1 // SPDX-License-Identifier: ISC
2 /*
3 * Copyright (C) 2022 MediaTek Inc.
4 */
5
6 #include <linux/firmware.h>
7 #include <linux/fs.h>
8 #include "mt7996.h"
9 #include "mcu.h"
10 #include "mac.h"
11 #include "eeprom.h"
12
13 #define fw_name(_dev, name, ...) ({ \
14 char *_fw; \
15 switch (mt76_chip(&(_dev)->mt76)) { \
16 case MT7992_DEVICE_ID: \
17 switch ((_dev)->var.type) { \
18 case MT7992_VAR_TYPE_23: \
19 _fw = MT7992_##name##_23; \
20 break; \
21 default: \
22 _fw = MT7992_##name; \
23 } \
24 break; \
25 case MT7990_DEVICE_ID: \
26 _fw = MT7990_##name; \
27 break; \
28 case MT7996_DEVICE_ID: \
29 default: \
30 switch ((_dev)->var.type) { \
31 case MT7996_VAR_TYPE_233: \
32 _fw = MT7996_##name##_233; \
33 break; \
34 default: \
35 _fw = MT7996_##name; \
36 } \
37 break; \
38 } \
39 _fw; \
40 })
41
42 struct mt7996_patch_hdr {
43 char build_date[16];
44 char platform[4];
45 __be32 hw_sw_ver;
46 __be32 patch_ver;
47 __be16 checksum;
48 u16 reserved;
49 struct {
50 __be32 patch_ver;
51 __be32 subsys;
52 __be32 feature;
53 __be32 n_region;
54 __be32 crc;
55 u32 reserved[11];
56 } desc;
57 } __packed;
58
59 struct mt7996_patch_sec {
60 __be32 type;
61 __be32 offs;
62 __be32 size;
63 union {
64 __be32 spec[13];
65 struct {
66 __be32 addr;
67 __be32 len;
68 __be32 sec_key_idx;
69 __be32 align_len;
70 u32 reserved[9];
71 } info;
72 };
73 } __packed;
74
75 struct mt7996_fw_trailer {
76 u8 chip_id;
77 u8 eco_code;
78 u8 n_region;
79 u8 format_ver;
80 u8 format_flag;
81 u8 reserved[2];
82 char fw_ver[10];
83 char build_date[15];
84 u32 crc;
85 } __packed;
86
87 struct mt7996_fw_region {
88 __le32 decomp_crc;
89 __le32 decomp_len;
90 __le32 decomp_blk_sz;
91 u8 reserved[4];
92 __le32 addr;
93 __le32 len;
94 u8 feature_set;
95 u8 reserved1[15];
96 } __packed;
97
98 #define MCU_PATCH_ADDRESS 0x200000
99
100 #define HE_PHY(p, c) u8_get_bits(c, IEEE80211_HE_PHY_##p)
101 #define HE_MAC(m, c) u8_get_bits(c, IEEE80211_HE_MAC_##m)
102 #define EHT_PHY(p, c) u8_get_bits(c, IEEE80211_EHT_PHY_##p)
103
104 static bool sr_scene_detect = true;
105 module_param(sr_scene_detect, bool, 0644);
106 MODULE_PARM_DESC(sr_scene_detect, "Enable firmware scene detection algorithm");
107
108 static u8
mt7996_mcu_get_sta_nss(u16 mcs_map)109 mt7996_mcu_get_sta_nss(u16 mcs_map)
110 {
111 u8 nss;
112
113 for (nss = 8; nss > 0; nss--) {
114 u8 nss_mcs = (mcs_map >> (2 * (nss - 1))) & 3;
115
116 if (nss_mcs != IEEE80211_VHT_MCS_NOT_SUPPORTED)
117 break;
118 }
119
120 return nss - 1;
121 }
122
123 static void
mt7996_mcu_set_sta_he_mcs(struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link,__le16 * he_mcs,u16 mcs_map)124 mt7996_mcu_set_sta_he_mcs(struct ieee80211_link_sta *link_sta,
125 struct mt7996_vif_link *link,
126 __le16 *he_mcs, u16 mcs_map)
127 {
128 int nss, max_nss = link_sta->rx_nss > 3 ? 4 : link_sta->rx_nss;
129 enum nl80211_band band = link->phy->mt76->chandef.chan->band;
130 const u16 *mask = link->bitrate_mask.control[band].he_mcs;
131
132 for (nss = 0; nss < max_nss; nss++) {
133 int mcs;
134
135 switch ((mcs_map >> (2 * nss)) & 0x3) {
136 case IEEE80211_HE_MCS_SUPPORT_0_11:
137 mcs = GENMASK(11, 0);
138 break;
139 case IEEE80211_HE_MCS_SUPPORT_0_9:
140 mcs = GENMASK(9, 0);
141 break;
142 case IEEE80211_HE_MCS_SUPPORT_0_7:
143 mcs = GENMASK(7, 0);
144 break;
145 default:
146 mcs = 0;
147 }
148
149 mcs = mcs ? fls(mcs & mask[nss]) - 1 : -1;
150
151 switch (mcs) {
152 case 0 ... 7:
153 mcs = IEEE80211_HE_MCS_SUPPORT_0_7;
154 break;
155 case 8 ... 9:
156 mcs = IEEE80211_HE_MCS_SUPPORT_0_9;
157 break;
158 case 10 ... 11:
159 mcs = IEEE80211_HE_MCS_SUPPORT_0_11;
160 break;
161 default:
162 mcs = IEEE80211_HE_MCS_NOT_SUPPORTED;
163 break;
164 }
165 mcs_map &= ~(0x3 << (nss * 2));
166 mcs_map |= mcs << (nss * 2);
167 }
168
169 *he_mcs = cpu_to_le16(mcs_map);
170 }
171
172 static void
mt7996_mcu_set_sta_vht_mcs(struct ieee80211_link_sta * link_sta,__le16 * vht_mcs,const u16 * mask)173 mt7996_mcu_set_sta_vht_mcs(struct ieee80211_link_sta *link_sta,
174 __le16 *vht_mcs, const u16 *mask)
175 {
176 u16 mcs, mcs_map = le16_to_cpu(link_sta->vht_cap.vht_mcs.rx_mcs_map);
177 int nss, max_nss = link_sta->rx_nss > 3 ? 4 : link_sta->rx_nss;
178
179 for (nss = 0; nss < max_nss; nss++, mcs_map >>= 2) {
180 switch (mcs_map & 0x3) {
181 case IEEE80211_VHT_MCS_SUPPORT_0_9:
182 mcs = GENMASK(9, 0);
183 break;
184 case IEEE80211_VHT_MCS_SUPPORT_0_8:
185 mcs = GENMASK(8, 0);
186 break;
187 case IEEE80211_VHT_MCS_SUPPORT_0_7:
188 mcs = GENMASK(7, 0);
189 break;
190 default:
191 mcs = 0;
192 }
193
194 vht_mcs[nss] = cpu_to_le16(mcs & mask[nss]);
195 }
196 }
197
198 static void
mt7996_mcu_set_sta_ht_mcs(struct ieee80211_link_sta * link_sta,u8 * ht_mcs,const u8 * mask)199 mt7996_mcu_set_sta_ht_mcs(struct ieee80211_link_sta *link_sta,
200 u8 *ht_mcs, const u8 *mask)
201 {
202 int nss, max_nss = link_sta->rx_nss > 3 ? 4 : link_sta->rx_nss;
203
204 for (nss = 0; nss < max_nss; nss++)
205 ht_mcs[nss] = link_sta->ht_cap.mcs.rx_mask[nss] & mask[nss];
206 }
207
208 static int
mt7996_mcu_parse_response(struct mt76_dev * mdev,int cmd,struct sk_buff * skb,int seq)209 mt7996_mcu_parse_response(struct mt76_dev *mdev, int cmd,
210 struct sk_buff *skb, int seq)
211 {
212 struct mt7996_mcu_rxd *rxd;
213 struct mt7996_mcu_uni_event *event;
214 int mcu_cmd = FIELD_GET(__MCU_CMD_FIELD_ID, cmd);
215 int ret = 0;
216
217 if (!skb) {
218 dev_err(mdev->dev, "Message %08x (seq %d) timeout\n",
219 cmd, seq);
220 return -ETIMEDOUT;
221 }
222
223 rxd = (struct mt7996_mcu_rxd *)skb->data;
224 if (seq != rxd->seq)
225 return -EAGAIN;
226
227 if (cmd == MCU_CMD(PATCH_SEM_CONTROL)) {
228 skb_pull(skb, sizeof(*rxd) - 4);
229 ret = *skb->data;
230 } else if ((rxd->option & MCU_UNI_CMD_EVENT) &&
231 rxd->eid == MCU_UNI_EVENT_RESULT) {
232 skb_pull(skb, sizeof(*rxd));
233 event = (struct mt7996_mcu_uni_event *)skb->data;
234 ret = le32_to_cpu(event->status);
235 /* skip invalid event */
236 if (mcu_cmd != event->cid)
237 ret = -EAGAIN;
238 } else {
239 skb_pull(skb, sizeof(struct mt7996_mcu_rxd));
240 }
241
242 return ret;
243 }
244
245 static int
mt7996_mcu_send_message(struct mt76_dev * mdev,struct sk_buff * skb,int cmd,int * wait_seq)246 mt7996_mcu_send_message(struct mt76_dev *mdev, struct sk_buff *skb,
247 int cmd, int *wait_seq)
248 {
249 struct mt7996_dev *dev = container_of(mdev, struct mt7996_dev, mt76);
250 int txd_len, mcu_cmd = FIELD_GET(__MCU_CMD_FIELD_ID, cmd);
251 struct mt76_connac2_mcu_uni_txd *uni_txd;
252 struct mt76_connac2_mcu_txd *mcu_txd;
253 enum mt76_mcuq_id qid;
254 __le32 *txd;
255 u32 val;
256 u8 seq;
257
258 mdev->mcu.timeout = 20 * HZ;
259
260 seq = ++dev->mt76.mcu.msg_seq & 0xf;
261 if (!seq)
262 seq = ++dev->mt76.mcu.msg_seq & 0xf;
263
264 if (cmd == MCU_CMD(FW_SCATTER)) {
265 qid = MT_MCUQ_FWDL;
266 goto exit;
267 }
268
269 txd_len = cmd & __MCU_CMD_FIELD_UNI ? sizeof(*uni_txd) : sizeof(*mcu_txd);
270 txd = (__le32 *)skb_push(skb, txd_len);
271 if (test_bit(MT76_STATE_MCU_RUNNING, &dev->mphy.state) && mt7996_has_wa(dev))
272 qid = MT_MCUQ_WA;
273 else
274 qid = MT_MCUQ_WM;
275
276 val = FIELD_PREP(MT_TXD0_TX_BYTES, skb->len) |
277 FIELD_PREP(MT_TXD0_PKT_FMT, MT_TX_TYPE_CMD) |
278 FIELD_PREP(MT_TXD0_Q_IDX, MT_TX_MCU_PORT_RX_Q0);
279 txd[0] = cpu_to_le32(val);
280
281 val = FIELD_PREP(MT_TXD1_HDR_FORMAT, MT_HDR_FORMAT_CMD);
282 txd[1] = cpu_to_le32(val);
283
284 if (cmd & __MCU_CMD_FIELD_UNI) {
285 uni_txd = (struct mt76_connac2_mcu_uni_txd *)txd;
286 uni_txd->len = cpu_to_le16(skb->len - sizeof(uni_txd->txd));
287 uni_txd->cid = cpu_to_le16(mcu_cmd);
288 uni_txd->s2d_index = MCU_S2D_H2CN;
289 uni_txd->pkt_type = MCU_PKT_ID;
290 uni_txd->seq = seq;
291
292 if (cmd & __MCU_CMD_FIELD_QUERY)
293 uni_txd->option = MCU_CMD_UNI_QUERY_ACK;
294 else
295 uni_txd->option = MCU_CMD_UNI_EXT_ACK;
296
297 if ((cmd & __MCU_CMD_FIELD_WA) && (cmd & __MCU_CMD_FIELD_WM))
298 uni_txd->s2d_index = MCU_S2D_H2CN;
299 else if (cmd & __MCU_CMD_FIELD_WA)
300 uni_txd->s2d_index = MCU_S2D_H2C;
301 else if (cmd & __MCU_CMD_FIELD_WM)
302 uni_txd->s2d_index = MCU_S2D_H2N;
303
304 goto exit;
305 }
306
307 mcu_txd = (struct mt76_connac2_mcu_txd *)txd;
308 mcu_txd->len = cpu_to_le16(skb->len - sizeof(mcu_txd->txd));
309 mcu_txd->pq_id = cpu_to_le16(MCU_PQ_ID(MT_TX_PORT_IDX_MCU,
310 MT_TX_MCU_PORT_RX_Q0));
311 mcu_txd->pkt_type = MCU_PKT_ID;
312 mcu_txd->seq = seq;
313
314 mcu_txd->cid = FIELD_GET(__MCU_CMD_FIELD_ID, cmd);
315 mcu_txd->set_query = MCU_Q_NA;
316 mcu_txd->ext_cid = FIELD_GET(__MCU_CMD_FIELD_EXT_ID, cmd);
317 if (mcu_txd->ext_cid) {
318 mcu_txd->ext_cid_ack = 1;
319
320 if (cmd & __MCU_CMD_FIELD_QUERY)
321 mcu_txd->set_query = MCU_Q_QUERY;
322 else
323 mcu_txd->set_query = MCU_Q_SET;
324 }
325
326 if (cmd & __MCU_CMD_FIELD_WA)
327 mcu_txd->s2d_index = MCU_S2D_H2C;
328 else
329 mcu_txd->s2d_index = MCU_S2D_H2N;
330
331 exit:
332 if (wait_seq)
333 *wait_seq = seq;
334
335 return mt76_tx_queue_skb_raw(dev, mdev->q_mcu[qid], skb, 0);
336 }
337
mt7996_mcu_wa_cmd(struct mt7996_dev * dev,int cmd,u32 a1,u32 a2,u32 a3)338 int mt7996_mcu_wa_cmd(struct mt7996_dev *dev, int cmd, u32 a1, u32 a2, u32 a3)
339 {
340 struct {
341 u8 _rsv[4];
342
343 __le16 tag;
344 __le16 len;
345 __le32 args[3];
346 } __packed req = {
347 .args = {
348 cpu_to_le32(a1),
349 cpu_to_le32(a2),
350 cpu_to_le32(a3),
351 },
352 };
353
354 if (mt7996_has_wa(dev))
355 return mt76_mcu_send_msg(&dev->mt76, cmd, &req.args,
356 sizeof(req.args), false);
357
358 req.tag = cpu_to_le16(cmd == MCU_WA_PARAM_CMD(QUERY) ? UNI_CMD_SDO_QUERY :
359 UNI_CMD_SDO_SET);
360 req.len = cpu_to_le16(sizeof(req) - 4);
361
362 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_UNI_CMD(SDO), &req,
363 sizeof(req), false);
364 }
365
366 static void
mt7996_mcu_csa_finish(void * priv,u8 * mac,struct ieee80211_vif * vif)367 mt7996_mcu_csa_finish(void *priv, u8 *mac, struct ieee80211_vif *vif)
368 {
369 if (!vif->bss_conf.csa_active || vif->type == NL80211_IFTYPE_STATION)
370 return;
371
372 ieee80211_csa_finish(vif, 0);
373 }
374
375 static void
mt7996_mcu_rx_radar_detected(struct mt7996_dev * dev,struct sk_buff * skb)376 mt7996_mcu_rx_radar_detected(struct mt7996_dev *dev, struct sk_buff *skb)
377 {
378 struct mt76_phy *mphy = &dev->mt76.phy;
379 struct mt7996_mcu_rdd_report *r;
380
381 r = (struct mt7996_mcu_rdd_report *)skb->data;
382
383 switch (r->rdd_idx) {
384 case MT_RDD_IDX_BAND2:
385 mphy = dev->mt76.phys[MT_BAND2];
386 break;
387 case MT_RDD_IDX_BAND1:
388 mphy = dev->mt76.phys[MT_BAND1];
389 break;
390 case MT_RDD_IDX_BACKGROUND:
391 if (!dev->rdd2_phy)
392 return;
393 mphy = dev->rdd2_phy->mt76;
394 break;
395 default:
396 dev_err(dev->mt76.dev, "Unknown RDD idx %d\n", r->rdd_idx);
397 return;
398 }
399
400 if (!mphy)
401 return;
402
403 if (r->rdd_idx == MT_RDD_IDX_BACKGROUND)
404 cfg80211_background_radar_event(mphy->hw->wiphy,
405 &dev->rdd2_chandef,
406 GFP_ATOMIC);
407 else
408 ieee80211_radar_detected(mphy->hw, NULL);
409 dev->hw_pattern++;
410 }
411
412 static void
mt7996_mcu_rx_log_message(struct mt7996_dev * dev,struct sk_buff * skb)413 mt7996_mcu_rx_log_message(struct mt7996_dev *dev, struct sk_buff *skb)
414 {
415 #define UNI_EVENT_FW_LOG_FORMAT 0
416 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
417 const char *data = (char *)&rxd[1] + 4, *type;
418 #if defined(__linux__)
419 struct tlv *tlv = (struct tlv *)data;
420 #elif defined(__FreeBSD__)
421 const struct tlv *tlv = (const struct tlv *)data;
422 #endif
423 int len;
424
425 if (!(rxd->option & MCU_UNI_CMD_EVENT)) {
426 len = skb->len - sizeof(*rxd);
427 data = (char *)&rxd[1];
428 goto out;
429 }
430
431 if (le16_to_cpu(tlv->tag) != UNI_EVENT_FW_LOG_FORMAT)
432 return;
433
434 data += sizeof(*tlv) + 4;
435 len = le16_to_cpu(tlv->len) - sizeof(*tlv) - 4;
436
437 out:
438 switch (rxd->s2d_index) {
439 case 0:
440 #if defined(CONFIG_MT7996_DEBUGFS)
441 if (mt7996_debugfs_rx_log(dev, data, len))
442 return;
443 #endif
444
445 type = "WM";
446 break;
447 case 2:
448 type = "WA";
449 break;
450 default:
451 type = "unknown";
452 break;
453 }
454
455 wiphy_info(mt76_hw(dev)->wiphy, "%s: %.*s", type, len, data);
456 }
457
458 static void
mt7996_mcu_cca_finish(void * priv,u8 * mac,struct ieee80211_vif * vif)459 mt7996_mcu_cca_finish(void *priv, u8 *mac, struct ieee80211_vif *vif)
460 {
461 if (!vif->bss_conf.color_change_active || vif->type == NL80211_IFTYPE_STATION)
462 return;
463
464 ieee80211_color_change_finish(vif, 0);
465 }
466
467 static void
mt7996_mcu_ie_countdown(struct mt7996_dev * dev,struct sk_buff * skb)468 mt7996_mcu_ie_countdown(struct mt7996_dev *dev, struct sk_buff *skb)
469 {
470 #define UNI_EVENT_IE_COUNTDOWN_CSA 0
471 #define UNI_EVENT_IE_COUNTDOWN_BCC 1
472 struct header {
473 u8 band;
474 u8 rsv[3];
475 };
476 struct mt76_phy *mphy = &dev->mt76.phy;
477 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
478 const char *data = (char *)&rxd[1], *tail;
479 #if defined(__linux__)
480 struct header *hdr = (struct header *)data;
481 struct tlv *tlv = (struct tlv *)(data + 4);
482 #elif defined(__FreeBSD__)
483 const struct header *hdr = (const struct header *)data;
484 const struct tlv *tlv = (const struct tlv *)(data + 4);
485 #endif
486
487 if (hdr->band >= ARRAY_SIZE(dev->mt76.phys))
488 return;
489
490 if (hdr->band && dev->mt76.phys[hdr->band])
491 mphy = dev->mt76.phys[hdr->band];
492
493 tail = skb->data + skb->len;
494 data += sizeof(struct header);
495 while (data + sizeof(struct tlv) < tail && le16_to_cpu(tlv->len)) {
496 switch (le16_to_cpu(tlv->tag)) {
497 case UNI_EVENT_IE_COUNTDOWN_CSA:
498 ieee80211_iterate_active_interfaces_atomic(mphy->hw,
499 IEEE80211_IFACE_ITER_RESUME_ALL,
500 mt7996_mcu_csa_finish, mphy->hw);
501 break;
502 case UNI_EVENT_IE_COUNTDOWN_BCC:
503 ieee80211_iterate_active_interfaces_atomic(mphy->hw,
504 IEEE80211_IFACE_ITER_RESUME_ALL,
505 mt7996_mcu_cca_finish, mphy->hw);
506 break;
507 }
508
509 data += le16_to_cpu(tlv->len);
510 #if defined(__linux__)
511 tlv = (struct tlv *)data;
512 #elif defined(__FreeBSD__)
513 tlv = (const struct tlv *)data;
514 #endif
515 }
516 }
517
518 static int
mt7996_mcu_update_tx_gi(struct rate_info * rate,struct all_sta_trx_rate * mcu_rate)519 mt7996_mcu_update_tx_gi(struct rate_info *rate, struct all_sta_trx_rate *mcu_rate)
520 {
521 switch (mcu_rate->tx_mode) {
522 case MT_PHY_TYPE_CCK:
523 case MT_PHY_TYPE_OFDM:
524 break;
525 case MT_PHY_TYPE_HT:
526 case MT_PHY_TYPE_HT_GF:
527 case MT_PHY_TYPE_VHT:
528 if (mcu_rate->tx_gi)
529 rate->flags |= RATE_INFO_FLAGS_SHORT_GI;
530 else
531 rate->flags &= ~RATE_INFO_FLAGS_SHORT_GI;
532 break;
533 case MT_PHY_TYPE_HE_SU:
534 case MT_PHY_TYPE_HE_EXT_SU:
535 case MT_PHY_TYPE_HE_TB:
536 case MT_PHY_TYPE_HE_MU:
537 if (mcu_rate->tx_gi > NL80211_RATE_INFO_HE_GI_3_2)
538 return -EINVAL;
539 rate->he_gi = mcu_rate->tx_gi;
540 break;
541 case MT_PHY_TYPE_EHT_SU:
542 case MT_PHY_TYPE_EHT_TRIG:
543 case MT_PHY_TYPE_EHT_MU:
544 if (mcu_rate->tx_gi > NL80211_RATE_INFO_EHT_GI_3_2)
545 return -EINVAL;
546 rate->eht_gi = mcu_rate->tx_gi;
547 break;
548 default:
549 return -EINVAL;
550 }
551
552 return 0;
553 }
554
555 static void
mt7996_mcu_rx_all_sta_info_event(struct mt7996_dev * dev,struct sk_buff * skb)556 mt7996_mcu_rx_all_sta_info_event(struct mt7996_dev *dev, struct sk_buff *skb)
557 {
558 struct mt7996_mcu_all_sta_info_event *res;
559 u16 i;
560
561 skb_pull(skb, sizeof(struct mt7996_mcu_rxd));
562
563 res = (struct mt7996_mcu_all_sta_info_event *)skb->data;
564
565 for (i = 0; i < le16_to_cpu(res->sta_num); i++) {
566 u8 ac;
567 u16 wlan_idx;
568 struct mt76_wcid *wcid;
569
570 switch (le16_to_cpu(res->tag)) {
571 case UNI_ALL_STA_TXRX_RATE:
572 wlan_idx = le16_to_cpu(res->rate[i].wlan_idx);
573 wcid = mt76_wcid_ptr(dev, wlan_idx);
574
575 if (!wcid)
576 break;
577
578 if (mt7996_mcu_update_tx_gi(&wcid->rate, &res->rate[i]))
579 dev_err(dev->mt76.dev, "Failed to update TX GI\n");
580 break;
581 case UNI_ALL_STA_TXRX_ADM_STAT:
582 wlan_idx = le16_to_cpu(res->adm_stat[i].wlan_idx);
583 wcid = mt76_wcid_ptr(dev, wlan_idx);
584
585 if (!wcid)
586 break;
587
588 for (ac = 0; ac < IEEE80211_NUM_ACS; ac++) {
589 wcid->stats.tx_bytes +=
590 le32_to_cpu(res->adm_stat[i].tx_bytes[ac]);
591 wcid->stats.rx_bytes +=
592 le32_to_cpu(res->adm_stat[i].rx_bytes[ac]);
593 }
594 break;
595 case UNI_ALL_STA_TXRX_MSDU_COUNT:
596 wlan_idx = le16_to_cpu(res->msdu_cnt[i].wlan_idx);
597 wcid = mt76_wcid_ptr(dev, wlan_idx);
598
599 if (!wcid)
600 break;
601
602 wcid->stats.tx_packets +=
603 le32_to_cpu(res->msdu_cnt[i].tx_msdu_cnt);
604 wcid->stats.rx_packets +=
605 le32_to_cpu(res->msdu_cnt[i].rx_msdu_cnt);
606 break;
607 default:
608 break;
609 }
610 }
611 }
612
613 static void
mt7996_mcu_rx_thermal_notify(struct mt7996_dev * dev,struct sk_buff * skb)614 mt7996_mcu_rx_thermal_notify(struct mt7996_dev *dev, struct sk_buff *skb)
615 {
616 #define THERMAL_NOTIFY_TAG 0x4
617 #define THERMAL_NOTIFY 0x2
618 struct mt76_phy *mphy = &dev->mt76.phy;
619 struct mt7996_mcu_thermal_notify *n;
620 struct mt7996_phy *phy;
621
622 n = (struct mt7996_mcu_thermal_notify *)skb->data;
623
624 if (le16_to_cpu(n->tag) != THERMAL_NOTIFY_TAG)
625 return;
626
627 if (n->event_id != THERMAL_NOTIFY)
628 return;
629
630 if (n->band_idx > MT_BAND2)
631 return;
632
633 mphy = dev->mt76.phys[n->band_idx];
634 if (!mphy)
635 return;
636
637 phy = (struct mt7996_phy *)mphy->priv;
638 phy->throttle_state = n->duty_percent;
639 }
640
641 static void
mt7996_mcu_rx_ext_event(struct mt7996_dev * dev,struct sk_buff * skb)642 mt7996_mcu_rx_ext_event(struct mt7996_dev *dev, struct sk_buff *skb)
643 {
644 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
645
646 switch (rxd->ext_eid) {
647 case MCU_EXT_EVENT_FW_LOG_2_HOST:
648 mt7996_mcu_rx_log_message(dev, skb);
649 break;
650 default:
651 break;
652 }
653 }
654
655 static void
mt7996_mcu_rx_unsolicited_event(struct mt7996_dev * dev,struct sk_buff * skb)656 mt7996_mcu_rx_unsolicited_event(struct mt7996_dev *dev, struct sk_buff *skb)
657 {
658 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
659
660 switch (rxd->eid) {
661 case MCU_EVENT_EXT:
662 mt7996_mcu_rx_ext_event(dev, skb);
663 break;
664 case MCU_UNI_EVENT_THERMAL:
665 mt7996_mcu_rx_thermal_notify(dev, skb);
666 break;
667 default:
668 break;
669 }
670 dev_kfree_skb(skb);
671 }
672
673 static void
mt7996_mcu_wed_rro_event(struct mt7996_dev * dev,struct sk_buff * skb)674 mt7996_mcu_wed_rro_event(struct mt7996_dev *dev, struct sk_buff *skb)
675 {
676 struct mt7996_mcu_wed_rro_event *event = (void *)skb->data;
677
678 if (!dev->has_rro)
679 return;
680
681 skb_pull(skb, sizeof(struct mt7996_mcu_rxd) + 4);
682
683 switch (le16_to_cpu(event->tag)) {
684 case UNI_WED_RRO_BA_SESSION_STATUS: {
685 struct mt7996_mcu_wed_rro_ba_event *e;
686
687 while (skb->len >= sizeof(*e)) {
688 struct mt76_rx_tid *tid;
689 struct mt76_wcid *wcid;
690 u16 idx;
691
692 e = (void *)skb->data;
693 idx = le16_to_cpu(e->wlan_id);
694 wcid = mt76_wcid_ptr(dev, idx);
695 if (!wcid || !wcid->sta)
696 break;
697
698 if (e->tid >= ARRAY_SIZE(wcid->aggr))
699 break;
700
701 tid = rcu_dereference(wcid->aggr[e->tid]);
702 if (!tid)
703 break;
704
705 tid->id = le16_to_cpu(e->id);
706 skb_pull(skb, sizeof(*e));
707 }
708 break;
709 }
710 case UNI_WED_RRO_BA_SESSION_DELETE: {
711 struct mt7996_mcu_wed_rro_ba_delete_event *e;
712
713 while (skb->len >= sizeof(*e)) {
714 struct mt7996_wed_rro_session_id *session;
715
716 e = (void *)skb->data;
717 session = kzalloc(sizeof(*session), GFP_ATOMIC);
718 if (!session)
719 break;
720
721 session->id = le16_to_cpu(e->session_id);
722
723 spin_lock_bh(&dev->wed_rro.lock);
724 list_add_tail(&session->list, &dev->wed_rro.poll_list);
725 spin_unlock_bh(&dev->wed_rro.lock);
726
727 ieee80211_queue_work(mt76_hw(dev), &dev->wed_rro.work);
728 skb_pull(skb, sizeof(*e));
729 }
730 break;
731 }
732 default:
733 break;
734 }
735 }
736
737 static void
mt7996_mcu_uni_rx_unsolicited_event(struct mt7996_dev * dev,struct sk_buff * skb)738 mt7996_mcu_uni_rx_unsolicited_event(struct mt7996_dev *dev, struct sk_buff *skb)
739 {
740 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
741
742 switch (rxd->eid) {
743 case MCU_UNI_EVENT_FW_LOG_2_HOST:
744 mt7996_mcu_rx_log_message(dev, skb);
745 break;
746 case MCU_UNI_EVENT_IE_COUNTDOWN:
747 mt7996_mcu_ie_countdown(dev, skb);
748 break;
749 case MCU_UNI_EVENT_RDD_REPORT:
750 mt7996_mcu_rx_radar_detected(dev, skb);
751 break;
752 case MCU_UNI_EVENT_ALL_STA_INFO:
753 mt7996_mcu_rx_all_sta_info_event(dev, skb);
754 break;
755 case MCU_UNI_EVENT_WED_RRO:
756 mt7996_mcu_wed_rro_event(dev, skb);
757 break;
758 default:
759 break;
760 }
761 dev_kfree_skb(skb);
762 }
763
mt7996_mcu_rx_event(struct mt7996_dev * dev,struct sk_buff * skb)764 void mt7996_mcu_rx_event(struct mt7996_dev *dev, struct sk_buff *skb)
765 {
766 struct mt7996_mcu_rxd *rxd = (struct mt7996_mcu_rxd *)skb->data;
767
768 if (rxd->option & MCU_UNI_CMD_UNSOLICITED_EVENT) {
769 mt7996_mcu_uni_rx_unsolicited_event(dev, skb);
770 return;
771 }
772
773 /* WA still uses legacy event*/
774 if (rxd->ext_eid == MCU_EXT_EVENT_FW_LOG_2_HOST ||
775 !rxd->seq)
776 mt7996_mcu_rx_unsolicited_event(dev, skb);
777 else
778 mt76_mcu_rx_event(&dev->mt76, skb);
779 }
780
781 static struct tlv *
mt7996_mcu_add_uni_tlv(struct sk_buff * skb,u16 tag,u16 len)782 mt7996_mcu_add_uni_tlv(struct sk_buff *skb, u16 tag, u16 len)
783 {
784 struct tlv *ptlv = skb_put_zero(skb, len);
785
786 ptlv->tag = cpu_to_le16(tag);
787 ptlv->len = cpu_to_le16(len);
788
789 return ptlv;
790 }
791
792 static void
mt7996_mcu_bss_rfch_tlv(struct sk_buff * skb,struct mt7996_phy * phy)793 mt7996_mcu_bss_rfch_tlv(struct sk_buff *skb, struct mt7996_phy *phy)
794 {
795 static const u8 rlm_ch_band[] = {
796 [NL80211_BAND_2GHZ] = 1,
797 [NL80211_BAND_5GHZ] = 2,
798 [NL80211_BAND_6GHZ] = 3,
799 };
800 struct cfg80211_chan_def *chandef = &phy->mt76->chandef;
801 struct bss_rlm_tlv *ch;
802 struct tlv *tlv;
803 int freq1 = chandef->center_freq1;
804
805 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_RLM, sizeof(*ch));
806
807 ch = (struct bss_rlm_tlv *)tlv;
808 ch->control_channel = chandef->chan->hw_value;
809 ch->center_chan = ieee80211_frequency_to_channel(freq1);
810 ch->bw = mt76_connac_chan_bw(chandef);
811 ch->tx_streams = hweight8(phy->mt76->antenna_mask);
812 ch->rx_streams = hweight8(phy->mt76->antenna_mask);
813 ch->band = rlm_ch_band[chandef->chan->band];
814
815 if (chandef->width == NL80211_CHAN_WIDTH_80P80) {
816 int freq2 = chandef->center_freq2;
817
818 ch->center_chan2 = ieee80211_frequency_to_channel(freq2);
819 }
820 }
821
822 static void
mt7996_mcu_bss_ra_tlv(struct sk_buff * skb,struct mt7996_phy * phy)823 mt7996_mcu_bss_ra_tlv(struct sk_buff *skb, struct mt7996_phy *phy)
824 {
825 struct bss_ra_tlv *ra;
826 struct tlv *tlv;
827
828 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_RA, sizeof(*ra));
829
830 ra = (struct bss_ra_tlv *)tlv;
831 ra->short_preamble = true;
832 }
833
834 static void
mt7996_mcu_bss_he_tlv(struct sk_buff * skb,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct mt7996_phy * phy)835 mt7996_mcu_bss_he_tlv(struct sk_buff *skb, struct ieee80211_vif *vif,
836 struct ieee80211_bss_conf *link_conf,
837 struct mt7996_phy *phy)
838 {
839 #define DEFAULT_HE_PE_DURATION 4
840 #define DEFAULT_HE_DURATION_RTS_THRES 1023
841 const struct ieee80211_sta_he_cap *cap;
842 struct bss_info_uni_he *he;
843 struct tlv *tlv;
844
845 cap = mt76_connac_get_he_phy_cap(phy->mt76, vif);
846
847 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_HE_BASIC, sizeof(*he));
848
849 he = (struct bss_info_uni_he *)tlv;
850 he->he_pe_duration = link_conf->htc_trig_based_pkt_ext;
851 if (!he->he_pe_duration)
852 he->he_pe_duration = DEFAULT_HE_PE_DURATION;
853
854 he->he_rts_thres = cpu_to_le16(link_conf->frame_time_rts_th);
855 if (!he->he_rts_thres)
856 he->he_rts_thres = cpu_to_le16(DEFAULT_HE_DURATION_RTS_THRES);
857
858 he->max_nss_mcs[CMD_HE_MCS_BW80] = cap->he_mcs_nss_supp.tx_mcs_80;
859 he->max_nss_mcs[CMD_HE_MCS_BW160] = cap->he_mcs_nss_supp.tx_mcs_160;
860 he->max_nss_mcs[CMD_HE_MCS_BW8080] = cap->he_mcs_nss_supp.tx_mcs_80p80;
861 }
862
863 static void
mt7996_mcu_bss_mbssid_tlv(struct sk_buff * skb,struct ieee80211_bss_conf * link_conf,bool enable)864 mt7996_mcu_bss_mbssid_tlv(struct sk_buff *skb, struct ieee80211_bss_conf *link_conf,
865 bool enable)
866 {
867 struct bss_info_uni_mbssid *mbssid;
868 struct tlv *tlv;
869
870 if (!link_conf->bssid_indicator && enable)
871 return;
872
873 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_11V_MBSSID, sizeof(*mbssid));
874
875 mbssid = (struct bss_info_uni_mbssid *)tlv;
876
877 if (enable) {
878 mbssid->max_indicator = link_conf->bssid_indicator;
879 mbssid->mbss_idx = link_conf->bssid_index;
880 mbssid->tx_bss_omac_idx = 0;
881 }
882 }
883
884 static void
mt7996_mcu_bss_bmc_tlv(struct sk_buff * skb,struct mt76_vif_link * mlink,struct mt7996_phy * phy)885 mt7996_mcu_bss_bmc_tlv(struct sk_buff *skb, struct mt76_vif_link *mlink,
886 struct mt7996_phy *phy)
887 {
888 struct bss_rate_tlv *bmc;
889 struct cfg80211_chan_def *chandef = &phy->mt76->chandef;
890 enum nl80211_band band = chandef->chan->band;
891 struct tlv *tlv;
892 u8 idx = mlink->mcast_rates_idx ?
893 mlink->mcast_rates_idx : mlink->basic_rates_idx;
894
895 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_RATE, sizeof(*bmc));
896
897 bmc = (struct bss_rate_tlv *)tlv;
898
899 bmc->short_preamble = (band == NL80211_BAND_2GHZ);
900 bmc->bc_fixed_rate = idx;
901 bmc->mc_fixed_rate = idx;
902 }
903
904 static void
mt7996_mcu_bss_txcmd_tlv(struct sk_buff * skb,bool en)905 mt7996_mcu_bss_txcmd_tlv(struct sk_buff *skb, bool en)
906 {
907 struct bss_txcmd_tlv *txcmd;
908 struct tlv *tlv;
909
910 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_TXCMD, sizeof(*txcmd));
911
912 txcmd = (struct bss_txcmd_tlv *)tlv;
913 txcmd->txcmd_mode = en;
914 }
915
916 static void
mt7996_mcu_bss_mld_tlv(struct sk_buff * skb,struct mt76_vif_link * mlink)917 mt7996_mcu_bss_mld_tlv(struct sk_buff *skb, struct mt76_vif_link *mlink)
918 {
919 struct bss_mld_tlv *mld;
920 struct tlv *tlv;
921
922 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_MLD, sizeof(*mld));
923
924 mld = (struct bss_mld_tlv *)tlv;
925 mld->group_mld_id = 0xff;
926 mld->own_mld_id = mlink->idx;
927 mld->remap_idx = 0xff;
928 }
929
930 static void
mt7996_mcu_bss_sec_tlv(struct sk_buff * skb,struct mt76_vif_link * mlink)931 mt7996_mcu_bss_sec_tlv(struct sk_buff *skb, struct mt76_vif_link *mlink)
932 {
933 struct bss_sec_tlv *sec;
934 struct tlv *tlv;
935
936 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_SEC, sizeof(*sec));
937
938 sec = (struct bss_sec_tlv *)tlv;
939 sec->cipher = mlink->cipher;
940 }
941
942 static int
mt7996_mcu_muar_config(struct mt7996_dev * dev,struct mt76_vif_link * mlink,const u8 * addr,bool bssid,bool enable)943 mt7996_mcu_muar_config(struct mt7996_dev *dev, struct mt76_vif_link *mlink,
944 const u8 *addr, bool bssid, bool enable)
945 {
946 #define UNI_MUAR_ENTRY 2
947 u32 idx = mlink->omac_idx - REPEATER_BSSID_START;
948 struct {
949 struct {
950 u8 band;
951 u8 __rsv[3];
952 } hdr;
953
954 __le16 tag;
955 __le16 len;
956
957 bool smesh;
958 u8 bssid;
959 u8 index;
960 u8 entry_add;
961 u8 addr[ETH_ALEN];
962 u8 __rsv[2];
963 } __packed req = {
964 .hdr.band = mlink->band_idx,
965 .tag = cpu_to_le16(UNI_MUAR_ENTRY),
966 .len = cpu_to_le16(sizeof(req) - sizeof(req.hdr)),
967 .smesh = false,
968 .index = idx * 2 + bssid,
969 .entry_add = true,
970 };
971
972 if (enable)
973 memcpy(req.addr, addr, ETH_ALEN);
974
975 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(REPT_MUAR), &req,
976 sizeof(req), true);
977 }
978
979 static void
mt7996_mcu_bss_ifs_timing_tlv(struct sk_buff * skb,struct mt7996_phy * phy)980 mt7996_mcu_bss_ifs_timing_tlv(struct sk_buff *skb, struct mt7996_phy *phy)
981 {
982 struct bss_ifs_time_tlv *ifs_time;
983 struct tlv *tlv;
984 bool is_2ghz = phy->mt76->chandef.chan->band == NL80211_BAND_2GHZ;
985
986 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_IFS_TIME, sizeof(*ifs_time));
987
988 ifs_time = (struct bss_ifs_time_tlv *)tlv;
989 ifs_time->slot_valid = true;
990 ifs_time->sifs_valid = true;
991 ifs_time->rifs_valid = true;
992 ifs_time->eifs_valid = true;
993
994 ifs_time->slot_time = cpu_to_le16(phy->slottime);
995 ifs_time->sifs_time = cpu_to_le16(10);
996 ifs_time->rifs_time = cpu_to_le16(2);
997 ifs_time->eifs_time = cpu_to_le16(is_2ghz ? 78 : 84);
998
999 if (is_2ghz) {
1000 ifs_time->eifs_cck_valid = true;
1001 ifs_time->eifs_cck_time = cpu_to_le16(314);
1002 }
1003 }
1004
1005 static int
mt7996_mcu_bss_basic_tlv(struct sk_buff * skb,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct mt76_vif_link * mvif,struct mt76_phy * phy,u16 wlan_idx,bool enable)1006 mt7996_mcu_bss_basic_tlv(struct sk_buff *skb,
1007 struct ieee80211_vif *vif,
1008 struct ieee80211_bss_conf *link_conf,
1009 struct mt76_vif_link *mvif,
1010 struct mt76_phy *phy, u16 wlan_idx,
1011 bool enable)
1012 {
1013 struct cfg80211_chan_def *chandef = &phy->chandef;
1014 struct mt76_connac_bss_basic_tlv *bss;
1015 u32 type = CONNECTION_INFRA_AP;
1016 u16 sta_wlan_idx = wlan_idx;
1017 struct ieee80211_sta *sta;
1018 struct tlv *tlv;
1019 int idx;
1020
1021 switch (vif->type) {
1022 case NL80211_IFTYPE_MESH_POINT:
1023 case NL80211_IFTYPE_AP:
1024 case NL80211_IFTYPE_MONITOR:
1025 break;
1026 case NL80211_IFTYPE_STATION:
1027 if (enable) {
1028 rcu_read_lock();
1029 sta = ieee80211_find_sta(vif, vif->bss_conf.bssid);
1030 /* TODO: enable BSS_INFO_UAPSD & BSS_INFO_PM */
1031 if (sta) {
1032 struct mt76_wcid *wcid;
1033
1034 wcid = (struct mt76_wcid *)sta->drv_priv;
1035 sta_wlan_idx = wcid->idx;
1036 }
1037 rcu_read_unlock();
1038 }
1039 type = CONNECTION_INFRA_STA;
1040 break;
1041 case NL80211_IFTYPE_ADHOC:
1042 type = CONNECTION_IBSS_ADHOC;
1043 break;
1044 default:
1045 WARN_ON(1);
1046 break;
1047 }
1048
1049 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_BSS_INFO_BASIC, sizeof(*bss));
1050
1051 bss = (struct mt76_connac_bss_basic_tlv *)tlv;
1052 bss->bcn_interval = cpu_to_le16(link_conf->beacon_int);
1053 bss->dtim_period = link_conf->dtim_period;
1054 bss->bmc_tx_wlan_idx = cpu_to_le16(wlan_idx);
1055 bss->sta_idx = cpu_to_le16(sta_wlan_idx);
1056 bss->conn_type = cpu_to_le32(type);
1057 bss->omac_idx = mvif->omac_idx;
1058 bss->band_idx = mvif->band_idx;
1059 bss->wmm_idx = mvif->wmm_idx;
1060 bss->conn_state = !enable;
1061 bss->active = enable;
1062
1063 idx = mvif->omac_idx > EXT_BSSID_START ? HW_BSSID_0 : mvif->omac_idx;
1064 bss->hw_bss_idx = idx;
1065
1066 if (vif->type == NL80211_IFTYPE_MONITOR) {
1067 memcpy(bss->bssid, phy->macaddr, ETH_ALEN);
1068 return 0;
1069 }
1070
1071 memcpy(bss->bssid, link_conf->bssid, ETH_ALEN);
1072 bss->bcn_interval = cpu_to_le16(link_conf->beacon_int);
1073 bss->dtim_period = vif->bss_conf.dtim_period;
1074 bss->phymode = mt76_connac_get_phy_mode(phy, vif,
1075 chandef->chan->band, NULL);
1076 bss->phymode_ext = mt76_connac_get_phy_mode_ext(phy, &vif->bss_conf,
1077 chandef->chan->band);
1078
1079 return 0;
1080 }
1081
1082 static struct sk_buff *
__mt7996_mcu_alloc_bss_req(struct mt76_dev * dev,struct mt76_vif_link * mvif,int len)1083 __mt7996_mcu_alloc_bss_req(struct mt76_dev *dev, struct mt76_vif_link *mvif, int len)
1084 {
1085 struct bss_req_hdr hdr = {
1086 .bss_idx = mvif->idx,
1087 };
1088 struct sk_buff *skb;
1089
1090 skb = mt76_mcu_msg_alloc(dev, NULL, len);
1091 if (!skb)
1092 return ERR_PTR(-ENOMEM);
1093
1094 skb_put_data(skb, &hdr, sizeof(hdr));
1095
1096 return skb;
1097 }
1098
mt7996_mcu_add_bss_info(struct mt7996_phy * phy,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct mt76_vif_link * mlink,struct mt7996_sta_link * msta_link,int enable)1099 int mt7996_mcu_add_bss_info(struct mt7996_phy *phy, struct ieee80211_vif *vif,
1100 struct ieee80211_bss_conf *link_conf,
1101 struct mt76_vif_link *mlink,
1102 struct mt7996_sta_link *msta_link, int enable)
1103 {
1104 struct mt7996_dev *dev = phy->dev;
1105 struct sk_buff *skb;
1106
1107 if (mlink->omac_idx >= REPEATER_BSSID_START) {
1108 mt7996_mcu_muar_config(dev, mlink, link_conf->addr, false, enable);
1109 mt7996_mcu_muar_config(dev, mlink, link_conf->bssid, true, enable);
1110 }
1111
1112 skb = __mt7996_mcu_alloc_bss_req(&dev->mt76, mlink,
1113 MT7996_BSS_UPDATE_MAX_SIZE);
1114 if (IS_ERR(skb))
1115 return PTR_ERR(skb);
1116
1117 /* bss_basic must be first */
1118 mt7996_mcu_bss_basic_tlv(skb, vif, link_conf, mlink, phy->mt76,
1119 msta_link->wcid.idx, enable);
1120 mt7996_mcu_bss_sec_tlv(skb, mlink);
1121
1122 if (vif->type == NL80211_IFTYPE_MONITOR)
1123 goto out;
1124
1125 if (enable) {
1126 mt7996_mcu_bss_rfch_tlv(skb, phy);
1127 mt7996_mcu_bss_bmc_tlv(skb, mlink, phy);
1128 mt7996_mcu_bss_ra_tlv(skb, phy);
1129 mt7996_mcu_bss_txcmd_tlv(skb, true);
1130 mt7996_mcu_bss_ifs_timing_tlv(skb, phy);
1131
1132 if (vif->bss_conf.he_support)
1133 mt7996_mcu_bss_he_tlv(skb, vif, link_conf, phy);
1134
1135 /* this tag is necessary no matter if the vif is MLD */
1136 mt7996_mcu_bss_mld_tlv(skb, mlink);
1137 }
1138
1139 mt7996_mcu_bss_mbssid_tlv(skb, link_conf, enable);
1140
1141 out:
1142 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1143 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
1144 }
1145
mt7996_mcu_set_timing(struct mt7996_phy * phy,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf)1146 int mt7996_mcu_set_timing(struct mt7996_phy *phy, struct ieee80211_vif *vif,
1147 struct ieee80211_bss_conf *link_conf)
1148 {
1149 struct mt7996_dev *dev = phy->dev;
1150 struct mt76_vif_link *mlink = mt76_vif_conf_link(&dev->mt76, vif, link_conf);
1151 struct sk_buff *skb;
1152
1153 skb = __mt7996_mcu_alloc_bss_req(&dev->mt76, mlink,
1154 MT7996_BSS_UPDATE_MAX_SIZE);
1155 if (IS_ERR(skb))
1156 return PTR_ERR(skb);
1157
1158 mt7996_mcu_bss_ifs_timing_tlv(skb, phy);
1159
1160 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1161 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
1162 }
1163
1164 static int
mt7996_mcu_sta_ba(struct mt7996_dev * dev,struct mt76_vif_link * mvif,struct ieee80211_ampdu_params * params,bool enable,bool tx)1165 mt7996_mcu_sta_ba(struct mt7996_dev *dev, struct mt76_vif_link *mvif,
1166 struct ieee80211_ampdu_params *params,
1167 bool enable, bool tx)
1168 {
1169 struct mt76_wcid *wcid = (struct mt76_wcid *)params->sta->drv_priv;
1170 struct sta_rec_ba_uni *ba;
1171 struct sk_buff *skb;
1172 struct tlv *tlv;
1173
1174 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, mvif, wcid,
1175 MT7996_STA_UPDATE_MAX_SIZE);
1176 if (IS_ERR(skb))
1177 return PTR_ERR(skb);
1178
1179 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_BA, sizeof(*ba));
1180
1181 ba = (struct sta_rec_ba_uni *)tlv;
1182 ba->ba_type = tx ? MT_BA_TYPE_ORIGINATOR : MT_BA_TYPE_RECIPIENT;
1183 ba->winsize = cpu_to_le16(params->buf_size);
1184 ba->ssn = cpu_to_le16(params->ssn);
1185 ba->ba_en = enable << params->tid;
1186 ba->amsdu = params->amsdu;
1187 ba->tid = params->tid;
1188 ba->ba_rdd_rro = !tx && enable && dev->has_rro;
1189
1190 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1191 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
1192 }
1193
1194 /** starec & wtbl **/
mt7996_mcu_add_tx_ba(struct mt7996_dev * dev,struct ieee80211_ampdu_params * params,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link,bool enable)1195 int mt7996_mcu_add_tx_ba(struct mt7996_dev *dev,
1196 struct ieee80211_ampdu_params *params,
1197 struct mt7996_vif_link *link,
1198 struct mt7996_sta_link *msta_link, bool enable)
1199 {
1200 if (enable && !params->amsdu)
1201 msta_link->wcid.amsdu = false;
1202
1203 return mt7996_mcu_sta_ba(dev, &link->mt76, params, enable, true);
1204 }
1205
mt7996_mcu_add_rx_ba(struct mt7996_dev * dev,struct ieee80211_ampdu_params * params,struct mt7996_vif_link * link,bool enable)1206 int mt7996_mcu_add_rx_ba(struct mt7996_dev *dev,
1207 struct ieee80211_ampdu_params *params,
1208 struct mt7996_vif_link *link, bool enable)
1209 {
1210 return mt7996_mcu_sta_ba(dev, &link->mt76, params, enable, false);
1211 }
1212
1213 static void
mt7996_mcu_sta_he_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link)1214 mt7996_mcu_sta_he_tlv(struct sk_buff *skb,
1215 struct ieee80211_link_sta *link_sta,
1216 struct mt7996_vif_link *link)
1217 {
1218 struct ieee80211_he_cap_elem *elem = &link_sta->he_cap.he_cap_elem;
1219 struct ieee80211_he_mcs_nss_supp mcs_map;
1220 struct sta_rec_he_v2 *he;
1221 struct tlv *tlv;
1222 int i = 0;
1223
1224 if (!link_sta->he_cap.has_he)
1225 return;
1226
1227 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HE_V2, sizeof(*he));
1228
1229 he = (struct sta_rec_he_v2 *)tlv;
1230 for (i = 0; i < 11; i++) {
1231 if (i < 6)
1232 he->he_mac_cap[i] = elem->mac_cap_info[i];
1233 he->he_phy_cap[i] = elem->phy_cap_info[i];
1234 }
1235
1236 mcs_map = link_sta->he_cap.he_mcs_nss_supp;
1237 switch (link_sta->bandwidth) {
1238 case IEEE80211_STA_RX_BW_160:
1239 if (elem->phy_cap_info[0] &
1240 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G)
1241 mt7996_mcu_set_sta_he_mcs(link_sta, link,
1242 &he->max_nss_mcs[CMD_HE_MCS_BW8080],
1243 le16_to_cpu(mcs_map.rx_mcs_80p80));
1244
1245 mt7996_mcu_set_sta_he_mcs(link_sta, link,
1246 &he->max_nss_mcs[CMD_HE_MCS_BW160],
1247 le16_to_cpu(mcs_map.rx_mcs_160));
1248 fallthrough;
1249 default:
1250 mt7996_mcu_set_sta_he_mcs(link_sta, link,
1251 &he->max_nss_mcs[CMD_HE_MCS_BW80],
1252 le16_to_cpu(mcs_map.rx_mcs_80));
1253 break;
1254 }
1255
1256 he->pkt_ext = 2;
1257 }
1258
1259 static void
mt7996_mcu_sta_he_6g_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta)1260 mt7996_mcu_sta_he_6g_tlv(struct sk_buff *skb,
1261 struct ieee80211_link_sta *link_sta)
1262 {
1263 struct sta_rec_he_6g_capa *he_6g;
1264 struct tlv *tlv;
1265
1266 if (!link_sta->he_6ghz_capa.capa)
1267 return;
1268
1269 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HE_6G, sizeof(*he_6g));
1270
1271 he_6g = (struct sta_rec_he_6g_capa *)tlv;
1272 he_6g->capa = link_sta->he_6ghz_capa.capa;
1273 }
1274
1275 static void
mt7996_mcu_sta_eht_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta)1276 mt7996_mcu_sta_eht_tlv(struct sk_buff *skb,
1277 struct ieee80211_link_sta *link_sta)
1278 {
1279 struct mt7996_sta *msta = (struct mt7996_sta *)link_sta->sta->drv_priv;
1280 struct ieee80211_vif *vif = container_of((void *)msta->vif,
1281 struct ieee80211_vif, drv_priv);
1282 struct ieee80211_eht_mcs_nss_supp *mcs_map;
1283 struct ieee80211_eht_cap_elem_fixed *elem;
1284 struct sta_rec_eht *eht;
1285 struct tlv *tlv;
1286
1287 if (!link_sta->eht_cap.has_eht)
1288 return;
1289
1290 mcs_map = &link_sta->eht_cap.eht_mcs_nss_supp;
1291 elem = &link_sta->eht_cap.eht_cap_elem;
1292
1293 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_EHT, sizeof(*eht));
1294
1295 eht = (struct sta_rec_eht *)tlv;
1296 eht->tid_bitmap = 0xff;
1297 eht->mac_cap = cpu_to_le16(*(u16 *)elem->mac_cap_info);
1298 eht->phy_cap = cpu_to_le64(*(u64 *)elem->phy_cap_info);
1299 eht->phy_cap_ext = cpu_to_le64(elem->phy_cap_info[8]);
1300
1301 if (vif->type != NL80211_IFTYPE_STATION &&
1302 (link_sta->he_cap.he_cap_elem.phy_cap_info[0] &
1303 (IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_IN_2G |
1304 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_80MHZ_IN_5G |
1305 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G |
1306 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G)) == 0) {
1307 memcpy(eht->mcs_map_bw20, &mcs_map->only_20mhz,
1308 sizeof(eht->mcs_map_bw20));
1309 return;
1310 }
1311
1312 memcpy(eht->mcs_map_bw80, &mcs_map->bw._80, sizeof(eht->mcs_map_bw80));
1313 memcpy(eht->mcs_map_bw160, &mcs_map->bw._160, sizeof(eht->mcs_map_bw160));
1314 memcpy(eht->mcs_map_bw320, &mcs_map->bw._320, sizeof(eht->mcs_map_bw320));
1315 }
1316
1317 static void
mt7996_mcu_sta_ht_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta)1318 mt7996_mcu_sta_ht_tlv(struct sk_buff *skb, struct ieee80211_link_sta *link_sta)
1319 {
1320 struct sta_rec_ht_uni *ht;
1321 struct tlv *tlv;
1322
1323 if (!link_sta->ht_cap.ht_supported)
1324 return;
1325
1326 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HT, sizeof(*ht));
1327
1328 ht = (struct sta_rec_ht_uni *)tlv;
1329 ht->ht_cap = cpu_to_le16(link_sta->ht_cap.cap);
1330 ht->ampdu_param = u8_encode_bits(link_sta->ht_cap.ampdu_factor,
1331 IEEE80211_HT_AMPDU_PARM_FACTOR) |
1332 u8_encode_bits(link_sta->ht_cap.ampdu_density,
1333 IEEE80211_HT_AMPDU_PARM_DENSITY);
1334 }
1335
1336 static void
mt7996_mcu_sta_vht_tlv(struct sk_buff * skb,struct ieee80211_link_sta * link_sta)1337 mt7996_mcu_sta_vht_tlv(struct sk_buff *skb, struct ieee80211_link_sta *link_sta)
1338 {
1339 struct sta_rec_vht *vht;
1340 struct tlv *tlv;
1341
1342 /* For 6G band, this tlv is necessary to let hw work normally */
1343 if (!link_sta->he_6ghz_capa.capa && !link_sta->vht_cap.vht_supported)
1344 return;
1345
1346 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_VHT, sizeof(*vht));
1347
1348 vht = (struct sta_rec_vht *)tlv;
1349 vht->vht_cap = cpu_to_le32(link_sta->vht_cap.cap);
1350 vht->vht_rx_mcs_map = link_sta->vht_cap.vht_mcs.rx_mcs_map;
1351 vht->vht_tx_mcs_map = link_sta->vht_cap.vht_mcs.tx_mcs_map;
1352 }
1353
1354 static void
mt7996_mcu_sta_amsdu_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_vif * vif,struct ieee80211_link_sta * link_sta,struct mt7996_sta_link * msta_link)1355 mt7996_mcu_sta_amsdu_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1356 struct ieee80211_vif *vif,
1357 struct ieee80211_link_sta *link_sta,
1358 struct mt7996_sta_link *msta_link)
1359 {
1360 struct sta_rec_amsdu *amsdu;
1361 struct tlv *tlv;
1362
1363 if (vif->type != NL80211_IFTYPE_STATION &&
1364 vif->type != NL80211_IFTYPE_MESH_POINT &&
1365 vif->type != NL80211_IFTYPE_AP)
1366 return;
1367
1368 if (!link_sta->agg.max_amsdu_len)
1369 return;
1370
1371 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HW_AMSDU, sizeof(*amsdu));
1372 amsdu = (struct sta_rec_amsdu *)tlv;
1373 amsdu->max_amsdu_num = 8;
1374 amsdu->amsdu_en = true;
1375 msta_link->wcid.amsdu = true;
1376
1377 switch (link_sta->agg.max_amsdu_len) {
1378 case IEEE80211_MAX_MPDU_LEN_VHT_11454:
1379 amsdu->max_mpdu_size =
1380 IEEE80211_VHT_CAP_MAX_MPDU_LENGTH_11454;
1381 return;
1382 case IEEE80211_MAX_MPDU_LEN_HT_7935:
1383 case IEEE80211_MAX_MPDU_LEN_VHT_7991:
1384 amsdu->max_mpdu_size = IEEE80211_VHT_CAP_MAX_MPDU_LENGTH_7991;
1385 return;
1386 default:
1387 amsdu->max_mpdu_size = IEEE80211_VHT_CAP_MAX_MPDU_LENGTH_3895;
1388 return;
1389 }
1390 }
1391
1392 static void
mt7996_mcu_sta_muru_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta)1393 mt7996_mcu_sta_muru_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1394 struct ieee80211_bss_conf *link_conf,
1395 struct ieee80211_link_sta *link_sta)
1396 {
1397 struct ieee80211_he_cap_elem *elem = &link_sta->he_cap.he_cap_elem;
1398 struct sta_rec_muru *muru;
1399 struct tlv *tlv;
1400
1401 if (link_conf->vif->type != NL80211_IFTYPE_STATION &&
1402 link_conf->vif->type != NL80211_IFTYPE_AP)
1403 return;
1404
1405 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_MURU, sizeof(*muru));
1406
1407 muru = (struct sta_rec_muru *)tlv;
1408 muru->cfg.mimo_dl_en = link_conf->eht_mu_beamformer ||
1409 link_conf->he_mu_beamformer ||
1410 link_conf->vht_mu_beamformer ||
1411 link_conf->vht_mu_beamformee;
1412 muru->cfg.ofdma_dl_en = true;
1413
1414 if (link_sta->vht_cap.vht_supported)
1415 muru->mimo_dl.vht_mu_bfee =
1416 !!(link_sta->vht_cap.cap & IEEE80211_VHT_CAP_MU_BEAMFORMEE_CAPABLE);
1417
1418 if (!link_sta->he_cap.has_he)
1419 return;
1420
1421 muru->mimo_dl.partial_bw_dl_mimo =
1422 HE_PHY(CAP6_PARTIAL_BANDWIDTH_DL_MUMIMO, elem->phy_cap_info[6]);
1423
1424 muru->mimo_ul.full_ul_mimo =
1425 HE_PHY(CAP2_UL_MU_FULL_MU_MIMO, elem->phy_cap_info[2]);
1426 muru->mimo_ul.partial_ul_mimo =
1427 HE_PHY(CAP2_UL_MU_PARTIAL_MU_MIMO, elem->phy_cap_info[2]);
1428
1429 muru->ofdma_dl.punc_pream_rx =
1430 HE_PHY(CAP1_PREAMBLE_PUNC_RX_MASK, elem->phy_cap_info[1]);
1431 muru->ofdma_dl.he_20m_in_40m_2g =
1432 HE_PHY(CAP8_20MHZ_IN_40MHZ_HE_PPDU_IN_2G, elem->phy_cap_info[8]);
1433 muru->ofdma_dl.he_20m_in_160m =
1434 HE_PHY(CAP8_20MHZ_IN_160MHZ_HE_PPDU, elem->phy_cap_info[8]);
1435 muru->ofdma_dl.he_80m_in_160m =
1436 HE_PHY(CAP8_80MHZ_IN_160MHZ_HE_PPDU, elem->phy_cap_info[8]);
1437
1438 muru->ofdma_ul.t_frame_dur =
1439 HE_MAC(CAP1_TF_MAC_PAD_DUR_MASK, elem->mac_cap_info[1]);
1440 muru->ofdma_ul.mu_cascading =
1441 HE_MAC(CAP2_MU_CASCADING, elem->mac_cap_info[2]);
1442 muru->ofdma_ul.uo_ra =
1443 HE_MAC(CAP3_OFDMA_RA, elem->mac_cap_info[3]);
1444 muru->ofdma_ul.rx_ctrl_frame_to_mbss =
1445 HE_MAC(CAP3_RX_CTRL_FRAME_TO_MULTIBSS, elem->mac_cap_info[3]);
1446 }
1447
1448 static inline bool
mt7996_is_ebf_supported(struct mt7996_phy * phy,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,bool bfee)1449 mt7996_is_ebf_supported(struct mt7996_phy *phy,
1450 struct ieee80211_bss_conf *link_conf,
1451 struct ieee80211_link_sta *link_sta, bool bfee)
1452 {
1453 int sts = hweight16(phy->mt76->chainmask);
1454
1455 if (link_conf->vif->type != NL80211_IFTYPE_STATION &&
1456 link_conf->vif->type != NL80211_IFTYPE_AP)
1457 return false;
1458
1459 if (!bfee && sts < 2)
1460 return false;
1461
1462 if (link_sta->eht_cap.has_eht) {
1463 struct ieee80211_sta_eht_cap *pc = &link_sta->eht_cap;
1464 struct ieee80211_eht_cap_elem_fixed *pe = &pc->eht_cap_elem;
1465
1466 if (bfee)
1467 return link_conf->eht_su_beamformee &&
1468 EHT_PHY(CAP0_SU_BEAMFORMER, pe->phy_cap_info[0]);
1469 else
1470 return link_conf->eht_su_beamformer &&
1471 EHT_PHY(CAP0_SU_BEAMFORMEE, pe->phy_cap_info[0]);
1472 }
1473
1474 if (link_sta->he_cap.has_he) {
1475 struct ieee80211_he_cap_elem *pe = &link_sta->he_cap.he_cap_elem;
1476
1477 if (bfee)
1478 return link_conf->he_su_beamformee &&
1479 HE_PHY(CAP3_SU_BEAMFORMER, pe->phy_cap_info[3]);
1480 else
1481 return link_conf->he_su_beamformer &&
1482 HE_PHY(CAP4_SU_BEAMFORMEE, pe->phy_cap_info[4]);
1483 }
1484
1485 if (link_sta->vht_cap.vht_supported) {
1486 u32 cap = link_sta->vht_cap.cap;
1487
1488 if (bfee)
1489 return link_conf->vht_su_beamformee &&
1490 (cap & IEEE80211_VHT_CAP_SU_BEAMFORMER_CAPABLE);
1491 else
1492 return link_conf->vht_su_beamformer &&
1493 (cap & IEEE80211_VHT_CAP_SU_BEAMFORMEE_CAPABLE);
1494 }
1495
1496 return false;
1497 }
1498
1499 static void
mt7996_mcu_sta_sounding_rate(struct sta_rec_bf * bf,struct mt7996_phy * phy)1500 mt7996_mcu_sta_sounding_rate(struct sta_rec_bf *bf, struct mt7996_phy *phy)
1501 {
1502 bf->sounding_phy = MT_PHY_TYPE_OFDM;
1503 bf->ndp_rate = 0; /* mcs0 */
1504 if (is_mt7996(phy->mt76->dev))
1505 bf->ndpa_rate = MT7996_CFEND_RATE_DEFAULT; /* ofdm 24m */
1506 else
1507 bf->ndpa_rate = MT7992_CFEND_RATE_DEFAULT; /* ofdm 6m */
1508
1509 bf->rept_poll_rate = MT7996_CFEND_RATE_DEFAULT; /* ofdm 24m */
1510 }
1511
1512 static void
mt7996_mcu_sta_bfer_ht(struct ieee80211_link_sta * link_sta,struct mt7996_phy * phy,struct sta_rec_bf * bf,bool explicit)1513 mt7996_mcu_sta_bfer_ht(struct ieee80211_link_sta *link_sta,
1514 struct mt7996_phy *phy, struct sta_rec_bf *bf,
1515 bool explicit)
1516 {
1517 struct ieee80211_mcs_info *mcs = &link_sta->ht_cap.mcs;
1518 u8 n = 0;
1519
1520 bf->tx_mode = MT_PHY_TYPE_HT;
1521
1522 if ((mcs->tx_params & IEEE80211_HT_MCS_TX_RX_DIFF) &&
1523 (mcs->tx_params & IEEE80211_HT_MCS_TX_DEFINED))
1524 n = FIELD_GET(IEEE80211_HT_MCS_TX_MAX_STREAMS_MASK,
1525 mcs->tx_params);
1526 else if (mcs->rx_mask[3])
1527 n = 3;
1528 else if (mcs->rx_mask[2])
1529 n = 2;
1530 else if (mcs->rx_mask[1])
1531 n = 1;
1532
1533 bf->nrow = hweight8(phy->mt76->antenna_mask) - 1;
1534 bf->ncol = min_t(u8, bf->nrow, n);
1535 bf->ibf_ncol = explicit ? min_t(u8, MT7996_IBF_MAX_NC, bf->ncol) :
1536 min_t(u8, MT7996_IBF_MAX_NC, n);
1537 }
1538
1539 static void
mt7996_mcu_sta_bfer_vht(struct ieee80211_link_sta * link_sta,struct mt7996_phy * phy,struct sta_rec_bf * bf,bool explicit)1540 mt7996_mcu_sta_bfer_vht(struct ieee80211_link_sta *link_sta,
1541 struct mt7996_phy *phy, struct sta_rec_bf *bf,
1542 bool explicit)
1543 {
1544 struct ieee80211_sta_vht_cap *pc = &link_sta->vht_cap;
1545 struct ieee80211_sta_vht_cap *vc = &phy->mt76->sband_5g.sband.vht_cap;
1546 u16 mcs_map = le16_to_cpu(pc->vht_mcs.rx_mcs_map);
1547 u8 nss_mcs = mt7996_mcu_get_sta_nss(mcs_map);
1548 u8 tx_ant = hweight8(phy->mt76->antenna_mask) - 1;
1549
1550 bf->tx_mode = MT_PHY_TYPE_VHT;
1551
1552 if (explicit) {
1553 u8 sts, snd_dim;
1554
1555 mt7996_mcu_sta_sounding_rate(bf, phy);
1556
1557 sts = FIELD_GET(IEEE80211_VHT_CAP_BEAMFORMEE_STS_MASK,
1558 pc->cap);
1559 snd_dim = FIELD_GET(IEEE80211_VHT_CAP_SOUNDING_DIMENSIONS_MASK,
1560 vc->cap);
1561 bf->nrow = min_t(u8, min_t(u8, snd_dim, sts), tx_ant);
1562 bf->ncol = min_t(u8, nss_mcs, bf->nrow);
1563 bf->ibf_ncol = min_t(u8, MT7996_IBF_MAX_NC, bf->ncol);
1564
1565 if (link_sta->bandwidth == IEEE80211_STA_RX_BW_160)
1566 bf->nrow = 1;
1567 } else {
1568 bf->nrow = tx_ant;
1569 bf->ncol = min_t(u8, nss_mcs, bf->nrow);
1570 bf->ibf_ncol = min_t(u8, MT7996_IBF_MAX_NC, nss_mcs);
1571
1572 if (link_sta->bandwidth == IEEE80211_STA_RX_BW_160)
1573 bf->ibf_nrow = 1;
1574 }
1575 }
1576
1577 static void
mt7996_mcu_sta_bfer_he(struct ieee80211_link_sta * link_sta,struct ieee80211_vif * vif,struct mt7996_phy * phy,struct sta_rec_bf * bf,bool explicit)1578 mt7996_mcu_sta_bfer_he(struct ieee80211_link_sta *link_sta,
1579 struct ieee80211_vif *vif, struct mt7996_phy *phy,
1580 struct sta_rec_bf *bf, bool explicit)
1581 {
1582 struct ieee80211_sta_he_cap *pc = &link_sta->he_cap;
1583 struct ieee80211_he_cap_elem *pe = &pc->he_cap_elem;
1584 const struct ieee80211_sta_he_cap *vc =
1585 mt76_connac_get_he_phy_cap(phy->mt76, vif);
1586 const struct ieee80211_he_cap_elem *ve = &vc->he_cap_elem;
1587 u16 mcs_map = le16_to_cpu(pc->he_mcs_nss_supp.rx_mcs_80);
1588 u8 nss_mcs = mt7996_mcu_get_sta_nss(mcs_map);
1589 u8 snd_dim, sts;
1590
1591 if (!vc)
1592 return;
1593
1594 bf->tx_mode = MT_PHY_TYPE_HE_SU;
1595
1596 mt7996_mcu_sta_sounding_rate(bf, phy);
1597
1598 bf->trigger_su = HE_PHY(CAP6_TRIG_SU_BEAMFORMING_FB,
1599 pe->phy_cap_info[6]);
1600 bf->trigger_mu = HE_PHY(CAP6_TRIG_MU_BEAMFORMING_PARTIAL_BW_FB,
1601 pe->phy_cap_info[6]);
1602 snd_dim = HE_PHY(CAP5_BEAMFORMEE_NUM_SND_DIM_UNDER_80MHZ_MASK,
1603 ve->phy_cap_info[5]);
1604 sts = HE_PHY(CAP4_BEAMFORMEE_MAX_STS_UNDER_80MHZ_MASK,
1605 pe->phy_cap_info[4]);
1606 bf->nrow = min_t(u8, snd_dim, sts);
1607 bf->ncol = min_t(u8, nss_mcs, bf->nrow);
1608 bf->ibf_ncol = explicit ? min_t(u8, MT7996_IBF_MAX_NC, bf->ncol) :
1609 min_t(u8, MT7996_IBF_MAX_NC, nss_mcs);
1610
1611 if (link_sta->bandwidth != IEEE80211_STA_RX_BW_160)
1612 return;
1613
1614 /* go over for 160MHz and 80p80 */
1615 if (pe->phy_cap_info[0] &
1616 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G) {
1617 mcs_map = le16_to_cpu(pc->he_mcs_nss_supp.rx_mcs_160);
1618 nss_mcs = mt7996_mcu_get_sta_nss(mcs_map);
1619
1620 bf->ncol_gt_bw80 = nss_mcs;
1621 }
1622
1623 if (pe->phy_cap_info[0] &
1624 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G) {
1625 mcs_map = le16_to_cpu(pc->he_mcs_nss_supp.rx_mcs_80p80);
1626 nss_mcs = mt7996_mcu_get_sta_nss(mcs_map);
1627
1628 if (bf->ncol_gt_bw80)
1629 bf->ncol_gt_bw80 = min_t(u8, bf->ncol_gt_bw80, nss_mcs);
1630 else
1631 bf->ncol_gt_bw80 = nss_mcs;
1632 }
1633
1634 snd_dim = HE_PHY(CAP5_BEAMFORMEE_NUM_SND_DIM_ABOVE_80MHZ_MASK,
1635 ve->phy_cap_info[5]);
1636 sts = HE_PHY(CAP4_BEAMFORMEE_MAX_STS_ABOVE_80MHZ_MASK,
1637 pe->phy_cap_info[4]);
1638
1639 bf->nrow_gt_bw80 = min_t(int, snd_dim, sts);
1640 }
1641
1642 static void
mt7996_mcu_sta_bfer_eht(struct ieee80211_link_sta * link_sta,struct ieee80211_vif * vif,struct mt7996_phy * phy,struct sta_rec_bf * bf,bool explicit)1643 mt7996_mcu_sta_bfer_eht(struct ieee80211_link_sta *link_sta,
1644 struct ieee80211_vif *vif, struct mt7996_phy *phy,
1645 struct sta_rec_bf *bf, bool explicit)
1646 {
1647 struct ieee80211_sta_eht_cap *pc = &link_sta->eht_cap;
1648 struct ieee80211_eht_cap_elem_fixed *pe = &pc->eht_cap_elem;
1649 struct ieee80211_eht_mcs_nss_supp *eht_nss = &pc->eht_mcs_nss_supp;
1650 const struct ieee80211_sta_eht_cap *vc =
1651 mt76_connac_get_eht_phy_cap(phy->mt76, vif);
1652 const struct ieee80211_eht_cap_elem_fixed *ve = &vc->eht_cap_elem;
1653 u8 nss_mcs = u8_get_bits(eht_nss->bw._80.rx_tx_mcs9_max_nss,
1654 IEEE80211_EHT_MCS_NSS_RX) - 1;
1655 u8 snd_dim, sts;
1656
1657 bf->tx_mode = MT_PHY_TYPE_EHT_MU;
1658
1659 mt7996_mcu_sta_sounding_rate(bf, phy);
1660
1661 bf->trigger_su = EHT_PHY(CAP3_TRIG_SU_BF_FDBK, pe->phy_cap_info[3]);
1662 bf->trigger_mu = EHT_PHY(CAP3_TRIG_MU_BF_PART_BW_FDBK, pe->phy_cap_info[3]);
1663 snd_dim = EHT_PHY(CAP2_SOUNDING_DIM_80MHZ_MASK, ve->phy_cap_info[2]);
1664 sts = EHT_PHY(CAP0_BEAMFORMEE_SS_80MHZ_MASK, pe->phy_cap_info[0]) +
1665 (EHT_PHY(CAP1_BEAMFORMEE_SS_80MHZ_MASK, pe->phy_cap_info[1]) << 1);
1666 bf->nrow = min_t(u8, snd_dim, sts);
1667 bf->ncol = min_t(u8, nss_mcs, bf->nrow);
1668 bf->ibf_ncol = explicit ? min_t(u8, MT7996_IBF_MAX_NC, bf->ncol) :
1669 min_t(u8, MT7996_IBF_MAX_NC, nss_mcs);
1670
1671 if (link_sta->bandwidth < IEEE80211_STA_RX_BW_160)
1672 return;
1673
1674 switch (link_sta->bandwidth) {
1675 case IEEE80211_STA_RX_BW_160:
1676 snd_dim = EHT_PHY(CAP2_SOUNDING_DIM_160MHZ_MASK, ve->phy_cap_info[2]);
1677 sts = EHT_PHY(CAP1_BEAMFORMEE_SS_160MHZ_MASK, pe->phy_cap_info[1]);
1678 nss_mcs = u8_get_bits(eht_nss->bw._160.rx_tx_mcs9_max_nss,
1679 IEEE80211_EHT_MCS_NSS_RX) - 1;
1680
1681 bf->nrow_gt_bw80 = min_t(u8, snd_dim, sts);
1682 bf->ncol_gt_bw80 = nss_mcs;
1683 break;
1684 case IEEE80211_STA_RX_BW_320:
1685 snd_dim = EHT_PHY(CAP2_SOUNDING_DIM_320MHZ_MASK, ve->phy_cap_info[2]) +
1686 (EHT_PHY(CAP3_SOUNDING_DIM_320MHZ_MASK,
1687 ve->phy_cap_info[3]) << 1);
1688 sts = EHT_PHY(CAP1_BEAMFORMEE_SS_320MHZ_MASK, pe->phy_cap_info[1]);
1689 nss_mcs = u8_get_bits(eht_nss->bw._320.rx_tx_mcs9_max_nss,
1690 IEEE80211_EHT_MCS_NSS_RX) - 1;
1691
1692 bf->nrow_gt_bw80 = min_t(u8, snd_dim, sts) << 4;
1693 bf->ncol_gt_bw80 = nss_mcs << 4;
1694 break;
1695 default:
1696 break;
1697 }
1698 }
1699
1700 static void
mt7996_mcu_sta_bfer_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link)1701 mt7996_mcu_sta_bfer_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1702 struct ieee80211_bss_conf *link_conf,
1703 struct ieee80211_link_sta *link_sta,
1704 struct mt7996_vif_link *link)
1705 {
1706 #define EBF_MODE BIT(0)
1707 #define IBF_MODE BIT(1)
1708 #define BF_MAT_ORDER 4
1709 struct ieee80211_vif *vif = link_conf->vif;
1710 struct mt7996_phy *phy = link->phy;
1711 int tx_ant = hweight16(phy->mt76->chainmask) - 1;
1712 struct sta_rec_bf *bf;
1713 struct tlv *tlv;
1714 static const u8 matrix[BF_MAT_ORDER][BF_MAT_ORDER] = {
1715 {0, 0, 0, 0},
1716 {1, 1, 0, 0}, /* 2x1, 2x2, 2x3, 2x4 */
1717 {2, 4, 4, 0}, /* 3x1, 3x2, 3x3, 3x4 */
1718 {3, 5, 6, 0} /* 4x1, 4x2, 4x3, 4x4 */
1719 };
1720 bool ebf;
1721
1722 if (!(link_sta->ht_cap.ht_supported || link_sta->he_cap.has_he))
1723 return;
1724
1725 ebf = mt7996_is_ebf_supported(phy, link_conf, link_sta, false);
1726 if (!ebf && !dev->ibf)
1727 return;
1728
1729 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_BF, sizeof(*bf));
1730 bf = (struct sta_rec_bf *)tlv;
1731
1732 /* he/eht: eBF only, except mt7992 that has 5T on 5GHz also supports iBF
1733 * vht: support eBF and iBF
1734 * ht: iBF only, since mac80211 lacks of eBF support
1735 */
1736 if (link_sta->eht_cap.has_eht)
1737 mt7996_mcu_sta_bfer_eht(link_sta, vif, link->phy, bf, ebf);
1738 else if (link_sta->he_cap.has_he)
1739 mt7996_mcu_sta_bfer_he(link_sta, vif, link->phy, bf, ebf);
1740 else if (link_sta->vht_cap.vht_supported)
1741 mt7996_mcu_sta_bfer_vht(link_sta, link->phy, bf, ebf);
1742 else if (link_sta->ht_cap.ht_supported)
1743 mt7996_mcu_sta_bfer_ht(link_sta, link->phy, bf, ebf);
1744 else
1745 return;
1746
1747 bf->bf_cap = ebf ? EBF_MODE : (dev->ibf ? IBF_MODE : 0);
1748 if (is_mt7992(&dev->mt76) && tx_ant == 4)
1749 bf->bf_cap |= IBF_MODE;
1750
1751 bf->bw = link_sta->bandwidth;
1752 bf->ibf_dbw = link_sta->bandwidth;
1753 bf->ibf_nrow = tx_ant;
1754
1755 if (link_sta->eht_cap.has_eht || link_sta->he_cap.has_he)
1756 bf->ibf_timeout = is_mt7996(&dev->mt76) ? MT7996_IBF_TIMEOUT :
1757 MT7992_IBF_TIMEOUT;
1758 else if (!ebf && link_sta->bandwidth <= IEEE80211_STA_RX_BW_40 && !bf->ncol)
1759 bf->ibf_timeout = MT7996_IBF_TIMEOUT_LEGACY;
1760 else
1761 bf->ibf_timeout = MT7996_IBF_TIMEOUT;
1762
1763 if (bf->ncol < BF_MAT_ORDER) {
1764 if (ebf)
1765 bf->mem_20m = tx_ant < BF_MAT_ORDER ?
1766 matrix[tx_ant][bf->ncol] : 0;
1767 else
1768 bf->mem_20m = bf->nrow < BF_MAT_ORDER ?
1769 matrix[bf->nrow][bf->ncol] : 0;
1770 }
1771
1772 switch (link_sta->bandwidth) {
1773 case IEEE80211_STA_RX_BW_160:
1774 case IEEE80211_STA_RX_BW_80:
1775 bf->mem_total = bf->mem_20m * 2;
1776 break;
1777 case IEEE80211_STA_RX_BW_40:
1778 bf->mem_total = bf->mem_20m;
1779 break;
1780 case IEEE80211_STA_RX_BW_20:
1781 default:
1782 break;
1783 }
1784 }
1785
1786 static void
mt7996_mcu_sta_bfee_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link)1787 mt7996_mcu_sta_bfee_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1788 struct ieee80211_bss_conf *link_conf,
1789 struct ieee80211_link_sta *link_sta,
1790 struct mt7996_vif_link *link)
1791 {
1792 struct mt7996_phy *phy = link->phy;
1793 int tx_ant = hweight8(phy->mt76->antenna_mask) - 1;
1794 struct sta_rec_bfee *bfee;
1795 struct tlv *tlv;
1796 u8 nrow = 0;
1797
1798 if (!(link_sta->vht_cap.vht_supported || link_sta->he_cap.has_he))
1799 return;
1800
1801 if (!mt7996_is_ebf_supported(phy, link_conf, link_sta, true))
1802 return;
1803
1804 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_BFEE, sizeof(*bfee));
1805 bfee = (struct sta_rec_bfee *)tlv;
1806
1807 if (link_sta->he_cap.has_he) {
1808 struct ieee80211_he_cap_elem *pe = &link_sta->he_cap.he_cap_elem;
1809
1810 nrow = HE_PHY(CAP5_BEAMFORMEE_NUM_SND_DIM_UNDER_80MHZ_MASK,
1811 pe->phy_cap_info[5]);
1812 } else if (link_sta->vht_cap.vht_supported) {
1813 struct ieee80211_sta_vht_cap *pc = &link_sta->vht_cap;
1814
1815 nrow = FIELD_GET(IEEE80211_VHT_CAP_SOUNDING_DIMENSIONS_MASK,
1816 pc->cap);
1817 }
1818
1819 /* reply with identity matrix to avoid 2x2 BF negative gain */
1820 bfee->fb_identity_matrix = (nrow == 1 && tx_ant == 2);
1821 }
1822
1823 static void
mt7996_mcu_sta_tx_proc_tlv(struct sk_buff * skb)1824 mt7996_mcu_sta_tx_proc_tlv(struct sk_buff *skb)
1825 {
1826 struct sta_rec_tx_proc *tx_proc;
1827 struct tlv *tlv;
1828
1829 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_TX_PROC, sizeof(*tx_proc));
1830
1831 tx_proc = (struct sta_rec_tx_proc *)tlv;
1832 tx_proc->flag = cpu_to_le32(0);
1833 }
1834
1835 static void
mt7996_mcu_sta_hdrt_tlv(struct mt7996_dev * dev,struct sk_buff * skb)1836 mt7996_mcu_sta_hdrt_tlv(struct mt7996_dev *dev, struct sk_buff *skb)
1837 {
1838 struct sta_rec_hdrt *hdrt;
1839 struct tlv *tlv;
1840
1841 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HDRT, sizeof(*hdrt));
1842
1843 hdrt = (struct sta_rec_hdrt *)tlv;
1844 hdrt->hdrt_mode = 1;
1845 }
1846
1847 static void
mt7996_mcu_sta_hdr_trans_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_vif * vif,struct mt76_wcid * wcid)1848 mt7996_mcu_sta_hdr_trans_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
1849 struct ieee80211_vif *vif, struct mt76_wcid *wcid)
1850 {
1851 struct sta_rec_hdr_trans *hdr_trans;
1852 struct tlv *tlv;
1853
1854 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_HDR_TRANS, sizeof(*hdr_trans));
1855 hdr_trans = (struct sta_rec_hdr_trans *)tlv;
1856 hdr_trans->dis_rx_hdr_tran = true;
1857
1858 if (vif->type == NL80211_IFTYPE_STATION)
1859 hdr_trans->to_ds = true;
1860 else
1861 hdr_trans->from_ds = true;
1862
1863 if (!wcid)
1864 return;
1865
1866 hdr_trans->dis_rx_hdr_tran = !test_bit(MT_WCID_FLAG_HDR_TRANS, &wcid->flags);
1867 if (test_bit(MT_WCID_FLAG_4ADDR, &wcid->flags)) {
1868 hdr_trans->to_ds = true;
1869 hdr_trans->from_ds = true;
1870 }
1871
1872 if (vif->type == NL80211_IFTYPE_MESH_POINT) {
1873 hdr_trans->to_ds = true;
1874 hdr_trans->from_ds = true;
1875 hdr_trans->mesh = true;
1876 }
1877 }
1878
1879 static enum mcu_mmps_mode
mt7996_mcu_get_mmps_mode(enum ieee80211_smps_mode smps)1880 mt7996_mcu_get_mmps_mode(enum ieee80211_smps_mode smps)
1881 {
1882 switch (smps) {
1883 case IEEE80211_SMPS_OFF:
1884 return MCU_MMPS_DISABLE;
1885 case IEEE80211_SMPS_STATIC:
1886 return MCU_MMPS_STATIC;
1887 case IEEE80211_SMPS_DYNAMIC:
1888 return MCU_MMPS_DYNAMIC;
1889 default:
1890 return MCU_MMPS_DISABLE;
1891 }
1892 }
1893
mt7996_mcu_set_fixed_rate_ctrl(struct mt7996_dev * dev,void * data,u16 version)1894 int mt7996_mcu_set_fixed_rate_ctrl(struct mt7996_dev *dev,
1895 void *data, u16 version)
1896 {
1897 struct uni_header hdr = {};
1898 struct ra_fixed_rate *req;
1899 struct sk_buff *skb;
1900 struct tlv *tlv;
1901 int len;
1902
1903 len = sizeof(hdr) + sizeof(*req);
1904
1905 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
1906 if (!skb)
1907 return -ENOMEM;
1908
1909 skb_put_data(skb, &hdr, sizeof(hdr));
1910
1911 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_RA_FIXED_RATE, sizeof(*req));
1912 req = (struct ra_fixed_rate *)tlv;
1913 req->version = cpu_to_le16(version);
1914 memcpy(&req->rate, data, sizeof(req->rate));
1915
1916 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1917 MCU_WM_UNI_CMD(RA), true);
1918 }
1919
mt7996_mcu_set_fixed_field(struct mt7996_dev * dev,struct mt7996_sta * msta,void * data,u8 link_id,u32 field)1920 int mt7996_mcu_set_fixed_field(struct mt7996_dev *dev, struct mt7996_sta *msta,
1921 void *data, u8 link_id, u32 field)
1922 {
1923 struct mt7996_vif *mvif = msta->vif;
1924 struct mt7996_sta_link *msta_link;
1925 struct sta_rec_ra_fixed_uni *ra;
1926 struct sta_phy_uni *phy = data;
1927 struct mt76_vif_link *mlink;
1928 struct sk_buff *skb;
1929 int err = -ENODEV;
1930 struct tlv *tlv;
1931
1932 rcu_read_lock();
1933
1934 mlink = rcu_dereference(mvif->mt76.link[link_id]);
1935 if (!mlink)
1936 goto error_unlock;
1937
1938 msta_link = rcu_dereference(msta->link[link_id]);
1939 if (!msta_link)
1940 goto error_unlock;
1941
1942 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, mlink,
1943 &msta_link->wcid,
1944 MT7996_STA_UPDATE_MAX_SIZE);
1945 if (IS_ERR(skb)) {
1946 err = PTR_ERR(skb);
1947 goto error_unlock;
1948 }
1949
1950 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_RA_UPDATE, sizeof(*ra));
1951 ra = (struct sta_rec_ra_fixed_uni *)tlv;
1952
1953 switch (field) {
1954 case RATE_PARAM_AUTO:
1955 break;
1956 case RATE_PARAM_FIXED:
1957 case RATE_PARAM_FIXED_MCS:
1958 case RATE_PARAM_FIXED_GI:
1959 case RATE_PARAM_FIXED_HE_LTF:
1960 if (phy)
1961 ra->phy = *phy;
1962 break;
1963 case RATE_PARAM_MMPS_UPDATE: {
1964 struct ieee80211_sta *sta = wcid_to_sta(&msta_link->wcid);
1965 struct ieee80211_link_sta *link_sta;
1966
1967 link_sta = rcu_dereference(sta->link[link_id]);
1968 if (!link_sta) {
1969 dev_kfree_skb(skb);
1970 goto error_unlock;
1971 }
1972
1973 ra->mmps_mode = mt7996_mcu_get_mmps_mode(link_sta->smps_mode);
1974 break;
1975 }
1976 default:
1977 break;
1978 }
1979 ra->field = cpu_to_le32(field);
1980
1981 rcu_read_unlock();
1982
1983 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
1984 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
1985 error_unlock:
1986 rcu_read_unlock();
1987
1988 return err;
1989 }
1990
1991 static int
mt7996_mcu_add_rate_ctrl_fixed(struct mt7996_dev * dev,struct mt7996_sta * msta,struct ieee80211_vif * vif,u8 link_id)1992 mt7996_mcu_add_rate_ctrl_fixed(struct mt7996_dev *dev, struct mt7996_sta *msta,
1993 struct ieee80211_vif *vif, u8 link_id)
1994 {
1995 struct ieee80211_link_sta *link_sta;
1996 struct cfg80211_bitrate_mask mask;
1997 struct mt7996_sta_link *msta_link;
1998 struct mt7996_vif_link *link;
1999 struct sta_phy_uni phy = {};
2000 struct ieee80211_sta *sta;
2001 int ret, nrates = 0, idx;
2002 enum nl80211_band band;
2003 bool has_he;
2004
2005 #define __sta_phy_bitrate_mask_check(_mcs, _gi, _ht, _he) \
2006 do { \
2007 u8 i, gi = mask.control[band]._gi; \
2008 gi = (_he) ? gi : gi == NL80211_TXRATE_FORCE_SGI; \
2009 phy.sgi = gi; \
2010 phy.he_ltf = mask.control[band].he_ltf; \
2011 for (i = 0; i < ARRAY_SIZE(mask.control[band]._mcs); i++) { \
2012 if (!mask.control[band]._mcs[i]) \
2013 continue; \
2014 nrates += hweight16(mask.control[band]._mcs[i]); \
2015 phy.mcs = ffs(mask.control[band]._mcs[i]) - 1; \
2016 if (_ht) \
2017 phy.mcs += 8 * i; \
2018 } \
2019 } while (0)
2020
2021 rcu_read_lock();
2022
2023 link = mt7996_vif_link(dev, vif, link_id);
2024 if (!link)
2025 goto error_unlock;
2026
2027 msta_link = rcu_dereference(msta->link[link_id]);
2028 if (!msta_link)
2029 goto error_unlock;
2030
2031 sta = wcid_to_sta(&msta_link->wcid);
2032 link_sta = rcu_dereference(sta->link[link_id]);
2033 if (!link_sta)
2034 goto error_unlock;
2035
2036 band = link->phy->mt76->chandef.chan->band;
2037 has_he = link_sta->he_cap.has_he;
2038 mask = link->bitrate_mask;
2039 idx = msta_link->wcid.idx;
2040
2041 if (has_he) {
2042 __sta_phy_bitrate_mask_check(he_mcs, he_gi, 0, 1);
2043 } else if (link_sta->vht_cap.vht_supported) {
2044 __sta_phy_bitrate_mask_check(vht_mcs, gi, 0, 0);
2045 } else if (link_sta->ht_cap.ht_supported) {
2046 __sta_phy_bitrate_mask_check(ht_mcs, gi, 1, 0);
2047 } else {
2048 nrates = hweight32(mask.control[band].legacy);
2049 phy.mcs = ffs(mask.control[band].legacy) - 1;
2050 }
2051
2052 rcu_read_unlock();
2053
2054 #undef __sta_phy_bitrate_mask_check
2055
2056 /* fall back to auto rate control */
2057 if (mask.control[band].gi == NL80211_TXRATE_DEFAULT_GI &&
2058 mask.control[band].he_gi == GENMASK(7, 0) &&
2059 mask.control[band].he_ltf == GENMASK(7, 0) &&
2060 nrates != 1)
2061 return 0;
2062
2063 /* fixed single rate */
2064 if (nrates == 1) {
2065 ret = mt7996_mcu_set_fixed_field(dev, msta, &phy, link_id,
2066 RATE_PARAM_FIXED_MCS);
2067 if (ret)
2068 return ret;
2069 }
2070
2071 /* fixed GI */
2072 if (mask.control[band].gi != NL80211_TXRATE_DEFAULT_GI ||
2073 mask.control[band].he_gi != GENMASK(7, 0)) {
2074 u32 addr;
2075
2076 /* firmware updates only TXCMD but doesn't take WTBL into
2077 * account, so driver should update here to reflect the
2078 * actual txrate hardware sends out.
2079 */
2080 addr = mt7996_mac_wtbl_lmac_addr(dev, idx, 7);
2081 if (has_he)
2082 mt76_rmw_field(dev, addr, GENMASK(31, 24), phy.sgi);
2083 else
2084 mt76_rmw_field(dev, addr, GENMASK(15, 12), phy.sgi);
2085
2086 ret = mt7996_mcu_set_fixed_field(dev, msta, &phy, link_id,
2087 RATE_PARAM_FIXED_GI);
2088 if (ret)
2089 return ret;
2090 }
2091
2092 /* fixed HE_LTF */
2093 if (mask.control[band].he_ltf != GENMASK(7, 0)) {
2094 ret = mt7996_mcu_set_fixed_field(dev, msta, &phy, link_id,
2095 RATE_PARAM_FIXED_HE_LTF);
2096 if (ret)
2097 return ret;
2098 }
2099
2100 return 0;
2101
2102 error_unlock:
2103 rcu_read_unlock();
2104
2105 return -ENODEV;
2106 }
2107
2108 static void
mt7996_mcu_sta_rate_ctrl_tlv(struct sk_buff * skb,struct mt7996_dev * dev,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link)2109 mt7996_mcu_sta_rate_ctrl_tlv(struct sk_buff *skb, struct mt7996_dev *dev,
2110 struct ieee80211_vif *vif,
2111 struct ieee80211_bss_conf *link_conf,
2112 struct ieee80211_link_sta *link_sta,
2113 struct mt7996_vif_link *link)
2114 {
2115 #define INIT_RCPI 180
2116 struct mt76_phy *mphy = link->phy->mt76;
2117 struct cfg80211_chan_def *chandef = &mphy->chandef;
2118 struct cfg80211_bitrate_mask *mask = &link->bitrate_mask;
2119 u32 cap = link_sta->sta->wme ? STA_CAP_WMM : 0;
2120 enum nl80211_band band = chandef->chan->band;
2121 struct sta_rec_ra_uni *ra;
2122 struct tlv *tlv;
2123 u32 supp_rate = link_sta->supp_rates[band];
2124
2125 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_RA, sizeof(*ra));
2126 ra = (struct sta_rec_ra_uni *)tlv;
2127
2128 ra->valid = true;
2129 ra->auto_rate = true;
2130 ra->phy_mode = mt76_connac_get_phy_mode(mphy, vif, band, link_sta);
2131 ra->channel = chandef->chan->hw_value;
2132 ra->bw = (link_sta->bandwidth == IEEE80211_STA_RX_BW_320) ?
2133 CMD_CBW_320MHZ : link_sta->bandwidth;
2134 ra->phy.bw = ra->bw;
2135 ra->mmps_mode = mt7996_mcu_get_mmps_mode(link_sta->smps_mode);
2136
2137 if (supp_rate) {
2138 supp_rate &= mask->control[band].legacy;
2139 ra->rate_len = hweight32(supp_rate);
2140
2141 if (band == NL80211_BAND_2GHZ) {
2142 ra->supp_mode = MODE_CCK;
2143 ra->supp_cck_rate = supp_rate & GENMASK(3, 0);
2144
2145 if (ra->rate_len > 4) {
2146 ra->supp_mode |= MODE_OFDM;
2147 ra->supp_ofdm_rate = supp_rate >> 4;
2148 }
2149 } else {
2150 ra->supp_mode = MODE_OFDM;
2151 ra->supp_ofdm_rate = supp_rate;
2152 }
2153 }
2154
2155 if (link_sta->ht_cap.ht_supported) {
2156 ra->supp_mode |= MODE_HT;
2157 ra->af = link_sta->ht_cap.ampdu_factor;
2158 ra->ht_gf = !!(link_sta->ht_cap.cap & IEEE80211_HT_CAP_GRN_FLD);
2159
2160 cap |= STA_CAP_HT;
2161 if (link_sta->ht_cap.cap & IEEE80211_HT_CAP_SGI_20)
2162 cap |= STA_CAP_SGI_20;
2163 if (link_sta->ht_cap.cap & IEEE80211_HT_CAP_SGI_40)
2164 cap |= STA_CAP_SGI_40;
2165 if (link_sta->ht_cap.cap & IEEE80211_HT_CAP_TX_STBC)
2166 cap |= STA_CAP_TX_STBC;
2167 if (link_sta->ht_cap.cap & IEEE80211_HT_CAP_RX_STBC)
2168 cap |= STA_CAP_RX_STBC;
2169 if (link_conf->ht_ldpc &&
2170 (link_sta->ht_cap.cap & IEEE80211_HT_CAP_LDPC_CODING))
2171 cap |= STA_CAP_LDPC;
2172
2173 mt7996_mcu_set_sta_ht_mcs(link_sta, ra->ht_mcs,
2174 mask->control[band].ht_mcs);
2175 ra->supp_ht_mcs = *(__le32 *)ra->ht_mcs;
2176 }
2177
2178 if (link_sta->vht_cap.vht_supported) {
2179 u8 af;
2180
2181 ra->supp_mode |= MODE_VHT;
2182 af = FIELD_GET(IEEE80211_VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MASK,
2183 link_sta->vht_cap.cap);
2184 ra->af = max_t(u8, ra->af, af);
2185
2186 cap |= STA_CAP_VHT;
2187 if (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_SHORT_GI_80)
2188 cap |= STA_CAP_VHT_SGI_80;
2189 if (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_SHORT_GI_160)
2190 cap |= STA_CAP_VHT_SGI_160;
2191 if (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_TXSTBC)
2192 cap |= STA_CAP_VHT_TX_STBC;
2193 if (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_RXSTBC_1)
2194 cap |= STA_CAP_VHT_RX_STBC;
2195 if ((vif->type != NL80211_IFTYPE_AP || link_conf->vht_ldpc) &&
2196 (link_sta->vht_cap.cap & IEEE80211_VHT_CAP_RXLDPC))
2197 cap |= STA_CAP_VHT_LDPC;
2198
2199 mt7996_mcu_set_sta_vht_mcs(link_sta, ra->supp_vht_mcs,
2200 mask->control[band].vht_mcs);
2201 }
2202
2203 if (link_sta->he_cap.has_he) {
2204 ra->supp_mode |= MODE_HE;
2205 cap |= STA_CAP_HE;
2206
2207 if (link_sta->he_6ghz_capa.capa)
2208 ra->af = le16_get_bits(link_sta->he_6ghz_capa.capa,
2209 IEEE80211_HE_6GHZ_CAP_MAX_AMPDU_LEN_EXP);
2210 }
2211 ra->sta_cap = cpu_to_le32(cap);
2212
2213 memset(ra->rx_rcpi, INIT_RCPI, sizeof(ra->rx_rcpi));
2214 }
2215
mt7996_mcu_add_rate_ctrl(struct mt7996_dev * dev,struct mt7996_sta * msta,struct ieee80211_vif * vif,u8 link_id,bool changed)2216 int mt7996_mcu_add_rate_ctrl(struct mt7996_dev *dev, struct mt7996_sta *msta,
2217 struct ieee80211_vif *vif, u8 link_id,
2218 bool changed)
2219 {
2220 struct ieee80211_bss_conf *link_conf;
2221 struct ieee80211_link_sta *link_sta;
2222 struct mt7996_sta_link *msta_link;
2223 struct mt7996_vif_link *link;
2224 struct ieee80211_sta *sta;
2225 struct sk_buff *skb;
2226 int ret = -ENODEV;
2227
2228 rcu_read_lock();
2229
2230 link = mt7996_vif_link(dev, vif, link_id);
2231 if (!link)
2232 goto error_unlock;
2233
2234 msta_link = rcu_dereference(msta->link[link_id]);
2235 if (!msta_link)
2236 goto error_unlock;
2237
2238 sta = wcid_to_sta(&msta_link->wcid);
2239 link_sta = rcu_dereference(sta->link[link_id]);
2240 if (!link_sta)
2241 goto error_unlock;
2242
2243 link_conf = rcu_dereference(vif->link_conf[link_id]);
2244 if (!link_conf)
2245 goto error_unlock;
2246
2247 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76,
2248 &msta_link->wcid,
2249 MT7996_STA_UPDATE_MAX_SIZE);
2250 if (IS_ERR(skb)) {
2251 ret = PTR_ERR(skb);
2252 goto error_unlock;
2253 }
2254
2255 /* firmware rc algorithm refers to sta_rec_he for HE control.
2256 * once dev->rc_work changes the settings driver should also
2257 * update sta_rec_he here.
2258 */
2259 if (changed)
2260 mt7996_mcu_sta_he_tlv(skb, link_sta, link);
2261
2262 /* sta_rec_ra accommodates BW, NSS and only MCS range format
2263 * i.e 0-{7,8,9} for VHT.
2264 */
2265 mt7996_mcu_sta_rate_ctrl_tlv(skb, dev, vif, link_conf, link_sta, link);
2266
2267 rcu_read_unlock();
2268
2269 ret = mt76_mcu_skb_send_msg(&dev->mt76, skb,
2270 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
2271 if (ret)
2272 return ret;
2273
2274 return mt7996_mcu_add_rate_ctrl_fixed(dev, msta, vif, link_id);
2275
2276 error_unlock:
2277 rcu_read_unlock();
2278
2279 return ret;
2280 }
2281
2282 static int
mt7996_mcu_add_group(struct mt7996_dev * dev,struct ieee80211_vif * vif,struct ieee80211_sta * sta)2283 mt7996_mcu_add_group(struct mt7996_dev *dev, struct ieee80211_vif *vif,
2284 struct ieee80211_sta *sta)
2285 {
2286 #define MT_STA_BSS_GROUP 1
2287 struct mt7996_vif *mvif = (struct mt7996_vif *)vif->drv_priv;
2288 struct mt7996_sta_link *msta_link;
2289 struct mt7996_sta *msta;
2290 struct {
2291 u8 __rsv1[4];
2292
2293 __le16 tag;
2294 __le16 len;
2295 __le16 wlan_idx;
2296 u8 __rsv2[2];
2297 __le32 action;
2298 __le32 val;
2299 u8 __rsv3[8];
2300 } __packed req = {
2301 .tag = cpu_to_le16(UNI_VOW_DRR_CTRL),
2302 .len = cpu_to_le16(sizeof(req) - 4),
2303 .action = cpu_to_le32(MT_STA_BSS_GROUP),
2304 .val = cpu_to_le32(mvif->deflink.mt76.idx % 16),
2305 };
2306
2307 msta = sta ? (struct mt7996_sta *)sta->drv_priv : NULL;
2308 msta_link = msta ? &msta->deflink : &mvif->deflink.msta_link;
2309 req.wlan_idx = cpu_to_le16(msta_link->wcid.idx);
2310
2311 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(VOW), &req,
2312 sizeof(req), true);
2313 }
2314
2315 static void
mt7996_mcu_sta_mld_setup_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_vif * vif,struct ieee80211_sta * sta)2316 mt7996_mcu_sta_mld_setup_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
2317 struct ieee80211_vif *vif,
2318 struct ieee80211_sta *sta)
2319 {
2320 struct mt7996_sta *msta = (struct mt7996_sta *)sta->drv_priv;
2321 unsigned int nlinks = hweight16(sta->valid_links);
2322 struct mld_setup_link *mld_setup_link;
2323 struct ieee80211_link_sta *link_sta;
2324 struct sta_rec_mld_setup *mld_setup;
2325 struct mt7996_sta_link *msta_link;
2326 unsigned int link_id;
2327 struct tlv *tlv;
2328
2329 msta_link = mt76_dereference(msta->link[msta->deflink_id], &dev->mt76);
2330 if (!msta_link)
2331 return;
2332
2333 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_MLD,
2334 sizeof(struct sta_rec_mld_setup) +
2335 sizeof(struct mld_setup_link) * nlinks);
2336
2337 mld_setup = (struct sta_rec_mld_setup *)tlv;
2338 memcpy(mld_setup->mld_addr, sta->addr, ETH_ALEN);
2339 mld_setup->setup_wcid = cpu_to_le16(msta_link->wcid.idx);
2340 mld_setup->primary_id = cpu_to_le16(msta_link->wcid.idx);
2341
2342 if (nlinks > 1) {
2343 link_id = __ffs(sta->valid_links & ~BIT(msta->deflink_id));
2344 msta_link = mt76_dereference(msta->link[link_id], &dev->mt76);
2345 if (!msta_link)
2346 return;
2347 }
2348 mld_setup->seconed_id = cpu_to_le16(msta_link->wcid.idx);
2349 mld_setup->link_num = nlinks;
2350
2351 mld_setup_link = (struct mld_setup_link *)mld_setup->link_info;
2352 for_each_sta_active_link(vif, sta, link_sta, link_id) {
2353 struct mt7996_vif_link *link;
2354
2355 msta_link = mt76_dereference(msta->link[link_id], &dev->mt76);
2356 if (!msta_link)
2357 continue;
2358
2359 link = mt7996_vif_link(dev, vif, link_id);
2360 if (!link)
2361 continue;
2362
2363 mld_setup_link->wcid = cpu_to_le16(msta_link->wcid.idx);
2364 mld_setup_link->bss_idx = link->mt76.idx;
2365 mld_setup_link++;
2366 }
2367 }
2368
2369 static void
mt7996_mcu_sta_eht_mld_tlv(struct mt7996_dev * dev,struct sk_buff * skb,struct ieee80211_sta * sta)2370 mt7996_mcu_sta_eht_mld_tlv(struct mt7996_dev *dev, struct sk_buff *skb,
2371 struct ieee80211_sta *sta)
2372 {
2373 struct sta_rec_eht_mld *eht_mld;
2374 struct tlv *tlv;
2375 int i;
2376
2377 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_EHT_MLD, sizeof(*eht_mld));
2378 eht_mld = (struct sta_rec_eht_mld *)tlv;
2379
2380 for (i = 0; i < ARRAY_SIZE(eht_mld->str_cap); i++)
2381 eht_mld->str_cap[i] = 0x7;
2382 }
2383
mt7996_mcu_add_sta(struct mt7996_dev * dev,struct ieee80211_bss_conf * link_conf,struct ieee80211_link_sta * link_sta,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link,int conn_state,bool newly)2384 int mt7996_mcu_add_sta(struct mt7996_dev *dev,
2385 struct ieee80211_bss_conf *link_conf,
2386 struct ieee80211_link_sta *link_sta,
2387 struct mt7996_vif_link *link,
2388 struct mt7996_sta_link *msta_link,
2389 int conn_state, bool newly)
2390 {
2391 struct mt76_wcid *wcid = msta_link ? &msta_link->wcid : link->mt76.wcid;
2392 struct ieee80211_sta *sta = link_sta ? link_sta->sta : NULL;
2393 struct sk_buff *skb;
2394 int ret;
2395
2396 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76, wcid,
2397 MT7996_STA_UPDATE_MAX_SIZE);
2398 if (IS_ERR(skb))
2399 return PTR_ERR(skb);
2400
2401 /* starec basic */
2402 mt76_connac_mcu_sta_basic_tlv(&dev->mt76, skb, link_conf, link_sta,
2403 conn_state, newly);
2404
2405 if (conn_state == CONN_STATE_DISCONNECT)
2406 goto out;
2407
2408 /* starec hdr trans */
2409 mt7996_mcu_sta_hdr_trans_tlv(dev, skb, link_conf->vif, wcid);
2410 /* starec tx proc */
2411 mt7996_mcu_sta_tx_proc_tlv(skb);
2412
2413 /* tag order is in accordance with firmware dependency. */
2414 if (link_sta) {
2415 /* starec hdrt mode */
2416 mt7996_mcu_sta_hdrt_tlv(dev, skb);
2417 if (conn_state == CONN_STATE_CONNECT) {
2418 /* starec bfer */
2419 mt7996_mcu_sta_bfer_tlv(dev, skb, link_conf, link_sta,
2420 link);
2421 /* starec bfee */
2422 mt7996_mcu_sta_bfee_tlv(dev, skb, link_conf, link_sta,
2423 link);
2424 }
2425 /* starec ht */
2426 mt7996_mcu_sta_ht_tlv(skb, link_sta);
2427 /* starec vht */
2428 mt7996_mcu_sta_vht_tlv(skb, link_sta);
2429 /* starec uapsd */
2430 mt76_connac_mcu_sta_uapsd(skb, link_conf->vif, sta);
2431 /* starec amsdu */
2432 mt7996_mcu_sta_amsdu_tlv(dev, skb, link_conf->vif, link_sta,
2433 msta_link);
2434 /* starec he */
2435 mt7996_mcu_sta_he_tlv(skb, link_sta, link);
2436 /* starec he 6g*/
2437 mt7996_mcu_sta_he_6g_tlv(skb, link_sta);
2438 /* starec eht */
2439 mt7996_mcu_sta_eht_tlv(skb, link_sta);
2440 /* starec muru */
2441 mt7996_mcu_sta_muru_tlv(dev, skb, link_conf, link_sta);
2442
2443 if (sta->mlo) {
2444 mt7996_mcu_sta_mld_setup_tlv(dev, skb, link_conf->vif,
2445 sta);
2446 mt7996_mcu_sta_eht_mld_tlv(dev, skb, sta);
2447 }
2448 }
2449
2450 ret = mt7996_mcu_add_group(dev, link_conf->vif, sta);
2451 if (ret) {
2452 dev_kfree_skb(skb);
2453 return ret;
2454 }
2455 out:
2456 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
2457 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
2458 }
2459
mt7996_mcu_teardown_mld_sta(struct mt7996_dev * dev,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link)2460 int mt7996_mcu_teardown_mld_sta(struct mt7996_dev *dev,
2461 struct mt7996_vif_link *link,
2462 struct mt7996_sta_link *msta_link)
2463 {
2464 struct sk_buff *skb;
2465
2466 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76,
2467 &msta_link->wcid,
2468 MT7996_STA_UPDATE_MAX_SIZE);
2469 if (IS_ERR(skb))
2470 return PTR_ERR(skb);
2471
2472 mt76_connac_mcu_add_tlv(skb, STA_REC_MLD_OFF, sizeof(struct tlv));
2473
2474 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
2475 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
2476 }
2477
2478 static int
mt7996_mcu_sta_key_tlv(struct mt76_wcid * wcid,struct sk_buff * skb,struct ieee80211_key_conf * key,enum set_key_cmd cmd)2479 mt7996_mcu_sta_key_tlv(struct mt76_wcid *wcid,
2480 struct sk_buff *skb,
2481 struct ieee80211_key_conf *key,
2482 enum set_key_cmd cmd)
2483 {
2484 struct sta_rec_sec_uni *sec;
2485 struct tlv *tlv;
2486
2487 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_KEY_V2, sizeof(*sec));
2488 sec = (struct sta_rec_sec_uni *)tlv;
2489 sec->add = cmd;
2490
2491 if (cmd == SET_KEY) {
2492 struct sec_key_uni *sec_key;
2493 u8 cipher;
2494
2495 cipher = mt76_connac_mcu_get_cipher(key->cipher);
2496 if (cipher == MCU_CIPHER_NONE)
2497 return -EOPNOTSUPP;
2498
2499 sec_key = &sec->key[0];
2500 sec_key->wlan_idx = cpu_to_le16(wcid->idx);
2501 sec_key->mgmt_prot = 0;
2502 sec_key->cipher_id = cipher;
2503 sec_key->cipher_len = sizeof(*sec_key);
2504 sec_key->key_id = key->keyidx;
2505 sec_key->key_len = key->keylen;
2506 sec_key->need_resp = 0;
2507 memcpy(sec_key->key, key->key, key->keylen);
2508
2509 if (cipher == MCU_CIPHER_TKIP) {
2510 /* Rx/Tx MIC keys are swapped */
2511 memcpy(sec_key->key + 16, key->key + 24, 8);
2512 memcpy(sec_key->key + 24, key->key + 16, 8);
2513 }
2514
2515 sec->n_cipher = 1;
2516 } else {
2517 sec->n_cipher = 0;
2518 }
2519
2520 return 0;
2521 }
2522
mt7996_mcu_add_key(struct mt76_dev * dev,struct ieee80211_vif * vif,struct ieee80211_key_conf * key,int mcu_cmd,struct mt76_wcid * wcid,enum set_key_cmd cmd)2523 int mt7996_mcu_add_key(struct mt76_dev *dev, struct ieee80211_vif *vif,
2524 struct ieee80211_key_conf *key, int mcu_cmd,
2525 struct mt76_wcid *wcid, enum set_key_cmd cmd)
2526 {
2527 struct mt76_vif_link *mvif = (struct mt76_vif_link *)vif->drv_priv;
2528 struct sk_buff *skb;
2529 int ret;
2530
2531 skb = __mt76_connac_mcu_alloc_sta_req(dev, mvif, wcid,
2532 MT7996_STA_UPDATE_MAX_SIZE);
2533 if (IS_ERR(skb))
2534 return PTR_ERR(skb);
2535
2536 ret = mt7996_mcu_sta_key_tlv(wcid, skb, key, cmd);
2537 if (ret)
2538 return ret;
2539
2540 return mt76_mcu_skb_send_msg(dev, skb, mcu_cmd, true);
2541 }
2542
mt7996_mcu_get_pn(struct mt7996_dev * dev,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link,u8 * pn)2543 static int mt7996_mcu_get_pn(struct mt7996_dev *dev,
2544 struct mt7996_vif_link *link,
2545 struct mt7996_sta_link *msta_link, u8 *pn)
2546 {
2547 #define TSC_TYPE_BIGTK_PN 2
2548 struct sta_rec_pn_info *pn_info;
2549 struct sk_buff *skb, *rskb;
2550 struct tlv *tlv;
2551 int ret;
2552
2553 skb = mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76,
2554 &msta_link->wcid);
2555 if (IS_ERR(skb))
2556 return PTR_ERR(skb);
2557
2558 tlv = mt76_connac_mcu_add_tlv(skb, STA_REC_PN_INFO, sizeof(*pn_info));
2559 pn_info = (struct sta_rec_pn_info *)tlv;
2560
2561 pn_info->tsc_type = TSC_TYPE_BIGTK_PN;
2562 ret = mt76_mcu_skb_send_and_get_msg(&dev->mt76, skb,
2563 MCU_WM_UNI_CMD_QUERY(STA_REC_UPDATE),
2564 true, &rskb);
2565 if (ret)
2566 return ret;
2567
2568 skb_pull(rskb, 4);
2569
2570 pn_info = (struct sta_rec_pn_info *)rskb->data;
2571 if (le16_to_cpu(pn_info->tag) == STA_REC_PN_INFO)
2572 memcpy(pn, pn_info->pn, 6);
2573
2574 dev_kfree_skb(rskb);
2575 return 0;
2576 }
2577
mt7996_mcu_bcn_prot_enable(struct mt7996_dev * dev,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link,struct ieee80211_key_conf * key)2578 int mt7996_mcu_bcn_prot_enable(struct mt7996_dev *dev,
2579 struct mt7996_vif_link *link,
2580 struct mt7996_sta_link *msta_link,
2581 struct ieee80211_key_conf *key)
2582 {
2583 struct mt7996_mcu_bcn_prot_tlv *bcn_prot;
2584 struct sk_buff *skb;
2585 struct tlv *tlv;
2586 u8 pn[6] = {};
2587 int len = sizeof(struct bss_req_hdr) +
2588 sizeof(struct mt7996_mcu_bcn_prot_tlv);
2589 int ret;
2590
2591 skb = __mt7996_mcu_alloc_bss_req(&dev->mt76, &link->mt76, len);
2592 if (IS_ERR(skb))
2593 return PTR_ERR(skb);
2594
2595 tlv = mt76_connac_mcu_add_tlv(skb, UNI_BSS_INFO_BCN_PROT, sizeof(*bcn_prot));
2596
2597 bcn_prot = (struct mt7996_mcu_bcn_prot_tlv *)tlv;
2598
2599 ret = mt7996_mcu_get_pn(dev, link, msta_link, pn);
2600 if (ret) {
2601 dev_kfree_skb(skb);
2602 return ret;
2603 }
2604
2605 switch (key->cipher) {
2606 case WLAN_CIPHER_SUITE_AES_CMAC:
2607 bcn_prot->cipher_id = MCU_CIPHER_BCN_PROT_CMAC_128;
2608 break;
2609 case WLAN_CIPHER_SUITE_BIP_GMAC_128:
2610 bcn_prot->cipher_id = MCU_CIPHER_BCN_PROT_GMAC_128;
2611 break;
2612 case WLAN_CIPHER_SUITE_BIP_GMAC_256:
2613 bcn_prot->cipher_id = MCU_CIPHER_BCN_PROT_GMAC_256;
2614 break;
2615 case WLAN_CIPHER_SUITE_BIP_CMAC_256:
2616 default:
2617 dev_err(dev->mt76.dev, "Not supported Bigtk Cipher\n");
2618 dev_kfree_skb(skb);
2619 return -EOPNOTSUPP;
2620 }
2621
2622 pn[0]++;
2623 memcpy(bcn_prot->pn, pn, 6);
2624 bcn_prot->enable = BP_SW_MODE;
2625 memcpy(bcn_prot->key, key->key, WLAN_MAX_KEY_LEN);
2626 bcn_prot->key_id = key->keyidx;
2627
2628 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
2629 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
2630 }
2631
mt7996_mcu_add_dev_info(struct mt7996_phy * phy,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct mt76_vif_link * mlink,bool enable)2632 int mt7996_mcu_add_dev_info(struct mt7996_phy *phy, struct ieee80211_vif *vif,
2633 struct ieee80211_bss_conf *link_conf,
2634 struct mt76_vif_link *mlink, bool enable)
2635 {
2636 struct mt7996_dev *dev = phy->dev;
2637 struct {
2638 struct req_hdr {
2639 u8 omac_idx;
2640 u8 band_idx;
2641 u8 __rsv[2];
2642 } __packed hdr;
2643 struct req_tlv {
2644 __le16 tag;
2645 __le16 len;
2646 u8 active;
2647 u8 __rsv;
2648 u8 omac_addr[ETH_ALEN];
2649 } __packed tlv;
2650 } data = {
2651 .hdr = {
2652 .omac_idx = mlink->omac_idx,
2653 .band_idx = mlink->band_idx,
2654 },
2655 .tlv = {
2656 .tag = cpu_to_le16(DEV_INFO_ACTIVE),
2657 .len = cpu_to_le16(sizeof(struct req_tlv)),
2658 .active = enable,
2659 },
2660 };
2661
2662 if (mlink->omac_idx >= REPEATER_BSSID_START)
2663 return mt7996_mcu_muar_config(dev, mlink, link_conf->addr, false, enable);
2664
2665 memcpy(data.tlv.omac_addr, link_conf->addr, ETH_ALEN);
2666 return mt76_mcu_send_msg(&dev->mt76, MCU_WMWA_UNI_CMD(DEV_INFO_UPDATE),
2667 &data, sizeof(data), true);
2668 }
2669
2670 static void
mt7996_mcu_beacon_cntdwn(struct sk_buff * rskb,struct sk_buff * skb,struct ieee80211_mutable_offsets * offs,bool csa)2671 mt7996_mcu_beacon_cntdwn(struct sk_buff *rskb, struct sk_buff *skb,
2672 struct ieee80211_mutable_offsets *offs,
2673 bool csa)
2674 {
2675 struct bss_bcn_cntdwn_tlv *info;
2676 struct tlv *tlv;
2677 u16 tag;
2678
2679 if (!offs->cntdwn_counter_offs[0])
2680 return;
2681
2682 tag = csa ? UNI_BSS_INFO_BCN_CSA : UNI_BSS_INFO_BCN_BCC;
2683
2684 tlv = mt7996_mcu_add_uni_tlv(rskb, tag, sizeof(*info));
2685
2686 info = (struct bss_bcn_cntdwn_tlv *)tlv;
2687 info->cnt = skb->data[offs->cntdwn_counter_offs[0]];
2688 }
2689
2690 static void
mt7996_mcu_beacon_mbss(struct sk_buff * rskb,struct sk_buff * skb,struct bss_bcn_content_tlv * bcn,struct ieee80211_mutable_offsets * offs)2691 mt7996_mcu_beacon_mbss(struct sk_buff *rskb, struct sk_buff *skb,
2692 struct bss_bcn_content_tlv *bcn,
2693 struct ieee80211_mutable_offsets *offs)
2694 {
2695 struct bss_bcn_mbss_tlv *mbss;
2696 const struct element *elem;
2697 struct tlv *tlv;
2698
2699 tlv = mt7996_mcu_add_uni_tlv(rskb, UNI_BSS_INFO_BCN_MBSSID, sizeof(*mbss));
2700
2701 mbss = (struct bss_bcn_mbss_tlv *)tlv;
2702 mbss->offset[0] = cpu_to_le16(offs->tim_offset);
2703 mbss->bitmap = cpu_to_le32(1);
2704
2705 for_each_element_id(elem, WLAN_EID_MULTIPLE_BSSID,
2706 &skb->data[offs->mbssid_off],
2707 skb->len - offs->mbssid_off) {
2708 const struct element *sub_elem;
2709
2710 if (elem->datalen < 2)
2711 continue;
2712
2713 for_each_element(sub_elem, elem->data + 1, elem->datalen - 1) {
2714 const struct ieee80211_bssid_index *idx;
2715 const u8 *idx_ie;
2716
2717 /* not a valid BSS profile */
2718 if (sub_elem->id || sub_elem->datalen < 4)
2719 continue;
2720
2721 /* Find WLAN_EID_MULTI_BSSID_IDX
2722 * in the merged nontransmitted profile
2723 */
2724 idx_ie = cfg80211_find_ie(WLAN_EID_MULTI_BSSID_IDX,
2725 sub_elem->data, sub_elem->datalen);
2726 if (!idx_ie || idx_ie[1] < sizeof(*idx))
2727 continue;
2728
2729 #if defined(__linux__)
2730 idx = (void *)(idx_ie + 2);
2731 #elif defined(__FreeBSD__)
2732 idx = (const void *)(idx_ie + 2);
2733 #endif
2734 if (!idx->bssid_index || idx->bssid_index > 31)
2735 continue;
2736
2737 mbss->offset[idx->bssid_index] = cpu_to_le16(idx_ie -
2738 skb->data);
2739 mbss->bitmap |= cpu_to_le32(BIT(idx->bssid_index));
2740 }
2741 }
2742 }
2743
2744 static void
mt7996_mcu_beacon_cont(struct mt7996_dev * dev,struct ieee80211_bss_conf * link_conf,struct sk_buff * rskb,struct sk_buff * skb,struct bss_bcn_content_tlv * bcn,struct ieee80211_mutable_offsets * offs)2745 mt7996_mcu_beacon_cont(struct mt7996_dev *dev,
2746 struct ieee80211_bss_conf *link_conf,
2747 struct sk_buff *rskb, struct sk_buff *skb,
2748 struct bss_bcn_content_tlv *bcn,
2749 struct ieee80211_mutable_offsets *offs)
2750 {
2751 struct mt76_wcid *wcid = &dev->mt76.global_wcid;
2752 u8 *buf;
2753
2754 bcn->pkt_len = cpu_to_le16(MT_TXD_SIZE + skb->len);
2755 bcn->tim_ie_pos = cpu_to_le16(offs->tim_offset);
2756
2757 if (offs->cntdwn_counter_offs[0]) {
2758 u16 offset = offs->cntdwn_counter_offs[0];
2759
2760 if (link_conf->csa_active)
2761 bcn->csa_ie_pos = cpu_to_le16(offset - 4);
2762 if (link_conf->color_change_active)
2763 bcn->bcc_ie_pos = cpu_to_le16(offset - 3);
2764 }
2765
2766 buf = (u8 *)bcn + sizeof(*bcn);
2767 mt7996_mac_write_txwi(dev, (__le32 *)buf, skb, wcid, NULL, 0, 0,
2768 BSS_CHANGED_BEACON);
2769
2770 memcpy(buf + MT_TXD_SIZE, skb->data, skb->len);
2771 }
2772
mt7996_mcu_add_beacon(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf)2773 int mt7996_mcu_add_beacon(struct ieee80211_hw *hw, struct ieee80211_vif *vif,
2774 struct ieee80211_bss_conf *link_conf)
2775 {
2776 struct mt7996_dev *dev = mt7996_hw_dev(hw);
2777 struct mt7996_vif_link *link = mt7996_vif_conf_link(dev, vif, link_conf);
2778 struct mt76_vif_link *mlink = link ? &link->mt76 : NULL;
2779 struct ieee80211_mutable_offsets offs;
2780 struct ieee80211_tx_info *info;
2781 struct sk_buff *skb, *rskb;
2782 struct tlv *tlv;
2783 struct bss_bcn_content_tlv *bcn;
2784 int len, extra_len = 0;
2785 bool enabled = link_conf->enable_beacon;
2786
2787 if (link_conf->nontransmitted)
2788 return 0;
2789
2790 if (!mlink)
2791 return -EINVAL;
2792
2793 if (link->phy && link->phy->mt76->offchannel)
2794 enabled = false;
2795
2796 rskb = __mt7996_mcu_alloc_bss_req(&dev->mt76, mlink,
2797 MT7996_MAX_BSS_OFFLOAD_SIZE);
2798 if (IS_ERR(rskb))
2799 return PTR_ERR(rskb);
2800
2801 skb = ieee80211_beacon_get_template(hw, vif, &offs, link_conf->link_id);
2802 if (enabled && !skb) {
2803 dev_kfree_skb(rskb);
2804 return -EINVAL;
2805 }
2806
2807 if (skb) {
2808 if (skb->len > MT7996_MAX_BEACON_SIZE) {
2809 dev_err(dev->mt76.dev, "Bcn size limit exceed\n");
2810 dev_kfree_skb(rskb);
2811 dev_kfree_skb(skb);
2812 return -EINVAL;
2813 }
2814
2815 extra_len = skb->len;
2816 }
2817
2818 len = ALIGN(sizeof(*bcn) + MT_TXD_SIZE + extra_len, 4);
2819 tlv = mt7996_mcu_add_uni_tlv(rskb, UNI_BSS_INFO_BCN_CONTENT, len);
2820 bcn = (struct bss_bcn_content_tlv *)tlv;
2821 bcn->enable = enabled;
2822 if (!bcn->enable)
2823 goto out;
2824
2825 info = IEEE80211_SKB_CB(skb);
2826 info->hw_queue |= FIELD_PREP(MT_TX_HW_QUEUE_PHY, mlink->band_idx);
2827
2828 mt7996_mcu_beacon_cont(dev, link_conf, rskb, skb, bcn, &offs);
2829 if (link_conf->bssid_indicator)
2830 mt7996_mcu_beacon_mbss(rskb, skb, bcn, &offs);
2831 mt7996_mcu_beacon_cntdwn(rskb, skb, &offs, link_conf->csa_active);
2832 out:
2833 dev_kfree_skb(skb);
2834 return mt76_mcu_skb_send_msg(&dev->mt76, rskb,
2835 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
2836 }
2837
mt7996_mcu_beacon_inband_discov(struct mt7996_dev * dev,struct ieee80211_bss_conf * link_conf,struct mt7996_vif_link * link,u32 changed)2838 int mt7996_mcu_beacon_inband_discov(struct mt7996_dev *dev,
2839 struct ieee80211_bss_conf *link_conf,
2840 struct mt7996_vif_link *link, u32 changed)
2841 {
2842 #define OFFLOAD_TX_MODE_SU BIT(0)
2843 #define OFFLOAD_TX_MODE_MU BIT(1)
2844 struct ieee80211_vif *vif = link_conf->vif;
2845 struct ieee80211_hw *hw = mt76_hw(dev);
2846 struct mt7996_phy *phy = link->phy;
2847 struct mt76_wcid *wcid = &dev->mt76.global_wcid;
2848 struct bss_inband_discovery_tlv *discov;
2849 struct ieee80211_tx_info *info;
2850 struct sk_buff *rskb, *skb = NULL;
2851 struct cfg80211_chan_def *chandef;
2852 enum nl80211_band band;
2853 struct tlv *tlv;
2854 u8 *buf, interval;
2855 int len;
2856
2857 if (!phy)
2858 return -EINVAL;
2859
2860 chandef = &phy->mt76->chandef;
2861 band = chandef->chan->band;
2862
2863 if (link_conf->nontransmitted)
2864 return 0;
2865
2866 rskb = __mt7996_mcu_alloc_bss_req(&dev->mt76, &link->mt76,
2867 MT7996_MAX_BSS_OFFLOAD_SIZE);
2868 if (IS_ERR(rskb))
2869 return PTR_ERR(rskb);
2870
2871 if (changed & BSS_CHANGED_FILS_DISCOVERY &&
2872 link_conf->fils_discovery.max_interval) {
2873 interval = link_conf->fils_discovery.max_interval;
2874 skb = ieee80211_get_fils_discovery_tmpl(hw, vif);
2875 } else if (changed & BSS_CHANGED_UNSOL_BCAST_PROBE_RESP &&
2876 link_conf->unsol_bcast_probe_resp_interval) {
2877 interval = link_conf->unsol_bcast_probe_resp_interval;
2878 skb = ieee80211_get_unsol_bcast_probe_resp_tmpl(hw, vif);
2879 }
2880
2881 if (!skb) {
2882 dev_kfree_skb(rskb);
2883 return -EINVAL;
2884 }
2885
2886 if (skb->len > MT7996_MAX_BEACON_SIZE) {
2887 dev_err(dev->mt76.dev, "inband discovery size limit exceed\n");
2888 dev_kfree_skb(rskb);
2889 dev_kfree_skb(skb);
2890 return -EINVAL;
2891 }
2892
2893 info = IEEE80211_SKB_CB(skb);
2894 info->control.vif = vif;
2895 info->band = band;
2896 info->hw_queue |= FIELD_PREP(MT_TX_HW_QUEUE_PHY, phy->mt76->band_idx);
2897
2898 len = ALIGN(sizeof(*discov) + MT_TXD_SIZE + skb->len, 4);
2899 tlv = mt7996_mcu_add_uni_tlv(rskb, UNI_BSS_INFO_OFFLOAD, len);
2900
2901 discov = (struct bss_inband_discovery_tlv *)tlv;
2902 discov->tx_mode = OFFLOAD_TX_MODE_SU;
2903 /* 0: UNSOL PROBE RESP, 1: FILS DISCOV */
2904 discov->tx_type = !!(changed & BSS_CHANGED_FILS_DISCOVERY);
2905 discov->tx_interval = interval;
2906 discov->prob_rsp_len = cpu_to_le16(MT_TXD_SIZE + skb->len);
2907 discov->enable = true;
2908 discov->wcid = cpu_to_le16(MT7996_WTBL_RESERVED);
2909
2910 buf = (u8 *)tlv + sizeof(*discov);
2911
2912 mt7996_mac_write_txwi(dev, (__le32 *)buf, skb, wcid, NULL, 0, 0, changed);
2913
2914 memcpy(buf + MT_TXD_SIZE, skb->data, skb->len);
2915
2916 dev_kfree_skb(skb);
2917
2918 return mt76_mcu_skb_send_msg(&dev->mt76, rskb,
2919 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
2920 }
2921
mt7996_driver_own(struct mt7996_dev * dev,u8 band)2922 static int mt7996_driver_own(struct mt7996_dev *dev, u8 band)
2923 {
2924 mt76_wr(dev, MT_TOP_LPCR_HOST_BAND(band), MT_TOP_LPCR_HOST_DRV_OWN);
2925 if (!mt76_poll_msec(dev, MT_TOP_LPCR_HOST_BAND(band),
2926 MT_TOP_LPCR_HOST_FW_OWN_STAT, 0, 500)) {
2927 dev_err(dev->mt76.dev, "Timeout for driver own\n");
2928 return -EIO;
2929 }
2930
2931 /* clear irq when the driver own success */
2932 mt76_wr(dev, MT_TOP_LPCR_HOST_BAND_IRQ_STAT(band),
2933 MT_TOP_LPCR_HOST_BAND_STAT);
2934
2935 return 0;
2936 }
2937
mt7996_patch_sec_mode(u32 key_info)2938 static u32 mt7996_patch_sec_mode(u32 key_info)
2939 {
2940 u32 sec = u32_get_bits(key_info, MT7996_PATCH_SEC), key = 0;
2941
2942 if (key_info == GENMASK(31, 0) || sec == MT7996_SEC_MODE_PLAIN)
2943 return 0;
2944
2945 if (sec == MT7996_SEC_MODE_AES)
2946 key = u32_get_bits(key_info, MT7996_PATCH_AES_KEY);
2947 else
2948 key = u32_get_bits(key_info, MT7996_PATCH_SCRAMBLE_KEY);
2949
2950 return MT7996_SEC_ENCRYPT | MT7996_SEC_IV |
2951 u32_encode_bits(key, MT7996_SEC_KEY_IDX);
2952 }
2953
mt7996_load_patch(struct mt7996_dev * dev)2954 static int mt7996_load_patch(struct mt7996_dev *dev)
2955 {
2956 const struct mt7996_patch_hdr *hdr;
2957 const struct firmware *fw = NULL;
2958 int i, ret, sem;
2959
2960 sem = mt76_connac_mcu_patch_sem_ctrl(&dev->mt76, 1);
2961 switch (sem) {
2962 case PATCH_IS_DL:
2963 return 0;
2964 case PATCH_NOT_DL_SEM_SUCCESS:
2965 break;
2966 default:
2967 dev_err(dev->mt76.dev, "Failed to get patch semaphore\n");
2968 return -EAGAIN;
2969 }
2970
2971 ret = request_firmware(&fw, fw_name(dev, ROM_PATCH), dev->mt76.dev);
2972 if (ret)
2973 goto out;
2974
2975 if (!fw || !fw->data || fw->size < sizeof(*hdr)) {
2976 dev_err(dev->mt76.dev, "Invalid firmware\n");
2977 ret = -EINVAL;
2978 goto out;
2979 }
2980
2981 hdr = (const struct mt7996_patch_hdr *)(fw->data);
2982
2983 dev_info(dev->mt76.dev, "HW/SW Version: 0x%x, Build Time: %.16s\n",
2984 be32_to_cpu(hdr->hw_sw_ver), hdr->build_date);
2985
2986 for (i = 0; i < be32_to_cpu(hdr->desc.n_region); i++) {
2987 #if defined(__linux__)
2988 struct mt7996_patch_sec *sec;
2989 #elif defined(__FreeBSD__)
2990 const struct mt7996_patch_sec *sec;
2991 #endif
2992 const u8 *dl;
2993 u32 len, addr, sec_key_idx, mode = DL_MODE_NEED_RSP;
2994
2995 #if defined(__linux__)
2996 sec = (struct mt7996_patch_sec *)(fw->data + sizeof(*hdr) +
2997 #elif defined(__FreeBSD__)
2998 sec = (const struct mt7996_patch_sec *)(fw->data + sizeof(*hdr) +
2999 #endif
3000 i * sizeof(*sec));
3001 if ((be32_to_cpu(sec->type) & PATCH_SEC_TYPE_MASK) !=
3002 PATCH_SEC_TYPE_INFO) {
3003 ret = -EINVAL;
3004 goto out;
3005 }
3006
3007 addr = be32_to_cpu(sec->info.addr);
3008 len = be32_to_cpu(sec->info.len);
3009 sec_key_idx = be32_to_cpu(sec->info.sec_key_idx);
3010 dl = fw->data + be32_to_cpu(sec->offs);
3011
3012 mode |= mt7996_patch_sec_mode(sec_key_idx);
3013
3014 ret = mt76_connac_mcu_init_download(&dev->mt76, addr, len,
3015 mode);
3016 if (ret) {
3017 dev_err(dev->mt76.dev, "Download request failed\n");
3018 goto out;
3019 }
3020
3021 ret = __mt76_mcu_send_firmware(&dev->mt76, MCU_CMD(FW_SCATTER),
3022 dl, len, 4096);
3023 if (ret) {
3024 dev_err(dev->mt76.dev, "Failed to send patch\n");
3025 goto out;
3026 }
3027 }
3028
3029 ret = mt76_connac_mcu_start_patch(&dev->mt76);
3030 if (ret)
3031 dev_err(dev->mt76.dev, "Failed to start patch\n");
3032
3033 out:
3034 sem = mt76_connac_mcu_patch_sem_ctrl(&dev->mt76, 0);
3035 switch (sem) {
3036 case PATCH_REL_SEM_SUCCESS:
3037 break;
3038 default:
3039 ret = -EAGAIN;
3040 dev_err(dev->mt76.dev, "Failed to release patch semaphore\n");
3041 break;
3042 }
3043 release_firmware(fw);
3044
3045 return ret;
3046 }
3047
3048 static int
mt7996_mcu_send_ram_firmware(struct mt7996_dev * dev,const struct mt7996_fw_trailer * hdr,const u8 * data,enum mt7996_ram_type type)3049 mt7996_mcu_send_ram_firmware(struct mt7996_dev *dev,
3050 const struct mt7996_fw_trailer *hdr,
3051 const u8 *data, enum mt7996_ram_type type)
3052 {
3053 int i, offset = 0;
3054 u32 override = 0, option = 0;
3055
3056 for (i = 0; i < hdr->n_region; i++) {
3057 const struct mt7996_fw_region *region;
3058 int err;
3059 u32 len, addr, mode;
3060
3061 region = (const struct mt7996_fw_region *)((const u8 *)hdr -
3062 (hdr->n_region - i) * sizeof(*region));
3063 /* DSP and WA use same mode */
3064 mode = mt76_connac_mcu_gen_dl_mode(&dev->mt76,
3065 region->feature_set,
3066 type != MT7996_RAM_TYPE_WM);
3067 len = le32_to_cpu(region->len);
3068 addr = le32_to_cpu(region->addr);
3069
3070 if (region->feature_set & FW_FEATURE_OVERRIDE_ADDR)
3071 override = addr;
3072
3073 err = mt76_connac_mcu_init_download(&dev->mt76, addr, len,
3074 mode);
3075 if (err) {
3076 dev_err(dev->mt76.dev, "Download request failed\n");
3077 return err;
3078 }
3079
3080 err = __mt76_mcu_send_firmware(&dev->mt76, MCU_CMD(FW_SCATTER),
3081 data + offset, len, 4096);
3082 if (err) {
3083 dev_err(dev->mt76.dev, "Failed to send firmware.\n");
3084 return err;
3085 }
3086
3087 offset += len;
3088 }
3089
3090 if (override)
3091 option |= FW_START_OVERRIDE;
3092
3093 if (type == MT7996_RAM_TYPE_WA)
3094 option |= FW_START_WORKING_PDA_CR4;
3095 else if (type == MT7996_RAM_TYPE_DSP)
3096 option |= FW_START_WORKING_PDA_DSP;
3097
3098 return mt76_connac_mcu_start_firmware(&dev->mt76, override, option);
3099 }
3100
__mt7996_load_ram(struct mt7996_dev * dev,const char * fw_type,const char * fw_file,enum mt7996_ram_type ram_type)3101 static int __mt7996_load_ram(struct mt7996_dev *dev, const char *fw_type,
3102 const char *fw_file, enum mt7996_ram_type ram_type)
3103 {
3104 const struct mt7996_fw_trailer *hdr;
3105 const struct firmware *fw;
3106 int ret;
3107
3108 ret = request_firmware(&fw, fw_file, dev->mt76.dev);
3109 if (ret)
3110 return ret;
3111
3112 if (!fw || !fw->data || fw->size < sizeof(*hdr)) {
3113 dev_err(dev->mt76.dev, "Invalid firmware\n");
3114 ret = -EINVAL;
3115 goto out;
3116 }
3117
3118 hdr = (const void *)(fw->data + fw->size - sizeof(*hdr));
3119 dev_info(dev->mt76.dev, "%s Firmware Version: %.10s, Build Time: %.15s\n",
3120 fw_type, hdr->fw_ver, hdr->build_date);
3121
3122 ret = mt7996_mcu_send_ram_firmware(dev, hdr, fw->data, ram_type);
3123 if (ret) {
3124 dev_err(dev->mt76.dev, "Failed to start %s firmware\n", fw_type);
3125 goto out;
3126 }
3127
3128 snprintf(dev->mt76.hw->wiphy->fw_version,
3129 sizeof(dev->mt76.hw->wiphy->fw_version),
3130 "%.10s-%.15s", hdr->fw_ver, hdr->build_date);
3131
3132 out:
3133 release_firmware(fw);
3134
3135 return ret;
3136 }
3137
mt7996_load_ram(struct mt7996_dev * dev)3138 static int mt7996_load_ram(struct mt7996_dev *dev)
3139 {
3140 int ret;
3141
3142 ret = __mt7996_load_ram(dev, "WM", fw_name(dev, FIRMWARE_WM),
3143 MT7996_RAM_TYPE_WM);
3144 if (ret)
3145 return ret;
3146
3147 if (!mt7996_has_wa(dev))
3148 return 0;
3149
3150 ret = __mt7996_load_ram(dev, "DSP", fw_name(dev, FIRMWARE_DSP),
3151 MT7996_RAM_TYPE_DSP);
3152 if (ret)
3153 return ret;
3154
3155 return __mt7996_load_ram(dev, "WA", fw_name(dev, FIRMWARE_WA),
3156 MT7996_RAM_TYPE_WA);
3157 }
3158
3159 static int
mt7996_firmware_state(struct mt7996_dev * dev,u8 fw_state)3160 mt7996_firmware_state(struct mt7996_dev *dev, u8 fw_state)
3161 {
3162 u32 state = FIELD_PREP(MT_TOP_MISC_FW_STATE, fw_state);
3163
3164 if (!mt76_poll_msec(dev, MT_TOP_MISC, MT_TOP_MISC_FW_STATE,
3165 state, 1000)) {
3166 dev_err(dev->mt76.dev, "Timeout for initializing firmware\n");
3167 return -EIO;
3168 }
3169 return 0;
3170 }
3171
3172 static int
mt7996_mcu_restart(struct mt76_dev * dev)3173 mt7996_mcu_restart(struct mt76_dev *dev)
3174 {
3175 struct {
3176 u8 __rsv1[4];
3177
3178 __le16 tag;
3179 __le16 len;
3180 u8 power_mode;
3181 u8 __rsv2[3];
3182 } __packed req = {
3183 .tag = cpu_to_le16(UNI_POWER_OFF),
3184 .len = cpu_to_le16(sizeof(req) - 4),
3185 .power_mode = 1,
3186 };
3187
3188 return mt76_mcu_send_msg(dev, MCU_WM_UNI_CMD(POWER_CTRL), &req,
3189 sizeof(req), false);
3190 }
3191
mt7996_load_firmware(struct mt7996_dev * dev)3192 static int mt7996_load_firmware(struct mt7996_dev *dev)
3193 {
3194 u8 fw_state;
3195 int ret;
3196
3197 /* make sure fw is download state */
3198 if (mt7996_firmware_state(dev, FW_STATE_FW_DOWNLOAD)) {
3199 /* restart firmware once */
3200 mt7996_mcu_restart(&dev->mt76);
3201 ret = mt7996_firmware_state(dev, FW_STATE_FW_DOWNLOAD);
3202 if (ret) {
3203 dev_err(dev->mt76.dev,
3204 "Firmware is not ready for download\n");
3205 return ret;
3206 }
3207 }
3208
3209 ret = mt7996_load_patch(dev);
3210 if (ret)
3211 return ret;
3212
3213 ret = mt7996_load_ram(dev);
3214 if (ret)
3215 return ret;
3216
3217 fw_state = mt7996_has_wa(dev) ? FW_STATE_RDY : FW_STATE_NORMAL_TRX;
3218 ret = mt7996_firmware_state(dev, fw_state);
3219 if (ret)
3220 return ret;
3221
3222 mt76_queue_tx_cleanup(dev, dev->mt76.q_mcu[MT_MCUQ_FWDL], false);
3223
3224 dev_dbg(dev->mt76.dev, "Firmware init done\n");
3225
3226 return 0;
3227 }
3228
mt7996_mcu_fw_log_2_host(struct mt7996_dev * dev,u8 type,u8 ctrl)3229 int mt7996_mcu_fw_log_2_host(struct mt7996_dev *dev, u8 type, u8 ctrl)
3230 {
3231 struct {
3232 u8 _rsv[4];
3233
3234 __le16 tag;
3235 __le16 len;
3236 u8 ctrl;
3237 u8 interval;
3238 u8 _rsv2[2];
3239 } __packed data = {
3240 .tag = cpu_to_le16(UNI_WSYS_CONFIG_FW_LOG_CTRL),
3241 .len = cpu_to_le16(sizeof(data) - 4),
3242 .ctrl = ctrl,
3243 };
3244
3245 if (type == MCU_FW_LOG_WA)
3246 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_UNI_CMD(WSYS_CONFIG),
3247 &data, sizeof(data), true);
3248
3249 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(WSYS_CONFIG), &data,
3250 sizeof(data), true);
3251 }
3252
mt7996_mcu_fw_dbg_ctrl(struct mt7996_dev * dev,u32 module,u8 level)3253 int mt7996_mcu_fw_dbg_ctrl(struct mt7996_dev *dev, u32 module, u8 level)
3254 {
3255 struct {
3256 u8 _rsv[4];
3257
3258 __le16 tag;
3259 __le16 len;
3260 __le32 module_idx;
3261 u8 level;
3262 u8 _rsv2[3];
3263 } data = {
3264 .tag = cpu_to_le16(UNI_WSYS_CONFIG_FW_DBG_CTRL),
3265 .len = cpu_to_le16(sizeof(data) - 4),
3266 .module_idx = cpu_to_le32(module),
3267 .level = level,
3268 };
3269
3270 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(WSYS_CONFIG), &data,
3271 sizeof(data), false);
3272 }
3273
mt7996_mcu_set_mwds(struct mt7996_dev * dev,bool enabled)3274 static int mt7996_mcu_set_mwds(struct mt7996_dev *dev, bool enabled)
3275 {
3276 struct {
3277 u8 enable;
3278 u8 _rsv[3];
3279 } __packed req = {
3280 .enable = enabled
3281 };
3282
3283 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_EXT_CMD(MWDS_SUPPORT), &req,
3284 sizeof(req), false);
3285 }
3286
mt7996_add_rx_airtime_tlv(struct sk_buff * skb,u8 band_idx)3287 static void mt7996_add_rx_airtime_tlv(struct sk_buff *skb, u8 band_idx)
3288 {
3289 struct vow_rx_airtime *req;
3290 struct tlv *tlv;
3291
3292 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_VOW_RX_AT_AIRTIME_CLR_EN, sizeof(*req));
3293 req = (struct vow_rx_airtime *)tlv;
3294 req->enable = true;
3295 req->band = band_idx;
3296
3297 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_VOW_RX_AT_AIRTIME_EN, sizeof(*req));
3298 req = (struct vow_rx_airtime *)tlv;
3299 req->enable = true;
3300 req->band = band_idx;
3301 }
3302
3303 static int
mt7996_mcu_init_rx_airtime(struct mt7996_dev * dev)3304 mt7996_mcu_init_rx_airtime(struct mt7996_dev *dev)
3305 {
3306 struct uni_header hdr = {};
3307 struct sk_buff *skb;
3308 int len, num, i;
3309
3310 num = 2 + 2 * (mt7996_band_valid(dev, MT_BAND1) +
3311 mt7996_band_valid(dev, MT_BAND2));
3312 len = sizeof(hdr) + num * sizeof(struct vow_rx_airtime);
3313 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
3314 if (!skb)
3315 return -ENOMEM;
3316
3317 skb_put_data(skb, &hdr, sizeof(hdr));
3318
3319 for (i = 0; i < __MT_MAX_BAND; i++) {
3320 if (mt7996_band_valid(dev, i))
3321 mt7996_add_rx_airtime_tlv(skb, i);
3322 }
3323
3324 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
3325 MCU_WM_UNI_CMD(VOW), true);
3326 }
3327
mt7996_mcu_init_firmware(struct mt7996_dev * dev)3328 int mt7996_mcu_init_firmware(struct mt7996_dev *dev)
3329 {
3330 int ret;
3331
3332 /* force firmware operation mode into normal state,
3333 * which should be set before firmware download stage.
3334 */
3335 mt76_wr(dev, MT_SWDEF_MODE, MT_SWDEF_NORMAL_MODE);
3336
3337 ret = mt7996_driver_own(dev, 0);
3338 if (ret)
3339 return ret;
3340 /* set driver own for band1 when two hif exist */
3341 if (dev->hif2) {
3342 ret = mt7996_driver_own(dev, 1);
3343 if (ret)
3344 return ret;
3345 }
3346
3347 ret = mt7996_load_firmware(dev);
3348 if (ret)
3349 return ret;
3350
3351 set_bit(MT76_STATE_MCU_RUNNING, &dev->mphy.state);
3352 ret = mt7996_mcu_fw_log_2_host(dev, MCU_FW_LOG_WM, 0);
3353 if (ret)
3354 return ret;
3355
3356 if (mt7996_has_wa(dev)) {
3357 ret = mt7996_mcu_fw_log_2_host(dev, MCU_FW_LOG_WA, 0);
3358 if (ret)
3359 return ret;
3360
3361 ret = mt7996_mcu_set_mwds(dev, 1);
3362 if (ret)
3363 return ret;
3364 }
3365
3366 ret = mt7996_mcu_init_rx_airtime(dev);
3367 if (ret)
3368 return ret;
3369
3370 return mt7996_mcu_wa_cmd(dev, MCU_WA_PARAM_CMD(SET),
3371 MCU_WA_PARAM_RED, 0, 0);
3372 }
3373
mt7996_mcu_init(struct mt7996_dev * dev)3374 int mt7996_mcu_init(struct mt7996_dev *dev)
3375 {
3376 static const struct mt76_mcu_ops mt7996_mcu_ops = {
3377 .headroom = sizeof(struct mt76_connac2_mcu_txd), /* reuse */
3378 .mcu_skb_send_msg = mt7996_mcu_send_message,
3379 .mcu_parse_response = mt7996_mcu_parse_response,
3380 };
3381
3382 dev->mt76.mcu_ops = &mt7996_mcu_ops;
3383
3384 return mt7996_mcu_init_firmware(dev);
3385 }
3386
mt7996_mcu_exit(struct mt7996_dev * dev)3387 void mt7996_mcu_exit(struct mt7996_dev *dev)
3388 {
3389 mt7996_mcu_restart(&dev->mt76);
3390 if (mt7996_firmware_state(dev, FW_STATE_FW_DOWNLOAD)) {
3391 dev_err(dev->mt76.dev, "Failed to exit mcu\n");
3392 goto out;
3393 }
3394
3395 mt76_wr(dev, MT_TOP_LPCR_HOST_BAND(0), MT_TOP_LPCR_HOST_FW_OWN);
3396 if (dev->hif2)
3397 mt76_wr(dev, MT_TOP_LPCR_HOST_BAND(1),
3398 MT_TOP_LPCR_HOST_FW_OWN);
3399 out:
3400 skb_queue_purge(&dev->mt76.mcu.res_q);
3401 }
3402
mt7996_mcu_set_hdr_trans(struct mt7996_dev * dev,bool hdr_trans)3403 int mt7996_mcu_set_hdr_trans(struct mt7996_dev *dev, bool hdr_trans)
3404 {
3405 struct {
3406 u8 __rsv[4];
3407 } __packed hdr = {};
3408 struct hdr_trans_blacklist *req_blacklist;
3409 struct hdr_trans_en *req_en;
3410 struct sk_buff *skb;
3411 struct tlv *tlv;
3412 int len = MT7996_HDR_TRANS_MAX_SIZE + sizeof(hdr);
3413
3414 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
3415 if (!skb)
3416 return -ENOMEM;
3417
3418 skb_put_data(skb, &hdr, sizeof(hdr));
3419
3420 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_HDR_TRANS_EN, sizeof(*req_en));
3421 req_en = (struct hdr_trans_en *)tlv;
3422 req_en->enable = hdr_trans;
3423
3424 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_HDR_TRANS_VLAN,
3425 sizeof(struct hdr_trans_vlan));
3426
3427 if (hdr_trans) {
3428 tlv = mt7996_mcu_add_uni_tlv(skb, UNI_HDR_TRANS_BLACKLIST,
3429 sizeof(*req_blacklist));
3430 req_blacklist = (struct hdr_trans_blacklist *)tlv;
3431 req_blacklist->enable = 1;
3432 req_blacklist->type = cpu_to_le16(ETH_P_PAE);
3433 }
3434
3435 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
3436 MCU_WM_UNI_CMD(RX_HDR_TRANS), true);
3437 }
3438
mt7996_mcu_set_tx(struct mt7996_dev * dev,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf)3439 int mt7996_mcu_set_tx(struct mt7996_dev *dev, struct ieee80211_vif *vif,
3440 struct ieee80211_bss_conf *link_conf)
3441 {
3442 #define MCU_EDCA_AC_PARAM 0
3443 #define WMM_AIFS_SET BIT(0)
3444 #define WMM_CW_MIN_SET BIT(1)
3445 #define WMM_CW_MAX_SET BIT(2)
3446 #define WMM_TXOP_SET BIT(3)
3447 #define WMM_PARAM_SET (WMM_AIFS_SET | WMM_CW_MIN_SET | \
3448 WMM_CW_MAX_SET | WMM_TXOP_SET)
3449 struct mt7996_vif_link *link = mt7996_vif_conf_link(dev, vif, link_conf);
3450 struct {
3451 u8 bss_idx;
3452 u8 __rsv[3];
3453 } __packed hdr = {
3454 .bss_idx = link->mt76.idx,
3455 };
3456 struct sk_buff *skb;
3457 int len = sizeof(hdr) + IEEE80211_NUM_ACS * sizeof(struct edca);
3458 int ac;
3459
3460 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
3461 if (!skb)
3462 return -ENOMEM;
3463
3464 skb_put_data(skb, &hdr, sizeof(hdr));
3465
3466 for (ac = 0; ac < IEEE80211_NUM_ACS; ac++) {
3467 struct ieee80211_tx_queue_params *q = &link->queue_params[ac];
3468 struct edca *e;
3469 struct tlv *tlv;
3470
3471 tlv = mt7996_mcu_add_uni_tlv(skb, MCU_EDCA_AC_PARAM, sizeof(*e));
3472
3473 e = (struct edca *)tlv;
3474 e->set = WMM_PARAM_SET;
3475 e->queue = ac;
3476 e->aifs = q->aifs;
3477 e->txop = cpu_to_le16(q->txop);
3478
3479 if (q->cw_min)
3480 e->cw_min = fls(q->cw_min);
3481 else
3482 e->cw_min = 5;
3483
3484 if (q->cw_max)
3485 e->cw_max = fls(q->cw_max);
3486 else
3487 e->cw_max = 10;
3488 }
3489
3490 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
3491 MCU_WM_UNI_CMD(EDCA_UPDATE), true);
3492 }
3493
mt7996_mcu_set_fcc5_lpn(struct mt7996_dev * dev,int val)3494 int mt7996_mcu_set_fcc5_lpn(struct mt7996_dev *dev, int val)
3495 {
3496 struct {
3497 u8 _rsv[4];
3498
3499 __le16 tag;
3500 __le16 len;
3501
3502 __le32 ctrl;
3503 __le16 min_lpn;
3504 u8 rsv[2];
3505 } __packed req = {
3506 .tag = cpu_to_le16(UNI_RDD_CTRL_SET_TH),
3507 .len = cpu_to_le16(sizeof(req) - 4),
3508
3509 .ctrl = cpu_to_le32(0x1),
3510 .min_lpn = cpu_to_le16(val),
3511 };
3512
3513 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RDD_CTRL),
3514 &req, sizeof(req), true);
3515 }
3516
mt7996_mcu_set_pulse_th(struct mt7996_dev * dev,const struct mt7996_dfs_pulse * pulse)3517 int mt7996_mcu_set_pulse_th(struct mt7996_dev *dev,
3518 const struct mt7996_dfs_pulse *pulse)
3519 {
3520 struct {
3521 u8 _rsv[4];
3522
3523 __le16 tag;
3524 __le16 len;
3525
3526 __le32 ctrl;
3527
3528 __le32 max_width; /* us */
3529 __le32 max_pwr; /* dbm */
3530 __le32 min_pwr; /* dbm */
3531 __le32 min_stgr_pri; /* us */
3532 __le32 max_stgr_pri; /* us */
3533 __le32 min_cr_pri; /* us */
3534 __le32 max_cr_pri; /* us */
3535 } __packed req = {
3536 .tag = cpu_to_le16(UNI_RDD_CTRL_SET_TH),
3537 .len = cpu_to_le16(sizeof(req) - 4),
3538
3539 .ctrl = cpu_to_le32(0x3),
3540
3541 #define __req_field(field) .field = cpu_to_le32(pulse->field)
3542 __req_field(max_width),
3543 __req_field(max_pwr),
3544 __req_field(min_pwr),
3545 __req_field(min_stgr_pri),
3546 __req_field(max_stgr_pri),
3547 __req_field(min_cr_pri),
3548 __req_field(max_cr_pri),
3549 #undef __req_field
3550 };
3551
3552 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RDD_CTRL),
3553 &req, sizeof(req), true);
3554 }
3555
mt7996_mcu_set_radar_th(struct mt7996_dev * dev,int index,const struct mt7996_dfs_pattern * pattern)3556 int mt7996_mcu_set_radar_th(struct mt7996_dev *dev, int index,
3557 const struct mt7996_dfs_pattern *pattern)
3558 {
3559 struct {
3560 u8 _rsv[4];
3561
3562 __le16 tag;
3563 __le16 len;
3564
3565 __le32 ctrl;
3566 __le16 radar_type;
3567
3568 u8 enb;
3569 u8 stgr;
3570 u8 min_crpn;
3571 u8 max_crpn;
3572 u8 min_crpr;
3573 u8 min_pw;
3574 __le32 min_pri;
3575 __le32 max_pri;
3576 u8 max_pw;
3577 u8 min_crbn;
3578 u8 max_crbn;
3579 u8 min_stgpn;
3580 u8 max_stgpn;
3581 u8 min_stgpr;
3582 u8 rsv[2];
3583 __le32 min_stgpr_diff;
3584 } __packed req = {
3585 .tag = cpu_to_le16(UNI_RDD_CTRL_SET_TH),
3586 .len = cpu_to_le16(sizeof(req) - 4),
3587
3588 .ctrl = cpu_to_le32(0x2),
3589 .radar_type = cpu_to_le16(index),
3590
3591 #define __req_field_u8(field) .field = pattern->field
3592 #define __req_field_u32(field) .field = cpu_to_le32(pattern->field)
3593 __req_field_u8(enb),
3594 __req_field_u8(stgr),
3595 __req_field_u8(min_crpn),
3596 __req_field_u8(max_crpn),
3597 __req_field_u8(min_crpr),
3598 __req_field_u8(min_pw),
3599 __req_field_u32(min_pri),
3600 __req_field_u32(max_pri),
3601 __req_field_u8(max_pw),
3602 __req_field_u8(min_crbn),
3603 __req_field_u8(max_crbn),
3604 __req_field_u8(min_stgpn),
3605 __req_field_u8(max_stgpn),
3606 __req_field_u8(min_stgpr),
3607 __req_field_u32(min_stgpr_diff),
3608 #undef __req_field_u8
3609 #undef __req_field_u32
3610 };
3611
3612 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RDD_CTRL),
3613 &req, sizeof(req), true);
3614 }
3615
3616 static int
mt7996_mcu_background_chain_ctrl(struct mt7996_phy * phy,struct cfg80211_chan_def * chandef,int cmd)3617 mt7996_mcu_background_chain_ctrl(struct mt7996_phy *phy,
3618 struct cfg80211_chan_def *chandef,
3619 int cmd)
3620 {
3621 struct mt7996_dev *dev = phy->dev;
3622 struct mt76_phy *mphy = phy->mt76;
3623 struct ieee80211_channel *chan = mphy->chandef.chan;
3624 int freq = mphy->chandef.center_freq1;
3625 struct mt7996_mcu_background_chain_ctrl req = {
3626 .tag = cpu_to_le16(0),
3627 .len = cpu_to_le16(sizeof(req) - 4),
3628 .monitor_scan_type = 2, /* simple rx */
3629 };
3630
3631 if (!chandef && cmd != CH_SWITCH_BACKGROUND_SCAN_STOP)
3632 return -EINVAL;
3633
3634 if (!cfg80211_chandef_valid(&mphy->chandef))
3635 return -EINVAL;
3636
3637 switch (cmd) {
3638 case CH_SWITCH_BACKGROUND_SCAN_START: {
3639 req.chan = chan->hw_value;
3640 req.central_chan = ieee80211_frequency_to_channel(freq);
3641 req.bw = mt76_connac_chan_bw(&mphy->chandef);
3642 req.monitor_chan = chandef->chan->hw_value;
3643 req.monitor_central_chan =
3644 ieee80211_frequency_to_channel(chandef->center_freq1);
3645 req.monitor_bw = mt76_connac_chan_bw(chandef);
3646 req.band_idx = phy->mt76->band_idx;
3647 req.scan_mode = 1;
3648 break;
3649 }
3650 case CH_SWITCH_BACKGROUND_SCAN_RUNNING:
3651 req.monitor_chan = chandef->chan->hw_value;
3652 req.monitor_central_chan =
3653 ieee80211_frequency_to_channel(chandef->center_freq1);
3654 req.band_idx = phy->mt76->band_idx;
3655 req.scan_mode = 2;
3656 break;
3657 case CH_SWITCH_BACKGROUND_SCAN_STOP:
3658 req.chan = chan->hw_value;
3659 req.central_chan = ieee80211_frequency_to_channel(freq);
3660 req.bw = mt76_connac_chan_bw(&mphy->chandef);
3661 req.tx_stream = hweight8(mphy->antenna_mask);
3662 req.rx_stream = mphy->antenna_mask;
3663 break;
3664 default:
3665 return -EINVAL;
3666 }
3667 req.band = chandef ? chandef->chan->band == NL80211_BAND_5GHZ : 1;
3668
3669 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(OFFCH_SCAN_CTRL),
3670 &req, sizeof(req), false);
3671 }
3672
mt7996_mcu_rdd_background_enable(struct mt7996_phy * phy,struct cfg80211_chan_def * chandef)3673 int mt7996_mcu_rdd_background_enable(struct mt7996_phy *phy,
3674 struct cfg80211_chan_def *chandef)
3675 {
3676 struct mt7996_dev *dev = phy->dev;
3677 int err, region, rdd_idx = mt7996_get_rdd_idx(phy, true);
3678
3679 if (!chandef) { /* disable offchain */
3680 err = mt7996_mcu_rdd_cmd(dev, RDD_STOP, rdd_idx, 0);
3681 if (err)
3682 return err;
3683
3684 return mt7996_mcu_background_chain_ctrl(phy, NULL,
3685 CH_SWITCH_BACKGROUND_SCAN_STOP);
3686 }
3687
3688 err = mt7996_mcu_background_chain_ctrl(phy, chandef,
3689 CH_SWITCH_BACKGROUND_SCAN_START);
3690 if (err)
3691 return err;
3692
3693 switch (dev->mt76.region) {
3694 case NL80211_DFS_ETSI:
3695 region = 0;
3696 break;
3697 case NL80211_DFS_JP:
3698 region = 2;
3699 break;
3700 case NL80211_DFS_FCC:
3701 default:
3702 region = 1;
3703 break;
3704 }
3705
3706 return mt7996_mcu_rdd_cmd(dev, RDD_START, rdd_idx, region);
3707 }
3708
mt7996_mcu_set_chan_info(struct mt7996_phy * phy,u16 tag)3709 int mt7996_mcu_set_chan_info(struct mt7996_phy *phy, u16 tag)
3710 {
3711 static const u8 ch_band[] = {
3712 [NL80211_BAND_2GHZ] = 0,
3713 [NL80211_BAND_5GHZ] = 1,
3714 [NL80211_BAND_6GHZ] = 2,
3715 };
3716 struct mt7996_dev *dev = phy->dev;
3717 struct cfg80211_chan_def *chandef = &phy->mt76->chandef;
3718 int freq1 = chandef->center_freq1;
3719 u8 band_idx = phy->mt76->band_idx;
3720 struct {
3721 /* fixed field */
3722 u8 __rsv[4];
3723
3724 __le16 tag;
3725 __le16 len;
3726 u8 control_ch;
3727 u8 center_ch;
3728 u8 bw;
3729 u8 tx_path_num;
3730 u8 rx_path; /* mask or num */
3731 u8 switch_reason;
3732 u8 band_idx;
3733 u8 center_ch2; /* for 80+80 only */
3734 __le16 cac_case;
3735 u8 channel_band;
3736 u8 rsv0;
3737 __le32 outband_freq;
3738 u8 txpower_drop;
3739 u8 ap_bw;
3740 u8 ap_center_ch;
3741 u8 rsv1[53];
3742 } __packed req = {
3743 .tag = cpu_to_le16(tag),
3744 .len = cpu_to_le16(sizeof(req) - 4),
3745 .control_ch = chandef->chan->hw_value,
3746 .center_ch = ieee80211_frequency_to_channel(freq1),
3747 .bw = mt76_connac_chan_bw(chandef),
3748 .tx_path_num = hweight16(phy->mt76->chainmask),
3749 .rx_path = mt7996_rx_chainmask(phy) >> dev->chainshift[band_idx],
3750 .band_idx = band_idx,
3751 .channel_band = ch_band[chandef->chan->band],
3752 };
3753
3754 if (phy->mt76->hw->conf.flags & IEEE80211_CONF_MONITOR)
3755 req.switch_reason = CH_SWITCH_NORMAL;
3756 else if (phy->mt76->offchannel ||
3757 phy->mt76->hw->conf.flags & IEEE80211_CONF_IDLE)
3758 req.switch_reason = CH_SWITCH_SCAN_BYPASS_DPD;
3759 else if (!cfg80211_reg_can_beacon(phy->mt76->hw->wiphy, chandef,
3760 NL80211_IFTYPE_AP))
3761 req.switch_reason = CH_SWITCH_DFS;
3762 else
3763 req.switch_reason = CH_SWITCH_NORMAL;
3764
3765 if (tag == UNI_CHANNEL_SWITCH)
3766 req.rx_path = hweight8(req.rx_path);
3767
3768 if (chandef->width == NL80211_CHAN_WIDTH_80P80) {
3769 int freq2 = chandef->center_freq2;
3770
3771 req.center_ch2 = ieee80211_frequency_to_channel(freq2);
3772 }
3773
3774 return mt76_mcu_send_msg(&dev->mt76, MCU_WMWA_UNI_CMD(CHANNEL_SWITCH),
3775 &req, sizeof(req), true);
3776 }
3777
mt7996_mcu_set_eeprom_flash(struct mt7996_dev * dev)3778 static int mt7996_mcu_set_eeprom_flash(struct mt7996_dev *dev)
3779 {
3780 #define MAX_PAGE_IDX_MASK GENMASK(7, 5)
3781 #define PAGE_IDX_MASK GENMASK(4, 2)
3782 #define PER_PAGE_SIZE 0x400
3783 struct mt7996_mcu_eeprom req = {
3784 .tag = cpu_to_le16(UNI_EFUSE_BUFFER_MODE),
3785 .buffer_mode = EE_MODE_BUFFER
3786 };
3787 u16 eeprom_size = MT7996_EEPROM_SIZE;
3788 u8 total = DIV_ROUND_UP(eeprom_size, PER_PAGE_SIZE);
3789 u8 *eep = (u8 *)dev->mt76.eeprom.data;
3790 int eep_len, i;
3791
3792 for (i = 0; i < total; i++, eep += eep_len) {
3793 struct sk_buff *skb;
3794 int ret, msg_len;
3795
3796 if (i == total - 1 && !!(eeprom_size % PER_PAGE_SIZE))
3797 eep_len = eeprom_size % PER_PAGE_SIZE;
3798 else
3799 eep_len = PER_PAGE_SIZE;
3800
3801 msg_len = sizeof(req) + eep_len;
3802 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, msg_len);
3803 if (!skb)
3804 return -ENOMEM;
3805
3806 req.len = cpu_to_le16(msg_len - 4);
3807 req.format = FIELD_PREP(MAX_PAGE_IDX_MASK, total - 1) |
3808 FIELD_PREP(PAGE_IDX_MASK, i) | EE_FORMAT_WHOLE;
3809 req.buf_len = cpu_to_le16(eep_len);
3810
3811 skb_put_data(skb, &req, sizeof(req));
3812 skb_put_data(skb, eep, eep_len);
3813
3814 ret = mt76_mcu_skb_send_msg(&dev->mt76, skb,
3815 MCU_WM_UNI_CMD(EFUSE_CTRL), true);
3816 if (ret)
3817 return ret;
3818 }
3819
3820 return 0;
3821 }
3822
mt7996_mcu_set_eeprom(struct mt7996_dev * dev)3823 int mt7996_mcu_set_eeprom(struct mt7996_dev *dev)
3824 {
3825 struct mt7996_mcu_eeprom req = {
3826 .tag = cpu_to_le16(UNI_EFUSE_BUFFER_MODE),
3827 .len = cpu_to_le16(sizeof(req) - 4),
3828 .buffer_mode = EE_MODE_EFUSE,
3829 .format = EE_FORMAT_WHOLE
3830 };
3831
3832 if (dev->flash_mode)
3833 return mt7996_mcu_set_eeprom_flash(dev);
3834
3835 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(EFUSE_CTRL),
3836 &req, sizeof(req), true);
3837 }
3838
mt7996_mcu_get_eeprom(struct mt7996_dev * dev,u32 offset,u8 * buf,u32 buf_len)3839 int mt7996_mcu_get_eeprom(struct mt7996_dev *dev, u32 offset, u8 *buf, u32 buf_len)
3840 {
3841 struct {
3842 u8 _rsv[4];
3843
3844 __le16 tag;
3845 __le16 len;
3846 __le32 addr;
3847 __le32 valid;
3848 u8 data[16];
3849 } __packed req = {
3850 .tag = cpu_to_le16(UNI_EFUSE_ACCESS),
3851 .len = cpu_to_le16(sizeof(req) - 4),
3852 .addr = cpu_to_le32(round_down(offset,
3853 MT7996_EEPROM_BLOCK_SIZE)),
3854 };
3855 struct sk_buff *skb;
3856 bool valid;
3857 int ret;
3858
3859 ret = mt76_mcu_send_and_get_msg(&dev->mt76,
3860 MCU_WM_UNI_CMD_QUERY(EFUSE_CTRL),
3861 &req, sizeof(req), true, &skb);
3862 if (ret)
3863 return ret;
3864
3865 valid = le32_to_cpu(*(__le32 *)(skb->data + 16));
3866 if (valid) {
3867 u32 addr = le32_to_cpu(*(__le32 *)(skb->data + 12));
3868
3869 if (!buf)
3870 buf = (u8 *)dev->mt76.eeprom.data + addr;
3871 if (!buf_len || buf_len > MT7996_EEPROM_BLOCK_SIZE)
3872 buf_len = MT7996_EEPROM_BLOCK_SIZE;
3873
3874 skb_pull(skb, 48);
3875 memcpy(buf, skb->data, buf_len);
3876 } else {
3877 ret = -EINVAL;
3878 }
3879
3880 dev_kfree_skb(skb);
3881
3882 return ret;
3883 }
3884
mt7996_mcu_get_eeprom_free_block(struct mt7996_dev * dev,u8 * block_num)3885 int mt7996_mcu_get_eeprom_free_block(struct mt7996_dev *dev, u8 *block_num)
3886 {
3887 struct {
3888 u8 _rsv[4];
3889
3890 __le16 tag;
3891 __le16 len;
3892 u8 num;
3893 u8 version;
3894 u8 die_idx;
3895 u8 _rsv2;
3896 } __packed req = {
3897 .tag = cpu_to_le16(UNI_EFUSE_FREE_BLOCK),
3898 .len = cpu_to_le16(sizeof(req) - 4),
3899 .version = 2,
3900 };
3901 struct sk_buff *skb;
3902 int ret;
3903
3904 ret = mt76_mcu_send_and_get_msg(&dev->mt76, MCU_WM_UNI_CMD_QUERY(EFUSE_CTRL), &req,
3905 sizeof(req), true, &skb);
3906 if (ret)
3907 return ret;
3908
3909 *block_num = *(u8 *)(skb->data + 8);
3910 dev_kfree_skb(skb);
3911
3912 return 0;
3913 }
3914
mt7996_mcu_get_chip_config(struct mt7996_dev * dev,u32 * cap)3915 int mt7996_mcu_get_chip_config(struct mt7996_dev *dev, u32 *cap)
3916 {
3917 #define NIC_CAP 3
3918 #define UNI_EVENT_CHIP_CONFIG_EFUSE_VERSION 0x21
3919 struct {
3920 u8 _rsv[4];
3921
3922 __le16 tag;
3923 __le16 len;
3924 } __packed req = {
3925 .tag = cpu_to_le16(NIC_CAP),
3926 .len = cpu_to_le16(sizeof(req) - 4),
3927 };
3928 struct sk_buff *skb;
3929 u8 *buf;
3930 int ret;
3931
3932 ret = mt76_mcu_send_and_get_msg(&dev->mt76,
3933 MCU_WM_UNI_CMD_QUERY(CHIP_CONFIG), &req,
3934 sizeof(req), true, &skb);
3935 if (ret)
3936 return ret;
3937
3938 /* fixed field */
3939 skb_pull(skb, 4);
3940
3941 buf = skb->data;
3942 while (buf - skb->data < skb->len) {
3943 struct tlv *tlv = (struct tlv *)buf;
3944
3945 switch (le16_to_cpu(tlv->tag)) {
3946 case UNI_EVENT_CHIP_CONFIG_EFUSE_VERSION:
3947 *cap = le32_to_cpu(*(__le32 *)(buf + sizeof(*tlv)));
3948 break;
3949 default:
3950 break;
3951 }
3952
3953 buf += le16_to_cpu(tlv->len);
3954 }
3955
3956 dev_kfree_skb(skb);
3957
3958 return 0;
3959 }
3960
mt7996_mcu_get_chan_mib_info(struct mt7996_phy * phy,bool chan_switch)3961 int mt7996_mcu_get_chan_mib_info(struct mt7996_phy *phy, bool chan_switch)
3962 {
3963 enum {
3964 IDX_TX_TIME,
3965 IDX_RX_TIME,
3966 IDX_OBSS_AIRTIME,
3967 IDX_NON_WIFI_TIME,
3968 IDX_NUM
3969 };
3970 struct {
3971 struct {
3972 u8 band;
3973 u8 __rsv[3];
3974 } hdr;
3975 struct {
3976 __le16 tag;
3977 __le16 len;
3978 __le32 offs;
3979 } data[IDX_NUM];
3980 } __packed req = {
3981 .hdr.band = phy->mt76->band_idx,
3982 };
3983 static const u32 offs[] = {
3984 [IDX_TX_TIME] = UNI_MIB_TX_TIME,
3985 [IDX_RX_TIME] = UNI_MIB_RX_TIME,
3986 [IDX_OBSS_AIRTIME] = UNI_MIB_OBSS_AIRTIME,
3987 [IDX_NON_WIFI_TIME] = UNI_MIB_NON_WIFI_TIME,
3988 };
3989 struct mt76_channel_state *state = phy->mt76->chan_state;
3990 struct mt76_channel_state *state_ts = &phy->state_ts;
3991 struct mt7996_dev *dev = phy->dev;
3992 struct mt7996_mcu_mib *res;
3993 struct sk_buff *skb;
3994 int i, ret;
3995
3996 for (i = 0; i < IDX_NUM; i++) {
3997 req.data[i].tag = cpu_to_le16(UNI_CMD_MIB_DATA);
3998 req.data[i].len = cpu_to_le16(sizeof(req.data[i]));
3999 req.data[i].offs = cpu_to_le32(offs[i]);
4000 }
4001
4002 ret = mt76_mcu_send_and_get_msg(&dev->mt76, MCU_WM_UNI_CMD_QUERY(GET_MIB_INFO),
4003 &req, sizeof(req), true, &skb);
4004 if (ret)
4005 return ret;
4006
4007 skb_pull(skb, sizeof(req.hdr));
4008
4009 res = (struct mt7996_mcu_mib *)(skb->data);
4010
4011 if (chan_switch)
4012 goto out;
4013
4014 #define __res_u64(s) le64_to_cpu(res[s].data)
4015 state->cc_tx += __res_u64(IDX_TX_TIME) - state_ts->cc_tx;
4016 state->cc_bss_rx += __res_u64(IDX_RX_TIME) - state_ts->cc_bss_rx;
4017 state->cc_rx += __res_u64(IDX_RX_TIME) +
4018 __res_u64(IDX_OBSS_AIRTIME) -
4019 state_ts->cc_rx;
4020 state->cc_busy += __res_u64(IDX_TX_TIME) +
4021 __res_u64(IDX_RX_TIME) +
4022 __res_u64(IDX_OBSS_AIRTIME) +
4023 __res_u64(IDX_NON_WIFI_TIME) -
4024 state_ts->cc_busy;
4025 out:
4026 state_ts->cc_tx = __res_u64(IDX_TX_TIME);
4027 state_ts->cc_bss_rx = __res_u64(IDX_RX_TIME);
4028 state_ts->cc_rx = __res_u64(IDX_RX_TIME) + __res_u64(IDX_OBSS_AIRTIME);
4029 state_ts->cc_busy = __res_u64(IDX_TX_TIME) +
4030 __res_u64(IDX_RX_TIME) +
4031 __res_u64(IDX_OBSS_AIRTIME) +
4032 __res_u64(IDX_NON_WIFI_TIME);
4033 #undef __res_u64
4034
4035 dev_kfree_skb(skb);
4036
4037 return 0;
4038 }
4039
mt7996_mcu_get_temperature(struct mt7996_phy * phy)4040 int mt7996_mcu_get_temperature(struct mt7996_phy *phy)
4041 {
4042 #define TEMPERATURE_QUERY 0
4043 #define GET_TEMPERATURE 0
4044 struct {
4045 u8 _rsv[4];
4046
4047 __le16 tag;
4048 __le16 len;
4049
4050 u8 rsv1;
4051 u8 action;
4052 u8 band_idx;
4053 u8 rsv2;
4054 } req = {
4055 .tag = cpu_to_le16(TEMPERATURE_QUERY),
4056 .len = cpu_to_le16(sizeof(req) - 4),
4057 .action = GET_TEMPERATURE,
4058 .band_idx = phy->mt76->band_idx,
4059 };
4060 struct mt7996_mcu_thermal {
4061 u8 _rsv[4];
4062
4063 __le16 tag;
4064 __le16 len;
4065
4066 __le32 rsv;
4067 __le32 temperature;
4068 } __packed * res;
4069 struct sk_buff *skb;
4070 int ret;
4071 u32 temp;
4072
4073 ret = mt76_mcu_send_and_get_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(THERMAL),
4074 &req, sizeof(req), true, &skb);
4075 if (ret)
4076 return ret;
4077
4078 res = (void *)skb->data;
4079 temp = le32_to_cpu(res->temperature);
4080 dev_kfree_skb(skb);
4081
4082 return temp;
4083 }
4084
mt7996_mcu_set_thermal_throttling(struct mt7996_phy * phy,u8 state)4085 int mt7996_mcu_set_thermal_throttling(struct mt7996_phy *phy, u8 state)
4086 {
4087 struct {
4088 u8 _rsv[4];
4089
4090 __le16 tag;
4091 __le16 len;
4092
4093 struct mt7996_mcu_thermal_ctrl ctrl;
4094 } __packed req = {
4095 .tag = cpu_to_le16(UNI_CMD_THERMAL_PROTECT_DUTY_CONFIG),
4096 .len = cpu_to_le16(sizeof(req) - 4),
4097 .ctrl = {
4098 .band_idx = phy->mt76->band_idx,
4099 },
4100 };
4101 int level, ret;
4102
4103 /* set duty cycle and level */
4104 for (level = 0; level < 4; level++) {
4105 req.ctrl.duty.duty_level = level;
4106 req.ctrl.duty.duty_cycle = state;
4107 state /= 2;
4108
4109 ret = mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(THERMAL),
4110 &req, sizeof(req), false);
4111 if (ret)
4112 return ret;
4113 }
4114
4115 return 0;
4116 }
4117
mt7996_mcu_set_thermal_protect(struct mt7996_phy * phy,bool enable)4118 int mt7996_mcu_set_thermal_protect(struct mt7996_phy *phy, bool enable)
4119 {
4120 #define SUSTAIN_PERIOD 10
4121 struct {
4122 u8 _rsv[4];
4123
4124 __le16 tag;
4125 __le16 len;
4126
4127 struct mt7996_mcu_thermal_ctrl ctrl;
4128 struct mt7996_mcu_thermal_enable enable;
4129 } __packed req = {
4130 .len = cpu_to_le16(sizeof(req) - 4 - sizeof(req.enable)),
4131 .ctrl = {
4132 .band_idx = phy->mt76->band_idx,
4133 .type.protect_type = 1,
4134 .type.trigger_type = 1,
4135 },
4136 };
4137 int ret;
4138
4139 req.tag = cpu_to_le16(UNI_CMD_THERMAL_PROTECT_DISABLE);
4140
4141 ret = mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(THERMAL),
4142 &req, sizeof(req) - sizeof(req.enable), false);
4143 if (ret || !enable)
4144 return ret;
4145
4146 /* set high-temperature trigger threshold */
4147 req.tag = cpu_to_le16(UNI_CMD_THERMAL_PROTECT_ENABLE);
4148 req.enable.restore_temp = cpu_to_le32(phy->throttle_temp[0]);
4149 req.enable.trigger_temp = cpu_to_le32(phy->throttle_temp[1]);
4150 req.enable.sustain_time = cpu_to_le16(SUSTAIN_PERIOD);
4151
4152 req.len = cpu_to_le16(sizeof(req) - 4);
4153
4154 return mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(THERMAL),
4155 &req, sizeof(req), false);
4156 }
4157
mt7996_mcu_set_ser(struct mt7996_dev * dev,u8 action,u8 val,u8 band)4158 int mt7996_mcu_set_ser(struct mt7996_dev *dev, u8 action, u8 val, u8 band)
4159 {
4160 struct {
4161 u8 rsv[4];
4162
4163 __le16 tag;
4164 __le16 len;
4165
4166 union {
4167 struct {
4168 __le32 mask;
4169 } __packed set;
4170
4171 struct {
4172 u8 method;
4173 u8 band;
4174 u8 rsv2[2];
4175 } __packed trigger;
4176 };
4177 } __packed req = {
4178 .tag = cpu_to_le16(action),
4179 .len = cpu_to_le16(sizeof(req) - 4),
4180 };
4181
4182 switch (action) {
4183 case UNI_CMD_SER_SET:
4184 req.set.mask = cpu_to_le32(val);
4185 break;
4186 case UNI_CMD_SER_TRIGGER:
4187 req.trigger.method = val;
4188 req.trigger.band = band;
4189 break;
4190 default:
4191 return -EINVAL;
4192 }
4193
4194 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SER),
4195 &req, sizeof(req), false);
4196 }
4197
mt7996_mcu_set_txbf(struct mt7996_dev * dev,u8 action)4198 int mt7996_mcu_set_txbf(struct mt7996_dev *dev, u8 action)
4199 {
4200 #define MT7996_BF_MAX_SIZE sizeof(union bf_tag_tlv)
4201 #define BF_PROCESSING 4
4202 struct uni_header hdr;
4203 struct sk_buff *skb;
4204 struct tlv *tlv;
4205 int len = sizeof(hdr) + MT7996_BF_MAX_SIZE;
4206
4207 memset(&hdr, 0, sizeof(hdr));
4208
4209 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL, len);
4210 if (!skb)
4211 return -ENOMEM;
4212
4213 skb_put_data(skb, &hdr, sizeof(hdr));
4214
4215 switch (action) {
4216 case BF_SOUNDING_ON: {
4217 struct bf_sounding_on *req_snd_on;
4218
4219 tlv = mt7996_mcu_add_uni_tlv(skb, action, sizeof(*req_snd_on));
4220 req_snd_on = (struct bf_sounding_on *)tlv;
4221 req_snd_on->snd_mode = BF_PROCESSING;
4222 break;
4223 }
4224 case BF_HW_EN_UPDATE: {
4225 struct bf_hw_en_status_update *req_hw_en;
4226
4227 tlv = mt7996_mcu_add_uni_tlv(skb, action, sizeof(*req_hw_en));
4228 req_hw_en = (struct bf_hw_en_status_update *)tlv;
4229 req_hw_en->ebf = true;
4230 req_hw_en->ibf = dev->ibf;
4231 break;
4232 }
4233 case BF_MOD_EN_CTRL: {
4234 struct bf_mod_en_ctrl *req_mod_en;
4235
4236 tlv = mt7996_mcu_add_uni_tlv(skb, action, sizeof(*req_mod_en));
4237 req_mod_en = (struct bf_mod_en_ctrl *)tlv;
4238 req_mod_en->bf_num = mt7996_band_valid(dev, MT_BAND2) ? 3 : 2;
4239 req_mod_en->bf_bitmap = mt7996_band_valid(dev, MT_BAND2) ?
4240 GENMASK(2, 0) : GENMASK(1, 0);
4241 break;
4242 }
4243 default:
4244 return -EINVAL;
4245 }
4246
4247 return mt76_mcu_skb_send_msg(&dev->mt76, skb, MCU_WM_UNI_CMD(BF), true);
4248 }
4249
4250 static int
mt7996_mcu_enable_obss_spr(struct mt7996_phy * phy,u16 action,u8 val)4251 mt7996_mcu_enable_obss_spr(struct mt7996_phy *phy, u16 action, u8 val)
4252 {
4253 struct mt7996_dev *dev = phy->dev;
4254 struct {
4255 u8 band_idx;
4256 u8 __rsv[3];
4257
4258 __le16 tag;
4259 __le16 len;
4260
4261 __le32 val;
4262 } __packed req = {
4263 .band_idx = phy->mt76->band_idx,
4264 .tag = cpu_to_le16(action),
4265 .len = cpu_to_le16(sizeof(req) - 4),
4266 .val = cpu_to_le32(val),
4267 };
4268
4269 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SR),
4270 &req, sizeof(req), true);
4271 }
4272
4273 static int
mt7996_mcu_set_obss_spr_pd(struct mt7996_phy * phy,struct ieee80211_he_obss_pd * he_obss_pd)4274 mt7996_mcu_set_obss_spr_pd(struct mt7996_phy *phy,
4275 struct ieee80211_he_obss_pd *he_obss_pd)
4276 {
4277 struct mt7996_dev *dev = phy->dev;
4278 u8 max_th = 82, non_srg_max_th = 62;
4279 struct {
4280 u8 band_idx;
4281 u8 __rsv[3];
4282
4283 __le16 tag;
4284 __le16 len;
4285
4286 u8 pd_th_non_srg;
4287 u8 pd_th_srg;
4288 u8 period_offs;
4289 u8 rcpi_src;
4290 __le16 obss_pd_min;
4291 __le16 obss_pd_min_srg;
4292 u8 resp_txpwr_mode;
4293 u8 txpwr_restrict_mode;
4294 u8 txpwr_ref;
4295 u8 __rsv2[3];
4296 } __packed req = {
4297 .band_idx = phy->mt76->band_idx,
4298 .tag = cpu_to_le16(UNI_CMD_SR_SET_PARAM),
4299 .len = cpu_to_le16(sizeof(req) - 4),
4300 .obss_pd_min = cpu_to_le16(max_th),
4301 .obss_pd_min_srg = cpu_to_le16(max_th),
4302 .txpwr_restrict_mode = 2,
4303 .txpwr_ref = 21
4304 };
4305 int ret;
4306
4307 /* disable firmware dynamical PD asjustment */
4308 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE_DPD, false);
4309 if (ret)
4310 return ret;
4311
4312 if (he_obss_pd->sr_ctrl &
4313 IEEE80211_HE_SPR_NON_SRG_OBSS_PD_SR_DISALLOWED)
4314 req.pd_th_non_srg = max_th;
4315 else if (he_obss_pd->sr_ctrl & IEEE80211_HE_SPR_NON_SRG_OFFSET_PRESENT)
4316 req.pd_th_non_srg = max_th - he_obss_pd->non_srg_max_offset;
4317 else
4318 req.pd_th_non_srg = non_srg_max_th;
4319
4320 if (he_obss_pd->sr_ctrl & IEEE80211_HE_SPR_SRG_INFORMATION_PRESENT)
4321 req.pd_th_srg = max_th - he_obss_pd->max_offset;
4322
4323 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SR),
4324 &req, sizeof(req), true);
4325 }
4326
4327 static int
mt7996_mcu_set_obss_spr_siga(struct mt7996_phy * phy,struct mt7996_vif_link * link,struct ieee80211_he_obss_pd * he_obss_pd)4328 mt7996_mcu_set_obss_spr_siga(struct mt7996_phy *phy,
4329 struct mt7996_vif_link *link,
4330 struct ieee80211_he_obss_pd *he_obss_pd)
4331 {
4332 struct mt7996_dev *dev = phy->dev;
4333 u8 omac = link->mt76.omac_idx;
4334 struct {
4335 u8 band_idx;
4336 u8 __rsv[3];
4337
4338 __le16 tag;
4339 __le16 len;
4340
4341 u8 omac;
4342 u8 __rsv2[3];
4343 u8 flag[20];
4344 } __packed req = {
4345 .band_idx = phy->mt76->band_idx,
4346 .tag = cpu_to_le16(UNI_CMD_SR_SET_SIGA),
4347 .len = cpu_to_le16(sizeof(req) - 4),
4348 .omac = omac > HW_BSSID_MAX ? omac - 12 : omac,
4349 };
4350 int ret;
4351
4352 if (he_obss_pd->sr_ctrl & IEEE80211_HE_SPR_HESIGA_SR_VAL15_ALLOWED)
4353 req.flag[req.omac] = 0xf;
4354 else
4355 return 0;
4356
4357 /* switch to normal AP mode */
4358 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE_MODE, 0);
4359 if (ret)
4360 return ret;
4361
4362 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SR),
4363 &req, sizeof(req), true);
4364 }
4365
4366 static int
mt7996_mcu_set_obss_spr_bitmap(struct mt7996_phy * phy,struct ieee80211_he_obss_pd * he_obss_pd)4367 mt7996_mcu_set_obss_spr_bitmap(struct mt7996_phy *phy,
4368 struct ieee80211_he_obss_pd *he_obss_pd)
4369 {
4370 struct mt7996_dev *dev = phy->dev;
4371 struct {
4372 u8 band_idx;
4373 u8 __rsv[3];
4374
4375 __le16 tag;
4376 __le16 len;
4377
4378 __le32 color_l[2];
4379 __le32 color_h[2];
4380 __le32 bssid_l[2];
4381 __le32 bssid_h[2];
4382 } __packed req = {
4383 .band_idx = phy->mt76->band_idx,
4384 .tag = cpu_to_le16(UNI_CMD_SR_SET_SRG_BITMAP),
4385 .len = cpu_to_le16(sizeof(req) - 4),
4386 };
4387 u32 bitmap;
4388
4389 memcpy(&bitmap, he_obss_pd->bss_color_bitmap, sizeof(bitmap));
4390 req.color_l[req.band_idx] = cpu_to_le32(bitmap);
4391
4392 memcpy(&bitmap, he_obss_pd->bss_color_bitmap + 4, sizeof(bitmap));
4393 req.color_h[req.band_idx] = cpu_to_le32(bitmap);
4394
4395 memcpy(&bitmap, he_obss_pd->partial_bssid_bitmap, sizeof(bitmap));
4396 req.bssid_l[req.band_idx] = cpu_to_le32(bitmap);
4397
4398 memcpy(&bitmap, he_obss_pd->partial_bssid_bitmap + 4, sizeof(bitmap));
4399 req.bssid_h[req.band_idx] = cpu_to_le32(bitmap);
4400
4401 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SR), &req,
4402 sizeof(req), true);
4403 }
4404
mt7996_mcu_add_obss_spr(struct mt7996_phy * phy,struct mt7996_vif_link * link,struct ieee80211_he_obss_pd * he_obss_pd)4405 int mt7996_mcu_add_obss_spr(struct mt7996_phy *phy,
4406 struct mt7996_vif_link *link,
4407 struct ieee80211_he_obss_pd *he_obss_pd)
4408 {
4409 int ret;
4410
4411 /* enable firmware scene detection algorithms */
4412 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE_SD,
4413 sr_scene_detect);
4414 if (ret)
4415 return ret;
4416
4417 /* firmware dynamically adjusts PD threshold so skip manual control */
4418 if (sr_scene_detect && !he_obss_pd->enable)
4419 return 0;
4420
4421 /* enable spatial reuse */
4422 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE,
4423 he_obss_pd->enable);
4424 if (ret)
4425 return ret;
4426
4427 if (sr_scene_detect || !he_obss_pd->enable)
4428 return 0;
4429
4430 ret = mt7996_mcu_enable_obss_spr(phy, UNI_CMD_SR_ENABLE_TX, true);
4431 if (ret)
4432 return ret;
4433
4434 /* set SRG/non-SRG OBSS PD threshold */
4435 ret = mt7996_mcu_set_obss_spr_pd(phy, he_obss_pd);
4436 if (ret)
4437 return ret;
4438
4439 /* Set SR prohibit */
4440 ret = mt7996_mcu_set_obss_spr_siga(phy, link, he_obss_pd);
4441 if (ret)
4442 return ret;
4443
4444 /* set SRG BSS color/BSSID bitmap */
4445 return mt7996_mcu_set_obss_spr_bitmap(phy, he_obss_pd);
4446 }
4447
mt7996_mcu_update_bss_color(struct mt7996_dev * dev,struct mt76_vif_link * mlink,struct cfg80211_he_bss_color * he_bss_color)4448 int mt7996_mcu_update_bss_color(struct mt7996_dev *dev,
4449 struct mt76_vif_link *mlink,
4450 struct cfg80211_he_bss_color *he_bss_color)
4451 {
4452 int len = sizeof(struct bss_req_hdr) + sizeof(struct bss_color_tlv);
4453 struct bss_color_tlv *bss_color;
4454 struct sk_buff *skb;
4455 struct tlv *tlv;
4456
4457 skb = __mt7996_mcu_alloc_bss_req(&dev->mt76, mlink, len);
4458 if (IS_ERR(skb))
4459 return PTR_ERR(skb);
4460
4461 tlv = mt76_connac_mcu_add_tlv(skb, UNI_BSS_INFO_BSS_COLOR,
4462 sizeof(*bss_color));
4463 bss_color = (struct bss_color_tlv *)tlv;
4464 bss_color->enable = he_bss_color->enabled;
4465 bss_color->color = he_bss_color->color;
4466
4467 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
4468 MCU_WMWA_UNI_CMD(BSS_INFO_UPDATE), true);
4469 }
4470
4471 #define TWT_AGRT_TRIGGER BIT(0)
4472 #define TWT_AGRT_ANNOUNCE BIT(1)
4473 #define TWT_AGRT_PROTECT BIT(2)
4474
mt7996_mcu_twt_agrt_update(struct mt7996_dev * dev,struct mt7996_vif_link * link,struct mt7996_twt_flow * flow,int cmd)4475 int mt7996_mcu_twt_agrt_update(struct mt7996_dev *dev,
4476 struct mt7996_vif_link *link,
4477 struct mt7996_twt_flow *flow,
4478 int cmd)
4479 {
4480 struct {
4481 /* fixed field */
4482 u8 bss;
4483 u8 _rsv[3];
4484
4485 __le16 tag;
4486 __le16 len;
4487 u8 tbl_idx;
4488 u8 cmd;
4489 u8 own_mac_idx;
4490 u8 flowid; /* 0xff for group id */
4491 __le16 peer_id; /* specify the peer_id (msb=0)
4492 * or group_id (msb=1)
4493 */
4494 u8 duration; /* 256 us */
4495 u8 bss_idx;
4496 __le64 start_tsf;
4497 __le16 mantissa;
4498 u8 exponent;
4499 u8 is_ap;
4500 u8 agrt_params;
4501 u8 __rsv2[23];
4502 } __packed req = {
4503 .tag = cpu_to_le16(UNI_CMD_TWT_ARGT_UPDATE),
4504 .len = cpu_to_le16(sizeof(req) - 4),
4505 .tbl_idx = flow->table_id,
4506 .cmd = cmd,
4507 .own_mac_idx = link->mt76.omac_idx,
4508 .flowid = flow->id,
4509 .peer_id = cpu_to_le16(flow->wcid),
4510 .duration = flow->duration,
4511 .bss = link->mt76.idx,
4512 .bss_idx = link->mt76.idx,
4513 .start_tsf = cpu_to_le64(flow->tsf),
4514 .mantissa = flow->mantissa,
4515 .exponent = flow->exp,
4516 .is_ap = true,
4517 };
4518
4519 if (flow->protection)
4520 req.agrt_params |= TWT_AGRT_PROTECT;
4521 if (!flow->flowtype)
4522 req.agrt_params |= TWT_AGRT_ANNOUNCE;
4523 if (flow->trigger)
4524 req.agrt_params |= TWT_AGRT_TRIGGER;
4525
4526 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(TWT),
4527 &req, sizeof(req), true);
4528 }
4529
mt7996_mcu_set_rts_thresh(struct mt7996_phy * phy,u32 val)4530 int mt7996_mcu_set_rts_thresh(struct mt7996_phy *phy, u32 val)
4531 {
4532 struct {
4533 u8 band_idx;
4534 u8 _rsv[3];
4535
4536 __le16 tag;
4537 __le16 len;
4538 __le32 len_thresh;
4539 __le32 pkt_thresh;
4540 } __packed req = {
4541 .band_idx = phy->mt76->band_idx,
4542 .tag = cpu_to_le16(UNI_BAND_CONFIG_RTS_THRESHOLD),
4543 .len = cpu_to_le16(sizeof(req) - 4),
4544 .len_thresh = cpu_to_le32(val),
4545 .pkt_thresh = cpu_to_le32(0x2),
4546 };
4547
4548 return mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(BAND_CONFIG),
4549 &req, sizeof(req), true);
4550 }
4551
mt7996_mcu_set_radio_en(struct mt7996_phy * phy,bool enable)4552 int mt7996_mcu_set_radio_en(struct mt7996_phy *phy, bool enable)
4553 {
4554 struct {
4555 u8 band_idx;
4556 u8 _rsv[3];
4557
4558 __le16 tag;
4559 __le16 len;
4560 u8 enable;
4561 u8 _rsv2[3];
4562 } __packed req = {
4563 .band_idx = phy->mt76->band_idx,
4564 .tag = cpu_to_le16(UNI_BAND_CONFIG_RADIO_ENABLE),
4565 .len = cpu_to_le16(sizeof(req) - 4),
4566 .enable = enable,
4567 };
4568
4569 return mt76_mcu_send_msg(&phy->dev->mt76, MCU_WM_UNI_CMD(BAND_CONFIG),
4570 &req, sizeof(req), true);
4571 }
4572
mt7996_mcu_rdd_cmd(struct mt7996_dev * dev,int cmd,u8 rdd_idx,u8 val)4573 int mt7996_mcu_rdd_cmd(struct mt7996_dev *dev, int cmd, u8 rdd_idx, u8 val)
4574 {
4575 struct {
4576 u8 _rsv[4];
4577
4578 __le16 tag;
4579 __le16 len;
4580
4581 u8 ctrl;
4582 u8 rdd_idx;
4583 u8 rdd_rx_sel;
4584 u8 val;
4585 u8 rsv[4];
4586 } __packed req = {
4587 .tag = cpu_to_le16(UNI_RDD_CTRL_PARM),
4588 .len = cpu_to_le16(sizeof(req) - 4),
4589 .ctrl = cmd,
4590 .rdd_idx = rdd_idx,
4591 .val = val,
4592 };
4593
4594 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RDD_CTRL),
4595 &req, sizeof(req), true);
4596 }
4597
mt7996_mcu_wtbl_update_hdr_trans(struct mt7996_dev * dev,struct ieee80211_vif * vif,struct mt7996_vif_link * link,struct mt7996_sta_link * msta_link)4598 int mt7996_mcu_wtbl_update_hdr_trans(struct mt7996_dev *dev,
4599 struct ieee80211_vif *vif,
4600 struct mt7996_vif_link *link,
4601 struct mt7996_sta_link *msta_link)
4602 {
4603 struct sk_buff *skb;
4604
4605 skb = __mt76_connac_mcu_alloc_sta_req(&dev->mt76, &link->mt76,
4606 &msta_link->wcid,
4607 MT7996_STA_UPDATE_MAX_SIZE);
4608 if (IS_ERR(skb))
4609 return PTR_ERR(skb);
4610
4611 /* starec hdr trans */
4612 mt7996_mcu_sta_hdr_trans_tlv(dev, skb, vif, &msta_link->wcid);
4613 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
4614 MCU_WMWA_UNI_CMD(STA_REC_UPDATE), true);
4615 }
4616
mt7996_mcu_set_fixed_rate_table(struct mt7996_phy * phy,u8 table_idx,u16 rate_idx,bool beacon)4617 int mt7996_mcu_set_fixed_rate_table(struct mt7996_phy *phy, u8 table_idx,
4618 u16 rate_idx, bool beacon)
4619 {
4620 #define UNI_FIXED_RATE_TABLE_SET 0
4621 #define SPE_IXD_SELECT_TXD 0
4622 #define SPE_IXD_SELECT_BMC_WTBL 1
4623 struct mt7996_dev *dev = phy->dev;
4624 struct fixed_rate_table_ctrl req = {
4625 .tag = cpu_to_le16(UNI_FIXED_RATE_TABLE_SET),
4626 .len = cpu_to_le16(sizeof(req) - 4),
4627 .table_idx = table_idx,
4628 .rate_idx = cpu_to_le16(rate_idx),
4629 .gi = 1,
4630 .he_ltf = 1,
4631 };
4632 u8 band_idx = phy->mt76->band_idx;
4633
4634 if (beacon) {
4635 req.spe_idx_sel = SPE_IXD_SELECT_TXD;
4636 req.spe_idx = 24 + band_idx;
4637 phy->beacon_rate = rate_idx;
4638 } else {
4639 req.spe_idx_sel = SPE_IXD_SELECT_BMC_WTBL;
4640 }
4641
4642 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(FIXED_RATE_TABLE),
4643 &req, sizeof(req), false);
4644 }
4645
mt7996_mcu_rf_regval(struct mt7996_dev * dev,u32 regidx,u32 * val,bool set)4646 int mt7996_mcu_rf_regval(struct mt7996_dev *dev, u32 regidx, u32 *val, bool set)
4647 {
4648 struct {
4649 u8 __rsv1[4];
4650
4651 __le16 tag;
4652 __le16 len;
4653 __le16 idx;
4654 u8 __rsv2[2];
4655 __le32 ofs;
4656 __le32 data;
4657 } __packed *res, req = {
4658 .tag = cpu_to_le16(UNI_CMD_ACCESS_RF_REG_BASIC),
4659 .len = cpu_to_le16(sizeof(req) - 4),
4660
4661 .idx = cpu_to_le16(u32_get_bits(regidx, GENMASK(31, 24))),
4662 .ofs = cpu_to_le32(u32_get_bits(regidx, GENMASK(23, 0))),
4663 .data = set ? cpu_to_le32(*val) : 0,
4664 };
4665 struct sk_buff *skb;
4666 int ret;
4667
4668 if (set)
4669 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(REG_ACCESS),
4670 &req, sizeof(req), true);
4671
4672 ret = mt76_mcu_send_and_get_msg(&dev->mt76,
4673 MCU_WM_UNI_CMD_QUERY(REG_ACCESS),
4674 &req, sizeof(req), true, &skb);
4675 if (ret)
4676 return ret;
4677
4678 res = (void *)skb->data;
4679 *val = le32_to_cpu(res->data);
4680 dev_kfree_skb(skb);
4681
4682 return 0;
4683 }
4684
mt7996_mcu_trigger_assert(struct mt7996_dev * dev)4685 int mt7996_mcu_trigger_assert(struct mt7996_dev *dev)
4686 {
4687 struct {
4688 __le16 tag;
4689 __le16 len;
4690 u8 enable;
4691 u8 rsv[3];
4692 } __packed req = {
4693 .len = cpu_to_le16(sizeof(req) - 4),
4694 .enable = true,
4695 };
4696
4697 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(ASSERT_DUMP),
4698 &req, sizeof(req), false);
4699 }
4700
mt7996_mcu_set_rro(struct mt7996_dev * dev,u16 tag,u16 val)4701 int mt7996_mcu_set_rro(struct mt7996_dev *dev, u16 tag, u16 val)
4702 {
4703 struct {
4704 u8 __rsv1[4];
4705 __le16 tag;
4706 __le16 len;
4707 union {
4708 struct {
4709 u8 type;
4710 u8 __rsv2[3];
4711 } __packed platform_type;
4712 struct {
4713 u8 type;
4714 u8 dest;
4715 u8 __rsv2[2];
4716 } __packed bypass_mode;
4717 struct {
4718 u8 path;
4719 u8 __rsv2[3];
4720 } __packed txfree_path;
4721 struct {
4722 __le16 flush_one;
4723 __le16 flush_all;
4724 u8 __rsv2[4];
4725 } __packed timeout;
4726 };
4727 } __packed req = {
4728 .tag = cpu_to_le16(tag),
4729 .len = cpu_to_le16(sizeof(req) - 4),
4730 };
4731
4732 switch (tag) {
4733 case UNI_RRO_SET_PLATFORM_TYPE:
4734 req.platform_type.type = val;
4735 break;
4736 case UNI_RRO_SET_BYPASS_MODE:
4737 req.bypass_mode.type = val;
4738 break;
4739 case UNI_RRO_SET_TXFREE_PATH:
4740 req.txfree_path.path = val;
4741 break;
4742 case UNI_RRO_SET_FLUSH_TIMEOUT:
4743 req.timeout.flush_one = cpu_to_le16(val);
4744 req.timeout.flush_all = cpu_to_le16(2 * val);
4745 break;
4746 default:
4747 return -EINVAL;
4748 }
4749
4750 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RRO), &req,
4751 sizeof(req), true);
4752 }
4753
mt7996_mcu_get_all_sta_info(struct mt7996_phy * phy,u16 tag)4754 int mt7996_mcu_get_all_sta_info(struct mt7996_phy *phy, u16 tag)
4755 {
4756 struct mt7996_dev *dev = phy->dev;
4757 struct {
4758 u8 _rsv[4];
4759
4760 __le16 tag;
4761 __le16 len;
4762 } __packed req = {
4763 .tag = cpu_to_le16(tag),
4764 .len = cpu_to_le16(sizeof(req) - 4),
4765 };
4766
4767 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(ALL_STA_INFO),
4768 &req, sizeof(req), false);
4769 }
4770
mt7996_mcu_wed_rro_reset_sessions(struct mt7996_dev * dev,u16 id)4771 int mt7996_mcu_wed_rro_reset_sessions(struct mt7996_dev *dev, u16 id)
4772 {
4773 struct {
4774 u8 __rsv[4];
4775
4776 __le16 tag;
4777 __le16 len;
4778 __le16 session_id;
4779 u8 pad[4];
4780 } __packed req = {
4781 .tag = cpu_to_le16(UNI_RRO_DEL_BA_SESSION),
4782 .len = cpu_to_le16(sizeof(req) - 4),
4783 .session_id = cpu_to_le16(id),
4784 };
4785
4786 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(RRO), &req,
4787 sizeof(req), true);
4788 }
4789
mt7996_mcu_set_sniffer_mode(struct mt7996_phy * phy,bool enabled)4790 int mt7996_mcu_set_sniffer_mode(struct mt7996_phy *phy, bool enabled)
4791 {
4792 struct mt7996_dev *dev = phy->dev;
4793 struct {
4794 u8 band_idx;
4795 u8 _rsv[3];
4796 __le16 tag;
4797 __le16 len;
4798 u8 enable;
4799 u8 _pad[3];
4800 } __packed req = {
4801 .band_idx = phy->mt76->band_idx,
4802 .tag = 0,
4803 .len = cpu_to_le16(sizeof(req) - 4),
4804 .enable = enabled,
4805 };
4806
4807 return mt76_mcu_send_msg(&dev->mt76, MCU_WM_UNI_CMD(SNIFFER), &req,
4808 sizeof(req), true);
4809 }
4810
mt7996_mcu_set_txpower_sku(struct mt7996_phy * phy)4811 int mt7996_mcu_set_txpower_sku(struct mt7996_phy *phy)
4812 {
4813 #define TX_POWER_LIMIT_TABLE_RATE 0
4814 struct mt7996_dev *dev = phy->dev;
4815 struct mt76_phy *mphy = phy->mt76;
4816 struct tx_power_limit_table_ctrl {
4817 u8 __rsv1[4];
4818
4819 __le16 tag;
4820 __le16 len;
4821 u8 power_ctrl_id;
4822 u8 power_limit_type;
4823 u8 band_idx;
4824 } __packed req = {
4825 .tag = cpu_to_le16(UNI_TXPOWER_POWER_LIMIT_TABLE_CTRL),
4826 .len = cpu_to_le16(sizeof(req) + MT7996_SKU_PATH_NUM - 4),
4827 .power_ctrl_id = UNI_TXPOWER_POWER_LIMIT_TABLE_CTRL,
4828 .power_limit_type = TX_POWER_LIMIT_TABLE_RATE,
4829 .band_idx = phy->mt76->band_idx,
4830 };
4831 struct mt76_power_limits la = {};
4832 struct sk_buff *skb;
4833 int i, tx_power;
4834
4835 tx_power = mt76_get_power_bound(mphy, phy->txpower);
4836 tx_power = mt76_get_rate_power_limits(mphy, mphy->chandef.chan,
4837 &la, tx_power);
4838 mphy->txpower_cur = tx_power;
4839
4840 skb = mt76_mcu_msg_alloc(&dev->mt76, NULL,
4841 sizeof(req) + MT7996_SKU_PATH_NUM);
4842 if (!skb)
4843 return -ENOMEM;
4844
4845 skb_put_data(skb, &req, sizeof(req));
4846 /* cck and ofdm */
4847 skb_put_data(skb, &la.cck, sizeof(la.cck));
4848 skb_put_data(skb, &la.ofdm, sizeof(la.ofdm));
4849 /* ht20 */
4850 skb_put_data(skb, &la.mcs[0], 8);
4851 /* ht40 */
4852 skb_put_data(skb, &la.mcs[1], 9);
4853
4854 /* vht */
4855 for (i = 0; i < 4; i++) {
4856 skb_put_data(skb, &la.mcs[i], sizeof(la.mcs[i]));
4857 skb_put_zero(skb, 2); /* padding */
4858 }
4859
4860 /* he */
4861 skb_put_data(skb, &la.ru[0], sizeof(la.ru));
4862 /* eht */
4863 skb_put_data(skb, &la.eht[0], sizeof(la.eht));
4864
4865 /* padding */
4866 skb_put_zero(skb, MT7996_SKU_PATH_NUM - MT7996_SKU_RATE_NUM);
4867
4868 return mt76_mcu_skb_send_msg(&dev->mt76, skb,
4869 MCU_WM_UNI_CMD(TXPOWER), true);
4870 }
4871
mt7996_mcu_cp_support(struct mt7996_dev * dev,u8 mode)4872 int mt7996_mcu_cp_support(struct mt7996_dev *dev, u8 mode)
4873 {
4874 __le32 cp_mode;
4875
4876 if (mode < mt76_connac_lmac_mapping(IEEE80211_AC_BE) ||
4877 mode > mt76_connac_lmac_mapping(IEEE80211_AC_VO))
4878 return -EINVAL;
4879
4880 if (!mt7996_has_wa(dev)) {
4881 struct {
4882 u8 _rsv[4];
4883
4884 __le16 tag;
4885 __le16 len;
4886 u8 cp_mode;
4887 u8 rsv[3];
4888 } __packed req = {
4889 .tag = cpu_to_le16(UNI_CMD_SDO_CP_MODE),
4890 .len = cpu_to_le16(sizeof(req) - 4),
4891 .cp_mode = mode,
4892 };
4893
4894 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_UNI_CMD(SDO),
4895 &req, sizeof(req), false);
4896 }
4897
4898 cp_mode = cpu_to_le32(mode);
4899
4900 return mt76_mcu_send_msg(&dev->mt76, MCU_WA_EXT_CMD(CP_SUPPORT),
4901 &cp_mode, sizeof(cp_mode), true);
4902 }
4903