1 /* 2 * drivers/net/wireless/mwl8k.c 3 * Driver for Marvell TOPDOG 802.11 Wireless cards 4 * 5 * Copyright (C) 2008, 2009, 2010 Marvell Semiconductor Inc. 6 * 7 * This file is licensed under the terms of the GNU General Public 8 * License version 2. This program is licensed "as is" without any 9 * warranty of any kind, whether express or implied. 10 */ 11 12 #include <linux/interrupt.h> 13 #include <linux/module.h> 14 #include <linux/kernel.h> 15 #include <linux/sched.h> 16 #include <linux/spinlock.h> 17 #include <linux/list.h> 18 #include <linux/pci.h> 19 #include <linux/delay.h> 20 #include <linux/completion.h> 21 #include <linux/etherdevice.h> 22 #include <linux/slab.h> 23 #include <net/mac80211.h> 24 #include <linux/moduleparam.h> 25 #include <linux/firmware.h> 26 #include <linux/workqueue.h> 27 28 #define MWL8K_DESC "Marvell TOPDOG(R) 802.11 Wireless Network Driver" 29 #define MWL8K_NAME KBUILD_MODNAME 30 #define MWL8K_VERSION "0.13" 31 32 /* Module parameters */ 33 static bool ap_mode_default; 34 module_param(ap_mode_default, bool, 0); 35 MODULE_PARM_DESC(ap_mode_default, 36 "Set to 1 to make ap mode the default instead of sta mode"); 37 38 /* Register definitions */ 39 #define MWL8K_HIU_GEN_PTR 0x00000c10 40 #define MWL8K_MODE_STA 0x0000005a 41 #define MWL8K_MODE_AP 0x000000a5 42 #define MWL8K_HIU_INT_CODE 0x00000c14 43 #define MWL8K_FWSTA_READY 0xf0f1f2f4 44 #define MWL8K_FWAP_READY 0xf1f2f4a5 45 #define MWL8K_INT_CODE_CMD_FINISHED 0x00000005 46 #define MWL8K_HIU_SCRATCH 0x00000c40 47 48 /* Host->device communications */ 49 #define MWL8K_HIU_H2A_INTERRUPT_EVENTS 0x00000c18 50 #define MWL8K_HIU_H2A_INTERRUPT_STATUS 0x00000c1c 51 #define MWL8K_HIU_H2A_INTERRUPT_MASK 0x00000c20 52 #define MWL8K_HIU_H2A_INTERRUPT_CLEAR_SEL 0x00000c24 53 #define MWL8K_HIU_H2A_INTERRUPT_STATUS_MASK 0x00000c28 54 #define MWL8K_H2A_INT_DUMMY (1 << 20) 55 #define MWL8K_H2A_INT_RESET (1 << 15) 56 #define MWL8K_H2A_INT_DOORBELL (1 << 1) 57 #define MWL8K_H2A_INT_PPA_READY (1 << 0) 58 59 /* Device->host communications */ 60 #define MWL8K_HIU_A2H_INTERRUPT_EVENTS 0x00000c2c 61 #define MWL8K_HIU_A2H_INTERRUPT_STATUS 0x00000c30 62 #define MWL8K_HIU_A2H_INTERRUPT_MASK 0x00000c34 63 #define MWL8K_HIU_A2H_INTERRUPT_CLEAR_SEL 0x00000c38 64 #define MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK 0x00000c3c 65 #define MWL8K_A2H_INT_DUMMY (1 << 20) 66 #define MWL8K_A2H_INT_BA_WATCHDOG (1 << 14) 67 #define MWL8K_A2H_INT_CHNL_SWITCHED (1 << 11) 68 #define MWL8K_A2H_INT_QUEUE_EMPTY (1 << 10) 69 #define MWL8K_A2H_INT_RADAR_DETECT (1 << 7) 70 #define MWL8K_A2H_INT_RADIO_ON (1 << 6) 71 #define MWL8K_A2H_INT_RADIO_OFF (1 << 5) 72 #define MWL8K_A2H_INT_MAC_EVENT (1 << 3) 73 #define MWL8K_A2H_INT_OPC_DONE (1 << 2) 74 #define MWL8K_A2H_INT_RX_READY (1 << 1) 75 #define MWL8K_A2H_INT_TX_DONE (1 << 0) 76 77 /* HW micro second timer register 78 * located at offset 0xA600. This 79 * will be used to timestamp tx 80 * packets. 81 */ 82 83 #define MWL8K_HW_TIMER_REGISTER 0x0000a600 84 #define BBU_RXRDY_CNT_REG 0x0000a860 85 #define NOK_CCA_CNT_REG 0x0000a6a0 86 #define BBU_AVG_NOISE_VAL 0x67 87 88 #define MWL8K_A2H_EVENTS (MWL8K_A2H_INT_DUMMY | \ 89 MWL8K_A2H_INT_CHNL_SWITCHED | \ 90 MWL8K_A2H_INT_QUEUE_EMPTY | \ 91 MWL8K_A2H_INT_RADAR_DETECT | \ 92 MWL8K_A2H_INT_RADIO_ON | \ 93 MWL8K_A2H_INT_RADIO_OFF | \ 94 MWL8K_A2H_INT_MAC_EVENT | \ 95 MWL8K_A2H_INT_OPC_DONE | \ 96 MWL8K_A2H_INT_RX_READY | \ 97 MWL8K_A2H_INT_TX_DONE | \ 98 MWL8K_A2H_INT_BA_WATCHDOG) 99 100 #define MWL8K_RX_QUEUES 1 101 #define MWL8K_TX_WMM_QUEUES 4 102 #define MWL8K_MAX_AMPDU_QUEUES 8 103 #define MWL8K_MAX_TX_QUEUES (MWL8K_TX_WMM_QUEUES + MWL8K_MAX_AMPDU_QUEUES) 104 #define mwl8k_tx_queues(priv) (MWL8K_TX_WMM_QUEUES + (priv)->num_ampdu_queues) 105 106 /* txpriorities are mapped with hw queues. 107 * Each hw queue has a txpriority. 108 */ 109 #define TOTAL_HW_TX_QUEUES 8 110 111 /* Each HW queue can have one AMPDU stream. 112 * But, because one of the hw queue is reserved, 113 * maximum AMPDU queues that can be created are 114 * one short of total tx queues. 115 */ 116 #define MWL8K_NUM_AMPDU_STREAMS (TOTAL_HW_TX_QUEUES - 1) 117 118 #define MWL8K_NUM_CHANS 18 119 120 struct rxd_ops { 121 int rxd_size; 122 void (*rxd_init)(void *rxd, dma_addr_t next_dma_addr); 123 void (*rxd_refill)(void *rxd, dma_addr_t addr, int len); 124 int (*rxd_process)(void *rxd, struct ieee80211_rx_status *status, 125 __le16 *qos, s8 *noise); 126 }; 127 128 struct mwl8k_device_info { 129 char *part_name; 130 char *helper_image; 131 char *fw_image_sta; 132 char *fw_image_ap; 133 struct rxd_ops *ap_rxd_ops; 134 u32 fw_api_ap; 135 }; 136 137 struct mwl8k_rx_queue { 138 int rxd_count; 139 140 /* hw receives here */ 141 int head; 142 143 /* refill descs here */ 144 int tail; 145 146 void *rxd; 147 dma_addr_t rxd_dma; 148 struct { 149 struct sk_buff *skb; 150 DEFINE_DMA_UNMAP_ADDR(dma); 151 } *buf; 152 }; 153 154 struct mwl8k_tx_queue { 155 /* hw transmits here */ 156 int head; 157 158 /* sw appends here */ 159 int tail; 160 161 unsigned int len; 162 struct mwl8k_tx_desc *txd; 163 dma_addr_t txd_dma; 164 struct sk_buff **skb; 165 }; 166 167 enum { 168 AMPDU_NO_STREAM, 169 AMPDU_STREAM_NEW, 170 AMPDU_STREAM_IN_PROGRESS, 171 AMPDU_STREAM_ACTIVE, 172 }; 173 174 struct mwl8k_ampdu_stream { 175 struct ieee80211_sta *sta; 176 u8 tid; 177 u8 state; 178 u8 idx; 179 }; 180 181 struct mwl8k_priv { 182 struct ieee80211_hw *hw; 183 struct pci_dev *pdev; 184 int irq; 185 186 struct mwl8k_device_info *device_info; 187 188 void __iomem *sram; 189 void __iomem *regs; 190 191 /* firmware */ 192 const struct firmware *fw_helper; 193 const struct firmware *fw_ucode; 194 195 /* hardware/firmware parameters */ 196 bool ap_fw; 197 struct rxd_ops *rxd_ops; 198 struct ieee80211_supported_band band_24; 199 struct ieee80211_channel channels_24[14]; 200 struct ieee80211_rate rates_24[13]; 201 struct ieee80211_supported_band band_50; 202 struct ieee80211_channel channels_50[9]; 203 struct ieee80211_rate rates_50[8]; 204 u32 ap_macids_supported; 205 u32 sta_macids_supported; 206 207 /* Ampdu stream information */ 208 u8 num_ampdu_queues; 209 spinlock_t stream_lock; 210 struct mwl8k_ampdu_stream ampdu[MWL8K_MAX_AMPDU_QUEUES]; 211 struct work_struct watchdog_ba_handle; 212 213 /* firmware access */ 214 struct mutex fw_mutex; 215 struct task_struct *fw_mutex_owner; 216 struct task_struct *hw_restart_owner; 217 int fw_mutex_depth; 218 struct completion *hostcmd_wait; 219 220 atomic_t watchdog_event_pending; 221 222 /* lock held over TX and TX reap */ 223 spinlock_t tx_lock; 224 225 /* TX quiesce completion, protected by fw_mutex and tx_lock */ 226 struct completion *tx_wait; 227 228 /* List of interfaces. */ 229 u32 macids_used; 230 struct list_head vif_list; 231 232 /* power management status cookie from firmware */ 233 u32 *cookie; 234 dma_addr_t cookie_dma; 235 236 u16 num_mcaddrs; 237 u8 hw_rev; 238 u32 fw_rev; 239 u32 caps; 240 241 /* 242 * Running count of TX packets in flight, to avoid 243 * iterating over the transmit rings each time. 244 */ 245 int pending_tx_pkts; 246 247 struct mwl8k_rx_queue rxq[MWL8K_RX_QUEUES]; 248 struct mwl8k_tx_queue txq[MWL8K_MAX_TX_QUEUES]; 249 u32 txq_offset[MWL8K_MAX_TX_QUEUES]; 250 251 bool radio_on; 252 bool radio_short_preamble; 253 bool sniffer_enabled; 254 bool wmm_enabled; 255 256 /* XXX need to convert this to handle multiple interfaces */ 257 bool capture_beacon; 258 u8 capture_bssid[ETH_ALEN]; 259 struct sk_buff *beacon_skb; 260 261 /* 262 * This FJ worker has to be global as it is scheduled from the 263 * RX handler. At this point we don't know which interface it 264 * belongs to until the list of bssids waiting to complete join 265 * is checked. 266 */ 267 struct work_struct finalize_join_worker; 268 269 /* Tasklet to perform TX reclaim. */ 270 struct tasklet_struct poll_tx_task; 271 272 /* Tasklet to perform RX. */ 273 struct tasklet_struct poll_rx_task; 274 275 /* Most recently reported noise in dBm */ 276 s8 noise; 277 278 /* 279 * preserve the queue configurations so they can be restored if/when 280 * the firmware image is swapped. 281 */ 282 struct ieee80211_tx_queue_params wmm_params[MWL8K_TX_WMM_QUEUES]; 283 284 /* To perform the task of reloading the firmware */ 285 struct work_struct fw_reload; 286 bool hw_restart_in_progress; 287 288 /* async firmware loading state */ 289 unsigned fw_state; 290 char *fw_pref; 291 char *fw_alt; 292 bool is_8764; 293 struct completion firmware_loading_complete; 294 295 /* bitmap of running BSSes */ 296 u32 running_bsses; 297 298 /* ACS related */ 299 bool sw_scan_start; 300 struct ieee80211_channel *acs_chan; 301 unsigned long channel_time; 302 struct survey_info survey[MWL8K_NUM_CHANS]; 303 }; 304 305 #define MAX_WEP_KEY_LEN 13 306 #define NUM_WEP_KEYS 4 307 308 /* Per interface specific private data */ 309 struct mwl8k_vif { 310 struct list_head list; 311 struct ieee80211_vif *vif; 312 313 /* Firmware macid for this vif. */ 314 int macid; 315 316 /* Non AMPDU sequence number assigned by driver. */ 317 u16 seqno; 318 319 /* Saved WEP keys */ 320 struct { 321 u8 enabled; 322 u8 key[sizeof(struct ieee80211_key_conf) + MAX_WEP_KEY_LEN]; 323 } wep_key_conf[NUM_WEP_KEYS]; 324 325 /* BSSID */ 326 u8 bssid[ETH_ALEN]; 327 328 /* A flag to indicate is HW crypto is enabled for this bssid */ 329 bool is_hw_crypto_enabled; 330 }; 331 #define MWL8K_VIF(_vif) ((struct mwl8k_vif *)&((_vif)->drv_priv)) 332 #define IEEE80211_KEY_CONF(_u8) ((struct ieee80211_key_conf *)(_u8)) 333 334 struct tx_traffic_info { 335 u32 start_time; 336 u32 pkts; 337 }; 338 339 #define MWL8K_MAX_TID 8 340 struct mwl8k_sta { 341 /* Index into station database. Returned by UPDATE_STADB. */ 342 u8 peer_id; 343 u8 is_ampdu_allowed; 344 struct tx_traffic_info tx_stats[MWL8K_MAX_TID]; 345 }; 346 #define MWL8K_STA(_sta) ((struct mwl8k_sta *)&((_sta)->drv_priv)) 347 348 static const struct ieee80211_channel mwl8k_channels_24[] = { 349 { .band = NL80211_BAND_2GHZ, .center_freq = 2412, .hw_value = 1, }, 350 { .band = NL80211_BAND_2GHZ, .center_freq = 2417, .hw_value = 2, }, 351 { .band = NL80211_BAND_2GHZ, .center_freq = 2422, .hw_value = 3, }, 352 { .band = NL80211_BAND_2GHZ, .center_freq = 2427, .hw_value = 4, }, 353 { .band = NL80211_BAND_2GHZ, .center_freq = 2432, .hw_value = 5, }, 354 { .band = NL80211_BAND_2GHZ, .center_freq = 2437, .hw_value = 6, }, 355 { .band = NL80211_BAND_2GHZ, .center_freq = 2442, .hw_value = 7, }, 356 { .band = NL80211_BAND_2GHZ, .center_freq = 2447, .hw_value = 8, }, 357 { .band = NL80211_BAND_2GHZ, .center_freq = 2452, .hw_value = 9, }, 358 { .band = NL80211_BAND_2GHZ, .center_freq = 2457, .hw_value = 10, }, 359 { .band = NL80211_BAND_2GHZ, .center_freq = 2462, .hw_value = 11, }, 360 { .band = NL80211_BAND_2GHZ, .center_freq = 2467, .hw_value = 12, }, 361 { .band = NL80211_BAND_2GHZ, .center_freq = 2472, .hw_value = 13, }, 362 { .band = NL80211_BAND_2GHZ, .center_freq = 2484, .hw_value = 14, }, 363 }; 364 365 static const struct ieee80211_rate mwl8k_rates_24[] = { 366 { .bitrate = 10, .hw_value = 2, }, 367 { .bitrate = 20, .hw_value = 4, }, 368 { .bitrate = 55, .hw_value = 11, }, 369 { .bitrate = 110, .hw_value = 22, }, 370 { .bitrate = 220, .hw_value = 44, }, 371 { .bitrate = 60, .hw_value = 12, }, 372 { .bitrate = 90, .hw_value = 18, }, 373 { .bitrate = 120, .hw_value = 24, }, 374 { .bitrate = 180, .hw_value = 36, }, 375 { .bitrate = 240, .hw_value = 48, }, 376 { .bitrate = 360, .hw_value = 72, }, 377 { .bitrate = 480, .hw_value = 96, }, 378 { .bitrate = 540, .hw_value = 108, }, 379 }; 380 381 static const struct ieee80211_channel mwl8k_channels_50[] = { 382 { .band = NL80211_BAND_5GHZ, .center_freq = 5180, .hw_value = 36, }, 383 { .band = NL80211_BAND_5GHZ, .center_freq = 5200, .hw_value = 40, }, 384 { .band = NL80211_BAND_5GHZ, .center_freq = 5220, .hw_value = 44, }, 385 { .band = NL80211_BAND_5GHZ, .center_freq = 5240, .hw_value = 48, }, 386 { .band = NL80211_BAND_5GHZ, .center_freq = 5745, .hw_value = 149, }, 387 { .band = NL80211_BAND_5GHZ, .center_freq = 5765, .hw_value = 153, }, 388 { .band = NL80211_BAND_5GHZ, .center_freq = 5785, .hw_value = 157, }, 389 { .band = NL80211_BAND_5GHZ, .center_freq = 5805, .hw_value = 161, }, 390 { .band = NL80211_BAND_5GHZ, .center_freq = 5825, .hw_value = 165, }, 391 }; 392 393 static const struct ieee80211_rate mwl8k_rates_50[] = { 394 { .bitrate = 60, .hw_value = 12, }, 395 { .bitrate = 90, .hw_value = 18, }, 396 { .bitrate = 120, .hw_value = 24, }, 397 { .bitrate = 180, .hw_value = 36, }, 398 { .bitrate = 240, .hw_value = 48, }, 399 { .bitrate = 360, .hw_value = 72, }, 400 { .bitrate = 480, .hw_value = 96, }, 401 { .bitrate = 540, .hw_value = 108, }, 402 }; 403 404 /* Set or get info from Firmware */ 405 #define MWL8K_CMD_GET 0x0000 406 #define MWL8K_CMD_SET 0x0001 407 #define MWL8K_CMD_SET_LIST 0x0002 408 409 /* Firmware command codes */ 410 #define MWL8K_CMD_CODE_DNLD 0x0001 411 #define MWL8K_CMD_GET_HW_SPEC 0x0003 412 #define MWL8K_CMD_SET_HW_SPEC 0x0004 413 #define MWL8K_CMD_MAC_MULTICAST_ADR 0x0010 414 #define MWL8K_CMD_GET_STAT 0x0014 415 #define MWL8K_CMD_BBP_REG_ACCESS 0x001a 416 #define MWL8K_CMD_RADIO_CONTROL 0x001c 417 #define MWL8K_CMD_RF_TX_POWER 0x001e 418 #define MWL8K_CMD_TX_POWER 0x001f 419 #define MWL8K_CMD_RF_ANTENNA 0x0020 420 #define MWL8K_CMD_SET_BEACON 0x0100 /* per-vif */ 421 #define MWL8K_CMD_SET_PRE_SCAN 0x0107 422 #define MWL8K_CMD_SET_POST_SCAN 0x0108 423 #define MWL8K_CMD_SET_RF_CHANNEL 0x010a 424 #define MWL8K_CMD_SET_AID 0x010d 425 #define MWL8K_CMD_SET_RATE 0x0110 426 #define MWL8K_CMD_SET_FINALIZE_JOIN 0x0111 427 #define MWL8K_CMD_RTS_THRESHOLD 0x0113 428 #define MWL8K_CMD_SET_SLOT 0x0114 429 #define MWL8K_CMD_SET_EDCA_PARAMS 0x0115 430 #define MWL8K_CMD_SET_WMM_MODE 0x0123 431 #define MWL8K_CMD_MIMO_CONFIG 0x0125 432 #define MWL8K_CMD_USE_FIXED_RATE 0x0126 433 #define MWL8K_CMD_ENABLE_SNIFFER 0x0150 434 #define MWL8K_CMD_SET_MAC_ADDR 0x0202 /* per-vif */ 435 #define MWL8K_CMD_SET_RATEADAPT_MODE 0x0203 436 #define MWL8K_CMD_GET_WATCHDOG_BITMAP 0x0205 437 #define MWL8K_CMD_DEL_MAC_ADDR 0x0206 /* per-vif */ 438 #define MWL8K_CMD_BSS_START 0x1100 /* per-vif */ 439 #define MWL8K_CMD_SET_NEW_STN 0x1111 /* per-vif */ 440 #define MWL8K_CMD_UPDATE_ENCRYPTION 0x1122 /* per-vif */ 441 #define MWL8K_CMD_UPDATE_STADB 0x1123 442 #define MWL8K_CMD_BASTREAM 0x1125 443 444 #define MWL8K_LEGACY_5G_RATE_OFFSET \ 445 (ARRAY_SIZE(mwl8k_rates_24) - ARRAY_SIZE(mwl8k_rates_50)) 446 447 static const char *mwl8k_cmd_name(__le16 cmd, char *buf, int bufsize) 448 { 449 u16 command = le16_to_cpu(cmd); 450 451 #define MWL8K_CMDNAME(x) case MWL8K_CMD_##x: do {\ 452 snprintf(buf, bufsize, "%s", #x);\ 453 return buf;\ 454 } while (0) 455 switch (command & ~0x8000) { 456 MWL8K_CMDNAME(CODE_DNLD); 457 MWL8K_CMDNAME(GET_HW_SPEC); 458 MWL8K_CMDNAME(SET_HW_SPEC); 459 MWL8K_CMDNAME(MAC_MULTICAST_ADR); 460 MWL8K_CMDNAME(GET_STAT); 461 MWL8K_CMDNAME(RADIO_CONTROL); 462 MWL8K_CMDNAME(RF_TX_POWER); 463 MWL8K_CMDNAME(TX_POWER); 464 MWL8K_CMDNAME(RF_ANTENNA); 465 MWL8K_CMDNAME(SET_BEACON); 466 MWL8K_CMDNAME(SET_PRE_SCAN); 467 MWL8K_CMDNAME(SET_POST_SCAN); 468 MWL8K_CMDNAME(SET_RF_CHANNEL); 469 MWL8K_CMDNAME(SET_AID); 470 MWL8K_CMDNAME(SET_RATE); 471 MWL8K_CMDNAME(SET_FINALIZE_JOIN); 472 MWL8K_CMDNAME(RTS_THRESHOLD); 473 MWL8K_CMDNAME(SET_SLOT); 474 MWL8K_CMDNAME(SET_EDCA_PARAMS); 475 MWL8K_CMDNAME(SET_WMM_MODE); 476 MWL8K_CMDNAME(MIMO_CONFIG); 477 MWL8K_CMDNAME(USE_FIXED_RATE); 478 MWL8K_CMDNAME(ENABLE_SNIFFER); 479 MWL8K_CMDNAME(SET_MAC_ADDR); 480 MWL8K_CMDNAME(SET_RATEADAPT_MODE); 481 MWL8K_CMDNAME(BSS_START); 482 MWL8K_CMDNAME(SET_NEW_STN); 483 MWL8K_CMDNAME(UPDATE_ENCRYPTION); 484 MWL8K_CMDNAME(UPDATE_STADB); 485 MWL8K_CMDNAME(BASTREAM); 486 MWL8K_CMDNAME(GET_WATCHDOG_BITMAP); 487 default: 488 snprintf(buf, bufsize, "0x%x", cmd); 489 } 490 #undef MWL8K_CMDNAME 491 492 return buf; 493 } 494 495 /* Hardware and firmware reset */ 496 static void mwl8k_hw_reset(struct mwl8k_priv *priv) 497 { 498 iowrite32(MWL8K_H2A_INT_RESET, 499 priv->regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 500 iowrite32(MWL8K_H2A_INT_RESET, 501 priv->regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 502 msleep(20); 503 } 504 505 /* Release fw image */ 506 static void mwl8k_release_fw(const struct firmware **fw) 507 { 508 if (*fw == NULL) 509 return; 510 release_firmware(*fw); 511 *fw = NULL; 512 } 513 514 static void mwl8k_release_firmware(struct mwl8k_priv *priv) 515 { 516 mwl8k_release_fw(&priv->fw_ucode); 517 mwl8k_release_fw(&priv->fw_helper); 518 } 519 520 /* states for asynchronous f/w loading */ 521 static void mwl8k_fw_state_machine(const struct firmware *fw, void *context); 522 enum { 523 FW_STATE_INIT = 0, 524 FW_STATE_LOADING_PREF, 525 FW_STATE_LOADING_ALT, 526 FW_STATE_ERROR, 527 }; 528 529 /* Request fw image */ 530 static int mwl8k_request_fw(struct mwl8k_priv *priv, 531 const char *fname, const struct firmware **fw, 532 bool nowait) 533 { 534 /* release current image */ 535 if (*fw != NULL) 536 mwl8k_release_fw(fw); 537 538 if (nowait) 539 return request_firmware_nowait(THIS_MODULE, 1, fname, 540 &priv->pdev->dev, GFP_KERNEL, 541 priv, mwl8k_fw_state_machine); 542 else 543 return request_firmware(fw, fname, &priv->pdev->dev); 544 } 545 546 static int mwl8k_request_firmware(struct mwl8k_priv *priv, char *fw_image, 547 bool nowait) 548 { 549 struct mwl8k_device_info *di = priv->device_info; 550 int rc; 551 552 if (di->helper_image != NULL) { 553 if (nowait) 554 rc = mwl8k_request_fw(priv, di->helper_image, 555 &priv->fw_helper, true); 556 else 557 rc = mwl8k_request_fw(priv, di->helper_image, 558 &priv->fw_helper, false); 559 if (rc) 560 printk(KERN_ERR "%s: Error requesting helper fw %s\n", 561 pci_name(priv->pdev), di->helper_image); 562 563 if (rc || nowait) 564 return rc; 565 } 566 567 if (nowait) { 568 /* 569 * if we get here, no helper image is needed. Skip the 570 * FW_STATE_INIT state. 571 */ 572 priv->fw_state = FW_STATE_LOADING_PREF; 573 rc = mwl8k_request_fw(priv, fw_image, 574 &priv->fw_ucode, 575 true); 576 } else 577 rc = mwl8k_request_fw(priv, fw_image, 578 &priv->fw_ucode, false); 579 if (rc) { 580 printk(KERN_ERR "%s: Error requesting firmware file %s\n", 581 pci_name(priv->pdev), fw_image); 582 mwl8k_release_fw(&priv->fw_helper); 583 return rc; 584 } 585 586 return 0; 587 } 588 589 struct mwl8k_cmd_pkt { 590 /* New members MUST be added within the __struct_group() macro below. */ 591 __struct_group(mwl8k_cmd_pkt_hdr, hdr, __packed, 592 __le16 code; 593 __le16 length; 594 __u8 seq_num; 595 __u8 macid; 596 __le16 result; 597 ); 598 char payload[]; 599 } __packed; 600 static_assert(offsetof(struct mwl8k_cmd_pkt, payload) == sizeof(struct mwl8k_cmd_pkt_hdr), 601 "struct member likely outside of __struct_group()"); 602 603 /* 604 * Firmware loading. 605 */ 606 static int 607 mwl8k_send_fw_load_cmd(struct mwl8k_priv *priv, void *data, int length) 608 { 609 void __iomem *regs = priv->regs; 610 dma_addr_t dma_addr; 611 int loops; 612 613 dma_addr = dma_map_single(&priv->pdev->dev, data, length, 614 DMA_TO_DEVICE); 615 if (dma_mapping_error(&priv->pdev->dev, dma_addr)) 616 return -ENOMEM; 617 618 iowrite32(dma_addr, regs + MWL8K_HIU_GEN_PTR); 619 iowrite32(0, regs + MWL8K_HIU_INT_CODE); 620 iowrite32(MWL8K_H2A_INT_DOORBELL, 621 regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 622 iowrite32(MWL8K_H2A_INT_DUMMY, 623 regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 624 625 loops = 1000; 626 do { 627 u32 int_code; 628 if (priv->is_8764) { 629 int_code = ioread32(regs + 630 MWL8K_HIU_H2A_INTERRUPT_STATUS); 631 if (int_code == 0) 632 break; 633 } else { 634 int_code = ioread32(regs + MWL8K_HIU_INT_CODE); 635 if (int_code == MWL8K_INT_CODE_CMD_FINISHED) { 636 iowrite32(0, regs + MWL8K_HIU_INT_CODE); 637 break; 638 } 639 } 640 cond_resched(); 641 udelay(1); 642 } while (--loops); 643 644 dma_unmap_single(&priv->pdev->dev, dma_addr, length, DMA_TO_DEVICE); 645 646 return loops ? 0 : -ETIMEDOUT; 647 } 648 649 static int mwl8k_load_fw_image(struct mwl8k_priv *priv, 650 const u8 *data, size_t length) 651 { 652 struct mwl8k_cmd_pkt *cmd; 653 int done; 654 int rc = 0; 655 656 cmd = kmalloc(sizeof(*cmd) + 256, GFP_KERNEL); 657 if (cmd == NULL) 658 return -ENOMEM; 659 660 cmd->code = cpu_to_le16(MWL8K_CMD_CODE_DNLD); 661 cmd->seq_num = 0; 662 cmd->macid = 0; 663 cmd->result = 0; 664 665 done = 0; 666 while (length) { 667 int block_size = length > 256 ? 256 : length; 668 669 memcpy(cmd->payload, data + done, block_size); 670 cmd->length = cpu_to_le16(block_size); 671 672 rc = mwl8k_send_fw_load_cmd(priv, cmd, 673 sizeof(*cmd) + block_size); 674 if (rc) 675 break; 676 677 done += block_size; 678 length -= block_size; 679 } 680 681 if (!rc) { 682 cmd->length = 0; 683 rc = mwl8k_send_fw_load_cmd(priv, cmd, sizeof(*cmd)); 684 } 685 686 kfree(cmd); 687 688 return rc; 689 } 690 691 static int mwl8k_feed_fw_image(struct mwl8k_priv *priv, 692 const u8 *data, size_t length) 693 { 694 unsigned char *buffer; 695 int may_continue, rc = 0; 696 u32 done, prev_block_size; 697 698 buffer = kmalloc(1024, GFP_KERNEL); 699 if (buffer == NULL) 700 return -ENOMEM; 701 702 done = 0; 703 prev_block_size = 0; 704 may_continue = 1000; 705 while (may_continue > 0) { 706 u32 block_size; 707 708 block_size = ioread32(priv->regs + MWL8K_HIU_SCRATCH); 709 if (block_size & 1) { 710 block_size &= ~1; 711 may_continue--; 712 } else { 713 done += prev_block_size; 714 length -= prev_block_size; 715 } 716 717 if (block_size > 1024 || block_size > length) { 718 rc = -EOVERFLOW; 719 break; 720 } 721 722 if (length == 0) { 723 rc = 0; 724 break; 725 } 726 727 if (block_size == 0) { 728 rc = -EPROTO; 729 may_continue--; 730 udelay(1); 731 continue; 732 } 733 734 prev_block_size = block_size; 735 memcpy(buffer, data + done, block_size); 736 737 rc = mwl8k_send_fw_load_cmd(priv, buffer, block_size); 738 if (rc) 739 break; 740 } 741 742 if (!rc && length != 0) 743 rc = -EREMOTEIO; 744 745 kfree(buffer); 746 747 return rc; 748 } 749 750 static int mwl8k_load_firmware(struct ieee80211_hw *hw) 751 { 752 struct mwl8k_priv *priv = hw->priv; 753 const struct firmware *fw = priv->fw_ucode; 754 int rc; 755 int loops; 756 757 if (!memcmp(fw->data, "\x01\x00\x00\x00", 4) && !priv->is_8764) { 758 const struct firmware *helper = priv->fw_helper; 759 760 if (helper == NULL) { 761 printk(KERN_ERR "%s: helper image needed but none " 762 "given\n", pci_name(priv->pdev)); 763 return -EINVAL; 764 } 765 766 rc = mwl8k_load_fw_image(priv, helper->data, helper->size); 767 if (rc) { 768 printk(KERN_ERR "%s: unable to load firmware " 769 "helper image\n", pci_name(priv->pdev)); 770 return rc; 771 } 772 msleep(20); 773 774 rc = mwl8k_feed_fw_image(priv, fw->data, fw->size); 775 } else { 776 if (priv->is_8764) 777 rc = mwl8k_feed_fw_image(priv, fw->data, fw->size); 778 else 779 rc = mwl8k_load_fw_image(priv, fw->data, fw->size); 780 } 781 782 if (rc) { 783 printk(KERN_ERR "%s: unable to load firmware image\n", 784 pci_name(priv->pdev)); 785 return rc; 786 } 787 788 iowrite32(MWL8K_MODE_STA, priv->regs + MWL8K_HIU_GEN_PTR); 789 790 loops = 500000; 791 do { 792 u32 ready_code; 793 794 ready_code = ioread32(priv->regs + MWL8K_HIU_INT_CODE); 795 if (ready_code == MWL8K_FWAP_READY) { 796 priv->ap_fw = true; 797 break; 798 } else if (ready_code == MWL8K_FWSTA_READY) { 799 priv->ap_fw = false; 800 break; 801 } 802 803 cond_resched(); 804 udelay(1); 805 } while (--loops); 806 807 return loops ? 0 : -ETIMEDOUT; 808 } 809 810 811 /* DMA header used by firmware and hardware. */ 812 struct mwl8k_dma_data { 813 __le16 fwlen; 814 struct ieee80211_hdr wh; 815 char data[]; 816 } __packed __aligned(2); 817 818 /* Routines to add/remove DMA header from skb. */ 819 static inline void mwl8k_remove_dma_header(struct sk_buff *skb, __le16 qos) 820 { 821 struct mwl8k_dma_data *tr; 822 int hdrlen; 823 824 tr = (struct mwl8k_dma_data *)skb->data; 825 hdrlen = ieee80211_hdrlen(tr->wh.frame_control); 826 827 if (hdrlen != sizeof(tr->wh)) { 828 if (ieee80211_is_data_qos(tr->wh.frame_control)) { 829 memmove(tr->data - hdrlen, &tr->wh, hdrlen - 2); 830 *((__le16 *)(tr->data - 2)) = qos; 831 } else { 832 memmove(tr->data - hdrlen, &tr->wh, hdrlen); 833 } 834 } 835 836 if (hdrlen != sizeof(*tr)) 837 skb_pull(skb, sizeof(*tr) - hdrlen); 838 } 839 840 #define REDUCED_TX_HEADROOM 8 841 842 static void 843 mwl8k_add_dma_header(struct mwl8k_priv *priv, struct sk_buff *skb, 844 int head_pad, int tail_pad) 845 { 846 struct ieee80211_hdr *wh; 847 int hdrlen; 848 int reqd_hdrlen; 849 struct mwl8k_dma_data *tr; 850 851 /* 852 * Add a firmware DMA header; the firmware requires that we 853 * present a 2-byte payload length followed by a 4-address 854 * header (without QoS field), followed (optionally) by any 855 * WEP/ExtIV header (but only filled in for CCMP). 856 */ 857 wh = (struct ieee80211_hdr *)skb->data; 858 859 hdrlen = ieee80211_hdrlen(wh->frame_control); 860 861 /* 862 * Check if skb_resize is required because of 863 * tx_headroom adjustment. 864 */ 865 if (priv->ap_fw && (hdrlen < (sizeof(struct ieee80211_cts) 866 + REDUCED_TX_HEADROOM))) { 867 if (pskb_expand_head(skb, REDUCED_TX_HEADROOM, 0, GFP_ATOMIC)) { 868 869 wiphy_err(priv->hw->wiphy, 870 "Failed to reallocate TX buffer\n"); 871 return; 872 } 873 skb->truesize += REDUCED_TX_HEADROOM; 874 } 875 876 reqd_hdrlen = sizeof(*tr) + head_pad; 877 878 if (hdrlen != reqd_hdrlen) 879 skb_push(skb, reqd_hdrlen - hdrlen); 880 881 if (ieee80211_is_data_qos(wh->frame_control)) 882 hdrlen -= IEEE80211_QOS_CTL_LEN; 883 884 tr = (struct mwl8k_dma_data *)skb->data; 885 if (wh != &tr->wh) 886 memmove(&tr->wh, wh, hdrlen); 887 if (hdrlen != sizeof(tr->wh)) 888 memset(((void *)&tr->wh) + hdrlen, 0, sizeof(tr->wh) - hdrlen); 889 890 /* 891 * Firmware length is the length of the fully formed "802.11 892 * payload". That is, everything except for the 802.11 header. 893 * This includes all crypto material including the MIC. 894 */ 895 tr->fwlen = cpu_to_le16(skb->len - sizeof(*tr) + tail_pad); 896 } 897 898 static void mwl8k_encapsulate_tx_frame(struct mwl8k_priv *priv, 899 struct sk_buff *skb) 900 { 901 struct ieee80211_hdr *wh; 902 struct ieee80211_tx_info *tx_info; 903 struct ieee80211_key_conf *key_conf; 904 int data_pad; 905 int head_pad = 0; 906 907 wh = (struct ieee80211_hdr *)skb->data; 908 909 tx_info = IEEE80211_SKB_CB(skb); 910 911 key_conf = NULL; 912 if (ieee80211_is_data(wh->frame_control)) 913 key_conf = tx_info->control.hw_key; 914 915 /* 916 * Make sure the packet header is in the DMA header format (4-address 917 * without QoS), and add head & tail padding when HW crypto is enabled. 918 * 919 * We have the following trailer padding requirements: 920 * - WEP: 4 trailer bytes (ICV) 921 * - TKIP: 12 trailer bytes (8 MIC + 4 ICV) 922 * - CCMP: 8 trailer bytes (MIC) 923 */ 924 data_pad = 0; 925 if (key_conf != NULL) { 926 head_pad = key_conf->iv_len; 927 switch (key_conf->cipher) { 928 case WLAN_CIPHER_SUITE_WEP40: 929 case WLAN_CIPHER_SUITE_WEP104: 930 data_pad = 4; 931 break; 932 case WLAN_CIPHER_SUITE_TKIP: 933 data_pad = 12; 934 break; 935 case WLAN_CIPHER_SUITE_CCMP: 936 data_pad = 8; 937 break; 938 } 939 } 940 mwl8k_add_dma_header(priv, skb, head_pad, data_pad); 941 } 942 943 /* 944 * Packet reception for 88w8366/88w8764 AP firmware. 945 */ 946 struct mwl8k_rxd_ap { 947 __le16 pkt_len; 948 __u8 sq2; 949 __u8 rate; 950 __le32 pkt_phys_addr; 951 __le32 next_rxd_phys_addr; 952 __le16 qos_control; 953 __le16 htsig2; 954 __le32 hw_rssi_info; 955 __le32 hw_noise_floor_info; 956 __u8 noise_floor; 957 __u8 pad0[3]; 958 __u8 rssi; 959 __u8 rx_status; 960 __u8 channel; 961 __u8 rx_ctrl; 962 } __packed; 963 964 #define MWL8K_AP_RATE_INFO_MCS_FORMAT 0x80 965 #define MWL8K_AP_RATE_INFO_40MHZ 0x40 966 #define MWL8K_AP_RATE_INFO_RATEID(x) ((x) & 0x3f) 967 968 #define MWL8K_AP_RX_CTRL_OWNED_BY_HOST 0x80 969 970 /* 8366/8764 AP rx_status bits */ 971 #define MWL8K_AP_RXSTAT_DECRYPT_ERR_MASK 0x80 972 #define MWL8K_AP_RXSTAT_GENERAL_DECRYPT_ERR 0xFF 973 #define MWL8K_AP_RXSTAT_TKIP_DECRYPT_MIC_ERR 0x02 974 #define MWL8K_AP_RXSTAT_WEP_DECRYPT_ICV_ERR 0x04 975 #define MWL8K_AP_RXSTAT_TKIP_DECRYPT_ICV_ERR 0x08 976 977 static void mwl8k_rxd_ap_init(void *_rxd, dma_addr_t next_dma_addr) 978 { 979 struct mwl8k_rxd_ap *rxd = _rxd; 980 981 rxd->next_rxd_phys_addr = cpu_to_le32(next_dma_addr); 982 rxd->rx_ctrl = MWL8K_AP_RX_CTRL_OWNED_BY_HOST; 983 } 984 985 static void mwl8k_rxd_ap_refill(void *_rxd, dma_addr_t addr, int len) 986 { 987 struct mwl8k_rxd_ap *rxd = _rxd; 988 989 rxd->pkt_len = cpu_to_le16(len); 990 rxd->pkt_phys_addr = cpu_to_le32(addr); 991 wmb(); 992 rxd->rx_ctrl = 0; 993 } 994 995 static int 996 mwl8k_rxd_ap_process(void *_rxd, struct ieee80211_rx_status *status, 997 __le16 *qos, s8 *noise) 998 { 999 struct mwl8k_rxd_ap *rxd = _rxd; 1000 1001 if (!(rxd->rx_ctrl & MWL8K_AP_RX_CTRL_OWNED_BY_HOST)) 1002 return -1; 1003 rmb(); 1004 1005 memset(status, 0, sizeof(*status)); 1006 1007 status->signal = -rxd->rssi; 1008 *noise = -rxd->noise_floor; 1009 1010 if (rxd->rate & MWL8K_AP_RATE_INFO_MCS_FORMAT) { 1011 status->encoding = RX_ENC_HT; 1012 if (rxd->rate & MWL8K_AP_RATE_INFO_40MHZ) 1013 status->bw = RATE_INFO_BW_40; 1014 status->rate_idx = MWL8K_AP_RATE_INFO_RATEID(rxd->rate); 1015 } else { 1016 int i; 1017 1018 for (i = 0; i < ARRAY_SIZE(mwl8k_rates_24); i++) { 1019 if (mwl8k_rates_24[i].hw_value == rxd->rate) { 1020 status->rate_idx = i; 1021 break; 1022 } 1023 } 1024 } 1025 1026 if (rxd->channel > 14) { 1027 status->band = NL80211_BAND_5GHZ; 1028 if (!(status->encoding == RX_ENC_HT) && 1029 status->rate_idx >= MWL8K_LEGACY_5G_RATE_OFFSET) 1030 status->rate_idx -= MWL8K_LEGACY_5G_RATE_OFFSET; 1031 } else { 1032 status->band = NL80211_BAND_2GHZ; 1033 } 1034 status->freq = ieee80211_channel_to_frequency(rxd->channel, 1035 status->band); 1036 1037 *qos = rxd->qos_control; 1038 1039 if ((rxd->rx_status != MWL8K_AP_RXSTAT_GENERAL_DECRYPT_ERR) && 1040 (rxd->rx_status & MWL8K_AP_RXSTAT_DECRYPT_ERR_MASK) && 1041 (rxd->rx_status & MWL8K_AP_RXSTAT_TKIP_DECRYPT_MIC_ERR)) 1042 status->flag |= RX_FLAG_MMIC_ERROR; 1043 1044 return le16_to_cpu(rxd->pkt_len); 1045 } 1046 1047 static struct rxd_ops rxd_ap_ops = { 1048 .rxd_size = sizeof(struct mwl8k_rxd_ap), 1049 .rxd_init = mwl8k_rxd_ap_init, 1050 .rxd_refill = mwl8k_rxd_ap_refill, 1051 .rxd_process = mwl8k_rxd_ap_process, 1052 }; 1053 1054 /* 1055 * Packet reception for STA firmware. 1056 */ 1057 struct mwl8k_rxd_sta { 1058 __le16 pkt_len; 1059 __u8 link_quality; 1060 __u8 noise_level; 1061 __le32 pkt_phys_addr; 1062 __le32 next_rxd_phys_addr; 1063 __le16 qos_control; 1064 __le16 rate_info; 1065 __le32 pad0[4]; 1066 __u8 rssi; 1067 __u8 channel; 1068 __le16 pad1; 1069 __u8 rx_ctrl; 1070 __u8 rx_status; 1071 __u8 pad2[2]; 1072 } __packed; 1073 1074 #define MWL8K_STA_RATE_INFO_SHORTPRE 0x8000 1075 #define MWL8K_STA_RATE_INFO_ANTSELECT(x) (((x) >> 11) & 0x3) 1076 #define MWL8K_STA_RATE_INFO_RATEID(x) (((x) >> 3) & 0x3f) 1077 #define MWL8K_STA_RATE_INFO_40MHZ 0x0004 1078 #define MWL8K_STA_RATE_INFO_SHORTGI 0x0002 1079 #define MWL8K_STA_RATE_INFO_MCS_FORMAT 0x0001 1080 1081 #define MWL8K_STA_RX_CTRL_OWNED_BY_HOST 0x02 1082 #define MWL8K_STA_RX_CTRL_DECRYPT_ERROR 0x04 1083 /* ICV=0 or MIC=1 */ 1084 #define MWL8K_STA_RX_CTRL_DEC_ERR_TYPE 0x08 1085 /* Key is uploaded only in failure case */ 1086 #define MWL8K_STA_RX_CTRL_KEY_INDEX 0x30 1087 1088 static void mwl8k_rxd_sta_init(void *_rxd, dma_addr_t next_dma_addr) 1089 { 1090 struct mwl8k_rxd_sta *rxd = _rxd; 1091 1092 rxd->next_rxd_phys_addr = cpu_to_le32(next_dma_addr); 1093 rxd->rx_ctrl = MWL8K_STA_RX_CTRL_OWNED_BY_HOST; 1094 } 1095 1096 static void mwl8k_rxd_sta_refill(void *_rxd, dma_addr_t addr, int len) 1097 { 1098 struct mwl8k_rxd_sta *rxd = _rxd; 1099 1100 rxd->pkt_len = cpu_to_le16(len); 1101 rxd->pkt_phys_addr = cpu_to_le32(addr); 1102 wmb(); 1103 rxd->rx_ctrl = 0; 1104 } 1105 1106 static int 1107 mwl8k_rxd_sta_process(void *_rxd, struct ieee80211_rx_status *status, 1108 __le16 *qos, s8 *noise) 1109 { 1110 struct mwl8k_rxd_sta *rxd = _rxd; 1111 u16 rate_info; 1112 1113 if (!(rxd->rx_ctrl & MWL8K_STA_RX_CTRL_OWNED_BY_HOST)) 1114 return -1; 1115 rmb(); 1116 1117 rate_info = le16_to_cpu(rxd->rate_info); 1118 1119 memset(status, 0, sizeof(*status)); 1120 1121 status->signal = -rxd->rssi; 1122 *noise = -rxd->noise_level; 1123 status->antenna = MWL8K_STA_RATE_INFO_ANTSELECT(rate_info); 1124 status->rate_idx = MWL8K_STA_RATE_INFO_RATEID(rate_info); 1125 1126 if (rate_info & MWL8K_STA_RATE_INFO_SHORTPRE) 1127 status->enc_flags |= RX_ENC_FLAG_SHORTPRE; 1128 if (rate_info & MWL8K_STA_RATE_INFO_40MHZ) 1129 status->bw = RATE_INFO_BW_40; 1130 if (rate_info & MWL8K_STA_RATE_INFO_SHORTGI) 1131 status->enc_flags |= RX_ENC_FLAG_SHORT_GI; 1132 if (rate_info & MWL8K_STA_RATE_INFO_MCS_FORMAT) 1133 status->encoding = RX_ENC_HT; 1134 1135 if (rxd->channel > 14) { 1136 status->band = NL80211_BAND_5GHZ; 1137 if (!(status->encoding == RX_ENC_HT) && 1138 status->rate_idx >= MWL8K_LEGACY_5G_RATE_OFFSET) 1139 status->rate_idx -= MWL8K_LEGACY_5G_RATE_OFFSET; 1140 } else { 1141 status->band = NL80211_BAND_2GHZ; 1142 } 1143 status->freq = ieee80211_channel_to_frequency(rxd->channel, 1144 status->band); 1145 1146 *qos = rxd->qos_control; 1147 if ((rxd->rx_ctrl & MWL8K_STA_RX_CTRL_DECRYPT_ERROR) && 1148 (rxd->rx_ctrl & MWL8K_STA_RX_CTRL_DEC_ERR_TYPE)) 1149 status->flag |= RX_FLAG_MMIC_ERROR; 1150 1151 return le16_to_cpu(rxd->pkt_len); 1152 } 1153 1154 static struct rxd_ops rxd_sta_ops = { 1155 .rxd_size = sizeof(struct mwl8k_rxd_sta), 1156 .rxd_init = mwl8k_rxd_sta_init, 1157 .rxd_refill = mwl8k_rxd_sta_refill, 1158 .rxd_process = mwl8k_rxd_sta_process, 1159 }; 1160 1161 1162 #define MWL8K_RX_DESCS 256 1163 #define MWL8K_RX_MAXSZ 3800 1164 1165 static int mwl8k_rxq_init(struct ieee80211_hw *hw, int index) 1166 { 1167 struct mwl8k_priv *priv = hw->priv; 1168 struct mwl8k_rx_queue *rxq = priv->rxq + index; 1169 int size; 1170 int i; 1171 1172 rxq->rxd_count = 0; 1173 rxq->head = 0; 1174 rxq->tail = 0; 1175 1176 size = MWL8K_RX_DESCS * priv->rxd_ops->rxd_size; 1177 1178 rxq->rxd = dma_alloc_coherent(&priv->pdev->dev, size, &rxq->rxd_dma, 1179 GFP_KERNEL); 1180 if (rxq->rxd == NULL) { 1181 wiphy_err(hw->wiphy, "failed to alloc RX descriptors\n"); 1182 return -ENOMEM; 1183 } 1184 1185 rxq->buf = kcalloc(MWL8K_RX_DESCS, sizeof(*rxq->buf), GFP_KERNEL); 1186 if (rxq->buf == NULL) { 1187 dma_free_coherent(&priv->pdev->dev, size, rxq->rxd, 1188 rxq->rxd_dma); 1189 return -ENOMEM; 1190 } 1191 1192 for (i = 0; i < MWL8K_RX_DESCS; i++) { 1193 int desc_size; 1194 void *rxd; 1195 int nexti; 1196 dma_addr_t next_dma_addr; 1197 1198 desc_size = priv->rxd_ops->rxd_size; 1199 rxd = rxq->rxd + (i * priv->rxd_ops->rxd_size); 1200 1201 nexti = i + 1; 1202 if (nexti == MWL8K_RX_DESCS) 1203 nexti = 0; 1204 next_dma_addr = rxq->rxd_dma + (nexti * desc_size); 1205 1206 priv->rxd_ops->rxd_init(rxd, next_dma_addr); 1207 } 1208 1209 return 0; 1210 } 1211 1212 static int rxq_refill(struct ieee80211_hw *hw, int index, int limit) 1213 { 1214 struct mwl8k_priv *priv = hw->priv; 1215 struct mwl8k_rx_queue *rxq = priv->rxq + index; 1216 int refilled = 0; 1217 1218 while (rxq->rxd_count < MWL8K_RX_DESCS && limit--) { 1219 struct sk_buff *skb; 1220 dma_addr_t addr; 1221 int rx; 1222 void *rxd; 1223 1224 skb = dev_alloc_skb(MWL8K_RX_MAXSZ); 1225 if (skb == NULL) 1226 break; 1227 1228 addr = dma_map_single(&priv->pdev->dev, skb->data, 1229 MWL8K_RX_MAXSZ, DMA_FROM_DEVICE); 1230 1231 rxq->rxd_count++; 1232 rx = rxq->tail++; 1233 if (rxq->tail == MWL8K_RX_DESCS) 1234 rxq->tail = 0; 1235 rxq->buf[rx].skb = skb; 1236 dma_unmap_addr_set(&rxq->buf[rx], dma, addr); 1237 1238 rxd = rxq->rxd + (rx * priv->rxd_ops->rxd_size); 1239 priv->rxd_ops->rxd_refill(rxd, addr, MWL8K_RX_MAXSZ); 1240 1241 refilled++; 1242 } 1243 1244 return refilled; 1245 } 1246 1247 /* Must be called only when the card's reception is completely halted */ 1248 static void mwl8k_rxq_deinit(struct ieee80211_hw *hw, int index) 1249 { 1250 struct mwl8k_priv *priv = hw->priv; 1251 struct mwl8k_rx_queue *rxq = priv->rxq + index; 1252 int i; 1253 1254 if (rxq->rxd == NULL) 1255 return; 1256 1257 for (i = 0; i < MWL8K_RX_DESCS; i++) { 1258 if (rxq->buf[i].skb != NULL) { 1259 dma_unmap_single(&priv->pdev->dev, 1260 dma_unmap_addr(&rxq->buf[i], dma), 1261 MWL8K_RX_MAXSZ, DMA_FROM_DEVICE); 1262 dma_unmap_addr_set(&rxq->buf[i], dma, 0); 1263 1264 kfree_skb(rxq->buf[i].skb); 1265 rxq->buf[i].skb = NULL; 1266 } 1267 } 1268 1269 kfree(rxq->buf); 1270 rxq->buf = NULL; 1271 1272 dma_free_coherent(&priv->pdev->dev, 1273 MWL8K_RX_DESCS * priv->rxd_ops->rxd_size, rxq->rxd, 1274 rxq->rxd_dma); 1275 rxq->rxd = NULL; 1276 } 1277 1278 1279 /* 1280 * Scan a list of BSSIDs to process for finalize join. 1281 * Allows for extension to process multiple BSSIDs. 1282 */ 1283 static inline int 1284 mwl8k_capture_bssid(struct mwl8k_priv *priv, struct ieee80211_hdr *wh) 1285 { 1286 return priv->capture_beacon && 1287 ieee80211_is_beacon(wh->frame_control) && 1288 ether_addr_equal_64bits(wh->addr3, priv->capture_bssid); 1289 } 1290 1291 static inline void mwl8k_save_beacon(struct ieee80211_hw *hw, 1292 struct sk_buff *skb) 1293 { 1294 struct mwl8k_priv *priv = hw->priv; 1295 1296 priv->capture_beacon = false; 1297 eth_zero_addr(priv->capture_bssid); 1298 1299 /* 1300 * Use GFP_ATOMIC as rxq_process is called from 1301 * the primary interrupt handler, memory allocation call 1302 * must not sleep. 1303 */ 1304 priv->beacon_skb = skb_copy(skb, GFP_ATOMIC); 1305 if (priv->beacon_skb != NULL) 1306 ieee80211_queue_work(hw, &priv->finalize_join_worker); 1307 } 1308 1309 static inline struct mwl8k_vif *mwl8k_find_vif_bss(struct list_head *vif_list, 1310 u8 *bssid) 1311 { 1312 struct mwl8k_vif *mwl8k_vif; 1313 1314 list_for_each_entry(mwl8k_vif, 1315 vif_list, list) { 1316 if (memcmp(bssid, mwl8k_vif->bssid, 1317 ETH_ALEN) == 0) 1318 return mwl8k_vif; 1319 } 1320 1321 return NULL; 1322 } 1323 1324 static int rxq_process(struct ieee80211_hw *hw, int index, int limit) 1325 { 1326 struct mwl8k_priv *priv = hw->priv; 1327 struct mwl8k_vif *mwl8k_vif = NULL; 1328 struct mwl8k_rx_queue *rxq = priv->rxq + index; 1329 int processed; 1330 1331 processed = 0; 1332 while (rxq->rxd_count && limit--) { 1333 struct sk_buff *skb; 1334 void *rxd; 1335 int pkt_len; 1336 struct ieee80211_rx_status status; 1337 struct ieee80211_hdr *wh; 1338 __le16 qos; 1339 1340 skb = rxq->buf[rxq->head].skb; 1341 if (skb == NULL) 1342 break; 1343 1344 rxd = rxq->rxd + (rxq->head * priv->rxd_ops->rxd_size); 1345 1346 pkt_len = priv->rxd_ops->rxd_process(rxd, &status, &qos, 1347 &priv->noise); 1348 if (pkt_len < 0) 1349 break; 1350 1351 rxq->buf[rxq->head].skb = NULL; 1352 1353 dma_unmap_single(&priv->pdev->dev, 1354 dma_unmap_addr(&rxq->buf[rxq->head], dma), 1355 MWL8K_RX_MAXSZ, DMA_FROM_DEVICE); 1356 dma_unmap_addr_set(&rxq->buf[rxq->head], dma, 0); 1357 1358 rxq->head++; 1359 if (rxq->head == MWL8K_RX_DESCS) 1360 rxq->head = 0; 1361 1362 rxq->rxd_count--; 1363 1364 wh = &((struct mwl8k_dma_data *)skb->data)->wh; 1365 1366 /* 1367 * Check for a pending join operation. Save a 1368 * copy of the beacon and schedule a tasklet to 1369 * send a FINALIZE_JOIN command to the firmware. 1370 */ 1371 if (mwl8k_capture_bssid(priv, (void *)skb->data)) 1372 mwl8k_save_beacon(hw, skb); 1373 1374 if (ieee80211_has_protected(wh->frame_control)) { 1375 1376 /* Check if hw crypto has been enabled for 1377 * this bss. If yes, set the status flags 1378 * accordingly 1379 */ 1380 mwl8k_vif = mwl8k_find_vif_bss(&priv->vif_list, 1381 wh->addr1); 1382 1383 if (mwl8k_vif != NULL && 1384 mwl8k_vif->is_hw_crypto_enabled) { 1385 /* 1386 * When MMIC ERROR is encountered 1387 * by the firmware, payload is 1388 * dropped and only 32 bytes of 1389 * mwl8k Firmware header is sent 1390 * to the host. 1391 * 1392 * We need to add four bytes of 1393 * key information. In it 1394 * MAC80211 expects keyidx set to 1395 * 0 for triggering Counter 1396 * Measure of MMIC failure. 1397 */ 1398 if (status.flag & RX_FLAG_MMIC_ERROR) { 1399 struct mwl8k_dma_data *tr; 1400 tr = (struct mwl8k_dma_data *)skb->data; 1401 memset((void *)&(tr->data), 0, 4); 1402 pkt_len += 4; 1403 } 1404 1405 if (!ieee80211_is_auth(wh->frame_control)) 1406 status.flag |= RX_FLAG_IV_STRIPPED | 1407 RX_FLAG_DECRYPTED | 1408 RX_FLAG_MMIC_STRIPPED; 1409 } 1410 } 1411 1412 skb_put(skb, pkt_len); 1413 mwl8k_remove_dma_header(skb, qos); 1414 memcpy(IEEE80211_SKB_RXCB(skb), &status, sizeof(status)); 1415 ieee80211_rx_irqsafe(hw, skb); 1416 1417 processed++; 1418 } 1419 1420 return processed; 1421 } 1422 1423 1424 /* 1425 * Packet transmission. 1426 */ 1427 1428 #define MWL8K_TXD_STATUS_OK 0x00000001 1429 #define MWL8K_TXD_STATUS_OK_RETRY 0x00000002 1430 #define MWL8K_TXD_STATUS_OK_MORE_RETRY 0x00000004 1431 #define MWL8K_TXD_STATUS_MULTICAST_TX 0x00000008 1432 #define MWL8K_TXD_STATUS_FW_OWNED 0x80000000 1433 1434 #define MWL8K_QOS_QLEN_UNSPEC 0xff00 1435 #define MWL8K_QOS_ACK_POLICY_MASK 0x0060 1436 #define MWL8K_QOS_ACK_POLICY_NORMAL 0x0000 1437 #define MWL8K_QOS_ACK_POLICY_BLOCKACK 0x0060 1438 #define MWL8K_QOS_EOSP 0x0010 1439 1440 struct mwl8k_tx_desc { 1441 __le32 status; 1442 __u8 data_rate; 1443 __u8 tx_priority; 1444 __le16 qos_control; 1445 __le32 pkt_phys_addr; 1446 __le16 pkt_len; 1447 __u8 dest_MAC_addr[ETH_ALEN]; 1448 __le32 next_txd_phys_addr; 1449 __le32 timestamp; 1450 __le16 rate_info; 1451 __u8 peer_id; 1452 __u8 tx_frag_cnt; 1453 } __packed; 1454 1455 #define MWL8K_TX_DESCS 128 1456 1457 static int mwl8k_txq_init(struct ieee80211_hw *hw, int index) 1458 { 1459 struct mwl8k_priv *priv = hw->priv; 1460 struct mwl8k_tx_queue *txq = priv->txq + index; 1461 int size; 1462 int i; 1463 1464 txq->len = 0; 1465 txq->head = 0; 1466 txq->tail = 0; 1467 1468 size = MWL8K_TX_DESCS * sizeof(struct mwl8k_tx_desc); 1469 1470 txq->txd = dma_alloc_coherent(&priv->pdev->dev, size, &txq->txd_dma, 1471 GFP_KERNEL); 1472 if (txq->txd == NULL) { 1473 wiphy_err(hw->wiphy, "failed to alloc TX descriptors\n"); 1474 return -ENOMEM; 1475 } 1476 1477 txq->skb = kcalloc(MWL8K_TX_DESCS, sizeof(*txq->skb), GFP_KERNEL); 1478 if (txq->skb == NULL) { 1479 dma_free_coherent(&priv->pdev->dev, size, txq->txd, 1480 txq->txd_dma); 1481 txq->txd = NULL; 1482 return -ENOMEM; 1483 } 1484 1485 for (i = 0; i < MWL8K_TX_DESCS; i++) { 1486 struct mwl8k_tx_desc *tx_desc; 1487 int nexti; 1488 1489 tx_desc = txq->txd + i; 1490 nexti = (i + 1) % MWL8K_TX_DESCS; 1491 1492 tx_desc->status = 0; 1493 tx_desc->next_txd_phys_addr = 1494 cpu_to_le32(txq->txd_dma + nexti * sizeof(*tx_desc)); 1495 } 1496 1497 return 0; 1498 } 1499 1500 static inline void mwl8k_tx_start(struct mwl8k_priv *priv) 1501 { 1502 iowrite32(MWL8K_H2A_INT_PPA_READY, 1503 priv->regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 1504 iowrite32(MWL8K_H2A_INT_DUMMY, 1505 priv->regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 1506 ioread32(priv->regs + MWL8K_HIU_INT_CODE); 1507 } 1508 1509 static void mwl8k_dump_tx_rings(struct ieee80211_hw *hw) 1510 { 1511 struct mwl8k_priv *priv = hw->priv; 1512 int i; 1513 1514 for (i = 0; i < mwl8k_tx_queues(priv); i++) { 1515 struct mwl8k_tx_queue *txq = priv->txq + i; 1516 int fw_owned = 0; 1517 int drv_owned = 0; 1518 int unused = 0; 1519 int desc; 1520 1521 for (desc = 0; desc < MWL8K_TX_DESCS; desc++) { 1522 struct mwl8k_tx_desc *tx_desc = txq->txd + desc; 1523 u32 status; 1524 1525 status = le32_to_cpu(tx_desc->status); 1526 if (status & MWL8K_TXD_STATUS_FW_OWNED) 1527 fw_owned++; 1528 else 1529 drv_owned++; 1530 1531 if (tx_desc->pkt_len == 0) 1532 unused++; 1533 } 1534 1535 wiphy_err(hw->wiphy, 1536 "txq[%d] len=%d head=%d tail=%d " 1537 "fw_owned=%d drv_owned=%d unused=%d\n", 1538 i, 1539 txq->len, txq->head, txq->tail, 1540 fw_owned, drv_owned, unused); 1541 } 1542 } 1543 1544 /* 1545 * Must be called with priv->fw_mutex held and tx queues stopped. 1546 */ 1547 #define MWL8K_TX_WAIT_TIMEOUT_MS 5000 1548 1549 static int mwl8k_tx_wait_empty(struct ieee80211_hw *hw) 1550 { 1551 struct mwl8k_priv *priv = hw->priv; 1552 DECLARE_COMPLETION_ONSTACK(tx_wait); 1553 int retry; 1554 int rc; 1555 1556 might_sleep(); 1557 1558 /* Since fw restart is in progress, allow only the firmware 1559 * commands from the restart code and block the other 1560 * commands since they are going to fail in any case since 1561 * the firmware has crashed 1562 */ 1563 if (priv->hw_restart_in_progress) { 1564 if (priv->hw_restart_owner == current) 1565 return 0; 1566 else 1567 return -EBUSY; 1568 } 1569 1570 if (atomic_read(&priv->watchdog_event_pending)) 1571 return 0; 1572 1573 /* 1574 * The TX queues are stopped at this point, so this test 1575 * doesn't need to take ->tx_lock. 1576 */ 1577 if (!priv->pending_tx_pkts) 1578 return 0; 1579 1580 retry = 1; 1581 rc = 0; 1582 1583 spin_lock_bh(&priv->tx_lock); 1584 priv->tx_wait = &tx_wait; 1585 while (!rc) { 1586 int oldcount; 1587 unsigned long timeout; 1588 1589 oldcount = priv->pending_tx_pkts; 1590 1591 spin_unlock_bh(&priv->tx_lock); 1592 timeout = wait_for_completion_timeout(&tx_wait, 1593 msecs_to_jiffies(MWL8K_TX_WAIT_TIMEOUT_MS)); 1594 1595 if (atomic_read(&priv->watchdog_event_pending)) { 1596 spin_lock_bh(&priv->tx_lock); 1597 priv->tx_wait = NULL; 1598 spin_unlock_bh(&priv->tx_lock); 1599 return 0; 1600 } 1601 1602 spin_lock_bh(&priv->tx_lock); 1603 1604 if (timeout || !priv->pending_tx_pkts) { 1605 WARN_ON(priv->pending_tx_pkts); 1606 if (retry) 1607 wiphy_notice(hw->wiphy, "tx rings drained\n"); 1608 break; 1609 } 1610 1611 if (retry) { 1612 mwl8k_tx_start(priv); 1613 retry = 0; 1614 continue; 1615 } 1616 1617 if (priv->pending_tx_pkts < oldcount) { 1618 wiphy_notice(hw->wiphy, 1619 "waiting for tx rings to drain (%d -> %d pkts)\n", 1620 oldcount, priv->pending_tx_pkts); 1621 retry = 1; 1622 continue; 1623 } 1624 1625 priv->tx_wait = NULL; 1626 1627 wiphy_err(hw->wiphy, "tx rings stuck for %d ms\n", 1628 MWL8K_TX_WAIT_TIMEOUT_MS); 1629 mwl8k_dump_tx_rings(hw); 1630 priv->hw_restart_in_progress = true; 1631 ieee80211_queue_work(hw, &priv->fw_reload); 1632 1633 rc = -ETIMEDOUT; 1634 } 1635 priv->tx_wait = NULL; 1636 spin_unlock_bh(&priv->tx_lock); 1637 1638 return rc; 1639 } 1640 1641 #define MWL8K_TXD_SUCCESS(status) \ 1642 ((status) & (MWL8K_TXD_STATUS_OK | \ 1643 MWL8K_TXD_STATUS_OK_RETRY | \ 1644 MWL8K_TXD_STATUS_OK_MORE_RETRY)) 1645 1646 static int mwl8k_tid_queue_mapping(u8 tid) 1647 { 1648 BUG_ON(tid > 7); 1649 1650 switch (tid) { 1651 case 0: 1652 case 3: 1653 return IEEE80211_AC_BE; 1654 case 1: 1655 case 2: 1656 return IEEE80211_AC_BK; 1657 case 4: 1658 case 5: 1659 return IEEE80211_AC_VI; 1660 case 6: 1661 case 7: 1662 return IEEE80211_AC_VO; 1663 default: 1664 return -1; 1665 } 1666 } 1667 1668 /* The firmware will fill in the rate information 1669 * for each packet that gets queued in the hardware 1670 * and these macros will interpret that info. 1671 */ 1672 1673 #define RI_FORMAT(a) (a & 0x0001) 1674 #define RI_RATE_ID_MCS(a) ((a & 0x01f8) >> 3) 1675 1676 static int 1677 mwl8k_txq_reclaim(struct ieee80211_hw *hw, int index, int limit, int force) 1678 { 1679 struct mwl8k_priv *priv = hw->priv; 1680 struct mwl8k_tx_queue *txq = priv->txq + index; 1681 int processed; 1682 1683 processed = 0; 1684 while (txq->len > 0 && limit--) { 1685 int tx; 1686 struct mwl8k_tx_desc *tx_desc; 1687 unsigned long addr; 1688 int size; 1689 struct sk_buff *skb; 1690 struct ieee80211_tx_info *info; 1691 u32 status; 1692 struct ieee80211_sta *sta; 1693 struct mwl8k_sta *sta_info = NULL; 1694 u16 rate_info; 1695 struct ieee80211_hdr *wh; 1696 1697 tx = txq->head; 1698 tx_desc = txq->txd + tx; 1699 1700 status = le32_to_cpu(tx_desc->status); 1701 1702 if (status & MWL8K_TXD_STATUS_FW_OWNED) { 1703 if (!force) 1704 break; 1705 tx_desc->status &= 1706 ~cpu_to_le32(MWL8K_TXD_STATUS_FW_OWNED); 1707 } 1708 1709 txq->head = (tx + 1) % MWL8K_TX_DESCS; 1710 BUG_ON(txq->len == 0); 1711 txq->len--; 1712 priv->pending_tx_pkts--; 1713 1714 addr = le32_to_cpu(tx_desc->pkt_phys_addr); 1715 size = le16_to_cpu(tx_desc->pkt_len); 1716 skb = txq->skb[tx]; 1717 txq->skb[tx] = NULL; 1718 1719 BUG_ON(skb == NULL); 1720 dma_unmap_single(&priv->pdev->dev, addr, size, DMA_TO_DEVICE); 1721 1722 mwl8k_remove_dma_header(skb, tx_desc->qos_control); 1723 1724 wh = (struct ieee80211_hdr *) skb->data; 1725 1726 /* Mark descriptor as unused */ 1727 tx_desc->pkt_phys_addr = 0; 1728 tx_desc->pkt_len = 0; 1729 1730 info = IEEE80211_SKB_CB(skb); 1731 if (ieee80211_is_data(wh->frame_control)) { 1732 rcu_read_lock(); 1733 sta = ieee80211_find_sta_by_ifaddr(hw, wh->addr1, 1734 wh->addr2); 1735 if (sta) { 1736 sta_info = MWL8K_STA(sta); 1737 BUG_ON(sta_info == NULL); 1738 rate_info = le16_to_cpu(tx_desc->rate_info); 1739 /* If rate is < 6.5 Mpbs for an ht station 1740 * do not form an ampdu. If the station is a 1741 * legacy station (format = 0), do not form an 1742 * ampdu 1743 */ 1744 if (RI_RATE_ID_MCS(rate_info) < 1 || 1745 RI_FORMAT(rate_info) == 0) { 1746 sta_info->is_ampdu_allowed = false; 1747 } else { 1748 sta_info->is_ampdu_allowed = true; 1749 } 1750 } 1751 rcu_read_unlock(); 1752 } 1753 1754 ieee80211_tx_info_clear_status(info); 1755 1756 /* Rate control is happening in the firmware. 1757 * Ensure no tx rate is being reported. 1758 */ 1759 info->status.rates[0].idx = -1; 1760 info->status.rates[0].count = 1; 1761 1762 if (MWL8K_TXD_SUCCESS(status)) 1763 info->flags |= IEEE80211_TX_STAT_ACK; 1764 1765 ieee80211_tx_status_irqsafe(hw, skb); 1766 1767 processed++; 1768 } 1769 1770 return processed; 1771 } 1772 1773 /* must be called only when the card's transmit is completely halted */ 1774 static void mwl8k_txq_deinit(struct ieee80211_hw *hw, int index) 1775 { 1776 struct mwl8k_priv *priv = hw->priv; 1777 struct mwl8k_tx_queue *txq = priv->txq + index; 1778 1779 if (txq->txd == NULL) 1780 return; 1781 1782 mwl8k_txq_reclaim(hw, index, INT_MAX, 1); 1783 1784 kfree(txq->skb); 1785 txq->skb = NULL; 1786 1787 dma_free_coherent(&priv->pdev->dev, 1788 MWL8K_TX_DESCS * sizeof(struct mwl8k_tx_desc), 1789 txq->txd, txq->txd_dma); 1790 txq->txd = NULL; 1791 } 1792 1793 /* caller must hold priv->stream_lock when calling the stream functions */ 1794 static struct mwl8k_ampdu_stream * 1795 mwl8k_add_stream(struct ieee80211_hw *hw, struct ieee80211_sta *sta, u8 tid) 1796 { 1797 struct mwl8k_ampdu_stream *stream; 1798 struct mwl8k_priv *priv = hw->priv; 1799 int i; 1800 1801 for (i = 0; i < MWL8K_NUM_AMPDU_STREAMS; i++) { 1802 stream = &priv->ampdu[i]; 1803 if (stream->state == AMPDU_NO_STREAM) { 1804 stream->sta = sta; 1805 stream->state = AMPDU_STREAM_NEW; 1806 stream->tid = tid; 1807 stream->idx = i; 1808 wiphy_debug(hw->wiphy, "Added a new stream for %pM %d", 1809 sta->addr, tid); 1810 return stream; 1811 } 1812 } 1813 return NULL; 1814 } 1815 1816 static int 1817 mwl8k_start_stream(struct ieee80211_hw *hw, struct mwl8k_ampdu_stream *stream) 1818 { 1819 int ret; 1820 1821 /* if the stream has already been started, don't start it again */ 1822 if (stream->state != AMPDU_STREAM_NEW) 1823 return 0; 1824 ret = ieee80211_start_tx_ba_session(stream->sta, stream->tid, 0); 1825 if (ret) 1826 wiphy_debug(hw->wiphy, "Failed to start stream for %pM %d: " 1827 "%d\n", stream->sta->addr, stream->tid, ret); 1828 else 1829 wiphy_debug(hw->wiphy, "Started stream for %pM %d\n", 1830 stream->sta->addr, stream->tid); 1831 return ret; 1832 } 1833 1834 static void 1835 mwl8k_remove_stream(struct ieee80211_hw *hw, struct mwl8k_ampdu_stream *stream) 1836 { 1837 wiphy_debug(hw->wiphy, "Remove stream for %pM %d\n", stream->sta->addr, 1838 stream->tid); 1839 memset(stream, 0, sizeof(*stream)); 1840 } 1841 1842 static struct mwl8k_ampdu_stream * 1843 mwl8k_lookup_stream(struct ieee80211_hw *hw, u8 *addr, u8 tid) 1844 { 1845 struct mwl8k_priv *priv = hw->priv; 1846 int i; 1847 1848 for (i = 0; i < MWL8K_NUM_AMPDU_STREAMS; i++) { 1849 struct mwl8k_ampdu_stream *stream; 1850 stream = &priv->ampdu[i]; 1851 if (stream->state == AMPDU_NO_STREAM) 1852 continue; 1853 if (!memcmp(stream->sta->addr, addr, ETH_ALEN) && 1854 stream->tid == tid) 1855 return stream; 1856 } 1857 return NULL; 1858 } 1859 1860 #define MWL8K_AMPDU_PACKET_THRESHOLD 64 1861 static inline bool mwl8k_ampdu_allowed(struct ieee80211_sta *sta, u8 tid) 1862 { 1863 struct mwl8k_sta *sta_info = MWL8K_STA(sta); 1864 struct tx_traffic_info *tx_stats; 1865 1866 BUG_ON(tid >= MWL8K_MAX_TID); 1867 tx_stats = &sta_info->tx_stats[tid]; 1868 1869 return sta_info->is_ampdu_allowed && 1870 tx_stats->pkts > MWL8K_AMPDU_PACKET_THRESHOLD; 1871 } 1872 1873 static inline void mwl8k_tx_count_packet(struct ieee80211_sta *sta, u8 tid) 1874 { 1875 struct mwl8k_sta *sta_info = MWL8K_STA(sta); 1876 struct tx_traffic_info *tx_stats; 1877 1878 BUG_ON(tid >= MWL8K_MAX_TID); 1879 tx_stats = &sta_info->tx_stats[tid]; 1880 1881 if (tx_stats->start_time == 0) 1882 tx_stats->start_time = jiffies; 1883 1884 /* reset the packet count after each second elapses. If the number of 1885 * packets ever exceeds the ampdu_min_traffic threshold, we will allow 1886 * an ampdu stream to be started. 1887 */ 1888 if (time_after(jiffies, (unsigned long)tx_stats->start_time + HZ)) { 1889 tx_stats->pkts = 0; 1890 tx_stats->start_time = 0; 1891 } else 1892 tx_stats->pkts++; 1893 } 1894 1895 /* The hardware ampdu queues start from 5. 1896 * txpriorities for ampdu queues are 1897 * 5 6 7 0 1 2 3 4 ie., queue 5 is highest 1898 * and queue 3 is lowest (queue 4 is reserved) 1899 */ 1900 #define BA_QUEUE 5 1901 1902 static void 1903 mwl8k_txq_xmit(struct ieee80211_hw *hw, 1904 int index, 1905 struct ieee80211_sta *sta, 1906 struct sk_buff *skb) 1907 { 1908 struct mwl8k_priv *priv = hw->priv; 1909 struct ieee80211_tx_info *tx_info; 1910 struct mwl8k_vif *mwl8k_vif; 1911 struct ieee80211_hdr *wh; 1912 struct mwl8k_tx_queue *txq; 1913 struct mwl8k_tx_desc *tx; 1914 dma_addr_t dma; 1915 u32 txstatus; 1916 u8 txdatarate; 1917 u16 qos; 1918 int txpriority; 1919 u8 tid = 0; 1920 struct mwl8k_ampdu_stream *stream = NULL; 1921 bool start_ba_session = false; 1922 bool mgmtframe = false; 1923 struct ieee80211_mgmt *mgmt = (struct ieee80211_mgmt *)skb->data; 1924 bool eapol_frame = false; 1925 1926 wh = (struct ieee80211_hdr *)skb->data; 1927 if (ieee80211_is_data_qos(wh->frame_control)) 1928 qos = le16_to_cpu(*((__le16 *)ieee80211_get_qos_ctl(wh))); 1929 else 1930 qos = 0; 1931 1932 if (skb->protocol == cpu_to_be16(ETH_P_PAE)) 1933 eapol_frame = true; 1934 1935 if (ieee80211_is_mgmt(wh->frame_control)) 1936 mgmtframe = true; 1937 1938 if (priv->ap_fw) 1939 mwl8k_encapsulate_tx_frame(priv, skb); 1940 else 1941 mwl8k_add_dma_header(priv, skb, 0, 0); 1942 1943 wh = &((struct mwl8k_dma_data *)skb->data)->wh; 1944 1945 tx_info = IEEE80211_SKB_CB(skb); 1946 mwl8k_vif = MWL8K_VIF(tx_info->control.vif); 1947 1948 if (tx_info->flags & IEEE80211_TX_CTL_ASSIGN_SEQ) { 1949 wh->seq_ctrl &= cpu_to_le16(IEEE80211_SCTL_FRAG); 1950 wh->seq_ctrl |= cpu_to_le16(mwl8k_vif->seqno); 1951 mwl8k_vif->seqno += 0x10; 1952 } 1953 1954 /* Setup firmware control bit fields for each frame type. */ 1955 txstatus = 0; 1956 txdatarate = 0; 1957 if (ieee80211_is_mgmt(wh->frame_control) || 1958 ieee80211_is_ctl(wh->frame_control)) { 1959 txdatarate = 0; 1960 qos |= MWL8K_QOS_QLEN_UNSPEC | MWL8K_QOS_EOSP; 1961 } else if (ieee80211_is_data(wh->frame_control)) { 1962 txdatarate = 1; 1963 if (is_multicast_ether_addr(wh->addr1)) 1964 txstatus |= MWL8K_TXD_STATUS_MULTICAST_TX; 1965 1966 qos &= ~MWL8K_QOS_ACK_POLICY_MASK; 1967 if (tx_info->flags & IEEE80211_TX_CTL_AMPDU) 1968 qos |= MWL8K_QOS_ACK_POLICY_BLOCKACK; 1969 else 1970 qos |= MWL8K_QOS_ACK_POLICY_NORMAL; 1971 } 1972 1973 /* Queue ADDBA request in the respective data queue. While setting up 1974 * the ampdu stream, mac80211 queues further packets for that 1975 * particular ra/tid pair. However, packets piled up in the hardware 1976 * for that ra/tid pair will still go out. ADDBA request and the 1977 * related data packets going out from different queues asynchronously 1978 * will cause a shift in the receiver window which might result in 1979 * ampdu packets getting dropped at the receiver after the stream has 1980 * been setup. 1981 */ 1982 if (unlikely(ieee80211_is_action(wh->frame_control) && 1983 mgmt->u.action.category == WLAN_CATEGORY_BACK && 1984 mgmt->u.action.u.addba_req.action_code == WLAN_ACTION_ADDBA_REQ && 1985 priv->ap_fw)) { 1986 u16 capab = le16_to_cpu(mgmt->u.action.u.addba_req.capab); 1987 tid = (capab & IEEE80211_ADDBA_PARAM_TID_MASK) >> 2; 1988 index = mwl8k_tid_queue_mapping(tid); 1989 } 1990 1991 txpriority = index; 1992 1993 if (priv->ap_fw && sta && sta->deflink.ht_cap.ht_supported && !eapol_frame && 1994 ieee80211_is_data_qos(wh->frame_control)) { 1995 tid = qos & 0xf; 1996 mwl8k_tx_count_packet(sta, tid); 1997 spin_lock(&priv->stream_lock); 1998 stream = mwl8k_lookup_stream(hw, sta->addr, tid); 1999 if (stream != NULL) { 2000 if (stream->state == AMPDU_STREAM_ACTIVE) { 2001 WARN_ON(!(qos & MWL8K_QOS_ACK_POLICY_BLOCKACK)); 2002 txpriority = (BA_QUEUE + stream->idx) % 2003 TOTAL_HW_TX_QUEUES; 2004 if (stream->idx <= 1) 2005 index = stream->idx + 2006 MWL8K_TX_WMM_QUEUES; 2007 2008 } else if (stream->state == AMPDU_STREAM_NEW) { 2009 /* We get here if the driver sends us packets 2010 * after we've initiated a stream, but before 2011 * our ampdu_action routine has been called 2012 * with IEEE80211_AMPDU_TX_START to get the SSN 2013 * for the ADDBA request. So this packet can 2014 * go out with no risk of sequence number 2015 * mismatch. No special handling is required. 2016 */ 2017 } else { 2018 /* Drop packets that would go out after the 2019 * ADDBA request was sent but before the ADDBA 2020 * response is received. If we don't do this, 2021 * the recipient would probably receive it 2022 * after the ADDBA request with SSN 0. This 2023 * will cause the recipient's BA receive window 2024 * to shift, which would cause the subsequent 2025 * packets in the BA stream to be discarded. 2026 * mac80211 queues our packets for us in this 2027 * case, so this is really just a safety check. 2028 */ 2029 wiphy_warn(hw->wiphy, 2030 "Cannot send packet while ADDBA " 2031 "dialog is underway.\n"); 2032 spin_unlock(&priv->stream_lock); 2033 dev_kfree_skb(skb); 2034 return; 2035 } 2036 } else { 2037 /* Defer calling mwl8k_start_stream so that the current 2038 * skb can go out before the ADDBA request. This 2039 * prevents sequence number mismatch at the recepient 2040 * as described above. 2041 */ 2042 if (mwl8k_ampdu_allowed(sta, tid)) { 2043 stream = mwl8k_add_stream(hw, sta, tid); 2044 if (stream != NULL) 2045 start_ba_session = true; 2046 } 2047 } 2048 spin_unlock(&priv->stream_lock); 2049 } else { 2050 qos &= ~MWL8K_QOS_ACK_POLICY_MASK; 2051 qos |= MWL8K_QOS_ACK_POLICY_NORMAL; 2052 } 2053 2054 dma = dma_map_single(&priv->pdev->dev, skb->data, skb->len, 2055 DMA_TO_DEVICE); 2056 2057 if (dma_mapping_error(&priv->pdev->dev, dma)) { 2058 wiphy_debug(hw->wiphy, 2059 "failed to dma map skb, dropping TX frame.\n"); 2060 if (start_ba_session) { 2061 spin_lock(&priv->stream_lock); 2062 mwl8k_remove_stream(hw, stream); 2063 spin_unlock(&priv->stream_lock); 2064 } 2065 dev_kfree_skb(skb); 2066 return; 2067 } 2068 2069 spin_lock_bh(&priv->tx_lock); 2070 2071 txq = priv->txq + index; 2072 2073 /* Mgmt frames that go out frequently are probe 2074 * responses. Other mgmt frames got out relatively 2075 * infrequently. Hence reserve 2 buffers so that 2076 * other mgmt frames do not get dropped due to an 2077 * already queued probe response in one of the 2078 * reserved buffers. 2079 */ 2080 2081 if (txq->len >= MWL8K_TX_DESCS - 2) { 2082 if (!mgmtframe || txq->len == MWL8K_TX_DESCS) { 2083 if (start_ba_session) { 2084 spin_lock(&priv->stream_lock); 2085 mwl8k_remove_stream(hw, stream); 2086 spin_unlock(&priv->stream_lock); 2087 } 2088 mwl8k_tx_start(priv); 2089 spin_unlock_bh(&priv->tx_lock); 2090 dma_unmap_single(&priv->pdev->dev, dma, skb->len, 2091 DMA_TO_DEVICE); 2092 dev_kfree_skb(skb); 2093 return; 2094 } 2095 } 2096 2097 BUG_ON(txq->skb[txq->tail] != NULL); 2098 txq->skb[txq->tail] = skb; 2099 2100 tx = txq->txd + txq->tail; 2101 tx->data_rate = txdatarate; 2102 tx->tx_priority = txpriority; 2103 tx->qos_control = cpu_to_le16(qos); 2104 tx->pkt_phys_addr = cpu_to_le32(dma); 2105 tx->pkt_len = cpu_to_le16(skb->len); 2106 tx->rate_info = 0; 2107 if (!priv->ap_fw && sta != NULL) 2108 tx->peer_id = MWL8K_STA(sta)->peer_id; 2109 else 2110 tx->peer_id = 0; 2111 2112 if (priv->ap_fw && ieee80211_is_data(wh->frame_control) && !eapol_frame) 2113 tx->timestamp = cpu_to_le32(ioread32(priv->regs + 2114 MWL8K_HW_TIMER_REGISTER)); 2115 else 2116 tx->timestamp = 0; 2117 2118 wmb(); 2119 tx->status = cpu_to_le32(MWL8K_TXD_STATUS_FW_OWNED | txstatus); 2120 2121 txq->len++; 2122 priv->pending_tx_pkts++; 2123 2124 txq->tail++; 2125 if (txq->tail == MWL8K_TX_DESCS) 2126 txq->tail = 0; 2127 2128 mwl8k_tx_start(priv); 2129 2130 spin_unlock_bh(&priv->tx_lock); 2131 2132 /* Initiate the ampdu session here */ 2133 if (start_ba_session) { 2134 spin_lock(&priv->stream_lock); 2135 if (mwl8k_start_stream(hw, stream)) 2136 mwl8k_remove_stream(hw, stream); 2137 spin_unlock(&priv->stream_lock); 2138 } 2139 } 2140 2141 2142 /* 2143 * Firmware access. 2144 * 2145 * We have the following requirements for issuing firmware commands: 2146 * - Some commands require that the packet transmit path is idle when 2147 * the command is issued. (For simplicity, we'll just quiesce the 2148 * transmit path for every command.) 2149 * - There are certain sequences of commands that need to be issued to 2150 * the hardware sequentially, with no other intervening commands. 2151 * 2152 * This leads to an implementation of a "firmware lock" as a mutex that 2153 * can be taken recursively, and which is taken by both the low-level 2154 * command submission function (mwl8k_post_cmd) as well as any users of 2155 * that function that require issuing of an atomic sequence of commands, 2156 * and quiesces the transmit path whenever it's taken. 2157 */ 2158 static int mwl8k_fw_lock(struct ieee80211_hw *hw) 2159 { 2160 struct mwl8k_priv *priv = hw->priv; 2161 2162 if (priv->fw_mutex_owner != current) { 2163 int rc; 2164 2165 mutex_lock(&priv->fw_mutex); 2166 ieee80211_stop_queues(hw); 2167 2168 rc = mwl8k_tx_wait_empty(hw); 2169 if (rc) { 2170 if (!priv->hw_restart_in_progress) 2171 ieee80211_wake_queues(hw); 2172 2173 mutex_unlock(&priv->fw_mutex); 2174 2175 return rc; 2176 } 2177 2178 priv->fw_mutex_owner = current; 2179 } 2180 2181 priv->fw_mutex_depth++; 2182 2183 return 0; 2184 } 2185 2186 static void mwl8k_fw_unlock(struct ieee80211_hw *hw) 2187 { 2188 struct mwl8k_priv *priv = hw->priv; 2189 2190 if (!--priv->fw_mutex_depth) { 2191 if (!priv->hw_restart_in_progress) 2192 ieee80211_wake_queues(hw); 2193 2194 priv->fw_mutex_owner = NULL; 2195 mutex_unlock(&priv->fw_mutex); 2196 } 2197 } 2198 2199 static void mwl8k_enable_bsses(struct ieee80211_hw *hw, bool enable, 2200 u32 bitmap); 2201 2202 /* 2203 * Command processing. 2204 */ 2205 2206 /* Timeout firmware commands after 10s */ 2207 #define MWL8K_CMD_TIMEOUT_MS 10000 2208 2209 static int mwl8k_post_cmd(struct ieee80211_hw *hw, struct mwl8k_cmd_pkt_hdr *cmd) 2210 { 2211 DECLARE_COMPLETION_ONSTACK(cmd_wait); 2212 struct mwl8k_priv *priv = hw->priv; 2213 void __iomem *regs = priv->regs; 2214 dma_addr_t dma_addr; 2215 unsigned int dma_size; 2216 int rc; 2217 unsigned long time_left = 0; 2218 u8 buf[32]; 2219 u32 bitmap = 0; 2220 2221 wiphy_dbg(hw->wiphy, "Posting %s [%d]\n", 2222 mwl8k_cmd_name(cmd->code, buf, sizeof(buf)), cmd->macid); 2223 2224 /* Before posting firmware commands that could change the hardware 2225 * characteristics, make sure that all BSSes are stopped temporary. 2226 * Enable these stopped BSSes after completion of the commands 2227 */ 2228 2229 rc = mwl8k_fw_lock(hw); 2230 if (rc) 2231 return rc; 2232 2233 if (priv->ap_fw && priv->running_bsses) { 2234 switch (le16_to_cpu(cmd->code)) { 2235 case MWL8K_CMD_SET_RF_CHANNEL: 2236 case MWL8K_CMD_RADIO_CONTROL: 2237 case MWL8K_CMD_RF_TX_POWER: 2238 case MWL8K_CMD_TX_POWER: 2239 case MWL8K_CMD_RF_ANTENNA: 2240 case MWL8K_CMD_RTS_THRESHOLD: 2241 case MWL8K_CMD_MIMO_CONFIG: 2242 bitmap = priv->running_bsses; 2243 mwl8k_enable_bsses(hw, false, bitmap); 2244 break; 2245 } 2246 } 2247 2248 cmd->result = (__force __le16) 0xffff; 2249 dma_size = le16_to_cpu(cmd->length); 2250 dma_addr = dma_map_single(&priv->pdev->dev, cmd, dma_size, 2251 DMA_BIDIRECTIONAL); 2252 if (dma_mapping_error(&priv->pdev->dev, dma_addr)) { 2253 rc = -ENOMEM; 2254 goto exit; 2255 } 2256 2257 priv->hostcmd_wait = &cmd_wait; 2258 iowrite32(dma_addr, regs + MWL8K_HIU_GEN_PTR); 2259 iowrite32(MWL8K_H2A_INT_DOORBELL, 2260 regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 2261 iowrite32(MWL8K_H2A_INT_DUMMY, 2262 regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 2263 2264 time_left = wait_for_completion_timeout(&cmd_wait, 2265 msecs_to_jiffies(MWL8K_CMD_TIMEOUT_MS)); 2266 2267 priv->hostcmd_wait = NULL; 2268 2269 2270 dma_unmap_single(&priv->pdev->dev, dma_addr, dma_size, 2271 DMA_BIDIRECTIONAL); 2272 2273 if (!time_left) { 2274 wiphy_err(hw->wiphy, "Command %s timeout after %u ms\n", 2275 mwl8k_cmd_name(cmd->code, buf, sizeof(buf)), 2276 MWL8K_CMD_TIMEOUT_MS); 2277 rc = -ETIMEDOUT; 2278 } else { 2279 int ms; 2280 2281 ms = MWL8K_CMD_TIMEOUT_MS - jiffies_to_msecs(time_left); 2282 2283 rc = cmd->result ? -EINVAL : 0; 2284 if (rc) 2285 wiphy_err(hw->wiphy, "Command %s error 0x%x\n", 2286 mwl8k_cmd_name(cmd->code, buf, sizeof(buf)), 2287 le16_to_cpu(cmd->result)); 2288 else if (ms > 2000) 2289 wiphy_notice(hw->wiphy, "Command %s took %d ms\n", 2290 mwl8k_cmd_name(cmd->code, 2291 buf, sizeof(buf)), 2292 ms); 2293 } 2294 2295 exit: 2296 if (bitmap) 2297 mwl8k_enable_bsses(hw, true, bitmap); 2298 2299 mwl8k_fw_unlock(hw); 2300 2301 return rc; 2302 } 2303 2304 static int mwl8k_post_pervif_cmd(struct ieee80211_hw *hw, 2305 struct ieee80211_vif *vif, 2306 struct mwl8k_cmd_pkt_hdr *cmd) 2307 { 2308 if (vif != NULL) 2309 cmd->macid = MWL8K_VIF(vif)->macid; 2310 return mwl8k_post_cmd(hw, cmd); 2311 } 2312 2313 /* 2314 * Setup code shared between STA and AP firmware images. 2315 */ 2316 static void mwl8k_setup_2ghz_band(struct ieee80211_hw *hw) 2317 { 2318 struct mwl8k_priv *priv = hw->priv; 2319 2320 BUILD_BUG_ON(sizeof(priv->channels_24) != sizeof(mwl8k_channels_24)); 2321 memcpy(priv->channels_24, mwl8k_channels_24, sizeof(mwl8k_channels_24)); 2322 2323 BUILD_BUG_ON(sizeof(priv->rates_24) != sizeof(mwl8k_rates_24)); 2324 memcpy(priv->rates_24, mwl8k_rates_24, sizeof(mwl8k_rates_24)); 2325 2326 priv->band_24.band = NL80211_BAND_2GHZ; 2327 priv->band_24.channels = priv->channels_24; 2328 priv->band_24.n_channels = ARRAY_SIZE(mwl8k_channels_24); 2329 priv->band_24.bitrates = priv->rates_24; 2330 priv->band_24.n_bitrates = ARRAY_SIZE(mwl8k_rates_24); 2331 2332 hw->wiphy->bands[NL80211_BAND_2GHZ] = &priv->band_24; 2333 } 2334 2335 static void mwl8k_setup_5ghz_band(struct ieee80211_hw *hw) 2336 { 2337 struct mwl8k_priv *priv = hw->priv; 2338 2339 BUILD_BUG_ON(sizeof(priv->channels_50) != sizeof(mwl8k_channels_50)); 2340 memcpy(priv->channels_50, mwl8k_channels_50, sizeof(mwl8k_channels_50)); 2341 2342 BUILD_BUG_ON(sizeof(priv->rates_50) != sizeof(mwl8k_rates_50)); 2343 memcpy(priv->rates_50, mwl8k_rates_50, sizeof(mwl8k_rates_50)); 2344 2345 priv->band_50.band = NL80211_BAND_5GHZ; 2346 priv->band_50.channels = priv->channels_50; 2347 priv->band_50.n_channels = ARRAY_SIZE(mwl8k_channels_50); 2348 priv->band_50.bitrates = priv->rates_50; 2349 priv->band_50.n_bitrates = ARRAY_SIZE(mwl8k_rates_50); 2350 2351 hw->wiphy->bands[NL80211_BAND_5GHZ] = &priv->band_50; 2352 } 2353 2354 /* 2355 * CMD_GET_HW_SPEC (STA version). 2356 */ 2357 struct mwl8k_cmd_get_hw_spec_sta { 2358 struct mwl8k_cmd_pkt_hdr header; 2359 __u8 hw_rev; 2360 __u8 host_interface; 2361 __le16 num_mcaddrs; 2362 __u8 perm_addr[ETH_ALEN]; 2363 __le16 region_code; 2364 __le32 fw_rev; 2365 __le32 ps_cookie; 2366 __le32 caps; 2367 __u8 mcs_bitmap[16]; 2368 __le32 rx_queue_ptr; 2369 __le32 num_tx_queues; 2370 __le32 tx_queue_ptrs[MWL8K_TX_WMM_QUEUES]; 2371 __le32 caps2; 2372 __le32 num_tx_desc_per_queue; 2373 __le32 total_rxd; 2374 } __packed; 2375 2376 #define MWL8K_CAP_MAX_AMSDU 0x20000000 2377 #define MWL8K_CAP_GREENFIELD 0x08000000 2378 #define MWL8K_CAP_AMPDU 0x04000000 2379 #define MWL8K_CAP_RX_STBC 0x01000000 2380 #define MWL8K_CAP_TX_STBC 0x00800000 2381 #define MWL8K_CAP_SHORTGI_40MHZ 0x00400000 2382 #define MWL8K_CAP_SHORTGI_20MHZ 0x00200000 2383 #define MWL8K_CAP_RX_ANTENNA_MASK 0x000e0000 2384 #define MWL8K_CAP_TX_ANTENNA_MASK 0x0001c000 2385 #define MWL8K_CAP_DELAY_BA 0x00003000 2386 #define MWL8K_CAP_MIMO 0x00000200 2387 #define MWL8K_CAP_40MHZ 0x00000100 2388 #define MWL8K_CAP_BAND_MASK 0x00000007 2389 #define MWL8K_CAP_5GHZ 0x00000004 2390 #define MWL8K_CAP_2GHZ4 0x00000001 2391 2392 static void 2393 mwl8k_set_ht_caps(struct ieee80211_hw *hw, 2394 struct ieee80211_supported_band *band, u32 cap) 2395 { 2396 int rx_streams; 2397 int tx_streams; 2398 2399 band->ht_cap.ht_supported = 1; 2400 2401 if (cap & MWL8K_CAP_MAX_AMSDU) 2402 band->ht_cap.cap |= IEEE80211_HT_CAP_MAX_AMSDU; 2403 if (cap & MWL8K_CAP_GREENFIELD) 2404 band->ht_cap.cap |= IEEE80211_HT_CAP_GRN_FLD; 2405 if (cap & MWL8K_CAP_AMPDU) { 2406 ieee80211_hw_set(hw, AMPDU_AGGREGATION); 2407 band->ht_cap.ampdu_factor = IEEE80211_HT_MAX_AMPDU_64K; 2408 band->ht_cap.ampdu_density = IEEE80211_HT_MPDU_DENSITY_NONE; 2409 } 2410 if (cap & MWL8K_CAP_RX_STBC) 2411 band->ht_cap.cap |= IEEE80211_HT_CAP_RX_STBC; 2412 if (cap & MWL8K_CAP_TX_STBC) 2413 band->ht_cap.cap |= IEEE80211_HT_CAP_TX_STBC; 2414 if (cap & MWL8K_CAP_SHORTGI_40MHZ) 2415 band->ht_cap.cap |= IEEE80211_HT_CAP_SGI_40; 2416 if (cap & MWL8K_CAP_SHORTGI_20MHZ) 2417 band->ht_cap.cap |= IEEE80211_HT_CAP_SGI_20; 2418 if (cap & MWL8K_CAP_DELAY_BA) 2419 band->ht_cap.cap |= IEEE80211_HT_CAP_DELAY_BA; 2420 if (cap & MWL8K_CAP_40MHZ) 2421 band->ht_cap.cap |= IEEE80211_HT_CAP_SUP_WIDTH_20_40; 2422 2423 rx_streams = hweight32(cap & MWL8K_CAP_RX_ANTENNA_MASK); 2424 tx_streams = hweight32(cap & MWL8K_CAP_TX_ANTENNA_MASK); 2425 2426 band->ht_cap.mcs.rx_mask[0] = 0xff; 2427 if (rx_streams >= 2) 2428 band->ht_cap.mcs.rx_mask[1] = 0xff; 2429 if (rx_streams >= 3) 2430 band->ht_cap.mcs.rx_mask[2] = 0xff; 2431 band->ht_cap.mcs.rx_mask[4] = 0x01; 2432 band->ht_cap.mcs.tx_params = IEEE80211_HT_MCS_TX_DEFINED; 2433 2434 if (rx_streams != tx_streams) { 2435 band->ht_cap.mcs.tx_params |= IEEE80211_HT_MCS_TX_RX_DIFF; 2436 band->ht_cap.mcs.tx_params |= (tx_streams - 1) << 2437 IEEE80211_HT_MCS_TX_MAX_STREAMS_SHIFT; 2438 } 2439 } 2440 2441 static void 2442 mwl8k_set_caps(struct ieee80211_hw *hw, u32 caps) 2443 { 2444 struct mwl8k_priv *priv = hw->priv; 2445 2446 if (priv->caps) 2447 return; 2448 2449 if ((caps & MWL8K_CAP_2GHZ4) || !(caps & MWL8K_CAP_BAND_MASK)) { 2450 mwl8k_setup_2ghz_band(hw); 2451 if (caps & MWL8K_CAP_MIMO) 2452 mwl8k_set_ht_caps(hw, &priv->band_24, caps); 2453 } 2454 2455 if (caps & MWL8K_CAP_5GHZ) { 2456 mwl8k_setup_5ghz_band(hw); 2457 if (caps & MWL8K_CAP_MIMO) 2458 mwl8k_set_ht_caps(hw, &priv->band_50, caps); 2459 } 2460 2461 priv->caps = caps; 2462 } 2463 2464 static int mwl8k_cmd_get_hw_spec_sta(struct ieee80211_hw *hw) 2465 { 2466 struct mwl8k_priv *priv = hw->priv; 2467 struct mwl8k_cmd_get_hw_spec_sta *cmd; 2468 int rc; 2469 int i; 2470 2471 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2472 if (cmd == NULL) 2473 return -ENOMEM; 2474 2475 cmd->header.code = cpu_to_le16(MWL8K_CMD_GET_HW_SPEC); 2476 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2477 2478 memset(cmd->perm_addr, 0xff, sizeof(cmd->perm_addr)); 2479 cmd->ps_cookie = cpu_to_le32(priv->cookie_dma); 2480 cmd->rx_queue_ptr = cpu_to_le32(priv->rxq[0].rxd_dma); 2481 cmd->num_tx_queues = cpu_to_le32(mwl8k_tx_queues(priv)); 2482 for (i = 0; i < mwl8k_tx_queues(priv); i++) 2483 cmd->tx_queue_ptrs[i] = cpu_to_le32(priv->txq[i].txd_dma); 2484 cmd->num_tx_desc_per_queue = cpu_to_le32(MWL8K_TX_DESCS); 2485 cmd->total_rxd = cpu_to_le32(MWL8K_RX_DESCS); 2486 2487 rc = mwl8k_post_cmd(hw, &cmd->header); 2488 2489 if (!rc) { 2490 SET_IEEE80211_PERM_ADDR(hw, cmd->perm_addr); 2491 priv->num_mcaddrs = le16_to_cpu(cmd->num_mcaddrs); 2492 priv->fw_rev = le32_to_cpu(cmd->fw_rev); 2493 priv->hw_rev = cmd->hw_rev; 2494 mwl8k_set_caps(hw, le32_to_cpu(cmd->caps)); 2495 priv->ap_macids_supported = 0x00000000; 2496 priv->sta_macids_supported = 0x00000001; 2497 } 2498 2499 kfree(cmd); 2500 return rc; 2501 } 2502 2503 /* 2504 * CMD_GET_HW_SPEC (AP version). 2505 */ 2506 struct mwl8k_cmd_get_hw_spec_ap { 2507 struct mwl8k_cmd_pkt_hdr header; 2508 __u8 hw_rev; 2509 __u8 host_interface; 2510 __le16 num_wcb; 2511 __le16 num_mcaddrs; 2512 __u8 perm_addr[ETH_ALEN]; 2513 __le16 region_code; 2514 __le16 num_antenna; 2515 __le32 fw_rev; 2516 __le32 wcbbase0; 2517 __le32 rxwrptr; 2518 __le32 rxrdptr; 2519 __le32 ps_cookie; 2520 __le32 wcbbase1; 2521 __le32 wcbbase2; 2522 __le32 wcbbase3; 2523 __le32 fw_api_version; 2524 __le32 caps; 2525 __le32 num_of_ampdu_queues; 2526 __le32 wcbbase_ampdu[MWL8K_MAX_AMPDU_QUEUES]; 2527 } __packed; 2528 2529 static int mwl8k_cmd_get_hw_spec_ap(struct ieee80211_hw *hw) 2530 { 2531 struct mwl8k_priv *priv = hw->priv; 2532 struct mwl8k_cmd_get_hw_spec_ap *cmd; 2533 int rc, i; 2534 u32 api_version; 2535 2536 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2537 if (cmd == NULL) 2538 return -ENOMEM; 2539 2540 cmd->header.code = cpu_to_le16(MWL8K_CMD_GET_HW_SPEC); 2541 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2542 2543 memset(cmd->perm_addr, 0xff, sizeof(cmd->perm_addr)); 2544 cmd->ps_cookie = cpu_to_le32(priv->cookie_dma); 2545 2546 rc = mwl8k_post_cmd(hw, &cmd->header); 2547 2548 if (!rc) { 2549 int off; 2550 2551 api_version = le32_to_cpu(cmd->fw_api_version); 2552 if (priv->device_info->fw_api_ap != api_version) { 2553 printk(KERN_ERR "%s: Unsupported fw API version for %s." 2554 " Expected %d got %d.\n", MWL8K_NAME, 2555 priv->device_info->part_name, 2556 priv->device_info->fw_api_ap, 2557 api_version); 2558 rc = -EINVAL; 2559 goto done; 2560 } 2561 SET_IEEE80211_PERM_ADDR(hw, cmd->perm_addr); 2562 priv->num_mcaddrs = le16_to_cpu(cmd->num_mcaddrs); 2563 priv->fw_rev = le32_to_cpu(cmd->fw_rev); 2564 priv->hw_rev = cmd->hw_rev; 2565 mwl8k_set_caps(hw, le32_to_cpu(cmd->caps)); 2566 priv->ap_macids_supported = 0x000000ff; 2567 priv->sta_macids_supported = 0x00000100; 2568 priv->num_ampdu_queues = le32_to_cpu(cmd->num_of_ampdu_queues); 2569 if (priv->num_ampdu_queues > MWL8K_MAX_AMPDU_QUEUES) { 2570 wiphy_warn(hw->wiphy, "fw reported %d ampdu queues" 2571 " but we only support %d.\n", 2572 priv->num_ampdu_queues, 2573 MWL8K_MAX_AMPDU_QUEUES); 2574 priv->num_ampdu_queues = MWL8K_MAX_AMPDU_QUEUES; 2575 } 2576 off = le32_to_cpu(cmd->rxwrptr) & 0xffff; 2577 iowrite32(priv->rxq[0].rxd_dma, priv->sram + off); 2578 2579 off = le32_to_cpu(cmd->rxrdptr) & 0xffff; 2580 iowrite32(priv->rxq[0].rxd_dma, priv->sram + off); 2581 2582 priv->txq_offset[0] = le32_to_cpu(cmd->wcbbase0) & 0xffff; 2583 priv->txq_offset[1] = le32_to_cpu(cmd->wcbbase1) & 0xffff; 2584 priv->txq_offset[2] = le32_to_cpu(cmd->wcbbase2) & 0xffff; 2585 priv->txq_offset[3] = le32_to_cpu(cmd->wcbbase3) & 0xffff; 2586 2587 for (i = 0; i < priv->num_ampdu_queues; i++) 2588 priv->txq_offset[i + MWL8K_TX_WMM_QUEUES] = 2589 le32_to_cpu(cmd->wcbbase_ampdu[i]) & 0xffff; 2590 } 2591 2592 done: 2593 kfree(cmd); 2594 return rc; 2595 } 2596 2597 /* 2598 * CMD_SET_HW_SPEC. 2599 */ 2600 struct mwl8k_cmd_set_hw_spec { 2601 struct mwl8k_cmd_pkt_hdr header; 2602 __u8 hw_rev; 2603 __u8 host_interface; 2604 __le16 num_mcaddrs; 2605 __u8 perm_addr[ETH_ALEN]; 2606 __le16 region_code; 2607 __le32 fw_rev; 2608 __le32 ps_cookie; 2609 __le32 caps; 2610 __le32 rx_queue_ptr; 2611 __le32 num_tx_queues; 2612 __le32 tx_queue_ptrs[MWL8K_MAX_TX_QUEUES]; 2613 __le32 flags; 2614 __le32 num_tx_desc_per_queue; 2615 __le32 total_rxd; 2616 } __packed; 2617 2618 /* If enabled, MWL8K_SET_HW_SPEC_FLAG_ENABLE_LIFE_TIME_EXPIRY will cause 2619 * packets to expire 500 ms after the timestamp in the tx descriptor. That is, 2620 * the packets that are queued for more than 500ms, will be dropped in the 2621 * hardware. This helps minimizing the issues caused due to head-of-line 2622 * blocking where a slow client can hog the bandwidth and affect traffic to a 2623 * faster client. 2624 */ 2625 #define MWL8K_SET_HW_SPEC_FLAG_ENABLE_LIFE_TIME_EXPIRY 0x00000400 2626 #define MWL8K_SET_HW_SPEC_FLAG_GENERATE_CCMP_HDR 0x00000200 2627 #define MWL8K_SET_HW_SPEC_FLAG_HOST_DECR_MGMT 0x00000080 2628 #define MWL8K_SET_HW_SPEC_FLAG_HOSTFORM_PROBERESP 0x00000020 2629 #define MWL8K_SET_HW_SPEC_FLAG_HOSTFORM_BEACON 0x00000010 2630 2631 static int mwl8k_cmd_set_hw_spec(struct ieee80211_hw *hw) 2632 { 2633 struct mwl8k_priv *priv = hw->priv; 2634 struct mwl8k_cmd_set_hw_spec *cmd; 2635 int rc; 2636 int i; 2637 2638 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2639 if (cmd == NULL) 2640 return -ENOMEM; 2641 2642 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_HW_SPEC); 2643 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2644 2645 cmd->ps_cookie = cpu_to_le32(priv->cookie_dma); 2646 cmd->rx_queue_ptr = cpu_to_le32(priv->rxq[0].rxd_dma); 2647 cmd->num_tx_queues = cpu_to_le32(mwl8k_tx_queues(priv)); 2648 2649 /* 2650 * Mac80211 stack has Q0 as highest priority and Q3 as lowest in 2651 * that order. Firmware has Q3 as highest priority and Q0 as lowest 2652 * in that order. Map Q3 of mac80211 to Q0 of firmware so that the 2653 * priority is interpreted the right way in firmware. 2654 */ 2655 for (i = 0; i < mwl8k_tx_queues(priv); i++) { 2656 int j = mwl8k_tx_queues(priv) - 1 - i; 2657 cmd->tx_queue_ptrs[i] = cpu_to_le32(priv->txq[j].txd_dma); 2658 } 2659 2660 cmd->flags = cpu_to_le32(MWL8K_SET_HW_SPEC_FLAG_HOST_DECR_MGMT | 2661 MWL8K_SET_HW_SPEC_FLAG_HOSTFORM_PROBERESP | 2662 MWL8K_SET_HW_SPEC_FLAG_HOSTFORM_BEACON | 2663 MWL8K_SET_HW_SPEC_FLAG_ENABLE_LIFE_TIME_EXPIRY | 2664 MWL8K_SET_HW_SPEC_FLAG_GENERATE_CCMP_HDR); 2665 cmd->num_tx_desc_per_queue = cpu_to_le32(MWL8K_TX_DESCS); 2666 cmd->total_rxd = cpu_to_le32(MWL8K_RX_DESCS); 2667 2668 rc = mwl8k_post_cmd(hw, &cmd->header); 2669 kfree(cmd); 2670 2671 return rc; 2672 } 2673 2674 /* 2675 * CMD_MAC_MULTICAST_ADR. 2676 */ 2677 struct mwl8k_cmd_mac_multicast_adr { 2678 struct mwl8k_cmd_pkt_hdr header; 2679 __le16 action; 2680 __le16 numaddr; 2681 __u8 addr[][ETH_ALEN]; 2682 }; 2683 2684 #define MWL8K_ENABLE_RX_DIRECTED 0x0001 2685 #define MWL8K_ENABLE_RX_MULTICAST 0x0002 2686 #define MWL8K_ENABLE_RX_ALL_MULTICAST 0x0004 2687 #define MWL8K_ENABLE_RX_BROADCAST 0x0008 2688 2689 static struct mwl8k_cmd_pkt_hdr * 2690 __mwl8k_cmd_mac_multicast_adr(struct ieee80211_hw *hw, int allmulti, 2691 struct netdev_hw_addr_list *mc_list) 2692 { 2693 struct mwl8k_priv *priv = hw->priv; 2694 struct mwl8k_cmd_mac_multicast_adr *cmd; 2695 int size; 2696 int mc_count = 0; 2697 2698 if (mc_list) 2699 mc_count = netdev_hw_addr_list_count(mc_list); 2700 2701 if (allmulti || mc_count > priv->num_mcaddrs) { 2702 allmulti = 1; 2703 mc_count = 0; 2704 } 2705 2706 size = sizeof(*cmd) + mc_count * ETH_ALEN; 2707 2708 cmd = kzalloc(size, GFP_ATOMIC); 2709 if (cmd == NULL) 2710 return NULL; 2711 2712 cmd->header.code = cpu_to_le16(MWL8K_CMD_MAC_MULTICAST_ADR); 2713 cmd->header.length = cpu_to_le16(size); 2714 cmd->action = cpu_to_le16(MWL8K_ENABLE_RX_DIRECTED | 2715 MWL8K_ENABLE_RX_BROADCAST); 2716 2717 if (allmulti) { 2718 cmd->action |= cpu_to_le16(MWL8K_ENABLE_RX_ALL_MULTICAST); 2719 } else if (mc_count) { 2720 struct netdev_hw_addr *ha; 2721 int i = 0; 2722 2723 cmd->action |= cpu_to_le16(MWL8K_ENABLE_RX_MULTICAST); 2724 cmd->numaddr = cpu_to_le16(mc_count); 2725 netdev_hw_addr_list_for_each(ha, mc_list) { 2726 memcpy(cmd->addr[i++], ha->addr, ETH_ALEN); 2727 } 2728 } 2729 2730 return &cmd->header; 2731 } 2732 2733 /* 2734 * CMD_GET_STAT. 2735 */ 2736 struct mwl8k_cmd_get_stat { 2737 struct mwl8k_cmd_pkt_hdr header; 2738 __le32 stats[64]; 2739 } __packed; 2740 2741 #define MWL8K_STAT_ACK_FAILURE 9 2742 #define MWL8K_STAT_RTS_FAILURE 12 2743 #define MWL8K_STAT_FCS_ERROR 24 2744 #define MWL8K_STAT_RTS_SUCCESS 11 2745 2746 static int mwl8k_cmd_get_stat(struct ieee80211_hw *hw, 2747 struct ieee80211_low_level_stats *stats) 2748 { 2749 struct mwl8k_cmd_get_stat *cmd; 2750 int rc; 2751 2752 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2753 if (cmd == NULL) 2754 return -ENOMEM; 2755 2756 cmd->header.code = cpu_to_le16(MWL8K_CMD_GET_STAT); 2757 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2758 2759 rc = mwl8k_post_cmd(hw, &cmd->header); 2760 if (!rc) { 2761 stats->dot11ACKFailureCount = 2762 le32_to_cpu(cmd->stats[MWL8K_STAT_ACK_FAILURE]); 2763 stats->dot11RTSFailureCount = 2764 le32_to_cpu(cmd->stats[MWL8K_STAT_RTS_FAILURE]); 2765 stats->dot11FCSErrorCount = 2766 le32_to_cpu(cmd->stats[MWL8K_STAT_FCS_ERROR]); 2767 stats->dot11RTSSuccessCount = 2768 le32_to_cpu(cmd->stats[MWL8K_STAT_RTS_SUCCESS]); 2769 } 2770 kfree(cmd); 2771 2772 return rc; 2773 } 2774 2775 /* 2776 * CMD_RADIO_CONTROL. 2777 */ 2778 struct mwl8k_cmd_radio_control { 2779 struct mwl8k_cmd_pkt_hdr header; 2780 __le16 action; 2781 __le16 control; 2782 __le16 radio_on; 2783 } __packed; 2784 2785 static int 2786 mwl8k_cmd_radio_control(struct ieee80211_hw *hw, bool enable, bool force) 2787 { 2788 struct mwl8k_priv *priv = hw->priv; 2789 struct mwl8k_cmd_radio_control *cmd; 2790 int rc; 2791 2792 if (enable == priv->radio_on && !force) 2793 return 0; 2794 2795 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2796 if (cmd == NULL) 2797 return -ENOMEM; 2798 2799 cmd->header.code = cpu_to_le16(MWL8K_CMD_RADIO_CONTROL); 2800 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2801 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 2802 cmd->control = cpu_to_le16(priv->radio_short_preamble ? 3 : 1); 2803 cmd->radio_on = cpu_to_le16(enable ? 0x0001 : 0x0000); 2804 2805 rc = mwl8k_post_cmd(hw, &cmd->header); 2806 kfree(cmd); 2807 2808 if (!rc) 2809 priv->radio_on = enable; 2810 2811 return rc; 2812 } 2813 2814 static int mwl8k_cmd_radio_disable(struct ieee80211_hw *hw) 2815 { 2816 return mwl8k_cmd_radio_control(hw, 0, 0); 2817 } 2818 2819 static int mwl8k_cmd_radio_enable(struct ieee80211_hw *hw) 2820 { 2821 return mwl8k_cmd_radio_control(hw, 1, 0); 2822 } 2823 2824 static int 2825 mwl8k_set_radio_preamble(struct ieee80211_hw *hw, bool short_preamble) 2826 { 2827 struct mwl8k_priv *priv = hw->priv; 2828 2829 priv->radio_short_preamble = short_preamble; 2830 2831 return mwl8k_cmd_radio_control(hw, 1, 1); 2832 } 2833 2834 /* 2835 * CMD_RF_TX_POWER. 2836 */ 2837 #define MWL8K_RF_TX_POWER_LEVEL_TOTAL 8 2838 2839 struct mwl8k_cmd_rf_tx_power { 2840 struct mwl8k_cmd_pkt_hdr header; 2841 __le16 action; 2842 __le16 support_level; 2843 __le16 current_level; 2844 __le16 reserved; 2845 __le16 power_level_list[MWL8K_RF_TX_POWER_LEVEL_TOTAL]; 2846 } __packed; 2847 2848 static int mwl8k_cmd_rf_tx_power(struct ieee80211_hw *hw, int dBm) 2849 { 2850 struct mwl8k_cmd_rf_tx_power *cmd; 2851 int rc; 2852 2853 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2854 if (cmd == NULL) 2855 return -ENOMEM; 2856 2857 cmd->header.code = cpu_to_le16(MWL8K_CMD_RF_TX_POWER); 2858 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2859 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 2860 cmd->support_level = cpu_to_le16(dBm); 2861 2862 rc = mwl8k_post_cmd(hw, &cmd->header); 2863 kfree(cmd); 2864 2865 return rc; 2866 } 2867 2868 /* 2869 * CMD_TX_POWER. 2870 */ 2871 #define MWL8K_TX_POWER_LEVEL_TOTAL 12 2872 2873 struct mwl8k_cmd_tx_power { 2874 struct mwl8k_cmd_pkt_hdr header; 2875 __le16 action; 2876 __le16 band; 2877 __le16 channel; 2878 __le16 bw; 2879 __le16 sub_ch; 2880 __le16 power_level_list[MWL8K_TX_POWER_LEVEL_TOTAL]; 2881 } __packed; 2882 2883 static int mwl8k_cmd_tx_power(struct ieee80211_hw *hw, 2884 struct ieee80211_conf *conf, 2885 unsigned short pwr) 2886 { 2887 struct ieee80211_channel *channel = conf->chandef.chan; 2888 enum nl80211_channel_type channel_type = 2889 cfg80211_get_chandef_type(&conf->chandef); 2890 struct mwl8k_cmd_tx_power *cmd; 2891 int rc; 2892 int i; 2893 2894 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2895 if (cmd == NULL) 2896 return -ENOMEM; 2897 2898 cmd->header.code = cpu_to_le16(MWL8K_CMD_TX_POWER); 2899 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2900 cmd->action = cpu_to_le16(MWL8K_CMD_SET_LIST); 2901 2902 if (channel->band == NL80211_BAND_2GHZ) 2903 cmd->band = cpu_to_le16(0x1); 2904 else if (channel->band == NL80211_BAND_5GHZ) 2905 cmd->band = cpu_to_le16(0x4); 2906 2907 cmd->channel = cpu_to_le16(channel->hw_value); 2908 2909 if (channel_type == NL80211_CHAN_NO_HT || 2910 channel_type == NL80211_CHAN_HT20) { 2911 cmd->bw = cpu_to_le16(0x2); 2912 } else { 2913 cmd->bw = cpu_to_le16(0x4); 2914 if (channel_type == NL80211_CHAN_HT40MINUS) 2915 cmd->sub_ch = cpu_to_le16(0x3); 2916 else if (channel_type == NL80211_CHAN_HT40PLUS) 2917 cmd->sub_ch = cpu_to_le16(0x1); 2918 } 2919 2920 for (i = 0; i < MWL8K_TX_POWER_LEVEL_TOTAL; i++) 2921 cmd->power_level_list[i] = cpu_to_le16(pwr); 2922 2923 rc = mwl8k_post_cmd(hw, &cmd->header); 2924 kfree(cmd); 2925 2926 return rc; 2927 } 2928 2929 /* 2930 * CMD_RF_ANTENNA. 2931 */ 2932 struct mwl8k_cmd_rf_antenna { 2933 struct mwl8k_cmd_pkt_hdr header; 2934 __le16 antenna; 2935 __le16 mode; 2936 } __packed; 2937 2938 #define MWL8K_RF_ANTENNA_RX 1 2939 #define MWL8K_RF_ANTENNA_TX 2 2940 2941 static int 2942 mwl8k_cmd_rf_antenna(struct ieee80211_hw *hw, int antenna, int mask) 2943 { 2944 struct mwl8k_cmd_rf_antenna *cmd; 2945 int rc; 2946 2947 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2948 if (cmd == NULL) 2949 return -ENOMEM; 2950 2951 cmd->header.code = cpu_to_le16(MWL8K_CMD_RF_ANTENNA); 2952 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2953 cmd->antenna = cpu_to_le16(antenna); 2954 cmd->mode = cpu_to_le16(mask); 2955 2956 rc = mwl8k_post_cmd(hw, &cmd->header); 2957 kfree(cmd); 2958 2959 return rc; 2960 } 2961 2962 /* 2963 * CMD_SET_BEACON. 2964 */ 2965 struct mwl8k_cmd_set_beacon { 2966 struct mwl8k_cmd_pkt_hdr header; 2967 __le16 beacon_len; 2968 __u8 beacon[]; 2969 }; 2970 2971 static int mwl8k_cmd_set_beacon(struct ieee80211_hw *hw, 2972 struct ieee80211_vif *vif, u8 *beacon, int len) 2973 { 2974 struct mwl8k_cmd_set_beacon *cmd; 2975 int rc; 2976 2977 cmd = kzalloc(sizeof(*cmd) + len, GFP_KERNEL); 2978 if (cmd == NULL) 2979 return -ENOMEM; 2980 2981 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_BEACON); 2982 cmd->header.length = cpu_to_le16(sizeof(*cmd) + len); 2983 cmd->beacon_len = cpu_to_le16(len); 2984 memcpy(cmd->beacon, beacon, len); 2985 2986 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 2987 kfree(cmd); 2988 2989 return rc; 2990 } 2991 2992 /* 2993 * CMD_SET_PRE_SCAN. 2994 */ 2995 struct mwl8k_cmd_set_pre_scan { 2996 struct mwl8k_cmd_pkt_hdr header; 2997 } __packed; 2998 2999 static int mwl8k_cmd_set_pre_scan(struct ieee80211_hw *hw) 3000 { 3001 struct mwl8k_cmd_set_pre_scan *cmd; 3002 int rc; 3003 3004 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3005 if (cmd == NULL) 3006 return -ENOMEM; 3007 3008 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_PRE_SCAN); 3009 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3010 3011 rc = mwl8k_post_cmd(hw, &cmd->header); 3012 kfree(cmd); 3013 3014 return rc; 3015 } 3016 3017 /* 3018 * CMD_BBP_REG_ACCESS. 3019 */ 3020 struct mwl8k_cmd_bbp_reg_access { 3021 struct mwl8k_cmd_pkt_hdr header; 3022 __le16 action; 3023 __le16 offset; 3024 u8 value; 3025 u8 rsrv[3]; 3026 } __packed; 3027 3028 static int 3029 mwl8k_cmd_bbp_reg_access(struct ieee80211_hw *hw, 3030 u16 action, 3031 u16 offset, 3032 u8 *value) 3033 { 3034 struct mwl8k_cmd_bbp_reg_access *cmd; 3035 int rc; 3036 3037 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3038 if (cmd == NULL) 3039 return -ENOMEM; 3040 3041 cmd->header.code = cpu_to_le16(MWL8K_CMD_BBP_REG_ACCESS); 3042 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3043 cmd->action = cpu_to_le16(action); 3044 cmd->offset = cpu_to_le16(offset); 3045 3046 rc = mwl8k_post_cmd(hw, &cmd->header); 3047 3048 if (!rc) 3049 *value = cmd->value; 3050 else 3051 *value = 0; 3052 3053 kfree(cmd); 3054 3055 return rc; 3056 } 3057 3058 /* 3059 * CMD_SET_POST_SCAN. 3060 */ 3061 struct mwl8k_cmd_set_post_scan { 3062 struct mwl8k_cmd_pkt_hdr header; 3063 __le32 isibss; 3064 __u8 bssid[ETH_ALEN]; 3065 } __packed; 3066 3067 static int 3068 mwl8k_cmd_set_post_scan(struct ieee80211_hw *hw, const __u8 *mac) 3069 { 3070 struct mwl8k_cmd_set_post_scan *cmd; 3071 int rc; 3072 3073 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3074 if (cmd == NULL) 3075 return -ENOMEM; 3076 3077 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_POST_SCAN); 3078 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3079 cmd->isibss = 0; 3080 memcpy(cmd->bssid, mac, ETH_ALEN); 3081 3082 rc = mwl8k_post_cmd(hw, &cmd->header); 3083 kfree(cmd); 3084 3085 return rc; 3086 } 3087 3088 static int freq_to_idx(struct mwl8k_priv *priv, int freq) 3089 { 3090 struct ieee80211_supported_band *sband; 3091 int band, ch, idx = 0; 3092 3093 for (band = NL80211_BAND_2GHZ; band < NUM_NL80211_BANDS; band++) { 3094 sband = priv->hw->wiphy->bands[band]; 3095 if (!sband) 3096 continue; 3097 3098 for (ch = 0; ch < sband->n_channels; ch++, idx++) 3099 if (sband->channels[ch].center_freq == freq) 3100 goto exit; 3101 } 3102 3103 exit: 3104 return idx; 3105 } 3106 3107 static void mwl8k_update_survey(struct mwl8k_priv *priv, 3108 struct ieee80211_channel *channel) 3109 { 3110 u32 cca_cnt, rx_rdy; 3111 s8 nf = 0, idx; 3112 struct survey_info *survey; 3113 3114 idx = freq_to_idx(priv, priv->acs_chan->center_freq); 3115 if (idx >= MWL8K_NUM_CHANS) { 3116 wiphy_err(priv->hw->wiphy, "Failed to update survey\n"); 3117 return; 3118 } 3119 3120 survey = &priv->survey[idx]; 3121 3122 cca_cnt = ioread32(priv->regs + NOK_CCA_CNT_REG); 3123 cca_cnt /= 1000; /* uSecs to mSecs */ 3124 survey->time_busy = (u64) cca_cnt; 3125 3126 rx_rdy = ioread32(priv->regs + BBU_RXRDY_CNT_REG); 3127 rx_rdy /= 1000; /* uSecs to mSecs */ 3128 survey->time_rx = (u64) rx_rdy; 3129 3130 priv->channel_time = jiffies - priv->channel_time; 3131 survey->time = jiffies_to_msecs(priv->channel_time); 3132 3133 survey->channel = channel; 3134 3135 mwl8k_cmd_bbp_reg_access(priv->hw, 0, BBU_AVG_NOISE_VAL, &nf); 3136 3137 /* Make sure sign is negative else ACS at hostapd fails */ 3138 survey->noise = nf * -1; 3139 3140 survey->filled = SURVEY_INFO_NOISE_DBM | 3141 SURVEY_INFO_TIME | 3142 SURVEY_INFO_TIME_BUSY | 3143 SURVEY_INFO_TIME_RX; 3144 } 3145 3146 /* 3147 * CMD_SET_RF_CHANNEL. 3148 */ 3149 struct mwl8k_cmd_set_rf_channel { 3150 struct mwl8k_cmd_pkt_hdr header; 3151 __le16 action; 3152 __u8 current_channel; 3153 __le32 channel_flags; 3154 } __packed; 3155 3156 static int mwl8k_cmd_set_rf_channel(struct ieee80211_hw *hw, 3157 struct ieee80211_conf *conf) 3158 { 3159 struct ieee80211_channel *channel = conf->chandef.chan; 3160 enum nl80211_channel_type channel_type = 3161 cfg80211_get_chandef_type(&conf->chandef); 3162 struct mwl8k_cmd_set_rf_channel *cmd; 3163 struct mwl8k_priv *priv = hw->priv; 3164 int rc; 3165 3166 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3167 if (cmd == NULL) 3168 return -ENOMEM; 3169 3170 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_RF_CHANNEL); 3171 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3172 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 3173 cmd->current_channel = channel->hw_value; 3174 3175 if (channel->band == NL80211_BAND_2GHZ) 3176 cmd->channel_flags |= cpu_to_le32(0x00000001); 3177 else if (channel->band == NL80211_BAND_5GHZ) 3178 cmd->channel_flags |= cpu_to_le32(0x00000004); 3179 3180 if (!priv->sw_scan_start) { 3181 if (channel_type == NL80211_CHAN_NO_HT || 3182 channel_type == NL80211_CHAN_HT20) 3183 cmd->channel_flags |= cpu_to_le32(0x00000080); 3184 else if (channel_type == NL80211_CHAN_HT40MINUS) 3185 cmd->channel_flags |= cpu_to_le32(0x000001900); 3186 else if (channel_type == NL80211_CHAN_HT40PLUS) 3187 cmd->channel_flags |= cpu_to_le32(0x000000900); 3188 } else { 3189 cmd->channel_flags |= cpu_to_le32(0x00000080); 3190 } 3191 3192 if (priv->sw_scan_start) { 3193 /* Store current channel stats 3194 * before switching to newer one. 3195 * This will be processed only for AP fw. 3196 */ 3197 if (priv->channel_time != 0) 3198 mwl8k_update_survey(priv, priv->acs_chan); 3199 3200 priv->channel_time = jiffies; 3201 priv->acs_chan = channel; 3202 } 3203 3204 rc = mwl8k_post_cmd(hw, &cmd->header); 3205 kfree(cmd); 3206 3207 return rc; 3208 } 3209 3210 /* 3211 * CMD_SET_AID. 3212 */ 3213 #define MWL8K_FRAME_PROT_DISABLED 0x00 3214 #define MWL8K_FRAME_PROT_11G 0x07 3215 #define MWL8K_FRAME_PROT_11N_HT_40MHZ_ONLY 0x02 3216 #define MWL8K_FRAME_PROT_11N_HT_ALL 0x06 3217 3218 struct mwl8k_cmd_update_set_aid { 3219 struct mwl8k_cmd_pkt_hdr header; 3220 __le16 aid; 3221 3222 /* AP's MAC address (BSSID) */ 3223 __u8 bssid[ETH_ALEN]; 3224 __le16 protection_mode; 3225 __u8 supp_rates[14]; 3226 } __packed; 3227 3228 static void legacy_rate_mask_to_array(u8 *rates, u32 mask) 3229 { 3230 int i; 3231 int j; 3232 3233 /* 3234 * Clear nonstandard rate 4. 3235 */ 3236 mask &= 0x1fef; 3237 3238 for (i = 0, j = 0; i < 13; i++) { 3239 if (mask & (1 << i)) 3240 rates[j++] = mwl8k_rates_24[i].hw_value; 3241 } 3242 } 3243 3244 static int 3245 mwl8k_cmd_set_aid(struct ieee80211_hw *hw, 3246 struct ieee80211_vif *vif, u32 legacy_rate_mask) 3247 { 3248 struct mwl8k_cmd_update_set_aid *cmd; 3249 u16 prot_mode; 3250 int rc; 3251 3252 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3253 if (cmd == NULL) 3254 return -ENOMEM; 3255 3256 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_AID); 3257 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3258 cmd->aid = cpu_to_le16(vif->cfg.aid); 3259 memcpy(cmd->bssid, vif->bss_conf.bssid, ETH_ALEN); 3260 3261 if (vif->bss_conf.use_cts_prot) { 3262 prot_mode = MWL8K_FRAME_PROT_11G; 3263 } else { 3264 switch (vif->bss_conf.ht_operation_mode & 3265 IEEE80211_HT_OP_MODE_PROTECTION) { 3266 case IEEE80211_HT_OP_MODE_PROTECTION_20MHZ: 3267 prot_mode = MWL8K_FRAME_PROT_11N_HT_40MHZ_ONLY; 3268 break; 3269 case IEEE80211_HT_OP_MODE_PROTECTION_NONHT_MIXED: 3270 prot_mode = MWL8K_FRAME_PROT_11N_HT_ALL; 3271 break; 3272 default: 3273 prot_mode = MWL8K_FRAME_PROT_DISABLED; 3274 break; 3275 } 3276 } 3277 cmd->protection_mode = cpu_to_le16(prot_mode); 3278 3279 legacy_rate_mask_to_array(cmd->supp_rates, legacy_rate_mask); 3280 3281 rc = mwl8k_post_cmd(hw, &cmd->header); 3282 kfree(cmd); 3283 3284 return rc; 3285 } 3286 3287 /* 3288 * CMD_SET_RATE. 3289 */ 3290 struct mwl8k_cmd_set_rate { 3291 struct mwl8k_cmd_pkt_hdr header; 3292 __u8 legacy_rates[14]; 3293 3294 /* Bitmap for supported MCS codes. */ 3295 __u8 mcs_set[16]; 3296 __u8 reserved[16]; 3297 } __packed; 3298 3299 static int 3300 mwl8k_cmd_set_rate(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 3301 u32 legacy_rate_mask, u8 *mcs_rates) 3302 { 3303 struct mwl8k_cmd_set_rate *cmd; 3304 int rc; 3305 3306 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3307 if (cmd == NULL) 3308 return -ENOMEM; 3309 3310 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_RATE); 3311 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3312 legacy_rate_mask_to_array(cmd->legacy_rates, legacy_rate_mask); 3313 memcpy(cmd->mcs_set, mcs_rates, 16); 3314 3315 rc = mwl8k_post_cmd(hw, &cmd->header); 3316 kfree(cmd); 3317 3318 return rc; 3319 } 3320 3321 /* 3322 * CMD_FINALIZE_JOIN. 3323 */ 3324 #define MWL8K_FJ_BEACON_MAXLEN 128 3325 3326 struct mwl8k_cmd_finalize_join { 3327 struct mwl8k_cmd_pkt_hdr header; 3328 __le32 sleep_interval; /* Number of beacon periods to sleep */ 3329 __u8 beacon_data[MWL8K_FJ_BEACON_MAXLEN]; 3330 } __packed; 3331 3332 static int mwl8k_cmd_finalize_join(struct ieee80211_hw *hw, void *frame, 3333 int framelen, int dtim) 3334 { 3335 struct mwl8k_cmd_finalize_join *cmd; 3336 struct ieee80211_mgmt *payload = frame; 3337 int payload_len; 3338 int rc; 3339 3340 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3341 if (cmd == NULL) 3342 return -ENOMEM; 3343 3344 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_FINALIZE_JOIN); 3345 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3346 cmd->sleep_interval = cpu_to_le32(dtim ? dtim : 1); 3347 3348 payload_len = framelen - ieee80211_hdrlen(payload->frame_control); 3349 if (payload_len < 0) 3350 payload_len = 0; 3351 else if (payload_len > MWL8K_FJ_BEACON_MAXLEN) 3352 payload_len = MWL8K_FJ_BEACON_MAXLEN; 3353 3354 memcpy(cmd->beacon_data, &payload->u.beacon, payload_len); 3355 3356 rc = mwl8k_post_cmd(hw, &cmd->header); 3357 kfree(cmd); 3358 3359 return rc; 3360 } 3361 3362 /* 3363 * CMD_SET_RTS_THRESHOLD. 3364 */ 3365 struct mwl8k_cmd_set_rts_threshold { 3366 struct mwl8k_cmd_pkt_hdr header; 3367 __le16 action; 3368 __le16 threshold; 3369 } __packed; 3370 3371 static int 3372 mwl8k_cmd_set_rts_threshold(struct ieee80211_hw *hw, int rts_thresh) 3373 { 3374 struct mwl8k_cmd_set_rts_threshold *cmd; 3375 int rc; 3376 3377 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3378 if (cmd == NULL) 3379 return -ENOMEM; 3380 3381 cmd->header.code = cpu_to_le16(MWL8K_CMD_RTS_THRESHOLD); 3382 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3383 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 3384 cmd->threshold = cpu_to_le16(rts_thresh); 3385 3386 rc = mwl8k_post_cmd(hw, &cmd->header); 3387 kfree(cmd); 3388 3389 return rc; 3390 } 3391 3392 /* 3393 * CMD_SET_SLOT. 3394 */ 3395 struct mwl8k_cmd_set_slot { 3396 struct mwl8k_cmd_pkt_hdr header; 3397 __le16 action; 3398 __u8 short_slot; 3399 } __packed; 3400 3401 static int mwl8k_cmd_set_slot(struct ieee80211_hw *hw, bool short_slot_time) 3402 { 3403 struct mwl8k_cmd_set_slot *cmd; 3404 int rc; 3405 3406 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3407 if (cmd == NULL) 3408 return -ENOMEM; 3409 3410 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_SLOT); 3411 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3412 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 3413 cmd->short_slot = short_slot_time; 3414 3415 rc = mwl8k_post_cmd(hw, &cmd->header); 3416 kfree(cmd); 3417 3418 return rc; 3419 } 3420 3421 /* 3422 * CMD_SET_EDCA_PARAMS. 3423 */ 3424 struct mwl8k_cmd_set_edca_params { 3425 struct mwl8k_cmd_pkt_hdr header; 3426 3427 /* See MWL8K_SET_EDCA_XXX below */ 3428 __le16 action; 3429 3430 /* TX opportunity in units of 32 us */ 3431 __le16 txop; 3432 3433 union { 3434 struct { 3435 /* Log exponent of max contention period: 0...15 */ 3436 __le32 log_cw_max; 3437 3438 /* Log exponent of min contention period: 0...15 */ 3439 __le32 log_cw_min; 3440 3441 /* Adaptive interframe spacing in units of 32us */ 3442 __u8 aifs; 3443 3444 /* TX queue to configure */ 3445 __u8 txq; 3446 } ap; 3447 struct { 3448 /* Log exponent of max contention period: 0...15 */ 3449 __u8 log_cw_max; 3450 3451 /* Log exponent of min contention period: 0...15 */ 3452 __u8 log_cw_min; 3453 3454 /* Adaptive interframe spacing in units of 32us */ 3455 __u8 aifs; 3456 3457 /* TX queue to configure */ 3458 __u8 txq; 3459 } sta; 3460 }; 3461 } __packed; 3462 3463 #define MWL8K_SET_EDCA_CW 0x01 3464 #define MWL8K_SET_EDCA_TXOP 0x02 3465 #define MWL8K_SET_EDCA_AIFS 0x04 3466 3467 #define MWL8K_SET_EDCA_ALL (MWL8K_SET_EDCA_CW | \ 3468 MWL8K_SET_EDCA_TXOP | \ 3469 MWL8K_SET_EDCA_AIFS) 3470 3471 static int 3472 mwl8k_cmd_set_edca_params(struct ieee80211_hw *hw, __u8 qnum, 3473 __u16 cw_min, __u16 cw_max, 3474 __u8 aifs, __u16 txop) 3475 { 3476 struct mwl8k_priv *priv = hw->priv; 3477 struct mwl8k_cmd_set_edca_params *cmd; 3478 int rc; 3479 3480 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3481 if (cmd == NULL) 3482 return -ENOMEM; 3483 3484 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_EDCA_PARAMS); 3485 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3486 cmd->action = cpu_to_le16(MWL8K_SET_EDCA_ALL); 3487 cmd->txop = cpu_to_le16(txop); 3488 if (priv->ap_fw) { 3489 cmd->ap.log_cw_max = cpu_to_le32(ilog2(cw_max + 1)); 3490 cmd->ap.log_cw_min = cpu_to_le32(ilog2(cw_min + 1)); 3491 cmd->ap.aifs = aifs; 3492 cmd->ap.txq = qnum; 3493 } else { 3494 cmd->sta.log_cw_max = (u8)ilog2(cw_max + 1); 3495 cmd->sta.log_cw_min = (u8)ilog2(cw_min + 1); 3496 cmd->sta.aifs = aifs; 3497 cmd->sta.txq = qnum; 3498 } 3499 3500 rc = mwl8k_post_cmd(hw, &cmd->header); 3501 kfree(cmd); 3502 3503 return rc; 3504 } 3505 3506 /* 3507 * CMD_SET_WMM_MODE. 3508 */ 3509 struct mwl8k_cmd_set_wmm_mode { 3510 struct mwl8k_cmd_pkt_hdr header; 3511 __le16 action; 3512 } __packed; 3513 3514 static int mwl8k_cmd_set_wmm_mode(struct ieee80211_hw *hw, bool enable) 3515 { 3516 struct mwl8k_priv *priv = hw->priv; 3517 struct mwl8k_cmd_set_wmm_mode *cmd; 3518 int rc; 3519 3520 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3521 if (cmd == NULL) 3522 return -ENOMEM; 3523 3524 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_WMM_MODE); 3525 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3526 cmd->action = cpu_to_le16(!!enable); 3527 3528 rc = mwl8k_post_cmd(hw, &cmd->header); 3529 kfree(cmd); 3530 3531 if (!rc) 3532 priv->wmm_enabled = enable; 3533 3534 return rc; 3535 } 3536 3537 /* 3538 * CMD_MIMO_CONFIG. 3539 */ 3540 struct mwl8k_cmd_mimo_config { 3541 struct mwl8k_cmd_pkt_hdr header; 3542 __le32 action; 3543 __u8 rx_antenna_map; 3544 __u8 tx_antenna_map; 3545 } __packed; 3546 3547 static int mwl8k_cmd_mimo_config(struct ieee80211_hw *hw, __u8 rx, __u8 tx) 3548 { 3549 struct mwl8k_cmd_mimo_config *cmd; 3550 int rc; 3551 3552 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3553 if (cmd == NULL) 3554 return -ENOMEM; 3555 3556 cmd->header.code = cpu_to_le16(MWL8K_CMD_MIMO_CONFIG); 3557 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3558 cmd->action = cpu_to_le32((u32)MWL8K_CMD_SET); 3559 cmd->rx_antenna_map = rx; 3560 cmd->tx_antenna_map = tx; 3561 3562 rc = mwl8k_post_cmd(hw, &cmd->header); 3563 kfree(cmd); 3564 3565 return rc; 3566 } 3567 3568 /* 3569 * CMD_USE_FIXED_RATE (STA version). 3570 */ 3571 struct mwl8k_cmd_use_fixed_rate_sta { 3572 struct mwl8k_cmd_pkt_hdr header; 3573 __le32 action; 3574 __le32 allow_rate_drop; 3575 __le32 num_rates; 3576 struct { 3577 __le32 is_ht_rate; 3578 __le32 enable_retry; 3579 __le32 rate; 3580 __le32 retry_count; 3581 } rate_entry[8]; 3582 __le32 rate_type; 3583 __le32 reserved1; 3584 __le32 reserved2; 3585 } __packed; 3586 3587 #define MWL8K_USE_AUTO_RATE 0x0002 3588 #define MWL8K_UCAST_RATE 0 3589 3590 static int mwl8k_cmd_use_fixed_rate_sta(struct ieee80211_hw *hw) 3591 { 3592 struct mwl8k_cmd_use_fixed_rate_sta *cmd; 3593 int rc; 3594 3595 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3596 if (cmd == NULL) 3597 return -ENOMEM; 3598 3599 cmd->header.code = cpu_to_le16(MWL8K_CMD_USE_FIXED_RATE); 3600 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3601 cmd->action = cpu_to_le32(MWL8K_USE_AUTO_RATE); 3602 cmd->rate_type = cpu_to_le32(MWL8K_UCAST_RATE); 3603 3604 rc = mwl8k_post_cmd(hw, &cmd->header); 3605 kfree(cmd); 3606 3607 return rc; 3608 } 3609 3610 /* 3611 * CMD_USE_FIXED_RATE (AP version). 3612 */ 3613 struct mwl8k_cmd_use_fixed_rate_ap { 3614 struct mwl8k_cmd_pkt_hdr header; 3615 __le32 action; 3616 __le32 allow_rate_drop; 3617 __le32 num_rates; 3618 struct mwl8k_rate_entry_ap { 3619 __le32 is_ht_rate; 3620 __le32 enable_retry; 3621 __le32 rate; 3622 __le32 retry_count; 3623 } rate_entry[4]; 3624 u8 multicast_rate; 3625 u8 multicast_rate_type; 3626 u8 management_rate; 3627 } __packed; 3628 3629 static int 3630 mwl8k_cmd_use_fixed_rate_ap(struct ieee80211_hw *hw, int mcast, int mgmt) 3631 { 3632 struct mwl8k_cmd_use_fixed_rate_ap *cmd; 3633 int rc; 3634 3635 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3636 if (cmd == NULL) 3637 return -ENOMEM; 3638 3639 cmd->header.code = cpu_to_le16(MWL8K_CMD_USE_FIXED_RATE); 3640 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3641 cmd->action = cpu_to_le32(MWL8K_USE_AUTO_RATE); 3642 cmd->multicast_rate = mcast; 3643 cmd->management_rate = mgmt; 3644 3645 rc = mwl8k_post_cmd(hw, &cmd->header); 3646 kfree(cmd); 3647 3648 return rc; 3649 } 3650 3651 /* 3652 * CMD_ENABLE_SNIFFER. 3653 */ 3654 struct mwl8k_cmd_enable_sniffer { 3655 struct mwl8k_cmd_pkt_hdr header; 3656 __le32 action; 3657 } __packed; 3658 3659 static int mwl8k_cmd_enable_sniffer(struct ieee80211_hw *hw, bool enable) 3660 { 3661 struct mwl8k_cmd_enable_sniffer *cmd; 3662 int rc; 3663 3664 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3665 if (cmd == NULL) 3666 return -ENOMEM; 3667 3668 cmd->header.code = cpu_to_le16(MWL8K_CMD_ENABLE_SNIFFER); 3669 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3670 cmd->action = cpu_to_le32(!!enable); 3671 3672 rc = mwl8k_post_cmd(hw, &cmd->header); 3673 kfree(cmd); 3674 3675 return rc; 3676 } 3677 3678 struct mwl8k_cmd_update_mac_addr { 3679 struct mwl8k_cmd_pkt_hdr header; 3680 union { 3681 struct { 3682 __le16 mac_type; 3683 __u8 mac_addr[ETH_ALEN]; 3684 } mbss; 3685 __u8 mac_addr[ETH_ALEN]; 3686 }; 3687 } __packed; 3688 3689 #define MWL8K_MAC_TYPE_PRIMARY_CLIENT 0 3690 #define MWL8K_MAC_TYPE_SECONDARY_CLIENT 1 3691 #define MWL8K_MAC_TYPE_PRIMARY_AP 2 3692 #define MWL8K_MAC_TYPE_SECONDARY_AP 3 3693 3694 static int mwl8k_cmd_update_mac_addr(struct ieee80211_hw *hw, 3695 struct ieee80211_vif *vif, u8 *mac, bool set) 3696 { 3697 struct mwl8k_priv *priv = hw->priv; 3698 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 3699 struct mwl8k_cmd_update_mac_addr *cmd; 3700 int mac_type; 3701 int rc; 3702 3703 mac_type = MWL8K_MAC_TYPE_PRIMARY_AP; 3704 if (vif != NULL && vif->type == NL80211_IFTYPE_STATION) { 3705 if (mwl8k_vif->macid + 1 == ffs(priv->sta_macids_supported)) 3706 if (priv->ap_fw) 3707 mac_type = MWL8K_MAC_TYPE_SECONDARY_CLIENT; 3708 else 3709 mac_type = MWL8K_MAC_TYPE_PRIMARY_CLIENT; 3710 else 3711 mac_type = MWL8K_MAC_TYPE_SECONDARY_CLIENT; 3712 } else if (vif != NULL && vif->type == NL80211_IFTYPE_AP) { 3713 if (mwl8k_vif->macid + 1 == ffs(priv->ap_macids_supported)) 3714 mac_type = MWL8K_MAC_TYPE_PRIMARY_AP; 3715 else 3716 mac_type = MWL8K_MAC_TYPE_SECONDARY_AP; 3717 } 3718 3719 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3720 if (cmd == NULL) 3721 return -ENOMEM; 3722 3723 if (set) 3724 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_MAC_ADDR); 3725 else 3726 cmd->header.code = cpu_to_le16(MWL8K_CMD_DEL_MAC_ADDR); 3727 3728 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3729 if (priv->ap_fw) { 3730 cmd->mbss.mac_type = cpu_to_le16(mac_type); 3731 memcpy(cmd->mbss.mac_addr, mac, ETH_ALEN); 3732 } else { 3733 memcpy(cmd->mac_addr, mac, ETH_ALEN); 3734 } 3735 3736 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 3737 kfree(cmd); 3738 3739 return rc; 3740 } 3741 3742 /* 3743 * MWL8K_CMD_SET_MAC_ADDR. 3744 */ 3745 static inline int mwl8k_cmd_set_mac_addr(struct ieee80211_hw *hw, 3746 struct ieee80211_vif *vif, u8 *mac) 3747 { 3748 return mwl8k_cmd_update_mac_addr(hw, vif, mac, true); 3749 } 3750 3751 /* 3752 * MWL8K_CMD_DEL_MAC_ADDR. 3753 */ 3754 static inline int mwl8k_cmd_del_mac_addr(struct ieee80211_hw *hw, 3755 struct ieee80211_vif *vif, u8 *mac) 3756 { 3757 return mwl8k_cmd_update_mac_addr(hw, vif, mac, false); 3758 } 3759 3760 /* 3761 * CMD_SET_RATEADAPT_MODE. 3762 */ 3763 struct mwl8k_cmd_set_rate_adapt_mode { 3764 struct mwl8k_cmd_pkt_hdr header; 3765 __le16 action; 3766 __le16 mode; 3767 } __packed; 3768 3769 static int mwl8k_cmd_set_rateadapt_mode(struct ieee80211_hw *hw, __u16 mode) 3770 { 3771 struct mwl8k_cmd_set_rate_adapt_mode *cmd; 3772 int rc; 3773 3774 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3775 if (cmd == NULL) 3776 return -ENOMEM; 3777 3778 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_RATEADAPT_MODE); 3779 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3780 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 3781 cmd->mode = cpu_to_le16(mode); 3782 3783 rc = mwl8k_post_cmd(hw, &cmd->header); 3784 kfree(cmd); 3785 3786 return rc; 3787 } 3788 3789 /* 3790 * CMD_GET_WATCHDOG_BITMAP. 3791 */ 3792 struct mwl8k_cmd_get_watchdog_bitmap { 3793 struct mwl8k_cmd_pkt_hdr header; 3794 u8 bitmap; 3795 } __packed; 3796 3797 static int mwl8k_cmd_get_watchdog_bitmap(struct ieee80211_hw *hw, u8 *bitmap) 3798 { 3799 struct mwl8k_cmd_get_watchdog_bitmap *cmd; 3800 int rc; 3801 3802 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3803 if (cmd == NULL) 3804 return -ENOMEM; 3805 3806 cmd->header.code = cpu_to_le16(MWL8K_CMD_GET_WATCHDOG_BITMAP); 3807 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3808 3809 rc = mwl8k_post_cmd(hw, &cmd->header); 3810 if (!rc) 3811 *bitmap = cmd->bitmap; 3812 3813 kfree(cmd); 3814 3815 return rc; 3816 } 3817 3818 #define MWL8K_WMM_QUEUE_NUMBER 3 3819 3820 static void mwl8k_destroy_ba(struct ieee80211_hw *hw, 3821 u8 idx); 3822 3823 static void mwl8k_watchdog_ba_events(struct work_struct *work) 3824 { 3825 int rc; 3826 u8 bitmap = 0, stream_index; 3827 struct mwl8k_ampdu_stream *streams; 3828 struct mwl8k_priv *priv = 3829 container_of(work, struct mwl8k_priv, watchdog_ba_handle); 3830 struct ieee80211_hw *hw = priv->hw; 3831 int i; 3832 u32 status = 0; 3833 3834 mwl8k_fw_lock(hw); 3835 3836 rc = mwl8k_cmd_get_watchdog_bitmap(priv->hw, &bitmap); 3837 if (rc) 3838 goto done; 3839 3840 spin_lock(&priv->stream_lock); 3841 3842 /* the bitmap is the hw queue number. Map it to the ampdu queue. */ 3843 for (i = 0; i < TOTAL_HW_TX_QUEUES; i++) { 3844 if (bitmap & (1 << i)) { 3845 stream_index = (i + MWL8K_WMM_QUEUE_NUMBER) % 3846 TOTAL_HW_TX_QUEUES; 3847 streams = &priv->ampdu[stream_index]; 3848 if (streams->state == AMPDU_STREAM_ACTIVE) { 3849 ieee80211_stop_tx_ba_session(streams->sta, 3850 streams->tid); 3851 spin_unlock(&priv->stream_lock); 3852 mwl8k_destroy_ba(hw, stream_index); 3853 spin_lock(&priv->stream_lock); 3854 } 3855 } 3856 } 3857 3858 spin_unlock(&priv->stream_lock); 3859 done: 3860 atomic_dec(&priv->watchdog_event_pending); 3861 status = ioread32(priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK); 3862 iowrite32((status | MWL8K_A2H_INT_BA_WATCHDOG), 3863 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK); 3864 mwl8k_fw_unlock(hw); 3865 return; 3866 } 3867 3868 3869 /* 3870 * CMD_BSS_START. 3871 */ 3872 struct mwl8k_cmd_bss_start { 3873 struct mwl8k_cmd_pkt_hdr header; 3874 __le32 enable; 3875 } __packed; 3876 3877 static int mwl8k_cmd_bss_start(struct ieee80211_hw *hw, 3878 struct ieee80211_vif *vif, int enable) 3879 { 3880 struct mwl8k_cmd_bss_start *cmd; 3881 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 3882 struct mwl8k_priv *priv = hw->priv; 3883 int rc; 3884 3885 if (enable && (priv->running_bsses & (1 << mwl8k_vif->macid))) 3886 return 0; 3887 3888 if (!enable && !(priv->running_bsses & (1 << mwl8k_vif->macid))) 3889 return 0; 3890 3891 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3892 if (cmd == NULL) 3893 return -ENOMEM; 3894 3895 cmd->header.code = cpu_to_le16(MWL8K_CMD_BSS_START); 3896 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3897 cmd->enable = cpu_to_le32(enable); 3898 3899 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 3900 kfree(cmd); 3901 3902 if (!rc) { 3903 if (enable) 3904 priv->running_bsses |= (1 << mwl8k_vif->macid); 3905 else 3906 priv->running_bsses &= ~(1 << mwl8k_vif->macid); 3907 } 3908 return rc; 3909 } 3910 3911 static void mwl8k_enable_bsses(struct ieee80211_hw *hw, bool enable, u32 bitmap) 3912 { 3913 struct mwl8k_priv *priv = hw->priv; 3914 struct mwl8k_vif *mwl8k_vif, *tmp_vif; 3915 struct ieee80211_vif *vif; 3916 3917 list_for_each_entry_safe(mwl8k_vif, tmp_vif, &priv->vif_list, list) { 3918 vif = mwl8k_vif->vif; 3919 3920 if (!(bitmap & (1 << mwl8k_vif->macid))) 3921 continue; 3922 3923 if (vif->type == NL80211_IFTYPE_AP) 3924 mwl8k_cmd_bss_start(hw, vif, enable); 3925 } 3926 } 3927 /* 3928 * CMD_BASTREAM. 3929 */ 3930 3931 /* 3932 * UPSTREAM is tx direction 3933 */ 3934 #define BASTREAM_FLAG_DIRECTION_UPSTREAM 0x00 3935 #define BASTREAM_FLAG_IMMEDIATE_TYPE 0x01 3936 3937 enum ba_stream_action_type { 3938 MWL8K_BA_CREATE, 3939 MWL8K_BA_UPDATE, 3940 MWL8K_BA_DESTROY, 3941 MWL8K_BA_FLUSH, 3942 MWL8K_BA_CHECK, 3943 }; 3944 3945 3946 struct mwl8k_create_ba_stream { 3947 __le32 flags; 3948 __le32 idle_thrs; 3949 __le32 bar_thrs; 3950 __le32 window_size; 3951 u8 peer_mac_addr[6]; 3952 u8 dialog_token; 3953 u8 tid; 3954 u8 queue_id; 3955 u8 param_info; 3956 __le32 ba_context; 3957 u8 reset_seq_no_flag; 3958 __le16 curr_seq_no; 3959 u8 sta_src_mac_addr[6]; 3960 } __packed; 3961 3962 struct mwl8k_destroy_ba_stream { 3963 __le32 flags; 3964 __le32 ba_context; 3965 } __packed; 3966 3967 struct mwl8k_cmd_bastream { 3968 struct mwl8k_cmd_pkt_hdr header; 3969 __le32 action; 3970 union { 3971 struct mwl8k_create_ba_stream create_params; 3972 struct mwl8k_destroy_ba_stream destroy_params; 3973 }; 3974 } __packed; 3975 3976 static int 3977 mwl8k_check_ba(struct ieee80211_hw *hw, struct mwl8k_ampdu_stream *stream, 3978 struct ieee80211_vif *vif) 3979 { 3980 struct mwl8k_cmd_bastream *cmd; 3981 int rc; 3982 3983 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3984 if (cmd == NULL) 3985 return -ENOMEM; 3986 3987 cmd->header.code = cpu_to_le16(MWL8K_CMD_BASTREAM); 3988 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3989 3990 cmd->action = cpu_to_le32(MWL8K_BA_CHECK); 3991 3992 cmd->create_params.queue_id = stream->idx; 3993 memcpy(&cmd->create_params.peer_mac_addr[0], stream->sta->addr, 3994 ETH_ALEN); 3995 cmd->create_params.tid = stream->tid; 3996 3997 cmd->create_params.flags = 3998 cpu_to_le32(BASTREAM_FLAG_IMMEDIATE_TYPE) | 3999 cpu_to_le32(BASTREAM_FLAG_DIRECTION_UPSTREAM); 4000 4001 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4002 4003 kfree(cmd); 4004 4005 return rc; 4006 } 4007 4008 static int 4009 mwl8k_create_ba(struct ieee80211_hw *hw, struct mwl8k_ampdu_stream *stream, 4010 u8 buf_size, struct ieee80211_vif *vif) 4011 { 4012 struct mwl8k_cmd_bastream *cmd; 4013 int rc; 4014 4015 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4016 if (cmd == NULL) 4017 return -ENOMEM; 4018 4019 4020 cmd->header.code = cpu_to_le16(MWL8K_CMD_BASTREAM); 4021 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4022 4023 cmd->action = cpu_to_le32(MWL8K_BA_CREATE); 4024 4025 cmd->create_params.bar_thrs = cpu_to_le32((u32)buf_size); 4026 cmd->create_params.window_size = cpu_to_le32((u32)buf_size); 4027 cmd->create_params.queue_id = stream->idx; 4028 4029 memcpy(cmd->create_params.peer_mac_addr, stream->sta->addr, ETH_ALEN); 4030 cmd->create_params.tid = stream->tid; 4031 cmd->create_params.curr_seq_no = cpu_to_le16(0); 4032 cmd->create_params.reset_seq_no_flag = 1; 4033 4034 cmd->create_params.param_info = 4035 (stream->sta->deflink.ht_cap.ampdu_factor & 4036 IEEE80211_HT_AMPDU_PARM_FACTOR) | 4037 ((stream->sta->deflink.ht_cap.ampdu_density << 2) & 4038 IEEE80211_HT_AMPDU_PARM_DENSITY); 4039 4040 cmd->create_params.flags = 4041 cpu_to_le32(BASTREAM_FLAG_IMMEDIATE_TYPE | 4042 BASTREAM_FLAG_DIRECTION_UPSTREAM); 4043 4044 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4045 4046 wiphy_debug(hw->wiphy, "Created a BA stream for %pM : tid %d\n", 4047 stream->sta->addr, stream->tid); 4048 kfree(cmd); 4049 4050 return rc; 4051 } 4052 4053 static void mwl8k_destroy_ba(struct ieee80211_hw *hw, 4054 u8 idx) 4055 { 4056 struct mwl8k_cmd_bastream *cmd; 4057 4058 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4059 if (cmd == NULL) 4060 return; 4061 4062 cmd->header.code = cpu_to_le16(MWL8K_CMD_BASTREAM); 4063 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4064 cmd->action = cpu_to_le32(MWL8K_BA_DESTROY); 4065 4066 cmd->destroy_params.ba_context = cpu_to_le32(idx); 4067 mwl8k_post_cmd(hw, &cmd->header); 4068 4069 wiphy_debug(hw->wiphy, "Deleted BA stream index %d\n", idx); 4070 4071 kfree(cmd); 4072 } 4073 4074 /* 4075 * CMD_SET_NEW_STN. 4076 */ 4077 struct mwl8k_cmd_set_new_stn { 4078 struct mwl8k_cmd_pkt_hdr header; 4079 __le16 aid; 4080 __u8 mac_addr[6]; 4081 __le16 stn_id; 4082 __le16 action; 4083 __le16 rsvd; 4084 __le32 legacy_rates; 4085 __u8 ht_rates[4]; 4086 __le16 cap_info; 4087 __le16 ht_capabilities_info; 4088 __u8 mac_ht_param_info; 4089 __u8 rev; 4090 __u8 control_channel; 4091 __u8 add_channel; 4092 __le16 op_mode; 4093 __le16 stbc; 4094 __u8 add_qos_info; 4095 __u8 is_qos_sta; 4096 __le32 fw_sta_ptr; 4097 } __packed; 4098 4099 #define MWL8K_STA_ACTION_ADD 0 4100 #define MWL8K_STA_ACTION_REMOVE 2 4101 4102 static int mwl8k_cmd_set_new_stn_add(struct ieee80211_hw *hw, 4103 struct ieee80211_vif *vif, 4104 struct ieee80211_sta *sta) 4105 { 4106 struct mwl8k_cmd_set_new_stn *cmd; 4107 u32 rates; 4108 int rc; 4109 4110 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4111 if (cmd == NULL) 4112 return -ENOMEM; 4113 4114 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_NEW_STN); 4115 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4116 cmd->aid = cpu_to_le16(sta->aid); 4117 memcpy(cmd->mac_addr, sta->addr, ETH_ALEN); 4118 cmd->stn_id = cpu_to_le16(sta->aid); 4119 cmd->action = cpu_to_le16(MWL8K_STA_ACTION_ADD); 4120 if (hw->conf.chandef.chan->band == NL80211_BAND_2GHZ) 4121 rates = sta->deflink.supp_rates[NL80211_BAND_2GHZ]; 4122 else 4123 rates = sta->deflink.supp_rates[NL80211_BAND_5GHZ] << 5; 4124 cmd->legacy_rates = cpu_to_le32(rates); 4125 if (sta->deflink.ht_cap.ht_supported) { 4126 cmd->ht_rates[0] = sta->deflink.ht_cap.mcs.rx_mask[0]; 4127 cmd->ht_rates[1] = sta->deflink.ht_cap.mcs.rx_mask[1]; 4128 cmd->ht_rates[2] = sta->deflink.ht_cap.mcs.rx_mask[2]; 4129 cmd->ht_rates[3] = sta->deflink.ht_cap.mcs.rx_mask[3]; 4130 cmd->ht_capabilities_info = cpu_to_le16(sta->deflink.ht_cap.cap); 4131 cmd->mac_ht_param_info = (sta->deflink.ht_cap.ampdu_factor & 3) | 4132 ((sta->deflink.ht_cap.ampdu_density & 7) << 2); 4133 cmd->is_qos_sta = 1; 4134 } 4135 4136 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4137 kfree(cmd); 4138 4139 return rc; 4140 } 4141 4142 static int mwl8k_cmd_set_new_stn_add_self(struct ieee80211_hw *hw, 4143 struct ieee80211_vif *vif) 4144 { 4145 struct mwl8k_cmd_set_new_stn *cmd; 4146 int rc; 4147 4148 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4149 if (cmd == NULL) 4150 return -ENOMEM; 4151 4152 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_NEW_STN); 4153 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4154 memcpy(cmd->mac_addr, vif->addr, ETH_ALEN); 4155 4156 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4157 kfree(cmd); 4158 4159 return rc; 4160 } 4161 4162 static int mwl8k_cmd_set_new_stn_del(struct ieee80211_hw *hw, 4163 struct ieee80211_vif *vif, u8 *addr) 4164 { 4165 struct mwl8k_cmd_set_new_stn *cmd; 4166 struct mwl8k_priv *priv = hw->priv; 4167 int rc, i; 4168 u8 idx; 4169 4170 spin_lock(&priv->stream_lock); 4171 /* Destroy any active ampdu streams for this sta */ 4172 for (i = 0; i < MWL8K_NUM_AMPDU_STREAMS; i++) { 4173 struct mwl8k_ampdu_stream *s; 4174 s = &priv->ampdu[i]; 4175 if (s->state != AMPDU_NO_STREAM) { 4176 if (memcmp(s->sta->addr, addr, ETH_ALEN) == 0) { 4177 if (s->state == AMPDU_STREAM_ACTIVE) { 4178 idx = s->idx; 4179 spin_unlock(&priv->stream_lock); 4180 mwl8k_destroy_ba(hw, idx); 4181 spin_lock(&priv->stream_lock); 4182 } else if (s->state == AMPDU_STREAM_NEW) { 4183 mwl8k_remove_stream(hw, s); 4184 } 4185 } 4186 } 4187 } 4188 4189 spin_unlock(&priv->stream_lock); 4190 4191 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4192 if (cmd == NULL) 4193 return -ENOMEM; 4194 4195 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_NEW_STN); 4196 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4197 memcpy(cmd->mac_addr, addr, ETH_ALEN); 4198 cmd->action = cpu_to_le16(MWL8K_STA_ACTION_REMOVE); 4199 4200 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4201 kfree(cmd); 4202 4203 return rc; 4204 } 4205 4206 /* 4207 * CMD_UPDATE_ENCRYPTION. 4208 */ 4209 4210 #define MAX_ENCR_KEY_LENGTH 16 4211 #define MIC_KEY_LENGTH 8 4212 4213 struct mwl8k_cmd_update_encryption { 4214 struct mwl8k_cmd_pkt_hdr header; 4215 4216 __le32 action; 4217 __le32 reserved; 4218 __u8 mac_addr[6]; 4219 __u8 encr_type; 4220 4221 } __packed; 4222 4223 struct mwl8k_cmd_set_key { 4224 struct mwl8k_cmd_pkt_hdr header; 4225 4226 __le32 action; 4227 __le32 reserved; 4228 __le16 length; 4229 __le16 key_type_id; 4230 __le32 key_info; 4231 __le32 key_id; 4232 __le16 key_len; 4233 struct { 4234 __u8 key_material[MAX_ENCR_KEY_LENGTH]; 4235 __u8 tkip_tx_mic_key[MIC_KEY_LENGTH]; 4236 __u8 tkip_rx_mic_key[MIC_KEY_LENGTH]; 4237 } tkip; 4238 __le16 tkip_rsc_low; 4239 __le32 tkip_rsc_high; 4240 __le16 tkip_tsc_low; 4241 __le32 tkip_tsc_high; 4242 __u8 mac_addr[6]; 4243 } __packed; 4244 4245 enum { 4246 MWL8K_ENCR_ENABLE, 4247 MWL8K_ENCR_SET_KEY, 4248 MWL8K_ENCR_REMOVE_KEY, 4249 MWL8K_ENCR_SET_GROUP_KEY, 4250 }; 4251 4252 #define MWL8K_UPDATE_ENCRYPTION_TYPE_WEP 0 4253 #define MWL8K_UPDATE_ENCRYPTION_TYPE_DISABLE 1 4254 #define MWL8K_UPDATE_ENCRYPTION_TYPE_TKIP 4 4255 #define MWL8K_UPDATE_ENCRYPTION_TYPE_MIXED 7 4256 #define MWL8K_UPDATE_ENCRYPTION_TYPE_AES 8 4257 4258 enum { 4259 MWL8K_ALG_WEP, 4260 MWL8K_ALG_TKIP, 4261 MWL8K_ALG_CCMP, 4262 }; 4263 4264 #define MWL8K_KEY_FLAG_TXGROUPKEY 0x00000004 4265 #define MWL8K_KEY_FLAG_PAIRWISE 0x00000008 4266 #define MWL8K_KEY_FLAG_TSC_VALID 0x00000040 4267 #define MWL8K_KEY_FLAG_WEP_TXKEY 0x01000000 4268 #define MWL8K_KEY_FLAG_MICKEY_VALID 0x02000000 4269 4270 static int mwl8k_cmd_update_encryption_enable(struct ieee80211_hw *hw, 4271 struct ieee80211_vif *vif, 4272 u8 *addr, 4273 u8 encr_type) 4274 { 4275 struct mwl8k_cmd_update_encryption *cmd; 4276 int rc; 4277 4278 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4279 if (cmd == NULL) 4280 return -ENOMEM; 4281 4282 cmd->header.code = cpu_to_le16(MWL8K_CMD_UPDATE_ENCRYPTION); 4283 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4284 cmd->action = cpu_to_le32(MWL8K_ENCR_ENABLE); 4285 memcpy(cmd->mac_addr, addr, ETH_ALEN); 4286 cmd->encr_type = encr_type; 4287 4288 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4289 kfree(cmd); 4290 4291 return rc; 4292 } 4293 4294 static int mwl8k_encryption_set_cmd_info(struct mwl8k_cmd_set_key *cmd, 4295 u8 *addr, 4296 struct ieee80211_key_conf *key) 4297 { 4298 cmd->header.code = cpu_to_le16(MWL8K_CMD_UPDATE_ENCRYPTION); 4299 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4300 cmd->length = cpu_to_le16(sizeof(*cmd) - 4301 offsetof(struct mwl8k_cmd_set_key, length)); 4302 cmd->key_id = cpu_to_le32(key->keyidx); 4303 cmd->key_len = cpu_to_le16(key->keylen); 4304 memcpy(cmd->mac_addr, addr, ETH_ALEN); 4305 4306 switch (key->cipher) { 4307 case WLAN_CIPHER_SUITE_WEP40: 4308 case WLAN_CIPHER_SUITE_WEP104: 4309 cmd->key_type_id = cpu_to_le16(MWL8K_ALG_WEP); 4310 if (key->keyidx == 0) 4311 cmd->key_info = cpu_to_le32(MWL8K_KEY_FLAG_WEP_TXKEY); 4312 4313 break; 4314 case WLAN_CIPHER_SUITE_TKIP: 4315 cmd->key_type_id = cpu_to_le16(MWL8K_ALG_TKIP); 4316 cmd->key_info = (key->flags & IEEE80211_KEY_FLAG_PAIRWISE) 4317 ? cpu_to_le32(MWL8K_KEY_FLAG_PAIRWISE) 4318 : cpu_to_le32(MWL8K_KEY_FLAG_TXGROUPKEY); 4319 cmd->key_info |= cpu_to_le32(MWL8K_KEY_FLAG_MICKEY_VALID 4320 | MWL8K_KEY_FLAG_TSC_VALID); 4321 break; 4322 case WLAN_CIPHER_SUITE_CCMP: 4323 cmd->key_type_id = cpu_to_le16(MWL8K_ALG_CCMP); 4324 cmd->key_info = (key->flags & IEEE80211_KEY_FLAG_PAIRWISE) 4325 ? cpu_to_le32(MWL8K_KEY_FLAG_PAIRWISE) 4326 : cpu_to_le32(MWL8K_KEY_FLAG_TXGROUPKEY); 4327 break; 4328 default: 4329 return -ENOTSUPP; 4330 } 4331 4332 return 0; 4333 } 4334 4335 static int mwl8k_cmd_encryption_set_key(struct ieee80211_hw *hw, 4336 struct ieee80211_vif *vif, 4337 u8 *addr, 4338 struct ieee80211_key_conf *key) 4339 { 4340 struct mwl8k_cmd_set_key *cmd; 4341 int rc; 4342 int keymlen; 4343 u32 action; 4344 u8 idx; 4345 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 4346 4347 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4348 if (cmd == NULL) 4349 return -ENOMEM; 4350 4351 rc = mwl8k_encryption_set_cmd_info(cmd, addr, key); 4352 if (rc < 0) 4353 goto done; 4354 4355 idx = key->keyidx; 4356 4357 if (key->flags & IEEE80211_KEY_FLAG_PAIRWISE) 4358 action = MWL8K_ENCR_SET_KEY; 4359 else 4360 action = MWL8K_ENCR_SET_GROUP_KEY; 4361 4362 switch (key->cipher) { 4363 case WLAN_CIPHER_SUITE_WEP40: 4364 case WLAN_CIPHER_SUITE_WEP104: 4365 if (!mwl8k_vif->wep_key_conf[idx].enabled) { 4366 memcpy(mwl8k_vif->wep_key_conf[idx].key, key, 4367 sizeof(*key) + key->keylen); 4368 mwl8k_vif->wep_key_conf[idx].enabled = 1; 4369 } 4370 4371 keymlen = key->keylen; 4372 action = MWL8K_ENCR_SET_KEY; 4373 break; 4374 case WLAN_CIPHER_SUITE_TKIP: 4375 keymlen = MAX_ENCR_KEY_LENGTH + 2 * MIC_KEY_LENGTH; 4376 break; 4377 case WLAN_CIPHER_SUITE_CCMP: 4378 keymlen = key->keylen; 4379 break; 4380 default: 4381 rc = -ENOTSUPP; 4382 goto done; 4383 } 4384 4385 memcpy(&cmd->tkip, key->key, keymlen); 4386 cmd->action = cpu_to_le32(action); 4387 4388 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4389 done: 4390 kfree(cmd); 4391 4392 return rc; 4393 } 4394 4395 static int mwl8k_cmd_encryption_remove_key(struct ieee80211_hw *hw, 4396 struct ieee80211_vif *vif, 4397 u8 *addr, 4398 struct ieee80211_key_conf *key) 4399 { 4400 struct mwl8k_cmd_set_key *cmd; 4401 int rc; 4402 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 4403 4404 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4405 if (cmd == NULL) 4406 return -ENOMEM; 4407 4408 rc = mwl8k_encryption_set_cmd_info(cmd, addr, key); 4409 if (rc < 0) 4410 goto done; 4411 4412 if (key->cipher == WLAN_CIPHER_SUITE_WEP40 || 4413 key->cipher == WLAN_CIPHER_SUITE_WEP104) 4414 mwl8k_vif->wep_key_conf[key->keyidx].enabled = 0; 4415 4416 cmd->action = cpu_to_le32(MWL8K_ENCR_REMOVE_KEY); 4417 4418 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4419 done: 4420 kfree(cmd); 4421 4422 return rc; 4423 } 4424 4425 static int mwl8k_set_key(struct ieee80211_hw *hw, 4426 enum set_key_cmd cmd_param, 4427 struct ieee80211_vif *vif, 4428 struct ieee80211_sta *sta, 4429 struct ieee80211_key_conf *key) 4430 { 4431 int rc = 0; 4432 u8 encr_type; 4433 u8 *addr; 4434 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 4435 struct mwl8k_priv *priv = hw->priv; 4436 4437 if (vif->type == NL80211_IFTYPE_STATION && !priv->ap_fw) 4438 return -EOPNOTSUPP; 4439 4440 if (sta == NULL) 4441 addr = vif->addr; 4442 else 4443 addr = sta->addr; 4444 4445 if (cmd_param == SET_KEY) { 4446 rc = mwl8k_cmd_encryption_set_key(hw, vif, addr, key); 4447 if (rc) 4448 goto out; 4449 4450 if ((key->cipher == WLAN_CIPHER_SUITE_WEP40) 4451 || (key->cipher == WLAN_CIPHER_SUITE_WEP104)) 4452 encr_type = MWL8K_UPDATE_ENCRYPTION_TYPE_WEP; 4453 else 4454 encr_type = MWL8K_UPDATE_ENCRYPTION_TYPE_MIXED; 4455 4456 rc = mwl8k_cmd_update_encryption_enable(hw, vif, addr, 4457 encr_type); 4458 if (rc) 4459 goto out; 4460 4461 mwl8k_vif->is_hw_crypto_enabled = true; 4462 4463 } else { 4464 rc = mwl8k_cmd_encryption_remove_key(hw, vif, addr, key); 4465 4466 if (rc) 4467 goto out; 4468 } 4469 out: 4470 return rc; 4471 } 4472 4473 /* 4474 * CMD_UPDATE_STADB. 4475 */ 4476 struct ewc_ht_info { 4477 __le16 control1; 4478 __le16 control2; 4479 __le16 control3; 4480 } __packed; 4481 4482 struct peer_capability_info { 4483 /* Peer type - AP vs. STA. */ 4484 __u8 peer_type; 4485 4486 /* Basic 802.11 capabilities from assoc resp. */ 4487 __le16 basic_caps; 4488 4489 /* Set if peer supports 802.11n high throughput (HT). */ 4490 __u8 ht_support; 4491 4492 /* Valid if HT is supported. */ 4493 __le16 ht_caps; 4494 __u8 extended_ht_caps; 4495 struct ewc_ht_info ewc_info; 4496 4497 /* Legacy rate table. Intersection of our rates and peer rates. */ 4498 __u8 legacy_rates[12]; 4499 4500 /* HT rate table. Intersection of our rates and peer rates. */ 4501 __u8 ht_rates[16]; 4502 __u8 pad[16]; 4503 4504 /* If set, interoperability mode, no proprietary extensions. */ 4505 __u8 interop; 4506 __u8 pad2; 4507 __u8 station_id; 4508 __le16 amsdu_enabled; 4509 } __packed; 4510 4511 struct mwl8k_cmd_update_stadb { 4512 struct mwl8k_cmd_pkt_hdr header; 4513 4514 /* See STADB_ACTION_TYPE */ 4515 __le32 action; 4516 4517 /* Peer MAC address */ 4518 __u8 peer_addr[ETH_ALEN]; 4519 4520 __le32 reserved; 4521 4522 /* Peer info - valid during add/update. */ 4523 struct peer_capability_info peer_info; 4524 } __packed; 4525 4526 #define MWL8K_STA_DB_MODIFY_ENTRY 1 4527 #define MWL8K_STA_DB_DEL_ENTRY 2 4528 4529 /* Peer Entry flags - used to define the type of the peer node */ 4530 #define MWL8K_PEER_TYPE_ACCESSPOINT 2 4531 4532 static int mwl8k_cmd_update_stadb_add(struct ieee80211_hw *hw, 4533 struct ieee80211_vif *vif, 4534 struct ieee80211_sta *sta) 4535 { 4536 struct mwl8k_cmd_update_stadb *cmd; 4537 struct peer_capability_info *p; 4538 u32 rates; 4539 int rc; 4540 4541 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4542 if (cmd == NULL) 4543 return -ENOMEM; 4544 4545 cmd->header.code = cpu_to_le16(MWL8K_CMD_UPDATE_STADB); 4546 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4547 cmd->action = cpu_to_le32(MWL8K_STA_DB_MODIFY_ENTRY); 4548 memcpy(cmd->peer_addr, sta->addr, ETH_ALEN); 4549 4550 p = &cmd->peer_info; 4551 p->peer_type = MWL8K_PEER_TYPE_ACCESSPOINT; 4552 p->basic_caps = cpu_to_le16(vif->bss_conf.assoc_capability); 4553 p->ht_support = sta->deflink.ht_cap.ht_supported; 4554 p->ht_caps = cpu_to_le16(sta->deflink.ht_cap.cap); 4555 p->extended_ht_caps = (sta->deflink.ht_cap.ampdu_factor & 3) | 4556 ((sta->deflink.ht_cap.ampdu_density & 7) << 2); 4557 if (hw->conf.chandef.chan->band == NL80211_BAND_2GHZ) 4558 rates = sta->deflink.supp_rates[NL80211_BAND_2GHZ]; 4559 else 4560 rates = sta->deflink.supp_rates[NL80211_BAND_5GHZ] << 5; 4561 legacy_rate_mask_to_array(p->legacy_rates, rates); 4562 memcpy(p->ht_rates, &sta->deflink.ht_cap.mcs, 16); 4563 p->interop = 1; 4564 p->amsdu_enabled = 0; 4565 4566 rc = mwl8k_post_cmd(hw, &cmd->header); 4567 if (!rc) 4568 rc = p->station_id; 4569 kfree(cmd); 4570 4571 return rc; 4572 } 4573 4574 static int mwl8k_cmd_update_stadb_del(struct ieee80211_hw *hw, 4575 struct ieee80211_vif *vif, u8 *addr) 4576 { 4577 struct mwl8k_cmd_update_stadb *cmd; 4578 int rc; 4579 4580 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4581 if (cmd == NULL) 4582 return -ENOMEM; 4583 4584 cmd->header.code = cpu_to_le16(MWL8K_CMD_UPDATE_STADB); 4585 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4586 cmd->action = cpu_to_le32(MWL8K_STA_DB_DEL_ENTRY); 4587 memcpy(cmd->peer_addr, addr, ETH_ALEN); 4588 4589 rc = mwl8k_post_cmd(hw, &cmd->header); 4590 kfree(cmd); 4591 4592 return rc; 4593 } 4594 4595 4596 /* 4597 * Interrupt handling. 4598 */ 4599 static irqreturn_t mwl8k_interrupt(int irq, void *dev_id) 4600 { 4601 struct ieee80211_hw *hw = dev_id; 4602 struct mwl8k_priv *priv = hw->priv; 4603 u32 status; 4604 4605 status = ioread32(priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 4606 if (!status) 4607 return IRQ_NONE; 4608 4609 if (status & MWL8K_A2H_INT_TX_DONE) { 4610 status &= ~MWL8K_A2H_INT_TX_DONE; 4611 tasklet_schedule(&priv->poll_tx_task); 4612 } 4613 4614 if (status & MWL8K_A2H_INT_RX_READY) { 4615 status &= ~MWL8K_A2H_INT_RX_READY; 4616 tasklet_schedule(&priv->poll_rx_task); 4617 } 4618 4619 if (status & MWL8K_A2H_INT_BA_WATCHDOG) { 4620 iowrite32(~MWL8K_A2H_INT_BA_WATCHDOG, 4621 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK); 4622 4623 atomic_inc(&priv->watchdog_event_pending); 4624 status &= ~MWL8K_A2H_INT_BA_WATCHDOG; 4625 ieee80211_queue_work(hw, &priv->watchdog_ba_handle); 4626 } 4627 4628 if (status) 4629 iowrite32(~status, priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 4630 4631 if (status & MWL8K_A2H_INT_OPC_DONE) { 4632 if (priv->hostcmd_wait != NULL) 4633 complete(priv->hostcmd_wait); 4634 } 4635 4636 if (status & MWL8K_A2H_INT_QUEUE_EMPTY) { 4637 if (!mutex_is_locked(&priv->fw_mutex) && 4638 priv->radio_on && priv->pending_tx_pkts) 4639 mwl8k_tx_start(priv); 4640 } 4641 4642 return IRQ_HANDLED; 4643 } 4644 4645 static void mwl8k_tx_poll(struct tasklet_struct *t) 4646 { 4647 struct mwl8k_priv *priv = from_tasklet(priv, t, poll_tx_task); 4648 struct ieee80211_hw *hw = pci_get_drvdata(priv->pdev); 4649 int limit; 4650 int i; 4651 4652 limit = 32; 4653 4654 spin_lock(&priv->tx_lock); 4655 4656 for (i = 0; i < mwl8k_tx_queues(priv); i++) 4657 limit -= mwl8k_txq_reclaim(hw, i, limit, 0); 4658 4659 if (!priv->pending_tx_pkts && priv->tx_wait != NULL) { 4660 complete(priv->tx_wait); 4661 priv->tx_wait = NULL; 4662 } 4663 4664 spin_unlock(&priv->tx_lock); 4665 4666 if (limit) { 4667 writel(~MWL8K_A2H_INT_TX_DONE, 4668 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 4669 } else { 4670 tasklet_schedule(&priv->poll_tx_task); 4671 } 4672 } 4673 4674 static void mwl8k_rx_poll(struct tasklet_struct *t) 4675 { 4676 struct mwl8k_priv *priv = from_tasklet(priv, t, poll_rx_task); 4677 struct ieee80211_hw *hw = pci_get_drvdata(priv->pdev); 4678 int limit; 4679 4680 limit = 32; 4681 limit -= rxq_process(hw, 0, limit); 4682 limit -= rxq_refill(hw, 0, limit); 4683 4684 if (limit) { 4685 writel(~MWL8K_A2H_INT_RX_READY, 4686 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 4687 } else { 4688 tasklet_schedule(&priv->poll_rx_task); 4689 } 4690 } 4691 4692 4693 /* 4694 * Core driver operations. 4695 */ 4696 static void mwl8k_tx(struct ieee80211_hw *hw, 4697 struct ieee80211_tx_control *control, 4698 struct sk_buff *skb) 4699 { 4700 struct mwl8k_priv *priv = hw->priv; 4701 int index = skb_get_queue_mapping(skb); 4702 4703 if (!priv->radio_on) { 4704 wiphy_debug(hw->wiphy, 4705 "dropped TX frame since radio disabled\n"); 4706 dev_kfree_skb(skb); 4707 return; 4708 } 4709 4710 mwl8k_txq_xmit(hw, index, control->sta, skb); 4711 } 4712 4713 static int mwl8k_start(struct ieee80211_hw *hw) 4714 { 4715 struct mwl8k_priv *priv = hw->priv; 4716 int rc; 4717 4718 rc = request_irq(priv->pdev->irq, mwl8k_interrupt, 4719 IRQF_SHARED, MWL8K_NAME, hw); 4720 if (rc) { 4721 priv->irq = -1; 4722 wiphy_err(hw->wiphy, "failed to register IRQ handler\n"); 4723 return -EIO; 4724 } 4725 priv->irq = priv->pdev->irq; 4726 4727 /* Enable TX reclaim and RX tasklets. */ 4728 tasklet_enable(&priv->poll_tx_task); 4729 tasklet_enable(&priv->poll_rx_task); 4730 4731 /* Enable interrupts */ 4732 iowrite32(MWL8K_A2H_EVENTS, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 4733 iowrite32(MWL8K_A2H_EVENTS, 4734 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK); 4735 4736 rc = mwl8k_fw_lock(hw); 4737 if (!rc) { 4738 rc = mwl8k_cmd_radio_enable(hw); 4739 4740 if (!priv->ap_fw) { 4741 if (!rc) 4742 rc = mwl8k_cmd_enable_sniffer(hw, 0); 4743 4744 if (!rc) 4745 rc = mwl8k_cmd_set_pre_scan(hw); 4746 4747 if (!rc) 4748 rc = mwl8k_cmd_set_post_scan(hw, 4749 "\x00\x00\x00\x00\x00\x00"); 4750 } 4751 4752 if (!rc) 4753 rc = mwl8k_cmd_set_rateadapt_mode(hw, 0); 4754 4755 if (!rc) 4756 rc = mwl8k_cmd_set_wmm_mode(hw, 0); 4757 4758 mwl8k_fw_unlock(hw); 4759 } 4760 4761 if (rc) { 4762 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 4763 free_irq(priv->pdev->irq, hw); 4764 priv->irq = -1; 4765 tasklet_disable(&priv->poll_tx_task); 4766 tasklet_disable(&priv->poll_rx_task); 4767 } else { 4768 ieee80211_wake_queues(hw); 4769 } 4770 4771 return rc; 4772 } 4773 4774 static void mwl8k_stop(struct ieee80211_hw *hw, bool suspend) 4775 { 4776 struct mwl8k_priv *priv = hw->priv; 4777 int i; 4778 4779 if (!priv->hw_restart_in_progress) 4780 mwl8k_cmd_radio_disable(hw); 4781 4782 ieee80211_stop_queues(hw); 4783 4784 /* Disable interrupts */ 4785 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 4786 if (priv->irq != -1) { 4787 free_irq(priv->pdev->irq, hw); 4788 priv->irq = -1; 4789 } 4790 4791 /* Stop finalize join worker */ 4792 cancel_work_sync(&priv->finalize_join_worker); 4793 cancel_work_sync(&priv->watchdog_ba_handle); 4794 if (priv->beacon_skb != NULL) 4795 dev_kfree_skb(priv->beacon_skb); 4796 4797 /* Stop TX reclaim and RX tasklets. */ 4798 tasklet_disable(&priv->poll_tx_task); 4799 tasklet_disable(&priv->poll_rx_task); 4800 4801 /* Return all skbs to mac80211 */ 4802 for (i = 0; i < mwl8k_tx_queues(priv); i++) 4803 mwl8k_txq_reclaim(hw, i, INT_MAX, 1); 4804 } 4805 4806 static int mwl8k_reload_firmware(struct ieee80211_hw *hw, char *fw_image); 4807 4808 static int mwl8k_add_interface(struct ieee80211_hw *hw, 4809 struct ieee80211_vif *vif) 4810 { 4811 struct mwl8k_priv *priv = hw->priv; 4812 struct mwl8k_vif *mwl8k_vif; 4813 u32 macids_supported; 4814 int macid, rc; 4815 struct mwl8k_device_info *di; 4816 4817 /* 4818 * Reject interface creation if sniffer mode is active, as 4819 * STA operation is mutually exclusive with hardware sniffer 4820 * mode. (Sniffer mode is only used on STA firmware.) 4821 */ 4822 if (priv->sniffer_enabled) { 4823 wiphy_info(hw->wiphy, 4824 "unable to create STA interface because sniffer mode is enabled\n"); 4825 return -EINVAL; 4826 } 4827 4828 di = priv->device_info; 4829 switch (vif->type) { 4830 case NL80211_IFTYPE_AP: 4831 if (!priv->ap_fw && di->fw_image_ap) { 4832 /* we must load the ap fw to meet this request */ 4833 if (!list_empty(&priv->vif_list)) 4834 return -EBUSY; 4835 rc = mwl8k_reload_firmware(hw, di->fw_image_ap); 4836 if (rc) 4837 return rc; 4838 } 4839 macids_supported = priv->ap_macids_supported; 4840 break; 4841 case NL80211_IFTYPE_STATION: 4842 if (priv->ap_fw && di->fw_image_sta) { 4843 if (!list_empty(&priv->vif_list)) { 4844 wiphy_warn(hw->wiphy, "AP interface is running.\n" 4845 "Adding STA interface for WDS"); 4846 } else { 4847 /* we must load the sta fw to 4848 * meet this request. 4849 */ 4850 rc = mwl8k_reload_firmware(hw, 4851 di->fw_image_sta); 4852 if (rc) 4853 return rc; 4854 } 4855 } 4856 macids_supported = priv->sta_macids_supported; 4857 break; 4858 default: 4859 return -EINVAL; 4860 } 4861 4862 macid = ffs(macids_supported & ~priv->macids_used); 4863 if (!macid--) 4864 return -EBUSY; 4865 4866 /* Setup driver private area. */ 4867 mwl8k_vif = MWL8K_VIF(vif); 4868 memset(mwl8k_vif, 0, sizeof(*mwl8k_vif)); 4869 mwl8k_vif->vif = vif; 4870 mwl8k_vif->macid = macid; 4871 mwl8k_vif->seqno = 0; 4872 memcpy(mwl8k_vif->bssid, vif->addr, ETH_ALEN); 4873 mwl8k_vif->is_hw_crypto_enabled = false; 4874 4875 /* Set the mac address. */ 4876 mwl8k_cmd_set_mac_addr(hw, vif, vif->addr); 4877 4878 if (vif->type == NL80211_IFTYPE_AP) 4879 mwl8k_cmd_set_new_stn_add_self(hw, vif); 4880 4881 priv->macids_used |= 1 << mwl8k_vif->macid; 4882 list_add_tail(&mwl8k_vif->list, &priv->vif_list); 4883 4884 return 0; 4885 } 4886 4887 static void mwl8k_remove_vif(struct mwl8k_priv *priv, struct mwl8k_vif *vif) 4888 { 4889 /* Has ieee80211_restart_hw re-added the removed interfaces? */ 4890 if (!priv->macids_used) 4891 return; 4892 4893 priv->macids_used &= ~(1 << vif->macid); 4894 list_del(&vif->list); 4895 } 4896 4897 static void mwl8k_remove_interface(struct ieee80211_hw *hw, 4898 struct ieee80211_vif *vif) 4899 { 4900 struct mwl8k_priv *priv = hw->priv; 4901 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 4902 4903 if (vif->type == NL80211_IFTYPE_AP) 4904 mwl8k_cmd_set_new_stn_del(hw, vif, vif->addr); 4905 4906 mwl8k_cmd_del_mac_addr(hw, vif, vif->addr); 4907 4908 mwl8k_remove_vif(priv, mwl8k_vif); 4909 } 4910 4911 static void mwl8k_hw_restart_work(struct work_struct *work) 4912 { 4913 struct mwl8k_priv *priv = 4914 container_of(work, struct mwl8k_priv, fw_reload); 4915 struct ieee80211_hw *hw = priv->hw; 4916 struct mwl8k_device_info *di; 4917 int rc; 4918 4919 /* If some command is waiting for a response, clear it */ 4920 if (priv->hostcmd_wait != NULL) { 4921 complete(priv->hostcmd_wait); 4922 priv->hostcmd_wait = NULL; 4923 } 4924 4925 priv->hw_restart_owner = current; 4926 di = priv->device_info; 4927 mwl8k_fw_lock(hw); 4928 4929 if (priv->ap_fw) 4930 rc = mwl8k_reload_firmware(hw, di->fw_image_ap); 4931 else 4932 rc = mwl8k_reload_firmware(hw, di->fw_image_sta); 4933 4934 if (rc) 4935 goto fail; 4936 4937 priv->hw_restart_owner = NULL; 4938 priv->hw_restart_in_progress = false; 4939 4940 /* 4941 * This unlock will wake up the queues and 4942 * also opens the command path for other 4943 * commands 4944 */ 4945 mwl8k_fw_unlock(hw); 4946 4947 ieee80211_restart_hw(hw); 4948 4949 wiphy_err(hw->wiphy, "Firmware restarted successfully\n"); 4950 4951 return; 4952 fail: 4953 mwl8k_fw_unlock(hw); 4954 4955 wiphy_err(hw->wiphy, "Firmware restart failed\n"); 4956 } 4957 4958 static int mwl8k_config(struct ieee80211_hw *hw, u32 changed) 4959 { 4960 struct ieee80211_conf *conf = &hw->conf; 4961 struct mwl8k_priv *priv = hw->priv; 4962 int rc; 4963 4964 rc = mwl8k_fw_lock(hw); 4965 if (rc) 4966 return rc; 4967 4968 if (conf->flags & IEEE80211_CONF_IDLE) 4969 rc = mwl8k_cmd_radio_disable(hw); 4970 else 4971 rc = mwl8k_cmd_radio_enable(hw); 4972 if (rc) 4973 goto out; 4974 4975 if (changed & IEEE80211_CONF_CHANGE_CHANNEL) { 4976 rc = mwl8k_cmd_set_rf_channel(hw, conf); 4977 if (rc) 4978 goto out; 4979 } 4980 4981 if (conf->power_level > 18) 4982 conf->power_level = 18; 4983 4984 if (priv->ap_fw) { 4985 4986 if (conf->flags & IEEE80211_CONF_CHANGE_POWER) { 4987 rc = mwl8k_cmd_tx_power(hw, conf, conf->power_level); 4988 if (rc) 4989 goto out; 4990 } 4991 4992 4993 } else { 4994 rc = mwl8k_cmd_rf_tx_power(hw, conf->power_level); 4995 if (rc) 4996 goto out; 4997 rc = mwl8k_cmd_mimo_config(hw, 0x7, 0x7); 4998 } 4999 5000 out: 5001 mwl8k_fw_unlock(hw); 5002 5003 return rc; 5004 } 5005 5006 static void 5007 mwl8k_bss_info_changed_sta(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 5008 struct ieee80211_bss_conf *info, u32 changed) 5009 { 5010 struct mwl8k_priv *priv = hw->priv; 5011 u32 ap_legacy_rates = 0; 5012 u8 ap_mcs_rates[16]; 5013 int rc; 5014 5015 if (mwl8k_fw_lock(hw)) 5016 return; 5017 5018 /* 5019 * No need to capture a beacon if we're no longer associated. 5020 */ 5021 if ((changed & BSS_CHANGED_ASSOC) && !vif->cfg.assoc) 5022 priv->capture_beacon = false; 5023 5024 /* 5025 * Get the AP's legacy and MCS rates. 5026 */ 5027 if (vif->cfg.assoc) { 5028 struct ieee80211_sta *ap; 5029 5030 rcu_read_lock(); 5031 5032 ap = ieee80211_find_sta(vif, vif->bss_conf.bssid); 5033 if (ap == NULL) { 5034 rcu_read_unlock(); 5035 goto out; 5036 } 5037 5038 if (hw->conf.chandef.chan->band == NL80211_BAND_2GHZ) { 5039 ap_legacy_rates = ap->deflink.supp_rates[NL80211_BAND_2GHZ]; 5040 } else { 5041 ap_legacy_rates = 5042 ap->deflink.supp_rates[NL80211_BAND_5GHZ] << 5; 5043 } 5044 memcpy(ap_mcs_rates, &ap->deflink.ht_cap.mcs, 16); 5045 5046 rcu_read_unlock(); 5047 5048 if (changed & BSS_CHANGED_ASSOC) { 5049 if (!priv->ap_fw) { 5050 rc = mwl8k_cmd_set_rate(hw, vif, 5051 ap_legacy_rates, 5052 ap_mcs_rates); 5053 if (rc) 5054 goto out; 5055 5056 rc = mwl8k_cmd_use_fixed_rate_sta(hw); 5057 if (rc) 5058 goto out; 5059 } else { 5060 int idx; 5061 int rate; 5062 5063 /* Use AP firmware specific rate command. 5064 */ 5065 idx = ffs(vif->bss_conf.basic_rates); 5066 if (idx) 5067 idx--; 5068 5069 if (hw->conf.chandef.chan->band == 5070 NL80211_BAND_2GHZ) 5071 rate = mwl8k_rates_24[idx].hw_value; 5072 else 5073 rate = mwl8k_rates_50[idx].hw_value; 5074 5075 mwl8k_cmd_use_fixed_rate_ap(hw, rate, rate); 5076 } 5077 } 5078 } 5079 5080 if (changed & BSS_CHANGED_ERP_PREAMBLE) { 5081 rc = mwl8k_set_radio_preamble(hw, 5082 vif->bss_conf.use_short_preamble); 5083 if (rc) 5084 goto out; 5085 } 5086 5087 if ((changed & BSS_CHANGED_ERP_SLOT) && !priv->ap_fw) { 5088 rc = mwl8k_cmd_set_slot(hw, vif->bss_conf.use_short_slot); 5089 if (rc) 5090 goto out; 5091 } 5092 5093 if (vif->cfg.assoc && !priv->ap_fw && 5094 (changed & (BSS_CHANGED_ASSOC | BSS_CHANGED_ERP_CTS_PROT | 5095 BSS_CHANGED_HT))) { 5096 rc = mwl8k_cmd_set_aid(hw, vif, ap_legacy_rates); 5097 if (rc) 5098 goto out; 5099 } 5100 5101 if (vif->cfg.assoc && 5102 (changed & (BSS_CHANGED_ASSOC | BSS_CHANGED_BEACON_INT))) { 5103 /* 5104 * Finalize the join. Tell rx handler to process 5105 * next beacon from our BSSID. 5106 */ 5107 memcpy(priv->capture_bssid, vif->bss_conf.bssid, ETH_ALEN); 5108 priv->capture_beacon = true; 5109 } 5110 5111 out: 5112 mwl8k_fw_unlock(hw); 5113 } 5114 5115 static void 5116 mwl8k_bss_info_changed_ap(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 5117 struct ieee80211_bss_conf *info, u32 changed) 5118 { 5119 int rc; 5120 5121 if (mwl8k_fw_lock(hw)) 5122 return; 5123 5124 if (changed & BSS_CHANGED_ERP_PREAMBLE) { 5125 rc = mwl8k_set_radio_preamble(hw, 5126 vif->bss_conf.use_short_preamble); 5127 if (rc) 5128 goto out; 5129 } 5130 5131 if (changed & BSS_CHANGED_BASIC_RATES) { 5132 int idx; 5133 int rate; 5134 5135 /* 5136 * Use lowest supported basic rate for multicasts 5137 * and management frames (such as probe responses -- 5138 * beacons will always go out at 1 Mb/s). 5139 */ 5140 idx = ffs(vif->bss_conf.basic_rates); 5141 if (idx) 5142 idx--; 5143 5144 if (hw->conf.chandef.chan->band == NL80211_BAND_2GHZ) 5145 rate = mwl8k_rates_24[idx].hw_value; 5146 else 5147 rate = mwl8k_rates_50[idx].hw_value; 5148 5149 mwl8k_cmd_use_fixed_rate_ap(hw, rate, rate); 5150 } 5151 5152 if (changed & (BSS_CHANGED_BEACON_INT | BSS_CHANGED_BEACON)) { 5153 struct sk_buff *skb; 5154 5155 skb = ieee80211_beacon_get(hw, vif, 0); 5156 if (skb != NULL) { 5157 mwl8k_cmd_set_beacon(hw, vif, skb->data, skb->len); 5158 kfree_skb(skb); 5159 } 5160 } 5161 5162 if (changed & BSS_CHANGED_BEACON_ENABLED) 5163 mwl8k_cmd_bss_start(hw, vif, info->enable_beacon); 5164 5165 out: 5166 mwl8k_fw_unlock(hw); 5167 } 5168 5169 static void 5170 mwl8k_bss_info_changed(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 5171 struct ieee80211_bss_conf *info, u64 changed) 5172 { 5173 if (vif->type == NL80211_IFTYPE_STATION) 5174 mwl8k_bss_info_changed_sta(hw, vif, info, changed); 5175 if (vif->type == NL80211_IFTYPE_AP) 5176 mwl8k_bss_info_changed_ap(hw, vif, info, changed); 5177 } 5178 5179 static u64 mwl8k_prepare_multicast(struct ieee80211_hw *hw, 5180 struct netdev_hw_addr_list *mc_list) 5181 { 5182 struct mwl8k_cmd_pkt_hdr *cmd; 5183 5184 /* 5185 * Synthesize and return a command packet that programs the 5186 * hardware multicast address filter. At this point we don't 5187 * know whether FIF_ALLMULTI is being requested, but if it is, 5188 * we'll end up throwing this packet away and creating a new 5189 * one in mwl8k_configure_filter(). 5190 */ 5191 cmd = __mwl8k_cmd_mac_multicast_adr(hw, 0, mc_list); 5192 5193 return (unsigned long)cmd; 5194 } 5195 5196 static int 5197 mwl8k_configure_filter_sniffer(struct ieee80211_hw *hw, 5198 unsigned int changed_flags, 5199 unsigned int *total_flags) 5200 { 5201 struct mwl8k_priv *priv = hw->priv; 5202 5203 /* 5204 * Hardware sniffer mode is mutually exclusive with STA 5205 * operation, so refuse to enable sniffer mode if a STA 5206 * interface is active. 5207 */ 5208 if (!list_empty(&priv->vif_list)) { 5209 if (net_ratelimit()) 5210 wiphy_info(hw->wiphy, 5211 "not enabling sniffer mode because STA interface is active\n"); 5212 return 0; 5213 } 5214 5215 if (!priv->sniffer_enabled) { 5216 if (mwl8k_cmd_enable_sniffer(hw, 1)) 5217 return 0; 5218 priv->sniffer_enabled = true; 5219 } 5220 5221 *total_flags &= FIF_ALLMULTI | 5222 FIF_BCN_PRBRESP_PROMISC | FIF_CONTROL | 5223 FIF_OTHER_BSS; 5224 5225 return 1; 5226 } 5227 5228 static struct mwl8k_vif *mwl8k_first_vif(struct mwl8k_priv *priv) 5229 { 5230 if (!list_empty(&priv->vif_list)) 5231 return list_entry(priv->vif_list.next, struct mwl8k_vif, list); 5232 5233 return NULL; 5234 } 5235 5236 static void mwl8k_configure_filter(struct ieee80211_hw *hw, 5237 unsigned int changed_flags, 5238 unsigned int *total_flags, 5239 u64 multicast) 5240 { 5241 struct mwl8k_priv *priv = hw->priv; 5242 struct mwl8k_cmd_pkt_hdr *cmd = (void *)(unsigned long)multicast; 5243 5244 /* 5245 * AP firmware doesn't allow fine-grained control over 5246 * the receive filter. 5247 */ 5248 if (priv->ap_fw) { 5249 *total_flags &= FIF_ALLMULTI | FIF_BCN_PRBRESP_PROMISC; 5250 kfree(cmd); 5251 return; 5252 } 5253 5254 /* 5255 * Enable hardware sniffer mode if FIF_CONTROL or 5256 * FIF_OTHER_BSS is requested. 5257 */ 5258 if (*total_flags & (FIF_CONTROL | FIF_OTHER_BSS) && 5259 mwl8k_configure_filter_sniffer(hw, changed_flags, total_flags)) { 5260 kfree(cmd); 5261 return; 5262 } 5263 5264 /* Clear unsupported feature flags */ 5265 *total_flags &= FIF_ALLMULTI | FIF_BCN_PRBRESP_PROMISC; 5266 5267 if (mwl8k_fw_lock(hw)) { 5268 kfree(cmd); 5269 return; 5270 } 5271 5272 if (priv->sniffer_enabled) { 5273 mwl8k_cmd_enable_sniffer(hw, 0); 5274 priv->sniffer_enabled = false; 5275 } 5276 5277 if (changed_flags & FIF_BCN_PRBRESP_PROMISC) { 5278 if (*total_flags & FIF_BCN_PRBRESP_PROMISC) { 5279 /* 5280 * Disable the BSS filter. 5281 */ 5282 mwl8k_cmd_set_pre_scan(hw); 5283 } else { 5284 struct mwl8k_vif *mwl8k_vif; 5285 const u8 *bssid; 5286 5287 /* 5288 * Enable the BSS filter. 5289 * 5290 * If there is an active STA interface, use that 5291 * interface's BSSID, otherwise use a dummy one 5292 * (where the OUI part needs to be nonzero for 5293 * the BSSID to be accepted by POST_SCAN). 5294 */ 5295 mwl8k_vif = mwl8k_first_vif(priv); 5296 if (mwl8k_vif != NULL) 5297 bssid = mwl8k_vif->vif->bss_conf.bssid; 5298 else 5299 bssid = "\x01\x00\x00\x00\x00\x00"; 5300 5301 mwl8k_cmd_set_post_scan(hw, bssid); 5302 } 5303 } 5304 5305 /* 5306 * If FIF_ALLMULTI is being requested, throw away the command 5307 * packet that ->prepare_multicast() built and replace it with 5308 * a command packet that enables reception of all multicast 5309 * packets. 5310 */ 5311 if (*total_flags & FIF_ALLMULTI) { 5312 kfree(cmd); 5313 cmd = __mwl8k_cmd_mac_multicast_adr(hw, 1, NULL); 5314 } 5315 5316 if (cmd != NULL) { 5317 mwl8k_post_cmd(hw, cmd); 5318 kfree(cmd); 5319 } 5320 5321 mwl8k_fw_unlock(hw); 5322 } 5323 5324 static int mwl8k_set_rts_threshold(struct ieee80211_hw *hw, u32 value) 5325 { 5326 return mwl8k_cmd_set_rts_threshold(hw, value); 5327 } 5328 5329 static int mwl8k_sta_remove(struct ieee80211_hw *hw, 5330 struct ieee80211_vif *vif, 5331 struct ieee80211_sta *sta) 5332 { 5333 struct mwl8k_priv *priv = hw->priv; 5334 5335 if (priv->ap_fw) 5336 return mwl8k_cmd_set_new_stn_del(hw, vif, sta->addr); 5337 else 5338 return mwl8k_cmd_update_stadb_del(hw, vif, sta->addr); 5339 } 5340 5341 static int mwl8k_sta_add(struct ieee80211_hw *hw, 5342 struct ieee80211_vif *vif, 5343 struct ieee80211_sta *sta) 5344 { 5345 struct mwl8k_priv *priv = hw->priv; 5346 int ret; 5347 int i; 5348 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 5349 struct ieee80211_key_conf *key; 5350 5351 if (!priv->ap_fw) { 5352 ret = mwl8k_cmd_update_stadb_add(hw, vif, sta); 5353 if (ret >= 0) { 5354 MWL8K_STA(sta)->peer_id = ret; 5355 if (sta->deflink.ht_cap.ht_supported) 5356 MWL8K_STA(sta)->is_ampdu_allowed = true; 5357 ret = 0; 5358 } 5359 5360 } else { 5361 ret = mwl8k_cmd_set_new_stn_add(hw, vif, sta); 5362 } 5363 5364 for (i = 0; i < NUM_WEP_KEYS; i++) { 5365 key = IEEE80211_KEY_CONF(mwl8k_vif->wep_key_conf[i].key); 5366 if (mwl8k_vif->wep_key_conf[i].enabled) 5367 mwl8k_set_key(hw, SET_KEY, vif, sta, key); 5368 } 5369 return ret; 5370 } 5371 5372 static int mwl8k_conf_tx(struct ieee80211_hw *hw, 5373 struct ieee80211_vif *vif, 5374 unsigned int link_id, u16 queue, 5375 const struct ieee80211_tx_queue_params *params) 5376 { 5377 struct mwl8k_priv *priv = hw->priv; 5378 int rc; 5379 5380 rc = mwl8k_fw_lock(hw); 5381 if (!rc) { 5382 BUG_ON(queue > MWL8K_TX_WMM_QUEUES - 1); 5383 memcpy(&priv->wmm_params[queue], params, sizeof(*params)); 5384 5385 if (!priv->wmm_enabled) 5386 rc = mwl8k_cmd_set_wmm_mode(hw, 1); 5387 5388 if (!rc) { 5389 int q = MWL8K_TX_WMM_QUEUES - 1 - queue; 5390 rc = mwl8k_cmd_set_edca_params(hw, q, 5391 params->cw_min, 5392 params->cw_max, 5393 params->aifs, 5394 params->txop); 5395 } 5396 5397 mwl8k_fw_unlock(hw); 5398 } 5399 5400 return rc; 5401 } 5402 5403 static int mwl8k_get_stats(struct ieee80211_hw *hw, 5404 struct ieee80211_low_level_stats *stats) 5405 { 5406 return mwl8k_cmd_get_stat(hw, stats); 5407 } 5408 5409 static int mwl8k_get_survey(struct ieee80211_hw *hw, int idx, 5410 struct survey_info *survey) 5411 { 5412 struct mwl8k_priv *priv = hw->priv; 5413 struct ieee80211_conf *conf = &hw->conf; 5414 struct ieee80211_supported_band *sband; 5415 5416 if (priv->ap_fw) { 5417 sband = hw->wiphy->bands[NL80211_BAND_2GHZ]; 5418 5419 if (sband && idx >= sband->n_channels) { 5420 idx -= sband->n_channels; 5421 sband = NULL; 5422 } 5423 5424 if (!sband) 5425 sband = hw->wiphy->bands[NL80211_BAND_5GHZ]; 5426 5427 if (!sband || idx >= sband->n_channels) 5428 return -ENOENT; 5429 5430 memcpy(survey, &priv->survey[idx], sizeof(*survey)); 5431 survey->channel = &sband->channels[idx]; 5432 5433 return 0; 5434 } 5435 5436 if (idx != 0) 5437 return -ENOENT; 5438 5439 survey->channel = conf->chandef.chan; 5440 survey->filled = SURVEY_INFO_NOISE_DBM; 5441 survey->noise = priv->noise; 5442 5443 return 0; 5444 } 5445 5446 #define MAX_AMPDU_ATTEMPTS 5 5447 5448 static int 5449 mwl8k_ampdu_action(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 5450 struct ieee80211_ampdu_params *params) 5451 { 5452 struct ieee80211_sta *sta = params->sta; 5453 enum ieee80211_ampdu_mlme_action action = params->action; 5454 u16 tid = params->tid; 5455 u16 *ssn = ¶ms->ssn; 5456 u8 buf_size = params->buf_size; 5457 int i, rc = 0; 5458 struct mwl8k_priv *priv = hw->priv; 5459 struct mwl8k_ampdu_stream *stream; 5460 u8 *addr = sta->addr, idx; 5461 struct mwl8k_sta *sta_info = MWL8K_STA(sta); 5462 5463 if (!ieee80211_hw_check(hw, AMPDU_AGGREGATION)) 5464 return -ENOTSUPP; 5465 5466 spin_lock(&priv->stream_lock); 5467 stream = mwl8k_lookup_stream(hw, addr, tid); 5468 5469 switch (action) { 5470 case IEEE80211_AMPDU_RX_START: 5471 case IEEE80211_AMPDU_RX_STOP: 5472 break; 5473 case IEEE80211_AMPDU_TX_START: 5474 /* By the time we get here the hw queues may contain outgoing 5475 * packets for this RA/TID that are not part of this BA 5476 * session. The hw will assign sequence numbers to these 5477 * packets as they go out. So if we query the hw for its next 5478 * sequence number and use that for the SSN here, it may end up 5479 * being wrong, which will lead to sequence number mismatch at 5480 * the recipient. To avoid this, we reset the sequence number 5481 * to O for the first MPDU in this BA stream. 5482 */ 5483 *ssn = 0; 5484 if (stream == NULL) { 5485 /* This means that somebody outside this driver called 5486 * ieee80211_start_tx_ba_session. This is unexpected 5487 * because we do our own rate control. Just warn and 5488 * move on. 5489 */ 5490 wiphy_warn(hw->wiphy, "Unexpected call to %s. " 5491 "Proceeding anyway.\n", __func__); 5492 stream = mwl8k_add_stream(hw, sta, tid); 5493 } 5494 if (stream == NULL) { 5495 wiphy_debug(hw->wiphy, "no free AMPDU streams\n"); 5496 rc = -EBUSY; 5497 break; 5498 } 5499 stream->state = AMPDU_STREAM_IN_PROGRESS; 5500 5501 /* Release the lock before we do the time consuming stuff */ 5502 spin_unlock(&priv->stream_lock); 5503 for (i = 0; i < MAX_AMPDU_ATTEMPTS; i++) { 5504 5505 /* Check if link is still valid */ 5506 if (!sta_info->is_ampdu_allowed) { 5507 spin_lock(&priv->stream_lock); 5508 mwl8k_remove_stream(hw, stream); 5509 spin_unlock(&priv->stream_lock); 5510 return -EBUSY; 5511 } 5512 5513 rc = mwl8k_check_ba(hw, stream, vif); 5514 5515 /* If HW restart is in progress mwl8k_post_cmd will 5516 * return -EBUSY. Avoid retrying mwl8k_check_ba in 5517 * such cases 5518 */ 5519 if (!rc || rc == -EBUSY) 5520 break; 5521 /* 5522 * HW queues take time to be flushed, give them 5523 * sufficient time 5524 */ 5525 5526 msleep(1000); 5527 } 5528 spin_lock(&priv->stream_lock); 5529 if (rc) { 5530 wiphy_err(hw->wiphy, "Stream for tid %d busy after %d" 5531 " attempts\n", tid, MAX_AMPDU_ATTEMPTS); 5532 mwl8k_remove_stream(hw, stream); 5533 rc = -EBUSY; 5534 break; 5535 } 5536 rc = IEEE80211_AMPDU_TX_START_IMMEDIATE; 5537 break; 5538 case IEEE80211_AMPDU_TX_STOP_CONT: 5539 case IEEE80211_AMPDU_TX_STOP_FLUSH: 5540 case IEEE80211_AMPDU_TX_STOP_FLUSH_CONT: 5541 if (stream) { 5542 if (stream->state == AMPDU_STREAM_ACTIVE) { 5543 idx = stream->idx; 5544 spin_unlock(&priv->stream_lock); 5545 mwl8k_destroy_ba(hw, idx); 5546 spin_lock(&priv->stream_lock); 5547 } 5548 mwl8k_remove_stream(hw, stream); 5549 } 5550 ieee80211_stop_tx_ba_cb_irqsafe(vif, addr, tid); 5551 break; 5552 case IEEE80211_AMPDU_TX_OPERATIONAL: 5553 BUG_ON(stream == NULL); 5554 BUG_ON(stream->state != AMPDU_STREAM_IN_PROGRESS); 5555 spin_unlock(&priv->stream_lock); 5556 rc = mwl8k_create_ba(hw, stream, buf_size, vif); 5557 spin_lock(&priv->stream_lock); 5558 if (!rc) 5559 stream->state = AMPDU_STREAM_ACTIVE; 5560 else { 5561 idx = stream->idx; 5562 spin_unlock(&priv->stream_lock); 5563 mwl8k_destroy_ba(hw, idx); 5564 spin_lock(&priv->stream_lock); 5565 wiphy_debug(hw->wiphy, 5566 "Failed adding stream for sta %pM tid %d\n", 5567 addr, tid); 5568 mwl8k_remove_stream(hw, stream); 5569 } 5570 break; 5571 5572 default: 5573 rc = -ENOTSUPP; 5574 } 5575 5576 spin_unlock(&priv->stream_lock); 5577 return rc; 5578 } 5579 5580 static void mwl8k_sw_scan_start(struct ieee80211_hw *hw, 5581 struct ieee80211_vif *vif, 5582 const u8 *mac_addr) 5583 { 5584 struct mwl8k_priv *priv = hw->priv; 5585 u8 tmp; 5586 5587 if (!priv->ap_fw) 5588 return; 5589 5590 /* clear all stats */ 5591 priv->channel_time = 0; 5592 ioread32(priv->regs + BBU_RXRDY_CNT_REG); 5593 ioread32(priv->regs + NOK_CCA_CNT_REG); 5594 mwl8k_cmd_bbp_reg_access(priv->hw, 0, BBU_AVG_NOISE_VAL, &tmp); 5595 5596 priv->sw_scan_start = true; 5597 } 5598 5599 static void mwl8k_sw_scan_complete(struct ieee80211_hw *hw, 5600 struct ieee80211_vif *vif) 5601 { 5602 struct mwl8k_priv *priv = hw->priv; 5603 u8 tmp; 5604 5605 if (!priv->ap_fw) 5606 return; 5607 5608 priv->sw_scan_start = false; 5609 5610 /* clear all stats */ 5611 priv->channel_time = 0; 5612 ioread32(priv->regs + BBU_RXRDY_CNT_REG); 5613 ioread32(priv->regs + NOK_CCA_CNT_REG); 5614 mwl8k_cmd_bbp_reg_access(priv->hw, 0, BBU_AVG_NOISE_VAL, &tmp); 5615 } 5616 5617 static const struct ieee80211_ops mwl8k_ops = { 5618 .add_chanctx = ieee80211_emulate_add_chanctx, 5619 .remove_chanctx = ieee80211_emulate_remove_chanctx, 5620 .change_chanctx = ieee80211_emulate_change_chanctx, 5621 .switch_vif_chanctx = ieee80211_emulate_switch_vif_chanctx, 5622 .tx = mwl8k_tx, 5623 .wake_tx_queue = ieee80211_handle_wake_tx_queue, 5624 .start = mwl8k_start, 5625 .stop = mwl8k_stop, 5626 .add_interface = mwl8k_add_interface, 5627 .remove_interface = mwl8k_remove_interface, 5628 .config = mwl8k_config, 5629 .bss_info_changed = mwl8k_bss_info_changed, 5630 .prepare_multicast = mwl8k_prepare_multicast, 5631 .configure_filter = mwl8k_configure_filter, 5632 .set_key = mwl8k_set_key, 5633 .set_rts_threshold = mwl8k_set_rts_threshold, 5634 .sta_add = mwl8k_sta_add, 5635 .sta_remove = mwl8k_sta_remove, 5636 .conf_tx = mwl8k_conf_tx, 5637 .get_stats = mwl8k_get_stats, 5638 .get_survey = mwl8k_get_survey, 5639 .ampdu_action = mwl8k_ampdu_action, 5640 .sw_scan_start = mwl8k_sw_scan_start, 5641 .sw_scan_complete = mwl8k_sw_scan_complete, 5642 }; 5643 5644 static void mwl8k_finalize_join_worker(struct work_struct *work) 5645 { 5646 struct mwl8k_priv *priv = 5647 container_of(work, struct mwl8k_priv, finalize_join_worker); 5648 struct sk_buff *skb = priv->beacon_skb; 5649 struct ieee80211_mgmt *mgmt = (void *)skb->data; 5650 int len = skb->len - offsetof(struct ieee80211_mgmt, u.beacon.variable); 5651 const u8 *tim = cfg80211_find_ie(WLAN_EID_TIM, 5652 mgmt->u.beacon.variable, len); 5653 int dtim_period = 1; 5654 5655 if (tim && tim[1] >= 2) 5656 dtim_period = tim[3]; 5657 5658 mwl8k_cmd_finalize_join(priv->hw, skb->data, skb->len, dtim_period); 5659 5660 dev_kfree_skb(skb); 5661 priv->beacon_skb = NULL; 5662 } 5663 5664 enum { 5665 MWL8363 = 0, 5666 MWL8687, 5667 MWL8366, 5668 MWL8764, 5669 }; 5670 5671 #define MWL8K_8366_AP_FW_API 3 5672 #define _MWL8K_8366_AP_FW(api) "mwl8k/fmimage_8366_ap-" #api ".fw" 5673 #define MWL8K_8366_AP_FW(api) _MWL8K_8366_AP_FW(api) 5674 5675 #define MWL8K_8764_AP_FW_API 1 5676 #define _MWL8K_8764_AP_FW(api) "mwl8k/fmimage_8764_ap-" #api ".fw" 5677 #define MWL8K_8764_AP_FW(api) _MWL8K_8764_AP_FW(api) 5678 5679 static struct mwl8k_device_info mwl8k_info_tbl[] = { 5680 [MWL8363] = { 5681 .part_name = "88w8363", 5682 .helper_image = "mwl8k/helper_8363.fw", 5683 .fw_image_sta = "mwl8k/fmimage_8363.fw", 5684 }, 5685 [MWL8687] = { 5686 .part_name = "88w8687", 5687 .helper_image = "mwl8k/helper_8687.fw", 5688 .fw_image_sta = "mwl8k/fmimage_8687.fw", 5689 }, 5690 [MWL8366] = { 5691 .part_name = "88w8366", 5692 .helper_image = "mwl8k/helper_8366.fw", 5693 .fw_image_sta = "mwl8k/fmimage_8366.fw", 5694 .fw_image_ap = MWL8K_8366_AP_FW(MWL8K_8366_AP_FW_API), 5695 .fw_api_ap = MWL8K_8366_AP_FW_API, 5696 .ap_rxd_ops = &rxd_ap_ops, 5697 }, 5698 [MWL8764] = { 5699 .part_name = "88w8764", 5700 .fw_image_ap = MWL8K_8764_AP_FW(MWL8K_8764_AP_FW_API), 5701 .fw_api_ap = MWL8K_8764_AP_FW_API, 5702 .ap_rxd_ops = &rxd_ap_ops, 5703 }, 5704 }; 5705 5706 MODULE_FIRMWARE("mwl8k/helper_8363.fw"); 5707 MODULE_FIRMWARE("mwl8k/fmimage_8363.fw"); 5708 MODULE_FIRMWARE("mwl8k/helper_8687.fw"); 5709 MODULE_FIRMWARE("mwl8k/fmimage_8687.fw"); 5710 MODULE_FIRMWARE("mwl8k/helper_8366.fw"); 5711 MODULE_FIRMWARE("mwl8k/fmimage_8366.fw"); 5712 MODULE_FIRMWARE(MWL8K_8366_AP_FW(MWL8K_8366_AP_FW_API)); 5713 5714 static const struct pci_device_id mwl8k_pci_id_table[] = { 5715 { PCI_VDEVICE(MARVELL, 0x2a0a), .driver_data = MWL8363, }, 5716 { PCI_VDEVICE(MARVELL, 0x2a0c), .driver_data = MWL8363, }, 5717 { PCI_VDEVICE(MARVELL, 0x2a24), .driver_data = MWL8363, }, 5718 { PCI_VDEVICE(MARVELL, 0x2a2b), .driver_data = MWL8687, }, 5719 { PCI_VDEVICE(MARVELL, 0x2a30), .driver_data = MWL8687, }, 5720 { PCI_VDEVICE(MARVELL, 0x2a40), .driver_data = MWL8366, }, 5721 { PCI_VDEVICE(MARVELL, 0x2a41), .driver_data = MWL8366, }, 5722 { PCI_VDEVICE(MARVELL, 0x2a42), .driver_data = MWL8366, }, 5723 { PCI_VDEVICE(MARVELL, 0x2a43), .driver_data = MWL8366, }, 5724 { PCI_VDEVICE(MARVELL, 0x2b36), .driver_data = MWL8764, }, 5725 { }, 5726 }; 5727 MODULE_DEVICE_TABLE(pci, mwl8k_pci_id_table); 5728 5729 static int mwl8k_request_alt_fw(struct mwl8k_priv *priv) 5730 { 5731 int rc; 5732 printk(KERN_ERR "%s: Error requesting preferred fw %s.\n" 5733 "Trying alternative firmware %s\n", pci_name(priv->pdev), 5734 priv->fw_pref, priv->fw_alt); 5735 rc = mwl8k_request_fw(priv, priv->fw_alt, &priv->fw_ucode, true); 5736 if (rc) { 5737 printk(KERN_ERR "%s: Error requesting alt fw %s\n", 5738 pci_name(priv->pdev), priv->fw_alt); 5739 return rc; 5740 } 5741 return 0; 5742 } 5743 5744 static int mwl8k_firmware_load_success(struct mwl8k_priv *priv); 5745 static void mwl8k_fw_state_machine(const struct firmware *fw, void *context) 5746 { 5747 struct mwl8k_priv *priv = context; 5748 struct mwl8k_device_info *di = priv->device_info; 5749 int rc; 5750 5751 switch (priv->fw_state) { 5752 case FW_STATE_INIT: 5753 if (!fw) { 5754 printk(KERN_ERR "%s: Error requesting helper fw %s\n", 5755 pci_name(priv->pdev), di->helper_image); 5756 goto fail; 5757 } 5758 priv->fw_helper = fw; 5759 rc = mwl8k_request_fw(priv, priv->fw_pref, &priv->fw_ucode, 5760 true); 5761 if (rc && priv->fw_alt) { 5762 rc = mwl8k_request_alt_fw(priv); 5763 if (rc) 5764 goto fail; 5765 priv->fw_state = FW_STATE_LOADING_ALT; 5766 } else if (rc) 5767 goto fail; 5768 else 5769 priv->fw_state = FW_STATE_LOADING_PREF; 5770 break; 5771 5772 case FW_STATE_LOADING_PREF: 5773 if (!fw) { 5774 if (priv->fw_alt) { 5775 rc = mwl8k_request_alt_fw(priv); 5776 if (rc) 5777 goto fail; 5778 priv->fw_state = FW_STATE_LOADING_ALT; 5779 } else 5780 goto fail; 5781 } else { 5782 priv->fw_ucode = fw; 5783 rc = mwl8k_firmware_load_success(priv); 5784 if (rc) 5785 goto fail; 5786 else 5787 complete(&priv->firmware_loading_complete); 5788 } 5789 break; 5790 5791 case FW_STATE_LOADING_ALT: 5792 if (!fw) { 5793 printk(KERN_ERR "%s: Error requesting alt fw %s\n", 5794 pci_name(priv->pdev), di->helper_image); 5795 goto fail; 5796 } 5797 priv->fw_ucode = fw; 5798 rc = mwl8k_firmware_load_success(priv); 5799 if (rc) 5800 goto fail; 5801 else 5802 complete(&priv->firmware_loading_complete); 5803 break; 5804 5805 default: 5806 printk(KERN_ERR "%s: Unexpected firmware loading state: %d\n", 5807 MWL8K_NAME, priv->fw_state); 5808 BUG_ON(1); 5809 } 5810 5811 return; 5812 5813 fail: 5814 priv->fw_state = FW_STATE_ERROR; 5815 complete(&priv->firmware_loading_complete); 5816 mwl8k_release_firmware(priv); 5817 device_release_driver(&priv->pdev->dev); 5818 } 5819 5820 #define MAX_RESTART_ATTEMPTS 1 5821 static int mwl8k_init_firmware(struct ieee80211_hw *hw, char *fw_image, 5822 bool nowait) 5823 { 5824 struct mwl8k_priv *priv = hw->priv; 5825 int rc; 5826 int count = MAX_RESTART_ATTEMPTS; 5827 5828 retry: 5829 /* Reset firmware and hardware */ 5830 mwl8k_hw_reset(priv); 5831 5832 /* Ask userland hotplug daemon for the device firmware */ 5833 rc = mwl8k_request_firmware(priv, fw_image, nowait); 5834 if (rc) { 5835 wiphy_err(hw->wiphy, "Firmware files not found\n"); 5836 return rc; 5837 } 5838 5839 if (nowait) 5840 return rc; 5841 5842 /* Load firmware into hardware */ 5843 rc = mwl8k_load_firmware(hw); 5844 if (rc) 5845 wiphy_err(hw->wiphy, "Cannot start firmware\n"); 5846 5847 /* Reclaim memory once firmware is successfully loaded */ 5848 mwl8k_release_firmware(priv); 5849 5850 if (rc && count) { 5851 /* FW did not start successfully; 5852 * lets try one more time 5853 */ 5854 count--; 5855 wiphy_err(hw->wiphy, "Trying to reload the firmware again\n"); 5856 msleep(20); 5857 goto retry; 5858 } 5859 5860 return rc; 5861 } 5862 5863 static int mwl8k_init_txqs(struct ieee80211_hw *hw) 5864 { 5865 struct mwl8k_priv *priv = hw->priv; 5866 int rc = 0; 5867 int i; 5868 5869 for (i = 0; i < mwl8k_tx_queues(priv); i++) { 5870 rc = mwl8k_txq_init(hw, i); 5871 if (rc) 5872 break; 5873 if (priv->ap_fw) 5874 iowrite32(priv->txq[i].txd_dma, 5875 priv->sram + priv->txq_offset[i]); 5876 } 5877 return rc; 5878 } 5879 5880 /* initialize hw after successfully loading a firmware image */ 5881 static int mwl8k_probe_hw(struct ieee80211_hw *hw) 5882 { 5883 struct mwl8k_priv *priv = hw->priv; 5884 int rc = 0; 5885 int i; 5886 5887 if (priv->ap_fw) { 5888 priv->rxd_ops = priv->device_info->ap_rxd_ops; 5889 if (priv->rxd_ops == NULL) { 5890 wiphy_err(hw->wiphy, 5891 "Driver does not have AP firmware image support for this hardware\n"); 5892 rc = -ENOENT; 5893 goto err_stop_firmware; 5894 } 5895 } else { 5896 priv->rxd_ops = &rxd_sta_ops; 5897 } 5898 5899 priv->sniffer_enabled = false; 5900 priv->wmm_enabled = false; 5901 priv->pending_tx_pkts = 0; 5902 atomic_set(&priv->watchdog_event_pending, 0); 5903 5904 rc = mwl8k_rxq_init(hw, 0); 5905 if (rc) 5906 goto err_stop_firmware; 5907 rxq_refill(hw, 0, INT_MAX); 5908 5909 /* For the sta firmware, we need to know the dma addresses of tx queues 5910 * before sending MWL8K_CMD_GET_HW_SPEC. So we must initialize them 5911 * prior to issuing this command. But for the AP case, we learn the 5912 * total number of queues from the result CMD_GET_HW_SPEC, so for this 5913 * case we must initialize the tx queues after. 5914 */ 5915 priv->num_ampdu_queues = 0; 5916 if (!priv->ap_fw) { 5917 rc = mwl8k_init_txqs(hw); 5918 if (rc) 5919 goto err_free_queues; 5920 } 5921 5922 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 5923 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 5924 iowrite32(MWL8K_A2H_INT_TX_DONE|MWL8K_A2H_INT_RX_READY| 5925 MWL8K_A2H_INT_BA_WATCHDOG, 5926 priv->regs + MWL8K_HIU_A2H_INTERRUPT_CLEAR_SEL); 5927 iowrite32(MWL8K_A2H_INT_OPC_DONE, 5928 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK); 5929 5930 rc = request_irq(priv->pdev->irq, mwl8k_interrupt, 5931 IRQF_SHARED, MWL8K_NAME, hw); 5932 if (rc) { 5933 wiphy_err(hw->wiphy, "failed to register IRQ handler\n"); 5934 goto err_free_queues; 5935 } 5936 5937 /* 5938 * When hw restart is requested, 5939 * mac80211 will take care of clearing 5940 * the ampdu streams, so do not clear 5941 * the ampdu state here 5942 */ 5943 if (!priv->hw_restart_in_progress) 5944 memset(priv->ampdu, 0, sizeof(priv->ampdu)); 5945 5946 /* 5947 * Temporarily enable interrupts. Initial firmware host 5948 * commands use interrupts and avoid polling. Disable 5949 * interrupts when done. 5950 */ 5951 iowrite32(MWL8K_A2H_EVENTS, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 5952 5953 /* Get config data, mac addrs etc */ 5954 if (priv->ap_fw) { 5955 rc = mwl8k_cmd_get_hw_spec_ap(hw); 5956 if (!rc) 5957 rc = mwl8k_init_txqs(hw); 5958 if (!rc) 5959 rc = mwl8k_cmd_set_hw_spec(hw); 5960 } else { 5961 rc = mwl8k_cmd_get_hw_spec_sta(hw); 5962 } 5963 if (rc) { 5964 wiphy_err(hw->wiphy, "Cannot initialise firmware\n"); 5965 goto err_free_irq; 5966 } 5967 5968 /* Turn radio off */ 5969 rc = mwl8k_cmd_radio_disable(hw); 5970 if (rc) { 5971 wiphy_err(hw->wiphy, "Cannot disable\n"); 5972 goto err_free_irq; 5973 } 5974 5975 /* Clear MAC address */ 5976 rc = mwl8k_cmd_set_mac_addr(hw, NULL, "\x00\x00\x00\x00\x00\x00"); 5977 if (rc) { 5978 wiphy_err(hw->wiphy, "Cannot clear MAC address\n"); 5979 goto err_free_irq; 5980 } 5981 5982 /* Configure Antennas */ 5983 rc = mwl8k_cmd_rf_antenna(hw, MWL8K_RF_ANTENNA_RX, 0x3); 5984 if (rc) 5985 wiphy_warn(hw->wiphy, "failed to set # of RX antennas"); 5986 rc = mwl8k_cmd_rf_antenna(hw, MWL8K_RF_ANTENNA_TX, 0x7); 5987 if (rc) 5988 wiphy_warn(hw->wiphy, "failed to set # of TX antennas"); 5989 5990 5991 /* Disable interrupts */ 5992 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 5993 free_irq(priv->pdev->irq, hw); 5994 5995 wiphy_info(hw->wiphy, "%s v%d, %pm, %s firmware %u.%u.%u.%u\n", 5996 priv->device_info->part_name, 5997 priv->hw_rev, hw->wiphy->perm_addr, 5998 priv->ap_fw ? "AP" : "STA", 5999 (priv->fw_rev >> 24) & 0xff, (priv->fw_rev >> 16) & 0xff, 6000 (priv->fw_rev >> 8) & 0xff, priv->fw_rev & 0xff); 6001 6002 return 0; 6003 6004 err_free_irq: 6005 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 6006 free_irq(priv->pdev->irq, hw); 6007 6008 err_free_queues: 6009 for (i = 0; i < mwl8k_tx_queues(priv); i++) 6010 mwl8k_txq_deinit(hw, i); 6011 mwl8k_rxq_deinit(hw, 0); 6012 6013 err_stop_firmware: 6014 mwl8k_hw_reset(priv); 6015 6016 return rc; 6017 } 6018 6019 /* 6020 * invoke mwl8k_reload_firmware to change the firmware image after the device 6021 * has already been registered 6022 */ 6023 static int mwl8k_reload_firmware(struct ieee80211_hw *hw, char *fw_image) 6024 { 6025 int i, rc = 0; 6026 struct mwl8k_priv *priv = hw->priv; 6027 struct mwl8k_vif *vif, *tmp_vif; 6028 6029 mwl8k_stop(hw, false); 6030 mwl8k_rxq_deinit(hw, 0); 6031 6032 /* 6033 * All the existing interfaces are re-added by the ieee80211_reconfig; 6034 * which means driver should remove existing interfaces before calling 6035 * ieee80211_restart_hw 6036 */ 6037 if (priv->hw_restart_in_progress) 6038 list_for_each_entry_safe(vif, tmp_vif, &priv->vif_list, list) 6039 mwl8k_remove_vif(priv, vif); 6040 6041 for (i = 0; i < mwl8k_tx_queues(priv); i++) 6042 mwl8k_txq_deinit(hw, i); 6043 6044 rc = mwl8k_init_firmware(hw, fw_image, false); 6045 if (rc) 6046 goto fail; 6047 6048 rc = mwl8k_probe_hw(hw); 6049 if (rc) 6050 goto fail; 6051 6052 if (priv->hw_restart_in_progress) 6053 return rc; 6054 6055 rc = mwl8k_start(hw); 6056 if (rc) 6057 goto fail; 6058 6059 rc = mwl8k_config(hw, ~0); 6060 if (rc) 6061 goto fail; 6062 6063 for (i = 0; i < MWL8K_TX_WMM_QUEUES; i++) { 6064 rc = mwl8k_conf_tx(hw, NULL, 0, i, &priv->wmm_params[i]); 6065 if (rc) 6066 goto fail; 6067 } 6068 6069 return rc; 6070 6071 fail: 6072 printk(KERN_WARNING "mwl8k: Failed to reload firmware image.\n"); 6073 return rc; 6074 } 6075 6076 static const struct ieee80211_iface_limit ap_if_limits[] = { 6077 { .max = 8, .types = BIT(NL80211_IFTYPE_AP) }, 6078 { .max = 1, .types = BIT(NL80211_IFTYPE_STATION) }, 6079 }; 6080 6081 static const struct ieee80211_iface_combination ap_if_comb = { 6082 .limits = ap_if_limits, 6083 .n_limits = ARRAY_SIZE(ap_if_limits), 6084 .max_interfaces = 8, 6085 .num_different_channels = 1, 6086 }; 6087 6088 6089 static int mwl8k_firmware_load_success(struct mwl8k_priv *priv) 6090 { 6091 struct ieee80211_hw *hw = priv->hw; 6092 int i, rc; 6093 6094 rc = mwl8k_load_firmware(hw); 6095 mwl8k_release_firmware(priv); 6096 if (rc) { 6097 wiphy_err(hw->wiphy, "Cannot start firmware\n"); 6098 return rc; 6099 } 6100 6101 /* 6102 * Extra headroom is the size of the required DMA header 6103 * minus the size of the smallest 802.11 frame (CTS frame). 6104 */ 6105 hw->extra_tx_headroom = 6106 sizeof(struct mwl8k_dma_data) - sizeof(struct ieee80211_cts); 6107 6108 hw->extra_tx_headroom -= priv->ap_fw ? REDUCED_TX_HEADROOM : 0; 6109 6110 hw->queues = MWL8K_TX_WMM_QUEUES; 6111 6112 /* Set rssi values to dBm */ 6113 ieee80211_hw_set(hw, SIGNAL_DBM); 6114 ieee80211_hw_set(hw, HAS_RATE_CONTROL); 6115 6116 /* 6117 * Ask mac80211 to not to trigger PS mode 6118 * based on PM bit of incoming frames. 6119 */ 6120 if (priv->ap_fw) 6121 ieee80211_hw_set(hw, AP_LINK_PS); 6122 6123 hw->vif_data_size = sizeof(struct mwl8k_vif); 6124 hw->sta_data_size = sizeof(struct mwl8k_sta); 6125 6126 priv->macids_used = 0; 6127 INIT_LIST_HEAD(&priv->vif_list); 6128 6129 /* Set default radio state and preamble */ 6130 priv->radio_on = false; 6131 priv->radio_short_preamble = false; 6132 6133 /* Finalize join worker */ 6134 INIT_WORK(&priv->finalize_join_worker, mwl8k_finalize_join_worker); 6135 /* Handle watchdog ba events */ 6136 INIT_WORK(&priv->watchdog_ba_handle, mwl8k_watchdog_ba_events); 6137 /* To reload the firmware if it crashes */ 6138 INIT_WORK(&priv->fw_reload, mwl8k_hw_restart_work); 6139 6140 /* TX reclaim and RX tasklets. */ 6141 tasklet_setup(&priv->poll_tx_task, mwl8k_tx_poll); 6142 tasklet_disable(&priv->poll_tx_task); 6143 tasklet_setup(&priv->poll_rx_task, mwl8k_rx_poll); 6144 tasklet_disable(&priv->poll_rx_task); 6145 6146 /* Power management cookie */ 6147 priv->cookie = dma_alloc_coherent(&priv->pdev->dev, 4, 6148 &priv->cookie_dma, GFP_KERNEL); 6149 if (priv->cookie == NULL) 6150 return -ENOMEM; 6151 6152 mutex_init(&priv->fw_mutex); 6153 priv->fw_mutex_owner = NULL; 6154 priv->fw_mutex_depth = 0; 6155 priv->hostcmd_wait = NULL; 6156 6157 spin_lock_init(&priv->tx_lock); 6158 6159 spin_lock_init(&priv->stream_lock); 6160 6161 priv->tx_wait = NULL; 6162 6163 rc = mwl8k_probe_hw(hw); 6164 if (rc) 6165 goto err_free_cookie; 6166 6167 hw->wiphy->interface_modes = 0; 6168 6169 if (priv->ap_macids_supported || priv->device_info->fw_image_ap) { 6170 hw->wiphy->interface_modes |= BIT(NL80211_IFTYPE_AP); 6171 hw->wiphy->interface_modes |= BIT(NL80211_IFTYPE_STATION); 6172 hw->wiphy->iface_combinations = &ap_if_comb; 6173 hw->wiphy->n_iface_combinations = 1; 6174 } 6175 6176 if (priv->sta_macids_supported || priv->device_info->fw_image_sta) 6177 hw->wiphy->interface_modes |= BIT(NL80211_IFTYPE_STATION); 6178 6179 wiphy_ext_feature_set(hw->wiphy, NL80211_EXT_FEATURE_CQM_RSSI_LIST); 6180 6181 rc = ieee80211_register_hw(hw); 6182 if (rc) { 6183 wiphy_err(hw->wiphy, "Cannot register device\n"); 6184 goto err_unprobe_hw; 6185 } 6186 6187 return 0; 6188 6189 err_unprobe_hw: 6190 for (i = 0; i < mwl8k_tx_queues(priv); i++) 6191 mwl8k_txq_deinit(hw, i); 6192 mwl8k_rxq_deinit(hw, 0); 6193 6194 err_free_cookie: 6195 if (priv->cookie != NULL) 6196 dma_free_coherent(&priv->pdev->dev, 4, priv->cookie, 6197 priv->cookie_dma); 6198 6199 return rc; 6200 } 6201 static int mwl8k_probe(struct pci_dev *pdev, 6202 const struct pci_device_id *id) 6203 { 6204 static int printed_version; 6205 struct ieee80211_hw *hw; 6206 struct mwl8k_priv *priv; 6207 struct mwl8k_device_info *di; 6208 int rc; 6209 6210 if (!printed_version) { 6211 printk(KERN_INFO "%s version %s\n", MWL8K_DESC, MWL8K_VERSION); 6212 printed_version = 1; 6213 } 6214 6215 6216 rc = pci_enable_device(pdev); 6217 if (rc) { 6218 printk(KERN_ERR "%s: Cannot enable new PCI device\n", 6219 MWL8K_NAME); 6220 return rc; 6221 } 6222 6223 rc = pci_request_regions(pdev, MWL8K_NAME); 6224 if (rc) { 6225 printk(KERN_ERR "%s: Cannot obtain PCI resources\n", 6226 MWL8K_NAME); 6227 goto err_disable_device; 6228 } 6229 6230 pci_set_master(pdev); 6231 6232 6233 hw = ieee80211_alloc_hw(sizeof(*priv), &mwl8k_ops); 6234 if (hw == NULL) { 6235 printk(KERN_ERR "%s: ieee80211 alloc failed\n", MWL8K_NAME); 6236 rc = -ENOMEM; 6237 goto err_free_reg; 6238 } 6239 6240 SET_IEEE80211_DEV(hw, &pdev->dev); 6241 pci_set_drvdata(pdev, hw); 6242 6243 priv = hw->priv; 6244 priv->hw = hw; 6245 priv->pdev = pdev; 6246 priv->device_info = &mwl8k_info_tbl[id->driver_data]; 6247 6248 if (id->driver_data == MWL8764) 6249 priv->is_8764 = true; 6250 6251 priv->sram = pci_iomap(pdev, 0, 0x10000); 6252 if (priv->sram == NULL) { 6253 wiphy_err(hw->wiphy, "Cannot map device SRAM\n"); 6254 rc = -EIO; 6255 goto err_iounmap; 6256 } 6257 6258 /* 6259 * If BAR0 is a 32 bit BAR, the register BAR will be BAR1. 6260 * If BAR0 is a 64 bit BAR, the register BAR will be BAR2. 6261 */ 6262 priv->regs = pci_iomap(pdev, 1, 0x10000); 6263 if (priv->regs == NULL) { 6264 priv->regs = pci_iomap(pdev, 2, 0x10000); 6265 if (priv->regs == NULL) { 6266 wiphy_err(hw->wiphy, "Cannot map device registers\n"); 6267 rc = -EIO; 6268 goto err_iounmap; 6269 } 6270 } 6271 6272 /* 6273 * Choose the initial fw image depending on user input. If a second 6274 * image is available, make it the alternative image that will be 6275 * loaded if the first one fails. 6276 */ 6277 init_completion(&priv->firmware_loading_complete); 6278 di = priv->device_info; 6279 if (ap_mode_default && di->fw_image_ap) { 6280 priv->fw_pref = di->fw_image_ap; 6281 priv->fw_alt = di->fw_image_sta; 6282 } else if (!ap_mode_default && di->fw_image_sta) { 6283 priv->fw_pref = di->fw_image_sta; 6284 priv->fw_alt = di->fw_image_ap; 6285 } else if (ap_mode_default && !di->fw_image_ap && di->fw_image_sta) { 6286 printk(KERN_WARNING "AP fw is unavailable. Using STA fw."); 6287 priv->fw_pref = di->fw_image_sta; 6288 } else if (!ap_mode_default && !di->fw_image_sta && di->fw_image_ap) { 6289 printk(KERN_WARNING "STA fw is unavailable. Using AP fw."); 6290 priv->fw_pref = di->fw_image_ap; 6291 } 6292 rc = mwl8k_init_firmware(hw, priv->fw_pref, true); 6293 if (rc) 6294 goto err_stop_firmware; 6295 6296 priv->hw_restart_in_progress = false; 6297 6298 priv->running_bsses = 0; 6299 6300 return rc; 6301 6302 err_stop_firmware: 6303 mwl8k_hw_reset(priv); 6304 6305 err_iounmap: 6306 if (priv->regs != NULL) 6307 pci_iounmap(pdev, priv->regs); 6308 6309 if (priv->sram != NULL) 6310 pci_iounmap(pdev, priv->sram); 6311 6312 ieee80211_free_hw(hw); 6313 6314 err_free_reg: 6315 pci_release_regions(pdev); 6316 6317 err_disable_device: 6318 pci_disable_device(pdev); 6319 6320 return rc; 6321 } 6322 6323 static void mwl8k_remove(struct pci_dev *pdev) 6324 { 6325 struct ieee80211_hw *hw = pci_get_drvdata(pdev); 6326 struct mwl8k_priv *priv; 6327 int i; 6328 6329 if (hw == NULL) 6330 return; 6331 priv = hw->priv; 6332 6333 wait_for_completion(&priv->firmware_loading_complete); 6334 6335 if (priv->fw_state == FW_STATE_ERROR) { 6336 mwl8k_hw_reset(priv); 6337 goto unmap; 6338 } 6339 6340 ieee80211_stop_queues(hw); 6341 6342 ieee80211_unregister_hw(hw); 6343 6344 /* Remove TX reclaim and RX tasklets. */ 6345 tasklet_kill(&priv->poll_tx_task); 6346 tasklet_kill(&priv->poll_rx_task); 6347 6348 /* Stop hardware */ 6349 mwl8k_hw_reset(priv); 6350 6351 /* Return all skbs to mac80211 */ 6352 for (i = 0; i < mwl8k_tx_queues(priv); i++) 6353 mwl8k_txq_reclaim(hw, i, INT_MAX, 1); 6354 6355 for (i = 0; i < mwl8k_tx_queues(priv); i++) 6356 mwl8k_txq_deinit(hw, i); 6357 6358 mwl8k_rxq_deinit(hw, 0); 6359 6360 dma_free_coherent(&priv->pdev->dev, 4, priv->cookie, priv->cookie_dma); 6361 6362 unmap: 6363 pci_iounmap(pdev, priv->regs); 6364 pci_iounmap(pdev, priv->sram); 6365 ieee80211_free_hw(hw); 6366 pci_release_regions(pdev); 6367 pci_disable_device(pdev); 6368 } 6369 6370 static struct pci_driver mwl8k_driver = { 6371 .name = MWL8K_NAME, 6372 .id_table = mwl8k_pci_id_table, 6373 .probe = mwl8k_probe, 6374 .remove = mwl8k_remove, 6375 }; 6376 6377 module_pci_driver(mwl8k_driver); 6378 6379 MODULE_DESCRIPTION(MWL8K_DESC); 6380 MODULE_VERSION(MWL8K_VERSION); 6381 MODULE_AUTHOR("Lennert Buytenhek <buytenh@marvell.com>"); 6382 MODULE_LICENSE("GPL"); 6383