1 // SPDX-License-Identifier: ISC
2 /*
3 * Copyright (C) 2022 MediaTek Inc.
4 */
5
6 #include <linux/firmware.h>
7 #include <linux/fs.h>
8 #include "mt7996.h"
9 #include "mcu.h"
10 #include "mac.h"
11 #include "eeprom.h"
12
13 #define fw_name(_dev, name, ...) ({ \
14 char *_fw; \
15 switch (mt76_chip(&(_dev)->mt76)) { \
16 case MT7992_DEVICE_ID: \
17 switch ((_dev)->var.type) { \
18 case MT7992_VAR_TYPE_23: \
19 _fw = MT7992_##name##_23; \
20 break; \
21 default: \
22 _fw = MT7992_##name; \
23 } \
24 break; \
25 case MT7990_DEVICE_ID: \
26 _fw = MT7990_##name; \
27 break; \
28 case MT7996_DEVICE_ID: \
29 default: \
30 switch ((_dev)->var.type) { \
31 case MT7996_VAR_TYPE_233: \
32 _fw = MT7996_##name##_233; \
33 break; \
34 default: \
35 _fw = MT7996_##name; \
36 } \
37 break; \
38 } \
39 _fw; \
40 })
41
42 struct mt7996_patch_hdr {
43 char build_date[16];
44 char platform[4];
45 __be32 hw_sw_ver;
46 __be32 patch_ver;
47 __be16 checksum;
48 u16 reserved;
49 struct {
50 __be32 patch_ver;
51 __be32 subsys;
52 __be32 feature;
53 __be32 n_region;
54 __be32 crc;
55 u32 reserved[11];
56 } desc;
57 } __packed;
58
59 struct mt7996_patch_sec {
60 __be32 type;
61 __be32 offs;
62 __be32 size;
63 union {
64 __be32 spec[13];
65 struct {
66 __be32 addr;
67 __be32 len;
68 __be32 sec_key_idx;
69 __be32 align_len;
70 u32 reserved[9];
71 } info;
72 };
73 } __packed;
74
75 struct mt7996_fw_trailer {
76 u8 chip_id;
77 u8 eco_code;
78 u8 n_region;
79 u8 format_ver;
80 u8 format_flag;
81 u8 reserved[2];
82 char fw_ver[10];
83 char build_date[15];
84 u32 crc;
85 } __packed;
86
87 struct mt7996_fw_region {
88 __le32 decomp_crc;
89 __le32 decomp_len;
90 __le32 decomp_blk_sz;
91 u8 reserved[4];
92 __le32 addr;
93 __le32 len;
94 u8 feature_set;
95 u8 reserved1[15];
96 } __packed;
97
98 #define MCU_PATCH_ADDRESS 0x200000
99
100 #define HE_PHY(p, c) u8_get_bits(c, IEEE80211_HE_PHY_##p)
101 #define HE_MAC(m, c) u8_get_bits(c, IEEE80211_HE_MAC_##m)
102 #define EHT_PHY(p, c) u8_get_bits(c, IEEE80211_EHT_PHY_##p)
103
104 static bool sr_scene_detect = true;
105 module_param(sr_scene_detect, bool, 0644);
106 MODULE_PARM_DESC(sr_scene_detect, "Enable firmware scene detection algorithm");
107
108 static u8
mt7996_mcu_get_sta_nss(u16 mcs_map)109 mt7996_mcu_get_sta_nss(u16 mcs_map)
110 {
111 u8 nss;
112
113 for (nss = 8; nss > 0; nss--) {
114 u8 nss_mcs = (mcs_map >> (2 * (nss - 1))) & 3;
115
116 if (nss_mcs != IEEE80211_VHT_MCS_NOT_SUPPORTED)
117 break;
118 }
119
120 return nss - 1;
121 }
122
123 static void
mt7996_mcu_set_sta_he_mcs(struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link,__le16 * he_mcs,u16 mcs_map)124 mt7996_mcu_set_sta_he_mcs(struct ieee80211_link_sta *link_sta,
125 struct mt7996_vif_link *link,
126 __le16 *he_mcs, u16 mcs_map)
127 {
128 int nss, max_nss = link_sta->rx_nss > 3 ? 4 : link_sta->rx_nss;
129 enum nl80211_band band = link->phy->mt76->chandef.chan->band;
130 const u16 *mask = link->bitrate_mask.control[band].he_mcs;
131
132 for (nss = 0; nss < max_nss; nss++) {
133 int mcs;
134
135 switch ((mcs_map >> (2 * nss)) & 0x3) {
136 case IEEE80211_HE_MCS_SUPPORT_0_11:
137 mcs = GENMASK(11, 0);
138 break;
139 case IEEE80211_HE_MCS_SUPPORT_0_9:
140 mcs = GENMASK(9, 0);
141 break;
142 case IEEE80211_HE_MCS_SUPPORT_0_7:
143 mcs = GENMASK(7, 0);
144 break;
145 default:
146 mcs = 0;
147 }
148
149 mcs = mcs ? fls(mcs & mask[nss]) - 1 : -1;
150
151 switch (mcs) {
152 case 0 ... 7:
153 mcs = IEEE80211_HE_MCS_SUPPORT_0_7;
154 break;
155 case 8 ... 9:
156 mcs = IEEE80211_HE_MCS_SUPPORT_0_9;
157 break;
158 case 10 ... 11:
159 mcs = IEEE80211_HE_MCS_SUPPORT_0_11;
160 break;
161 default:
162 mcs = IEEE80211_HE_MCS_NOT_SUPPORTED;
163 break;
164 }
165 mcs_map &= ~(0x3 << (nss * 2));
166 mcs_map |= mcs << (nss * 2);
167 }
168
169 *he_mcs = cpu_to_le16(mcs_map);
170 }
171
172 static void
mt7996_mcu_set_sta_vht_mcs(struct ieee80211_link_sta * link_sta,__le16 * vht_mcs,const u16 * mask)173 mt7996_mcu_set_sta_vht_mcs(struct ieee80211_link_sta *link_sta,
174 __le16 *vht_mcs, const u16 *mask)
175 {
176 u16 mcs, mcs_map = le16_to_cpu(link_sta->vht_cap.vht_mcs.rx_mcs_map);
177 int nss, max_nss = link_sta->rx_nss > 3 ? 4 : link_sta->rx_nss;
178
179 for (nss = 0; nss < max_nss; nss++, mcs_map >>= 2) {
180 switch (mcs_map & 0x3) {
181 case IEEE80211_VHT_MCS_SUPPORT_0_9:
182 mcs = GENMASK(9, 0);
183 break;
184 case IEEE80211_VHT_MCS_SUPPORT_0_8:
185 mcs = GENMASK(8, 0);
186 break;
187 case IEEE80211_VHT_MCS_SUPPORT_0_7:
188 mcs = GENMASK(7, 0);
189 break;
190 default:
191 mcs = 0;
192 }
193
194 vht_mcs[nss] = cpu_to_le16(mcs & mask[nss]);
195 }
196 }
197
198 static void
mt7996_mcu_set_sta_ht_mcs(struct ieee80211_link_sta * link_sta,u8 * ht_mcs,const u8 * mask)199 mt7996_mcu_set_sta_ht_mcs(struct ieee80211_link_sta *link_sta,
200 u8 *ht_mcs, const u8 *mask)
201 {
202 int nss, max_nss = link_sta->rx_nss > 3 ? 4 : link_sta->rx_nss;
203
204 for (nss = 0; nss < max_nss; nss++)
205 ht_mcs[nss] = link_sta->ht_cap.mcs.rx_mask[nss] & mask[nss];
206 }
207
208 static int
mt7996_mcu_parse_response(struct mt76_dev * mdev,int cmd,struct sk_buff * skb,int seq)209 mt7996_mcu_parse_response(struct mt76_dev *mdev, int cmd,
210 struct sk_buff *skb, int seq)
211 {
212 struct mt7996_mcu_rxd *rxd;
213 struct mt7996_mcu_uni_event *event;
214 int mcu_cmd = FIELD_GET(__MCU_CMD_FIELD_ID, cmd);
215 int ret = 0;
216
217 if (!skb) {
218 dev_err(mdev->dev, "Message %08x (seq %d) timeout\n",
219 cmd, seq);
220 return -ETIMEDOUT;
221 }
222
223 rxd = (struct mt7996_mcu_rxd *)skb->data;
224 if (seq != rxd->seq)
225 return -EAGAIN;
226
227 if (cmd == MCU_CMD(PATCH_SEM_CONTROL)) {
228 skb_pull(skb, sizeof(*rxd) - 4);
229 ret = *skb->data;
230 } else if ((rxd->option & MCU_UNI_CMD_EVENT) &&
231 rxd->eid == MCU_UNI_EVENT_RESULT) {
232 skb_pull(skb, sizeof(*rxd));
233 event = (struct mt7996_mcu_uni_event *)skb->data;
234 ret = le32_to_cpu(event->status);
235 /* skip invalid event */
236 if (mcu_cmd != event->cid)
237 ret = -EAGAIN;
238 } else {
239 skb_pull(skb, sizeof(struct mt7996_mcu_rxd));
240 }
241
242 return ret;
243 }
244
245 static int
mt7996_mcu_send_message(struct mt76_dev * mdev,struct sk_buff * skb,int cmd,int * wait_seq)246 mt7996_mcu_send_message(struct mt76_dev *mdev, struct sk_buff *skb,
247 int cmd, int *wait_seq)
248 {
249 struct mt7996_dev *dev = container_of(mdev, struct mt7996_dev, mt76);
250 int txd_len, mcu_cmd = FIELD_GET(__MCU_CMD_FIELD_ID, cmd);
251 struct mt76_connac2_mcu_uni_txd *uni_txd;
252 struct mt76_connac2_mcu_txd *mcu_txd;
253 enum mt76_mcuq_id qid;
254 __le32 *txd;
255 u32 val;
256 u8 seq;
257
258 mdev->mcu.timeout = 20 * HZ;
259
260 seq = ++dev->mt76.mcu.msg_seq & 0xf;
261 if (!seq)
262 seq = ++dev->mt76.mcu.msg_seq & 0xf;
263
264 if (cmd == MCU_CMD(FW_SCATTER)) {
265 qid = MT_MCUQ_FWDL;
266 goto exit;
267 }
268
269 txd_len = cmd & __MCU_CMD_FIELD_UNI ? sizeof(*uni_txd) : sizeof(*mcu_txd);
270 txd = (__le32 *)skb_push(skb, txd_len);
271 if (test_bit(MT76_STATE_MCU_RUNNING, &dev->mphy.state) && mt7996_has_wa(dev))
272 qid = MT_MCUQ_WA;
273 else
274 qid = MT_MCUQ_WM;
275
276 val = FIELD_PREP(MT_TXD0_TX_BYTES, skb->len) |
277 FIELD_PREP(MT_TXD0_PKT_FMT, MT_TX_TYPE_CMD) |
278 FIELD_PREP(MT_TXD0_Q_IDX, MT_TX_MCU_PORT_RX_Q0);
279 txd[0] = cpu_to_le32(val);
280
281 val = FIELD_PREP(MT_TXD1_HDR_FORMAT, MT_HDR_FORMAT_CMD);
282 txd[1] = cpu_to_le32(val);
283
284 if (cmd & __MCU_CMD_FIELD_UNI) {
285 uni_txd = (struct mt76_connac2_mcu_uni_txd *)txd;
286 uni_txd->len = cpu_to_le16(skb->len - sizeof(uni_txd->txd));
287 uni_txd->cid = cpu_to_le16(mcu_cmd);
288 uni_txd->s2d_index = MCU_S2D_H2CN;
289 uni_txd->pkt_type = MCU_PKT_ID;
290 uni_txd->seq = seq;
291
292 if (cmd & __MCU_CMD_FIELD_QUERY)
293 uni_txd->option = MCU_CMD_UNI_QUERY_ACK;
294 else
295 uni_txd->option = MCU_CMD_UNI_EXT_ACK;
296
297 if ((cmd & __MCU_CMD_FIELD_WA) && (cmd & __MCU_CMD_FIELD_WM))
298 uni_txd->s2d_index = MCU_S2D_H2CN;
299 else if (cmd & __MCU_CMD_FIELD_WA)
300 uni_txd->s2d_index = MCU_S2D_H2C;
301 else if (cmd & __MCU_CMD_FIELD_WM)
302 uni_txd->s2d_index = MCU_S2D_H2N;
303
304 goto exit;
305 }
306
307 mcu_txd = (struct mt76_connac2_mcu_txd *)txd;
308 mcu_txd->len = cpu_to_le16(skb->len - sizeof(mcu_txd->txd));
309 mcu_txd->pq_id = cpu_to_le16(MCU_PQ_ID(MT_TX_PORT_IDX_MCU,
310 MT_TX_MCU_PORT_RX_Q0));
311 mcu_txd->pkt_type = MCU_PKT_ID;
312 mcu_txd->seq = seq;
313
314 mcu_txd->cid = FIELD_GET(__MCU_CMD_FIELD_ID, cmd);
315 mcu_txd->set_query = MCU_Q_NA;
316 mcu_txd->ext_cid = FIELD_GET(__MCU_CMD_FIELD_EXT_ID, cmd);
317 if (mcu_txd->ext_cid) {
318 mcu_txd->ext_cid_ack = 1;
319
320 if (cmd & __MCU_CMD_FIELD_QUERY)
321 mcu_txd->set_query = MCU_Q_QUERY;
322 else
323 mcu_txd->set_query = MCU_Q_SET;
324 }
325
326 if (cmd & __MCU_CMD_FIELD_WA)
327 mcu_txd->s2d_index = MCU_S2D_H2C;
328 else
329 mcu_txd->s2d_index = MCU_S2D_H2N;
330
331 exit:
332 if (wait_seq)
333 *wait_seq = seq;
334
335 return mt76_tx_queue_skb_raw(dev, mdev->q_mcu[qid], skb, 0);
336 }
337
mt7996_mcu_wa_cmd(struct mt7996_dev * dev,int cmd,u32 a1,u32 a2,u32 a3)338 int mt7996_mcu_wa_cmd(struct mt7996_dev *dev, int cmd, u32 a1, u32 a2, u32 a3)
339 {
340 struct {
341 u8 _rsv[4];
342
343 __le16 tag;
344 __le16 len;
345 __le32 args[3];
346 } __packed req = {
347 .args = {
348 cpu_to_le32(a1),
349 cpu_to_le32(a2),
350 cpu_to_le32(a3),
351 },
352 };
353
354 if (mt7996_has_wa(dev))
355 return mt76_mcu_send_msg(&dev->mt76, cmd, &req.args,
356 sizeof(req.args), false);
357
358 req.tag = cpu_to_le16(cmd == MCU_WA_PARAM_CMD(QUERY) ? UNI_CMD_SDO_QUERY :
359 UNI_CMD_SDO_SET);
360 req.len = cpu_to_le16(sizeof(req) - 4);
361
362 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_UNI_CMD(SDO), &req,
363 sizeof(req), false);
364 }
365
366 static void
mt7996_mcu_csa_finish(void * priv,u8 * mac,struct ieee80211_vif * vif)367 mt7996_mcu_csa_finish(void *priv, u8 *mac, struct ieee80211_vif *vif)
368 {
369 if (!vif->bss_conf.csa_active || vif->type == NL80211_IFTYPE_STATION)
370 return;
371
372 ieee80211_csa_finish(vif, 0);
373 }
374
375 static void
mt7996_mcu_rx_radar_detected(struct mt7996_dev * dev,struct sk_buff * skb)376 mt7996_mcu_rx_radar_detected(struct mt7996_dev *dev, struct sk_buff *skb)
377 {
378 struct mt76_phy *mphy = &dev->mt76.phy;
379 struct mt7996_mcu_rdd_report *r;
380
381 r = (struct mt7996_mcu_rdd_report *)skb->data;
382
383 switch (r->rdd_idx) {
384 case MT_RDD_IDX_BAND2:
385 mphy = dev->mt76.phys[MT_BAND2];
386 break;
387 case MT_RDD_IDX_BAND1:
388 mphy = dev->mt76.phys[MT_BAND1];
389 break;
390 case MT_RDD_IDX_BACKGROUND:
391 if (!dev->rdd2_phy)
392 return;
393 mphy = dev->rdd2_phy->mt76;
394 break;
395 default:
396 dev_err(dev->mt76.dev, "Unknown RDD idx %d\n", r->rdd_idx);
397 return;
398 }
399
400 if (!mphy)
401 return;
402
403 if (r->rdd_idx == MT_RDD_IDX_BACKGROUND)
404 cfg80211_background_radar_event(mphy->hw->wiphy,
405 &dev->rdd2_chandef,
406 GFP_ATOMIC);
407 else
408 ieee80211_radar_detected(mphy->hw, NULL);
409 dev->hw_pattern++;
410 }
411
412 static void
mt7996_mcu_rx_log_message(struct mt7996_dev * dev,struct sk_buff * skb)413 mt7996_mcu_rx_log_message(struct mt7996_dev *dev, struct sk_buff *skb)
414 {
415 #define UNI_EVENT_FW_LOG_FORMAT 0
416 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
417 const char *data = (char *)&rxd[1] + 4, *type;
418 struct tlv *tlv = (struct tlv *)data;
419 int len;
420
421 if (!(rxd->option & MCU_UNI_CMD_EVENT)) {
422 len = skb->len - sizeof(*rxd);
423 data = (char *)&rxd[1];
424 goto out;
425 }
426
427 if (le16_to_cpu(tlv->tag) != UNI_EVENT_FW_LOG_FORMAT)
428 return;
429
430 data += sizeof(*tlv) + 4;
431 len = le16_to_cpu(tlv->len) - sizeof(*tlv) - 4;
432
433 out:
434 switch (rxd->s2d_index) {
435 case 0:
436 if (mt7996_debugfs_rx_log(dev, data, len))
437 return;
438
439 type = "WM";
440 break;
441 case 2:
442 type = "WA";
443 break;
444 default:
445 type = "unknown";
446 break;
447 }
448
449 wiphy_info(mt76_hw(dev)->wiphy, "%s: %.*s", type, len, data);
450 }
451
452 static void
mt7996_mcu_cca_finish(void * priv,u8 * mac,struct ieee80211_vif * vif)453 mt7996_mcu_cca_finish(void *priv, u8 *mac, struct ieee80211_vif *vif)
454 {
455 if (!vif->bss_conf.color_change_active || vif->type == NL80211_IFTYPE_STATION)
456 return;
457
458 ieee80211_color_change_finish(vif, 0);
459 }
460
461 static void
mt7996_mcu_ie_countdown(struct mt7996_dev * dev,struct sk_buff * skb)462 mt7996_mcu_ie_countdown(struct mt7996_dev *dev, struct sk_buff *skb)
463 {
464 #define UNI_EVENT_IE_COUNTDOWN_CSA 0
465 #define UNI_EVENT_IE_COUNTDOWN_BCC 1
466 struct header {
467 u8 band;
468 u8 rsv[3];
469 };
470 struct mt76_phy *mphy = &dev->mt76.phy;
471 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
472 const char *data = (char *)&rxd[1], *tail;
473 struct header *hdr = (struct header *)data;
474 struct tlv *tlv = (struct tlv *)(data + 4);
475
476 if (hdr->band >= ARRAY_SIZE(dev->mt76.phys))
477 return;
478
479 if (hdr->band && dev->mt76.phys[hdr->band])
480 mphy = dev->mt76.phys[hdr->band];
481
482 tail = skb->data + skb->len;
483 data += sizeof(struct header);
484 while (data + sizeof(struct tlv) < tail && le16_to_cpu(tlv->len)) {
485 switch (le16_to_cpu(tlv->tag)) {
486 case UNI_EVENT_IE_COUNTDOWN_CSA:
487 ieee80211_iterate_active_interfaces_atomic(mphy->hw,
488 IEEE80211_IFACE_ITER_RESUME_ALL,
489 mt7996_mcu_csa_finish, mphy->hw);
490 break;
491 case UNI_EVENT_IE_COUNTDOWN_BCC:
492 ieee80211_iterate_active_interfaces_atomic(mphy->hw,
493 IEEE80211_IFACE_ITER_RESUME_ALL,
494 mt7996_mcu_cca_finish, mphy->hw);
495 break;
496 }
497
498 data += le16_to_cpu(tlv->len);
499 tlv = (struct tlv *)data;
500 }
501 }
502
503 static int
mt7996_mcu_update_tx_gi(struct rate_info * rate,struct all_sta_trx_rate * mcu_rate)504 mt7996_mcu_update_tx_gi(struct rate_info *rate, struct all_sta_trx_rate *mcu_rate)
505 {
506 switch (mcu_rate->tx_mode) {
507 case MT_PHY_TYPE_CCK:
508 case MT_PHY_TYPE_OFDM:
509 break;
510 case MT_PHY_TYPE_HT:
511 case MT_PHY_TYPE_HT_GF:
512 case MT_PHY_TYPE_VHT:
513 if (mcu_rate->tx_gi)
514 rate->flags |= RATE_INFO_FLAGS_SHORT_GI;
515 else
516 rate->flags &= ~RATE_INFO_FLAGS_SHORT_GI;
517 break;
518 case MT_PHY_TYPE_HE_SU:
519 case MT_PHY_TYPE_HE_EXT_SU:
520 case MT_PHY_TYPE_HE_TB:
521 case MT_PHY_TYPE_HE_MU:
522 if (mcu_rate->tx_gi > NL80211_RATE_INFO_HE_GI_3_2)
523 return -EINVAL;
524 rate->he_gi = mcu_rate->tx_gi;
525 break;
526 case MT_PHY_TYPE_EHT_SU:
527 case MT_PHY_TYPE_EHT_TRIG:
528 case MT_PHY_TYPE_EHT_MU:
529 if (mcu_rate->tx_gi > NL80211_RATE_INFO_EHT_GI_3_2)
530 return -EINVAL;
531 rate->eht_gi = mcu_rate->tx_gi;
532 break;
533 default:
534 return -EINVAL;
535 }
536
537 return 0;
538 }
539
540 static void
mt7996_mcu_rx_all_sta_info_event(struct mt7996_dev * dev,struct sk_buff * skb)541 mt7996_mcu_rx_all_sta_info_event(struct mt7996_dev *dev, struct sk_buff *skb)
542 {
543 struct mt7996_mcu_all_sta_info_event *res;
544 u16 i;
545
546 skb_pull(skb, sizeof(struct mt7996_mcu_rxd));
547
548 res = (struct mt7996_mcu_all_sta_info_event *)skb->data;
549
550 for (i = 0; i < le16_to_cpu(res->sta_num); i++) {
551 u8 ac;
552 u16 wlan_idx;
553 struct mt76_wcid *wcid;
554
555 switch (le16_to_cpu(res->tag)) {
556 case UNI_ALL_STA_TXRX_RATE:
557 wlan_idx = le16_to_cpu(res->rate[i].wlan_idx);
558 wcid = mt76_wcid_ptr(dev, wlan_idx);
559
560 if (!wcid)
561 break;
562
563 if (mt7996_mcu_update_tx_gi(&wcid->rate, &res->rate[i]))
564 dev_err(dev->mt76.dev, "Failed to update TX GI\n");
565 break;
566 case UNI_ALL_STA_TXRX_ADM_STAT:
567 wlan_idx = le16_to_cpu(res->adm_stat[i].wlan_idx);
568 wcid = mt76_wcid_ptr(dev, wlan_idx);
569
570 if (!wcid)
571 break;
572
573 for (ac = 0; ac < IEEE80211_NUM_ACS; ac++) {
574 wcid->stats.tx_bytes +=
575 le32_to_cpu(res->adm_stat[i].tx_bytes[ac]);
576 wcid->stats.rx_bytes +=
577 le32_to_cpu(res->adm_stat[i].rx_bytes[ac]);
578 }
579 break;
580 case UNI_ALL_STA_TXRX_MSDU_COUNT:
581 wlan_idx = le16_to_cpu(res->msdu_cnt[i].wlan_idx);
582 wcid = mt76_wcid_ptr(dev, wlan_idx);
583
584 if (!wcid)
585 break;
586
587 wcid->stats.tx_packets +=
588 le32_to_cpu(res->msdu_cnt[i].tx_msdu_cnt);
589 wcid->stats.rx_packets +=
590 le32_to_cpu(res->msdu_cnt[i].rx_msdu_cnt);
591 break;
592 default:
593 break;
594 }
595 }
596 }
597
598 static void
mt7996_mcu_rx_thermal_notify(struct mt7996_dev * dev,struct sk_buff * skb)599 mt7996_mcu_rx_thermal_notify(struct mt7996_dev *dev, struct sk_buff *skb)
600 {
601 #define THERMAL_NOTIFY_TAG 0x4
602 #define THERMAL_NOTIFY 0x2
603 struct mt76_phy *mphy = &dev->mt76.phy;
604 struct mt7996_mcu_thermal_notify *n;
605 struct mt7996_phy *phy;
606
607 n = (struct mt7996_mcu_thermal_notify *)skb->data;
608
609 if (le16_to_cpu(n->tag) != THERMAL_NOTIFY_TAG)
610 return;
611
612 if (n->event_id != THERMAL_NOTIFY)
613 return;
614
615 if (n->band_idx > MT_BAND2)
616 return;
617
618 mphy = dev->mt76.phys[n->band_idx];
619 if (!mphy)
620 return;
621
622 phy = (struct mt7996_phy *)mphy->priv;
623 phy->throttle_state = n->duty_percent;
624 }
625
626 static void
mt7996_mcu_rx_ext_event(struct mt7996_dev * dev,struct sk_buff * skb)627 mt7996_mcu_rx_ext_event(struct mt7996_dev *dev, struct sk_buff *skb)
628 {
629 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
630
631 switch (rxd->ext_eid) {
632 case MCU_EXT_EVENT_FW_LOG_2_HOST:
633 mt7996_mcu_rx_log_message(dev, skb);
634 break;
635 default:
636 break;
637 }
638 }
639
640 static void
mt7996_mcu_rx_unsolicited_event(struct mt7996_dev * dev,struct sk_buff * skb)641 mt7996_mcu_rx_unsolicited_event(struct mt7996_dev *dev, struct sk_buff *skb)
642 {
643 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
644
645 switch (rxd->eid) {
646 case MCU_EVENT_EXT:
647 mt7996_mcu_rx_ext_event(dev, skb);
648 break;
649 case MCU_UNI_EVENT_THERMAL:
650 mt7996_mcu_rx_thermal_notify(dev, skb);
651 break;
652 default:
653 break;
654 }
655 dev_kfree_skb(skb);
656 }
657
658 static void
mt7996_mcu_wed_rro_event(struct mt7996_dev * dev,struct sk_buff * skb)659 mt7996_mcu_wed_rro_event(struct mt7996_dev *dev, struct sk_buff *skb)
660 {
661 struct mt7996_mcu_wed_rro_event *event = (void *)skb->data;
662
663 if (!dev->has_rro)
664 return;
665
666 skb_pull(skb, sizeof(struct mt7996_mcu_rxd) + 4);
667
668 switch (le16_to_cpu(event->tag)) {
669 case UNI_WED_RRO_BA_SESSION_STATUS: {
670 struct mt7996_mcu_wed_rro_ba_event *e;
671
672 while (skb->len >= sizeof(*e)) {
673 struct mt76_rx_tid *tid;
674 struct mt76_wcid *wcid;
675 u16 idx;
676
677 e = (void *)skb->data;
678 idx = le16_to_cpu(e->wlan_id);
679 wcid = mt76_wcid_ptr(dev, idx);
680 if (!wcid || !wcid->sta)
681 break;
682
683 if (e->tid >= ARRAY_SIZE(wcid->aggr))
684 break;
685
686 tid = rcu_dereference(wcid->aggr[e->tid]);
687 if (!tid)
688 break;
689
690 tid->id = le16_to_cpu(e->id);
691 skb_pull(skb, sizeof(*e));
692 }
693 break;
694 }
695 case UNI_WED_RRO_BA_SESSION_DELETE: {
696 struct mt7996_mcu_wed_rro_ba_delete_event *e;
697
698 while (skb->len >= sizeof(*e)) {
699 struct mt7996_wed_rro_session_id *session;
700
701 e = (void *)skb->data;
702 session = kzalloc(sizeof(*session), GFP_ATOMIC);
703 if (!session)
704 break;
705
706 session->id = le16_to_cpu(e->session_id);
707
708 spin_lock_bh(&dev->wed_rro.lock);
709 list_add_tail(&session->list, &dev->wed_rro.poll_list);
710 spin_unlock_bh(&dev->wed_rro.lock);
711
712 ieee80211_queue_work(mt76_hw(dev), &dev->wed_rro.work);
713 skb_pull(skb, sizeof(*e));
714 }
715 break;
716 }
717 default:
718 break;
719 }
720 }
721
722 static void
mt7996_mcu_uni_rx_unsolicited_event(struct mt7996_dev * dev,struct sk_buff * skb)723 mt7996_mcu_uni_rx_unsolicited_event(struct mt7996_dev *dev, struct sk_buff *skb)
724 {
725 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
726
727 switch (rxd->eid) {
728 case MCU_UNI_EVENT_FW_LOG_2_HOST:
729 mt7996_mcu_rx_log_message(dev, skb);
730 break;
731 case MCU_UNI_EVENT_IE_COUNTDOWN:
732 mt7996_mcu_ie_countdown(dev, skb);
733 break;
734 case MCU_UNI_EVENT_RDD_REPORT:
735 mt7996_mcu_rx_radar_detected(dev, skb);
736 break;
737 case MCU_UNI_EVENT_ALL_STA_INFO:
738 mt7996_mcu_rx_all_sta_info_event(dev, skb);
739 break;
740 case MCU_UNI_EVENT_WED_RRO:
741 mt7996_mcu_wed_rro_event(dev, skb);
742 break;
743 default:
744 break;
745 }
746 dev_kfree_skb(skb);
747 }
748
mt7996_mcu_rx_event(struct mt7996_dev * dev,struct sk_buff * skb)749 void mt7996_mcu_rx_event(struct mt7996_dev *dev, struct sk_buff *skb)
750 {
751 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
752
753 if (rxd->option & MCU_UNI_CMD_UNSOLICITED_EVENT) {
754 mt7996_mcu_uni_rx_unsolicited_event(dev, skb);
755 return;
756 }
757
758 /* WA still uses legacy event*/
759 if (rxd->ext_eid == MCU_EXT_EVENT_FW_LOG_2_HOST ||
760 !rxd->seq)
761 mt7996_mcu_rx_unsolicited_event(dev, skb);
762 else
763 mt76_mcu_rx_event(&dev->mt76, skb);
764 }
765
766 static struct tlv *
mt7996_mcu_add_uni_tlv(struct sk_buff * skb,u16 tag,u16 len)767 mt7996_mcu_add_uni_tlv(struct sk_buff *skb, u16 tag, u16 len)
768 {
769 struct tlv *ptlv = skb_put_zero(skb, len);
770
771 ptlv->tag = cpu_to_le16(tag);
772 ptlv->len = cpu_to_le16(len);
773
774 return ptlv;
775 }
776
777 static void
mt7996_mcu_bss_rfch_tlv(struct sk_buff * skb,struct mt7996_phy * phy)778 mt7996_mcu_bss_rfch_tlv(struct sk_buff *skb, struct mt7996_phy *phy)
779 {
780 static const u8 rlm_ch_band[] = {
781 [NL80211_BAND_2GHZ] = 1,
782 [NL80211_BAND_5GHZ] = 2,
783 [NL80211_BAND_6GHZ] = 3,
784 };
785 struct cfg80211_chan_def *chandef = &phy->mt76->chandef;
786 struct bss_rlm_tlv *ch;
787 struct tlv *tlv;
788 int freq1 = chandef->center_freq1;
789
790 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_RLM, sizeof(*ch));
791
792 ch = (struct bss_rlm_tlv *)tlv;
793 ch->control_channel = chandef->chan->hw_value;
794 ch->center_chan = ieee80211_frequency_to_channel(freq1);
795 ch->bw = mt76_connac_chan_bw(chandef);
796 ch->tx_streams = hweight8(phy->mt76->antenna_mask);
797 ch->rx_streams = hweight8(phy->mt76->antenna_mask);
798 ch->band = rlm_ch_band[chandef->chan->band];
799
800 if (chandef->width == NL80211_CHAN_WIDTH_80P80) {
801 int freq2 = chandef->center_freq2;
802
803 ch->center_chan2 = ieee80211_frequency_to_channel(freq2);
804 }
805 }
806
807 static void
mt7996_mcu_bss_ra_tlv(struct sk_buff * skb,struct mt7996_phy * phy)808 mt7996_mcu_bss_ra_tlv(struct sk_buff *skb, struct mt7996_phy *phy)
809 {
810 struct bss_ra_tlv *ra;
811 struct tlv *tlv;
812
813 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_RA, sizeof(*ra));
814
815 ra = (struct bss_ra_tlv *)tlv;
816 ra->short_preamble = true;
817 }
818
819 static void
mt7996_mcu_bss_he_tlv(struct sk_buff * skb,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct mt7996_phy * phy)820 mt7996_mcu_bss_he_tlv(struct sk_buff *skb, struct ieee80211_vif *vif,
821 struct ieee80211_bss_conf *link_conf,
822 struct mt7996_phy *phy)
823 {
824 #define DEFAULT_HE_PE_DURATION 4
825 #define DEFAULT_HE_DURATION_RTS_THRES 1023
826 const struct ieee80211_sta_he_cap *cap;
827 struct bss_info_uni_he *he;
828 struct tlv *tlv;
829
830 cap = mt76_connac_get_he_phy_cap(phy->mt76, vif);
831
832 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_HE_BASIC, sizeof(*he));
833
834 he = (struct bss_info_uni_he *)tlv;
835 he->he_pe_duration = link_conf->htc_trig_based_pkt_ext;
836 if (!he->he_pe_duration)
837 he->he_pe_duration = DEFAULT_HE_PE_DURATION;
838
839 he->he_rts_thres = cpu_to_le16(link_conf->frame_time_rts_th);
840 if (!he->he_rts_thres)
841 he->he_rts_thres = cpu_to_le16(DEFAULT_HE_DURATION_RTS_THRES);
842
843 he->max_nss_mcs[CMD_HE_MCS_BW80] = cap->he_mcs_nss_supp.tx_mcs_80;
844 he->max_nss_mcs[CMD_HE_MCS_BW160] = cap->he_mcs_nss_supp.tx_mcs_160;
845 he->max_nss_mcs[CMD_HE_MCS_BW8080] = cap->he_mcs_nss_supp.tx_mcs_80p80;
846 }
847
848 static void
mt7996_mcu_bss_mbssid_tlv(struct sk_buff * skb,struct ieee80211_bss_conf * link_conf,bool enable)849 mt7996_mcu_bss_mbssid_tlv(struct sk_buff *skb, struct ieee80211_bss_conf *link_conf,
850 bool enable)
851 {
852 struct bss_info_uni_mbssid *mbssid;
853 struct tlv *tlv;
854
855 if (!link_conf->bssid_indicator && enable)
856 return;
857
858 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_11V_MBSSID, sizeof(*mbssid));
859
860 mbssid = (struct bss_info_uni_mbssid *)tlv;
861
862 if (enable) {
863 mbssid->max_indicator = link_conf->bssid_indicator;
864 mbssid->mbss_idx = link_conf->bssid_index;
865 mbssid->tx_bss_omac_idx = 0;
866 }
867 }
868
869 static void
mt7996_mcu_bss_bmc_tlv(struct sk_buff * skb,struct mt76_vif_link * mlink,struct mt7996_phy * phy)870 mt7996_mcu_bss_bmc_tlv(struct sk_buff *skb, struct mt76_vif_link *mlink,
871 struct mt7996_phy *phy)
872 {
873 struct bss_rate_tlv *bmc;
874 struct cfg80211_chan_def *chandef = &phy->mt76->chandef;
875 enum nl80211_band band = chandef->chan->band;
876 struct tlv *tlv;
877 u8 idx = mlink->mcast_rates_idx ?
878 mlink->mcast_rates_idx : mlink->basic_rates_idx;
879
880 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_RATE, sizeof(*bmc));
881
882 bmc = (struct bss_rate_tlv *)tlv;
883
884 bmc->short_preamble = (band == NL80211_BAND_2GHZ);
885 bmc->bc_fixed_rate = idx;
886 bmc->mc_fixed_rate = idx;
887 }
888
889 static void
mt7996_mcu_bss_txcmd_tlv(struct sk_buff * skb,bool en)890 mt7996_mcu_bss_txcmd_tlv(struct sk_buff *skb, bool en)
891 {
892 struct bss_txcmd_tlv *txcmd;
893 struct tlv *tlv;
894
895 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_TXCMD, sizeof(*txcmd));
896
897 txcmd = (struct bss_txcmd_tlv *)tlv;
898 txcmd->txcmd_mode = en;
899 }
900
901 static void
mt7996_mcu_bss_mld_tlv(struct sk_buff * skb,struct mt76_vif_link * mlink)902 mt7996_mcu_bss_mld_tlv(struct sk_buff *skb, struct mt76_vif_link *mlink)
903 {
904 struct bss_mld_tlv *mld;
905 struct tlv *tlv;
906
907 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_MLD, sizeof(*mld));
908
909 mld = (struct bss_mld_tlv *)tlv;
910 mld->group_mld_id = 0xff;
911 mld->own_mld_id = mlink->idx;
912 mld->remap_idx = 0xff;
913 }
914
915 static void
mt7996_mcu_bss_sec_tlv(struct sk_buff * skb,struct mt76_vif_link * mlink)916 mt7996_mcu_bss_sec_tlv(struct sk_buff *skb, struct mt76_vif_link *mlink)
917 {
918 struct bss_sec_tlv *sec;
919 struct tlv *tlv;
920
921 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_SEC, sizeof(*sec));
922
923 sec = (struct bss_sec_tlv *)tlv;
924 sec->cipher = mlink->cipher;
925 }
926
927 static int
mt7996_mcu_muar_config(struct mt7996_dev * dev,struct mt76_vif_link * mlink,const u8 * addr,bool bssid,bool enable)928 mt7996_mcu_muar_config(struct mt7996_dev *dev, struct mt76_vif_link *mlink,
929 const u8 *addr, bool bssid, bool enable)
930 {
931 #define UNI_MUAR_ENTRY 2
932 u32 idx = mlink->omac_idx - REPEATER_BSSID_START;
933 struct {
934 struct {
935 u8 band;
936 u8 __rsv[3];
937 } hdr;
938
939 __le16 tag;
940 __le16 len;
941
942 bool smesh;
943 u8 bssid;
944 u8 index;
945 u8 entry_add;
946 u8 addr[ETH_ALEN];
947 u8 __rsv[2];
948 } __packed req = {
949 .hdr.band = mlink->band_idx,
950 .tag = cpu_to_le16(UNI_MUAR_ENTRY),
951 .len = cpu_to_le16(sizeof(req) - sizeof(req.hdr)),
952 .smesh = false,
953 .index = idx * 2 + bssid,
954 .entry_add = true,
955 };
956
957 if (enable)
958 memcpy(req.addr, addr, ETH_ALEN);
959
960 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(REPT_MUAR), &req,
961 sizeof(req), true);
962 }
963
964 static void
mt7996_mcu_bss_ifs_timing_tlv(struct sk_buff * skb,struct mt7996_phy * phy)965 mt7996_mcu_bss_ifs_timing_tlv(struct sk_buff *skb, struct mt7996_phy *phy)
966 {
967 struct bss_ifs_time_tlv *ifs_time;
968 struct tlv *tlv;
969 bool is_2ghz = phy->mt76->chandef.chan->band == NL80211_BAND_2GHZ;
970
971 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_IFS_TIME, sizeof(*ifs_time));
972
973 ifs_time = (struct bss_ifs_time_tlv *)tlv;
974 ifs_time->slot_valid = true;
975 ifs_time->sifs_valid = true;
976 ifs_time->rifs_valid = true;
977 ifs_time->eifs_valid = true;
978
979 ifs_time->slot_time = cpu_to_le16(phy->slottime);
980 ifs_time->sifs_time = cpu_to_le16(10);
981 ifs_time->rifs_time = cpu_to_le16(2);
982 ifs_time->eifs_time = cpu_to_le16(is_2ghz ? 78 : 84);
983
984 if (is_2ghz) {
985 ifs_time->eifs_cck_valid = true;
986 ifs_time->eifs_cck_time = cpu_to_le16(314);
987 }
988 }
989
990 static int
mt7996_mcu_bss_basic_tlv(struct sk_buff * skb,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct mt76_vif_link * mvif,struct mt76_phy * phy,u16 wlan_idx,bool enable)991 mt7996_mcu_bss_basic_tlv(struct sk_buff *skb,
992 struct ieee80211_vif *vif,
993 struct ieee80211_bss_conf *link_conf,
994 struct mt76_vif_link *mvif,
995 struct mt76_phy *phy, u16 wlan_idx,
996 bool enable)
997 {
998 struct cfg80211_chan_def *chandef = &phy->chandef;
999 struct mt76_connac_bss_basic_tlv *bss;
1000 u32 type = CONNECTION_INFRA_AP;
1001 u16 sta_wlan_idx = wlan_idx;
1002 struct ieee80211_sta *sta;
1003 struct tlv *tlv;
1004 int idx;
1005
1006 switch (vif->type) {
1007 case NL80211_IFTYPE_MESH_POINT:
1008 case NL80211_IFTYPE_AP:
1009 case NL80211_IFTYPE_MONITOR:
1010 break;
1011 case NL80211_IFTYPE_STATION:
1012 if (enable) {
1013 rcu_read_lock();
1014 sta = ieee80211_find_sta(vif, vif->bss_conf.bssid);
1015 /* TODO: enable BSS_INFO_UAPSD & BSS_INFO_PM */
1016 if (sta) {
1017 struct mt76_wcid *wcid;
1018
1019 wcid = (struct mt76_wcid *)sta->drv_priv;
1020 sta_wlan_idx = wcid->idx;
1021 }
1022 rcu_read_unlock();
1023 }
1024 type = CONNECTION_INFRA_STA;
1025 break;
1026 case NL80211_IFTYPE_ADHOC:
1027 type = CONNECTION_IBSS_ADHOC;
1028 break;
1029 default:
1030 WARN_ON(1);
1031 break;
1032 }
1033
1034 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_BASIC, sizeof(*bss));
1035
1036 bss = (struct mt76_connac_bss_basic_tlv *)tlv;
1037 bss->bcn_interval = cpu_to_le16(link_conf->beacon_int);
1038 bss->dtim_period = link_conf->dtim_period;
1039 bss->bmc_tx_wlan_idx = cpu_to_le16(wlan_idx);
1040 bss->sta_idx = cpu_to_le16(sta_wlan_idx);
1041 bss->conn_type = cpu_to_le32(type);
1042 bss->omac_idx = mvif->omac_idx;
1043 bss->band_idx = mvif->band_idx;
1044 bss->wmm_idx = mvif->wmm_idx;
1045 bss->conn_state = !enable;
1046 bss->active = enable;
1047
1048 idx = mvif->omac_idx > EXT_BSSID_START ? HW_BSSID_0 : mvif->omac_idx;
1049 bss->hw_bss_idx = idx;
1050
1051 if (vif->type == NL80211_IFTYPE_MONITOR) {
1052 memcpy(bss->bssid, phy->macaddr, ETH_ALEN);
1053 return 0;
1054 }
1055
1056 memcpy(bss->bssid, link_conf->bssid, ETH_ALEN);
1057 bss->bcn_interval = cpu_to_le16(link_conf->beacon_int);
1058 bss->dtim_period = vif->bss_conf.dtim_period;
1059 bss->phymode = mt76_connac_get_phy_mode(phy, vif,
1060 chandef->chan->band, NULL);
1061 bss->phymode_ext = mt76_connac_get_phy_mode_ext(phy, &vif->bss_conf,
1062 chandef->chan->band);
1063
1064 return 0;
1065 }
1066
1067 static struct sk_buff *
__mt7996_mcu_alloc_bss_req(struct mt76_dev * dev,struct mt76_vif_link * mvif,int len)1068 __mt7996_mcu_alloc_bss_req(struct mt76_dev *dev, struct mt76_vif_link *mvif, int len)
1069 {
1070 struct bss_req_hdr hdr = {
1071 .bss_idx = mvif->idx,
1072 };
1073 struct sk_buff *skb;
1074
1075 skb = mt76_mcu_msg_alloc(dev, NULL, len);
1076 if (!skb)
1077 return ERR_PTR(-ENOMEM);
1078
1079 skb_put_data(skb, &hdr, sizeof(hdr));
1080
1081 return skb;
1082 }
1083
mt7996_mcu_add_bss_info(struct mt7996_phy * phy,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct mt76_vif_link * mlink,struct mt7996_sta_link * msta_link,int enable)1084 int mt7996_mcu_add_bss_info(struct mt7996_phy *phy, struct ieee80211_vif *vif,
1085 struct ieee80211_bss_conf *link_conf,
1086 struct mt76_vif_link *mlink,
1087 struct mt7996_sta_link *msta_link, int enable)
1088 {
1089 struct mt7996_dev *dev = phy->dev;
1090 struct sk_buff *skb;
1091
1092 if (mlink->omac_idx >= REPEATER_BSSID_START) {
1093 mt7996_mcu_muar_config(dev, mlink, link_conf->addr, false, enable);
1094 mt7996_mcu_muar_config(dev, mlink, link_conf->bssid, true, enable);
1095 }
1096
1097 skb = __mt7996_mcu_alloc_bss_req(&dev->mt76, mlink,
1098 MT7996_BSS_UPDATE_MAX_SIZE);
1099 if (IS_ERR(skb))
1100 return PTR_ERR(skb);
1101
1102 /* bss_basic must be first */
1103 mt7996_mcu_bss_basic_tlv(skb, vif, link_conf, mlink, phy->mt76,
1104 msta_link->wcid.idx, enable);
1105 mt7996_mcu_bss_sec_tlv(skb, mlink);
1106
1107 if (vif->type == NL80211_IFTYPE_MONITOR)
1108 goto out;
1109
1110 if (enable) {
1111 mt7996_mcu_bss_rfch_tlv(skb, phy);
1112 mt7996_mcu_bss_bmc_tlv(skb, mlink, phy);
1113 mt7996_mcu_bss_ra_tlv(skb, phy);
1114 mt7996_mcu_bss_txcmd_tlv(skb, true);
1115 mt7996_mcu_bss_ifs_timing_tlv(skb, phy);
1116
1117 if (vif->bss_conf.he_support)
1118 mt7996_mcu_bss_he_tlv(skb, vif, link_conf, phy);
1119
1120 /* this tag is necessary no matter if the vif is MLD */
1121 mt7996_mcu_bss_mld_tlv(skb, mlink);
1122 }
1123
1124 mt7996_mcu_bss_mbssid_tlv(skb, link_conf, enable);
1125
1126 out:
1127 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1128 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
1129 }
1130
mt7996_mcu_set_timing(struct mt7996_phy * phy,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf)1131 int mt7996_mcu_set_timing(struct mt7996_phy *phy, struct ieee80211_vif *vif,
1132 struct ieee80211_bss_conf *link_conf)
1133 {
1134 struct mt7996_dev *dev = phy->dev;
1135 struct mt76_vif_link *mlink = mt76_vif_conf_link(&dev->mt76, vif, link_conf);
1136 struct sk_buff *skb;
1137
1138 skb = __mt7996_mcu_alloc_bss_req(&dev->mt76, mlink,
1139 MT7996_BSS_UPDATE_MAX_SIZE);
1140 if (IS_ERR(skb))
1141 return PTR_ERR(skb);
1142
1143 mt7996_mcu_bss_ifs_timing_tlv(skb, phy);
1144
1145 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1146 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
1147 }
1148
1149 static int
mt7996_mcu_sta_ba(struct mt7996_dev * dev,struct mt76_vif_link * mvif,struct ieee80211_ampdu_params * params,bool enable,bool tx)1150 mt7996_mcu_sta_ba(struct mt7996_dev *dev, struct mt76_vif_link *mvif,
1151 struct ieee80211_ampdu_params *params,
1152 bool enable, bool tx)
1153 {
1154 struct mt76_wcid *wcid = (struct mt76_wcid *)params->sta->drv_priv;
1155 struct sta_rec_ba_uni *ba;
1156 struct sk_buff *skb;
1157 struct tlv *tlv;
1158
1159 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, mvif, wcid,
1160 MT7996_STA_UPDATE_MAX_SIZE);
1161 if (IS_ERR(skb))
1162 return PTR_ERR(skb);
1163
1164 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_BA, sizeof(*ba));
1165
1166 ba = (struct sta_rec_ba_uni *)tlv;
1167 ba->ba_type = tx ? MT_BA_TYPE_ORIGINATOR : MT_BA_TYPE_RECIPIENT;
1168 ba->winsize = cpu_to_le16(params->buf_size);
1169 ba->ssn = cpu_to_le16(params->ssn);
1170 ba->ba_en = enable << params->tid;
1171 ba->amsdu = params->amsdu;
1172 ba->tid = params->tid;
1173 ba->ba_rdd_rro = !tx && enable && dev->has_rro;
1174
1175 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1176 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
1177 }
1178
1179 /** starec & wtbl **/
mt7996_mcu_add_tx_ba(struct mt7996_dev * dev,struct ieee80211_ampdu_params * params,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link,bool enable)1180 int mt7996_mcu_add_tx_ba(struct mt7996_dev *dev,
1181 struct ieee80211_ampdu_params *params,
1182 struct mt7996_vif_link *link,
1183 struct mt7996_sta_link *msta_link, bool enable)
1184 {
1185 if (enable && !params->amsdu)
1186 msta_link->wcid.amsdu = false;
1187
1188 return mt7996_mcu_sta_ba(dev, &link->mt76, params, enable, true);
1189 }
1190
mt7996_mcu_add_rx_ba(struct mt7996_dev * dev,struct ieee80211_ampdu_params * params,struct mt7996_vif_link * link,bool enable)1191 int mt7996_mcu_add_rx_ba(struct mt7996_dev *dev,
1192 struct ieee80211_ampdu_params *params,
1193 struct mt7996_vif_link *link, bool enable)
1194 {
1195 return mt7996_mcu_sta_ba(dev, &link->mt76, params, enable, false);
1196 }
1197
1198 static void
mt7996_mcu_sta_he_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link)1199 mt7996_mcu_sta_he_tlv(struct sk_buff *skb,
1200 struct ieee80211_link_sta *link_sta,
1201 struct mt7996_vif_link *link)
1202 {
1203 struct ieee80211_he_cap_elem *elem = &link_sta->he_cap.he_cap_elem;
1204 struct ieee80211_he_mcs_nss_supp mcs_map;
1205 struct sta_rec_he_v2 *he;
1206 struct tlv *tlv;
1207 int i = 0;
1208
1209 if (!link_sta->he_cap.has_he)
1210 return;
1211
1212 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HE_V2, sizeof(*he));
1213
1214 he = (struct sta_rec_he_v2 *)tlv;
1215 for (i = 0; i < 11; i++) {
1216 if (i < 6)
1217 he->he_mac_cap[i] = elem->mac_cap_info[i];
1218 he->he_phy_cap[i] = elem->phy_cap_info[i];
1219 }
1220
1221 mcs_map = link_sta->he_cap.he_mcs_nss_supp;
1222 switch (link_sta->bandwidth) {
1223 case IEEE80211_STA_RX_BW_160:
1224 if (elem->phy_cap_info[0] &
1225 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G)
1226 mt7996_mcu_set_sta_he_mcs(link_sta, link,
1227 &he->max_nss_mcs[CMD_HE_MCS_BW8080],
1228 le16_to_cpu(mcs_map.rx_mcs_80p80));
1229
1230 mt7996_mcu_set_sta_he_mcs(link_sta, link,
1231 &he->max_nss_mcs[CMD_HE_MCS_BW160],
1232 le16_to_cpu(mcs_map.rx_mcs_160));
1233 fallthrough;
1234 default:
1235 mt7996_mcu_set_sta_he_mcs(link_sta, link,
1236 &he->max_nss_mcs[CMD_HE_MCS_BW80],
1237 le16_to_cpu(mcs_map.rx_mcs_80));
1238 break;
1239 }
1240
1241 he->pkt_ext = 2;
1242 }
1243
1244 static void
mt7996_mcu_sta_he_6g_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta)1245 mt7996_mcu_sta_he_6g_tlv(struct sk_buff *skb,
1246 struct ieee80211_link_sta *link_sta)
1247 {
1248 struct sta_rec_he_6g_capa *he_6g;
1249 struct tlv *tlv;
1250
1251 if (!link_sta->he_6ghz_capa.capa)
1252 return;
1253
1254 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HE_6G, sizeof(*he_6g));
1255
1256 he_6g = (struct sta_rec_he_6g_capa *)tlv;
1257 he_6g->capa = link_sta->he_6ghz_capa.capa;
1258 }
1259
1260 static void
mt7996_mcu_sta_eht_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta)1261 mt7996_mcu_sta_eht_tlv(struct sk_buff *skb,
1262 struct ieee80211_link_sta *link_sta)
1263 {
1264 struct mt7996_sta *msta = (struct mt7996_sta *)link_sta->sta->drv_priv;
1265 struct ieee80211_vif *vif = container_of((void *)msta->vif,
1266 struct ieee80211_vif, drv_priv);
1267 struct ieee80211_eht_mcs_nss_supp *mcs_map;
1268 struct ieee80211_eht_cap_elem_fixed *elem;
1269 struct sta_rec_eht *eht;
1270 struct tlv *tlv;
1271
1272 if (!link_sta->eht_cap.has_eht)
1273 return;
1274
1275 mcs_map = &link_sta->eht_cap.eht_mcs_nss_supp;
1276 elem = &link_sta->eht_cap.eht_cap_elem;
1277
1278 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_EHT, sizeof(*eht));
1279
1280 eht = (struct sta_rec_eht *)tlv;
1281 eht->tid_bitmap = 0xff;
1282 eht->mac_cap = cpu_to_le16(*(u16 *)elem->mac_cap_info);
1283 eht->phy_cap = cpu_to_le64(*(u64 *)elem->phy_cap_info);
1284 eht->phy_cap_ext = cpu_to_le64(elem->phy_cap_info[8]);
1285
1286 if (vif->type != NL80211_IFTYPE_STATION &&
1287 (link_sta->he_cap.he_cap_elem.phy_cap_info[0] &
1288 (IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_IN_2G |
1289 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_80MHZ_IN_5G |
1290 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G |
1291 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G)) == 0) {
1292 memcpy(eht->mcs_map_bw20, &mcs_map->only_20mhz,
1293 sizeof(eht->mcs_map_bw20));
1294 return;
1295 }
1296
1297 memcpy(eht->mcs_map_bw80, &mcs_map->bw._80, sizeof(eht->mcs_map_bw80));
1298 memcpy(eht->mcs_map_bw160, &mcs_map->bw._160, sizeof(eht->mcs_map_bw160));
1299 memcpy(eht->mcs_map_bw320, &mcs_map->bw._320, sizeof(eht->mcs_map_bw320));
1300 }
1301
1302 static void
mt7996_mcu_sta_ht_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta)1303 mt7996_mcu_sta_ht_tlv(struct sk_buff *skb, struct ieee80211_link_sta *link_sta)
1304 {
1305 struct sta_rec_ht_uni *ht;
1306 struct tlv *tlv;
1307
1308 if (!link_sta->ht_cap.ht_supported)
1309 return;
1310
1311 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HT, sizeof(*ht));
1312
1313 ht = (struct sta_rec_ht_uni *)tlv;
1314 ht->ht_cap = cpu_to_le16(link_sta->ht_cap.cap);
1315 ht->ampdu_param = u8_encode_bits(link_sta->ht_cap.ampdu_factor,
1316 IEEE80211_HT_AMPDU_PARM_FACTOR) |
1317 u8_encode_bits(link_sta->ht_cap.ampdu_density,
1318 IEEE80211_HT_AMPDU_PARM_DENSITY);
1319 }
1320
1321 static void
mt7996_mcu_sta_vht_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta)1322 mt7996_mcu_sta_vht_tlv(struct sk_buff *skb, struct ieee80211_link_sta *link_sta)
1323 {
1324 struct sta_rec_vht *vht;
1325 struct tlv *tlv;
1326
1327 /* For 6G band, this tlv is necessary to let hw work normally */
1328 if (!link_sta->he_6ghz_capa.capa && !link_sta->vht_cap.vht_supported)
1329 return;
1330
1331 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_VHT, sizeof(*vht));
1332
1333 vht = (struct sta_rec_vht *)tlv;
1334 vht->vht_cap = cpu_to_le32(link_sta->vht_cap.cap);
1335 vht->vht_rx_mcs_map = link_sta->vht_cap.vht_mcs.rx_mcs_map;
1336 vht->vht_tx_mcs_map = link_sta->vht_cap.vht_mcs.tx_mcs_map;
1337 }
1338
1339 static void
mt7996_mcu_sta_amsdu_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_vif * vif,struct ieee80211_link_sta * link_sta,struct mt7996_sta_link * msta_link)1340 mt7996_mcu_sta_amsdu_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1341 struct ieee80211_vif *vif,
1342 struct ieee80211_link_sta *link_sta,
1343 struct mt7996_sta_link *msta_link)
1344 {
1345 struct sta_rec_amsdu *amsdu;
1346 struct tlv *tlv;
1347
1348 if (vif->type != NL80211_IFTYPE_STATION &&
1349 vif->type != NL80211_IFTYPE_MESH_POINT &&
1350 vif->type != NL80211_IFTYPE_AP)
1351 return;
1352
1353 if (!link_sta->agg.max_amsdu_len)
1354 return;
1355
1356 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HW_AMSDU, sizeof(*amsdu));
1357 amsdu = (struct sta_rec_amsdu *)tlv;
1358 amsdu->max_amsdu_num = 8;
1359 amsdu->amsdu_en = true;
1360 msta_link->wcid.amsdu = true;
1361
1362 switch (link_sta->agg.max_amsdu_len) {
1363 case IEEE80211_MAX_MPDU_LEN_VHT_11454:
1364 amsdu->max_mpdu_size =
1365 IEEE80211_VHT_CAP_MAX_MPDU_LENGTH_11454;
1366 return;
1367 case IEEE80211_MAX_MPDU_LEN_HT_7935:
1368 case IEEE80211_MAX_MPDU_LEN_VHT_7991:
1369 amsdu->max_mpdu_size = IEEE80211_VHT_CAP_MAX_MPDU_LENGTH_7991;
1370 return;
1371 default:
1372 amsdu->max_mpdu_size = IEEE80211_VHT_CAP_MAX_MPDU_LENGTH_3895;
1373 return;
1374 }
1375 }
1376
1377 static void
mt7996_mcu_sta_muru_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta)1378 mt7996_mcu_sta_muru_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1379 struct ieee80211_bss_conf *link_conf,
1380 struct ieee80211_link_sta *link_sta)
1381 {
1382 struct ieee80211_he_cap_elem *elem = &link_sta->he_cap.he_cap_elem;
1383 struct sta_rec_muru *muru;
1384 struct tlv *tlv;
1385
1386 if (link_conf->vif->type != NL80211_IFTYPE_STATION &&
1387 link_conf->vif->type != NL80211_IFTYPE_AP)
1388 return;
1389
1390 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_MURU, sizeof(*muru));
1391
1392 muru = (struct sta_rec_muru *)tlv;
1393 muru->cfg.mimo_dl_en = link_conf->eht_mu_beamformer ||
1394 link_conf->he_mu_beamformer ||
1395 link_conf->vht_mu_beamformer ||
1396 link_conf->vht_mu_beamformee;
1397 muru->cfg.ofdma_dl_en = true;
1398
1399 if (link_sta->vht_cap.vht_supported)
1400 muru->mimo_dl.vht_mu_bfee =
1401 !!(link_sta->vht_cap.cap & IEEE80211_VHT_CAP_MU_BEAMFORMEE_CAPABLE);
1402
1403 if (!link_sta->he_cap.has_he)
1404 return;
1405
1406 muru->mimo_dl.partial_bw_dl_mimo =
1407 HE_PHY(CAP6_PARTIAL_BANDWIDTH_DL_MUMIMO, elem->phy_cap_info[6]);
1408
1409 muru->mimo_ul.full_ul_mimo =
1410 HE_PHY(CAP2_UL_MU_FULL_MU_MIMO, elem->phy_cap_info[2]);
1411 muru->mimo_ul.partial_ul_mimo =
1412 HE_PHY(CAP2_UL_MU_PARTIAL_MU_MIMO, elem->phy_cap_info[2]);
1413
1414 muru->ofdma_dl.punc_pream_rx =
1415 HE_PHY(CAP1_PREAMBLE_PUNC_RX_MASK, elem->phy_cap_info[1]);
1416 muru->ofdma_dl.he_20m_in_40m_2g =
1417 HE_PHY(CAP8_20MHZ_IN_40MHZ_HE_PPDU_IN_2G, elem->phy_cap_info[8]);
1418 muru->ofdma_dl.he_20m_in_160m =
1419 HE_PHY(CAP8_20MHZ_IN_160MHZ_HE_PPDU, elem->phy_cap_info[8]);
1420 muru->ofdma_dl.he_80m_in_160m =
1421 HE_PHY(CAP8_80MHZ_IN_160MHZ_HE_PPDU, elem->phy_cap_info[8]);
1422
1423 muru->ofdma_ul.t_frame_dur =
1424 HE_MAC(CAP1_TF_MAC_PAD_DUR_MASK, elem->mac_cap_info[1]);
1425 muru->ofdma_ul.mu_cascading =
1426 HE_MAC(CAP2_MU_CASCADING, elem->mac_cap_info[2]);
1427 muru->ofdma_ul.uo_ra =
1428 HE_MAC(CAP3_OFDMA_RA, elem->mac_cap_info[3]);
1429 muru->ofdma_ul.rx_ctrl_frame_to_mbss =
1430 HE_MAC(CAP3_RX_CTRL_FRAME_TO_MULTIBSS, elem->mac_cap_info[3]);
1431 }
1432
1433 static inline bool
mt7996_is_ebf_supported(struct mt7996_phy * phy,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,bool bfee)1434 mt7996_is_ebf_supported(struct mt7996_phy *phy,
1435 struct ieee80211_bss_conf *link_conf,
1436 struct ieee80211_link_sta *link_sta, bool bfee)
1437 {
1438 int sts = hweight16(phy->mt76->chainmask);
1439
1440 if (link_conf->vif->type != NL80211_IFTYPE_STATION &&
1441 link_conf->vif->type != NL80211_IFTYPE_AP)
1442 return false;
1443
1444 if (!bfee && sts < 2)
1445 return false;
1446
1447 if (link_sta->eht_cap.has_eht) {
1448 struct ieee80211_sta_eht_cap *pc = &link_sta->eht_cap;
1449 struct ieee80211_eht_cap_elem_fixed *pe = &pc->eht_cap_elem;
1450
1451 if (bfee)
1452 return link_conf->eht_su_beamformee &&
1453 EHT_PHY(CAP0_SU_BEAMFORMER, pe->phy_cap_info[0]);
1454 else
1455 return link_conf->eht_su_beamformer &&
1456 EHT_PHY(CAP0_SU_BEAMFORMEE, pe->phy_cap_info[0]);
1457 }
1458
1459 if (link_sta->he_cap.has_he) {
1460 struct ieee80211_he_cap_elem *pe = &link_sta->he_cap.he_cap_elem;
1461
1462 if (bfee)
1463 return link_conf->he_su_beamformee &&
1464 HE_PHY(CAP3_SU_BEAMFORMER, pe->phy_cap_info[3]);
1465 else
1466 return link_conf->he_su_beamformer &&
1467 HE_PHY(CAP4_SU_BEAMFORMEE, pe->phy_cap_info[4]);
1468 }
1469
1470 if (link_sta->vht_cap.vht_supported) {
1471 u32 cap = link_sta->vht_cap.cap;
1472
1473 if (bfee)
1474 return link_conf->vht_su_beamformee &&
1475 (cap & IEEE80211_VHT_CAP_SU_BEAMFORMER_CAPABLE);
1476 else
1477 return link_conf->vht_su_beamformer &&
1478 (cap & IEEE80211_VHT_CAP_SU_BEAMFORMEE_CAPABLE);
1479 }
1480
1481 return false;
1482 }
1483
1484 static void
mt7996_mcu_sta_sounding_rate(struct sta_rec_bf * bf,struct mt7996_phy * phy)1485 mt7996_mcu_sta_sounding_rate(struct sta_rec_bf *bf, struct mt7996_phy *phy)
1486 {
1487 bf->sounding_phy = MT_PHY_TYPE_OFDM;
1488 bf->ndp_rate = 0; /* mcs0 */
1489 if (is_mt7996(phy->mt76->dev))
1490 bf->ndpa_rate = MT7996_CFEND_RATE_DEFAULT; /* ofdm 24m */
1491 else
1492 bf->ndpa_rate = MT7992_CFEND_RATE_DEFAULT; /* ofdm 6m */
1493
1494 bf->rept_poll_rate = MT7996_CFEND_RATE_DEFAULT; /* ofdm 24m */
1495 }
1496
1497 static void
mt7996_mcu_sta_bfer_ht(struct ieee80211_link_sta * link_sta,struct mt7996_phy * phy,struct sta_rec_bf * bf,bool explicit)1498 mt7996_mcu_sta_bfer_ht(struct ieee80211_link_sta *link_sta,
1499 struct mt7996_phy *phy, struct sta_rec_bf *bf,
1500 bool explicit)
1501 {
1502 struct ieee80211_mcs_info *mcs = &link_sta->ht_cap.mcs;
1503 u8 n = 0;
1504
1505 bf->tx_mode = MT_PHY_TYPE_HT;
1506
1507 if ((mcs->tx_params & IEEE80211_HT_MCS_TX_RX_DIFF) &&
1508 (mcs->tx_params & IEEE80211_HT_MCS_TX_DEFINED))
1509 n = FIELD_GET(IEEE80211_HT_MCS_TX_MAX_STREAMS_MASK,
1510 mcs->tx_params);
1511 else if (mcs->rx_mask[3])
1512 n = 3;
1513 else if (mcs->rx_mask[2])
1514 n = 2;
1515 else if (mcs->rx_mask[1])
1516 n = 1;
1517
1518 bf->nrow = hweight8(phy->mt76->antenna_mask) - 1;
1519 bf->ncol = min_t(u8, bf->nrow, n);
1520 bf->ibf_ncol = explicit ? min_t(u8, MT7996_IBF_MAX_NC, bf->ncol) :
1521 min_t(u8, MT7996_IBF_MAX_NC, n);
1522 }
1523
1524 static void
mt7996_mcu_sta_bfer_vht(struct ieee80211_link_sta * link_sta,struct mt7996_phy * phy,struct sta_rec_bf * bf,bool explicit)1525 mt7996_mcu_sta_bfer_vht(struct ieee80211_link_sta *link_sta,
1526 struct mt7996_phy *phy, struct sta_rec_bf *bf,
1527 bool explicit)
1528 {
1529 struct ieee80211_sta_vht_cap *pc = &link_sta->vht_cap;
1530 struct ieee80211_sta_vht_cap *vc = &phy->mt76->sband_5g.sband.vht_cap;
1531 u16 mcs_map = le16_to_cpu(pc->vht_mcs.rx_mcs_map);
1532 u8 nss_mcs = mt7996_mcu_get_sta_nss(mcs_map);
1533 u8 tx_ant = hweight8(phy->mt76->antenna_mask) - 1;
1534
1535 bf->tx_mode = MT_PHY_TYPE_VHT;
1536
1537 if (explicit) {
1538 u8 sts, snd_dim;
1539
1540 mt7996_mcu_sta_sounding_rate(bf, phy);
1541
1542 sts = FIELD_GET(IEEE80211_VHT_CAP_BEAMFORMEE_STS_MASK,
1543 pc->cap);
1544 snd_dim = FIELD_GET(IEEE80211_VHT_CAP_SOUNDING_DIMENSIONS_MASK,
1545 vc->cap);
1546 bf->nrow = min_t(u8, min_t(u8, snd_dim, sts), tx_ant);
1547 bf->ncol = min_t(u8, nss_mcs, bf->nrow);
1548 bf->ibf_ncol = min_t(u8, MT7996_IBF_MAX_NC, bf->ncol);
1549
1550 if (link_sta->bandwidth == IEEE80211_STA_RX_BW_160)
1551 bf->nrow = 1;
1552 } else {
1553 bf->nrow = tx_ant;
1554 bf->ncol = min_t(u8, nss_mcs, bf->nrow);
1555 bf->ibf_ncol = min_t(u8, MT7996_IBF_MAX_NC, nss_mcs);
1556
1557 if (link_sta->bandwidth == IEEE80211_STA_RX_BW_160)
1558 bf->ibf_nrow = 1;
1559 }
1560 }
1561
1562 static void
mt7996_mcu_sta_bfer_he(struct ieee80211_link_sta * link_sta,struct ieee80211_vif * vif,struct mt7996_phy * phy,struct sta_rec_bf * bf,bool explicit)1563 mt7996_mcu_sta_bfer_he(struct ieee80211_link_sta *link_sta,
1564 struct ieee80211_vif *vif, struct mt7996_phy *phy,
1565 struct sta_rec_bf *bf, bool explicit)
1566 {
1567 struct ieee80211_sta_he_cap *pc = &link_sta->he_cap;
1568 struct ieee80211_he_cap_elem *pe = &pc->he_cap_elem;
1569 const struct ieee80211_sta_he_cap *vc =
1570 mt76_connac_get_he_phy_cap(phy->mt76, vif);
1571 const struct ieee80211_he_cap_elem *ve = &vc->he_cap_elem;
1572 u16 mcs_map = le16_to_cpu(pc->he_mcs_nss_supp.rx_mcs_80);
1573 u8 nss_mcs = mt7996_mcu_get_sta_nss(mcs_map);
1574 u8 snd_dim, sts;
1575
1576 if (!vc)
1577 return;
1578
1579 bf->tx_mode = MT_PHY_TYPE_HE_SU;
1580
1581 mt7996_mcu_sta_sounding_rate(bf, phy);
1582
1583 bf->trigger_su = HE_PHY(CAP6_TRIG_SU_BEAMFORMING_FB,
1584 pe->phy_cap_info[6]);
1585 bf->trigger_mu = HE_PHY(CAP6_TRIG_MU_BEAMFORMING_PARTIAL_BW_FB,
1586 pe->phy_cap_info[6]);
1587 snd_dim = HE_PHY(CAP5_BEAMFORMEE_NUM_SND_DIM_UNDER_80MHZ_MASK,
1588 ve->phy_cap_info[5]);
1589 sts = HE_PHY(CAP4_BEAMFORMEE_MAX_STS_UNDER_80MHZ_MASK,
1590 pe->phy_cap_info[4]);
1591 bf->nrow = min_t(u8, snd_dim, sts);
1592 bf->ncol = min_t(u8, nss_mcs, bf->nrow);
1593 bf->ibf_ncol = explicit ? min_t(u8, MT7996_IBF_MAX_NC, bf->ncol) :
1594 min_t(u8, MT7996_IBF_MAX_NC, nss_mcs);
1595
1596 if (link_sta->bandwidth != IEEE80211_STA_RX_BW_160)
1597 return;
1598
1599 /* go over for 160MHz and 80p80 */
1600 if (pe->phy_cap_info[0] &
1601 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G) {
1602 mcs_map = le16_to_cpu(pc->he_mcs_nss_supp.rx_mcs_160);
1603 nss_mcs = mt7996_mcu_get_sta_nss(mcs_map);
1604
1605 bf->ncol_gt_bw80 = nss_mcs;
1606 }
1607
1608 if (pe->phy_cap_info[0] &
1609 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G) {
1610 mcs_map = le16_to_cpu(pc->he_mcs_nss_supp.rx_mcs_80p80);
1611 nss_mcs = mt7996_mcu_get_sta_nss(mcs_map);
1612
1613 if (bf->ncol_gt_bw80)
1614 bf->ncol_gt_bw80 = min_t(u8, bf->ncol_gt_bw80, nss_mcs);
1615 else
1616 bf->ncol_gt_bw80 = nss_mcs;
1617 }
1618
1619 snd_dim = HE_PHY(CAP5_BEAMFORMEE_NUM_SND_DIM_ABOVE_80MHZ_MASK,
1620 ve->phy_cap_info[5]);
1621 sts = HE_PHY(CAP4_BEAMFORMEE_MAX_STS_ABOVE_80MHZ_MASK,
1622 pe->phy_cap_info[4]);
1623
1624 bf->nrow_gt_bw80 = min_t(int, snd_dim, sts);
1625 }
1626
1627 static void
mt7996_mcu_sta_bfer_eht(struct ieee80211_link_sta * link_sta,struct ieee80211_vif * vif,struct mt7996_phy * phy,struct sta_rec_bf * bf,bool explicit)1628 mt7996_mcu_sta_bfer_eht(struct ieee80211_link_sta *link_sta,
1629 struct ieee80211_vif *vif, struct mt7996_phy *phy,
1630 struct sta_rec_bf *bf, bool explicit)
1631 {
1632 struct ieee80211_sta_eht_cap *pc = &link_sta->eht_cap;
1633 struct ieee80211_eht_cap_elem_fixed *pe = &pc->eht_cap_elem;
1634 struct ieee80211_eht_mcs_nss_supp *eht_nss = &pc->eht_mcs_nss_supp;
1635 const struct ieee80211_sta_eht_cap *vc =
1636 mt76_connac_get_eht_phy_cap(phy->mt76, vif);
1637 const struct ieee80211_eht_cap_elem_fixed *ve = &vc->eht_cap_elem;
1638 u8 nss_mcs = u8_get_bits(eht_nss->bw._80.rx_tx_mcs9_max_nss,
1639 IEEE80211_EHT_MCS_NSS_RX) - 1;
1640 u8 snd_dim, sts;
1641
1642 bf->tx_mode = MT_PHY_TYPE_EHT_MU;
1643
1644 mt7996_mcu_sta_sounding_rate(bf, phy);
1645
1646 bf->trigger_su = EHT_PHY(CAP3_TRIG_SU_BF_FDBK, pe->phy_cap_info[3]);
1647 bf->trigger_mu = EHT_PHY(CAP3_TRIG_MU_BF_PART_BW_FDBK, pe->phy_cap_info[3]);
1648 snd_dim = EHT_PHY(CAP2_SOUNDING_DIM_80MHZ_MASK, ve->phy_cap_info[2]);
1649 sts = EHT_PHY(CAP0_BEAMFORMEE_SS_80MHZ_MASK, pe->phy_cap_info[0]) +
1650 (EHT_PHY(CAP1_BEAMFORMEE_SS_80MHZ_MASK, pe->phy_cap_info[1]) << 1);
1651 bf->nrow = min_t(u8, snd_dim, sts);
1652 bf->ncol = min_t(u8, nss_mcs, bf->nrow);
1653 bf->ibf_ncol = explicit ? min_t(u8, MT7996_IBF_MAX_NC, bf->ncol) :
1654 min_t(u8, MT7996_IBF_MAX_NC, nss_mcs);
1655
1656 if (link_sta->bandwidth < IEEE80211_STA_RX_BW_160)
1657 return;
1658
1659 switch (link_sta->bandwidth) {
1660 case IEEE80211_STA_RX_BW_160:
1661 snd_dim = EHT_PHY(CAP2_SOUNDING_DIM_160MHZ_MASK, ve->phy_cap_info[2]);
1662 sts = EHT_PHY(CAP1_BEAMFORMEE_SS_160MHZ_MASK, pe->phy_cap_info[1]);
1663 nss_mcs = u8_get_bits(eht_nss->bw._160.rx_tx_mcs9_max_nss,
1664 IEEE80211_EHT_MCS_NSS_RX) - 1;
1665
1666 bf->nrow_gt_bw80 = min_t(u8, snd_dim, sts);
1667 bf->ncol_gt_bw80 = nss_mcs;
1668 break;
1669 case IEEE80211_STA_RX_BW_320:
1670 snd_dim = EHT_PHY(CAP2_SOUNDING_DIM_320MHZ_MASK, ve->phy_cap_info[2]) +
1671 (EHT_PHY(CAP3_SOUNDING_DIM_320MHZ_MASK,
1672 ve->phy_cap_info[3]) << 1);
1673 sts = EHT_PHY(CAP1_BEAMFORMEE_SS_320MHZ_MASK, pe->phy_cap_info[1]);
1674 nss_mcs = u8_get_bits(eht_nss->bw._320.rx_tx_mcs9_max_nss,
1675 IEEE80211_EHT_MCS_NSS_RX) - 1;
1676
1677 bf->nrow_gt_bw80 = min_t(u8, snd_dim, sts) << 4;
1678 bf->ncol_gt_bw80 = nss_mcs << 4;
1679 break;
1680 default:
1681 break;
1682 }
1683 }
1684
1685 static void
mt7996_mcu_sta_bfer_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link)1686 mt7996_mcu_sta_bfer_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1687 struct ieee80211_bss_conf *link_conf,
1688 struct ieee80211_link_sta *link_sta,
1689 struct mt7996_vif_link *link)
1690 {
1691 #define EBF_MODE BIT(0)
1692 #define IBF_MODE BIT(1)
1693 #define BF_MAT_ORDER 4
1694 struct ieee80211_vif *vif = link_conf->vif;
1695 struct mt7996_phy *phy = link->phy;
1696 int tx_ant = hweight16(phy->mt76->chainmask) - 1;
1697 struct sta_rec_bf *bf;
1698 struct tlv *tlv;
1699 static const u8 matrix[BF_MAT_ORDER][BF_MAT_ORDER] = {
1700 {0, 0, 0, 0},
1701 {1, 1, 0, 0}, /* 2x1, 2x2, 2x3, 2x4 */
1702 {2, 4, 4, 0}, /* 3x1, 3x2, 3x3, 3x4 */
1703 {3, 5, 6, 0} /* 4x1, 4x2, 4x3, 4x4 */
1704 };
1705 bool ebf;
1706
1707 if (!(link_sta->ht_cap.ht_supported || link_sta->he_cap.has_he))
1708 return;
1709
1710 ebf = mt7996_is_ebf_supported(phy, link_conf, link_sta, false);
1711 if (!ebf && !dev->ibf)
1712 return;
1713
1714 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_BF, sizeof(*bf));
1715 bf = (struct sta_rec_bf *)tlv;
1716
1717 /* he/eht: eBF only, except mt7992 that has 5T on 5GHz also supports iBF
1718 * vht: support eBF and iBF
1719 * ht: iBF only, since mac80211 lacks of eBF support
1720 */
1721 if (link_sta->eht_cap.has_eht)
1722 mt7996_mcu_sta_bfer_eht(link_sta, vif, link->phy, bf, ebf);
1723 else if (link_sta->he_cap.has_he)
1724 mt7996_mcu_sta_bfer_he(link_sta, vif, link->phy, bf, ebf);
1725 else if (link_sta->vht_cap.vht_supported)
1726 mt7996_mcu_sta_bfer_vht(link_sta, link->phy, bf, ebf);
1727 else if (link_sta->ht_cap.ht_supported)
1728 mt7996_mcu_sta_bfer_ht(link_sta, link->phy, bf, ebf);
1729 else
1730 return;
1731
1732 bf->bf_cap = ebf ? EBF_MODE : (dev->ibf ? IBF_MODE : 0);
1733 if (is_mt7992(&dev->mt76) && tx_ant == 4)
1734 bf->bf_cap |= IBF_MODE;
1735
1736 bf->bw = link_sta->bandwidth;
1737 bf->ibf_dbw = link_sta->bandwidth;
1738 bf->ibf_nrow = tx_ant;
1739
1740 if (link_sta->eht_cap.has_eht || link_sta->he_cap.has_he)
1741 bf->ibf_timeout = is_mt7996(&dev->mt76) ? MT7996_IBF_TIMEOUT :
1742 MT7992_IBF_TIMEOUT;
1743 else if (!ebf && link_sta->bandwidth <= IEEE80211_STA_RX_BW_40 && !bf->ncol)
1744 bf->ibf_timeout = MT7996_IBF_TIMEOUT_LEGACY;
1745 else
1746 bf->ibf_timeout = MT7996_IBF_TIMEOUT;
1747
1748 if (bf->ncol < BF_MAT_ORDER) {
1749 if (ebf)
1750 bf->mem_20m = tx_ant < BF_MAT_ORDER ?
1751 matrix[tx_ant][bf->ncol] : 0;
1752 else
1753 bf->mem_20m = bf->nrow < BF_MAT_ORDER ?
1754 matrix[bf->nrow][bf->ncol] : 0;
1755 }
1756
1757 switch (link_sta->bandwidth) {
1758 case IEEE80211_STA_RX_BW_160:
1759 case IEEE80211_STA_RX_BW_80:
1760 bf->mem_total = bf->mem_20m * 2;
1761 break;
1762 case IEEE80211_STA_RX_BW_40:
1763 bf->mem_total = bf->mem_20m;
1764 break;
1765 case IEEE80211_STA_RX_BW_20:
1766 default:
1767 break;
1768 }
1769 }
1770
1771 static void
mt7996_mcu_sta_bfee_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link)1772 mt7996_mcu_sta_bfee_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1773 struct ieee80211_bss_conf *link_conf,
1774 struct ieee80211_link_sta *link_sta,
1775 struct mt7996_vif_link *link)
1776 {
1777 struct mt7996_phy *phy = link->phy;
1778 int tx_ant = hweight8(phy->mt76->antenna_mask) - 1;
1779 struct sta_rec_bfee *bfee;
1780 struct tlv *tlv;
1781 u8 nrow = 0;
1782
1783 if (!(link_sta->vht_cap.vht_supported || link_sta->he_cap.has_he))
1784 return;
1785
1786 if (!mt7996_is_ebf_supported(phy, link_conf, link_sta, true))
1787 return;
1788
1789 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_BFEE, sizeof(*bfee));
1790 bfee = (struct sta_rec_bfee *)tlv;
1791
1792 if (link_sta->he_cap.has_he) {
1793 struct ieee80211_he_cap_elem *pe = &link_sta->he_cap.he_cap_elem;
1794
1795 nrow = HE_PHY(CAP5_BEAMFORMEE_NUM_SND_DIM_UNDER_80MHZ_MASK,
1796 pe->phy_cap_info[5]);
1797 } else if (link_sta->vht_cap.vht_supported) {
1798 struct ieee80211_sta_vht_cap *pc = &link_sta->vht_cap;
1799
1800 nrow = FIELD_GET(IEEE80211_VHT_CAP_SOUNDING_DIMENSIONS_MASK,
1801 pc->cap);
1802 }
1803
1804 /* reply with identity matrix to avoid 2x2 BF negative gain */
1805 bfee->fb_identity_matrix = (nrow == 1 && tx_ant == 2);
1806 }
1807
1808 static void
mt7996_mcu_sta_tx_proc_tlv(struct sk_buff * skb)1809 mt7996_mcu_sta_tx_proc_tlv(struct sk_buff *skb)
1810 {
1811 struct sta_rec_tx_proc *tx_proc;
1812 struct tlv *tlv;
1813
1814 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_TX_PROC, sizeof(*tx_proc));
1815
1816 tx_proc = (struct sta_rec_tx_proc *)tlv;
1817 tx_proc->flag = cpu_to_le32(0);
1818 }
1819
1820 static void
mt7996_mcu_sta_hdrt_tlv(struct mt7996_dev * dev,struct sk_buff * skb)1821 mt7996_mcu_sta_hdrt_tlv(struct mt7996_dev *dev, struct sk_buff *skb)
1822 {
1823 struct sta_rec_hdrt *hdrt;
1824 struct tlv *tlv;
1825
1826 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HDRT, sizeof(*hdrt));
1827
1828 hdrt = (struct sta_rec_hdrt *)tlv;
1829 hdrt->hdrt_mode = 1;
1830 }
1831
1832 static void
mt7996_mcu_sta_hdr_trans_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_vif * vif,struct mt76_wcid * wcid)1833 mt7996_mcu_sta_hdr_trans_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1834 struct ieee80211_vif *vif, struct mt76_wcid *wcid)
1835 {
1836 struct sta_rec_hdr_trans *hdr_trans;
1837 struct tlv *tlv;
1838
1839 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HDR_TRANS, sizeof(*hdr_trans));
1840 hdr_trans = (struct sta_rec_hdr_trans *)tlv;
1841 hdr_trans->dis_rx_hdr_tran = true;
1842
1843 if (vif->type == NL80211_IFTYPE_STATION)
1844 hdr_trans->to_ds = true;
1845 else
1846 hdr_trans->from_ds = true;
1847
1848 if (!wcid)
1849 return;
1850
1851 hdr_trans->dis_rx_hdr_tran = !test_bit(MT_WCID_FLAG_HDR_TRANS, &wcid->flags);
1852 if (test_bit(MT_WCID_FLAG_4ADDR, &wcid->flags)) {
1853 hdr_trans->to_ds = true;
1854 hdr_trans->from_ds = true;
1855 }
1856
1857 if (vif->type == NL80211_IFTYPE_MESH_POINT) {
1858 hdr_trans->to_ds = true;
1859 hdr_trans->from_ds = true;
1860 hdr_trans->mesh = true;
1861 }
1862 }
1863
1864 static enum mcu_mmps_mode
mt7996_mcu_get_mmps_mode(enum ieee80211_smps_mode smps)1865 mt7996_mcu_get_mmps_mode(enum ieee80211_smps_mode smps)
1866 {
1867 switch (smps) {
1868 case IEEE80211_SMPS_OFF:
1869 return MCU_MMPS_DISABLE;
1870 case IEEE80211_SMPS_STATIC:
1871 return MCU_MMPS_STATIC;
1872 case IEEE80211_SMPS_DYNAMIC:
1873 return MCU_MMPS_DYNAMIC;
1874 default:
1875 return MCU_MMPS_DISABLE;
1876 }
1877 }
1878
mt7996_mcu_set_fixed_rate_ctrl(struct mt7996_dev * dev,void * data,u16 version)1879 int mt7996_mcu_set_fixed_rate_ctrl(struct mt7996_dev *dev,
1880 void *data, u16 version)
1881 {
1882 struct uni_header hdr = {};
1883 struct ra_fixed_rate *req;
1884 struct sk_buff *skb;
1885 struct tlv *tlv;
1886 int len;
1887
1888 len = sizeof(hdr) + sizeof(*req);
1889
1890 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
1891 if (!skb)
1892 return -ENOMEM;
1893
1894 skb_put_data(skb, &hdr, sizeof(hdr));
1895
1896 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_RA_FIXED_RATE, sizeof(*req));
1897 req = (struct ra_fixed_rate *)tlv;
1898 req->version = cpu_to_le16(version);
1899 memcpy(&req->rate, data, sizeof(req->rate));
1900
1901 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1902 MCU_WM_UNI_CMD(RA), true);
1903 }
1904
mt7996_mcu_set_fixed_field(struct mt7996_dev * dev,struct mt7996_sta * msta,void * data,u8 link_id,u32 field)1905 int mt7996_mcu_set_fixed_field(struct mt7996_dev *dev, struct mt7996_sta *msta,
1906 void *data, u8 link_id, u32 field)
1907 {
1908 struct mt7996_vif *mvif = msta->vif;
1909 struct mt7996_sta_link *msta_link;
1910 struct sta_rec_ra_fixed_uni *ra;
1911 struct sta_phy_uni *phy = data;
1912 struct mt76_vif_link *mlink;
1913 struct sk_buff *skb;
1914 int err = -ENODEV;
1915 struct tlv *tlv;
1916
1917 rcu_read_lock();
1918
1919 mlink = rcu_dereference(mvif->mt76.link[link_id]);
1920 if (!mlink)
1921 goto error_unlock;
1922
1923 msta_link = rcu_dereference(msta->link[link_id]);
1924 if (!msta_link)
1925 goto error_unlock;
1926
1927 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, mlink,
1928 &msta_link->wcid,
1929 MT7996_STA_UPDATE_MAX_SIZE);
1930 if (IS_ERR(skb)) {
1931 err = PTR_ERR(skb);
1932 goto error_unlock;
1933 }
1934
1935 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_RA_UPDATE, sizeof(*ra));
1936 ra = (struct sta_rec_ra_fixed_uni *)tlv;
1937
1938 switch (field) {
1939 case RATE_PARAM_AUTO:
1940 break;
1941 case RATE_PARAM_FIXED:
1942 case RATE_PARAM_FIXED_MCS:
1943 case RATE_PARAM_FIXED_GI:
1944 case RATE_PARAM_FIXED_HE_LTF:
1945 if (phy)
1946 ra->phy = *phy;
1947 break;
1948 case RATE_PARAM_MMPS_UPDATE: {
1949 struct ieee80211_sta *sta = wcid_to_sta(&msta_link->wcid);
1950 struct ieee80211_link_sta *link_sta;
1951
1952 link_sta = rcu_dereference(sta->link[link_id]);
1953 if (!link_sta) {
1954 dev_kfree_skb(skb);
1955 goto error_unlock;
1956 }
1957
1958 ra->mmps_mode = mt7996_mcu_get_mmps_mode(link_sta->smps_mode);
1959 break;
1960 }
1961 default:
1962 break;
1963 }
1964 ra->field = cpu_to_le32(field);
1965
1966 rcu_read_unlock();
1967
1968 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1969 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
1970 error_unlock:
1971 rcu_read_unlock();
1972
1973 return err;
1974 }
1975
1976 static int
mt7996_mcu_add_rate_ctrl_fixed(struct mt7996_dev * dev,struct mt7996_sta * msta,struct ieee80211_vif * vif,u8 link_id)1977 mt7996_mcu_add_rate_ctrl_fixed(struct mt7996_dev *dev, struct mt7996_sta *msta,
1978 struct ieee80211_vif *vif, u8 link_id)
1979 {
1980 struct ieee80211_link_sta *link_sta;
1981 struct cfg80211_bitrate_mask mask;
1982 struct mt7996_sta_link *msta_link;
1983 struct mt7996_vif_link *link;
1984 struct sta_phy_uni phy = {};
1985 struct ieee80211_sta *sta;
1986 int ret, nrates = 0, idx;
1987 enum nl80211_band band;
1988 bool has_he;
1989
1990 #define __sta_phy_bitrate_mask_check(_mcs, _gi, _ht, _he) \
1991 do { \
1992 u8 i, gi = mask.control[band]._gi; \
1993 gi = (_he) ? gi : gi == NL80211_TXRATE_FORCE_SGI; \
1994 phy.sgi = gi; \
1995 phy.he_ltf = mask.control[band].he_ltf; \
1996 for (i = 0; i < ARRAY_SIZE(mask.control[band]._mcs); i++) { \
1997 if (!mask.control[band]._mcs[i]) \
1998 continue; \
1999 nrates += hweight16(mask.control[band]._mcs[i]); \
2000 phy.mcs = ffs(mask.control[band]._mcs[i]) - 1; \
2001 if (_ht) \
2002 phy.mcs += 8 * i; \
2003 } \
2004 } while (0)
2005
2006 rcu_read_lock();
2007
2008 link = mt7996_vif_link(dev, vif, link_id);
2009 if (!link)
2010 goto error_unlock;
2011
2012 msta_link = rcu_dereference(msta->link[link_id]);
2013 if (!msta_link)
2014 goto error_unlock;
2015
2016 sta = wcid_to_sta(&msta_link->wcid);
2017 link_sta = rcu_dereference(sta->link[link_id]);
2018 if (!link_sta)
2019 goto error_unlock;
2020
2021 band = link->phy->mt76->chandef.chan->band;
2022 has_he = link_sta->he_cap.has_he;
2023 mask = link->bitrate_mask;
2024 idx = msta_link->wcid.idx;
2025
2026 if (has_he) {
2027 __sta_phy_bitrate_mask_check(he_mcs, he_gi, 0, 1);
2028 } else if (link_sta->vht_cap.vht_supported) {
2029 __sta_phy_bitrate_mask_check(vht_mcs, gi, 0, 0);
2030 } else if (link_sta->ht_cap.ht_supported) {
2031 __sta_phy_bitrate_mask_check(ht_mcs, gi, 1, 0);
2032 } else {
2033 nrates = hweight32(mask.control[band].legacy);
2034 phy.mcs = ffs(mask.control[band].legacy) - 1;
2035 }
2036
2037 rcu_read_unlock();
2038
2039 #undef __sta_phy_bitrate_mask_check
2040
2041 /* fall back to auto rate control */
2042 if (mask.control[band].gi == NL80211_TXRATE_DEFAULT_GI &&
2043 mask.control[band].he_gi == GENMASK(7, 0) &&
2044 mask.control[band].he_ltf == GENMASK(7, 0) &&
2045 nrates != 1)
2046 return 0;
2047
2048 /* fixed single rate */
2049 if (nrates == 1) {
2050 ret = mt7996_mcu_set_fixed_field(dev, msta, &phy, link_id,
2051 RATE_PARAM_FIXED_MCS);
2052 if (ret)
2053 return ret;
2054 }
2055
2056 /* fixed GI */
2057 if (mask.control[band].gi != NL80211_TXRATE_DEFAULT_GI ||
2058 mask.control[band].he_gi != GENMASK(7, 0)) {
2059 u32 addr;
2060
2061 /* firmware updates only TXCMD but doesn't take WTBL into
2062 * account, so driver should update here to reflect the
2063 * actual txrate hardware sends out.
2064 */
2065 addr = mt7996_mac_wtbl_lmac_addr(dev, idx, 7);
2066 if (has_he)
2067 mt76_rmw_field(dev, addr, GENMASK(31, 24), phy.sgi);
2068 else
2069 mt76_rmw_field(dev, addr, GENMASK(15, 12), phy.sgi);
2070
2071 ret = mt7996_mcu_set_fixed_field(dev, msta, &phy, link_id,
2072 RATE_PARAM_FIXED_GI);
2073 if (ret)
2074 return ret;
2075 }
2076
2077 /* fixed HE_LTF */
2078 if (mask.control[band].he_ltf != GENMASK(7, 0)) {
2079 ret = mt7996_mcu_set_fixed_field(dev, msta, &phy, link_id,
2080 RATE_PARAM_FIXED_HE_LTF);
2081 if (ret)
2082 return ret;
2083 }
2084
2085 return 0;
2086
2087 error_unlock:
2088 rcu_read_unlock();
2089
2090 return -ENODEV;
2091 }
2092
2093 static void
mt7996_mcu_sta_rate_ctrl_tlv(struct sk_buff * skb,struct mt7996_dev * dev,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link)2094 mt7996_mcu_sta_rate_ctrl_tlv(struct sk_buff *skb, struct mt7996_dev *dev,
2095 struct ieee80211_vif *vif,
2096 struct ieee80211_bss_conf *link_conf,
2097 struct ieee80211_link_sta *link_sta,
2098 struct mt7996_vif_link *link)
2099 {
2100 #define INIT_RCPI 180
2101 struct mt76_phy *mphy = link->phy->mt76;
2102 struct cfg80211_chan_def *chandef = &mphy->chandef;
2103 struct cfg80211_bitrate_mask *mask = &link->bitrate_mask;
2104 u32 cap = link_sta->sta->wme ? STA_CAP_WMM : 0;
2105 enum nl80211_band band = chandef->chan->band;
2106 struct sta_rec_ra_uni *ra;
2107 struct tlv *tlv;
2108 u32 supp_rate = link_sta->supp_rates[band];
2109
2110 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_RA, sizeof(*ra));
2111 ra = (struct sta_rec_ra_uni *)tlv;
2112
2113 ra->valid = true;
2114 ra->auto_rate = true;
2115 ra->phy_mode = mt76_connac_get_phy_mode(mphy, vif, band, link_sta);
2116 ra->channel = chandef->chan->hw_value;
2117 ra->bw = (link_sta->bandwidth == IEEE80211_STA_RX_BW_320) ?
2118 CMD_CBW_320MHZ : link_sta->bandwidth;
2119 ra->phy.bw = ra->bw;
2120 ra->mmps_mode = mt7996_mcu_get_mmps_mode(link_sta->smps_mode);
2121
2122 if (supp_rate) {
2123 supp_rate &= mask->control[band].legacy;
2124 ra->rate_len = hweight32(supp_rate);
2125
2126 if (band == NL80211_BAND_2GHZ) {
2127 ra->supp_mode = MODE_CCK;
2128 ra->supp_cck_rate = supp_rate & GENMASK(3, 0);
2129
2130 if (ra->rate_len > 4) {
2131 ra->supp_mode |= MODE_OFDM;
2132 ra->supp_ofdm_rate = supp_rate >> 4;
2133 }
2134 } else {
2135 ra->supp_mode = MODE_OFDM;
2136 ra->supp_ofdm_rate = supp_rate;
2137 }
2138 }
2139
2140 if (link_sta->ht_cap.ht_supported) {
2141 ra->supp_mode |= MODE_HT;
2142 ra->af = link_sta->ht_cap.ampdu_factor;
2143 ra->ht_gf = !!(link_sta->ht_cap.cap & IEEE80211_HT_CAP_GRN_FLD);
2144
2145 cap |= STA_CAP_HT;
2146 if (link_sta->ht_cap.cap & IEEE80211_HT_CAP_SGI_20)
2147 cap |= STA_CAP_SGI_20;
2148 if (link_sta->ht_cap.cap & IEEE80211_HT_CAP_SGI_40)
2149 cap |= STA_CAP_SGI_40;
2150 if (link_sta->ht_cap.cap & IEEE80211_HT_CAP_TX_STBC)
2151 cap |= STA_CAP_TX_STBC;
2152 if (link_sta->ht_cap.cap & IEEE80211_HT_CAP_RX_STBC)
2153 cap |= STA_CAP_RX_STBC;
2154 if (link_conf->ht_ldpc &&
2155 (link_sta->ht_cap.cap & IEEE80211_HT_CAP_LDPC_CODING))
2156 cap |= STA_CAP_LDPC;
2157
2158 mt7996_mcu_set_sta_ht_mcs(link_sta, ra->ht_mcs,
2159 mask->control[band].ht_mcs);
2160 ra->supp_ht_mcs = *(__le32 *)ra->ht_mcs;
2161 }
2162
2163 if (link_sta->vht_cap.vht_supported) {
2164 u8 af;
2165
2166 ra->supp_mode |= MODE_VHT;
2167 af = FIELD_GET(IEEE80211_VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MASK,
2168 link_sta->vht_cap.cap);
2169 ra->af = max_t(u8, ra->af, af);
2170
2171 cap |= STA_CAP_VHT;
2172 if (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_SHORT_GI_80)
2173 cap |= STA_CAP_VHT_SGI_80;
2174 if (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_SHORT_GI_160)
2175 cap |= STA_CAP_VHT_SGI_160;
2176 if (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_TXSTBC)
2177 cap |= STA_CAP_VHT_TX_STBC;
2178 if (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_RXSTBC_1)
2179 cap |= STA_CAP_VHT_RX_STBC;
2180 if ((vif->type != NL80211_IFTYPE_AP || link_conf->vht_ldpc) &&
2181 (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_RXLDPC))
2182 cap |= STA_CAP_VHT_LDPC;
2183
2184 mt7996_mcu_set_sta_vht_mcs(link_sta, ra->supp_vht_mcs,
2185 mask->control[band].vht_mcs);
2186 }
2187
2188 if (link_sta->he_cap.has_he) {
2189 ra->supp_mode |= MODE_HE;
2190 cap |= STA_CAP_HE;
2191
2192 if (link_sta->he_6ghz_capa.capa)
2193 ra->af = le16_get_bits(link_sta->he_6ghz_capa.capa,
2194 IEEE80211_HE_6GHZ_CAP_MAX_AMPDU_LEN_EXP);
2195 }
2196 ra->sta_cap = cpu_to_le32(cap);
2197
2198 memset(ra->rx_rcpi, INIT_RCPI, sizeof(ra->rx_rcpi));
2199 }
2200
mt7996_mcu_add_rate_ctrl(struct mt7996_dev * dev,struct mt7996_sta * msta,struct ieee80211_vif * vif,u8 link_id,bool changed)2201 int mt7996_mcu_add_rate_ctrl(struct mt7996_dev *dev, struct mt7996_sta *msta,
2202 struct ieee80211_vif *vif, u8 link_id,
2203 bool changed)
2204 {
2205 struct ieee80211_bss_conf *link_conf;
2206 struct ieee80211_link_sta *link_sta;
2207 struct mt7996_sta_link *msta_link;
2208 struct mt7996_vif_link *link;
2209 struct ieee80211_sta *sta;
2210 struct sk_buff *skb;
2211 int ret = -ENODEV;
2212
2213 rcu_read_lock();
2214
2215 link = mt7996_vif_link(dev, vif, link_id);
2216 if (!link)
2217 goto error_unlock;
2218
2219 msta_link = rcu_dereference(msta->link[link_id]);
2220 if (!msta_link)
2221 goto error_unlock;
2222
2223 sta = wcid_to_sta(&msta_link->wcid);
2224 link_sta = rcu_dereference(sta->link[link_id]);
2225 if (!link_sta)
2226 goto error_unlock;
2227
2228 link_conf = rcu_dereference(vif->link_conf[link_id]);
2229 if (!link_conf)
2230 goto error_unlock;
2231
2232 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76,
2233 &msta_link->wcid,
2234 MT7996_STA_UPDATE_MAX_SIZE);
2235 if (IS_ERR(skb)) {
2236 ret = PTR_ERR(skb);
2237 goto error_unlock;
2238 }
2239
2240 /* firmware rc algorithm refers to sta_rec_he for HE control.
2241 * once dev->rc_work changes the settings driver should also
2242 * update sta_rec_he here.
2243 */
2244 if (changed)
2245 mt7996_mcu_sta_he_tlv(skb, link_sta, link);
2246
2247 /* sta_rec_ra accommodates BW, NSS and only MCS range format
2248 * i.e 0-{7,8,9} for VHT.
2249 */
2250 mt7996_mcu_sta_rate_ctrl_tlv(skb, dev, vif, link_conf, link_sta, link);
2251
2252 rcu_read_unlock();
2253
2254 ret = mt76_mcu_skb_send_msg(&dev->mt76, skb,
2255 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
2256 if (ret)
2257 return ret;
2258
2259 return mt7996_mcu_add_rate_ctrl_fixed(dev, msta, vif, link_id);
2260
2261 error_unlock:
2262 rcu_read_unlock();
2263
2264 return ret;
2265 }
2266
2267 static int
mt7996_mcu_add_group(struct mt7996_dev * dev,struct ieee80211_vif * vif,struct ieee80211_sta * sta)2268 mt7996_mcu_add_group(struct mt7996_dev *dev, struct ieee80211_vif *vif,
2269 struct ieee80211_sta *sta)
2270 {
2271 #define MT_STA_BSS_GROUP 1
2272 struct mt7996_vif *mvif = (struct mt7996_vif *)vif->drv_priv;
2273 struct mt7996_sta_link *msta_link;
2274 struct mt7996_sta *msta;
2275 struct {
2276 u8 __rsv1[4];
2277
2278 __le16 tag;
2279 __le16 len;
2280 __le16 wlan_idx;
2281 u8 __rsv2[2];
2282 __le32 action;
2283 __le32 val;
2284 u8 __rsv3[8];
2285 } __packed req = {
2286 .tag = cpu_to_le16(UNI_VOW_DRR_CTRL),
2287 .len = cpu_to_le16(sizeof(req) - 4),
2288 .action = cpu_to_le32(MT_STA_BSS_GROUP),
2289 .val = cpu_to_le32(mvif->deflink.mt76.idx % 16),
2290 };
2291
2292 msta = sta ? (struct mt7996_sta *)sta->drv_priv : NULL;
2293 msta_link = msta ? &msta->deflink : &mvif->deflink.msta_link;
2294 req.wlan_idx = cpu_to_le16(msta_link->wcid.idx);
2295
2296 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(VOW), &req,
2297 sizeof(req), true);
2298 }
2299
2300 static void
mt7996_mcu_sta_mld_setup_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_vif * vif,struct ieee80211_sta * sta)2301 mt7996_mcu_sta_mld_setup_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
2302 struct ieee80211_vif *vif,
2303 struct ieee80211_sta *sta)
2304 {
2305 struct mt7996_sta *msta = (struct mt7996_sta *)sta->drv_priv;
2306 unsigned int nlinks = hweight16(sta->valid_links);
2307 struct mld_setup_link *mld_setup_link;
2308 struct ieee80211_link_sta *link_sta;
2309 struct sta_rec_mld_setup *mld_setup;
2310 struct mt7996_sta_link *msta_link;
2311 unsigned int link_id;
2312 struct tlv *tlv;
2313
2314 msta_link = mt76_dereference(msta->link[msta->deflink_id], &dev->mt76);
2315 if (!msta_link)
2316 return;
2317
2318 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_MLD,
2319 sizeof(struct sta_rec_mld_setup) +
2320 sizeof(struct mld_setup_link) * nlinks);
2321
2322 mld_setup = (struct sta_rec_mld_setup *)tlv;
2323 memcpy(mld_setup->mld_addr, sta->addr, ETH_ALEN);
2324 mld_setup->setup_wcid = cpu_to_le16(msta_link->wcid.idx);
2325 mld_setup->primary_id = cpu_to_le16(msta_link->wcid.idx);
2326
2327 if (nlinks > 1) {
2328 link_id = __ffs(sta->valid_links & ~BIT(msta->deflink_id));
2329 msta_link = mt76_dereference(msta->link[link_id], &dev->mt76);
2330 if (!msta_link)
2331 return;
2332 }
2333 mld_setup->seconed_id = cpu_to_le16(msta_link->wcid.idx);
2334 mld_setup->link_num = nlinks;
2335
2336 mld_setup_link = (struct mld_setup_link *)mld_setup->link_info;
2337 for_each_sta_active_link(vif, sta, link_sta, link_id) {
2338 struct mt7996_vif_link *link;
2339
2340 msta_link = mt76_dereference(msta->link[link_id], &dev->mt76);
2341 if (!msta_link)
2342 continue;
2343
2344 link = mt7996_vif_link(dev, vif, link_id);
2345 if (!link)
2346 continue;
2347
2348 mld_setup_link->wcid = cpu_to_le16(msta_link->wcid.idx);
2349 mld_setup_link->bss_idx = link->mt76.idx;
2350 mld_setup_link++;
2351 }
2352 }
2353
2354 static void
mt7996_mcu_sta_eht_mld_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_sta * sta)2355 mt7996_mcu_sta_eht_mld_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
2356 struct ieee80211_sta *sta)
2357 {
2358 struct sta_rec_eht_mld *eht_mld;
2359 struct tlv *tlv;
2360 int i;
2361
2362 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_EHT_MLD, sizeof(*eht_mld));
2363 eht_mld = (struct sta_rec_eht_mld *)tlv;
2364
2365 for (i = 0; i < ARRAY_SIZE(eht_mld->str_cap); i++)
2366 eht_mld->str_cap[i] = 0x7;
2367 }
2368
mt7996_mcu_add_sta(struct mt7996_dev * dev,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link,int conn_state,bool newly)2369 int mt7996_mcu_add_sta(struct mt7996_dev *dev,
2370 struct ieee80211_bss_conf *link_conf,
2371 struct ieee80211_link_sta *link_sta,
2372 struct mt7996_vif_link *link,
2373 struct mt7996_sta_link *msta_link,
2374 int conn_state, bool newly)
2375 {
2376 struct mt76_wcid *wcid = msta_link ? &msta_link->wcid : link->mt76.wcid;
2377 struct ieee80211_sta *sta = link_sta ? link_sta->sta : NULL;
2378 struct sk_buff *skb;
2379 int ret;
2380
2381 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76, wcid,
2382 MT7996_STA_UPDATE_MAX_SIZE);
2383 if (IS_ERR(skb))
2384 return PTR_ERR(skb);
2385
2386 /* starec basic */
2387 mt76_connac_mcu_sta_basic_tlv(&dev->mt76, skb, link_conf, link_sta,
2388 conn_state, newly);
2389
2390 if (conn_state == CONN_STATE_DISCONNECT)
2391 goto out;
2392
2393 /* starec hdr trans */
2394 mt7996_mcu_sta_hdr_trans_tlv(dev, skb, link_conf->vif, wcid);
2395 /* starec tx proc */
2396 mt7996_mcu_sta_tx_proc_tlv(skb);
2397
2398 /* tag order is in accordance with firmware dependency. */
2399 if (link_sta) {
2400 /* starec hdrt mode */
2401 mt7996_mcu_sta_hdrt_tlv(dev, skb);
2402 if (conn_state == CONN_STATE_CONNECT) {
2403 /* starec bfer */
2404 mt7996_mcu_sta_bfer_tlv(dev, skb, link_conf, link_sta,
2405 link);
2406 /* starec bfee */
2407 mt7996_mcu_sta_bfee_tlv(dev, skb, link_conf, link_sta,
2408 link);
2409 }
2410 /* starec ht */
2411 mt7996_mcu_sta_ht_tlv(skb, link_sta);
2412 /* starec vht */
2413 mt7996_mcu_sta_vht_tlv(skb, link_sta);
2414 /* starec uapsd */
2415 mt76_connac_mcu_sta_uapsd(skb, link_conf->vif, sta);
2416 /* starec amsdu */
2417 mt7996_mcu_sta_amsdu_tlv(dev, skb, link_conf->vif, link_sta,
2418 msta_link);
2419 /* starec he */
2420 mt7996_mcu_sta_he_tlv(skb, link_sta, link);
2421 /* starec he 6g*/
2422 mt7996_mcu_sta_he_6g_tlv(skb, link_sta);
2423 /* starec eht */
2424 mt7996_mcu_sta_eht_tlv(skb, link_sta);
2425 /* starec muru */
2426 mt7996_mcu_sta_muru_tlv(dev, skb, link_conf, link_sta);
2427
2428 if (sta->mlo) {
2429 mt7996_mcu_sta_mld_setup_tlv(dev, skb, link_conf->vif,
2430 sta);
2431 mt7996_mcu_sta_eht_mld_tlv(dev, skb, sta);
2432 }
2433 }
2434
2435 ret = mt7996_mcu_add_group(dev, link_conf->vif, sta);
2436 if (ret) {
2437 dev_kfree_skb(skb);
2438 return ret;
2439 }
2440 out:
2441 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
2442 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
2443 }
2444
mt7996_mcu_teardown_mld_sta(struct mt7996_dev * dev,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link)2445 int mt7996_mcu_teardown_mld_sta(struct mt7996_dev *dev,
2446 struct mt7996_vif_link *link,
2447 struct mt7996_sta_link *msta_link)
2448 {
2449 struct sk_buff *skb;
2450
2451 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76,
2452 &msta_link->wcid,
2453 MT7996_STA_UPDATE_MAX_SIZE);
2454 if (IS_ERR(skb))
2455 return PTR_ERR(skb);
2456
2457 mt76_connac_mcu_add_tlv(skb, STA_REC_MLD_OFF, sizeof(struct tlv));
2458
2459 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
2460 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
2461 }
2462
2463 static int
mt7996_mcu_sta_key_tlv(struct mt76_wcid * wcid,struct sk_buff * skb,struct ieee80211_key_conf * key,enum set_key_cmd cmd)2464 mt7996_mcu_sta_key_tlv(struct mt76_wcid *wcid,
2465 struct sk_buff *skb,
2466 struct ieee80211_key_conf *key,
2467 enum set_key_cmd cmd)
2468 {
2469 struct sta_rec_sec_uni *sec;
2470 struct tlv *tlv;
2471
2472 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_KEY_V2, sizeof(*sec));
2473 sec = (struct sta_rec_sec_uni *)tlv;
2474 sec->add = cmd;
2475
2476 if (cmd == SET_KEY) {
2477 struct sec_key_uni *sec_key;
2478 u8 cipher;
2479
2480 cipher = mt76_connac_mcu_get_cipher(key->cipher);
2481 if (cipher == MCU_CIPHER_NONE)
2482 return -EOPNOTSUPP;
2483
2484 sec_key = &sec->key[0];
2485 sec_key->wlan_idx = cpu_to_le16(wcid->idx);
2486 sec_key->mgmt_prot = 0;
2487 sec_key->cipher_id = cipher;
2488 sec_key->cipher_len = sizeof(*sec_key);
2489 sec_key->key_id = key->keyidx;
2490 sec_key->key_len = key->keylen;
2491 sec_key->need_resp = 0;
2492 memcpy(sec_key->key, key->key, key->keylen);
2493
2494 if (cipher == MCU_CIPHER_TKIP) {
2495 /* Rx/Tx MIC keys are swapped */
2496 memcpy(sec_key->key + 16, key->key + 24, 8);
2497 memcpy(sec_key->key + 24, key->key + 16, 8);
2498 }
2499
2500 sec->n_cipher = 1;
2501 } else {
2502 sec->n_cipher = 0;
2503 }
2504
2505 return 0;
2506 }
2507
mt7996_mcu_add_key(struct mt76_dev * dev,struct ieee80211_vif * vif,struct ieee80211_key_conf * key,int mcu_cmd,struct mt76_wcid * wcid,enum set_key_cmd cmd)2508 int mt7996_mcu_add_key(struct mt76_dev *dev, struct ieee80211_vif *vif,
2509 struct ieee80211_key_conf *key, int mcu_cmd,
2510 struct mt76_wcid *wcid, enum set_key_cmd cmd)
2511 {
2512 struct mt76_vif_link *mvif = (struct mt76_vif_link *)vif->drv_priv;
2513 struct sk_buff *skb;
2514 int ret;
2515
2516 skb = __mt76_connac_mcu_alloc_sta_req(dev, mvif, wcid,
2517 MT7996_STA_UPDATE_MAX_SIZE);
2518 if (IS_ERR(skb))
2519 return PTR_ERR(skb);
2520
2521 ret = mt7996_mcu_sta_key_tlv(wcid, skb, key, cmd);
2522 if (ret)
2523 return ret;
2524
2525 return mt76_mcu_skb_send_msg(dev, skb, mcu_cmd, true);
2526 }
2527
mt7996_mcu_get_pn(struct mt7996_dev * dev,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link,u8 * pn)2528 static int mt7996_mcu_get_pn(struct mt7996_dev *dev,
2529 struct mt7996_vif_link *link,
2530 struct mt7996_sta_link *msta_link, u8 *pn)
2531 {
2532 #define TSC_TYPE_BIGTK_PN 2
2533 struct sta_rec_pn_info *pn_info;
2534 struct sk_buff *skb, *rskb;
2535 struct tlv *tlv;
2536 int ret;
2537
2538 skb = mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76,
2539 &msta_link->wcid);
2540 if (IS_ERR(skb))
2541 return PTR_ERR(skb);
2542
2543 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_PN_INFO, sizeof(*pn_info));
2544 pn_info = (struct sta_rec_pn_info *)tlv;
2545
2546 pn_info->tsc_type = TSC_TYPE_BIGTK_PN;
2547 ret = mt76_mcu_skb_send_and_get_msg(&dev->mt76, skb,
2548 MCU_WM_UNI_CMD_QUERY(STA_REC_UPDATE),
2549 true, &rskb);
2550 if (ret)
2551 return ret;
2552
2553 skb_pull(rskb, 4);
2554
2555 pn_info = (struct sta_rec_pn_info *)rskb->data;
2556 if (le16_to_cpu(pn_info->tag) == STA_REC_PN_INFO)
2557 memcpy(pn, pn_info->pn, 6);
2558
2559 dev_kfree_skb(rskb);
2560 return 0;
2561 }
2562
mt7996_mcu_bcn_prot_enable(struct mt7996_dev * dev,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link,struct ieee80211_key_conf * key)2563 int mt7996_mcu_bcn_prot_enable(struct mt7996_dev *dev,
2564 struct mt7996_vif_link *link,
2565 struct mt7996_sta_link *msta_link,
2566 struct ieee80211_key_conf *key)
2567 {
2568 struct mt7996_mcu_bcn_prot_tlv *bcn_prot;
2569 struct sk_buff *skb;
2570 struct tlv *tlv;
2571 u8 pn[6] = {};
2572 int len = sizeof(struct bss_req_hdr) +
2573 sizeof(struct mt7996_mcu_bcn_prot_tlv);
2574 int ret;
2575
2576 skb = __mt7996_mcu_alloc_bss_req(&dev->mt76, &link->mt76, len);
2577 if (IS_ERR(skb))
2578 return PTR_ERR(skb);
2579
2580 tlv = mt76_connac_mcu_add_tlv(skb, UNI_BSS_INFO_BCN_PROT, sizeof(*bcn_prot));
2581
2582 bcn_prot = (struct mt7996_mcu_bcn_prot_tlv *)tlv;
2583
2584 ret = mt7996_mcu_get_pn(dev, link, msta_link, pn);
2585 if (ret) {
2586 dev_kfree_skb(skb);
2587 return ret;
2588 }
2589
2590 switch (key->cipher) {
2591 case WLAN_CIPHER_SUITE_AES_CMAC:
2592 bcn_prot->cipher_id = MCU_CIPHER_BCN_PROT_CMAC_128;
2593 break;
2594 case WLAN_CIPHER_SUITE_BIP_GMAC_128:
2595 bcn_prot->cipher_id = MCU_CIPHER_BCN_PROT_GMAC_128;
2596 break;
2597 case WLAN_CIPHER_SUITE_BIP_GMAC_256:
2598 bcn_prot->cipher_id = MCU_CIPHER_BCN_PROT_GMAC_256;
2599 break;
2600 case WLAN_CIPHER_SUITE_BIP_CMAC_256:
2601 default:
2602 dev_err(dev->mt76.dev, "Not supported Bigtk Cipher\n");
2603 dev_kfree_skb(skb);
2604 return -EOPNOTSUPP;
2605 }
2606
2607 pn[0]++;
2608 memcpy(bcn_prot->pn, pn, 6);
2609 bcn_prot->enable = BP_SW_MODE;
2610 memcpy(bcn_prot->key, key->key, WLAN_MAX_KEY_LEN);
2611 bcn_prot->key_id = key->keyidx;
2612
2613 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
2614 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
2615 }
2616
mt7996_mcu_add_dev_info(struct mt7996_phy * phy,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct mt76_vif_link * mlink,bool enable)2617 int mt7996_mcu_add_dev_info(struct mt7996_phy *phy, struct ieee80211_vif *vif,
2618 struct ieee80211_bss_conf *link_conf,
2619 struct mt76_vif_link *mlink, bool enable)
2620 {
2621 struct mt7996_dev *dev = phy->dev;
2622 struct {
2623 struct req_hdr {
2624 u8 omac_idx;
2625 u8 band_idx;
2626 u8 __rsv[2];
2627 } __packed hdr;
2628 struct req_tlv {
2629 __le16 tag;
2630 __le16 len;
2631 u8 active;
2632 u8 __rsv;
2633 u8 omac_addr[ETH_ALEN];
2634 } __packed tlv;
2635 } data = {
2636 .hdr = {
2637 .omac_idx = mlink->omac_idx,
2638 .band_idx = mlink->band_idx,
2639 },
2640 .tlv = {
2641 .tag = cpu_to_le16(DEV_INFO_ACTIVE),
2642 .len = cpu_to_le16(sizeof(struct req_tlv)),
2643 .active = enable,
2644 },
2645 };
2646
2647 if (mlink->omac_idx >= REPEATER_BSSID_START)
2648 return mt7996_mcu_muar_config(dev, mlink, link_conf->addr, false, enable);
2649
2650 memcpy(data.tlv.omac_addr, link_conf->addr, ETH_ALEN);
2651 return mt76_mcu_send_msg(&dev->mt76, MCU_WMWA_UNI_CMD(DEV_INFO_UPDATE),
2652 &data, sizeof(data), true);
2653 }
2654
2655 static void
mt7996_mcu_beacon_cntdwn(struct sk_buff * rskb,struct sk_buff * skb,struct ieee80211_mutable_offsets * offs,bool csa)2656 mt7996_mcu_beacon_cntdwn(struct sk_buff *rskb, struct sk_buff *skb,
2657 struct ieee80211_mutable_offsets *offs,
2658 bool csa)
2659 {
2660 struct bss_bcn_cntdwn_tlv *info;
2661 struct tlv *tlv;
2662 u16 tag;
2663
2664 if (!offs->cntdwn_counter_offs[0])
2665 return;
2666
2667 tag = csa ? UNI_BSS_INFO_BCN_CSA : UNI_BSS_INFO_BCN_BCC;
2668
2669 tlv = mt7996_mcu_add_uni_tlv(rskb, tag, sizeof(*info));
2670
2671 info = (struct bss_bcn_cntdwn_tlv *)tlv;
2672 info->cnt = skb->data[offs->cntdwn_counter_offs[0]];
2673 }
2674
2675 static void
mt7996_mcu_beacon_mbss(struct sk_buff * rskb,struct sk_buff * skb,struct bss_bcn_content_tlv * bcn,struct ieee80211_mutable_offsets * offs)2676 mt7996_mcu_beacon_mbss(struct sk_buff *rskb, struct sk_buff *skb,
2677 struct bss_bcn_content_tlv *bcn,
2678 struct ieee80211_mutable_offsets *offs)
2679 {
2680 struct bss_bcn_mbss_tlv *mbss;
2681 const struct element *elem;
2682 struct tlv *tlv;
2683
2684 tlv = mt7996_mcu_add_uni_tlv(rskb, UNI_BSS_INFO_BCN_MBSSID, sizeof(*mbss));
2685
2686 mbss = (struct bss_bcn_mbss_tlv *)tlv;
2687 mbss->offset[0] = cpu_to_le16(offs->tim_offset);
2688 mbss->bitmap = cpu_to_le32(1);
2689
2690 for_each_element_id(elem, WLAN_EID_MULTIPLE_BSSID,
2691 &skb->data[offs->mbssid_off],
2692 skb->len - offs->mbssid_off) {
2693 const struct element *sub_elem;
2694
2695 if (elem->datalen < 2)
2696 continue;
2697
2698 for_each_element(sub_elem, elem->data + 1, elem->datalen - 1) {
2699 const struct ieee80211_bssid_index *idx;
2700 const u8 *idx_ie;
2701
2702 /* not a valid BSS profile */
2703 if (sub_elem->id || sub_elem->datalen < 4)
2704 continue;
2705
2706 /* Find WLAN_EID_MULTI_BSSID_IDX
2707 * in the merged nontransmitted profile
2708 */
2709 idx_ie = cfg80211_find_ie(WLAN_EID_MULTI_BSSID_IDX,
2710 sub_elem->data, sub_elem->datalen);
2711 if (!idx_ie || idx_ie[1] < sizeof(*idx))
2712 continue;
2713
2714 idx = (void *)(idx_ie + 2);
2715 if (!idx->bssid_index || idx->bssid_index > 31)
2716 continue;
2717
2718 mbss->offset[idx->bssid_index] = cpu_to_le16(idx_ie -
2719 skb->data);
2720 mbss->bitmap |= cpu_to_le32(BIT(idx->bssid_index));
2721 }
2722 }
2723 }
2724
2725 static void
mt7996_mcu_beacon_cont(struct mt7996_dev * dev,struct ieee80211_bss_conf * link_conf,struct sk_buff * rskb,struct sk_buff * skb,struct bss_bcn_content_tlv * bcn,struct ieee80211_mutable_offsets * offs)2726 mt7996_mcu_beacon_cont(struct mt7996_dev *dev,
2727 struct ieee80211_bss_conf *link_conf,
2728 struct sk_buff *rskb, struct sk_buff *skb,
2729 struct bss_bcn_content_tlv *bcn,
2730 struct ieee80211_mutable_offsets *offs)
2731 {
2732 struct mt76_wcid *wcid = &dev->mt76.global_wcid;
2733 u8 *buf;
2734
2735 bcn->pkt_len = cpu_to_le16(MT_TXD_SIZE + skb->len);
2736 bcn->tim_ie_pos = cpu_to_le16(offs->tim_offset);
2737
2738 if (offs->cntdwn_counter_offs[0]) {
2739 u16 offset = offs->cntdwn_counter_offs[0];
2740
2741 if (link_conf->csa_active)
2742 bcn->csa_ie_pos = cpu_to_le16(offset - 4);
2743 if (link_conf->color_change_active)
2744 bcn->bcc_ie_pos = cpu_to_le16(offset - 3);
2745 }
2746
2747 buf = (u8 *)bcn + sizeof(*bcn);
2748 mt7996_mac_write_txwi(dev, (__le32 *)buf, skb, wcid, NULL, 0, 0,
2749 BSS_CHANGED_BEACON);
2750
2751 memcpy(buf + MT_TXD_SIZE, skb->data, skb->len);
2752 }
2753
mt7996_mcu_add_beacon(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf)2754 int mt7996_mcu_add_beacon(struct ieee80211_hw *hw, struct ieee80211_vif *vif,
2755 struct ieee80211_bss_conf *link_conf)
2756 {
2757 struct mt7996_dev *dev = mt7996_hw_dev(hw);
2758 struct mt7996_vif_link *link = mt7996_vif_conf_link(dev, vif, link_conf);
2759 struct mt76_vif_link *mlink = link ? &link->mt76 : NULL;
2760 struct ieee80211_mutable_offsets offs;
2761 struct ieee80211_tx_info *info;
2762 struct sk_buff *skb, *rskb;
2763 struct tlv *tlv;
2764 struct bss_bcn_content_tlv *bcn;
2765 int len, extra_len = 0;
2766 bool enabled = link_conf->enable_beacon;
2767
2768 if (link_conf->nontransmitted)
2769 return 0;
2770
2771 if (!mlink)
2772 return -EINVAL;
2773
2774 if (link->phy && link->phy->mt76->offchannel)
2775 enabled = false;
2776
2777 rskb = __mt7996_mcu_alloc_bss_req(&dev->mt76, mlink,
2778 MT7996_MAX_BSS_OFFLOAD_SIZE);
2779 if (IS_ERR(rskb))
2780 return PTR_ERR(rskb);
2781
2782 skb = ieee80211_beacon_get_template(hw, vif, &offs, link_conf->link_id);
2783 if (enabled && !skb) {
2784 dev_kfree_skb(rskb);
2785 return -EINVAL;
2786 }
2787
2788 if (skb) {
2789 if (skb->len > MT7996_MAX_BEACON_SIZE) {
2790 dev_err(dev->mt76.dev, "Bcn size limit exceed\n");
2791 dev_kfree_skb(rskb);
2792 dev_kfree_skb(skb);
2793 return -EINVAL;
2794 }
2795
2796 extra_len = skb->len;
2797 }
2798
2799 len = ALIGN(sizeof(*bcn) + MT_TXD_SIZE + extra_len, 4);
2800 tlv = mt7996_mcu_add_uni_tlv(rskb, UNI_BSS_INFO_BCN_CONTENT, len);
2801 bcn = (struct bss_bcn_content_tlv *)tlv;
2802 bcn->enable = enabled;
2803 if (!bcn->enable)
2804 goto out;
2805
2806 info = IEEE80211_SKB_CB(skb);
2807 info->hw_queue |= FIELD_PREP(MT_TX_HW_QUEUE_PHY, mlink->band_idx);
2808
2809 mt7996_mcu_beacon_cont(dev, link_conf, rskb, skb, bcn, &offs);
2810 if (link_conf->bssid_indicator)
2811 mt7996_mcu_beacon_mbss(rskb, skb, bcn, &offs);
2812 mt7996_mcu_beacon_cntdwn(rskb, skb, &offs, link_conf->csa_active);
2813 out:
2814 dev_kfree_skb(skb);
2815 return mt76_mcu_skb_send_msg(&dev->mt76, rskb,
2816 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
2817 }
2818
mt7996_mcu_beacon_inband_discov(struct mt7996_dev * dev,struct ieee80211_bss_conf * link_conf,struct mt7996_vif_link * link,u32 changed)2819 int mt7996_mcu_beacon_inband_discov(struct mt7996_dev *dev,
2820 struct ieee80211_bss_conf *link_conf,
2821 struct mt7996_vif_link *link, u32 changed)
2822 {
2823 #define OFFLOAD_TX_MODE_SU BIT(0)
2824 #define OFFLOAD_TX_MODE_MU BIT(1)
2825 struct ieee80211_vif *vif = link_conf->vif;
2826 struct ieee80211_hw *hw = mt76_hw(dev);
2827 struct mt7996_phy *phy = link->phy;
2828 struct mt76_wcid *wcid = &dev->mt76.global_wcid;
2829 struct bss_inband_discovery_tlv *discov;
2830 struct ieee80211_tx_info *info;
2831 struct sk_buff *rskb, *skb = NULL;
2832 struct cfg80211_chan_def *chandef;
2833 enum nl80211_band band;
2834 struct tlv *tlv;
2835 u8 *buf, interval;
2836 int len;
2837
2838 if (!phy)
2839 return -EINVAL;
2840
2841 chandef = &phy->mt76->chandef;
2842 band = chandef->chan->band;
2843
2844 if (link_conf->nontransmitted)
2845 return 0;
2846
2847 rskb = __mt7996_mcu_alloc_bss_req(&dev->mt76, &link->mt76,
2848 MT7996_MAX_BSS_OFFLOAD_SIZE);
2849 if (IS_ERR(rskb))
2850 return PTR_ERR(rskb);
2851
2852 if (changed & BSS_CHANGED_FILS_DISCOVERY &&
2853 link_conf->fils_discovery.max_interval) {
2854 interval = link_conf->fils_discovery.max_interval;
2855 skb = ieee80211_get_fils_discovery_tmpl(hw, vif);
2856 } else if (changed & BSS_CHANGED_UNSOL_BCAST_PROBE_RESP &&
2857 link_conf->unsol_bcast_probe_resp_interval) {
2858 interval = link_conf->unsol_bcast_probe_resp_interval;
2859 skb = ieee80211_get_unsol_bcast_probe_resp_tmpl(hw, vif);
2860 }
2861
2862 if (!skb) {
2863 dev_kfree_skb(rskb);
2864 return -EINVAL;
2865 }
2866
2867 if (skb->len > MT7996_MAX_BEACON_SIZE) {
2868 dev_err(dev->mt76.dev, "inband discovery size limit exceed\n");
2869 dev_kfree_skb(rskb);
2870 dev_kfree_skb(skb);
2871 return -EINVAL;
2872 }
2873
2874 info = IEEE80211_SKB_CB(skb);
2875 info->control.vif = vif;
2876 info->band = band;
2877 info->hw_queue |= FIELD_PREP(MT_TX_HW_QUEUE_PHY, phy->mt76->band_idx);
2878
2879 len = ALIGN(sizeof(*discov) + MT_TXD_SIZE + skb->len, 4);
2880 tlv = mt7996_mcu_add_uni_tlv(rskb, UNI_BSS_INFO_OFFLOAD, len);
2881
2882 discov = (struct bss_inband_discovery_tlv *)tlv;
2883 discov->tx_mode = OFFLOAD_TX_MODE_SU;
2884 /* 0: UNSOL PROBE RESP, 1: FILS DISCOV */
2885 discov->tx_type = !!(changed & BSS_CHANGED_FILS_DISCOVERY);
2886 discov->tx_interval = interval;
2887 discov->prob_rsp_len = cpu_to_le16(MT_TXD_SIZE + skb->len);
2888 discov->enable = true;
2889 discov->wcid = cpu_to_le16(MT7996_WTBL_RESERVED);
2890
2891 buf = (u8 *)tlv + sizeof(*discov);
2892
2893 mt7996_mac_write_txwi(dev, (__le32 *)buf, skb, wcid, NULL, 0, 0, changed);
2894
2895 memcpy(buf + MT_TXD_SIZE, skb->data, skb->len);
2896
2897 dev_kfree_skb(skb);
2898
2899 return mt76_mcu_skb_send_msg(&dev->mt76, rskb,
2900 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
2901 }
2902
mt7996_driver_own(struct mt7996_dev * dev,u8 band)2903 static int mt7996_driver_own(struct mt7996_dev *dev, u8 band)
2904 {
2905 mt76_wr(dev, MT_TOP_LPCR_HOST_BAND(band), MT_TOP_LPCR_HOST_DRV_OWN);
2906 if (!mt76_poll_msec(dev, MT_TOP_LPCR_HOST_BAND(band),
2907 MT_TOP_LPCR_HOST_FW_OWN_STAT, 0, 500)) {
2908 dev_err(dev->mt76.dev, "Timeout for driver own\n");
2909 return -EIO;
2910 }
2911
2912 /* clear irq when the driver own success */
2913 mt76_wr(dev, MT_TOP_LPCR_HOST_BAND_IRQ_STAT(band),
2914 MT_TOP_LPCR_HOST_BAND_STAT);
2915
2916 return 0;
2917 }
2918
mt7996_patch_sec_mode(u32 key_info)2919 static u32 mt7996_patch_sec_mode(u32 key_info)
2920 {
2921 u32 sec = u32_get_bits(key_info, MT7996_PATCH_SEC), key = 0;
2922
2923 if (key_info == GENMASK(31, 0) || sec == MT7996_SEC_MODE_PLAIN)
2924 return 0;
2925
2926 if (sec == MT7996_SEC_MODE_AES)
2927 key = u32_get_bits(key_info, MT7996_PATCH_AES_KEY);
2928 else
2929 key = u32_get_bits(key_info, MT7996_PATCH_SCRAMBLE_KEY);
2930
2931 return MT7996_SEC_ENCRYPT | MT7996_SEC_IV |
2932 u32_encode_bits(key, MT7996_SEC_KEY_IDX);
2933 }
2934
mt7996_load_patch(struct mt7996_dev * dev)2935 static int mt7996_load_patch(struct mt7996_dev *dev)
2936 {
2937 const struct mt7996_patch_hdr *hdr;
2938 const struct firmware *fw = NULL;
2939 int i, ret, sem;
2940
2941 sem = mt76_connac_mcu_patch_sem_ctrl(&dev->mt76, 1);
2942 switch (sem) {
2943 case PATCH_IS_DL:
2944 return 0;
2945 case PATCH_NOT_DL_SEM_SUCCESS:
2946 break;
2947 default:
2948 dev_err(dev->mt76.dev, "Failed to get patch semaphore\n");
2949 return -EAGAIN;
2950 }
2951
2952 ret = request_firmware(&fw, fw_name(dev, ROM_PATCH), dev->mt76.dev);
2953 if (ret)
2954 goto out;
2955
2956 if (!fw || !fw->data || fw->size < sizeof(*hdr)) {
2957 dev_err(dev->mt76.dev, "Invalid firmware\n");
2958 ret = -EINVAL;
2959 goto out;
2960 }
2961
2962 hdr = (const struct mt7996_patch_hdr *)(fw->data);
2963
2964 dev_info(dev->mt76.dev, "HW/SW Version: 0x%x, Build Time: %.16s\n",
2965 be32_to_cpu(hdr->hw_sw_ver), hdr->build_date);
2966
2967 for (i = 0; i < be32_to_cpu(hdr->desc.n_region); i++) {
2968 struct mt7996_patch_sec *sec;
2969 const u8 *dl;
2970 u32 len, addr, sec_key_idx, mode = DL_MODE_NEED_RSP;
2971
2972 sec = (struct mt7996_patch_sec *)(fw->data + sizeof(*hdr) +
2973 i * sizeof(*sec));
2974 if ((be32_to_cpu(sec->type) & PATCH_SEC_TYPE_MASK) !=
2975 PATCH_SEC_TYPE_INFO) {
2976 ret = -EINVAL;
2977 goto out;
2978 }
2979
2980 addr = be32_to_cpu(sec->info.addr);
2981 len = be32_to_cpu(sec->info.len);
2982 sec_key_idx = be32_to_cpu(sec->info.sec_key_idx);
2983 dl = fw->data + be32_to_cpu(sec->offs);
2984
2985 mode |= mt7996_patch_sec_mode(sec_key_idx);
2986
2987 ret = mt76_connac_mcu_init_download(&dev->mt76, addr, len,
2988 mode);
2989 if (ret) {
2990 dev_err(dev->mt76.dev, "Download request failed\n");
2991 goto out;
2992 }
2993
2994 ret = __mt76_mcu_send_firmware(&dev->mt76, MCU_CMD(FW_SCATTER),
2995 dl, len, 4096);
2996 if (ret) {
2997 dev_err(dev->mt76.dev, "Failed to send patch\n");
2998 goto out;
2999 }
3000 }
3001
3002 ret = mt76_connac_mcu_start_patch(&dev->mt76);
3003 if (ret)
3004 dev_err(dev->mt76.dev, "Failed to start patch\n");
3005
3006 out:
3007 sem = mt76_connac_mcu_patch_sem_ctrl(&dev->mt76, 0);
3008 switch (sem) {
3009 case PATCH_REL_SEM_SUCCESS:
3010 break;
3011 default:
3012 ret = -EAGAIN;
3013 dev_err(dev->mt76.dev, "Failed to release patch semaphore\n");
3014 break;
3015 }
3016 release_firmware(fw);
3017
3018 return ret;
3019 }
3020
3021 static int
mt7996_mcu_send_ram_firmware(struct mt7996_dev * dev,const struct mt7996_fw_trailer * hdr,const u8 * data,enum mt7996_ram_type type)3022 mt7996_mcu_send_ram_firmware(struct mt7996_dev *dev,
3023 const struct mt7996_fw_trailer *hdr,
3024 const u8 *data, enum mt7996_ram_type type)
3025 {
3026 int i, offset = 0;
3027 u32 override = 0, option = 0;
3028
3029 for (i = 0; i < hdr->n_region; i++) {
3030 const struct mt7996_fw_region *region;
3031 int err;
3032 u32 len, addr, mode;
3033
3034 region = (const struct mt7996_fw_region *)((const u8 *)hdr -
3035 (hdr->n_region - i) * sizeof(*region));
3036 /* DSP and WA use same mode */
3037 mode = mt76_connac_mcu_gen_dl_mode(&dev->mt76,
3038 region->feature_set,
3039 type != MT7996_RAM_TYPE_WM);
3040 len = le32_to_cpu(region->len);
3041 addr = le32_to_cpu(region->addr);
3042
3043 if (region->feature_set & FW_FEATURE_OVERRIDE_ADDR)
3044 override = addr;
3045
3046 err = mt76_connac_mcu_init_download(&dev->mt76, addr, len,
3047 mode);
3048 if (err) {
3049 dev_err(dev->mt76.dev, "Download request failed\n");
3050 return err;
3051 }
3052
3053 err = __mt76_mcu_send_firmware(&dev->mt76, MCU_CMD(FW_SCATTER),
3054 data + offset, len, 4096);
3055 if (err) {
3056 dev_err(dev->mt76.dev, "Failed to send firmware.\n");
3057 return err;
3058 }
3059
3060 offset += len;
3061 }
3062
3063 if (override)
3064 option |= FW_START_OVERRIDE;
3065
3066 if (type == MT7996_RAM_TYPE_WA)
3067 option |= FW_START_WORKING_PDA_CR4;
3068 else if (type == MT7996_RAM_TYPE_DSP)
3069 option |= FW_START_WORKING_PDA_DSP;
3070
3071 return mt76_connac_mcu_start_firmware(&dev->mt76, override, option);
3072 }
3073
__mt7996_load_ram(struct mt7996_dev * dev,const char * fw_type,const char * fw_file,enum mt7996_ram_type ram_type)3074 static int __mt7996_load_ram(struct mt7996_dev *dev, const char *fw_type,
3075 const char *fw_file, enum mt7996_ram_type ram_type)
3076 {
3077 const struct mt7996_fw_trailer *hdr;
3078 const struct firmware *fw;
3079 int ret;
3080
3081 ret = request_firmware(&fw, fw_file, dev->mt76.dev);
3082 if (ret)
3083 return ret;
3084
3085 if (!fw || !fw->data || fw->size < sizeof(*hdr)) {
3086 dev_err(dev->mt76.dev, "Invalid firmware\n");
3087 ret = -EINVAL;
3088 goto out;
3089 }
3090
3091 hdr = (const void *)(fw->data + fw->size - sizeof(*hdr));
3092 dev_info(dev->mt76.dev, "%s Firmware Version: %.10s, Build Time: %.15s\n",
3093 fw_type, hdr->fw_ver, hdr->build_date);
3094
3095 ret = mt7996_mcu_send_ram_firmware(dev, hdr, fw->data, ram_type);
3096 if (ret) {
3097 dev_err(dev->mt76.dev, "Failed to start %s firmware\n", fw_type);
3098 goto out;
3099 }
3100
3101 snprintf(dev->mt76.hw->wiphy->fw_version,
3102 sizeof(dev->mt76.hw->wiphy->fw_version),
3103 "%.10s-%.15s", hdr->fw_ver, hdr->build_date);
3104
3105 out:
3106 release_firmware(fw);
3107
3108 return ret;
3109 }
3110
mt7996_load_ram(struct mt7996_dev * dev)3111 static int mt7996_load_ram(struct mt7996_dev *dev)
3112 {
3113 int ret;
3114
3115 ret = __mt7996_load_ram(dev, "WM", fw_name(dev, FIRMWARE_WM),
3116 MT7996_RAM_TYPE_WM);
3117 if (ret)
3118 return ret;
3119
3120 if (!mt7996_has_wa(dev))
3121 return 0;
3122
3123 ret = __mt7996_load_ram(dev, "DSP", fw_name(dev, FIRMWARE_DSP),
3124 MT7996_RAM_TYPE_DSP);
3125 if (ret)
3126 return ret;
3127
3128 return __mt7996_load_ram(dev, "WA", fw_name(dev, FIRMWARE_WA),
3129 MT7996_RAM_TYPE_WA);
3130 }
3131
3132 static int
mt7996_firmware_state(struct mt7996_dev * dev,u8 fw_state)3133 mt7996_firmware_state(struct mt7996_dev *dev, u8 fw_state)
3134 {
3135 u32 state = FIELD_PREP(MT_TOP_MISC_FW_STATE, fw_state);
3136
3137 if (!mt76_poll_msec(dev, MT_TOP_MISC, MT_TOP_MISC_FW_STATE,
3138 state, 1000)) {
3139 dev_err(dev->mt76.dev, "Timeout for initializing firmware\n");
3140 return -EIO;
3141 }
3142 return 0;
3143 }
3144
3145 static int
mt7996_mcu_restart(struct mt76_dev * dev)3146 mt7996_mcu_restart(struct mt76_dev *dev)
3147 {
3148 struct {
3149 u8 __rsv1[4];
3150
3151 __le16 tag;
3152 __le16 len;
3153 u8 power_mode;
3154 u8 __rsv2[3];
3155 } __packed req = {
3156 .tag = cpu_to_le16(UNI_POWER_OFF),
3157 .len = cpu_to_le16(sizeof(req) - 4),
3158 .power_mode = 1,
3159 };
3160
3161 return mt76_mcu_send_msg(dev, MCU_WM_UNI_CMD(POWER_CTRL), &req,
3162 sizeof(req), false);
3163 }
3164
mt7996_load_firmware(struct mt7996_dev * dev)3165 static int mt7996_load_firmware(struct mt7996_dev *dev)
3166 {
3167 u8 fw_state;
3168 int ret;
3169
3170 /* make sure fw is download state */
3171 if (mt7996_firmware_state(dev, FW_STATE_FW_DOWNLOAD)) {
3172 /* restart firmware once */
3173 mt7996_mcu_restart(&dev->mt76);
3174 ret = mt7996_firmware_state(dev, FW_STATE_FW_DOWNLOAD);
3175 if (ret) {
3176 dev_err(dev->mt76.dev,
3177 "Firmware is not ready for download\n");
3178 return ret;
3179 }
3180 }
3181
3182 ret = mt7996_load_patch(dev);
3183 if (ret)
3184 return ret;
3185
3186 ret = mt7996_load_ram(dev);
3187 if (ret)
3188 return ret;
3189
3190 fw_state = mt7996_has_wa(dev) ? FW_STATE_RDY : FW_STATE_NORMAL_TRX;
3191 ret = mt7996_firmware_state(dev, fw_state);
3192 if (ret)
3193 return ret;
3194
3195 mt76_queue_tx_cleanup(dev, dev->mt76.q_mcu[MT_MCUQ_FWDL], false);
3196
3197 dev_dbg(dev->mt76.dev, "Firmware init done\n");
3198
3199 return 0;
3200 }
3201
mt7996_mcu_fw_log_2_host(struct mt7996_dev * dev,u8 type,u8 ctrl)3202 int mt7996_mcu_fw_log_2_host(struct mt7996_dev *dev, u8 type, u8 ctrl)
3203 {
3204 struct {
3205 u8 _rsv[4];
3206
3207 __le16 tag;
3208 __le16 len;
3209 u8 ctrl;
3210 u8 interval;
3211 u8 _rsv2[2];
3212 } __packed data = {
3213 .tag = cpu_to_le16(UNI_WSYS_CONFIG_FW_LOG_CTRL),
3214 .len = cpu_to_le16(sizeof(data) - 4),
3215 .ctrl = ctrl,
3216 };
3217
3218 if (type == MCU_FW_LOG_WA)
3219 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_UNI_CMD(WSYS_CONFIG),
3220 &data, sizeof(data), true);
3221
3222 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(WSYS_CONFIG), &data,
3223 sizeof(data), true);
3224 }
3225
mt7996_mcu_fw_dbg_ctrl(struct mt7996_dev * dev,u32 module,u8 level)3226 int mt7996_mcu_fw_dbg_ctrl(struct mt7996_dev *dev, u32 module, u8 level)
3227 {
3228 struct {
3229 u8 _rsv[4];
3230
3231 __le16 tag;
3232 __le16 len;
3233 __le32 module_idx;
3234 u8 level;
3235 u8 _rsv2[3];
3236 } data = {
3237 .tag = cpu_to_le16(UNI_WSYS_CONFIG_FW_DBG_CTRL),
3238 .len = cpu_to_le16(sizeof(data) - 4),
3239 .module_idx = cpu_to_le32(module),
3240 .level = level,
3241 };
3242
3243 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(WSYS_CONFIG), &data,
3244 sizeof(data), false);
3245 }
3246
mt7996_mcu_set_mwds(struct mt7996_dev * dev,bool enabled)3247 static int mt7996_mcu_set_mwds(struct mt7996_dev *dev, bool enabled)
3248 {
3249 struct {
3250 u8 enable;
3251 u8 _rsv[3];
3252 } __packed req = {
3253 .enable = enabled
3254 };
3255
3256 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_EXT_CMD(MWDS_SUPPORT), &req,
3257 sizeof(req), false);
3258 }
3259
mt7996_add_rx_airtime_tlv(struct sk_buff * skb,u8 band_idx)3260 static void mt7996_add_rx_airtime_tlv(struct sk_buff *skb, u8 band_idx)
3261 {
3262 struct vow_rx_airtime *req;
3263 struct tlv *tlv;
3264
3265 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_VOW_RX_AT_AIRTIME_CLR_EN, sizeof(*req));
3266 req = (struct vow_rx_airtime *)tlv;
3267 req->enable = true;
3268 req->band = band_idx;
3269
3270 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_VOW_RX_AT_AIRTIME_EN, sizeof(*req));
3271 req = (struct vow_rx_airtime *)tlv;
3272 req->enable = true;
3273 req->band = band_idx;
3274 }
3275
3276 static int
mt7996_mcu_init_rx_airtime(struct mt7996_dev * dev)3277 mt7996_mcu_init_rx_airtime(struct mt7996_dev *dev)
3278 {
3279 struct uni_header hdr = {};
3280 struct sk_buff *skb;
3281 int len, num, i;
3282
3283 num = 2 + 2 * (mt7996_band_valid(dev, MT_BAND1) +
3284 mt7996_band_valid(dev, MT_BAND2));
3285 len = sizeof(hdr) + num * sizeof(struct vow_rx_airtime);
3286 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
3287 if (!skb)
3288 return -ENOMEM;
3289
3290 skb_put_data(skb, &hdr, sizeof(hdr));
3291
3292 for (i = 0; i < __MT_MAX_BAND; i++) {
3293 if (mt7996_band_valid(dev, i))
3294 mt7996_add_rx_airtime_tlv(skb, i);
3295 }
3296
3297 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
3298 MCU_WM_UNI_CMD(VOW), true);
3299 }
3300
mt7996_mcu_init_firmware(struct mt7996_dev * dev)3301 int mt7996_mcu_init_firmware(struct mt7996_dev *dev)
3302 {
3303 int ret;
3304
3305 /* force firmware operation mode into normal state,
3306 * which should be set before firmware download stage.
3307 */
3308 mt76_wr(dev, MT_SWDEF_MODE, MT_SWDEF_NORMAL_MODE);
3309
3310 ret = mt7996_driver_own(dev, 0);
3311 if (ret)
3312 return ret;
3313 /* set driver own for band1 when two hif exist */
3314 if (dev->hif2) {
3315 ret = mt7996_driver_own(dev, 1);
3316 if (ret)
3317 return ret;
3318 }
3319
3320 ret = mt7996_load_firmware(dev);
3321 if (ret)
3322 return ret;
3323
3324 set_bit(MT76_STATE_MCU_RUNNING, &dev->mphy.state);
3325 ret = mt7996_mcu_fw_log_2_host(dev, MCU_FW_LOG_WM, 0);
3326 if (ret)
3327 return ret;
3328
3329 if (mt7996_has_wa(dev)) {
3330 ret = mt7996_mcu_fw_log_2_host(dev, MCU_FW_LOG_WA, 0);
3331 if (ret)
3332 return ret;
3333
3334 ret = mt7996_mcu_set_mwds(dev, 1);
3335 if (ret)
3336 return ret;
3337 }
3338
3339 ret = mt7996_mcu_init_rx_airtime(dev);
3340 if (ret)
3341 return ret;
3342
3343 return mt7996_mcu_wa_cmd(dev, MCU_WA_PARAM_CMD(SET),
3344 MCU_WA_PARAM_RED, 0, 0);
3345 }
3346
mt7996_mcu_init(struct mt7996_dev * dev)3347 int mt7996_mcu_init(struct mt7996_dev *dev)
3348 {
3349 static const struct mt76_mcu_ops mt7996_mcu_ops = {
3350 .headroom = sizeof(struct mt76_connac2_mcu_txd), /* reuse */
3351 .mcu_skb_send_msg = mt7996_mcu_send_message,
3352 .mcu_parse_response = mt7996_mcu_parse_response,
3353 };
3354
3355 dev->mt76.mcu_ops = &mt7996_mcu_ops;
3356
3357 return mt7996_mcu_init_firmware(dev);
3358 }
3359
mt7996_mcu_exit(struct mt7996_dev * dev)3360 void mt7996_mcu_exit(struct mt7996_dev *dev)
3361 {
3362 mt7996_mcu_restart(&dev->mt76);
3363 if (mt7996_firmware_state(dev, FW_STATE_FW_DOWNLOAD)) {
3364 dev_err(dev->mt76.dev, "Failed to exit mcu\n");
3365 goto out;
3366 }
3367
3368 mt76_wr(dev, MT_TOP_LPCR_HOST_BAND(0), MT_TOP_LPCR_HOST_FW_OWN);
3369 if (dev->hif2)
3370 mt76_wr(dev, MT_TOP_LPCR_HOST_BAND(1),
3371 MT_TOP_LPCR_HOST_FW_OWN);
3372 out:
3373 skb_queue_purge(&dev->mt76.mcu.res_q);
3374 }
3375
mt7996_mcu_set_hdr_trans(struct mt7996_dev * dev,bool hdr_trans)3376 int mt7996_mcu_set_hdr_trans(struct mt7996_dev *dev, bool hdr_trans)
3377 {
3378 struct {
3379 u8 __rsv[4];
3380 } __packed hdr = {};
3381 struct hdr_trans_blacklist *req_blacklist;
3382 struct hdr_trans_en *req_en;
3383 struct sk_buff *skb;
3384 struct tlv *tlv;
3385 int len = MT7996_HDR_TRANS_MAX_SIZE + sizeof(hdr);
3386
3387 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
3388 if (!skb)
3389 return -ENOMEM;
3390
3391 skb_put_data(skb, &hdr, sizeof(hdr));
3392
3393 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_HDR_TRANS_EN, sizeof(*req_en));
3394 req_en = (struct hdr_trans_en *)tlv;
3395 req_en->enable = hdr_trans;
3396
3397 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_HDR_TRANS_VLAN,
3398 sizeof(struct hdr_trans_vlan));
3399
3400 if (hdr_trans) {
3401 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_HDR_TRANS_BLACKLIST,
3402 sizeof(*req_blacklist));
3403 req_blacklist = (struct hdr_trans_blacklist *)tlv;
3404 req_blacklist->enable = 1;
3405 req_blacklist->type = cpu_to_le16(ETH_P_PAE);
3406 }
3407
3408 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
3409 MCU_WM_UNI_CMD(RX_HDR_TRANS), true);
3410 }
3411
mt7996_mcu_set_tx(struct mt7996_dev * dev,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf)3412 int mt7996_mcu_set_tx(struct mt7996_dev *dev, struct ieee80211_vif *vif,
3413 struct ieee80211_bss_conf *link_conf)
3414 {
3415 #define MCU_EDCA_AC_PARAM 0
3416 #define WMM_AIFS_SET BIT(0)
3417 #define WMM_CW_MIN_SET BIT(1)
3418 #define WMM_CW_MAX_SET BIT(2)
3419 #define WMM_TXOP_SET BIT(3)
3420 #define WMM_PARAM_SET (WMM_AIFS_SET | WMM_CW_MIN_SET | \
3421 WMM_CW_MAX_SET | WMM_TXOP_SET)
3422 struct mt7996_vif_link *link = mt7996_vif_conf_link(dev, vif, link_conf);
3423 struct {
3424 u8 bss_idx;
3425 u8 __rsv[3];
3426 } __packed hdr = {
3427 .bss_idx = link->mt76.idx,
3428 };
3429 struct sk_buff *skb;
3430 int len = sizeof(hdr) + IEEE80211_NUM_ACS * sizeof(struct edca);
3431 int ac;
3432
3433 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
3434 if (!skb)
3435 return -ENOMEM;
3436
3437 skb_put_data(skb, &hdr, sizeof(hdr));
3438
3439 for (ac = 0; ac < IEEE80211_NUM_ACS; ac++) {
3440 struct ieee80211_tx_queue_params *q = &link->queue_params[ac];
3441 struct edca *e;
3442 struct tlv *tlv;
3443
3444 tlv = mt7996_mcu_add_uni_tlv(skb, MCU_EDCA_AC_PARAM, sizeof(*e));
3445
3446 e = (struct edca *)tlv;
3447 e->set = WMM_PARAM_SET;
3448 e->queue = ac;
3449 e->aifs = q->aifs;
3450 e->txop = cpu_to_le16(q->txop);
3451
3452 if (q->cw_min)
3453 e->cw_min = fls(q->cw_min);
3454 else
3455 e->cw_min = 5;
3456
3457 if (q->cw_max)
3458 e->cw_max = fls(q->cw_max);
3459 else
3460 e->cw_max = 10;
3461 }
3462
3463 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
3464 MCU_WM_UNI_CMD(EDCA_UPDATE), true);
3465 }
3466
mt7996_mcu_set_fcc5_lpn(struct mt7996_dev * dev,int val)3467 int mt7996_mcu_set_fcc5_lpn(struct mt7996_dev *dev, int val)
3468 {
3469 struct {
3470 u8 _rsv[4];
3471
3472 __le16 tag;
3473 __le16 len;
3474
3475 __le32 ctrl;
3476 __le16 min_lpn;
3477 u8 rsv[2];
3478 } __packed req = {
3479 .tag = cpu_to_le16(UNI_RDD_CTRL_SET_TH),
3480 .len = cpu_to_le16(sizeof(req) - 4),
3481
3482 .ctrl = cpu_to_le32(0x1),
3483 .min_lpn = cpu_to_le16(val),
3484 };
3485
3486 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RDD_CTRL),
3487 &req, sizeof(req), true);
3488 }
3489
mt7996_mcu_set_pulse_th(struct mt7996_dev * dev,const struct mt7996_dfs_pulse * pulse)3490 int mt7996_mcu_set_pulse_th(struct mt7996_dev *dev,
3491 const struct mt7996_dfs_pulse *pulse)
3492 {
3493 struct {
3494 u8 _rsv[4];
3495
3496 __le16 tag;
3497 __le16 len;
3498
3499 __le32 ctrl;
3500
3501 __le32 max_width; /* us */
3502 __le32 max_pwr; /* dbm */
3503 __le32 min_pwr; /* dbm */
3504 __le32 min_stgr_pri; /* us */
3505 __le32 max_stgr_pri; /* us */
3506 __le32 min_cr_pri; /* us */
3507 __le32 max_cr_pri; /* us */
3508 } __packed req = {
3509 .tag = cpu_to_le16(UNI_RDD_CTRL_SET_TH),
3510 .len = cpu_to_le16(sizeof(req) - 4),
3511
3512 .ctrl = cpu_to_le32(0x3),
3513
3514 #define __req_field(field) .field = cpu_to_le32(pulse->field)
3515 __req_field(max_width),
3516 __req_field(max_pwr),
3517 __req_field(min_pwr),
3518 __req_field(min_stgr_pri),
3519 __req_field(max_stgr_pri),
3520 __req_field(min_cr_pri),
3521 __req_field(max_cr_pri),
3522 #undef __req_field
3523 };
3524
3525 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RDD_CTRL),
3526 &req, sizeof(req), true);
3527 }
3528
mt7996_mcu_set_radar_th(struct mt7996_dev * dev,int index,const struct mt7996_dfs_pattern * pattern)3529 int mt7996_mcu_set_radar_th(struct mt7996_dev *dev, int index,
3530 const struct mt7996_dfs_pattern *pattern)
3531 {
3532 struct {
3533 u8 _rsv[4];
3534
3535 __le16 tag;
3536 __le16 len;
3537
3538 __le32 ctrl;
3539 __le16 radar_type;
3540
3541 u8 enb;
3542 u8 stgr;
3543 u8 min_crpn;
3544 u8 max_crpn;
3545 u8 min_crpr;
3546 u8 min_pw;
3547 __le32 min_pri;
3548 __le32 max_pri;
3549 u8 max_pw;
3550 u8 min_crbn;
3551 u8 max_crbn;
3552 u8 min_stgpn;
3553 u8 max_stgpn;
3554 u8 min_stgpr;
3555 u8 rsv[2];
3556 __le32 min_stgpr_diff;
3557 } __packed req = {
3558 .tag = cpu_to_le16(UNI_RDD_CTRL_SET_TH),
3559 .len = cpu_to_le16(sizeof(req) - 4),
3560
3561 .ctrl = cpu_to_le32(0x2),
3562 .radar_type = cpu_to_le16(index),
3563
3564 #define __req_field_u8(field) .field = pattern->field
3565 #define __req_field_u32(field) .field = cpu_to_le32(pattern->field)
3566 __req_field_u8(enb),
3567 __req_field_u8(stgr),
3568 __req_field_u8(min_crpn),
3569 __req_field_u8(max_crpn),
3570 __req_field_u8(min_crpr),
3571 __req_field_u8(min_pw),
3572 __req_field_u32(min_pri),
3573 __req_field_u32(max_pri),
3574 __req_field_u8(max_pw),
3575 __req_field_u8(min_crbn),
3576 __req_field_u8(max_crbn),
3577 __req_field_u8(min_stgpn),
3578 __req_field_u8(max_stgpn),
3579 __req_field_u8(min_stgpr),
3580 __req_field_u32(min_stgpr_diff),
3581 #undef __req_field_u8
3582 #undef __req_field_u32
3583 };
3584
3585 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RDD_CTRL),
3586 &req, sizeof(req), true);
3587 }
3588
3589 static int
mt7996_mcu_background_chain_ctrl(struct mt7996_phy * phy,struct cfg80211_chan_def * chandef,int cmd)3590 mt7996_mcu_background_chain_ctrl(struct mt7996_phy *phy,
3591 struct cfg80211_chan_def *chandef,
3592 int cmd)
3593 {
3594 struct mt7996_dev *dev = phy->dev;
3595 struct mt76_phy *mphy = phy->mt76;
3596 struct ieee80211_channel *chan = mphy->chandef.chan;
3597 int freq = mphy->chandef.center_freq1;
3598 struct mt7996_mcu_background_chain_ctrl req = {
3599 .tag = cpu_to_le16(0),
3600 .len = cpu_to_le16(sizeof(req) - 4),
3601 .monitor_scan_type = 2, /* simple rx */
3602 };
3603
3604 if (!chandef && cmd != CH_SWITCH_BACKGROUND_SCAN_STOP)
3605 return -EINVAL;
3606
3607 if (!cfg80211_chandef_valid(&mphy->chandef))
3608 return -EINVAL;
3609
3610 switch (cmd) {
3611 case CH_SWITCH_BACKGROUND_SCAN_START: {
3612 req.chan = chan->hw_value;
3613 req.central_chan = ieee80211_frequency_to_channel(freq);
3614 req.bw = mt76_connac_chan_bw(&mphy->chandef);
3615 req.monitor_chan = chandef->chan->hw_value;
3616 req.monitor_central_chan =
3617 ieee80211_frequency_to_channel(chandef->center_freq1);
3618 req.monitor_bw = mt76_connac_chan_bw(chandef);
3619 req.band_idx = phy->mt76->band_idx;
3620 req.scan_mode = 1;
3621 break;
3622 }
3623 case CH_SWITCH_BACKGROUND_SCAN_RUNNING:
3624 req.monitor_chan = chandef->chan->hw_value;
3625 req.monitor_central_chan =
3626 ieee80211_frequency_to_channel(chandef->center_freq1);
3627 req.band_idx = phy->mt76->band_idx;
3628 req.scan_mode = 2;
3629 break;
3630 case CH_SWITCH_BACKGROUND_SCAN_STOP:
3631 req.chan = chan->hw_value;
3632 req.central_chan = ieee80211_frequency_to_channel(freq);
3633 req.bw = mt76_connac_chan_bw(&mphy->chandef);
3634 req.tx_stream = hweight8(mphy->antenna_mask);
3635 req.rx_stream = mphy->antenna_mask;
3636 break;
3637 default:
3638 return -EINVAL;
3639 }
3640 req.band = chandef ? chandef->chan->band == NL80211_BAND_5GHZ : 1;
3641
3642 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(OFFCH_SCAN_CTRL),
3643 &req, sizeof(req), false);
3644 }
3645
mt7996_mcu_rdd_background_enable(struct mt7996_phy * phy,struct cfg80211_chan_def * chandef)3646 int mt7996_mcu_rdd_background_enable(struct mt7996_phy *phy,
3647 struct cfg80211_chan_def *chandef)
3648 {
3649 struct mt7996_dev *dev = phy->dev;
3650 int err, region, rdd_idx = mt7996_get_rdd_idx(phy, true);
3651
3652 if (!chandef) { /* disable offchain */
3653 err = mt7996_mcu_rdd_cmd(dev, RDD_STOP, rdd_idx, 0);
3654 if (err)
3655 return err;
3656
3657 return mt7996_mcu_background_chain_ctrl(phy, NULL,
3658 CH_SWITCH_BACKGROUND_SCAN_STOP);
3659 }
3660
3661 err = mt7996_mcu_background_chain_ctrl(phy, chandef,
3662 CH_SWITCH_BACKGROUND_SCAN_START);
3663 if (err)
3664 return err;
3665
3666 switch (dev->mt76.region) {
3667 case NL80211_DFS_ETSI:
3668 region = 0;
3669 break;
3670 case NL80211_DFS_JP:
3671 region = 2;
3672 break;
3673 case NL80211_DFS_FCC:
3674 default:
3675 region = 1;
3676 break;
3677 }
3678
3679 return mt7996_mcu_rdd_cmd(dev, RDD_START, rdd_idx, region);
3680 }
3681
mt7996_mcu_set_chan_info(struct mt7996_phy * phy,u16 tag)3682 int mt7996_mcu_set_chan_info(struct mt7996_phy *phy, u16 tag)
3683 {
3684 static const u8 ch_band[] = {
3685 [NL80211_BAND_2GHZ] = 0,
3686 [NL80211_BAND_5GHZ] = 1,
3687 [NL80211_BAND_6GHZ] = 2,
3688 };
3689 struct mt7996_dev *dev = phy->dev;
3690 struct cfg80211_chan_def *chandef = &phy->mt76->chandef;
3691 int freq1 = chandef->center_freq1;
3692 u8 band_idx = phy->mt76->band_idx;
3693 struct {
3694 /* fixed field */
3695 u8 __rsv[4];
3696
3697 __le16 tag;
3698 __le16 len;
3699 u8 control_ch;
3700 u8 center_ch;
3701 u8 bw;
3702 u8 tx_path_num;
3703 u8 rx_path; /* mask or num */
3704 u8 switch_reason;
3705 u8 band_idx;
3706 u8 center_ch2; /* for 80+80 only */
3707 __le16 cac_case;
3708 u8 channel_band;
3709 u8 rsv0;
3710 __le32 outband_freq;
3711 u8 txpower_drop;
3712 u8 ap_bw;
3713 u8 ap_center_ch;
3714 u8 rsv1[53];
3715 } __packed req = {
3716 .tag = cpu_to_le16(tag),
3717 .len = cpu_to_le16(sizeof(req) - 4),
3718 .control_ch = chandef->chan->hw_value,
3719 .center_ch = ieee80211_frequency_to_channel(freq1),
3720 .bw = mt76_connac_chan_bw(chandef),
3721 .tx_path_num = hweight16(phy->mt76->chainmask),
3722 .rx_path = mt7996_rx_chainmask(phy) >> dev->chainshift[band_idx],
3723 .band_idx = band_idx,
3724 .channel_band = ch_band[chandef->chan->band],
3725 };
3726
3727 if (phy->mt76->hw->conf.flags & IEEE80211_CONF_MONITOR)
3728 req.switch_reason = CH_SWITCH_NORMAL;
3729 else if (phy->mt76->offchannel ||
3730 phy->mt76->hw->conf.flags & IEEE80211_CONF_IDLE)
3731 req.switch_reason = CH_SWITCH_SCAN_BYPASS_DPD;
3732 else if (!cfg80211_reg_can_beacon(phy->mt76->hw->wiphy, chandef,
3733 NL80211_IFTYPE_AP))
3734 req.switch_reason = CH_SWITCH_DFS;
3735 else
3736 req.switch_reason = CH_SWITCH_NORMAL;
3737
3738 if (tag == UNI_CHANNEL_SWITCH)
3739 req.rx_path = hweight8(req.rx_path);
3740
3741 if (chandef->width == NL80211_CHAN_WIDTH_80P80) {
3742 int freq2 = chandef->center_freq2;
3743
3744 req.center_ch2 = ieee80211_frequency_to_channel(freq2);
3745 }
3746
3747 return mt76_mcu_send_msg(&dev->mt76, MCU_WMWA_UNI_CMD(CHANNEL_SWITCH),
3748 &req, sizeof(req), true);
3749 }
3750
mt7996_mcu_set_eeprom_flash(struct mt7996_dev * dev)3751 static int mt7996_mcu_set_eeprom_flash(struct mt7996_dev *dev)
3752 {
3753 #define MAX_PAGE_IDX_MASK GENMASK(7, 5)
3754 #define PAGE_IDX_MASK GENMASK(4, 2)
3755 #define PER_PAGE_SIZE 0x400
3756 struct mt7996_mcu_eeprom req = {
3757 .tag = cpu_to_le16(UNI_EFUSE_BUFFER_MODE),
3758 .buffer_mode = EE_MODE_BUFFER
3759 };
3760 u16 eeprom_size = MT7996_EEPROM_SIZE;
3761 u8 total = DIV_ROUND_UP(eeprom_size, PER_PAGE_SIZE);
3762 u8 *eep = (u8 *)dev->mt76.eeprom.data;
3763 int eep_len, i;
3764
3765 for (i = 0; i < total; i++, eep += eep_len) {
3766 struct sk_buff *skb;
3767 int ret, msg_len;
3768
3769 if (i == total - 1 && !!(eeprom_size % PER_PAGE_SIZE))
3770 eep_len = eeprom_size % PER_PAGE_SIZE;
3771 else
3772 eep_len = PER_PAGE_SIZE;
3773
3774 msg_len = sizeof(req) + eep_len;
3775 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, msg_len);
3776 if (!skb)
3777 return -ENOMEM;
3778
3779 req.len = cpu_to_le16(msg_len - 4);
3780 req.format = FIELD_PREP(MAX_PAGE_IDX_MASK, total - 1) |
3781 FIELD_PREP(PAGE_IDX_MASK, i) | EE_FORMAT_WHOLE;
3782 req.buf_len = cpu_to_le16(eep_len);
3783
3784 skb_put_data(skb, &req, sizeof(req));
3785 skb_put_data(skb, eep, eep_len);
3786
3787 ret = mt76_mcu_skb_send_msg(&dev->mt76, skb,
3788 MCU_WM_UNI_CMD(EFUSE_CTRL), true);
3789 if (ret)
3790 return ret;
3791 }
3792
3793 return 0;
3794 }
3795
mt7996_mcu_set_eeprom(struct mt7996_dev * dev)3796 int mt7996_mcu_set_eeprom(struct mt7996_dev *dev)
3797 {
3798 struct mt7996_mcu_eeprom req = {
3799 .tag = cpu_to_le16(UNI_EFUSE_BUFFER_MODE),
3800 .len = cpu_to_le16(sizeof(req) - 4),
3801 .buffer_mode = EE_MODE_EFUSE,
3802 .format = EE_FORMAT_WHOLE
3803 };
3804
3805 if (dev->flash_mode)
3806 return mt7996_mcu_set_eeprom_flash(dev);
3807
3808 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(EFUSE_CTRL),
3809 &req, sizeof(req), true);
3810 }
3811
mt7996_mcu_get_eeprom(struct mt7996_dev * dev,u32 offset,u8 * buf,u32 buf_len)3812 int mt7996_mcu_get_eeprom(struct mt7996_dev *dev, u32 offset, u8 *buf, u32 buf_len)
3813 {
3814 struct {
3815 u8 _rsv[4];
3816
3817 __le16 tag;
3818 __le16 len;
3819 __le32 addr;
3820 __le32 valid;
3821 u8 data[16];
3822 } __packed req = {
3823 .tag = cpu_to_le16(UNI_EFUSE_ACCESS),
3824 .len = cpu_to_le16(sizeof(req) - 4),
3825 .addr = cpu_to_le32(round_down(offset,
3826 MT7996_EEPROM_BLOCK_SIZE)),
3827 };
3828 struct sk_buff *skb;
3829 bool valid;
3830 int ret;
3831
3832 ret = mt76_mcu_send_and_get_msg(&dev->mt76,
3833 MCU_WM_UNI_CMD_QUERY(EFUSE_CTRL),
3834 &req, sizeof(req), true, &skb);
3835 if (ret)
3836 return ret;
3837
3838 valid = le32_to_cpu(*(__le32 *)(skb->data + 16));
3839 if (valid) {
3840 u32 addr = le32_to_cpu(*(__le32 *)(skb->data + 12));
3841
3842 if (!buf)
3843 buf = (u8 *)dev->mt76.eeprom.data + addr;
3844 if (!buf_len || buf_len > MT7996_EEPROM_BLOCK_SIZE)
3845 buf_len = MT7996_EEPROM_BLOCK_SIZE;
3846
3847 skb_pull(skb, 48);
3848 memcpy(buf, skb->data, buf_len);
3849 } else {
3850 ret = -EINVAL;
3851 }
3852
3853 dev_kfree_skb(skb);
3854
3855 return ret;
3856 }
3857
mt7996_mcu_get_eeprom_free_block(struct mt7996_dev * dev,u8 * block_num)3858 int mt7996_mcu_get_eeprom_free_block(struct mt7996_dev *dev, u8 *block_num)
3859 {
3860 struct {
3861 u8 _rsv[4];
3862
3863 __le16 tag;
3864 __le16 len;
3865 u8 num;
3866 u8 version;
3867 u8 die_idx;
3868 u8 _rsv2;
3869 } __packed req = {
3870 .tag = cpu_to_le16(UNI_EFUSE_FREE_BLOCK),
3871 .len = cpu_to_le16(sizeof(req) - 4),
3872 .version = 2,
3873 };
3874 struct sk_buff *skb;
3875 int ret;
3876
3877 ret = mt76_mcu_send_and_get_msg(&dev->mt76, MCU_WM_UNI_CMD_QUERY(EFUSE_CTRL), &req,
3878 sizeof(req), true, &skb);
3879 if (ret)
3880 return ret;
3881
3882 *block_num = *(u8 *)(skb->data + 8);
3883 dev_kfree_skb(skb);
3884
3885 return 0;
3886 }
3887
mt7996_mcu_get_chip_config(struct mt7996_dev * dev,u32 * cap)3888 int mt7996_mcu_get_chip_config(struct mt7996_dev *dev, u32 *cap)
3889 {
3890 #define NIC_CAP 3
3891 #define UNI_EVENT_CHIP_CONFIG_EFUSE_VERSION 0x21
3892 struct {
3893 u8 _rsv[4];
3894
3895 __le16 tag;
3896 __le16 len;
3897 } __packed req = {
3898 .tag = cpu_to_le16(NIC_CAP),
3899 .len = cpu_to_le16(sizeof(req) - 4),
3900 };
3901 struct sk_buff *skb;
3902 u8 *buf;
3903 int ret;
3904
3905 ret = mt76_mcu_send_and_get_msg(&dev->mt76,
3906 MCU_WM_UNI_CMD_QUERY(CHIP_CONFIG), &req,
3907 sizeof(req), true, &skb);
3908 if (ret)
3909 return ret;
3910
3911 /* fixed field */
3912 skb_pull(skb, 4);
3913
3914 buf = skb->data;
3915 while (buf - skb->data < skb->len) {
3916 struct tlv *tlv = (struct tlv *)buf;
3917
3918 switch (le16_to_cpu(tlv->tag)) {
3919 case UNI_EVENT_CHIP_CONFIG_EFUSE_VERSION:
3920 *cap = le32_to_cpu(*(__le32 *)(buf + sizeof(*tlv)));
3921 break;
3922 default:
3923 break;
3924 }
3925
3926 buf += le16_to_cpu(tlv->len);
3927 }
3928
3929 dev_kfree_skb(skb);
3930
3931 return 0;
3932 }
3933
mt7996_mcu_get_chan_mib_info(struct mt7996_phy * phy,bool chan_switch)3934 int mt7996_mcu_get_chan_mib_info(struct mt7996_phy *phy, bool chan_switch)
3935 {
3936 enum {
3937 IDX_TX_TIME,
3938 IDX_RX_TIME,
3939 IDX_OBSS_AIRTIME,
3940 IDX_NON_WIFI_TIME,
3941 IDX_NUM
3942 };
3943 struct {
3944 struct {
3945 u8 band;
3946 u8 __rsv[3];
3947 } hdr;
3948 struct {
3949 __le16 tag;
3950 __le16 len;
3951 __le32 offs;
3952 } data[IDX_NUM];
3953 } __packed req = {
3954 .hdr.band = phy->mt76->band_idx,
3955 };
3956 static const u32 offs[] = {
3957 [IDX_TX_TIME] = UNI_MIB_TX_TIME,
3958 [IDX_RX_TIME] = UNI_MIB_RX_TIME,
3959 [IDX_OBSS_AIRTIME] = UNI_MIB_OBSS_AIRTIME,
3960 [IDX_NON_WIFI_TIME] = UNI_MIB_NON_WIFI_TIME,
3961 };
3962 struct mt76_channel_state *state = phy->mt76->chan_state;
3963 struct mt76_channel_state *state_ts = &phy->state_ts;
3964 struct mt7996_dev *dev = phy->dev;
3965 struct mt7996_mcu_mib *res;
3966 struct sk_buff *skb;
3967 int i, ret;
3968
3969 for (i = 0; i < IDX_NUM; i++) {
3970 req.data[i].tag = cpu_to_le16(UNI_CMD_MIB_DATA);
3971 req.data[i].len = cpu_to_le16(sizeof(req.data[i]));
3972 req.data[i].offs = cpu_to_le32(offs[i]);
3973 }
3974
3975 ret = mt76_mcu_send_and_get_msg(&dev->mt76, MCU_WM_UNI_CMD_QUERY(GET_MIB_INFO),
3976 &req, sizeof(req), true, &skb);
3977 if (ret)
3978 return ret;
3979
3980 skb_pull(skb, sizeof(req.hdr));
3981
3982 res = (struct mt7996_mcu_mib *)(skb->data);
3983
3984 if (chan_switch)
3985 goto out;
3986
3987 #define __res_u64(s) le64_to_cpu(res[s].data)
3988 state->cc_tx += __res_u64(IDX_TX_TIME) - state_ts->cc_tx;
3989 state->cc_bss_rx += __res_u64(IDX_RX_TIME) - state_ts->cc_bss_rx;
3990 state->cc_rx += __res_u64(IDX_RX_TIME) +
3991 __res_u64(IDX_OBSS_AIRTIME) -
3992 state_ts->cc_rx;
3993 state->cc_busy += __res_u64(IDX_TX_TIME) +
3994 __res_u64(IDX_RX_TIME) +
3995 __res_u64(IDX_OBSS_AIRTIME) +
3996 __res_u64(IDX_NON_WIFI_TIME) -
3997 state_ts->cc_busy;
3998 out:
3999 state_ts->cc_tx = __res_u64(IDX_TX_TIME);
4000 state_ts->cc_bss_rx = __res_u64(IDX_RX_TIME);
4001 state_ts->cc_rx = __res_u64(IDX_RX_TIME) + __res_u64(IDX_OBSS_AIRTIME);
4002 state_ts->cc_busy = __res_u64(IDX_TX_TIME) +
4003 __res_u64(IDX_RX_TIME) +
4004 __res_u64(IDX_OBSS_AIRTIME) +
4005 __res_u64(IDX_NON_WIFI_TIME);
4006 #undef __res_u64
4007
4008 dev_kfree_skb(skb);
4009
4010 return 0;
4011 }
4012
mt7996_mcu_get_temperature(struct mt7996_phy * phy)4013 int mt7996_mcu_get_temperature(struct mt7996_phy *phy)
4014 {
4015 #define TEMPERATURE_QUERY 0
4016 #define GET_TEMPERATURE 0
4017 struct {
4018 u8 _rsv[4];
4019
4020 __le16 tag;
4021 __le16 len;
4022
4023 u8 rsv1;
4024 u8 action;
4025 u8 band_idx;
4026 u8 rsv2;
4027 } req = {
4028 .tag = cpu_to_le16(TEMPERATURE_QUERY),
4029 .len = cpu_to_le16(sizeof(req) - 4),
4030 .action = GET_TEMPERATURE,
4031 .band_idx = phy->mt76->band_idx,
4032 };
4033 struct mt7996_mcu_thermal {
4034 u8 _rsv[4];
4035
4036 __le16 tag;
4037 __le16 len;
4038
4039 __le32 rsv;
4040 __le32 temperature;
4041 } __packed * res;
4042 struct sk_buff *skb;
4043 int ret;
4044 u32 temp;
4045
4046 ret = mt76_mcu_send_and_get_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(THERMAL),
4047 &req, sizeof(req), true, &skb);
4048 if (ret)
4049 return ret;
4050
4051 res = (void *)skb->data;
4052 temp = le32_to_cpu(res->temperature);
4053 dev_kfree_skb(skb);
4054
4055 return temp;
4056 }
4057
mt7996_mcu_set_thermal_throttling(struct mt7996_phy * phy,u8 state)4058 int mt7996_mcu_set_thermal_throttling(struct mt7996_phy *phy, u8 state)
4059 {
4060 struct {
4061 u8 _rsv[4];
4062
4063 __le16 tag;
4064 __le16 len;
4065
4066 struct mt7996_mcu_thermal_ctrl ctrl;
4067 } __packed req = {
4068 .tag = cpu_to_le16(UNI_CMD_THERMAL_PROTECT_DUTY_CONFIG),
4069 .len = cpu_to_le16(sizeof(req) - 4),
4070 .ctrl = {
4071 .band_idx = phy->mt76->band_idx,
4072 },
4073 };
4074 int level, ret;
4075
4076 /* set duty cycle and level */
4077 for (level = 0; level < 4; level++) {
4078 req.ctrl.duty.duty_level = level;
4079 req.ctrl.duty.duty_cycle = state;
4080 state /= 2;
4081
4082 ret = mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(THERMAL),
4083 &req, sizeof(req), false);
4084 if (ret)
4085 return ret;
4086 }
4087
4088 return 0;
4089 }
4090
mt7996_mcu_set_thermal_protect(struct mt7996_phy * phy,bool enable)4091 int mt7996_mcu_set_thermal_protect(struct mt7996_phy *phy, bool enable)
4092 {
4093 #define SUSTAIN_PERIOD 10
4094 struct {
4095 u8 _rsv[4];
4096
4097 __le16 tag;
4098 __le16 len;
4099
4100 struct mt7996_mcu_thermal_ctrl ctrl;
4101 struct mt7996_mcu_thermal_enable enable;
4102 } __packed req = {
4103 .len = cpu_to_le16(sizeof(req) - 4 - sizeof(req.enable)),
4104 .ctrl = {
4105 .band_idx = phy->mt76->band_idx,
4106 .type.protect_type = 1,
4107 .type.trigger_type = 1,
4108 },
4109 };
4110 int ret;
4111
4112 req.tag = cpu_to_le16(UNI_CMD_THERMAL_PROTECT_DISABLE);
4113
4114 ret = mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(THERMAL),
4115 &req, sizeof(req) - sizeof(req.enable), false);
4116 if (ret || !enable)
4117 return ret;
4118
4119 /* set high-temperature trigger threshold */
4120 req.tag = cpu_to_le16(UNI_CMD_THERMAL_PROTECT_ENABLE);
4121 req.enable.restore_temp = cpu_to_le32(phy->throttle_temp[0]);
4122 req.enable.trigger_temp = cpu_to_le32(phy->throttle_temp[1]);
4123 req.enable.sustain_time = cpu_to_le16(SUSTAIN_PERIOD);
4124
4125 req.len = cpu_to_le16(sizeof(req) - 4);
4126
4127 return mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(THERMAL),
4128 &req, sizeof(req), false);
4129 }
4130
mt7996_mcu_set_ser(struct mt7996_dev * dev,u8 action,u8 val,u8 band)4131 int mt7996_mcu_set_ser(struct mt7996_dev *dev, u8 action, u8 val, u8 band)
4132 {
4133 struct {
4134 u8 rsv[4];
4135
4136 __le16 tag;
4137 __le16 len;
4138
4139 union {
4140 struct {
4141 __le32 mask;
4142 } __packed set;
4143
4144 struct {
4145 u8 method;
4146 u8 band;
4147 u8 rsv2[2];
4148 } __packed trigger;
4149 };
4150 } __packed req = {
4151 .tag = cpu_to_le16(action),
4152 .len = cpu_to_le16(sizeof(req) - 4),
4153 };
4154
4155 switch (action) {
4156 case UNI_CMD_SER_SET:
4157 req.set.mask = cpu_to_le32(val);
4158 break;
4159 case UNI_CMD_SER_TRIGGER:
4160 req.trigger.method = val;
4161 req.trigger.band = band;
4162 break;
4163 default:
4164 return -EINVAL;
4165 }
4166
4167 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SER),
4168 &req, sizeof(req), false);
4169 }
4170
mt7996_mcu_set_txbf(struct mt7996_dev * dev,u8 action)4171 int mt7996_mcu_set_txbf(struct mt7996_dev *dev, u8 action)
4172 {
4173 #define MT7996_BF_MAX_SIZE sizeof(union bf_tag_tlv)
4174 #define BF_PROCESSING 4
4175 struct uni_header hdr;
4176 struct sk_buff *skb;
4177 struct tlv *tlv;
4178 int len = sizeof(hdr) + MT7996_BF_MAX_SIZE;
4179
4180 memset(&hdr, 0, sizeof(hdr));
4181
4182 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
4183 if (!skb)
4184 return -ENOMEM;
4185
4186 skb_put_data(skb, &hdr, sizeof(hdr));
4187
4188 switch (action) {
4189 case BF_SOUNDING_ON: {
4190 struct bf_sounding_on *req_snd_on;
4191
4192 tlv = mt7996_mcu_add_uni_tlv(skb, action, sizeof(*req_snd_on));
4193 req_snd_on = (struct bf_sounding_on *)tlv;
4194 req_snd_on->snd_mode = BF_PROCESSING;
4195 break;
4196 }
4197 case BF_HW_EN_UPDATE: {
4198 struct bf_hw_en_status_update *req_hw_en;
4199
4200 tlv = mt7996_mcu_add_uni_tlv(skb, action, sizeof(*req_hw_en));
4201 req_hw_en = (struct bf_hw_en_status_update *)tlv;
4202 req_hw_en->ebf = true;
4203 req_hw_en->ibf = dev->ibf;
4204 break;
4205 }
4206 case BF_MOD_EN_CTRL: {
4207 struct bf_mod_en_ctrl *req_mod_en;
4208
4209 tlv = mt7996_mcu_add_uni_tlv(skb, action, sizeof(*req_mod_en));
4210 req_mod_en = (struct bf_mod_en_ctrl *)tlv;
4211 req_mod_en->bf_num = mt7996_band_valid(dev, MT_BAND2) ? 3 : 2;
4212 req_mod_en->bf_bitmap = mt7996_band_valid(dev, MT_BAND2) ?
4213 GENMASK(2, 0) : GENMASK(1, 0);
4214 break;
4215 }
4216 default:
4217 return -EINVAL;
4218 }
4219
4220 return mt76_mcu_skb_send_msg(&dev->mt76, skb, MCU_WM_UNI_CMD(BF), true);
4221 }
4222
4223 static int
mt7996_mcu_enable_obss_spr(struct mt7996_phy * phy,u16 action,u8 val)4224 mt7996_mcu_enable_obss_spr(struct mt7996_phy *phy, u16 action, u8 val)
4225 {
4226 struct mt7996_dev *dev = phy->dev;
4227 struct {
4228 u8 band_idx;
4229 u8 __rsv[3];
4230
4231 __le16 tag;
4232 __le16 len;
4233
4234 __le32 val;
4235 } __packed req = {
4236 .band_idx = phy->mt76->band_idx,
4237 .tag = cpu_to_le16(action),
4238 .len = cpu_to_le16(sizeof(req) - 4),
4239 .val = cpu_to_le32(val),
4240 };
4241
4242 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SR),
4243 &req, sizeof(req), true);
4244 }
4245
4246 static int
mt7996_mcu_set_obss_spr_pd(struct mt7996_phy * phy,struct ieee80211_he_obss_pd * he_obss_pd)4247 mt7996_mcu_set_obss_spr_pd(struct mt7996_phy *phy,
4248 struct ieee80211_he_obss_pd *he_obss_pd)
4249 {
4250 struct mt7996_dev *dev = phy->dev;
4251 u8 max_th = 82, non_srg_max_th = 62;
4252 struct {
4253 u8 band_idx;
4254 u8 __rsv[3];
4255
4256 __le16 tag;
4257 __le16 len;
4258
4259 u8 pd_th_non_srg;
4260 u8 pd_th_srg;
4261 u8 period_offs;
4262 u8 rcpi_src;
4263 __le16 obss_pd_min;
4264 __le16 obss_pd_min_srg;
4265 u8 resp_txpwr_mode;
4266 u8 txpwr_restrict_mode;
4267 u8 txpwr_ref;
4268 u8 __rsv2[3];
4269 } __packed req = {
4270 .band_idx = phy->mt76->band_idx,
4271 .tag = cpu_to_le16(UNI_CMD_SR_SET_PARAM),
4272 .len = cpu_to_le16(sizeof(req) - 4),
4273 .obss_pd_min = cpu_to_le16(max_th),
4274 .obss_pd_min_srg = cpu_to_le16(max_th),
4275 .txpwr_restrict_mode = 2,
4276 .txpwr_ref = 21
4277 };
4278 int ret;
4279
4280 /* disable firmware dynamical PD asjustment */
4281 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE_DPD, false);
4282 if (ret)
4283 return ret;
4284
4285 if (he_obss_pd->sr_ctrl &
4286 IEEE80211_HE_SPR_NON_SRG_OBSS_PD_SR_DISALLOWED)
4287 req.pd_th_non_srg = max_th;
4288 else if (he_obss_pd->sr_ctrl & IEEE80211_HE_SPR_NON_SRG_OFFSET_PRESENT)
4289 req.pd_th_non_srg = max_th - he_obss_pd->non_srg_max_offset;
4290 else
4291 req.pd_th_non_srg = non_srg_max_th;
4292
4293 if (he_obss_pd->sr_ctrl & IEEE80211_HE_SPR_SRG_INFORMATION_PRESENT)
4294 req.pd_th_srg = max_th - he_obss_pd->max_offset;
4295
4296 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SR),
4297 &req, sizeof(req), true);
4298 }
4299
4300 static int
mt7996_mcu_set_obss_spr_siga(struct mt7996_phy * phy,struct mt7996_vif_link * link,struct ieee80211_he_obss_pd * he_obss_pd)4301 mt7996_mcu_set_obss_spr_siga(struct mt7996_phy *phy,
4302 struct mt7996_vif_link *link,
4303 struct ieee80211_he_obss_pd *he_obss_pd)
4304 {
4305 struct mt7996_dev *dev = phy->dev;
4306 u8 omac = link->mt76.omac_idx;
4307 struct {
4308 u8 band_idx;
4309 u8 __rsv[3];
4310
4311 __le16 tag;
4312 __le16 len;
4313
4314 u8 omac;
4315 u8 __rsv2[3];
4316 u8 flag[20];
4317 } __packed req = {
4318 .band_idx = phy->mt76->band_idx,
4319 .tag = cpu_to_le16(UNI_CMD_SR_SET_SIGA),
4320 .len = cpu_to_le16(sizeof(req) - 4),
4321 .omac = omac > HW_BSSID_MAX ? omac - 12 : omac,
4322 };
4323 int ret;
4324
4325 if (he_obss_pd->sr_ctrl & IEEE80211_HE_SPR_HESIGA_SR_VAL15_ALLOWED)
4326 req.flag[req.omac] = 0xf;
4327 else
4328 return 0;
4329
4330 /* switch to normal AP mode */
4331 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE_MODE, 0);
4332 if (ret)
4333 return ret;
4334
4335 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SR),
4336 &req, sizeof(req), true);
4337 }
4338
4339 static int
mt7996_mcu_set_obss_spr_bitmap(struct mt7996_phy * phy,struct ieee80211_he_obss_pd * he_obss_pd)4340 mt7996_mcu_set_obss_spr_bitmap(struct mt7996_phy *phy,
4341 struct ieee80211_he_obss_pd *he_obss_pd)
4342 {
4343 struct mt7996_dev *dev = phy->dev;
4344 struct {
4345 u8 band_idx;
4346 u8 __rsv[3];
4347
4348 __le16 tag;
4349 __le16 len;
4350
4351 __le32 color_l[2];
4352 __le32 color_h[2];
4353 __le32 bssid_l[2];
4354 __le32 bssid_h[2];
4355 } __packed req = {
4356 .band_idx = phy->mt76->band_idx,
4357 .tag = cpu_to_le16(UNI_CMD_SR_SET_SRG_BITMAP),
4358 .len = cpu_to_le16(sizeof(req) - 4),
4359 };
4360 u32 bitmap;
4361
4362 memcpy(&bitmap, he_obss_pd->bss_color_bitmap, sizeof(bitmap));
4363 req.color_l[req.band_idx] = cpu_to_le32(bitmap);
4364
4365 memcpy(&bitmap, he_obss_pd->bss_color_bitmap + 4, sizeof(bitmap));
4366 req.color_h[req.band_idx] = cpu_to_le32(bitmap);
4367
4368 memcpy(&bitmap, he_obss_pd->partial_bssid_bitmap, sizeof(bitmap));
4369 req.bssid_l[req.band_idx] = cpu_to_le32(bitmap);
4370
4371 memcpy(&bitmap, he_obss_pd->partial_bssid_bitmap + 4, sizeof(bitmap));
4372 req.bssid_h[req.band_idx] = cpu_to_le32(bitmap);
4373
4374 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SR), &req,
4375 sizeof(req), true);
4376 }
4377
mt7996_mcu_add_obss_spr(struct mt7996_phy * phy,struct mt7996_vif_link * link,struct ieee80211_he_obss_pd * he_obss_pd)4378 int mt7996_mcu_add_obss_spr(struct mt7996_phy *phy,
4379 struct mt7996_vif_link *link,
4380 struct ieee80211_he_obss_pd *he_obss_pd)
4381 {
4382 int ret;
4383
4384 /* enable firmware scene detection algorithms */
4385 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE_SD,
4386 sr_scene_detect);
4387 if (ret)
4388 return ret;
4389
4390 /* firmware dynamically adjusts PD threshold so skip manual control */
4391 if (sr_scene_detect && !he_obss_pd->enable)
4392 return 0;
4393
4394 /* enable spatial reuse */
4395 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE,
4396 he_obss_pd->enable);
4397 if (ret)
4398 return ret;
4399
4400 if (sr_scene_detect || !he_obss_pd->enable)
4401 return 0;
4402
4403 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE_TX, true);
4404 if (ret)
4405 return ret;
4406
4407 /* set SRG/non-SRG OBSS PD threshold */
4408 ret = mt7996_mcu_set_obss_spr_pd(phy, he_obss_pd);
4409 if (ret)
4410 return ret;
4411
4412 /* Set SR prohibit */
4413 ret = mt7996_mcu_set_obss_spr_siga(phy, link, he_obss_pd);
4414 if (ret)
4415 return ret;
4416
4417 /* set SRG BSS color/BSSID bitmap */
4418 return mt7996_mcu_set_obss_spr_bitmap(phy, he_obss_pd);
4419 }
4420
mt7996_mcu_update_bss_color(struct mt7996_dev * dev,struct mt76_vif_link * mlink,struct cfg80211_he_bss_color * he_bss_color)4421 int mt7996_mcu_update_bss_color(struct mt7996_dev *dev,
4422 struct mt76_vif_link *mlink,
4423 struct cfg80211_he_bss_color *he_bss_color)
4424 {
4425 int len = sizeof(struct bss_req_hdr) + sizeof(struct bss_color_tlv);
4426 struct bss_color_tlv *bss_color;
4427 struct sk_buff *skb;
4428 struct tlv *tlv;
4429
4430 skb = __mt7996_mcu_alloc_bss_req(&dev->mt76, mlink, len);
4431 if (IS_ERR(skb))
4432 return PTR_ERR(skb);
4433
4434 tlv = mt76_connac_mcu_add_tlv(skb, UNI_BSS_INFO_BSS_COLOR,
4435 sizeof(*bss_color));
4436 bss_color = (struct bss_color_tlv *)tlv;
4437 bss_color->enable = he_bss_color->enabled;
4438 bss_color->color = he_bss_color->color;
4439
4440 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
4441 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
4442 }
4443
4444 #define TWT_AGRT_TRIGGER BIT(0)
4445 #define TWT_AGRT_ANNOUNCE BIT(1)
4446 #define TWT_AGRT_PROTECT BIT(2)
4447
mt7996_mcu_twt_agrt_update(struct mt7996_dev * dev,struct mt7996_vif_link * link,struct mt7996_twt_flow * flow,int cmd)4448 int mt7996_mcu_twt_agrt_update(struct mt7996_dev *dev,
4449 struct mt7996_vif_link *link,
4450 struct mt7996_twt_flow *flow,
4451 int cmd)
4452 {
4453 struct {
4454 /* fixed field */
4455 u8 bss;
4456 u8 _rsv[3];
4457
4458 __le16 tag;
4459 __le16 len;
4460 u8 tbl_idx;
4461 u8 cmd;
4462 u8 own_mac_idx;
4463 u8 flowid; /* 0xff for group id */
4464 __le16 peer_id; /* specify the peer_id (msb=0)
4465 * or group_id (msb=1)
4466 */
4467 u8 duration; /* 256 us */
4468 u8 bss_idx;
4469 __le64 start_tsf;
4470 __le16 mantissa;
4471 u8 exponent;
4472 u8 is_ap;
4473 u8 agrt_params;
4474 u8 __rsv2[23];
4475 } __packed req = {
4476 .tag = cpu_to_le16(UNI_CMD_TWT_ARGT_UPDATE),
4477 .len = cpu_to_le16(sizeof(req) - 4),
4478 .tbl_idx = flow->table_id,
4479 .cmd = cmd,
4480 .own_mac_idx = link->mt76.omac_idx,
4481 .flowid = flow->id,
4482 .peer_id = cpu_to_le16(flow->wcid),
4483 .duration = flow->duration,
4484 .bss = link->mt76.idx,
4485 .bss_idx = link->mt76.idx,
4486 .start_tsf = cpu_to_le64(flow->tsf),
4487 .mantissa = flow->mantissa,
4488 .exponent = flow->exp,
4489 .is_ap = true,
4490 };
4491
4492 if (flow->protection)
4493 req.agrt_params |= TWT_AGRT_PROTECT;
4494 if (!flow->flowtype)
4495 req.agrt_params |= TWT_AGRT_ANNOUNCE;
4496 if (flow->trigger)
4497 req.agrt_params |= TWT_AGRT_TRIGGER;
4498
4499 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(TWT),
4500 &req, sizeof(req), true);
4501 }
4502
mt7996_mcu_set_rts_thresh(struct mt7996_phy * phy,u32 val)4503 int mt7996_mcu_set_rts_thresh(struct mt7996_phy *phy, u32 val)
4504 {
4505 struct {
4506 u8 band_idx;
4507 u8 _rsv[3];
4508
4509 __le16 tag;
4510 __le16 len;
4511 __le32 len_thresh;
4512 __le32 pkt_thresh;
4513 } __packed req = {
4514 .band_idx = phy->mt76->band_idx,
4515 .tag = cpu_to_le16(UNI_BAND_CONFIG_RTS_THRESHOLD),
4516 .len = cpu_to_le16(sizeof(req) - 4),
4517 .len_thresh = cpu_to_le32(val),
4518 .pkt_thresh = cpu_to_le32(0x2),
4519 };
4520
4521 return mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(BAND_CONFIG),
4522 &req, sizeof(req), true);
4523 }
4524
mt7996_mcu_set_radio_en(struct mt7996_phy * phy,bool enable)4525 int mt7996_mcu_set_radio_en(struct mt7996_phy *phy, bool enable)
4526 {
4527 struct {
4528 u8 band_idx;
4529 u8 _rsv[3];
4530
4531 __le16 tag;
4532 __le16 len;
4533 u8 enable;
4534 u8 _rsv2[3];
4535 } __packed req = {
4536 .band_idx = phy->mt76->band_idx,
4537 .tag = cpu_to_le16(UNI_BAND_CONFIG_RADIO_ENABLE),
4538 .len = cpu_to_le16(sizeof(req) - 4),
4539 .enable = enable,
4540 };
4541
4542 return mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(BAND_CONFIG),
4543 &req, sizeof(req), true);
4544 }
4545
mt7996_mcu_rdd_cmd(struct mt7996_dev * dev,int cmd,u8 rdd_idx,u8 val)4546 int mt7996_mcu_rdd_cmd(struct mt7996_dev *dev, int cmd, u8 rdd_idx, u8 val)
4547 {
4548 struct {
4549 u8 _rsv[4];
4550
4551 __le16 tag;
4552 __le16 len;
4553
4554 u8 ctrl;
4555 u8 rdd_idx;
4556 u8 rdd_rx_sel;
4557 u8 val;
4558 u8 rsv[4];
4559 } __packed req = {
4560 .tag = cpu_to_le16(UNI_RDD_CTRL_PARM),
4561 .len = cpu_to_le16(sizeof(req) - 4),
4562 .ctrl = cmd,
4563 .rdd_idx = rdd_idx,
4564 .val = val,
4565 };
4566
4567 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RDD_CTRL),
4568 &req, sizeof(req), true);
4569 }
4570
mt7996_mcu_wtbl_update_hdr_trans(struct mt7996_dev * dev,struct ieee80211_vif * vif,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link)4571 int mt7996_mcu_wtbl_update_hdr_trans(struct mt7996_dev *dev,
4572 struct ieee80211_vif *vif,
4573 struct mt7996_vif_link *link,
4574 struct mt7996_sta_link *msta_link)
4575 {
4576 struct sk_buff *skb;
4577
4578 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76,
4579 &msta_link->wcid,
4580 MT7996_STA_UPDATE_MAX_SIZE);
4581 if (IS_ERR(skb))
4582 return PTR_ERR(skb);
4583
4584 /* starec hdr trans */
4585 mt7996_mcu_sta_hdr_trans_tlv(dev, skb, vif, &msta_link->wcid);
4586 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
4587 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
4588 }
4589
mt7996_mcu_set_fixed_rate_table(struct mt7996_phy * phy,u8 table_idx,u16 rate_idx,bool beacon)4590 int mt7996_mcu_set_fixed_rate_table(struct mt7996_phy *phy, u8 table_idx,
4591 u16 rate_idx, bool beacon)
4592 {
4593 #define UNI_FIXED_RATE_TABLE_SET 0
4594 #define SPE_IXD_SELECT_TXD 0
4595 #define SPE_IXD_SELECT_BMC_WTBL 1
4596 struct mt7996_dev *dev = phy->dev;
4597 struct fixed_rate_table_ctrl req = {
4598 .tag = cpu_to_le16(UNI_FIXED_RATE_TABLE_SET),
4599 .len = cpu_to_le16(sizeof(req) - 4),
4600 .table_idx = table_idx,
4601 .rate_idx = cpu_to_le16(rate_idx),
4602 .gi = 1,
4603 .he_ltf = 1,
4604 };
4605 u8 band_idx = phy->mt76->band_idx;
4606
4607 if (beacon) {
4608 req.spe_idx_sel = SPE_IXD_SELECT_TXD;
4609 req.spe_idx = 24 + band_idx;
4610 phy->beacon_rate = rate_idx;
4611 } else {
4612 req.spe_idx_sel = SPE_IXD_SELECT_BMC_WTBL;
4613 }
4614
4615 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(FIXED_RATE_TABLE),
4616 &req, sizeof(req), false);
4617 }
4618
mt7996_mcu_rf_regval(struct mt7996_dev * dev,u32 regidx,u32 * val,bool set)4619 int mt7996_mcu_rf_regval(struct mt7996_dev *dev, u32 regidx, u32 *val, bool set)
4620 {
4621 struct {
4622 u8 __rsv1[4];
4623
4624 __le16 tag;
4625 __le16 len;
4626 __le16 idx;
4627 u8 __rsv2[2];
4628 __le32 ofs;
4629 __le32 data;
4630 } __packed *res, req = {
4631 .tag = cpu_to_le16(UNI_CMD_ACCESS_RF_REG_BASIC),
4632 .len = cpu_to_le16(sizeof(req) - 4),
4633
4634 .idx = cpu_to_le16(u32_get_bits(regidx, GENMASK(31, 24))),
4635 .ofs = cpu_to_le32(u32_get_bits(regidx, GENMASK(23, 0))),
4636 .data = set ? cpu_to_le32(*val) : 0,
4637 };
4638 struct sk_buff *skb;
4639 int ret;
4640
4641 if (set)
4642 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(REG_ACCESS),
4643 &req, sizeof(req), true);
4644
4645 ret = mt76_mcu_send_and_get_msg(&dev->mt76,
4646 MCU_WM_UNI_CMD_QUERY(REG_ACCESS),
4647 &req, sizeof(req), true, &skb);
4648 if (ret)
4649 return ret;
4650
4651 res = (void *)skb->data;
4652 *val = le32_to_cpu(res->data);
4653 dev_kfree_skb(skb);
4654
4655 return 0;
4656 }
4657
mt7996_mcu_trigger_assert(struct mt7996_dev * dev)4658 int mt7996_mcu_trigger_assert(struct mt7996_dev *dev)
4659 {
4660 struct {
4661 __le16 tag;
4662 __le16 len;
4663 u8 enable;
4664 u8 rsv[3];
4665 } __packed req = {
4666 .len = cpu_to_le16(sizeof(req) - 4),
4667 .enable = true,
4668 };
4669
4670 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(ASSERT_DUMP),
4671 &req, sizeof(req), false);
4672 }
4673
mt7996_mcu_set_rro(struct mt7996_dev * dev,u16 tag,u16 val)4674 int mt7996_mcu_set_rro(struct mt7996_dev *dev, u16 tag, u16 val)
4675 {
4676 struct {
4677 u8 __rsv1[4];
4678 __le16 tag;
4679 __le16 len;
4680 union {
4681 struct {
4682 u8 type;
4683 u8 __rsv2[3];
4684 } __packed platform_type;
4685 struct {
4686 u8 type;
4687 u8 dest;
4688 u8 __rsv2[2];
4689 } __packed bypass_mode;
4690 struct {
4691 u8 path;
4692 u8 __rsv2[3];
4693 } __packed txfree_path;
4694 struct {
4695 __le16 flush_one;
4696 __le16 flush_all;
4697 u8 __rsv2[4];
4698 } __packed timeout;
4699 };
4700 } __packed req = {
4701 .tag = cpu_to_le16(tag),
4702 .len = cpu_to_le16(sizeof(req) - 4),
4703 };
4704
4705 switch (tag) {
4706 case UNI_RRO_SET_PLATFORM_TYPE:
4707 req.platform_type.type = val;
4708 break;
4709 case UNI_RRO_SET_BYPASS_MODE:
4710 req.bypass_mode.type = val;
4711 break;
4712 case UNI_RRO_SET_TXFREE_PATH:
4713 req.txfree_path.path = val;
4714 break;
4715 case UNI_RRO_SET_FLUSH_TIMEOUT:
4716 req.timeout.flush_one = cpu_to_le16(val);
4717 req.timeout.flush_all = cpu_to_le16(2 * val);
4718 break;
4719 default:
4720 return -EINVAL;
4721 }
4722
4723 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RRO), &req,
4724 sizeof(req), true);
4725 }
4726
mt7996_mcu_get_all_sta_info(struct mt7996_phy * phy,u16 tag)4727 int mt7996_mcu_get_all_sta_info(struct mt7996_phy *phy, u16 tag)
4728 {
4729 struct mt7996_dev *dev = phy->dev;
4730 struct {
4731 u8 _rsv[4];
4732
4733 __le16 tag;
4734 __le16 len;
4735 } __packed req = {
4736 .tag = cpu_to_le16(tag),
4737 .len = cpu_to_le16(sizeof(req) - 4),
4738 };
4739
4740 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(ALL_STA_INFO),
4741 &req, sizeof(req), false);
4742 }
4743
mt7996_mcu_wed_rro_reset_sessions(struct mt7996_dev * dev,u16 id)4744 int mt7996_mcu_wed_rro_reset_sessions(struct mt7996_dev *dev, u16 id)
4745 {
4746 struct {
4747 u8 __rsv[4];
4748
4749 __le16 tag;
4750 __le16 len;
4751 __le16 session_id;
4752 u8 pad[4];
4753 } __packed req = {
4754 .tag = cpu_to_le16(UNI_RRO_DEL_BA_SESSION),
4755 .len = cpu_to_le16(sizeof(req) - 4),
4756 .session_id = cpu_to_le16(id),
4757 };
4758
4759 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RRO), &req,
4760 sizeof(req), true);
4761 }
4762
mt7996_mcu_set_sniffer_mode(struct mt7996_phy * phy,bool enabled)4763 int mt7996_mcu_set_sniffer_mode(struct mt7996_phy *phy, bool enabled)
4764 {
4765 struct mt7996_dev *dev = phy->dev;
4766 struct {
4767 u8 band_idx;
4768 u8 _rsv[3];
4769 __le16 tag;
4770 __le16 len;
4771 u8 enable;
4772 u8 _pad[3];
4773 } __packed req = {
4774 .band_idx = phy->mt76->band_idx,
4775 .tag = 0,
4776 .len = cpu_to_le16(sizeof(req) - 4),
4777 .enable = enabled,
4778 };
4779
4780 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SNIFFER), &req,
4781 sizeof(req), true);
4782 }
4783
mt7996_mcu_set_txpower_sku(struct mt7996_phy * phy)4784 int mt7996_mcu_set_txpower_sku(struct mt7996_phy *phy)
4785 {
4786 #define TX_POWER_LIMIT_TABLE_RATE 0
4787 struct mt7996_dev *dev = phy->dev;
4788 struct mt76_phy *mphy = phy->mt76;
4789 struct tx_power_limit_table_ctrl {
4790 u8 __rsv1[4];
4791
4792 __le16 tag;
4793 __le16 len;
4794 u8 power_ctrl_id;
4795 u8 power_limit_type;
4796 u8 band_idx;
4797 } __packed req = {
4798 .tag = cpu_to_le16(UNI_TXPOWER_POWER_LIMIT_TABLE_CTRL),
4799 .len = cpu_to_le16(sizeof(req) + MT7996_SKU_PATH_NUM - 4),
4800 .power_ctrl_id = UNI_TXPOWER_POWER_LIMIT_TABLE_CTRL,
4801 .power_limit_type = TX_POWER_LIMIT_TABLE_RATE,
4802 .band_idx = phy->mt76->band_idx,
4803 };
4804 struct mt76_power_limits la = {};
4805 struct sk_buff *skb;
4806 int i, tx_power;
4807
4808 tx_power = mt76_get_power_bound(mphy, phy->txpower);
4809 tx_power = mt76_get_rate_power_limits(mphy, mphy->chandef.chan,
4810 &la, tx_power);
4811 mphy->txpower_cur = tx_power;
4812
4813 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL,
4814 sizeof(req) + MT7996_SKU_PATH_NUM);
4815 if (!skb)
4816 return -ENOMEM;
4817
4818 skb_put_data(skb, &req, sizeof(req));
4819 /* cck and ofdm */
4820 skb_put_data(skb, &la.cck, sizeof(la.cck));
4821 skb_put_data(skb, &la.ofdm, sizeof(la.ofdm));
4822 /* ht20 */
4823 skb_put_data(skb, &la.mcs[0], 8);
4824 /* ht40 */
4825 skb_put_data(skb, &la.mcs[1], 9);
4826
4827 /* vht */
4828 for (i = 0; i < 4; i++) {
4829 skb_put_data(skb, &la.mcs[i], sizeof(la.mcs[i]));
4830 skb_put_zero(skb, 2); /* padding */
4831 }
4832
4833 /* he */
4834 skb_put_data(skb, &la.ru[0], sizeof(la.ru));
4835 /* eht */
4836 skb_put_data(skb, &la.eht[0], sizeof(la.eht));
4837
4838 /* padding */
4839 skb_put_zero(skb, MT7996_SKU_PATH_NUM - MT7996_SKU_RATE_NUM);
4840
4841 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
4842 MCU_WM_UNI_CMD(TXPOWER), true);
4843 }
4844
mt7996_mcu_cp_support(struct mt7996_dev * dev,u8 mode)4845 int mt7996_mcu_cp_support(struct mt7996_dev *dev, u8 mode)
4846 {
4847 __le32 cp_mode;
4848
4849 if (mode < mt76_connac_lmac_mapping(IEEE80211_AC_BE) ||
4850 mode > mt76_connac_lmac_mapping(IEEE80211_AC_VO))
4851 return -EINVAL;
4852
4853 if (!mt7996_has_wa(dev)) {
4854 struct {
4855 u8 _rsv[4];
4856
4857 __le16 tag;
4858 __le16 len;
4859 u8 cp_mode;
4860 u8 rsv[3];
4861 } __packed req = {
4862 .tag = cpu_to_le16(UNI_CMD_SDO_CP_MODE),
4863 .len = cpu_to_le16(sizeof(req) - 4),
4864 .cp_mode = mode,
4865 };
4866
4867 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_UNI_CMD(SDO),
4868 &req, sizeof(req), false);
4869 }
4870
4871 cp_mode = cpu_to_le32(mode);
4872
4873 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_EXT_CMD(CP_SUPPORT),
4874 &cp_mode, sizeof(cp_mode), true);
4875 }
4876