw->data || fw->size < sizeof(*hdr)) {
3117 dev_err(dev->mt76.dev, "Invalid firmware\n");
3118 ret = -EINVAL;
3119 goto out;
3120 }
3121
3122 hdr = (const void *)(fw->data + fw->size - sizeof(*hdr));
3123 dev_info(dev->mt76.dev, "%s Firmware Version: %.10s, Build Time: %.15s\n",
3124 fw_type, hdr->fw_ver, hdr->build_date);
3125
3126 ret = mt7996_mcu_send_ram_firmware(dev, hdr, fw->data, ram_type);
3127 if (ret) {
3128 dev_err(dev->mt76.dev, "Failed to start %s firmware\n", fw_type);
3129 goto out;
3130 }
3131
3132 snprintf(dev->mt76.hw->wiphy->fw_version,
3133 sizeof(dev->mt76.hw->wiphy->fw_version),
3134 "%.10s-%.15s", hdr->fw_ver, hdr->build_date);
3135
3136 out:
3137 release_firmware(fw);
3138
3139 return ret;
3140 }
3141
mt7996_load_ram(struct mt7996_dev * dev)3142 static int mt7996_load_ram(struct mt7996_dev *dev)
3143 {
3144 int ret;
3145
3146 ret = __mt7996_load_ram(dev, "WM", fw_name(dev, FIRMWARE_WM),
3147 MT7996_RAM_TYPE_WM);
3148 if (ret)
3149 return ret;
3150
3151 if (!mt7996_has_wa(dev))
3152 return 0;
3153
3154 ret = __mt7996_load_ram(dev, "DSP", fw_name(dev, FIRMWARE_DSP),
3155 MT7996_RAM_TYPE_DSP);
3156 if (ret)
3157 return ret;
3158
3159 return __mt7996_load_ram(dev, "WA", fw_name(dev, FIRMWARE_WA),
3160 MT7996_RAM_TYPE_WA);
3161 }
3162
3163 static int
mt7996_firmware_state(struct mt7996_dev * dev,u8 fw_state)3164 mt7996_firmware_state(struct mt7996_dev *dev, u8 fw_state)
3165 {
3166 u32 state = FIELD_PREP(MT_TOP_MISC_FW_STATE, fw_state);
3167
3168 if (!mt76_poll_msec(dev, MT_TOP_MISC, MT_TOP_MISC_FW_STATE,
3169 state, 1000)) {
3170 dev_err(dev->mt76.dev, "Timeout for initializing firmware\n");
3171 return -EIO;
3172 }
3173 return 0;
3174 }
3175
3176 static int
mt7996_mcu_restart(struct mt76_dev * dev)3177 mt7996_mcu_restart(struct mt76_dev *dev)
3178 {
3179 struct {
3180 u8 __rsv1[4];
3181
3182 __le16 tag;
3183 __le16 len;
3184 u8 power_mode;
3185 u8 __rsv2[3];
3186 } __packed req = {
3187 .tag = cpu_to_le16(UNI_POWER_OFF),
3188 .len = cpu_to_le16(sizeof(req) - 4),
3189 .power_mode = 1,
3190 };
3191
3192 return mt76_mcu_send_msg(dev, MCU_WM_UNI_CMD(POWER_CTRL), &req,
3193 sizeof(req), false);
3194 }
3195
mt7996_load_firmware(struct mt7996_dev * dev)3196 static int mt7996_load_firmware(struct mt7996_dev *dev)
3197 {
3198 u8 fw_state;
3199 int ret;
3200
3201 /* make sure fw is download state */
3202 if (mt7996_firmware_state(dev, FW_STATE_FW_DOWNLOAD)) {
3203 /* restart firmware once */
3204 mt7996_mcu_restart(&dev->mt76);
3205 ret = mt7996_firmware_state(dev, FW_STATE_FW_DOWNLOAD);
3206 if (ret) {
3207 dev_err(dev->mt76.dev,
3208 "Firmware is not ready for download\n");
3209 return ret;
3210 }
3211 }
3212
3213 ret = mt7996_load_patch(dev);
3214 if (ret)
3215 return ret;
3216
3217 ret = mt7996_load_ram(dev);
3218 if (ret)
3219 return ret;
3220
3221 fw_state = mt7996_has_wa(dev) ? FW_STATE_RDY : FW_STATE_NORMAL_TRX;
3222 ret = mt7996_firmware_state(dev, fw_state);
3223 if (ret)
3224 return ret;
3225
3226 mt76_queue_tx_cleanup(dev, dev->mt76.q_mcu[MT_MCUQ_FWDL], false);
3227
3228 dev_dbg(dev->mt76.dev, "Firmware init done\n");
3229
3230 return 0;
3231 }
3232
mt7996_mcu_fw_log_2_host(struct mt7996_dev * dev,u8 type,u8 ctrl)3233 int mt7996_mcu_fw_log_2_host(struct mt7996_dev *dev, u8 type, u8 ctrl)
3234 {
3235 struct {
3236 u8 _rsv[4];
3237
3238 __le16 tag;
3239 __le16 len;
3240 u8 ctrl;
3241 u8 interval;
3242 u8 _rsv2[2];
3243 } __packed data = {
3244 .tag = cpu_to_le16(UNI_WSYS_CONFIG_FW_LOG_CTRL),
3245 .len = cpu_to_le16(sizeof(data) - 4),
3246 .ctrl = ctrl,
3247 };
3248
3249 if (type == MCU_FW_LOG_WA)
3250 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_UNI_CMD(WSYS_CONFIG),
3251 &data, sizeof(data), true);
3252
3253 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(WSYS_CONFIG), &data,
3254 sizeof(data), true);
3255 }
3256
mt7996_mcu_fw_dbg_ctrl(struct mt7996_dev * dev,u32 module,u8 level)3257 int mt7996_mcu_fw_dbg_ctrl(struct mt7996_dev *dev, u32 module, u8 level)
3258 {
3259 struct {
3260 u8 _rsv[4];
3261
3262 __le16 tag;
3263 __le16 len;
3264 __le32 module_idx;
3265 u8 level;
3266 u8 _rsv2[3];
3267 } data = {
3268 .tag = cpu_to_le16(UNI_WSYS_CONFIG_FW_DBG_CTRL),
3269 .len = cpu_to_le16(sizeof(data) - 4),
3270 .module_idx = cpu_to_le32(module),
3271 .level = level,
3272 };
3273
3274 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(WSYS_CONFIG), &data,
3275 sizeof(data), false);
3276 }
3277
mt7996_mcu_set_mwds(struct mt7996_dev * dev,bool enabled)3278 static int mt7996_mcu_set_mwds(struct mt7996_dev *dev, bool enabled)
3279 {
3280 struct {
3281 u8 enable;
3282 u8 _rsv[3];
3283 } __packed req = {
3284 .enable = enabled
3285 };
3286
3287 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_EXT_CMD(MWDS_SUPPORT), &req,
3288 sizeof(req), false);
3289 }
3290
mt7996_add_rx_airtime_tlv(struct sk_buff * skb,u8 band_idx)3291 static void mt7996_add_rx_airtime_tlv(struct sk_buff *skb, u8 band_idx)
3292 {
3293 struct vow_rx_airtime *req;
3294 struct tlv *tlv;
3295
3296 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_VOW_RX_AT_AIRTIME_CLR_EN, sizeof(*req));
3297 req = (struct vow_rx_airtime *)tlv;
3298 req->enable = true;
3299 req->band = band_idx;
3300
3301 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_VOW_RX_AT_AIRTIME_EN, sizeof(*req));
3302 req = (struct vow_rx_airtime *)tlv;
3303 req->enable = true;
3304 req->band = band_idx;
3305 }
3306
3307 static int
mt7996_mcu_init_rx_airtime(struct mt7996_dev * dev)3308 mt7996_mcu_init_rx_airtime(struct mt7996_dev *dev)
3309 {
3310 struct uni_header hdr = {};
3311 struct sk_buff *skb;
3312 int len, num, i;
3313
3314 num = 2 + 2 * (mt7996_band_valid(dev, MT_BAND1) +
3315 mt7996_band_valid(dev, MT_BAND2));
3316 len = sizeof(hdr) + num * sizeof(struct vow_rx_airtime);
3317 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
3318 if (!skb)
3319 return -ENOMEM;
3320
3321 skb_put_data(skb, &hdr, sizeof(hdr));
3322
3323 for (i = 0; i < __MT_MAX_BAND; i++) {
3324 if (mt7996_band_valid(dev, i))
3325 mt7996_add_rx_airtime_tlv(skb, i);
3326 }
3327
3328 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
3329 MCU_WM_UNI_CMD(VOW), true);
3330 }
3331
mt7996_mcu_init_firmware(struct mt7996_dev * dev)3332 int mt7996_mcu_init_firmware(struct mt7996_dev *dev)
3333 {
3334 int ret;
3335
3336 /* force firmware operation mode into normal state,
3337 * which should be set before firmware download stage.
3338 */
3339 mt76_wr(dev, MT_SWDEF_MODE, MT_SWDEF_NORMAL_MODE);
3340
3341 ret = mt7996_driver_own(dev, 0);
3342 if (ret)
3343 return ret;
3344 /* set driver own for band1 when two hif exist */
3345 if (dev->hif2) {
3346 ret = mt7996_driver_own(dev, 1);
3347 if (ret)
3348 return ret;
3349 }
3350
3351 ret = mt7996_load_firmware(dev);
3352 if (ret)
3353 return ret;
3354
3355 set_bit(MT76_STATE_MCU_RUNNING, &dev->mphy.state);
3356 ret = mt7996_mcu_fw_log_2_host(dev, MCU_FW_LOG_WM, 0);
3357 if (ret)
3358 return ret;
3359
3360 if (mt7996_has_wa(dev)) {
3361 ret = mt7996_mcu_fw_log_2_host(dev, MCU_FW_LOG_WA, 0);
3362 if (ret)
3363 return ret;
3364
3365 ret = mt7996_mcu_set_mwds(dev, 1);
3366 if (ret)
3367 return ret;
3368 }
3369
3370 ret = mt7996_mcu_init_rx_airtime(dev);
3371 if (ret)
3372 return ret;
3373
3374 return mt7996_mcu_wa_cmd(dev, MCU_WA_PARAM_CMD(SET),
3375 MCU_WA_PARAM_RED, 0, 0);
3376 }
3377
mt7996_mcu_init(struct mt7996_dev * dev)3378 int mt7996_mcu_init(struct mt7996_dev *dev)
3379 {
3380 static const struct mt76_mcu_ops mt7996_mcu_ops = {
3381 .headroom = sizeof(struct mt76_connac2_mcu_txd), /* reuse */
3382 .mcu_skb_send_msg = mt7996_mcu_send_message,
3383 .mcu_parse_response = mt7996_mcu_parse_response,
3384 };
3385
3386 dev->mt76.mcu_ops = &mt7996_mcu_ops;
3387
3388 return mt7996_mcu_init_firmware(dev);
3389 }
3390
mt7996_mcu_exit(struct mt7996_dev * dev)3391 void mt7996_mcu_exit(struct mt7996_dev *dev)
3392 {
3393 mt7996_mcu_restart(&dev->mt76);
3394 if (mt7996_firmware_state(dev, FW_STATE_FW_DOWNLOAD)) {
3395 dev_err(dev->mt76.dev, "Failed to exit mcu\n");
3396 goto out;
3397 }
3398
3399 mt76_wr(dev, MT_TOP_LPCR_HOST_BAND(0), MT_TOP_LPCR_HOST_FW_OWN);
3400 if (dev->hif2)
3401 mt76_wr(dev, MT_TOP_LPCR_HOST_BAND(1),
3402 MT_TOP_LPCR_HOST_FW_OWN);
3403 out:
3404 skb_queue_purge(&dev->mt76.mcu.res_q);
3405 }
3406
mt7996_mcu_set_hdr_trans(struct mt7996_dev * dev,bool hdr_trans)3407 int mt7996_mcu_set_hdr_trans(struct mt7996_dev *dev, bool hdr_trans)
3408 {
3409 struct {
3410 u8 __rsv[4];
3411 } __packed hdr = {};
3412 struct hdr_trans_blacklist *req_blacklist;
3413 struct hdr_trans_en *req_en;
3414 struct sk_buff *skb;
3415 struct tlv *tlv;
3416 int len = MT7996_HDR_TRANS_MAX_SIZE + sizeof(hdr);
3417
3418 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
3419 if (!skb)
3420 return -ENOMEM;
3421
3422 skb_put_data(skb, &hdr, sizeof(hdr));
3423
3424 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_HDR_TRANS_EN, sizeof(*req_en));
3425 req_en = (struct hdr_trans_en *)tlv;
3426 req_en->enable = hdr_trans;
3427
3428 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_HDR_TRANS_VLAN,
3429 sizeof(struct hdr_trans_vlan));
3430
3431 if (hdr_trans) {
3432 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_HDR_TRANS_BLACKLIST,
3433 sizeof(*req_blacklist));
3434 req_blacklist = (struct hdr_trans_blacklist *)tlv;
3435 req_blacklist->enable = 1;
3436 req_blacklist->type = cpu_to_le16(ETH_P_PAE);
3437 }
3438
3439 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
3440 MCU_WM_UNI_CMD(RX_HDR_TRANS), true);
3441 }
3442
mt7996_mcu_set_tx(struct mt7996_dev * dev,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf)3443 int mt7996_mcu_set_tx(struct mt7996_dev *dev, struct ieee80211_vif *vif,
3444 struct ieee80211_bss_conf *link_conf)
3445 {
3446 #define MCU_EDCA_AC_PARAM 0
3447 #define WMM_AIFS_SET BIT(0)
3448 #define WMM_CW_MIN_SET BIT(1)
3449 #define WMM_CW_MAX_SET BIT(2)
3450 #define WMM_TXOP_SET BIT(3)
3451 #define WMM_PARAM_SET (WMM_AIFS_SET | WMM_CW_MIN_SET | \
3452 WMM_CW_MAX_SET | WMM_TXOP_SET)
3453 struct mt7996_vif_link *link = mt7996_vif_conf_link(dev, vif, link_conf);
3454 struct {
3455 u8 bss_idx;
3456 u8 __rsv[3];
3457 } __packed hdr = {
3458 .bss_idx = link->mt76.idx,
3459 };
3460 struct sk_buff *skb;
3461 int len = sizeof(hdr) + IEEE80211_NUM_ACS * sizeof(struct edca);
3462 int ac;
3463
3464 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
3465 if (!skb)
3466 return -ENOMEM;
3467
3468 skb_put_data(skb, &hdr, sizeof(hdr));
3469
3470 for (ac = 0; ac < IEEE80211_NUM_ACS; ac++) {
3471 struct ieee80211_tx_queue_params *q = &link->queue_params[ac];
3472 struct edca *e;
3473 struct tlv *tlv;
3474
3475 tlv = mt7996_mcu_add_uni_tlv(skb, MCU_EDCA_AC_PARAM, sizeof(*e));
3476
3477 e = (struct edca *)tlv;
3478 e->set = WMM_PARAM_SET;
3479 e->queue = ac;
3480 e->aifs = q->aifs;
3481 e->txop = cpu_to_le16(q->txop);
3482
3483 if (q->cw_min)
3484 e->cw_min = fls(q->cw_min);
3485 else
3486 e->cw_min = 5;
3487
3488 if (q->cw_max)
3489 e->cw_max = fls(q->cw_max);
3490 else
3491 e->cw_max = 10;
3492 }
3493
3494 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
3495 MCU_WM_UNI_CMD(EDCA_UPDATE), true);
3496 }
3497
mt7996_mcu_set_fcc5_lpn(struct mt7996_dev * dev,int val)3498 int mt7996_mcu_set_fcc5_lpn(struct mt7996_dev *dev, int val)
3499 {
3500 struct {
3501 u8 _rsv[4];
3502
3503 __le16 tag;
3504 __le16 len;
3505
3506 __le32 ctrl;
3507 __le16 min_lpn;
3508 u8 rsv[2];
3509 } __packed req = {
3510 .tag = cpu_to_le16(UNI_RDD_CTRL_SET_TH),
3511 .len = cpu_to_le16(sizeof(req) - 4),
3512
3513 .ctrl = cpu_to_le32(0x1),
3514 .min_lpn = cpu_to_le16(val),
3515 };
3516
3517 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RDD_CTRL),
3518 &req, sizeof(req), true);
3519 }
3520
mt7996_mcu_set_pulse_th(struct mt7996_dev * dev,const struct mt7996_dfs_pulse * pulse)3521 int mt7996_mcu_set_pulse_th(struct mt7996_dev *dev,
3522 const struct mt7996_dfs_pulse *pulse)
3523 {
3524 struct {
3525 u8 _rsv[4];
3526
3527 __le16 tag;
3528 __le16 len;
3529
3530 __le32 ctrl;
3531
3532 __le32 max_width; /* us */
3533 __le32 max_pwr; /* dbm */
3534 __le32 min_pwr; /* dbm */
3535 __le32 min_stgr_pri; /* us */
3536 __le32 max_stgr_pri; /* us */
3537 __le32 min_cr_pri; /* us */
3538 __le32 max_cr_pri; /* us */
3539 } __packed req = {
3540 .tag = cpu_to_le16(UNI_RDD_CTRL_SET_TH),
3541 .len = cpu_to_le16(sizeof(req) - 4),
3542
3543 .ctrl = cpu_to_le32(0x3),
3544
3545 #define __req_field(field) .field = cpu_to_le32(pulse->field)
3546 __req_field(max_width),
3547 __req_field(max_pwr),
3548 __req_field(min_pwr),
3549 __req_field(min_stgr_pri),
3550 __req_field(max_stgr_pri),
3551 __req_field(min_cr_pri),
3552 __req_field(max_cr_pri),
3553 #undef __req_field
3554 };
3555
3556 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RDD_CTRL),
3557 &req, sizeof(req), true);
3558 }
3559
mt7996_mcu_set_radar_th(struct mt7996_dev * dev,int index,const struct mt7996_dfs_pattern * pattern)3560 int mt7996_mcu_set_radar_th(struct mt7996_dev *dev, int index,
3561 const struct mt7996_dfs_pattern *pattern)
3562 {
3563 struct {
3564 u8 _rsv[4];
3565
3566 __le16 tag;
3567 __le16 len;
3568
3569 __le32 ctrl;
3570 __le16 radar_type;
3571
3572 u8 enb;
3573 u8 stgr;
3574 u8 min_crpn;
3575 u8 max_crpn;
3576 u8 min_crpr;
3577 u8 min_pw;
3578 __le32 min_pri;
3579 __le32 max_pri;
3580 u8 max_pw;
3581 u8 min_crbn;
3582 u8 max_crbn;
3583 u8 min_stgpn;
3584 u8 max_stgpn;
3585 u8 min_stgpr;
3586 u8 rsv[2];
3587 __le32 min_stgpr_diff;
3588 } __packed req = {
3589 .tag = cpu_to_le16(UNI_RDD_CTRL_SET_TH),
3590 .len = cpu_to_le16(sizeof(req) - 4),
3591
3592 .ctrl = cpu_to_le32(0x2),
3593 .radar_type = cpu_to_le16(index),
3594
3595 #define __req_field_u8(field) .field = pattern->field
3596 #define __req_field_u32(field) .field = cpu_to_le32(pattern->field)
3597 __req_field_u8(enb),
3598 __req_field_u8(stgr),
3599 __req_field_u8(min_crpn),
3600 __req_field_u8(max_crpn),
3601 __req_field_u8(min_crpr),
3602 __req_field_u8(min_pw),
3603 __req_field_u32(min_pri),
3604 __req_field_u32(max_pri),
3605 __req_field_u8(max_pw),
3606 __req_field_u8(min_crbn),
3607 __req_field_u8(max_crbn),
3608 __req_field_u8(min_stgpn),
3609 __req_field_u8(max_stgpn),
3610 __req_field_u8(min_stgpr),
3611 __req_field_u32(min_stgpr_diff),
3612 #undef __req_field_u8
3613 #undef __req_field_u32
3614 };
3615
3616 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RDD_CTRL),
3617 &req, sizeof(req), true);
3618 }
3619
3620 static int
mt7996_mcu_background_chain_ctrl(struct mt7996_phy * phy,struct cfg80211_chan_def * chandef,int cmd)3621 mt7996_mcu_background_chain_ctrl(struct mt7996_phy *phy,
3622 struct cfg80211_chan_def *chandef,
3623 int cmd)
3624 {
3625 struct mt7996_dev *dev = phy->dev;
3626 struct mt76_phy *mphy = phy->mt76;
3627 struct ieee80211_channel *chan = mphy->chandef.chan;
3628 int freq = mphy->chandef.center_freq1;
3629 struct mt7996_mcu_background_chain_ctrl req = {
3630 .tag = cpu_to_le16(0),
3631 .len = cpu_to_le16(sizeof(req) - 4),
3632 .monitor_scan_type = 2, /* simple rx */
3633 };
3634
3635 if (!chandef && cmd != CH_SWITCH_BACKGROUND_SCAN_STOP)
3636 return -EINVAL;
3637
3638 if (!cfg80211_chandef_valid(&mphy->chandef))
3639 return -EINVAL;
3640
3641 switch (cmd) {
3642 case CH_SWITCH_BACKGROUND_SCAN_START: {
3643 req.chan = chan->hw_value;
3644 req.central_chan = ieee80211_frequency_to_channel(freq);
3645 req.bw = mt76_connac_chan_bw(&mphy->chandef);
3646 req.monitor_chan = chandef->chan->hw_value;
3647 req.monitor_central_chan =
3648 ieee80211_frequency_to_channel(chandef->center_freq1);
3649 req.monitor_bw = mt76_connac_chan_bw(chandef);
3650 req.band_idx = phy->mt76->band_idx;
3651 req.scan_mode = 1;
3652 break;
3653 }
3654 case CH_SWITCH_BACKGROUND_SCAN_RUNNING:
3655 req.monitor_chan = chandef->chan->hw_value;
3656 req.monitor_central_chan =
3657 ieee80211_frequency_to_channel(chandef->center_freq1);
3658 req.band_idx = phy->mt76->band_idx;
3659 req.scan_mode = 2;
3660 break;
3661 case CH_SWITCH_BACKGROUND_SCAN_STOP:
3662 req.chan = chan->hw_value;
3663 req.central_chan = ieee80211_frequency_to_channel(freq);
3664 req.bw = mt76_connac_chan_bw(&mphy->chandef);
3665 req.tx_stream = hweight8(mphy->antenna_mask);
3666 req.rx_stream = mphy->antenna_mask;
3667 break;
3668 default:
3669 return -EINVAL;
3670 }
3671 req.band = chandef ? chandef->chan->band == NL80211_BAND_5GHZ : 1;
3672
3673 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(OFFCH_SCAN_CTRL),
3674 &req, sizeof(req), false);
3675 }
3676
mt7996_mcu_rdd_background_enable(struct mt7996_phy * phy,struct cfg80211_chan_def * chandef)3677 int mt7996_mcu_rdd_background_enable(struct mt7996_phy *phy,
3678 struct cfg80211_chan_def *chandef)
3679 {
3680 struct mt7996_dev *dev = phy->dev;
3681 int err, region, rdd_idx = mt7996_get_rdd_idx(phy, true);
3682
3683 if (!chandef) { /* disable offchain */
3684 err = mt7996_mcu_rdd_cmd(dev, RDD_STOP, rdd_idx, 0);
3685 if (err)
3686 return err;
3687
3688 return mt7996_mcu_background_chain_ctrl(phy, NULL,
3689 CH_SWITCH_BACKGROUND_SCAN_STOP);
3690 }
3691
3692 err = mt7996_mcu_background_chain_ctrl(phy, chandef,
3693 CH_SWITCH_BACKGROUND_SCAN_START);
3694 if (err)
3695 return err;
3696
3697 switch (dev->mt76.region) {
3698 case NL80211_DFS_ETSI:
3699 region = 0;
3700 break;
3701 case NL80211_DFS_JP:
3702 region = 2;
3703 break;
3704 case NL80211_DFS_FCC:
3705 default:
3706 region = 1;
3707 break;
3708 }
3709
3710 return mt7996_mcu_rdd_cmd(dev, RDD_START, rdd_idx, region);
3711 }
3712
mt7996_mcu_set_chan_info(struct mt7996_phy * phy,u16 tag)3713 int mt7996_mcu_set_chan_info(struct mt7996_phy *phy, u16 tag)
3714 {
3715 static const u8 ch_band[] = {
3716 [NL80211_BAND_2GHZ] = 0,
3717 [NL80211_BAND_5GHZ] = 1,
3718 [NL80211_BAND_6GHZ] = 2,
3719 };
3720 struct mt7996_dev *dev = phy->dev;
3721 struct cfg80211_chan_def *chandef = &phy->mt76->chandef;
3722 int freq1 = chandef->center_freq1;
3723 u8 band_idx = phy->mt76->band_idx;
3724 struct {
3725 /* fixed field */
3726 u8 __rsv[4];
3727
3728 __le16 tag;
3729 __le16 len;
3730 u8 control_ch;
3731 u8 center_ch;
3732 u8 bw;
3733 u8 tx_path_num;
3734 u8 rx_path; /* mask or num */
3735 u8 switch_reason;
3736 u8 band_idx;
3737 u8 center_ch2; /* for 80+80 only */
3738 __le16 cac_case;
3739 u8 channel_band;
3740 u8 rsv0;
3741 __le32 outband_freq;
3742 u8 txpower_drop;
3743 u8 ap_bw;
3744 u8 ap_center_ch;
3745 u8 rsv1[53];
3746 } __packed req = {
3747 .tag = cpu_to_le16(tag),
3748 .len = cpu_to_le16(sizeof(req) - 4),
3749 .control_ch = chandef->chan->hw_value,
3750 .center_ch = ieee80211_frequency_to_channel(freq1),
3751 .bw = mt76_connac_chan_bw(chandef),
3752 .tx_path_num = hweight16(phy->mt76->chainmask),
3753 .rx_path = mt7996_rx_chainmask(phy) >> dev->chainshift[band_idx],
3754 .band_idx = band_idx,
3755 .channel_band = ch_band[chandef->chan->band],
3756 };
3757
3758 if (phy->mt76->hw->conf.flags & IEEE80211_CONF_MONITOR)
3759 req.switch_reason = CH_SWITCH_NORMAL;
3760 else if (phy->mt76->offchannel ||
3761 phy->mt76->hw->conf.flags & IEEE80211_CONF_IDLE)
3762 req.switch_reason = CH_SWITCH_SCAN_BYPASS_DPD;
3763 else if (!cfg80211_reg_can_beacon(phy->mt76->hw->wiphy, chandef,
3764 NL80211_IFTYPE_AP))
3765 req.switch_reason = CH_SWITCH_DFS;
3766 else
3767 req.switch_reason = CH_SWITCH_NORMAL;
3768
3769 if (tag == UNI_CHANNEL_SWITCH)
3770 req.rx_path = hweight8(req.rx_path);
3771
3772 if (chandef->width == NL80211_CHAN_WIDTH_80P80) {
3773 int freq2 = chandef->center_freq2;
3774
3775 req.center_ch2 = ieee80211_frequency_to_channel(freq2);
3776 }
3777
3778 return mt76_mcu_send_msg(&dev->mt76, MCU_WMWA_UNI_CMD(CHANNEL_SWITCH),
3779 &req, sizeof(req), true);
3780 }
3781
mt7996_mcu_set_eeprom_flash(struct mt7996_dev * dev)3782 static int mt7996_mcu_set_eeprom_flash(struct mt7996_dev *dev)
3783 {
3784 #define MAX_PAGE_IDX_MASK GENMASK(7, 5)
3785 #define PAGE_IDX_MASK GENMASK(4, 2)
3786 #define PER_PAGE_SIZE 0x400
3787 struct mt7996_mcu_eeprom req = {
3788 .tag = cpu_to_le16(UNI_EFUSE_BUFFER_MODE),
3789 .buffer_mode = EE_MODE_BUFFER
3790 };
3791 u16 eeprom_size = MT7996_EEPROM_SIZE;
3792 u8 total = DIV_ROUND_UP(eeprom_size, PER_PAGE_SIZE);
3793 u8 *eep = (u8 *)dev->mt76.eeprom.data;
3794 int eep_len, i;
3795
3796 for (i = 0; i < total; i++, eep += eep_len) {
3797 struct sk_buff *skb;
3798 int ret, msg_len;
3799
3800 if (i == total - 1 && !!(eeprom_size % PER_PAGE_SIZE))
3801 eep_len = eeprom_size % PER_PAGE_SIZE;
3802 else
3803 eep_len = PER_PAGE_SIZE;
3804
3805 msg_len = sizeof(req) + eep_len;
3806 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, msg_len);
3807 if (!skb)
3808 return -ENOMEM;
3809
3810 req.len = cpu_to_le16(msg_len - 4);
3811 req.format = FIELD_PREP(MAX_PAGE_IDX_MASK, total - 1) |
3812 FIELD_PREP(PAGE_IDX_MASK, i) | EE_FORMAT_WHOLE;
3813 req.buf_len = cpu_to_le16(eep_len);
3814
3815 skb_put_data(skb, &req, sizeof(req));
3816 skb_put_data(skb, eep, eep_len);
3817
3818 ret = mt76_mcu_skb_send_msg(&dev->mt76, skb,
3819 MCU_WM_UNI_CMD(EFUSE_CTRL), true);
3820 if (ret)
3821 return ret;
3822 }
3823
3824 return 0;
3825 }
3826
mt7996_mcu_set_eeprom(struct mt7996_dev * dev)3827 int mt7996_mcu_set_eeprom(struct mt7996_dev *dev)
3828 {
3829 struct mt7996_mcu_eeprom req = {
3830 .tag = cpu_to_le16(UNI_EFUSE_BUFFER_MODE),
3831 .len = cpu_to_le16(sizeof(req) - 4),
3832 .buffer_mode = EE_MODE_EFUSE,
3833 .format = EE_FORMAT_WHOLE
3834 };
3835
3836 if (dev->flash_mode)
3837 return mt7996_mcu_set_eeprom_flash(dev);
3838
3839 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(EFUSE_CTRL),
3840 &req, sizeof(req), true);
3841 }
3842
mt7996_mcu_get_eeprom(struct mt7996_dev * dev,u32 offset,u8 * buf,u32 buf_len)3843 int mt7996_mcu_get_eeprom(struct mt7996_dev *dev, u32 offset, u8 *buf, u32 buf_len)
3844 {
3845 struct {
3846 u8 _rsv[4];
3847
3848 __le16 tag;
3849 __le16 len;
3850 __le32 addr;
3851 __le32 valid;
3852 u8 data[16];
3853 } __packed req = {
3854 .tag = cpu_to_le16(UNI_EFUSE_ACCESS),
3855 .len = cpu_to_le16(sizeof(req) - 4),
3856 .addr = cpu_to_le32(round_down(offset,
3857 MT7996_EEPROM_BLOCK_SIZE)),
3858 };
3859 struct sk_buff *skb;
3860 bool valid;
3861 int ret;
3862
3863 ret = mt76_mcu_send_and_get_msg(&dev->mt76,
3864 MCU_WM_UNI_CMD_QUERY(EFUSE_CTRL),
3865 &req, sizeof(req), true, &skb);
3866 if (ret)
3867 return ret;
3868
3869 valid = le32_to_cpu(*(__le32 *)(skb->data + 16));
3870 if (valid) {
3871 u32 addr = le32_to_cpu(*(__le32 *)(skb->data + 12));
3872
3873 if (!buf)
3874 buf = (u8 *)dev->mt76.eeprom.data + addr;
3875 if (!buf_len || buf_len > MT7996_EEPROM_BLOCK_SIZE)
3876 buf_len = MT7996_EEPROM_BLOCK_SIZE;
3877
3878 skb_pull(skb, 48);
3879 memcpy(buf, skb->data, buf_len);
3880 } else {
3881 ret = -EINVAL;
3882 }
3883
3884 dev_kfree_skb(skb);
3885
3886 return ret;
3887 }
3888
mt7996_mcu_get_eeprom_free_block(struct mt7996_dev * dev,u8 * block_num)3889 int mt7996_mcu_get_eeprom_free_block(struct mt7996_dev *dev, u8 *block_num)
3890 {
3891 struct {
3892 u8 _rsv[4];
3893
3894 __le16 tag;
3895 __le16 len;
3896 u8 num;
3897 u8 version;
3898 u8 die_idx;
3899 u8 _rsv2;
3900 } __packed req = {
3901 .tag = cpu_to_le16(UNI_EFUSE_FREE_BLOCK),
3902 .len = cpu_to_le16(sizeof(req) - 4),
3903 .version = 2,
3904 };
3905 struct sk_buff *skb;
3906 int ret;
3907
3908 ret = mt76_mcu_send_and_get_msg(&dev->mt76, MCU_WM_UNI_CMD_QUERY(EFUSE_CTRL), &req,
3909 sizeof(req), true, &skb);
3910 if (ret)
3911 return ret;
3912
3913 *block_num = *(u8 *)(skb->data + 8);
3914 dev_kfree_skb(skb);
3915
3916 return 0;
3917 }
3918
mt7996_mcu_get_chip_config(struct mt7996_dev * dev,u32 * cap)3919 int mt7996_mcu_get_chip_config(struct mt7996_dev *dev, u32 *cap)
3920 {
3921 #define NIC_CAP 3
3922 #define UNI_EVENT_CHIP_CONFIG_EFUSE_VERSION 0x21
3923 struct {
3924 u8 _rsv[4];
3925
3926 __le16 tag;
3927 __le16 len;
3928 } __packed req = {
3929 .tag = cpu_to_le16(NIC_CAP),
3930 .len = cpu_to_le16(sizeof(req) - 4),
3931 };
3932 struct sk_buff *skb;
3933 u8 *buf;
3934 int ret;
3935
3936 ret = mt76_mcu_send_and_get_msg(&dev->mt76,
3937 MCU_WM_UNI_CMD_QUERY(CHIP_CONFIG), &req,
3938 sizeof(req), true, &skb);
3939 if (ret)
3940 return ret;
3941
3942 /* fixed field */
3943 skb_pull(skb, 4);
3944
3945 buf = skb->data;
3946 while (buf - skb->data < skb->len) {
3947 struct tlv *tlv = (struct tlv *)buf;
3948
3949 switch (le16_to_cpu(tlv->tag)) {
3950 case UNI_EVENT_CHIP_CONFIG_EFUSE_VERSION:
3951 *cap = le32_to_cpu(*(__le32 *)(buf + sizeof(*tlv)));
3952 break;
3953 default:
3954 break;
3955 }
3956
3957 buf += le16_to_cpu(tlv->len);
3958 }
3959
3960 dev_kfree_skb(skb);
3961
3962 return 0;
3963 }
3964
mt7996_mcu_get_chan_mib_info(struct mt7996_phy * phy,bool chan_switch)3965 int mt7996_mcu_get_chan_mib_info(struct mt7996_phy *phy, bool chan_switch)
3966 {
3967 enum {
3968 IDX_TX_TIME,
3969 IDX_RX_TIME,
3970 IDX_OBSS_AIRTIME,
3971 IDX_NON_WIFI_TIME,
3972 IDX_NUM
3973 };
3974 struct {
3975 struct {
3976 u8 band;
3977 u8 __rsv[3];
3978 } hdr;
3979 struct {
3980 __le16 tag;
3981 __le16 len;
3982 __le32 offs;
3983 } data[IDX_NUM];
3984 } __packed req = {
3985 .hdr.band = phy->mt76->band_idx,
3986 };
3987 static const u32 offs[] = {
3988 [IDX_TX_TIME] = UNI_MIB_TX_TIME,
3989 [IDX_RX_TIME] = UNI_MIB_RX_TIME,
3990 [IDX_OBSS_AIRTIME] = UNI_MIB_OBSS_AIRTIME,
3991 [IDX_NON_WIFI_TIME] = UNI_MIB_NON_WIFI_TIME,
3992 };
3993 struct mt76_channel_state *state = phy->mt76->chan_state;
3994 struct mt76_channel_state *state_ts = &phy->state_ts;
3995 struct mt7996_dev *dev = phy->dev;
3996 struct mt7996_mcu_mib *res;
3997 struct sk_buff *skb;
3998 int i, ret;
3999
4000 for (i = 0; i < IDX_NUM; i++) {
4001 req.data[i].tag = cpu_to_le16(UNI_CMD_MIB_DATA);
4002 req.data[i].len = cpu_to_le16(sizeof(req.data[i]));
4003 req.data[i].offs = cpu_to_le32(offs[i]);
4004 }
4005
4006 ret = mt76_mcu_send_and_get_msg(&dev->mt76, MCU_WM_UNI_CMD_QUERY(GET_MIB_INFO),
4007 &req, sizeof(req), true, &skb);
4008 if (ret)
4009 return ret;
4010
4011 skb_pull(skb, sizeof(req.hdr));
4012
4013 res = (struct mt7996_mcu_mib *)(skb->data);
4014
4015 if (chan_switch)
4016 goto out;
4017
4018 #define __res_u64(s) le64_to_cpu(res[s].data)
4019 state->cc_tx += __res_u64(IDX_TX_TIME) - state_ts->cc_tx;
4020 state->cc_bss_rx += __res_u64(IDX_RX_TIME) - state_ts->cc_bss_rx;
4021 state->cc_rx += __res_u64(IDX_RX_TIME) +
4022 __res_u64(IDX_OBSS_AIRTIME) -
4023 state_ts->cc_rx;
4024 state->cc_busy += __res_u64(IDX_TX_TIME) +
4025 __res_u64(IDX_RX_TIME) +
4026 __res_u64(IDX_OBSS_AIRTIME) +
4027 __res_u64(IDX_NON_WIFI_TIME) -
4028 state_ts->cc_busy;
4029 out:
4030 state_ts->cc_tx = __res_u64(IDX_TX_TIME);
4031 state_ts->cc_bss_rx = __res_u64(IDX_RX_TIME);
4032 state_ts->cc_rx = __res_u64(IDX_RX_TIME) + __res_u64(IDX_OBSS_AIRTIME);
4033 state_ts->cc_busy = __res_u64(IDX_TX_TIME) +
4034 __res_u64(IDX_RX_TIME) +
4035 __res_u64(IDX_OBSS_AIRTIME) +
4036 __res_u64(IDX_NON_WIFI_TIME);
4037 #undef __res_u64
4038
4039 dev_kfree_skb(skb);
4040
4041 return 0;
4042 }
4043
mt7996_mcu_get_temperature(struct mt7996_phy * phy)4044 int mt7996_mcu_get_temperature(struct mt7996_phy *phy)
4045 {
4046 #define TEMPERATURE_QUERY 0
4047 #define GET_TEMPERATURE 0
4048 struct {
4049 u8 _rsv[4];
4050
4051 __le16 tag;
4052 __le16 len;
4053
4054 u8 rsv1;
4055 u8 action;
4056 u8 band_idx;
4057 u8 rsv2;
4058 } req = {
4059 .tag = cpu_to_le16(TEMPERATURE_QUERY),
4060 .len = cpu_to_le16(sizeof(req) - 4),
4061 .action = GET_TEMPERATURE,
4062 .band_idx = phy->mt76->band_idx,
4063 };
4064 struct mt7996_mcu_thermal {
4065 u8 _rsv[4];
4066
4067 __le16 tag;
4068 __le16 len;
4069
4070 __le32 rsv;
4071 __le32 temperature;
4072 } __packed * res;
4073 struct sk_buff *skb;
4074 int ret;
4075 u32 temp;
4076
4077 ret = mt76_mcu_send_and_get_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(THERMAL),
4078 &req, sizeof(req), true, &skb);
4079 if (ret)
4080 return ret;
4081
4082 res = (void *)skb->data;
4083 temp = le32_to_cpu(res->temperature);
4084 dev_kfree_skb(skb);
4085
4086 return temp;
4087 }
4088
mt7996_mcu_set_thermal_throttling(struct mt7996_phy * phy,u8 state)4089 int mt7996_mcu_set_thermal_throttling(struct mt7996_phy *phy, u8 state)
4090 {
4091 struct {
4092 u8 _rsv[4];
4093
4094 __le16 tag;
4095 __le16 len;
4096
4097 struct mt7996_mcu_thermal_ctrl ctrl;
4098 } __packed req = {
4099 .tag = cpu_to_le16(UNI_CMD_THERMAL_PROTECT_DUTY_CONFIG),
4100 .len = cpu_to_le16(sizeof(req) - 4),
4101 .ctrl = {
4102 .band_idx = phy->mt76->band_idx,
4103 },
4104 };
4105 int level, ret;
4106
4107 /* set duty cycle and level */
4108 for (level = 0; level < 4; level++) {
4109 req.ctrl.duty.duty_level = level;
4110 req.ctrl.duty.duty_cycle = state;
4111 state /= 2;
4112
4113 ret = mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(THERMAL),
4114 &req, sizeof(req), false);
4115 if (ret)
4116 return ret;
4117 }
4118
4119 return 0;
4120 }
4121
mt7996_mcu_set_thermal_protect(struct mt7996_phy * phy,bool enable)4122 int mt7996_mcu_set_thermal_protect(struct mt7996_phy *phy, bool enable)
4123 {
4124 #define SUSTAIN_PERIOD 10
4125 struct {
4126 u8 _rsv[4];
4127
4128 __le16 tag;
4129 __le16 len;
4130
4131 struct mt7996_mcu_thermal_ctrl ctrl;
4132 struct mt7996_mcu_thermal_enable enable;
4133 } __packed req = {
4134 .len = cpu_to_le16(sizeof(req) - 4 - sizeof(req.enable)),
4135 .ctrl = {
4136 .band_idx = phy->mt76->band_idx,
4137 .type.protect_type = 1,
4138 .type.trigger_type = 1,
4139 },
4140 };
4141 int ret;
4142
4143 req.tag = cpu_to_le16(UNI_CMD_THERMAL_PROTECT_DISABLE);
4144
4145 ret = mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(THERMAL),
4146 &req, sizeof(req) - sizeof(req.enable), false);
4147 if (ret || !enable)
4148 return ret;
4149
4150 /* set high-temperature trigger threshold */
4151 req.tag = cpu_to_le16(UNI_CMD_THERMAL_PROTECT_ENABLE);
4152 req.enable.restore_temp = cpu_to_le32(phy->throttle_temp[0]);
4153 req.enable.trigger_temp = cpu_to_le32(phy->throttle_temp[1]);
4154 req.enable.sustain_time = cpu_to_le16(SUSTAIN_PERIOD);
4155
4156 req.len = cpu_to_le16(sizeof(req) - 4);
4157
4158 return mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(THERMAL),
4159 &req, sizeof(req), false);
4160 }
4161
mt7996_mcu_set_ser(struct mt7996_dev * dev,u8 action,u8 val,u8 band)4162 int mt7996_mcu_set_ser(struct mt7996_dev *dev, u8 action, u8 val, u8 band)
4163 {
4164 struct {
4165 u8 rsv[4];
4166
4167 __le16 tag;
4168 __le16 len;
4169
4170 union {
4171 struct {
4172 __le32 mask;
4173 } __packed set;
4174
4175 struct {
4176 u8 method;
4177 u8 band;
4178 u8 rsv2[2];
4179 } __packed trigger;
4180 };
4181 } __packed req = {
4182 .tag = cpu_to_le16(action),
4183 .len = cpu_to_le16(sizeof(req) - 4),
4184 };
4185
4186 switch (action) {
4187 case UNI_CMD_SER_SET:
4188 req.set.mask = cpu_to_le32(val);
4189 break;
4190 case UNI_CMD_SER_TRIGGER:
4191 req.trigger.method = val;
4192 req.trigger.band = band;
4193 break;
4194 default:
4195 return -EINVAL;
4196 }
4197
4198 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SER),
4199 &req, sizeof(req), false);
4200 }
4201
mt7996_mcu_set_txbf(struct mt7996_dev * dev,u8 action)4202 int mt7996_mcu_set_txbf(struct mt7996_dev *dev, u8 action)
4203 {
4204 #define MT7996_BF_MAX_SIZE sizeof(union bf_tag_tlv)
4205 #define BF_PROCESSING 4
4206 struct uni_header hdr;
4207 struct sk_buff *skb;
4208 struct tlv *tlv;
4209 int len = sizeof(hdr) + MT7996_BF_MAX_SIZE;
4210
4211 memset(&hdr, 0, sizeof(hdr));
4212
4213 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
4214 if (!skb)
4215 return -ENOMEM;
4216
4217 skb_put_data(skb, &hdr, sizeof(hdr));
4218
4219 switch (action) {
4220 case BF_SOUNDING_ON: {
4221 struct bf_sounding_on *req_snd_on;
4222
4223 tlv = mt7996_mcu_add_uni_tlv(skb, action, sizeof(*req_snd_on));
4224 req_snd_on = (struct bf_sounding_on *)tlv;
4225 req_snd_on->snd_mode = BF_PROCESSING;
4226 break;
4227 }
4228 case BF_HW_EN_UPDATE: {
4229 struct bf_hw_en_status_update *req_hw_en;
4230
4231 tlv = mt7996_mcu_add_uni_tlv(skb, action, sizeof(*req_hw_en));
4232 req_hw_en = (struct bf_hw_en_status_update *)tlv;
4233 req_hw_en->ebf = true;
4234 req_hw_en->ibf = dev->ibf;
4235 break;
4236 }
4237 case BF_MOD_EN_CTRL: {
4238 struct bf_mod_en_ctrl *req_mod_en;
4239
4240 tlv = mt7996_mcu_add_uni_tlv(skb, action, sizeof(*req_mod_en));
4241 req_mod_en = (struct bf_mod_en_ctrl *)tlv;
4242 req_mod_en->bf_num = mt7996_band_valid(dev, MT_BAND2) ? 3 : 2;
4243 req_mod_en->bf_bitmap = mt7996_band_valid(dev, MT_BAND2) ?
4244 GENMASK(2, 0) : GENMASK(1, 0);
4245 break;
4246 }
4247 default:
4248 return -EINVAL;
4249 }
4250
4251 return mt76_mcu_skb_send_msg(&dev->mt76, skb, MCU_WM_UNI_CMD(BF), true);
4252 }
4253
4254 static int
mt7996_mcu_enable_obss_spr(struct mt7996_phy * phy,u16 action,u8 val)4255 mt7996_mcu_enable_obss_spr(struct mt7996_phy *phy, u16 action, u8 val)
4256 {
4257 struct mt7996_dev *dev = phy->dev;
4258 struct {
4259 u8 band_idx;
4260 u8 __rsv[3];
4261
4262 __le16 tag;
4263 __le16 len;
4264
4265 __le32 val;
4266 } __packed req = {
4267 .band_idx = phy->mt76->band_idx,
4268 .tag = cpu_to_le16(action),
4269 .len = cpu_to_le16(sizeof(req) - 4),
4270 .val = cpu_to_le32(val),
4271 };
4272
4273 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SR),
4274 &req, sizeof(req), true);
4275 }
4276
4277 static int
mt7996_mcu_set_obss_spr_pd(struct mt7996_phy * phy,struct ieee80211_he_obss_pd * he_obss_pd)4278 mt7996_mcu_set_obss_spr_pd(struct mt7996_phy *phy,
4279 struct ieee80211_he_obss_pd *he_obss_pd)
4280 {
4281 struct mt7996_dev *dev = phy->dev;
4282 u8 max_th = 82, non_srg_max_th = 62;
4283 struct {
4284 u8 band_idx;
4285 u8 __rsv[3];
4286
4287 __le16 tag;
4288 __le16 len;
4289
4290 u8 pd_th_non_srg;
4291 u8 pd_th_srg;
4292 u8 period_offs;
4293 u8 rcpi_src;
4294 __le16 obss_pd_min;
4295 __le16 obss_pd_min_srg;
4296 u8 resp_txpwr_mode;
4297 u8 txpwr_restrict_mode;
4298 u8 txpwr_ref;
4299 u8 __rsv2[3];
4300 } __packed req = {
4301 .band_idx = phy->mt76->band_idx,
4302 .tag = cpu_to_le16(UNI_CMD_SR_SET_PARAM),
4303 .len = cpu_to_le16(sizeof(req) - 4),
4304 .obss_pd_min = cpu_to_le16(max_th),
4305 .obss_pd_min_srg = cpu_to_le16(max_th),
4306 .txpwr_restrict_mode = 2,
4307 .txpwr_ref = 21
4308 };
4309 int ret;
4310
4311 /* disable firmware dynamical PD asjustment */
4312 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE_DPD, false);
4313 if (ret)
4314 return ret;
4315
4316 if (he_obss_pd->sr_ctrl &
4317 IEEE80211_HE_SPR_NON_SRG_OBSS_PD_SR_DISALLOWED)
4318 req.pd_th_non_srg = max_th;
4319 else if (he_obss_pd->sr_ctrl & IEEE80211_HE_SPR_NON_SRG_OFFSET_PRESENT)
4320 req.pd_th_non_srg = max_th - he_obss_pd->non_srg_max_offset;
4321 else
4322 req.pd_th_non_srg = non_srg_max_th;
4323
4324 if (he_obss_pd->sr_ctrl & IEEE80211_HE_SPR_SRG_INFORMATION_PRESENT)
4325 req.pd_th_srg = max_th - he_obss_pd->max_offset;
4326
4327 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SR),
4328 &req, sizeof(req), true);
4329 }
4330
4331 static int
mt7996_mcu_set_obss_spr_siga(struct mt7996_phy * phy,struct mt7996_vif_link * link,struct ieee80211_he_obss_pd * he_obss_pd)4332 mt7996_mcu_set_obss_spr_siga(struct mt7996_phy *phy,
4333 struct mt7996_vif_link *link,
4334 struct ieee80211_he_obss_pd *he_obss_pd)
4335 {
4336 struct mt7996_dev *dev = phy->dev;
4337 u8 omac = link->mt76.omac_idx;
4338 struct {
4339 u8 band_idx;
4340 u8 __rsv[3];
4341
4342 __le16 tag;
4343 __le16 len;
4344
4345 u8 omac;
4346 u8 __rsv2[3];
4347 u8 flag[20];
4348 } __packed req = {
4349 .band_idx = phy->mt76->band_idx,
4350 .tag = cpu_to_le16(UNI_CMD_SR_SET_SIGA),
4351 .len = cpu_to_le16(sizeof(req) - 4),
4352 .omac = omac > HW_BSSID_MAX ? omac - 12 : omac,
4353 };
4354 int ret;
4355
4356 if (he_obss_pd->sr_ctrl & IEEE80211_HE_SPR_HESIGA_SR_VAL15_ALLOWED)
4357 req.flag[req.omac] = 0xf;
4358 else
4359 return 0;
4360
4361 /* switch to normal AP mode */
4362 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE_MODE, 0);
4363 if (ret)
4364 return ret;
4365
4366 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SR),
4367 &req, sizeof(req), true);
4368 }
4369
4370 static int
mt7996_mcu_set_obss_spr_bitmap(struct mt7996_phy * phy,struct ieee80211_he_obss_pd * he_obss_pd)4371 mt7996_mcu_set_obss_spr_bitmap(struct mt7996_phy *phy,
4372 struct ieee80211_he_obss_pd *he_obss_pd)
4373 {
4374 struct mt7996_dev *dev = phy->dev;
4375 struct {
4376 u8 band_idx;
4377 u8 __rsv[3];
4378
4379 __le16 tag;
4380 __le16 len;
4381
4382 __le32 color_l[2];
4383 __le32 color_h[2];
4384 __le32 bssid_l[2];
4385 __le32 bssid_h[2];
4386 } __packed req = {
4387 .band_idx = phy->mt76->band_idx,
4388 .tag = cpu_to_le16(UNI_CMD_SR_SET_SRG_BITMAP),
4389 .len = cpu_to_le16(sizeof(req) - 4),
4390 };
4391 u32 bitmap;
4392
4393 memcpy(&bitmap, he_obss_pd->bss_color_bitmap, sizeof(bitmap));
4394 req.color_l[req.band_idx] = cpu_to_le32(bitmap);
4395
4396 memcpy(&bitmap, he_obss_pd->bss_color_bitmap + 4, sizeof(bitmap));
4397 req.color_h[req.band_idx] = cpu_to_le32(bitmap);
4398
4399 memcpy(&bitmap, he_obss_pd->partial_bssid_bitmap, sizeof(bitmap));
4400 req.bssid_l[req.band_idx] = cpu_to_le32(bitmap);
4401
4402 memcpy(&bitmap, he_obss_pd->partial_bssid_bitmap + 4, sizeof(bitmap));
4403 req.bssid_h[req.band_idx] = cpu_to_le32(bitmap);
4404
4405 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SR), &req,
4406 sizeof(req), true);
4407 }
4408
mt7996_mcu_add_obss_spr(struct mt7996_phy * phy,struct mt7996_vif_link * link,struct ieee80211_he_obss_pd * he_obss_pd)4409 int mt7996_mcu_add_obss_spr(struct mt7996_phy *phy,
4410 struct mt7996_vif_link *link,
4411 struct ieee80211_he_obss_pd *he_obss_pd)
4412 {
4413 int ret;
4414
4415 /* enable firmware scene detection algorithms */
4416 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE_SD,
4417 sr_scene_detect);
4418 if (ret)
4419 return ret;
4420
4421 /* firmware dynamically adjusts PD threshold so skip manual control */
4422 if (sr_scene_detect && !he_obss_pd->enable)
4423 return 0;
4424
4425 /* enable spatial reuse */
4426 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE,
4427 he_obss_pd->enable);
4428 if (ret)
4429 return ret;
4430
4431 if (sr_scene_detect || !he_obss_pd->enable)
4432 return 0;
4433
4434 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE_TX, true);
4435 if (ret)
4436 return ret;
4437
4438 /* set SRG/non-SRG OBSS PD threshold */
4439 ret = mt7996_mcu_set_obss_spr_pd(phy, he_obss_pd);
4440 if (ret)
4441 return ret;
4442
4443 /* Set SR prohibit */
4444 ret = mt7996_mcu_set_obss_spr_siga(phy, link, he_obss_pd);
4445 if (ret)
4446 return ret;
4447
4448 /* set SRG BSS color/BSSID bitmap */
4449 return mt7996_mcu_set_obss_spr_bitmap(phy, he_obss_pd);
4450 }
4451
mt7996_mcu_update_bss_color(struct mt7996_dev * dev,struct mt76_vif_link * mlink,struct cfg80211_he_bss_color * he_bss_color)4452 int mt7996_mcu_update_bss_color(struct mt7996_dev *dev,
4453 struct mt76_vif_link *mlink,
4454 struct cfg80211_he_bss_color *he_bss_color)
4455 {
4456 int len = sizeof(struct bss_req_hdr) + sizeof(struct bss_color_tlv);
4457 struct bss_color_tlv *bss_color;
4458 struct sk_buff *skb;
4459 struct tlv *tlv;
4460
4461 skb = __mt7996_mcu_alloc_bss_req(&dev->mt76, mlink, len);
4462 if (IS_ERR(skb))
4463 return PTR_ERR(skb);
4464
4465 tlv = mt76_connac_mcu_add_tlv(skb, UNI_BSS_INFO_BSS_COLOR,
4466 sizeof(*bss_color));
4467 bss_color = (struct bss_color_tlv *)tlv;
4468 bss_color->enable = he_bss_color->enabled;
4469 bss_color->color = he_bss_color->color;
4470
4471 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
4472 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
4473 }
4474
4475 #define TWT_AGRT_TRIGGER BIT(0)
4476 #define TWT_AGRT_ANNOUNCE BIT(1)
4477 #define TWT_AGRT_PROTECT BIT(2)
4478
mt7996_mcu_twt_agrt_update(struct mt7996_dev * dev,struct mt7996_vif_link * link,struct mt7996_twt_flow * flow,int cmd)4479 int mt7996_mcu_twt_agrt_update(struct mt7996_dev *dev,
4480 struct mt7996_vif_link *link,
4481 struct mt7996_twt_flow *flow,
4482 int cmd)
4483 {
4484 struct {
4485 /* fixed field */
4486 u8 bss;
4487 u8 _rsv[3];
4488
4489 __le16 tag;
4490 __le16 len;
4491 u8 tbl_idx;
4492 u8 cmd;
4493 u8 own_mac_idx;
4494 u8 flowid; /* 0xff for group id */
4495 __le16 peer_id; /* specify the peer_id (msb=0)
4496 * or group_id (msb=1)
4497 */
4498 u8 duration; /* 256 us */
4499 u8 bss_idx;
4500 __le64 start_tsf;
4501 __le16 mantissa;
4502 u8 exponent;
4503 u8 is_ap;
4504 u8 agrt_params;
4505 u8 __rsv2[23];
4506 } __packed req = {
4507 .tag = cpu_to_le16(UNI_CMD_TWT_ARGT_UPDATE),
4508 .len = cpu_to_le16(sizeof(req) - 4),
4509 .tbl_idx = flow->table_id,
4510 .cmd = cmd,
4511 .own_mac_idx = link->mt76.omac_idx,
4512 .flowid = flow->id,
4513 .peer_id = cpu_to_le16(flow->wcid),
4514 .duration = flow->duration,
4515 .bss = link->mt76.idx,
4516 .bss_idx = link->mt76.idx,
4517 .start_tsf = cpu_to_le64(flow->tsf),
4518 .mantissa = flow->mantissa,
4519 .exponent = flow->exp,
4520 .is_ap = true,
4521 };
4522
4523 if (flow->protection)
4524 req.agrt_params |= TWT_AGRT_PROTECT;
4525 if (!flow->flowtype)
4526 req.agrt_params |= TWT_AGRT_ANNOUNCE;
4527 if (flow->trigger)
4528 req.agrt_params |= TWT_AGRT_TRIGGER;
4529
4530 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(TWT),
4531 &req, sizeof(req), true);
4532 }
4533
mt7996_mcu_set_rts_thresh(struct mt7996_phy * phy,u32 val)4534 int mt7996_mcu_set_rts_thresh(struct mt7996_phy *phy, u32 val)
4535 {
4536 struct {
4537 u8 band_idx;
4538 u8 _rsv[3];
4539
4540 __le16 tag;
4541 __le16 len;
4542 __le32 len_thresh;
4543 __le32 pkt_thresh;
4544 } __packed req = {
4545 .band_idx = phy->mt76->band_idx,
4546 .tag = cpu_to_le16(UNI_BAND_CONFIG_RTS_THRESHOLD),
4547 .len = cpu_to_le16(sizeof(req) - 4),
4548 .len_thresh = cpu_to_le32(val),
4549 .pkt_thresh = cpu_to_le32(0x2),
4550 };
4551
4552 return mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(BAND_CONFIG),
4553 &req, sizeof(req), true);
4554 }
4555
mt7996_mcu_set_radio_en(struct mt7996_phy * phy,bool enable)4556 int mt7996_mcu_set_radio_en(struct mt7996_phy *phy, bool enable)
4557 {
4558 struct {
4559 u8 band_idx;
4560 u8 _rsv[3];
4561
4562 __le16 tag;
4563 __le16 len;
4564 u8 enable;
4565 u8 _rsv2[3];
4566 } __packed req = {
4567 .band_idx = phy->mt76->band_idx,
4568 .tag = cpu_to_le16(UNI_BAND_CONFIG_RADIO_ENABLE),
4569 .len = cpu_to_le16(sizeof(req) - 4),
4570 .enable = enable,
4571 };
4572
4573 return mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(BAND_CONFIG),
4574 &req, sizeof(req), true);
4575 }
4576
mt7996_mcu_rdd_cmd(struct mt7996_dev * dev,int cmd,u8 rdd_idx,u8 val)4577 int mt7996_mcu_rdd_cmd(struct mt7996_dev *dev, int cmd, u8 rdd_idx, u8 val)
4578 {
4579 struct {
4580 u8 _rsv[4];
4581
4582 __le16 tag;
4583 __le16 len;
4584
4585 u8 ctrl;
4586 u8 rdd_idx;
4587 u8 rdd_rx_sel;
4588 u8 val;
4589 u8 rsv[4];
4590 } __packed req = {
4591 .tag = cpu_to_le16(UNI_RDD_CTRL_PARM),
4592 .len = cpu_to_le16(sizeof(req) - 4),
4593 .ctrl = cmd,
4594 .rdd_idx = rdd_idx,
4595 .val = val,
4596 };
4597
4598 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RDD_CTRL),
4599 &req, sizeof(req), true);
4600 }
4601
mt7996_mcu_wtbl_update_hdr_trans(struct mt7996_dev * dev,struct ieee80211_vif * vif,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link)4602 int mt7996_mcu_wtbl_update_hdr_trans(struct mt7996_dev *dev,
4603 struct ieee80211_vif *vif,
4604 struct mt7996_vif_link *link,
4605 struct mt7996_sta_link *msta_link)
4606 {
4607 struct sk_buff *skb;
4608
4609 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76,
4610 &msta_link->wcid,
4611 MT7996_STA_UPDATE_MAX_SIZE);
4612 if (IS_ERR(skb))
4613 return PTR_ERR(skb);
4614
4615 /* starec hdr trans */
4616 mt7996_mcu_sta_hdr_trans_tlv(dev, skb, vif, &msta_link->wcid);
4617 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
4618 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
4619 }
4620
mt7996_mcu_set_fixed_rate_table(struct mt7996_phy * phy,u8 table_idx,u16 rate_idx,bool beacon)4621 int mt7996_mcu_set_fixed_rate_table(struct mt7996_phy *phy, u8 table_idx,
4622 u16 rate_idx, bool beacon)
4623 {
4624 #define UNI_FIXED_RATE_TABLE_SET 0
4625 #define SPE_IXD_SELECT_TXD 0
4626 #define SPE_IXD_SELECT_BMC_WTBL 1
4627 struct mt7996_dev *dev = phy->dev;
4628 struct fixed_rate_table_ctrl req = {
4629 .tag = cpu_to_le16(UNI_FIXED_RATE_TABLE_SET),
4630 .len = cpu_to_le16(sizeof(req) - 4),
4631 .table_idx = table_idx,
4632 .rate_idx = cpu_to_le16(rate_idx),
4633 .gi = 1,
4634 .he_ltf = 1,
4635 };
4636 u8 band_idx = phy->mt76->band_idx;
4637
4638 if (beacon) {
4639 req.spe_idx_sel = SPE_IXD_SELECT_TXD;
4640 req.spe_idx = 24 + band_idx;
4641 phy->beacon_rate = rate_idx;
4642 } else {
4643 req.spe_idx_sel = SPE_IXD_SELECT_BMC_WTBL;
4644 }
4645
4646 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(FIXED_RATE_TABLE),
4647 &req, sizeof(req), false);
4648 }
4649
mt7996_mcu_rf_regval(struct mt7996_dev * dev,u32 regidx,u32 * val,bool set)4650 int mt7996_mcu_rf_regval(struct mt7996_dev *dev, u32 regidx, u32 *val, bool set)
4651 {
4652 struct {
4653 u8 __rsv1[4];
4654
4655 __le16 tag;
4656 __le16 len;
4657 __le16 idx;
4658 u8 __rsv2[2];
4659 __le32 ofs;
4660 __le32 data;
4661 } __packed *res, req = {
4662 .tag = cpu_to_le16(UNI_CMD_ACCESS_RF_REG_BASIC),
4663 .len = cpu_to_le16(sizeof(req) - 4),
4664
4665 .idx = cpu_to_le16(u32_get_bits(regidx, GENMASK(31, 24))),
4666 .ofs = cpu_to_le32(u32_get_bits(regidx, GENMASK(23, 0))),
4667 .data = set ? cpu_to_le32(*val) : 0,
4668 };
4669 struct sk_buff *skb;
4670 int ret;
4671
4672 if (set)
4673 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(REG_ACCESS),
4674 &req, sizeof(req), true);
4675
4676 ret = mt76_mcu_send_and_get_msg(&dev->mt76,
4677 MCU_WM_UNI_CMD_QUERY(REG_ACCESS),
4678 &req, sizeof(req), true, &skb);
4679 if (ret)
4680 return ret;
4681
4682 res = (void *)skb->data;
4683 *val = le32_to_cpu(res->data);
4684 dev_kfree_skb(skb);
4685
4686 return 0;
4687 }
4688
mt7996_mcu_trigger_assert(struct mt7996_dev * dev)4689 int mt7996_mcu_trigger_assert(struct mt7996_dev *dev)
4690 {
4691 struct {
4692 __le16 tag;
4693 __le16 len;
4694 u8 enable;
4695 u8 rsv[3];
4696 } __packed req = {
4697 .len = cpu_to_le16(sizeof(req) - 4),
4698 .enable = true,
4699 };
4700
4701 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(ASSERT_DUMP),
4702 &req, sizeof(req), false);
4703 }
4704
mt7996_mcu_set_rro(struct mt7996_dev * dev,u16 tag,u16 val)4705 int mt7996_mcu_set_rro(struct mt7996_dev *dev, u16 tag, u16 val)
4706 {
4707 struct {
4708 u8 __rsv1[4];
4709 __le16 tag;
4710 __le16 len;
4711 union {
4712 struct {
4713 u8 type;
4714 u8 __rsv2[3];
4715 } __packed platform_type;
4716 struct {
4717 u8 type;
4718 u8 dest;
4719 u8 __rsv2[2];
4720 } __packed bypass_mode;
4721 struct {
4722 u8 path;
4723 u8 __rsv2[3];
4724 } __packed txfree_path;
4725 struct {
4726 __le16 flush_one;
4727 __le16 flush_all;
4728 u8 __rsv2[4];
4729 } __packed timeout;
4730 };
4731 } __packed req = {
4732 .tag = cpu_to_le16(tag),
4733 .len = cpu_to_le16(sizeof(req) - 4),
4734 };
4735
4736 switch (tag) {
4737 case UNI_RRO_SET_PLATFORM_TYPE:
4738 req.platform_type.type = val;
4739 break;
4740 case UNI_RRO_SET_BYPASS_MODE:
4741 req.bypass_mode.type = val;
4742 break;
4743 case UNI_RRO_SET_TXFREE_PATH:
4744 req.txfree_path.path = val;
4745 break;
4746 case UNI_RRO_SET_FLUSH_TIMEOUT:
4747 req.timeout.flush_one = cpu_to_le16(val);
4748 req.timeout.flush_all = cpu_to_le16(2 * val);
4749 break;
4750 default:
4751 return -EINVAL;
4752 }
4753
4754 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RRO), &req,
4755 sizeof(req), true);
4756 }
4757
mt7996_mcu_get_all_sta_info(struct mt7996_phy * phy,u16 tag)4758 int mt7996_mcu_get_all_sta_info(struct mt7996_phy *phy, u16 tag)
4759 {
4760 struct mt7996_dev *dev = phy->dev;
4761 struct {
4762 u8 _rsv[4];
4763
4764 __le16 tag;
4765 __le16 len;
4766 } __packed req = {
4767 .tag = cpu_to_le16(tag),
4768 .len = cpu_to_le16(sizeof(req) - 4),
4769 };
4770
4771 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(ALL_STA_INFO),
4772 &req, sizeof(req), false);
4773 }
4774
mt7996_mcu_wed_rro_reset_sessions(struct mt7996_dev * dev,u16 id)4775 int mt7996_mcu_wed_rro_reset_sessions(struct mt7996_dev *dev, u16 id)
4776 {
4777 struct {
4778 u8 __rsv[4];
4779
4780 __le16 tag;
4781 __le16 len;
4782 __le16 session_id;
4783 u8 pad[4];
4784 } __packed req = {
4785 .tag = cpu_to_le16(UNI_RRO_DEL_BA_SESSION),
4786 .len = cpu_to_le16(sizeof(req) - 4),
4787 .session_id = cpu_to_le16(id),
4788 };
4789
4790 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RRO), &req,
4791 sizeof(req), true);
4792 }
4793
mt7996_mcu_set_sniffer_mode(struct mt7996_phy * phy,bool enabled)4794 int mt7996_mcu_set_sniffer_mode(struct mt7996_phy *phy, bool enabled)
4795 {
4796 struct mt7996_dev *dev = phy->dev;
4797 struct {
4798 u8 band_idx;
4799 u8 _rsv[3];
4800 __le16 tag;
4801 __le16 len;
4802 u8 enable;
4803 u8 _pad[3];
4804 } __packed req = {
4805 .band_idx = phy->mt76->band_idx,
4806 .tag = 0,
4807 .len = cpu_to_le16(sizeof(req) - 4),
4808 .enable = enabled,
4809 };
4810
4811 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SNIFFER), &req,
4812 sizeof(req), true);
4813 }
4814
mt7996_mcu_set_txpower_sku(struct mt7996_phy * phy)4815 int mt7996_mcu_set_txpower_sku(struct mt7996_phy *phy)
4816 {
4817 #define TX_POWER_LIMIT_TABLE_RATE 0
4818 struct mt7996_dev *dev = phy->dev;
4819 struct mt76_phy *mphy = phy->mt76;
4820 struct tx_power_limit_table_ctrl {
4821 u8 __rsv1[4];
4822
4823 __le16 tag;
4824 __le16 len;
4825 u8 power_ctrl_id;
4826 u8 power_limit_type;
4827 u8 band_idx;
4828 } __packed req = {
4829 .tag = cpu_to_le16(UNI_TXPOWER_POWER_LIMIT_TABLE_CTRL),
4830 .len = cpu_to_le16(sizeof(req) + MT7996_SKU_PATH_NUM - 4),
4831 .power_ctrl_id = UNI_TXPOWER_POWER_LIMIT_TABLE_CTRL,
4832 .power_limit_type = TX_POWER_LIMIT_TABLE_RATE,
4833 .band_idx = phy->mt76->band_idx,
4834 };
4835 struct mt76_power_limits la = {};
4836 struct sk_buff *skb;
4837 int i, tx_power;
4838
4839 tx_power = mt76_get_power_bound(mphy, phy->txpower);
4840 tx_power = mt76_get_rate_power_limits(mphy, mphy->chandef.chan,
4841 &la, tx_power);
4842 mphy->txpower_cur = tx_power;
4843
4844 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL,
4845 sizeof(req) + MT7996_SKU_PATH_NUM);
4846 if (!skb)
4847 return -ENOMEM;
4848
4849 skb_put_data(skb, &req, sizeof(req));
4850 /* cck and ofdm */
4851 skb_put_data(skb, &la.cck, sizeof(la.cck));
4852 skb_put_data(skb, &la.ofdm, sizeof(la.ofdm));
4853 /* ht20 */
4854 skb_put_data(skb, &la.mcs[0], 8);
4855 /* ht40 */
4856 skb_put_data(skb, &la.mcs[1], 9);
4857
4858 /* vht */
4859 for (i = 0; i < 4; i++) {
4860 skb_put_data(skb, &la.mcs[i], sizeof(la.mcs[i]));
4861 skb_put_zero(skb, 2); /* padding */
4862 }
4863
4864 /* he */
4865 skb_put_data(skb, &la.ru[0], sizeof(la.ru));
4866 /* eht */
4867 skb_put_data(skb, &la.eht[0], sizeof(la.eht));
4868
4869 /* padding */
4870 skb_put_zero(skb, MT7996_SKU_PATH_NUM - MT7996_SKU_RATE_NUM);
4871
4872 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
4873 MCU_WM_UNI_CMD(TXPOWER), true);
4874 }
4875
mt7996_mcu_cp_support(struct mt7996_dev * dev,u8 mode)4876 int mt7996_mcu_cp_support(struct mt7996_dev *dev, u8 mode)
4877 {
4878 __le32 cp_mode;
4879
4880 if (mode < mt76_connac_lmac_mapping(IEEE80211_AC_BE) ||
4881 mode > mt76_connac_lmac_mapping(IEEE80211_AC_VO))
4882 return -EINVAL;
4883
4884 if (!mt7996_has_wa(dev)) {
4885 struct {
4886 u8 _rsv[4];
4887
4888 __le16 tag;
4889 __le16 len;
4890 u8 cp_mode;
4891 u8 rsv[3];
4892 } __packed req = {
4893 .tag = cpu_to_le16(UNI_CMD_SDO_CP_MODE),
4894 .len = cpu_to_le16(sizeof(req) - 4),
4895 .cp_mode = mode,
4896 };
4897
4898 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_UNI_CMD(SDO),
4899 &req, sizeof(req), false);
4900 }
4901
4902 cp_mode = cpu_to_le32(mode);
4903
4904 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_EXT_CMD(CP_SUPPORT),
4905 &cp_mode, sizeof(cp_mode), true);
4906 }
4907