1/* 2 * drivers/net/wireless/mwl8k.c 3 * Driver for Marvell TOPDOG 802.11 Wireless cards 4 * 5 * Copyright (C) 2008, 2009, 2010 Marvell Semiconductor Inc. 6 * 7 * This file is licensed under the terms of the GNU General Public 8 * License version 2. This program is licensed "as is" without any 9 * warranty of any kind, whether express or implied. 10 */ 11 12#include <linux/interrupt.h> 13#include <linux/module.h> 14#include <linux/kernel.h> 15#include <linux/sched.h> 16#include <linux/spinlock.h> 17#include <linux/list.h> 18#include <linux/pci.h> 19#include <linux/delay.h> 20#include <linux/completion.h> 21#include <linux/etherdevice.h> 22#include <linux/slab.h> 23#include <net/mac80211.h> 24#include <linux/moduleparam.h> 25#include <linux/firmware.h> 26#include <linux/workqueue.h> 27 28#define MWL8K_DESC "Marvell TOPDOG(R) 802.11 Wireless Network Driver" 29#define MWL8K_NAME KBUILD_MODNAME 30#define MWL8K_VERSION "0.13" 31 32/* Module parameters */ 33static bool ap_mode_default; 34module_param(ap_mode_default, bool, 0); 35MODULE_PARM_DESC(ap_mode_default, 36 "Set to 1 to make ap mode the default instead of sta mode"); 37 38/* Register definitions */ 39#define MWL8K_HIU_GEN_PTR 0x00000c10 40#define MWL8K_MODE_STA 0x0000005a 41#define MWL8K_MODE_AP 0x000000a5 42#define MWL8K_HIU_INT_CODE 0x00000c14 43#define MWL8K_FWSTA_READY 0xf0f1f2f4 44#define MWL8K_FWAP_READY 0xf1f2f4a5 45#define MWL8K_INT_CODE_CMD_FINISHED 0x00000005 46#define MWL8K_HIU_SCRATCH 0x00000c40 47 48/* Host->device communications */ 49#define MWL8K_HIU_H2A_INTERRUPT_EVENTS 0x00000c18 50#define MWL8K_HIU_H2A_INTERRUPT_STATUS 0x00000c1c 51#define MWL8K_HIU_H2A_INTERRUPT_MASK 0x00000c20 52#define MWL8K_HIU_H2A_INTERRUPT_CLEAR_SEL 0x00000c24 53#define MWL8K_HIU_H2A_INTERRUPT_STATUS_MASK 0x00000c28 54#define MWL8K_H2A_INT_DUMMY (1 << 20) 55#define MWL8K_H2A_INT_RESET (1 << 15) 56#define MWL8K_H2A_INT_DOORBELL (1 << 1) 57#define MWL8K_H2A_INT_PPA_READY (1 << 0) 58 59/* Device->host communications */ 60#define MWL8K_HIU_A2H_INTERRUPT_EVENTS 0x00000c2c 61#define MWL8K_HIU_A2H_INTERRUPT_STATUS 0x00000c30 62#define MWL8K_HIU_A2H_INTERRUPT_MASK 0x00000c34 63#define MWL8K_HIU_A2H_INTERRUPT_CLEAR_SEL 0x00000c38 64#define MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK 0x00000c3c 65#define MWL8K_A2H_INT_DUMMY (1 << 20) 66#define MWL8K_A2H_INT_BA_WATCHDOG (1 << 14) 67#define MWL8K_A2H_INT_CHNL_SWITCHED (1 << 11) 68#define MWL8K_A2H_INT_QUEUE_EMPTY (1 << 10) 69#define MWL8K_A2H_INT_RADAR_DETECT (1 << 7) 70#define MWL8K_A2H_INT_RADIO_ON (1 << 6) 71#define MWL8K_A2H_INT_RADIO_OFF (1 << 5) 72#define MWL8K_A2H_INT_MAC_EVENT (1 << 3) 73#define MWL8K_A2H_INT_OPC_DONE (1 << 2) 74#define MWL8K_A2H_INT_RX_READY (1 << 1) 75#define MWL8K_A2H_INT_TX_DONE (1 << 0) 76 77/* HW micro second timer register 78 * located at offset 0xA600. This 79 * will be used to timestamp tx 80 * packets. 81 */ 82 83#define MWL8K_HW_TIMER_REGISTER 0x0000a600 84#define BBU_RXRDY_CNT_REG 0x0000a860 85#define NOK_CCA_CNT_REG 0x0000a6a0 86#define BBU_AVG_NOISE_VAL 0x67 87 88#define MWL8K_A2H_EVENTS (MWL8K_A2H_INT_DUMMY | \ 89 MWL8K_A2H_INT_CHNL_SWITCHED | \ 90 MWL8K_A2H_INT_QUEUE_EMPTY | \ 91 MWL8K_A2H_INT_RADAR_DETECT | \ 92 MWL8K_A2H_INT_RADIO_ON | \ 93 MWL8K_A2H_INT_RADIO_OFF | \ 94 MWL8K_A2H_INT_MAC_EVENT | \ 95 MWL8K_A2H_INT_OPC_DONE | \ 96 MWL8K_A2H_INT_RX_READY | \ 97 MWL8K_A2H_INT_TX_DONE | \ 98 MWL8K_A2H_INT_BA_WATCHDOG) 99 100#define MWL8K_RX_QUEUES 1 101#define MWL8K_TX_WMM_QUEUES 4 102#define MWL8K_MAX_AMPDU_QUEUES 8 103#define MWL8K_MAX_TX_QUEUES (MWL8K_TX_WMM_QUEUES + MWL8K_MAX_AMPDU_QUEUES) 104#define mwl8k_tx_queues(priv) (MWL8K_TX_WMM_QUEUES + (priv)->num_ampdu_queues) 105 106/* txpriorities are mapped with hw queues. 107 * Each hw queue has a txpriority. 108 */ 109#define TOTAL_HW_TX_QUEUES 8 110 111/* Each HW queue can have one AMPDU stream. 112 * But, because one of the hw queue is reserved, 113 * maximum AMPDU queues that can be created are 114 * one short of total tx queues. 115 */ 116#define MWL8K_NUM_AMPDU_STREAMS (TOTAL_HW_TX_QUEUES - 1) 117 118#define MWL8K_NUM_CHANS 18 119 120struct rxd_ops { 121 int rxd_size; 122 void (*rxd_init)(void *rxd, dma_addr_t next_dma_addr); 123 void (*rxd_refill)(void *rxd, dma_addr_t addr, int len); 124 int (*rxd_process)(void *rxd, struct ieee80211_rx_status *status, 125 __le16 *qos, s8 *noise); 126}; 127 128struct mwl8k_device_info { 129 char *part_name; 130 char *helper_image; 131 char *fw_image_sta; 132 char *fw_image_ap; 133 struct rxd_ops *ap_rxd_ops; 134 u32 fw_api_ap; 135}; 136 137struct mwl8k_rx_queue { 138 int rxd_count; 139 140 /* hw receives here */ 141 int head; 142 143 /* refill descs here */ 144 int tail; 145 146 void *rxd; 147 dma_addr_t rxd_dma; 148 struct { 149 struct sk_buff *skb; 150 DEFINE_DMA_UNMAP_ADDR(dma); 151 } *buf; 152}; 153 154struct mwl8k_tx_queue { 155 /* hw transmits here */ 156 int head; 157 158 /* sw appends here */ 159 int tail; 160 161 unsigned int len; 162 struct mwl8k_tx_desc *txd; 163 dma_addr_t txd_dma; 164 struct sk_buff **skb; 165}; 166 167enum { 168 AMPDU_NO_STREAM, 169 AMPDU_STREAM_NEW, 170 AMPDU_STREAM_IN_PROGRESS, 171 AMPDU_STREAM_ACTIVE, 172}; 173 174struct mwl8k_ampdu_stream { 175 struct ieee80211_sta *sta; 176 u8 tid; 177 u8 state; 178 u8 idx; 179}; 180 181struct mwl8k_priv { 182 struct ieee80211_hw *hw; 183 struct pci_dev *pdev; 184 int irq; 185 186 struct mwl8k_device_info *device_info; 187 188 void __iomem *sram; 189 void __iomem *regs; 190 191 /* firmware */ 192 const struct firmware *fw_helper; 193 const struct firmware *fw_ucode; 194 195 /* hardware/firmware parameters */ 196 bool ap_fw; 197 struct rxd_ops *rxd_ops; 198 struct ieee80211_supported_band band_24; 199 struct ieee80211_channel channels_24[14]; 200 struct ieee80211_rate rates_24[13]; 201 struct ieee80211_supported_band band_50; 202 struct ieee80211_channel channels_50[9]; 203 struct ieee80211_rate rates_50[8]; 204 u32 ap_macids_supported; 205 u32 sta_macids_supported; 206 207 /* Ampdu stream information */ 208 u8 num_ampdu_queues; 209 spinlock_t stream_lock; 210 struct mwl8k_ampdu_stream ampdu[MWL8K_MAX_AMPDU_QUEUES]; 211 struct work_struct watchdog_ba_handle; 212 213 /* firmware access */ 214 struct mutex fw_mutex; 215 struct task_struct *fw_mutex_owner; 216 struct task_struct *hw_restart_owner; 217 int fw_mutex_depth; 218 struct completion *hostcmd_wait; 219 220 atomic_t watchdog_event_pending; 221 222 /* lock held over TX and TX reap */ 223 spinlock_t tx_lock; 224 225 /* TX quiesce completion, protected by fw_mutex and tx_lock */ 226 struct completion *tx_wait; 227 228 /* List of interfaces. */ 229 u32 macids_used; 230 struct list_head vif_list; 231 232 /* power management status cookie from firmware */ 233 u32 *cookie; 234 dma_addr_t cookie_dma; 235 236 u16 num_mcaddrs; 237 u8 hw_rev; 238 u32 fw_rev; 239 u32 caps; 240 241 /* 242 * Running count of TX packets in flight, to avoid 243 * iterating over the transmit rings each time. 244 */ 245 int pending_tx_pkts; 246 247 struct mwl8k_rx_queue rxq[MWL8K_RX_QUEUES]; 248 struct mwl8k_tx_queue txq[MWL8K_MAX_TX_QUEUES]; 249 u32 txq_offset[MWL8K_MAX_TX_QUEUES]; 250 251 bool radio_on; 252 bool radio_short_preamble; 253 bool sniffer_enabled; 254 bool wmm_enabled; 255 256 /* XXX need to convert this to handle multiple interfaces */ 257 bool capture_beacon; 258 u8 capture_bssid[ETH_ALEN]; 259 struct sk_buff *beacon_skb; 260 261 /* 262 * This FJ worker has to be global as it is scheduled from the 263 * RX handler. At this point we don't know which interface it 264 * belongs to until the list of bssids waiting to complete join 265 * is checked. 266 */ 267 struct work_struct finalize_join_worker; 268 269 /* Tasklet to perform TX reclaim. */ 270 struct tasklet_struct poll_tx_task; 271 272 /* Tasklet to perform RX. */ 273 struct tasklet_struct poll_rx_task; 274 275 /* Most recently reported noise in dBm */ 276 s8 noise; 277 278 /* 279 * preserve the queue configurations so they can be restored if/when 280 * the firmware image is swapped. 281 */ 282 struct ieee80211_tx_queue_params wmm_params[MWL8K_TX_WMM_QUEUES]; 283 284 /* To perform the task of reloading the firmware */ 285 struct work_struct fw_reload; 286 bool hw_restart_in_progress; 287 288 /* async firmware loading state */ 289 unsigned fw_state; 290 char *fw_pref; 291 char *fw_alt; 292 bool is_8764; 293 struct completion firmware_loading_complete; 294 295 /* bitmap of running BSSes */ 296 u32 running_bsses; 297 298 /* ACS related */ 299 bool sw_scan_start; 300 struct ieee80211_channel *acs_chan; 301 unsigned long channel_time; 302 struct survey_info survey[MWL8K_NUM_CHANS]; 303}; 304 305#define MAX_WEP_KEY_LEN 13 306#define NUM_WEP_KEYS 4 307 308/* Per interface specific private data */ 309struct mwl8k_vif { 310 struct list_head list; 311 struct ieee80211_vif *vif; 312 313 /* Firmware macid for this vif. */ 314 int macid; 315 316 /* Non AMPDU sequence number assigned by driver. */ 317 u16 seqno; 318 319 /* Saved WEP keys */ 320 struct { 321 u8 enabled; 322 u8 key[sizeof(struct ieee80211_key_conf) + MAX_WEP_KEY_LEN]; 323 } wep_key_conf[NUM_WEP_KEYS]; 324 325 /* BSSID */ 326 u8 bssid[ETH_ALEN]; 327 328 /* A flag to indicate is HW crypto is enabled for this bssid */ 329 bool is_hw_crypto_enabled; 330}; 331#define MWL8K_VIF(_vif) ((struct mwl8k_vif *)&((_vif)->drv_priv)) 332#define IEEE80211_KEY_CONF(_u8) ((struct ieee80211_key_conf *)(_u8)) 333 334struct tx_traffic_info { 335 u32 start_time; 336 u32 pkts; 337}; 338 339#define MWL8K_MAX_TID 8 340struct mwl8k_sta { 341 /* Index into station database. Returned by UPDATE_STADB. */ 342 u8 peer_id; 343 u8 is_ampdu_allowed; 344 struct tx_traffic_info tx_stats[MWL8K_MAX_TID]; 345}; 346#define MWL8K_STA(_sta) ((struct mwl8k_sta *)&((_sta)->drv_priv)) 347 348static const struct ieee80211_channel mwl8k_channels_24[] = { 349 { .band = NL80211_BAND_2GHZ, .center_freq = 2412, .hw_value = 1, }, 350 { .band = NL80211_BAND_2GHZ, .center_freq = 2417, .hw_value = 2, }, 351 { .band = NL80211_BAND_2GHZ, .center_freq = 2422, .hw_value = 3, }, 352 { .band = NL80211_BAND_2GHZ, .center_freq = 2427, .hw_value = 4, }, 353 { .band = NL80211_BAND_2GHZ, .center_freq = 2432, .hw_value = 5, }, 354 { .band = NL80211_BAND_2GHZ, .center_freq = 2437, .hw_value = 6, }, 355 { .band = NL80211_BAND_2GHZ, .center_freq = 2442, .hw_value = 7, }, 356 { .band = NL80211_BAND_2GHZ, .center_freq = 2447, .hw_value = 8, }, 357 { .band = NL80211_BAND_2GHZ, .center_freq = 2452, .hw_value = 9, }, 358 { .band = NL80211_BAND_2GHZ, .center_freq = 2457, .hw_value = 10, }, 359 { .band = NL80211_BAND_2GHZ, .center_freq = 2462, .hw_value = 11, }, 360 { .band = NL80211_BAND_2GHZ, .center_freq = 2467, .hw_value = 12, }, 361 { .band = NL80211_BAND_2GHZ, .center_freq = 2472, .hw_value = 13, }, 362 { .band = NL80211_BAND_2GHZ, .center_freq = 2484, .hw_value = 14, }, 363}; 364 365static const struct ieee80211_rate mwl8k_rates_24[] = { 366 { .bitrate = 10, .hw_value = 2, }, 367 { .bitrate = 20, .hw_value = 4, }, 368 { .bitrate = 55, .hw_value = 11, }, 369 { .bitrate = 110, .hw_value = 22, }, 370 { .bitrate = 220, .hw_value = 44, }, 371 { .bitrate = 60, .hw_value = 12, }, 372 { .bitrate = 90, .hw_value = 18, }, 373 { .bitrate = 120, .hw_value = 24, }, 374 { .bitrate = 180, .hw_value = 36, }, 375 { .bitrate = 240, .hw_value = 48, }, 376 { .bitrate = 360, .hw_value = 72, }, 377 { .bitrate = 480, .hw_value = 96, }, 378 { .bitrate = 540, .hw_value = 108, }, 379}; 380 381static const struct ieee80211_channel mwl8k_channels_50[] = { 382 { .band = NL80211_BAND_5GHZ, .center_freq = 5180, .hw_value = 36, }, 383 { .band = NL80211_BAND_5GHZ, .center_freq = 5200, .hw_value = 40, }, 384 { .band = NL80211_BAND_5GHZ, .center_freq = 5220, .hw_value = 44, }, 385 { .band = NL80211_BAND_5GHZ, .center_freq = 5240, .hw_value = 48, }, 386 { .band = NL80211_BAND_5GHZ, .center_freq = 5745, .hw_value = 149, }, 387 { .band = NL80211_BAND_5GHZ, .center_freq = 5765, .hw_value = 153, }, 388 { .band = NL80211_BAND_5GHZ, .center_freq = 5785, .hw_value = 157, }, 389 { .band = NL80211_BAND_5GHZ, .center_freq = 5805, .hw_value = 161, }, 390 { .band = NL80211_BAND_5GHZ, .center_freq = 5825, .hw_value = 165, }, 391}; 392 393static const struct ieee80211_rate mwl8k_rates_50[] = { 394 { .bitrate = 60, .hw_value = 12, }, 395 { .bitrate = 90, .hw_value = 18, }, 396 { .bitrate = 120, .hw_value = 24, }, 397 { .bitrate = 180, .hw_value = 36, }, 398 { .bitrate = 240, .hw_value = 48, }, 399 { .bitrate = 360, .hw_value = 72, }, 400 { .bitrate = 480, .hw_value = 96, }, 401 { .bitrate = 540, .hw_value = 108, }, 402}; 403 404/* Set or get info from Firmware */ 405#define MWL8K_CMD_GET 0x0000 406#define MWL8K_CMD_SET 0x0001 407#define MWL8K_CMD_SET_LIST 0x0002 408 409/* Firmware command codes */ 410#define MWL8K_CMD_CODE_DNLD 0x0001 411#define MWL8K_CMD_GET_HW_SPEC 0x0003 412#define MWL8K_CMD_SET_HW_SPEC 0x0004 413#define MWL8K_CMD_MAC_MULTICAST_ADR 0x0010 414#define MWL8K_CMD_GET_STAT 0x0014 415#define MWL8K_CMD_BBP_REG_ACCESS 0x001a 416#define MWL8K_CMD_RADIO_CONTROL 0x001c 417#define MWL8K_CMD_RF_TX_POWER 0x001e 418#define MWL8K_CMD_TX_POWER 0x001f 419#define MWL8K_CMD_RF_ANTENNA 0x0020 420#define MWL8K_CMD_SET_BEACON 0x0100 /* per-vif */ 421#define MWL8K_CMD_SET_PRE_SCAN 0x0107 422#define MWL8K_CMD_SET_POST_SCAN 0x0108 423#define MWL8K_CMD_SET_RF_CHANNEL 0x010a 424#define MWL8K_CMD_SET_AID 0x010d 425#define MWL8K_CMD_SET_RATE 0x0110 426#define MWL8K_CMD_SET_FINALIZE_JOIN 0x0111 427#define MWL8K_CMD_RTS_THRESHOLD 0x0113 428#define MWL8K_CMD_SET_SLOT 0x0114 429#define MWL8K_CMD_SET_EDCA_PARAMS 0x0115 430#define MWL8K_CMD_SET_WMM_MODE 0x0123 431#define MWL8K_CMD_MIMO_CONFIG 0x0125 432#define MWL8K_CMD_USE_FIXED_RATE 0x0126 433#define MWL8K_CMD_ENABLE_SNIFFER 0x0150 434#define MWL8K_CMD_SET_MAC_ADDR 0x0202 /* per-vif */ 435#define MWL8K_CMD_SET_RATEADAPT_MODE 0x0203 436#define MWL8K_CMD_GET_WATCHDOG_BITMAP 0x0205 437#define MWL8K_CMD_DEL_MAC_ADDR 0x0206 /* per-vif */ 438#define MWL8K_CMD_BSS_START 0x1100 /* per-vif */ 439#define MWL8K_CMD_SET_NEW_STN 0x1111 /* per-vif */ 440#define MWL8K_CMD_UPDATE_ENCRYPTION 0x1122 /* per-vif */ 441#define MWL8K_CMD_UPDATE_STADB 0x1123 442#define MWL8K_CMD_BASTREAM 0x1125 443 444#define MWL8K_LEGACY_5G_RATE_OFFSET \ 445 (ARRAY_SIZE(mwl8k_rates_24) - ARRAY_SIZE(mwl8k_rates_50)) 446 447static const char *mwl8k_cmd_name(__le16 cmd, char *buf, int bufsize) 448{ 449 u16 command = le16_to_cpu(cmd); 450 451#define MWL8K_CMDNAME(x) case MWL8K_CMD_##x: do {\ 452 snprintf(buf, bufsize, "%s", #x);\ 453 return buf;\ 454 } while (0) 455 switch (command & ~0x8000) { 456 MWL8K_CMDNAME(CODE_DNLD); 457 MWL8K_CMDNAME(GET_HW_SPEC); 458 MWL8K_CMDNAME(SET_HW_SPEC); 459 MWL8K_CMDNAME(MAC_MULTICAST_ADR); 460 MWL8K_CMDNAME(GET_STAT); 461 MWL8K_CMDNAME(RADIO_CONTROL); 462 MWL8K_CMDNAME(RF_TX_POWER); 463 MWL8K_CMDNAME(TX_POWER); 464 MWL8K_CMDNAME(RF_ANTENNA); 465 MWL8K_CMDNAME(SET_BEACON); 466 MWL8K_CMDNAME(SET_PRE_SCAN); 467 MWL8K_CMDNAME(SET_POST_SCAN); 468 MWL8K_CMDNAME(SET_RF_CHANNEL); 469 MWL8K_CMDNAME(SET_AID); 470 MWL8K_CMDNAME(SET_RATE); 471 MWL8K_CMDNAME(SET_FINALIZE_JOIN); 472 MWL8K_CMDNAME(RTS_THRESHOLD); 473 MWL8K_CMDNAME(SET_SLOT); 474 MWL8K_CMDNAME(SET_EDCA_PARAMS); 475 MWL8K_CMDNAME(SET_WMM_MODE); 476 MWL8K_CMDNAME(MIMO_CONFIG); 477 MWL8K_CMDNAME(USE_FIXED_RATE); 478 MWL8K_CMDNAME(ENABLE_SNIFFER); 479 MWL8K_CMDNAME(SET_MAC_ADDR); 480 MWL8K_CMDNAME(SET_RATEADAPT_MODE); 481 MWL8K_CMDNAME(BSS_START); 482 MWL8K_CMDNAME(SET_NEW_STN); 483 MWL8K_CMDNAME(UPDATE_ENCRYPTION); 484 MWL8K_CMDNAME(UPDATE_STADB); 485 MWL8K_CMDNAME(BASTREAM); 486 MWL8K_CMDNAME(GET_WATCHDOG_BITMAP); 487 default: 488 snprintf(buf, bufsize, "0x%x", cmd); 489 } 490#undef MWL8K_CMDNAME 491 492 return buf; 493} 494 495/* Hardware and firmware reset */ 496static void mwl8k_hw_reset(struct mwl8k_priv *priv) 497{ 498 iowrite32(MWL8K_H2A_INT_RESET, 499 priv->regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 500 iowrite32(MWL8K_H2A_INT_RESET, 501 priv->regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 502 msleep(20); 503} 504 505/* Release fw image */ 506static void mwl8k_release_fw(const struct firmware **fw) 507{ 508 if (*fw == NULL) 509 return; 510 release_firmware(*fw); 511 *fw = NULL; 512} 513 514static void mwl8k_release_firmware(struct mwl8k_priv *priv) 515{ 516 mwl8k_release_fw(&priv->fw_ucode); 517 mwl8k_release_fw(&priv->fw_helper); 518} 519 520/* states for asynchronous f/w loading */ 521static void mwl8k_fw_state_machine(const struct firmware *fw, void *context); 522enum { 523 FW_STATE_INIT = 0, 524 FW_STATE_LOADING_PREF, 525 FW_STATE_LOADING_ALT, 526 FW_STATE_ERROR, 527}; 528 529/* Request fw image */ 530static int mwl8k_request_fw(struct mwl8k_priv *priv, 531 const char *fname, const struct firmware **fw, 532 bool nowait) 533{ 534 /* release current image */ 535 if (*fw != NULL) 536 mwl8k_release_fw(fw); 537 538 if (nowait) 539 return request_firmware_nowait(THIS_MODULE, 1, fname, 540 &priv->pdev->dev, GFP_KERNEL, 541 priv, mwl8k_fw_state_machine); 542 else 543 return request_firmware(fw, fname, &priv->pdev->dev); 544} 545 546static int mwl8k_request_firmware(struct mwl8k_priv *priv, char *fw_image, 547 bool nowait) 548{ 549 struct mwl8k_device_info *di = priv->device_info; 550 int rc; 551 552 if (di->helper_image != NULL) { 553 if (nowait) 554 rc = mwl8k_request_fw(priv, di->helper_image, 555 &priv->fw_helper, true); 556 else 557 rc = mwl8k_request_fw(priv, di->helper_image, 558 &priv->fw_helper, false); 559 if (rc) 560 printk(KERN_ERR "%s: Error requesting helper fw %s\n", 561 pci_name(priv->pdev), di->helper_image); 562 563 if (rc || nowait) 564 return rc; 565 } 566 567 if (nowait) { 568 /* 569 * if we get here, no helper image is needed. Skip the 570 * FW_STATE_INIT state. 571 */ 572 priv->fw_state = FW_STATE_LOADING_PREF; 573 rc = mwl8k_request_fw(priv, fw_image, 574 &priv->fw_ucode, 575 true); 576 } else 577 rc = mwl8k_request_fw(priv, fw_image, 578 &priv->fw_ucode, false); 579 if (rc) { 580 printk(KERN_ERR "%s: Error requesting firmware file %s\n", 581 pci_name(priv->pdev), fw_image); 582 mwl8k_release_fw(&priv->fw_helper); 583 return rc; 584 } 585 586 return 0; 587} 588 589struct mwl8k_cmd_pkt { 590 __le16 code; 591 __le16 length; 592 __u8 seq_num; 593 __u8 macid; 594 __le16 result; 595 char payload[]; 596} __packed; 597 598/* 599 * Firmware loading. 600 */ 601static int 602mwl8k_send_fw_load_cmd(struct mwl8k_priv *priv, void *data, int length) 603{ 604 void __iomem *regs = priv->regs; 605 dma_addr_t dma_addr; 606 int loops; 607 608 dma_addr = pci_map_single(priv->pdev, data, length, PCI_DMA_TODEVICE); 609 if (pci_dma_mapping_error(priv->pdev, dma_addr)) 610 return -ENOMEM; 611 612 iowrite32(dma_addr, regs + MWL8K_HIU_GEN_PTR); 613 iowrite32(0, regs + MWL8K_HIU_INT_CODE); 614 iowrite32(MWL8K_H2A_INT_DOORBELL, 615 regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 616 iowrite32(MWL8K_H2A_INT_DUMMY, 617 regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 618 619 loops = 1000; 620 do { 621 u32 int_code; 622 if (priv->is_8764) { 623 int_code = ioread32(regs + 624 MWL8K_HIU_H2A_INTERRUPT_STATUS); 625 if (int_code == 0) 626 break; 627 } else { 628 int_code = ioread32(regs + MWL8K_HIU_INT_CODE); 629 if (int_code == MWL8K_INT_CODE_CMD_FINISHED) { 630 iowrite32(0, regs + MWL8K_HIU_INT_CODE); 631 break; 632 } 633 } 634 cond_resched(); 635 udelay(1); 636 } while (--loops); 637 638 pci_unmap_single(priv->pdev, dma_addr, length, PCI_DMA_TODEVICE); 639 640 return loops ? 0 : -ETIMEDOUT; 641} 642 643static int mwl8k_load_fw_image(struct mwl8k_priv *priv, 644 const u8 *data, size_t length) 645{ 646 struct mwl8k_cmd_pkt *cmd; 647 int done; 648 int rc = 0; 649 650 cmd = kmalloc(sizeof(*cmd) + 256, GFP_KERNEL); 651 if (cmd == NULL) 652 return -ENOMEM; 653 654 cmd->code = cpu_to_le16(MWL8K_CMD_CODE_DNLD); 655 cmd->seq_num = 0; 656 cmd->macid = 0; 657 cmd->result = 0; 658 659 done = 0; 660 while (length) { 661 int block_size = length > 256 ? 256 : length; 662 663 memcpy(cmd->payload, data + done, block_size); 664 cmd->length = cpu_to_le16(block_size); 665 666 rc = mwl8k_send_fw_load_cmd(priv, cmd, 667 sizeof(*cmd) + block_size); 668 if (rc) 669 break; 670 671 done += block_size; 672 length -= block_size; 673 } 674 675 if (!rc) { 676 cmd->length = 0; 677 rc = mwl8k_send_fw_load_cmd(priv, cmd, sizeof(*cmd)); 678 } 679 680 kfree(cmd); 681 682 return rc; 683} 684 685static int mwl8k_feed_fw_image(struct mwl8k_priv *priv, 686 const u8 *data, size_t length) 687{ 688 unsigned char *buffer; 689 int may_continue, rc = 0; 690 u32 done, prev_block_size; 691 692 buffer = kmalloc(1024, GFP_KERNEL); 693 if (buffer == NULL) 694 return -ENOMEM; 695 696 done = 0; 697 prev_block_size = 0; 698 may_continue = 1000; 699 while (may_continue > 0) { 700 u32 block_size; 701 702 block_size = ioread32(priv->regs + MWL8K_HIU_SCRATCH); 703 if (block_size & 1) { 704 block_size &= ~1; 705 may_continue--; 706 } else { 707 done += prev_block_size; 708 length -= prev_block_size; 709 } 710 711 if (block_size > 1024 || block_size > length) { 712 rc = -EOVERFLOW; 713 break; 714 } 715 716 if (length == 0) { 717 rc = 0; 718 break; 719 } 720 721 if (block_size == 0) { 722 rc = -EPROTO; 723 may_continue--; 724 udelay(1); 725 continue; 726 } 727 728 prev_block_size = block_size; 729 memcpy(buffer, data + done, block_size); 730 731 rc = mwl8k_send_fw_load_cmd(priv, buffer, block_size); 732 if (rc) 733 break; 734 } 735 736 if (!rc && length != 0) 737 rc = -EREMOTEIO; 738 739 kfree(buffer); 740 741 return rc; 742} 743 744static int mwl8k_load_firmware(struct ieee80211_hw *hw) 745{ 746 struct mwl8k_priv *priv = hw->priv; 747 const struct firmware *fw = priv->fw_ucode; 748 int rc; 749 int loops; 750 751 if (!memcmp(fw->data, "\x01\x00\x00\x00", 4) && !priv->is_8764) { 752 const struct firmware *helper = priv->fw_helper; 753 754 if (helper == NULL) { 755 printk(KERN_ERR "%s: helper image needed but none " 756 "given\n", pci_name(priv->pdev)); 757 return -EINVAL; 758 } 759 760 rc = mwl8k_load_fw_image(priv, helper->data, helper->size); 761 if (rc) { 762 printk(KERN_ERR "%s: unable to load firmware " 763 "helper image\n", pci_name(priv->pdev)); 764 return rc; 765 } 766 msleep(20); 767 768 rc = mwl8k_feed_fw_image(priv, fw->data, fw->size); 769 } else { 770 if (priv->is_8764) 771 rc = mwl8k_feed_fw_image(priv, fw->data, fw->size); 772 else 773 rc = mwl8k_load_fw_image(priv, fw->data, fw->size); 774 } 775 776 if (rc) { 777 printk(KERN_ERR "%s: unable to load firmware image\n", 778 pci_name(priv->pdev)); 779 return rc; 780 } 781 782 iowrite32(MWL8K_MODE_STA, priv->regs + MWL8K_HIU_GEN_PTR); 783 784 loops = 500000; 785 do { 786 u32 ready_code; 787 788 ready_code = ioread32(priv->regs + MWL8K_HIU_INT_CODE); 789 if (ready_code == MWL8K_FWAP_READY) { 790 priv->ap_fw = true; 791 break; 792 } else if (ready_code == MWL8K_FWSTA_READY) { 793 priv->ap_fw = false; 794 break; 795 } 796 797 cond_resched(); 798 udelay(1); 799 } while (--loops); 800 801 return loops ? 0 : -ETIMEDOUT; 802} 803 804 805/* DMA header used by firmware and hardware. */ 806struct mwl8k_dma_data { 807 __le16 fwlen; 808 struct ieee80211_hdr wh; 809 char data[]; 810} __packed; 811 812/* Routines to add/remove DMA header from skb. */ 813static inline void mwl8k_remove_dma_header(struct sk_buff *skb, __le16 qos) 814{ 815 struct mwl8k_dma_data *tr; 816 int hdrlen; 817 818 tr = (struct mwl8k_dma_data *)skb->data; 819 hdrlen = ieee80211_hdrlen(tr->wh.frame_control); 820 821 if (hdrlen != sizeof(tr->wh)) { 822 if (ieee80211_is_data_qos(tr->wh.frame_control)) { 823 memmove(tr->data - hdrlen, &tr->wh, hdrlen - 2); 824 *((__le16 *)(tr->data - 2)) = qos; 825 } else { 826 memmove(tr->data - hdrlen, &tr->wh, hdrlen); 827 } 828 } 829 830 if (hdrlen != sizeof(*tr)) 831 skb_pull(skb, sizeof(*tr) - hdrlen); 832} 833 834#define REDUCED_TX_HEADROOM 8 835 836static void 837mwl8k_add_dma_header(struct mwl8k_priv *priv, struct sk_buff *skb, 838 int head_pad, int tail_pad) 839{ 840 struct ieee80211_hdr *wh; 841 int hdrlen; 842 int reqd_hdrlen; 843 struct mwl8k_dma_data *tr; 844 845 /* 846 * Add a firmware DMA header; the firmware requires that we 847 * present a 2-byte payload length followed by a 4-address 848 * header (without QoS field), followed (optionally) by any 849 * WEP/ExtIV header (but only filled in for CCMP). 850 */ 851 wh = (struct ieee80211_hdr *)skb->data; 852 853 hdrlen = ieee80211_hdrlen(wh->frame_control); 854 855 /* 856 * Check if skb_resize is required because of 857 * tx_headroom adjustment. 858 */ 859 if (priv->ap_fw && (hdrlen < (sizeof(struct ieee80211_cts) 860 + REDUCED_TX_HEADROOM))) { 861 if (pskb_expand_head(skb, REDUCED_TX_HEADROOM, 0, GFP_ATOMIC)) { 862 863 wiphy_err(priv->hw->wiphy, 864 "Failed to reallocate TX buffer\n"); 865 return; 866 } 867 skb->truesize += REDUCED_TX_HEADROOM; 868 } 869 870 reqd_hdrlen = sizeof(*tr) + head_pad; 871 872 if (hdrlen != reqd_hdrlen) 873 skb_push(skb, reqd_hdrlen - hdrlen); 874 875 if (ieee80211_is_data_qos(wh->frame_control)) 876 hdrlen -= IEEE80211_QOS_CTL_LEN; 877 878 tr = (struct mwl8k_dma_data *)skb->data; 879 if (wh != &tr->wh) 880 memmove(&tr->wh, wh, hdrlen); 881 if (hdrlen != sizeof(tr->wh)) 882 memset(((void *)&tr->wh) + hdrlen, 0, sizeof(tr->wh) - hdrlen); 883 884 /* 885 * Firmware length is the length of the fully formed "802.11 886 * payload". That is, everything except for the 802.11 header. 887 * This includes all crypto material including the MIC. 888 */ 889 tr->fwlen = cpu_to_le16(skb->len - sizeof(*tr) + tail_pad); 890} 891 892static void mwl8k_encapsulate_tx_frame(struct mwl8k_priv *priv, 893 struct sk_buff *skb) 894{ 895 struct ieee80211_hdr *wh; 896 struct ieee80211_tx_info *tx_info; 897 struct ieee80211_key_conf *key_conf; 898 int data_pad; 899 int head_pad = 0; 900 901 wh = (struct ieee80211_hdr *)skb->data; 902 903 tx_info = IEEE80211_SKB_CB(skb); 904 905 key_conf = NULL; 906 if (ieee80211_is_data(wh->frame_control)) 907 key_conf = tx_info->control.hw_key; 908 909 /* 910 * Make sure the packet header is in the DMA header format (4-address 911 * without QoS), and add head & tail padding when HW crypto is enabled. 912 * 913 * We have the following trailer padding requirements: 914 * - WEP: 4 trailer bytes (ICV) 915 * - TKIP: 12 trailer bytes (8 MIC + 4 ICV) 916 * - CCMP: 8 trailer bytes (MIC) 917 */ 918 data_pad = 0; 919 if (key_conf != NULL) { 920 head_pad = key_conf->iv_len; 921 switch (key_conf->cipher) { 922 case WLAN_CIPHER_SUITE_WEP40: 923 case WLAN_CIPHER_SUITE_WEP104: 924 data_pad = 4; 925 break; 926 case WLAN_CIPHER_SUITE_TKIP: 927 data_pad = 12; 928 break; 929 case WLAN_CIPHER_SUITE_CCMP: 930 data_pad = 8; 931 break; 932 } 933 } 934 mwl8k_add_dma_header(priv, skb, head_pad, data_pad); 935} 936 937/* 938 * Packet reception for 88w8366/88w8764 AP firmware. 939 */ 940struct mwl8k_rxd_ap { 941 __le16 pkt_len; 942 __u8 sq2; 943 __u8 rate; 944 __le32 pkt_phys_addr; 945 __le32 next_rxd_phys_addr; 946 __le16 qos_control; 947 __le16 htsig2; 948 __le32 hw_rssi_info; 949 __le32 hw_noise_floor_info; 950 __u8 noise_floor; 951 __u8 pad0[3]; 952 __u8 rssi; 953 __u8 rx_status; 954 __u8 channel; 955 __u8 rx_ctrl; 956} __packed; 957 958#define MWL8K_AP_RATE_INFO_MCS_FORMAT 0x80 959#define MWL8K_AP_RATE_INFO_40MHZ 0x40 960#define MWL8K_AP_RATE_INFO_RATEID(x) ((x) & 0x3f) 961 962#define MWL8K_AP_RX_CTRL_OWNED_BY_HOST 0x80 963 964/* 8366/8764 AP rx_status bits */ 965#define MWL8K_AP_RXSTAT_DECRYPT_ERR_MASK 0x80 966#define MWL8K_AP_RXSTAT_GENERAL_DECRYPT_ERR 0xFF 967#define MWL8K_AP_RXSTAT_TKIP_DECRYPT_MIC_ERR 0x02 968#define MWL8K_AP_RXSTAT_WEP_DECRYPT_ICV_ERR 0x04 969#define MWL8K_AP_RXSTAT_TKIP_DECRYPT_ICV_ERR 0x08 970 971static void mwl8k_rxd_ap_init(void *_rxd, dma_addr_t next_dma_addr) 972{ 973 struct mwl8k_rxd_ap *rxd = _rxd; 974 975 rxd->next_rxd_phys_addr = cpu_to_le32(next_dma_addr); 976 rxd->rx_ctrl = MWL8K_AP_RX_CTRL_OWNED_BY_HOST; 977} 978 979static void mwl8k_rxd_ap_refill(void *_rxd, dma_addr_t addr, int len) 980{ 981 struct mwl8k_rxd_ap *rxd = _rxd; 982 983 rxd->pkt_len = cpu_to_le16(len); 984 rxd->pkt_phys_addr = cpu_to_le32(addr); 985 wmb(); 986 rxd->rx_ctrl = 0; 987} 988 989static int 990mwl8k_rxd_ap_process(void *_rxd, struct ieee80211_rx_status *status, 991 __le16 *qos, s8 *noise) 992{ 993 struct mwl8k_rxd_ap *rxd = _rxd; 994 995 if (!(rxd->rx_ctrl & MWL8K_AP_RX_CTRL_OWNED_BY_HOST)) 996 return -1; 997 rmb(); 998 999 memset(status, 0, sizeof(*status)); 1000 1001 status->signal = -rxd->rssi; 1002 *noise = -rxd->noise_floor; 1003 1004 if (rxd->rate & MWL8K_AP_RATE_INFO_MCS_FORMAT) { 1005 status->encoding = RX_ENC_HT; 1006 if (rxd->rate & MWL8K_AP_RATE_INFO_40MHZ) 1007 status->bw = RATE_INFO_BW_40; 1008 status->rate_idx = MWL8K_AP_RATE_INFO_RATEID(rxd->rate); 1009 } else { 1010 int i; 1011 1012 for (i = 0; i < ARRAY_SIZE(mwl8k_rates_24); i++) { 1013 if (mwl8k_rates_24[i].hw_value == rxd->rate) { 1014 status->rate_idx = i; 1015 break; 1016 } 1017 } 1018 } 1019 1020 if (rxd->channel > 14) { 1021 status->band = NL80211_BAND_5GHZ; 1022 if (!(status->encoding == RX_ENC_HT) && 1023 status->rate_idx >= MWL8K_LEGACY_5G_RATE_OFFSET) 1024 status->rate_idx -= MWL8K_LEGACY_5G_RATE_OFFSET; 1025 } else { 1026 status->band = NL80211_BAND_2GHZ; 1027 } 1028 status->freq = ieee80211_channel_to_frequency(rxd->channel, 1029 status->band); 1030 1031 *qos = rxd->qos_control; 1032 1033 if ((rxd->rx_status != MWL8K_AP_RXSTAT_GENERAL_DECRYPT_ERR) && 1034 (rxd->rx_status & MWL8K_AP_RXSTAT_DECRYPT_ERR_MASK) && 1035 (rxd->rx_status & MWL8K_AP_RXSTAT_TKIP_DECRYPT_MIC_ERR)) 1036 status->flag |= RX_FLAG_MMIC_ERROR; 1037 1038 return le16_to_cpu(rxd->pkt_len); 1039} 1040 1041static struct rxd_ops rxd_ap_ops = { 1042 .rxd_size = sizeof(struct mwl8k_rxd_ap), 1043 .rxd_init = mwl8k_rxd_ap_init, 1044 .rxd_refill = mwl8k_rxd_ap_refill, 1045 .rxd_process = mwl8k_rxd_ap_process, 1046}; 1047 1048/* 1049 * Packet reception for STA firmware. 1050 */ 1051struct mwl8k_rxd_sta { 1052 __le16 pkt_len; 1053 __u8 link_quality; 1054 __u8 noise_level; 1055 __le32 pkt_phys_addr; 1056 __le32 next_rxd_phys_addr; 1057 __le16 qos_control; 1058 __le16 rate_info; 1059 __le32 pad0[4]; 1060 __u8 rssi; 1061 __u8 channel; 1062 __le16 pad1; 1063 __u8 rx_ctrl; 1064 __u8 rx_status; 1065 __u8 pad2[2]; 1066} __packed; 1067 1068#define MWL8K_STA_RATE_INFO_SHORTPRE 0x8000 1069#define MWL8K_STA_RATE_INFO_ANTSELECT(x) (((x) >> 11) & 0x3) 1070#define MWL8K_STA_RATE_INFO_RATEID(x) (((x) >> 3) & 0x3f) 1071#define MWL8K_STA_RATE_INFO_40MHZ 0x0004 1072#define MWL8K_STA_RATE_INFO_SHORTGI 0x0002 1073#define MWL8K_STA_RATE_INFO_MCS_FORMAT 0x0001 1074 1075#define MWL8K_STA_RX_CTRL_OWNED_BY_HOST 0x02 1076#define MWL8K_STA_RX_CTRL_DECRYPT_ERROR 0x04 1077/* ICV=0 or MIC=1 */ 1078#define MWL8K_STA_RX_CTRL_DEC_ERR_TYPE 0x08 1079/* Key is uploaded only in failure case */ 1080#define MWL8K_STA_RX_CTRL_KEY_INDEX 0x30 1081 1082static void mwl8k_rxd_sta_init(void *_rxd, dma_addr_t next_dma_addr) 1083{ 1084 struct mwl8k_rxd_sta *rxd = _rxd; 1085 1086 rxd->next_rxd_phys_addr = cpu_to_le32(next_dma_addr); 1087 rxd->rx_ctrl = MWL8K_STA_RX_CTRL_OWNED_BY_HOST; 1088} 1089 1090static void mwl8k_rxd_sta_refill(void *_rxd, dma_addr_t addr, int len) 1091{ 1092 struct mwl8k_rxd_sta *rxd = _rxd; 1093 1094 rxd->pkt_len = cpu_to_le16(len); 1095 rxd->pkt_phys_addr = cpu_to_le32(addr); 1096 wmb(); 1097 rxd->rx_ctrl = 0; 1098} 1099 1100static int 1101mwl8k_rxd_sta_process(void *_rxd, struct ieee80211_rx_status *status, 1102 __le16 *qos, s8 *noise) 1103{ 1104 struct mwl8k_rxd_sta *rxd = _rxd; 1105 u16 rate_info; 1106 1107 if (!(rxd->rx_ctrl & MWL8K_STA_RX_CTRL_OWNED_BY_HOST)) 1108 return -1; 1109 rmb(); 1110 1111 rate_info = le16_to_cpu(rxd->rate_info); 1112 1113 memset(status, 0, sizeof(*status)); 1114 1115 status->signal = -rxd->rssi; 1116 *noise = -rxd->noise_level; 1117 status->antenna = MWL8K_STA_RATE_INFO_ANTSELECT(rate_info); 1118 status->rate_idx = MWL8K_STA_RATE_INFO_RATEID(rate_info); 1119 1120 if (rate_info & MWL8K_STA_RATE_INFO_SHORTPRE) 1121 status->enc_flags |= RX_ENC_FLAG_SHORTPRE; 1122 if (rate_info & MWL8K_STA_RATE_INFO_40MHZ) 1123 status->bw = RATE_INFO_BW_40; 1124 if (rate_info & MWL8K_STA_RATE_INFO_SHORTGI) 1125 status->enc_flags |= RX_ENC_FLAG_SHORT_GI; 1126 if (rate_info & MWL8K_STA_RATE_INFO_MCS_FORMAT) 1127 status->encoding = RX_ENC_HT; 1128 1129 if (rxd->channel > 14) { 1130 status->band = NL80211_BAND_5GHZ; 1131 if (!(status->encoding == RX_ENC_HT) && 1132 status->rate_idx >= MWL8K_LEGACY_5G_RATE_OFFSET) 1133 status->rate_idx -= MWL8K_LEGACY_5G_RATE_OFFSET; 1134 } else { 1135 status->band = NL80211_BAND_2GHZ; 1136 } 1137 status->freq = ieee80211_channel_to_frequency(rxd->channel, 1138 status->band); 1139 1140 *qos = rxd->qos_control; 1141 if ((rxd->rx_ctrl & MWL8K_STA_RX_CTRL_DECRYPT_ERROR) && 1142 (rxd->rx_ctrl & MWL8K_STA_RX_CTRL_DEC_ERR_TYPE)) 1143 status->flag |= RX_FLAG_MMIC_ERROR; 1144 1145 return le16_to_cpu(rxd->pkt_len); 1146} 1147 1148static struct rxd_ops rxd_sta_ops = { 1149 .rxd_size = sizeof(struct mwl8k_rxd_sta), 1150 .rxd_init = mwl8k_rxd_sta_init, 1151 .rxd_refill = mwl8k_rxd_sta_refill, 1152 .rxd_process = mwl8k_rxd_sta_process, 1153}; 1154 1155 1156#define MWL8K_RX_DESCS 256 1157#define MWL8K_RX_MAXSZ 3800 1158 1159static int mwl8k_rxq_init(struct ieee80211_hw *hw, int index) 1160{ 1161 struct mwl8k_priv *priv = hw->priv; 1162 struct mwl8k_rx_queue *rxq = priv->rxq + index; 1163 int size; 1164 int i; 1165 1166 rxq->rxd_count = 0; 1167 rxq->head = 0; 1168 rxq->tail = 0; 1169 1170 size = MWL8K_RX_DESCS * priv->rxd_ops->rxd_size; 1171 1172 rxq->rxd = pci_zalloc_consistent(priv->pdev, size, &rxq->rxd_dma); 1173 if (rxq->rxd == NULL) { 1174 wiphy_err(hw->wiphy, "failed to alloc RX descriptors\n"); 1175 return -ENOMEM; 1176 } 1177 1178 rxq->buf = kcalloc(MWL8K_RX_DESCS, sizeof(*rxq->buf), GFP_KERNEL); 1179 if (rxq->buf == NULL) { 1180 pci_free_consistent(priv->pdev, size, rxq->rxd, rxq->rxd_dma); 1181 return -ENOMEM; 1182 } 1183 1184 for (i = 0; i < MWL8K_RX_DESCS; i++) { 1185 int desc_size; 1186 void *rxd; 1187 int nexti; 1188 dma_addr_t next_dma_addr; 1189 1190 desc_size = priv->rxd_ops->rxd_size; 1191 rxd = rxq->rxd + (i * priv->rxd_ops->rxd_size); 1192 1193 nexti = i + 1; 1194 if (nexti == MWL8K_RX_DESCS) 1195 nexti = 0; 1196 next_dma_addr = rxq->rxd_dma + (nexti * desc_size); 1197 1198 priv->rxd_ops->rxd_init(rxd, next_dma_addr); 1199 } 1200 1201 return 0; 1202} 1203 1204static int rxq_refill(struct ieee80211_hw *hw, int index, int limit) 1205{ 1206 struct mwl8k_priv *priv = hw->priv; 1207 struct mwl8k_rx_queue *rxq = priv->rxq + index; 1208 int refilled; 1209 1210 refilled = 0; 1211 while (rxq->rxd_count < MWL8K_RX_DESCS && limit--) { 1212 struct sk_buff *skb; 1213 dma_addr_t addr; 1214 int rx; 1215 void *rxd; 1216 1217 skb = dev_alloc_skb(MWL8K_RX_MAXSZ); 1218 if (skb == NULL) 1219 break; 1220 1221 addr = pci_map_single(priv->pdev, skb->data, 1222 MWL8K_RX_MAXSZ, DMA_FROM_DEVICE); 1223 1224 rxq->rxd_count++; 1225 rx = rxq->tail++; 1226 if (rxq->tail == MWL8K_RX_DESCS) 1227 rxq->tail = 0; 1228 rxq->buf[rx].skb = skb; 1229 dma_unmap_addr_set(&rxq->buf[rx], dma, addr); 1230 1231 rxd = rxq->rxd + (rx * priv->rxd_ops->rxd_size); 1232 priv->rxd_ops->rxd_refill(rxd, addr, MWL8K_RX_MAXSZ); 1233 1234 refilled++; 1235 } 1236 1237 return refilled; 1238} 1239 1240/* Must be called only when the card's reception is completely halted */ 1241static void mwl8k_rxq_deinit(struct ieee80211_hw *hw, int index) 1242{ 1243 struct mwl8k_priv *priv = hw->priv; 1244 struct mwl8k_rx_queue *rxq = priv->rxq + index; 1245 int i; 1246 1247 if (rxq->rxd == NULL) 1248 return; 1249 1250 for (i = 0; i < MWL8K_RX_DESCS; i++) { 1251 if (rxq->buf[i].skb != NULL) { 1252 pci_unmap_single(priv->pdev, 1253 dma_unmap_addr(&rxq->buf[i], dma), 1254 MWL8K_RX_MAXSZ, PCI_DMA_FROMDEVICE); 1255 dma_unmap_addr_set(&rxq->buf[i], dma, 0); 1256 1257 kfree_skb(rxq->buf[i].skb); 1258 rxq->buf[i].skb = NULL; 1259 } 1260 } 1261 1262 kfree(rxq->buf); 1263 rxq->buf = NULL; 1264 1265 pci_free_consistent(priv->pdev, 1266 MWL8K_RX_DESCS * priv->rxd_ops->rxd_size, 1267 rxq->rxd, rxq->rxd_dma); 1268 rxq->rxd = NULL; 1269} 1270 1271 1272/* 1273 * Scan a list of BSSIDs to process for finalize join. 1274 * Allows for extension to process multiple BSSIDs. 1275 */ 1276static inline int 1277mwl8k_capture_bssid(struct mwl8k_priv *priv, struct ieee80211_hdr *wh) 1278{ 1279 return priv->capture_beacon && 1280 ieee80211_is_beacon(wh->frame_control) && 1281 ether_addr_equal_64bits(wh->addr3, priv->capture_bssid); 1282} 1283 1284static inline void mwl8k_save_beacon(struct ieee80211_hw *hw, 1285 struct sk_buff *skb) 1286{ 1287 struct mwl8k_priv *priv = hw->priv; 1288 1289 priv->capture_beacon = false; 1290 eth_zero_addr(priv->capture_bssid); 1291 1292 /* 1293 * Use GFP_ATOMIC as rxq_process is called from 1294 * the primary interrupt handler, memory allocation call 1295 * must not sleep. 1296 */ 1297 priv->beacon_skb = skb_copy(skb, GFP_ATOMIC); 1298 if (priv->beacon_skb != NULL) 1299 ieee80211_queue_work(hw, &priv->finalize_join_worker); 1300} 1301 1302static inline struct mwl8k_vif *mwl8k_find_vif_bss(struct list_head *vif_list, 1303 u8 *bssid) 1304{ 1305 struct mwl8k_vif *mwl8k_vif; 1306 1307 list_for_each_entry(mwl8k_vif, 1308 vif_list, list) { 1309 if (memcmp(bssid, mwl8k_vif->bssid, 1310 ETH_ALEN) == 0) 1311 return mwl8k_vif; 1312 } 1313 1314 return NULL; 1315} 1316 1317static int rxq_process(struct ieee80211_hw *hw, int index, int limit) 1318{ 1319 struct mwl8k_priv *priv = hw->priv; 1320 struct mwl8k_vif *mwl8k_vif = NULL; 1321 struct mwl8k_rx_queue *rxq = priv->rxq + index; 1322 int processed; 1323 1324 processed = 0; 1325 while (rxq->rxd_count && limit--) { 1326 struct sk_buff *skb; 1327 void *rxd; 1328 int pkt_len; 1329 struct ieee80211_rx_status status; 1330 struct ieee80211_hdr *wh; 1331 __le16 qos; 1332 1333 skb = rxq->buf[rxq->head].skb; 1334 if (skb == NULL) 1335 break; 1336 1337 rxd = rxq->rxd + (rxq->head * priv->rxd_ops->rxd_size); 1338 1339 pkt_len = priv->rxd_ops->rxd_process(rxd, &status, &qos, 1340 &priv->noise); 1341 if (pkt_len < 0) 1342 break; 1343 1344 rxq->buf[rxq->head].skb = NULL; 1345 1346 pci_unmap_single(priv->pdev, 1347 dma_unmap_addr(&rxq->buf[rxq->head], dma), 1348 MWL8K_RX_MAXSZ, PCI_DMA_FROMDEVICE); 1349 dma_unmap_addr_set(&rxq->buf[rxq->head], dma, 0); 1350 1351 rxq->head++; 1352 if (rxq->head == MWL8K_RX_DESCS) 1353 rxq->head = 0; 1354 1355 rxq->rxd_count--; 1356 1357 wh = &((struct mwl8k_dma_data *)skb->data)->wh; 1358 1359 /* 1360 * Check for a pending join operation. Save a 1361 * copy of the beacon and schedule a tasklet to 1362 * send a FINALIZE_JOIN command to the firmware. 1363 */ 1364 if (mwl8k_capture_bssid(priv, (void *)skb->data)) 1365 mwl8k_save_beacon(hw, skb); 1366 1367 if (ieee80211_has_protected(wh->frame_control)) { 1368 1369 /* Check if hw crypto has been enabled for 1370 * this bss. If yes, set the status flags 1371 * accordingly 1372 */ 1373 mwl8k_vif = mwl8k_find_vif_bss(&priv->vif_list, 1374 wh->addr1); 1375 1376 if (mwl8k_vif != NULL && 1377 mwl8k_vif->is_hw_crypto_enabled) { 1378 /* 1379 * When MMIC ERROR is encountered 1380 * by the firmware, payload is 1381 * dropped and only 32 bytes of 1382 * mwl8k Firmware header is sent 1383 * to the host. 1384 * 1385 * We need to add four bytes of 1386 * key information. In it 1387 * MAC80211 expects keyidx set to 1388 * 0 for triggering Counter 1389 * Measure of MMIC failure. 1390 */ 1391 if (status.flag & RX_FLAG_MMIC_ERROR) { 1392 struct mwl8k_dma_data *tr; 1393 tr = (struct mwl8k_dma_data *)skb->data; 1394 memset((void *)&(tr->data), 0, 4); 1395 pkt_len += 4; 1396 } 1397 1398 if (!ieee80211_is_auth(wh->frame_control)) 1399 status.flag |= RX_FLAG_IV_STRIPPED | 1400 RX_FLAG_DECRYPTED | 1401 RX_FLAG_MMIC_STRIPPED; 1402 } 1403 } 1404 1405 skb_put(skb, pkt_len); 1406 mwl8k_remove_dma_header(skb, qos); 1407 memcpy(IEEE80211_SKB_RXCB(skb), &status, sizeof(status)); 1408 ieee80211_rx_irqsafe(hw, skb); 1409 1410 processed++; 1411 } 1412 1413 return processed; 1414} 1415 1416 1417/* 1418 * Packet transmission. 1419 */ 1420 1421#define MWL8K_TXD_STATUS_OK 0x00000001 1422#define MWL8K_TXD_STATUS_OK_RETRY 0x00000002 1423#define MWL8K_TXD_STATUS_OK_MORE_RETRY 0x00000004 1424#define MWL8K_TXD_STATUS_MULTICAST_TX 0x00000008 1425#define MWL8K_TXD_STATUS_FW_OWNED 0x80000000 1426 1427#define MWL8K_QOS_QLEN_UNSPEC 0xff00 1428#define MWL8K_QOS_ACK_POLICY_MASK 0x0060 1429#define MWL8K_QOS_ACK_POLICY_NORMAL 0x0000 1430#define MWL8K_QOS_ACK_POLICY_BLOCKACK 0x0060 1431#define MWL8K_QOS_EOSP 0x0010 1432 1433struct mwl8k_tx_desc { 1434 __le32 status; 1435 __u8 data_rate; 1436 __u8 tx_priority; 1437 __le16 qos_control; 1438 __le32 pkt_phys_addr; 1439 __le16 pkt_len; 1440 __u8 dest_MAC_addr[ETH_ALEN]; 1441 __le32 next_txd_phys_addr; 1442 __le32 timestamp; 1443 __le16 rate_info; 1444 __u8 peer_id; 1445 __u8 tx_frag_cnt; 1446} __packed; 1447 1448#define MWL8K_TX_DESCS 128 1449 1450static int mwl8k_txq_init(struct ieee80211_hw *hw, int index) 1451{ 1452 struct mwl8k_priv *priv = hw->priv; 1453 struct mwl8k_tx_queue *txq = priv->txq + index; 1454 int size; 1455 int i; 1456 1457 txq->len = 0; 1458 txq->head = 0; 1459 txq->tail = 0; 1460 1461 size = MWL8K_TX_DESCS * sizeof(struct mwl8k_tx_desc); 1462 1463 txq->txd = pci_zalloc_consistent(priv->pdev, size, &txq->txd_dma); 1464 if (txq->txd == NULL) { 1465 wiphy_err(hw->wiphy, "failed to alloc TX descriptors\n"); 1466 return -ENOMEM; 1467 } 1468 1469 txq->skb = kcalloc(MWL8K_TX_DESCS, sizeof(*txq->skb), GFP_KERNEL); 1470 if (txq->skb == NULL) { 1471 pci_free_consistent(priv->pdev, size, txq->txd, txq->txd_dma); 1472 txq->txd = NULL; 1473 return -ENOMEM; 1474 } 1475 1476 for (i = 0; i < MWL8K_TX_DESCS; i++) { 1477 struct mwl8k_tx_desc *tx_desc; 1478 int nexti; 1479 1480 tx_desc = txq->txd + i; 1481 nexti = (i + 1) % MWL8K_TX_DESCS; 1482 1483 tx_desc->status = 0; 1484 tx_desc->next_txd_phys_addr = 1485 cpu_to_le32(txq->txd_dma + nexti * sizeof(*tx_desc)); 1486 } 1487 1488 return 0; 1489} 1490 1491static inline void mwl8k_tx_start(struct mwl8k_priv *priv) 1492{ 1493 iowrite32(MWL8K_H2A_INT_PPA_READY, 1494 priv->regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 1495 iowrite32(MWL8K_H2A_INT_DUMMY, 1496 priv->regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 1497 ioread32(priv->regs + MWL8K_HIU_INT_CODE); 1498} 1499 1500static void mwl8k_dump_tx_rings(struct ieee80211_hw *hw) 1501{ 1502 struct mwl8k_priv *priv = hw->priv; 1503 int i; 1504 1505 for (i = 0; i < mwl8k_tx_queues(priv); i++) { 1506 struct mwl8k_tx_queue *txq = priv->txq + i; 1507 int fw_owned = 0; 1508 int drv_owned = 0; 1509 int unused = 0; 1510 int desc; 1511 1512 for (desc = 0; desc < MWL8K_TX_DESCS; desc++) { 1513 struct mwl8k_tx_desc *tx_desc = txq->txd + desc; 1514 u32 status; 1515 1516 status = le32_to_cpu(tx_desc->status); 1517 if (status & MWL8K_TXD_STATUS_FW_OWNED) 1518 fw_owned++; 1519 else 1520 drv_owned++; 1521 1522 if (tx_desc->pkt_len == 0) 1523 unused++; 1524 } 1525 1526 wiphy_err(hw->wiphy, 1527 "txq[%d] len=%d head=%d tail=%d " 1528 "fw_owned=%d drv_owned=%d unused=%d\n", 1529 i, 1530 txq->len, txq->head, txq->tail, 1531 fw_owned, drv_owned, unused); 1532 } 1533} 1534 1535/* 1536 * Must be called with priv->fw_mutex held and tx queues stopped. 1537 */ 1538#define MWL8K_TX_WAIT_TIMEOUT_MS 5000 1539 1540static int mwl8k_tx_wait_empty(struct ieee80211_hw *hw) 1541{ 1542 struct mwl8k_priv *priv = hw->priv; 1543 DECLARE_COMPLETION_ONSTACK(tx_wait); 1544 int retry; 1545 int rc; 1546 1547 might_sleep(); 1548 1549 /* Since fw restart is in progress, allow only the firmware 1550 * commands from the restart code and block the other 1551 * commands since they are going to fail in any case since 1552 * the firmware has crashed 1553 */ 1554 if (priv->hw_restart_in_progress) { 1555 if (priv->hw_restart_owner == current) 1556 return 0; 1557 else 1558 return -EBUSY; 1559 } 1560 1561 if (atomic_read(&priv->watchdog_event_pending)) 1562 return 0; 1563 1564 /* 1565 * The TX queues are stopped at this point, so this test 1566 * doesn't need to take ->tx_lock. 1567 */ 1568 if (!priv->pending_tx_pkts) 1569 return 0; 1570 1571 retry = 1; 1572 rc = 0; 1573 1574 spin_lock_bh(&priv->tx_lock); 1575 priv->tx_wait = &tx_wait; 1576 while (!rc) { 1577 int oldcount; 1578 unsigned long timeout; 1579 1580 oldcount = priv->pending_tx_pkts; 1581 1582 spin_unlock_bh(&priv->tx_lock); 1583 timeout = wait_for_completion_timeout(&tx_wait, 1584 msecs_to_jiffies(MWL8K_TX_WAIT_TIMEOUT_MS)); 1585 1586 if (atomic_read(&priv->watchdog_event_pending)) { 1587 spin_lock_bh(&priv->tx_lock); 1588 priv->tx_wait = NULL; 1589 spin_unlock_bh(&priv->tx_lock); 1590 return 0; 1591 } 1592 1593 spin_lock_bh(&priv->tx_lock); 1594 1595 if (timeout || !priv->pending_tx_pkts) { 1596 WARN_ON(priv->pending_tx_pkts); 1597 if (retry) 1598 wiphy_notice(hw->wiphy, "tx rings drained\n"); 1599 break; 1600 } 1601 1602 if (retry) { 1603 mwl8k_tx_start(priv); 1604 retry = 0; 1605 continue; 1606 } 1607 1608 if (priv->pending_tx_pkts < oldcount) { 1609 wiphy_notice(hw->wiphy, 1610 "waiting for tx rings to drain (%d -> %d pkts)\n", 1611 oldcount, priv->pending_tx_pkts); 1612 retry = 1; 1613 continue; 1614 } 1615 1616 priv->tx_wait = NULL; 1617 1618 wiphy_err(hw->wiphy, "tx rings stuck for %d ms\n", 1619 MWL8K_TX_WAIT_TIMEOUT_MS); 1620 mwl8k_dump_tx_rings(hw); 1621 priv->hw_restart_in_progress = true; 1622 ieee80211_queue_work(hw, &priv->fw_reload); 1623 1624 rc = -ETIMEDOUT; 1625 } 1626 priv->tx_wait = NULL; 1627 spin_unlock_bh(&priv->tx_lock); 1628 1629 return rc; 1630} 1631 1632#define MWL8K_TXD_SUCCESS(status) \ 1633 ((status) & (MWL8K_TXD_STATUS_OK | \ 1634 MWL8K_TXD_STATUS_OK_RETRY | \ 1635 MWL8K_TXD_STATUS_OK_MORE_RETRY)) 1636 1637static int mwl8k_tid_queue_mapping(u8 tid) 1638{ 1639 BUG_ON(tid > 7); 1640 1641 switch (tid) { 1642 case 0: 1643 case 3: 1644 return IEEE80211_AC_BE; 1645 case 1: 1646 case 2: 1647 return IEEE80211_AC_BK; 1648 case 4: 1649 case 5: 1650 return IEEE80211_AC_VI; 1651 case 6: 1652 case 7: 1653 return IEEE80211_AC_VO; 1654 default: 1655 return -1; 1656 } 1657} 1658 1659/* The firmware will fill in the rate information 1660 * for each packet that gets queued in the hardware 1661 * and these macros will interpret that info. 1662 */ 1663 1664#define RI_FORMAT(a) (a & 0x0001) 1665#define RI_RATE_ID_MCS(a) ((a & 0x01f8) >> 3) 1666 1667static int 1668mwl8k_txq_reclaim(struct ieee80211_hw *hw, int index, int limit, int force) 1669{ 1670 struct mwl8k_priv *priv = hw->priv; 1671 struct mwl8k_tx_queue *txq = priv->txq + index; 1672 int processed; 1673 1674 processed = 0; 1675 while (txq->len > 0 && limit--) { 1676 int tx; 1677 struct mwl8k_tx_desc *tx_desc; 1678 unsigned long addr; 1679 int size; 1680 struct sk_buff *skb; 1681 struct ieee80211_tx_info *info; 1682 u32 status; 1683 struct ieee80211_sta *sta; 1684 struct mwl8k_sta *sta_info = NULL; 1685 u16 rate_info; 1686 struct ieee80211_hdr *wh; 1687 1688 tx = txq->head; 1689 tx_desc = txq->txd + tx; 1690 1691 status = le32_to_cpu(tx_desc->status); 1692 1693 if (status & MWL8K_TXD_STATUS_FW_OWNED) { 1694 if (!force) 1695 break; 1696 tx_desc->status &= 1697 ~cpu_to_le32(MWL8K_TXD_STATUS_FW_OWNED); 1698 } 1699 1700 txq->head = (tx + 1) % MWL8K_TX_DESCS; 1701 BUG_ON(txq->len == 0); 1702 txq->len--; 1703 priv->pending_tx_pkts--; 1704 1705 addr = le32_to_cpu(tx_desc->pkt_phys_addr); 1706 size = le16_to_cpu(tx_desc->pkt_len); 1707 skb = txq->skb[tx]; 1708 txq->skb[tx] = NULL; 1709 1710 BUG_ON(skb == NULL); 1711 pci_unmap_single(priv->pdev, addr, size, PCI_DMA_TODEVICE); 1712 1713 mwl8k_remove_dma_header(skb, tx_desc->qos_control); 1714 1715 wh = (struct ieee80211_hdr *) skb->data; 1716 1717 /* Mark descriptor as unused */ 1718 tx_desc->pkt_phys_addr = 0; 1719 tx_desc->pkt_len = 0; 1720 1721 info = IEEE80211_SKB_CB(skb); 1722 if (ieee80211_is_data(wh->frame_control)) { 1723 rcu_read_lock(); 1724 sta = ieee80211_find_sta_by_ifaddr(hw, wh->addr1, 1725 wh->addr2); 1726 if (sta) { 1727 sta_info = MWL8K_STA(sta); 1728 BUG_ON(sta_info == NULL); 1729 rate_info = le16_to_cpu(tx_desc->rate_info); 1730 /* If rate is < 6.5 Mpbs for an ht station 1731 * do not form an ampdu. If the station is a 1732 * legacy station (format = 0), do not form an 1733 * ampdu 1734 */ 1735 if (RI_RATE_ID_MCS(rate_info) < 1 || 1736 RI_FORMAT(rate_info) == 0) { 1737 sta_info->is_ampdu_allowed = false; 1738 } else { 1739 sta_info->is_ampdu_allowed = true; 1740 } 1741 } 1742 rcu_read_unlock(); 1743 } 1744 1745 ieee80211_tx_info_clear_status(info); 1746 1747 /* Rate control is happening in the firmware. 1748 * Ensure no tx rate is being reported. 1749 */ 1750 info->status.rates[0].idx = -1; 1751 info->status.rates[0].count = 1; 1752 1753 if (MWL8K_TXD_SUCCESS(status)) 1754 info->flags |= IEEE80211_TX_STAT_ACK; 1755 1756 ieee80211_tx_status_irqsafe(hw, skb); 1757 1758 processed++; 1759 } 1760 1761 return processed; 1762} 1763 1764/* must be called only when the card's transmit is completely halted */ 1765static void mwl8k_txq_deinit(struct ieee80211_hw *hw, int index) 1766{ 1767 struct mwl8k_priv *priv = hw->priv; 1768 struct mwl8k_tx_queue *txq = priv->txq + index; 1769 1770 if (txq->txd == NULL) 1771 return; 1772 1773 mwl8k_txq_reclaim(hw, index, INT_MAX, 1); 1774 1775 kfree(txq->skb); 1776 txq->skb = NULL; 1777 1778 pci_free_consistent(priv->pdev, 1779 MWL8K_TX_DESCS * sizeof(struct mwl8k_tx_desc), 1780 txq->txd, txq->txd_dma); 1781 txq->txd = NULL; 1782} 1783 1784/* caller must hold priv->stream_lock when calling the stream functions */ 1785static struct mwl8k_ampdu_stream * 1786mwl8k_add_stream(struct ieee80211_hw *hw, struct ieee80211_sta *sta, u8 tid) 1787{ 1788 struct mwl8k_ampdu_stream *stream; 1789 struct mwl8k_priv *priv = hw->priv; 1790 int i; 1791 1792 for (i = 0; i < MWL8K_NUM_AMPDU_STREAMS; i++) { 1793 stream = &priv->ampdu[i]; 1794 if (stream->state == AMPDU_NO_STREAM) { 1795 stream->sta = sta; 1796 stream->state = AMPDU_STREAM_NEW; 1797 stream->tid = tid; 1798 stream->idx = i; 1799 wiphy_debug(hw->wiphy, "Added a new stream for %pM %d", 1800 sta->addr, tid); 1801 return stream; 1802 } 1803 } 1804 return NULL; 1805} 1806 1807static int 1808mwl8k_start_stream(struct ieee80211_hw *hw, struct mwl8k_ampdu_stream *stream) 1809{ 1810 int ret; 1811 1812 /* if the stream has already been started, don't start it again */ 1813 if (stream->state != AMPDU_STREAM_NEW) 1814 return 0; 1815 ret = ieee80211_start_tx_ba_session(stream->sta, stream->tid, 0); 1816 if (ret) 1817 wiphy_debug(hw->wiphy, "Failed to start stream for %pM %d: " 1818 "%d\n", stream->sta->addr, stream->tid, ret); 1819 else 1820 wiphy_debug(hw->wiphy, "Started stream for %pM %d\n", 1821 stream->sta->addr, stream->tid); 1822 return ret; 1823} 1824 1825static void 1826mwl8k_remove_stream(struct ieee80211_hw *hw, struct mwl8k_ampdu_stream *stream) 1827{ 1828 wiphy_debug(hw->wiphy, "Remove stream for %pM %d\n", stream->sta->addr, 1829 stream->tid); 1830 memset(stream, 0, sizeof(*stream)); 1831} 1832 1833static struct mwl8k_ampdu_stream * 1834mwl8k_lookup_stream(struct ieee80211_hw *hw, u8 *addr, u8 tid) 1835{ 1836 struct mwl8k_priv *priv = hw->priv; 1837 int i; 1838 1839 for (i = 0; i < MWL8K_NUM_AMPDU_STREAMS; i++) { 1840 struct mwl8k_ampdu_stream *stream; 1841 stream = &priv->ampdu[i]; 1842 if (stream->state == AMPDU_NO_STREAM) 1843 continue; 1844 if (!memcmp(stream->sta->addr, addr, ETH_ALEN) && 1845 stream->tid == tid) 1846 return stream; 1847 } 1848 return NULL; 1849} 1850 1851#define MWL8K_AMPDU_PACKET_THRESHOLD 64 1852static inline bool mwl8k_ampdu_allowed(struct ieee80211_sta *sta, u8 tid) 1853{ 1854 struct mwl8k_sta *sta_info = MWL8K_STA(sta); 1855 struct tx_traffic_info *tx_stats; 1856 1857 BUG_ON(tid >= MWL8K_MAX_TID); 1858 tx_stats = &sta_info->tx_stats[tid]; 1859 1860 return sta_info->is_ampdu_allowed && 1861 tx_stats->pkts > MWL8K_AMPDU_PACKET_THRESHOLD; 1862} 1863 1864static inline void mwl8k_tx_count_packet(struct ieee80211_sta *sta, u8 tid) 1865{ 1866 struct mwl8k_sta *sta_info = MWL8K_STA(sta); 1867 struct tx_traffic_info *tx_stats; 1868 1869 BUG_ON(tid >= MWL8K_MAX_TID); 1870 tx_stats = &sta_info->tx_stats[tid]; 1871 1872 if (tx_stats->start_time == 0) 1873 tx_stats->start_time = jiffies; 1874 1875 /* reset the packet count after each second elapses. If the number of 1876 * packets ever exceeds the ampdu_min_traffic threshold, we will allow 1877 * an ampdu stream to be started. 1878 */ 1879 if (jiffies - tx_stats->start_time > HZ) { 1880 tx_stats->pkts = 0; 1881 tx_stats->start_time = 0; 1882 } else 1883 tx_stats->pkts++; 1884} 1885 1886/* The hardware ampdu queues start from 5. 1887 * txpriorities for ampdu queues are 1888 * 5 6 7 0 1 2 3 4 ie., queue 5 is highest 1889 * and queue 3 is lowest (queue 4 is reserved) 1890 */ 1891#define BA_QUEUE 5 1892 1893static void 1894mwl8k_txq_xmit(struct ieee80211_hw *hw, 1895 int index, 1896 struct ieee80211_sta *sta, 1897 struct sk_buff *skb) 1898{ 1899 struct mwl8k_priv *priv = hw->priv; 1900 struct ieee80211_tx_info *tx_info; 1901 struct mwl8k_vif *mwl8k_vif; 1902 struct ieee80211_hdr *wh; 1903 struct mwl8k_tx_queue *txq; 1904 struct mwl8k_tx_desc *tx; 1905 dma_addr_t dma; 1906 u32 txstatus; 1907 u8 txdatarate; 1908 u16 qos; 1909 int txpriority; 1910 u8 tid = 0; 1911 struct mwl8k_ampdu_stream *stream = NULL; 1912 bool start_ba_session = false; 1913 bool mgmtframe = false; 1914 struct ieee80211_mgmt *mgmt = (struct ieee80211_mgmt *)skb->data; 1915 bool eapol_frame = false; 1916 1917 wh = (struct ieee80211_hdr *)skb->data; 1918 if (ieee80211_is_data_qos(wh->frame_control)) 1919 qos = le16_to_cpu(*((__le16 *)ieee80211_get_qos_ctl(wh))); 1920 else 1921 qos = 0; 1922 1923 if (skb->protocol == cpu_to_be16(ETH_P_PAE)) 1924 eapol_frame = true; 1925 1926 if (ieee80211_is_mgmt(wh->frame_control)) 1927 mgmtframe = true; 1928 1929 if (priv->ap_fw) 1930 mwl8k_encapsulate_tx_frame(priv, skb); 1931 else 1932 mwl8k_add_dma_header(priv, skb, 0, 0); 1933 1934 wh = &((struct mwl8k_dma_data *)skb->data)->wh; 1935 1936 tx_info = IEEE80211_SKB_CB(skb); 1937 mwl8k_vif = MWL8K_VIF(tx_info->control.vif); 1938 1939 if (tx_info->flags & IEEE80211_TX_CTL_ASSIGN_SEQ) { 1940 wh->seq_ctrl &= cpu_to_le16(IEEE80211_SCTL_FRAG); 1941 wh->seq_ctrl |= cpu_to_le16(mwl8k_vif->seqno); 1942 mwl8k_vif->seqno += 0x10; 1943 } 1944 1945 /* Setup firmware control bit fields for each frame type. */ 1946 txstatus = 0; 1947 txdatarate = 0; 1948 if (ieee80211_is_mgmt(wh->frame_control) || 1949 ieee80211_is_ctl(wh->frame_control)) { 1950 txdatarate = 0; 1951 qos |= MWL8K_QOS_QLEN_UNSPEC | MWL8K_QOS_EOSP; 1952 } else if (ieee80211_is_data(wh->frame_control)) { 1953 txdatarate = 1; 1954 if (is_multicast_ether_addr(wh->addr1)) 1955 txstatus |= MWL8K_TXD_STATUS_MULTICAST_TX; 1956 1957 qos &= ~MWL8K_QOS_ACK_POLICY_MASK; 1958 if (tx_info->flags & IEEE80211_TX_CTL_AMPDU) 1959 qos |= MWL8K_QOS_ACK_POLICY_BLOCKACK; 1960 else 1961 qos |= MWL8K_QOS_ACK_POLICY_NORMAL; 1962 } 1963 1964 /* Queue ADDBA request in the respective data queue. While setting up 1965 * the ampdu stream, mac80211 queues further packets for that 1966 * particular ra/tid pair. However, packets piled up in the hardware 1967 * for that ra/tid pair will still go out. ADDBA request and the 1968 * related data packets going out from different queues asynchronously 1969 * will cause a shift in the receiver window which might result in 1970 * ampdu packets getting dropped at the receiver after the stream has 1971 * been setup. 1972 */ 1973 if (unlikely(ieee80211_is_action(wh->frame_control) && 1974 mgmt->u.action.category == WLAN_CATEGORY_BACK && 1975 mgmt->u.action.u.addba_req.action_code == WLAN_ACTION_ADDBA_REQ && 1976 priv->ap_fw)) { 1977 u16 capab = le16_to_cpu(mgmt->u.action.u.addba_req.capab); 1978 tid = (capab & IEEE80211_ADDBA_PARAM_TID_MASK) >> 2; 1979 index = mwl8k_tid_queue_mapping(tid); 1980 } 1981 1982 txpriority = index; 1983 1984 if (priv->ap_fw && sta && sta->ht_cap.ht_supported && !eapol_frame && 1985 ieee80211_is_data_qos(wh->frame_control)) { 1986 tid = qos & 0xf; 1987 mwl8k_tx_count_packet(sta, tid); 1988 spin_lock(&priv->stream_lock); 1989 stream = mwl8k_lookup_stream(hw, sta->addr, tid); 1990 if (stream != NULL) { 1991 if (stream->state == AMPDU_STREAM_ACTIVE) { 1992 WARN_ON(!(qos & MWL8K_QOS_ACK_POLICY_BLOCKACK)); 1993 txpriority = (BA_QUEUE + stream->idx) % 1994 TOTAL_HW_TX_QUEUES; 1995 if (stream->idx <= 1) 1996 index = stream->idx + 1997 MWL8K_TX_WMM_QUEUES; 1998 1999 } else if (stream->state == AMPDU_STREAM_NEW) { 2000 /* We get here if the driver sends us packets 2001 * after we've initiated a stream, but before 2002 * our ampdu_action routine has been called 2003 * with IEEE80211_AMPDU_TX_START to get the SSN 2004 * for the ADDBA request. So this packet can 2005 * go out with no risk of sequence number 2006 * mismatch. No special handling is required. 2007 */ 2008 } else { 2009 /* Drop packets that would go out after the 2010 * ADDBA request was sent but before the ADDBA 2011 * response is received. If we don't do this, 2012 * the recipient would probably receive it 2013 * after the ADDBA request with SSN 0. This 2014 * will cause the recipient's BA receive window 2015 * to shift, which would cause the subsequent 2016 * packets in the BA stream to be discarded. 2017 * mac80211 queues our packets for us in this 2018 * case, so this is really just a safety check. 2019 */ 2020 wiphy_warn(hw->wiphy, 2021 "Cannot send packet while ADDBA " 2022 "dialog is underway.\n"); 2023 spin_unlock(&priv->stream_lock); 2024 dev_kfree_skb(skb); 2025 return; 2026 } 2027 } else { 2028 /* Defer calling mwl8k_start_stream so that the current 2029 * skb can go out before the ADDBA request. This 2030 * prevents sequence number mismatch at the recepient 2031 * as described above. 2032 */ 2033 if (mwl8k_ampdu_allowed(sta, tid)) { 2034 stream = mwl8k_add_stream(hw, sta, tid); 2035 if (stream != NULL) 2036 start_ba_session = true; 2037 } 2038 } 2039 spin_unlock(&priv->stream_lock); 2040 } else { 2041 qos &= ~MWL8K_QOS_ACK_POLICY_MASK; 2042 qos |= MWL8K_QOS_ACK_POLICY_NORMAL; 2043 } 2044 2045 dma = pci_map_single(priv->pdev, skb->data, 2046 skb->len, PCI_DMA_TODEVICE); 2047 2048 if (pci_dma_mapping_error(priv->pdev, dma)) { 2049 wiphy_debug(hw->wiphy, 2050 "failed to dma map skb, dropping TX frame.\n"); 2051 if (start_ba_session) { 2052 spin_lock(&priv->stream_lock); 2053 mwl8k_remove_stream(hw, stream); 2054 spin_unlock(&priv->stream_lock); 2055 } 2056 dev_kfree_skb(skb); 2057 return; 2058 } 2059 2060 spin_lock_bh(&priv->tx_lock); 2061 2062 txq = priv->txq + index; 2063 2064 /* Mgmt frames that go out frequently are probe 2065 * responses. Other mgmt frames got out relatively 2066 * infrequently. Hence reserve 2 buffers so that 2067 * other mgmt frames do not get dropped due to an 2068 * already queued probe response in one of the 2069 * reserved buffers. 2070 */ 2071 2072 if (txq->len >= MWL8K_TX_DESCS - 2) { 2073 if (!mgmtframe || txq->len == MWL8K_TX_DESCS) { 2074 if (start_ba_session) { 2075 spin_lock(&priv->stream_lock); 2076 mwl8k_remove_stream(hw, stream); 2077 spin_unlock(&priv->stream_lock); 2078 } 2079 mwl8k_tx_start(priv); 2080 spin_unlock_bh(&priv->tx_lock); 2081 pci_unmap_single(priv->pdev, dma, skb->len, 2082 PCI_DMA_TODEVICE); 2083 dev_kfree_skb(skb); 2084 return; 2085 } 2086 } 2087 2088 BUG_ON(txq->skb[txq->tail] != NULL); 2089 txq->skb[txq->tail] = skb; 2090 2091 tx = txq->txd + txq->tail; 2092 tx->data_rate = txdatarate; 2093 tx->tx_priority = txpriority; 2094 tx->qos_control = cpu_to_le16(qos); 2095 tx->pkt_phys_addr = cpu_to_le32(dma); 2096 tx->pkt_len = cpu_to_le16(skb->len); 2097 tx->rate_info = 0; 2098 if (!priv->ap_fw && sta != NULL) 2099 tx->peer_id = MWL8K_STA(sta)->peer_id; 2100 else 2101 tx->peer_id = 0; 2102 2103 if (priv->ap_fw && ieee80211_is_data(wh->frame_control) && !eapol_frame) 2104 tx->timestamp = cpu_to_le32(ioread32(priv->regs + 2105 MWL8K_HW_TIMER_REGISTER)); 2106 else 2107 tx->timestamp = 0; 2108 2109 wmb(); 2110 tx->status = cpu_to_le32(MWL8K_TXD_STATUS_FW_OWNED | txstatus); 2111 2112 txq->len++; 2113 priv->pending_tx_pkts++; 2114 2115 txq->tail++; 2116 if (txq->tail == MWL8K_TX_DESCS) 2117 txq->tail = 0; 2118 2119 mwl8k_tx_start(priv); 2120 2121 spin_unlock_bh(&priv->tx_lock); 2122 2123 /* Initiate the ampdu session here */ 2124 if (start_ba_session) { 2125 spin_lock(&priv->stream_lock); 2126 if (mwl8k_start_stream(hw, stream)) 2127 mwl8k_remove_stream(hw, stream); 2128 spin_unlock(&priv->stream_lock); 2129 } 2130} 2131 2132 2133/* 2134 * Firmware access. 2135 * 2136 * We have the following requirements for issuing firmware commands: 2137 * - Some commands require that the packet transmit path is idle when 2138 * the command is issued. (For simplicity, we'll just quiesce the 2139 * transmit path for every command.) 2140 * - There are certain sequences of commands that need to be issued to 2141 * the hardware sequentially, with no other intervening commands. 2142 * 2143 * This leads to an implementation of a "firmware lock" as a mutex that 2144 * can be taken recursively, and which is taken by both the low-level 2145 * command submission function (mwl8k_post_cmd) as well as any users of 2146 * that function that require issuing of an atomic sequence of commands, 2147 * and quiesces the transmit path whenever it's taken. 2148 */ 2149static int mwl8k_fw_lock(struct ieee80211_hw *hw) 2150{ 2151 struct mwl8k_priv *priv = hw->priv; 2152 2153 if (priv->fw_mutex_owner != current) { 2154 int rc; 2155 2156 mutex_lock(&priv->fw_mutex); 2157 ieee80211_stop_queues(hw); 2158 2159 rc = mwl8k_tx_wait_empty(hw); 2160 if (rc) { 2161 if (!priv->hw_restart_in_progress) 2162 ieee80211_wake_queues(hw); 2163 2164 mutex_unlock(&priv->fw_mutex); 2165 2166 return rc; 2167 } 2168 2169 priv->fw_mutex_owner = current; 2170 } 2171 2172 priv->fw_mutex_depth++; 2173 2174 return 0; 2175} 2176 2177static void mwl8k_fw_unlock(struct ieee80211_hw *hw) 2178{ 2179 struct mwl8k_priv *priv = hw->priv; 2180 2181 if (!--priv->fw_mutex_depth) { 2182 if (!priv->hw_restart_in_progress) 2183 ieee80211_wake_queues(hw); 2184 2185 priv->fw_mutex_owner = NULL; 2186 mutex_unlock(&priv->fw_mutex); 2187 } 2188} 2189 2190static void mwl8k_enable_bsses(struct ieee80211_hw *hw, bool enable, 2191 u32 bitmap); 2192 2193/* 2194 * Command processing. 2195 */ 2196 2197/* Timeout firmware commands after 10s */ 2198#define MWL8K_CMD_TIMEOUT_MS 10000 2199 2200static int mwl8k_post_cmd(struct ieee80211_hw *hw, struct mwl8k_cmd_pkt *cmd) 2201{ 2202 DECLARE_COMPLETION_ONSTACK(cmd_wait); 2203 struct mwl8k_priv *priv = hw->priv; 2204 void __iomem *regs = priv->regs; 2205 dma_addr_t dma_addr; 2206 unsigned int dma_size; 2207 int rc; 2208 unsigned long timeout = 0; 2209 u8 buf[32]; 2210 u32 bitmap = 0; 2211 2212 wiphy_dbg(hw->wiphy, "Posting %s [%d]\n", 2213 mwl8k_cmd_name(cmd->code, buf, sizeof(buf)), cmd->macid); 2214 2215 /* Before posting firmware commands that could change the hardware 2216 * characteristics, make sure that all BSSes are stopped temporary. 2217 * Enable these stopped BSSes after completion of the commands 2218 */ 2219 2220 rc = mwl8k_fw_lock(hw); 2221 if (rc) 2222 return rc; 2223 2224 if (priv->ap_fw && priv->running_bsses) { 2225 switch (le16_to_cpu(cmd->code)) { 2226 case MWL8K_CMD_SET_RF_CHANNEL: 2227 case MWL8K_CMD_RADIO_CONTROL: 2228 case MWL8K_CMD_RF_TX_POWER: 2229 case MWL8K_CMD_TX_POWER: 2230 case MWL8K_CMD_RF_ANTENNA: 2231 case MWL8K_CMD_RTS_THRESHOLD: 2232 case MWL8K_CMD_MIMO_CONFIG: 2233 bitmap = priv->running_bsses; 2234 mwl8k_enable_bsses(hw, false, bitmap); 2235 break; 2236 } 2237 } 2238 2239 cmd->result = (__force __le16) 0xffff; 2240 dma_size = le16_to_cpu(cmd->length); 2241 dma_addr = pci_map_single(priv->pdev, cmd, dma_size, 2242 PCI_DMA_BIDIRECTIONAL); 2243 if (pci_dma_mapping_error(priv->pdev, dma_addr)) { 2244 rc = -ENOMEM; 2245 goto exit; 2246 } 2247 2248 priv->hostcmd_wait = &cmd_wait; 2249 iowrite32(dma_addr, regs + MWL8K_HIU_GEN_PTR); 2250 iowrite32(MWL8K_H2A_INT_DOORBELL, 2251 regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 2252 iowrite32(MWL8K_H2A_INT_DUMMY, 2253 regs + MWL8K_HIU_H2A_INTERRUPT_EVENTS); 2254 2255 timeout = wait_for_completion_timeout(&cmd_wait, 2256 msecs_to_jiffies(MWL8K_CMD_TIMEOUT_MS)); 2257 2258 priv->hostcmd_wait = NULL; 2259 2260 2261 pci_unmap_single(priv->pdev, dma_addr, dma_size, 2262 PCI_DMA_BIDIRECTIONAL); 2263 2264 if (!timeout) { 2265 wiphy_err(hw->wiphy, "Command %s timeout after %u ms\n", 2266 mwl8k_cmd_name(cmd->code, buf, sizeof(buf)), 2267 MWL8K_CMD_TIMEOUT_MS); 2268 rc = -ETIMEDOUT; 2269 } else { 2270 int ms; 2271 2272 ms = MWL8K_CMD_TIMEOUT_MS - jiffies_to_msecs(timeout); 2273 2274 rc = cmd->result ? -EINVAL : 0; 2275 if (rc) 2276 wiphy_err(hw->wiphy, "Command %s error 0x%x\n", 2277 mwl8k_cmd_name(cmd->code, buf, sizeof(buf)), 2278 le16_to_cpu(cmd->result)); 2279 else if (ms > 2000) 2280 wiphy_notice(hw->wiphy, "Command %s took %d ms\n", 2281 mwl8k_cmd_name(cmd->code, 2282 buf, sizeof(buf)), 2283 ms); 2284 } 2285 2286exit: 2287 if (bitmap) 2288 mwl8k_enable_bsses(hw, true, bitmap); 2289 2290 mwl8k_fw_unlock(hw); 2291 2292 return rc; 2293} 2294 2295static int mwl8k_post_pervif_cmd(struct ieee80211_hw *hw, 2296 struct ieee80211_vif *vif, 2297 struct mwl8k_cmd_pkt *cmd) 2298{ 2299 if (vif != NULL) 2300 cmd->macid = MWL8K_VIF(vif)->macid; 2301 return mwl8k_post_cmd(hw, cmd); 2302} 2303 2304/* 2305 * Setup code shared between STA and AP firmware images. 2306 */ 2307static void mwl8k_setup_2ghz_band(struct ieee80211_hw *hw) 2308{ 2309 struct mwl8k_priv *priv = hw->priv; 2310 2311 BUILD_BUG_ON(sizeof(priv->channels_24) != sizeof(mwl8k_channels_24)); 2312 memcpy(priv->channels_24, mwl8k_channels_24, sizeof(mwl8k_channels_24)); 2313 2314 BUILD_BUG_ON(sizeof(priv->rates_24) != sizeof(mwl8k_rates_24)); 2315 memcpy(priv->rates_24, mwl8k_rates_24, sizeof(mwl8k_rates_24)); 2316 2317 priv->band_24.band = NL80211_BAND_2GHZ; 2318 priv->band_24.channels = priv->channels_24; 2319 priv->band_24.n_channels = ARRAY_SIZE(mwl8k_channels_24); 2320 priv->band_24.bitrates = priv->rates_24; 2321 priv->band_24.n_bitrates = ARRAY_SIZE(mwl8k_rates_24); 2322 2323 hw->wiphy->bands[NL80211_BAND_2GHZ] = &priv->band_24; 2324} 2325 2326static void mwl8k_setup_5ghz_band(struct ieee80211_hw *hw) 2327{ 2328 struct mwl8k_priv *priv = hw->priv; 2329 2330 BUILD_BUG_ON(sizeof(priv->channels_50) != sizeof(mwl8k_channels_50)); 2331 memcpy(priv->channels_50, mwl8k_channels_50, sizeof(mwl8k_channels_50)); 2332 2333 BUILD_BUG_ON(sizeof(priv->rates_50) != sizeof(mwl8k_rates_50)); 2334 memcpy(priv->rates_50, mwl8k_rates_50, sizeof(mwl8k_rates_50)); 2335 2336 priv->band_50.band = NL80211_BAND_5GHZ; 2337 priv->band_50.channels = priv->channels_50; 2338 priv->band_50.n_channels = ARRAY_SIZE(mwl8k_channels_50); 2339 priv->band_50.bitrates = priv->rates_50; 2340 priv->band_50.n_bitrates = ARRAY_SIZE(mwl8k_rates_50); 2341 2342 hw->wiphy->bands[NL80211_BAND_5GHZ] = &priv->band_50; 2343} 2344 2345/* 2346 * CMD_GET_HW_SPEC (STA version). 2347 */ 2348struct mwl8k_cmd_get_hw_spec_sta { 2349 struct mwl8k_cmd_pkt header; 2350 __u8 hw_rev; 2351 __u8 host_interface; 2352 __le16 num_mcaddrs; 2353 __u8 perm_addr[ETH_ALEN]; 2354 __le16 region_code; 2355 __le32 fw_rev; 2356 __le32 ps_cookie; 2357 __le32 caps; 2358 __u8 mcs_bitmap[16]; 2359 __le32 rx_queue_ptr; 2360 __le32 num_tx_queues; 2361 __le32 tx_queue_ptrs[MWL8K_TX_WMM_QUEUES]; 2362 __le32 caps2; 2363 __le32 num_tx_desc_per_queue; 2364 __le32 total_rxd; 2365} __packed; 2366 2367#define MWL8K_CAP_MAX_AMSDU 0x20000000 2368#define MWL8K_CAP_GREENFIELD 0x08000000 2369#define MWL8K_CAP_AMPDU 0x04000000 2370#define MWL8K_CAP_RX_STBC 0x01000000 2371#define MWL8K_CAP_TX_STBC 0x00800000 2372#define MWL8K_CAP_SHORTGI_40MHZ 0x00400000 2373#define MWL8K_CAP_SHORTGI_20MHZ 0x00200000 2374#define MWL8K_CAP_RX_ANTENNA_MASK 0x000e0000 2375#define MWL8K_CAP_TX_ANTENNA_MASK 0x0001c000 2376#define MWL8K_CAP_DELAY_BA 0x00003000 2377#define MWL8K_CAP_MIMO 0x00000200 2378#define MWL8K_CAP_40MHZ 0x00000100 2379#define MWL8K_CAP_BAND_MASK 0x00000007 2380#define MWL8K_CAP_5GHZ 0x00000004 2381#define MWL8K_CAP_2GHZ4 0x00000001 2382 2383static void 2384mwl8k_set_ht_caps(struct ieee80211_hw *hw, 2385 struct ieee80211_supported_band *band, u32 cap) 2386{ 2387 int rx_streams; 2388 int tx_streams; 2389 2390 band->ht_cap.ht_supported = 1; 2391 2392 if (cap & MWL8K_CAP_MAX_AMSDU) 2393 band->ht_cap.cap |= IEEE80211_HT_CAP_MAX_AMSDU; 2394 if (cap & MWL8K_CAP_GREENFIELD) 2395 band->ht_cap.cap |= IEEE80211_HT_CAP_GRN_FLD; 2396 if (cap & MWL8K_CAP_AMPDU) { 2397 ieee80211_hw_set(hw, AMPDU_AGGREGATION); 2398 band->ht_cap.ampdu_factor = IEEE80211_HT_MAX_AMPDU_64K; 2399 band->ht_cap.ampdu_density = IEEE80211_HT_MPDU_DENSITY_NONE; 2400 } 2401 if (cap & MWL8K_CAP_RX_STBC) 2402 band->ht_cap.cap |= IEEE80211_HT_CAP_RX_STBC; 2403 if (cap & MWL8K_CAP_TX_STBC) 2404 band->ht_cap.cap |= IEEE80211_HT_CAP_TX_STBC; 2405 if (cap & MWL8K_CAP_SHORTGI_40MHZ) 2406 band->ht_cap.cap |= IEEE80211_HT_CAP_SGI_40; 2407 if (cap & MWL8K_CAP_SHORTGI_20MHZ) 2408 band->ht_cap.cap |= IEEE80211_HT_CAP_SGI_20; 2409 if (cap & MWL8K_CAP_DELAY_BA) 2410 band->ht_cap.cap |= IEEE80211_HT_CAP_DELAY_BA; 2411 if (cap & MWL8K_CAP_40MHZ) 2412 band->ht_cap.cap |= IEEE80211_HT_CAP_SUP_WIDTH_20_40; 2413 2414 rx_streams = hweight32(cap & MWL8K_CAP_RX_ANTENNA_MASK); 2415 tx_streams = hweight32(cap & MWL8K_CAP_TX_ANTENNA_MASK); 2416 2417 band->ht_cap.mcs.rx_mask[0] = 0xff; 2418 if (rx_streams >= 2) 2419 band->ht_cap.mcs.rx_mask[1] = 0xff; 2420 if (rx_streams >= 3) 2421 band->ht_cap.mcs.rx_mask[2] = 0xff; 2422 band->ht_cap.mcs.rx_mask[4] = 0x01; 2423 band->ht_cap.mcs.tx_params = IEEE80211_HT_MCS_TX_DEFINED; 2424 2425 if (rx_streams != tx_streams) { 2426 band->ht_cap.mcs.tx_params |= IEEE80211_HT_MCS_TX_RX_DIFF; 2427 band->ht_cap.mcs.tx_params |= (tx_streams - 1) << 2428 IEEE80211_HT_MCS_TX_MAX_STREAMS_SHIFT; 2429 } 2430} 2431 2432static void 2433mwl8k_set_caps(struct ieee80211_hw *hw, u32 caps) 2434{ 2435 struct mwl8k_priv *priv = hw->priv; 2436 2437 if (priv->caps) 2438 return; 2439 2440 if ((caps & MWL8K_CAP_2GHZ4) || !(caps & MWL8K_CAP_BAND_MASK)) { 2441 mwl8k_setup_2ghz_band(hw); 2442 if (caps & MWL8K_CAP_MIMO) 2443 mwl8k_set_ht_caps(hw, &priv->band_24, caps); 2444 } 2445 2446 if (caps & MWL8K_CAP_5GHZ) { 2447 mwl8k_setup_5ghz_band(hw); 2448 if (caps & MWL8K_CAP_MIMO) 2449 mwl8k_set_ht_caps(hw, &priv->band_50, caps); 2450 } 2451 2452 priv->caps = caps; 2453} 2454 2455static int mwl8k_cmd_get_hw_spec_sta(struct ieee80211_hw *hw) 2456{ 2457 struct mwl8k_priv *priv = hw->priv; 2458 struct mwl8k_cmd_get_hw_spec_sta *cmd; 2459 int rc; 2460 int i; 2461 2462 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2463 if (cmd == NULL) 2464 return -ENOMEM; 2465 2466 cmd->header.code = cpu_to_le16(MWL8K_CMD_GET_HW_SPEC); 2467 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2468 2469 memset(cmd->perm_addr, 0xff, sizeof(cmd->perm_addr)); 2470 cmd->ps_cookie = cpu_to_le32(priv->cookie_dma); 2471 cmd->rx_queue_ptr = cpu_to_le32(priv->rxq[0].rxd_dma); 2472 cmd->num_tx_queues = cpu_to_le32(mwl8k_tx_queues(priv)); 2473 for (i = 0; i < mwl8k_tx_queues(priv); i++) 2474 cmd->tx_queue_ptrs[i] = cpu_to_le32(priv->txq[i].txd_dma); 2475 cmd->num_tx_desc_per_queue = cpu_to_le32(MWL8K_TX_DESCS); 2476 cmd->total_rxd = cpu_to_le32(MWL8K_RX_DESCS); 2477 2478 rc = mwl8k_post_cmd(hw, &cmd->header); 2479 2480 if (!rc) { 2481 SET_IEEE80211_PERM_ADDR(hw, cmd->perm_addr); 2482 priv->num_mcaddrs = le16_to_cpu(cmd->num_mcaddrs); 2483 priv->fw_rev = le32_to_cpu(cmd->fw_rev); 2484 priv->hw_rev = cmd->hw_rev; 2485 mwl8k_set_caps(hw, le32_to_cpu(cmd->caps)); 2486 priv->ap_macids_supported = 0x00000000; 2487 priv->sta_macids_supported = 0x00000001; 2488 } 2489 2490 kfree(cmd); 2491 return rc; 2492} 2493 2494/* 2495 * CMD_GET_HW_SPEC (AP version). 2496 */ 2497struct mwl8k_cmd_get_hw_spec_ap { 2498 struct mwl8k_cmd_pkt header; 2499 __u8 hw_rev; 2500 __u8 host_interface; 2501 __le16 num_wcb; 2502 __le16 num_mcaddrs; 2503 __u8 perm_addr[ETH_ALEN]; 2504 __le16 region_code; 2505 __le16 num_antenna; 2506 __le32 fw_rev; 2507 __le32 wcbbase0; 2508 __le32 rxwrptr; 2509 __le32 rxrdptr; 2510 __le32 ps_cookie; 2511 __le32 wcbbase1; 2512 __le32 wcbbase2; 2513 __le32 wcbbase3; 2514 __le32 fw_api_version; 2515 __le32 caps; 2516 __le32 num_of_ampdu_queues; 2517 __le32 wcbbase_ampdu[MWL8K_MAX_AMPDU_QUEUES]; 2518} __packed; 2519 2520static int mwl8k_cmd_get_hw_spec_ap(struct ieee80211_hw *hw) 2521{ 2522 struct mwl8k_priv *priv = hw->priv; 2523 struct mwl8k_cmd_get_hw_spec_ap *cmd; 2524 int rc, i; 2525 u32 api_version; 2526 2527 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2528 if (cmd == NULL) 2529 return -ENOMEM; 2530 2531 cmd->header.code = cpu_to_le16(MWL8K_CMD_GET_HW_SPEC); 2532 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2533 2534 memset(cmd->perm_addr, 0xff, sizeof(cmd->perm_addr)); 2535 cmd->ps_cookie = cpu_to_le32(priv->cookie_dma); 2536 2537 rc = mwl8k_post_cmd(hw, &cmd->header); 2538 2539 if (!rc) { 2540 int off; 2541 2542 api_version = le32_to_cpu(cmd->fw_api_version); 2543 if (priv->device_info->fw_api_ap != api_version) { 2544 printk(KERN_ERR "%s: Unsupported fw API version for %s." 2545 " Expected %d got %d.\n", MWL8K_NAME, 2546 priv->device_info->part_name, 2547 priv->device_info->fw_api_ap, 2548 api_version); 2549 rc = -EINVAL; 2550 goto done; 2551 } 2552 SET_IEEE80211_PERM_ADDR(hw, cmd->perm_addr); 2553 priv->num_mcaddrs = le16_to_cpu(cmd->num_mcaddrs); 2554 priv->fw_rev = le32_to_cpu(cmd->fw_rev); 2555 priv->hw_rev = cmd->hw_rev; 2556 mwl8k_set_caps(hw, le32_to_cpu(cmd->caps)); 2557 priv->ap_macids_supported = 0x000000ff; 2558 priv->sta_macids_supported = 0x00000100; 2559 priv->num_ampdu_queues = le32_to_cpu(cmd->num_of_ampdu_queues); 2560 if (priv->num_ampdu_queues > MWL8K_MAX_AMPDU_QUEUES) { 2561 wiphy_warn(hw->wiphy, "fw reported %d ampdu queues" 2562 " but we only support %d.\n", 2563 priv->num_ampdu_queues, 2564 MWL8K_MAX_AMPDU_QUEUES); 2565 priv->num_ampdu_queues = MWL8K_MAX_AMPDU_QUEUES; 2566 } 2567 off = le32_to_cpu(cmd->rxwrptr) & 0xffff; 2568 iowrite32(priv->rxq[0].rxd_dma, priv->sram + off); 2569 2570 off = le32_to_cpu(cmd->rxrdptr) & 0xffff; 2571 iowrite32(priv->rxq[0].rxd_dma, priv->sram + off); 2572 2573 priv->txq_offset[0] = le32_to_cpu(cmd->wcbbase0) & 0xffff; 2574 priv->txq_offset[1] = le32_to_cpu(cmd->wcbbase1) & 0xffff; 2575 priv->txq_offset[2] = le32_to_cpu(cmd->wcbbase2) & 0xffff; 2576 priv->txq_offset[3] = le32_to_cpu(cmd->wcbbase3) & 0xffff; 2577 2578 for (i = 0; i < priv->num_ampdu_queues; i++) 2579 priv->txq_offset[i + MWL8K_TX_WMM_QUEUES] = 2580 le32_to_cpu(cmd->wcbbase_ampdu[i]) & 0xffff; 2581 } 2582 2583done: 2584 kfree(cmd); 2585 return rc; 2586} 2587 2588/* 2589 * CMD_SET_HW_SPEC. 2590 */ 2591struct mwl8k_cmd_set_hw_spec { 2592 struct mwl8k_cmd_pkt header; 2593 __u8 hw_rev; 2594 __u8 host_interface; 2595 __le16 num_mcaddrs; 2596 __u8 perm_addr[ETH_ALEN]; 2597 __le16 region_code; 2598 __le32 fw_rev; 2599 __le32 ps_cookie; 2600 __le32 caps; 2601 __le32 rx_queue_ptr; 2602 __le32 num_tx_queues; 2603 __le32 tx_queue_ptrs[MWL8K_MAX_TX_QUEUES]; 2604 __le32 flags; 2605 __le32 num_tx_desc_per_queue; 2606 __le32 total_rxd; 2607} __packed; 2608 2609/* If enabled, MWL8K_SET_HW_SPEC_FLAG_ENABLE_LIFE_TIME_EXPIRY will cause 2610 * packets to expire 500 ms after the timestamp in the tx descriptor. That is, 2611 * the packets that are queued for more than 500ms, will be dropped in the 2612 * hardware. This helps minimizing the issues caused due to head-of-line 2613 * blocking where a slow client can hog the bandwidth and affect traffic to a 2614 * faster client. 2615 */ 2616#define MWL8K_SET_HW_SPEC_FLAG_ENABLE_LIFE_TIME_EXPIRY 0x00000400 2617#define MWL8K_SET_HW_SPEC_FLAG_GENERATE_CCMP_HDR 0x00000200 2618#define MWL8K_SET_HW_SPEC_FLAG_HOST_DECR_MGMT 0x00000080 2619#define MWL8K_SET_HW_SPEC_FLAG_HOSTFORM_PROBERESP 0x00000020 2620#define MWL8K_SET_HW_SPEC_FLAG_HOSTFORM_BEACON 0x00000010 2621 2622static int mwl8k_cmd_set_hw_spec(struct ieee80211_hw *hw) 2623{ 2624 struct mwl8k_priv *priv = hw->priv; 2625 struct mwl8k_cmd_set_hw_spec *cmd; 2626 int rc; 2627 int i; 2628 2629 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2630 if (cmd == NULL) 2631 return -ENOMEM; 2632 2633 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_HW_SPEC); 2634 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2635 2636 cmd->ps_cookie = cpu_to_le32(priv->cookie_dma); 2637 cmd->rx_queue_ptr = cpu_to_le32(priv->rxq[0].rxd_dma); 2638 cmd->num_tx_queues = cpu_to_le32(mwl8k_tx_queues(priv)); 2639 2640 /* 2641 * Mac80211 stack has Q0 as highest priority and Q3 as lowest in 2642 * that order. Firmware has Q3 as highest priority and Q0 as lowest 2643 * in that order. Map Q3 of mac80211 to Q0 of firmware so that the 2644 * priority is interpreted the right way in firmware. 2645 */ 2646 for (i = 0; i < mwl8k_tx_queues(priv); i++) { 2647 int j = mwl8k_tx_queues(priv) - 1 - i; 2648 cmd->tx_queue_ptrs[i] = cpu_to_le32(priv->txq[j].txd_dma); 2649 } 2650 2651 cmd->flags = cpu_to_le32(MWL8K_SET_HW_SPEC_FLAG_HOST_DECR_MGMT | 2652 MWL8K_SET_HW_SPEC_FLAG_HOSTFORM_PROBERESP | 2653 MWL8K_SET_HW_SPEC_FLAG_HOSTFORM_BEACON | 2654 MWL8K_SET_HW_SPEC_FLAG_ENABLE_LIFE_TIME_EXPIRY | 2655 MWL8K_SET_HW_SPEC_FLAG_GENERATE_CCMP_HDR); 2656 cmd->num_tx_desc_per_queue = cpu_to_le32(MWL8K_TX_DESCS); 2657 cmd->total_rxd = cpu_to_le32(MWL8K_RX_DESCS); 2658 2659 rc = mwl8k_post_cmd(hw, &cmd->header); 2660 kfree(cmd); 2661 2662 return rc; 2663} 2664 2665/* 2666 * CMD_MAC_MULTICAST_ADR. 2667 */ 2668struct mwl8k_cmd_mac_multicast_adr { 2669 struct mwl8k_cmd_pkt header; 2670 __le16 action; 2671 __le16 numaddr; 2672 __u8 addr[][ETH_ALEN]; 2673}; 2674 2675#define MWL8K_ENABLE_RX_DIRECTED 0x0001 2676#define MWL8K_ENABLE_RX_MULTICAST 0x0002 2677#define MWL8K_ENABLE_RX_ALL_MULTICAST 0x0004 2678#define MWL8K_ENABLE_RX_BROADCAST 0x0008 2679 2680static struct mwl8k_cmd_pkt * 2681__mwl8k_cmd_mac_multicast_adr(struct ieee80211_hw *hw, int allmulti, 2682 struct netdev_hw_addr_list *mc_list) 2683{ 2684 struct mwl8k_priv *priv = hw->priv; 2685 struct mwl8k_cmd_mac_multicast_adr *cmd; 2686 int size; 2687 int mc_count = 0; 2688 2689 if (mc_list) 2690 mc_count = netdev_hw_addr_list_count(mc_list); 2691 2692 if (allmulti || mc_count > priv->num_mcaddrs) { 2693 allmulti = 1; 2694 mc_count = 0; 2695 } 2696 2697 size = sizeof(*cmd) + mc_count * ETH_ALEN; 2698 2699 cmd = kzalloc(size, GFP_ATOMIC); 2700 if (cmd == NULL) 2701 return NULL; 2702 2703 cmd->header.code = cpu_to_le16(MWL8K_CMD_MAC_MULTICAST_ADR); 2704 cmd->header.length = cpu_to_le16(size); 2705 cmd->action = cpu_to_le16(MWL8K_ENABLE_RX_DIRECTED | 2706 MWL8K_ENABLE_RX_BROADCAST); 2707 2708 if (allmulti) { 2709 cmd->action |= cpu_to_le16(MWL8K_ENABLE_RX_ALL_MULTICAST); 2710 } else if (mc_count) { 2711 struct netdev_hw_addr *ha; 2712 int i = 0; 2713 2714 cmd->action |= cpu_to_le16(MWL8K_ENABLE_RX_MULTICAST); 2715 cmd->numaddr = cpu_to_le16(mc_count); 2716 netdev_hw_addr_list_for_each(ha, mc_list) { 2717 memcpy(cmd->addr[i], ha->addr, ETH_ALEN); 2718 } 2719 } 2720 2721 return &cmd->header; 2722} 2723 2724/* 2725 * CMD_GET_STAT. 2726 */ 2727struct mwl8k_cmd_get_stat { 2728 struct mwl8k_cmd_pkt header; 2729 __le32 stats[64]; 2730} __packed; 2731 2732#define MWL8K_STAT_ACK_FAILURE 9 2733#define MWL8K_STAT_RTS_FAILURE 12 2734#define MWL8K_STAT_FCS_ERROR 24 2735#define MWL8K_STAT_RTS_SUCCESS 11 2736 2737static int mwl8k_cmd_get_stat(struct ieee80211_hw *hw, 2738 struct ieee80211_low_level_stats *stats) 2739{ 2740 struct mwl8k_cmd_get_stat *cmd; 2741 int rc; 2742 2743 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2744 if (cmd == NULL) 2745 return -ENOMEM; 2746 2747 cmd->header.code = cpu_to_le16(MWL8K_CMD_GET_STAT); 2748 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2749 2750 rc = mwl8k_post_cmd(hw, &cmd->header); 2751 if (!rc) { 2752 stats->dot11ACKFailureCount = 2753 le32_to_cpu(cmd->stats[MWL8K_STAT_ACK_FAILURE]); 2754 stats->dot11RTSFailureCount = 2755 le32_to_cpu(cmd->stats[MWL8K_STAT_RTS_FAILURE]); 2756 stats->dot11FCSErrorCount = 2757 le32_to_cpu(cmd->stats[MWL8K_STAT_FCS_ERROR]); 2758 stats->dot11RTSSuccessCount = 2759 le32_to_cpu(cmd->stats[MWL8K_STAT_RTS_SUCCESS]); 2760 } 2761 kfree(cmd); 2762 2763 return rc; 2764} 2765 2766/* 2767 * CMD_RADIO_CONTROL. 2768 */ 2769struct mwl8k_cmd_radio_control { 2770 struct mwl8k_cmd_pkt header; 2771 __le16 action; 2772 __le16 control; 2773 __le16 radio_on; 2774} __packed; 2775 2776static int 2777mwl8k_cmd_radio_control(struct ieee80211_hw *hw, bool enable, bool force) 2778{ 2779 struct mwl8k_priv *priv = hw->priv; 2780 struct mwl8k_cmd_radio_control *cmd; 2781 int rc; 2782 2783 if (enable == priv->radio_on && !force) 2784 return 0; 2785 2786 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2787 if (cmd == NULL) 2788 return -ENOMEM; 2789 2790 cmd->header.code = cpu_to_le16(MWL8K_CMD_RADIO_CONTROL); 2791 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2792 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 2793 cmd->control = cpu_to_le16(priv->radio_short_preamble ? 3 : 1); 2794 cmd->radio_on = cpu_to_le16(enable ? 0x0001 : 0x0000); 2795 2796 rc = mwl8k_post_cmd(hw, &cmd->header); 2797 kfree(cmd); 2798 2799 if (!rc) 2800 priv->radio_on = enable; 2801 2802 return rc; 2803} 2804 2805static int mwl8k_cmd_radio_disable(struct ieee80211_hw *hw) 2806{ 2807 return mwl8k_cmd_radio_control(hw, 0, 0); 2808} 2809 2810static int mwl8k_cmd_radio_enable(struct ieee80211_hw *hw) 2811{ 2812 return mwl8k_cmd_radio_control(hw, 1, 0); 2813} 2814 2815static int 2816mwl8k_set_radio_preamble(struct ieee80211_hw *hw, bool short_preamble) 2817{ 2818 struct mwl8k_priv *priv = hw->priv; 2819 2820 priv->radio_short_preamble = short_preamble; 2821 2822 return mwl8k_cmd_radio_control(hw, 1, 1); 2823} 2824 2825/* 2826 * CMD_RF_TX_POWER. 2827 */ 2828#define MWL8K_RF_TX_POWER_LEVEL_TOTAL 8 2829 2830struct mwl8k_cmd_rf_tx_power { 2831 struct mwl8k_cmd_pkt header; 2832 __le16 action; 2833 __le16 support_level; 2834 __le16 current_level; 2835 __le16 reserved; 2836 __le16 power_level_list[MWL8K_RF_TX_POWER_LEVEL_TOTAL]; 2837} __packed; 2838 2839static int mwl8k_cmd_rf_tx_power(struct ieee80211_hw *hw, int dBm) 2840{ 2841 struct mwl8k_cmd_rf_tx_power *cmd; 2842 int rc; 2843 2844 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2845 if (cmd == NULL) 2846 return -ENOMEM; 2847 2848 cmd->header.code = cpu_to_le16(MWL8K_CMD_RF_TX_POWER); 2849 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2850 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 2851 cmd->support_level = cpu_to_le16(dBm); 2852 2853 rc = mwl8k_post_cmd(hw, &cmd->header); 2854 kfree(cmd); 2855 2856 return rc; 2857} 2858 2859/* 2860 * CMD_TX_POWER. 2861 */ 2862#define MWL8K_TX_POWER_LEVEL_TOTAL 12 2863 2864struct mwl8k_cmd_tx_power { 2865 struct mwl8k_cmd_pkt header; 2866 __le16 action; 2867 __le16 band; 2868 __le16 channel; 2869 __le16 bw; 2870 __le16 sub_ch; 2871 __le16 power_level_list[MWL8K_TX_POWER_LEVEL_TOTAL]; 2872} __packed; 2873 2874static int mwl8k_cmd_tx_power(struct ieee80211_hw *hw, 2875 struct ieee80211_conf *conf, 2876 unsigned short pwr) 2877{ 2878 struct ieee80211_channel *channel = conf->chandef.chan; 2879 enum nl80211_channel_type channel_type = 2880 cfg80211_get_chandef_type(&conf->chandef); 2881 struct mwl8k_cmd_tx_power *cmd; 2882 int rc; 2883 int i; 2884 2885 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2886 if (cmd == NULL) 2887 return -ENOMEM; 2888 2889 cmd->header.code = cpu_to_le16(MWL8K_CMD_TX_POWER); 2890 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2891 cmd->action = cpu_to_le16(MWL8K_CMD_SET_LIST); 2892 2893 if (channel->band == NL80211_BAND_2GHZ) 2894 cmd->band = cpu_to_le16(0x1); 2895 else if (channel->band == NL80211_BAND_5GHZ) 2896 cmd->band = cpu_to_le16(0x4); 2897 2898 cmd->channel = cpu_to_le16(channel->hw_value); 2899 2900 if (channel_type == NL80211_CHAN_NO_HT || 2901 channel_type == NL80211_CHAN_HT20) { 2902 cmd->bw = cpu_to_le16(0x2); 2903 } else { 2904 cmd->bw = cpu_to_le16(0x4); 2905 if (channel_type == NL80211_CHAN_HT40MINUS) 2906 cmd->sub_ch = cpu_to_le16(0x3); 2907 else if (channel_type == NL80211_CHAN_HT40PLUS) 2908 cmd->sub_ch = cpu_to_le16(0x1); 2909 } 2910 2911 for (i = 0; i < MWL8K_TX_POWER_LEVEL_TOTAL; i++) 2912 cmd->power_level_list[i] = cpu_to_le16(pwr); 2913 2914 rc = mwl8k_post_cmd(hw, &cmd->header); 2915 kfree(cmd); 2916 2917 return rc; 2918} 2919 2920/* 2921 * CMD_RF_ANTENNA. 2922 */ 2923struct mwl8k_cmd_rf_antenna { 2924 struct mwl8k_cmd_pkt header; 2925 __le16 antenna; 2926 __le16 mode; 2927} __packed; 2928 2929#define MWL8K_RF_ANTENNA_RX 1 2930#define MWL8K_RF_ANTENNA_TX 2 2931 2932static int 2933mwl8k_cmd_rf_antenna(struct ieee80211_hw *hw, int antenna, int mask) 2934{ 2935 struct mwl8k_cmd_rf_antenna *cmd; 2936 int rc; 2937 2938 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2939 if (cmd == NULL) 2940 return -ENOMEM; 2941 2942 cmd->header.code = cpu_to_le16(MWL8K_CMD_RF_ANTENNA); 2943 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 2944 cmd->antenna = cpu_to_le16(antenna); 2945 cmd->mode = cpu_to_le16(mask); 2946 2947 rc = mwl8k_post_cmd(hw, &cmd->header); 2948 kfree(cmd); 2949 2950 return rc; 2951} 2952 2953/* 2954 * CMD_SET_BEACON. 2955 */ 2956struct mwl8k_cmd_set_beacon { 2957 struct mwl8k_cmd_pkt header; 2958 __le16 beacon_len; 2959 __u8 beacon[]; 2960}; 2961 2962static int mwl8k_cmd_set_beacon(struct ieee80211_hw *hw, 2963 struct ieee80211_vif *vif, u8 *beacon, int len) 2964{ 2965 struct mwl8k_cmd_set_beacon *cmd; 2966 int rc; 2967 2968 cmd = kzalloc(sizeof(*cmd) + len, GFP_KERNEL); 2969 if (cmd == NULL) 2970 return -ENOMEM; 2971 2972 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_BEACON); 2973 cmd->header.length = cpu_to_le16(sizeof(*cmd) + len); 2974 cmd->beacon_len = cpu_to_le16(len); 2975 memcpy(cmd->beacon, beacon, len); 2976 2977 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 2978 kfree(cmd); 2979 2980 return rc; 2981} 2982 2983/* 2984 * CMD_SET_PRE_SCAN. 2985 */ 2986struct mwl8k_cmd_set_pre_scan { 2987 struct mwl8k_cmd_pkt header; 2988} __packed; 2989 2990static int mwl8k_cmd_set_pre_scan(struct ieee80211_hw *hw) 2991{ 2992 struct mwl8k_cmd_set_pre_scan *cmd; 2993 int rc; 2994 2995 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 2996 if (cmd == NULL) 2997 return -ENOMEM; 2998 2999 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_PRE_SCAN); 3000 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3001 3002 rc = mwl8k_post_cmd(hw, &cmd->header); 3003 kfree(cmd); 3004 3005 return rc; 3006} 3007 3008/* 3009 * CMD_BBP_REG_ACCESS. 3010 */ 3011struct mwl8k_cmd_bbp_reg_access { 3012 struct mwl8k_cmd_pkt header; 3013 __le16 action; 3014 __le16 offset; 3015 u8 value; 3016 u8 rsrv[3]; 3017} __packed; 3018 3019static int 3020mwl8k_cmd_bbp_reg_access(struct ieee80211_hw *hw, 3021 u16 action, 3022 u16 offset, 3023 u8 *value) 3024{ 3025 struct mwl8k_cmd_bbp_reg_access *cmd; 3026 int rc; 3027 3028 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3029 if (cmd == NULL) 3030 return -ENOMEM; 3031 3032 cmd->header.code = cpu_to_le16(MWL8K_CMD_BBP_REG_ACCESS); 3033 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3034 cmd->action = cpu_to_le16(action); 3035 cmd->offset = cpu_to_le16(offset); 3036 3037 rc = mwl8k_post_cmd(hw, &cmd->header); 3038 3039 if (!rc) 3040 *value = cmd->value; 3041 else 3042 *value = 0; 3043 3044 kfree(cmd); 3045 3046 return rc; 3047} 3048 3049/* 3050 * CMD_SET_POST_SCAN. 3051 */ 3052struct mwl8k_cmd_set_post_scan { 3053 struct mwl8k_cmd_pkt header; 3054 __le32 isibss; 3055 __u8 bssid[ETH_ALEN]; 3056} __packed; 3057 3058static int 3059mwl8k_cmd_set_post_scan(struct ieee80211_hw *hw, const __u8 *mac) 3060{ 3061 struct mwl8k_cmd_set_post_scan *cmd; 3062 int rc; 3063 3064 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3065 if (cmd == NULL) 3066 return -ENOMEM; 3067 3068 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_POST_SCAN); 3069 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3070 cmd->isibss = 0; 3071 memcpy(cmd->bssid, mac, ETH_ALEN); 3072 3073 rc = mwl8k_post_cmd(hw, &cmd->header); 3074 kfree(cmd); 3075 3076 return rc; 3077} 3078 3079static int freq_to_idx(struct mwl8k_priv *priv, int freq) 3080{ 3081 struct ieee80211_supported_band *sband; 3082 int band, ch, idx = 0; 3083 3084 for (band = NL80211_BAND_2GHZ; band < NUM_NL80211_BANDS; band++) { 3085 sband = priv->hw->wiphy->bands[band]; 3086 if (!sband) 3087 continue; 3088 3089 for (ch = 0; ch < sband->n_channels; ch++, idx++) 3090 if (sband->channels[ch].center_freq == freq) 3091 goto exit; 3092 } 3093 3094exit: 3095 return idx; 3096} 3097 3098static void mwl8k_update_survey(struct mwl8k_priv *priv, 3099 struct ieee80211_channel *channel) 3100{ 3101 u32 cca_cnt, rx_rdy; 3102 s8 nf = 0, idx; 3103 struct survey_info *survey; 3104 3105 idx = freq_to_idx(priv, priv->acs_chan->center_freq); 3106 if (idx >= MWL8K_NUM_CHANS) { 3107 wiphy_err(priv->hw->wiphy, "Failed to update survey\n"); 3108 return; 3109 } 3110 3111 survey = &priv->survey[idx]; 3112 3113 cca_cnt = ioread32(priv->regs + NOK_CCA_CNT_REG); 3114 cca_cnt /= 1000; /* uSecs to mSecs */ 3115 survey->time_busy = (u64) cca_cnt; 3116 3117 rx_rdy = ioread32(priv->regs + BBU_RXRDY_CNT_REG); 3118 rx_rdy /= 1000; /* uSecs to mSecs */ 3119 survey->time_rx = (u64) rx_rdy; 3120 3121 priv->channel_time = jiffies - priv->channel_time; 3122 survey->time = jiffies_to_msecs(priv->channel_time); 3123 3124 survey->channel = channel; 3125 3126 mwl8k_cmd_bbp_reg_access(priv->hw, 0, BBU_AVG_NOISE_VAL, &nf); 3127 3128 /* Make sure sign is negative else ACS at hostapd fails */ 3129 survey->noise = nf * -1; 3130 3131 survey->filled = SURVEY_INFO_NOISE_DBM | 3132 SURVEY_INFO_TIME | 3133 SURVEY_INFO_TIME_BUSY | 3134 SURVEY_INFO_TIME_RX; 3135} 3136 3137/* 3138 * CMD_SET_RF_CHANNEL. 3139 */ 3140struct mwl8k_cmd_set_rf_channel { 3141 struct mwl8k_cmd_pkt header; 3142 __le16 action; 3143 __u8 current_channel; 3144 __le32 channel_flags; 3145} __packed; 3146 3147static int mwl8k_cmd_set_rf_channel(struct ieee80211_hw *hw, 3148 struct ieee80211_conf *conf) 3149{ 3150 struct ieee80211_channel *channel = conf->chandef.chan; 3151 enum nl80211_channel_type channel_type = 3152 cfg80211_get_chandef_type(&conf->chandef); 3153 struct mwl8k_cmd_set_rf_channel *cmd; 3154 struct mwl8k_priv *priv = hw->priv; 3155 int rc; 3156 3157 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3158 if (cmd == NULL) 3159 return -ENOMEM; 3160 3161 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_RF_CHANNEL); 3162 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3163 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 3164 cmd->current_channel = channel->hw_value; 3165 3166 if (channel->band == NL80211_BAND_2GHZ) 3167 cmd->channel_flags |= cpu_to_le32(0x00000001); 3168 else if (channel->band == NL80211_BAND_5GHZ) 3169 cmd->channel_flags |= cpu_to_le32(0x00000004); 3170 3171 if (!priv->sw_scan_start) { 3172 if (channel_type == NL80211_CHAN_NO_HT || 3173 channel_type == NL80211_CHAN_HT20) 3174 cmd->channel_flags |= cpu_to_le32(0x00000080); 3175 else if (channel_type == NL80211_CHAN_HT40MINUS) 3176 cmd->channel_flags |= cpu_to_le32(0x000001900); 3177 else if (channel_type == NL80211_CHAN_HT40PLUS) 3178 cmd->channel_flags |= cpu_to_le32(0x000000900); 3179 } else { 3180 cmd->channel_flags |= cpu_to_le32(0x00000080); 3181 } 3182 3183 if (priv->sw_scan_start) { 3184 /* Store current channel stats 3185 * before switching to newer one. 3186 * This will be processed only for AP fw. 3187 */ 3188 if (priv->channel_time != 0) 3189 mwl8k_update_survey(priv, priv->acs_chan); 3190 3191 priv->channel_time = jiffies; 3192 priv->acs_chan = channel; 3193 } 3194 3195 rc = mwl8k_post_cmd(hw, &cmd->header); 3196 kfree(cmd); 3197 3198 return rc; 3199} 3200 3201/* 3202 * CMD_SET_AID. 3203 */ 3204#define MWL8K_FRAME_PROT_DISABLED 0x00 3205#define MWL8K_FRAME_PROT_11G 0x07 3206#define MWL8K_FRAME_PROT_11N_HT_40MHZ_ONLY 0x02 3207#define MWL8K_FRAME_PROT_11N_HT_ALL 0x06 3208 3209struct mwl8k_cmd_update_set_aid { 3210 struct mwl8k_cmd_pkt header; 3211 __le16 aid; 3212 3213 /* AP's MAC address (BSSID) */ 3214 __u8 bssid[ETH_ALEN]; 3215 __le16 protection_mode; 3216 __u8 supp_rates[14]; 3217} __packed; 3218 3219static void legacy_rate_mask_to_array(u8 *rates, u32 mask) 3220{ 3221 int i; 3222 int j; 3223 3224 /* 3225 * Clear nonstandard rate 4. 3226 */ 3227 mask &= 0x1fef; 3228 3229 for (i = 0, j = 0; i < 13; i++) { 3230 if (mask & (1 << i)) 3231 rates[j++] = mwl8k_rates_24[i].hw_value; 3232 } 3233} 3234 3235static int 3236mwl8k_cmd_set_aid(struct ieee80211_hw *hw, 3237 struct ieee80211_vif *vif, u32 legacy_rate_mask) 3238{ 3239 struct mwl8k_cmd_update_set_aid *cmd; 3240 u16 prot_mode; 3241 int rc; 3242 3243 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3244 if (cmd == NULL) 3245 return -ENOMEM; 3246 3247 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_AID); 3248 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3249 cmd->aid = cpu_to_le16(vif->bss_conf.aid); 3250 memcpy(cmd->bssid, vif->bss_conf.bssid, ETH_ALEN); 3251 3252 if (vif->bss_conf.use_cts_prot) { 3253 prot_mode = MWL8K_FRAME_PROT_11G; 3254 } else { 3255 switch (vif->bss_conf.ht_operation_mode & 3256 IEEE80211_HT_OP_MODE_PROTECTION) { 3257 case IEEE80211_HT_OP_MODE_PROTECTION_20MHZ: 3258 prot_mode = MWL8K_FRAME_PROT_11N_HT_40MHZ_ONLY; 3259 break; 3260 case IEEE80211_HT_OP_MODE_PROTECTION_NONHT_MIXED: 3261 prot_mode = MWL8K_FRAME_PROT_11N_HT_ALL; 3262 break; 3263 default: 3264 prot_mode = MWL8K_FRAME_PROT_DISABLED; 3265 break; 3266 } 3267 } 3268 cmd->protection_mode = cpu_to_le16(prot_mode); 3269 3270 legacy_rate_mask_to_array(cmd->supp_rates, legacy_rate_mask); 3271 3272 rc = mwl8k_post_cmd(hw, &cmd->header); 3273 kfree(cmd); 3274 3275 return rc; 3276} 3277 3278/* 3279 * CMD_SET_RATE. 3280 */ 3281struct mwl8k_cmd_set_rate { 3282 struct mwl8k_cmd_pkt header; 3283 __u8 legacy_rates[14]; 3284 3285 /* Bitmap for supported MCS codes. */ 3286 __u8 mcs_set[16]; 3287 __u8 reserved[16]; 3288} __packed; 3289 3290static int 3291mwl8k_cmd_set_rate(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 3292 u32 legacy_rate_mask, u8 *mcs_rates) 3293{ 3294 struct mwl8k_cmd_set_rate *cmd; 3295 int rc; 3296 3297 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3298 if (cmd == NULL) 3299 return -ENOMEM; 3300 3301 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_RATE); 3302 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3303 legacy_rate_mask_to_array(cmd->legacy_rates, legacy_rate_mask); 3304 memcpy(cmd->mcs_set, mcs_rates, 16); 3305 3306 rc = mwl8k_post_cmd(hw, &cmd->header); 3307 kfree(cmd); 3308 3309 return rc; 3310} 3311 3312/* 3313 * CMD_FINALIZE_JOIN. 3314 */ 3315#define MWL8K_FJ_BEACON_MAXLEN 128 3316 3317struct mwl8k_cmd_finalize_join { 3318 struct mwl8k_cmd_pkt header; 3319 __le32 sleep_interval; /* Number of beacon periods to sleep */ 3320 __u8 beacon_data[MWL8K_FJ_BEACON_MAXLEN]; 3321} __packed; 3322 3323static int mwl8k_cmd_finalize_join(struct ieee80211_hw *hw, void *frame, 3324 int framelen, int dtim) 3325{ 3326 struct mwl8k_cmd_finalize_join *cmd; 3327 struct ieee80211_mgmt *payload = frame; 3328 int payload_len; 3329 int rc; 3330 3331 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3332 if (cmd == NULL) 3333 return -ENOMEM; 3334 3335 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_FINALIZE_JOIN); 3336 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3337 cmd->sleep_interval = cpu_to_le32(dtim ? dtim : 1); 3338 3339 payload_len = framelen - ieee80211_hdrlen(payload->frame_control); 3340 if (payload_len < 0) 3341 payload_len = 0; 3342 else if (payload_len > MWL8K_FJ_BEACON_MAXLEN) 3343 payload_len = MWL8K_FJ_BEACON_MAXLEN; 3344 3345 memcpy(cmd->beacon_data, &payload->u.beacon, payload_len); 3346 3347 rc = mwl8k_post_cmd(hw, &cmd->header); 3348 kfree(cmd); 3349 3350 return rc; 3351} 3352 3353/* 3354 * CMD_SET_RTS_THRESHOLD. 3355 */ 3356struct mwl8k_cmd_set_rts_threshold { 3357 struct mwl8k_cmd_pkt header; 3358 __le16 action; 3359 __le16 threshold; 3360} __packed; 3361 3362static int 3363mwl8k_cmd_set_rts_threshold(struct ieee80211_hw *hw, int rts_thresh) 3364{ 3365 struct mwl8k_cmd_set_rts_threshold *cmd; 3366 int rc; 3367 3368 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3369 if (cmd == NULL) 3370 return -ENOMEM; 3371 3372 cmd->header.code = cpu_to_le16(MWL8K_CMD_RTS_THRESHOLD); 3373 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3374 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 3375 cmd->threshold = cpu_to_le16(rts_thresh); 3376 3377 rc = mwl8k_post_cmd(hw, &cmd->header); 3378 kfree(cmd); 3379 3380 return rc; 3381} 3382 3383/* 3384 * CMD_SET_SLOT. 3385 */ 3386struct mwl8k_cmd_set_slot { 3387 struct mwl8k_cmd_pkt header; 3388 __le16 action; 3389 __u8 short_slot; 3390} __packed; 3391 3392static int mwl8k_cmd_set_slot(struct ieee80211_hw *hw, bool short_slot_time) 3393{ 3394 struct mwl8k_cmd_set_slot *cmd; 3395 int rc; 3396 3397 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3398 if (cmd == NULL) 3399 return -ENOMEM; 3400 3401 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_SLOT); 3402 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3403 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 3404 cmd->short_slot = short_slot_time; 3405 3406 rc = mwl8k_post_cmd(hw, &cmd->header); 3407 kfree(cmd); 3408 3409 return rc; 3410} 3411 3412/* 3413 * CMD_SET_EDCA_PARAMS. 3414 */ 3415struct mwl8k_cmd_set_edca_params { 3416 struct mwl8k_cmd_pkt header; 3417 3418 /* See MWL8K_SET_EDCA_XXX below */ 3419 __le16 action; 3420 3421 /* TX opportunity in units of 32 us */ 3422 __le16 txop; 3423 3424 union { 3425 struct { 3426 /* Log exponent of max contention period: 0...15 */ 3427 __le32 log_cw_max; 3428 3429 /* Log exponent of min contention period: 0...15 */ 3430 __le32 log_cw_min; 3431 3432 /* Adaptive interframe spacing in units of 32us */ 3433 __u8 aifs; 3434 3435 /* TX queue to configure */ 3436 __u8 txq; 3437 } ap; 3438 struct { 3439 /* Log exponent of max contention period: 0...15 */ 3440 __u8 log_cw_max; 3441 3442 /* Log exponent of min contention period: 0...15 */ 3443 __u8 log_cw_min; 3444 3445 /* Adaptive interframe spacing in units of 32us */ 3446 __u8 aifs; 3447 3448 /* TX queue to configure */ 3449 __u8 txq; 3450 } sta; 3451 }; 3452} __packed; 3453 3454#define MWL8K_SET_EDCA_CW 0x01 3455#define MWL8K_SET_EDCA_TXOP 0x02 3456#define MWL8K_SET_EDCA_AIFS 0x04 3457 3458#define MWL8K_SET_EDCA_ALL (MWL8K_SET_EDCA_CW | \ 3459 MWL8K_SET_EDCA_TXOP | \ 3460 MWL8K_SET_EDCA_AIFS) 3461 3462static int 3463mwl8k_cmd_set_edca_params(struct ieee80211_hw *hw, __u8 qnum, 3464 __u16 cw_min, __u16 cw_max, 3465 __u8 aifs, __u16 txop) 3466{ 3467 struct mwl8k_priv *priv = hw->priv; 3468 struct mwl8k_cmd_set_edca_params *cmd; 3469 int rc; 3470 3471 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3472 if (cmd == NULL) 3473 return -ENOMEM; 3474 3475 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_EDCA_PARAMS); 3476 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3477 cmd->action = cpu_to_le16(MWL8K_SET_EDCA_ALL); 3478 cmd->txop = cpu_to_le16(txop); 3479 if (priv->ap_fw) { 3480 cmd->ap.log_cw_max = cpu_to_le32(ilog2(cw_max + 1)); 3481 cmd->ap.log_cw_min = cpu_to_le32(ilog2(cw_min + 1)); 3482 cmd->ap.aifs = aifs; 3483 cmd->ap.txq = qnum; 3484 } else { 3485 cmd->sta.log_cw_max = (u8)ilog2(cw_max + 1); 3486 cmd->sta.log_cw_min = (u8)ilog2(cw_min + 1); 3487 cmd->sta.aifs = aifs; 3488 cmd->sta.txq = qnum; 3489 } 3490 3491 rc = mwl8k_post_cmd(hw, &cmd->header); 3492 kfree(cmd); 3493 3494 return rc; 3495} 3496 3497/* 3498 * CMD_SET_WMM_MODE. 3499 */ 3500struct mwl8k_cmd_set_wmm_mode { 3501 struct mwl8k_cmd_pkt header; 3502 __le16 action; 3503} __packed; 3504 3505static int mwl8k_cmd_set_wmm_mode(struct ieee80211_hw *hw, bool enable) 3506{ 3507 struct mwl8k_priv *priv = hw->priv; 3508 struct mwl8k_cmd_set_wmm_mode *cmd; 3509 int rc; 3510 3511 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3512 if (cmd == NULL) 3513 return -ENOMEM; 3514 3515 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_WMM_MODE); 3516 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3517 cmd->action = cpu_to_le16(!!enable); 3518 3519 rc = mwl8k_post_cmd(hw, &cmd->header); 3520 kfree(cmd); 3521 3522 if (!rc) 3523 priv->wmm_enabled = enable; 3524 3525 return rc; 3526} 3527 3528/* 3529 * CMD_MIMO_CONFIG. 3530 */ 3531struct mwl8k_cmd_mimo_config { 3532 struct mwl8k_cmd_pkt header; 3533 __le32 action; 3534 __u8 rx_antenna_map; 3535 __u8 tx_antenna_map; 3536} __packed; 3537 3538static int mwl8k_cmd_mimo_config(struct ieee80211_hw *hw, __u8 rx, __u8 tx) 3539{ 3540 struct mwl8k_cmd_mimo_config *cmd; 3541 int rc; 3542 3543 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3544 if (cmd == NULL) 3545 return -ENOMEM; 3546 3547 cmd->header.code = cpu_to_le16(MWL8K_CMD_MIMO_CONFIG); 3548 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3549 cmd->action = cpu_to_le32((u32)MWL8K_CMD_SET); 3550 cmd->rx_antenna_map = rx; 3551 cmd->tx_antenna_map = tx; 3552 3553 rc = mwl8k_post_cmd(hw, &cmd->header); 3554 kfree(cmd); 3555 3556 return rc; 3557} 3558 3559/* 3560 * CMD_USE_FIXED_RATE (STA version). 3561 */ 3562struct mwl8k_cmd_use_fixed_rate_sta { 3563 struct mwl8k_cmd_pkt header; 3564 __le32 action; 3565 __le32 allow_rate_drop; 3566 __le32 num_rates; 3567 struct { 3568 __le32 is_ht_rate; 3569 __le32 enable_retry; 3570 __le32 rate; 3571 __le32 retry_count; 3572 } rate_entry[8]; 3573 __le32 rate_type; 3574 __le32 reserved1; 3575 __le32 reserved2; 3576} __packed; 3577 3578#define MWL8K_USE_AUTO_RATE 0x0002 3579#define MWL8K_UCAST_RATE 0 3580 3581static int mwl8k_cmd_use_fixed_rate_sta(struct ieee80211_hw *hw) 3582{ 3583 struct mwl8k_cmd_use_fixed_rate_sta *cmd; 3584 int rc; 3585 3586 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3587 if (cmd == NULL) 3588 return -ENOMEM; 3589 3590 cmd->header.code = cpu_to_le16(MWL8K_CMD_USE_FIXED_RATE); 3591 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3592 cmd->action = cpu_to_le32(MWL8K_USE_AUTO_RATE); 3593 cmd->rate_type = cpu_to_le32(MWL8K_UCAST_RATE); 3594 3595 rc = mwl8k_post_cmd(hw, &cmd->header); 3596 kfree(cmd); 3597 3598 return rc; 3599} 3600 3601/* 3602 * CMD_USE_FIXED_RATE (AP version). 3603 */ 3604struct mwl8k_cmd_use_fixed_rate_ap { 3605 struct mwl8k_cmd_pkt header; 3606 __le32 action; 3607 __le32 allow_rate_drop; 3608 __le32 num_rates; 3609 struct mwl8k_rate_entry_ap { 3610 __le32 is_ht_rate; 3611 __le32 enable_retry; 3612 __le32 rate; 3613 __le32 retry_count; 3614 } rate_entry[4]; 3615 u8 multicast_rate; 3616 u8 multicast_rate_type; 3617 u8 management_rate; 3618} __packed; 3619 3620static int 3621mwl8k_cmd_use_fixed_rate_ap(struct ieee80211_hw *hw, int mcast, int mgmt) 3622{ 3623 struct mwl8k_cmd_use_fixed_rate_ap *cmd; 3624 int rc; 3625 3626 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3627 if (cmd == NULL) 3628 return -ENOMEM; 3629 3630 cmd->header.code = cpu_to_le16(MWL8K_CMD_USE_FIXED_RATE); 3631 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3632 cmd->action = cpu_to_le32(MWL8K_USE_AUTO_RATE); 3633 cmd->multicast_rate = mcast; 3634 cmd->management_rate = mgmt; 3635 3636 rc = mwl8k_post_cmd(hw, &cmd->header); 3637 kfree(cmd); 3638 3639 return rc; 3640} 3641 3642/* 3643 * CMD_ENABLE_SNIFFER. 3644 */ 3645struct mwl8k_cmd_enable_sniffer { 3646 struct mwl8k_cmd_pkt header; 3647 __le32 action; 3648} __packed; 3649 3650static int mwl8k_cmd_enable_sniffer(struct ieee80211_hw *hw, bool enable) 3651{ 3652 struct mwl8k_cmd_enable_sniffer *cmd; 3653 int rc; 3654 3655 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3656 if (cmd == NULL) 3657 return -ENOMEM; 3658 3659 cmd->header.code = cpu_to_le16(MWL8K_CMD_ENABLE_SNIFFER); 3660 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3661 cmd->action = cpu_to_le32(!!enable); 3662 3663 rc = mwl8k_post_cmd(hw, &cmd->header); 3664 kfree(cmd); 3665 3666 return rc; 3667} 3668 3669struct mwl8k_cmd_update_mac_addr { 3670 struct mwl8k_cmd_pkt header; 3671 union { 3672 struct { 3673 __le16 mac_type; 3674 __u8 mac_addr[ETH_ALEN]; 3675 } mbss; 3676 __u8 mac_addr[ETH_ALEN]; 3677 }; 3678} __packed; 3679 3680#define MWL8K_MAC_TYPE_PRIMARY_CLIENT 0 3681#define MWL8K_MAC_TYPE_SECONDARY_CLIENT 1 3682#define MWL8K_MAC_TYPE_PRIMARY_AP 2 3683#define MWL8K_MAC_TYPE_SECONDARY_AP 3 3684 3685static int mwl8k_cmd_update_mac_addr(struct ieee80211_hw *hw, 3686 struct ieee80211_vif *vif, u8 *mac, bool set) 3687{ 3688 struct mwl8k_priv *priv = hw->priv; 3689 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 3690 struct mwl8k_cmd_update_mac_addr *cmd; 3691 int mac_type; 3692 int rc; 3693 3694 mac_type = MWL8K_MAC_TYPE_PRIMARY_AP; 3695 if (vif != NULL && vif->type == NL80211_IFTYPE_STATION) { 3696 if (mwl8k_vif->macid + 1 == ffs(priv->sta_macids_supported)) 3697 if (priv->ap_fw) 3698 mac_type = MWL8K_MAC_TYPE_SECONDARY_CLIENT; 3699 else 3700 mac_type = MWL8K_MAC_TYPE_PRIMARY_CLIENT; 3701 else 3702 mac_type = MWL8K_MAC_TYPE_SECONDARY_CLIENT; 3703 } else if (vif != NULL && vif->type == NL80211_IFTYPE_AP) { 3704 if (mwl8k_vif->macid + 1 == ffs(priv->ap_macids_supported)) 3705 mac_type = MWL8K_MAC_TYPE_PRIMARY_AP; 3706 else 3707 mac_type = MWL8K_MAC_TYPE_SECONDARY_AP; 3708 } 3709 3710 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3711 if (cmd == NULL) 3712 return -ENOMEM; 3713 3714 if (set) 3715 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_MAC_ADDR); 3716 else 3717 cmd->header.code = cpu_to_le16(MWL8K_CMD_DEL_MAC_ADDR); 3718 3719 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3720 if (priv->ap_fw) { 3721 cmd->mbss.mac_type = cpu_to_le16(mac_type); 3722 memcpy(cmd->mbss.mac_addr, mac, ETH_ALEN); 3723 } else { 3724 memcpy(cmd->mac_addr, mac, ETH_ALEN); 3725 } 3726 3727 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 3728 kfree(cmd); 3729 3730 return rc; 3731} 3732 3733/* 3734 * MWL8K_CMD_SET_MAC_ADDR. 3735 */ 3736static inline int mwl8k_cmd_set_mac_addr(struct ieee80211_hw *hw, 3737 struct ieee80211_vif *vif, u8 *mac) 3738{ 3739 return mwl8k_cmd_update_mac_addr(hw, vif, mac, true); 3740} 3741 3742/* 3743 * MWL8K_CMD_DEL_MAC_ADDR. 3744 */ 3745static inline int mwl8k_cmd_del_mac_addr(struct ieee80211_hw *hw, 3746 struct ieee80211_vif *vif, u8 *mac) 3747{ 3748 return mwl8k_cmd_update_mac_addr(hw, vif, mac, false); 3749} 3750 3751/* 3752 * CMD_SET_RATEADAPT_MODE. 3753 */ 3754struct mwl8k_cmd_set_rate_adapt_mode { 3755 struct mwl8k_cmd_pkt header; 3756 __le16 action; 3757 __le16 mode; 3758} __packed; 3759 3760static int mwl8k_cmd_set_rateadapt_mode(struct ieee80211_hw *hw, __u16 mode) 3761{ 3762 struct mwl8k_cmd_set_rate_adapt_mode *cmd; 3763 int rc; 3764 3765 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3766 if (cmd == NULL) 3767 return -ENOMEM; 3768 3769 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_RATEADAPT_MODE); 3770 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3771 cmd->action = cpu_to_le16(MWL8K_CMD_SET); 3772 cmd->mode = cpu_to_le16(mode); 3773 3774 rc = mwl8k_post_cmd(hw, &cmd->header); 3775 kfree(cmd); 3776 3777 return rc; 3778} 3779 3780/* 3781 * CMD_GET_WATCHDOG_BITMAP. 3782 */ 3783struct mwl8k_cmd_get_watchdog_bitmap { 3784 struct mwl8k_cmd_pkt header; 3785 u8 bitmap; 3786} __packed; 3787 3788static int mwl8k_cmd_get_watchdog_bitmap(struct ieee80211_hw *hw, u8 *bitmap) 3789{ 3790 struct mwl8k_cmd_get_watchdog_bitmap *cmd; 3791 int rc; 3792 3793 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3794 if (cmd == NULL) 3795 return -ENOMEM; 3796 3797 cmd->header.code = cpu_to_le16(MWL8K_CMD_GET_WATCHDOG_BITMAP); 3798 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3799 3800 rc = mwl8k_post_cmd(hw, &cmd->header); 3801 if (!rc) 3802 *bitmap = cmd->bitmap; 3803 3804 kfree(cmd); 3805 3806 return rc; 3807} 3808 3809#define MWL8K_WMM_QUEUE_NUMBER 3 3810 3811static void mwl8k_destroy_ba(struct ieee80211_hw *hw, 3812 u8 idx); 3813 3814static void mwl8k_watchdog_ba_events(struct work_struct *work) 3815{ 3816 int rc; 3817 u8 bitmap = 0, stream_index; 3818 struct mwl8k_ampdu_stream *streams; 3819 struct mwl8k_priv *priv = 3820 container_of(work, struct mwl8k_priv, watchdog_ba_handle); 3821 struct ieee80211_hw *hw = priv->hw; 3822 int i; 3823 u32 status = 0; 3824 3825 mwl8k_fw_lock(hw); 3826 3827 rc = mwl8k_cmd_get_watchdog_bitmap(priv->hw, &bitmap); 3828 if (rc) 3829 goto done; 3830 3831 spin_lock(&priv->stream_lock); 3832 3833 /* the bitmap is the hw queue number. Map it to the ampdu queue. */ 3834 for (i = 0; i < TOTAL_HW_TX_QUEUES; i++) { 3835 if (bitmap & (1 << i)) { 3836 stream_index = (i + MWL8K_WMM_QUEUE_NUMBER) % 3837 TOTAL_HW_TX_QUEUES; 3838 streams = &priv->ampdu[stream_index]; 3839 if (streams->state == AMPDU_STREAM_ACTIVE) { 3840 ieee80211_stop_tx_ba_session(streams->sta, 3841 streams->tid); 3842 spin_unlock(&priv->stream_lock); 3843 mwl8k_destroy_ba(hw, stream_index); 3844 spin_lock(&priv->stream_lock); 3845 } 3846 } 3847 } 3848 3849 spin_unlock(&priv->stream_lock); 3850done: 3851 atomic_dec(&priv->watchdog_event_pending); 3852 status = ioread32(priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK); 3853 iowrite32((status | MWL8K_A2H_INT_BA_WATCHDOG), 3854 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK); 3855 mwl8k_fw_unlock(hw); 3856 return; 3857} 3858 3859 3860/* 3861 * CMD_BSS_START. 3862 */ 3863struct mwl8k_cmd_bss_start { 3864 struct mwl8k_cmd_pkt header; 3865 __le32 enable; 3866} __packed; 3867 3868static int mwl8k_cmd_bss_start(struct ieee80211_hw *hw, 3869 struct ieee80211_vif *vif, int enable) 3870{ 3871 struct mwl8k_cmd_bss_start *cmd; 3872 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 3873 struct mwl8k_priv *priv = hw->priv; 3874 int rc; 3875 3876 if (enable && (priv->running_bsses & (1 << mwl8k_vif->macid))) 3877 return 0; 3878 3879 if (!enable && !(priv->running_bsses & (1 << mwl8k_vif->macid))) 3880 return 0; 3881 3882 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3883 if (cmd == NULL) 3884 return -ENOMEM; 3885 3886 cmd->header.code = cpu_to_le16(MWL8K_CMD_BSS_START); 3887 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3888 cmd->enable = cpu_to_le32(enable); 3889 3890 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 3891 kfree(cmd); 3892 3893 if (!rc) { 3894 if (enable) 3895 priv->running_bsses |= (1 << mwl8k_vif->macid); 3896 else 3897 priv->running_bsses &= ~(1 << mwl8k_vif->macid); 3898 } 3899 return rc; 3900} 3901 3902static void mwl8k_enable_bsses(struct ieee80211_hw *hw, bool enable, u32 bitmap) 3903{ 3904 struct mwl8k_priv *priv = hw->priv; 3905 struct mwl8k_vif *mwl8k_vif, *tmp_vif; 3906 struct ieee80211_vif *vif; 3907 3908 list_for_each_entry_safe(mwl8k_vif, tmp_vif, &priv->vif_list, list) { 3909 vif = mwl8k_vif->vif; 3910 3911 if (!(bitmap & (1 << mwl8k_vif->macid))) 3912 continue; 3913 3914 if (vif->type == NL80211_IFTYPE_AP) 3915 mwl8k_cmd_bss_start(hw, vif, enable); 3916 } 3917} 3918/* 3919 * CMD_BASTREAM. 3920 */ 3921 3922/* 3923 * UPSTREAM is tx direction 3924 */ 3925#define BASTREAM_FLAG_DIRECTION_UPSTREAM 0x00 3926#define BASTREAM_FLAG_IMMEDIATE_TYPE 0x01 3927 3928enum ba_stream_action_type { 3929 MWL8K_BA_CREATE, 3930 MWL8K_BA_UPDATE, 3931 MWL8K_BA_DESTROY, 3932 MWL8K_BA_FLUSH, 3933 MWL8K_BA_CHECK, 3934}; 3935 3936 3937struct mwl8k_create_ba_stream { 3938 __le32 flags; 3939 __le32 idle_thrs; 3940 __le32 bar_thrs; 3941 __le32 window_size; 3942 u8 peer_mac_addr[6]; 3943 u8 dialog_token; 3944 u8 tid; 3945 u8 queue_id; 3946 u8 param_info; 3947 __le32 ba_context; 3948 u8 reset_seq_no_flag; 3949 __le16 curr_seq_no; 3950 u8 sta_src_mac_addr[6]; 3951} __packed; 3952 3953struct mwl8k_destroy_ba_stream { 3954 __le32 flags; 3955 __le32 ba_context; 3956} __packed; 3957 3958struct mwl8k_cmd_bastream { 3959 struct mwl8k_cmd_pkt header; 3960 __le32 action; 3961 union { 3962 struct mwl8k_create_ba_stream create_params; 3963 struct mwl8k_destroy_ba_stream destroy_params; 3964 }; 3965} __packed; 3966 3967static int 3968mwl8k_check_ba(struct ieee80211_hw *hw, struct mwl8k_ampdu_stream *stream, 3969 struct ieee80211_vif *vif) 3970{ 3971 struct mwl8k_cmd_bastream *cmd; 3972 int rc; 3973 3974 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 3975 if (cmd == NULL) 3976 return -ENOMEM; 3977 3978 cmd->header.code = cpu_to_le16(MWL8K_CMD_BASTREAM); 3979 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 3980 3981 cmd->action = cpu_to_le32(MWL8K_BA_CHECK); 3982 3983 cmd->create_params.queue_id = stream->idx; 3984 memcpy(&cmd->create_params.peer_mac_addr[0], stream->sta->addr, 3985 ETH_ALEN); 3986 cmd->create_params.tid = stream->tid; 3987 3988 cmd->create_params.flags = 3989 cpu_to_le32(BASTREAM_FLAG_IMMEDIATE_TYPE) | 3990 cpu_to_le32(BASTREAM_FLAG_DIRECTION_UPSTREAM); 3991 3992 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 3993 3994 kfree(cmd); 3995 3996 return rc; 3997} 3998 3999static int 4000mwl8k_create_ba(struct ieee80211_hw *hw, struct mwl8k_ampdu_stream *stream, 4001 u8 buf_size, struct ieee80211_vif *vif) 4002{ 4003 struct mwl8k_cmd_bastream *cmd; 4004 int rc; 4005 4006 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4007 if (cmd == NULL) 4008 return -ENOMEM; 4009 4010 4011 cmd->header.code = cpu_to_le16(MWL8K_CMD_BASTREAM); 4012 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4013 4014 cmd->action = cpu_to_le32(MWL8K_BA_CREATE); 4015 4016 cmd->create_params.bar_thrs = cpu_to_le32((u32)buf_size); 4017 cmd->create_params.window_size = cpu_to_le32((u32)buf_size); 4018 cmd->create_params.queue_id = stream->idx; 4019 4020 memcpy(cmd->create_params.peer_mac_addr, stream->sta->addr, ETH_ALEN); 4021 cmd->create_params.tid = stream->tid; 4022 cmd->create_params.curr_seq_no = cpu_to_le16(0); 4023 cmd->create_params.reset_seq_no_flag = 1; 4024 4025 cmd->create_params.param_info = 4026 (stream->sta->ht_cap.ampdu_factor & 4027 IEEE80211_HT_AMPDU_PARM_FACTOR) | 4028 ((stream->sta->ht_cap.ampdu_density << 2) & 4029 IEEE80211_HT_AMPDU_PARM_DENSITY); 4030 4031 cmd->create_params.flags = 4032 cpu_to_le32(BASTREAM_FLAG_IMMEDIATE_TYPE | 4033 BASTREAM_FLAG_DIRECTION_UPSTREAM); 4034 4035 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4036 4037 wiphy_debug(hw->wiphy, "Created a BA stream for %pM : tid %d\n", 4038 stream->sta->addr, stream->tid); 4039 kfree(cmd); 4040 4041 return rc; 4042} 4043 4044static void mwl8k_destroy_ba(struct ieee80211_hw *hw, 4045 u8 idx) 4046{ 4047 struct mwl8k_cmd_bastream *cmd; 4048 4049 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4050 if (cmd == NULL) 4051 return; 4052 4053 cmd->header.code = cpu_to_le16(MWL8K_CMD_BASTREAM); 4054 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4055 cmd->action = cpu_to_le32(MWL8K_BA_DESTROY); 4056 4057 cmd->destroy_params.ba_context = cpu_to_le32(idx); 4058 mwl8k_post_cmd(hw, &cmd->header); 4059 4060 wiphy_debug(hw->wiphy, "Deleted BA stream index %d\n", idx); 4061 4062 kfree(cmd); 4063} 4064 4065/* 4066 * CMD_SET_NEW_STN. 4067 */ 4068struct mwl8k_cmd_set_new_stn { 4069 struct mwl8k_cmd_pkt header; 4070 __le16 aid; 4071 __u8 mac_addr[6]; 4072 __le16 stn_id; 4073 __le16 action; 4074 __le16 rsvd; 4075 __le32 legacy_rates; 4076 __u8 ht_rates[4]; 4077 __le16 cap_info; 4078 __le16 ht_capabilities_info; 4079 __u8 mac_ht_param_info; 4080 __u8 rev; 4081 __u8 control_channel; 4082 __u8 add_channel; 4083 __le16 op_mode; 4084 __le16 stbc; 4085 __u8 add_qos_info; 4086 __u8 is_qos_sta; 4087 __le32 fw_sta_ptr; 4088} __packed; 4089 4090#define MWL8K_STA_ACTION_ADD 0 4091#define MWL8K_STA_ACTION_REMOVE 2 4092 4093static int mwl8k_cmd_set_new_stn_add(struct ieee80211_hw *hw, 4094 struct ieee80211_vif *vif, 4095 struct ieee80211_sta *sta) 4096{ 4097 struct mwl8k_cmd_set_new_stn *cmd; 4098 u32 rates; 4099 int rc; 4100 4101 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4102 if (cmd == NULL) 4103 return -ENOMEM; 4104 4105 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_NEW_STN); 4106 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4107 cmd->aid = cpu_to_le16(sta->aid); 4108 memcpy(cmd->mac_addr, sta->addr, ETH_ALEN); 4109 cmd->stn_id = cpu_to_le16(sta->aid); 4110 cmd->action = cpu_to_le16(MWL8K_STA_ACTION_ADD); 4111 if (hw->conf.chandef.chan->band == NL80211_BAND_2GHZ) 4112 rates = sta->supp_rates[NL80211_BAND_2GHZ]; 4113 else 4114 rates = sta->supp_rates[NL80211_BAND_5GHZ] << 5; 4115 cmd->legacy_rates = cpu_to_le32(rates); 4116 if (sta->ht_cap.ht_supported) { 4117 cmd->ht_rates[0] = sta->ht_cap.mcs.rx_mask[0]; 4118 cmd->ht_rates[1] = sta->ht_cap.mcs.rx_mask[1]; 4119 cmd->ht_rates[2] = sta->ht_cap.mcs.rx_mask[2]; 4120 cmd->ht_rates[3] = sta->ht_cap.mcs.rx_mask[3]; 4121 cmd->ht_capabilities_info = cpu_to_le16(sta->ht_cap.cap); 4122 cmd->mac_ht_param_info = (sta->ht_cap.ampdu_factor & 3) | 4123 ((sta->ht_cap.ampdu_density & 7) << 2); 4124 cmd->is_qos_sta = 1; 4125 } 4126 4127 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4128 kfree(cmd); 4129 4130 return rc; 4131} 4132 4133static int mwl8k_cmd_set_new_stn_add_self(struct ieee80211_hw *hw, 4134 struct ieee80211_vif *vif) 4135{ 4136 struct mwl8k_cmd_set_new_stn *cmd; 4137 int rc; 4138 4139 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4140 if (cmd == NULL) 4141 return -ENOMEM; 4142 4143 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_NEW_STN); 4144 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4145 memcpy(cmd->mac_addr, vif->addr, ETH_ALEN); 4146 4147 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4148 kfree(cmd); 4149 4150 return rc; 4151} 4152 4153static int mwl8k_cmd_set_new_stn_del(struct ieee80211_hw *hw, 4154 struct ieee80211_vif *vif, u8 *addr) 4155{ 4156 struct mwl8k_cmd_set_new_stn *cmd; 4157 struct mwl8k_priv *priv = hw->priv; 4158 int rc, i; 4159 u8 idx; 4160 4161 spin_lock(&priv->stream_lock); 4162 /* Destroy any active ampdu streams for this sta */ 4163 for (i = 0; i < MWL8K_NUM_AMPDU_STREAMS; i++) { 4164 struct mwl8k_ampdu_stream *s; 4165 s = &priv->ampdu[i]; 4166 if (s->state != AMPDU_NO_STREAM) { 4167 if (memcmp(s->sta->addr, addr, ETH_ALEN) == 0) { 4168 if (s->state == AMPDU_STREAM_ACTIVE) { 4169 idx = s->idx; 4170 spin_unlock(&priv->stream_lock); 4171 mwl8k_destroy_ba(hw, idx); 4172 spin_lock(&priv->stream_lock); 4173 } else if (s->state == AMPDU_STREAM_NEW) { 4174 mwl8k_remove_stream(hw, s); 4175 } 4176 } 4177 } 4178 } 4179 4180 spin_unlock(&priv->stream_lock); 4181 4182 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4183 if (cmd == NULL) 4184 return -ENOMEM; 4185 4186 cmd->header.code = cpu_to_le16(MWL8K_CMD_SET_NEW_STN); 4187 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4188 memcpy(cmd->mac_addr, addr, ETH_ALEN); 4189 cmd->action = cpu_to_le16(MWL8K_STA_ACTION_REMOVE); 4190 4191 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4192 kfree(cmd); 4193 4194 return rc; 4195} 4196 4197/* 4198 * CMD_UPDATE_ENCRYPTION. 4199 */ 4200 4201#define MAX_ENCR_KEY_LENGTH 16 4202#define MIC_KEY_LENGTH 8 4203 4204struct mwl8k_cmd_update_encryption { 4205 struct mwl8k_cmd_pkt header; 4206 4207 __le32 action; 4208 __le32 reserved; 4209 __u8 mac_addr[6]; 4210 __u8 encr_type; 4211 4212} __packed; 4213 4214struct mwl8k_cmd_set_key { 4215 struct mwl8k_cmd_pkt header; 4216 4217 __le32 action; 4218 __le32 reserved; 4219 __le16 length; 4220 __le16 key_type_id; 4221 __le32 key_info; 4222 __le32 key_id; 4223 __le16 key_len; 4224 __u8 key_material[MAX_ENCR_KEY_LENGTH]; 4225 __u8 tkip_tx_mic_key[MIC_KEY_LENGTH]; 4226 __u8 tkip_rx_mic_key[MIC_KEY_LENGTH]; 4227 __le16 tkip_rsc_low; 4228 __le32 tkip_rsc_high; 4229 __le16 tkip_tsc_low; 4230 __le32 tkip_tsc_high; 4231 __u8 mac_addr[6]; 4232} __packed; 4233 4234enum { 4235 MWL8K_ENCR_ENABLE, 4236 MWL8K_ENCR_SET_KEY, 4237 MWL8K_ENCR_REMOVE_KEY, 4238 MWL8K_ENCR_SET_GROUP_KEY, 4239}; 4240 4241#define MWL8K_UPDATE_ENCRYPTION_TYPE_WEP 0 4242#define MWL8K_UPDATE_ENCRYPTION_TYPE_DISABLE 1 4243#define MWL8K_UPDATE_ENCRYPTION_TYPE_TKIP 4 4244#define MWL8K_UPDATE_ENCRYPTION_TYPE_MIXED 7 4245#define MWL8K_UPDATE_ENCRYPTION_TYPE_AES 8 4246 4247enum { 4248 MWL8K_ALG_WEP, 4249 MWL8K_ALG_TKIP, 4250 MWL8K_ALG_CCMP, 4251}; 4252 4253#define MWL8K_KEY_FLAG_TXGROUPKEY 0x00000004 4254#define MWL8K_KEY_FLAG_PAIRWISE 0x00000008 4255#define MWL8K_KEY_FLAG_TSC_VALID 0x00000040 4256#define MWL8K_KEY_FLAG_WEP_TXKEY 0x01000000 4257#define MWL8K_KEY_FLAG_MICKEY_VALID 0x02000000 4258 4259static int mwl8k_cmd_update_encryption_enable(struct ieee80211_hw *hw, 4260 struct ieee80211_vif *vif, 4261 u8 *addr, 4262 u8 encr_type) 4263{ 4264 struct mwl8k_cmd_update_encryption *cmd; 4265 int rc; 4266 4267 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4268 if (cmd == NULL) 4269 return -ENOMEM; 4270 4271 cmd->header.code = cpu_to_le16(MWL8K_CMD_UPDATE_ENCRYPTION); 4272 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4273 cmd->action = cpu_to_le32(MWL8K_ENCR_ENABLE); 4274 memcpy(cmd->mac_addr, addr, ETH_ALEN); 4275 cmd->encr_type = encr_type; 4276 4277 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4278 kfree(cmd); 4279 4280 return rc; 4281} 4282 4283static int mwl8k_encryption_set_cmd_info(struct mwl8k_cmd_set_key *cmd, 4284 u8 *addr, 4285 struct ieee80211_key_conf *key) 4286{ 4287 cmd->header.code = cpu_to_le16(MWL8K_CMD_UPDATE_ENCRYPTION); 4288 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4289 cmd->length = cpu_to_le16(sizeof(*cmd) - 4290 offsetof(struct mwl8k_cmd_set_key, length)); 4291 cmd->key_id = cpu_to_le32(key->keyidx); 4292 cmd->key_len = cpu_to_le16(key->keylen); 4293 memcpy(cmd->mac_addr, addr, ETH_ALEN); 4294 4295 switch (key->cipher) { 4296 case WLAN_CIPHER_SUITE_WEP40: 4297 case WLAN_CIPHER_SUITE_WEP104: 4298 cmd->key_type_id = cpu_to_le16(MWL8K_ALG_WEP); 4299 if (key->keyidx == 0) 4300 cmd->key_info = cpu_to_le32(MWL8K_KEY_FLAG_WEP_TXKEY); 4301 4302 break; 4303 case WLAN_CIPHER_SUITE_TKIP: 4304 cmd->key_type_id = cpu_to_le16(MWL8K_ALG_TKIP); 4305 cmd->key_info = (key->flags & IEEE80211_KEY_FLAG_PAIRWISE) 4306 ? cpu_to_le32(MWL8K_KEY_FLAG_PAIRWISE) 4307 : cpu_to_le32(MWL8K_KEY_FLAG_TXGROUPKEY); 4308 cmd->key_info |= cpu_to_le32(MWL8K_KEY_FLAG_MICKEY_VALID 4309 | MWL8K_KEY_FLAG_TSC_VALID); 4310 break; 4311 case WLAN_CIPHER_SUITE_CCMP: 4312 cmd->key_type_id = cpu_to_le16(MWL8K_ALG_CCMP); 4313 cmd->key_info = (key->flags & IEEE80211_KEY_FLAG_PAIRWISE) 4314 ? cpu_to_le32(MWL8K_KEY_FLAG_PAIRWISE) 4315 : cpu_to_le32(MWL8K_KEY_FLAG_TXGROUPKEY); 4316 break; 4317 default: 4318 return -ENOTSUPP; 4319 } 4320 4321 return 0; 4322} 4323 4324static int mwl8k_cmd_encryption_set_key(struct ieee80211_hw *hw, 4325 struct ieee80211_vif *vif, 4326 u8 *addr, 4327 struct ieee80211_key_conf *key) 4328{ 4329 struct mwl8k_cmd_set_key *cmd; 4330 int rc; 4331 int keymlen; 4332 u32 action; 4333 u8 idx; 4334 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 4335 4336 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4337 if (cmd == NULL) 4338 return -ENOMEM; 4339 4340 rc = mwl8k_encryption_set_cmd_info(cmd, addr, key); 4341 if (rc < 0) 4342 goto done; 4343 4344 idx = key->keyidx; 4345 4346 if (key->flags & IEEE80211_KEY_FLAG_PAIRWISE) 4347 action = MWL8K_ENCR_SET_KEY; 4348 else 4349 action = MWL8K_ENCR_SET_GROUP_KEY; 4350 4351 switch (key->cipher) { 4352 case WLAN_CIPHER_SUITE_WEP40: 4353 case WLAN_CIPHER_SUITE_WEP104: 4354 if (!mwl8k_vif->wep_key_conf[idx].enabled) { 4355 memcpy(mwl8k_vif->wep_key_conf[idx].key, key, 4356 sizeof(*key) + key->keylen); 4357 mwl8k_vif->wep_key_conf[idx].enabled = 1; 4358 } 4359 4360 keymlen = key->keylen; 4361 action = MWL8K_ENCR_SET_KEY; 4362 break; 4363 case WLAN_CIPHER_SUITE_TKIP: 4364 keymlen = MAX_ENCR_KEY_LENGTH + 2 * MIC_KEY_LENGTH; 4365 break; 4366 case WLAN_CIPHER_SUITE_CCMP: 4367 keymlen = key->keylen; 4368 break; 4369 default: 4370 rc = -ENOTSUPP; 4371 goto done; 4372 } 4373 4374 memcpy(cmd->key_material, key->key, keymlen); 4375 cmd->action = cpu_to_le32(action); 4376 4377 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4378done: 4379 kfree(cmd); 4380 4381 return rc; 4382} 4383 4384static int mwl8k_cmd_encryption_remove_key(struct ieee80211_hw *hw, 4385 struct ieee80211_vif *vif, 4386 u8 *addr, 4387 struct ieee80211_key_conf *key) 4388{ 4389 struct mwl8k_cmd_set_key *cmd; 4390 int rc; 4391 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 4392 4393 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4394 if (cmd == NULL) 4395 return -ENOMEM; 4396 4397 rc = mwl8k_encryption_set_cmd_info(cmd, addr, key); 4398 if (rc < 0) 4399 goto done; 4400 4401 if (key->cipher == WLAN_CIPHER_SUITE_WEP40 || 4402 key->cipher == WLAN_CIPHER_SUITE_WEP104) 4403 mwl8k_vif->wep_key_conf[key->keyidx].enabled = 0; 4404 4405 cmd->action = cpu_to_le32(MWL8K_ENCR_REMOVE_KEY); 4406 4407 rc = mwl8k_post_pervif_cmd(hw, vif, &cmd->header); 4408done: 4409 kfree(cmd); 4410 4411 return rc; 4412} 4413 4414static int mwl8k_set_key(struct ieee80211_hw *hw, 4415 enum set_key_cmd cmd_param, 4416 struct ieee80211_vif *vif, 4417 struct ieee80211_sta *sta, 4418 struct ieee80211_key_conf *key) 4419{ 4420 int rc = 0; 4421 u8 encr_type; 4422 u8 *addr; 4423 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 4424 struct mwl8k_priv *priv = hw->priv; 4425 4426 if (vif->type == NL80211_IFTYPE_STATION && !priv->ap_fw) 4427 return -EOPNOTSUPP; 4428 4429 if (sta == NULL) 4430 addr = vif->addr; 4431 else 4432 addr = sta->addr; 4433 4434 if (cmd_param == SET_KEY) { 4435 rc = mwl8k_cmd_encryption_set_key(hw, vif, addr, key); 4436 if (rc) 4437 goto out; 4438 4439 if ((key->cipher == WLAN_CIPHER_SUITE_WEP40) 4440 || (key->cipher == WLAN_CIPHER_SUITE_WEP104)) 4441 encr_type = MWL8K_UPDATE_ENCRYPTION_TYPE_WEP; 4442 else 4443 encr_type = MWL8K_UPDATE_ENCRYPTION_TYPE_MIXED; 4444 4445 rc = mwl8k_cmd_update_encryption_enable(hw, vif, addr, 4446 encr_type); 4447 if (rc) 4448 goto out; 4449 4450 mwl8k_vif->is_hw_crypto_enabled = true; 4451 4452 } else { 4453 rc = mwl8k_cmd_encryption_remove_key(hw, vif, addr, key); 4454 4455 if (rc) 4456 goto out; 4457 } 4458out: 4459 return rc; 4460} 4461 4462/* 4463 * CMD_UPDATE_STADB. 4464 */ 4465struct ewc_ht_info { 4466 __le16 control1; 4467 __le16 control2; 4468 __le16 control3; 4469} __packed; 4470 4471struct peer_capability_info { 4472 /* Peer type - AP vs. STA. */ 4473 __u8 peer_type; 4474 4475 /* Basic 802.11 capabilities from assoc resp. */ 4476 __le16 basic_caps; 4477 4478 /* Set if peer supports 802.11n high throughput (HT). */ 4479 __u8 ht_support; 4480 4481 /* Valid if HT is supported. */ 4482 __le16 ht_caps; 4483 __u8 extended_ht_caps; 4484 struct ewc_ht_info ewc_info; 4485 4486 /* Legacy rate table. Intersection of our rates and peer rates. */ 4487 __u8 legacy_rates[12]; 4488 4489 /* HT rate table. Intersection of our rates and peer rates. */ 4490 __u8 ht_rates[16]; 4491 __u8 pad[16]; 4492 4493 /* If set, interoperability mode, no proprietary extensions. */ 4494 __u8 interop; 4495 __u8 pad2; 4496 __u8 station_id; 4497 __le16 amsdu_enabled; 4498} __packed; 4499 4500struct mwl8k_cmd_update_stadb { 4501 struct mwl8k_cmd_pkt header; 4502 4503 /* See STADB_ACTION_TYPE */ 4504 __le32 action; 4505 4506 /* Peer MAC address */ 4507 __u8 peer_addr[ETH_ALEN]; 4508 4509 __le32 reserved; 4510 4511 /* Peer info - valid during add/update. */ 4512 struct peer_capability_info peer_info; 4513} __packed; 4514 4515#define MWL8K_STA_DB_MODIFY_ENTRY 1 4516#define MWL8K_STA_DB_DEL_ENTRY 2 4517 4518/* Peer Entry flags - used to define the type of the peer node */ 4519#define MWL8K_PEER_TYPE_ACCESSPOINT 2 4520 4521static int mwl8k_cmd_update_stadb_add(struct ieee80211_hw *hw, 4522 struct ieee80211_vif *vif, 4523 struct ieee80211_sta *sta) 4524{ 4525 struct mwl8k_cmd_update_stadb *cmd; 4526 struct peer_capability_info *p; 4527 u32 rates; 4528 int rc; 4529 4530 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4531 if (cmd == NULL) 4532 return -ENOMEM; 4533 4534 cmd->header.code = cpu_to_le16(MWL8K_CMD_UPDATE_STADB); 4535 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4536 cmd->action = cpu_to_le32(MWL8K_STA_DB_MODIFY_ENTRY); 4537 memcpy(cmd->peer_addr, sta->addr, ETH_ALEN); 4538 4539 p = &cmd->peer_info; 4540 p->peer_type = MWL8K_PEER_TYPE_ACCESSPOINT; 4541 p->basic_caps = cpu_to_le16(vif->bss_conf.assoc_capability); 4542 p->ht_support = sta->ht_cap.ht_supported; 4543 p->ht_caps = cpu_to_le16(sta->ht_cap.cap); 4544 p->extended_ht_caps = (sta->ht_cap.ampdu_factor & 3) | 4545 ((sta->ht_cap.ampdu_density & 7) << 2); 4546 if (hw->conf.chandef.chan->band == NL80211_BAND_2GHZ) 4547 rates = sta->supp_rates[NL80211_BAND_2GHZ]; 4548 else 4549 rates = sta->supp_rates[NL80211_BAND_5GHZ] << 5; 4550 legacy_rate_mask_to_array(p->legacy_rates, rates); 4551 memcpy(p->ht_rates, sta->ht_cap.mcs.rx_mask, 16); 4552 p->interop = 1; 4553 p->amsdu_enabled = 0; 4554 4555 rc = mwl8k_post_cmd(hw, &cmd->header); 4556 if (!rc) 4557 rc = p->station_id; 4558 kfree(cmd); 4559 4560 return rc; 4561} 4562 4563static int mwl8k_cmd_update_stadb_del(struct ieee80211_hw *hw, 4564 struct ieee80211_vif *vif, u8 *addr) 4565{ 4566 struct mwl8k_cmd_update_stadb *cmd; 4567 int rc; 4568 4569 cmd = kzalloc(sizeof(*cmd), GFP_KERNEL); 4570 if (cmd == NULL) 4571 return -ENOMEM; 4572 4573 cmd->header.code = cpu_to_le16(MWL8K_CMD_UPDATE_STADB); 4574 cmd->header.length = cpu_to_le16(sizeof(*cmd)); 4575 cmd->action = cpu_to_le32(MWL8K_STA_DB_DEL_ENTRY); 4576 memcpy(cmd->peer_addr, addr, ETH_ALEN); 4577 4578 rc = mwl8k_post_cmd(hw, &cmd->header); 4579 kfree(cmd); 4580 4581 return rc; 4582} 4583 4584 4585/* 4586 * Interrupt handling. 4587 */ 4588static irqreturn_t mwl8k_interrupt(int irq, void *dev_id) 4589{ 4590 struct ieee80211_hw *hw = dev_id; 4591 struct mwl8k_priv *priv = hw->priv; 4592 u32 status; 4593 4594 status = ioread32(priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 4595 if (!status) 4596 return IRQ_NONE; 4597 4598 if (status & MWL8K_A2H_INT_TX_DONE) { 4599 status &= ~MWL8K_A2H_INT_TX_DONE; 4600 tasklet_schedule(&priv->poll_tx_task); 4601 } 4602 4603 if (status & MWL8K_A2H_INT_RX_READY) { 4604 status &= ~MWL8K_A2H_INT_RX_READY; 4605 tasklet_schedule(&priv->poll_rx_task); 4606 } 4607 4608 if (status & MWL8K_A2H_INT_BA_WATCHDOG) { 4609 iowrite32(~MWL8K_A2H_INT_BA_WATCHDOG, 4610 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK); 4611 4612 atomic_inc(&priv->watchdog_event_pending); 4613 status &= ~MWL8K_A2H_INT_BA_WATCHDOG; 4614 ieee80211_queue_work(hw, &priv->watchdog_ba_handle); 4615 } 4616 4617 if (status) 4618 iowrite32(~status, priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 4619 4620 if (status & MWL8K_A2H_INT_OPC_DONE) { 4621 if (priv->hostcmd_wait != NULL) 4622 complete(priv->hostcmd_wait); 4623 } 4624 4625 if (status & MWL8K_A2H_INT_QUEUE_EMPTY) { 4626 if (!mutex_is_locked(&priv->fw_mutex) && 4627 priv->radio_on && priv->pending_tx_pkts) 4628 mwl8k_tx_start(priv); 4629 } 4630 4631 return IRQ_HANDLED; 4632} 4633 4634static void mwl8k_tx_poll(struct tasklet_struct *t) 4635{ 4636 struct mwl8k_priv *priv = from_tasklet(priv, t, poll_tx_task); 4637 struct ieee80211_hw *hw = pci_get_drvdata(priv->pdev); 4638 int limit; 4639 int i; 4640 4641 limit = 32; 4642 4643 spin_lock(&priv->tx_lock); 4644 4645 for (i = 0; i < mwl8k_tx_queues(priv); i++) 4646 limit -= mwl8k_txq_reclaim(hw, i, limit, 0); 4647 4648 if (!priv->pending_tx_pkts && priv->tx_wait != NULL) { 4649 complete(priv->tx_wait); 4650 priv->tx_wait = NULL; 4651 } 4652 4653 spin_unlock(&priv->tx_lock); 4654 4655 if (limit) { 4656 writel(~MWL8K_A2H_INT_TX_DONE, 4657 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 4658 } else { 4659 tasklet_schedule(&priv->poll_tx_task); 4660 } 4661} 4662 4663static void mwl8k_rx_poll(struct tasklet_struct *t) 4664{ 4665 struct mwl8k_priv *priv = from_tasklet(priv, t, poll_rx_task); 4666 struct ieee80211_hw *hw = pci_get_drvdata(priv->pdev); 4667 int limit; 4668 4669 limit = 32; 4670 limit -= rxq_process(hw, 0, limit); 4671 limit -= rxq_refill(hw, 0, limit); 4672 4673 if (limit) { 4674 writel(~MWL8K_A2H_INT_RX_READY, 4675 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 4676 } else { 4677 tasklet_schedule(&priv->poll_rx_task); 4678 } 4679} 4680 4681 4682/* 4683 * Core driver operations. 4684 */ 4685static void mwl8k_tx(struct ieee80211_hw *hw, 4686 struct ieee80211_tx_control *control, 4687 struct sk_buff *skb) 4688{ 4689 struct mwl8k_priv *priv = hw->priv; 4690 int index = skb_get_queue_mapping(skb); 4691 4692 if (!priv->radio_on) { 4693 wiphy_debug(hw->wiphy, 4694 "dropped TX frame since radio disabled\n"); 4695 dev_kfree_skb(skb); 4696 return; 4697 } 4698 4699 mwl8k_txq_xmit(hw, index, control->sta, skb); 4700} 4701 4702static int mwl8k_start(struct ieee80211_hw *hw) 4703{ 4704 struct mwl8k_priv *priv = hw->priv; 4705 int rc; 4706 4707 rc = request_irq(priv->pdev->irq, mwl8k_interrupt, 4708 IRQF_SHARED, MWL8K_NAME, hw); 4709 if (rc) { 4710 priv->irq = -1; 4711 wiphy_err(hw->wiphy, "failed to register IRQ handler\n"); 4712 return -EIO; 4713 } 4714 priv->irq = priv->pdev->irq; 4715 4716 /* Enable TX reclaim and RX tasklets. */ 4717 tasklet_enable(&priv->poll_tx_task); 4718 tasklet_enable(&priv->poll_rx_task); 4719 4720 /* Enable interrupts */ 4721 iowrite32(MWL8K_A2H_EVENTS, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 4722 iowrite32(MWL8K_A2H_EVENTS, 4723 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK); 4724 4725 rc = mwl8k_fw_lock(hw); 4726 if (!rc) { 4727 rc = mwl8k_cmd_radio_enable(hw); 4728 4729 if (!priv->ap_fw) { 4730 if (!rc) 4731 rc = mwl8k_cmd_enable_sniffer(hw, 0); 4732 4733 if (!rc) 4734 rc = mwl8k_cmd_set_pre_scan(hw); 4735 4736 if (!rc) 4737 rc = mwl8k_cmd_set_post_scan(hw, 4738 "\x00\x00\x00\x00\x00\x00"); 4739 } 4740 4741 if (!rc) 4742 rc = mwl8k_cmd_set_rateadapt_mode(hw, 0); 4743 4744 if (!rc) 4745 rc = mwl8k_cmd_set_wmm_mode(hw, 0); 4746 4747 mwl8k_fw_unlock(hw); 4748 } 4749 4750 if (rc) { 4751 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 4752 free_irq(priv->pdev->irq, hw); 4753 priv->irq = -1; 4754 tasklet_disable(&priv->poll_tx_task); 4755 tasklet_disable(&priv->poll_rx_task); 4756 } else { 4757 ieee80211_wake_queues(hw); 4758 } 4759 4760 return rc; 4761} 4762 4763static void mwl8k_stop(struct ieee80211_hw *hw) 4764{ 4765 struct mwl8k_priv *priv = hw->priv; 4766 int i; 4767 4768 if (!priv->hw_restart_in_progress) 4769 mwl8k_cmd_radio_disable(hw); 4770 4771 ieee80211_stop_queues(hw); 4772 4773 /* Disable interrupts */ 4774 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 4775 if (priv->irq != -1) { 4776 free_irq(priv->pdev->irq, hw); 4777 priv->irq = -1; 4778 } 4779 4780 /* Stop finalize join worker */ 4781 cancel_work_sync(&priv->finalize_join_worker); 4782 cancel_work_sync(&priv->watchdog_ba_handle); 4783 if (priv->beacon_skb != NULL) 4784 dev_kfree_skb(priv->beacon_skb); 4785 4786 /* Stop TX reclaim and RX tasklets. */ 4787 tasklet_disable(&priv->poll_tx_task); 4788 tasklet_disable(&priv->poll_rx_task); 4789 4790 /* Return all skbs to mac80211 */ 4791 for (i = 0; i < mwl8k_tx_queues(priv); i++) 4792 mwl8k_txq_reclaim(hw, i, INT_MAX, 1); 4793} 4794 4795static int mwl8k_reload_firmware(struct ieee80211_hw *hw, char *fw_image); 4796 4797static int mwl8k_add_interface(struct ieee80211_hw *hw, 4798 struct ieee80211_vif *vif) 4799{ 4800 struct mwl8k_priv *priv = hw->priv; 4801 struct mwl8k_vif *mwl8k_vif; 4802 u32 macids_supported; 4803 int macid, rc; 4804 struct mwl8k_device_info *di; 4805 4806 /* 4807 * Reject interface creation if sniffer mode is active, as 4808 * STA operation is mutually exclusive with hardware sniffer 4809 * mode. (Sniffer mode is only used on STA firmware.) 4810 */ 4811 if (priv->sniffer_enabled) { 4812 wiphy_info(hw->wiphy, 4813 "unable to create STA interface because sniffer mode is enabled\n"); 4814 return -EINVAL; 4815 } 4816 4817 di = priv->device_info; 4818 switch (vif->type) { 4819 case NL80211_IFTYPE_AP: 4820 if (!priv->ap_fw && di->fw_image_ap) { 4821 /* we must load the ap fw to meet this request */ 4822 if (!list_empty(&priv->vif_list)) 4823 return -EBUSY; 4824 rc = mwl8k_reload_firmware(hw, di->fw_image_ap); 4825 if (rc) 4826 return rc; 4827 } 4828 macids_supported = priv->ap_macids_supported; 4829 break; 4830 case NL80211_IFTYPE_STATION: 4831 if (priv->ap_fw && di->fw_image_sta) { 4832 if (!list_empty(&priv->vif_list)) { 4833 wiphy_warn(hw->wiphy, "AP interface is running.\n" 4834 "Adding STA interface for WDS"); 4835 } else { 4836 /* we must load the sta fw to 4837 * meet this request. 4838 */ 4839 rc = mwl8k_reload_firmware(hw, 4840 di->fw_image_sta); 4841 if (rc) 4842 return rc; 4843 } 4844 } 4845 macids_supported = priv->sta_macids_supported; 4846 break; 4847 default: 4848 return -EINVAL; 4849 } 4850 4851 macid = ffs(macids_supported & ~priv->macids_used); 4852 if (!macid--) 4853 return -EBUSY; 4854 4855 /* Setup driver private area. */ 4856 mwl8k_vif = MWL8K_VIF(vif); 4857 memset(mwl8k_vif, 0, sizeof(*mwl8k_vif)); 4858 mwl8k_vif->vif = vif; 4859 mwl8k_vif->macid = macid; 4860 mwl8k_vif->seqno = 0; 4861 memcpy(mwl8k_vif->bssid, vif->addr, ETH_ALEN); 4862 mwl8k_vif->is_hw_crypto_enabled = false; 4863 4864 /* Set the mac address. */ 4865 mwl8k_cmd_set_mac_addr(hw, vif, vif->addr); 4866 4867 if (vif->type == NL80211_IFTYPE_AP) 4868 mwl8k_cmd_set_new_stn_add_self(hw, vif); 4869 4870 priv->macids_used |= 1 << mwl8k_vif->macid; 4871 list_add_tail(&mwl8k_vif->list, &priv->vif_list); 4872 4873 return 0; 4874} 4875 4876static void mwl8k_remove_vif(struct mwl8k_priv *priv, struct mwl8k_vif *vif) 4877{ 4878 /* Has ieee80211_restart_hw re-added the removed interfaces? */ 4879 if (!priv->macids_used) 4880 return; 4881 4882 priv->macids_used &= ~(1 << vif->macid); 4883 list_del(&vif->list); 4884} 4885 4886static void mwl8k_remove_interface(struct ieee80211_hw *hw, 4887 struct ieee80211_vif *vif) 4888{ 4889 struct mwl8k_priv *priv = hw->priv; 4890 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 4891 4892 if (vif->type == NL80211_IFTYPE_AP) 4893 mwl8k_cmd_set_new_stn_del(hw, vif, vif->addr); 4894 4895 mwl8k_cmd_del_mac_addr(hw, vif, vif->addr); 4896 4897 mwl8k_remove_vif(priv, mwl8k_vif); 4898} 4899 4900static void mwl8k_hw_restart_work(struct work_struct *work) 4901{ 4902 struct mwl8k_priv *priv = 4903 container_of(work, struct mwl8k_priv, fw_reload); 4904 struct ieee80211_hw *hw = priv->hw; 4905 struct mwl8k_device_info *di; 4906 int rc; 4907 4908 /* If some command is waiting for a response, clear it */ 4909 if (priv->hostcmd_wait != NULL) { 4910 complete(priv->hostcmd_wait); 4911 priv->hostcmd_wait = NULL; 4912 } 4913 4914 priv->hw_restart_owner = current; 4915 di = priv->device_info; 4916 mwl8k_fw_lock(hw); 4917 4918 if (priv->ap_fw) 4919 rc = mwl8k_reload_firmware(hw, di->fw_image_ap); 4920 else 4921 rc = mwl8k_reload_firmware(hw, di->fw_image_sta); 4922 4923 if (rc) 4924 goto fail; 4925 4926 priv->hw_restart_owner = NULL; 4927 priv->hw_restart_in_progress = false; 4928 4929 /* 4930 * This unlock will wake up the queues and 4931 * also opens the command path for other 4932 * commands 4933 */ 4934 mwl8k_fw_unlock(hw); 4935 4936 ieee80211_restart_hw(hw); 4937 4938 wiphy_err(hw->wiphy, "Firmware restarted successfully\n"); 4939 4940 return; 4941fail: 4942 mwl8k_fw_unlock(hw); 4943 4944 wiphy_err(hw->wiphy, "Firmware restart failed\n"); 4945} 4946 4947static int mwl8k_config(struct ieee80211_hw *hw, u32 changed) 4948{ 4949 struct ieee80211_conf *conf = &hw->conf; 4950 struct mwl8k_priv *priv = hw->priv; 4951 int rc; 4952 4953 rc = mwl8k_fw_lock(hw); 4954 if (rc) 4955 return rc; 4956 4957 if (conf->flags & IEEE80211_CONF_IDLE) 4958 rc = mwl8k_cmd_radio_disable(hw); 4959 else 4960 rc = mwl8k_cmd_radio_enable(hw); 4961 if (rc) 4962 goto out; 4963 4964 if (changed & IEEE80211_CONF_CHANGE_CHANNEL) { 4965 rc = mwl8k_cmd_set_rf_channel(hw, conf); 4966 if (rc) 4967 goto out; 4968 } 4969 4970 if (conf->power_level > 18) 4971 conf->power_level = 18; 4972 4973 if (priv->ap_fw) { 4974 4975 if (conf->flags & IEEE80211_CONF_CHANGE_POWER) { 4976 rc = mwl8k_cmd_tx_power(hw, conf, conf->power_level); 4977 if (rc) 4978 goto out; 4979 } 4980 4981 4982 } else { 4983 rc = mwl8k_cmd_rf_tx_power(hw, conf->power_level); 4984 if (rc) 4985 goto out; 4986 rc = mwl8k_cmd_mimo_config(hw, 0x7, 0x7); 4987 } 4988 4989out: 4990 mwl8k_fw_unlock(hw); 4991 4992 return rc; 4993} 4994 4995static void 4996mwl8k_bss_info_changed_sta(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 4997 struct ieee80211_bss_conf *info, u32 changed) 4998{ 4999 struct mwl8k_priv *priv = hw->priv; 5000 u32 ap_legacy_rates = 0; 5001 u8 ap_mcs_rates[16]; 5002 int rc; 5003 5004 if (mwl8k_fw_lock(hw)) 5005 return; 5006 5007 /* 5008 * No need to capture a beacon if we're no longer associated. 5009 */ 5010 if ((changed & BSS_CHANGED_ASSOC) && !vif->bss_conf.assoc) 5011 priv->capture_beacon = false; 5012 5013 /* 5014 * Get the AP's legacy and MCS rates. 5015 */ 5016 if (vif->bss_conf.assoc) { 5017 struct ieee80211_sta *ap; 5018 5019 rcu_read_lock(); 5020 5021 ap = ieee80211_find_sta(vif, vif->bss_conf.bssid); 5022 if (ap == NULL) { 5023 rcu_read_unlock(); 5024 goto out; 5025 } 5026 5027 if (hw->conf.chandef.chan->band == NL80211_BAND_2GHZ) { 5028 ap_legacy_rates = ap->supp_rates[NL80211_BAND_2GHZ]; 5029 } else { 5030 ap_legacy_rates = 5031 ap->supp_rates[NL80211_BAND_5GHZ] << 5; 5032 } 5033 memcpy(ap_mcs_rates, ap->ht_cap.mcs.rx_mask, 16); 5034 5035 rcu_read_unlock(); 5036 5037 if (changed & BSS_CHANGED_ASSOC) { 5038 if (!priv->ap_fw) { 5039 rc = mwl8k_cmd_set_rate(hw, vif, 5040 ap_legacy_rates, 5041 ap_mcs_rates); 5042 if (rc) 5043 goto out; 5044 5045 rc = mwl8k_cmd_use_fixed_rate_sta(hw); 5046 if (rc) 5047 goto out; 5048 } else { 5049 int idx; 5050 int rate; 5051 5052 /* Use AP firmware specific rate command. 5053 */ 5054 idx = ffs(vif->bss_conf.basic_rates); 5055 if (idx) 5056 idx--; 5057 5058 if (hw->conf.chandef.chan->band == 5059 NL80211_BAND_2GHZ) 5060 rate = mwl8k_rates_24[idx].hw_value; 5061 else 5062 rate = mwl8k_rates_50[idx].hw_value; 5063 5064 mwl8k_cmd_use_fixed_rate_ap(hw, rate, rate); 5065 } 5066 } 5067 } 5068 5069 if (changed & BSS_CHANGED_ERP_PREAMBLE) { 5070 rc = mwl8k_set_radio_preamble(hw, 5071 vif->bss_conf.use_short_preamble); 5072 if (rc) 5073 goto out; 5074 } 5075 5076 if ((changed & BSS_CHANGED_ERP_SLOT) && !priv->ap_fw) { 5077 rc = mwl8k_cmd_set_slot(hw, vif->bss_conf.use_short_slot); 5078 if (rc) 5079 goto out; 5080 } 5081 5082 if (vif->bss_conf.assoc && !priv->ap_fw && 5083 (changed & (BSS_CHANGED_ASSOC | BSS_CHANGED_ERP_CTS_PROT | 5084 BSS_CHANGED_HT))) { 5085 rc = mwl8k_cmd_set_aid(hw, vif, ap_legacy_rates); 5086 if (rc) 5087 goto out; 5088 } 5089 5090 if (vif->bss_conf.assoc && 5091 (changed & (BSS_CHANGED_ASSOC | BSS_CHANGED_BEACON_INT))) { 5092 /* 5093 * Finalize the join. Tell rx handler to process 5094 * next beacon from our BSSID. 5095 */ 5096 memcpy(priv->capture_bssid, vif->bss_conf.bssid, ETH_ALEN); 5097 priv->capture_beacon = true; 5098 } 5099 5100out: 5101 mwl8k_fw_unlock(hw); 5102} 5103 5104static void 5105mwl8k_bss_info_changed_ap(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 5106 struct ieee80211_bss_conf *info, u32 changed) 5107{ 5108 int rc; 5109 5110 if (mwl8k_fw_lock(hw)) 5111 return; 5112 5113 if (changed & BSS_CHANGED_ERP_PREAMBLE) { 5114 rc = mwl8k_set_radio_preamble(hw, 5115 vif->bss_conf.use_short_preamble); 5116 if (rc) 5117 goto out; 5118 } 5119 5120 if (changed & BSS_CHANGED_BASIC_RATES) { 5121 int idx; 5122 int rate; 5123 5124 /* 5125 * Use lowest supported basic rate for multicasts 5126 * and management frames (such as probe responses -- 5127 * beacons will always go out at 1 Mb/s). 5128 */ 5129 idx = ffs(vif->bss_conf.basic_rates); 5130 if (idx) 5131 idx--; 5132 5133 if (hw->conf.chandef.chan->band == NL80211_BAND_2GHZ) 5134 rate = mwl8k_rates_24[idx].hw_value; 5135 else 5136 rate = mwl8k_rates_50[idx].hw_value; 5137 5138 mwl8k_cmd_use_fixed_rate_ap(hw, rate, rate); 5139 } 5140 5141 if (changed & (BSS_CHANGED_BEACON_INT | BSS_CHANGED_BEACON)) { 5142 struct sk_buff *skb; 5143 5144 skb = ieee80211_beacon_get(hw, vif); 5145 if (skb != NULL) { 5146 mwl8k_cmd_set_beacon(hw, vif, skb->data, skb->len); 5147 kfree_skb(skb); 5148 } 5149 } 5150 5151 if (changed & BSS_CHANGED_BEACON_ENABLED) 5152 mwl8k_cmd_bss_start(hw, vif, info->enable_beacon); 5153 5154out: 5155 mwl8k_fw_unlock(hw); 5156} 5157 5158static void 5159mwl8k_bss_info_changed(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 5160 struct ieee80211_bss_conf *info, u32 changed) 5161{ 5162 if (vif->type == NL80211_IFTYPE_STATION) 5163 mwl8k_bss_info_changed_sta(hw, vif, info, changed); 5164 if (vif->type == NL80211_IFTYPE_AP) 5165 mwl8k_bss_info_changed_ap(hw, vif, info, changed); 5166} 5167 5168static u64 mwl8k_prepare_multicast(struct ieee80211_hw *hw, 5169 struct netdev_hw_addr_list *mc_list) 5170{ 5171 struct mwl8k_cmd_pkt *cmd; 5172 5173 /* 5174 * Synthesize and return a command packet that programs the 5175 * hardware multicast address filter. At this point we don't 5176 * know whether FIF_ALLMULTI is being requested, but if it is, 5177 * we'll end up throwing this packet away and creating a new 5178 * one in mwl8k_configure_filter(). 5179 */ 5180 cmd = __mwl8k_cmd_mac_multicast_adr(hw, 0, mc_list); 5181 5182 return (unsigned long)cmd; 5183} 5184 5185static int 5186mwl8k_configure_filter_sniffer(struct ieee80211_hw *hw, 5187 unsigned int changed_flags, 5188 unsigned int *total_flags) 5189{ 5190 struct mwl8k_priv *priv = hw->priv; 5191 5192 /* 5193 * Hardware sniffer mode is mutually exclusive with STA 5194 * operation, so refuse to enable sniffer mode if a STA 5195 * interface is active. 5196 */ 5197 if (!list_empty(&priv->vif_list)) { 5198 if (net_ratelimit()) 5199 wiphy_info(hw->wiphy, 5200 "not enabling sniffer mode because STA interface is active\n"); 5201 return 0; 5202 } 5203 5204 if (!priv->sniffer_enabled) { 5205 if (mwl8k_cmd_enable_sniffer(hw, 1)) 5206 return 0; 5207 priv->sniffer_enabled = true; 5208 } 5209 5210 *total_flags &= FIF_ALLMULTI | 5211 FIF_BCN_PRBRESP_PROMISC | FIF_CONTROL | 5212 FIF_OTHER_BSS; 5213 5214 return 1; 5215} 5216 5217static struct mwl8k_vif *mwl8k_first_vif(struct mwl8k_priv *priv) 5218{ 5219 if (!list_empty(&priv->vif_list)) 5220 return list_entry(priv->vif_list.next, struct mwl8k_vif, list); 5221 5222 return NULL; 5223} 5224 5225static void mwl8k_configure_filter(struct ieee80211_hw *hw, 5226 unsigned int changed_flags, 5227 unsigned int *total_flags, 5228 u64 multicast) 5229{ 5230 struct mwl8k_priv *priv = hw->priv; 5231 struct mwl8k_cmd_pkt *cmd = (void *)(unsigned long)multicast; 5232 5233 /* 5234 * AP firmware doesn't allow fine-grained control over 5235 * the receive filter. 5236 */ 5237 if (priv->ap_fw) { 5238 *total_flags &= FIF_ALLMULTI | FIF_BCN_PRBRESP_PROMISC; 5239 kfree(cmd); 5240 return; 5241 } 5242 5243 /* 5244 * Enable hardware sniffer mode if FIF_CONTROL or 5245 * FIF_OTHER_BSS is requested. 5246 */ 5247 if (*total_flags & (FIF_CONTROL | FIF_OTHER_BSS) && 5248 mwl8k_configure_filter_sniffer(hw, changed_flags, total_flags)) { 5249 kfree(cmd); 5250 return; 5251 } 5252 5253 /* Clear unsupported feature flags */ 5254 *total_flags &= FIF_ALLMULTI | FIF_BCN_PRBRESP_PROMISC; 5255 5256 if (mwl8k_fw_lock(hw)) { 5257 kfree(cmd); 5258 return; 5259 } 5260 5261 if (priv->sniffer_enabled) { 5262 mwl8k_cmd_enable_sniffer(hw, 0); 5263 priv->sniffer_enabled = false; 5264 } 5265 5266 if (changed_flags & FIF_BCN_PRBRESP_PROMISC) { 5267 if (*total_flags & FIF_BCN_PRBRESP_PROMISC) { 5268 /* 5269 * Disable the BSS filter. 5270 */ 5271 mwl8k_cmd_set_pre_scan(hw); 5272 } else { 5273 struct mwl8k_vif *mwl8k_vif; 5274 const u8 *bssid; 5275 5276 /* 5277 * Enable the BSS filter. 5278 * 5279 * If there is an active STA interface, use that 5280 * interface's BSSID, otherwise use a dummy one 5281 * (where the OUI part needs to be nonzero for 5282 * the BSSID to be accepted by POST_SCAN). 5283 */ 5284 mwl8k_vif = mwl8k_first_vif(priv); 5285 if (mwl8k_vif != NULL) 5286 bssid = mwl8k_vif->vif->bss_conf.bssid; 5287 else 5288 bssid = "\x01\x00\x00\x00\x00\x00"; 5289 5290 mwl8k_cmd_set_post_scan(hw, bssid); 5291 } 5292 } 5293 5294 /* 5295 * If FIF_ALLMULTI is being requested, throw away the command 5296 * packet that ->prepare_multicast() built and replace it with 5297 * a command packet that enables reception of all multicast 5298 * packets. 5299 */ 5300 if (*total_flags & FIF_ALLMULTI) { 5301 kfree(cmd); 5302 cmd = __mwl8k_cmd_mac_multicast_adr(hw, 1, NULL); 5303 } 5304 5305 if (cmd != NULL) { 5306 mwl8k_post_cmd(hw, cmd); 5307 kfree(cmd); 5308 } 5309 5310 mwl8k_fw_unlock(hw); 5311} 5312 5313static int mwl8k_set_rts_threshold(struct ieee80211_hw *hw, u32 value) 5314{ 5315 return mwl8k_cmd_set_rts_threshold(hw, value); 5316} 5317 5318static int mwl8k_sta_remove(struct ieee80211_hw *hw, 5319 struct ieee80211_vif *vif, 5320 struct ieee80211_sta *sta) 5321{ 5322 struct mwl8k_priv *priv = hw->priv; 5323 5324 if (priv->ap_fw) 5325 return mwl8k_cmd_set_new_stn_del(hw, vif, sta->addr); 5326 else 5327 return mwl8k_cmd_update_stadb_del(hw, vif, sta->addr); 5328} 5329 5330static int mwl8k_sta_add(struct ieee80211_hw *hw, 5331 struct ieee80211_vif *vif, 5332 struct ieee80211_sta *sta) 5333{ 5334 struct mwl8k_priv *priv = hw->priv; 5335 int ret; 5336 int i; 5337 struct mwl8k_vif *mwl8k_vif = MWL8K_VIF(vif); 5338 struct ieee80211_key_conf *key; 5339 5340 if (!priv->ap_fw) { 5341 ret = mwl8k_cmd_update_stadb_add(hw, vif, sta); 5342 if (ret >= 0) { 5343 MWL8K_STA(sta)->peer_id = ret; 5344 if (sta->ht_cap.ht_supported) 5345 MWL8K_STA(sta)->is_ampdu_allowed = true; 5346 ret = 0; 5347 } 5348 5349 } else { 5350 ret = mwl8k_cmd_set_new_stn_add(hw, vif, sta); 5351 } 5352 5353 for (i = 0; i < NUM_WEP_KEYS; i++) { 5354 key = IEEE80211_KEY_CONF(mwl8k_vif->wep_key_conf[i].key); 5355 if (mwl8k_vif->wep_key_conf[i].enabled) 5356 mwl8k_set_key(hw, SET_KEY, vif, sta, key); 5357 } 5358 return ret; 5359} 5360 5361static int mwl8k_conf_tx(struct ieee80211_hw *hw, 5362 struct ieee80211_vif *vif, u16 queue, 5363 const struct ieee80211_tx_queue_params *params) 5364{ 5365 struct mwl8k_priv *priv = hw->priv; 5366 int rc; 5367 5368 rc = mwl8k_fw_lock(hw); 5369 if (!rc) { 5370 BUG_ON(queue > MWL8K_TX_WMM_QUEUES - 1); 5371 memcpy(&priv->wmm_params[queue], params, sizeof(*params)); 5372 5373 if (!priv->wmm_enabled) 5374 rc = mwl8k_cmd_set_wmm_mode(hw, 1); 5375 5376 if (!rc) { 5377 int q = MWL8K_TX_WMM_QUEUES - 1 - queue; 5378 rc = mwl8k_cmd_set_edca_params(hw, q, 5379 params->cw_min, 5380 params->cw_max, 5381 params->aifs, 5382 params->txop); 5383 } 5384 5385 mwl8k_fw_unlock(hw); 5386 } 5387 5388 return rc; 5389} 5390 5391static int mwl8k_get_stats(struct ieee80211_hw *hw, 5392 struct ieee80211_low_level_stats *stats) 5393{ 5394 return mwl8k_cmd_get_stat(hw, stats); 5395} 5396 5397static int mwl8k_get_survey(struct ieee80211_hw *hw, int idx, 5398 struct survey_info *survey) 5399{ 5400 struct mwl8k_priv *priv = hw->priv; 5401 struct ieee80211_conf *conf = &hw->conf; 5402 struct ieee80211_supported_band *sband; 5403 5404 if (priv->ap_fw) { 5405 sband = hw->wiphy->bands[NL80211_BAND_2GHZ]; 5406 5407 if (sband && idx >= sband->n_channels) { 5408 idx -= sband->n_channels; 5409 sband = NULL; 5410 } 5411 5412 if (!sband) 5413 sband = hw->wiphy->bands[NL80211_BAND_5GHZ]; 5414 5415 if (!sband || idx >= sband->n_channels) 5416 return -ENOENT; 5417 5418 memcpy(survey, &priv->survey[idx], sizeof(*survey)); 5419 survey->channel = &sband->channels[idx]; 5420 5421 return 0; 5422 } 5423 5424 if (idx != 0) 5425 return -ENOENT; 5426 5427 survey->channel = conf->chandef.chan; 5428 survey->filled = SURVEY_INFO_NOISE_DBM; 5429 survey->noise = priv->noise; 5430 5431 return 0; 5432} 5433 5434#define MAX_AMPDU_ATTEMPTS 5 5435 5436static int 5437mwl8k_ampdu_action(struct ieee80211_hw *hw, struct ieee80211_vif *vif, 5438 struct ieee80211_ampdu_params *params) 5439{ 5440 struct ieee80211_sta *sta = params->sta; 5441 enum ieee80211_ampdu_mlme_action action = params->action; 5442 u16 tid = params->tid; 5443 u16 *ssn = ¶ms->ssn; 5444 u8 buf_size = params->buf_size; 5445 int i, rc = 0; 5446 struct mwl8k_priv *priv = hw->priv; 5447 struct mwl8k_ampdu_stream *stream; 5448 u8 *addr = sta->addr, idx; 5449 struct mwl8k_sta *sta_info = MWL8K_STA(sta); 5450 5451 if (!ieee80211_hw_check(hw, AMPDU_AGGREGATION)) 5452 return -ENOTSUPP; 5453 5454 spin_lock(&priv->stream_lock); 5455 stream = mwl8k_lookup_stream(hw, addr, tid); 5456 5457 switch (action) { 5458 case IEEE80211_AMPDU_RX_START: 5459 case IEEE80211_AMPDU_RX_STOP: 5460 break; 5461 case IEEE80211_AMPDU_TX_START: 5462 /* By the time we get here the hw queues may contain outgoing 5463 * packets for this RA/TID that are not part of this BA 5464 * session. The hw will assign sequence numbers to these 5465 * packets as they go out. So if we query the hw for its next 5466 * sequence number and use that for the SSN here, it may end up 5467 * being wrong, which will lead to sequence number mismatch at 5468 * the recipient. To avoid this, we reset the sequence number 5469 * to O for the first MPDU in this BA stream. 5470 */ 5471 *ssn = 0; 5472 if (stream == NULL) { 5473 /* This means that somebody outside this driver called 5474 * ieee80211_start_tx_ba_session. This is unexpected 5475 * because we do our own rate control. Just warn and 5476 * move on. 5477 */ 5478 wiphy_warn(hw->wiphy, "Unexpected call to %s. " 5479 "Proceeding anyway.\n", __func__); 5480 stream = mwl8k_add_stream(hw, sta, tid); 5481 } 5482 if (stream == NULL) { 5483 wiphy_debug(hw->wiphy, "no free AMPDU streams\n"); 5484 rc = -EBUSY; 5485 break; 5486 } 5487 stream->state = AMPDU_STREAM_IN_PROGRESS; 5488 5489 /* Release the lock before we do the time consuming stuff */ 5490 spin_unlock(&priv->stream_lock); 5491 for (i = 0; i < MAX_AMPDU_ATTEMPTS; i++) { 5492 5493 /* Check if link is still valid */ 5494 if (!sta_info->is_ampdu_allowed) { 5495 spin_lock(&priv->stream_lock); 5496 mwl8k_remove_stream(hw, stream); 5497 spin_unlock(&priv->stream_lock); 5498 return -EBUSY; 5499 } 5500 5501 rc = mwl8k_check_ba(hw, stream, vif); 5502 5503 /* If HW restart is in progress mwl8k_post_cmd will 5504 * return -EBUSY. Avoid retrying mwl8k_check_ba in 5505 * such cases 5506 */ 5507 if (!rc || rc == -EBUSY) 5508 break; 5509 /* 5510 * HW queues take time to be flushed, give them 5511 * sufficient time 5512 */ 5513 5514 msleep(1000); 5515 } 5516 spin_lock(&priv->stream_lock); 5517 if (rc) { 5518 wiphy_err(hw->wiphy, "Stream for tid %d busy after %d" 5519 " attempts\n", tid, MAX_AMPDU_ATTEMPTS); 5520 mwl8k_remove_stream(hw, stream); 5521 rc = -EBUSY; 5522 break; 5523 } 5524 rc = IEEE80211_AMPDU_TX_START_IMMEDIATE; 5525 break; 5526 case IEEE80211_AMPDU_TX_STOP_CONT: 5527 case IEEE80211_AMPDU_TX_STOP_FLUSH: 5528 case IEEE80211_AMPDU_TX_STOP_FLUSH_CONT: 5529 if (stream) { 5530 if (stream->state == AMPDU_STREAM_ACTIVE) { 5531 idx = stream->idx; 5532 spin_unlock(&priv->stream_lock); 5533 mwl8k_destroy_ba(hw, idx); 5534 spin_lock(&priv->stream_lock); 5535 } 5536 mwl8k_remove_stream(hw, stream); 5537 } 5538 ieee80211_stop_tx_ba_cb_irqsafe(vif, addr, tid); 5539 break; 5540 case IEEE80211_AMPDU_TX_OPERATIONAL: 5541 BUG_ON(stream == NULL); 5542 BUG_ON(stream->state != AMPDU_STREAM_IN_PROGRESS); 5543 spin_unlock(&priv->stream_lock); 5544 rc = mwl8k_create_ba(hw, stream, buf_size, vif); 5545 spin_lock(&priv->stream_lock); 5546 if (!rc) 5547 stream->state = AMPDU_STREAM_ACTIVE; 5548 else { 5549 idx = stream->idx; 5550 spin_unlock(&priv->stream_lock); 5551 mwl8k_destroy_ba(hw, idx); 5552 spin_lock(&priv->stream_lock); 5553 wiphy_debug(hw->wiphy, 5554 "Failed adding stream for sta %pM tid %d\n", 5555 addr, tid); 5556 mwl8k_remove_stream(hw, stream); 5557 } 5558 break; 5559 5560 default: 5561 rc = -ENOTSUPP; 5562 } 5563 5564 spin_unlock(&priv->stream_lock); 5565 return rc; 5566} 5567 5568static void mwl8k_sw_scan_start(struct ieee80211_hw *hw, 5569 struct ieee80211_vif *vif, 5570 const u8 *mac_addr) 5571{ 5572 struct mwl8k_priv *priv = hw->priv; 5573 u8 tmp; 5574 5575 if (!priv->ap_fw) 5576 return; 5577 5578 /* clear all stats */ 5579 priv->channel_time = 0; 5580 ioread32(priv->regs + BBU_RXRDY_CNT_REG); 5581 ioread32(priv->regs + NOK_CCA_CNT_REG); 5582 mwl8k_cmd_bbp_reg_access(priv->hw, 0, BBU_AVG_NOISE_VAL, &tmp); 5583 5584 priv->sw_scan_start = true; 5585} 5586 5587static void mwl8k_sw_scan_complete(struct ieee80211_hw *hw, 5588 struct ieee80211_vif *vif) 5589{ 5590 struct mwl8k_priv *priv = hw->priv; 5591 u8 tmp; 5592 5593 if (!priv->ap_fw) 5594 return; 5595 5596 priv->sw_scan_start = false; 5597 5598 /* clear all stats */ 5599 priv->channel_time = 0; 5600 ioread32(priv->regs + BBU_RXRDY_CNT_REG); 5601 ioread32(priv->regs + NOK_CCA_CNT_REG); 5602 mwl8k_cmd_bbp_reg_access(priv->hw, 0, BBU_AVG_NOISE_VAL, &tmp); 5603} 5604 5605static const struct ieee80211_ops mwl8k_ops = { 5606 .tx = mwl8k_tx, 5607 .start = mwl8k_start, 5608 .stop = mwl8k_stop, 5609 .add_interface = mwl8k_add_interface, 5610 .remove_interface = mwl8k_remove_interface, 5611 .config = mwl8k_config, 5612 .bss_info_changed = mwl8k_bss_info_changed, 5613 .prepare_multicast = mwl8k_prepare_multicast, 5614 .configure_filter = mwl8k_configure_filter, 5615 .set_key = mwl8k_set_key, 5616 .set_rts_threshold = mwl8k_set_rts_threshold, 5617 .sta_add = mwl8k_sta_add, 5618 .sta_remove = mwl8k_sta_remove, 5619 .conf_tx = mwl8k_conf_tx, 5620 .get_stats = mwl8k_get_stats, 5621 .get_survey = mwl8k_get_survey, 5622 .ampdu_action = mwl8k_ampdu_action, 5623 .sw_scan_start = mwl8k_sw_scan_start, 5624 .sw_scan_complete = mwl8k_sw_scan_complete, 5625}; 5626 5627static void mwl8k_finalize_join_worker(struct work_struct *work) 5628{ 5629 struct mwl8k_priv *priv = 5630 container_of(work, struct mwl8k_priv, finalize_join_worker); 5631 struct sk_buff *skb = priv->beacon_skb; 5632 struct ieee80211_mgmt *mgmt = (void *)skb->data; 5633 int len = skb->len - offsetof(struct ieee80211_mgmt, u.beacon.variable); 5634 const u8 *tim = cfg80211_find_ie(WLAN_EID_TIM, 5635 mgmt->u.beacon.variable, len); 5636 int dtim_period = 1; 5637 5638 if (tim && tim[1] >= 2) 5639 dtim_period = tim[3]; 5640 5641 mwl8k_cmd_finalize_join(priv->hw, skb->data, skb->len, dtim_period); 5642 5643 dev_kfree_skb(skb); 5644 priv->beacon_skb = NULL; 5645} 5646 5647enum { 5648 MWL8363 = 0, 5649 MWL8687, 5650 MWL8366, 5651 MWL8764, 5652}; 5653 5654#define MWL8K_8366_AP_FW_API 3 5655#define _MWL8K_8366_AP_FW(api) "mwl8k/fmimage_8366_ap-" #api ".fw" 5656#define MWL8K_8366_AP_FW(api) _MWL8K_8366_AP_FW(api) 5657 5658#define MWL8K_8764_AP_FW_API 1 5659#define _MWL8K_8764_AP_FW(api) "mwl8k/fmimage_8764_ap-" #api ".fw" 5660#define MWL8K_8764_AP_FW(api) _MWL8K_8764_AP_FW(api) 5661 5662static struct mwl8k_device_info mwl8k_info_tbl[] = { 5663 [MWL8363] = { 5664 .part_name = "88w8363", 5665 .helper_image = "mwl8k/helper_8363.fw", 5666 .fw_image_sta = "mwl8k/fmimage_8363.fw", 5667 }, 5668 [MWL8687] = { 5669 .part_name = "88w8687", 5670 .helper_image = "mwl8k/helper_8687.fw", 5671 .fw_image_sta = "mwl8k/fmimage_8687.fw", 5672 }, 5673 [MWL8366] = { 5674 .part_name = "88w8366", 5675 .helper_image = "mwl8k/helper_8366.fw", 5676 .fw_image_sta = "mwl8k/fmimage_8366.fw", 5677 .fw_image_ap = MWL8K_8366_AP_FW(MWL8K_8366_AP_FW_API), 5678 .fw_api_ap = MWL8K_8366_AP_FW_API, 5679 .ap_rxd_ops = &rxd_ap_ops, 5680 }, 5681 [MWL8764] = { 5682 .part_name = "88w8764", 5683 .fw_image_ap = MWL8K_8764_AP_FW(MWL8K_8764_AP_FW_API), 5684 .fw_api_ap = MWL8K_8764_AP_FW_API, 5685 .ap_rxd_ops = &rxd_ap_ops, 5686 }, 5687}; 5688 5689MODULE_FIRMWARE("mwl8k/helper_8363.fw"); 5690MODULE_FIRMWARE("mwl8k/fmimage_8363.fw"); 5691MODULE_FIRMWARE("mwl8k/helper_8687.fw"); 5692MODULE_FIRMWARE("mwl8k/fmimage_8687.fw"); 5693MODULE_FIRMWARE("mwl8k/helper_8366.fw"); 5694MODULE_FIRMWARE("mwl8k/fmimage_8366.fw"); 5695MODULE_FIRMWARE(MWL8K_8366_AP_FW(MWL8K_8366_AP_FW_API)); 5696 5697static const struct pci_device_id mwl8k_pci_id_table[] = { 5698 { PCI_VDEVICE(MARVELL, 0x2a0a), .driver_data = MWL8363, }, 5699 { PCI_VDEVICE(MARVELL, 0x2a0c), .driver_data = MWL8363, }, 5700 { PCI_VDEVICE(MARVELL, 0x2a24), .driver_data = MWL8363, }, 5701 { PCI_VDEVICE(MARVELL, 0x2a2b), .driver_data = MWL8687, }, 5702 { PCI_VDEVICE(MARVELL, 0x2a30), .driver_data = MWL8687, }, 5703 { PCI_VDEVICE(MARVELL, 0x2a40), .driver_data = MWL8366, }, 5704 { PCI_VDEVICE(MARVELL, 0x2a41), .driver_data = MWL8366, }, 5705 { PCI_VDEVICE(MARVELL, 0x2a42), .driver_data = MWL8366, }, 5706 { PCI_VDEVICE(MARVELL, 0x2a43), .driver_data = MWL8366, }, 5707 { PCI_VDEVICE(MARVELL, 0x2b36), .driver_data = MWL8764, }, 5708 { }, 5709}; 5710MODULE_DEVICE_TABLE(pci, mwl8k_pci_id_table); 5711 5712static int mwl8k_request_alt_fw(struct mwl8k_priv *priv) 5713{ 5714 int rc; 5715 printk(KERN_ERR "%s: Error requesting preferred fw %s.\n" 5716 "Trying alternative firmware %s\n", pci_name(priv->pdev), 5717 priv->fw_pref, priv->fw_alt); 5718 rc = mwl8k_request_fw(priv, priv->fw_alt, &priv->fw_ucode, true); 5719 if (rc) { 5720 printk(KERN_ERR "%s: Error requesting alt fw %s\n", 5721 pci_name(priv->pdev), priv->fw_alt); 5722 return rc; 5723 } 5724 return 0; 5725} 5726 5727static int mwl8k_firmware_load_success(struct mwl8k_priv *priv); 5728static void mwl8k_fw_state_machine(const struct firmware *fw, void *context) 5729{ 5730 struct mwl8k_priv *priv = context; 5731 struct mwl8k_device_info *di = priv->device_info; 5732 int rc; 5733 5734 switch (priv->fw_state) { 5735 case FW_STATE_INIT: 5736 if (!fw) { 5737 printk(KERN_ERR "%s: Error requesting helper fw %s\n", 5738 pci_name(priv->pdev), di->helper_image); 5739 goto fail; 5740 } 5741 priv->fw_helper = fw; 5742 rc = mwl8k_request_fw(priv, priv->fw_pref, &priv->fw_ucode, 5743 true); 5744 if (rc && priv->fw_alt) { 5745 rc = mwl8k_request_alt_fw(priv); 5746 if (rc) 5747 goto fail; 5748 priv->fw_state = FW_STATE_LOADING_ALT; 5749 } else if (rc) 5750 goto fail; 5751 else 5752 priv->fw_state = FW_STATE_LOADING_PREF; 5753 break; 5754 5755 case FW_STATE_LOADING_PREF: 5756 if (!fw) { 5757 if (priv->fw_alt) { 5758 rc = mwl8k_request_alt_fw(priv); 5759 if (rc) 5760 goto fail; 5761 priv->fw_state = FW_STATE_LOADING_ALT; 5762 } else 5763 goto fail; 5764 } else { 5765 priv->fw_ucode = fw; 5766 rc = mwl8k_firmware_load_success(priv); 5767 if (rc) 5768 goto fail; 5769 else 5770 complete(&priv->firmware_loading_complete); 5771 } 5772 break; 5773 5774 case FW_STATE_LOADING_ALT: 5775 if (!fw) { 5776 printk(KERN_ERR "%s: Error requesting alt fw %s\n", 5777 pci_name(priv->pdev), di->helper_image); 5778 goto fail; 5779 } 5780 priv->fw_ucode = fw; 5781 rc = mwl8k_firmware_load_success(priv); 5782 if (rc) 5783 goto fail; 5784 else 5785 complete(&priv->firmware_loading_complete); 5786 break; 5787 5788 default: 5789 printk(KERN_ERR "%s: Unexpected firmware loading state: %d\n", 5790 MWL8K_NAME, priv->fw_state); 5791 BUG_ON(1); 5792 } 5793 5794 return; 5795 5796fail: 5797 priv->fw_state = FW_STATE_ERROR; 5798 complete(&priv->firmware_loading_complete); 5799 mwl8k_release_firmware(priv); 5800 device_release_driver(&priv->pdev->dev); 5801} 5802 5803#define MAX_RESTART_ATTEMPTS 1 5804static int mwl8k_init_firmware(struct ieee80211_hw *hw, char *fw_image, 5805 bool nowait) 5806{ 5807 struct mwl8k_priv *priv = hw->priv; 5808 int rc; 5809 int count = MAX_RESTART_ATTEMPTS; 5810 5811retry: 5812 /* Reset firmware and hardware */ 5813 mwl8k_hw_reset(priv); 5814 5815 /* Ask userland hotplug daemon for the device firmware */ 5816 rc = mwl8k_request_firmware(priv, fw_image, nowait); 5817 if (rc) { 5818 wiphy_err(hw->wiphy, "Firmware files not found\n"); 5819 return rc; 5820 } 5821 5822 if (nowait) 5823 return rc; 5824 5825 /* Load firmware into hardware */ 5826 rc = mwl8k_load_firmware(hw); 5827 if (rc) 5828 wiphy_err(hw->wiphy, "Cannot start firmware\n"); 5829 5830 /* Reclaim memory once firmware is successfully loaded */ 5831 mwl8k_release_firmware(priv); 5832 5833 if (rc && count) { 5834 /* FW did not start successfully; 5835 * lets try one more time 5836 */ 5837 count--; 5838 wiphy_err(hw->wiphy, "Trying to reload the firmware again\n"); 5839 msleep(20); 5840 goto retry; 5841 } 5842 5843 return rc; 5844} 5845 5846static int mwl8k_init_txqs(struct ieee80211_hw *hw) 5847{ 5848 struct mwl8k_priv *priv = hw->priv; 5849 int rc = 0; 5850 int i; 5851 5852 for (i = 0; i < mwl8k_tx_queues(priv); i++) { 5853 rc = mwl8k_txq_init(hw, i); 5854 if (rc) 5855 break; 5856 if (priv->ap_fw) 5857 iowrite32(priv->txq[i].txd_dma, 5858 priv->sram + priv->txq_offset[i]); 5859 } 5860 return rc; 5861} 5862 5863/* initialize hw after successfully loading a firmware image */ 5864static int mwl8k_probe_hw(struct ieee80211_hw *hw) 5865{ 5866 struct mwl8k_priv *priv = hw->priv; 5867 int rc = 0; 5868 int i; 5869 5870 if (priv->ap_fw) { 5871 priv->rxd_ops = priv->device_info->ap_rxd_ops; 5872 if (priv->rxd_ops == NULL) { 5873 wiphy_err(hw->wiphy, 5874 "Driver does not have AP firmware image support for this hardware\n"); 5875 rc = -ENOENT; 5876 goto err_stop_firmware; 5877 } 5878 } else { 5879 priv->rxd_ops = &rxd_sta_ops; 5880 } 5881 5882 priv->sniffer_enabled = false; 5883 priv->wmm_enabled = false; 5884 priv->pending_tx_pkts = 0; 5885 atomic_set(&priv->watchdog_event_pending, 0); 5886 5887 rc = mwl8k_rxq_init(hw, 0); 5888 if (rc) 5889 goto err_stop_firmware; 5890 rxq_refill(hw, 0, INT_MAX); 5891 5892 /* For the sta firmware, we need to know the dma addresses of tx queues 5893 * before sending MWL8K_CMD_GET_HW_SPEC. So we must initialize them 5894 * prior to issuing this command. But for the AP case, we learn the 5895 * total number of queues from the result CMD_GET_HW_SPEC, so for this 5896 * case we must initialize the tx queues after. 5897 */ 5898 priv->num_ampdu_queues = 0; 5899 if (!priv->ap_fw) { 5900 rc = mwl8k_init_txqs(hw); 5901 if (rc) 5902 goto err_free_queues; 5903 } 5904 5905 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS); 5906 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 5907 iowrite32(MWL8K_A2H_INT_TX_DONE|MWL8K_A2H_INT_RX_READY| 5908 MWL8K_A2H_INT_BA_WATCHDOG, 5909 priv->regs + MWL8K_HIU_A2H_INTERRUPT_CLEAR_SEL); 5910 iowrite32(MWL8K_A2H_INT_OPC_DONE, 5911 priv->regs + MWL8K_HIU_A2H_INTERRUPT_STATUS_MASK); 5912 5913 rc = request_irq(priv->pdev->irq, mwl8k_interrupt, 5914 IRQF_SHARED, MWL8K_NAME, hw); 5915 if (rc) { 5916 wiphy_err(hw->wiphy, "failed to register IRQ handler\n"); 5917 goto err_free_queues; 5918 } 5919 5920 /* 5921 * When hw restart is requested, 5922 * mac80211 will take care of clearing 5923 * the ampdu streams, so do not clear 5924 * the ampdu state here 5925 */ 5926 if (!priv->hw_restart_in_progress) 5927 memset(priv->ampdu, 0, sizeof(priv->ampdu)); 5928 5929 /* 5930 * Temporarily enable interrupts. Initial firmware host 5931 * commands use interrupts and avoid polling. Disable 5932 * interrupts when done. 5933 */ 5934 iowrite32(MWL8K_A2H_EVENTS, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 5935 5936 /* Get config data, mac addrs etc */ 5937 if (priv->ap_fw) { 5938 rc = mwl8k_cmd_get_hw_spec_ap(hw); 5939 if (!rc) 5940 rc = mwl8k_init_txqs(hw); 5941 if (!rc) 5942 rc = mwl8k_cmd_set_hw_spec(hw); 5943 } else { 5944 rc = mwl8k_cmd_get_hw_spec_sta(hw); 5945 } 5946 if (rc) { 5947 wiphy_err(hw->wiphy, "Cannot initialise firmware\n"); 5948 goto err_free_irq; 5949 } 5950 5951 /* Turn radio off */ 5952 rc = mwl8k_cmd_radio_disable(hw); 5953 if (rc) { 5954 wiphy_err(hw->wiphy, "Cannot disable\n"); 5955 goto err_free_irq; 5956 } 5957 5958 /* Clear MAC address */ 5959 rc = mwl8k_cmd_set_mac_addr(hw, NULL, "\x00\x00\x00\x00\x00\x00"); 5960 if (rc) { 5961 wiphy_err(hw->wiphy, "Cannot clear MAC address\n"); 5962 goto err_free_irq; 5963 } 5964 5965 /* Configure Antennas */ 5966 rc = mwl8k_cmd_rf_antenna(hw, MWL8K_RF_ANTENNA_RX, 0x3); 5967 if (rc) 5968 wiphy_warn(hw->wiphy, "failed to set # of RX antennas"); 5969 rc = mwl8k_cmd_rf_antenna(hw, MWL8K_RF_ANTENNA_TX, 0x7); 5970 if (rc) 5971 wiphy_warn(hw->wiphy, "failed to set # of TX antennas"); 5972 5973 5974 /* Disable interrupts */ 5975 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 5976 free_irq(priv->pdev->irq, hw); 5977 5978 wiphy_info(hw->wiphy, "%s v%d, %pm, %s firmware %u.%u.%u.%u\n", 5979 priv->device_info->part_name, 5980 priv->hw_rev, hw->wiphy->perm_addr, 5981 priv->ap_fw ? "AP" : "STA", 5982 (priv->fw_rev >> 24) & 0xff, (priv->fw_rev >> 16) & 0xff, 5983 (priv->fw_rev >> 8) & 0xff, priv->fw_rev & 0xff); 5984 5985 return 0; 5986 5987err_free_irq: 5988 iowrite32(0, priv->regs + MWL8K_HIU_A2H_INTERRUPT_MASK); 5989 free_irq(priv->pdev->irq, hw); 5990 5991err_free_queues: 5992 for (i = 0; i < mwl8k_tx_queues(priv); i++) 5993 mwl8k_txq_deinit(hw, i); 5994 mwl8k_rxq_deinit(hw, 0); 5995 5996err_stop_firmware: 5997 mwl8k_hw_reset(priv); 5998 5999 return rc; 6000} 6001 6002/* 6003 * invoke mwl8k_reload_firmware to change the firmware image after the device 6004 * has already been registered 6005 */ 6006static int mwl8k_reload_firmware(struct ieee80211_hw *hw, char *fw_image) 6007{ 6008 int i, rc = 0; 6009 struct mwl8k_priv *priv = hw->priv; 6010 struct mwl8k_vif *vif, *tmp_vif; 6011 6012 mwl8k_stop(hw); 6013 mwl8k_rxq_deinit(hw, 0); 6014 6015 /* 6016 * All the existing interfaces are re-added by the ieee80211_reconfig; 6017 * which means driver should remove existing interfaces before calling 6018 * ieee80211_restart_hw 6019 */ 6020 if (priv->hw_restart_in_progress) 6021 list_for_each_entry_safe(vif, tmp_vif, &priv->vif_list, list) 6022 mwl8k_remove_vif(priv, vif); 6023 6024 for (i = 0; i < mwl8k_tx_queues(priv); i++) 6025 mwl8k_txq_deinit(hw, i); 6026 6027 rc = mwl8k_init_firmware(hw, fw_image, false); 6028 if (rc) 6029 goto fail; 6030 6031 rc = mwl8k_probe_hw(hw); 6032 if (rc) 6033 goto fail; 6034 6035 if (priv->hw_restart_in_progress) 6036 return rc; 6037 6038 rc = mwl8k_start(hw); 6039 if (rc) 6040 goto fail; 6041 6042 rc = mwl8k_config(hw, ~0); 6043 if (rc) 6044 goto fail; 6045 6046 for (i = 0; i < MWL8K_TX_WMM_QUEUES; i++) { 6047 rc = mwl8k_conf_tx(hw, NULL, i, &priv->wmm_params[i]); 6048 if (rc) 6049 goto fail; 6050 } 6051 6052 return rc; 6053 6054fail: 6055 printk(KERN_WARNING "mwl8k: Failed to reload firmware image.\n"); 6056 return rc; 6057} 6058 6059static const struct ieee80211_iface_limit ap_if_limits[] = { 6060 { .max = 8, .types = BIT(NL80211_IFTYPE_AP) }, 6061 { .max = 1, .types = BIT(NL80211_IFTYPE_STATION) }, 6062}; 6063 6064static const struct ieee80211_iface_combination ap_if_comb = { 6065 .limits = ap_if_limits, 6066 .n_limits = ARRAY_SIZE(ap_if_limits), 6067 .max_interfaces = 8, 6068 .num_different_channels = 1, 6069}; 6070 6071 6072static int mwl8k_firmware_load_success(struct mwl8k_priv *priv) 6073{ 6074 struct ieee80211_hw *hw = priv->hw; 6075 int i, rc; 6076 6077 rc = mwl8k_load_firmware(hw); 6078 mwl8k_release_firmware(priv); 6079 if (rc) { 6080 wiphy_err(hw->wiphy, "Cannot start firmware\n"); 6081 return rc; 6082 } 6083 6084 /* 6085 * Extra headroom is the size of the required DMA header 6086 * minus the size of the smallest 802.11 frame (CTS frame). 6087 */ 6088 hw->extra_tx_headroom = 6089 sizeof(struct mwl8k_dma_data) - sizeof(struct ieee80211_cts); 6090 6091 hw->extra_tx_headroom -= priv->ap_fw ? REDUCED_TX_HEADROOM : 0; 6092 6093 hw->queues = MWL8K_TX_WMM_QUEUES; 6094 6095 /* Set rssi values to dBm */ 6096 ieee80211_hw_set(hw, SIGNAL_DBM); 6097 ieee80211_hw_set(hw, HAS_RATE_CONTROL); 6098 6099 /* 6100 * Ask mac80211 to not to trigger PS mode 6101 * based on PM bit of incoming frames. 6102 */ 6103 if (priv->ap_fw) 6104 ieee80211_hw_set(hw, AP_LINK_PS); 6105 6106 hw->vif_data_size = sizeof(struct mwl8k_vif); 6107 hw->sta_data_size = sizeof(struct mwl8k_sta); 6108 6109 priv->macids_used = 0; 6110 INIT_LIST_HEAD(&priv->vif_list); 6111 6112 /* Set default radio state and preamble */ 6113 priv->radio_on = false; 6114 priv->radio_short_preamble = false; 6115 6116 /* Finalize join worker */ 6117 INIT_WORK(&priv->finalize_join_worker, mwl8k_finalize_join_worker); 6118 /* Handle watchdog ba events */ 6119 INIT_WORK(&priv->watchdog_ba_handle, mwl8k_watchdog_ba_events); 6120 /* To reload the firmware if it crashes */ 6121 INIT_WORK(&priv->fw_reload, mwl8k_hw_restart_work); 6122 6123 /* TX reclaim and RX tasklets. */ 6124 tasklet_setup(&priv->poll_tx_task, mwl8k_tx_poll); 6125 tasklet_disable(&priv->poll_tx_task); 6126 tasklet_setup(&priv->poll_rx_task, mwl8k_rx_poll); 6127 tasklet_disable(&priv->poll_rx_task); 6128 6129 /* Power management cookie */ 6130 priv->cookie = pci_alloc_consistent(priv->pdev, 4, &priv->cookie_dma); 6131 if (priv->cookie == NULL) 6132 return -ENOMEM; 6133 6134 mutex_init(&priv->fw_mutex); 6135 priv->fw_mutex_owner = NULL; 6136 priv->fw_mutex_depth = 0; 6137 priv->hostcmd_wait = NULL; 6138 6139 spin_lock_init(&priv->tx_lock); 6140 6141 spin_lock_init(&priv->stream_lock); 6142 6143 priv->tx_wait = NULL; 6144 6145 rc = mwl8k_probe_hw(hw); 6146 if (rc) 6147 goto err_free_cookie; 6148 6149 hw->wiphy->interface_modes = 0; 6150 6151 if (priv->ap_macids_supported || priv->device_info->fw_image_ap) { 6152 hw->wiphy->interface_modes |= BIT(NL80211_IFTYPE_AP); 6153 hw->wiphy->interface_modes |= BIT(NL80211_IFTYPE_STATION); 6154 hw->wiphy->iface_combinations = &ap_if_comb; 6155 hw->wiphy->n_iface_combinations = 1; 6156 } 6157 6158 if (priv->sta_macids_supported || priv->device_info->fw_image_sta) 6159 hw->wiphy->interface_modes |= BIT(NL80211_IFTYPE_STATION); 6160 6161 wiphy_ext_feature_set(hw->wiphy, NL80211_EXT_FEATURE_CQM_RSSI_LIST); 6162 6163 rc = ieee80211_register_hw(hw); 6164 if (rc) { 6165 wiphy_err(hw->wiphy, "Cannot register device\n"); 6166 goto err_unprobe_hw; 6167 } 6168 6169 return 0; 6170 6171err_unprobe_hw: 6172 for (i = 0; i < mwl8k_tx_queues(priv); i++) 6173 mwl8k_txq_deinit(hw, i); 6174 mwl8k_rxq_deinit(hw, 0); 6175 6176err_free_cookie: 6177 if (priv->cookie != NULL) 6178 pci_free_consistent(priv->pdev, 4, 6179 priv->cookie, priv->cookie_dma); 6180 6181 return rc; 6182} 6183static int mwl8k_probe(struct pci_dev *pdev, 6184 const struct pci_device_id *id) 6185{ 6186 static int printed_version; 6187 struct ieee80211_hw *hw; 6188 struct mwl8k_priv *priv; 6189 struct mwl8k_device_info *di; 6190 int rc; 6191 6192 if (!printed_version) { 6193 printk(KERN_INFO "%s version %s\n", MWL8K_DESC, MWL8K_VERSION); 6194 printed_version = 1; 6195 } 6196 6197 6198 rc = pci_enable_device(pdev); 6199 if (rc) { 6200 printk(KERN_ERR "%s: Cannot enable new PCI device\n", 6201 MWL8K_NAME); 6202 return rc; 6203 } 6204 6205 rc = pci_request_regions(pdev, MWL8K_NAME); 6206 if (rc) { 6207 printk(KERN_ERR "%s: Cannot obtain PCI resources\n", 6208 MWL8K_NAME); 6209 goto err_disable_device; 6210 } 6211 6212 pci_set_master(pdev); 6213 6214 6215 hw = ieee80211_alloc_hw(sizeof(*priv), &mwl8k_ops); 6216 if (hw == NULL) { 6217 printk(KERN_ERR "%s: ieee80211 alloc failed\n", MWL8K_NAME); 6218 rc = -ENOMEM; 6219 goto err_free_reg; 6220 } 6221 6222 SET_IEEE80211_DEV(hw, &pdev->dev); 6223 pci_set_drvdata(pdev, hw); 6224 6225 priv = hw->priv; 6226 priv->hw = hw; 6227 priv->pdev = pdev; 6228 priv->device_info = &mwl8k_info_tbl[id->driver_data]; 6229 6230 if (id->driver_data == MWL8764) 6231 priv->is_8764 = true; 6232 6233 priv->sram = pci_iomap(pdev, 0, 0x10000); 6234 if (priv->sram == NULL) { 6235 wiphy_err(hw->wiphy, "Cannot map device SRAM\n"); 6236 rc = -EIO; 6237 goto err_iounmap; 6238 } 6239 6240 /* 6241 * If BAR0 is a 32 bit BAR, the register BAR will be BAR1. 6242 * If BAR0 is a 64 bit BAR, the register BAR will be BAR2. 6243 */ 6244 priv->regs = pci_iomap(pdev, 1, 0x10000); 6245 if (priv->regs == NULL) { 6246 priv->regs = pci_iomap(pdev, 2, 0x10000); 6247 if (priv->regs == NULL) { 6248 wiphy_err(hw->wiphy, "Cannot map device registers\n"); 6249 rc = -EIO; 6250 goto err_iounmap; 6251 } 6252 } 6253 6254 /* 6255 * Choose the initial fw image depending on user input. If a second 6256 * image is available, make it the alternative image that will be 6257 * loaded if the first one fails. 6258 */ 6259 init_completion(&priv->firmware_loading_complete); 6260 di = priv->device_info; 6261 if (ap_mode_default && di->fw_image_ap) { 6262 priv->fw_pref = di->fw_image_ap; 6263 priv->fw_alt = di->fw_image_sta; 6264 } else if (!ap_mode_default && di->fw_image_sta) { 6265 priv->fw_pref = di->fw_image_sta; 6266 priv->fw_alt = di->fw_image_ap; 6267 } else if (ap_mode_default && !di->fw_image_ap && di->fw_image_sta) { 6268 printk(KERN_WARNING "AP fw is unavailable. Using STA fw."); 6269 priv->fw_pref = di->fw_image_sta; 6270 } else if (!ap_mode_default && !di->fw_image_sta && di->fw_image_ap) { 6271 printk(KERN_WARNING "STA fw is unavailable. Using AP fw."); 6272 priv->fw_pref = di->fw_image_ap; 6273 } 6274 rc = mwl8k_init_firmware(hw, priv->fw_pref, true); 6275 if (rc) 6276 goto err_stop_firmware; 6277 6278 priv->hw_restart_in_progress = false; 6279 6280 priv->running_bsses = 0; 6281 6282 return rc; 6283 6284err_stop_firmware: 6285 mwl8k_hw_reset(priv); 6286 6287err_iounmap: 6288 if (priv->regs != NULL) 6289 pci_iounmap(pdev, priv->regs); 6290 6291 if (priv->sram != NULL) 6292 pci_iounmap(pdev, priv->sram); 6293 6294 ieee80211_free_hw(hw); 6295 6296err_free_reg: 6297 pci_release_regions(pdev); 6298 6299err_disable_device: 6300 pci_disable_device(pdev); 6301 6302 return rc; 6303} 6304 6305static void mwl8k_remove(struct pci_dev *pdev) 6306{ 6307 struct ieee80211_hw *hw = pci_get_drvdata(pdev); 6308 struct mwl8k_priv *priv; 6309 int i; 6310 6311 if (hw == NULL) 6312 return; 6313 priv = hw->priv; 6314 6315 wait_for_completion(&priv->firmware_loading_complete); 6316 6317 if (priv->fw_state == FW_STATE_ERROR) { 6318 mwl8k_hw_reset(priv); 6319 goto unmap; 6320 } 6321 6322 ieee80211_stop_queues(hw); 6323 6324 ieee80211_unregister_hw(hw); 6325 6326 /* Remove TX reclaim and RX tasklets. */ 6327 tasklet_kill(&priv->poll_tx_task); 6328 tasklet_kill(&priv->poll_rx_task); 6329 6330 /* Stop hardware */ 6331 mwl8k_hw_reset(priv); 6332 6333 /* Return all skbs to mac80211 */ 6334 for (i = 0; i < mwl8k_tx_queues(priv); i++) 6335 mwl8k_txq_reclaim(hw, i, INT_MAX, 1); 6336 6337 for (i = 0; i < mwl8k_tx_queues(priv); i++) 6338 mwl8k_txq_deinit(hw, i); 6339 6340 mwl8k_rxq_deinit(hw, 0); 6341 6342 pci_free_consistent(priv->pdev, 4, priv->cookie, priv->cookie_dma); 6343 6344unmap: 6345 pci_iounmap(pdev, priv->regs); 6346 pci_iounmap(pdev, priv->sram); 6347 ieee80211_free_hw(hw); 6348 pci_release_regions(pdev); 6349 pci_disable_device(pdev); 6350} 6351 6352static struct pci_driver mwl8k_driver = { 6353 .name = MWL8K_NAME, 6354 .id_table = mwl8k_pci_id_table, 6355 .probe = mwl8k_probe, 6356 .remove = mwl8k_remove, 6357}; 6358 6359module_pci_driver(mwl8k_driver); 6360 6361MODULE_DESCRIPTION(MWL8K_DESC); 6362MODULE_VERSION(MWL8K_VERSION); 6363MODULE_AUTHOR("Lennert Buytenhek <buytenh@marvell.com>"); 6364MODULE_LICENSE("GPL"); 6365