mwl8k.c revision 5d377fcaf48cc38882bb92c3b4a0cfcfb250087b
1/* 2 * drivers/net/wireless/mwl8k.c 3 * Driver for Marvell TOPDOG 802.11 Wireless cards 4 * 5 * Copyright (C) 2008, 2009, 2010 Marvell Semiconductor Inc. 6 * 7 * This file is licensed under the terms of the GNU General Public 8 * License version 2. This program is licensed "as is" without any 9 * warranty of any kind, whether express or implied. 10 */ 11 12#include <linux/init.h> 13#include <linux/interrupt.h> 14#include <linux/module.h> 15#include <linux/kernel.h> 16#include <linux/sched.h> 17#include <linux/spinlock.h> 18#include <linux/list.h> 19#include <linux/pci.h> 20#include <linux/delay.h> 21#include <linux/completion.h> 22#include <linux/etherdevice.h> 23#include <linux/slab.h> 24#include <net/mac80211.h> 25#include <linux/moduleparam.h> 26#include <linux/firmware.h> 27#include <linux/workqueue.h> 28 29#define MWL8K_DESC "Marvell TOPDOG(R) 802.11 Wireless Network Driver" 30#define MWL8K_NAME KBUILD_MODNAME 31#define MWL8K_VERSION "0.13" 32 33/* Module parameters */ 34static bool ap_mode_default; 35module_param(ap_mode_default, bool, 0); 36MODULE_PARM_DESC(ap_mode_default, 37 "Set to 1 to make ap mode the default instead of sta mode"); 38 39/* Register definitions */ 40#define MWL8K_HIU_GEN_PTR 0x00000c10 41#define MWL8K_MODE_STA 0x0000005a 42#define MWL8K_MODE_AP 0x000000a5 43#define MWL8K_HIU_INT_CODE 0x00000c14 44#define MWL8K_FWSTA_READY 0xf0f1f2f4 45#define MWL8K_FWAP_READY 0xf1f2f4a5 46#define MWL8K_INT_CODE_CMD_FINISHED 0x00000005 47#define MWL8K_HIU_SCRATCH 0x00000c40 48 49/* Host->device communications */ 50#define MWL8K_HIU_H2A_INTERRUPT_EVENTS 0x00000c18 51#define MWL8K_HIU_H2A_INTERRUPT_STATUS 0x00000c1c 52#define MWL8K_HIU_H2A_INTERRUPT_MASK 0x00000c20 53#define MWL8K_HIU_H2A_INTERRUPT_CLEAR_SEL 0x00000c24 54#define MWL8K_HIU_H2A_INTERRUPT_STATUS_MASK 0x00000c28 55#define MWL8K_H2A_INT_DUMMY (1 << 20) 56#define MWL8K_H2A_INT_RESET (1 << 15) 57#define MWL8K_H2A_INT_DOORBELL (1 << 1) 58#define MWL8K_H2A_INT_PPA_READY (1 << 0) 59 60/* Device->host communications */ 61#define MWL8K_HIU_A2H_INTERRUPT_EVENTS 0x00000c2c 62#define MWL8K_HIU_A2H_INTERRUPT_STATUS 0x00000c30 63#define MWL8K_HIU_A2H_INTERRUPT_MASK 0x00000c34 64#define MWL8K_HIU_A2H_INTERRUPT_CLEAR_SEL 0x00000c38 65#define MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK 0x00000c3c 66#define MWL8K_A2H_INT_DUMMY (1 << 20) 67#define MWL8K_A2H_INT_BA_WATCHDOG (1 << 14) 68#define MWL8K_A2H_INT_CHNL_SWITCHED (1 << 11) 69#define MWL8K_A2H_INT_QUEUE_EMPTY (1 << 10) 70#define MWL8K_A2H_INT_RADAR_DETECT (1 << 7) 71#define MWL8K_A2H_INT_RADIO_ON (1 << 6) 72#define MWL8K_A2H_INT_RADIO_OFF (1 << 5) 73#define MWL8K_A2H_INT_MAC_EVENT (1 << 3) 74#define MWL8K_A2H_INT_OPC_DONE (1 << 2) 75#define MWL8K_A2H_INT_RX_READY (1 << 1) 76#define MWL8K_A2H_INT_TX_DONE (1 << 0) 77 78/* HW micro second timer register 79 * located at offset 0xA600. This 80 * will be used to timestamp tx 81 * packets. 82 */ 83 84#define MWL8K_HW_TIMER_REGISTER 0x0000a600 85 86#define MWL8K_A2H_EVENTS (MWL8K_A2H_INT_DUMMY | \ 87 MWL8K_A2H_INT_CHNL_SWITCHED | \ 88 MWL8K_A2H_INT_QUEUE_EMPTY | \ 89 MWL8K_A2H_INT_RADAR_DETECT | \ 90 MWL8K_A2H_INT_RADIO_ON | \ 91 MWL8K_A2H_INT_RADIO_OFF | \ 92 MWL8K_A2H_INT_MAC_EVENT | \ 93 MWL8K_A2H_INT_OPC_DONE | \ 94 MWL8K_A2H_INT_RX_READY | \ 95 MWL8K_A2H_INT_TX_DONE | \ 96 MWL8K_A2H_INT_BA_WATCHDOG) 97 98#define MWL8K_RX_QUEUES 1 99#define MWL8K_TX_WMM_QUEUES 4 100#define MWL8K_MAX_AMPDU_QUEUES 8 101#define MWL8K_MAX_TX_QUEUES (MWL8K_TX_WMM_QUEUES + MWL8K_MAX_AMPDU_QUEUES) 102#define mwl8k_tx_queues(priv) (MWL8K_TX_WMM_QUEUES + (priv)->num_ampdu_queues) 103 104struct rxd_ops { 105 int rxd_size; 106 void (*rxd_init)(void *rxd, dma_addr_t next_dma_addr); 107 void (*rxd_refill)(void *rxd, dma_addr_t addr, int len); 108 int (*rxd_process)(void *rxd, struct ieee80211_rx_status *status, 109 __le16 *qos, s8 *noise); 110}; 111 112struct mwl8k_device_info { 113 char *part_name; 114 char *helper_image; 115 char *fw_image_sta; 116 char *fw_image_ap; 117 struct rxd_ops *ap_rxd_ops; 118 u32 fw_api_ap; 119}; 120 121struct mwl8k_rx_queue { 122 int rxd_count; 123 124 /* hw receives here */ 125 int head; 126 127 /* refill descs here */ 128 int tail; 129 130 void *rxd; 131 dma_addr_t rxd_dma; 132 struct { 133 struct sk_buff *skb; 134 DEFINE_DMA_UNMAP_ADDR(dma); 135 } *buf; 136}; 137 138struct mwl8k_tx_queue { 139 /* hw transmits here */ 140 int head; 141 142 /* sw appends here */ 143 int tail; 144 145 unsigned int len; 146 struct mwl8k_tx_desc *txd; 147 dma_addr_t txd_dma; 148 struct sk_buff **skb; 149}; 150 151enum { 152 AMPDU_NO_STREAM, 153 AMPDU_STREAM_NEW, 154 AMPDU_STREAM_IN_PROGRESS, 155 AMPDU_STREAM_ACTIVE, 156}; 157 158struct mwl8k_ampdu_stream { 159 struct ieee80211_sta *sta; 160 u8 tid; 161 u8 state; 162 u8 idx; 163 u8 txq_idx; /* index of this stream in priv->txq */ 164}; 165 166struct mwl8k_priv { 167 struct ieee80211_hw *hw; 168 struct pci_dev *pdev; 169 int irq; 170 171 struct mwl8k_device_info *device_info; 172 173 void __iomem *sram; 174 void __iomem *regs; 175 176 /* firmware */ 177 const struct firmware *fw_helper; 178 const struct firmware *fw_ucode; 179 180 /* hardware/firmware parameters */ 181 bool ap_fw; 182 struct rxd_ops *rxd_ops; 183 struct ieee80211_supported_band band_24; 184 struct ieee80211_channel channels_24[14]; 185 struct ieee80211_rate rates_24[14]; 186 struct ieee80211_supported_band band_50; 187 struct ieee80211_channel channels_50[4]; 188 struct ieee80211_rate rates_50[9]; 189 u32 ap_macids_supported; 190 u32 sta_macids_supported; 191 192 /* Ampdu stream information */ 193 u8 num_ampdu_queues; 194 spinlock_t stream_lock; 195 struct mwl8k_ampdu_stream ampdu[MWL8K_MAX_AMPDU_QUEUES]; 196 struct work_struct watchdog_ba_handle; 197 198 /* firmware access */ 199 struct mutex fw_mutex; 200 struct task_struct *fw_mutex_owner; 201 struct task_struct *hw_restart_owner; 202 int fw_mutex_depth; 203 struct completion *hostcmd_wait; 204 205 /* lock held over TX and TX reap */ 206 spinlock_t tx_lock; 207 208 /* TX quiesce completion, protected by fw_mutex and tx_lock */ 209 struct completion *tx_wait; 210 211 /* List of interfaces. */ 212 u32 macids_used; 213 struct list_head vif_list; 214 215 /* power management status cookie from firmware */ 216 u32 *cookie; 217 dma_addr_t cookie_dma; 218 219 u16 num_mcaddrs; 220 u8 hw_rev; 221 u32 fw_rev; 222 223 /* 224 * Running count of TX packets in flight, to avoid 225 * iterating over the transmit rings each time. 226 */ 227 int pending_tx_pkts; 228 229 struct mwl8k_rx_queue rxq[MWL8K_RX_QUEUES]; 230 struct mwl8k_tx_queue txq[MWL8K_MAX_TX_QUEUES]; 231 u32 txq_offset[MWL8K_MAX_TX_QUEUES]; 232 233 bool radio_on; 234 bool radio_short_preamble; 235 bool sniffer_enabled; 236 bool wmm_enabled; 237 238 /* XXX need to convert this to handle multiple interfaces */ 239 bool capture_beacon; 240 u8 capture_bssid[ETH_ALEN]; 241 struct sk_buff *beacon_skb; 242 243 /* 244 * This FJ worker has to be global as it is scheduled from the 245 * RX handler. At this point we don't know which interface it 246 * belongs to until the list of bssids waiting to complete join 247 * is checked. 248 */ 249 struct work_struct finalize_join_worker; 250 251 /* Tasklet to perform TX reclaim. */ 252 struct tasklet_struct poll_tx_task; 253 254 /* Tasklet to perform RX. */ 255 struct tasklet_struct poll_rx_task; 256 257 /* Most recently reported noise in dBm */ 258 s8 noise; 259 260 /* 261 * preserve the queue configurations so they can be restored if/when 262 * the firmware image is swapped. 263 */ 264 struct ieee80211_tx_queue_params wmm_params[MWL8K_TX_WMM_QUEUES]; 265 266 /* To perform the task of reloading the firmware */ 267 struct work_struct fw_reload; 268 bool hw_restart_in_progress; 269 270 /* async firmware loading state */ 271 unsigned fw_state; 272 char *fw_pref; 273 char *fw_alt; 274 struct completion firmware_loading_complete; 275}; 276 277#define MAX_WEP_KEY_LEN 13 278#define NUM_WEP_KEYS 4 279 280/* Per interface specific private data */ 281struct mwl8k_vif { 282 struct list_head list; 283 struct ieee80211_vif *vif; 284 285 /* Firmware macid for this vif. */ 286 int macid; 287 288 /* Non AMPDU sequence number assigned by driver. */ 289 u16 seqno; 290 291 /* Saved WEP keys */ 292 struct { 293 u8 enabled; 294 u8 key[sizeof(struct ieee80211_key_conf) + MAX_WEP_KEY_LEN]; 295 } wep_key_conf[NUM_WEP_KEYS]; 296 297 /* BSSID */ 298 u8 bssid[ETH_ALEN]; 299 300 /* A flag to indicate is HW crypto is enabled for this bssid */ 301 bool is_hw_crypto_enabled; 302}; 303#define MWL8K_VIF(_vif) ((struct mwl8k_vif *)&((_vif)->drv_priv)) 304#define IEEE80211_KEY_CONF(_u8) ((struct ieee80211_key_conf *)(_u8)) 305 306struct tx_traffic_info { 307 u32 start_time; 308 u32 pkts; 309}; 310 311#define MWL8K_MAX_TID 8 312struct mwl8k_sta { 313 /* Index into station database. Returned by UPDATE_STADB. */ 314 u8 peer_id; 315 u8 is_ampdu_allowed; 316 struct tx_traffic_info tx_stats[MWL8K_MAX_TID]; 317}; 318#define MWL8K_STA(_sta) ((struct mwl8k_sta *)&((_sta)->drv_priv)) 319 320static const struct ieee80211_channel mwl8k_channels_24[] = { 321 { .center_freq = 2412, .hw_value = 1, }, 322 { .center_freq = 2417, .hw_value = 2, }, 323 { .center_freq = 2422, .hw_value = 3, }, 324 { .center_freq = 2427, .hw_value = 4, }, 325 { .center_freq = 2432, .hw_value = 5, }, 326 { .center_freq = 2437, .hw_value = 6, }, 327 { .center_freq = 2442, .hw_value = 7, }, 328 { .center_freq = 2447, .hw_value = 8, }, 329 { .center_freq = 2452, .hw_value = 9, }, 330 { .center_freq = 2457, .hw_value = 10, }, 331 { .center_freq = 2462, .hw_value = 11, }, 332 { .center_freq = 2467, .hw_value = 12, }, 333 { .center_freq = 2472, .hw_value = 13, }, 334 { .center_freq = 2484, .hw_value = 14, }, 335}; 336 337static const struct ieee80211_rate mwl8k_rates_24[] = { 338 { .bitrate = 10, .hw_value = 2, }, 339 { .bitrate = 20, .hw_value = 4, }, 340 { .bitrate = 55, .hw_value = 11, }, 341 { .bitrate = 110, .hw_value = 22, }, 342 { .bitrate = 220, .hw_value = 44, }, 343 { .bitrate = 60, .hw_value = 12, }, 344 { .bitrate = 90, .hw_value = 18, }, 345 { .bitrate = 120, .hw_value = 24, }, 346 { .bitrate = 180, .hw_value = 36, }, 347 { .bitrate = 240, .hw_value = 48, }, 348 { .bitrate = 360, .hw_value = 72, }, 349 { .bitrate = 480, .hw_value = 96, }, 350 { .bitrate = 540, .hw_value = 108, }, 351 { .bitrate = 720, .hw_value = 144, }, 352}; 353 354static const struct ieee80211_channel mwl8k_channels_50[] = { 355 { .center_freq = 5180, .hw_value = 36, }, 356 { .center_freq = 5200, .hw_value = 40, }, 357 { .center_freq = 5220, .hw_value = 44, }, 358 { .center_freq = 5240, .hw_value = 48, }, 359}; 360 361static const struct ieee80211_rate mwl8k_rates_50[] = { 362 { .bitrate = 60, .hw_value = 12, }, 363 { .bitrate = 90, .hw_value = 18, }, 364 { .bitrate = 120, .hw_value = 24, }, 365 { .bitrate = 180, .hw_value = 36, }, 366 { .bitrate = 240, .hw_value = 48, }, 367 { .bitrate = 360, .hw_value = 72, }, 368 { .bitrate = 480, .hw_value = 96, }, 369 { .bitrate = 540, .hw_value = 108, }, 370 { .bitrate = 720, .hw_value = 144, }, 371}; 372 373/* Set or get info from Firmware */ 374#define MWL8K_CMD_GET 0x0000 375#define MWL8K_CMD_SET 0x0001 376#define MWL8K_CMD_SET_LIST 0x0002 377 378/* Firmware command codes */ 379#define MWL8K_CMD_CODE_DNLD 0x0001 380#define MWL8K_CMD_GET_HW_SPEC 0x0003 381#define MWL8K_CMD_SET_HW_SPEC 0x0004 382#define MWL8K_CMD_MAC_MULTICAST_ADR 0x0010 383#define MWL8K_CMD_GET_STAT 0x0014 384#define MWL8K_CMD_RADIO_CONTROL 0x001c 385#define MWL8K_CMD_RF_TX_POWER 0x001e 386#define MWL8K_CMD_TX_POWER 0x001f 387#define MWL8K_CMD_RF_ANTENNA 0x0020 388#define MWL8K_CMD_SET_BEACON 0x0100 /* per-vif */ 389#define MWL8K_CMD_SET_PRE_SCAN 0x0107 390#define MWL8K_CMD_SET_POST_SCAN 0x0108 391#define MWL8K_CMD_SET_RF_CHANNEL 0x010a 392#define MWL8K_CMD_SET_AID 0x010d 393#define MWL8K_CMD_SET_RATE 0x0110 394#define MWL8K_CMD_SET_FINALIZE_JOIN 0x0111 395#define MWL8K_CMD_RTS_THRESHOLD 0x0113 396#define MWL8K_CMD_SET_SLOT 0x0114 397#define MWL8K_CMD_SET_EDCA_PARAMS 0x0115 398#define MWL8K_CMD_SET_WMM_MODE 0x0123 399#define MWL8K_CMD_MIMO_CONFIG 0x0125 400#define MWL8K_CMD_USE_FIXED_RATE 0x0126 401#define MWL8K_CMD_ENABLE_SNIFFER 0x0150 402#define MWL8K_CMD_SET_MAC_ADDR 0x0202 /* per-vif */ 403#define MWL8K_CMD_SET_RATEADAPT_MODE 0x0203 404#define MWL8K_CMD_GET_WATCHDOG_BITMAP 0x0205 405#define MWL8K_CMD_DEL_MAC_ADDR 0x0206 /* per-vif */ 406#define MWL8K_CMD_BSS_START 0x1100 /* per-vif */ 407#define MWL8K_CMD_SET_NEW_STN 0x1111 /* per-vif */ 408#define MWL8K_CMD_UPDATE_ENCRYPTION 0x1122 /* per-vif */ 409#define MWL8K_CMD_UPDATE_STADB 0x1123 410#define MWL8K_CMD_BASTREAM 0x1125 411 412static const char *mwl8k_cmd_name(__le16 cmd, char *buf, int bufsize) 413{ 414 u16 command = le16_to_cpu(cmd); 415 416#define MWL8K_CMDNAME(x) case MWL8K_CMD_##x: do {\ 417 snprintf(buf, bufsize, "%s", #x);\ 418 return buf;\ 419 } while (0) 420 switch (command & ~0x8000) { 421 MWL8K_CMDNAME(CODE_DNLD); 422 MWL8K_CMDNAME(GET_HW_SPEC); 423 MWL8K_CMDNAME(SET_HW_SPEC); 424 MWL8K_CMDNAME(MAC_MULTICAST_ADR); 425 MWL8K_CMDNAME(GET_STAT); 426 MWL8K_CMDNAME(RADIO_CONTROL); 427 MWL8K_CMDNAME(RF_TX_POWER); 428 MWL8K_CMDNAME(TX_POWER); 429 MWL8K_CMDNAME(RF_ANTENNA); 430 MWL8K_CMDNAME(SET_BEACON); 431 MWL8K_CMDNAME(SET_PRE_SCAN); 432 MWL8K_CMDNAME(SET_POST_SCAN); 433 MWL8K_CMDNAME(SET_RF_CHANNEL); 434 MWL8K_CMDNAME(SET_AID); 435 MWL8K_CMDNAME(SET_RATE); 436 MWL8K_CMDNAME(SET_FINALIZE_JOIN); 437 MWL8K_CMDNAME(RTS_THRESHOLD); 438 MWL8K_CMDNAME(SET_SLOT); 439 MWL8K_CMDNAME(SET_EDCA_PARAMS); 440 MWL8K_CMDNAME(SET_WMM_MODE); 441 MWL8K_CMDNAME(MIMO_CONFIG); 442 MWL8K_CMDNAME(USE_FIXED_RATE); 443 MWL8K_CMDNAME(ENABLE_SNIFFER); 444 MWL8K_CMDNAME(SET_MAC_ADDR); 445 MWL8K_CMDNAME(SET_RATEADAPT_MODE); 446 MWL8K_CMDNAME(BSS_START); 447 MWL8K_CMDNAME(SET_NEW_STN); 448 MWL8K_CMDNAME(UPDATE_ENCRYPTION); 449 MWL8K_CMDNAME(UPDATE_STADB); 450 MWL8K_CMDNAME(BASTREAM); 451 MWL8K_CMDNAME(GET_WATCHDOG_BITMAP); 452 default: 453 snprintf(buf, bufsize, "0x%x", cmd); 454 } 455#undef MWL8K_CMDNAME 456 457 return buf; 458} 459 460/* Hardware and firmware reset */ 461static void mwl8k_hw_reset(struct mwl8k_priv *priv) 462{ 463 iowrite32(MWL8K_H2A_INT_RESET, 464 priv->regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 465 iowrite32(MWL8K_H2A_INT_RESET, 466 priv->regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 467 msleep(20); 468} 469 470/* Release fw image */ 471static void mwl8k_release_fw(const struct firmware **fw) 472{ 473 if (*fw == NULL) 474 return; 475 release_firmware(*fw); 476 *fw = NULL; 477} 478 479static void mwl8k_release_firmware(struct mwl8k_priv *priv) 480{ 481 mwl8k_release_fw(&priv->fw_ucode); 482 mwl8k_release_fw(&priv->fw_helper); 483} 484 485/* states for asynchronous f/w loading */ 486static void mwl8k_fw_state_machine(const struct firmware *fw, void *context); 487enum { 488 FW_STATE_INIT = 0, 489 FW_STATE_LOADING_PREF, 490 FW_STATE_LOADING_ALT, 491 FW_STATE_ERROR, 492}; 493 494/* Request fw image */ 495static int mwl8k_request_fw(struct mwl8k_priv *priv, 496 const char *fname, const struct firmware **fw, 497 bool nowait) 498{ 499 /* release current image */ 500 if (*fw != NULL) 501 mwl8k_release_fw(fw); 502 503 if (nowait) 504 return request_firmware_nowait(THIS_MODULE, 1, fname, 505 &priv->pdev->dev, GFP_KERNEL, 506 priv, mwl8k_fw_state_machine); 507 else 508 return request_firmware(fw, fname, &priv->pdev->dev); 509} 510 511static int mwl8k_request_firmware(struct mwl8k_priv *priv, char *fw_image, 512 bool nowait) 513{ 514 struct mwl8k_device_info *di = priv->device_info; 515 int rc; 516 517 if (di->helper_image != NULL) { 518 if (nowait) 519 rc = mwl8k_request_fw(priv, di->helper_image, 520 &priv->fw_helper, true); 521 else 522 rc = mwl8k_request_fw(priv, di->helper_image, 523 &priv->fw_helper, false); 524 if (rc) 525 printk(KERN_ERR "%s: Error requesting helper fw %s\n", 526 pci_name(priv->pdev), di->helper_image); 527 528 if (rc || nowait) 529 return rc; 530 } 531 532 if (nowait) { 533 /* 534 * if we get here, no helper image is needed. Skip the 535 * FW_STATE_INIT state. 536 */ 537 priv->fw_state = FW_STATE_LOADING_PREF; 538 rc = mwl8k_request_fw(priv, fw_image, 539 &priv->fw_ucode, 540 true); 541 } else 542 rc = mwl8k_request_fw(priv, fw_image, 543 &priv->fw_ucode, false); 544 if (rc) { 545 printk(KERN_ERR "%s: Error requesting firmware file %s\n", 546 pci_name(priv->pdev), fw_image); 547 mwl8k_release_fw(&priv->fw_helper); 548 return rc; 549 } 550 551 return 0; 552} 553 554struct mwl8k_cmd_pkt { 555 __le16 code; 556 __le16 length; 557 __u8 seq_num; 558 __u8 macid; 559 __le16 result; 560 char payload[0]; 561} __packed; 562 563/* 564 * Firmware loading. 565 */ 566static int 567mwl8k_send_fw_load_cmd(struct mwl8k_priv *priv, void *data, int length) 568{ 569 void __iomem *regs = priv->regs; 570 dma_addr_t dma_addr; 571 int loops; 572 573 dma_addr = pci_map_single(priv->pdev, data, length, PCI_DMA_TODEVICE); 574 if (pci_dma_mapping_error(priv->pdev, dma_addr)) 575 return -ENOMEM; 576 577 iowrite32(dma_addr, regs + MWL8K_HIU_GEN_PTR); 578 iowrite32(0, regs + MWL8K_HIU_INT_CODE); 579 iowrite32(MWL8K_H2A_INT_DOORBELL, 580 regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 581 iowrite32(MWL8K_H2A_INT_DUMMY, 582 regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 583 584 loops = 1000; 585 do { 586 u32 int_code; 587 588 int_code = ioread32(regs + MWL8K_HIU_INT_CODE); 589 if (int_code == MWL8K_INT_CODE_CMD_FINISHED) { 590 iowrite32(0, regs + MWL8K_HIU_INT_CODE); 591 break; 592 } 593 594 cond_resched(); 595 udelay(1); 596 } while (--loops); 597 598 pci_unmap_single(priv->pdev, dma_addr, length, PCI_DMA_TODEVICE); 599 600 return loops ? 0 : -ETIMEDOUT; 601} 602 603static int mwl8k_load_fw_image(struct mwl8k_priv *priv, 604 const u8 *data, size_t length) 605{ 606 struct mwl8k_cmd_pkt *cmd; 607 int done; 608 int rc = 0; 609 610 cmd = kmalloc(sizeof(*cmd) + 256, GFP_KERNEL); 611 if (cmd == NULL) 612 return -ENOMEM; 613 614 cmd->code = cpu_to_le16(MWL8K_CMD_CODE_DNLD); 615 cmd->seq_num = 0; 616 cmd->macid = 0; 617 cmd->result = 0; 618 619 done = 0; 620 while (length) { 621 int block_size = length > 256 ? 256 : length; 622 623 memcpy(cmd->payload, data + done, block_size); 624 cmd->length = cpu_to_le16(block_size); 625 626 rc = mwl8k_send_fw_load_cmd(priv, cmd, 627 sizeof(*cmd) + block_size); 628 if (rc) 629 break; 630 631 done += block_size; 632 length -= block_size; 633 } 634 635 if (!rc) { 636 cmd->length = 0; 637 rc = mwl8k_send_fw_load_cmd(priv, cmd, sizeof(*cmd)); 638 } 639 640 kfree(cmd); 641 642 return rc; 643} 644 645static int mwl8k_feed_fw_image(struct mwl8k_priv *priv, 646 const u8 *data, size_t length) 647{ 648 unsigned char *buffer; 649 int may_continue, rc = 0; 650 u32 done, prev_block_size; 651 652 buffer = kmalloc(1024, GFP_KERNEL); 653 if (buffer == NULL) 654 return -ENOMEM; 655 656 done = 0; 657 prev_block_size = 0; 658 may_continue = 1000; 659 while (may_continue > 0) { 660 u32 block_size; 661 662 block_size = ioread32(priv->regs + MWL8K_HIU_SCRATCH); 663 if (block_size & 1) { 664 block_size &= ~1; 665 may_continue--; 666 } else { 667 done += prev_block_size; 668 length -= prev_block_size; 669 } 670 671 if (block_size > 1024 || block_size > length) { 672 rc = -EOVERFLOW; 673 break; 674 } 675 676 if (length == 0) { 677 rc = 0; 678 break; 679 } 680 681 if (block_size == 0) { 682 rc = -EPROTO; 683 may_continue--; 684 udelay(1); 685 continue; 686 } 687 688 prev_block_size = block_size; 689 memcpy(buffer, data + done, block_size); 690 691 rc = mwl8k_send_fw_load_cmd(priv, buffer, block_size); 692 if (rc) 693 break; 694 } 695 696 if (!rc && length != 0) 697 rc = -EREMOTEIO; 698 699 kfree(buffer); 700 701 return rc; 702} 703 704static int mwl8k_load_firmware(struct ieee80211_hw *hw) 705{ 706 struct mwl8k_priv *priv = hw->priv; 707 const struct firmware *fw = priv->fw_ucode; 708 int rc; 709 int loops; 710 711 if (!memcmp(fw->data, "\x01\x00\x00\x00", 4)) { 712 const struct firmware *helper = priv->fw_helper; 713 714 if (helper == NULL) { 715 printk(KERN_ERR "%s: helper image needed but none " 716 "given\n", pci_name(priv->pdev)); 717 return -EINVAL; 718 } 719 720 rc = mwl8k_load_fw_image(priv, helper->data, helper->size); 721 if (rc) { 722 printk(KERN_ERR "%s: unable to load firmware " 723 "helper image\n", pci_name(priv->pdev)); 724 return rc; 725 } 726 msleep(20); 727 728 rc = mwl8k_feed_fw_image(priv, fw->data, fw->size); 729 } else { 730 rc = mwl8k_load_fw_image(priv, fw->data, fw->size); 731 } 732 733 if (rc) { 734 printk(KERN_ERR "%s: unable to load firmware image\n", 735 pci_name(priv->pdev)); 736 return rc; 737 } 738 739 iowrite32(MWL8K_MODE_STA, priv->regs + MWL8K_HIU_GEN_PTR); 740 741 loops = 500000; 742 do { 743 u32 ready_code; 744 745 ready_code = ioread32(priv->regs + MWL8K_HIU_INT_CODE); 746 if (ready_code == MWL8K_FWAP_READY) { 747 priv->ap_fw = true; 748 break; 749 } else if (ready_code == MWL8K_FWSTA_READY) { 750 priv->ap_fw = false; 751 break; 752 } 753 754 cond_resched(); 755 udelay(1); 756 } while (--loops); 757 758 return loops ? 0 : -ETIMEDOUT; 759} 760 761 762/* DMA header used by firmware and hardware. */ 763struct mwl8k_dma_data { 764 __le16 fwlen; 765 struct ieee80211_hdr wh; 766 char data[0]; 767} __packed; 768 769/* Routines to add/remove DMA header from skb. */ 770static inline void mwl8k_remove_dma_header(struct sk_buff *skb, __le16 qos) 771{ 772 struct mwl8k_dma_data *tr; 773 int hdrlen; 774 775 tr = (struct mwl8k_dma_data *)skb->data; 776 hdrlen = ieee80211_hdrlen(tr->wh.frame_control); 777 778 if (hdrlen != sizeof(tr->wh)) { 779 if (ieee80211_is_data_qos(tr->wh.frame_control)) { 780 memmove(tr->data - hdrlen, &tr->wh, hdrlen - 2); 781 *((__le16 *)(tr->data - 2)) = qos; 782 } else { 783 memmove(tr->data - hdrlen, &tr->wh, hdrlen); 784 } 785 } 786 787 if (hdrlen != sizeof(*tr)) 788 skb_pull(skb, sizeof(*tr) - hdrlen); 789} 790 791#define REDUCED_TX_HEADROOM 8 792 793static void 794mwl8k_add_dma_header(struct mwl8k_priv *priv, struct sk_buff *skb, 795 int head_pad, int tail_pad) 796{ 797 struct ieee80211_hdr *wh; 798 int hdrlen; 799 int reqd_hdrlen; 800 struct mwl8k_dma_data *tr; 801 802 /* 803 * Add a firmware DMA header; the firmware requires that we 804 * present a 2-byte payload length followed by a 4-address 805 * header (without QoS field), followed (optionally) by any 806 * WEP/ExtIV header (but only filled in for CCMP). 807 */ 808 wh = (struct ieee80211_hdr *)skb->data; 809 810 hdrlen = ieee80211_hdrlen(wh->frame_control); 811 812 /* 813 * Check if skb_resize is required because of 814 * tx_headroom adjustment. 815 */ 816 if (priv->ap_fw && (hdrlen < (sizeof(struct ieee80211_cts) 817 + REDUCED_TX_HEADROOM))) { 818 if (pskb_expand_head(skb, REDUCED_TX_HEADROOM, 0, GFP_ATOMIC)) { 819 820 wiphy_err(priv->hw->wiphy, 821 "Failed to reallocate TX buffer\n"); 822 return; 823 } 824 skb->truesize += REDUCED_TX_HEADROOM; 825 } 826 827 reqd_hdrlen = sizeof(*tr) + head_pad; 828 829 if (hdrlen != reqd_hdrlen) 830 skb_push(skb, reqd_hdrlen - hdrlen); 831 832 if (ieee80211_is_data_qos(wh->frame_control)) 833 hdrlen -= IEEE80211_QOS_CTL_LEN; 834 835 tr = (struct mwl8k_dma_data *)skb->data; 836 if (wh != &tr->wh) 837 memmove(&tr->wh, wh, hdrlen); 838 if (hdrlen != sizeof(tr->wh)) 839 memset(((void *)&tr->wh) + hdrlen, 0, sizeof(tr->wh) - hdrlen); 840 841 /* 842 * Firmware length is the length of the fully formed "802.11 843 * payload". That is, everything except for the 802.11 header. 844 * This includes all crypto material including the MIC. 845 */ 846 tr->fwlen = cpu_to_le16(skb->len - sizeof(*tr) + tail_pad); 847} 848 849static void mwl8k_encapsulate_tx_frame(struct mwl8k_priv *priv, 850 struct sk_buff *skb) 851{ 852 struct ieee80211_hdr *wh; 853 struct ieee80211_tx_info *tx_info; 854 struct ieee80211_key_conf *key_conf; 855 int data_pad; 856 int head_pad = 0; 857 858 wh = (struct ieee80211_hdr *)skb->data; 859 860 tx_info = IEEE80211_SKB_CB(skb); 861 862 key_conf = NULL; 863 if (ieee80211_is_data(wh->frame_control)) 864 key_conf = tx_info->control.hw_key; 865 866 /* 867 * Make sure the packet header is in the DMA header format (4-address 868 * without QoS), and add head & tail padding when HW crypto is enabled. 869 * 870 * We have the following trailer padding requirements: 871 * - WEP: 4 trailer bytes (ICV) 872 * - TKIP: 12 trailer bytes (8 MIC + 4 ICV) 873 * - CCMP: 8 trailer bytes (MIC) 874 */ 875 data_pad = 0; 876 if (key_conf != NULL) { 877 head_pad = key_conf->iv_len; 878 switch (key_conf->cipher) { 879 case WLAN_CIPHER_SUITE_WEP40: 880 case WLAN_CIPHER_SUITE_WEP104: 881 data_pad = 4; 882 break; 883 case WLAN_CIPHER_SUITE_TKIP: 884 data_pad = 12; 885 break; 886 case WLAN_CIPHER_SUITE_CCMP: 887 data_pad = 8; 888 break; 889 } 890 } 891 mwl8k_add_dma_header(priv, skb, head_pad, data_pad); 892} 893 894/* 895 * Packet reception for 88w8366 AP firmware. 896 */ 897struct mwl8k_rxd_8366_ap { 898 __le16 pkt_len; 899 __u8 sq2; 900 __u8 rate; 901 __le32 pkt_phys_addr; 902 __le32 next_rxd_phys_addr; 903 __le16 qos_control; 904 __le16 htsig2; 905 __le32 hw_rssi_info; 906 __le32 hw_noise_floor_info; 907 __u8 noise_floor; 908 __u8 pad0[3]; 909 __u8 rssi; 910 __u8 rx_status; 911 __u8 channel; 912 __u8 rx_ctrl; 913} __packed; 914 915#define MWL8K_8366_AP_RATE_INFO_MCS_FORMAT 0x80 916#define MWL8K_8366_AP_RATE_INFO_40MHZ 0x40 917#define MWL8K_8366_AP_RATE_INFO_RATEID(x) ((x) & 0x3f) 918 919#define MWL8K_8366_AP_RX_CTRL_OWNED_BY_HOST 0x80 920 921/* 8366 AP rx_status bits */ 922#define MWL8K_8366_AP_RXSTAT_DECRYPT_ERR_MASK 0x80 923#define MWL8K_8366_AP_RXSTAT_GENERAL_DECRYPT_ERR 0xFF 924#define MWL8K_8366_AP_RXSTAT_TKIP_DECRYPT_MIC_ERR 0x02 925#define MWL8K_8366_AP_RXSTAT_WEP_DECRYPT_ICV_ERR 0x04 926#define MWL8K_8366_AP_RXSTAT_TKIP_DECRYPT_ICV_ERR 0x08 927 928static void mwl8k_rxd_8366_ap_init(void *_rxd, dma_addr_t next_dma_addr) 929{ 930 struct mwl8k_rxd_8366_ap *rxd = _rxd; 931 932 rxd->next_rxd_phys_addr = cpu_to_le32(next_dma_addr); 933 rxd->rx_ctrl = MWL8K_8366_AP_RX_CTRL_OWNED_BY_HOST; 934} 935 936static void mwl8k_rxd_8366_ap_refill(void *_rxd, dma_addr_t addr, int len) 937{ 938 struct mwl8k_rxd_8366_ap *rxd = _rxd; 939 940 rxd->pkt_len = cpu_to_le16(len); 941 rxd->pkt_phys_addr = cpu_to_le32(addr); 942 wmb(); 943 rxd->rx_ctrl = 0; 944} 945 946static int 947mwl8k_rxd_8366_ap_process(void *_rxd, struct ieee80211_rx_status *status, 948 __le16 *qos, s8 *noise) 949{ 950 struct mwl8k_rxd_8366_ap *rxd = _rxd; 951 952 if (!(rxd->rx_ctrl & MWL8K_8366_AP_RX_CTRL_OWNED_BY_HOST)) 953 return -1; 954 rmb(); 955 956 memset(status, 0, sizeof(*status)); 957 958 status->signal = -rxd->rssi; 959 *noise = -rxd->noise_floor; 960 961 if (rxd->rate & MWL8K_8366_AP_RATE_INFO_MCS_FORMAT) { 962 status->flag |= RX_FLAG_HT; 963 if (rxd->rate & MWL8K_8366_AP_RATE_INFO_40MHZ) 964 status->flag |= RX_FLAG_40MHZ; 965 status->rate_idx = MWL8K_8366_AP_RATE_INFO_RATEID(rxd->rate); 966 } else { 967 int i; 968 969 for (i = 0; i < ARRAY_SIZE(mwl8k_rates_24); i++) { 970 if (mwl8k_rates_24[i].hw_value == rxd->rate) { 971 status->rate_idx = i; 972 break; 973 } 974 } 975 } 976 977 if (rxd->channel > 14) { 978 status->band = IEEE80211_BAND_5GHZ; 979 if (!(status->flag & RX_FLAG_HT)) 980 status->rate_idx -= 5; 981 } else { 982 status->band = IEEE80211_BAND_2GHZ; 983 } 984 status->freq = ieee80211_channel_to_frequency(rxd->channel, 985 status->band); 986 987 *qos = rxd->qos_control; 988 989 if ((rxd->rx_status != MWL8K_8366_AP_RXSTAT_GENERAL_DECRYPT_ERR) && 990 (rxd->rx_status & MWL8K_8366_AP_RXSTAT_DECRYPT_ERR_MASK) && 991 (rxd->rx_status & MWL8K_8366_AP_RXSTAT_TKIP_DECRYPT_MIC_ERR)) 992 status->flag |= RX_FLAG_MMIC_ERROR; 993 994 return le16_to_cpu(rxd->pkt_len); 995} 996 997static struct rxd_ops rxd_8366_ap_ops = { 998 .rxd_size = sizeof(struct mwl8k_rxd_8366_ap), 999 .rxd_init = mwl8k_rxd_8366_ap_init, 1000 .rxd_refill = mwl8k_rxd_8366_ap_refill, 1001 .rxd_process = mwl8k_rxd_8366_ap_process, 1002}; 1003 1004/* 1005 * Packet reception for STA firmware. 1006 */ 1007struct mwl8k_rxd_sta { 1008 __le16 pkt_len; 1009 __u8 link_quality; 1010 __u8 noise_level; 1011 __le32 pkt_phys_addr; 1012 __le32 next_rxd_phys_addr; 1013 __le16 qos_control; 1014 __le16 rate_info; 1015 __le32 pad0[4]; 1016 __u8 rssi; 1017 __u8 channel; 1018 __le16 pad1; 1019 __u8 rx_ctrl; 1020 __u8 rx_status; 1021 __u8 pad2[2]; 1022} __packed; 1023 1024#define MWL8K_STA_RATE_INFO_SHORTPRE 0x8000 1025#define MWL8K_STA_RATE_INFO_ANTSELECT(x) (((x) >> 11) & 0x3) 1026#define MWL8K_STA_RATE_INFO_RATEID(x) (((x) >> 3) & 0x3f) 1027#define MWL8K_STA_RATE_INFO_40MHZ 0x0004 1028#define MWL8K_STA_RATE_INFO_SHORTGI 0x0002 1029#define MWL8K_STA_RATE_INFO_MCS_FORMAT 0x0001 1030 1031#define MWL8K_STA_RX_CTRL_OWNED_BY_HOST 0x02 1032#define MWL8K_STA_RX_CTRL_DECRYPT_ERROR 0x04 1033/* ICV=0 or MIC=1 */ 1034#define MWL8K_STA_RX_CTRL_DEC_ERR_TYPE 0x08 1035/* Key is uploaded only in failure case */ 1036#define MWL8K_STA_RX_CTRL_KEY_INDEX 0x30 1037 1038static void mwl8k_rxd_sta_init(void *_rxd, dma_addr_t next_dma_addr) 1039{ 1040 struct mwl8k_rxd_sta *rxd = _rxd; 1041 1042 rxd->next_rxd_phys_addr = cpu_to_le32(next_dma_addr); 1043 rxd->rx_ctrl = MWL8K_STA_RX_CTRL_OWNED_BY_HOST; 1044} 1045 1046static void mwl8k_rxd_sta_refill(void *_rxd, dma_addr_t addr, int len) 1047{ 1048 struct mwl8k_rxd_sta *rxd = _rxd; 1049 1050 rxd->pkt_len = cpu_to_le16(len); 1051 rxd->pkt_phys_addr = cpu_to_le32(addr); 1052 wmb(); 1053 rxd->rx_ctrl = 0; 1054} 1055 1056static int 1057mwl8k_rxd_sta_process(void *_rxd, struct ieee80211_rx_status *status, 1058 __le16 *qos, s8 *noise) 1059{ 1060 struct mwl8k_rxd_sta *rxd = _rxd; 1061 u16 rate_info; 1062 1063 if (!(rxd->rx_ctrl & MWL8K_STA_RX_CTRL_OWNED_BY_HOST)) 1064 return -1; 1065 rmb(); 1066 1067 rate_info = le16_to_cpu(rxd->rate_info); 1068 1069 memset(status, 0, sizeof(*status)); 1070 1071 status->signal = -rxd->rssi; 1072 *noise = -rxd->noise_level; 1073 status->antenna = MWL8K_STA_RATE_INFO_ANTSELECT(rate_info); 1074 status->rate_idx = MWL8K_STA_RATE_INFO_RATEID(rate_info); 1075 1076 if (rate_info & MWL8K_STA_RATE_INFO_SHORTPRE) 1077 status->flag |= RX_FLAG_SHORTPRE; 1078 if (rate_info & MWL8K_STA_RATE_INFO_40MHZ) 1079 status->flag |= RX_FLAG_40MHZ; 1080 if (rate_info & MWL8K_STA_RATE_INFO_SHORTGI) 1081 status->flag |= RX_FLAG_SHORT_GI; 1082 if (rate_info & MWL8K_STA_RATE_INFO_MCS_FORMAT) 1083 status->flag |= RX_FLAG_HT; 1084 1085 if (rxd->channel > 14) { 1086 status->band = IEEE80211_BAND_5GHZ; 1087 if (!(status->flag & RX_FLAG_HT)) 1088 status->rate_idx -= 5; 1089 } else { 1090 status->band = IEEE80211_BAND_2GHZ; 1091 } 1092 status->freq = ieee80211_channel_to_frequency(rxd->channel, 1093 status->band); 1094 1095 *qos = rxd->qos_control; 1096 if ((rxd->rx_ctrl & MWL8K_STA_RX_CTRL_DECRYPT_ERROR) && 1097 (rxd->rx_ctrl & MWL8K_STA_RX_CTRL_DEC_ERR_TYPE)) 1098 status->flag |= RX_FLAG_MMIC_ERROR; 1099 1100 return le16_to_cpu(rxd->pkt_len); 1101} 1102 1103static struct rxd_ops rxd_sta_ops = { 1104 .rxd_size = sizeof(struct mwl8k_rxd_sta), 1105 .rxd_init = mwl8k_rxd_sta_init, 1106 .rxd_refill = mwl8k_rxd_sta_refill, 1107 .rxd_process = mwl8k_rxd_sta_process, 1108}; 1109 1110 1111#define MWL8K_RX_DESCS 256 1112#define MWL8K_RX_MAXSZ 3800 1113 1114static int mwl8k_rxq_init(struct ieee80211_hw *hw, int index) 1115{ 1116 struct mwl8k_priv *priv = hw->priv; 1117 struct mwl8k_rx_queue *rxq = priv->rxq + index; 1118 int size; 1119 int i; 1120 1121 rxq->rxd_count = 0; 1122 rxq->head = 0; 1123 rxq->tail = 0; 1124 1125 size = MWL8K_RX_DESCS * priv->rxd_ops->rxd_size; 1126 1127 rxq->rxd = pci_alloc_consistent(priv->pdev, size, &rxq->rxd_dma); 1128 if (rxq->rxd == NULL) { 1129 wiphy_err(hw->wiphy, "failed to alloc RX descriptors\n"); 1130 return -ENOMEM; 1131 } 1132 memset(rxq->rxd, 0, size); 1133 1134 rxq->buf = kcalloc(MWL8K_RX_DESCS, sizeof(*rxq->buf), GFP_KERNEL); 1135 if (rxq->buf == NULL) { 1136 wiphy_err(hw->wiphy, "failed to alloc RX skbuff list\n"); 1137 pci_free_consistent(priv->pdev, size, rxq->rxd, rxq->rxd_dma); 1138 return -ENOMEM; 1139 } 1140 1141 for (i = 0; i < MWL8K_RX_DESCS; i++) { 1142 int desc_size; 1143 void *rxd; 1144 int nexti; 1145 dma_addr_t next_dma_addr; 1146 1147 desc_size = priv->rxd_ops->rxd_size; 1148 rxd = rxq->rxd + (i * priv->rxd_ops->rxd_size); 1149 1150 nexti = i + 1; 1151 if (nexti == MWL8K_RX_DESCS) 1152 nexti = 0; 1153 next_dma_addr = rxq->rxd_dma + (nexti * desc_size); 1154 1155 priv->rxd_ops->rxd_init(rxd, next_dma_addr); 1156 } 1157 1158 return 0; 1159} 1160 1161static int rxq_refill(struct ieee80211_hw *hw, int index, int limit) 1162{ 1163 struct mwl8k_priv *priv = hw->priv; 1164 struct mwl8k_rx_queue *rxq = priv->rxq + index; 1165 int refilled; 1166 1167 refilled = 0; 1168 while (rxq->rxd_count < MWL8K_RX_DESCS && limit--) { 1169 struct sk_buff *skb; 1170 dma_addr_t addr; 1171 int rx; 1172 void *rxd; 1173 1174 skb = dev_alloc_skb(MWL8K_RX_MAXSZ); 1175 if (skb == NULL) 1176 break; 1177 1178 addr = pci_map_single(priv->pdev, skb->data, 1179 MWL8K_RX_MAXSZ, DMA_FROM_DEVICE); 1180 1181 rxq->rxd_count++; 1182 rx = rxq->tail++; 1183 if (rxq->tail == MWL8K_RX_DESCS) 1184 rxq->tail = 0; 1185 rxq->buf[rx].skb = skb; 1186 dma_unmap_addr_set(&rxq->buf[rx], dma, addr); 1187 1188 rxd = rxq->rxd + (rx * priv->rxd_ops->rxd_size); 1189 priv->rxd_ops->rxd_refill(rxd, addr, MWL8K_RX_MAXSZ); 1190 1191 refilled++; 1192 } 1193 1194 return refilled; 1195} 1196 1197/* Must be called only when the card's reception is completely halted */ 1198static void mwl8k_rxq_deinit(struct ieee80211_hw *hw, int index) 1199{ 1200 struct mwl8k_priv *priv = hw->priv; 1201 struct mwl8k_rx_queue *rxq = priv->rxq + index; 1202 int i; 1203 1204 if (rxq->rxd == NULL) 1205 return; 1206 1207 for (i = 0; i < MWL8K_RX_DESCS; i++) { 1208 if (rxq->buf[i].skb != NULL) { 1209 pci_unmap_single(priv->pdev, 1210 dma_unmap_addr(&rxq->buf[i], dma), 1211 MWL8K_RX_MAXSZ, PCI_DMA_FROMDEVICE); 1212 dma_unmap_addr_set(&rxq->buf[i], dma, 0); 1213 1214 kfree_skb(rxq->buf[i].skb); 1215 rxq->buf[i].skb = NULL; 1216 } 1217 } 1218 1219 kfree(rxq->buf); 1220 rxq->buf = NULL; 1221 1222 pci_free_consistent(priv->pdev, 1223 MWL8K_RX_DESCS * priv->rxd_ops->rxd_size, 1224 rxq->rxd, rxq->rxd_dma); 1225 rxq->rxd = NULL; 1226} 1227 1228 1229/* 1230 * Scan a list of BSSIDs to process for finalize join. 1231 * Allows for extension to process multiple BSSIDs. 1232 */ 1233static inline int 1234mwl8k_capture_bssid(struct mwl8k_priv *priv, struct ieee80211_hdr *wh) 1235{ 1236 return priv->capture_beacon && 1237 ieee80211_is_beacon(wh->frame_control) && 1238 ether_addr_equal(wh->addr3, priv->capture_bssid); 1239} 1240 1241static inline void mwl8k_save_beacon(struct ieee80211_hw *hw, 1242 struct sk_buff *skb) 1243{ 1244 struct mwl8k_priv *priv = hw->priv; 1245 1246 priv->capture_beacon = false; 1247 memset(priv->capture_bssid, 0, ETH_ALEN); 1248 1249 /* 1250 * Use GFP_ATOMIC as rxq_process is called from 1251 * the primary interrupt handler, memory allocation call 1252 * must not sleep. 1253 */ 1254 priv->beacon_skb = skb_copy(skb, GFP_ATOMIC); 1255 if (priv->beacon_skb != NULL) 1256 ieee80211_queue_work(hw, &priv->finalize_join_worker); 1257} 1258 1259static inline struct mwl8k_vif *mwl8k_find_vif_bss(struct list_head *vif_list, 1260 u8 *bssid) 1261{ 1262 struct mwl8k_vif *mwl8k_vif; 1263 1264 list_for_each_entry(mwl8k_vif, 1265 vif_list, list) { 1266 if (memcmp(bssid, mwl8k_vif->bssid, 1267 ETH_ALEN) == 0) 1268 return mwl8k_vif; 1269 } 1270 1271 return NULL; 1272} 1273 1274static int rxq_process(struct ieee80211_hw *hw, int index, int limit) 1275{ 1276 struct mwl8k_priv *priv = hw->priv; 1277 struct mwl8k_vif *mwl8k_vif = NULL; 1278 struct mwl8k_rx_queue *rxq = priv->rxq + index; 1279 int processed; 1280 1281 processed = 0; 1282 while (rxq->rxd_count && limit--) { 1283 struct sk_buff *skb; 1284 void *rxd; 1285 int pkt_len; 1286 struct ieee80211_rx_status status; 1287 struct ieee80211_hdr *wh; 1288 __le16 qos; 1289 1290 skb = rxq->buf[rxq->head].skb; 1291 if (skb == NULL) 1292 break; 1293 1294 rxd = rxq->rxd + (rxq->head * priv->rxd_ops->rxd_size); 1295 1296 pkt_len = priv->rxd_ops->rxd_process(rxd, &status, &qos, 1297 &priv->noise); 1298 if (pkt_len < 0) 1299 break; 1300 1301 rxq->buf[rxq->head].skb = NULL; 1302 1303 pci_unmap_single(priv->pdev, 1304 dma_unmap_addr(&rxq->buf[rxq->head], dma), 1305 MWL8K_RX_MAXSZ, PCI_DMA_FROMDEVICE); 1306 dma_unmap_addr_set(&rxq->buf[rxq->head], dma, 0); 1307 1308 rxq->head++; 1309 if (rxq->head == MWL8K_RX_DESCS) 1310 rxq->head = 0; 1311 1312 rxq->rxd_count--; 1313 1314 wh = &((struct mwl8k_dma_data *)skb->data)->wh; 1315 1316 /* 1317 * Check for a pending join operation. Save a 1318 * copy of the beacon and schedule a tasklet to 1319 * send a FINALIZE_JOIN command to the firmware. 1320 */ 1321 if (mwl8k_capture_bssid(priv, (void *)skb->data)) 1322 mwl8k_save_beacon(hw, skb); 1323 1324 if (ieee80211_has_protected(wh->frame_control)) { 1325 1326 /* Check if hw crypto has been enabled for 1327 * this bss. If yes, set the status flags 1328 * accordingly 1329 */ 1330 mwl8k_vif = mwl8k_find_vif_bss(&priv->vif_list, 1331 wh->addr1); 1332 1333 if (mwl8k_vif != NULL && 1334 mwl8k_vif->is_hw_crypto_enabled) { 1335 /* 1336 * When MMIC ERROR is encountered 1337 * by the firmware, payload is 1338 * dropped and only 32 bytes of 1339 * mwl8k Firmware header is sent 1340 * to the host. 1341 * 1342 * We need to add four bytes of 1343 * key information. In it 1344 * MAC80211 expects keyidx set to 1345 * 0 for triggering Counter 1346 * Measure of MMIC failure. 1347 */ 1348 if (status.flag & RX_FLAG_MMIC_ERROR) { 1349 struct mwl8k_dma_data *tr; 1350 tr = (struct mwl8k_dma_data *)skb->data; 1351 memset((void *)&(tr->data), 0, 4); 1352 pkt_len += 4; 1353 } 1354 1355 if (!ieee80211_is_auth(wh->frame_control)) 1356 status.flag |= RX_FLAG_IV_STRIPPED | 1357 RX_FLAG_DECRYPTED | 1358 RX_FLAG_MMIC_STRIPPED; 1359 } 1360 } 1361 1362 skb_put(skb, pkt_len); 1363 mwl8k_remove_dma_header(skb, qos); 1364 memcpy(IEEE80211_SKB_RXCB(skb), &status, sizeof(status)); 1365 ieee80211_rx_irqsafe(hw, skb); 1366 1367 processed++; 1368 } 1369 1370 return processed; 1371} 1372 1373 1374/* 1375 * Packet transmission. 1376 */ 1377 1378#define MWL8K_TXD_STATUS_OK 0x00000001 1379#define MWL8K_TXD_STATUS_OK_RETRY 0x00000002 1380#define MWL8K_TXD_STATUS_OK_MORE_RETRY 0x00000004 1381#define MWL8K_TXD_STATUS_MULTICAST_TX 0x00000008 1382#define MWL8K_TXD_STATUS_FW_OWNED 0x80000000 1383 1384#define MWL8K_QOS_QLEN_UNSPEC 0xff00 1385#define MWL8K_QOS_ACK_POLICY_MASK 0x0060 1386#define MWL8K_QOS_ACK_POLICY_NORMAL 0x0000 1387#define MWL8K_QOS_ACK_POLICY_BLOCKACK 0x0060 1388#define MWL8K_QOS_EOSP 0x0010 1389 1390struct mwl8k_tx_desc { 1391 __le32 status; 1392 __u8 data_rate; 1393 __u8 tx_priority; 1394 __le16 qos_control; 1395 __le32 pkt_phys_addr; 1396 __le16 pkt_len; 1397 __u8 dest_MAC_addr[ETH_ALEN]; 1398 __le32 next_txd_phys_addr; 1399 __le32 timestamp; 1400 __le16 rate_info; 1401 __u8 peer_id; 1402 __u8 tx_frag_cnt; 1403} __packed; 1404 1405#define MWL8K_TX_DESCS 128 1406 1407static int mwl8k_txq_init(struct ieee80211_hw *hw, int index) 1408{ 1409 struct mwl8k_priv *priv = hw->priv; 1410 struct mwl8k_tx_queue *txq = priv->txq + index; 1411 int size; 1412 int i; 1413 1414 txq->len = 0; 1415 txq->head = 0; 1416 txq->tail = 0; 1417 1418 size = MWL8K_TX_DESCS * sizeof(struct mwl8k_tx_desc); 1419 1420 txq->txd = pci_alloc_consistent(priv->pdev, size, &txq->txd_dma); 1421 if (txq->txd == NULL) { 1422 wiphy_err(hw->wiphy, "failed to alloc TX descriptors\n"); 1423 return -ENOMEM; 1424 } 1425 memset(txq->txd, 0, size); 1426 1427 txq->skb = kcalloc(MWL8K_TX_DESCS, sizeof(*txq->skb), GFP_KERNEL); 1428 if (txq->skb == NULL) { 1429 wiphy_err(hw->wiphy, "failed to alloc TX skbuff list\n"); 1430 pci_free_consistent(priv->pdev, size, txq->txd, txq->txd_dma); 1431 return -ENOMEM; 1432 } 1433 1434 for (i = 0; i < MWL8K_TX_DESCS; i++) { 1435 struct mwl8k_tx_desc *tx_desc; 1436 int nexti; 1437 1438 tx_desc = txq->txd + i; 1439 nexti = (i + 1) % MWL8K_TX_DESCS; 1440 1441 tx_desc->status = 0; 1442 tx_desc->next_txd_phys_addr = 1443 cpu_to_le32(txq->txd_dma + nexti * sizeof(*tx_desc)); 1444 } 1445 1446 return 0; 1447} 1448 1449static inline void mwl8k_tx_start(struct mwl8k_priv *priv) 1450{ 1451 iowrite32(MWL8K_H2A_INT_PPA_READY, 1452 priv->regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 1453 iowrite32(MWL8K_H2A_INT_DUMMY, 1454 priv->regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 1455 ioread32(priv->regs + MWL8K_HIU_INT_CODE); 1456} 1457 1458static void mwl8k_dump_tx_rings(struct ieee80211_hw *hw) 1459{ 1460 struct mwl8k_priv *priv = hw->priv; 1461 int i; 1462 1463 for (i = 0; i < mwl8k_tx_queues(priv); i++) { 1464 struct mwl8k_tx_queue *txq = priv->txq + i; 1465 int fw_owned = 0; 1466 int drv_owned = 0; 1467 int unused = 0; 1468 int desc; 1469 1470 for (desc = 0; desc < MWL8K_TX_DESCS; desc++) { 1471 struct mwl8k_tx_desc *tx_desc = txq->txd + desc; 1472 u32 status; 1473 1474 status = le32_to_cpu(tx_desc->status); 1475 if (status & MWL8K_TXD_STATUS_FW_OWNED) 1476 fw_owned++; 1477 else 1478 drv_owned++; 1479 1480 if (tx_desc->pkt_len == 0) 1481 unused++; 1482 } 1483 1484 wiphy_err(hw->wiphy, 1485 "txq[%d] len=%d head=%d tail=%d " 1486 "fw_owned=%d drv_owned=%d unused=%d\n", 1487 i, 1488 txq->len, txq->head, txq->tail, 1489 fw_owned, drv_owned, unused); 1490 } 1491} 1492 1493/* 1494 * Must be called with priv->fw_mutex held and tx queues stopped. 1495 */ 1496#define MWL8K_TX_WAIT_TIMEOUT_MS 5000 1497 1498static int mwl8k_tx_wait_empty(struct ieee80211_hw *hw) 1499{ 1500 struct mwl8k_priv *priv = hw->priv; 1501 DECLARE_COMPLETION_ONSTACK(tx_wait); 1502 int retry; 1503 int rc; 1504 1505 might_sleep(); 1506 1507 /* Since fw restart is in progress, allow only the firmware 1508 * commands from the restart code and block the other 1509 * commands since they are going to fail in any case since 1510 * the firmware has crashed 1511 */ 1512 if (priv->hw_restart_in_progress) { 1513 if (priv->hw_restart_owner == current) 1514 return 0; 1515 else 1516 return -EBUSY; 1517 } 1518 1519 /* 1520 * The TX queues are stopped at this point, so this test 1521 * doesn't need to take ->tx_lock. 1522 */ 1523 if (!priv->pending_tx_pkts) 1524 return 0; 1525 1526 retry = 0; 1527 rc = 0; 1528 1529 spin_lock_bh(&priv->tx_lock); 1530 priv->tx_wait = &tx_wait; 1531 while (!rc) { 1532 int oldcount; 1533 unsigned long timeout; 1534 1535 oldcount = priv->pending_tx_pkts; 1536 1537 spin_unlock_bh(&priv->tx_lock); 1538 timeout = wait_for_completion_timeout(&tx_wait, 1539 msecs_to_jiffies(MWL8K_TX_WAIT_TIMEOUT_MS)); 1540 spin_lock_bh(&priv->tx_lock); 1541 1542 if (timeout) { 1543 WARN_ON(priv->pending_tx_pkts); 1544 if (retry) 1545 wiphy_notice(hw->wiphy, "tx rings drained\n"); 1546 break; 1547 } 1548 1549 if (priv->pending_tx_pkts < oldcount) { 1550 wiphy_notice(hw->wiphy, 1551 "waiting for tx rings to drain (%d -> %d pkts)\n", 1552 oldcount, priv->pending_tx_pkts); 1553 retry = 1; 1554 continue; 1555 } 1556 1557 priv->tx_wait = NULL; 1558 1559 wiphy_err(hw->wiphy, "tx rings stuck for %d ms\n", 1560 MWL8K_TX_WAIT_TIMEOUT_MS); 1561 mwl8k_dump_tx_rings(hw); 1562 priv->hw_restart_in_progress = true; 1563 ieee80211_queue_work(hw, &priv->fw_reload); 1564 1565 rc = -ETIMEDOUT; 1566 } 1567 spin_unlock_bh(&priv->tx_lock); 1568 1569 return rc; 1570} 1571 1572#define MWL8K_TXD_SUCCESS(status) \ 1573 ((status) & (MWL8K_TXD_STATUS_OK | \ 1574 MWL8K_TXD_STATUS_OK_RETRY | \ 1575 MWL8K_TXD_STATUS_OK_MORE_RETRY)) 1576 1577static int mwl8k_tid_queue_mapping(u8 tid) 1578{ 1579 BUG_ON(tid > 7); 1580 1581 switch (tid) { 1582 case 0: 1583 case 3: 1584 return IEEE80211_AC_BE; 1585 break; 1586 case 1: 1587 case 2: 1588 return IEEE80211_AC_BK; 1589 break; 1590 case 4: 1591 case 5: 1592 return IEEE80211_AC_VI; 1593 break; 1594 case 6: 1595 case 7: 1596 return IEEE80211_AC_VO; 1597 break; 1598 default: 1599 return -1; 1600 break; 1601 } 1602} 1603 1604/* The firmware will fill in the rate information 1605 * for each packet that gets queued in the hardware 1606 * and these macros will interpret that info. 1607 */ 1608 1609#define RI_FORMAT(a) (a & 0x0001) 1610#define RI_RATE_ID_MCS(a) ((a & 0x01f8) >> 3) 1611 1612static int 1613mwl8k_txq_reclaim(struct ieee80211_hw *hw, int index, int limit, int force) 1614{ 1615 struct mwl8k_priv *priv = hw->priv; 1616 struct mwl8k_tx_queue *txq = priv->txq + index; 1617 int processed; 1618 1619 processed = 0; 1620 while (txq->len > 0 && limit--) { 1621 int tx; 1622 struct mwl8k_tx_desc *tx_desc; 1623 unsigned long addr; 1624 int size; 1625 struct sk_buff *skb; 1626 struct ieee80211_tx_info *info; 1627 u32 status; 1628 struct ieee80211_sta *sta; 1629 struct mwl8k_sta *sta_info = NULL; 1630 u16 rate_info; 1631 struct ieee80211_hdr *wh; 1632 1633 tx = txq->head; 1634 tx_desc = txq->txd + tx; 1635 1636 status = le32_to_cpu(tx_desc->status); 1637 1638 if (status & MWL8K_TXD_STATUS_FW_OWNED) { 1639 if (!force) 1640 break; 1641 tx_desc->status &= 1642 ~cpu_to_le32(MWL8K_TXD_STATUS_FW_OWNED); 1643 } 1644 1645 txq->head = (tx + 1) % MWL8K_TX_DESCS; 1646 BUG_ON(txq->len == 0); 1647 txq->len--; 1648 priv->pending_tx_pkts--; 1649 1650 addr = le32_to_cpu(tx_desc->pkt_phys_addr); 1651 size = le16_to_cpu(tx_desc->pkt_len); 1652 skb = txq->skb[tx]; 1653 txq->skb[tx] = NULL; 1654 1655 BUG_ON(skb == NULL); 1656 pci_unmap_single(priv->pdev, addr, size, PCI_DMA_TODEVICE); 1657 1658 mwl8k_remove_dma_header(skb, tx_desc->qos_control); 1659 1660 wh = (struct ieee80211_hdr *) skb->data; 1661 1662 /* Mark descriptor as unused */ 1663 tx_desc->pkt_phys_addr = 0; 1664 tx_desc->pkt_len = 0; 1665 1666 info = IEEE80211_SKB_CB(skb); 1667 if (ieee80211_is_data(wh->frame_control)) { 1668 rcu_read_lock(); 1669 sta = ieee80211_find_sta_by_ifaddr(hw, wh->addr1, 1670 wh->addr2); 1671 if (sta) { 1672 sta_info = MWL8K_STA(sta); 1673 BUG_ON(sta_info == NULL); 1674 rate_info = le16_to_cpu(tx_desc->rate_info); 1675 /* If rate is < 6.5 Mpbs for an ht station 1676 * do not form an ampdu. If the station is a 1677 * legacy station (format = 0), do not form an 1678 * ampdu 1679 */ 1680 if (RI_RATE_ID_MCS(rate_info) < 1 || 1681 RI_FORMAT(rate_info) == 0) { 1682 sta_info->is_ampdu_allowed = false; 1683 } else { 1684 sta_info->is_ampdu_allowed = true; 1685 } 1686 } 1687 rcu_read_unlock(); 1688 } 1689 1690 ieee80211_tx_info_clear_status(info); 1691 1692 /* Rate control is happening in the firmware. 1693 * Ensure no tx rate is being reported. 1694 */ 1695 info->status.rates[0].idx = -1; 1696 info->status.rates[0].count = 1; 1697 1698 if (MWL8K_TXD_SUCCESS(status)) 1699 info->flags |= IEEE80211_TX_STAT_ACK; 1700 1701 ieee80211_tx_status_irqsafe(hw, skb); 1702 1703 processed++; 1704 } 1705 1706 return processed; 1707} 1708 1709/* must be called only when the card's transmit is completely halted */ 1710static void mwl8k_txq_deinit(struct ieee80211_hw *hw, int index) 1711{ 1712 struct mwl8k_priv *priv = hw->priv; 1713 struct mwl8k_tx_queue *txq = priv->txq + index; 1714 1715 if (txq->txd == NULL) 1716 return; 1717 1718 mwl8k_txq_reclaim(hw, index, INT_MAX, 1); 1719 1720 kfree(txq->skb); 1721 txq->skb = NULL; 1722 1723 pci_free_consistent(priv->pdev, 1724 MWL8K_TX_DESCS * sizeof(struct mwl8k_tx_desc), 1725 txq->txd, txq->txd_dma); 1726 txq->txd = NULL; 1727} 1728 1729/* caller must hold priv->stream_lock when calling the stream functions */ 1730static struct mwl8k_ampdu_stream * 1731mwl8k_add_stream(struct ieee80211_hw *hw, struct ieee80211_sta *sta, u8 tid) 1732{ 1733 struct mwl8k_ampdu_stream *stream; 1734 struct mwl8k_priv *priv = hw->priv; 1735 int i; 1736 1737 for (i = 0; i < priv->num_ampdu_queues; i++) { 1738 stream = &priv->ampdu[i]; 1739 if (stream->state == AMPDU_NO_STREAM) { 1740 stream->sta = sta; 1741 stream->state = AMPDU_STREAM_NEW; 1742 stream->tid = tid; 1743 stream->idx = i; 1744 stream->txq_idx = MWL8K_TX_WMM_QUEUES + i; 1745 wiphy_debug(hw->wiphy, "Added a new stream for %pM %d", 1746 sta->addr, tid); 1747 return stream; 1748 } 1749 } 1750 return NULL; 1751} 1752 1753static int 1754mwl8k_start_stream(struct ieee80211_hw *hw, struct mwl8k_ampdu_stream *stream) 1755{ 1756 int ret; 1757 1758 /* if the stream has already been started, don't start it again */ 1759 if (stream->state != AMPDU_STREAM_NEW) 1760 return 0; 1761 ret = ieee80211_start_tx_ba_session(stream->sta, stream->tid, 0); 1762 if (ret) 1763 wiphy_debug(hw->wiphy, "Failed to start stream for %pM %d: " 1764 "%d\n", stream->sta->addr, stream->tid, ret); 1765 else 1766 wiphy_debug(hw->wiphy, "Started stream for %pM %d\n", 1767 stream->sta->addr, stream->tid); 1768 return ret; 1769} 1770 1771static void 1772mwl8k_remove_stream(struct ieee80211_hw *hw, struct mwl8k_ampdu_stream *stream) 1773{ 1774 wiphy_debug(hw->wiphy, "Remove stream for %pM %d\n", stream->sta->addr, 1775 stream->tid); 1776 memset(stream, 0, sizeof(*stream)); 1777} 1778 1779static struct mwl8k_ampdu_stream * 1780mwl8k_lookup_stream(struct ieee80211_hw *hw, u8 *addr, u8 tid) 1781{ 1782 struct mwl8k_priv *priv = hw->priv; 1783 int i; 1784 1785 for (i = 0 ; i < priv->num_ampdu_queues; i++) { 1786 struct mwl8k_ampdu_stream *stream; 1787 stream = &priv->ampdu[i]; 1788 if (stream->state == AMPDU_NO_STREAM) 1789 continue; 1790 if (!memcmp(stream->sta->addr, addr, ETH_ALEN) && 1791 stream->tid == tid) 1792 return stream; 1793 } 1794 return NULL; 1795} 1796 1797#define MWL8K_AMPDU_PACKET_THRESHOLD 64 1798static inline bool mwl8k_ampdu_allowed(struct ieee80211_sta *sta, u8 tid) 1799{ 1800 struct mwl8k_sta *sta_info = MWL8K_STA(sta); 1801 struct tx_traffic_info *tx_stats; 1802 1803 BUG_ON(tid >= MWL8K_MAX_TID); 1804 tx_stats = &sta_info->tx_stats[tid]; 1805 1806 return sta_info->is_ampdu_allowed && 1807 tx_stats->pkts > MWL8K_AMPDU_PACKET_THRESHOLD; 1808} 1809 1810static inline void mwl8k_tx_count_packet(struct ieee80211_sta *sta, u8 tid) 1811{ 1812 struct mwl8k_sta *sta_info = MWL8K_STA(sta); 1813 struct tx_traffic_info *tx_stats; 1814 1815 BUG_ON(tid >= MWL8K_MAX_TID); 1816 tx_stats = &sta_info->tx_stats[tid]; 1817 1818 if (tx_stats->start_time == 0) 1819 tx_stats->start_time = jiffies; 1820 1821 /* reset the packet count after each second elapses. If the number of 1822 * packets ever exceeds the ampdu_min_traffic threshold, we will allow 1823 * an ampdu stream to be started. 1824 */ 1825 if (jiffies - tx_stats->start_time > HZ) { 1826 tx_stats->pkts = 0; 1827 tx_stats->start_time = 0; 1828 } else 1829 tx_stats->pkts++; 1830} 1831 1832static void 1833mwl8k_txq_xmit(struct ieee80211_hw *hw, 1834 int index, 1835 struct ieee80211_sta *sta, 1836 struct sk_buff *skb) 1837{ 1838 struct mwl8k_priv *priv = hw->priv; 1839 struct ieee80211_tx_info *tx_info; 1840 struct mwl8k_vif *mwl8k_vif; 1841 struct ieee80211_hdr *wh; 1842 struct mwl8k_tx_queue *txq; 1843 struct mwl8k_tx_desc *tx; 1844 dma_addr_t dma; 1845 u32 txstatus; 1846 u8 txdatarate; 1847 u16 qos; 1848 int txpriority; 1849 u8 tid = 0; 1850 struct mwl8k_ampdu_stream *stream = NULL; 1851 bool start_ba_session = false; 1852 bool mgmtframe = false; 1853 struct ieee80211_mgmt *mgmt = (struct ieee80211_mgmt *)skb->data; 1854 1855 wh = (struct ieee80211_hdr *)skb->data; 1856 if (ieee80211_is_data_qos(wh->frame_control)) 1857 qos = le16_to_cpu(*((__le16 *)ieee80211_get_qos_ctl(wh))); 1858 else 1859 qos = 0; 1860 1861 if (ieee80211_is_mgmt(wh->frame_control)) 1862 mgmtframe = true; 1863 1864 if (priv->ap_fw) 1865 mwl8k_encapsulate_tx_frame(priv, skb); 1866 else 1867 mwl8k_add_dma_header(priv, skb, 0, 0); 1868 1869 wh = &((struct mwl8k_dma_data *)skb->data)->wh; 1870 1871 tx_info = IEEE80211_SKB_CB(skb); 1872 mwl8k_vif = MWL8K_VIF(tx_info->control.vif); 1873 1874 if (tx_info->flags & IEEE80211_TX_CTL_ASSIGN_SEQ) { 1875 wh->seq_ctrl &= cpu_to_le16(IEEE80211_SCTL_FRAG); 1876 wh->seq_ctrl |= cpu_to_le16(mwl8k_vif->seqno); 1877 mwl8k_vif->seqno += 0x10; 1878 } 1879 1880 /* Setup firmware control bit fields for each frame type. */ 1881 txstatus = 0; 1882 txdatarate = 0; 1883 if (ieee80211_is_mgmt(wh->frame_control) || 1884 ieee80211_is_ctl(wh->frame_control)) { 1885 txdatarate = 0; 1886 qos |= MWL8K_QOS_QLEN_UNSPEC | MWL8K_QOS_EOSP; 1887 } else if (ieee80211_is_data(wh->frame_control)) { 1888 txdatarate = 1; 1889 if (is_multicast_ether_addr(wh->addr1)) 1890 txstatus |= MWL8K_TXD_STATUS_MULTICAST_TX; 1891 1892 qos &= ~MWL8K_QOS_ACK_POLICY_MASK; 1893 if (tx_info->flags & IEEE80211_TX_CTL_AMPDU) 1894 qos |= MWL8K_QOS_ACK_POLICY_BLOCKACK; 1895 else 1896 qos |= MWL8K_QOS_ACK_POLICY_NORMAL; 1897 } 1898 1899 /* Queue ADDBA request in the respective data queue. While setting up 1900 * the ampdu stream, mac80211 queues further packets for that 1901 * particular ra/tid pair. However, packets piled up in the hardware 1902 * for that ra/tid pair will still go out. ADDBA request and the 1903 * related data packets going out from different queues asynchronously 1904 * will cause a shift in the receiver window which might result in 1905 * ampdu packets getting dropped at the receiver after the stream has 1906 * been setup. 1907 */ 1908 if (unlikely(ieee80211_is_action(wh->frame_control) && 1909 mgmt->u.action.category == WLAN_CATEGORY_BACK && 1910 mgmt->u.action.u.addba_req.action_code == WLAN_ACTION_ADDBA_REQ && 1911 priv->ap_fw)) { 1912 u16 capab = le16_to_cpu(mgmt->u.action.u.addba_req.capab); 1913 tid = (capab & IEEE80211_ADDBA_PARAM_TID_MASK) >> 2; 1914 index = mwl8k_tid_queue_mapping(tid); 1915 } 1916 1917 txpriority = index; 1918 1919 if (priv->ap_fw && sta && sta->ht_cap.ht_supported 1920 && skb->protocol != cpu_to_be16(ETH_P_PAE) 1921 && ieee80211_is_data_qos(wh->frame_control)) { 1922 tid = qos & 0xf; 1923 mwl8k_tx_count_packet(sta, tid); 1924 spin_lock(&priv->stream_lock); 1925 stream = mwl8k_lookup_stream(hw, sta->addr, tid); 1926 if (stream != NULL) { 1927 if (stream->state == AMPDU_STREAM_ACTIVE) { 1928 txpriority = stream->txq_idx; 1929 index = stream->txq_idx; 1930 } else if (stream->state == AMPDU_STREAM_NEW) { 1931 /* We get here if the driver sends us packets 1932 * after we've initiated a stream, but before 1933 * our ampdu_action routine has been called 1934 * with IEEE80211_AMPDU_TX_START to get the SSN 1935 * for the ADDBA request. So this packet can 1936 * go out with no risk of sequence number 1937 * mismatch. No special handling is required. 1938 */ 1939 } else { 1940 /* Drop packets that would go out after the 1941 * ADDBA request was sent but before the ADDBA 1942 * response is received. If we don't do this, 1943 * the recipient would probably receive it 1944 * after the ADDBA request with SSN 0. This 1945 * will cause the recipient's BA receive window 1946 * to shift, which would cause the subsequent 1947 * packets in the BA stream to be discarded. 1948 * mac80211 queues our packets for us in this 1949 * case, so this is really just a safety check. 1950 */ 1951 wiphy_warn(hw->wiphy, 1952 "Cannot send packet while ADDBA " 1953 "dialog is underway.\n"); 1954 spin_unlock(&priv->stream_lock); 1955 dev_kfree_skb(skb); 1956 return; 1957 } 1958 } else { 1959 /* Defer calling mwl8k_start_stream so that the current 1960 * skb can go out before the ADDBA request. This 1961 * prevents sequence number mismatch at the recepient 1962 * as described above. 1963 */ 1964 if (mwl8k_ampdu_allowed(sta, tid)) { 1965 stream = mwl8k_add_stream(hw, sta, tid); 1966 if (stream != NULL) 1967 start_ba_session = true; 1968 } 1969 } 1970 spin_unlock(&priv->stream_lock); 1971 } 1972 1973 dma = pci_map_single(priv->pdev, skb->data, 1974 skb->len, PCI_DMA_TODEVICE); 1975 1976 if (pci_dma_mapping_error(priv->pdev, dma)) { 1977 wiphy_debug(hw->wiphy, 1978 "failed to dma map skb, dropping TX frame.\n"); 1979 if (start_ba_session) { 1980 spin_lock(&priv->stream_lock); 1981 mwl8k_remove_stream(hw, stream); 1982 spin_unlock(&priv->stream_lock); 1983 } 1984 dev_kfree_skb(skb); 1985 return; 1986 } 1987 1988 spin_lock_bh(&priv->tx_lock); 1989 1990 txq = priv->txq + index; 1991 1992 /* Mgmt frames that go out frequently are probe 1993 * responses. Other mgmt frames got out relatively 1994 * infrequently. Hence reserve 2 buffers so that 1995 * other mgmt frames do not get dropped due to an 1996 * already queued probe response in one of the 1997 * reserved buffers. 1998 */ 1999 2000 if (txq->len >= MWL8K_TX_DESCS - 2) { 2001 if (!mgmtframe || txq->len == MWL8K_TX_DESCS) { 2002 if (start_ba_session) { 2003 spin_lock(&priv->stream_lock); 2004 mwl8k_remove_stream(hw, stream); 2005 spin_unlock(&priv->stream_lock); 2006 } 2007 spin_unlock_bh(&priv->tx_lock); 2008 dev_kfree_skb(skb); 2009 return; 2010 } 2011 } 2012 2013 BUG_ON(txq->skb[txq->tail] != NULL); 2014 txq->skb[txq->tail] = skb; 2015 2016 tx = txq->txd + txq->tail; 2017 tx->data_rate = txdatarate; 2018 tx->tx_priority = txpriority; 2019 tx->qos_control = cpu_to_le16(qos); 2020 tx->pkt_phys_addr = cpu_to_le32(dma); 2021 tx->pkt_len = cpu_to_le16(skb->len); 2022 tx->rate_info = 0; 2023 if (!priv->ap_fw && sta != NULL) 2024 tx->peer_id = MWL8K_STA(sta)->peer_id; 2025 else 2026 tx->peer_id = 0; 2027 2028 if (priv->ap_fw) 2029 tx->timestamp = cpu_to_le32(ioread32(priv->regs + 2030 MWL8K_HW_TIMER_REGISTER)); 2031 2032 wmb(); 2033 tx->status = cpu_to_le32(MWL8K_TXD_STATUS_FW_OWNED | txstatus); 2034 2035 txq->len++; 2036 priv->pending_tx_pkts++; 2037 2038 txq->tail++; 2039 if (txq->tail == MWL8K_TX_DESCS) 2040 txq->tail = 0; 2041 2042 mwl8k_tx_start(priv); 2043 2044 spin_unlock_bh(&priv->tx_lock); 2045 2046 /* Initiate the ampdu session here */ 2047 if (start_ba_session) { 2048 spin_lock(&priv->stream_lock); 2049 if (mwl8k_start_stream(hw, stream)) 2050 mwl8k_remove_stream(hw, stream); 2051 spin_unlock(&priv->stream_lock); 2052 } 2053} 2054 2055 2056/* 2057 * Firmware access. 2058 * 2059 * We have the following requirements for issuing firmware commands: 2060 * - Some commands require that the packet transmit path is idle when 2061 * the command is issued. (For simplicity, we'll just quiesce the 2062 * transmit path for every command.) 2063 * - There are certain sequences of commands that need to be issued to 2064 * the hardware sequentially, with no other intervening commands. 2065 * 2066 * This leads to an implementation of a "firmware lock" as a mutex that 2067 * can be taken recursively, and which is taken by both the low-level 2068 * command submission function (mwl8k_post_cmd) as well as any users of 2069 * that function that require issuing of an atomic sequence of commands, 2070 * and quiesces the transmit path whenever it's taken. 2071 */ 2072static int mwl8k_fw_lock(struct ieee80211_hw *hw) 2073{ 2074 struct mwl8k_priv *priv = hw->priv; 2075 2076 if (priv->fw_mutex_owner != current) { 2077 int rc; 2078 2079 mutex_lock(&priv->fw_mutex); 2080 ieee80211_stop_queues(hw); 2081 2082 rc = mwl8k_tx_wait_empty(hw); 2083 if (rc) { 2084 if (!priv->hw_restart_in_progress) 2085 ieee80211_wake_queues(hw); 2086 2087 mutex_unlock(&priv->fw_mutex); 2088 2089 return rc; 2090 } 2091 2092 priv->fw_mutex_owner = current; 2093 } 2094 2095 priv->fw_mutex_depth++; 2096 2097 return 0; 2098} 2099 2100static void mwl8k_fw_unlock(struct ieee80211_hw *hw) 2101{ 2102 struct mwl8k_priv *priv = hw->priv; 2103 2104 if (!--priv->fw_mutex_depth) { 2105 if (!priv->hw_restart_in_progress) 2106 ieee80211_wake_queues(hw); 2107 2108 priv->fw_mutex_owner = NULL; 2109 mutex_unlock(&priv->fw_mutex); 2110 } 2111} 2112 2113 2114/* 2115 * Command processing. 2116 */ 2117 2118/* Timeout firmware commands after 10s */ 2119#define MWL8K_CMD_TIMEOUT_MS 10000 2120 2121static int mwl8k_post_cmd(struct ieee80211_hw *hw, struct mwl8k_cmd_pkt *cmd) 2122{ 2123 DECLARE_COMPLETION_ONSTACK(cmd_wait); 2124 struct mwl8k_priv *priv = hw->priv; 2125 void __iomem *regs = priv->regs; 2126 dma_addr_t dma_addr; 2127 unsigned int dma_size; 2128 int rc; 2129 unsigned long timeout = 0; 2130 u8 buf[32]; 2131 2132 cmd->result = (__force __le16) 0xffff; 2133 dma_size = le16_to_cpu(cmd->length); 2134 dma_addr = pci_map_single(priv->pdev, cmd, dma_size, 2135 PCI_DMA_BIDIRECTIONAL); 2136 if (pci_dma_mapping_error(priv->pdev, dma_addr)) 2137 return -ENOMEM; 2138 2139 rc = mwl8k_fw_lock(hw); 2140 if (rc) { 2141 pci_unmap_single(priv->pdev, dma_addr, dma_size, 2142 PCI_DMA_BIDIRECTIONAL); 2143 return rc; 2144 } 2145 2146 priv->hostcmd_wait = &cmd_wait; 2147 iowrite32(dma_addr, regs + MWL8K_HIU_GEN_PTR); 2148 iowrite32(MWL8K_H2A_INT_DOORBELL, 2149 regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 2150 iowrite32(MWL8K_H2A_INT_DUMMY, 2151 regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 2152 2153 timeout = wait_for_completion_timeout(&cmd_wait, 2154 msecs_to_jiffies(MWL8K_CMD_TIMEOUT_MS)); 2155 2156 priv->hostcmd_wait = NULL; 2157 2158 mwl8k_fw_unlock(hw); 2159 2160 pci_unmap_single(priv->pdev, dma_addr, dma_size, 2161 PCI_DMA_BIDIRECTIONAL); 2162 2163 if (!timeout) { 2164 wiphy_err(hw->wiphy, "Command %s timeout after %u ms\n", 2165 mwl8k_cmd_name(cmd->code, buf, sizeof(buf)), 2166 MWL8K_CMD_TIMEOUT_MS); 2167 rc = -ETIMEDOUT; 2168 } else { 2169 int ms; 2170 2171 ms = MWL8K_CMD_TIMEOUT_MS - jiffies_to_msecs(timeout); 2172 2173 rc = cmd->result ? -EINVAL : 0; 2174 if (rc) 2175 wiphy_err(hw->wiphy, "Command %s error 0x%x\n", 2176 mwl8k_cmd_name(cmd->code, buf, sizeof(buf)), 2177 le16_to_cpu(cmd->result)); 2178 else if (ms > 2000) 2179 wiphy_notice(hw->wiphy, "Command %s took %d ms\n", 2180 mwl8k_cmd_name(cmd->code, 2181 buf, sizeof(buf)), 2182 ms); 2183 } 2184 2185 return rc; 2186} 2187 2188static int mwl8k_post_pervif_cmd(struct ieee80211_hw *hw, 2189 struct ieee80211_vif *vif, 2190 struct mwl8k_cmd_pkt *cmd) 2191{ 2192 if (vif != NULL) 2193 cmd->macid = MWL8K_VIF(vif)->macid; 2194 return mwl8k_post_cmd(hw, cmd); 2195} 2196 2197/* 2198 * Setup code shared between STA and AP firmware images. 2199 */ 2200static void mwl8k_setup_2ghz_band(struct ieee80211_hw *hw) 2201{ 2202 struct mwl8k_priv *priv = hw->priv; 2203 2204 BUILD_BUG_ON(sizeof(priv->channels_24) != sizeof(mwl8k_channels_24)); 2205 memcpy(priv->channels_24, mwl8k_channels_24, sizeof(mwl8k_channels_24)); 2206 2207 BUILD_BUG_ON(sizeof(priv->rates_24) != sizeof(mwl8k_rates_24)); 2208 memcpy(priv->rates_24, mwl8k_rates_24, sizeof(mwl8k_rates_24)); 2209 2210 priv->band_24.band = IEEE80211_BAND_2GHZ; 2211 priv->band_24.channels = priv->channels_24; 2212 priv->band_24.n_channels = ARRAY_SIZE(mwl8k_channels_24); 2213 priv->band_24.bitrates = priv->rates_24; 2214 priv->band_24.n_bitrates = ARRAY_SIZE(mwl8k_rates_24); 2215 2216 hw->wiphy->bands[IEEE80211_BAND_2GHZ] = &priv->band_24; 2217} 2218 2219static void mwl8k_setup_5ghz_band(struct ieee80211_hw *hw) 2220{ 2221 struct mwl8k_priv *priv = hw->priv; 2222 2223 BUILD_BUG_ON(sizeof(priv->channels_50) != sizeof(mwl8k_channels_50)); 2224 memcpy(priv->channels_50, mwl8k_channels_50, sizeof(mwl8k_channels_50)); 2225 2226 BUILD_BUG_ON(sizeof(priv->rates_50) != sizeof(mwl8k_rates_50)); 2227 memcpy(priv->rates_50, mwl8k_rates_50, sizeof(mwl8k_rates_50)); 2228 2229 priv->band_50.band = IEEE80211_BAND_5GHZ; 2230 priv->band_50.channels = priv->channels_50; 2231 priv->band_50.n_channels = ARRAY_SIZE(mwl8k_channels_50); 2232 priv->band_50.bitrates = priv->rates_50; 2233 priv->band_50.n_bitrates = ARRAY_SIZE(mwl8k_rates_50); 2234 2235 hw->wiphy->bands[IEEE80211_BAND_5GHZ] = &priv->band_50; 2236} 2237 2238/* 2239 * CMD_GET_HW_SPEC (STA version). 2240 */ 2241struct mwl8k_cmd_get_hw_spec_sta { 2242 struct mwl8k_cmd_pkt header; 2243 __u8 hw_rev; 2244 __u8 host_interface; 2245 __le16 num_mcaddrs; 2246 __u8 perm_addr[ETH_ALEN]; 2247 __le16 region_code; 2248 __le32 fw_rev; 2249 __le32 ps_cookie; 2250 __le32 caps; 2251 __u8 mcs_bitmap[16]; 2252 __le32 rx_queue_ptr; 2253 __le32 num_tx_queues; 2254 __le32 tx_queue_ptrs[MWL8K_TX_WMM_QUEUES]; 2255 __le32 caps2; 2256 __le32 num_tx_desc_per_queue; 2257 __le32 total_rxd; 2258} __packed; 2259 2260#define MWL8K_CAP_MAX_AMSDU 0x20000000 2261#define MWL8K_CAP_GREENFIELD 0x08000000 2262#define MWL8K_CAP_AMPDU 0x04000000 2263#define MWL8K_CAP_RX_STBC 0x01000000 2264#define MWL8K_CAP_TX_STBC 0x00800000 2265#define MWL8K_CAP_SHORTGI_40MHZ 0x00400000 2266#define MWL8K_CAP_SHORTGI_20MHZ 0x00200000 2267#define MWL8K_CAP_RX_ANTENNA_MASK 0x000e0000 2268#define MWL8K_CAP_TX_ANTENNA_MASK 0x0001c000 2269#define MWL8K_CAP_DELAY_BA 0x00003000 2270#define MWL8K_CAP_MIMO 0x00000200 2271#define MWL8K_CAP_40MHZ 0x00000100 2272#define MWL8K_CAP_BAND_MASK 0x00000007 2273#define MWL8K_CAP_5GHZ 0x00000004 2274#define MWL8K_CAP_2GHZ4 0x00000001 2275 2276static void 2277mwl8k_set_ht_caps(struct ieee80211_hw *hw, 2278 struct ieee80211_supported_band *band, u32 cap) 2279{ 2280 int rx_streams; 2281 int tx_streams; 2282 2283 band->ht_cap.ht_supported = 1; 2284 2285 if (cap & MWL8K_CAP_MAX_AMSDU) 2286 band->ht_cap.cap |= IEEE80211_HT_CAP_MAX_AMSDU; 2287 if (cap & MWL8K_CAP_GREENFIELD) 2288 band->ht_cap.cap |= IEEE80211_HT_CAP_GRN_FLD; 2289 if (cap & MWL8K_CAP_AMPDU) { 2290 hw->flags |= IEEE80211_HW_AMPDU_AGGREGATION; 2291 band->ht_cap.ampdu_factor = IEEE80211_HT_MAX_AMPDU_64K; 2292 band->ht_cap.ampdu_density = IEEE80211_HT_MPDU_DENSITY_NONE; 2293 } 2294 if (cap & MWL8K_CAP_RX_STBC) 2295 band->ht_cap.cap |= IEEE80211_HT_CAP_RX_STBC; 2296 if (cap & MWL8K_CAP_TX_STBC) 2297 band->ht_cap.cap |= IEEE80211_HT_CAP_TX_STBC; 2298 if (cap & MWL8K_CAP_SHORTGI_40MHZ) 2299 band->ht_cap.cap |= IEEE80211_HT_CAP_SGI_40; 2300 if (cap & MWL8K_CAP_SHORTGI_20MHZ) 2301 band->ht_cap.cap |= IEEE80211_HT_CAP_SGI_20; 2302 if (cap & MWL8K_CAP_DELAY_BA) 2303 band->ht_cap.cap |= IEEE80211_HT_CAP_DELAY_BA; 2304 if (cap & MWL8K_CAP_40MHZ) 2305 band->ht_cap.cap |= IEEE80211_HT_CAP_SUP_WIDTH_20_40; 2306 2307 rx_streams = hweight32(cap & MWL8K_CAP_RX_ANTENNA_MASK); 2308 tx_streams = hweight32(cap & MWL8K_CAP_TX_ANTENNA_MASK); 2309 2310 band->ht_cap.mcs.rx_mask[0] = 0xff; 2311 if (rx_streams >= 2) 2312 band->ht_cap.mcs.rx_mask[1] = 0xff; 2313 if (rx_streams >= 3) 2314 band->ht_cap.mcs.rx_mask[2] = 0xff; 2315 band->ht_cap.mcs.rx_mask[4] = 0x01; 2316 band->ht_cap.mcs.tx_params = IEEE80211_HT_MCS_TX_DEFINED; 2317 2318 if (rx_streams != tx_streams) { 2319 band->ht_cap.mcs.tx_params |= IEEE80211_HT_MCS_TX_RX_DIFF; 2320 band->ht_cap.mcs.tx_params |= (tx_streams - 1) << 2321 IEEE80211_HT_MCS_TX_MAX_STREAMS_SHIFT; 2322 } 2323} 2324 2325static void 2326mwl8k_set_caps(struct ieee80211_hw *hw, u32 caps) 2327{ 2328 struct mwl8k_priv *priv = hw->priv; 2329 2330 if ((caps & MWL8K_CAP_2GHZ4) || !(caps & MWL8K_CAP_BAND_MASK)) { 2331 mwl8k_setup_2ghz_band(hw); 2332 if (caps & MWL8K_CAP_MIMO) 2333 mwl8k_set_ht_caps(hw, &priv->band_24, caps); 2334 } 2335 2336 if (caps & MWL8K_CAP_5GHZ) { 2337 mwl8k_setup_5ghz_band(hw); 2338 if (caps & MWL8K_CAP_MIMO) 2339 mwl8k_set_ht_caps(hw, &priv->band_50, caps); 2340 } 2341} 2342 2343static int mwl8k_cmd_get_hw_spec_sta(struct ieee80211_hw *hw) 2344{ 2345 struct mwl8k_priv *priv = hw->priv; 2346 struct mwl8k_cmd_get_hw_spec_sta *cmd; 2347 int rc; 2348 int i; 2349 2350 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2351 if (cmd == NULL) 2352 return -ENOMEM; 2353 2354 cmd->header.code = cpu_to_le16(MWL8K_CMD_GET_HW_SPEC); 2355 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2356 2357 memset(cmd->perm_addr, 0xff, sizeof(cmd->perm_addr)); 2358 cmd->ps_cookie = cpu_to_le32(priv->cookie_dma); 2359 cmd->rx_queue_ptr = cpu_to_le32(priv->rxq[0].rxd_dma); 2360 cmd->num_tx_queues = cpu_to_le32(mwl8k_tx_queues(priv)); 2361 for (i = 0; i < mwl8k_tx_queues(priv); i++) 2362 cmd->tx_queue_ptrs[i] = cpu_to_le32(priv->txq[i].txd_dma); 2363 cmd->num_tx_desc_per_queue = cpu_to_le32(MWL8K_TX_DESCS); 2364 cmd->total_rxd = cpu_to_le32(MWL8K_RX_DESCS); 2365 2366 rc = mwl8k_post_cmd(hw, &cmd->header); 2367 2368 if (!rc) { 2369 SET_IEEE80211_PERM_ADDR(hw, cmd->perm_addr); 2370 priv->num_mcaddrs = le16_to_cpu(cmd->num_mcaddrs); 2371 priv->fw_rev = le32_to_cpu(cmd->fw_rev); 2372 priv->hw_rev = cmd->hw_rev; 2373 mwl8k_set_caps(hw, le32_to_cpu(cmd->caps)); 2374 priv->ap_macids_supported = 0x00000000; 2375 priv->sta_macids_supported = 0x00000001; 2376 } 2377 2378 kfree(cmd); 2379 return rc; 2380} 2381 2382/* 2383 * CMD_GET_HW_SPEC (AP version). 2384 */ 2385struct mwl8k_cmd_get_hw_spec_ap { 2386 struct mwl8k_cmd_pkt header; 2387 __u8 hw_rev; 2388 __u8 host_interface; 2389 __le16 num_wcb; 2390 __le16 num_mcaddrs; 2391 __u8 perm_addr[ETH_ALEN]; 2392 __le16 region_code; 2393 __le16 num_antenna; 2394 __le32 fw_rev; 2395 __le32 wcbbase0; 2396 __le32 rxwrptr; 2397 __le32 rxrdptr; 2398 __le32 ps_cookie; 2399 __le32 wcbbase1; 2400 __le32 wcbbase2; 2401 __le32 wcbbase3; 2402 __le32 fw_api_version; 2403 __le32 caps; 2404 __le32 num_of_ampdu_queues; 2405 __le32 wcbbase_ampdu[MWL8K_MAX_AMPDU_QUEUES]; 2406} __packed; 2407 2408static int mwl8k_cmd_get_hw_spec_ap(struct ieee80211_hw *hw) 2409{ 2410 struct mwl8k_priv *priv = hw->priv; 2411 struct mwl8k_cmd_get_hw_spec_ap *cmd; 2412 int rc, i; 2413 u32 api_version; 2414 2415 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2416 if (cmd == NULL) 2417 return -ENOMEM; 2418 2419 cmd->header.code = cpu_to_le16(MWL8K_CMD_GET_HW_SPEC); 2420 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2421 2422 memset(cmd->perm_addr, 0xff, sizeof(cmd->perm_addr)); 2423 cmd->ps_cookie = cpu_to_le32(priv->cookie_dma); 2424 2425 rc = mwl8k_post_cmd(hw, &cmd->header); 2426 2427 if (!rc) { 2428 int off; 2429 2430 api_version = le32_to_cpu(cmd->fw_api_version); 2431 if (priv->device_info->fw_api_ap != api_version) { 2432 printk(KERN_ERR "%s: Unsupported fw API version for %s." 2433 " Expected %d got %d.\n", MWL8K_NAME, 2434 priv->device_info->part_name, 2435 priv->device_info->fw_api_ap, 2436 api_version); 2437 rc = -EINVAL; 2438 goto done; 2439 } 2440 SET_IEEE80211_PERM_ADDR(hw, cmd->perm_addr); 2441 priv->num_mcaddrs = le16_to_cpu(cmd->num_mcaddrs); 2442 priv->fw_rev = le32_to_cpu(cmd->fw_rev); 2443 priv->hw_rev = cmd->hw_rev; 2444 mwl8k_set_caps(hw, le32_to_cpu(cmd->caps)); 2445 priv->ap_macids_supported = 0x000000ff; 2446 priv->sta_macids_supported = 0x00000000; 2447 priv->num_ampdu_queues = le32_to_cpu(cmd->num_of_ampdu_queues); 2448 if (priv->num_ampdu_queues > MWL8K_MAX_AMPDU_QUEUES) { 2449 wiphy_warn(hw->wiphy, "fw reported %d ampdu queues" 2450 " but we only support %d.\n", 2451 priv->num_ampdu_queues, 2452 MWL8K_MAX_AMPDU_QUEUES); 2453 priv->num_ampdu_queues = MWL8K_MAX_AMPDU_QUEUES; 2454 } 2455 off = le32_to_cpu(cmd->rxwrptr) & 0xffff; 2456 iowrite32(priv->rxq[0].rxd_dma, priv->sram + off); 2457 2458 off = le32_to_cpu(cmd->rxrdptr) & 0xffff; 2459 iowrite32(priv->rxq[0].rxd_dma, priv->sram + off); 2460 2461 priv->txq_offset[0] = le32_to_cpu(cmd->wcbbase0) & 0xffff; 2462 priv->txq_offset[1] = le32_to_cpu(cmd->wcbbase1) & 0xffff; 2463 priv->txq_offset[2] = le32_to_cpu(cmd->wcbbase2) & 0xffff; 2464 priv->txq_offset[3] = le32_to_cpu(cmd->wcbbase3) & 0xffff; 2465 2466 for (i = 0; i < priv->num_ampdu_queues; i++) 2467 priv->txq_offset[i + MWL8K_TX_WMM_QUEUES] = 2468 le32_to_cpu(cmd->wcbbase_ampdu[i]) & 0xffff; 2469 } 2470 2471done: 2472 kfree(cmd); 2473 return rc; 2474} 2475 2476/* 2477 * CMD_SET_HW_SPEC. 2478 */ 2479struct mwl8k_cmd_set_hw_spec { 2480 struct mwl8k_cmd_pkt header; 2481 __u8 hw_rev; 2482 __u8 host_interface; 2483 __le16 num_mcaddrs; 2484 __u8 perm_addr[ETH_ALEN]; 2485 __le16 region_code; 2486 __le32 fw_rev; 2487 __le32 ps_cookie; 2488 __le32 caps; 2489 __le32 rx_queue_ptr; 2490 __le32 num_tx_queues; 2491 __le32 tx_queue_ptrs[MWL8K_MAX_TX_QUEUES]; 2492 __le32 flags; 2493 __le32 num_tx_desc_per_queue; 2494 __le32 total_rxd; 2495} __packed; 2496 2497/* If enabled, MWL8K_SET_HW_SPEC_FLAG_ENABLE_LIFE_TIME_EXPIRY will cause 2498 * packets to expire 500 ms after the timestamp in the tx descriptor. That is, 2499 * the packets that are queued for more than 500ms, will be dropped in the 2500 * hardware. This helps minimizing the issues caused due to head-of-line 2501 * blocking where a slow client can hog the bandwidth and affect traffic to a 2502 * faster client. 2503 */ 2504#define MWL8K_SET_HW_SPEC_FLAG_ENABLE_LIFE_TIME_EXPIRY 0x00000400 2505#define MWL8K_SET_HW_SPEC_FLAG_GENERATE_CCMP_HDR 0x00000200 2506#define MWL8K_SET_HW_SPEC_FLAG_HOST_DECR_MGMT 0x00000080 2507#define MWL8K_SET_HW_SPEC_FLAG_HOSTFORM_PROBERESP 0x00000020 2508#define MWL8K_SET_HW_SPEC_FLAG_HOSTFORM_BEACON 0x00000010 2509 2510static int mwl8k_cmd_set_hw_spec(struct ieee80211_hw *hw) 2511{ 2512 struct mwl8k_priv *priv = hw->priv; 2513 struct mwl8k_cmd_set_hw_spec *cmd; 2514 int rc; 2515 int i; 2516 2517 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2518 if (cmd == NULL) 2519 return -ENOMEM; 2520 2521 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_HW_SPEC); 2522 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2523 2524 cmd->ps_cookie = cpu_to_le32(priv->cookie_dma); 2525 cmd->rx_queue_ptr = cpu_to_le32(priv->rxq[0].rxd_dma); 2526 cmd->num_tx_queues = cpu_to_le32(mwl8k_tx_queues(priv)); 2527 2528 /* 2529 * Mac80211 stack has Q0 as highest priority and Q3 as lowest in 2530 * that order. Firmware has Q3 as highest priority and Q0 as lowest 2531 * in that order. Map Q3 of mac80211 to Q0 of firmware so that the 2532 * priority is interpreted the right way in firmware. 2533 */ 2534 for (i = 0; i < mwl8k_tx_queues(priv); i++) { 2535 int j = mwl8k_tx_queues(priv) - 1 - i; 2536 cmd->tx_queue_ptrs[i] = cpu_to_le32(priv->txq[j].txd_dma); 2537 } 2538 2539 cmd->flags = cpu_to_le32(MWL8K_SET_HW_SPEC_FLAG_HOST_DECR_MGMT | 2540 MWL8K_SET_HW_SPEC_FLAG_HOSTFORM_PROBERESP | 2541 MWL8K_SET_HW_SPEC_FLAG_HOSTFORM_BEACON | 2542 MWL8K_SET_HW_SPEC_FLAG_ENABLE_LIFE_TIME_EXPIRY | 2543 MWL8K_SET_HW_SPEC_FLAG_GENERATE_CCMP_HDR); 2544 cmd->num_tx_desc_per_queue = cpu_to_le32(MWL8K_TX_DESCS); 2545 cmd->total_rxd = cpu_to_le32(MWL8K_RX_DESCS); 2546 2547 rc = mwl8k_post_cmd(hw, &cmd->header); 2548 kfree(cmd); 2549 2550 return rc; 2551} 2552 2553/* 2554 * CMD_MAC_MULTICAST_ADR. 2555 */ 2556struct mwl8k_cmd_mac_multicast_adr { 2557 struct mwl8k_cmd_pkt header; 2558 __le16 action; 2559 __le16 numaddr; 2560 __u8 addr[0][ETH_ALEN]; 2561}; 2562 2563#define MWL8K_ENABLE_RX_DIRECTED 0x0001 2564#define MWL8K_ENABLE_RX_MULTICAST 0x0002 2565#define MWL8K_ENABLE_RX_ALL_MULTICAST 0x0004 2566#define MWL8K_ENABLE_RX_BROADCAST 0x0008 2567 2568static struct mwl8k_cmd_pkt * 2569__mwl8k_cmd_mac_multicast_adr(struct ieee80211_hw *hw, int allmulti, 2570 struct netdev_hw_addr_list *mc_list) 2571{ 2572 struct mwl8k_priv *priv = hw->priv; 2573 struct mwl8k_cmd_mac_multicast_adr *cmd; 2574 int size; 2575 int mc_count = 0; 2576 2577 if (mc_list) 2578 mc_count = netdev_hw_addr_list_count(mc_list); 2579 2580 if (allmulti || mc_count > priv->num_mcaddrs) { 2581 allmulti = 1; 2582 mc_count = 0; 2583 } 2584 2585 size = sizeof(*cmd) + mc_count * ETH_ALEN; 2586 2587 cmd = kzalloc(size, GFP_ATOMIC); 2588 if (cmd == NULL) 2589 return NULL; 2590 2591 cmd->header.code = cpu_to_le16(MWL8K_CMD_MAC_MULTICAST_ADR); 2592 cmd->header.length = cpu_to_le16(size); 2593 cmd->action = cpu_to_le16(MWL8K_ENABLE_RX_DIRECTED | 2594 MWL8K_ENABLE_RX_BROADCAST); 2595 2596 if (allmulti) { 2597 cmd->action |= cpu_to_le16(MWL8K_ENABLE_RX_ALL_MULTICAST); 2598 } else if (mc_count) { 2599 struct netdev_hw_addr *ha; 2600 int i = 0; 2601 2602 cmd->action |= cpu_to_le16(MWL8K_ENABLE_RX_MULTICAST); 2603 cmd->numaddr = cpu_to_le16(mc_count); 2604 netdev_hw_addr_list_for_each(ha, mc_list) { 2605 memcpy(cmd->addr[i], ha->addr, ETH_ALEN); 2606 } 2607 } 2608 2609 return &cmd->header; 2610} 2611 2612/* 2613 * CMD_GET_STAT. 2614 */ 2615struct mwl8k_cmd_get_stat { 2616 struct mwl8k_cmd_pkt header; 2617 __le32 stats[64]; 2618} __packed; 2619 2620#define MWL8K_STAT_ACK_FAILURE 9 2621#define MWL8K_STAT_RTS_FAILURE 12 2622#define MWL8K_STAT_FCS_ERROR 24 2623#define MWL8K_STAT_RTS_SUCCESS 11 2624 2625static int mwl8k_cmd_get_stat(struct ieee80211_hw *hw, 2626 struct ieee80211_low_level_stats *stats) 2627{ 2628 struct mwl8k_cmd_get_stat *cmd; 2629 int rc; 2630 2631 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2632 if (cmd == NULL) 2633 return -ENOMEM; 2634 2635 cmd->header.code = cpu_to_le16(MWL8K_CMD_GET_STAT); 2636 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2637 2638 rc = mwl8k_post_cmd(hw, &cmd->header); 2639 if (!rc) { 2640 stats->dot11ACKFailureCount = 2641 le32_to_cpu(cmd->stats[MWL8K_STAT_ACK_FAILURE]); 2642 stats->dot11RTSFailureCount = 2643 le32_to_cpu(cmd->stats[MWL8K_STAT_RTS_FAILURE]); 2644 stats->dot11FCSErrorCount = 2645 le32_to_cpu(cmd->stats[MWL8K_STAT_FCS_ERROR]); 2646 stats->dot11RTSSuccessCount = 2647 le32_to_cpu(cmd->stats[MWL8K_STAT_RTS_SUCCESS]); 2648 } 2649 kfree(cmd); 2650 2651 return rc; 2652} 2653 2654/* 2655 * CMD_RADIO_CONTROL. 2656 */ 2657struct mwl8k_cmd_radio_control { 2658 struct mwl8k_cmd_pkt header; 2659 __le16 action; 2660 __le16 control; 2661 __le16 radio_on; 2662} __packed; 2663 2664static int 2665mwl8k_cmd_radio_control(struct ieee80211_hw *hw, bool enable, bool force) 2666{ 2667 struct mwl8k_priv *priv = hw->priv; 2668 struct mwl8k_cmd_radio_control *cmd; 2669 int rc; 2670 2671 if (enable == priv->radio_on && !force) 2672 return 0; 2673 2674 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2675 if (cmd == NULL) 2676 return -ENOMEM; 2677 2678 cmd->header.code = cpu_to_le16(MWL8K_CMD_RADIO_CONTROL); 2679 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2680 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 2681 cmd->control = cpu_to_le16(priv->radio_short_preamble ? 3 : 1); 2682 cmd->radio_on = cpu_to_le16(enable ? 0x0001 : 0x0000); 2683 2684 rc = mwl8k_post_cmd(hw, &cmd->header); 2685 kfree(cmd); 2686 2687 if (!rc) 2688 priv->radio_on = enable; 2689 2690 return rc; 2691} 2692 2693static int mwl8k_cmd_radio_disable(struct ieee80211_hw *hw) 2694{ 2695 return mwl8k_cmd_radio_control(hw, 0, 0); 2696} 2697 2698static int mwl8k_cmd_radio_enable(struct ieee80211_hw *hw) 2699{ 2700 return mwl8k_cmd_radio_control(hw, 1, 0); 2701} 2702 2703static int 2704mwl8k_set_radio_preamble(struct ieee80211_hw *hw, bool short_preamble) 2705{ 2706 struct mwl8k_priv *priv = hw->priv; 2707 2708 priv->radio_short_preamble = short_preamble; 2709 2710 return mwl8k_cmd_radio_control(hw, 1, 1); 2711} 2712 2713/* 2714 * CMD_RF_TX_POWER. 2715 */ 2716#define MWL8K_RF_TX_POWER_LEVEL_TOTAL 8 2717 2718struct mwl8k_cmd_rf_tx_power { 2719 struct mwl8k_cmd_pkt header; 2720 __le16 action; 2721 __le16 support_level; 2722 __le16 current_level; 2723 __le16 reserved; 2724 __le16 power_level_list[MWL8K_RF_TX_POWER_LEVEL_TOTAL]; 2725} __packed; 2726 2727static int mwl8k_cmd_rf_tx_power(struct ieee80211_hw *hw, int dBm) 2728{ 2729 struct mwl8k_cmd_rf_tx_power *cmd; 2730 int rc; 2731 2732 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2733 if (cmd == NULL) 2734 return -ENOMEM; 2735 2736 cmd->header.code = cpu_to_le16(MWL8K_CMD_RF_TX_POWER); 2737 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2738 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 2739 cmd->support_level = cpu_to_le16(dBm); 2740 2741 rc = mwl8k_post_cmd(hw, &cmd->header); 2742 kfree(cmd); 2743 2744 return rc; 2745} 2746 2747/* 2748 * CMD_TX_POWER. 2749 */ 2750#define MWL8K_TX_POWER_LEVEL_TOTAL 12 2751 2752struct mwl8k_cmd_tx_power { 2753 struct mwl8k_cmd_pkt header; 2754 __le16 action; 2755 __le16 band; 2756 __le16 channel; 2757 __le16 bw; 2758 __le16 sub_ch; 2759 __le16 power_level_list[MWL8K_TX_POWER_LEVEL_TOTAL]; 2760} __packed; 2761 2762static int mwl8k_cmd_tx_power(struct ieee80211_hw *hw, 2763 struct ieee80211_conf *conf, 2764 unsigned short pwr) 2765{ 2766 struct ieee80211_channel *channel = conf->channel; 2767 struct mwl8k_cmd_tx_power *cmd; 2768 int rc; 2769 int i; 2770 2771 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2772 if (cmd == NULL) 2773 return -ENOMEM; 2774 2775 cmd->header.code = cpu_to_le16(MWL8K_CMD_TX_POWER); 2776 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2777 cmd->action = cpu_to_le16(MWL8K_CMD_SET_LIST); 2778 2779 if (channel->band == IEEE80211_BAND_2GHZ) 2780 cmd->band = cpu_to_le16(0x1); 2781 else if (channel->band == IEEE80211_BAND_5GHZ) 2782 cmd->band = cpu_to_le16(0x4); 2783 2784 cmd->channel = cpu_to_le16(channel->hw_value); 2785 2786 if (conf->channel_type == NL80211_CHAN_NO_HT || 2787 conf->channel_type == NL80211_CHAN_HT20) { 2788 cmd->bw = cpu_to_le16(0x2); 2789 } else { 2790 cmd->bw = cpu_to_le16(0x4); 2791 if (conf->channel_type == NL80211_CHAN_HT40MINUS) 2792 cmd->sub_ch = cpu_to_le16(0x3); 2793 else if (conf->channel_type == NL80211_CHAN_HT40PLUS) 2794 cmd->sub_ch = cpu_to_le16(0x1); 2795 } 2796 2797 for (i = 0; i < MWL8K_TX_POWER_LEVEL_TOTAL; i++) 2798 cmd->power_level_list[i] = cpu_to_le16(pwr); 2799 2800 rc = mwl8k_post_cmd(hw, &cmd->header); 2801 kfree(cmd); 2802 2803 return rc; 2804} 2805 2806/* 2807 * CMD_RF_ANTENNA. 2808 */ 2809struct mwl8k_cmd_rf_antenna { 2810 struct mwl8k_cmd_pkt header; 2811 __le16 antenna; 2812 __le16 mode; 2813} __packed; 2814 2815#define MWL8K_RF_ANTENNA_RX 1 2816#define MWL8K_RF_ANTENNA_TX 2 2817 2818static int 2819mwl8k_cmd_rf_antenna(struct ieee80211_hw *hw, int antenna, int mask) 2820{ 2821 struct mwl8k_cmd_rf_antenna *cmd; 2822 int rc; 2823 2824 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2825 if (cmd == NULL) 2826 return -ENOMEM; 2827 2828 cmd->header.code = cpu_to_le16(MWL8K_CMD_RF_ANTENNA); 2829 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2830 cmd->antenna = cpu_to_le16(antenna); 2831 cmd->mode = cpu_to_le16(mask); 2832 2833 rc = mwl8k_post_cmd(hw, &cmd->header); 2834 kfree(cmd); 2835 2836 return rc; 2837} 2838 2839/* 2840 * CMD_SET_BEACON. 2841 */ 2842struct mwl8k_cmd_set_beacon { 2843 struct mwl8k_cmd_pkt header; 2844 __le16 beacon_len; 2845 __u8 beacon[0]; 2846}; 2847 2848static int mwl8k_cmd_set_beacon(struct ieee80211_hw *hw, 2849 struct ieee80211_vif *vif, u8 *beacon, int len) 2850{ 2851 struct mwl8k_cmd_set_beacon *cmd; 2852 int rc; 2853 2854 cmd = kzalloc(sizeof(*cmd) + len, GFP_KERNEL); 2855 if (cmd == NULL) 2856 return -ENOMEM; 2857 2858 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_BEACON); 2859 cmd->header.length = cpu_to_le16(sizeof(*cmd) + len); 2860 cmd->beacon_len = cpu_to_le16(len); 2861 memcpy(cmd->beacon, beacon, len); 2862 2863 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 2864 kfree(cmd); 2865 2866 return rc; 2867} 2868 2869/* 2870 * CMD_SET_PRE_SCAN. 2871 */ 2872struct mwl8k_cmd_set_pre_scan { 2873 struct mwl8k_cmd_pkt header; 2874} __packed; 2875 2876static int mwl8k_cmd_set_pre_scan(struct ieee80211_hw *hw) 2877{ 2878 struct mwl8k_cmd_set_pre_scan *cmd; 2879 int rc; 2880 2881 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2882 if (cmd == NULL) 2883 return -ENOMEM; 2884 2885 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_PRE_SCAN); 2886 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2887 2888 rc = mwl8k_post_cmd(hw, &cmd->header); 2889 kfree(cmd); 2890 2891 return rc; 2892} 2893 2894/* 2895 * CMD_SET_POST_SCAN. 2896 */ 2897struct mwl8k_cmd_set_post_scan { 2898 struct mwl8k_cmd_pkt header; 2899 __le32 isibss; 2900 __u8 bssid[ETH_ALEN]; 2901} __packed; 2902 2903static int 2904mwl8k_cmd_set_post_scan(struct ieee80211_hw *hw, const __u8 *mac) 2905{ 2906 struct mwl8k_cmd_set_post_scan *cmd; 2907 int rc; 2908 2909 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2910 if (cmd == NULL) 2911 return -ENOMEM; 2912 2913 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_POST_SCAN); 2914 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2915 cmd->isibss = 0; 2916 memcpy(cmd->bssid, mac, ETH_ALEN); 2917 2918 rc = mwl8k_post_cmd(hw, &cmd->header); 2919 kfree(cmd); 2920 2921 return rc; 2922} 2923 2924/* 2925 * CMD_SET_RF_CHANNEL. 2926 */ 2927struct mwl8k_cmd_set_rf_channel { 2928 struct mwl8k_cmd_pkt header; 2929 __le16 action; 2930 __u8 current_channel; 2931 __le32 channel_flags; 2932} __packed; 2933 2934static int mwl8k_cmd_set_rf_channel(struct ieee80211_hw *hw, 2935 struct ieee80211_conf *conf) 2936{ 2937 struct ieee80211_channel *channel = conf->channel; 2938 struct mwl8k_cmd_set_rf_channel *cmd; 2939 int rc; 2940 2941 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2942 if (cmd == NULL) 2943 return -ENOMEM; 2944 2945 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_RF_CHANNEL); 2946 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2947 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 2948 cmd->current_channel = channel->hw_value; 2949 2950 if (channel->band == IEEE80211_BAND_2GHZ) 2951 cmd->channel_flags |= cpu_to_le32(0x00000001); 2952 else if (channel->band == IEEE80211_BAND_5GHZ) 2953 cmd->channel_flags |= cpu_to_le32(0x00000004); 2954 2955 if (conf->channel_type == NL80211_CHAN_NO_HT || 2956 conf->channel_type == NL80211_CHAN_HT20) 2957 cmd->channel_flags |= cpu_to_le32(0x00000080); 2958 else if (conf->channel_type == NL80211_CHAN_HT40MINUS) 2959 cmd->channel_flags |= cpu_to_le32(0x000001900); 2960 else if (conf->channel_type == NL80211_CHAN_HT40PLUS) 2961 cmd->channel_flags |= cpu_to_le32(0x000000900); 2962 2963 rc = mwl8k_post_cmd(hw, &cmd->header); 2964 kfree(cmd); 2965 2966 return rc; 2967} 2968 2969/* 2970 * CMD_SET_AID. 2971 */ 2972#define MWL8K_FRAME_PROT_DISABLED 0x00 2973#define MWL8K_FRAME_PROT_11G 0x07 2974#define MWL8K_FRAME_PROT_11N_HT_40MHZ_ONLY 0x02 2975#define MWL8K_FRAME_PROT_11N_HT_ALL 0x06 2976 2977struct mwl8k_cmd_update_set_aid { 2978 struct mwl8k_cmd_pkt header; 2979 __le16 aid; 2980 2981 /* AP's MAC address (BSSID) */ 2982 __u8 bssid[ETH_ALEN]; 2983 __le16 protection_mode; 2984 __u8 supp_rates[14]; 2985} __packed; 2986 2987static void legacy_rate_mask_to_array(u8 *rates, u32 mask) 2988{ 2989 int i; 2990 int j; 2991 2992 /* 2993 * Clear nonstandard rates 4 and 13. 2994 */ 2995 mask &= 0x1fef; 2996 2997 for (i = 0, j = 0; i < 14; i++) { 2998 if (mask & (1 << i)) 2999 rates[j++] = mwl8k_rates_24[i].hw_value; 3000 } 3001} 3002 3003static int 3004mwl8k_cmd_set_aid(struct ieee80211_hw *hw, 3005 struct ieee80211_vif *vif, u32 legacy_rate_mask) 3006{ 3007 struct mwl8k_cmd_update_set_aid *cmd; 3008 u16 prot_mode; 3009 int rc; 3010 3011 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3012 if (cmd == NULL) 3013 return -ENOMEM; 3014 3015 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_AID); 3016 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3017 cmd->aid = cpu_to_le16(vif->bss_conf.aid); 3018 memcpy(cmd->bssid, vif->bss_conf.bssid, ETH_ALEN); 3019 3020 if (vif->bss_conf.use_cts_prot) { 3021 prot_mode = MWL8K_FRAME_PROT_11G; 3022 } else { 3023 switch (vif->bss_conf.ht_operation_mode & 3024 IEEE80211_HT_OP_MODE_PROTECTION) { 3025 case IEEE80211_HT_OP_MODE_PROTECTION_20MHZ: 3026 prot_mode = MWL8K_FRAME_PROT_11N_HT_40MHZ_ONLY; 3027 break; 3028 case IEEE80211_HT_OP_MODE_PROTECTION_NONHT_MIXED: 3029 prot_mode = MWL8K_FRAME_PROT_11N_HT_ALL; 3030 break; 3031 default: 3032 prot_mode = MWL8K_FRAME_PROT_DISABLED; 3033 break; 3034 } 3035 } 3036 cmd->protection_mode = cpu_to_le16(prot_mode); 3037 3038 legacy_rate_mask_to_array(cmd->supp_rates, legacy_rate_mask); 3039 3040 rc = mwl8k_post_cmd(hw, &cmd->header); 3041 kfree(cmd); 3042 3043 return rc; 3044} 3045 3046/* 3047 * CMD_SET_RATE. 3048 */ 3049struct mwl8k_cmd_set_rate { 3050 struct mwl8k_cmd_pkt header; 3051 __u8 legacy_rates[14]; 3052 3053 /* Bitmap for supported MCS codes. */ 3054 __u8 mcs_set[16]; 3055 __u8 reserved[16]; 3056} __packed; 3057 3058static int 3059mwl8k_cmd_set_rate(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 3060 u32 legacy_rate_mask, u8 *mcs_rates) 3061{ 3062 struct mwl8k_cmd_set_rate *cmd; 3063 int rc; 3064 3065 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3066 if (cmd == NULL) 3067 return -ENOMEM; 3068 3069 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_RATE); 3070 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3071 legacy_rate_mask_to_array(cmd->legacy_rates, legacy_rate_mask); 3072 memcpy(cmd->mcs_set, mcs_rates, 16); 3073 3074 rc = mwl8k_post_cmd(hw, &cmd->header); 3075 kfree(cmd); 3076 3077 return rc; 3078} 3079 3080/* 3081 * CMD_FINALIZE_JOIN. 3082 */ 3083#define MWL8K_FJ_BEACON_MAXLEN 128 3084 3085struct mwl8k_cmd_finalize_join { 3086 struct mwl8k_cmd_pkt header; 3087 __le32 sleep_interval; /* Number of beacon periods to sleep */ 3088 __u8 beacon_data[MWL8K_FJ_BEACON_MAXLEN]; 3089} __packed; 3090 3091static int mwl8k_cmd_finalize_join(struct ieee80211_hw *hw, void *frame, 3092 int framelen, int dtim) 3093{ 3094 struct mwl8k_cmd_finalize_join *cmd; 3095 struct ieee80211_mgmt *payload = frame; 3096 int payload_len; 3097 int rc; 3098 3099 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3100 if (cmd == NULL) 3101 return -ENOMEM; 3102 3103 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_FINALIZE_JOIN); 3104 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3105 cmd->sleep_interval = cpu_to_le32(dtim ? dtim : 1); 3106 3107 payload_len = framelen - ieee80211_hdrlen(payload->frame_control); 3108 if (payload_len < 0) 3109 payload_len = 0; 3110 else if (payload_len > MWL8K_FJ_BEACON_MAXLEN) 3111 payload_len = MWL8K_FJ_BEACON_MAXLEN; 3112 3113 memcpy(cmd->beacon_data, &payload->u.beacon, payload_len); 3114 3115 rc = mwl8k_post_cmd(hw, &cmd->header); 3116 kfree(cmd); 3117 3118 return rc; 3119} 3120 3121/* 3122 * CMD_SET_RTS_THRESHOLD. 3123 */ 3124struct mwl8k_cmd_set_rts_threshold { 3125 struct mwl8k_cmd_pkt header; 3126 __le16 action; 3127 __le16 threshold; 3128} __packed; 3129 3130static int 3131mwl8k_cmd_set_rts_threshold(struct ieee80211_hw *hw, int rts_thresh) 3132{ 3133 struct mwl8k_cmd_set_rts_threshold *cmd; 3134 int rc; 3135 3136 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3137 if (cmd == NULL) 3138 return -ENOMEM; 3139 3140 cmd->header.code = cpu_to_le16(MWL8K_CMD_RTS_THRESHOLD); 3141 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3142 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 3143 cmd->threshold = cpu_to_le16(rts_thresh); 3144 3145 rc = mwl8k_post_cmd(hw, &cmd->header); 3146 kfree(cmd); 3147 3148 return rc; 3149} 3150 3151/* 3152 * CMD_SET_SLOT. 3153 */ 3154struct mwl8k_cmd_set_slot { 3155 struct mwl8k_cmd_pkt header; 3156 __le16 action; 3157 __u8 short_slot; 3158} __packed; 3159 3160static int mwl8k_cmd_set_slot(struct ieee80211_hw *hw, bool short_slot_time) 3161{ 3162 struct mwl8k_cmd_set_slot *cmd; 3163 int rc; 3164 3165 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3166 if (cmd == NULL) 3167 return -ENOMEM; 3168 3169 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_SLOT); 3170 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3171 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 3172 cmd->short_slot = short_slot_time; 3173 3174 rc = mwl8k_post_cmd(hw, &cmd->header); 3175 kfree(cmd); 3176 3177 return rc; 3178} 3179 3180/* 3181 * CMD_SET_EDCA_PARAMS. 3182 */ 3183struct mwl8k_cmd_set_edca_params { 3184 struct mwl8k_cmd_pkt header; 3185 3186 /* See MWL8K_SET_EDCA_XXX below */ 3187 __le16 action; 3188 3189 /* TX opportunity in units of 32 us */ 3190 __le16 txop; 3191 3192 union { 3193 struct { 3194 /* Log exponent of max contention period: 0...15 */ 3195 __le32 log_cw_max; 3196 3197 /* Log exponent of min contention period: 0...15 */ 3198 __le32 log_cw_min; 3199 3200 /* Adaptive interframe spacing in units of 32us */ 3201 __u8 aifs; 3202 3203 /* TX queue to configure */ 3204 __u8 txq; 3205 } ap; 3206 struct { 3207 /* Log exponent of max contention period: 0...15 */ 3208 __u8 log_cw_max; 3209 3210 /* Log exponent of min contention period: 0...15 */ 3211 __u8 log_cw_min; 3212 3213 /* Adaptive interframe spacing in units of 32us */ 3214 __u8 aifs; 3215 3216 /* TX queue to configure */ 3217 __u8 txq; 3218 } sta; 3219 }; 3220} __packed; 3221 3222#define MWL8K_SET_EDCA_CW 0x01 3223#define MWL8K_SET_EDCA_TXOP 0x02 3224#define MWL8K_SET_EDCA_AIFS 0x04 3225 3226#define MWL8K_SET_EDCA_ALL (MWL8K_SET_EDCA_CW | \ 3227 MWL8K_SET_EDCA_TXOP | \ 3228 MWL8K_SET_EDCA_AIFS) 3229 3230static int 3231mwl8k_cmd_set_edca_params(struct ieee80211_hw *hw, __u8 qnum, 3232 __u16 cw_min, __u16 cw_max, 3233 __u8 aifs, __u16 txop) 3234{ 3235 struct mwl8k_priv *priv = hw->priv; 3236 struct mwl8k_cmd_set_edca_params *cmd; 3237 int rc; 3238 3239 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3240 if (cmd == NULL) 3241 return -ENOMEM; 3242 3243 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_EDCA_PARAMS); 3244 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3245 cmd->action = cpu_to_le16(MWL8K_SET_EDCA_ALL); 3246 cmd->txop = cpu_to_le16(txop); 3247 if (priv->ap_fw) { 3248 cmd->ap.log_cw_max = cpu_to_le32(ilog2(cw_max + 1)); 3249 cmd->ap.log_cw_min = cpu_to_le32(ilog2(cw_min + 1)); 3250 cmd->ap.aifs = aifs; 3251 cmd->ap.txq = qnum; 3252 } else { 3253 cmd->sta.log_cw_max = (u8)ilog2(cw_max + 1); 3254 cmd->sta.log_cw_min = (u8)ilog2(cw_min + 1); 3255 cmd->sta.aifs = aifs; 3256 cmd->sta.txq = qnum; 3257 } 3258 3259 rc = mwl8k_post_cmd(hw, &cmd->header); 3260 kfree(cmd); 3261 3262 return rc; 3263} 3264 3265/* 3266 * CMD_SET_WMM_MODE. 3267 */ 3268struct mwl8k_cmd_set_wmm_mode { 3269 struct mwl8k_cmd_pkt header; 3270 __le16 action; 3271} __packed; 3272 3273static int mwl8k_cmd_set_wmm_mode(struct ieee80211_hw *hw, bool enable) 3274{ 3275 struct mwl8k_priv *priv = hw->priv; 3276 struct mwl8k_cmd_set_wmm_mode *cmd; 3277 int rc; 3278 3279 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3280 if (cmd == NULL) 3281 return -ENOMEM; 3282 3283 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_WMM_MODE); 3284 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3285 cmd->action = cpu_to_le16(!!enable); 3286 3287 rc = mwl8k_post_cmd(hw, &cmd->header); 3288 kfree(cmd); 3289 3290 if (!rc) 3291 priv->wmm_enabled = enable; 3292 3293 return rc; 3294} 3295 3296/* 3297 * CMD_MIMO_CONFIG. 3298 */ 3299struct mwl8k_cmd_mimo_config { 3300 struct mwl8k_cmd_pkt header; 3301 __le32 action; 3302 __u8 rx_antenna_map; 3303 __u8 tx_antenna_map; 3304} __packed; 3305 3306static int mwl8k_cmd_mimo_config(struct ieee80211_hw *hw, __u8 rx, __u8 tx) 3307{ 3308 struct mwl8k_cmd_mimo_config *cmd; 3309 int rc; 3310 3311 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3312 if (cmd == NULL) 3313 return -ENOMEM; 3314 3315 cmd->header.code = cpu_to_le16(MWL8K_CMD_MIMO_CONFIG); 3316 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3317 cmd->action = cpu_to_le32((u32)MWL8K_CMD_SET); 3318 cmd->rx_antenna_map = rx; 3319 cmd->tx_antenna_map = tx; 3320 3321 rc = mwl8k_post_cmd(hw, &cmd->header); 3322 kfree(cmd); 3323 3324 return rc; 3325} 3326 3327/* 3328 * CMD_USE_FIXED_RATE (STA version). 3329 */ 3330struct mwl8k_cmd_use_fixed_rate_sta { 3331 struct mwl8k_cmd_pkt header; 3332 __le32 action; 3333 __le32 allow_rate_drop; 3334 __le32 num_rates; 3335 struct { 3336 __le32 is_ht_rate; 3337 __le32 enable_retry; 3338 __le32 rate; 3339 __le32 retry_count; 3340 } rate_entry[8]; 3341 __le32 rate_type; 3342 __le32 reserved1; 3343 __le32 reserved2; 3344} __packed; 3345 3346#define MWL8K_USE_AUTO_RATE 0x0002 3347#define MWL8K_UCAST_RATE 0 3348 3349static int mwl8k_cmd_use_fixed_rate_sta(struct ieee80211_hw *hw) 3350{ 3351 struct mwl8k_cmd_use_fixed_rate_sta *cmd; 3352 int rc; 3353 3354 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3355 if (cmd == NULL) 3356 return -ENOMEM; 3357 3358 cmd->header.code = cpu_to_le16(MWL8K_CMD_USE_FIXED_RATE); 3359 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3360 cmd->action = cpu_to_le32(MWL8K_USE_AUTO_RATE); 3361 cmd->rate_type = cpu_to_le32(MWL8K_UCAST_RATE); 3362 3363 rc = mwl8k_post_cmd(hw, &cmd->header); 3364 kfree(cmd); 3365 3366 return rc; 3367} 3368 3369/* 3370 * CMD_USE_FIXED_RATE (AP version). 3371 */ 3372struct mwl8k_cmd_use_fixed_rate_ap { 3373 struct mwl8k_cmd_pkt header; 3374 __le32 action; 3375 __le32 allow_rate_drop; 3376 __le32 num_rates; 3377 struct mwl8k_rate_entry_ap { 3378 __le32 is_ht_rate; 3379 __le32 enable_retry; 3380 __le32 rate; 3381 __le32 retry_count; 3382 } rate_entry[4]; 3383 u8 multicast_rate; 3384 u8 multicast_rate_type; 3385 u8 management_rate; 3386} __packed; 3387 3388static int 3389mwl8k_cmd_use_fixed_rate_ap(struct ieee80211_hw *hw, int mcast, int mgmt) 3390{ 3391 struct mwl8k_cmd_use_fixed_rate_ap *cmd; 3392 int rc; 3393 3394 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3395 if (cmd == NULL) 3396 return -ENOMEM; 3397 3398 cmd->header.code = cpu_to_le16(MWL8K_CMD_USE_FIXED_RATE); 3399 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3400 cmd->action = cpu_to_le32(MWL8K_USE_AUTO_RATE); 3401 cmd->multicast_rate = mcast; 3402 cmd->management_rate = mgmt; 3403 3404 rc = mwl8k_post_cmd(hw, &cmd->header); 3405 kfree(cmd); 3406 3407 return rc; 3408} 3409 3410/* 3411 * CMD_ENABLE_SNIFFER. 3412 */ 3413struct mwl8k_cmd_enable_sniffer { 3414 struct mwl8k_cmd_pkt header; 3415 __le32 action; 3416} __packed; 3417 3418static int mwl8k_cmd_enable_sniffer(struct ieee80211_hw *hw, bool enable) 3419{ 3420 struct mwl8k_cmd_enable_sniffer *cmd; 3421 int rc; 3422 3423 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3424 if (cmd == NULL) 3425 return -ENOMEM; 3426 3427 cmd->header.code = cpu_to_le16(MWL8K_CMD_ENABLE_SNIFFER); 3428 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3429 cmd->action = cpu_to_le32(!!enable); 3430 3431 rc = mwl8k_post_cmd(hw, &cmd->header); 3432 kfree(cmd); 3433 3434 return rc; 3435} 3436 3437struct mwl8k_cmd_update_mac_addr { 3438 struct mwl8k_cmd_pkt header; 3439 union { 3440 struct { 3441 __le16 mac_type; 3442 __u8 mac_addr[ETH_ALEN]; 3443 } mbss; 3444 __u8 mac_addr[ETH_ALEN]; 3445 }; 3446} __packed; 3447 3448#define MWL8K_MAC_TYPE_PRIMARY_CLIENT 0 3449#define MWL8K_MAC_TYPE_SECONDARY_CLIENT 1 3450#define MWL8K_MAC_TYPE_PRIMARY_AP 2 3451#define MWL8K_MAC_TYPE_SECONDARY_AP 3 3452 3453static int mwl8k_cmd_update_mac_addr(struct ieee80211_hw *hw, 3454 struct ieee80211_vif *vif, u8 *mac, bool set) 3455{ 3456 struct mwl8k_priv *priv = hw->priv; 3457 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 3458 struct mwl8k_cmd_update_mac_addr *cmd; 3459 int mac_type; 3460 int rc; 3461 3462 mac_type = MWL8K_MAC_TYPE_PRIMARY_AP; 3463 if (vif != NULL && vif->type == NL80211_IFTYPE_STATION) { 3464 if (mwl8k_vif->macid + 1 == ffs(priv->sta_macids_supported)) 3465 mac_type = MWL8K_MAC_TYPE_PRIMARY_CLIENT; 3466 else 3467 mac_type = MWL8K_MAC_TYPE_SECONDARY_CLIENT; 3468 } else if (vif != NULL && vif->type == NL80211_IFTYPE_AP) { 3469 if (mwl8k_vif->macid + 1 == ffs(priv->ap_macids_supported)) 3470 mac_type = MWL8K_MAC_TYPE_PRIMARY_AP; 3471 else 3472 mac_type = MWL8K_MAC_TYPE_SECONDARY_AP; 3473 } 3474 3475 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3476 if (cmd == NULL) 3477 return -ENOMEM; 3478 3479 if (set) 3480 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_MAC_ADDR); 3481 else 3482 cmd->header.code = cpu_to_le16(MWL8K_CMD_DEL_MAC_ADDR); 3483 3484 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3485 if (priv->ap_fw) { 3486 cmd->mbss.mac_type = cpu_to_le16(mac_type); 3487 memcpy(cmd->mbss.mac_addr, mac, ETH_ALEN); 3488 } else { 3489 memcpy(cmd->mac_addr, mac, ETH_ALEN); 3490 } 3491 3492 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 3493 kfree(cmd); 3494 3495 return rc; 3496} 3497 3498/* 3499 * MWL8K_CMD_SET_MAC_ADDR. 3500 */ 3501static inline int mwl8k_cmd_set_mac_addr(struct ieee80211_hw *hw, 3502 struct ieee80211_vif *vif, u8 *mac) 3503{ 3504 return mwl8k_cmd_update_mac_addr(hw, vif, mac, true); 3505} 3506 3507/* 3508 * MWL8K_CMD_DEL_MAC_ADDR. 3509 */ 3510static inline int mwl8k_cmd_del_mac_addr(struct ieee80211_hw *hw, 3511 struct ieee80211_vif *vif, u8 *mac) 3512{ 3513 return mwl8k_cmd_update_mac_addr(hw, vif, mac, false); 3514} 3515 3516/* 3517 * CMD_SET_RATEADAPT_MODE. 3518 */ 3519struct mwl8k_cmd_set_rate_adapt_mode { 3520 struct mwl8k_cmd_pkt header; 3521 __le16 action; 3522 __le16 mode; 3523} __packed; 3524 3525static int mwl8k_cmd_set_rateadapt_mode(struct ieee80211_hw *hw, __u16 mode) 3526{ 3527 struct mwl8k_cmd_set_rate_adapt_mode *cmd; 3528 int rc; 3529 3530 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3531 if (cmd == NULL) 3532 return -ENOMEM; 3533 3534 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_RATEADAPT_MODE); 3535 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3536 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 3537 cmd->mode = cpu_to_le16(mode); 3538 3539 rc = mwl8k_post_cmd(hw, &cmd->header); 3540 kfree(cmd); 3541 3542 return rc; 3543} 3544 3545/* 3546 * CMD_GET_WATCHDOG_BITMAP. 3547 */ 3548struct mwl8k_cmd_get_watchdog_bitmap { 3549 struct mwl8k_cmd_pkt header; 3550 u8 bitmap; 3551} __packed; 3552 3553static int mwl8k_cmd_get_watchdog_bitmap(struct ieee80211_hw *hw, u8 *bitmap) 3554{ 3555 struct mwl8k_cmd_get_watchdog_bitmap *cmd; 3556 int rc; 3557 3558 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3559 if (cmd == NULL) 3560 return -ENOMEM; 3561 3562 cmd->header.code = cpu_to_le16(MWL8K_CMD_GET_WATCHDOG_BITMAP); 3563 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3564 3565 rc = mwl8k_post_cmd(hw, &cmd->header); 3566 if (!rc) 3567 *bitmap = cmd->bitmap; 3568 3569 kfree(cmd); 3570 3571 return rc; 3572} 3573 3574#define INVALID_BA 0xAA 3575static void mwl8k_watchdog_ba_events(struct work_struct *work) 3576{ 3577 int rc; 3578 u8 bitmap = 0, stream_index; 3579 struct mwl8k_ampdu_stream *streams; 3580 struct mwl8k_priv *priv = 3581 container_of(work, struct mwl8k_priv, watchdog_ba_handle); 3582 3583 rc = mwl8k_cmd_get_watchdog_bitmap(priv->hw, &bitmap); 3584 if (rc) 3585 return; 3586 3587 if (bitmap == INVALID_BA) 3588 return; 3589 3590 /* the bitmap is the hw queue number. Map it to the ampdu queue. */ 3591 stream_index = bitmap - MWL8K_TX_WMM_QUEUES; 3592 3593 BUG_ON(stream_index >= priv->num_ampdu_queues); 3594 3595 streams = &priv->ampdu[stream_index]; 3596 3597 if (streams->state == AMPDU_STREAM_ACTIVE) 3598 ieee80211_stop_tx_ba_session(streams->sta, streams->tid); 3599 3600 return; 3601} 3602 3603 3604/* 3605 * CMD_BSS_START. 3606 */ 3607struct mwl8k_cmd_bss_start { 3608 struct mwl8k_cmd_pkt header; 3609 __le32 enable; 3610} __packed; 3611 3612static int mwl8k_cmd_bss_start(struct ieee80211_hw *hw, 3613 struct ieee80211_vif *vif, int enable) 3614{ 3615 struct mwl8k_cmd_bss_start *cmd; 3616 int rc; 3617 3618 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3619 if (cmd == NULL) 3620 return -ENOMEM; 3621 3622 cmd->header.code = cpu_to_le16(MWL8K_CMD_BSS_START); 3623 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3624 cmd->enable = cpu_to_le32(enable); 3625 3626 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 3627 kfree(cmd); 3628 3629 return rc; 3630} 3631 3632/* 3633 * CMD_BASTREAM. 3634 */ 3635 3636/* 3637 * UPSTREAM is tx direction 3638 */ 3639#define BASTREAM_FLAG_DIRECTION_UPSTREAM 0x00 3640#define BASTREAM_FLAG_IMMEDIATE_TYPE 0x01 3641 3642enum ba_stream_action_type { 3643 MWL8K_BA_CREATE, 3644 MWL8K_BA_UPDATE, 3645 MWL8K_BA_DESTROY, 3646 MWL8K_BA_FLUSH, 3647 MWL8K_BA_CHECK, 3648}; 3649 3650 3651struct mwl8k_create_ba_stream { 3652 __le32 flags; 3653 __le32 idle_thrs; 3654 __le32 bar_thrs; 3655 __le32 window_size; 3656 u8 peer_mac_addr[6]; 3657 u8 dialog_token; 3658 u8 tid; 3659 u8 queue_id; 3660 u8 param_info; 3661 __le32 ba_context; 3662 u8 reset_seq_no_flag; 3663 __le16 curr_seq_no; 3664 u8 sta_src_mac_addr[6]; 3665} __packed; 3666 3667struct mwl8k_destroy_ba_stream { 3668 __le32 flags; 3669 __le32 ba_context; 3670} __packed; 3671 3672struct mwl8k_cmd_bastream { 3673 struct mwl8k_cmd_pkt header; 3674 __le32 action; 3675 union { 3676 struct mwl8k_create_ba_stream create_params; 3677 struct mwl8k_destroy_ba_stream destroy_params; 3678 }; 3679} __packed; 3680 3681static int 3682mwl8k_check_ba(struct ieee80211_hw *hw, struct mwl8k_ampdu_stream *stream) 3683{ 3684 struct mwl8k_cmd_bastream *cmd; 3685 int rc; 3686 3687 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3688 if (cmd == NULL) 3689 return -ENOMEM; 3690 3691 cmd->header.code = cpu_to_le16(MWL8K_CMD_BASTREAM); 3692 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3693 3694 cmd->action = cpu_to_le32(MWL8K_BA_CHECK); 3695 3696 cmd->create_params.queue_id = stream->idx; 3697 memcpy(&cmd->create_params.peer_mac_addr[0], stream->sta->addr, 3698 ETH_ALEN); 3699 cmd->create_params.tid = stream->tid; 3700 3701 cmd->create_params.flags = 3702 cpu_to_le32(BASTREAM_FLAG_IMMEDIATE_TYPE) | 3703 cpu_to_le32(BASTREAM_FLAG_DIRECTION_UPSTREAM); 3704 3705 rc = mwl8k_post_cmd(hw, &cmd->header); 3706 3707 kfree(cmd); 3708 3709 return rc; 3710} 3711 3712static int 3713mwl8k_create_ba(struct ieee80211_hw *hw, struct mwl8k_ampdu_stream *stream, 3714 u8 buf_size) 3715{ 3716 struct mwl8k_cmd_bastream *cmd; 3717 int rc; 3718 3719 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3720 if (cmd == NULL) 3721 return -ENOMEM; 3722 3723 3724 cmd->header.code = cpu_to_le16(MWL8K_CMD_BASTREAM); 3725 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3726 3727 cmd->action = cpu_to_le32(MWL8K_BA_CREATE); 3728 3729 cmd->create_params.bar_thrs = cpu_to_le32((u32)buf_size); 3730 cmd->create_params.window_size = cpu_to_le32((u32)buf_size); 3731 cmd->create_params.queue_id = stream->idx; 3732 3733 memcpy(cmd->create_params.peer_mac_addr, stream->sta->addr, ETH_ALEN); 3734 cmd->create_params.tid = stream->tid; 3735 cmd->create_params.curr_seq_no = cpu_to_le16(0); 3736 cmd->create_params.reset_seq_no_flag = 1; 3737 3738 cmd->create_params.param_info = 3739 (stream->sta->ht_cap.ampdu_factor & 3740 IEEE80211_HT_AMPDU_PARM_FACTOR) | 3741 ((stream->sta->ht_cap.ampdu_density << 2) & 3742 IEEE80211_HT_AMPDU_PARM_DENSITY); 3743 3744 cmd->create_params.flags = 3745 cpu_to_le32(BASTREAM_FLAG_IMMEDIATE_TYPE | 3746 BASTREAM_FLAG_DIRECTION_UPSTREAM); 3747 3748 rc = mwl8k_post_cmd(hw, &cmd->header); 3749 3750 wiphy_debug(hw->wiphy, "Created a BA stream for %pM : tid %d\n", 3751 stream->sta->addr, stream->tid); 3752 kfree(cmd); 3753 3754 return rc; 3755} 3756 3757static void mwl8k_destroy_ba(struct ieee80211_hw *hw, 3758 struct mwl8k_ampdu_stream *stream) 3759{ 3760 struct mwl8k_cmd_bastream *cmd; 3761 3762 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3763 if (cmd == NULL) 3764 return; 3765 3766 cmd->header.code = cpu_to_le16(MWL8K_CMD_BASTREAM); 3767 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3768 cmd->action = cpu_to_le32(MWL8K_BA_DESTROY); 3769 3770 cmd->destroy_params.ba_context = cpu_to_le32(stream->idx); 3771 mwl8k_post_cmd(hw, &cmd->header); 3772 3773 wiphy_debug(hw->wiphy, "Deleted BA stream index %d\n", stream->idx); 3774 3775 kfree(cmd); 3776} 3777 3778/* 3779 * CMD_SET_NEW_STN. 3780 */ 3781struct mwl8k_cmd_set_new_stn { 3782 struct mwl8k_cmd_pkt header; 3783 __le16 aid; 3784 __u8 mac_addr[6]; 3785 __le16 stn_id; 3786 __le16 action; 3787 __le16 rsvd; 3788 __le32 legacy_rates; 3789 __u8 ht_rates[4]; 3790 __le16 cap_info; 3791 __le16 ht_capabilities_info; 3792 __u8 mac_ht_param_info; 3793 __u8 rev; 3794 __u8 control_channel; 3795 __u8 add_channel; 3796 __le16 op_mode; 3797 __le16 stbc; 3798 __u8 add_qos_info; 3799 __u8 is_qos_sta; 3800 __le32 fw_sta_ptr; 3801} __packed; 3802 3803#define MWL8K_STA_ACTION_ADD 0 3804#define MWL8K_STA_ACTION_REMOVE 2 3805 3806static int mwl8k_cmd_set_new_stn_add(struct ieee80211_hw *hw, 3807 struct ieee80211_vif *vif, 3808 struct ieee80211_sta *sta) 3809{ 3810 struct mwl8k_cmd_set_new_stn *cmd; 3811 u32 rates; 3812 int rc; 3813 3814 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3815 if (cmd == NULL) 3816 return -ENOMEM; 3817 3818 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_NEW_STN); 3819 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3820 cmd->aid = cpu_to_le16(sta->aid); 3821 memcpy(cmd->mac_addr, sta->addr, ETH_ALEN); 3822 cmd->stn_id = cpu_to_le16(sta->aid); 3823 cmd->action = cpu_to_le16(MWL8K_STA_ACTION_ADD); 3824 if (hw->conf.channel->band == IEEE80211_BAND_2GHZ) 3825 rates = sta->supp_rates[IEEE80211_BAND_2GHZ]; 3826 else 3827 rates = sta->supp_rates[IEEE80211_BAND_5GHZ] << 5; 3828 cmd->legacy_rates = cpu_to_le32(rates); 3829 if (sta->ht_cap.ht_supported) { 3830 cmd->ht_rates[0] = sta->ht_cap.mcs.rx_mask[0]; 3831 cmd->ht_rates[1] = sta->ht_cap.mcs.rx_mask[1]; 3832 cmd->ht_rates[2] = sta->ht_cap.mcs.rx_mask[2]; 3833 cmd->ht_rates[3] = sta->ht_cap.mcs.rx_mask[3]; 3834 cmd->ht_capabilities_info = cpu_to_le16(sta->ht_cap.cap); 3835 cmd->mac_ht_param_info = (sta->ht_cap.ampdu_factor & 3) | 3836 ((sta->ht_cap.ampdu_density & 7) << 2); 3837 cmd->is_qos_sta = 1; 3838 } 3839 3840 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 3841 kfree(cmd); 3842 3843 return rc; 3844} 3845 3846static int mwl8k_cmd_set_new_stn_add_self(struct ieee80211_hw *hw, 3847 struct ieee80211_vif *vif) 3848{ 3849 struct mwl8k_cmd_set_new_stn *cmd; 3850 int rc; 3851 3852 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3853 if (cmd == NULL) 3854 return -ENOMEM; 3855 3856 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_NEW_STN); 3857 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3858 memcpy(cmd->mac_addr, vif->addr, ETH_ALEN); 3859 3860 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 3861 kfree(cmd); 3862 3863 return rc; 3864} 3865 3866static int mwl8k_cmd_set_new_stn_del(struct ieee80211_hw *hw, 3867 struct ieee80211_vif *vif, u8 *addr) 3868{ 3869 struct mwl8k_cmd_set_new_stn *cmd; 3870 int rc; 3871 3872 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3873 if (cmd == NULL) 3874 return -ENOMEM; 3875 3876 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_NEW_STN); 3877 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3878 memcpy(cmd->mac_addr, addr, ETH_ALEN); 3879 cmd->action = cpu_to_le16(MWL8K_STA_ACTION_REMOVE); 3880 3881 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 3882 kfree(cmd); 3883 3884 return rc; 3885} 3886 3887/* 3888 * CMD_UPDATE_ENCRYPTION. 3889 */ 3890 3891#define MAX_ENCR_KEY_LENGTH 16 3892#define MIC_KEY_LENGTH 8 3893 3894struct mwl8k_cmd_update_encryption { 3895 struct mwl8k_cmd_pkt header; 3896 3897 __le32 action; 3898 __le32 reserved; 3899 __u8 mac_addr[6]; 3900 __u8 encr_type; 3901 3902} __packed; 3903 3904struct mwl8k_cmd_set_key { 3905 struct mwl8k_cmd_pkt header; 3906 3907 __le32 action; 3908 __le32 reserved; 3909 __le16 length; 3910 __le16 key_type_id; 3911 __le32 key_info; 3912 __le32 key_id; 3913 __le16 key_len; 3914 __u8 key_material[MAX_ENCR_KEY_LENGTH]; 3915 __u8 tkip_tx_mic_key[MIC_KEY_LENGTH]; 3916 __u8 tkip_rx_mic_key[MIC_KEY_LENGTH]; 3917 __le16 tkip_rsc_low; 3918 __le32 tkip_rsc_high; 3919 __le16 tkip_tsc_low; 3920 __le32 tkip_tsc_high; 3921 __u8 mac_addr[6]; 3922} __packed; 3923 3924enum { 3925 MWL8K_ENCR_ENABLE, 3926 MWL8K_ENCR_SET_KEY, 3927 MWL8K_ENCR_REMOVE_KEY, 3928 MWL8K_ENCR_SET_GROUP_KEY, 3929}; 3930 3931#define MWL8K_UPDATE_ENCRYPTION_TYPE_WEP 0 3932#define MWL8K_UPDATE_ENCRYPTION_TYPE_DISABLE 1 3933#define MWL8K_UPDATE_ENCRYPTION_TYPE_TKIP 4 3934#define MWL8K_UPDATE_ENCRYPTION_TYPE_MIXED 7 3935#define MWL8K_UPDATE_ENCRYPTION_TYPE_AES 8 3936 3937enum { 3938 MWL8K_ALG_WEP, 3939 MWL8K_ALG_TKIP, 3940 MWL8K_ALG_CCMP, 3941}; 3942 3943#define MWL8K_KEY_FLAG_TXGROUPKEY 0x00000004 3944#define MWL8K_KEY_FLAG_PAIRWISE 0x00000008 3945#define MWL8K_KEY_FLAG_TSC_VALID 0x00000040 3946#define MWL8K_KEY_FLAG_WEP_TXKEY 0x01000000 3947#define MWL8K_KEY_FLAG_MICKEY_VALID 0x02000000 3948 3949static int mwl8k_cmd_update_encryption_enable(struct ieee80211_hw *hw, 3950 struct ieee80211_vif *vif, 3951 u8 *addr, 3952 u8 encr_type) 3953{ 3954 struct mwl8k_cmd_update_encryption *cmd; 3955 int rc; 3956 3957 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3958 if (cmd == NULL) 3959 return -ENOMEM; 3960 3961 cmd->header.code = cpu_to_le16(MWL8K_CMD_UPDATE_ENCRYPTION); 3962 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3963 cmd->action = cpu_to_le32(MWL8K_ENCR_ENABLE); 3964 memcpy(cmd->mac_addr, addr, ETH_ALEN); 3965 cmd->encr_type = encr_type; 3966 3967 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 3968 kfree(cmd); 3969 3970 return rc; 3971} 3972 3973static int mwl8k_encryption_set_cmd_info(struct mwl8k_cmd_set_key *cmd, 3974 u8 *addr, 3975 struct ieee80211_key_conf *key) 3976{ 3977 cmd->header.code = cpu_to_le16(MWL8K_CMD_UPDATE_ENCRYPTION); 3978 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3979 cmd->length = cpu_to_le16(sizeof(*cmd) - 3980 offsetof(struct mwl8k_cmd_set_key, length)); 3981 cmd->key_id = cpu_to_le32(key->keyidx); 3982 cmd->key_len = cpu_to_le16(key->keylen); 3983 memcpy(cmd->mac_addr, addr, ETH_ALEN); 3984 3985 switch (key->cipher) { 3986 case WLAN_CIPHER_SUITE_WEP40: 3987 case WLAN_CIPHER_SUITE_WEP104: 3988 cmd->key_type_id = cpu_to_le16(MWL8K_ALG_WEP); 3989 if (key->keyidx == 0) 3990 cmd->key_info = cpu_to_le32(MWL8K_KEY_FLAG_WEP_TXKEY); 3991 3992 break; 3993 case WLAN_CIPHER_SUITE_TKIP: 3994 cmd->key_type_id = cpu_to_le16(MWL8K_ALG_TKIP); 3995 cmd->key_info = (key->flags & IEEE80211_KEY_FLAG_PAIRWISE) 3996 ? cpu_to_le32(MWL8K_KEY_FLAG_PAIRWISE) 3997 : cpu_to_le32(MWL8K_KEY_FLAG_TXGROUPKEY); 3998 cmd->key_info |= cpu_to_le32(MWL8K_KEY_FLAG_MICKEY_VALID 3999 | MWL8K_KEY_FLAG_TSC_VALID); 4000 break; 4001 case WLAN_CIPHER_SUITE_CCMP: 4002 cmd->key_type_id = cpu_to_le16(MWL8K_ALG_CCMP); 4003 cmd->key_info = (key->flags & IEEE80211_KEY_FLAG_PAIRWISE) 4004 ? cpu_to_le32(MWL8K_KEY_FLAG_PAIRWISE) 4005 : cpu_to_le32(MWL8K_KEY_FLAG_TXGROUPKEY); 4006 break; 4007 default: 4008 return -ENOTSUPP; 4009 } 4010 4011 return 0; 4012} 4013 4014static int mwl8k_cmd_encryption_set_key(struct ieee80211_hw *hw, 4015 struct ieee80211_vif *vif, 4016 u8 *addr, 4017 struct ieee80211_key_conf *key) 4018{ 4019 struct mwl8k_cmd_set_key *cmd; 4020 int rc; 4021 int keymlen; 4022 u32 action; 4023 u8 idx; 4024 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 4025 4026 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4027 if (cmd == NULL) 4028 return -ENOMEM; 4029 4030 rc = mwl8k_encryption_set_cmd_info(cmd, addr, key); 4031 if (rc < 0) 4032 goto done; 4033 4034 idx = key->keyidx; 4035 4036 if (key->flags & IEEE80211_KEY_FLAG_PAIRWISE) 4037 action = MWL8K_ENCR_SET_KEY; 4038 else 4039 action = MWL8K_ENCR_SET_GROUP_KEY; 4040 4041 switch (key->cipher) { 4042 case WLAN_CIPHER_SUITE_WEP40: 4043 case WLAN_CIPHER_SUITE_WEP104: 4044 if (!mwl8k_vif->wep_key_conf[idx].enabled) { 4045 memcpy(mwl8k_vif->wep_key_conf[idx].key, key, 4046 sizeof(*key) + key->keylen); 4047 mwl8k_vif->wep_key_conf[idx].enabled = 1; 4048 } 4049 4050 keymlen = key->keylen; 4051 action = MWL8K_ENCR_SET_KEY; 4052 break; 4053 case WLAN_CIPHER_SUITE_TKIP: 4054 keymlen = MAX_ENCR_KEY_LENGTH + 2 * MIC_KEY_LENGTH; 4055 break; 4056 case WLAN_CIPHER_SUITE_CCMP: 4057 keymlen = key->keylen; 4058 break; 4059 default: 4060 rc = -ENOTSUPP; 4061 goto done; 4062 } 4063 4064 memcpy(cmd->key_material, key->key, keymlen); 4065 cmd->action = cpu_to_le32(action); 4066 4067 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4068done: 4069 kfree(cmd); 4070 4071 return rc; 4072} 4073 4074static int mwl8k_cmd_encryption_remove_key(struct ieee80211_hw *hw, 4075 struct ieee80211_vif *vif, 4076 u8 *addr, 4077 struct ieee80211_key_conf *key) 4078{ 4079 struct mwl8k_cmd_set_key *cmd; 4080 int rc; 4081 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 4082 4083 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4084 if (cmd == NULL) 4085 return -ENOMEM; 4086 4087 rc = mwl8k_encryption_set_cmd_info(cmd, addr, key); 4088 if (rc < 0) 4089 goto done; 4090 4091 if (key->cipher == WLAN_CIPHER_SUITE_WEP40 || 4092 key->cipher == WLAN_CIPHER_SUITE_WEP104) 4093 mwl8k_vif->wep_key_conf[key->keyidx].enabled = 0; 4094 4095 cmd->action = cpu_to_le32(MWL8K_ENCR_REMOVE_KEY); 4096 4097 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4098done: 4099 kfree(cmd); 4100 4101 return rc; 4102} 4103 4104static int mwl8k_set_key(struct ieee80211_hw *hw, 4105 enum set_key_cmd cmd_param, 4106 struct ieee80211_vif *vif, 4107 struct ieee80211_sta *sta, 4108 struct ieee80211_key_conf *key) 4109{ 4110 int rc = 0; 4111 u8 encr_type; 4112 u8 *addr; 4113 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 4114 4115 if (vif->type == NL80211_IFTYPE_STATION) 4116 return -EOPNOTSUPP; 4117 4118 if (sta == NULL) 4119 addr = vif->addr; 4120 else 4121 addr = sta->addr; 4122 4123 if (cmd_param == SET_KEY) { 4124 rc = mwl8k_cmd_encryption_set_key(hw, vif, addr, key); 4125 if (rc) 4126 goto out; 4127 4128 if ((key->cipher == WLAN_CIPHER_SUITE_WEP40) 4129 || (key->cipher == WLAN_CIPHER_SUITE_WEP104)) 4130 encr_type = MWL8K_UPDATE_ENCRYPTION_TYPE_WEP; 4131 else 4132 encr_type = MWL8K_UPDATE_ENCRYPTION_TYPE_MIXED; 4133 4134 rc = mwl8k_cmd_update_encryption_enable(hw, vif, addr, 4135 encr_type); 4136 if (rc) 4137 goto out; 4138 4139 mwl8k_vif->is_hw_crypto_enabled = true; 4140 4141 } else { 4142 rc = mwl8k_cmd_encryption_remove_key(hw, vif, addr, key); 4143 4144 if (rc) 4145 goto out; 4146 } 4147out: 4148 return rc; 4149} 4150 4151/* 4152 * CMD_UPDATE_STADB. 4153 */ 4154struct ewc_ht_info { 4155 __le16 control1; 4156 __le16 control2; 4157 __le16 control3; 4158} __packed; 4159 4160struct peer_capability_info { 4161 /* Peer type - AP vs. STA. */ 4162 __u8 peer_type; 4163 4164 /* Basic 802.11 capabilities from assoc resp. */ 4165 __le16 basic_caps; 4166 4167 /* Set if peer supports 802.11n high throughput (HT). */ 4168 __u8 ht_support; 4169 4170 /* Valid if HT is supported. */ 4171 __le16 ht_caps; 4172 __u8 extended_ht_caps; 4173 struct ewc_ht_info ewc_info; 4174 4175 /* Legacy rate table. Intersection of our rates and peer rates. */ 4176 __u8 legacy_rates[12]; 4177 4178 /* HT rate table. Intersection of our rates and peer rates. */ 4179 __u8 ht_rates[16]; 4180 __u8 pad[16]; 4181 4182 /* If set, interoperability mode, no proprietary extensions. */ 4183 __u8 interop; 4184 __u8 pad2; 4185 __u8 station_id; 4186 __le16 amsdu_enabled; 4187} __packed; 4188 4189struct mwl8k_cmd_update_stadb { 4190 struct mwl8k_cmd_pkt header; 4191 4192 /* See STADB_ACTION_TYPE */ 4193 __le32 action; 4194 4195 /* Peer MAC address */ 4196 __u8 peer_addr[ETH_ALEN]; 4197 4198 __le32 reserved; 4199 4200 /* Peer info - valid during add/update. */ 4201 struct peer_capability_info peer_info; 4202} __packed; 4203 4204#define MWL8K_STA_DB_MODIFY_ENTRY 1 4205#define MWL8K_STA_DB_DEL_ENTRY 2 4206 4207/* Peer Entry flags - used to define the type of the peer node */ 4208#define MWL8K_PEER_TYPE_ACCESSPOINT 2 4209 4210static int mwl8k_cmd_update_stadb_add(struct ieee80211_hw *hw, 4211 struct ieee80211_vif *vif, 4212 struct ieee80211_sta *sta) 4213{ 4214 struct mwl8k_cmd_update_stadb *cmd; 4215 struct peer_capability_info *p; 4216 u32 rates; 4217 int rc; 4218 4219 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4220 if (cmd == NULL) 4221 return -ENOMEM; 4222 4223 cmd->header.code = cpu_to_le16(MWL8K_CMD_UPDATE_STADB); 4224 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4225 cmd->action = cpu_to_le32(MWL8K_STA_DB_MODIFY_ENTRY); 4226 memcpy(cmd->peer_addr, sta->addr, ETH_ALEN); 4227 4228 p = &cmd->peer_info; 4229 p->peer_type = MWL8K_PEER_TYPE_ACCESSPOINT; 4230 p->basic_caps = cpu_to_le16(vif->bss_conf.assoc_capability); 4231 p->ht_support = sta->ht_cap.ht_supported; 4232 p->ht_caps = cpu_to_le16(sta->ht_cap.cap); 4233 p->extended_ht_caps = (sta->ht_cap.ampdu_factor & 3) | 4234 ((sta->ht_cap.ampdu_density & 7) << 2); 4235 if (hw->conf.channel->band == IEEE80211_BAND_2GHZ) 4236 rates = sta->supp_rates[IEEE80211_BAND_2GHZ]; 4237 else 4238 rates = sta->supp_rates[IEEE80211_BAND_5GHZ] << 5; 4239 legacy_rate_mask_to_array(p->legacy_rates, rates); 4240 memcpy(p->ht_rates, sta->ht_cap.mcs.rx_mask, 16); 4241 p->interop = 1; 4242 p->amsdu_enabled = 0; 4243 4244 rc = mwl8k_post_cmd(hw, &cmd->header); 4245 kfree(cmd); 4246 4247 return rc ? rc : p->station_id; 4248} 4249 4250static int mwl8k_cmd_update_stadb_del(struct ieee80211_hw *hw, 4251 struct ieee80211_vif *vif, u8 *addr) 4252{ 4253 struct mwl8k_cmd_update_stadb *cmd; 4254 int rc; 4255 4256 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4257 if (cmd == NULL) 4258 return -ENOMEM; 4259 4260 cmd->header.code = cpu_to_le16(MWL8K_CMD_UPDATE_STADB); 4261 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4262 cmd->action = cpu_to_le32(MWL8K_STA_DB_DEL_ENTRY); 4263 memcpy(cmd->peer_addr, addr, ETH_ALEN); 4264 4265 rc = mwl8k_post_cmd(hw, &cmd->header); 4266 kfree(cmd); 4267 4268 return rc; 4269} 4270 4271 4272/* 4273 * Interrupt handling. 4274 */ 4275static irqreturn_t mwl8k_interrupt(int irq, void *dev_id) 4276{ 4277 struct ieee80211_hw *hw = dev_id; 4278 struct mwl8k_priv *priv = hw->priv; 4279 u32 status; 4280 4281 status = ioread32(priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 4282 if (!status) 4283 return IRQ_NONE; 4284 4285 if (status & MWL8K_A2H_INT_TX_DONE) { 4286 status &= ~MWL8K_A2H_INT_TX_DONE; 4287 tasklet_schedule(&priv->poll_tx_task); 4288 } 4289 4290 if (status & MWL8K_A2H_INT_RX_READY) { 4291 status &= ~MWL8K_A2H_INT_RX_READY; 4292 tasklet_schedule(&priv->poll_rx_task); 4293 } 4294 4295 if (status & MWL8K_A2H_INT_BA_WATCHDOG) { 4296 status &= ~MWL8K_A2H_INT_BA_WATCHDOG; 4297 ieee80211_queue_work(hw, &priv->watchdog_ba_handle); 4298 } 4299 4300 if (status) 4301 iowrite32(~status, priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 4302 4303 if (status & MWL8K_A2H_INT_OPC_DONE) { 4304 if (priv->hostcmd_wait != NULL) 4305 complete(priv->hostcmd_wait); 4306 } 4307 4308 if (status & MWL8K_A2H_INT_QUEUE_EMPTY) { 4309 if (!mutex_is_locked(&priv->fw_mutex) && 4310 priv->radio_on && priv->pending_tx_pkts) 4311 mwl8k_tx_start(priv); 4312 } 4313 4314 return IRQ_HANDLED; 4315} 4316 4317static void mwl8k_tx_poll(unsigned long data) 4318{ 4319 struct ieee80211_hw *hw = (struct ieee80211_hw *)data; 4320 struct mwl8k_priv *priv = hw->priv; 4321 int limit; 4322 int i; 4323 4324 limit = 32; 4325 4326 spin_lock_bh(&priv->tx_lock); 4327 4328 for (i = 0; i < mwl8k_tx_queues(priv); i++) 4329 limit -= mwl8k_txq_reclaim(hw, i, limit, 0); 4330 4331 if (!priv->pending_tx_pkts && priv->tx_wait != NULL) { 4332 complete(priv->tx_wait); 4333 priv->tx_wait = NULL; 4334 } 4335 4336 spin_unlock_bh(&priv->tx_lock); 4337 4338 if (limit) { 4339 writel(~MWL8K_A2H_INT_TX_DONE, 4340 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 4341 } else { 4342 tasklet_schedule(&priv->poll_tx_task); 4343 } 4344} 4345 4346static void mwl8k_rx_poll(unsigned long data) 4347{ 4348 struct ieee80211_hw *hw = (struct ieee80211_hw *)data; 4349 struct mwl8k_priv *priv = hw->priv; 4350 int limit; 4351 4352 limit = 32; 4353 limit -= rxq_process(hw, 0, limit); 4354 limit -= rxq_refill(hw, 0, limit); 4355 4356 if (limit) { 4357 writel(~MWL8K_A2H_INT_RX_READY, 4358 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 4359 } else { 4360 tasklet_schedule(&priv->poll_rx_task); 4361 } 4362} 4363 4364 4365/* 4366 * Core driver operations. 4367 */ 4368static void mwl8k_tx(struct ieee80211_hw *hw, 4369 struct ieee80211_tx_control *control, 4370 struct sk_buff *skb) 4371{ 4372 struct mwl8k_priv *priv = hw->priv; 4373 int index = skb_get_queue_mapping(skb); 4374 4375 if (!priv->radio_on) { 4376 wiphy_debug(hw->wiphy, 4377 "dropped TX frame since radio disabled\n"); 4378 dev_kfree_skb(skb); 4379 return; 4380 } 4381 4382 mwl8k_txq_xmit(hw, index, control->sta, skb); 4383} 4384 4385static int mwl8k_start(struct ieee80211_hw *hw) 4386{ 4387 struct mwl8k_priv *priv = hw->priv; 4388 int rc; 4389 4390 rc = request_irq(priv->pdev->irq, mwl8k_interrupt, 4391 IRQF_SHARED, MWL8K_NAME, hw); 4392 if (rc) { 4393 priv->irq = -1; 4394 wiphy_err(hw->wiphy, "failed to register IRQ handler\n"); 4395 return -EIO; 4396 } 4397 priv->irq = priv->pdev->irq; 4398 4399 /* Enable TX reclaim and RX tasklets. */ 4400 tasklet_enable(&priv->poll_tx_task); 4401 tasklet_enable(&priv->poll_rx_task); 4402 4403 /* Enable interrupts */ 4404 iowrite32(MWL8K_A2H_EVENTS, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 4405 iowrite32(MWL8K_A2H_EVENTS, 4406 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK); 4407 4408 rc = mwl8k_fw_lock(hw); 4409 if (!rc) { 4410 rc = mwl8k_cmd_radio_enable(hw); 4411 4412 if (!priv->ap_fw) { 4413 if (!rc) 4414 rc = mwl8k_cmd_enable_sniffer(hw, 0); 4415 4416 if (!rc) 4417 rc = mwl8k_cmd_set_pre_scan(hw); 4418 4419 if (!rc) 4420 rc = mwl8k_cmd_set_post_scan(hw, 4421 "\x00\x00\x00\x00\x00\x00"); 4422 } 4423 4424 if (!rc) 4425 rc = mwl8k_cmd_set_rateadapt_mode(hw, 0); 4426 4427 if (!rc) 4428 rc = mwl8k_cmd_set_wmm_mode(hw, 0); 4429 4430 mwl8k_fw_unlock(hw); 4431 } 4432 4433 if (rc) { 4434 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 4435 free_irq(priv->pdev->irq, hw); 4436 priv->irq = -1; 4437 tasklet_disable(&priv->poll_tx_task); 4438 tasklet_disable(&priv->poll_rx_task); 4439 } 4440 4441 return rc; 4442} 4443 4444static void mwl8k_stop(struct ieee80211_hw *hw) 4445{ 4446 struct mwl8k_priv *priv = hw->priv; 4447 int i; 4448 4449 if (!priv->hw_restart_in_progress) 4450 mwl8k_cmd_radio_disable(hw); 4451 4452 ieee80211_stop_queues(hw); 4453 4454 /* Disable interrupts */ 4455 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 4456 if (priv->irq != -1) { 4457 free_irq(priv->pdev->irq, hw); 4458 priv->irq = -1; 4459 } 4460 4461 /* Stop finalize join worker */ 4462 cancel_work_sync(&priv->finalize_join_worker); 4463 cancel_work_sync(&priv->watchdog_ba_handle); 4464 if (priv->beacon_skb != NULL) 4465 dev_kfree_skb(priv->beacon_skb); 4466 4467 /* Stop TX reclaim and RX tasklets. */ 4468 tasklet_disable(&priv->poll_tx_task); 4469 tasklet_disable(&priv->poll_rx_task); 4470 4471 /* Return all skbs to mac80211 */ 4472 for (i = 0; i < mwl8k_tx_queues(priv); i++) 4473 mwl8k_txq_reclaim(hw, i, INT_MAX, 1); 4474} 4475 4476static int mwl8k_reload_firmware(struct ieee80211_hw *hw, char *fw_image); 4477 4478static int mwl8k_add_interface(struct ieee80211_hw *hw, 4479 struct ieee80211_vif *vif) 4480{ 4481 struct mwl8k_priv *priv = hw->priv; 4482 struct mwl8k_vif *mwl8k_vif; 4483 u32 macids_supported; 4484 int macid, rc; 4485 struct mwl8k_device_info *di; 4486 4487 /* 4488 * Reject interface creation if sniffer mode is active, as 4489 * STA operation is mutually exclusive with hardware sniffer 4490 * mode. (Sniffer mode is only used on STA firmware.) 4491 */ 4492 if (priv->sniffer_enabled) { 4493 wiphy_info(hw->wiphy, 4494 "unable to create STA interface because sniffer mode is enabled\n"); 4495 return -EINVAL; 4496 } 4497 4498 di = priv->device_info; 4499 switch (vif->type) { 4500 case NL80211_IFTYPE_AP: 4501 if (!priv->ap_fw && di->fw_image_ap) { 4502 /* we must load the ap fw to meet this request */ 4503 if (!list_empty(&priv->vif_list)) 4504 return -EBUSY; 4505 rc = mwl8k_reload_firmware(hw, di->fw_image_ap); 4506 if (rc) 4507 return rc; 4508 } 4509 macids_supported = priv->ap_macids_supported; 4510 break; 4511 case NL80211_IFTYPE_STATION: 4512 if (priv->ap_fw && di->fw_image_sta) { 4513 /* we must load the sta fw to meet this request */ 4514 if (!list_empty(&priv->vif_list)) 4515 return -EBUSY; 4516 rc = mwl8k_reload_firmware(hw, di->fw_image_sta); 4517 if (rc) 4518 return rc; 4519 } 4520 macids_supported = priv->sta_macids_supported; 4521 break; 4522 default: 4523 return -EINVAL; 4524 } 4525 4526 macid = ffs(macids_supported & ~priv->macids_used); 4527 if (!macid--) 4528 return -EBUSY; 4529 4530 /* Setup driver private area. */ 4531 mwl8k_vif = MWL8K_VIF(vif); 4532 memset(mwl8k_vif, 0, sizeof(*mwl8k_vif)); 4533 mwl8k_vif->vif = vif; 4534 mwl8k_vif->macid = macid; 4535 mwl8k_vif->seqno = 0; 4536 memcpy(mwl8k_vif->bssid, vif->addr, ETH_ALEN); 4537 mwl8k_vif->is_hw_crypto_enabled = false; 4538 4539 /* Set the mac address. */ 4540 mwl8k_cmd_set_mac_addr(hw, vif, vif->addr); 4541 4542 if (priv->ap_fw) 4543 mwl8k_cmd_set_new_stn_add_self(hw, vif); 4544 4545 priv->macids_used |= 1 << mwl8k_vif->macid; 4546 list_add_tail(&mwl8k_vif->list, &priv->vif_list); 4547 4548 return 0; 4549} 4550 4551static void mwl8k_remove_vif(struct mwl8k_priv *priv, struct mwl8k_vif *vif) 4552{ 4553 /* Has ieee80211_restart_hw re-added the removed interfaces? */ 4554 if (!priv->macids_used) 4555 return; 4556 4557 priv->macids_used &= ~(1 << vif->macid); 4558 list_del(&vif->list); 4559} 4560 4561static void mwl8k_remove_interface(struct ieee80211_hw *hw, 4562 struct ieee80211_vif *vif) 4563{ 4564 struct mwl8k_priv *priv = hw->priv; 4565 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 4566 4567 if (priv->ap_fw) 4568 mwl8k_cmd_set_new_stn_del(hw, vif, vif->addr); 4569 4570 mwl8k_cmd_del_mac_addr(hw, vif, vif->addr); 4571 4572 mwl8k_remove_vif(priv, mwl8k_vif); 4573} 4574 4575static void mwl8k_hw_restart_work(struct work_struct *work) 4576{ 4577 struct mwl8k_priv *priv = 4578 container_of(work, struct mwl8k_priv, fw_reload); 4579 struct ieee80211_hw *hw = priv->hw; 4580 struct mwl8k_device_info *di; 4581 int rc; 4582 4583 /* If some command is waiting for a response, clear it */ 4584 if (priv->hostcmd_wait != NULL) { 4585 complete(priv->hostcmd_wait); 4586 priv->hostcmd_wait = NULL; 4587 } 4588 4589 priv->hw_restart_owner = current; 4590 di = priv->device_info; 4591 mwl8k_fw_lock(hw); 4592 4593 if (priv->ap_fw) 4594 rc = mwl8k_reload_firmware(hw, di->fw_image_ap); 4595 else 4596 rc = mwl8k_reload_firmware(hw, di->fw_image_sta); 4597 4598 if (rc) 4599 goto fail; 4600 4601 priv->hw_restart_owner = NULL; 4602 priv->hw_restart_in_progress = false; 4603 4604 /* 4605 * This unlock will wake up the queues and 4606 * also opens the command path for other 4607 * commands 4608 */ 4609 mwl8k_fw_unlock(hw); 4610 4611 ieee80211_restart_hw(hw); 4612 4613 wiphy_err(hw->wiphy, "Firmware restarted successfully\n"); 4614 4615 return; 4616fail: 4617 mwl8k_fw_unlock(hw); 4618 4619 wiphy_err(hw->wiphy, "Firmware restart failed\n"); 4620} 4621 4622static int mwl8k_config(struct ieee80211_hw *hw, u32 changed) 4623{ 4624 struct ieee80211_conf *conf = &hw->conf; 4625 struct mwl8k_priv *priv = hw->priv; 4626 int rc; 4627 4628 if (conf->flags & IEEE80211_CONF_IDLE) { 4629 mwl8k_cmd_radio_disable(hw); 4630 return 0; 4631 } 4632 4633 rc = mwl8k_fw_lock(hw); 4634 if (rc) 4635 return rc; 4636 4637 rc = mwl8k_cmd_radio_enable(hw); 4638 if (rc) 4639 goto out; 4640 4641 rc = mwl8k_cmd_set_rf_channel(hw, conf); 4642 if (rc) 4643 goto out; 4644 4645 if (conf->power_level > 18) 4646 conf->power_level = 18; 4647 4648 if (priv->ap_fw) { 4649 4650 if (conf->flags & IEEE80211_CONF_CHANGE_POWER) { 4651 rc = mwl8k_cmd_tx_power(hw, conf, conf->power_level); 4652 if (rc) 4653 goto out; 4654 } 4655 4656 rc = mwl8k_cmd_rf_antenna(hw, MWL8K_RF_ANTENNA_RX, 0x3); 4657 if (rc) 4658 wiphy_warn(hw->wiphy, "failed to set # of RX antennas"); 4659 rc = mwl8k_cmd_rf_antenna(hw, MWL8K_RF_ANTENNA_TX, 0x7); 4660 if (rc) 4661 wiphy_warn(hw->wiphy, "failed to set # of TX antennas"); 4662 4663 } else { 4664 rc = mwl8k_cmd_rf_tx_power(hw, conf->power_level); 4665 if (rc) 4666 goto out; 4667 rc = mwl8k_cmd_mimo_config(hw, 0x7, 0x7); 4668 } 4669 4670out: 4671 mwl8k_fw_unlock(hw); 4672 4673 return rc; 4674} 4675 4676static void 4677mwl8k_bss_info_changed_sta(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 4678 struct ieee80211_bss_conf *info, u32 changed) 4679{ 4680 struct mwl8k_priv *priv = hw->priv; 4681 u32 ap_legacy_rates = 0; 4682 u8 ap_mcs_rates[16]; 4683 int rc; 4684 4685 if (mwl8k_fw_lock(hw)) 4686 return; 4687 4688 /* 4689 * No need to capture a beacon if we're no longer associated. 4690 */ 4691 if ((changed & BSS_CHANGED_ASSOC) && !vif->bss_conf.assoc) 4692 priv->capture_beacon = false; 4693 4694 /* 4695 * Get the AP's legacy and MCS rates. 4696 */ 4697 if (vif->bss_conf.assoc) { 4698 struct ieee80211_sta *ap; 4699 4700 rcu_read_lock(); 4701 4702 ap = ieee80211_find_sta(vif, vif->bss_conf.bssid); 4703 if (ap == NULL) { 4704 rcu_read_unlock(); 4705 goto out; 4706 } 4707 4708 if (hw->conf.channel->band == IEEE80211_BAND_2GHZ) { 4709 ap_legacy_rates = ap->supp_rates[IEEE80211_BAND_2GHZ]; 4710 } else { 4711 ap_legacy_rates = 4712 ap->supp_rates[IEEE80211_BAND_5GHZ] << 5; 4713 } 4714 memcpy(ap_mcs_rates, ap->ht_cap.mcs.rx_mask, 16); 4715 4716 rcu_read_unlock(); 4717 } 4718 4719 if ((changed & BSS_CHANGED_ASSOC) && vif->bss_conf.assoc) { 4720 rc = mwl8k_cmd_set_rate(hw, vif, ap_legacy_rates, ap_mcs_rates); 4721 if (rc) 4722 goto out; 4723 4724 rc = mwl8k_cmd_use_fixed_rate_sta(hw); 4725 if (rc) 4726 goto out; 4727 } 4728 4729 if (changed & BSS_CHANGED_ERP_PREAMBLE) { 4730 rc = mwl8k_set_radio_preamble(hw, 4731 vif->bss_conf.use_short_preamble); 4732 if (rc) 4733 goto out; 4734 } 4735 4736 if (changed & BSS_CHANGED_ERP_SLOT) { 4737 rc = mwl8k_cmd_set_slot(hw, vif->bss_conf.use_short_slot); 4738 if (rc) 4739 goto out; 4740 } 4741 4742 if (vif->bss_conf.assoc && 4743 (changed & (BSS_CHANGED_ASSOC | BSS_CHANGED_ERP_CTS_PROT | 4744 BSS_CHANGED_HT))) { 4745 rc = mwl8k_cmd_set_aid(hw, vif, ap_legacy_rates); 4746 if (rc) 4747 goto out; 4748 } 4749 4750 if (vif->bss_conf.assoc && 4751 (changed & (BSS_CHANGED_ASSOC | BSS_CHANGED_BEACON_INT))) { 4752 /* 4753 * Finalize the join. Tell rx handler to process 4754 * next beacon from our BSSID. 4755 */ 4756 memcpy(priv->capture_bssid, vif->bss_conf.bssid, ETH_ALEN); 4757 priv->capture_beacon = true; 4758 } 4759 4760out: 4761 mwl8k_fw_unlock(hw); 4762} 4763 4764static void 4765mwl8k_bss_info_changed_ap(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 4766 struct ieee80211_bss_conf *info, u32 changed) 4767{ 4768 int rc; 4769 4770 if (mwl8k_fw_lock(hw)) 4771 return; 4772 4773 if (changed & BSS_CHANGED_ERP_PREAMBLE) { 4774 rc = mwl8k_set_radio_preamble(hw, 4775 vif->bss_conf.use_short_preamble); 4776 if (rc) 4777 goto out; 4778 } 4779 4780 if (changed & BSS_CHANGED_BASIC_RATES) { 4781 int idx; 4782 int rate; 4783 4784 /* 4785 * Use lowest supported basic rate for multicasts 4786 * and management frames (such as probe responses -- 4787 * beacons will always go out at 1 Mb/s). 4788 */ 4789 idx = ffs(vif->bss_conf.basic_rates); 4790 if (idx) 4791 idx--; 4792 4793 if (hw->conf.channel->band == IEEE80211_BAND_2GHZ) 4794 rate = mwl8k_rates_24[idx].hw_value; 4795 else 4796 rate = mwl8k_rates_50[idx].hw_value; 4797 4798 mwl8k_cmd_use_fixed_rate_ap(hw, rate, rate); 4799 } 4800 4801 if (changed & (BSS_CHANGED_BEACON_INT | BSS_CHANGED_BEACON)) { 4802 struct sk_buff *skb; 4803 4804 skb = ieee80211_beacon_get(hw, vif); 4805 if (skb != NULL) { 4806 mwl8k_cmd_set_beacon(hw, vif, skb->data, skb->len); 4807 kfree_skb(skb); 4808 } 4809 } 4810 4811 if (changed & BSS_CHANGED_BEACON_ENABLED) 4812 mwl8k_cmd_bss_start(hw, vif, info->enable_beacon); 4813 4814out: 4815 mwl8k_fw_unlock(hw); 4816} 4817 4818static void 4819mwl8k_bss_info_changed(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 4820 struct ieee80211_bss_conf *info, u32 changed) 4821{ 4822 struct mwl8k_priv *priv = hw->priv; 4823 4824 if (!priv->ap_fw) 4825 mwl8k_bss_info_changed_sta(hw, vif, info, changed); 4826 else 4827 mwl8k_bss_info_changed_ap(hw, vif, info, changed); 4828} 4829 4830static u64 mwl8k_prepare_multicast(struct ieee80211_hw *hw, 4831 struct netdev_hw_addr_list *mc_list) 4832{ 4833 struct mwl8k_cmd_pkt *cmd; 4834 4835 /* 4836 * Synthesize and return a command packet that programs the 4837 * hardware multicast address filter. At this point we don't 4838 * know whether FIF_ALLMULTI is being requested, but if it is, 4839 * we'll end up throwing this packet away and creating a new 4840 * one in mwl8k_configure_filter(). 4841 */ 4842 cmd = __mwl8k_cmd_mac_multicast_adr(hw, 0, mc_list); 4843 4844 return (unsigned long)cmd; 4845} 4846 4847static int 4848mwl8k_configure_filter_sniffer(struct ieee80211_hw *hw, 4849 unsigned int changed_flags, 4850 unsigned int *total_flags) 4851{ 4852 struct mwl8k_priv *priv = hw->priv; 4853 4854 /* 4855 * Hardware sniffer mode is mutually exclusive with STA 4856 * operation, so refuse to enable sniffer mode if a STA 4857 * interface is active. 4858 */ 4859 if (!list_empty(&priv->vif_list)) { 4860 if (net_ratelimit()) 4861 wiphy_info(hw->wiphy, 4862 "not enabling sniffer mode because STA interface is active\n"); 4863 return 0; 4864 } 4865 4866 if (!priv->sniffer_enabled) { 4867 if (mwl8k_cmd_enable_sniffer(hw, 1)) 4868 return 0; 4869 priv->sniffer_enabled = true; 4870 } 4871 4872 *total_flags &= FIF_PROMISC_IN_BSS | FIF_ALLMULTI | 4873 FIF_BCN_PRBRESP_PROMISC | FIF_CONTROL | 4874 FIF_OTHER_BSS; 4875 4876 return 1; 4877} 4878 4879static struct mwl8k_vif *mwl8k_first_vif(struct mwl8k_priv *priv) 4880{ 4881 if (!list_empty(&priv->vif_list)) 4882 return list_entry(priv->vif_list.next, struct mwl8k_vif, list); 4883 4884 return NULL; 4885} 4886 4887static void mwl8k_configure_filter(struct ieee80211_hw *hw, 4888 unsigned int changed_flags, 4889 unsigned int *total_flags, 4890 u64 multicast) 4891{ 4892 struct mwl8k_priv *priv = hw->priv; 4893 struct mwl8k_cmd_pkt *cmd = (void *)(unsigned long)multicast; 4894 4895 /* 4896 * AP firmware doesn't allow fine-grained control over 4897 * the receive filter. 4898 */ 4899 if (priv->ap_fw) { 4900 *total_flags &= FIF_ALLMULTI | FIF_BCN_PRBRESP_PROMISC; 4901 kfree(cmd); 4902 return; 4903 } 4904 4905 /* 4906 * Enable hardware sniffer mode if FIF_CONTROL or 4907 * FIF_OTHER_BSS is requested. 4908 */ 4909 if (*total_flags & (FIF_CONTROL | FIF_OTHER_BSS) && 4910 mwl8k_configure_filter_sniffer(hw, changed_flags, total_flags)) { 4911 kfree(cmd); 4912 return; 4913 } 4914 4915 /* Clear unsupported feature flags */ 4916 *total_flags &= FIF_ALLMULTI | FIF_BCN_PRBRESP_PROMISC; 4917 4918 if (mwl8k_fw_lock(hw)) { 4919 kfree(cmd); 4920 return; 4921 } 4922 4923 if (priv->sniffer_enabled) { 4924 mwl8k_cmd_enable_sniffer(hw, 0); 4925 priv->sniffer_enabled = false; 4926 } 4927 4928 if (changed_flags & FIF_BCN_PRBRESP_PROMISC) { 4929 if (*total_flags & FIF_BCN_PRBRESP_PROMISC) { 4930 /* 4931 * Disable the BSS filter. 4932 */ 4933 mwl8k_cmd_set_pre_scan(hw); 4934 } else { 4935 struct mwl8k_vif *mwl8k_vif; 4936 const u8 *bssid; 4937 4938 /* 4939 * Enable the BSS filter. 4940 * 4941 * If there is an active STA interface, use that 4942 * interface's BSSID, otherwise use a dummy one 4943 * (where the OUI part needs to be nonzero for 4944 * the BSSID to be accepted by POST_SCAN). 4945 */ 4946 mwl8k_vif = mwl8k_first_vif(priv); 4947 if (mwl8k_vif != NULL) 4948 bssid = mwl8k_vif->vif->bss_conf.bssid; 4949 else 4950 bssid = "\x01\x00\x00\x00\x00\x00"; 4951 4952 mwl8k_cmd_set_post_scan(hw, bssid); 4953 } 4954 } 4955 4956 /* 4957 * If FIF_ALLMULTI is being requested, throw away the command 4958 * packet that ->prepare_multicast() built and replace it with 4959 * a command packet that enables reception of all multicast 4960 * packets. 4961 */ 4962 if (*total_flags & FIF_ALLMULTI) { 4963 kfree(cmd); 4964 cmd = __mwl8k_cmd_mac_multicast_adr(hw, 1, NULL); 4965 } 4966 4967 if (cmd != NULL) { 4968 mwl8k_post_cmd(hw, cmd); 4969 kfree(cmd); 4970 } 4971 4972 mwl8k_fw_unlock(hw); 4973} 4974 4975static int mwl8k_set_rts_threshold(struct ieee80211_hw *hw, u32 value) 4976{ 4977 return mwl8k_cmd_set_rts_threshold(hw, value); 4978} 4979 4980static int mwl8k_sta_remove(struct ieee80211_hw *hw, 4981 struct ieee80211_vif *vif, 4982 struct ieee80211_sta *sta) 4983{ 4984 struct mwl8k_priv *priv = hw->priv; 4985 4986 if (priv->ap_fw) 4987 return mwl8k_cmd_set_new_stn_del(hw, vif, sta->addr); 4988 else 4989 return mwl8k_cmd_update_stadb_del(hw, vif, sta->addr); 4990} 4991 4992static int mwl8k_sta_add(struct ieee80211_hw *hw, 4993 struct ieee80211_vif *vif, 4994 struct ieee80211_sta *sta) 4995{ 4996 struct mwl8k_priv *priv = hw->priv; 4997 int ret; 4998 int i; 4999 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 5000 struct ieee80211_key_conf *key; 5001 5002 if (!priv->ap_fw) { 5003 ret = mwl8k_cmd_update_stadb_add(hw, vif, sta); 5004 if (ret >= 0) { 5005 MWL8K_STA(sta)->peer_id = ret; 5006 if (sta->ht_cap.ht_supported) 5007 MWL8K_STA(sta)->is_ampdu_allowed = true; 5008 ret = 0; 5009 } 5010 5011 } else { 5012 ret = mwl8k_cmd_set_new_stn_add(hw, vif, sta); 5013 } 5014 5015 for (i = 0; i < NUM_WEP_KEYS; i++) { 5016 key = IEEE80211_KEY_CONF(mwl8k_vif->wep_key_conf[i].key); 5017 if (mwl8k_vif->wep_key_conf[i].enabled) 5018 mwl8k_set_key(hw, SET_KEY, vif, sta, key); 5019 } 5020 return ret; 5021} 5022 5023static int mwl8k_conf_tx(struct ieee80211_hw *hw, 5024 struct ieee80211_vif *vif, u16 queue, 5025 const struct ieee80211_tx_queue_params *params) 5026{ 5027 struct mwl8k_priv *priv = hw->priv; 5028 int rc; 5029 5030 rc = mwl8k_fw_lock(hw); 5031 if (!rc) { 5032 BUG_ON(queue > MWL8K_TX_WMM_QUEUES - 1); 5033 memcpy(&priv->wmm_params[queue], params, sizeof(*params)); 5034 5035 if (!priv->wmm_enabled) 5036 rc = mwl8k_cmd_set_wmm_mode(hw, 1); 5037 5038 if (!rc) { 5039 int q = MWL8K_TX_WMM_QUEUES - 1 - queue; 5040 rc = mwl8k_cmd_set_edca_params(hw, q, 5041 params->cw_min, 5042 params->cw_max, 5043 params->aifs, 5044 params->txop); 5045 } 5046 5047 mwl8k_fw_unlock(hw); 5048 } 5049 5050 return rc; 5051} 5052 5053static int mwl8k_get_stats(struct ieee80211_hw *hw, 5054 struct ieee80211_low_level_stats *stats) 5055{ 5056 return mwl8k_cmd_get_stat(hw, stats); 5057} 5058 5059static int mwl8k_get_survey(struct ieee80211_hw *hw, int idx, 5060 struct survey_info *survey) 5061{ 5062 struct mwl8k_priv *priv = hw->priv; 5063 struct ieee80211_conf *conf = &hw->conf; 5064 5065 if (idx != 0) 5066 return -ENOENT; 5067 5068 survey->channel = conf->channel; 5069 survey->filled = SURVEY_INFO_NOISE_DBM; 5070 survey->noise = priv->noise; 5071 5072 return 0; 5073} 5074 5075#define MAX_AMPDU_ATTEMPTS 5 5076 5077static int 5078mwl8k_ampdu_action(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 5079 enum ieee80211_ampdu_mlme_action action, 5080 struct ieee80211_sta *sta, u16 tid, u16 *ssn, 5081 u8 buf_size) 5082{ 5083 5084 int i, rc = 0; 5085 struct mwl8k_priv *priv = hw->priv; 5086 struct mwl8k_ampdu_stream *stream; 5087 u8 *addr = sta->addr; 5088 5089 if (!(hw->flags & IEEE80211_HW_AMPDU_AGGREGATION)) 5090 return -ENOTSUPP; 5091 5092 spin_lock(&priv->stream_lock); 5093 stream = mwl8k_lookup_stream(hw, addr, tid); 5094 5095 switch (action) { 5096 case IEEE80211_AMPDU_RX_START: 5097 case IEEE80211_AMPDU_RX_STOP: 5098 break; 5099 case IEEE80211_AMPDU_TX_START: 5100 /* By the time we get here the hw queues may contain outgoing 5101 * packets for this RA/TID that are not part of this BA 5102 * session. The hw will assign sequence numbers to these 5103 * packets as they go out. So if we query the hw for its next 5104 * sequence number and use that for the SSN here, it may end up 5105 * being wrong, which will lead to sequence number mismatch at 5106 * the recipient. To avoid this, we reset the sequence number 5107 * to O for the first MPDU in this BA stream. 5108 */ 5109 *ssn = 0; 5110 if (stream == NULL) { 5111 /* This means that somebody outside this driver called 5112 * ieee80211_start_tx_ba_session. This is unexpected 5113 * because we do our own rate control. Just warn and 5114 * move on. 5115 */ 5116 wiphy_warn(hw->wiphy, "Unexpected call to %s. " 5117 "Proceeding anyway.\n", __func__); 5118 stream = mwl8k_add_stream(hw, sta, tid); 5119 } 5120 if (stream == NULL) { 5121 wiphy_debug(hw->wiphy, "no free AMPDU streams\n"); 5122 rc = -EBUSY; 5123 break; 5124 } 5125 stream->state = AMPDU_STREAM_IN_PROGRESS; 5126 5127 /* Release the lock before we do the time consuming stuff */ 5128 spin_unlock(&priv->stream_lock); 5129 for (i = 0; i < MAX_AMPDU_ATTEMPTS; i++) { 5130 rc = mwl8k_check_ba(hw, stream); 5131 5132 /* If HW restart is in progress mwl8k_post_cmd will 5133 * return -EBUSY. Avoid retrying mwl8k_check_ba in 5134 * such cases 5135 */ 5136 if (!rc || rc == -EBUSY) 5137 break; 5138 /* 5139 * HW queues take time to be flushed, give them 5140 * sufficient time 5141 */ 5142 5143 msleep(1000); 5144 } 5145 spin_lock(&priv->stream_lock); 5146 if (rc) { 5147 wiphy_err(hw->wiphy, "Stream for tid %d busy after %d" 5148 " attempts\n", tid, MAX_AMPDU_ATTEMPTS); 5149 mwl8k_remove_stream(hw, stream); 5150 rc = -EBUSY; 5151 break; 5152 } 5153 ieee80211_start_tx_ba_cb_irqsafe(vif, addr, tid); 5154 break; 5155 case IEEE80211_AMPDU_TX_STOP: 5156 if (stream) { 5157 if (stream->state == AMPDU_STREAM_ACTIVE) { 5158 spin_unlock(&priv->stream_lock); 5159 mwl8k_destroy_ba(hw, stream); 5160 spin_lock(&priv->stream_lock); 5161 } 5162 mwl8k_remove_stream(hw, stream); 5163 } 5164 ieee80211_stop_tx_ba_cb_irqsafe(vif, addr, tid); 5165 break; 5166 case IEEE80211_AMPDU_TX_OPERATIONAL: 5167 BUG_ON(stream == NULL); 5168 BUG_ON(stream->state != AMPDU_STREAM_IN_PROGRESS); 5169 spin_unlock(&priv->stream_lock); 5170 rc = mwl8k_create_ba(hw, stream, buf_size); 5171 spin_lock(&priv->stream_lock); 5172 if (!rc) 5173 stream->state = AMPDU_STREAM_ACTIVE; 5174 else { 5175 spin_unlock(&priv->stream_lock); 5176 mwl8k_destroy_ba(hw, stream); 5177 spin_lock(&priv->stream_lock); 5178 wiphy_debug(hw->wiphy, 5179 "Failed adding stream for sta %pM tid %d\n", 5180 addr, tid); 5181 mwl8k_remove_stream(hw, stream); 5182 } 5183 break; 5184 5185 default: 5186 rc = -ENOTSUPP; 5187 } 5188 5189 spin_unlock(&priv->stream_lock); 5190 return rc; 5191} 5192 5193static const struct ieee80211_ops mwl8k_ops = { 5194 .tx = mwl8k_tx, 5195 .start = mwl8k_start, 5196 .stop = mwl8k_stop, 5197 .add_interface = mwl8k_add_interface, 5198 .remove_interface = mwl8k_remove_interface, 5199 .config = mwl8k_config, 5200 .bss_info_changed = mwl8k_bss_info_changed, 5201 .prepare_multicast = mwl8k_prepare_multicast, 5202 .configure_filter = mwl8k_configure_filter, 5203 .set_key = mwl8k_set_key, 5204 .set_rts_threshold = mwl8k_set_rts_threshold, 5205 .sta_add = mwl8k_sta_add, 5206 .sta_remove = mwl8k_sta_remove, 5207 .conf_tx = mwl8k_conf_tx, 5208 .get_stats = mwl8k_get_stats, 5209 .get_survey = mwl8k_get_survey, 5210 .ampdu_action = mwl8k_ampdu_action, 5211}; 5212 5213static void mwl8k_finalize_join_worker(struct work_struct *work) 5214{ 5215 struct mwl8k_priv *priv = 5216 container_of(work, struct mwl8k_priv, finalize_join_worker); 5217 struct sk_buff *skb = priv->beacon_skb; 5218 struct ieee80211_mgmt *mgmt = (void *)skb->data; 5219 int len = skb->len - offsetof(struct ieee80211_mgmt, u.beacon.variable); 5220 const u8 *tim = cfg80211_find_ie(WLAN_EID_TIM, 5221 mgmt->u.beacon.variable, len); 5222 int dtim_period = 1; 5223 5224 if (tim && tim[1] >= 2) 5225 dtim_period = tim[3]; 5226 5227 mwl8k_cmd_finalize_join(priv->hw, skb->data, skb->len, dtim_period); 5228 5229 dev_kfree_skb(skb); 5230 priv->beacon_skb = NULL; 5231} 5232 5233enum { 5234 MWL8363 = 0, 5235 MWL8687, 5236 MWL8366, 5237}; 5238 5239#define MWL8K_8366_AP_FW_API 2 5240#define _MWL8K_8366_AP_FW(api) "mwl8k/fmimage_8366_ap-" #api ".fw" 5241#define MWL8K_8366_AP_FW(api) _MWL8K_8366_AP_FW(api) 5242 5243static struct mwl8k_device_info mwl8k_info_tbl[] __devinitdata = { 5244 [MWL8363] = { 5245 .part_name = "88w8363", 5246 .helper_image = "mwl8k/helper_8363.fw", 5247 .fw_image_sta = "mwl8k/fmimage_8363.fw", 5248 }, 5249 [MWL8687] = { 5250 .part_name = "88w8687", 5251 .helper_image = "mwl8k/helper_8687.fw", 5252 .fw_image_sta = "mwl8k/fmimage_8687.fw", 5253 }, 5254 [MWL8366] = { 5255 .part_name = "88w8366", 5256 .helper_image = "mwl8k/helper_8366.fw", 5257 .fw_image_sta = "mwl8k/fmimage_8366.fw", 5258 .fw_image_ap = MWL8K_8366_AP_FW(MWL8K_8366_AP_FW_API), 5259 .fw_api_ap = MWL8K_8366_AP_FW_API, 5260 .ap_rxd_ops = &rxd_8366_ap_ops, 5261 }, 5262}; 5263 5264MODULE_FIRMWARE("mwl8k/helper_8363.fw"); 5265MODULE_FIRMWARE("mwl8k/fmimage_8363.fw"); 5266MODULE_FIRMWARE("mwl8k/helper_8687.fw"); 5267MODULE_FIRMWARE("mwl8k/fmimage_8687.fw"); 5268MODULE_FIRMWARE("mwl8k/helper_8366.fw"); 5269MODULE_FIRMWARE("mwl8k/fmimage_8366.fw"); 5270MODULE_FIRMWARE(MWL8K_8366_AP_FW(MWL8K_8366_AP_FW_API)); 5271 5272static DEFINE_PCI_DEVICE_TABLE(mwl8k_pci_id_table) = { 5273 { PCI_VDEVICE(MARVELL, 0x2a0a), .driver_data = MWL8363, }, 5274 { PCI_VDEVICE(MARVELL, 0x2a0c), .driver_data = MWL8363, }, 5275 { PCI_VDEVICE(MARVELL, 0x2a24), .driver_data = MWL8363, }, 5276 { PCI_VDEVICE(MARVELL, 0x2a2b), .driver_data = MWL8687, }, 5277 { PCI_VDEVICE(MARVELL, 0x2a30), .driver_data = MWL8687, }, 5278 { PCI_VDEVICE(MARVELL, 0x2a40), .driver_data = MWL8366, }, 5279 { PCI_VDEVICE(MARVELL, 0x2a43), .driver_data = MWL8366, }, 5280 { }, 5281}; 5282MODULE_DEVICE_TABLE(pci, mwl8k_pci_id_table); 5283 5284static int mwl8k_request_alt_fw(struct mwl8k_priv *priv) 5285{ 5286 int rc; 5287 printk(KERN_ERR "%s: Error requesting preferred fw %s.\n" 5288 "Trying alternative firmware %s\n", pci_name(priv->pdev), 5289 priv->fw_pref, priv->fw_alt); 5290 rc = mwl8k_request_fw(priv, priv->fw_alt, &priv->fw_ucode, true); 5291 if (rc) { 5292 printk(KERN_ERR "%s: Error requesting alt fw %s\n", 5293 pci_name(priv->pdev), priv->fw_alt); 5294 return rc; 5295 } 5296 return 0; 5297} 5298 5299static int mwl8k_firmware_load_success(struct mwl8k_priv *priv); 5300static void mwl8k_fw_state_machine(const struct firmware *fw, void *context) 5301{ 5302 struct mwl8k_priv *priv = context; 5303 struct mwl8k_device_info *di = priv->device_info; 5304 int rc; 5305 5306 switch (priv->fw_state) { 5307 case FW_STATE_INIT: 5308 if (!fw) { 5309 printk(KERN_ERR "%s: Error requesting helper fw %s\n", 5310 pci_name(priv->pdev), di->helper_image); 5311 goto fail; 5312 } 5313 priv->fw_helper = fw; 5314 rc = mwl8k_request_fw(priv, priv->fw_pref, &priv->fw_ucode, 5315 true); 5316 if (rc && priv->fw_alt) { 5317 rc = mwl8k_request_alt_fw(priv); 5318 if (rc) 5319 goto fail; 5320 priv->fw_state = FW_STATE_LOADING_ALT; 5321 } else if (rc) 5322 goto fail; 5323 else 5324 priv->fw_state = FW_STATE_LOADING_PREF; 5325 break; 5326 5327 case FW_STATE_LOADING_PREF: 5328 if (!fw) { 5329 if (priv->fw_alt) { 5330 rc = mwl8k_request_alt_fw(priv); 5331 if (rc) 5332 goto fail; 5333 priv->fw_state = FW_STATE_LOADING_ALT; 5334 } else 5335 goto fail; 5336 } else { 5337 priv->fw_ucode = fw; 5338 rc = mwl8k_firmware_load_success(priv); 5339 if (rc) 5340 goto fail; 5341 else 5342 complete(&priv->firmware_loading_complete); 5343 } 5344 break; 5345 5346 case FW_STATE_LOADING_ALT: 5347 if (!fw) { 5348 printk(KERN_ERR "%s: Error requesting alt fw %s\n", 5349 pci_name(priv->pdev), di->helper_image); 5350 goto fail; 5351 } 5352 priv->fw_ucode = fw; 5353 rc = mwl8k_firmware_load_success(priv); 5354 if (rc) 5355 goto fail; 5356 else 5357 complete(&priv->firmware_loading_complete); 5358 break; 5359 5360 default: 5361 printk(KERN_ERR "%s: Unexpected firmware loading state: %d\n", 5362 MWL8K_NAME, priv->fw_state); 5363 BUG_ON(1); 5364 } 5365 5366 return; 5367 5368fail: 5369 priv->fw_state = FW_STATE_ERROR; 5370 complete(&priv->firmware_loading_complete); 5371 device_release_driver(&priv->pdev->dev); 5372 mwl8k_release_firmware(priv); 5373} 5374 5375#define MAX_RESTART_ATTEMPTS 1 5376static int mwl8k_init_firmware(struct ieee80211_hw *hw, char *fw_image, 5377 bool nowait) 5378{ 5379 struct mwl8k_priv *priv = hw->priv; 5380 int rc; 5381 int count = MAX_RESTART_ATTEMPTS; 5382 5383retry: 5384 /* Reset firmware and hardware */ 5385 mwl8k_hw_reset(priv); 5386 5387 /* Ask userland hotplug daemon for the device firmware */ 5388 rc = mwl8k_request_firmware(priv, fw_image, nowait); 5389 if (rc) { 5390 wiphy_err(hw->wiphy, "Firmware files not found\n"); 5391 return rc; 5392 } 5393 5394 if (nowait) 5395 return rc; 5396 5397 /* Load firmware into hardware */ 5398 rc = mwl8k_load_firmware(hw); 5399 if (rc) 5400 wiphy_err(hw->wiphy, "Cannot start firmware\n"); 5401 5402 /* Reclaim memory once firmware is successfully loaded */ 5403 mwl8k_release_firmware(priv); 5404 5405 if (rc && count) { 5406 /* FW did not start successfully; 5407 * lets try one more time 5408 */ 5409 count--; 5410 wiphy_err(hw->wiphy, "Trying to reload the firmware again\n"); 5411 msleep(20); 5412 goto retry; 5413 } 5414 5415 return rc; 5416} 5417 5418static int mwl8k_init_txqs(struct ieee80211_hw *hw) 5419{ 5420 struct mwl8k_priv *priv = hw->priv; 5421 int rc = 0; 5422 int i; 5423 5424 for (i = 0; i < mwl8k_tx_queues(priv); i++) { 5425 rc = mwl8k_txq_init(hw, i); 5426 if (rc) 5427 break; 5428 if (priv->ap_fw) 5429 iowrite32(priv->txq[i].txd_dma, 5430 priv->sram + priv->txq_offset[i]); 5431 } 5432 return rc; 5433} 5434 5435/* initialize hw after successfully loading a firmware image */ 5436static int mwl8k_probe_hw(struct ieee80211_hw *hw) 5437{ 5438 struct mwl8k_priv *priv = hw->priv; 5439 int rc = 0; 5440 int i; 5441 5442 if (priv->ap_fw) { 5443 priv->rxd_ops = priv->device_info->ap_rxd_ops; 5444 if (priv->rxd_ops == NULL) { 5445 wiphy_err(hw->wiphy, 5446 "Driver does not have AP firmware image support for this hardware\n"); 5447 goto err_stop_firmware; 5448 } 5449 } else { 5450 priv->rxd_ops = &rxd_sta_ops; 5451 } 5452 5453 priv->sniffer_enabled = false; 5454 priv->wmm_enabled = false; 5455 priv->pending_tx_pkts = 0; 5456 5457 rc = mwl8k_rxq_init(hw, 0); 5458 if (rc) 5459 goto err_stop_firmware; 5460 rxq_refill(hw, 0, INT_MAX); 5461 5462 /* For the sta firmware, we need to know the dma addresses of tx queues 5463 * before sending MWL8K_CMD_GET_HW_SPEC. So we must initialize them 5464 * prior to issuing this command. But for the AP case, we learn the 5465 * total number of queues from the result CMD_GET_HW_SPEC, so for this 5466 * case we must initialize the tx queues after. 5467 */ 5468 priv->num_ampdu_queues = 0; 5469 if (!priv->ap_fw) { 5470 rc = mwl8k_init_txqs(hw); 5471 if (rc) 5472 goto err_free_queues; 5473 } 5474 5475 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 5476 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 5477 iowrite32(MWL8K_A2H_INT_TX_DONE|MWL8K_A2H_INT_RX_READY| 5478 MWL8K_A2H_INT_BA_WATCHDOG, 5479 priv->regs + MWL8K_HIU_A2H_INTERRUPT_CLEAR_SEL); 5480 iowrite32(MWL8K_A2H_INT_OPC_DONE, 5481 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK); 5482 5483 rc = request_irq(priv->pdev->irq, mwl8k_interrupt, 5484 IRQF_SHARED, MWL8K_NAME, hw); 5485 if (rc) { 5486 wiphy_err(hw->wiphy, "failed to register IRQ handler\n"); 5487 goto err_free_queues; 5488 } 5489 5490 /* 5491 * When hw restart is requested, 5492 * mac80211 will take care of clearing 5493 * the ampdu streams, so do not clear 5494 * the ampdu state here 5495 */ 5496 if (!priv->hw_restart_in_progress) 5497 memset(priv->ampdu, 0, sizeof(priv->ampdu)); 5498 5499 /* 5500 * Temporarily enable interrupts. Initial firmware host 5501 * commands use interrupts and avoid polling. Disable 5502 * interrupts when done. 5503 */ 5504 iowrite32(MWL8K_A2H_EVENTS, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 5505 5506 /* Get config data, mac addrs etc */ 5507 if (priv->ap_fw) { 5508 rc = mwl8k_cmd_get_hw_spec_ap(hw); 5509 if (!rc) 5510 rc = mwl8k_init_txqs(hw); 5511 if (!rc) 5512 rc = mwl8k_cmd_set_hw_spec(hw); 5513 } else { 5514 rc = mwl8k_cmd_get_hw_spec_sta(hw); 5515 } 5516 if (rc) { 5517 wiphy_err(hw->wiphy, "Cannot initialise firmware\n"); 5518 goto err_free_irq; 5519 } 5520 5521 /* Turn radio off */ 5522 rc = mwl8k_cmd_radio_disable(hw); 5523 if (rc) { 5524 wiphy_err(hw->wiphy, "Cannot disable\n"); 5525 goto err_free_irq; 5526 } 5527 5528 /* Clear MAC address */ 5529 rc = mwl8k_cmd_set_mac_addr(hw, NULL, "\x00\x00\x00\x00\x00\x00"); 5530 if (rc) { 5531 wiphy_err(hw->wiphy, "Cannot clear MAC address\n"); 5532 goto err_free_irq; 5533 } 5534 5535 /* Disable interrupts */ 5536 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 5537 free_irq(priv->pdev->irq, hw); 5538 5539 wiphy_info(hw->wiphy, "%s v%d, %pm, %s firmware %u.%u.%u.%u\n", 5540 priv->device_info->part_name, 5541 priv->hw_rev, hw->wiphy->perm_addr, 5542 priv->ap_fw ? "AP" : "STA", 5543 (priv->fw_rev >> 24) & 0xff, (priv->fw_rev >> 16) & 0xff, 5544 (priv->fw_rev >> 8) & 0xff, priv->fw_rev & 0xff); 5545 5546 return 0; 5547 5548err_free_irq: 5549 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 5550 free_irq(priv->pdev->irq, hw); 5551 5552err_free_queues: 5553 for (i = 0; i < mwl8k_tx_queues(priv); i++) 5554 mwl8k_txq_deinit(hw, i); 5555 mwl8k_rxq_deinit(hw, 0); 5556 5557err_stop_firmware: 5558 mwl8k_hw_reset(priv); 5559 5560 return rc; 5561} 5562 5563/* 5564 * invoke mwl8k_reload_firmware to change the firmware image after the device 5565 * has already been registered 5566 */ 5567static int mwl8k_reload_firmware(struct ieee80211_hw *hw, char *fw_image) 5568{ 5569 int i, rc = 0; 5570 struct mwl8k_priv *priv = hw->priv; 5571 struct mwl8k_vif *vif, *tmp_vif; 5572 5573 mwl8k_stop(hw); 5574 mwl8k_rxq_deinit(hw, 0); 5575 5576 /* 5577 * All the existing interfaces are re-added by the ieee80211_reconfig; 5578 * which means driver should remove existing interfaces before calling 5579 * ieee80211_restart_hw 5580 */ 5581 if (priv->hw_restart_in_progress) 5582 list_for_each_entry_safe(vif, tmp_vif, &priv->vif_list, list) 5583 mwl8k_remove_vif(priv, vif); 5584 5585 for (i = 0; i < mwl8k_tx_queues(priv); i++) 5586 mwl8k_txq_deinit(hw, i); 5587 5588 rc = mwl8k_init_firmware(hw, fw_image, false); 5589 if (rc) 5590 goto fail; 5591 5592 rc = mwl8k_probe_hw(hw); 5593 if (rc) 5594 goto fail; 5595 5596 if (priv->hw_restart_in_progress) 5597 return rc; 5598 5599 rc = mwl8k_start(hw); 5600 if (rc) 5601 goto fail; 5602 5603 rc = mwl8k_config(hw, ~0); 5604 if (rc) 5605 goto fail; 5606 5607 for (i = 0; i < MWL8K_TX_WMM_QUEUES; i++) { 5608 rc = mwl8k_conf_tx(hw, NULL, i, &priv->wmm_params[i]); 5609 if (rc) 5610 goto fail; 5611 } 5612 5613 return rc; 5614 5615fail: 5616 printk(KERN_WARNING "mwl8k: Failed to reload firmware image.\n"); 5617 return rc; 5618} 5619 5620static const struct ieee80211_iface_limit ap_if_limits[] = { 5621 { .max = 8, .types = BIT(NL80211_IFTYPE_AP) }, 5622}; 5623 5624static const struct ieee80211_iface_combination ap_if_comb = { 5625 .limits = ap_if_limits, 5626 .n_limits = ARRAY_SIZE(ap_if_limits), 5627 .max_interfaces = 8, 5628 .num_different_channels = 1, 5629}; 5630 5631 5632static int mwl8k_firmware_load_success(struct mwl8k_priv *priv) 5633{ 5634 struct ieee80211_hw *hw = priv->hw; 5635 int i, rc; 5636 5637 rc = mwl8k_load_firmware(hw); 5638 mwl8k_release_firmware(priv); 5639 if (rc) { 5640 wiphy_err(hw->wiphy, "Cannot start firmware\n"); 5641 return rc; 5642 } 5643 5644 /* 5645 * Extra headroom is the size of the required DMA header 5646 * minus the size of the smallest 802.11 frame (CTS frame). 5647 */ 5648 hw->extra_tx_headroom = 5649 sizeof(struct mwl8k_dma_data) - sizeof(struct ieee80211_cts); 5650 5651 hw->extra_tx_headroom -= priv->ap_fw ? REDUCED_TX_HEADROOM : 0; 5652 5653 hw->channel_change_time = 10; 5654 5655 hw->queues = MWL8K_TX_WMM_QUEUES; 5656 5657 /* Set rssi values to dBm */ 5658 hw->flags |= IEEE80211_HW_SIGNAL_DBM | IEEE80211_HW_HAS_RATE_CONTROL; 5659 5660 /* 5661 * Ask mac80211 to not to trigger PS mode 5662 * based on PM bit of incoming frames. 5663 */ 5664 if (priv->ap_fw) 5665 hw->flags |= IEEE80211_HW_AP_LINK_PS; 5666 5667 hw->vif_data_size = sizeof(struct mwl8k_vif); 5668 hw->sta_data_size = sizeof(struct mwl8k_sta); 5669 5670 priv->macids_used = 0; 5671 INIT_LIST_HEAD(&priv->vif_list); 5672 5673 /* Set default radio state and preamble */ 5674 priv->radio_on = false; 5675 priv->radio_short_preamble = false; 5676 5677 /* Finalize join worker */ 5678 INIT_WORK(&priv->finalize_join_worker, mwl8k_finalize_join_worker); 5679 /* Handle watchdog ba events */ 5680 INIT_WORK(&priv->watchdog_ba_handle, mwl8k_watchdog_ba_events); 5681 /* To reload the firmware if it crashes */ 5682 INIT_WORK(&priv->fw_reload, mwl8k_hw_restart_work); 5683 5684 /* TX reclaim and RX tasklets. */ 5685 tasklet_init(&priv->poll_tx_task, mwl8k_tx_poll, (unsigned long)hw); 5686 tasklet_disable(&priv->poll_tx_task); 5687 tasklet_init(&priv->poll_rx_task, mwl8k_rx_poll, (unsigned long)hw); 5688 tasklet_disable(&priv->poll_rx_task); 5689 5690 /* Power management cookie */ 5691 priv->cookie = pci_alloc_consistent(priv->pdev, 4, &priv->cookie_dma); 5692 if (priv->cookie == NULL) 5693 return -ENOMEM; 5694 5695 mutex_init(&priv->fw_mutex); 5696 priv->fw_mutex_owner = NULL; 5697 priv->fw_mutex_depth = 0; 5698 priv->hostcmd_wait = NULL; 5699 5700 spin_lock_init(&priv->tx_lock); 5701 5702 spin_lock_init(&priv->stream_lock); 5703 5704 priv->tx_wait = NULL; 5705 5706 rc = mwl8k_probe_hw(hw); 5707 if (rc) 5708 goto err_free_cookie; 5709 5710 hw->wiphy->interface_modes = 0; 5711 5712 if (priv->ap_macids_supported || priv->device_info->fw_image_ap) { 5713 hw->wiphy->interface_modes |= BIT(NL80211_IFTYPE_AP); 5714 hw->wiphy->iface_combinations = &ap_if_comb; 5715 hw->wiphy->n_iface_combinations = 1; 5716 } 5717 5718 if (priv->sta_macids_supported || priv->device_info->fw_image_sta) 5719 hw->wiphy->interface_modes |= BIT(NL80211_IFTYPE_STATION); 5720 5721 rc = ieee80211_register_hw(hw); 5722 if (rc) { 5723 wiphy_err(hw->wiphy, "Cannot register device\n"); 5724 goto err_unprobe_hw; 5725 } 5726 5727 return 0; 5728 5729err_unprobe_hw: 5730 for (i = 0; i < mwl8k_tx_queues(priv); i++) 5731 mwl8k_txq_deinit(hw, i); 5732 mwl8k_rxq_deinit(hw, 0); 5733 5734err_free_cookie: 5735 if (priv->cookie != NULL) 5736 pci_free_consistent(priv->pdev, 4, 5737 priv->cookie, priv->cookie_dma); 5738 5739 return rc; 5740} 5741static int __devinit mwl8k_probe(struct pci_dev *pdev, 5742 const struct pci_device_id *id) 5743{ 5744 static int printed_version; 5745 struct ieee80211_hw *hw; 5746 struct mwl8k_priv *priv; 5747 struct mwl8k_device_info *di; 5748 int rc; 5749 5750 if (!printed_version) { 5751 printk(KERN_INFO "%s version %s\n", MWL8K_DESC, MWL8K_VERSION); 5752 printed_version = 1; 5753 } 5754 5755 5756 rc = pci_enable_device(pdev); 5757 if (rc) { 5758 printk(KERN_ERR "%s: Cannot enable new PCI device\n", 5759 MWL8K_NAME); 5760 return rc; 5761 } 5762 5763 rc = pci_request_regions(pdev, MWL8K_NAME); 5764 if (rc) { 5765 printk(KERN_ERR "%s: Cannot obtain PCI resources\n", 5766 MWL8K_NAME); 5767 goto err_disable_device; 5768 } 5769 5770 pci_set_master(pdev); 5771 5772 5773 hw = ieee80211_alloc_hw(sizeof(*priv), &mwl8k_ops); 5774 if (hw == NULL) { 5775 printk(KERN_ERR "%s: ieee80211 alloc failed\n", MWL8K_NAME); 5776 rc = -ENOMEM; 5777 goto err_free_reg; 5778 } 5779 5780 SET_IEEE80211_DEV(hw, &pdev->dev); 5781 pci_set_drvdata(pdev, hw); 5782 5783 priv = hw->priv; 5784 priv->hw = hw; 5785 priv->pdev = pdev; 5786 priv->device_info = &mwl8k_info_tbl[id->driver_data]; 5787 5788 5789 priv->sram = pci_iomap(pdev, 0, 0x10000); 5790 if (priv->sram == NULL) { 5791 wiphy_err(hw->wiphy, "Cannot map device SRAM\n"); 5792 goto err_iounmap; 5793 } 5794 5795 /* 5796 * If BAR0 is a 32 bit BAR, the register BAR will be BAR1. 5797 * If BAR0 is a 64 bit BAR, the register BAR will be BAR2. 5798 */ 5799 priv->regs = pci_iomap(pdev, 1, 0x10000); 5800 if (priv->regs == NULL) { 5801 priv->regs = pci_iomap(pdev, 2, 0x10000); 5802 if (priv->regs == NULL) { 5803 wiphy_err(hw->wiphy, "Cannot map device registers\n"); 5804 goto err_iounmap; 5805 } 5806 } 5807 5808 /* 5809 * Choose the initial fw image depending on user input. If a second 5810 * image is available, make it the alternative image that will be 5811 * loaded if the first one fails. 5812 */ 5813 init_completion(&priv->firmware_loading_complete); 5814 di = priv->device_info; 5815 if (ap_mode_default && di->fw_image_ap) { 5816 priv->fw_pref = di->fw_image_ap; 5817 priv->fw_alt = di->fw_image_sta; 5818 } else if (!ap_mode_default && di->fw_image_sta) { 5819 priv->fw_pref = di->fw_image_sta; 5820 priv->fw_alt = di->fw_image_ap; 5821 } else if (ap_mode_default && !di->fw_image_ap && di->fw_image_sta) { 5822 printk(KERN_WARNING "AP fw is unavailable. Using STA fw."); 5823 priv->fw_pref = di->fw_image_sta; 5824 } else if (!ap_mode_default && !di->fw_image_sta && di->fw_image_ap) { 5825 printk(KERN_WARNING "STA fw is unavailable. Using AP fw."); 5826 priv->fw_pref = di->fw_image_ap; 5827 } 5828 rc = mwl8k_init_firmware(hw, priv->fw_pref, true); 5829 if (rc) 5830 goto err_stop_firmware; 5831 5832 priv->hw_restart_in_progress = false; 5833 5834 return rc; 5835 5836err_stop_firmware: 5837 mwl8k_hw_reset(priv); 5838 5839err_iounmap: 5840 if (priv->regs != NULL) 5841 pci_iounmap(pdev, priv->regs); 5842 5843 if (priv->sram != NULL) 5844 pci_iounmap(pdev, priv->sram); 5845 5846 pci_set_drvdata(pdev, NULL); 5847 ieee80211_free_hw(hw); 5848 5849err_free_reg: 5850 pci_release_regions(pdev); 5851 5852err_disable_device: 5853 pci_disable_device(pdev); 5854 5855 return rc; 5856} 5857 5858static void __devexit mwl8k_shutdown(struct pci_dev *pdev) 5859{ 5860 printk(KERN_ERR "===>%s(%u)\n", __func__, __LINE__); 5861} 5862 5863static void __devexit mwl8k_remove(struct pci_dev *pdev) 5864{ 5865 struct ieee80211_hw *hw = pci_get_drvdata(pdev); 5866 struct mwl8k_priv *priv; 5867 int i; 5868 5869 if (hw == NULL) 5870 return; 5871 priv = hw->priv; 5872 5873 wait_for_completion(&priv->firmware_loading_complete); 5874 5875 if (priv->fw_state == FW_STATE_ERROR) { 5876 mwl8k_hw_reset(priv); 5877 goto unmap; 5878 } 5879 5880 ieee80211_stop_queues(hw); 5881 5882 ieee80211_unregister_hw(hw); 5883 5884 /* Remove TX reclaim and RX tasklets. */ 5885 tasklet_kill(&priv->poll_tx_task); 5886 tasklet_kill(&priv->poll_rx_task); 5887 5888 /* Stop hardware */ 5889 mwl8k_hw_reset(priv); 5890 5891 /* Return all skbs to mac80211 */ 5892 for (i = 0; i < mwl8k_tx_queues(priv); i++) 5893 mwl8k_txq_reclaim(hw, i, INT_MAX, 1); 5894 5895 for (i = 0; i < mwl8k_tx_queues(priv); i++) 5896 mwl8k_txq_deinit(hw, i); 5897 5898 mwl8k_rxq_deinit(hw, 0); 5899 5900 pci_free_consistent(priv->pdev, 4, priv->cookie, priv->cookie_dma); 5901 5902unmap: 5903 pci_iounmap(pdev, priv->regs); 5904 pci_iounmap(pdev, priv->sram); 5905 pci_set_drvdata(pdev, NULL); 5906 ieee80211_free_hw(hw); 5907 pci_release_regions(pdev); 5908 pci_disable_device(pdev); 5909} 5910 5911static struct pci_driver mwl8k_driver = { 5912 .name = MWL8K_NAME, 5913 .id_table = mwl8k_pci_id_table, 5914 .probe = mwl8k_probe, 5915 .remove = __devexit_p(mwl8k_remove), 5916 .shutdown = __devexit_p(mwl8k_shutdown), 5917}; 5918 5919module_pci_driver(mwl8k_driver); 5920 5921MODULE_DESCRIPTION(MWL8K_DESC); 5922MODULE_VERSION(MWL8K_VERSION); 5923MODULE_AUTHOR("Lennert Buytenhek <buytenh@marvell.com>"); 5924MODULE_LICENSE("GPL"); 5925