1 /* 2 * drivers/net/wireless/mwl8k.c 3 * Driver for Marvell TOPDOG 802.11 Wireless cards 4 * 5 * Copyright (C) 2008, 2009, 2010 Marvell Semiconductor Inc. 6 * 7 * This file is licensed under the terms of the GNU General Public 8 * License version 2. This program is licensed "as is" without any 9 * warranty of any kind, whether express or implied. 10 */ 11 12 #include <linux/interrupt.h> 13 #include <linux/module.h> 14 #include <linux/kernel.h> 15 #include <linux/sched.h> 16 #include <linux/spinlock.h> 17 #include <linux/list.h> 18 #include <linux/pci.h> 19 #include <linux/delay.h> 20 #include <linux/completion.h> 21 #include <linux/etherdevice.h> 22 #include <linux/slab.h> 23 #include <net/mac80211.h> 24 #include <linux/moduleparam.h> 25 #include <linux/firmware.h> 26 #include <linux/workqueue.h> 27 28 #define MWL8K_DESC "Marvell TOPDOG(R) 802.11 Wireless Network Driver" 29 #define MWL8K_NAME KBUILD_MODNAME 30 #define MWL8K_VERSION "0.13" 31 32 /* Module parameters */ 33 static bool ap_mode_default; 34 module_param(ap_mode_default, bool, 0); 35 MODULE_PARM_DESC(ap_mode_default, 36 "Set to 1 to make ap mode the default instead of sta mode"); 37 38 /* Register definitions */ 39 #define MWL8K_HIU_GEN_PTR 0x00000c10 40 #define MWL8K_MODE_STA 0x0000005a 41 #define MWL8K_MODE_AP 0x000000a5 42 #define MWL8K_HIU_INT_CODE 0x00000c14 43 #define MWL8K_FWSTA_READY 0xf0f1f2f4 44 #define MWL8K_FWAP_READY 0xf1f2f4a5 45 #define MWL8K_INT_CODE_CMD_FINISHED 0x00000005 46 #define MWL8K_HIU_SCRATCH 0x00000c40 47 48 /* Host->device communications */ 49 #define MWL8K_HIU_H2A_INTERRUPT_EVENTS 0x00000c18 50 #define MWL8K_HIU_H2A_INTERRUPT_STATUS 0x00000c1c 51 #define MWL8K_HIU_H2A_INTERRUPT_MASK 0x00000c20 52 #define MWL8K_HIU_H2A_INTERRUPT_CLEAR_SEL 0x00000c24 53 #define MWL8K_HIU_H2A_INTERRUPT_STATUS_MASK 0x00000c28 54 #define MWL8K_H2A_INT_DUMMY (1 << 20) 55 #define MWL8K_H2A_INT_RESET (1 << 15) 56 #define MWL8K_H2A_INT_DOORBELL (1 << 1) 57 #define MWL8K_H2A_INT_PPA_READY (1 << 0) 58 59 /* Device->host communications */ 60 #define MWL8K_HIU_A2H_INTERRUPT_EVENTS 0x00000c2c 61 #define MWL8K_HIU_A2H_INTERRUPT_STATUS 0x00000c30 62 #define MWL8K_HIU_A2H_INTERRUPT_MASK 0x00000c34 63 #define MWL8K_HIU_A2H_INTERRUPT_CLEAR_SEL 0x00000c38 64 #define MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK 0x00000c3c 65 #define MWL8K_A2H_INT_DUMMY (1 << 20) 66 #define MWL8K_A2H_INT_BA_WATCHDOG (1 << 14) 67 #define MWL8K_A2H_INT_CHNL_SWITCHED (1 << 11) 68 #define MWL8K_A2H_INT_QUEUE_EMPTY (1 << 10) 69 #define MWL8K_A2H_INT_RADAR_DETECT (1 << 7) 70 #define MWL8K_A2H_INT_RADIO_ON (1 << 6) 71 #define MWL8K_A2H_INT_RADIO_OFF (1 << 5) 72 #define MWL8K_A2H_INT_MAC_EVENT (1 << 3) 73 #define MWL8K_A2H_INT_OPC_DONE (1 << 2) 74 #define MWL8K_A2H_INT_RX_READY (1 << 1) 75 #define MWL8K_A2H_INT_TX_DONE (1 << 0) 76 77 /* HW micro second timer register 78 * located at offset 0xA600. This 79 * will be used to timestamp tx 80 * packets. 81 */ 82 83 #define MWL8K_HW_TIMER_REGISTER 0x0000a600 84 #define BBU_RXRDY_CNT_REG 0x0000a860 85 #define NOK_CCA_CNT_REG 0x0000a6a0 86 #define BBU_AVG_NOISE_VAL 0x67 87 88 #define MWL8K_A2H_EVENTS (MWL8K_A2H_INT_DUMMY | \ 89 MWL8K_A2H_INT_CHNL_SWITCHED | \ 90 MWL8K_A2H_INT_QUEUE_EMPTY | \ 91 MWL8K_A2H_INT_RADAR_DETECT | \ 92 MWL8K_A2H_INT_RADIO_ON | \ 93 MWL8K_A2H_INT_RADIO_OFF | \ 94 MWL8K_A2H_INT_MAC_EVENT | \ 95 MWL8K_A2H_INT_OPC_DONE | \ 96 MWL8K_A2H_INT_RX_READY | \ 97 MWL8K_A2H_INT_TX_DONE | \ 98 MWL8K_A2H_INT_BA_WATCHDOG) 99 100 #define MWL8K_RX_QUEUES 1 101 #define MWL8K_TX_WMM_QUEUES 4 102 #define MWL8K_MAX_AMPDU_QUEUES 8 103 #define MWL8K_MAX_TX_QUEUES (MWL8K_TX_WMM_QUEUES + MWL8K_MAX_AMPDU_QUEUES) 104 #define mwl8k_tx_queues(priv) (MWL8K_TX_WMM_QUEUES + (priv)->num_ampdu_queues) 105 106 /* txpriorities are mapped with hw queues. 107 * Each hw queue has a txpriority. 108 */ 109 #define TOTAL_HW_TX_QUEUES 8 110 111 /* Each HW queue can have one AMPDU stream. 112 * But, because one of the hw queue is reserved, 113 * maximum AMPDU queues that can be created are 114 * one short of total tx queues. 115 */ 116 #define MWL8K_NUM_AMPDU_STREAMS (TOTAL_HW_TX_QUEUES - 1) 117 118 #define MWL8K_NUM_CHANS 18 119 120 struct rxd_ops { 121 int rxd_size; 122 void (*rxd_init)(void *rxd, dma_addr_t next_dma_addr); 123 void (*rxd_refill)(void *rxd, dma_addr_t addr, int len); 124 int (*rxd_process)(void *rxd, struct ieee80211_rx_status *status, 125 __le16 *qos, s8 *noise); 126 }; 127 128 struct mwl8k_device_info { 129 char *part_name; 130 char *helper_image; 131 char *fw_image_sta; 132 char *fw_image_ap; 133 struct rxd_ops *ap_rxd_ops; 134 u32 fw_api_ap; 135 }; 136 137 struct mwl8k_rx_queue { 138 int rxd_count; 139 140 /* hw receives here */ 141 int head; 142 143 /* refill descs here */ 144 int tail; 145 146 void *rxd; 147 dma_addr_t rxd_dma; 148 struct { 149 struct sk_buff *skb; 150 DEFINE_DMA_UNMAP_ADDR(dma); 151 } *buf; 152 }; 153 154 struct mwl8k_tx_queue { 155 /* hw transmits here */ 156 int head; 157 158 /* sw appends here */ 159 int tail; 160 161 unsigned int len; 162 struct mwl8k_tx_desc *txd; 163 dma_addr_t txd_dma; 164 struct sk_buff **skb; 165 }; 166 167 enum { 168 AMPDU_NO_STREAM, 169 AMPDU_STREAM_NEW, 170 AMPDU_STREAM_IN_PROGRESS, 171 AMPDU_STREAM_ACTIVE, 172 }; 173 174 struct mwl8k_ampdu_stream { 175 struct ieee80211_sta *sta; 176 u8 tid; 177 u8 state; 178 u8 idx; 179 }; 180 181 struct mwl8k_priv { 182 struct ieee80211_hw *hw; 183 struct pci_dev *pdev; 184 int irq; 185 186 struct mwl8k_device_info *device_info; 187 188 void __iomem *sram; 189 void __iomem *regs; 190 191 /* firmware */ 192 const struct firmware *fw_helper; 193 const struct firmware *fw_ucode; 194 195 /* hardware/firmware parameters */ 196 bool ap_fw; 197 struct rxd_ops *rxd_ops; 198 struct ieee80211_supported_band band_24; 199 struct ieee80211_channel channels_24[14]; 200 struct ieee80211_rate rates_24[13]; 201 struct ieee80211_supported_band band_50; 202 struct ieee80211_channel channels_50[9]; 203 struct ieee80211_rate rates_50[8]; 204 u32 ap_macids_supported; 205 u32 sta_macids_supported; 206 207 /* Ampdu stream information */ 208 u8 num_ampdu_queues; 209 spinlock_t stream_lock; 210 struct mwl8k_ampdu_stream ampdu[MWL8K_MAX_AMPDU_QUEUES]; 211 struct work_struct watchdog_ba_handle; 212 213 /* firmware access */ 214 struct mutex fw_mutex; 215 struct task_struct *fw_mutex_owner; 216 struct task_struct *hw_restart_owner; 217 int fw_mutex_depth; 218 struct completion *hostcmd_wait; 219 220 atomic_t watchdog_event_pending; 221 222 /* lock held over TX and TX reap */ 223 spinlock_t tx_lock; 224 225 /* TX quiesce completion, protected by fw_mutex and tx_lock */ 226 struct completion *tx_wait; 227 228 /* List of interfaces. */ 229 u32 macids_used; 230 struct list_head vif_list; 231 232 /* power management status cookie from firmware */ 233 u32 *cookie; 234 dma_addr_t cookie_dma; 235 236 u16 num_mcaddrs; 237 u8 hw_rev; 238 u32 fw_rev; 239 u32 caps; 240 241 /* 242 * Running count of TX packets in flight, to avoid 243 * iterating over the transmit rings each time. 244 */ 245 int pending_tx_pkts; 246 247 struct mwl8k_rx_queue rxq[MWL8K_RX_QUEUES]; 248 struct mwl8k_tx_queue txq[MWL8K_MAX_TX_QUEUES]; 249 u32 txq_offset[MWL8K_MAX_TX_QUEUES]; 250 251 bool radio_on; 252 bool radio_short_preamble; 253 bool sniffer_enabled; 254 bool wmm_enabled; 255 256 /* XXX need to convert this to handle multiple interfaces */ 257 bool capture_beacon; 258 u8 capture_bssid[ETH_ALEN]; 259 struct sk_buff *beacon_skb; 260 261 /* 262 * This FJ worker has to be global as it is scheduled from the 263 * RX handler. At this point we don't know which interface it 264 * belongs to until the list of bssids waiting to complete join 265 * is checked. 266 */ 267 struct work_struct finalize_join_worker; 268 269 /* Tasklet to perform TX reclaim. */ 270 struct tasklet_struct poll_tx_task; 271 272 /* Tasklet to perform RX. */ 273 struct tasklet_struct poll_rx_task; 274 275 /* Most recently reported noise in dBm */ 276 s8 noise; 277 278 /* 279 * preserve the queue configurations so they can be restored if/when 280 * the firmware image is swapped. 281 */ 282 struct ieee80211_tx_queue_params wmm_params[MWL8K_TX_WMM_QUEUES]; 283 284 /* To perform the task of reloading the firmware */ 285 struct work_struct fw_reload; 286 bool hw_restart_in_progress; 287 288 /* async firmware loading state */ 289 unsigned fw_state; 290 char *fw_pref; 291 char *fw_alt; 292 bool is_8764; 293 struct completion firmware_loading_complete; 294 295 /* bitmap of running BSSes */ 296 u32 running_bsses; 297 298 /* ACS related */ 299 bool sw_scan_start; 300 struct ieee80211_channel *acs_chan; 301 unsigned long channel_time; 302 struct survey_info survey[MWL8K_NUM_CHANS]; 303 }; 304 305 #define MAX_WEP_KEY_LEN 13 306 #define NUM_WEP_KEYS 4 307 308 /* Per interface specific private data */ 309 struct mwl8k_vif { 310 struct list_head list; 311 struct ieee80211_vif *vif; 312 313 /* Firmware macid for this vif. */ 314 int macid; 315 316 /* Non AMPDU sequence number assigned by driver. */ 317 u16 seqno; 318 319 /* Saved WEP keys */ 320 struct { 321 u8 enabled; 322 u8 key[sizeof(struct ieee80211_key_conf) + MAX_WEP_KEY_LEN]; 323 } wep_key_conf[NUM_WEP_KEYS]; 324 325 /* BSSID */ 326 u8 bssid[ETH_ALEN]; 327 328 /* A flag to indicate is HW crypto is enabled for this bssid */ 329 bool is_hw_crypto_enabled; 330 }; 331 #define MWL8K_VIF(_vif) ((struct mwl8k_vif *)&((_vif)->drv_priv)) 332 #define IEEE80211_KEY_CONF(_u8) ((struct ieee80211_key_conf *)(_u8)) 333 334 struct tx_traffic_info { 335 u32 start_time; 336 u32 pkts; 337 }; 338 339 #define MWL8K_MAX_TID 8 340 struct mwl8k_sta { 341 /* Index into station database. Returned by UPDATE_STADB. */ 342 u8 peer_id; 343 u8 is_ampdu_allowed; 344 struct tx_traffic_info tx_stats[MWL8K_MAX_TID]; 345 }; 346 #define MWL8K_STA(_sta) ((struct mwl8k_sta *)&((_sta)->drv_priv)) 347 348 static const struct ieee80211_channel mwl8k_channels_24[] = { 349 { .band = NL80211_BAND_2GHZ, .center_freq = 2412, .hw_value = 1, }, 350 { .band = NL80211_BAND_2GHZ, .center_freq = 2417, .hw_value = 2, }, 351 { .band = NL80211_BAND_2GHZ, .center_freq = 2422, .hw_value = 3, }, 352 { .band = NL80211_BAND_2GHZ, .center_freq = 2427, .hw_value = 4, }, 353 { .band = NL80211_BAND_2GHZ, .center_freq = 2432, .hw_value = 5, }, 354 { .band = NL80211_BAND_2GHZ, .center_freq = 2437, .hw_value = 6, }, 355 { .band = NL80211_BAND_2GHZ, .center_freq = 2442, .hw_value = 7, }, 356 { .band = NL80211_BAND_2GHZ, .center_freq = 2447, .hw_value = 8, }, 357 { .band = NL80211_BAND_2GHZ, .center_freq = 2452, .hw_value = 9, }, 358 { .band = NL80211_BAND_2GHZ, .center_freq = 2457, .hw_value = 10, }, 359 { .band = NL80211_BAND_2GHZ, .center_freq = 2462, .hw_value = 11, }, 360 { .band = NL80211_BAND_2GHZ, .center_freq = 2467, .hw_value = 12, }, 361 { .band = NL80211_BAND_2GHZ, .center_freq = 2472, .hw_value = 13, }, 362 { .band = NL80211_BAND_2GHZ, .center_freq = 2484, .hw_value = 14, }, 363 }; 364 365 static const struct ieee80211_rate mwl8k_rates_24[] = { 366 { .bitrate = 10, .hw_value = 2, }, 367 { .bitrate = 20, .hw_value = 4, }, 368 { .bitrate = 55, .hw_value = 11, }, 369 { .bitrate = 110, .hw_value = 22, }, 370 { .bitrate = 220, .hw_value = 44, }, 371 { .bitrate = 60, .hw_value = 12, }, 372 { .bitrate = 90, .hw_value = 18, }, 373 { .bitrate = 120, .hw_value = 24, }, 374 { .bitrate = 180, .hw_value = 36, }, 375 { .bitrate = 240, .hw_value = 48, }, 376 { .bitrate = 360, .hw_value = 72, }, 377 { .bitrate = 480, .hw_value = 96, }, 378 { .bitrate = 540, .hw_value = 108, }, 379 }; 380 381 static const struct ieee80211_channel mwl8k_channels_50[] = { 382 { .band = NL80211_BAND_5GHZ, .center_freq = 5180, .hw_value = 36, }, 383 { .band = NL80211_BAND_5GHZ, .center_freq = 5200, .hw_value = 40, }, 384 { .band = NL80211_BAND_5GHZ, .center_freq = 5220, .hw_value = 44, }, 385 { .band = NL80211_BAND_5GHZ, .center_freq = 5240, .hw_value = 48, }, 386 { .band = NL80211_BAND_5GHZ, .center_freq = 5745, .hw_value = 149, }, 387 { .band = NL80211_BAND_5GHZ, .center_freq = 5765, .hw_value = 153, }, 388 { .band = NL80211_BAND_5GHZ, .center_freq = 5785, .hw_value = 157, }, 389 { .band = NL80211_BAND_5GHZ, .center_freq = 5805, .hw_value = 161, }, 390 { .band = NL80211_BAND_5GHZ, .center_freq = 5825, .hw_value = 165, }, 391 }; 392 393 static const struct ieee80211_rate mwl8k_rates_50[] = { 394 { .bitrate = 60, .hw_value = 12, }, 395 { .bitrate = 90, .hw_value = 18, }, 396 { .bitrate = 120, .hw_value = 24, }, 397 { .bitrate = 180, .hw_value = 36, }, 398 { .bitrate = 240, .hw_value = 48, }, 399 { .bitrate = 360, .hw_value = 72, }, 400 { .bitrate = 480, .hw_value = 96, }, 401 { .bitrate = 540, .hw_value = 108, }, 402 }; 403 404 /* Set or get info from Firmware */ 405 #define MWL8K_CMD_GET 0x0000 406 #define MWL8K_CMD_SET 0x0001 407 #define MWL8K_CMD_SET_LIST 0x0002 408 409 /* Firmware command codes */ 410 #define MWL8K_CMD_CODE_DNLD 0x0001 411 #define MWL8K_CMD_GET_HW_SPEC 0x0003 412 #define MWL8K_CMD_SET_HW_SPEC 0x0004 413 #define MWL8K_CMD_MAC_MULTICAST_ADR 0x0010 414 #define MWL8K_CMD_GET_STAT 0x0014 415 #define MWL8K_CMD_BBP_REG_ACCESS 0x001a 416 #define MWL8K_CMD_RADIO_CONTROL 0x001c 417 #define MWL8K_CMD_RF_TX_POWER 0x001e 418 #define MWL8K_CMD_TX_POWER 0x001f 419 #define MWL8K_CMD_RF_ANTENNA 0x0020 420 #define MWL8K_CMD_SET_BEACON 0x0100 /* per-vif */ 421 #define MWL8K_CMD_SET_PRE_SCAN 0x0107 422 #define MWL8K_CMD_SET_POST_SCAN 0x0108 423 #define MWL8K_CMD_SET_RF_CHANNEL 0x010a 424 #define MWL8K_CMD_SET_AID 0x010d 425 #define MWL8K_CMD_SET_RATE 0x0110 426 #define MWL8K_CMD_SET_FINALIZE_JOIN 0x0111 427 #define MWL8K_CMD_RTS_THRESHOLD 0x0113 428 #define MWL8K_CMD_SET_SLOT 0x0114 429 #define MWL8K_CMD_SET_EDCA_PARAMS 0x0115 430 #define MWL8K_CMD_SET_WMM_MODE 0x0123 431 #define MWL8K_CMD_MIMO_CONFIG 0x0125 432 #define MWL8K_CMD_USE_FIXED_RATE 0x0126 433 #define MWL8K_CMD_ENABLE_SNIFFER 0x0150 434 #define MWL8K_CMD_SET_MAC_ADDR 0x0202 /* per-vif */ 435 #define MWL8K_CMD_SET_RATEADAPT_MODE 0x0203 436 #define MWL8K_CMD_GET_WATCHDOG_BITMAP 0x0205 437 #define MWL8K_CMD_DEL_MAC_ADDR 0x0206 /* per-vif */ 438 #define MWL8K_CMD_BSS_START 0x1100 /* per-vif */ 439 #define MWL8K_CMD_SET_NEW_STN 0x1111 /* per-vif */ 440 #define MWL8K_CMD_UPDATE_ENCRYPTION 0x1122 /* per-vif */ 441 #define MWL8K_CMD_UPDATE_STADB 0x1123 442 #define MWL8K_CMD_BASTREAM 0x1125 443 444 #define MWL8K_LEGACY_5G_RATE_OFFSET \ 445 (ARRAY_SIZE(mwl8k_rates_24) - ARRAY_SIZE(mwl8k_rates_50)) 446 447 static const char *mwl8k_cmd_name(__le16 cmd, char *buf, int bufsize) 448 { 449 u16 command = le16_to_cpu(cmd); 450 451 #define MWL8K_CMDNAME(x) case MWL8K_CMD_##x: do {\ 452 snprintf(buf, bufsize, "%s", #x);\ 453 return buf;\ 454 } while (0) 455 switch (command & ~0x8000) { 456 MWL8K_CMDNAME(CODE_DNLD); 457 MWL8K_CMDNAME(GET_HW_SPEC); 458 MWL8K_CMDNAME(SET_HW_SPEC); 459 MWL8K_CMDNAME(MAC_MULTICAST_ADR); 460 MWL8K_CMDNAME(GET_STAT); 461 MWL8K_CMDNAME(RADIO_CONTROL); 462 MWL8K_CMDNAME(RF_TX_POWER); 463 MWL8K_CMDNAME(TX_POWER); 464 MWL8K_CMDNAME(RF_ANTENNA); 465 MWL8K_CMDNAME(SET_BEACON); 466 MWL8K_CMDNAME(SET_PRE_SCAN); 467 MWL8K_CMDNAME(SET_POST_SCAN); 468 MWL8K_CMDNAME(SET_RF_CHANNEL); 469 MWL8K_CMDNAME(SET_AID); 470 MWL8K_CMDNAME(SET_RATE); 471 MWL8K_CMDNAME(SET_FINALIZE_JOIN); 472 MWL8K_CMDNAME(RTS_THRESHOLD); 473 MWL8K_CMDNAME(SET_SLOT); 474 MWL8K_CMDNAME(SET_EDCA_PARAMS); 475 MWL8K_CMDNAME(SET_WMM_MODE); 476 MWL8K_CMDNAME(MIMO_CONFIG); 477 MWL8K_CMDNAME(USE_FIXED_RATE); 478 MWL8K_CMDNAME(ENABLE_SNIFFER); 479 MWL8K_CMDNAME(SET_MAC_ADDR); 480 MWL8K_CMDNAME(SET_RATEADAPT_MODE); 481 MWL8K_CMDNAME(BSS_START); 482 MWL8K_CMDNAME(SET_NEW_STN); 483 MWL8K_CMDNAME(UPDATE_ENCRYPTION); 484 MWL8K_CMDNAME(UPDATE_STADB); 485 MWL8K_CMDNAME(BASTREAM); 486 MWL8K_CMDNAME(GET_WATCHDOG_BITMAP); 487 default: 488 snprintf(buf, bufsize, "0x%x", cmd); 489 } 490 #undef MWL8K_CMDNAME 491 492 return buf; 493 } 494 495 /* Hardware and firmware reset */ 496 static void mwl8k_hw_reset(struct mwl8k_priv *priv) 497 { 498 iowrite32(MWL8K_H2A_INT_RESET, 499 priv->regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 500 iowrite32(MWL8K_H2A_INT_RESET, 501 priv->regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 502 msleep(20); 503 } 504 505 /* Release fw image */ 506 static void mwl8k_release_fw(const struct firmware **fw) 507 { 508 if (*fw == NULL) 509 return; 510 release_firmware(*fw); 511 *fw = NULL; 512 } 513 514 static void mwl8k_release_firmware(struct mwl8k_priv *priv) 515 { 516 mwl8k_release_fw(&priv->fw_ucode); 517 mwl8k_release_fw(&priv->fw_helper); 518 } 519 520 /* states for asynchronous f/w loading */ 521 static void mwl8k_fw_state_machine(const struct firmware *fw, void *context); 522 enum { 523 FW_STATE_INIT = 0, 524 FW_STATE_LOADING_PREF, 525 FW_STATE_LOADING_ALT, 526 FW_STATE_ERROR, 527 }; 528 529 /* Request fw image */ 530 static int mwl8k_request_fw(struct mwl8k_priv *priv, 531 const char *fname, const struct firmware **fw, 532 bool nowait) 533 { 534 /* release current image */ 535 if (*fw != NULL) 536 mwl8k_release_fw(fw); 537 538 if (nowait) 539 return request_firmware_nowait(THIS_MODULE, 1, fname, 540 &priv->pdev->dev, GFP_KERNEL, 541 priv, mwl8k_fw_state_machine); 542 else 543 return request_firmware(fw, fname, &priv->pdev->dev); 544 } 545 546 static int mwl8k_request_firmware(struct mwl8k_priv *priv, char *fw_image, 547 bool nowait) 548 { 549 struct mwl8k_device_info *di = priv->device_info; 550 int rc; 551 552 if (di->helper_image != NULL) { 553 if (nowait) 554 rc = mwl8k_request_fw(priv, di->helper_image, 555 &priv->fw_helper, true); 556 else 557 rc = mwl8k_request_fw(priv, di->helper_image, 558 &priv->fw_helper, false); 559 if (rc) 560 printk(KERN_ERR "%s: Error requesting helper fw %s\n", 561 pci_name(priv->pdev), di->helper_image); 562 563 if (rc || nowait) 564 return rc; 565 } 566 567 if (nowait) { 568 /* 569 * if we get here, no helper image is needed. Skip the 570 * FW_STATE_INIT state. 571 */ 572 priv->fw_state = FW_STATE_LOADING_PREF; 573 rc = mwl8k_request_fw(priv, fw_image, 574 &priv->fw_ucode, 575 true); 576 } else 577 rc = mwl8k_request_fw(priv, fw_image, 578 &priv->fw_ucode, false); 579 if (rc) { 580 printk(KERN_ERR "%s: Error requesting firmware file %s\n", 581 pci_name(priv->pdev), fw_image); 582 mwl8k_release_fw(&priv->fw_helper); 583 return rc; 584 } 585 586 return 0; 587 } 588 589 struct mwl8k_cmd_pkt { 590 /* New members MUST be added within the __struct_group() macro below. */ 591 __struct_group(mwl8k_cmd_pkt_hdr, hdr, __packed, 592 __le16 code; 593 __le16 length; 594 __u8 seq_num; 595 __u8 macid; 596 __le16 result; 597 ); 598 char payload[]; 599 } __packed; 600 static_assert(offsetof(struct mwl8k_cmd_pkt, payload) == sizeof(struct mwl8k_cmd_pkt_hdr), 601 "struct member likely outside of __struct_group()"); 602 603 /* 604 * Firmware loading. 605 */ 606 static int 607 mwl8k_send_fw_load_cmd(struct mwl8k_priv *priv, void *data, int length) 608 { 609 void __iomem *regs = priv->regs; 610 dma_addr_t dma_addr; 611 int loops; 612 613 dma_addr = dma_map_single(&priv->pdev->dev, data, length, 614 DMA_TO_DEVICE); 615 if (dma_mapping_error(&priv->pdev->dev, dma_addr)) 616 return -ENOMEM; 617 618 iowrite32(dma_addr, regs + MWL8K_HIU_GEN_PTR); 619 iowrite32(0, regs + MWL8K_HIU_INT_CODE); 620 iowrite32(MWL8K_H2A_INT_DOORBELL, 621 regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 622 iowrite32(MWL8K_H2A_INT_DUMMY, 623 regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 624 625 loops = 1000; 626 do { 627 u32 int_code; 628 if (priv->is_8764) { 629 int_code = ioread32(regs + 630 MWL8K_HIU_H2A_INTERRUPT_STATUS); 631 if (int_code == 0) 632 break; 633 } else { 634 int_code = ioread32(regs + MWL8K_HIU_INT_CODE); 635 if (int_code == MWL8K_INT_CODE_CMD_FINISHED) { 636 iowrite32(0, regs + MWL8K_HIU_INT_CODE); 637 break; 638 } 639 } 640 cond_resched(); 641 udelay(1); 642 } while (--loops); 643 644 dma_unmap_single(&priv->pdev->dev, dma_addr, length, DMA_TO_DEVICE); 645 646 return loops ? 0 : -ETIMEDOUT; 647 } 648 649 static int mwl8k_load_fw_image(struct mwl8k_priv *priv, 650 const u8 *data, size_t length) 651 { 652 struct mwl8k_cmd_pkt *cmd; 653 int done; 654 int rc = 0; 655 656 cmd = kmalloc(sizeof(*cmd) + 256, GFP_KERNEL); 657 if (cmd == NULL) 658 return -ENOMEM; 659 660 cmd->code = cpu_to_le16(MWL8K_CMD_CODE_DNLD); 661 cmd->seq_num = 0; 662 cmd->macid = 0; 663 cmd->result = 0; 664 665 done = 0; 666 while (length) { 667 int block_size = length > 256 ? 256 : length; 668 669 memcpy(cmd->payload, data + done, block_size); 670 cmd->length = cpu_to_le16(block_size); 671 672 rc = mwl8k_send_fw_load_cmd(priv, cmd, 673 sizeof(*cmd) + block_size); 674 if (rc) 675 break; 676 677 done += block_size; 678 length -= block_size; 679 } 680 681 if (!rc) { 682 cmd->length = 0; 683 rc = mwl8k_send_fw_load_cmd(priv, cmd, sizeof(*cmd)); 684 } 685 686 kfree(cmd); 687 688 return rc; 689 } 690 691 static int mwl8k_feed_fw_image(struct mwl8k_priv *priv, 692 const u8 *data, size_t length) 693 { 694 unsigned char *buffer; 695 int may_continue, rc = 0; 696 u32 done, prev_block_size; 697 698 buffer = kmalloc(1024, GFP_KERNEL); 699 if (buffer == NULL) 700 return -ENOMEM; 701 702 done = 0; 703 prev_block_size = 0; 704 may_continue = 1000; 705 while (may_continue > 0) { 706 u32 block_size; 707 708 block_size = ioread32(priv->regs + MWL8K_HIU_SCRATCH); 709 if (block_size & 1) { 710 block_size &= ~1; 711 may_continue--; 712 } else { 713 done += prev_block_size; 714 length -= prev_block_size; 715 } 716 717 if (block_size > 1024 || block_size > length) { 718 rc = -EOVERFLOW; 719 break; 720 } 721 722 if (length == 0) { 723 rc = 0; 724 break; 725 } 726 727 if (block_size == 0) { 728 rc = -EPROTO; 729 may_continue--; 730 udelay(1); 731 continue; 732 } 733 734 prev_block_size = block_size; 735 memcpy(buffer, data + done, block_size); 736 737 rc = mwl8k_send_fw_load_cmd(priv, buffer, block_size); 738 if (rc) 739 break; 740 } 741 742 if (!rc && length != 0) 743 rc = -EREMOTEIO; 744 745 kfree(buffer); 746 747 return rc; 748 } 749 750 static int mwl8k_load_firmware(struct ieee80211_hw *hw) 751 { 752 struct mwl8k_priv *priv = hw->priv; 753 const struct firmware *fw = priv->fw_ucode; 754 int rc; 755 int loops; 756 757 if (!memcmp(fw->data, "\x01\x00\x00\x00", 4) && !priv->is_8764) { 758 const struct firmware *helper = priv->fw_helper; 759 760 if (helper == NULL) { 761 printk(KERN_ERR "%s: helper image needed but none " 762 "given\n", pci_name(priv->pdev)); 763 return -EINVAL; 764 } 765 766 rc = mwl8k_load_fw_image(priv, helper->data, helper->size); 767 if (rc) { 768 printk(KERN_ERR "%s: unable to load firmware " 769 "helper image\n", pci_name(priv->pdev)); 770 return rc; 771 } 772 msleep(20); 773 774 rc = mwl8k_feed_fw_image(priv, fw->data, fw->size); 775 } else { 776 if (priv->is_8764) 777 rc = mwl8k_feed_fw_image(priv, fw->data, fw->size); 778 else 779 rc = mwl8k_load_fw_image(priv, fw->data, fw->size); 780 } 781 782 if (rc) { 783 printk(KERN_ERR "%s: unable to load firmware image\n", 784 pci_name(priv->pdev)); 785 return rc; 786 } 787 788 iowrite32(MWL8K_MODE_STA, priv->regs + MWL8K_HIU_GEN_PTR); 789 790 loops = 500000; 791 do { 792 u32 ready_code; 793 794 ready_code = ioread32(priv->regs + MWL8K_HIU_INT_CODE); 795 if (ready_code == MWL8K_FWAP_READY) { 796 priv->ap_fw = true; 797 break; 798 } else if (ready_code == MWL8K_FWSTA_READY) { 799 priv->ap_fw = false; 800 break; 801 } 802 803 cond_resched(); 804 udelay(1); 805 } while (--loops); 806 807 return loops ? 0 : -ETIMEDOUT; 808 } 809 810 811 /* DMA header used by firmware and hardware. */ 812 struct mwl8k_dma_data { 813 __le16 fwlen; 814 struct ieee80211_hdr wh; 815 char data[]; 816 } __packed __aligned(2); 817 818 /* Routines to add/remove DMA header from skb. */ 819 static inline void mwl8k_remove_dma_header(struct sk_buff *skb, __le16 qos) 820 { 821 struct mwl8k_dma_data *tr; 822 int hdrlen; 823 824 tr = (struct mwl8k_dma_data *)skb->data; 825 hdrlen = ieee80211_hdrlen(tr->wh.frame_control); 826 827 if (hdrlen != sizeof(tr->wh)) { 828 if (ieee80211_is_data_qos(tr->wh.frame_control)) { 829 memmove(tr->data - hdrlen, &tr->wh, hdrlen - 2); 830 *((__le16 *)(tr->data - 2)) = qos; 831 } else { 832 memmove(tr->data - hdrlen, &tr->wh, hdrlen); 833 } 834 } 835 836 if (hdrlen != sizeof(*tr)) 837 skb_pull(skb, sizeof(*tr) - hdrlen); 838 } 839 840 #define REDUCED_TX_HEADROOM 8 841 842 static void 843 mwl8k_add_dma_header(struct mwl8k_priv *priv, struct sk_buff *skb, 844 int head_pad, int tail_pad) 845 { 846 struct ieee80211_hdr *wh; 847 int hdrlen; 848 int reqd_hdrlen; 849 struct mwl8k_dma_data *tr; 850 851 /* 852 * Add a firmware DMA header; the firmware requires that we 853 * present a 2-byte payload length followed by a 4-address 854 * header (without QoS field), followed (optionally) by any 855 * WEP/ExtIV header (but only filled in for CCMP). 856 */ 857 wh = (struct ieee80211_hdr *)skb->data; 858 859 hdrlen = ieee80211_hdrlen(wh->frame_control); 860 861 /* 862 * Check if skb_resize is required because of 863 * tx_headroom adjustment. 864 */ 865 if (priv->ap_fw && (hdrlen < (sizeof(struct ieee80211_cts) 866 + REDUCED_TX_HEADROOM))) { 867 if (pskb_expand_head(skb, REDUCED_TX_HEADROOM, 0, GFP_ATOMIC)) { 868 869 wiphy_err(priv->hw->wiphy, 870 "Failed to reallocate TX buffer\n"); 871 return; 872 } 873 skb->truesize += REDUCED_TX_HEADROOM; 874 } 875 876 reqd_hdrlen = sizeof(*tr) + head_pad; 877 878 if (hdrlen != reqd_hdrlen) 879 skb_push(skb, reqd_hdrlen - hdrlen); 880 881 if (ieee80211_is_data_qos(wh->frame_control)) 882 hdrlen -= IEEE80211_QOS_CTL_LEN; 883 884 tr = (struct mwl8k_dma_data *)skb->data; 885 if (wh != &tr->wh) 886 memmove(&tr->wh, wh, hdrlen); 887 if (hdrlen != sizeof(tr->wh)) 888 memset(((void *)&tr->wh) + hdrlen, 0, sizeof(tr->wh) - hdrlen); 889 890 /* 891 * Firmware length is the length of the fully formed "802.11 892 * payload". That is, everything except for the 802.11 header. 893 * This includes all crypto material including the MIC. 894 */ 895 tr->fwlen = cpu_to_le16(skb->len - sizeof(*tr) + tail_pad); 896 } 897 898 static void mwl8k_encapsulate_tx_frame(struct mwl8k_priv *priv, 899 struct sk_buff *skb) 900 { 901 struct ieee80211_hdr *wh; 902 struct ieee80211_tx_info *tx_info; 903 struct ieee80211_key_conf *key_conf; 904 int data_pad; 905 int head_pad = 0; 906 907 wh = (struct ieee80211_hdr *)skb->data; 908 909 tx_info = IEEE80211_SKB_CB(skb); 910 911 key_conf = NULL; 912 if (ieee80211_is_data(wh->frame_control)) 913 key_conf = tx_info->control.hw_key; 914 915 /* 916 * Make sure the packet header is in the DMA header format (4-address 917 * without QoS), and add head & tail padding when HW crypto is enabled. 918 * 919 * We have the following trailer padding requirements: 920 * - WEP: 4 trailer bytes (ICV) 921 * - TKIP: 12 trailer bytes (8 MIC + 4 ICV) 922 * - CCMP: 8 trailer bytes (MIC) 923 */ 924 data_pad = 0; 925 if (key_conf != NULL) { 926 head_pad = key_conf->iv_len; 927 switch (key_conf->cipher) { 928 case WLAN_CIPHER_SUITE_WEP40: 929 case WLAN_CIPHER_SUITE_WEP104: 930 data_pad = 4; 931 break; 932 case WLAN_CIPHER_SUITE_TKIP: 933 data_pad = 12; 934 break; 935 case WLAN_CIPHER_SUITE_CCMP: 936 data_pad = 8; 937 break; 938 } 939 } 940 mwl8k_add_dma_header(priv, skb, head_pad, data_pad); 941 } 942 943 /* 944 * Packet reception for 88w8366/88w8764 AP firmware. 945 */ 946 struct mwl8k_rxd_ap { 947 __le16 pkt_len; 948 __u8 sq2; 949 __u8 rate; 950 __le32 pkt_phys_addr; 951 __le32 next_rxd_phys_addr; 952 __le16 qos_control; 953 __le16 htsig2; 954 __le32 hw_rssi_info; 955 __le32 hw_noise_floor_info; 956 __u8 noise_floor; 957 __u8 pad0[3]; 958 __u8 rssi; 959 __u8 rx_status; 960 __u8 channel; 961 __u8 rx_ctrl; 962 } __packed; 963 964 #define MWL8K_AP_RATE_INFO_MCS_FORMAT 0x80 965 #define MWL8K_AP_RATE_INFO_40MHZ 0x40 966 #define MWL8K_AP_RATE_INFO_RATEID(x) ((x) & 0x3f) 967 968 #define MWL8K_AP_RX_CTRL_OWNED_BY_HOST 0x80 969 970 /* 8366/8764 AP rx_status bits */ 971 #define MWL8K_AP_RXSTAT_DECRYPT_ERR_MASK 0x80 972 #define MWL8K_AP_RXSTAT_GENERAL_DECRYPT_ERR 0xFF 973 #define MWL8K_AP_RXSTAT_TKIP_DECRYPT_MIC_ERR 0x02 974 #define MWL8K_AP_RXSTAT_WEP_DECRYPT_ICV_ERR 0x04 975 #define MWL8K_AP_RXSTAT_TKIP_DECRYPT_ICV_ERR 0x08 976 977 static void mwl8k_rxd_ap_init(void *_rxd, dma_addr_t next_dma_addr) 978 { 979 struct mwl8k_rxd_ap *rxd = _rxd; 980 981 rxd->next_rxd_phys_addr = cpu_to_le32(next_dma_addr); 982 rxd->rx_ctrl = MWL8K_AP_RX_CTRL_OWNED_BY_HOST; 983 } 984 985 static void mwl8k_rxd_ap_refill(void *_rxd, dma_addr_t addr, int len) 986 { 987 struct mwl8k_rxd_ap *rxd = _rxd; 988 989 rxd->pkt_len = cpu_to_le16(len); 990 rxd->pkt_phys_addr = cpu_to_le32(addr); 991 wmb(); 992 rxd->rx_ctrl = 0; 993 } 994 995 static int 996 mwl8k_rxd_ap_process(void *_rxd, struct ieee80211_rx_status *status, 997 __le16 *qos, s8 *noise) 998 { 999 struct mwl8k_rxd_ap *rxd = _rxd; 1000 1001 if (!(rxd->rx_ctrl & MWL8K_AP_RX_CTRL_OWNED_BY_HOST)) 1002 return -1; 1003 rmb(); 1004 1005 memset(status, 0, sizeof(*status)); 1006 1007 status->signal = -rxd->rssi; 1008 *noise = -rxd->noise_floor; 1009 1010 if (rxd->rate & MWL8K_AP_RATE_INFO_MCS_FORMAT) { 1011 status->encoding = RX_ENC_HT; 1012 if (rxd->rate & MWL8K_AP_RATE_INFO_40MHZ) 1013 status->bw = RATE_INFO_BW_40; 1014 status->rate_idx = MWL8K_AP_RATE_INFO_RATEID(rxd->rate); 1015 } else { 1016 int i; 1017 1018 for (i = 0; i < ARRAY_SIZE(mwl8k_rates_24); i++) { 1019 if (mwl8k_rates_24[i].hw_value == rxd->rate) { 1020 status->rate_idx = i; 1021 break; 1022 } 1023 } 1024 } 1025 1026 if (rxd->channel > 14) { 1027 status->band = NL80211_BAND_5GHZ; 1028 if (!(status->encoding == RX_ENC_HT) && 1029 status->rate_idx >= MWL8K_LEGACY_5G_RATE_OFFSET) 1030 status->rate_idx -= MWL8K_LEGACY_5G_RATE_OFFSET; 1031 } else { 1032 status->band = NL80211_BAND_2GHZ; 1033 } 1034 status->freq = ieee80211_channel_to_frequency(rxd->channel, 1035 status->band); 1036 1037 *qos = rxd->qos_control; 1038 1039 if ((rxd->rx_status != MWL8K_AP_RXSTAT_GENERAL_DECRYPT_ERR) && 1040 (rxd->rx_status & MWL8K_AP_RXSTAT_DECRYPT_ERR_MASK) && 1041 (rxd->rx_status & MWL8K_AP_RXSTAT_TKIP_DECRYPT_MIC_ERR)) 1042 status->flag |= RX_FLAG_MMIC_ERROR; 1043 1044 return le16_to_cpu(rxd->pkt_len); 1045 } 1046 1047 static struct rxd_ops rxd_ap_ops = { 1048 .rxd_size = sizeof(struct mwl8k_rxd_ap), 1049 .rxd_init = mwl8k_rxd_ap_init, 1050 .rxd_refill = mwl8k_rxd_ap_refill, 1051 .rxd_process = mwl8k_rxd_ap_process, 1052 }; 1053 1054 /* 1055 * Packet reception for STA firmware. 1056 */ 1057 struct mwl8k_rxd_sta { 1058 __le16 pkt_len; 1059 __u8 link_quality; 1060 __u8 noise_level; 1061 __le32 pkt_phys_addr; 1062 __le32 next_rxd_phys_addr; 1063 __le16 qos_control; 1064 __le16 rate_info; 1065 __le32 pad0[4]; 1066 __u8 rssi; 1067 __u8 channel; 1068 __le16 pad1; 1069 __u8 rx_ctrl; 1070 __u8 rx_status; 1071 __u8 pad2[2]; 1072 } __packed; 1073 1074 #define MWL8K_STA_RATE_INFO_SHORTPRE 0x8000 1075 #define MWL8K_STA_RATE_INFO_ANTSELECT(x) (((x) >> 11) & 0x3) 1076 #define MWL8K_STA_RATE_INFO_RATEID(x) (((x) >> 3) & 0x3f) 1077 #define MWL8K_STA_RATE_INFO_40MHZ 0x0004 1078 #define MWL8K_STA_RATE_INFO_SHORTGI 0x0002 1079 #define MWL8K_STA_RATE_INFO_MCS_FORMAT 0x0001 1080 1081 #define MWL8K_STA_RX_CTRL_OWNED_BY_HOST 0x02 1082 #define MWL8K_STA_RX_CTRL_DECRYPT_ERROR 0x04 1083 /* ICV=0 or MIC=1 */ 1084 #define MWL8K_STA_RX_CTRL_DEC_ERR_TYPE 0x08 1085 /* Key is uploaded only in failure case */ 1086 #define MWL8K_STA_RX_CTRL_KEY_INDEX 0x30 1087 1088 static void mwl8k_rxd_sta_init(void *_rxd, dma_addr_t next_dma_addr) 1089 { 1090 struct mwl8k_rxd_sta *rxd = _rxd; 1091 1092 rxd->next_rxd_phys_addr = cpu_to_le32(next_dma_addr); 1093 rxd->rx_ctrl = MWL8K_STA_RX_CTRL_OWNED_BY_HOST; 1094 } 1095 1096 static void mwl8k_rxd_sta_refill(void *_rxd, dma_addr_t addr, int len) 1097 { 1098 struct mwl8k_rxd_sta *rxd = _rxd; 1099 1100 rxd->pkt_len = cpu_to_le16(len); 1101 rxd->pkt_phys_addr = cpu_to_le32(addr); 1102 wmb(); 1103 rxd->rx_ctrl = 0; 1104 } 1105 1106 static int 1107 mwl8k_rxd_sta_process(void *_rxd, struct ieee80211_rx_status *status, 1108 __le16 *qos, s8 *noise) 1109 { 1110 struct mwl8k_rxd_sta *rxd = _rxd; 1111 u16 rate_info; 1112 1113 if (!(rxd->rx_ctrl & MWL8K_STA_RX_CTRL_OWNED_BY_HOST)) 1114 return -1; 1115 rmb(); 1116 1117 rate_info = le16_to_cpu(rxd->rate_info); 1118 1119 memset(status, 0, sizeof(*status)); 1120 1121 status->signal = -rxd->rssi; 1122 *noise = -rxd->noise_level; 1123 status->antenna = MWL8K_STA_RATE_INFO_ANTSELECT(rate_info); 1124 status->rate_idx = MWL8K_STA_RATE_INFO_RATEID(rate_info); 1125 1126 if (rate_info & MWL8K_STA_RATE_INFO_SHORTPRE) 1127 status->enc_flags |= RX_ENC_FLAG_SHORTPRE; 1128 if (rate_info & MWL8K_STA_RATE_INFO_40MHZ) 1129 status->bw = RATE_INFO_BW_40; 1130 if (rate_info & MWL8K_STA_RATE_INFO_SHORTGI) 1131 status->enc_flags |= RX_ENC_FLAG_SHORT_GI; 1132 if (rate_info & MWL8K_STA_RATE_INFO_MCS_FORMAT) 1133 status->encoding = RX_ENC_HT; 1134 1135 if (rxd->channel > 14) { 1136 status->band = NL80211_BAND_5GHZ; 1137 if (!(status->encoding == RX_ENC_HT) && 1138 status->rate_idx >= MWL8K_LEGACY_5G_RATE_OFFSET) 1139 status->rate_idx -= MWL8K_LEGACY_5G_RATE_OFFSET; 1140 } else { 1141 status->band = NL80211_BAND_2GHZ; 1142 } 1143 status->freq = ieee80211_channel_to_frequency(rxd->channel, 1144 status->band); 1145 1146 *qos = rxd->qos_control; 1147 if ((rxd->rx_ctrl & MWL8K_STA_RX_CTRL_DECRYPT_ERROR) && 1148 (rxd->rx_ctrl & MWL8K_STA_RX_CTRL_DEC_ERR_TYPE)) 1149 status->flag |= RX_FLAG_MMIC_ERROR; 1150 1151 return le16_to_cpu(rxd->pkt_len); 1152 } 1153 1154 static struct rxd_ops rxd_sta_ops = { 1155 .rxd_size = sizeof(struct mwl8k_rxd_sta), 1156 .rxd_init = mwl8k_rxd_sta_init, 1157 .rxd_refill = mwl8k_rxd_sta_refill, 1158 .rxd_process = mwl8k_rxd_sta_process, 1159 }; 1160 1161 1162 #define MWL8K_RX_DESCS 256 1163 #define MWL8K_RX_MAXSZ 3800 1164 1165 static int mwl8k_rxq_init(struct ieee80211_hw *hw, int index) 1166 { 1167 struct mwl8k_priv *priv = hw->priv; 1168 struct mwl8k_rx_queue *rxq = priv->rxq + index; 1169 int size; 1170 int i; 1171 1172 rxq->rxd_count = 0; 1173 rxq->head = 0; 1174 rxq->tail = 0; 1175 1176 size = MWL8K_RX_DESCS * priv->rxd_ops->rxd_size; 1177 1178 rxq->rxd = dma_alloc_coherent(&priv->pdev->dev, size, &rxq->rxd_dma, 1179 GFP_KERNEL); 1180 if (rxq->rxd == NULL) { 1181 wiphy_err(hw->wiphy, "failed to alloc RX descriptors\n"); 1182 return -ENOMEM; 1183 } 1184 1185 rxq->buf = kcalloc(MWL8K_RX_DESCS, sizeof(*rxq->buf), GFP_KERNEL); 1186 if (rxq->buf == NULL) { 1187 dma_free_coherent(&priv->pdev->dev, size, rxq->rxd, 1188 rxq->rxd_dma); 1189 return -ENOMEM; 1190 } 1191 1192 for (i = 0; i < MWL8K_RX_DESCS; i++) { 1193 int desc_size; 1194 void *rxd; 1195 int nexti; 1196 dma_addr_t next_dma_addr; 1197 1198 desc_size = priv->rxd_ops->rxd_size; 1199 rxd = rxq->rxd + (i * priv->rxd_ops->rxd_size); 1200 1201 nexti = i + 1; 1202 if (nexti == MWL8K_RX_DESCS) 1203 nexti = 0; 1204 next_dma_addr = rxq->rxd_dma + (nexti * desc_size); 1205 1206 priv->rxd_ops->rxd_init(rxd, next_dma_addr); 1207 } 1208 1209 return 0; 1210 } 1211 1212 static int rxq_refill(struct ieee80211_hw *hw, int index, int limit) 1213 { 1214 struct mwl8k_priv *priv = hw->priv; 1215 struct mwl8k_rx_queue *rxq = priv->rxq + index; 1216 int refilled = 0; 1217 1218 while (rxq->rxd_count < MWL8K_RX_DESCS && limit--) { 1219 struct sk_buff *skb; 1220 dma_addr_t addr; 1221 int rx; 1222 void *rxd; 1223 1224 skb = dev_alloc_skb(MWL8K_RX_MAXSZ); 1225 if (skb == NULL) 1226 break; 1227 1228 addr = dma_map_single(&priv->pdev->dev, skb->data, 1229 MWL8K_RX_MAXSZ, DMA_FROM_DEVICE); 1230 1231 rxq->rxd_count++; 1232 rx = rxq->tail++; 1233 if (rxq->tail == MWL8K_RX_DESCS) 1234 rxq->tail = 0; 1235 rxq->buf[rx].skb = skb; 1236 dma_unmap_addr_set(&rxq->buf[rx], dma, addr); 1237 1238 rxd = rxq->rxd + (rx * priv->rxd_ops->rxd_size); 1239 priv->rxd_ops->rxd_refill(rxd, addr, MWL8K_RX_MAXSZ); 1240 1241 refilled++; 1242 } 1243 1244 return refilled; 1245 } 1246 1247 /* Must be called only when the card's reception is completely halted */ 1248 static void mwl8k_rxq_deinit(struct ieee80211_hw *hw, int index) 1249 { 1250 struct mwl8k_priv *priv = hw->priv; 1251 struct mwl8k_rx_queue *rxq = priv->rxq + index; 1252 int i; 1253 1254 if (rxq->rxd == NULL) 1255 return; 1256 1257 for (i = 0; i < MWL8K_RX_DESCS; i++) { 1258 if (rxq->buf[i].skb != NULL) { 1259 dma_unmap_single(&priv->pdev->dev, 1260 dma_unmap_addr(&rxq->buf[i], dma), 1261 MWL8K_RX_MAXSZ, DMA_FROM_DEVICE); 1262 dma_unmap_addr_set(&rxq->buf[i], dma, 0); 1263 1264 kfree_skb(rxq->buf[i].skb); 1265 rxq->buf[i].skb = NULL; 1266 } 1267 } 1268 1269 kfree(rxq->buf); 1270 rxq->buf = NULL; 1271 1272 dma_free_coherent(&priv->pdev->dev, 1273 MWL8K_RX_DESCS * priv->rxd_ops->rxd_size, rxq->rxd, 1274 rxq->rxd_dma); 1275 rxq->rxd = NULL; 1276 } 1277 1278 1279 /* 1280 * Scan a list of BSSIDs to process for finalize join. 1281 * Allows for extension to process multiple BSSIDs. 1282 */ 1283 static inline int 1284 mwl8k_capture_bssid(struct mwl8k_priv *priv, struct ieee80211_hdr *wh) 1285 { 1286 return priv->capture_beacon && 1287 ieee80211_is_beacon(wh->frame_control) && 1288 ether_addr_equal_64bits(wh->addr3, priv->capture_bssid); 1289 } 1290 1291 static inline void mwl8k_save_beacon(struct ieee80211_hw *hw, 1292 struct sk_buff *skb) 1293 { 1294 struct mwl8k_priv *priv = hw->priv; 1295 1296 priv->capture_beacon = false; 1297 eth_zero_addr(priv->capture_bssid); 1298 1299 /* 1300 * Use GFP_ATOMIC as rxq_process is called from 1301 * the primary interrupt handler, memory allocation call 1302 * must not sleep. 1303 */ 1304 priv->beacon_skb = skb_copy(skb, GFP_ATOMIC); 1305 if (priv->beacon_skb != NULL) 1306 ieee80211_queue_work(hw, &priv->finalize_join_worker); 1307 } 1308 1309 static inline struct mwl8k_vif *mwl8k_find_vif_bss(struct list_head *vif_list, 1310 u8 *bssid) 1311 { 1312 struct mwl8k_vif *mwl8k_vif; 1313 1314 list_for_each_entry(mwl8k_vif, 1315 vif_list, list) { 1316 if (memcmp(bssid, mwl8k_vif->bssid, 1317 ETH_ALEN) == 0) 1318 return mwl8k_vif; 1319 } 1320 1321 return NULL; 1322 } 1323 1324 static int rxq_process(struct ieee80211_hw *hw, int index, int limit) 1325 { 1326 struct mwl8k_priv *priv = hw->priv; 1327 struct mwl8k_vif *mwl8k_vif = NULL; 1328 struct mwl8k_rx_queue *rxq = priv->rxq + index; 1329 int processed; 1330 1331 processed = 0; 1332 while (rxq->rxd_count && limit--) { 1333 struct sk_buff *skb; 1334 void *rxd; 1335 int pkt_len; 1336 struct ieee80211_rx_status status; 1337 struct ieee80211_hdr *wh; 1338 __le16 qos; 1339 1340 skb = rxq->buf[rxq->head].skb; 1341 if (skb == NULL) 1342 break; 1343 1344 rxd = rxq->rxd + (rxq->head * priv->rxd_ops->rxd_size); 1345 1346 pkt_len = priv->rxd_ops->rxd_process(rxd, &status, &qos, 1347 &priv->noise); 1348 if (pkt_len < 0) 1349 break; 1350 1351 rxq->buf[rxq->head].skb = NULL; 1352 1353 dma_unmap_single(&priv->pdev->dev, 1354 dma_unmap_addr(&rxq->buf[rxq->head], dma), 1355 MWL8K_RX_MAXSZ, DMA_FROM_DEVICE); 1356 dma_unmap_addr_set(&rxq->buf[rxq->head], dma, 0); 1357 1358 rxq->head++; 1359 if (rxq->head == MWL8K_RX_DESCS) 1360 rxq->head = 0; 1361 1362 rxq->rxd_count--; 1363 1364 wh = &((struct mwl8k_dma_data *)skb->data)->wh; 1365 1366 /* 1367 * Check for a pending join operation. Save a 1368 * copy of the beacon and schedule a tasklet to 1369 * send a FINALIZE_JOIN command to the firmware. 1370 */ 1371 if (mwl8k_capture_bssid(priv, (void *)skb->data)) 1372 mwl8k_save_beacon(hw, skb); 1373 1374 if (ieee80211_has_protected(wh->frame_control)) { 1375 1376 /* Check if hw crypto has been enabled for 1377 * this bss. If yes, set the status flags 1378 * accordingly 1379 */ 1380 mwl8k_vif = mwl8k_find_vif_bss(&priv->vif_list, 1381 wh->addr1); 1382 1383 if (mwl8k_vif != NULL && 1384 mwl8k_vif->is_hw_crypto_enabled) { 1385 /* 1386 * When MMIC ERROR is encountered 1387 * by the firmware, payload is 1388 * dropped and only 32 bytes of 1389 * mwl8k Firmware header is sent 1390 * to the host. 1391 * 1392 * We need to add four bytes of 1393 * key information. In it 1394 * MAC80211 expects keyidx set to 1395 * 0 for triggering Counter 1396 * Measure of MMIC failure. 1397 */ 1398 if (status.flag & RX_FLAG_MMIC_ERROR) { 1399 struct mwl8k_dma_data *tr; 1400 tr = (struct mwl8k_dma_data *)skb->data; 1401 memset((void *)&(tr->data), 0, 4); 1402 pkt_len += 4; 1403 } 1404 1405 if (!ieee80211_is_auth(wh->frame_control)) 1406 status.flag |= RX_FLAG_IV_STRIPPED | 1407 RX_FLAG_DECRYPTED | 1408 RX_FLAG_MMIC_STRIPPED; 1409 } 1410 } 1411 1412 skb_put(skb, pkt_len); 1413 mwl8k_remove_dma_header(skb, qos); 1414 memcpy(IEEE80211_SKB_RXCB(skb), &status, sizeof(status)); 1415 ieee80211_rx_irqsafe(hw, skb); 1416 1417 processed++; 1418 } 1419 1420 return processed; 1421 } 1422 1423 1424 /* 1425 * Packet transmission. 1426 */ 1427 1428 #define MWL8K_TXD_STATUS_OK 0x00000001 1429 #define MWL8K_TXD_STATUS_OK_RETRY 0x00000002 1430 #define MWL8K_TXD_STATUS_OK_MORE_RETRY 0x00000004 1431 #define MWL8K_TXD_STATUS_MULTICAST_TX 0x00000008 1432 #define MWL8K_TXD_STATUS_FW_OWNED 0x80000000 1433 1434 #define MWL8K_QOS_QLEN_UNSPEC 0xff00 1435 #define MWL8K_QOS_ACK_POLICY_MASK 0x0060 1436 #define MWL8K_QOS_ACK_POLICY_NORMAL 0x0000 1437 #define MWL8K_QOS_ACK_POLICY_BLOCKACK 0x0060 1438 #define MWL8K_QOS_EOSP 0x0010 1439 1440 struct mwl8k_tx_desc { 1441 __le32 status; 1442 __u8 data_rate; 1443 __u8 tx_priority; 1444 __le16 qos_control; 1445 __le32 pkt_phys_addr; 1446 __le16 pkt_len; 1447 __u8 dest_MAC_addr[ETH_ALEN]; 1448 __le32 next_txd_phys_addr; 1449 __le32 timestamp; 1450 __le16 rate_info; 1451 __u8 peer_id; 1452 __u8 tx_frag_cnt; 1453 } __packed; 1454 1455 #define MWL8K_TX_DESCS 128 1456 1457 static int mwl8k_txq_init(struct ieee80211_hw *hw, int index) 1458 { 1459 struct mwl8k_priv *priv = hw->priv; 1460 struct mwl8k_tx_queue *txq = priv->txq + index; 1461 int size; 1462 int i; 1463 1464 txq->len = 0; 1465 txq->head = 0; 1466 txq->tail = 0; 1467 1468 size = MWL8K_TX_DESCS * sizeof(struct mwl8k_tx_desc); 1469 1470 txq->txd = dma_alloc_coherent(&priv->pdev->dev, size, &txq->txd_dma, 1471 GFP_KERNEL); 1472 if (txq->txd == NULL) { 1473 wiphy_err(hw->wiphy, "failed to alloc TX descriptors\n"); 1474 return -ENOMEM; 1475 } 1476 1477 txq->skb = kcalloc(MWL8K_TX_DESCS, sizeof(*txq->skb), GFP_KERNEL); 1478 if (txq->skb == NULL) { 1479 dma_free_coherent(&priv->pdev->dev, size, txq->txd, 1480 txq->txd_dma); 1481 txq->txd = NULL; 1482 return -ENOMEM; 1483 } 1484 1485 for (i = 0; i < MWL8K_TX_DESCS; i++) { 1486 struct mwl8k_tx_desc *tx_desc; 1487 int nexti; 1488 1489 tx_desc = txq->txd + i; 1490 nexti = (i + 1) % MWL8K_TX_DESCS; 1491 1492 tx_desc->status = 0; 1493 tx_desc->next_txd_phys_addr = 1494 cpu_to_le32(txq->txd_dma + nexti * sizeof(*tx_desc)); 1495 } 1496 1497 return 0; 1498 } 1499 1500 static inline void mwl8k_tx_start(struct mwl8k_priv *priv) 1501 { 1502 iowrite32(MWL8K_H2A_INT_PPA_READY, 1503 priv->regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 1504 iowrite32(MWL8K_H2A_INT_DUMMY, 1505 priv->regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 1506 ioread32(priv->regs + MWL8K_HIU_INT_CODE); 1507 } 1508 1509 static void mwl8k_dump_tx_rings(struct ieee80211_hw *hw) 1510 { 1511 struct mwl8k_priv *priv = hw->priv; 1512 int i; 1513 1514 for (i = 0; i < mwl8k_tx_queues(priv); i++) { 1515 struct mwl8k_tx_queue *txq = priv->txq + i; 1516 int fw_owned = 0; 1517 int drv_owned = 0; 1518 int unused = 0; 1519 int desc; 1520 1521 for (desc = 0; desc < MWL8K_TX_DESCS; desc++) { 1522 struct mwl8k_tx_desc *tx_desc = txq->txd + desc; 1523 u32 status; 1524 1525 status = le32_to_cpu(tx_desc->status); 1526 if (status & MWL8K_TXD_STATUS_FW_OWNED) 1527 fw_owned++; 1528 else 1529 drv_owned++; 1530 1531 if (tx_desc->pkt_len == 0) 1532 unused++; 1533 } 1534 1535 wiphy_err(hw->wiphy, 1536 "txq[%d] len=%d head=%d tail=%d " 1537 "fw_owned=%d drv_owned=%d unused=%d\n", 1538 i, 1539 txq->len, txq->head, txq->tail, 1540 fw_owned, drv_owned, unused); 1541 } 1542 } 1543 1544 /* 1545 * Must be called with priv->fw_mutex held and tx queues stopped. 1546 */ 1547 #define MWL8K_TX_WAIT_TIMEOUT_MS 5000 1548 1549 static int mwl8k_tx_wait_empty(struct ieee80211_hw *hw) 1550 { 1551 struct mwl8k_priv *priv = hw->priv; 1552 DECLARE_COMPLETION_ONSTACK(tx_wait); 1553 int retry; 1554 int rc; 1555 1556 might_sleep(); 1557 1558 /* Since fw restart is in progress, allow only the firmware 1559 * commands from the restart code and block the other 1560 * commands since they are going to fail in any case since 1561 * the firmware has crashed 1562 */ 1563 if (priv->hw_restart_in_progress) { 1564 if (priv->hw_restart_owner == current) 1565 return 0; 1566 else 1567 return -EBUSY; 1568 } 1569 1570 if (atomic_read(&priv->watchdog_event_pending)) 1571 return 0; 1572 1573 /* 1574 * The TX queues are stopped at this point, so this test 1575 * doesn't need to take ->tx_lock. 1576 */ 1577 if (!priv->pending_tx_pkts) 1578 return 0; 1579 1580 retry = 1; 1581 rc = 0; 1582 1583 spin_lock_bh(&priv->tx_lock); 1584 priv->tx_wait = &tx_wait; 1585 while (!rc) { 1586 int oldcount; 1587 unsigned long timeout; 1588 1589 oldcount = priv->pending_tx_pkts; 1590 1591 spin_unlock_bh(&priv->tx_lock); 1592 timeout = wait_for_completion_timeout(&tx_wait, 1593 msecs_to_jiffies(MWL8K_TX_WAIT_TIMEOUT_MS)); 1594 1595 if (atomic_read(&priv->watchdog_event_pending)) { 1596 spin_lock_bh(&priv->tx_lock); 1597 priv->tx_wait = NULL; 1598 spin_unlock_bh(&priv->tx_lock); 1599 return 0; 1600 } 1601 1602 spin_lock_bh(&priv->tx_lock); 1603 1604 if (timeout || !priv->pending_tx_pkts) { 1605 WARN_ON(priv->pending_tx_pkts); 1606 if (retry) 1607 wiphy_notice(hw->wiphy, "tx rings drained\n"); 1608 break; 1609 } 1610 1611 if (retry) { 1612 mwl8k_tx_start(priv); 1613 retry = 0; 1614 continue; 1615 } 1616 1617 if (priv->pending_tx_pkts < oldcount) { 1618 wiphy_notice(hw->wiphy, 1619 "waiting for tx rings to drain (%d -> %d pkts)\n", 1620 oldcount, priv->pending_tx_pkts); 1621 retry = 1; 1622 continue; 1623 } 1624 1625 priv->tx_wait = NULL; 1626 1627 wiphy_err(hw->wiphy, "tx rings stuck for %d ms\n", 1628 MWL8K_TX_WAIT_TIMEOUT_MS); 1629 mwl8k_dump_tx_rings(hw); 1630 priv->hw_restart_in_progress = true; 1631 ieee80211_queue_work(hw, &priv->fw_reload); 1632 1633 rc = -ETIMEDOUT; 1634 } 1635 priv->tx_wait = NULL; 1636 spin_unlock_bh(&priv->tx_lock); 1637 1638 return rc; 1639 } 1640 1641 #define MWL8K_TXD_SUCCESS(status) \ 1642 ((status) & (MWL8K_TXD_STATUS_OK | \ 1643 MWL8K_TXD_STATUS_OK_RETRY | \ 1644 MWL8K_TXD_STATUS_OK_MORE_RETRY)) 1645 1646 static int mwl8k_tid_queue_mapping(u8 tid) 1647 { 1648 BUG_ON(tid > 7); 1649 1650 switch (tid) { 1651 case 0: 1652 case 3: 1653 return IEEE80211_AC_BE; 1654 case 1: 1655 case 2: 1656 return IEEE80211_AC_BK; 1657 case 4: 1658 case 5: 1659 return IEEE80211_AC_VI; 1660 case 6: 1661 case 7: 1662 return IEEE80211_AC_VO; 1663 default: 1664 return -1; 1665 } 1666 } 1667 1668 /* The firmware will fill in the rate information 1669 * for each packet that gets queued in the hardware 1670 * and these macros will interpret that info. 1671 */ 1672 1673 #define RI_FORMAT(a) (a & 0x0001) 1674 #define RI_RATE_ID_MCS(a) ((a & 0x01f8) >> 3) 1675 1676 static int 1677 mwl8k_txq_reclaim(struct ieee80211_hw *hw, int index, int limit, int force) 1678 { 1679 struct mwl8k_priv *priv = hw->priv; 1680 struct mwl8k_tx_queue *txq = priv->txq + index; 1681 int processed; 1682 1683 processed = 0; 1684 while (txq->len > 0 && limit--) { 1685 int tx; 1686 struct mwl8k_tx_desc *tx_desc; 1687 unsigned long addr; 1688 int size; 1689 struct sk_buff *skb; 1690 struct ieee80211_tx_info *info; 1691 u32 status; 1692 struct ieee80211_sta *sta; 1693 struct mwl8k_sta *sta_info = NULL; 1694 u16 rate_info; 1695 struct ieee80211_hdr *wh; 1696 1697 tx = txq->head; 1698 tx_desc = txq->txd + tx; 1699 1700 status = le32_to_cpu(tx_desc->status); 1701 1702 if (status & MWL8K_TXD_STATUS_FW_OWNED) { 1703 if (!force) 1704 break; 1705 tx_desc->status &= 1706 ~cpu_to_le32(MWL8K_TXD_STATUS_FW_OWNED); 1707 } 1708 1709 txq->head = (tx + 1) % MWL8K_TX_DESCS; 1710 BUG_ON(txq->len == 0); 1711 txq->len--; 1712 priv->pending_tx_pkts--; 1713 1714 addr = le32_to_cpu(tx_desc->pkt_phys_addr); 1715 size = le16_to_cpu(tx_desc->pkt_len); 1716 skb = txq->skb[tx]; 1717 txq->skb[tx] = NULL; 1718 1719 BUG_ON(skb == NULL); 1720 dma_unmap_single(&priv->pdev->dev, addr, size, DMA_TO_DEVICE); 1721 1722 mwl8k_remove_dma_header(skb, tx_desc->qos_control); 1723 1724 wh = (struct ieee80211_hdr *) skb->data; 1725 1726 /* Mark descriptor as unused */ 1727 tx_desc->pkt_phys_addr = 0; 1728 tx_desc->pkt_len = 0; 1729 1730 info = IEEE80211_SKB_CB(skb); 1731 if (ieee80211_is_data(wh->frame_control)) { 1732 rcu_read_lock(); 1733 sta = ieee80211_find_sta_by_ifaddr(hw, wh->addr1, 1734 wh->addr2); 1735 if (sta) { 1736 sta_info = MWL8K_STA(sta); 1737 BUG_ON(sta_info == NULL); 1738 rate_info = le16_to_cpu(tx_desc->rate_info); 1739 /* If rate is < 6.5 Mpbs for an ht station 1740 * do not form an ampdu. If the station is a 1741 * legacy station (format = 0), do not form an 1742 * ampdu 1743 */ 1744 if (RI_RATE_ID_MCS(rate_info) < 1 || 1745 RI_FORMAT(rate_info) == 0) { 1746 sta_info->is_ampdu_allowed = false; 1747 } else { 1748 sta_info->is_ampdu_allowed = true; 1749 } 1750 } 1751 rcu_read_unlock(); 1752 } 1753 1754 ieee80211_tx_info_clear_status(info); 1755 1756 /* Rate control is happening in the firmware. 1757 * Ensure no tx rate is being reported. 1758 */ 1759 info->status.rates[0].idx = -1; 1760 info->status.rates[0].count = 1; 1761 1762 if (MWL8K_TXD_SUCCESS(status)) 1763 info->flags |= IEEE80211_TX_STAT_ACK; 1764 1765 ieee80211_tx_status_irqsafe(hw, skb); 1766 1767 processed++; 1768 } 1769 1770 return processed; 1771 } 1772 1773 /* must be called only when the card's transmit is completely halted */ 1774 static void mwl8k_txq_deinit(struct ieee80211_hw *hw, int index) 1775 { 1776 struct mwl8k_priv *priv = hw->priv; 1777 struct mwl8k_tx_queue *txq = priv->txq + index; 1778 1779 if (txq->txd == NULL) 1780 return; 1781 1782 mwl8k_txq_reclaim(hw, index, INT_MAX, 1); 1783 1784 kfree(txq->skb); 1785 txq->skb = NULL; 1786 1787 dma_free_coherent(&priv->pdev->dev, 1788 MWL8K_TX_DESCS * sizeof(struct mwl8k_tx_desc), 1789 txq->txd, txq->txd_dma); 1790 txq->txd = NULL; 1791 } 1792 1793 /* caller must hold priv->stream_lock when calling the stream functions */ 1794 static struct mwl8k_ampdu_stream * 1795 mwl8k_add_stream(struct ieee80211_hw *hw, struct ieee80211_sta *sta, u8 tid) 1796 { 1797 struct mwl8k_ampdu_stream *stream; 1798 struct mwl8k_priv *priv = hw->priv; 1799 int i; 1800 1801 for (i = 0; i < MWL8K_NUM_AMPDU_STREAMS; i++) { 1802 stream = &priv->ampdu[i]; 1803 if (stream->state == AMPDU_NO_STREAM) { 1804 stream->sta = sta; 1805 stream->state = AMPDU_STREAM_NEW; 1806 stream->tid = tid; 1807 stream->idx = i; 1808 wiphy_debug(hw->wiphy, "Added a new stream for %pM %d", 1809 sta->addr, tid); 1810 return stream; 1811 } 1812 } 1813 return NULL; 1814 } 1815 1816 static int 1817 mwl8k_start_stream(struct ieee80211_hw *hw, struct mwl8k_ampdu_stream *stream) 1818 { 1819 int ret; 1820 1821 /* if the stream has already been started, don't start it again */ 1822 if (stream->state != AMPDU_STREAM_NEW) 1823 return 0; 1824 ret = ieee80211_start_tx_ba_session(stream->sta, stream->tid, 0); 1825 if (ret) 1826 wiphy_debug(hw->wiphy, "Failed to start stream for %pM %d: " 1827 "%d\n", stream->sta->addr, stream->tid, ret); 1828 else 1829 wiphy_debug(hw->wiphy, "Started stream for %pM %d\n", 1830 stream->sta->addr, stream->tid); 1831 return ret; 1832 } 1833 1834 static void 1835 mwl8k_remove_stream(struct ieee80211_hw *hw, struct mwl8k_ampdu_stream *stream) 1836 { 1837 wiphy_debug(hw->wiphy, "Remove stream for %pM %d\n", stream->sta->addr, 1838 stream->tid); 1839 memset(stream, 0, sizeof(*stream)); 1840 } 1841 1842 static struct mwl8k_ampdu_stream * 1843 mwl8k_lookup_stream(struct ieee80211_hw *hw, u8 *addr, u8 tid) 1844 { 1845 struct mwl8k_priv *priv = hw->priv; 1846 int i; 1847 1848 for (i = 0; i < MWL8K_NUM_AMPDU_STREAMS; i++) { 1849 struct mwl8k_ampdu_stream *stream; 1850 stream = &priv->ampdu[i]; 1851 if (stream->state == AMPDU_NO_STREAM) 1852 continue; 1853 if (!memcmp(stream->sta->addr, addr, ETH_ALEN) && 1854 stream->tid == tid) 1855 return stream; 1856 } 1857 return NULL; 1858 } 1859 1860 #define MWL8K_AMPDU_PACKET_THRESHOLD 64 1861 static inline bool mwl8k_ampdu_allowed(struct ieee80211_sta *sta, u8 tid) 1862 { 1863 struct mwl8k_sta *sta_info = MWL8K_STA(sta); 1864 struct tx_traffic_info *tx_stats; 1865 1866 BUG_ON(tid >= MWL8K_MAX_TID); 1867 tx_stats = &sta_info->tx_stats[tid]; 1868 1869 return sta_info->is_ampdu_allowed && 1870 tx_stats->pkts > MWL8K_AMPDU_PACKET_THRESHOLD; 1871 } 1872 1873 static inline void mwl8k_tx_count_packet(struct ieee80211_sta *sta, u8 tid) 1874 { 1875 struct mwl8k_sta *sta_info = MWL8K_STA(sta); 1876 struct tx_traffic_info *tx_stats; 1877 1878 BUG_ON(tid >= MWL8K_MAX_TID); 1879 tx_stats = &sta_info->tx_stats[tid]; 1880 1881 if (tx_stats->start_time == 0) 1882 tx_stats->start_time = jiffies; 1883 1884 /* reset the packet count after each second elapses. If the number of 1885 * packets ever exceeds the ampdu_min_traffic threshold, we will allow 1886 * an ampdu stream to be started. 1887 */ 1888 if (time_after(jiffies, (unsigned long)tx_stats->start_time + HZ)) { 1889 tx_stats->pkts = 0; 1890 tx_stats->start_time = 0; 1891 } else 1892 tx_stats->pkts++; 1893 } 1894 1895 /* The hardware ampdu queues start from 5. 1896 * txpriorities for ampdu queues are 1897 * 5 6 7 0 1 2 3 4 ie., queue 5 is highest 1898 * and queue 3 is lowest (queue 4 is reserved) 1899 */ 1900 #define BA_QUEUE 5 1901 1902 static void 1903 mwl8k_txq_xmit(struct ieee80211_hw *hw, 1904 int index, 1905 struct ieee80211_sta *sta, 1906 struct sk_buff *skb) 1907 { 1908 struct mwl8k_priv *priv = hw->priv; 1909 struct ieee80211_tx_info *tx_info; 1910 struct mwl8k_vif *mwl8k_vif; 1911 struct ieee80211_hdr *wh; 1912 struct mwl8k_tx_queue *txq; 1913 struct mwl8k_tx_desc *tx; 1914 dma_addr_t dma; 1915 u32 txstatus; 1916 u8 txdatarate; 1917 u16 qos; 1918 int txpriority; 1919 u8 tid = 0; 1920 struct mwl8k_ampdu_stream *stream = NULL; 1921 bool start_ba_session = false; 1922 bool mgmtframe = false; 1923 struct ieee80211_mgmt *mgmt = (struct ieee80211_mgmt *)skb->data; 1924 bool eapol_frame = false; 1925 1926 wh = (struct ieee80211_hdr *)skb->data; 1927 if (ieee80211_is_data_qos(wh->frame_control)) 1928 qos = le16_to_cpu(*((__le16 *)ieee80211_get_qos_ctl(wh))); 1929 else 1930 qos = 0; 1931 1932 if (skb->protocol == cpu_to_be16(ETH_P_PAE)) 1933 eapol_frame = true; 1934 1935 if (ieee80211_is_mgmt(wh->frame_control)) 1936 mgmtframe = true; 1937 1938 if (priv->ap_fw) 1939 mwl8k_encapsulate_tx_frame(priv, skb); 1940 else 1941 mwl8k_add_dma_header(priv, skb, 0, 0); 1942 1943 wh = &((struct mwl8k_dma_data *)skb->data)->wh; 1944 1945 tx_info = IEEE80211_SKB_CB(skb); 1946 mwl8k_vif = MWL8K_VIF(tx_info->control.vif); 1947 1948 if (tx_info->flags & IEEE80211_TX_CTL_ASSIGN_SEQ) { 1949 wh->seq_ctrl &= cpu_to_le16(IEEE80211_SCTL_FRAG); 1950 wh->seq_ctrl |= cpu_to_le16(mwl8k_vif->seqno); 1951 mwl8k_vif->seqno += 0x10; 1952 } 1953 1954 /* Setup firmware control bit fields for each frame type. */ 1955 txstatus = 0; 1956 txdatarate = 0; 1957 if (ieee80211_is_mgmt(wh->frame_control) || 1958 ieee80211_is_ctl(wh->frame_control)) { 1959 txdatarate = 0; 1960 qos |= MWL8K_QOS_QLEN_UNSPEC | MWL8K_QOS_EOSP; 1961 } else if (ieee80211_is_data(wh->frame_control)) { 1962 txdatarate = 1; 1963 if (is_multicast_ether_addr(wh->addr1)) 1964 txstatus |= MWL8K_TXD_STATUS_MULTICAST_TX; 1965 1966 qos &= ~MWL8K_QOS_ACK_POLICY_MASK; 1967 if (tx_info->flags & IEEE80211_TX_CTL_AMPDU) 1968 qos |= MWL8K_QOS_ACK_POLICY_BLOCKACK; 1969 else 1970 qos |= MWL8K_QOS_ACK_POLICY_NORMAL; 1971 } 1972 1973 /* Queue ADDBA request in the respective data queue. While setting up 1974 * the ampdu stream, mac80211 queues further packets for that 1975 * particular ra/tid pair. However, packets piled up in the hardware 1976 * for that ra/tid pair will still go out. ADDBA request and the 1977 * related data packets going out from different queues asynchronously 1978 * will cause a shift in the receiver window which might result in 1979 * ampdu packets getting dropped at the receiver after the stream has 1980 * been setup. 1981 */ 1982 if (unlikely(ieee80211_is_action(wh->frame_control) && 1983 mgmt->u.action.category == WLAN_CATEGORY_BACK && 1984 mgmt->u.action.u.addba_req.action_code == WLAN_ACTION_ADDBA_REQ && 1985 priv->ap_fw)) { 1986 u16 capab = le16_to_cpu(mgmt->u.action.u.addba_req.capab); 1987 tid = (capab & IEEE80211_ADDBA_PARAM_TID_MASK) >> 2; 1988 index = mwl8k_tid_queue_mapping(tid); 1989 } 1990 1991 txpriority = index; 1992 1993 if (priv->ap_fw && sta && sta->deflink.ht_cap.ht_supported && !eapol_frame && 1994 ieee80211_is_data_qos(wh->frame_control)) { 1995 tid = qos & 0xf; 1996 mwl8k_tx_count_packet(sta, tid); 1997 spin_lock(&priv->stream_lock); 1998 stream = mwl8k_lookup_stream(hw, sta->addr, tid); 1999 if (stream != NULL) { 2000 if (stream->state == AMPDU_STREAM_ACTIVE) { 2001 WARN_ON(!(qos & MWL8K_QOS_ACK_POLICY_BLOCKACK)); 2002 txpriority = (BA_QUEUE + stream->idx) % 2003 TOTAL_HW_TX_QUEUES; 2004 if (stream->idx <= 1) 2005 index = stream->idx + 2006 MWL8K_TX_WMM_QUEUES; 2007 2008 } else if (stream->state == AMPDU_STREAM_NEW) { 2009 /* We get here if the driver sends us packets 2010 * after we've initiated a stream, but before 2011 * our ampdu_action routine has been called 2012 * with IEEE80211_AMPDU_TX_START to get the SSN 2013 * for the ADDBA request. So this packet can 2014 * go out with no risk of sequence number 2015 * mismatch. No special handling is required. 2016 */ 2017 } else { 2018 /* Drop packets that would go out after the 2019 * ADDBA request was sent but before the ADDBA 2020 * response is received. If we don't do this, 2021 * the recipient would probably receive it 2022 * after the ADDBA request with SSN 0. This 2023 * will cause the recipient's BA receive window 2024 * to shift, which would cause the subsequent 2025 * packets in the BA stream to be discarded. 2026 * mac80211 queues our packets for us in this 2027 * case, so this is really just a safety check. 2028 */ 2029 wiphy_warn(hw->wiphy, 2030 "Cannot send packet while ADDBA " 2031 "dialog is underway.\n"); 2032 spin_unlock(&priv->stream_lock); 2033 dev_kfree_skb(skb); 2034 return; 2035 } 2036 } else { 2037 /* Defer calling mwl8k_start_stream so that the current 2038 * skb can go out before the ADDBA request. This 2039 * prevents sequence number mismatch at the recepient 2040 * as described above. 2041 */ 2042 if (mwl8k_ampdu_allowed(sta, tid)) { 2043 stream = mwl8k_add_stream(hw, sta, tid); 2044 if (stream != NULL) 2045 start_ba_session = true; 2046 } 2047 } 2048 spin_unlock(&priv->stream_lock); 2049 } else { 2050 qos &= ~MWL8K_QOS_ACK_POLICY_MASK; 2051 qos |= MWL8K_QOS_ACK_POLICY_NORMAL; 2052 } 2053 2054 dma = dma_map_single(&priv->pdev->dev, skb->data, skb->len, 2055 DMA_TO_DEVICE); 2056 2057 if (dma_mapping_error(&priv->pdev->dev, dma)) { 2058 wiphy_debug(hw->wiphy, 2059 "failed to dma map skb, dropping TX frame.\n"); 2060 if (start_ba_session) { 2061 spin_lock(&priv->stream_lock); 2062 mwl8k_remove_stream(hw, stream); 2063 spin_unlock(&priv->stream_lock); 2064 } 2065 dev_kfree_skb(skb); 2066 return; 2067 } 2068 2069 spin_lock_bh(&priv->tx_lock); 2070 2071 txq = priv->txq + index; 2072 2073 /* Mgmt frames that go out frequently are probe 2074 * responses. Other mgmt frames got out relatively 2075 * infrequently. Hence reserve 2 buffers so that 2076 * other mgmt frames do not get dropped due to an 2077 * already queued probe response in one of the 2078 * reserved buffers. 2079 */ 2080 2081 if (txq->len >= MWL8K_TX_DESCS - 2) { 2082 if (!mgmtframe || txq->len == MWL8K_TX_DESCS) { 2083 if (start_ba_session) { 2084 spin_lock(&priv->stream_lock); 2085 mwl8k_remove_stream(hw, stream); 2086 spin_unlock(&priv->stream_lock); 2087 } 2088 mwl8k_tx_start(priv); 2089 spin_unlock_bh(&priv->tx_lock); 2090 dma_unmap_single(&priv->pdev->dev, dma, skb->len, 2091 DMA_TO_DEVICE); 2092 dev_kfree_skb(skb); 2093 return; 2094 } 2095 } 2096 2097 BUG_ON(txq->skb[txq->tail] != NULL); 2098 txq->skb[txq->tail] = skb; 2099 2100 tx = txq->txd + txq->tail; 2101 tx->data_rate = txdatarate; 2102 tx->tx_priority = txpriority; 2103 tx->qos_control = cpu_to_le16(qos); 2104 tx->pkt_phys_addr = cpu_to_le32(dma); 2105 tx->pkt_len = cpu_to_le16(skb->len); 2106 tx->rate_info = 0; 2107 if (!priv->ap_fw && sta != NULL) 2108 tx->peer_id = MWL8K_STA(sta)->peer_id; 2109 else 2110 tx->peer_id = 0; 2111 2112 if (priv->ap_fw && ieee80211_is_data(wh->frame_control) && !eapol_frame) 2113 tx->timestamp = cpu_to_le32(ioread32(priv->regs + 2114 MWL8K_HW_TIMER_REGISTER)); 2115 else 2116 tx->timestamp = 0; 2117 2118 wmb(); 2119 tx->status = cpu_to_le32(MWL8K_TXD_STATUS_FW_OWNED | txstatus); 2120 2121 txq->len++; 2122 priv->pending_tx_pkts++; 2123 2124 txq->tail++; 2125 if (txq->tail == MWL8K_TX_DESCS) 2126 txq->tail = 0; 2127 2128 mwl8k_tx_start(priv); 2129 2130 spin_unlock_bh(&priv->tx_lock); 2131 2132 /* Initiate the ampdu session here */ 2133 if (start_ba_session) { 2134 spin_lock(&priv->stream_lock); 2135 if (mwl8k_start_stream(hw, stream)) 2136 mwl8k_remove_stream(hw, stream); 2137 spin_unlock(&priv->stream_lock); 2138 } 2139 } 2140 2141 2142 /* 2143 * Firmware access. 2144 * 2145 * We have the following requirements for issuing firmware commands: 2146 * - Some commands require that the packet transmit path is idle when 2147 * the command is issued. (For simplicity, we'll just quiesce the 2148 * transmit path for every command.) 2149 * - There are certain sequences of commands that need to be issued to 2150 * the hardware sequentially, with no other intervening commands. 2151 * 2152 * This leads to an implementation of a "firmware lock" as a mutex that 2153 * can be taken recursively, and which is taken by both the low-level 2154 * command submission function (mwl8k_post_cmd) as well as any users of 2155 * that function that require issuing of an atomic sequence of commands, 2156 * and quiesces the transmit path whenever it's taken. 2157 */ 2158 static int mwl8k_fw_lock(struct ieee80211_hw *hw) 2159 { 2160 struct mwl8k_priv *priv = hw->priv; 2161 2162 if (priv->fw_mutex_owner != current) { 2163 int rc; 2164 2165 mutex_lock(&priv->fw_mutex); 2166 ieee80211_stop_queues(hw); 2167 2168 rc = mwl8k_tx_wait_empty(hw); 2169 if (rc) { 2170 if (!priv->hw_restart_in_progress) 2171 ieee80211_wake_queues(hw); 2172 2173 mutex_unlock(&priv->fw_mutex); 2174 2175 return rc; 2176 } 2177 2178 priv->fw_mutex_owner = current; 2179 } 2180 2181 priv->fw_mutex_depth++; 2182 2183 return 0; 2184 } 2185 2186 static void mwl8k_fw_unlock(struct ieee80211_hw *hw) 2187 { 2188 struct mwl8k_priv *priv = hw->priv; 2189 2190 if (!--priv->fw_mutex_depth) { 2191 if (!priv->hw_restart_in_progress) 2192 ieee80211_wake_queues(hw); 2193 2194 priv->fw_mutex_owner = NULL; 2195 mutex_unlock(&priv->fw_mutex); 2196 } 2197 } 2198 2199 static void mwl8k_enable_bsses(struct ieee80211_hw *hw, bool enable, 2200 u32 bitmap); 2201 2202 /* 2203 * Command processing. 2204 */ 2205 2206 /* Timeout firmware commands after 10s */ 2207 #define MWL8K_CMD_TIMEOUT_MS 10000 2208 2209 static int mwl8k_post_cmd(struct ieee80211_hw *hw, struct mwl8k_cmd_pkt_hdr *cmd) 2210 { 2211 DECLARE_COMPLETION_ONSTACK(cmd_wait); 2212 struct mwl8k_priv *priv = hw->priv; 2213 void __iomem *regs = priv->regs; 2214 dma_addr_t dma_addr; 2215 unsigned int dma_size; 2216 int rc; 2217 unsigned long time_left = 0; 2218 u8 buf[32]; 2219 u32 bitmap = 0; 2220 2221 wiphy_dbg(hw->wiphy, "Posting %s [%d]\n", 2222 mwl8k_cmd_name(cmd->code, buf, sizeof(buf)), cmd->macid); 2223 2224 /* Before posting firmware commands that could change the hardware 2225 * characteristics, make sure that all BSSes are stopped temporary. 2226 * Enable these stopped BSSes after completion of the commands 2227 */ 2228 2229 rc = mwl8k_fw_lock(hw); 2230 if (rc) 2231 return rc; 2232 2233 if (priv->ap_fw && priv->running_bsses) { 2234 switch (le16_to_cpu(cmd->code)) { 2235 case MWL8K_CMD_SET_RF_CHANNEL: 2236 case MWL8K_CMD_RADIO_CONTROL: 2237 case MWL8K_CMD_RF_TX_POWER: 2238 case MWL8K_CMD_TX_POWER: 2239 case MWL8K_CMD_RF_ANTENNA: 2240 case MWL8K_CMD_RTS_THRESHOLD: 2241 case MWL8K_CMD_MIMO_CONFIG: 2242 bitmap = priv->running_bsses; 2243 mwl8k_enable_bsses(hw, false, bitmap); 2244 break; 2245 } 2246 } 2247 2248 cmd->result = (__force __le16) 0xffff; 2249 dma_size = le16_to_cpu(cmd->length); 2250 dma_addr = dma_map_single(&priv->pdev->dev, cmd, dma_size, 2251 DMA_BIDIRECTIONAL); 2252 if (dma_mapping_error(&priv->pdev->dev, dma_addr)) { 2253 rc = -ENOMEM; 2254 goto exit; 2255 } 2256 2257 priv->hostcmd_wait = &cmd_wait; 2258 iowrite32(dma_addr, regs + MWL8K_HIU_GEN_PTR); 2259 iowrite32(MWL8K_H2A_INT_DOORBELL, 2260 regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 2261 iowrite32(MWL8K_H2A_INT_DUMMY, 2262 regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 2263 2264 time_left = wait_for_completion_timeout(&cmd_wait, 2265 msecs_to_jiffies(MWL8K_CMD_TIMEOUT_MS)); 2266 2267 priv->hostcmd_wait = NULL; 2268 2269 2270 dma_unmap_single(&priv->pdev->dev, dma_addr, dma_size, 2271 DMA_BIDIRECTIONAL); 2272 2273 if (!time_left) { 2274 wiphy_err(hw->wiphy, "Command %s timeout after %u ms\n", 2275 mwl8k_cmd_name(cmd->code, buf, sizeof(buf)), 2276 MWL8K_CMD_TIMEOUT_MS); 2277 rc = -ETIMEDOUT; 2278 } else { 2279 int ms; 2280 2281 ms = MWL8K_CMD_TIMEOUT_MS - jiffies_to_msecs(time_left); 2282 2283 rc = cmd->result ? -EINVAL : 0; 2284 if (rc) 2285 wiphy_err(hw->wiphy, "Command %s error 0x%x\n", 2286 mwl8k_cmd_name(cmd->code, buf, sizeof(buf)), 2287 le16_to_cpu(cmd->result)); 2288 else if (ms > 2000) 2289 wiphy_notice(hw->wiphy, "Command %s took %d ms\n", 2290 mwl8k_cmd_name(cmd->code, 2291 buf, sizeof(buf)), 2292 ms); 2293 } 2294 2295 exit: 2296 if (bitmap) 2297 mwl8k_enable_bsses(hw, true, bitmap); 2298 2299 mwl8k_fw_unlock(hw); 2300 2301 return rc; 2302 } 2303 2304 static int mwl8k_post_pervif_cmd(struct ieee80211_hw *hw, 2305 struct ieee80211_vif *vif, 2306 struct mwl8k_cmd_pkt_hdr *cmd) 2307 { 2308 if (vif != NULL) 2309 cmd->macid = MWL8K_VIF(vif)->macid; 2310 return mwl8k_post_cmd(hw, cmd); 2311 } 2312 2313 /* 2314 * Setup code shared between STA and AP firmware images. 2315 */ 2316 static void mwl8k_setup_2ghz_band(struct ieee80211_hw *hw) 2317 { 2318 struct mwl8k_priv *priv = hw->priv; 2319 2320 BUILD_BUG_ON(sizeof(priv->channels_24) != sizeof(mwl8k_channels_24)); 2321 memcpy(priv->channels_24, mwl8k_channels_24, sizeof(mwl8k_channels_24)); 2322 2323 BUILD_BUG_ON(sizeof(priv->rates_24) != sizeof(mwl8k_rates_24)); 2324 memcpy(priv->rates_24, mwl8k_rates_24, sizeof(mwl8k_rates_24)); 2325 2326 priv->band_24.band = NL80211_BAND_2GHZ; 2327 priv->band_24.channels = priv->channels_24; 2328 priv->band_24.n_channels = ARRAY_SIZE(mwl8k_channels_24); 2329 priv->band_24.bitrates = priv->rates_24; 2330 priv->band_24.n_bitrates = ARRAY_SIZE(mwl8k_rates_24); 2331 2332 hw->wiphy->bands[NL80211_BAND_2GHZ] = &priv->band_24; 2333 } 2334 2335 static void mwl8k_setup_5ghz_band(struct ieee80211_hw *hw) 2336 { 2337 struct mwl8k_priv *priv = hw->priv; 2338 2339 BUILD_BUG_ON(sizeof(priv->channels_50) != sizeof(mwl8k_channels_50)); 2340 memcpy(priv->channels_50, mwl8k_channels_50, sizeof(mwl8k_channels_50)); 2341 2342 BUILD_BUG_ON(sizeof(priv->rates_50) != sizeof(mwl8k_rates_50)); 2343 memcpy(priv->rates_50, mwl8k_rates_50, sizeof(mwl8k_rates_50)); 2344 2345 priv->band_50.band = NL80211_BAND_5GHZ; 2346 priv->band_50.channels = priv->channels_50; 2347 priv->band_50.n_channels = ARRAY_SIZE(mwl8k_channels_50); 2348 priv->band_50.bitrates = priv->rates_50; 2349 priv->band_50.n_bitrates = ARRAY_SIZE(mwl8k_rates_50); 2350 2351 hw->wiphy->bands[NL80211_BAND_5GHZ] = &priv->band_50; 2352 } 2353 2354 /* 2355 * CMD_GET_HW_SPEC (STA version). 2356 */ 2357 struct mwl8k_cmd_get_hw_spec_sta { 2358 struct mwl8k_cmd_pkt_hdr header; 2359 __u8 hw_rev; 2360 __u8 host_interface; 2361 __le16 num_mcaddrs; 2362 __u8 perm_addr[ETH_ALEN]; 2363 __le16 region_code; 2364 __le32 fw_rev; 2365 __le32 ps_cookie; 2366 __le32 caps; 2367 __u8 mcs_bitmap[16]; 2368 __le32 rx_queue_ptr; 2369 __le32 num_tx_queues; 2370 __le32 tx_queue_ptrs[MWL8K_TX_WMM_QUEUES]; 2371 __le32 caps2; 2372 __le32 num_tx_desc_per_queue; 2373 __le32 total_rxd; 2374 } __packed; 2375 2376 #define MWL8K_CAP_MAX_AMSDU 0x20000000 2377 #define MWL8K_CAP_GREENFIELD 0x08000000 2378 #define MWL8K_CAP_AMPDU 0x04000000 2379 #define MWL8K_CAP_RX_STBC 0x01000000 2380 #define MWL8K_CAP_TX_STBC 0x00800000 2381 #define MWL8K_CAP_SHORTGI_40MHZ 0x00400000 2382 #define MWL8K_CAP_SHORTGI_20MHZ 0x00200000 2383 #define MWL8K_CAP_RX_ANTENNA_MASK 0x000e0000 2384 #define MWL8K_CAP_TX_ANTENNA_MASK 0x0001c000 2385 #define MWL8K_CAP_DELAY_BA 0x00003000 2386 #define MWL8K_CAP_MIMO 0x00000200 2387 #define MWL8K_CAP_40MHZ 0x00000100 2388 #define MWL8K_CAP_BAND_MASK 0x00000007 2389 #define MWL8K_CAP_5GHZ 0x00000004 2390 #define MWL8K_CAP_2GHZ4 0x00000001 2391 2392 static void 2393 mwl8k_set_ht_caps(struct ieee80211_hw *hw, 2394 struct ieee80211_supported_band *band, u32 cap) 2395 { 2396 int rx_streams; 2397 int tx_streams; 2398 2399 band->ht_cap.ht_supported = 1; 2400 2401 if (cap & MWL8K_CAP_MAX_AMSDU) 2402 band->ht_cap.cap |= IEEE80211_HT_CAP_MAX_AMSDU; 2403 if (cap & MWL8K_CAP_GREENFIELD) 2404 band->ht_cap.cap |= IEEE80211_HT_CAP_GRN_FLD; 2405 if (cap & MWL8K_CAP_AMPDU) { 2406 ieee80211_hw_set(hw, AMPDU_AGGREGATION); 2407 band->ht_cap.ampdu_factor = IEEE80211_HT_MAX_AMPDU_64K; 2408 band->ht_cap.ampdu_density = IEEE80211_HT_MPDU_DENSITY_NONE; 2409 } 2410 if (cap & MWL8K_CAP_RX_STBC) 2411 band->ht_cap.cap |= IEEE80211_HT_CAP_RX_STBC; 2412 if (cap & MWL8K_CAP_TX_STBC) 2413 band->ht_cap.cap |= IEEE80211_HT_CAP_TX_STBC; 2414 if (cap & MWL8K_CAP_SHORTGI_40MHZ) 2415 band->ht_cap.cap |= IEEE80211_HT_CAP_SGI_40; 2416 if (cap & MWL8K_CAP_SHORTGI_20MHZ) 2417 band->ht_cap.cap |= IEEE80211_HT_CAP_SGI_20; 2418 if (cap & MWL8K_CAP_DELAY_BA) 2419 band->ht_cap.cap |= IEEE80211_HT_CAP_DELAY_BA; 2420 if (cap & MWL8K_CAP_40MHZ) 2421 band->ht_cap.cap |= IEEE80211_HT_CAP_SUP_WIDTH_20_40; 2422 2423 rx_streams = hweight32(cap & MWL8K_CAP_RX_ANTENNA_MASK); 2424 tx_streams = hweight32(cap & MWL8K_CAP_TX_ANTENNA_MASK); 2425 2426 band->ht_cap.mcs.rx_mask[0] = 0xff; 2427 if (rx_streams >= 2) 2428 band->ht_cap.mcs.rx_mask[1] = 0xff; 2429 if (rx_streams >= 3) 2430 band->ht_cap.mcs.rx_mask[2] = 0xff; 2431 band->ht_cap.mcs.rx_mask[4] = 0x01; 2432 band->ht_cap.mcs.tx_params = IEEE80211_HT_MCS_TX_DEFINED; 2433 2434 if (rx_streams != tx_streams) { 2435 band->ht_cap.mcs.tx_params |= IEEE80211_HT_MCS_TX_RX_DIFF; 2436 band->ht_cap.mcs.tx_params |= (tx_streams - 1) << 2437 IEEE80211_HT_MCS_TX_MAX_STREAMS_SHIFT; 2438 } 2439 } 2440 2441 static void 2442 mwl8k_set_caps(struct ieee80211_hw *hw, u32 caps) 2443 { 2444 struct mwl8k_priv *priv = hw->priv; 2445 2446 if (priv->caps) 2447 return; 2448 2449 if ((caps & MWL8K_CAP_2GHZ4) || !(caps & MWL8K_CAP_BAND_MASK)) { 2450 mwl8k_setup_2ghz_band(hw); 2451 if (caps & MWL8K_CAP_MIMO) 2452 mwl8k_set_ht_caps(hw, &priv->band_24, caps); 2453 } 2454 2455 if (caps & MWL8K_CAP_5GHZ) { 2456 mwl8k_setup_5ghz_band(hw); 2457 if (caps & MWL8K_CAP_MIMO) 2458 mwl8k_set_ht_caps(hw, &priv->band_50, caps); 2459 } 2460 2461 priv->caps = caps; 2462 } 2463 2464 static int mwl8k_cmd_get_hw_spec_sta(struct ieee80211_hw *hw) 2465 { 2466 struct mwl8k_priv *priv = hw->priv; 2467 struct mwl8k_cmd_get_hw_spec_sta *cmd; 2468 int rc; 2469 int i; 2470 2471 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2472 if (cmd == NULL) 2473 return -ENOMEM; 2474 2475 cmd->header.code = cpu_to_le16(MWL8K_CMD_GET_HW_SPEC); 2476 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2477 2478 memset(cmd->perm_addr, 0xff, sizeof(cmd->perm_addr)); 2479 cmd->ps_cookie = cpu_to_le32(priv->cookie_dma); 2480 cmd->rx_queue_ptr = cpu_to_le32(priv->rxq[0].rxd_dma); 2481 cmd->num_tx_queues = cpu_to_le32(mwl8k_tx_queues(priv)); 2482 for (i = 0; i < mwl8k_tx_queues(priv); i++) 2483 cmd->tx_queue_ptrs[i] = cpu_to_le32(priv->txq[i].txd_dma); 2484 cmd->num_tx_desc_per_queue = cpu_to_le32(MWL8K_TX_DESCS); 2485 cmd->total_rxd = cpu_to_le32(MWL8K_RX_DESCS); 2486 2487 rc = mwl8k_post_cmd(hw, &cmd->header); 2488 2489 if (!rc) { 2490 SET_IEEE80211_PERM_ADDR(hw, cmd->perm_addr); 2491 priv->num_mcaddrs = le16_to_cpu(cmd->num_mcaddrs); 2492 priv->fw_rev = le32_to_cpu(cmd->fw_rev); 2493 priv->hw_rev = cmd->hw_rev; 2494 mwl8k_set_caps(hw, le32_to_cpu(cmd->caps)); 2495 priv->ap_macids_supported = 0x00000000; 2496 priv->sta_macids_supported = 0x00000001; 2497 } 2498 2499 kfree(cmd); 2500 return rc; 2501 } 2502 2503 /* 2504 * CMD_GET_HW_SPEC (AP version). 2505 */ 2506 struct mwl8k_cmd_get_hw_spec_ap { 2507 struct mwl8k_cmd_pkt_hdr header; 2508 __u8 hw_rev; 2509 __u8 host_interface; 2510 __le16 num_wcb; 2511 __le16 num_mcaddrs; 2512 __u8 perm_addr[ETH_ALEN]; 2513 __le16 region_code; 2514 __le16 num_antenna; 2515 __le32 fw_rev; 2516 __le32 wcbbase0; 2517 __le32 rxwrptr; 2518 __le32 rxrdptr; 2519 __le32 ps_cookie; 2520 __le32 wcbbase1; 2521 __le32 wcbbase2; 2522 __le32 wcbbase3; 2523 __le32 fw_api_version; 2524 __le32 caps; 2525 __le32 num_of_ampdu_queues; 2526 __le32 wcbbase_ampdu[MWL8K_MAX_AMPDU_QUEUES]; 2527 } __packed; 2528 2529 static int mwl8k_cmd_get_hw_spec_ap(struct ieee80211_hw *hw) 2530 { 2531 struct mwl8k_priv *priv = hw->priv; 2532 struct mwl8k_cmd_get_hw_spec_ap *cmd; 2533 int rc, i; 2534 u32 api_version; 2535 2536 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2537 if (cmd == NULL) 2538 return -ENOMEM; 2539 2540 cmd->header.code = cpu_to_le16(MWL8K_CMD_GET_HW_SPEC); 2541 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2542 2543 memset(cmd->perm_addr, 0xff, sizeof(cmd->perm_addr)); 2544 cmd->ps_cookie = cpu_to_le32(priv->cookie_dma); 2545 2546 rc = mwl8k_post_cmd(hw, &cmd->header); 2547 2548 if (!rc) { 2549 int off; 2550 2551 api_version = le32_to_cpu(cmd->fw_api_version); 2552 if (priv->device_info->fw_api_ap != api_version) { 2553 printk(KERN_ERR "%s: Unsupported fw API version for %s." 2554 " Expected %d got %d.\n", MWL8K_NAME, 2555 priv->device_info->part_name, 2556 priv->device_info->fw_api_ap, 2557 api_version); 2558 rc = -EINVAL; 2559 goto done; 2560 } 2561 SET_IEEE80211_PERM_ADDR(hw, cmd->perm_addr); 2562 priv->num_mcaddrs = le16_to_cpu(cmd->num_mcaddrs); 2563 priv->fw_rev = le32_to_cpu(cmd->fw_rev); 2564 priv->hw_rev = cmd->hw_rev; 2565 mwl8k_set_caps(hw, le32_to_cpu(cmd->caps)); 2566 priv->ap_macids_supported = 0x000000ff; 2567 priv->sta_macids_supported = 0x00000100; 2568 priv->num_ampdu_queues = le32_to_cpu(cmd->num_of_ampdu_queues); 2569 if (priv->num_ampdu_queues > MWL8K_MAX_AMPDU_QUEUES) { 2570 wiphy_warn(hw->wiphy, "fw reported %d ampdu queues" 2571 " but we only support %d.\n", 2572 priv->num_ampdu_queues, 2573 MWL8K_MAX_AMPDU_QUEUES); 2574 priv->num_ampdu_queues = MWL8K_MAX_AMPDU_QUEUES; 2575 } 2576 off = le32_to_cpu(cmd->rxwrptr) & 0xffff; 2577 iowrite32(priv->rxq[0].rxd_dma, priv->sram + off); 2578 2579 off = le32_to_cpu(cmd->rxrdptr) & 0xffff; 2580 iowrite32(priv->rxq[0].rxd_dma, priv->sram + off); 2581 2582 priv->txq_offset[0] = le32_to_cpu(cmd->wcbbase0) & 0xffff; 2583 priv->txq_offset[1] = le32_to_cpu(cmd->wcbbase1) & 0xffff; 2584 priv->txq_offset[2] = le32_to_cpu(cmd->wcbbase2) & 0xffff; 2585 priv->txq_offset[3] = le32_to_cpu(cmd->wcbbase3) & 0xffff; 2586 2587 for (i = 0; i < priv->num_ampdu_queues; i++) 2588 priv->txq_offset[i + MWL8K_TX_WMM_QUEUES] = 2589 le32_to_cpu(cmd->wcbbase_ampdu[i]) & 0xffff; 2590 } 2591 2592 done: 2593 kfree(cmd); 2594 return rc; 2595 } 2596 2597 /* 2598 * CMD_SET_HW_SPEC. 2599 */ 2600 struct mwl8k_cmd_set_hw_spec { 2601 struct mwl8k_cmd_pkt_hdr header; 2602 __u8 hw_rev; 2603 __u8 host_interface; 2604 __le16 num_mcaddrs; 2605 __u8 perm_addr[ETH_ALEN]; 2606 __le16 region_code; 2607 __le32 fw_rev; 2608 __le32 ps_cookie; 2609 __le32 caps; 2610 __le32 rx_queue_ptr; 2611 __le32 num_tx_queues; 2612 __le32 tx_queue_ptrs[MWL8K_MAX_TX_QUEUES]; 2613 __le32 flags; 2614 __le32 num_tx_desc_per_queue; 2615 __le32 total_rxd; 2616 } __packed; 2617 2618 /* If enabled, MWL8K_SET_HW_SPEC_FLAG_ENABLE_LIFE_TIME_EXPIRY will cause 2619 * packets to expire 500 ms after the timestamp in the tx descriptor. That is, 2620 * the packets that are queued for more than 500ms, will be dropped in the 2621 * hardware. This helps minimizing the issues caused due to head-of-line 2622 * blocking where a slow client can hog the bandwidth and affect traffic to a 2623 * faster client. 2624 */ 2625 #define MWL8K_SET_HW_SPEC_FLAG_ENABLE_LIFE_TIME_EXPIRY 0x00000400 2626 #define MWL8K_SET_HW_SPEC_FLAG_GENERATE_CCMP_HDR 0x00000200 2627 #define MWL8K_SET_HW_SPEC_FLAG_HOST_DECR_MGMT 0x00000080 2628 #define MWL8K_SET_HW_SPEC_FLAG_HOSTFORM_PROBERESP 0x00000020 2629 #define MWL8K_SET_HW_SPEC_FLAG_HOSTFORM_BEACON 0x00000010 2630 2631 static int mwl8k_cmd_set_hw_spec(struct ieee80211_hw *hw) 2632 { 2633 struct mwl8k_priv *priv = hw->priv; 2634 struct mwl8k_cmd_set_hw_spec *cmd; 2635 int rc; 2636 int i; 2637 2638 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2639 if (cmd == NULL) 2640 return -ENOMEM; 2641 2642 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_HW_SPEC); 2643 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2644 2645 cmd->ps_cookie = cpu_to_le32(priv->cookie_dma); 2646 cmd->rx_queue_ptr = cpu_to_le32(priv->rxq[0].rxd_dma); 2647 cmd->num_tx_queues = cpu_to_le32(mwl8k_tx_queues(priv)); 2648 2649 /* 2650 * Mac80211 stack has Q0 as highest priority and Q3 as lowest in 2651 * that order. Firmware has Q3 as highest priority and Q0 as lowest 2652 * in that order. Map Q3 of mac80211 to Q0 of firmware so that the 2653 * priority is interpreted the right way in firmware. 2654 */ 2655 for (i = 0; i < mwl8k_tx_queues(priv); i++) { 2656 int j = mwl8k_tx_queues(priv) - 1 - i; 2657 cmd->tx_queue_ptrs[i] = cpu_to_le32(priv->txq[j].txd_dma); 2658 } 2659 2660 cmd->flags = cpu_to_le32(MWL8K_SET_HW_SPEC_FLAG_HOST_DECR_MGMT | 2661 MWL8K_SET_HW_SPEC_FLAG_HOSTFORM_PROBERESP | 2662 MWL8K_SET_HW_SPEC_FLAG_HOSTFORM_BEACON | 2663 MWL8K_SET_HW_SPEC_FLAG_ENABLE_LIFE_TIME_EXPIRY | 2664 MWL8K_SET_HW_SPEC_FLAG_GENERATE_CCMP_HDR); 2665 cmd->num_tx_desc_per_queue = cpu_to_le32(MWL8K_TX_DESCS); 2666 cmd->total_rxd = cpu_to_le32(MWL8K_RX_DESCS); 2667 2668 rc = mwl8k_post_cmd(hw, &cmd->header); 2669 kfree(cmd); 2670 2671 return rc; 2672 } 2673 2674 /* 2675 * CMD_MAC_MULTICAST_ADR. 2676 */ 2677 struct mwl8k_cmd_mac_multicast_adr { 2678 struct mwl8k_cmd_pkt_hdr header; 2679 __le16 action; 2680 __le16 numaddr; 2681 __u8 addr[][ETH_ALEN]; 2682 }; 2683 2684 #define MWL8K_ENABLE_RX_DIRECTED 0x0001 2685 #define MWL8K_ENABLE_RX_MULTICAST 0x0002 2686 #define MWL8K_ENABLE_RX_ALL_MULTICAST 0x0004 2687 #define MWL8K_ENABLE_RX_BROADCAST 0x0008 2688 2689 static struct mwl8k_cmd_pkt_hdr * 2690 __mwl8k_cmd_mac_multicast_adr(struct ieee80211_hw *hw, int allmulti, 2691 struct netdev_hw_addr_list *mc_list) 2692 { 2693 struct mwl8k_priv *priv = hw->priv; 2694 struct mwl8k_cmd_mac_multicast_adr *cmd; 2695 int size; 2696 int mc_count = 0; 2697 2698 if (mc_list) 2699 mc_count = netdev_hw_addr_list_count(mc_list); 2700 2701 if (allmulti || mc_count > priv->num_mcaddrs) { 2702 allmulti = 1; 2703 mc_count = 0; 2704 } 2705 2706 size = sizeof(*cmd) + mc_count * ETH_ALEN; 2707 2708 cmd = kzalloc(size, GFP_ATOMIC); 2709 if (cmd == NULL) 2710 return NULL; 2711 2712 cmd->header.code = cpu_to_le16(MWL8K_CMD_MAC_MULTICAST_ADR); 2713 cmd->header.length = cpu_to_le16(size); 2714 cmd->action = cpu_to_le16(MWL8K_ENABLE_RX_DIRECTED | 2715 MWL8K_ENABLE_RX_BROADCAST); 2716 2717 if (allmulti) { 2718 cmd->action |= cpu_to_le16(MWL8K_ENABLE_RX_ALL_MULTICAST); 2719 } else if (mc_count) { 2720 struct netdev_hw_addr *ha; 2721 int i = 0; 2722 2723 cmd->action |= cpu_to_le16(MWL8K_ENABLE_RX_MULTICAST); 2724 cmd->numaddr = cpu_to_le16(mc_count); 2725 netdev_hw_addr_list_for_each(ha, mc_list) { 2726 memcpy(cmd->addr[i++], ha->addr, ETH_ALEN); 2727 } 2728 } 2729 2730 return &cmd->header; 2731 } 2732 2733 /* 2734 * CMD_GET_STAT. 2735 */ 2736 struct mwl8k_cmd_get_stat { 2737 struct mwl8k_cmd_pkt_hdr header; 2738 __le32 stats[64]; 2739 } __packed; 2740 2741 #define MWL8K_STAT_ACK_FAILURE 9 2742 #define MWL8K_STAT_RTS_FAILURE 12 2743 #define MWL8K_STAT_FCS_ERROR 24 2744 #define MWL8K_STAT_RTS_SUCCESS 11 2745 2746 static int mwl8k_cmd_get_stat(struct ieee80211_hw *hw, 2747 struct ieee80211_low_level_stats *stats) 2748 { 2749 struct mwl8k_cmd_get_stat *cmd; 2750 int rc; 2751 2752 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2753 if (cmd == NULL) 2754 return -ENOMEM; 2755 2756 cmd->header.code = cpu_to_le16(MWL8K_CMD_GET_STAT); 2757 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2758 2759 rc = mwl8k_post_cmd(hw, &cmd->header); 2760 if (!rc) { 2761 stats->dot11ACKFailureCount = 2762 le32_to_cpu(cmd->stats[MWL8K_STAT_ACK_FAILURE]); 2763 stats->dot11RTSFailureCount = 2764 le32_to_cpu(cmd->stats[MWL8K_STAT_RTS_FAILURE]); 2765 stats->dot11FCSErrorCount = 2766 le32_to_cpu(cmd->stats[MWL8K_STAT_FCS_ERROR]); 2767 stats->dot11RTSSuccessCount = 2768 le32_to_cpu(cmd->stats[MWL8K_STAT_RTS_SUCCESS]); 2769 } 2770 kfree(cmd); 2771 2772 return rc; 2773 } 2774 2775 /* 2776 * CMD_RADIO_CONTROL. 2777 */ 2778 struct mwl8k_cmd_radio_control { 2779 struct mwl8k_cmd_pkt_hdr header; 2780 __le16 action; 2781 __le16 control; 2782 __le16 radio_on; 2783 } __packed; 2784 2785 static int 2786 mwl8k_cmd_radio_control(struct ieee80211_hw *hw, bool enable, bool force) 2787 { 2788 struct mwl8k_priv *priv = hw->priv; 2789 struct mwl8k_cmd_radio_control *cmd; 2790 int rc; 2791 2792 if (enable == priv->radio_on && !force) 2793 return 0; 2794 2795 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2796 if (cmd == NULL) 2797 return -ENOMEM; 2798 2799 cmd->header.code = cpu_to_le16(MWL8K_CMD_RADIO_CONTROL); 2800 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2801 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 2802 cmd->control = cpu_to_le16(priv->radio_short_preamble ? 3 : 1); 2803 cmd->radio_on = cpu_to_le16(enable ? 0x0001 : 0x0000); 2804 2805 rc = mwl8k_post_cmd(hw, &cmd->header); 2806 kfree(cmd); 2807 2808 if (!rc) 2809 priv->radio_on = enable; 2810 2811 return rc; 2812 } 2813 2814 static int mwl8k_cmd_radio_disable(struct ieee80211_hw *hw) 2815 { 2816 return mwl8k_cmd_radio_control(hw, 0, 0); 2817 } 2818 2819 static int mwl8k_cmd_radio_enable(struct ieee80211_hw *hw) 2820 { 2821 return mwl8k_cmd_radio_control(hw, 1, 0); 2822 } 2823 2824 static int 2825 mwl8k_set_radio_preamble(struct ieee80211_hw *hw, bool short_preamble) 2826 { 2827 struct mwl8k_priv *priv = hw->priv; 2828 2829 priv->radio_short_preamble = short_preamble; 2830 2831 return mwl8k_cmd_radio_control(hw, 1, 1); 2832 } 2833 2834 /* 2835 * CMD_RF_TX_POWER. 2836 */ 2837 #define MWL8K_RF_TX_POWER_LEVEL_TOTAL 8 2838 2839 struct mwl8k_cmd_rf_tx_power { 2840 struct mwl8k_cmd_pkt_hdr header; 2841 __le16 action; 2842 __le16 support_level; 2843 __le16 current_level; 2844 __le16 reserved; 2845 __le16 power_level_list[MWL8K_RF_TX_POWER_LEVEL_TOTAL]; 2846 } __packed; 2847 2848 static int mwl8k_cmd_rf_tx_power(struct ieee80211_hw *hw, int dBm) 2849 { 2850 struct mwl8k_cmd_rf_tx_power *cmd; 2851 int rc; 2852 2853 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2854 if (cmd == NULL) 2855 return -ENOMEM; 2856 2857 cmd->header.code = cpu_to_le16(MWL8K_CMD_RF_TX_POWER); 2858 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2859 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 2860 cmd->support_level = cpu_to_le16(dBm); 2861 2862 rc = mwl8k_post_cmd(hw, &cmd->header); 2863 kfree(cmd); 2864 2865 return rc; 2866 } 2867 2868 /* 2869 * CMD_TX_POWER. 2870 */ 2871 #define MWL8K_TX_POWER_LEVEL_TOTAL 12 2872 2873 struct mwl8k_cmd_tx_power { 2874 struct mwl8k_cmd_pkt_hdr header; 2875 __le16 action; 2876 __le16 band; 2877 __le16 channel; 2878 __le16 bw; 2879 __le16 sub_ch; 2880 __le16 power_level_list[MWL8K_TX_POWER_LEVEL_TOTAL]; 2881 } __packed; 2882 2883 static int mwl8k_cmd_tx_power(struct ieee80211_hw *hw, 2884 struct ieee80211_conf *conf, 2885 unsigned short pwr) 2886 { 2887 struct ieee80211_channel *channel = conf->chandef.chan; 2888 enum nl80211_channel_type channel_type = 2889 cfg80211_get_chandef_type(&conf->chandef); 2890 struct mwl8k_cmd_tx_power *cmd; 2891 int rc; 2892 int i; 2893 2894 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2895 if (cmd == NULL) 2896 return -ENOMEM; 2897 2898 cmd->header.code = cpu_to_le16(MWL8K_CMD_TX_POWER); 2899 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2900 cmd->action = cpu_to_le16(MWL8K_CMD_SET_LIST); 2901 2902 if (channel->band == NL80211_BAND_2GHZ) 2903 cmd->band = cpu_to_le16(0x1); 2904 else if (channel->band == NL80211_BAND_5GHZ) 2905 cmd->band = cpu_to_le16(0x4); 2906 2907 cmd->channel = cpu_to_le16(channel->hw_value); 2908 2909 if (channel_type == NL80211_CHAN_NO_HT || 2910 channel_type == NL80211_CHAN_HT20) { 2911 cmd->bw = cpu_to_le16(0x2); 2912 } else { 2913 cmd->bw = cpu_to_le16(0x4); 2914 if (channel_type == NL80211_CHAN_HT40MINUS) 2915 cmd->sub_ch = cpu_to_le16(0x3); 2916 else if (channel_type == NL80211_CHAN_HT40PLUS) 2917 cmd->sub_ch = cpu_to_le16(0x1); 2918 } 2919 2920 for (i = 0; i < MWL8K_TX_POWER_LEVEL_TOTAL; i++) 2921 cmd->power_level_list[i] = cpu_to_le16(pwr); 2922 2923 rc = mwl8k_post_cmd(hw, &cmd->header); 2924 kfree(cmd); 2925 2926 return rc; 2927 } 2928 2929 /* 2930 * CMD_RF_ANTENNA. 2931 */ 2932 struct mwl8k_cmd_rf_antenna { 2933 struct mwl8k_cmd_pkt_hdr header; 2934 __le16 antenna; 2935 __le16 mode; 2936 } __packed; 2937 2938 #define MWL8K_RF_ANTENNA_RX 1 2939 #define MWL8K_RF_ANTENNA_TX 2 2940 2941 static int 2942 mwl8k_cmd_rf_antenna(struct ieee80211_hw *hw, int antenna, int mask) 2943 { 2944 struct mwl8k_cmd_rf_antenna *cmd; 2945 int rc; 2946 2947 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2948 if (cmd == NULL) 2949 return -ENOMEM; 2950 2951 cmd->header.code = cpu_to_le16(MWL8K_CMD_RF_ANTENNA); 2952 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2953 cmd->antenna = cpu_to_le16(antenna); 2954 cmd->mode = cpu_to_le16(mask); 2955 2956 rc = mwl8k_post_cmd(hw, &cmd->header); 2957 kfree(cmd); 2958 2959 return rc; 2960 } 2961 2962 /* 2963 * CMD_SET_BEACON. 2964 */ 2965 struct mwl8k_cmd_set_beacon { 2966 struct mwl8k_cmd_pkt_hdr header; 2967 __le16 beacon_len; 2968 __u8 beacon[]; 2969 }; 2970 2971 static int mwl8k_cmd_set_beacon(struct ieee80211_hw *hw, 2972 struct ieee80211_vif *vif, u8 *beacon, int len) 2973 { 2974 struct mwl8k_cmd_set_beacon *cmd; 2975 int rc; 2976 2977 cmd = kzalloc(sizeof(*cmd) + len, GFP_KERNEL); 2978 if (cmd == NULL) 2979 return -ENOMEM; 2980 2981 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_BEACON); 2982 cmd->header.length = cpu_to_le16(sizeof(*cmd) + len); 2983 cmd->beacon_len = cpu_to_le16(len); 2984 memcpy(cmd->beacon, beacon, len); 2985 2986 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 2987 kfree(cmd); 2988 2989 return rc; 2990 } 2991 2992 /* 2993 * CMD_SET_PRE_SCAN. 2994 */ 2995 struct mwl8k_cmd_set_pre_scan { 2996 struct mwl8k_cmd_pkt_hdr header; 2997 } __packed; 2998 2999 static int mwl8k_cmd_set_pre_scan(struct ieee80211_hw *hw) 3000 { 3001 struct mwl8k_cmd_set_pre_scan *cmd; 3002 int rc; 3003 3004 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3005 if (cmd == NULL) 3006 return -ENOMEM; 3007 3008 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_PRE_SCAN); 3009 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3010 3011 rc = mwl8k_post_cmd(hw, &cmd->header); 3012 kfree(cmd); 3013 3014 return rc; 3015 } 3016 3017 /* 3018 * CMD_BBP_REG_ACCESS. 3019 */ 3020 struct mwl8k_cmd_bbp_reg_access { 3021 struct mwl8k_cmd_pkt_hdr header; 3022 __le16 action; 3023 __le16 offset; 3024 u8 value; 3025 u8 rsrv[3]; 3026 } __packed; 3027 3028 static int 3029 mwl8k_cmd_bbp_reg_access(struct ieee80211_hw *hw, 3030 u16 action, 3031 u16 offset, 3032 u8 *value) 3033 { 3034 struct mwl8k_cmd_bbp_reg_access *cmd; 3035 int rc; 3036 3037 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3038 if (cmd == NULL) 3039 return -ENOMEM; 3040 3041 cmd->header.code = cpu_to_le16(MWL8K_CMD_BBP_REG_ACCESS); 3042 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3043 cmd->action = cpu_to_le16(action); 3044 cmd->offset = cpu_to_le16(offset); 3045 3046 rc = mwl8k_post_cmd(hw, &cmd->header); 3047 3048 if (!rc) 3049 *value = cmd->value; 3050 else 3051 *value = 0; 3052 3053 kfree(cmd); 3054 3055 return rc; 3056 } 3057 3058 /* 3059 * CMD_SET_POST_SCAN. 3060 */ 3061 struct mwl8k_cmd_set_post_scan { 3062 struct mwl8k_cmd_pkt_hdr header; 3063 __le32 isibss; 3064 __u8 bssid[ETH_ALEN]; 3065 } __packed; 3066 3067 static int 3068 mwl8k_cmd_set_post_scan(struct ieee80211_hw *hw, const __u8 *mac) 3069 { 3070 struct mwl8k_cmd_set_post_scan *cmd; 3071 int rc; 3072 3073 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3074 if (cmd == NULL) 3075 return -ENOMEM; 3076 3077 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_POST_SCAN); 3078 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3079 cmd->isibss = 0; 3080 memcpy(cmd->bssid, mac, ETH_ALEN); 3081 3082 rc = mwl8k_post_cmd(hw, &cmd->header); 3083 kfree(cmd); 3084 3085 return rc; 3086 } 3087 3088 static int freq_to_idx(struct mwl8k_priv *priv, int freq) 3089 { 3090 struct ieee80211_supported_band *sband; 3091 int band, ch, idx = 0; 3092 3093 for (band = NL80211_BAND_2GHZ; band < NUM_NL80211_BANDS; band++) { 3094 sband = priv->hw->wiphy->bands[band]; 3095 if (!sband) 3096 continue; 3097 3098 for (ch = 0; ch < sband->n_channels; ch++, idx++) 3099 if (sband->channels[ch].center_freq == freq) 3100 goto exit; 3101 } 3102 3103 exit: 3104 return idx; 3105 } 3106 3107 static void mwl8k_update_survey(struct mwl8k_priv *priv, 3108 struct ieee80211_channel *channel) 3109 { 3110 u32 cca_cnt, rx_rdy; 3111 s8 nf = 0, idx; 3112 struct survey_info *survey; 3113 3114 idx = freq_to_idx(priv, priv->acs_chan->center_freq); 3115 if (idx >= MWL8K_NUM_CHANS) { 3116 wiphy_err(priv->hw->wiphy, "Failed to update survey\n"); 3117 return; 3118 } 3119 3120 survey = &priv->survey[idx]; 3121 3122 cca_cnt = ioread32(priv->regs + NOK_CCA_CNT_REG); 3123 cca_cnt /= 1000; /* uSecs to mSecs */ 3124 survey->time_busy = (u64) cca_cnt; 3125 3126 rx_rdy = ioread32(priv->regs + BBU_RXRDY_CNT_REG); 3127 rx_rdy /= 1000; /* uSecs to mSecs */ 3128 survey->time_rx = (u64) rx_rdy; 3129 3130 priv->channel_time = jiffies - priv->channel_time; 3131 survey->time = jiffies_to_msecs(priv->channel_time); 3132 3133 survey->channel = channel; 3134 3135 mwl8k_cmd_bbp_reg_access(priv->hw, 0, BBU_AVG_NOISE_VAL, &nf); 3136 3137 /* Make sure sign is negative else ACS at hostapd fails */ 3138 survey->noise = nf * -1; 3139 3140 survey->filled = SURVEY_INFO_NOISE_DBM | 3141 SURVEY_INFO_TIME | 3142 SURVEY_INFO_TIME_BUSY | 3143 SURVEY_INFO_TIME_RX; 3144 } 3145 3146 /* 3147 * CMD_SET_RF_CHANNEL. 3148 */ 3149 struct mwl8k_cmd_set_rf_channel { 3150 struct mwl8k_cmd_pkt_hdr header; 3151 __le16 action; 3152 __u8 current_channel; 3153 __le32 channel_flags; 3154 } __packed; 3155 3156 static int mwl8k_cmd_set_rf_channel(struct ieee80211_hw *hw, 3157 struct ieee80211_conf *conf) 3158 { 3159 struct ieee80211_channel *channel = conf->chandef.chan; 3160 enum nl80211_channel_type channel_type = 3161 cfg80211_get_chandef_type(&conf->chandef); 3162 struct mwl8k_cmd_set_rf_channel *cmd; 3163 struct mwl8k_priv *priv = hw->priv; 3164 int rc; 3165 3166 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3167 if (cmd == NULL) 3168 return -ENOMEM; 3169 3170 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_RF_CHANNEL); 3171 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3172 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 3173 cmd->current_channel = channel->hw_value; 3174 3175 if (channel->band == NL80211_BAND_2GHZ) 3176 cmd->channel_flags |= cpu_to_le32(0x00000001); 3177 else if (channel->band == NL80211_BAND_5GHZ) 3178 cmd->channel_flags |= cpu_to_le32(0x00000004); 3179 3180 if (!priv->sw_scan_start) { 3181 if (channel_type == NL80211_CHAN_NO_HT || 3182 channel_type == NL80211_CHAN_HT20) 3183 cmd->channel_flags |= cpu_to_le32(0x00000080); 3184 else if (channel_type == NL80211_CHAN_HT40MINUS) 3185 cmd->channel_flags |= cpu_to_le32(0x000001900); 3186 else if (channel_type == NL80211_CHAN_HT40PLUS) 3187 cmd->channel_flags |= cpu_to_le32(0x000000900); 3188 } else { 3189 cmd->channel_flags |= cpu_to_le32(0x00000080); 3190 } 3191 3192 if (priv->sw_scan_start) { 3193 /* Store current channel stats 3194 * before switching to newer one. 3195 * This will be processed only for AP fw. 3196 */ 3197 if (priv->channel_time != 0) 3198 mwl8k_update_survey(priv, priv->acs_chan); 3199 3200 priv->channel_time = jiffies; 3201 priv->acs_chan = channel; 3202 } 3203 3204 rc = mwl8k_post_cmd(hw, &cmd->header); 3205 kfree(cmd); 3206 3207 return rc; 3208 } 3209 3210 /* 3211 * CMD_SET_AID. 3212 */ 3213 #define MWL8K_FRAME_PROT_DISABLED 0x00 3214 #define MWL8K_FRAME_PROT_11G 0x07 3215 #define MWL8K_FRAME_PROT_11N_HT_40MHZ_ONLY 0x02 3216 #define MWL8K_FRAME_PROT_11N_HT_ALL 0x06 3217 3218 struct mwl8k_cmd_update_set_aid { 3219 struct mwl8k_cmd_pkt_hdr header; 3220 __le16 aid; 3221 3222 /* AP's MAC address (BSSID) */ 3223 __u8 bssid[ETH_ALEN]; 3224 __le16 protection_mode; 3225 __u8 supp_rates[14]; 3226 } __packed; 3227 3228 static void legacy_rate_mask_to_array(u8 *rates, u32 mask) 3229 { 3230 int i; 3231 int j; 3232 3233 /* 3234 * Clear nonstandard rate 4. 3235 */ 3236 mask &= 0x1fef; 3237 3238 for (i = 0, j = 0; i < 13; i++) { 3239 if (mask & (1 << i)) 3240 rates[j++] = mwl8k_rates_24[i].hw_value; 3241 } 3242 } 3243 3244 static int 3245 mwl8k_cmd_set_aid(struct ieee80211_hw *hw, 3246 struct ieee80211_vif *vif, u32 legacy_rate_mask) 3247 { 3248 struct mwl8k_cmd_update_set_aid *cmd; 3249 u16 prot_mode; 3250 int rc; 3251 3252 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3253 if (cmd == NULL) 3254 return -ENOMEM; 3255 3256 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_AID); 3257 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3258 cmd->aid = cpu_to_le16(vif->cfg.aid); 3259 memcpy(cmd->bssid, vif->bss_conf.bssid, ETH_ALEN); 3260 3261 if (vif->bss_conf.use_cts_prot) { 3262 prot_mode = MWL8K_FRAME_PROT_11G; 3263 } else { 3264 switch (vif->bss_conf.ht_operation_mode & 3265 IEEE80211_HT_OP_MODE_PROTECTION) { 3266 case IEEE80211_HT_OP_MODE_PROTECTION_20MHZ: 3267 prot_mode = MWL8K_FRAME_PROT_11N_HT_40MHZ_ONLY; 3268 break; 3269 case IEEE80211_HT_OP_MODE_PROTECTION_NONHT_MIXED: 3270 prot_mode = MWL8K_FRAME_PROT_11N_HT_ALL; 3271 break; 3272 default: 3273 prot_mode = MWL8K_FRAME_PROT_DISABLED; 3274 break; 3275 } 3276 } 3277 cmd->protection_mode = cpu_to_le16(prot_mode); 3278 3279 legacy_rate_mask_to_array(cmd->supp_rates, legacy_rate_mask); 3280 3281 rc = mwl8k_post_cmd(hw, &cmd->header); 3282 kfree(cmd); 3283 3284 return rc; 3285 } 3286 3287 /* 3288 * CMD_SET_RATE. 3289 */ 3290 struct mwl8k_cmd_set_rate { 3291 struct mwl8k_cmd_pkt_hdr header; 3292 __u8 legacy_rates[14]; 3293 3294 /* Bitmap for supported MCS codes. */ 3295 __u8 mcs_set[16]; 3296 __u8 reserved[16]; 3297 } __packed; 3298 3299 static int 3300 mwl8k_cmd_set_rate(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 3301 u32 legacy_rate_mask, u8 *mcs_rates) 3302 { 3303 struct mwl8k_cmd_set_rate *cmd; 3304 int rc; 3305 3306 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3307 if (cmd == NULL) 3308 return -ENOMEM; 3309 3310 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_RATE); 3311 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3312 legacy_rate_mask_to_array(cmd->legacy_rates, legacy_rate_mask); 3313 memcpy(cmd->mcs_set, mcs_rates, 16); 3314 3315 rc = mwl8k_post_cmd(hw, &cmd->header); 3316 kfree(cmd); 3317 3318 return rc; 3319 } 3320 3321 /* 3322 * CMD_FINALIZE_JOIN. 3323 */ 3324 #define MWL8K_FJ_BEACON_MAXLEN 128 3325 3326 struct mwl8k_cmd_finalize_join { 3327 struct mwl8k_cmd_pkt_hdr header; 3328 __le32 sleep_interval; /* Number of beacon periods to sleep */ 3329 __u8 beacon_data[MWL8K_FJ_BEACON_MAXLEN]; 3330 } __packed; 3331 3332 static int mwl8k_cmd_finalize_join(struct ieee80211_hw *hw, void *frame, 3333 int framelen, int dtim) 3334 { 3335 struct mwl8k_cmd_finalize_join *cmd; 3336 struct ieee80211_mgmt *payload = frame; 3337 int payload_len; 3338 int rc; 3339 3340 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3341 if (cmd == NULL) 3342 return -ENOMEM; 3343 3344 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_FINALIZE_JOIN); 3345 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3346 cmd->sleep_interval = cpu_to_le32(dtim ? dtim : 1); 3347 3348 payload_len = framelen - ieee80211_hdrlen(payload->frame_control); 3349 if (payload_len < 0) 3350 payload_len = 0; 3351 else if (payload_len > MWL8K_FJ_BEACON_MAXLEN) 3352 payload_len = MWL8K_FJ_BEACON_MAXLEN; 3353 3354 memcpy(cmd->beacon_data, &payload->u.beacon, payload_len); 3355 3356 rc = mwl8k_post_cmd(hw, &cmd->header); 3357 kfree(cmd); 3358 3359 return rc; 3360 } 3361 3362 /* 3363 * CMD_SET_RTS_THRESHOLD. 3364 */ 3365 struct mwl8k_cmd_set_rts_threshold { 3366 struct mwl8k_cmd_pkt_hdr header; 3367 __le16 action; 3368 __le16 threshold; 3369 } __packed; 3370 3371 static int 3372 mwl8k_cmd_set_rts_threshold(struct ieee80211_hw *hw, int radio_idx, 3373 int rts_thresh) 3374 { 3375 struct mwl8k_cmd_set_rts_threshold *cmd; 3376 int rc; 3377 3378 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3379 if (cmd == NULL) 3380 return -ENOMEM; 3381 3382 cmd->header.code = cpu_to_le16(MWL8K_CMD_RTS_THRESHOLD); 3383 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3384 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 3385 cmd->threshold = cpu_to_le16(rts_thresh); 3386 3387 rc = mwl8k_post_cmd(hw, &cmd->header); 3388 kfree(cmd); 3389 3390 return rc; 3391 } 3392 3393 /* 3394 * CMD_SET_SLOT. 3395 */ 3396 struct mwl8k_cmd_set_slot { 3397 struct mwl8k_cmd_pkt_hdr header; 3398 __le16 action; 3399 __u8 short_slot; 3400 } __packed; 3401 3402 static int mwl8k_cmd_set_slot(struct ieee80211_hw *hw, bool short_slot_time) 3403 { 3404 struct mwl8k_cmd_set_slot *cmd; 3405 int rc; 3406 3407 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3408 if (cmd == NULL) 3409 return -ENOMEM; 3410 3411 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_SLOT); 3412 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3413 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 3414 cmd->short_slot = short_slot_time; 3415 3416 rc = mwl8k_post_cmd(hw, &cmd->header); 3417 kfree(cmd); 3418 3419 return rc; 3420 } 3421 3422 /* 3423 * CMD_SET_EDCA_PARAMS. 3424 */ 3425 struct mwl8k_cmd_set_edca_params { 3426 struct mwl8k_cmd_pkt_hdr header; 3427 3428 /* See MWL8K_SET_EDCA_XXX below */ 3429 __le16 action; 3430 3431 /* TX opportunity in units of 32 us */ 3432 __le16 txop; 3433 3434 union { 3435 struct { 3436 /* Log exponent of max contention period: 0...15 */ 3437 __le32 log_cw_max; 3438 3439 /* Log exponent of min contention period: 0...15 */ 3440 __le32 log_cw_min; 3441 3442 /* Adaptive interframe spacing in units of 32us */ 3443 __u8 aifs; 3444 3445 /* TX queue to configure */ 3446 __u8 txq; 3447 } ap; 3448 struct { 3449 /* Log exponent of max contention period: 0...15 */ 3450 __u8 log_cw_max; 3451 3452 /* Log exponent of min contention period: 0...15 */ 3453 __u8 log_cw_min; 3454 3455 /* Adaptive interframe spacing in units of 32us */ 3456 __u8 aifs; 3457 3458 /* TX queue to configure */ 3459 __u8 txq; 3460 } sta; 3461 }; 3462 } __packed; 3463 3464 #define MWL8K_SET_EDCA_CW 0x01 3465 #define MWL8K_SET_EDCA_TXOP 0x02 3466 #define MWL8K_SET_EDCA_AIFS 0x04 3467 3468 #define MWL8K_SET_EDCA_ALL (MWL8K_SET_EDCA_CW | \ 3469 MWL8K_SET_EDCA_TXOP | \ 3470 MWL8K_SET_EDCA_AIFS) 3471 3472 static int 3473 mwl8k_cmd_set_edca_params(struct ieee80211_hw *hw, __u8 qnum, 3474 __u16 cw_min, __u16 cw_max, 3475 __u8 aifs, __u16 txop) 3476 { 3477 struct mwl8k_priv *priv = hw->priv; 3478 struct mwl8k_cmd_set_edca_params *cmd; 3479 int rc; 3480 3481 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3482 if (cmd == NULL) 3483 return -ENOMEM; 3484 3485 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_EDCA_PARAMS); 3486 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3487 cmd->action = cpu_to_le16(MWL8K_SET_EDCA_ALL); 3488 cmd->txop = cpu_to_le16(txop); 3489 if (priv->ap_fw) { 3490 cmd->ap.log_cw_max = cpu_to_le32(ilog2(cw_max + 1)); 3491 cmd->ap.log_cw_min = cpu_to_le32(ilog2(cw_min + 1)); 3492 cmd->ap.aifs = aifs; 3493 cmd->ap.txq = qnum; 3494 } else { 3495 cmd->sta.log_cw_max = (u8)ilog2(cw_max + 1); 3496 cmd->sta.log_cw_min = (u8)ilog2(cw_min + 1); 3497 cmd->sta.aifs = aifs; 3498 cmd->sta.txq = qnum; 3499 } 3500 3501 rc = mwl8k_post_cmd(hw, &cmd->header); 3502 kfree(cmd); 3503 3504 return rc; 3505 } 3506 3507 /* 3508 * CMD_SET_WMM_MODE. 3509 */ 3510 struct mwl8k_cmd_set_wmm_mode { 3511 struct mwl8k_cmd_pkt_hdr header; 3512 __le16 action; 3513 } __packed; 3514 3515 static int mwl8k_cmd_set_wmm_mode(struct ieee80211_hw *hw, bool enable) 3516 { 3517 struct mwl8k_priv *priv = hw->priv; 3518 struct mwl8k_cmd_set_wmm_mode *cmd; 3519 int rc; 3520 3521 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3522 if (cmd == NULL) 3523 return -ENOMEM; 3524 3525 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_WMM_MODE); 3526 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3527 cmd->action = cpu_to_le16(!!enable); 3528 3529 rc = mwl8k_post_cmd(hw, &cmd->header); 3530 kfree(cmd); 3531 3532 if (!rc) 3533 priv->wmm_enabled = enable; 3534 3535 return rc; 3536 } 3537 3538 /* 3539 * CMD_MIMO_CONFIG. 3540 */ 3541 struct mwl8k_cmd_mimo_config { 3542 struct mwl8k_cmd_pkt_hdr header; 3543 __le32 action; 3544 __u8 rx_antenna_map; 3545 __u8 tx_antenna_map; 3546 } __packed; 3547 3548 static int mwl8k_cmd_mimo_config(struct ieee80211_hw *hw, __u8 rx, __u8 tx) 3549 { 3550 struct mwl8k_cmd_mimo_config *cmd; 3551 int rc; 3552 3553 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3554 if (cmd == NULL) 3555 return -ENOMEM; 3556 3557 cmd->header.code = cpu_to_le16(MWL8K_CMD_MIMO_CONFIG); 3558 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3559 cmd->action = cpu_to_le32((u32)MWL8K_CMD_SET); 3560 cmd->rx_antenna_map = rx; 3561 cmd->tx_antenna_map = tx; 3562 3563 rc = mwl8k_post_cmd(hw, &cmd->header); 3564 kfree(cmd); 3565 3566 return rc; 3567 } 3568 3569 /* 3570 * CMD_USE_FIXED_RATE (STA version). 3571 */ 3572 struct mwl8k_cmd_use_fixed_rate_sta { 3573 struct mwl8k_cmd_pkt_hdr header; 3574 __le32 action; 3575 __le32 allow_rate_drop; 3576 __le32 num_rates; 3577 struct { 3578 __le32 is_ht_rate; 3579 __le32 enable_retry; 3580 __le32 rate; 3581 __le32 retry_count; 3582 } rate_entry[8]; 3583 __le32 rate_type; 3584 __le32 reserved1; 3585 __le32 reserved2; 3586 } __packed; 3587 3588 #define MWL8K_USE_AUTO_RATE 0x0002 3589 #define MWL8K_UCAST_RATE 0 3590 3591 static int mwl8k_cmd_use_fixed_rate_sta(struct ieee80211_hw *hw) 3592 { 3593 struct mwl8k_cmd_use_fixed_rate_sta *cmd; 3594 int rc; 3595 3596 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3597 if (cmd == NULL) 3598 return -ENOMEM; 3599 3600 cmd->header.code = cpu_to_le16(MWL8K_CMD_USE_FIXED_RATE); 3601 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3602 cmd->action = cpu_to_le32(MWL8K_USE_AUTO_RATE); 3603 cmd->rate_type = cpu_to_le32(MWL8K_UCAST_RATE); 3604 3605 rc = mwl8k_post_cmd(hw, &cmd->header); 3606 kfree(cmd); 3607 3608 return rc; 3609 } 3610 3611 /* 3612 * CMD_USE_FIXED_RATE (AP version). 3613 */ 3614 struct mwl8k_cmd_use_fixed_rate_ap { 3615 struct mwl8k_cmd_pkt_hdr header; 3616 __le32 action; 3617 __le32 allow_rate_drop; 3618 __le32 num_rates; 3619 struct mwl8k_rate_entry_ap { 3620 __le32 is_ht_rate; 3621 __le32 enable_retry; 3622 __le32 rate; 3623 __le32 retry_count; 3624 } rate_entry[4]; 3625 u8 multicast_rate; 3626 u8 multicast_rate_type; 3627 u8 management_rate; 3628 } __packed; 3629 3630 static int 3631 mwl8k_cmd_use_fixed_rate_ap(struct ieee80211_hw *hw, int mcast, int mgmt) 3632 { 3633 struct mwl8k_cmd_use_fixed_rate_ap *cmd; 3634 int rc; 3635 3636 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3637 if (cmd == NULL) 3638 return -ENOMEM; 3639 3640 cmd->header.code = cpu_to_le16(MWL8K_CMD_USE_FIXED_RATE); 3641 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3642 cmd->action = cpu_to_le32(MWL8K_USE_AUTO_RATE); 3643 cmd->multicast_rate = mcast; 3644 cmd->management_rate = mgmt; 3645 3646 rc = mwl8k_post_cmd(hw, &cmd->header); 3647 kfree(cmd); 3648 3649 return rc; 3650 } 3651 3652 /* 3653 * CMD_ENABLE_SNIFFER. 3654 */ 3655 struct mwl8k_cmd_enable_sniffer { 3656 struct mwl8k_cmd_pkt_hdr header; 3657 __le32 action; 3658 } __packed; 3659 3660 static int mwl8k_cmd_enable_sniffer(struct ieee80211_hw *hw, bool enable) 3661 { 3662 struct mwl8k_cmd_enable_sniffer *cmd; 3663 int rc; 3664 3665 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3666 if (cmd == NULL) 3667 return -ENOMEM; 3668 3669 cmd->header.code = cpu_to_le16(MWL8K_CMD_ENABLE_SNIFFER); 3670 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3671 cmd->action = cpu_to_le32(!!enable); 3672 3673 rc = mwl8k_post_cmd(hw, &cmd->header); 3674 kfree(cmd); 3675 3676 return rc; 3677 } 3678 3679 struct mwl8k_cmd_update_mac_addr { 3680 struct mwl8k_cmd_pkt_hdr header; 3681 union { 3682 struct { 3683 __le16 mac_type; 3684 __u8 mac_addr[ETH_ALEN]; 3685 } mbss; 3686 __u8 mac_addr[ETH_ALEN]; 3687 }; 3688 } __packed; 3689 3690 #define MWL8K_MAC_TYPE_PRIMARY_CLIENT 0 3691 #define MWL8K_MAC_TYPE_SECONDARY_CLIENT 1 3692 #define MWL8K_MAC_TYPE_PRIMARY_AP 2 3693 #define MWL8K_MAC_TYPE_SECONDARY_AP 3 3694 3695 static int mwl8k_cmd_update_mac_addr(struct ieee80211_hw *hw, 3696 struct ieee80211_vif *vif, u8 *mac, bool set) 3697 { 3698 struct mwl8k_priv *priv = hw->priv; 3699 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 3700 struct mwl8k_cmd_update_mac_addr *cmd; 3701 int mac_type; 3702 int rc; 3703 3704 mac_type = MWL8K_MAC_TYPE_PRIMARY_AP; 3705 if (vif != NULL && vif->type == NL80211_IFTYPE_STATION) { 3706 if (mwl8k_vif->macid + 1 == ffs(priv->sta_macids_supported)) 3707 if (priv->ap_fw) 3708 mac_type = MWL8K_MAC_TYPE_SECONDARY_CLIENT; 3709 else 3710 mac_type = MWL8K_MAC_TYPE_PRIMARY_CLIENT; 3711 else 3712 mac_type = MWL8K_MAC_TYPE_SECONDARY_CLIENT; 3713 } else if (vif != NULL && vif->type == NL80211_IFTYPE_AP) { 3714 if (mwl8k_vif->macid + 1 == ffs(priv->ap_macids_supported)) 3715 mac_type = MWL8K_MAC_TYPE_PRIMARY_AP; 3716 else 3717 mac_type = MWL8K_MAC_TYPE_SECONDARY_AP; 3718 } 3719 3720 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3721 if (cmd == NULL) 3722 return -ENOMEM; 3723 3724 if (set) 3725 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_MAC_ADDR); 3726 else 3727 cmd->header.code = cpu_to_le16(MWL8K_CMD_DEL_MAC_ADDR); 3728 3729 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3730 if (priv->ap_fw) { 3731 cmd->mbss.mac_type = cpu_to_le16(mac_type); 3732 memcpy(cmd->mbss.mac_addr, mac, ETH_ALEN); 3733 } else { 3734 memcpy(cmd->mac_addr, mac, ETH_ALEN); 3735 } 3736 3737 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 3738 kfree(cmd); 3739 3740 return rc; 3741 } 3742 3743 /* 3744 * MWL8K_CMD_SET_MAC_ADDR. 3745 */ 3746 static inline int mwl8k_cmd_set_mac_addr(struct ieee80211_hw *hw, 3747 struct ieee80211_vif *vif, u8 *mac) 3748 { 3749 return mwl8k_cmd_update_mac_addr(hw, vif, mac, true); 3750 } 3751 3752 /* 3753 * MWL8K_CMD_DEL_MAC_ADDR. 3754 */ 3755 static inline int mwl8k_cmd_del_mac_addr(struct ieee80211_hw *hw, 3756 struct ieee80211_vif *vif, u8 *mac) 3757 { 3758 return mwl8k_cmd_update_mac_addr(hw, vif, mac, false); 3759 } 3760 3761 /* 3762 * CMD_SET_RATEADAPT_MODE. 3763 */ 3764 struct mwl8k_cmd_set_rate_adapt_mode { 3765 struct mwl8k_cmd_pkt_hdr header; 3766 __le16 action; 3767 __le16 mode; 3768 } __packed; 3769 3770 static int mwl8k_cmd_set_rateadapt_mode(struct ieee80211_hw *hw, __u16 mode) 3771 { 3772 struct mwl8k_cmd_set_rate_adapt_mode *cmd; 3773 int rc; 3774 3775 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3776 if (cmd == NULL) 3777 return -ENOMEM; 3778 3779 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_RATEADAPT_MODE); 3780 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3781 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 3782 cmd->mode = cpu_to_le16(mode); 3783 3784 rc = mwl8k_post_cmd(hw, &cmd->header); 3785 kfree(cmd); 3786 3787 return rc; 3788 } 3789 3790 /* 3791 * CMD_GET_WATCHDOG_BITMAP. 3792 */ 3793 struct mwl8k_cmd_get_watchdog_bitmap { 3794 struct mwl8k_cmd_pkt_hdr header; 3795 u8 bitmap; 3796 } __packed; 3797 3798 static int mwl8k_cmd_get_watchdog_bitmap(struct ieee80211_hw *hw, u8 *bitmap) 3799 { 3800 struct mwl8k_cmd_get_watchdog_bitmap *cmd; 3801 int rc; 3802 3803 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3804 if (cmd == NULL) 3805 return -ENOMEM; 3806 3807 cmd->header.code = cpu_to_le16(MWL8K_CMD_GET_WATCHDOG_BITMAP); 3808 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3809 3810 rc = mwl8k_post_cmd(hw, &cmd->header); 3811 if (!rc) 3812 *bitmap = cmd->bitmap; 3813 3814 kfree(cmd); 3815 3816 return rc; 3817 } 3818 3819 #define MWL8K_WMM_QUEUE_NUMBER 3 3820 3821 static void mwl8k_destroy_ba(struct ieee80211_hw *hw, 3822 u8 idx); 3823 3824 static void mwl8k_watchdog_ba_events(struct work_struct *work) 3825 { 3826 int rc; 3827 u8 bitmap = 0, stream_index; 3828 struct mwl8k_ampdu_stream *streams; 3829 struct mwl8k_priv *priv = 3830 container_of(work, struct mwl8k_priv, watchdog_ba_handle); 3831 struct ieee80211_hw *hw = priv->hw; 3832 int i; 3833 u32 status = 0; 3834 3835 mwl8k_fw_lock(hw); 3836 3837 rc = mwl8k_cmd_get_watchdog_bitmap(priv->hw, &bitmap); 3838 if (rc) 3839 goto done; 3840 3841 spin_lock(&priv->stream_lock); 3842 3843 /* the bitmap is the hw queue number. Map it to the ampdu queue. */ 3844 for (i = 0; i < TOTAL_HW_TX_QUEUES; i++) { 3845 if (bitmap & (1 << i)) { 3846 stream_index = (i + MWL8K_WMM_QUEUE_NUMBER) % 3847 TOTAL_HW_TX_QUEUES; 3848 streams = &priv->ampdu[stream_index]; 3849 if (streams->state == AMPDU_STREAM_ACTIVE) { 3850 ieee80211_stop_tx_ba_session(streams->sta, 3851 streams->tid); 3852 spin_unlock(&priv->stream_lock); 3853 mwl8k_destroy_ba(hw, stream_index); 3854 spin_lock(&priv->stream_lock); 3855 } 3856 } 3857 } 3858 3859 spin_unlock(&priv->stream_lock); 3860 done: 3861 atomic_dec(&priv->watchdog_event_pending); 3862 status = ioread32(priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK); 3863 iowrite32((status | MWL8K_A2H_INT_BA_WATCHDOG), 3864 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK); 3865 mwl8k_fw_unlock(hw); 3866 return; 3867 } 3868 3869 3870 /* 3871 * CMD_BSS_START. 3872 */ 3873 struct mwl8k_cmd_bss_start { 3874 struct mwl8k_cmd_pkt_hdr header; 3875 __le32 enable; 3876 } __packed; 3877 3878 static int mwl8k_cmd_bss_start(struct ieee80211_hw *hw, 3879 struct ieee80211_vif *vif, int enable) 3880 { 3881 struct mwl8k_cmd_bss_start *cmd; 3882 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 3883 struct mwl8k_priv *priv = hw->priv; 3884 int rc; 3885 3886 if (enable && (priv->running_bsses & (1 << mwl8k_vif->macid))) 3887 return 0; 3888 3889 if (!enable && !(priv->running_bsses & (1 << mwl8k_vif->macid))) 3890 return 0; 3891 3892 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3893 if (cmd == NULL) 3894 return -ENOMEM; 3895 3896 cmd->header.code = cpu_to_le16(MWL8K_CMD_BSS_START); 3897 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3898 cmd->enable = cpu_to_le32(enable); 3899 3900 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 3901 kfree(cmd); 3902 3903 if (!rc) { 3904 if (enable) 3905 priv->running_bsses |= (1 << mwl8k_vif->macid); 3906 else 3907 priv->running_bsses &= ~(1 << mwl8k_vif->macid); 3908 } 3909 return rc; 3910 } 3911 3912 static void mwl8k_enable_bsses(struct ieee80211_hw *hw, bool enable, u32 bitmap) 3913 { 3914 struct mwl8k_priv *priv = hw->priv; 3915 struct mwl8k_vif *mwl8k_vif, *tmp_vif; 3916 struct ieee80211_vif *vif; 3917 3918 list_for_each_entry_safe(mwl8k_vif, tmp_vif, &priv->vif_list, list) { 3919 vif = mwl8k_vif->vif; 3920 3921 if (!(bitmap & (1 << mwl8k_vif->macid))) 3922 continue; 3923 3924 if (vif->type == NL80211_IFTYPE_AP) 3925 mwl8k_cmd_bss_start(hw, vif, enable); 3926 } 3927 } 3928 /* 3929 * CMD_BASTREAM. 3930 */ 3931 3932 /* 3933 * UPSTREAM is tx direction 3934 */ 3935 #define BASTREAM_FLAG_DIRECTION_UPSTREAM 0x00 3936 #define BASTREAM_FLAG_IMMEDIATE_TYPE 0x01 3937 3938 enum ba_stream_action_type { 3939 MWL8K_BA_CREATE, 3940 MWL8K_BA_UPDATE, 3941 MWL8K_BA_DESTROY, 3942 MWL8K_BA_FLUSH, 3943 MWL8K_BA_CHECK, 3944 }; 3945 3946 3947 struct mwl8k_create_ba_stream { 3948 __le32 flags; 3949 __le32 idle_thrs; 3950 __le32 bar_thrs; 3951 __le32 window_size; 3952 u8 peer_mac_addr[6]; 3953 u8 dialog_token; 3954 u8 tid; 3955 u8 queue_id; 3956 u8 param_info; 3957 __le32 ba_context; 3958 u8 reset_seq_no_flag; 3959 __le16 curr_seq_no; 3960 u8 sta_src_mac_addr[6]; 3961 } __packed; 3962 3963 struct mwl8k_destroy_ba_stream { 3964 __le32 flags; 3965 __le32 ba_context; 3966 } __packed; 3967 3968 struct mwl8k_cmd_bastream { 3969 struct mwl8k_cmd_pkt_hdr header; 3970 __le32 action; 3971 union { 3972 struct mwl8k_create_ba_stream create_params; 3973 struct mwl8k_destroy_ba_stream destroy_params; 3974 }; 3975 } __packed; 3976 3977 static int 3978 mwl8k_check_ba(struct ieee80211_hw *hw, struct mwl8k_ampdu_stream *stream, 3979 struct ieee80211_vif *vif) 3980 { 3981 struct mwl8k_cmd_bastream *cmd; 3982 int rc; 3983 3984 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3985 if (cmd == NULL) 3986 return -ENOMEM; 3987 3988 cmd->header.code = cpu_to_le16(MWL8K_CMD_BASTREAM); 3989 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3990 3991 cmd->action = cpu_to_le32(MWL8K_BA_CHECK); 3992 3993 cmd->create_params.queue_id = stream->idx; 3994 memcpy(&cmd->create_params.peer_mac_addr[0], stream->sta->addr, 3995 ETH_ALEN); 3996 cmd->create_params.tid = stream->tid; 3997 3998 cmd->create_params.flags = 3999 cpu_to_le32(BASTREAM_FLAG_IMMEDIATE_TYPE) | 4000 cpu_to_le32(BASTREAM_FLAG_DIRECTION_UPSTREAM); 4001 4002 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4003 4004 kfree(cmd); 4005 4006 return rc; 4007 } 4008 4009 static int 4010 mwl8k_create_ba(struct ieee80211_hw *hw, struct mwl8k_ampdu_stream *stream, 4011 u8 buf_size, struct ieee80211_vif *vif) 4012 { 4013 struct mwl8k_cmd_bastream *cmd; 4014 int rc; 4015 4016 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4017 if (cmd == NULL) 4018 return -ENOMEM; 4019 4020 4021 cmd->header.code = cpu_to_le16(MWL8K_CMD_BASTREAM); 4022 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4023 4024 cmd->action = cpu_to_le32(MWL8K_BA_CREATE); 4025 4026 cmd->create_params.bar_thrs = cpu_to_le32((u32)buf_size); 4027 cmd->create_params.window_size = cpu_to_le32((u32)buf_size); 4028 cmd->create_params.queue_id = stream->idx; 4029 4030 memcpy(cmd->create_params.peer_mac_addr, stream->sta->addr, ETH_ALEN); 4031 cmd->create_params.tid = stream->tid; 4032 cmd->create_params.curr_seq_no = cpu_to_le16(0); 4033 cmd->create_params.reset_seq_no_flag = 1; 4034 4035 cmd->create_params.param_info = 4036 (stream->sta->deflink.ht_cap.ampdu_factor & 4037 IEEE80211_HT_AMPDU_PARM_FACTOR) | 4038 ((stream->sta->deflink.ht_cap.ampdu_density << 2) & 4039 IEEE80211_HT_AMPDU_PARM_DENSITY); 4040 4041 cmd->create_params.flags = 4042 cpu_to_le32(BASTREAM_FLAG_IMMEDIATE_TYPE | 4043 BASTREAM_FLAG_DIRECTION_UPSTREAM); 4044 4045 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4046 4047 wiphy_debug(hw->wiphy, "Created a BA stream for %pM : tid %d\n", 4048 stream->sta->addr, stream->tid); 4049 kfree(cmd); 4050 4051 return rc; 4052 } 4053 4054 static void mwl8k_destroy_ba(struct ieee80211_hw *hw, 4055 u8 idx) 4056 { 4057 struct mwl8k_cmd_bastream *cmd; 4058 4059 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4060 if (cmd == NULL) 4061 return; 4062 4063 cmd->header.code = cpu_to_le16(MWL8K_CMD_BASTREAM); 4064 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4065 cmd->action = cpu_to_le32(MWL8K_BA_DESTROY); 4066 4067 cmd->destroy_params.ba_context = cpu_to_le32(idx); 4068 mwl8k_post_cmd(hw, &cmd->header); 4069 4070 wiphy_debug(hw->wiphy, "Deleted BA stream index %d\n", idx); 4071 4072 kfree(cmd); 4073 } 4074 4075 /* 4076 * CMD_SET_NEW_STN. 4077 */ 4078 struct mwl8k_cmd_set_new_stn { 4079 struct mwl8k_cmd_pkt_hdr header; 4080 __le16 aid; 4081 __u8 mac_addr[6]; 4082 __le16 stn_id; 4083 __le16 action; 4084 __le16 rsvd; 4085 __le32 legacy_rates; 4086 __u8 ht_rates[4]; 4087 __le16 cap_info; 4088 __le16 ht_capabilities_info; 4089 __u8 mac_ht_param_info; 4090 __u8 rev; 4091 __u8 control_channel; 4092 __u8 add_channel; 4093 __le16 op_mode; 4094 __le16 stbc; 4095 __u8 add_qos_info; 4096 __u8 is_qos_sta; 4097 __le32 fw_sta_ptr; 4098 } __packed; 4099 4100 #define MWL8K_STA_ACTION_ADD 0 4101 #define MWL8K_STA_ACTION_REMOVE 2 4102 4103 static int mwl8k_cmd_set_new_stn_add(struct ieee80211_hw *hw, 4104 struct ieee80211_vif *vif, 4105 struct ieee80211_sta *sta) 4106 { 4107 struct mwl8k_cmd_set_new_stn *cmd; 4108 u32 rates; 4109 int rc; 4110 4111 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4112 if (cmd == NULL) 4113 return -ENOMEM; 4114 4115 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_NEW_STN); 4116 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4117 cmd->aid = cpu_to_le16(sta->aid); 4118 memcpy(cmd->mac_addr, sta->addr, ETH_ALEN); 4119 cmd->stn_id = cpu_to_le16(sta->aid); 4120 cmd->action = cpu_to_le16(MWL8K_STA_ACTION_ADD); 4121 if (hw->conf.chandef.chan->band == NL80211_BAND_2GHZ) 4122 rates = sta->deflink.supp_rates[NL80211_BAND_2GHZ]; 4123 else 4124 rates = sta->deflink.supp_rates[NL80211_BAND_5GHZ] << 5; 4125 cmd->legacy_rates = cpu_to_le32(rates); 4126 if (sta->deflink.ht_cap.ht_supported) { 4127 cmd->ht_rates[0] = sta->deflink.ht_cap.mcs.rx_mask[0]; 4128 cmd->ht_rates[1] = sta->deflink.ht_cap.mcs.rx_mask[1]; 4129 cmd->ht_rates[2] = sta->deflink.ht_cap.mcs.rx_mask[2]; 4130 cmd->ht_rates[3] = sta->deflink.ht_cap.mcs.rx_mask[3]; 4131 cmd->ht_capabilities_info = cpu_to_le16(sta->deflink.ht_cap.cap); 4132 cmd->mac_ht_param_info = (sta->deflink.ht_cap.ampdu_factor & 3) | 4133 ((sta->deflink.ht_cap.ampdu_density & 7) << 2); 4134 cmd->is_qos_sta = 1; 4135 } 4136 4137 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4138 kfree(cmd); 4139 4140 return rc; 4141 } 4142 4143 static int mwl8k_cmd_set_new_stn_add_self(struct ieee80211_hw *hw, 4144 struct ieee80211_vif *vif) 4145 { 4146 struct mwl8k_cmd_set_new_stn *cmd; 4147 int rc; 4148 4149 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4150 if (cmd == NULL) 4151 return -ENOMEM; 4152 4153 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_NEW_STN); 4154 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4155 memcpy(cmd->mac_addr, vif->addr, ETH_ALEN); 4156 4157 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4158 kfree(cmd); 4159 4160 return rc; 4161 } 4162 4163 static int mwl8k_cmd_set_new_stn_del(struct ieee80211_hw *hw, 4164 struct ieee80211_vif *vif, u8 *addr) 4165 { 4166 struct mwl8k_cmd_set_new_stn *cmd; 4167 struct mwl8k_priv *priv = hw->priv; 4168 int rc, i; 4169 u8 idx; 4170 4171 spin_lock(&priv->stream_lock); 4172 /* Destroy any active ampdu streams for this sta */ 4173 for (i = 0; i < MWL8K_NUM_AMPDU_STREAMS; i++) { 4174 struct mwl8k_ampdu_stream *s; 4175 s = &priv->ampdu[i]; 4176 if (s->state != AMPDU_NO_STREAM) { 4177 if (memcmp(s->sta->addr, addr, ETH_ALEN) == 0) { 4178 if (s->state == AMPDU_STREAM_ACTIVE) { 4179 idx = s->idx; 4180 spin_unlock(&priv->stream_lock); 4181 mwl8k_destroy_ba(hw, idx); 4182 spin_lock(&priv->stream_lock); 4183 } else if (s->state == AMPDU_STREAM_NEW) { 4184 mwl8k_remove_stream(hw, s); 4185 } 4186 } 4187 } 4188 } 4189 4190 spin_unlock(&priv->stream_lock); 4191 4192 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4193 if (cmd == NULL) 4194 return -ENOMEM; 4195 4196 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_NEW_STN); 4197 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4198 memcpy(cmd->mac_addr, addr, ETH_ALEN); 4199 cmd->action = cpu_to_le16(MWL8K_STA_ACTION_REMOVE); 4200 4201 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4202 kfree(cmd); 4203 4204 return rc; 4205 } 4206 4207 /* 4208 * CMD_UPDATE_ENCRYPTION. 4209 */ 4210 4211 #define MAX_ENCR_KEY_LENGTH 16 4212 #define MIC_KEY_LENGTH 8 4213 4214 struct mwl8k_cmd_update_encryption { 4215 struct mwl8k_cmd_pkt_hdr header; 4216 4217 __le32 action; 4218 __le32 reserved; 4219 __u8 mac_addr[6]; 4220 __u8 encr_type; 4221 4222 } __packed; 4223 4224 struct mwl8k_cmd_set_key { 4225 struct mwl8k_cmd_pkt_hdr header; 4226 4227 __le32 action; 4228 __le32 reserved; 4229 __le16 length; 4230 __le16 key_type_id; 4231 __le32 key_info; 4232 __le32 key_id; 4233 __le16 key_len; 4234 struct { 4235 __u8 key_material[MAX_ENCR_KEY_LENGTH]; 4236 __u8 tkip_tx_mic_key[MIC_KEY_LENGTH]; 4237 __u8 tkip_rx_mic_key[MIC_KEY_LENGTH]; 4238 } tkip; 4239 __le16 tkip_rsc_low; 4240 __le32 tkip_rsc_high; 4241 __le16 tkip_tsc_low; 4242 __le32 tkip_tsc_high; 4243 __u8 mac_addr[6]; 4244 } __packed; 4245 4246 enum { 4247 MWL8K_ENCR_ENABLE, 4248 MWL8K_ENCR_SET_KEY, 4249 MWL8K_ENCR_REMOVE_KEY, 4250 MWL8K_ENCR_SET_GROUP_KEY, 4251 }; 4252 4253 #define MWL8K_UPDATE_ENCRYPTION_TYPE_WEP 0 4254 #define MWL8K_UPDATE_ENCRYPTION_TYPE_DISABLE 1 4255 #define MWL8K_UPDATE_ENCRYPTION_TYPE_TKIP 4 4256 #define MWL8K_UPDATE_ENCRYPTION_TYPE_MIXED 7 4257 #define MWL8K_UPDATE_ENCRYPTION_TYPE_AES 8 4258 4259 enum { 4260 MWL8K_ALG_WEP, 4261 MWL8K_ALG_TKIP, 4262 MWL8K_ALG_CCMP, 4263 }; 4264 4265 #define MWL8K_KEY_FLAG_TXGROUPKEY 0x00000004 4266 #define MWL8K_KEY_FLAG_PAIRWISE 0x00000008 4267 #define MWL8K_KEY_FLAG_TSC_VALID 0x00000040 4268 #define MWL8K_KEY_FLAG_WEP_TXKEY 0x01000000 4269 #define MWL8K_KEY_FLAG_MICKEY_VALID 0x02000000 4270 4271 static int mwl8k_cmd_update_encryption_enable(struct ieee80211_hw *hw, 4272 struct ieee80211_vif *vif, 4273 u8 *addr, 4274 u8 encr_type) 4275 { 4276 struct mwl8k_cmd_update_encryption *cmd; 4277 int rc; 4278 4279 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4280 if (cmd == NULL) 4281 return -ENOMEM; 4282 4283 cmd->header.code = cpu_to_le16(MWL8K_CMD_UPDATE_ENCRYPTION); 4284 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4285 cmd->action = cpu_to_le32(MWL8K_ENCR_ENABLE); 4286 memcpy(cmd->mac_addr, addr, ETH_ALEN); 4287 cmd->encr_type = encr_type; 4288 4289 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4290 kfree(cmd); 4291 4292 return rc; 4293 } 4294 4295 static int mwl8k_encryption_set_cmd_info(struct mwl8k_cmd_set_key *cmd, 4296 u8 *addr, 4297 struct ieee80211_key_conf *key) 4298 { 4299 cmd->header.code = cpu_to_le16(MWL8K_CMD_UPDATE_ENCRYPTION); 4300 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4301 cmd->length = cpu_to_le16(sizeof(*cmd) - 4302 offsetof(struct mwl8k_cmd_set_key, length)); 4303 cmd->key_id = cpu_to_le32(key->keyidx); 4304 cmd->key_len = cpu_to_le16(key->keylen); 4305 memcpy(cmd->mac_addr, addr, ETH_ALEN); 4306 4307 switch (key->cipher) { 4308 case WLAN_CIPHER_SUITE_WEP40: 4309 case WLAN_CIPHER_SUITE_WEP104: 4310 cmd->key_type_id = cpu_to_le16(MWL8K_ALG_WEP); 4311 if (key->keyidx == 0) 4312 cmd->key_info = cpu_to_le32(MWL8K_KEY_FLAG_WEP_TXKEY); 4313 4314 break; 4315 case WLAN_CIPHER_SUITE_TKIP: 4316 cmd->key_type_id = cpu_to_le16(MWL8K_ALG_TKIP); 4317 cmd->key_info = (key->flags & IEEE80211_KEY_FLAG_PAIRWISE) 4318 ? cpu_to_le32(MWL8K_KEY_FLAG_PAIRWISE) 4319 : cpu_to_le32(MWL8K_KEY_FLAG_TXGROUPKEY); 4320 cmd->key_info |= cpu_to_le32(MWL8K_KEY_FLAG_MICKEY_VALID 4321 | MWL8K_KEY_FLAG_TSC_VALID); 4322 break; 4323 case WLAN_CIPHER_SUITE_CCMP: 4324 cmd->key_type_id = cpu_to_le16(MWL8K_ALG_CCMP); 4325 cmd->key_info = (key->flags & IEEE80211_KEY_FLAG_PAIRWISE) 4326 ? cpu_to_le32(MWL8K_KEY_FLAG_PAIRWISE) 4327 : cpu_to_le32(MWL8K_KEY_FLAG_TXGROUPKEY); 4328 break; 4329 default: 4330 return -ENOTSUPP; 4331 } 4332 4333 return 0; 4334 } 4335 4336 static int mwl8k_cmd_encryption_set_key(struct ieee80211_hw *hw, 4337 struct ieee80211_vif *vif, 4338 u8 *addr, 4339 struct ieee80211_key_conf *key) 4340 { 4341 struct mwl8k_cmd_set_key *cmd; 4342 int rc; 4343 int keymlen; 4344 u32 action; 4345 u8 idx; 4346 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 4347 4348 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4349 if (cmd == NULL) 4350 return -ENOMEM; 4351 4352 rc = mwl8k_encryption_set_cmd_info(cmd, addr, key); 4353 if (rc < 0) 4354 goto done; 4355 4356 idx = key->keyidx; 4357 4358 if (key->flags & IEEE80211_KEY_FLAG_PAIRWISE) 4359 action = MWL8K_ENCR_SET_KEY; 4360 else 4361 action = MWL8K_ENCR_SET_GROUP_KEY; 4362 4363 switch (key->cipher) { 4364 case WLAN_CIPHER_SUITE_WEP40: 4365 case WLAN_CIPHER_SUITE_WEP104: 4366 if (!mwl8k_vif->wep_key_conf[idx].enabled) { 4367 memcpy(mwl8k_vif->wep_key_conf[idx].key, key, 4368 sizeof(*key) + key->keylen); 4369 mwl8k_vif->wep_key_conf[idx].enabled = 1; 4370 } 4371 4372 keymlen = key->keylen; 4373 action = MWL8K_ENCR_SET_KEY; 4374 break; 4375 case WLAN_CIPHER_SUITE_TKIP: 4376 keymlen = MAX_ENCR_KEY_LENGTH + 2 * MIC_KEY_LENGTH; 4377 break; 4378 case WLAN_CIPHER_SUITE_CCMP: 4379 keymlen = key->keylen; 4380 break; 4381 default: 4382 rc = -ENOTSUPP; 4383 goto done; 4384 } 4385 4386 memcpy(&cmd->tkip, key->key, keymlen); 4387 cmd->action = cpu_to_le32(action); 4388 4389 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4390 done: 4391 kfree(cmd); 4392 4393 return rc; 4394 } 4395 4396 static int mwl8k_cmd_encryption_remove_key(struct ieee80211_hw *hw, 4397 struct ieee80211_vif *vif, 4398 u8 *addr, 4399 struct ieee80211_key_conf *key) 4400 { 4401 struct mwl8k_cmd_set_key *cmd; 4402 int rc; 4403 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 4404 4405 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4406 if (cmd == NULL) 4407 return -ENOMEM; 4408 4409 rc = mwl8k_encryption_set_cmd_info(cmd, addr, key); 4410 if (rc < 0) 4411 goto done; 4412 4413 if (key->cipher == WLAN_CIPHER_SUITE_WEP40 || 4414 key->cipher == WLAN_CIPHER_SUITE_WEP104) 4415 mwl8k_vif->wep_key_conf[key->keyidx].enabled = 0; 4416 4417 cmd->action = cpu_to_le32(MWL8K_ENCR_REMOVE_KEY); 4418 4419 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4420 done: 4421 kfree(cmd); 4422 4423 return rc; 4424 } 4425 4426 static int mwl8k_set_key(struct ieee80211_hw *hw, 4427 enum set_key_cmd cmd_param, 4428 struct ieee80211_vif *vif, 4429 struct ieee80211_sta *sta, 4430 struct ieee80211_key_conf *key) 4431 { 4432 int rc = 0; 4433 u8 encr_type; 4434 u8 *addr; 4435 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 4436 struct mwl8k_priv *priv = hw->priv; 4437 4438 if (vif->type == NL80211_IFTYPE_STATION && !priv->ap_fw) 4439 return -EOPNOTSUPP; 4440 4441 if (sta == NULL) 4442 addr = vif->addr; 4443 else 4444 addr = sta->addr; 4445 4446 if (cmd_param == SET_KEY) { 4447 rc = mwl8k_cmd_encryption_set_key(hw, vif, addr, key); 4448 if (rc) 4449 goto out; 4450 4451 if ((key->cipher == WLAN_CIPHER_SUITE_WEP40) 4452 || (key->cipher == WLAN_CIPHER_SUITE_WEP104)) 4453 encr_type = MWL8K_UPDATE_ENCRYPTION_TYPE_WEP; 4454 else 4455 encr_type = MWL8K_UPDATE_ENCRYPTION_TYPE_MIXED; 4456 4457 rc = mwl8k_cmd_update_encryption_enable(hw, vif, addr, 4458 encr_type); 4459 if (rc) 4460 goto out; 4461 4462 mwl8k_vif->is_hw_crypto_enabled = true; 4463 4464 } else { 4465 rc = mwl8k_cmd_encryption_remove_key(hw, vif, addr, key); 4466 4467 if (rc) 4468 goto out; 4469 } 4470 out: 4471 return rc; 4472 } 4473 4474 /* 4475 * CMD_UPDATE_STADB. 4476 */ 4477 struct ewc_ht_info { 4478 __le16 control1; 4479 __le16 control2; 4480 __le16 control3; 4481 } __packed; 4482 4483 struct peer_capability_info { 4484 /* Peer type - AP vs. STA. */ 4485 __u8 peer_type; 4486 4487 /* Basic 802.11 capabilities from assoc resp. */ 4488 __le16 basic_caps; 4489 4490 /* Set if peer supports 802.11n high throughput (HT). */ 4491 __u8 ht_support; 4492 4493 /* Valid if HT is supported. */ 4494 __le16 ht_caps; 4495 __u8 extended_ht_caps; 4496 struct ewc_ht_info ewc_info; 4497 4498 /* Legacy rate table. Intersection of our rates and peer rates. */ 4499 __u8 legacy_rates[12]; 4500 4501 /* HT rate table. Intersection of our rates and peer rates. */ 4502 __u8 ht_rates[16]; 4503 __u8 pad[16]; 4504 4505 /* If set, interoperability mode, no proprietary extensions. */ 4506 __u8 interop; 4507 __u8 pad2; 4508 __u8 station_id; 4509 __le16 amsdu_enabled; 4510 } __packed; 4511 4512 struct mwl8k_cmd_update_stadb { 4513 struct mwl8k_cmd_pkt_hdr header; 4514 4515 /* See STADB_ACTION_TYPE */ 4516 __le32 action; 4517 4518 /* Peer MAC address */ 4519 __u8 peer_addr[ETH_ALEN]; 4520 4521 __le32 reserved; 4522 4523 /* Peer info - valid during add/update. */ 4524 struct peer_capability_info peer_info; 4525 } __packed; 4526 4527 #define MWL8K_STA_DB_MODIFY_ENTRY 1 4528 #define MWL8K_STA_DB_DEL_ENTRY 2 4529 4530 /* Peer Entry flags - used to define the type of the peer node */ 4531 #define MWL8K_PEER_TYPE_ACCESSPOINT 2 4532 4533 static int mwl8k_cmd_update_stadb_add(struct ieee80211_hw *hw, 4534 struct ieee80211_vif *vif, 4535 struct ieee80211_sta *sta) 4536 { 4537 struct mwl8k_cmd_update_stadb *cmd; 4538 struct peer_capability_info *p; 4539 u32 rates; 4540 int rc; 4541 4542 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4543 if (cmd == NULL) 4544 return -ENOMEM; 4545 4546 cmd->header.code = cpu_to_le16(MWL8K_CMD_UPDATE_STADB); 4547 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4548 cmd->action = cpu_to_le32(MWL8K_STA_DB_MODIFY_ENTRY); 4549 memcpy(cmd->peer_addr, sta->addr, ETH_ALEN); 4550 4551 p = &cmd->peer_info; 4552 p->peer_type = MWL8K_PEER_TYPE_ACCESSPOINT; 4553 p->basic_caps = cpu_to_le16(vif->bss_conf.assoc_capability); 4554 p->ht_support = sta->deflink.ht_cap.ht_supported; 4555 p->ht_caps = cpu_to_le16(sta->deflink.ht_cap.cap); 4556 p->extended_ht_caps = (sta->deflink.ht_cap.ampdu_factor & 3) | 4557 ((sta->deflink.ht_cap.ampdu_density & 7) << 2); 4558 if (hw->conf.chandef.chan->band == NL80211_BAND_2GHZ) 4559 rates = sta->deflink.supp_rates[NL80211_BAND_2GHZ]; 4560 else 4561 rates = sta->deflink.supp_rates[NL80211_BAND_5GHZ] << 5; 4562 legacy_rate_mask_to_array(p->legacy_rates, rates); 4563 memcpy(p->ht_rates, &sta->deflink.ht_cap.mcs, 16); 4564 p->interop = 1; 4565 p->amsdu_enabled = 0; 4566 4567 rc = mwl8k_post_cmd(hw, &cmd->header); 4568 if (!rc) 4569 rc = p->station_id; 4570 kfree(cmd); 4571 4572 return rc; 4573 } 4574 4575 static int mwl8k_cmd_update_stadb_del(struct ieee80211_hw *hw, 4576 struct ieee80211_vif *vif, u8 *addr) 4577 { 4578 struct mwl8k_cmd_update_stadb *cmd; 4579 int rc; 4580 4581 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4582 if (cmd == NULL) 4583 return -ENOMEM; 4584 4585 cmd->header.code = cpu_to_le16(MWL8K_CMD_UPDATE_STADB); 4586 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4587 cmd->action = cpu_to_le32(MWL8K_STA_DB_DEL_ENTRY); 4588 memcpy(cmd->peer_addr, addr, ETH_ALEN); 4589 4590 rc = mwl8k_post_cmd(hw, &cmd->header); 4591 kfree(cmd); 4592 4593 return rc; 4594 } 4595 4596 4597 /* 4598 * Interrupt handling. 4599 */ 4600 static irqreturn_t mwl8k_interrupt(int irq, void *dev_id) 4601 { 4602 struct ieee80211_hw *hw = dev_id; 4603 struct mwl8k_priv *priv = hw->priv; 4604 u32 status; 4605 4606 status = ioread32(priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 4607 if (!status) 4608 return IRQ_NONE; 4609 4610 if (status & MWL8K_A2H_INT_TX_DONE) { 4611 status &= ~MWL8K_A2H_INT_TX_DONE; 4612 tasklet_schedule(&priv->poll_tx_task); 4613 } 4614 4615 if (status & MWL8K_A2H_INT_RX_READY) { 4616 status &= ~MWL8K_A2H_INT_RX_READY; 4617 tasklet_schedule(&priv->poll_rx_task); 4618 } 4619 4620 if (status & MWL8K_A2H_INT_BA_WATCHDOG) { 4621 iowrite32(~MWL8K_A2H_INT_BA_WATCHDOG, 4622 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK); 4623 4624 atomic_inc(&priv->watchdog_event_pending); 4625 status &= ~MWL8K_A2H_INT_BA_WATCHDOG; 4626 ieee80211_queue_work(hw, &priv->watchdog_ba_handle); 4627 } 4628 4629 if (status) 4630 iowrite32(~status, priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 4631 4632 if (status & MWL8K_A2H_INT_OPC_DONE) { 4633 if (priv->hostcmd_wait != NULL) 4634 complete(priv->hostcmd_wait); 4635 } 4636 4637 if (status & MWL8K_A2H_INT_QUEUE_EMPTY) { 4638 if (!mutex_is_locked(&priv->fw_mutex) && 4639 priv->radio_on && priv->pending_tx_pkts) 4640 mwl8k_tx_start(priv); 4641 } 4642 4643 return IRQ_HANDLED; 4644 } 4645 4646 static void mwl8k_tx_poll(struct tasklet_struct *t) 4647 { 4648 struct mwl8k_priv *priv = from_tasklet(priv, t, poll_tx_task); 4649 struct ieee80211_hw *hw = pci_get_drvdata(priv->pdev); 4650 int limit; 4651 int i; 4652 4653 limit = 32; 4654 4655 spin_lock(&priv->tx_lock); 4656 4657 for (i = 0; i < mwl8k_tx_queues(priv); i++) 4658 limit -= mwl8k_txq_reclaim(hw, i, limit, 0); 4659 4660 if (!priv->pending_tx_pkts && priv->tx_wait != NULL) { 4661 complete(priv->tx_wait); 4662 priv->tx_wait = NULL; 4663 } 4664 4665 spin_unlock(&priv->tx_lock); 4666 4667 if (limit) { 4668 writel(~MWL8K_A2H_INT_TX_DONE, 4669 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 4670 } else { 4671 tasklet_schedule(&priv->poll_tx_task); 4672 } 4673 } 4674 4675 static void mwl8k_rx_poll(struct tasklet_struct *t) 4676 { 4677 struct mwl8k_priv *priv = from_tasklet(priv, t, poll_rx_task); 4678 struct ieee80211_hw *hw = pci_get_drvdata(priv->pdev); 4679 int limit; 4680 4681 limit = 32; 4682 limit -= rxq_process(hw, 0, limit); 4683 limit -= rxq_refill(hw, 0, limit); 4684 4685 if (limit) { 4686 writel(~MWL8K_A2H_INT_RX_READY, 4687 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 4688 } else { 4689 tasklet_schedule(&priv->poll_rx_task); 4690 } 4691 } 4692 4693 4694 /* 4695 * Core driver operations. 4696 */ 4697 static void mwl8k_tx(struct ieee80211_hw *hw, 4698 struct ieee80211_tx_control *control, 4699 struct sk_buff *skb) 4700 { 4701 struct mwl8k_priv *priv = hw->priv; 4702 int index = skb_get_queue_mapping(skb); 4703 4704 if (!priv->radio_on) { 4705 wiphy_debug(hw->wiphy, 4706 "dropped TX frame since radio disabled\n"); 4707 dev_kfree_skb(skb); 4708 return; 4709 } 4710 4711 mwl8k_txq_xmit(hw, index, control->sta, skb); 4712 } 4713 4714 static int mwl8k_start(struct ieee80211_hw *hw) 4715 { 4716 struct mwl8k_priv *priv = hw->priv; 4717 int rc; 4718 4719 rc = request_irq(priv->pdev->irq, mwl8k_interrupt, 4720 IRQF_SHARED, MWL8K_NAME, hw); 4721 if (rc) { 4722 priv->irq = -1; 4723 wiphy_err(hw->wiphy, "failed to register IRQ handler\n"); 4724 return -EIO; 4725 } 4726 priv->irq = priv->pdev->irq; 4727 4728 /* Enable TX reclaim and RX tasklets. */ 4729 tasklet_enable(&priv->poll_tx_task); 4730 tasklet_enable(&priv->poll_rx_task); 4731 4732 /* Enable interrupts */ 4733 iowrite32(MWL8K_A2H_EVENTS, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 4734 iowrite32(MWL8K_A2H_EVENTS, 4735 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK); 4736 4737 rc = mwl8k_fw_lock(hw); 4738 if (!rc) { 4739 rc = mwl8k_cmd_radio_enable(hw); 4740 4741 if (!priv->ap_fw) { 4742 if (!rc) 4743 rc = mwl8k_cmd_enable_sniffer(hw, 0); 4744 4745 if (!rc) 4746 rc = mwl8k_cmd_set_pre_scan(hw); 4747 4748 if (!rc) 4749 rc = mwl8k_cmd_set_post_scan(hw, 4750 "\x00\x00\x00\x00\x00\x00"); 4751 } 4752 4753 if (!rc) 4754 rc = mwl8k_cmd_set_rateadapt_mode(hw, 0); 4755 4756 if (!rc) 4757 rc = mwl8k_cmd_set_wmm_mode(hw, 0); 4758 4759 mwl8k_fw_unlock(hw); 4760 } 4761 4762 if (rc) { 4763 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 4764 free_irq(priv->pdev->irq, hw); 4765 priv->irq = -1; 4766 tasklet_disable(&priv->poll_tx_task); 4767 tasklet_disable(&priv->poll_rx_task); 4768 } else { 4769 ieee80211_wake_queues(hw); 4770 } 4771 4772 return rc; 4773 } 4774 4775 static void mwl8k_stop(struct ieee80211_hw *hw, bool suspend) 4776 { 4777 struct mwl8k_priv *priv = hw->priv; 4778 int i; 4779 4780 if (!priv->hw_restart_in_progress) 4781 mwl8k_cmd_radio_disable(hw); 4782 4783 ieee80211_stop_queues(hw); 4784 4785 /* Disable interrupts */ 4786 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 4787 if (priv->irq != -1) { 4788 free_irq(priv->pdev->irq, hw); 4789 priv->irq = -1; 4790 } 4791 4792 /* Stop finalize join worker */ 4793 cancel_work_sync(&priv->finalize_join_worker); 4794 cancel_work_sync(&priv->watchdog_ba_handle); 4795 if (priv->beacon_skb != NULL) 4796 dev_kfree_skb(priv->beacon_skb); 4797 4798 /* Stop TX reclaim and RX tasklets. */ 4799 tasklet_disable(&priv->poll_tx_task); 4800 tasklet_disable(&priv->poll_rx_task); 4801 4802 /* Return all skbs to mac80211 */ 4803 for (i = 0; i < mwl8k_tx_queues(priv); i++) 4804 mwl8k_txq_reclaim(hw, i, INT_MAX, 1); 4805 } 4806 4807 static int mwl8k_reload_firmware(struct ieee80211_hw *hw, char *fw_image); 4808 4809 static int mwl8k_add_interface(struct ieee80211_hw *hw, 4810 struct ieee80211_vif *vif) 4811 { 4812 struct mwl8k_priv *priv = hw->priv; 4813 struct mwl8k_vif *mwl8k_vif; 4814 u32 macids_supported; 4815 int macid, rc; 4816 struct mwl8k_device_info *di; 4817 4818 /* 4819 * Reject interface creation if sniffer mode is active, as 4820 * STA operation is mutually exclusive with hardware sniffer 4821 * mode. (Sniffer mode is only used on STA firmware.) 4822 */ 4823 if (priv->sniffer_enabled) { 4824 wiphy_info(hw->wiphy, 4825 "unable to create STA interface because sniffer mode is enabled\n"); 4826 return -EINVAL; 4827 } 4828 4829 di = priv->device_info; 4830 switch (vif->type) { 4831 case NL80211_IFTYPE_AP: 4832 if (!priv->ap_fw && di->fw_image_ap) { 4833 /* we must load the ap fw to meet this request */ 4834 if (!list_empty(&priv->vif_list)) 4835 return -EBUSY; 4836 rc = mwl8k_reload_firmware(hw, di->fw_image_ap); 4837 if (rc) 4838 return rc; 4839 } 4840 macids_supported = priv->ap_macids_supported; 4841 break; 4842 case NL80211_IFTYPE_STATION: 4843 if (priv->ap_fw && di->fw_image_sta) { 4844 if (!list_empty(&priv->vif_list)) { 4845 wiphy_warn(hw->wiphy, "AP interface is running.\n" 4846 "Adding STA interface for WDS"); 4847 } else { 4848 /* we must load the sta fw to 4849 * meet this request. 4850 */ 4851 rc = mwl8k_reload_firmware(hw, 4852 di->fw_image_sta); 4853 if (rc) 4854 return rc; 4855 } 4856 } 4857 macids_supported = priv->sta_macids_supported; 4858 break; 4859 default: 4860 return -EINVAL; 4861 } 4862 4863 macid = ffs(macids_supported & ~priv->macids_used); 4864 if (!macid--) 4865 return -EBUSY; 4866 4867 /* Setup driver private area. */ 4868 mwl8k_vif = MWL8K_VIF(vif); 4869 memset(mwl8k_vif, 0, sizeof(*mwl8k_vif)); 4870 mwl8k_vif->vif = vif; 4871 mwl8k_vif->macid = macid; 4872 mwl8k_vif->seqno = 0; 4873 memcpy(mwl8k_vif->bssid, vif->addr, ETH_ALEN); 4874 mwl8k_vif->is_hw_crypto_enabled = false; 4875 4876 /* Set the mac address. */ 4877 mwl8k_cmd_set_mac_addr(hw, vif, vif->addr); 4878 4879 if (vif->type == NL80211_IFTYPE_AP) 4880 mwl8k_cmd_set_new_stn_add_self(hw, vif); 4881 4882 priv->macids_used |= 1 << mwl8k_vif->macid; 4883 list_add_tail(&mwl8k_vif->list, &priv->vif_list); 4884 4885 return 0; 4886 } 4887 4888 static void mwl8k_remove_vif(struct mwl8k_priv *priv, struct mwl8k_vif *vif) 4889 { 4890 /* Has ieee80211_restart_hw re-added the removed interfaces? */ 4891 if (!priv->macids_used) 4892 return; 4893 4894 priv->macids_used &= ~(1 << vif->macid); 4895 list_del(&vif->list); 4896 } 4897 4898 static void mwl8k_remove_interface(struct ieee80211_hw *hw, 4899 struct ieee80211_vif *vif) 4900 { 4901 struct mwl8k_priv *priv = hw->priv; 4902 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 4903 4904 if (vif->type == NL80211_IFTYPE_AP) 4905 mwl8k_cmd_set_new_stn_del(hw, vif, vif->addr); 4906 4907 mwl8k_cmd_del_mac_addr(hw, vif, vif->addr); 4908 4909 mwl8k_remove_vif(priv, mwl8k_vif); 4910 } 4911 4912 static void mwl8k_hw_restart_work(struct work_struct *work) 4913 { 4914 struct mwl8k_priv *priv = 4915 container_of(work, struct mwl8k_priv, fw_reload); 4916 struct ieee80211_hw *hw = priv->hw; 4917 struct mwl8k_device_info *di; 4918 int rc; 4919 4920 /* If some command is waiting for a response, clear it */ 4921 if (priv->hostcmd_wait != NULL) { 4922 complete(priv->hostcmd_wait); 4923 priv->hostcmd_wait = NULL; 4924 } 4925 4926 priv->hw_restart_owner = current; 4927 di = priv->device_info; 4928 mwl8k_fw_lock(hw); 4929 4930 if (priv->ap_fw) 4931 rc = mwl8k_reload_firmware(hw, di->fw_image_ap); 4932 else 4933 rc = mwl8k_reload_firmware(hw, di->fw_image_sta); 4934 4935 if (rc) 4936 goto fail; 4937 4938 priv->hw_restart_owner = NULL; 4939 priv->hw_restart_in_progress = false; 4940 4941 /* 4942 * This unlock will wake up the queues and 4943 * also opens the command path for other 4944 * commands 4945 */ 4946 mwl8k_fw_unlock(hw); 4947 4948 ieee80211_restart_hw(hw); 4949 4950 wiphy_err(hw->wiphy, "Firmware restarted successfully\n"); 4951 4952 return; 4953 fail: 4954 mwl8k_fw_unlock(hw); 4955 4956 wiphy_err(hw->wiphy, "Firmware restart failed\n"); 4957 } 4958 4959 static int mwl8k_config(struct ieee80211_hw *hw, int radio_idx, u32 changed) 4960 { 4961 struct ieee80211_conf *conf = &hw->conf; 4962 struct mwl8k_priv *priv = hw->priv; 4963 int rc; 4964 4965 rc = mwl8k_fw_lock(hw); 4966 if (rc) 4967 return rc; 4968 4969 if (conf->flags & IEEE80211_CONF_IDLE) 4970 rc = mwl8k_cmd_radio_disable(hw); 4971 else 4972 rc = mwl8k_cmd_radio_enable(hw); 4973 if (rc) 4974 goto out; 4975 4976 if (changed & IEEE80211_CONF_CHANGE_CHANNEL) { 4977 rc = mwl8k_cmd_set_rf_channel(hw, conf); 4978 if (rc) 4979 goto out; 4980 } 4981 4982 if (conf->power_level > 18) 4983 conf->power_level = 18; 4984 4985 if (priv->ap_fw) { 4986 4987 if (conf->flags & IEEE80211_CONF_CHANGE_POWER) { 4988 rc = mwl8k_cmd_tx_power(hw, conf, conf->power_level); 4989 if (rc) 4990 goto out; 4991 } 4992 4993 4994 } else { 4995 rc = mwl8k_cmd_rf_tx_power(hw, conf->power_level); 4996 if (rc) 4997 goto out; 4998 rc = mwl8k_cmd_mimo_config(hw, 0x7, 0x7); 4999 } 5000 5001 out: 5002 mwl8k_fw_unlock(hw); 5003 5004 return rc; 5005 } 5006 5007 static void 5008 mwl8k_bss_info_changed_sta(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 5009 struct ieee80211_bss_conf *info, u32 changed) 5010 { 5011 struct mwl8k_priv *priv = hw->priv; 5012 u32 ap_legacy_rates = 0; 5013 u8 ap_mcs_rates[16]; 5014 int rc; 5015 5016 if (mwl8k_fw_lock(hw)) 5017 return; 5018 5019 /* 5020 * No need to capture a beacon if we're no longer associated. 5021 */ 5022 if ((changed & BSS_CHANGED_ASSOC) && !vif->cfg.assoc) 5023 priv->capture_beacon = false; 5024 5025 /* 5026 * Get the AP's legacy and MCS rates. 5027 */ 5028 if (vif->cfg.assoc) { 5029 struct ieee80211_sta *ap; 5030 5031 rcu_read_lock(); 5032 5033 ap = ieee80211_find_sta(vif, vif->bss_conf.bssid); 5034 if (ap == NULL) { 5035 rcu_read_unlock(); 5036 goto out; 5037 } 5038 5039 if (hw->conf.chandef.chan->band == NL80211_BAND_2GHZ) { 5040 ap_legacy_rates = ap->deflink.supp_rates[NL80211_BAND_2GHZ]; 5041 } else { 5042 ap_legacy_rates = 5043 ap->deflink.supp_rates[NL80211_BAND_5GHZ] << 5; 5044 } 5045 memcpy(ap_mcs_rates, &ap->deflink.ht_cap.mcs, 16); 5046 5047 rcu_read_unlock(); 5048 5049 if (changed & BSS_CHANGED_ASSOC) { 5050 if (!priv->ap_fw) { 5051 rc = mwl8k_cmd_set_rate(hw, vif, 5052 ap_legacy_rates, 5053 ap_mcs_rates); 5054 if (rc) 5055 goto out; 5056 5057 rc = mwl8k_cmd_use_fixed_rate_sta(hw); 5058 if (rc) 5059 goto out; 5060 } else { 5061 int idx; 5062 int rate; 5063 5064 /* Use AP firmware specific rate command. 5065 */ 5066 idx = ffs(vif->bss_conf.basic_rates); 5067 if (idx) 5068 idx--; 5069 5070 if (hw->conf.chandef.chan->band == 5071 NL80211_BAND_2GHZ) 5072 rate = mwl8k_rates_24[idx].hw_value; 5073 else 5074 rate = mwl8k_rates_50[idx].hw_value; 5075 5076 mwl8k_cmd_use_fixed_rate_ap(hw, rate, rate); 5077 } 5078 } 5079 } 5080 5081 if (changed & BSS_CHANGED_ERP_PREAMBLE) { 5082 rc = mwl8k_set_radio_preamble(hw, 5083 vif->bss_conf.use_short_preamble); 5084 if (rc) 5085 goto out; 5086 } 5087 5088 if ((changed & BSS_CHANGED_ERP_SLOT) && !priv->ap_fw) { 5089 rc = mwl8k_cmd_set_slot(hw, vif->bss_conf.use_short_slot); 5090 if (rc) 5091 goto out; 5092 } 5093 5094 if (vif->cfg.assoc && !priv->ap_fw && 5095 (changed & (BSS_CHANGED_ASSOC | BSS_CHANGED_ERP_CTS_PROT | 5096 BSS_CHANGED_HT))) { 5097 rc = mwl8k_cmd_set_aid(hw, vif, ap_legacy_rates); 5098 if (rc) 5099 goto out; 5100 } 5101 5102 if (vif->cfg.assoc && 5103 (changed & (BSS_CHANGED_ASSOC | BSS_CHANGED_BEACON_INT))) { 5104 /* 5105 * Finalize the join. Tell rx handler to process 5106 * next beacon from our BSSID. 5107 */ 5108 memcpy(priv->capture_bssid, vif->bss_conf.bssid, ETH_ALEN); 5109 priv->capture_beacon = true; 5110 } 5111 5112 out: 5113 mwl8k_fw_unlock(hw); 5114 } 5115 5116 static void 5117 mwl8k_bss_info_changed_ap(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 5118 struct ieee80211_bss_conf *info, u32 changed) 5119 { 5120 int rc; 5121 5122 if (mwl8k_fw_lock(hw)) 5123 return; 5124 5125 if (changed & BSS_CHANGED_ERP_PREAMBLE) { 5126 rc = mwl8k_set_radio_preamble(hw, 5127 vif->bss_conf.use_short_preamble); 5128 if (rc) 5129 goto out; 5130 } 5131 5132 if (changed & BSS_CHANGED_BASIC_RATES) { 5133 int idx; 5134 int rate; 5135 5136 /* 5137 * Use lowest supported basic rate for multicasts 5138 * and management frames (such as probe responses -- 5139 * beacons will always go out at 1 Mb/s). 5140 */ 5141 idx = ffs(vif->bss_conf.basic_rates); 5142 if (idx) 5143 idx--; 5144 5145 if (hw->conf.chandef.chan->band == NL80211_BAND_2GHZ) 5146 rate = mwl8k_rates_24[idx].hw_value; 5147 else 5148 rate = mwl8k_rates_50[idx].hw_value; 5149 5150 mwl8k_cmd_use_fixed_rate_ap(hw, rate, rate); 5151 } 5152 5153 if (changed & (BSS_CHANGED_BEACON_INT | BSS_CHANGED_BEACON)) { 5154 struct sk_buff *skb; 5155 5156 skb = ieee80211_beacon_get(hw, vif, 0); 5157 if (skb != NULL) { 5158 mwl8k_cmd_set_beacon(hw, vif, skb->data, skb->len); 5159 kfree_skb(skb); 5160 } 5161 } 5162 5163 if (changed & BSS_CHANGED_BEACON_ENABLED) 5164 mwl8k_cmd_bss_start(hw, vif, info->enable_beacon); 5165 5166 out: 5167 mwl8k_fw_unlock(hw); 5168 } 5169 5170 static void 5171 mwl8k_bss_info_changed(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 5172 struct ieee80211_bss_conf *info, u64 changed) 5173 { 5174 if (vif->type == NL80211_IFTYPE_STATION) 5175 mwl8k_bss_info_changed_sta(hw, vif, info, changed); 5176 if (vif->type == NL80211_IFTYPE_AP) 5177 mwl8k_bss_info_changed_ap(hw, vif, info, changed); 5178 } 5179 5180 static u64 mwl8k_prepare_multicast(struct ieee80211_hw *hw, 5181 struct netdev_hw_addr_list *mc_list) 5182 { 5183 struct mwl8k_cmd_pkt_hdr *cmd; 5184 5185 /* 5186 * Synthesize and return a command packet that programs the 5187 * hardware multicast address filter. At this point we don't 5188 * know whether FIF_ALLMULTI is being requested, but if it is, 5189 * we'll end up throwing this packet away and creating a new 5190 * one in mwl8k_configure_filter(). 5191 */ 5192 cmd = __mwl8k_cmd_mac_multicast_adr(hw, 0, mc_list); 5193 5194 return (unsigned long)cmd; 5195 } 5196 5197 static int 5198 mwl8k_configure_filter_sniffer(struct ieee80211_hw *hw, 5199 unsigned int changed_flags, 5200 unsigned int *total_flags) 5201 { 5202 struct mwl8k_priv *priv = hw->priv; 5203 5204 /* 5205 * Hardware sniffer mode is mutually exclusive with STA 5206 * operation, so refuse to enable sniffer mode if a STA 5207 * interface is active. 5208 */ 5209 if (!list_empty(&priv->vif_list)) { 5210 if (net_ratelimit()) 5211 wiphy_info(hw->wiphy, 5212 "not enabling sniffer mode because STA interface is active\n"); 5213 return 0; 5214 } 5215 5216 if (!priv->sniffer_enabled) { 5217 if (mwl8k_cmd_enable_sniffer(hw, 1)) 5218 return 0; 5219 priv->sniffer_enabled = true; 5220 } 5221 5222 *total_flags &= FIF_ALLMULTI | 5223 FIF_BCN_PRBRESP_PROMISC | FIF_CONTROL | 5224 FIF_OTHER_BSS; 5225 5226 return 1; 5227 } 5228 5229 static struct mwl8k_vif *mwl8k_first_vif(struct mwl8k_priv *priv) 5230 { 5231 if (!list_empty(&priv->vif_list)) 5232 return list_entry(priv->vif_list.next, struct mwl8k_vif, list); 5233 5234 return NULL; 5235 } 5236 5237 static void mwl8k_configure_filter(struct ieee80211_hw *hw, 5238 unsigned int changed_flags, 5239 unsigned int *total_flags, 5240 u64 multicast) 5241 { 5242 struct mwl8k_priv *priv = hw->priv; 5243 struct mwl8k_cmd_pkt_hdr *cmd = (void *)(unsigned long)multicast; 5244 5245 /* 5246 * AP firmware doesn't allow fine-grained control over 5247 * the receive filter. 5248 */ 5249 if (priv->ap_fw) { 5250 *total_flags &= FIF_ALLMULTI | FIF_BCN_PRBRESP_PROMISC; 5251 kfree(cmd); 5252 return; 5253 } 5254 5255 /* 5256 * Enable hardware sniffer mode if FIF_CONTROL or 5257 * FIF_OTHER_BSS is requested. 5258 */ 5259 if (*total_flags & (FIF_CONTROL | FIF_OTHER_BSS) && 5260 mwl8k_configure_filter_sniffer(hw, changed_flags, total_flags)) { 5261 kfree(cmd); 5262 return; 5263 } 5264 5265 /* Clear unsupported feature flags */ 5266 *total_flags &= FIF_ALLMULTI | FIF_BCN_PRBRESP_PROMISC; 5267 5268 if (mwl8k_fw_lock(hw)) { 5269 kfree(cmd); 5270 return; 5271 } 5272 5273 if (priv->sniffer_enabled) { 5274 mwl8k_cmd_enable_sniffer(hw, 0); 5275 priv->sniffer_enabled = false; 5276 } 5277 5278 if (changed_flags & FIF_BCN_PRBRESP_PROMISC) { 5279 if (*total_flags & FIF_BCN_PRBRESP_PROMISC) { 5280 /* 5281 * Disable the BSS filter. 5282 */ 5283 mwl8k_cmd_set_pre_scan(hw); 5284 } else { 5285 struct mwl8k_vif *mwl8k_vif; 5286 const u8 *bssid; 5287 5288 /* 5289 * Enable the BSS filter. 5290 * 5291 * If there is an active STA interface, use that 5292 * interface's BSSID, otherwise use a dummy one 5293 * (where the OUI part needs to be nonzero for 5294 * the BSSID to be accepted by POST_SCAN). 5295 */ 5296 mwl8k_vif = mwl8k_first_vif(priv); 5297 if (mwl8k_vif != NULL) 5298 bssid = mwl8k_vif->vif->bss_conf.bssid; 5299 else 5300 bssid = "\x01\x00\x00\x00\x00\x00"; 5301 5302 mwl8k_cmd_set_post_scan(hw, bssid); 5303 } 5304 } 5305 5306 /* 5307 * If FIF_ALLMULTI is being requested, throw away the command 5308 * packet that ->prepare_multicast() built and replace it with 5309 * a command packet that enables reception of all multicast 5310 * packets. 5311 */ 5312 if (*total_flags & FIF_ALLMULTI) { 5313 kfree(cmd); 5314 cmd = __mwl8k_cmd_mac_multicast_adr(hw, 1, NULL); 5315 } 5316 5317 if (cmd != NULL) { 5318 mwl8k_post_cmd(hw, cmd); 5319 kfree(cmd); 5320 } 5321 5322 mwl8k_fw_unlock(hw); 5323 } 5324 5325 static int mwl8k_set_rts_threshold(struct ieee80211_hw *hw, int radio_idx, 5326 u32 value) 5327 { 5328 return mwl8k_cmd_set_rts_threshold(hw, radio_idx, value); 5329 } 5330 5331 static int mwl8k_sta_remove(struct ieee80211_hw *hw, 5332 struct ieee80211_vif *vif, 5333 struct ieee80211_sta *sta) 5334 { 5335 struct mwl8k_priv *priv = hw->priv; 5336 5337 if (priv->ap_fw) 5338 return mwl8k_cmd_set_new_stn_del(hw, vif, sta->addr); 5339 else 5340 return mwl8k_cmd_update_stadb_del(hw, vif, sta->addr); 5341 } 5342 5343 static int mwl8k_sta_add(struct ieee80211_hw *hw, 5344 struct ieee80211_vif *vif, 5345 struct ieee80211_sta *sta) 5346 { 5347 struct mwl8k_priv *priv = hw->priv; 5348 int ret; 5349 int i; 5350 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 5351 struct ieee80211_key_conf *key; 5352 5353 if (!priv->ap_fw) { 5354 ret = mwl8k_cmd_update_stadb_add(hw, vif, sta); 5355 if (ret >= 0) { 5356 MWL8K_STA(sta)->peer_id = ret; 5357 if (sta->deflink.ht_cap.ht_supported) 5358 MWL8K_STA(sta)->is_ampdu_allowed = true; 5359 ret = 0; 5360 } 5361 5362 } else { 5363 ret = mwl8k_cmd_set_new_stn_add(hw, vif, sta); 5364 } 5365 5366 for (i = 0; i < NUM_WEP_KEYS; i++) { 5367 key = IEEE80211_KEY_CONF(mwl8k_vif->wep_key_conf[i].key); 5368 if (mwl8k_vif->wep_key_conf[i].enabled) 5369 mwl8k_set_key(hw, SET_KEY, vif, sta, key); 5370 } 5371 return ret; 5372 } 5373 5374 static int mwl8k_conf_tx(struct ieee80211_hw *hw, 5375 struct ieee80211_vif *vif, 5376 unsigned int link_id, u16 queue, 5377 const struct ieee80211_tx_queue_params *params) 5378 { 5379 struct mwl8k_priv *priv = hw->priv; 5380 int rc; 5381 5382 rc = mwl8k_fw_lock(hw); 5383 if (!rc) { 5384 BUG_ON(queue > MWL8K_TX_WMM_QUEUES - 1); 5385 memcpy(&priv->wmm_params[queue], params, sizeof(*params)); 5386 5387 if (!priv->wmm_enabled) 5388 rc = mwl8k_cmd_set_wmm_mode(hw, 1); 5389 5390 if (!rc) { 5391 int q = MWL8K_TX_WMM_QUEUES - 1 - queue; 5392 rc = mwl8k_cmd_set_edca_params(hw, q, 5393 params->cw_min, 5394 params->cw_max, 5395 params->aifs, 5396 params->txop); 5397 } 5398 5399 mwl8k_fw_unlock(hw); 5400 } 5401 5402 return rc; 5403 } 5404 5405 static int mwl8k_get_stats(struct ieee80211_hw *hw, 5406 struct ieee80211_low_level_stats *stats) 5407 { 5408 return mwl8k_cmd_get_stat(hw, stats); 5409 } 5410 5411 static int mwl8k_get_survey(struct ieee80211_hw *hw, int idx, 5412 struct survey_info *survey) 5413 { 5414 struct mwl8k_priv *priv = hw->priv; 5415 struct ieee80211_conf *conf = &hw->conf; 5416 struct ieee80211_supported_band *sband; 5417 5418 if (priv->ap_fw) { 5419 sband = hw->wiphy->bands[NL80211_BAND_2GHZ]; 5420 5421 if (sband && idx >= sband->n_channels) { 5422 idx -= sband->n_channels; 5423 sband = NULL; 5424 } 5425 5426 if (!sband) 5427 sband = hw->wiphy->bands[NL80211_BAND_5GHZ]; 5428 5429 if (!sband || idx >= sband->n_channels) 5430 return -ENOENT; 5431 5432 memcpy(survey, &priv->survey[idx], sizeof(*survey)); 5433 survey->channel = &sband->channels[idx]; 5434 5435 return 0; 5436 } 5437 5438 if (idx != 0) 5439 return -ENOENT; 5440 5441 survey->channel = conf->chandef.chan; 5442 survey->filled = SURVEY_INFO_NOISE_DBM; 5443 survey->noise = priv->noise; 5444 5445 return 0; 5446 } 5447 5448 #define MAX_AMPDU_ATTEMPTS 5 5449 5450 static int 5451 mwl8k_ampdu_action(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 5452 struct ieee80211_ampdu_params *params) 5453 { 5454 struct ieee80211_sta *sta = params->sta; 5455 enum ieee80211_ampdu_mlme_action action = params->action; 5456 u16 tid = params->tid; 5457 u16 *ssn = ¶ms->ssn; 5458 u8 buf_size = params->buf_size; 5459 int i, rc = 0; 5460 struct mwl8k_priv *priv = hw->priv; 5461 struct mwl8k_ampdu_stream *stream; 5462 u8 *addr = sta->addr, idx; 5463 struct mwl8k_sta *sta_info = MWL8K_STA(sta); 5464 5465 if (!ieee80211_hw_check(hw, AMPDU_AGGREGATION)) 5466 return -ENOTSUPP; 5467 5468 spin_lock(&priv->stream_lock); 5469 stream = mwl8k_lookup_stream(hw, addr, tid); 5470 5471 switch (action) { 5472 case IEEE80211_AMPDU_RX_START: 5473 case IEEE80211_AMPDU_RX_STOP: 5474 break; 5475 case IEEE80211_AMPDU_TX_START: 5476 /* By the time we get here the hw queues may contain outgoing 5477 * packets for this RA/TID that are not part of this BA 5478 * session. The hw will assign sequence numbers to these 5479 * packets as they go out. So if we query the hw for its next 5480 * sequence number and use that for the SSN here, it may end up 5481 * being wrong, which will lead to sequence number mismatch at 5482 * the recipient. To avoid this, we reset the sequence number 5483 * to O for the first MPDU in this BA stream. 5484 */ 5485 *ssn = 0; 5486 if (stream == NULL) { 5487 /* This means that somebody outside this driver called 5488 * ieee80211_start_tx_ba_session. This is unexpected 5489 * because we do our own rate control. Just warn and 5490 * move on. 5491 */ 5492 wiphy_warn(hw->wiphy, "Unexpected call to %s. " 5493 "Proceeding anyway.\n", __func__); 5494 stream = mwl8k_add_stream(hw, sta, tid); 5495 } 5496 if (stream == NULL) { 5497 wiphy_debug(hw->wiphy, "no free AMPDU streams\n"); 5498 rc = -EBUSY; 5499 break; 5500 } 5501 stream->state = AMPDU_STREAM_IN_PROGRESS; 5502 5503 /* Release the lock before we do the time consuming stuff */ 5504 spin_unlock(&priv->stream_lock); 5505 for (i = 0; i < MAX_AMPDU_ATTEMPTS; i++) { 5506 5507 /* Check if link is still valid */ 5508 if (!sta_info->is_ampdu_allowed) { 5509 spin_lock(&priv->stream_lock); 5510 mwl8k_remove_stream(hw, stream); 5511 spin_unlock(&priv->stream_lock); 5512 return -EBUSY; 5513 } 5514 5515 rc = mwl8k_check_ba(hw, stream, vif); 5516 5517 /* If HW restart is in progress mwl8k_post_cmd will 5518 * return -EBUSY. Avoid retrying mwl8k_check_ba in 5519 * such cases 5520 */ 5521 if (!rc || rc == -EBUSY) 5522 break; 5523 /* 5524 * HW queues take time to be flushed, give them 5525 * sufficient time 5526 */ 5527 5528 msleep(1000); 5529 } 5530 spin_lock(&priv->stream_lock); 5531 if (rc) { 5532 wiphy_err(hw->wiphy, "Stream for tid %d busy after %d" 5533 " attempts\n", tid, MAX_AMPDU_ATTEMPTS); 5534 mwl8k_remove_stream(hw, stream); 5535 rc = -EBUSY; 5536 break; 5537 } 5538 rc = IEEE80211_AMPDU_TX_START_IMMEDIATE; 5539 break; 5540 case IEEE80211_AMPDU_TX_STOP_CONT: 5541 case IEEE80211_AMPDU_TX_STOP_FLUSH: 5542 case IEEE80211_AMPDU_TX_STOP_FLUSH_CONT: 5543 if (stream) { 5544 if (stream->state == AMPDU_STREAM_ACTIVE) { 5545 idx = stream->idx; 5546 spin_unlock(&priv->stream_lock); 5547 mwl8k_destroy_ba(hw, idx); 5548 spin_lock(&priv->stream_lock); 5549 } 5550 mwl8k_remove_stream(hw, stream); 5551 } 5552 ieee80211_stop_tx_ba_cb_irqsafe(vif, addr, tid); 5553 break; 5554 case IEEE80211_AMPDU_TX_OPERATIONAL: 5555 BUG_ON(stream == NULL); 5556 BUG_ON(stream->state != AMPDU_STREAM_IN_PROGRESS); 5557 spin_unlock(&priv->stream_lock); 5558 rc = mwl8k_create_ba(hw, stream, buf_size, vif); 5559 spin_lock(&priv->stream_lock); 5560 if (!rc) 5561 stream->state = AMPDU_STREAM_ACTIVE; 5562 else { 5563 idx = stream->idx; 5564 spin_unlock(&priv->stream_lock); 5565 mwl8k_destroy_ba(hw, idx); 5566 spin_lock(&priv->stream_lock); 5567 wiphy_debug(hw->wiphy, 5568 "Failed adding stream for sta %pM tid %d\n", 5569 addr, tid); 5570 mwl8k_remove_stream(hw, stream); 5571 } 5572 break; 5573 5574 default: 5575 rc = -ENOTSUPP; 5576 } 5577 5578 spin_unlock(&priv->stream_lock); 5579 return rc; 5580 } 5581 5582 static void mwl8k_sw_scan_start(struct ieee80211_hw *hw, 5583 struct ieee80211_vif *vif, 5584 const u8 *mac_addr) 5585 { 5586 struct mwl8k_priv *priv = hw->priv; 5587 u8 tmp; 5588 5589 if (!priv->ap_fw) 5590 return; 5591 5592 /* clear all stats */ 5593 priv->channel_time = 0; 5594 ioread32(priv->regs + BBU_RXRDY_CNT_REG); 5595 ioread32(priv->regs + NOK_CCA_CNT_REG); 5596 mwl8k_cmd_bbp_reg_access(priv->hw, 0, BBU_AVG_NOISE_VAL, &tmp); 5597 5598 priv->sw_scan_start = true; 5599 } 5600 5601 static void mwl8k_sw_scan_complete(struct ieee80211_hw *hw, 5602 struct ieee80211_vif *vif) 5603 { 5604 struct mwl8k_priv *priv = hw->priv; 5605 u8 tmp; 5606 5607 if (!priv->ap_fw) 5608 return; 5609 5610 priv->sw_scan_start = false; 5611 5612 /* clear all stats */ 5613 priv->channel_time = 0; 5614 ioread32(priv->regs + BBU_RXRDY_CNT_REG); 5615 ioread32(priv->regs + NOK_CCA_CNT_REG); 5616 mwl8k_cmd_bbp_reg_access(priv->hw, 0, BBU_AVG_NOISE_VAL, &tmp); 5617 } 5618 5619 static const struct ieee80211_ops mwl8k_ops = { 5620 .add_chanctx = ieee80211_emulate_add_chanctx, 5621 .remove_chanctx = ieee80211_emulate_remove_chanctx, 5622 .change_chanctx = ieee80211_emulate_change_chanctx, 5623 .switch_vif_chanctx = ieee80211_emulate_switch_vif_chanctx, 5624 .tx = mwl8k_tx, 5625 .wake_tx_queue = ieee80211_handle_wake_tx_queue, 5626 .start = mwl8k_start, 5627 .stop = mwl8k_stop, 5628 .add_interface = mwl8k_add_interface, 5629 .remove_interface = mwl8k_remove_interface, 5630 .config = mwl8k_config, 5631 .bss_info_changed = mwl8k_bss_info_changed, 5632 .prepare_multicast = mwl8k_prepare_multicast, 5633 .configure_filter = mwl8k_configure_filter, 5634 .set_key = mwl8k_set_key, 5635 .set_rts_threshold = mwl8k_set_rts_threshold, 5636 .sta_add = mwl8k_sta_add, 5637 .sta_remove = mwl8k_sta_remove, 5638 .conf_tx = mwl8k_conf_tx, 5639 .get_stats = mwl8k_get_stats, 5640 .get_survey = mwl8k_get_survey, 5641 .ampdu_action = mwl8k_ampdu_action, 5642 .sw_scan_start = mwl8k_sw_scan_start, 5643 .sw_scan_complete = mwl8k_sw_scan_complete, 5644 }; 5645 5646 static void mwl8k_finalize_join_worker(struct work_struct *work) 5647 { 5648 struct mwl8k_priv *priv = 5649 container_of(work, struct mwl8k_priv, finalize_join_worker); 5650 struct sk_buff *skb = priv->beacon_skb; 5651 struct ieee80211_mgmt *mgmt = (void *)skb->data; 5652 int len = skb->len - offsetof(struct ieee80211_mgmt, u.beacon.variable); 5653 const u8 *tim = cfg80211_find_ie(WLAN_EID_TIM, 5654 mgmt->u.beacon.variable, len); 5655 int dtim_period = 1; 5656 5657 if (tim && tim[1] >= 2) 5658 dtim_period = tim[3]; 5659 5660 mwl8k_cmd_finalize_join(priv->hw, skb->data, skb->len, dtim_period); 5661 5662 dev_kfree_skb(skb); 5663 priv->beacon_skb = NULL; 5664 } 5665 5666 enum { 5667 MWL8363 = 0, 5668 MWL8687, 5669 MWL8366, 5670 MWL8764, 5671 }; 5672 5673 #define MWL8K_8366_AP_FW_API 3 5674 #define _MWL8K_8366_AP_FW(api) "mwl8k/fmimage_8366_ap-" #api ".fw" 5675 #define MWL8K_8366_AP_FW(api) _MWL8K_8366_AP_FW(api) 5676 5677 #define MWL8K_8764_AP_FW_API 1 5678 #define _MWL8K_8764_AP_FW(api) "mwl8k/fmimage_8764_ap-" #api ".fw" 5679 #define MWL8K_8764_AP_FW(api) _MWL8K_8764_AP_FW(api) 5680 5681 static struct mwl8k_device_info mwl8k_info_tbl[] = { 5682 [MWL8363] = { 5683 .part_name = "88w8363", 5684 .helper_image = "mwl8k/helper_8363.fw", 5685 .fw_image_sta = "mwl8k/fmimage_8363.fw", 5686 }, 5687 [MWL8687] = { 5688 .part_name = "88w8687", 5689 .helper_image = "mwl8k/helper_8687.fw", 5690 .fw_image_sta = "mwl8k/fmimage_8687.fw", 5691 }, 5692 [MWL8366] = { 5693 .part_name = "88w8366", 5694 .helper_image = "mwl8k/helper_8366.fw", 5695 .fw_image_sta = "mwl8k/fmimage_8366.fw", 5696 .fw_image_ap = MWL8K_8366_AP_FW(MWL8K_8366_AP_FW_API), 5697 .fw_api_ap = MWL8K_8366_AP_FW_API, 5698 .ap_rxd_ops = &rxd_ap_ops, 5699 }, 5700 [MWL8764] = { 5701 .part_name = "88w8764", 5702 .fw_image_ap = MWL8K_8764_AP_FW(MWL8K_8764_AP_FW_API), 5703 .fw_api_ap = MWL8K_8764_AP_FW_API, 5704 .ap_rxd_ops = &rxd_ap_ops, 5705 }, 5706 }; 5707 5708 MODULE_FIRMWARE("mwl8k/helper_8363.fw"); 5709 MODULE_FIRMWARE("mwl8k/fmimage_8363.fw"); 5710 MODULE_FIRMWARE("mwl8k/helper_8687.fw"); 5711 MODULE_FIRMWARE("mwl8k/fmimage_8687.fw"); 5712 MODULE_FIRMWARE("mwl8k/helper_8366.fw"); 5713 MODULE_FIRMWARE("mwl8k/fmimage_8366.fw"); 5714 MODULE_FIRMWARE(MWL8K_8366_AP_FW(MWL8K_8366_AP_FW_API)); 5715 5716 static const struct pci_device_id mwl8k_pci_id_table[] = { 5717 { PCI_VDEVICE(MARVELL, 0x2a0a), .driver_data = MWL8363, }, 5718 { PCI_VDEVICE(MARVELL, 0x2a0c), .driver_data = MWL8363, }, 5719 { PCI_VDEVICE(MARVELL, 0x2a24), .driver_data = MWL8363, }, 5720 { PCI_VDEVICE(MARVELL, 0x2a2b), .driver_data = MWL8687, }, 5721 { PCI_VDEVICE(MARVELL, 0x2a30), .driver_data = MWL8687, }, 5722 { PCI_VDEVICE(MARVELL, 0x2a40), .driver_data = MWL8366, }, 5723 { PCI_VDEVICE(MARVELL, 0x2a41), .driver_data = MWL8366, }, 5724 { PCI_VDEVICE(MARVELL, 0x2a42), .driver_data = MWL8366, }, 5725 { PCI_VDEVICE(MARVELL, 0x2a43), .driver_data = MWL8366, }, 5726 { PCI_VDEVICE(MARVELL, 0x2b36), .driver_data = MWL8764, }, 5727 { }, 5728 }; 5729 MODULE_DEVICE_TABLE(pci, mwl8k_pci_id_table); 5730 5731 static int mwl8k_request_alt_fw(struct mwl8k_priv *priv) 5732 { 5733 int rc; 5734 printk(KERN_ERR "%s: Error requesting preferred fw %s.\n" 5735 "Trying alternative firmware %s\n", pci_name(priv->pdev), 5736 priv->fw_pref, priv->fw_alt); 5737 rc = mwl8k_request_fw(priv, priv->fw_alt, &priv->fw_ucode, true); 5738 if (rc) { 5739 printk(KERN_ERR "%s: Error requesting alt fw %s\n", 5740 pci_name(priv->pdev), priv->fw_alt); 5741 return rc; 5742 } 5743 return 0; 5744 } 5745 5746 static int mwl8k_firmware_load_success(struct mwl8k_priv *priv); 5747 static void mwl8k_fw_state_machine(const struct firmware *fw, void *context) 5748 { 5749 struct mwl8k_priv *priv = context; 5750 struct mwl8k_device_info *di = priv->device_info; 5751 int rc; 5752 5753 switch (priv->fw_state) { 5754 case FW_STATE_INIT: 5755 if (!fw) { 5756 printk(KERN_ERR "%s: Error requesting helper fw %s\n", 5757 pci_name(priv->pdev), di->helper_image); 5758 goto fail; 5759 } 5760 priv->fw_helper = fw; 5761 rc = mwl8k_request_fw(priv, priv->fw_pref, &priv->fw_ucode, 5762 true); 5763 if (rc && priv->fw_alt) { 5764 rc = mwl8k_request_alt_fw(priv); 5765 if (rc) 5766 goto fail; 5767 priv->fw_state = FW_STATE_LOADING_ALT; 5768 } else if (rc) 5769 goto fail; 5770 else 5771 priv->fw_state = FW_STATE_LOADING_PREF; 5772 break; 5773 5774 case FW_STATE_LOADING_PREF: 5775 if (!fw) { 5776 if (priv->fw_alt) { 5777 rc = mwl8k_request_alt_fw(priv); 5778 if (rc) 5779 goto fail; 5780 priv->fw_state = FW_STATE_LOADING_ALT; 5781 } else 5782 goto fail; 5783 } else { 5784 priv->fw_ucode = fw; 5785 rc = mwl8k_firmware_load_success(priv); 5786 if (rc) 5787 goto fail; 5788 else 5789 complete(&priv->firmware_loading_complete); 5790 } 5791 break; 5792 5793 case FW_STATE_LOADING_ALT: 5794 if (!fw) { 5795 printk(KERN_ERR "%s: Error requesting alt fw %s\n", 5796 pci_name(priv->pdev), di->helper_image); 5797 goto fail; 5798 } 5799 priv->fw_ucode = fw; 5800 rc = mwl8k_firmware_load_success(priv); 5801 if (rc) 5802 goto fail; 5803 else 5804 complete(&priv->firmware_loading_complete); 5805 break; 5806 5807 default: 5808 printk(KERN_ERR "%s: Unexpected firmware loading state: %d\n", 5809 MWL8K_NAME, priv->fw_state); 5810 BUG_ON(1); 5811 } 5812 5813 return; 5814 5815 fail: 5816 priv->fw_state = FW_STATE_ERROR; 5817 complete(&priv->firmware_loading_complete); 5818 mwl8k_release_firmware(priv); 5819 device_release_driver(&priv->pdev->dev); 5820 } 5821 5822 #define MAX_RESTART_ATTEMPTS 1 5823 static int mwl8k_init_firmware(struct ieee80211_hw *hw, char *fw_image, 5824 bool nowait) 5825 { 5826 struct mwl8k_priv *priv = hw->priv; 5827 int rc; 5828 int count = MAX_RESTART_ATTEMPTS; 5829 5830 retry: 5831 /* Reset firmware and hardware */ 5832 mwl8k_hw_reset(priv); 5833 5834 /* Ask userland hotplug daemon for the device firmware */ 5835 rc = mwl8k_request_firmware(priv, fw_image, nowait); 5836 if (rc) { 5837 wiphy_err(hw->wiphy, "Firmware files not found\n"); 5838 return rc; 5839 } 5840 5841 if (nowait) 5842 return rc; 5843 5844 /* Load firmware into hardware */ 5845 rc = mwl8k_load_firmware(hw); 5846 if (rc) 5847 wiphy_err(hw->wiphy, "Cannot start firmware\n"); 5848 5849 /* Reclaim memory once firmware is successfully loaded */ 5850 mwl8k_release_firmware(priv); 5851 5852 if (rc && count) { 5853 /* FW did not start successfully; 5854 * lets try one more time 5855 */ 5856 count--; 5857 wiphy_err(hw->wiphy, "Trying to reload the firmware again\n"); 5858 msleep(20); 5859 goto retry; 5860 } 5861 5862 return rc; 5863 } 5864 5865 static int mwl8k_init_txqs(struct ieee80211_hw *hw) 5866 { 5867 struct mwl8k_priv *priv = hw->priv; 5868 int rc = 0; 5869 int i; 5870 5871 for (i = 0; i < mwl8k_tx_queues(priv); i++) { 5872 rc = mwl8k_txq_init(hw, i); 5873 if (rc) 5874 break; 5875 if (priv->ap_fw) 5876 iowrite32(priv->txq[i].txd_dma, 5877 priv->sram + priv->txq_offset[i]); 5878 } 5879 return rc; 5880 } 5881 5882 /* initialize hw after successfully loading a firmware image */ 5883 static int mwl8k_probe_hw(struct ieee80211_hw *hw) 5884 { 5885 struct mwl8k_priv *priv = hw->priv; 5886 int rc = 0; 5887 int i; 5888 5889 if (priv->ap_fw) { 5890 priv->rxd_ops = priv->device_info->ap_rxd_ops; 5891 if (priv->rxd_ops == NULL) { 5892 wiphy_err(hw->wiphy, 5893 "Driver does not have AP firmware image support for this hardware\n"); 5894 rc = -ENOENT; 5895 goto err_stop_firmware; 5896 } 5897 } else { 5898 priv->rxd_ops = &rxd_sta_ops; 5899 } 5900 5901 priv->sniffer_enabled = false; 5902 priv->wmm_enabled = false; 5903 priv->pending_tx_pkts = 0; 5904 atomic_set(&priv->watchdog_event_pending, 0); 5905 5906 rc = mwl8k_rxq_init(hw, 0); 5907 if (rc) 5908 goto err_stop_firmware; 5909 rxq_refill(hw, 0, INT_MAX); 5910 5911 /* For the sta firmware, we need to know the dma addresses of tx queues 5912 * before sending MWL8K_CMD_GET_HW_SPEC. So we must initialize them 5913 * prior to issuing this command. But for the AP case, we learn the 5914 * total number of queues from the result CMD_GET_HW_SPEC, so for this 5915 * case we must initialize the tx queues after. 5916 */ 5917 priv->num_ampdu_queues = 0; 5918 if (!priv->ap_fw) { 5919 rc = mwl8k_init_txqs(hw); 5920 if (rc) 5921 goto err_free_queues; 5922 } 5923 5924 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 5925 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 5926 iowrite32(MWL8K_A2H_INT_TX_DONE|MWL8K_A2H_INT_RX_READY| 5927 MWL8K_A2H_INT_BA_WATCHDOG, 5928 priv->regs + MWL8K_HIU_A2H_INTERRUPT_CLEAR_SEL); 5929 iowrite32(MWL8K_A2H_INT_OPC_DONE, 5930 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK); 5931 5932 rc = request_irq(priv->pdev->irq, mwl8k_interrupt, 5933 IRQF_SHARED, MWL8K_NAME, hw); 5934 if (rc) { 5935 wiphy_err(hw->wiphy, "failed to register IRQ handler\n"); 5936 goto err_free_queues; 5937 } 5938 5939 /* 5940 * When hw restart is requested, 5941 * mac80211 will take care of clearing 5942 * the ampdu streams, so do not clear 5943 * the ampdu state here 5944 */ 5945 if (!priv->hw_restart_in_progress) 5946 memset(priv->ampdu, 0, sizeof(priv->ampdu)); 5947 5948 /* 5949 * Temporarily enable interrupts. Initial firmware host 5950 * commands use interrupts and avoid polling. Disable 5951 * interrupts when done. 5952 */ 5953 iowrite32(MWL8K_A2H_EVENTS, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 5954 5955 /* Get config data, mac addrs etc */ 5956 if (priv->ap_fw) { 5957 rc = mwl8k_cmd_get_hw_spec_ap(hw); 5958 if (!rc) 5959 rc = mwl8k_init_txqs(hw); 5960 if (!rc) 5961 rc = mwl8k_cmd_set_hw_spec(hw); 5962 } else { 5963 rc = mwl8k_cmd_get_hw_spec_sta(hw); 5964 } 5965 if (rc) { 5966 wiphy_err(hw->wiphy, "Cannot initialise firmware\n"); 5967 goto err_free_irq; 5968 } 5969 5970 /* Turn radio off */ 5971 rc = mwl8k_cmd_radio_disable(hw); 5972 if (rc) { 5973 wiphy_err(hw->wiphy, "Cannot disable\n"); 5974 goto err_free_irq; 5975 } 5976 5977 /* Clear MAC address */ 5978 rc = mwl8k_cmd_set_mac_addr(hw, NULL, "\x00\x00\x00\x00\x00\x00"); 5979 if (rc) { 5980 wiphy_err(hw->wiphy, "Cannot clear MAC address\n"); 5981 goto err_free_irq; 5982 } 5983 5984 /* Configure Antennas */ 5985 rc = mwl8k_cmd_rf_antenna(hw, MWL8K_RF_ANTENNA_RX, 0x3); 5986 if (rc) 5987 wiphy_warn(hw->wiphy, "failed to set # of RX antennas"); 5988 rc = mwl8k_cmd_rf_antenna(hw, MWL8K_RF_ANTENNA_TX, 0x7); 5989 if (rc) 5990 wiphy_warn(hw->wiphy, "failed to set # of TX antennas"); 5991 5992 5993 /* Disable interrupts */ 5994 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 5995 free_irq(priv->pdev->irq, hw); 5996 5997 wiphy_info(hw->wiphy, "%s v%d, %pm, %s firmware %u.%u.%u.%u\n", 5998 priv->device_info->part_name, 5999 priv->hw_rev, hw->wiphy->perm_addr, 6000 priv->ap_fw ? "AP" : "STA", 6001 (priv->fw_rev >> 24) & 0xff, (priv->fw_rev >> 16) & 0xff, 6002 (priv->fw_rev >> 8) & 0xff, priv->fw_rev & 0xff); 6003 6004 return 0; 6005 6006 err_free_irq: 6007 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 6008 free_irq(priv->pdev->irq, hw); 6009 6010 err_free_queues: 6011 for (i = 0; i < mwl8k_tx_queues(priv); i++) 6012 mwl8k_txq_deinit(hw, i); 6013 mwl8k_rxq_deinit(hw, 0); 6014 6015 err_stop_firmware: 6016 mwl8k_hw_reset(priv); 6017 6018 return rc; 6019 } 6020 6021 /* 6022 * invoke mwl8k_reload_firmware to change the firmware image after the device 6023 * has already been registered 6024 */ 6025 static int mwl8k_reload_firmware(struct ieee80211_hw *hw, char *fw_image) 6026 { 6027 int i, rc = 0; 6028 struct mwl8k_priv *priv = hw->priv; 6029 struct mwl8k_vif *vif, *tmp_vif; 6030 6031 mwl8k_stop(hw, false); 6032 mwl8k_rxq_deinit(hw, 0); 6033 6034 /* 6035 * All the existing interfaces are re-added by the ieee80211_reconfig; 6036 * which means driver should remove existing interfaces before calling 6037 * ieee80211_restart_hw 6038 */ 6039 if (priv->hw_restart_in_progress) 6040 list_for_each_entry_safe(vif, tmp_vif, &priv->vif_list, list) 6041 mwl8k_remove_vif(priv, vif); 6042 6043 for (i = 0; i < mwl8k_tx_queues(priv); i++) 6044 mwl8k_txq_deinit(hw, i); 6045 6046 rc = mwl8k_init_firmware(hw, fw_image, false); 6047 if (rc) 6048 goto fail; 6049 6050 rc = mwl8k_probe_hw(hw); 6051 if (rc) 6052 goto fail; 6053 6054 if (priv->hw_restart_in_progress) 6055 return rc; 6056 6057 rc = mwl8k_start(hw); 6058 if (rc) 6059 goto fail; 6060 6061 rc = mwl8k_config(hw, -1, ~0); 6062 if (rc) 6063 goto fail; 6064 6065 for (i = 0; i < MWL8K_TX_WMM_QUEUES; i++) { 6066 rc = mwl8k_conf_tx(hw, NULL, 0, i, &priv->wmm_params[i]); 6067 if (rc) 6068 goto fail; 6069 } 6070 6071 return rc; 6072 6073 fail: 6074 printk(KERN_WARNING "mwl8k: Failed to reload firmware image.\n"); 6075 return rc; 6076 } 6077 6078 static const struct ieee80211_iface_limit ap_if_limits[] = { 6079 { .max = 8, .types = BIT(NL80211_IFTYPE_AP) }, 6080 { .max = 1, .types = BIT(NL80211_IFTYPE_STATION) }, 6081 }; 6082 6083 static const struct ieee80211_iface_combination ap_if_comb = { 6084 .limits = ap_if_limits, 6085 .n_limits = ARRAY_SIZE(ap_if_limits), 6086 .max_interfaces = 8, 6087 .num_different_channels = 1, 6088 }; 6089 6090 6091 static int mwl8k_firmware_load_success(struct mwl8k_priv *priv) 6092 { 6093 struct ieee80211_hw *hw = priv->hw; 6094 int i, rc; 6095 6096 rc = mwl8k_load_firmware(hw); 6097 mwl8k_release_firmware(priv); 6098 if (rc) { 6099 wiphy_err(hw->wiphy, "Cannot start firmware\n"); 6100 return rc; 6101 } 6102 6103 /* 6104 * Extra headroom is the size of the required DMA header 6105 * minus the size of the smallest 802.11 frame (CTS frame). 6106 */ 6107 hw->extra_tx_headroom = 6108 sizeof(struct mwl8k_dma_data) - sizeof(struct ieee80211_cts); 6109 6110 hw->extra_tx_headroom -= priv->ap_fw ? REDUCED_TX_HEADROOM : 0; 6111 6112 hw->queues = MWL8K_TX_WMM_QUEUES; 6113 6114 /* Set rssi values to dBm */ 6115 ieee80211_hw_set(hw, SIGNAL_DBM); 6116 ieee80211_hw_set(hw, HAS_RATE_CONTROL); 6117 6118 /* 6119 * Ask mac80211 to not to trigger PS mode 6120 * based on PM bit of incoming frames. 6121 */ 6122 if (priv->ap_fw) 6123 ieee80211_hw_set(hw, AP_LINK_PS); 6124 6125 hw->vif_data_size = sizeof(struct mwl8k_vif); 6126 hw->sta_data_size = sizeof(struct mwl8k_sta); 6127 6128 priv->macids_used = 0; 6129 INIT_LIST_HEAD(&priv->vif_list); 6130 6131 /* Set default radio state and preamble */ 6132 priv->radio_on = false; 6133 priv->radio_short_preamble = false; 6134 6135 /* Finalize join worker */ 6136 INIT_WORK(&priv->finalize_join_worker, mwl8k_finalize_join_worker); 6137 /* Handle watchdog ba events */ 6138 INIT_WORK(&priv->watchdog_ba_handle, mwl8k_watchdog_ba_events); 6139 /* To reload the firmware if it crashes */ 6140 INIT_WORK(&priv->fw_reload, mwl8k_hw_restart_work); 6141 6142 /* TX reclaim and RX tasklets. */ 6143 tasklet_setup(&priv->poll_tx_task, mwl8k_tx_poll); 6144 tasklet_disable(&priv->poll_tx_task); 6145 tasklet_setup(&priv->poll_rx_task, mwl8k_rx_poll); 6146 tasklet_disable(&priv->poll_rx_task); 6147 6148 /* Power management cookie */ 6149 priv->cookie = dma_alloc_coherent(&priv->pdev->dev, 4, 6150 &priv->cookie_dma, GFP_KERNEL); 6151 if (priv->cookie == NULL) 6152 return -ENOMEM; 6153 6154 mutex_init(&priv->fw_mutex); 6155 priv->fw_mutex_owner = NULL; 6156 priv->fw_mutex_depth = 0; 6157 priv->hostcmd_wait = NULL; 6158 6159 spin_lock_init(&priv->tx_lock); 6160 6161 spin_lock_init(&priv->stream_lock); 6162 6163 priv->tx_wait = NULL; 6164 6165 rc = mwl8k_probe_hw(hw); 6166 if (rc) 6167 goto err_free_cookie; 6168 6169 hw->wiphy->interface_modes = 0; 6170 6171 if (priv->ap_macids_supported || priv->device_info->fw_image_ap) { 6172 hw->wiphy->interface_modes |= BIT(NL80211_IFTYPE_AP); 6173 hw->wiphy->interface_modes |= BIT(NL80211_IFTYPE_STATION); 6174 hw->wiphy->iface_combinations = &ap_if_comb; 6175 hw->wiphy->n_iface_combinations = 1; 6176 } 6177 6178 if (priv->sta_macids_supported || priv->device_info->fw_image_sta) 6179 hw->wiphy->interface_modes |= BIT(NL80211_IFTYPE_STATION); 6180 6181 wiphy_ext_feature_set(hw->wiphy, NL80211_EXT_FEATURE_CQM_RSSI_LIST); 6182 6183 rc = ieee80211_register_hw(hw); 6184 if (rc) { 6185 wiphy_err(hw->wiphy, "Cannot register device\n"); 6186 goto err_unprobe_hw; 6187 } 6188 6189 return 0; 6190 6191 err_unprobe_hw: 6192 for (i = 0; i < mwl8k_tx_queues(priv); i++) 6193 mwl8k_txq_deinit(hw, i); 6194 mwl8k_rxq_deinit(hw, 0); 6195 6196 err_free_cookie: 6197 if (priv->cookie != NULL) 6198 dma_free_coherent(&priv->pdev->dev, 4, priv->cookie, 6199 priv->cookie_dma); 6200 6201 return rc; 6202 } 6203 static int mwl8k_probe(struct pci_dev *pdev, 6204 const struct pci_device_id *id) 6205 { 6206 static int printed_version; 6207 struct ieee80211_hw *hw; 6208 struct mwl8k_priv *priv; 6209 struct mwl8k_device_info *di; 6210 int rc; 6211 6212 if (!printed_version) { 6213 printk(KERN_INFO "%s version %s\n", MWL8K_DESC, MWL8K_VERSION); 6214 printed_version = 1; 6215 } 6216 6217 6218 rc = pci_enable_device(pdev); 6219 if (rc) { 6220 printk(KERN_ERR "%s: Cannot enable new PCI device\n", 6221 MWL8K_NAME); 6222 return rc; 6223 } 6224 6225 rc = pci_request_regions(pdev, MWL8K_NAME); 6226 if (rc) { 6227 printk(KERN_ERR "%s: Cannot obtain PCI resources\n", 6228 MWL8K_NAME); 6229 goto err_disable_device; 6230 } 6231 6232 pci_set_master(pdev); 6233 6234 6235 hw = ieee80211_alloc_hw(sizeof(*priv), &mwl8k_ops); 6236 if (hw == NULL) { 6237 printk(KERN_ERR "%s: ieee80211 alloc failed\n", MWL8K_NAME); 6238 rc = -ENOMEM; 6239 goto err_free_reg; 6240 } 6241 6242 SET_IEEE80211_DEV(hw, &pdev->dev); 6243 pci_set_drvdata(pdev, hw); 6244 6245 priv = hw->priv; 6246 priv->hw = hw; 6247 priv->pdev = pdev; 6248 priv->device_info = &mwl8k_info_tbl[id->driver_data]; 6249 6250 if (id->driver_data == MWL8764) 6251 priv->is_8764 = true; 6252 6253 priv->sram = pci_iomap(pdev, 0, 0x10000); 6254 if (priv->sram == NULL) { 6255 wiphy_err(hw->wiphy, "Cannot map device SRAM\n"); 6256 rc = -EIO; 6257 goto err_iounmap; 6258 } 6259 6260 /* 6261 * If BAR0 is a 32 bit BAR, the register BAR will be BAR1. 6262 * If BAR0 is a 64 bit BAR, the register BAR will be BAR2. 6263 */ 6264 priv->regs = pci_iomap(pdev, 1, 0x10000); 6265 if (priv->regs == NULL) { 6266 priv->regs = pci_iomap(pdev, 2, 0x10000); 6267 if (priv->regs == NULL) { 6268 wiphy_err(hw->wiphy, "Cannot map device registers\n"); 6269 rc = -EIO; 6270 goto err_iounmap; 6271 } 6272 } 6273 6274 /* 6275 * Choose the initial fw image depending on user input. If a second 6276 * image is available, make it the alternative image that will be 6277 * loaded if the first one fails. 6278 */ 6279 init_completion(&priv->firmware_loading_complete); 6280 di = priv->device_info; 6281 if (ap_mode_default && di->fw_image_ap) { 6282 priv->fw_pref = di->fw_image_ap; 6283 priv->fw_alt = di->fw_image_sta; 6284 } else if (!ap_mode_default && di->fw_image_sta) { 6285 priv->fw_pref = di->fw_image_sta; 6286 priv->fw_alt = di->fw_image_ap; 6287 } else if (ap_mode_default && !di->fw_image_ap && di->fw_image_sta) { 6288 printk(KERN_WARNING "AP fw is unavailable. Using STA fw."); 6289 priv->fw_pref = di->fw_image_sta; 6290 } else if (!ap_mode_default && !di->fw_image_sta && di->fw_image_ap) { 6291 printk(KERN_WARNING "STA fw is unavailable. Using AP fw."); 6292 priv->fw_pref = di->fw_image_ap; 6293 } 6294 rc = mwl8k_init_firmware(hw, priv->fw_pref, true); 6295 if (rc) 6296 goto err_stop_firmware; 6297 6298 priv->hw_restart_in_progress = false; 6299 6300 priv->running_bsses = 0; 6301 6302 return rc; 6303 6304 err_stop_firmware: 6305 mwl8k_hw_reset(priv); 6306 6307 err_iounmap: 6308 if (priv->regs != NULL) 6309 pci_iounmap(pdev, priv->regs); 6310 6311 if (priv->sram != NULL) 6312 pci_iounmap(pdev, priv->sram); 6313 6314 ieee80211_free_hw(hw); 6315 6316 err_free_reg: 6317 pci_release_regions(pdev); 6318 6319 err_disable_device: 6320 pci_disable_device(pdev); 6321 6322 return rc; 6323 } 6324 6325 static void mwl8k_remove(struct pci_dev *pdev) 6326 { 6327 struct ieee80211_hw *hw = pci_get_drvdata(pdev); 6328 struct mwl8k_priv *priv; 6329 int i; 6330 6331 if (hw == NULL) 6332 return; 6333 priv = hw->priv; 6334 6335 wait_for_completion(&priv->firmware_loading_complete); 6336 6337 if (priv->fw_state == FW_STATE_ERROR) { 6338 mwl8k_hw_reset(priv); 6339 goto unmap; 6340 } 6341 6342 ieee80211_stop_queues(hw); 6343 6344 ieee80211_unregister_hw(hw); 6345 6346 /* Remove TX reclaim and RX tasklets. */ 6347 tasklet_kill(&priv->poll_tx_task); 6348 tasklet_kill(&priv->poll_rx_task); 6349 6350 /* Stop hardware */ 6351 mwl8k_hw_reset(priv); 6352 6353 /* Return all skbs to mac80211 */ 6354 for (i = 0; i < mwl8k_tx_queues(priv); i++) 6355 mwl8k_txq_reclaim(hw, i, INT_MAX, 1); 6356 6357 for (i = 0; i < mwl8k_tx_queues(priv); i++) 6358 mwl8k_txq_deinit(hw, i); 6359 6360 mwl8k_rxq_deinit(hw, 0); 6361 6362 dma_free_coherent(&priv->pdev->dev, 4, priv->cookie, priv->cookie_dma); 6363 6364 unmap: 6365 pci_iounmap(pdev, priv->regs); 6366 pci_iounmap(pdev, priv->sram); 6367 ieee80211_free_hw(hw); 6368 pci_release_regions(pdev); 6369 pci_disable_device(pdev); 6370 } 6371 6372 static struct pci_driver mwl8k_driver = { 6373 .name = MWL8K_NAME, 6374 .id_table = mwl8k_pci_id_table, 6375 .probe = mwl8k_probe, 6376 .remove = mwl8k_remove, 6377 }; 6378 6379 module_pci_driver(mwl8k_driver); 6380 6381 MODULE_DESCRIPTION(MWL8K_DESC); 6382 MODULE_VERSION(MWL8K_VERSION); 6383 MODULE_AUTHOR("Lennert Buytenhek <buytenh@marvell.com>"); 6384 MODULE_LICENSE("GPL"); 6385