1 /******************************************************************************
3 * Copyright(c) 2003 - 2007 Intel Corporation. All rights reserved.
5 * Portions of this file are derived from the ipw3945 project, as well
6 * as portions of the ieee80211 subsystem header files.
8 * This program is free software; you can redistribute it and/or modify it
9 * under the terms of version 2 of the GNU General Public License as
10 * published by the Free Software Foundation.
12 * This program is distributed in the hope that it will be useful, but WITHOUT
13 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
14 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
17 * You should have received a copy of the GNU General Public License along with
18 * this program; if not, write to the Free Software Foundation, Inc.,
19 * 51 Franklin Street, Fifth Floor, Boston, MA 02110, USA
21 * The full GNU General Public License is included in this distribution in the
22 * file called LICENSE.
24 * Contact Information:
25 * James P. Ketrenos <ipw2100-admin@linux.intel.com>
26 * Intel Corporation, 5200 N.E. Elam Young Parkway, Hillsboro, OR 97124-6497
28 *****************************************************************************/
30 #include <linux/kernel.h>
31 #include <linux/module.h>
32 #include <linux/version.h>
33 #include <linux/init.h>
34 #include <linux/pci.h>
35 #include <linux/dma-mapping.h>
36 #include <linux/delay.h>
37 #include <linux/skbuff.h>
38 #include <linux/netdevice.h>
39 #include <linux/wireless.h>
40 #include <linux/firmware.h>
41 #include <linux/etherdevice.h>
42 #include <linux/if_arp.h>
44 #include <net/mac80211.h>
46 #include <asm/div64.h>
49 #include "iwl-helpers.h"
51 #ifdef CONFIG_IWL4965_DEBUG
52 u32 iwl4965_debug_level
;
55 static int iwl4965_tx_queue_update_write_ptr(struct iwl4965_priv
*priv
,
56 struct iwl4965_tx_queue
*txq
);
58 /******************************************************************************
62 ******************************************************************************/
64 /* module parameters */
65 static int iwl4965_param_disable_hw_scan
; /* def: 0 = use 4965's h/w scan */
66 static int iwl4965_param_debug
; /* def: 0 = minimal debug log messages */
67 static int iwl4965_param_disable
; /* def: enable radio */
68 static int iwl4965_param_antenna
; /* def: 0 = both antennas (use diversity) */
69 int iwl4965_param_hwcrypto
; /* def: using software encryption */
70 static int iwl4965_param_qos_enable
= 1; /* def: 1 = use quality of service */
71 int iwl4965_param_queues_num
= IWL_MAX_NUM_QUEUES
; /* def: 16 Tx queues */
72 int iwl4965_param_amsdu_size_8K
; /* def: enable 8K amsdu size */
75 * module name, copyright, version, etc.
76 * NOTE: DRV_NAME is defined in iwlwifi.h for use by iwl-debug.h and printk
79 #define DRV_DESCRIPTION "Intel(R) Wireless WiFi Link 4965AGN driver for Linux"
81 #ifdef CONFIG_IWL4965_DEBUG
87 #ifdef CONFIG_IWL4965_SPECTRUM_MEASUREMENT
93 #define IWLWIFI_VERSION "1.2.26k" VD VS
94 #define DRV_COPYRIGHT "Copyright(c) 2003-2007 Intel Corporation"
95 #define DRV_VERSION IWLWIFI_VERSION
97 /* Change firmware file name, using "-" and incrementing number,
98 * *only* when uCode interface or architecture changes so that it
99 * is not compatible with earlier drivers.
100 * This number will also appear in << 8 position of 1st dword of uCode file */
101 #define IWL4965_UCODE_API "-1"
103 MODULE_DESCRIPTION(DRV_DESCRIPTION
);
104 MODULE_VERSION(DRV_VERSION
);
105 MODULE_AUTHOR(DRV_COPYRIGHT
);
106 MODULE_LICENSE("GPL");
108 __le16
*ieee80211_get_qos_ctrl(struct ieee80211_hdr
*hdr
)
110 u16 fc
= le16_to_cpu(hdr
->frame_control
);
111 int hdr_len
= ieee80211_get_hdrlen(fc
);
113 if ((fc
& 0x00cc) == (IEEE80211_STYPE_QOS_DATA
| IEEE80211_FTYPE_DATA
))
114 return (__le16
*) ((u8
*) hdr
+ hdr_len
- QOS_CONTROL_LEN
);
118 static const struct ieee80211_supported_band
*iwl4965_get_hw_mode(
119 struct iwl4965_priv
*priv
, enum ieee80211_band band
)
121 return priv
->hw
->wiphy
->bands
[band
];
124 static int iwl4965_is_empty_essid(const char *essid
, int essid_len
)
126 /* Single white space is for Linksys APs */
127 if (essid_len
== 1 && essid
[0] == ' ')
130 /* Otherwise, if the entire essid is 0, we assume it is hidden */
133 if (essid
[essid_len
] != '\0')
140 static const char *iwl4965_escape_essid(const char *essid
, u8 essid_len
)
142 static char escaped
[IW_ESSID_MAX_SIZE
* 2 + 1];
143 const char *s
= essid
;
146 if (iwl4965_is_empty_essid(essid
, essid_len
)) {
147 memcpy(escaped
, "<hidden>", sizeof("<hidden>"));
151 essid_len
= min(essid_len
, (u8
) IW_ESSID_MAX_SIZE
);
152 while (essid_len
--) {
164 static void iwl4965_print_hex_dump(int level
, void *p
, u32 len
)
166 #ifdef CONFIG_IWL4965_DEBUG
167 if (!(iwl4965_debug_level
& level
))
170 print_hex_dump(KERN_DEBUG
, "iwl data: ", DUMP_PREFIX_OFFSET
, 16, 1,
175 /*************** DMA-QUEUE-GENERAL-FUNCTIONS *****
178 * Theory of operation
180 * A Tx or Rx queue resides in host DRAM, and is comprised of a circular buffer
181 * of buffer descriptors, each of which points to one or more data buffers for
182 * the device to read from or fill. Driver and device exchange status of each
183 * queue via "read" and "write" pointers. Driver keeps minimum of 2 empty
184 * entries in each circular buffer, to protect against confusing empty and full
187 * The device reads or writes the data in the queues via the device's several
188 * DMA/FIFO channels. Each queue is mapped to a single DMA channel.
190 * For Tx queue, there are low mark and high mark limits. If, after queuing
191 * the packet for Tx, free space become < low mark, Tx queue stopped. When
192 * reclaiming packets (on 'tx done IRQ), if free space become > high mark,
195 * The 4965 operates with up to 17 queues: One receive queue, one transmit
196 * queue (#4) for sending commands to the device firmware, and 15 other
197 * Tx queues that may be mapped to prioritized Tx DMA/FIFO channels.
199 * See more detailed info in iwl-4965-hw.h.
200 ***************************************************/
202 int iwl4965_queue_space(const struct iwl4965_queue
*q
)
204 int s
= q
->read_ptr
- q
->write_ptr
;
206 if (q
->read_ptr
> q
->write_ptr
)
211 /* keep some reserve to not confuse empty and full situations */
219 * iwl4965_queue_inc_wrap - increment queue index, wrap back to beginning
220 * @index -- current index
221 * @n_bd -- total number of entries in queue (must be power of 2)
223 static inline int iwl4965_queue_inc_wrap(int index
, int n_bd
)
225 return ++index
& (n_bd
- 1);
229 * iwl4965_queue_dec_wrap - decrement queue index, wrap back to end
230 * @index -- current index
231 * @n_bd -- total number of entries in queue (must be power of 2)
233 static inline int iwl4965_queue_dec_wrap(int index
, int n_bd
)
235 return --index
& (n_bd
- 1);
238 static inline int x2_queue_used(const struct iwl4965_queue
*q
, int i
)
240 return q
->write_ptr
> q
->read_ptr
?
241 (i
>= q
->read_ptr
&& i
< q
->write_ptr
) :
242 !(i
< q
->read_ptr
&& i
>= q
->write_ptr
);
245 static inline u8
get_cmd_index(struct iwl4965_queue
*q
, u32 index
, int is_huge
)
247 /* This is for scan command, the big buffer at end of command array */
249 return q
->n_window
; /* must be power of 2 */
251 /* Otherwise, use normal size buffers */
252 return index
& (q
->n_window
- 1);
256 * iwl4965_queue_init - Initialize queue's high/low-water and read/write indexes
258 static int iwl4965_queue_init(struct iwl4965_priv
*priv
, struct iwl4965_queue
*q
,
259 int count
, int slots_num
, u32 id
)
262 q
->n_window
= slots_num
;
265 /* count must be power-of-two size, otherwise iwl4965_queue_inc_wrap
266 * and iwl4965_queue_dec_wrap are broken. */
267 BUG_ON(!is_power_of_2(count
));
269 /* slots_num must be power-of-two size, otherwise
270 * get_cmd_index is broken. */
271 BUG_ON(!is_power_of_2(slots_num
));
273 q
->low_mark
= q
->n_window
/ 4;
277 q
->high_mark
= q
->n_window
/ 8;
278 if (q
->high_mark
< 2)
281 q
->write_ptr
= q
->read_ptr
= 0;
287 * iwl4965_tx_queue_alloc - Alloc driver data and TFD CB for one Tx/cmd queue
289 static int iwl4965_tx_queue_alloc(struct iwl4965_priv
*priv
,
290 struct iwl4965_tx_queue
*txq
, u32 id
)
292 struct pci_dev
*dev
= priv
->pci_dev
;
294 /* Driver private data, only for Tx (not command) queues,
295 * not shared with device. */
296 if (id
!= IWL_CMD_QUEUE_NUM
) {
297 txq
->txb
= kmalloc(sizeof(txq
->txb
[0]) *
298 TFD_QUEUE_SIZE_MAX
, GFP_KERNEL
);
300 IWL_ERROR("kmalloc for auxiliary BD "
301 "structures failed\n");
307 /* Circular buffer of transmit frame descriptors (TFDs),
308 * shared with device */
309 txq
->bd
= pci_alloc_consistent(dev
,
310 sizeof(txq
->bd
[0]) * TFD_QUEUE_SIZE_MAX
,
314 IWL_ERROR("pci_alloc_consistent(%zd) failed\n",
315 sizeof(txq
->bd
[0]) * TFD_QUEUE_SIZE_MAX
);
332 * iwl4965_tx_queue_init - Allocate and initialize one tx/cmd queue
334 int iwl4965_tx_queue_init(struct iwl4965_priv
*priv
,
335 struct iwl4965_tx_queue
*txq
, int slots_num
, u32 txq_id
)
337 struct pci_dev
*dev
= priv
->pci_dev
;
342 * Alloc buffer array for commands (Tx or other types of commands).
343 * For the command queue (#4), allocate command space + one big
344 * command for scan, since scan command is very huge; the system will
345 * not have two scans at the same time, so only one is needed.
346 * For normal Tx queues (all other queues), no super-size command
349 len
= sizeof(struct iwl4965_cmd
) * slots_num
;
350 if (txq_id
== IWL_CMD_QUEUE_NUM
)
351 len
+= IWL_MAX_SCAN_SIZE
;
352 txq
->cmd
= pci_alloc_consistent(dev
, len
, &txq
->dma_addr_cmd
);
356 /* Alloc driver data array and TFD circular buffer */
357 rc
= iwl4965_tx_queue_alloc(priv
, txq
, txq_id
);
359 pci_free_consistent(dev
, len
, txq
->cmd
, txq
->dma_addr_cmd
);
363 txq
->need_update
= 0;
365 /* TFD_QUEUE_SIZE_MAX must be power-of-two size, otherwise
366 * iwl4965_queue_inc_wrap and iwl4965_queue_dec_wrap are broken. */
367 BUILD_BUG_ON(TFD_QUEUE_SIZE_MAX
& (TFD_QUEUE_SIZE_MAX
- 1));
369 /* Initialize queue's high/low-water marks, and head/tail indexes */
370 iwl4965_queue_init(priv
, &txq
->q
, TFD_QUEUE_SIZE_MAX
, slots_num
, txq_id
);
372 /* Tell device where to find queue */
373 iwl4965_hw_tx_queue_init(priv
, txq
);
379 * iwl4965_tx_queue_free - Deallocate DMA queue.
380 * @txq: Transmit queue to deallocate.
382 * Empty queue by removing and destroying all BD's.
384 * 0-fill, but do not free "txq" descriptor structure.
386 void iwl4965_tx_queue_free(struct iwl4965_priv
*priv
, struct iwl4965_tx_queue
*txq
)
388 struct iwl4965_queue
*q
= &txq
->q
;
389 struct pci_dev
*dev
= priv
->pci_dev
;
395 /* first, empty all BD's */
396 for (; q
->write_ptr
!= q
->read_ptr
;
397 q
->read_ptr
= iwl4965_queue_inc_wrap(q
->read_ptr
, q
->n_bd
))
398 iwl4965_hw_txq_free_tfd(priv
, txq
);
400 len
= sizeof(struct iwl4965_cmd
) * q
->n_window
;
401 if (q
->id
== IWL_CMD_QUEUE_NUM
)
402 len
+= IWL_MAX_SCAN_SIZE
;
404 /* De-alloc array of command/tx buffers */
405 pci_free_consistent(dev
, len
, txq
->cmd
, txq
->dma_addr_cmd
);
407 /* De-alloc circular buffer of TFDs */
409 pci_free_consistent(dev
, sizeof(struct iwl4965_tfd_frame
) *
410 txq
->q
.n_bd
, txq
->bd
, txq
->q
.dma_addr
);
412 /* De-alloc array of per-TFD driver data */
418 /* 0-fill queue descriptor structure */
419 memset(txq
, 0, sizeof(*txq
));
422 const u8 iwl4965_broadcast_addr
[ETH_ALEN
] = { 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF };
424 /*************** STATION TABLE MANAGEMENT ****
425 * mac80211 should be examined to determine if sta_info is duplicating
426 * the functionality provided here
429 /**************************************************************/
431 #if 0 /* temporary disable till we add real remove station */
433 * iwl4965_remove_station - Remove driver's knowledge of station.
435 * NOTE: This does not remove station from device's station table.
437 static u8
iwl4965_remove_station(struct iwl4965_priv
*priv
, const u8
*addr
, int is_ap
)
439 int index
= IWL_INVALID_STATION
;
443 spin_lock_irqsave(&priv
->sta_lock
, flags
);
447 else if (is_broadcast_ether_addr(addr
))
448 index
= priv
->hw_setting
.bcast_sta_id
;
450 for (i
= IWL_STA_ID
; i
< priv
->hw_setting
.max_stations
; i
++)
451 if (priv
->stations
[i
].used
&&
452 !compare_ether_addr(priv
->stations
[i
].sta
.sta
.addr
,
458 if (unlikely(index
== IWL_INVALID_STATION
))
461 if (priv
->stations
[index
].used
) {
462 priv
->stations
[index
].used
= 0;
463 priv
->num_stations
--;
466 BUG_ON(priv
->num_stations
< 0);
469 spin_unlock_irqrestore(&priv
->sta_lock
, flags
);
475 * iwl4965_clear_stations_table - Clear the driver's station table
477 * NOTE: This does not clear or otherwise alter the device's station table.
479 static void iwl4965_clear_stations_table(struct iwl4965_priv
*priv
)
483 spin_lock_irqsave(&priv
->sta_lock
, flags
);
485 priv
->num_stations
= 0;
486 memset(priv
->stations
, 0, sizeof(priv
->stations
));
488 spin_unlock_irqrestore(&priv
->sta_lock
, flags
);
492 * iwl4965_add_station_flags - Add station to tables in driver and device
494 u8
iwl4965_add_station_flags(struct iwl4965_priv
*priv
, const u8
*addr
,
495 int is_ap
, u8 flags
, void *ht_data
)
498 int index
= IWL_INVALID_STATION
;
499 struct iwl4965_station_entry
*station
;
500 unsigned long flags_spin
;
501 DECLARE_MAC_BUF(mac
);
503 spin_lock_irqsave(&priv
->sta_lock
, flags_spin
);
506 else if (is_broadcast_ether_addr(addr
))
507 index
= priv
->hw_setting
.bcast_sta_id
;
509 for (i
= IWL_STA_ID
; i
< priv
->hw_setting
.max_stations
; i
++) {
510 if (!compare_ether_addr(priv
->stations
[i
].sta
.sta
.addr
,
516 if (!priv
->stations
[i
].used
&&
517 index
== IWL_INVALID_STATION
)
522 /* These two conditions have the same outcome, but keep them separate
523 since they have different meanings */
524 if (unlikely(index
== IWL_INVALID_STATION
)) {
525 spin_unlock_irqrestore(&priv
->sta_lock
, flags_spin
);
529 if (priv
->stations
[index
].used
&&
530 !compare_ether_addr(priv
->stations
[index
].sta
.sta
.addr
, addr
)) {
531 spin_unlock_irqrestore(&priv
->sta_lock
, flags_spin
);
536 IWL_DEBUG_ASSOC("Add STA ID %d: %s\n", index
, print_mac(mac
, addr
));
537 station
= &priv
->stations
[index
];
539 priv
->num_stations
++;
541 /* Set up the REPLY_ADD_STA command to send to device */
542 memset(&station
->sta
, 0, sizeof(struct iwl4965_addsta_cmd
));
543 memcpy(station
->sta
.sta
.addr
, addr
, ETH_ALEN
);
544 station
->sta
.mode
= 0;
545 station
->sta
.sta
.sta_id
= index
;
546 station
->sta
.station_flags
= 0;
548 #ifdef CONFIG_IWL4965_HT
549 /* BCAST station and IBSS stations do not work in HT mode */
550 if (index
!= priv
->hw_setting
.bcast_sta_id
&&
551 priv
->iw_mode
!= IEEE80211_IF_TYPE_IBSS
)
552 iwl4965_set_ht_add_station(priv
, index
,
553 (struct ieee80211_ht_info
*) ht_data
);
554 #endif /*CONFIG_IWL4965_HT*/
556 spin_unlock_irqrestore(&priv
->sta_lock
, flags_spin
);
558 /* Add station to device's station table */
559 iwl4965_send_add_station(priv
, &station
->sta
, flags
);
564 /*************** DRIVER STATUS FUNCTIONS *****/
566 static inline int iwl4965_is_ready(struct iwl4965_priv
*priv
)
568 /* The adapter is 'ready' if READY and GEO_CONFIGURED bits are
569 * set but EXIT_PENDING is not */
570 return test_bit(STATUS_READY
, &priv
->status
) &&
571 test_bit(STATUS_GEO_CONFIGURED
, &priv
->status
) &&
572 !test_bit(STATUS_EXIT_PENDING
, &priv
->status
);
575 static inline int iwl4965_is_alive(struct iwl4965_priv
*priv
)
577 return test_bit(STATUS_ALIVE
, &priv
->status
);
580 static inline int iwl4965_is_init(struct iwl4965_priv
*priv
)
582 return test_bit(STATUS_INIT
, &priv
->status
);
585 static inline int iwl4965_is_rfkill(struct iwl4965_priv
*priv
)
587 return test_bit(STATUS_RF_KILL_HW
, &priv
->status
) ||
588 test_bit(STATUS_RF_KILL_SW
, &priv
->status
);
591 static inline int iwl4965_is_ready_rf(struct iwl4965_priv
*priv
)
594 if (iwl4965_is_rfkill(priv
))
597 return iwl4965_is_ready(priv
);
600 /*************** HOST COMMAND QUEUE FUNCTIONS *****/
602 #define IWL_CMD(x) case x : return #x
604 static const char *get_cmd_string(u8 cmd
)
607 IWL_CMD(REPLY_ALIVE
);
608 IWL_CMD(REPLY_ERROR
);
610 IWL_CMD(REPLY_RXON_ASSOC
);
611 IWL_CMD(REPLY_QOS_PARAM
);
612 IWL_CMD(REPLY_RXON_TIMING
);
613 IWL_CMD(REPLY_ADD_STA
);
614 IWL_CMD(REPLY_REMOVE_STA
);
615 IWL_CMD(REPLY_REMOVE_ALL_STA
);
617 IWL_CMD(REPLY_RATE_SCALE
);
618 IWL_CMD(REPLY_LEDS_CMD
);
619 IWL_CMD(REPLY_TX_LINK_QUALITY_CMD
);
620 IWL_CMD(RADAR_NOTIFICATION
);
621 IWL_CMD(REPLY_QUIET_CMD
);
622 IWL_CMD(REPLY_CHANNEL_SWITCH
);
623 IWL_CMD(CHANNEL_SWITCH_NOTIFICATION
);
624 IWL_CMD(REPLY_SPECTRUM_MEASUREMENT_CMD
);
625 IWL_CMD(SPECTRUM_MEASURE_NOTIFICATION
);
626 IWL_CMD(POWER_TABLE_CMD
);
627 IWL_CMD(PM_SLEEP_NOTIFICATION
);
628 IWL_CMD(PM_DEBUG_STATISTIC_NOTIFIC
);
629 IWL_CMD(REPLY_SCAN_CMD
);
630 IWL_CMD(REPLY_SCAN_ABORT_CMD
);
631 IWL_CMD(SCAN_START_NOTIFICATION
);
632 IWL_CMD(SCAN_RESULTS_NOTIFICATION
);
633 IWL_CMD(SCAN_COMPLETE_NOTIFICATION
);
634 IWL_CMD(BEACON_NOTIFICATION
);
635 IWL_CMD(REPLY_TX_BEACON
);
636 IWL_CMD(WHO_IS_AWAKE_NOTIFICATION
);
637 IWL_CMD(QUIET_NOTIFICATION
);
638 IWL_CMD(REPLY_TX_PWR_TABLE_CMD
);
639 IWL_CMD(MEASURE_ABORT_NOTIFICATION
);
640 IWL_CMD(REPLY_BT_CONFIG
);
641 IWL_CMD(REPLY_STATISTICS_CMD
);
642 IWL_CMD(STATISTICS_NOTIFICATION
);
643 IWL_CMD(REPLY_CARD_STATE_CMD
);
644 IWL_CMD(CARD_STATE_NOTIFICATION
);
645 IWL_CMD(MISSED_BEACONS_NOTIFICATION
);
646 IWL_CMD(REPLY_CT_KILL_CONFIG_CMD
);
647 IWL_CMD(SENSITIVITY_CMD
);
648 IWL_CMD(REPLY_PHY_CALIBRATION_CMD
);
649 IWL_CMD(REPLY_RX_PHY_CMD
);
650 IWL_CMD(REPLY_RX_MPDU_CMD
);
651 IWL_CMD(REPLY_4965_RX
);
652 IWL_CMD(REPLY_COMPRESSED_BA
);
659 #define HOST_COMPLETE_TIMEOUT (HZ / 2)
662 * iwl4965_enqueue_hcmd - enqueue a uCode command
663 * @priv: device private data point
664 * @cmd: a point to the ucode command structure
666 * The function returns < 0 values to indicate the operation is
667 * failed. On success, it turns the index (> 0) of command in the
670 static int iwl4965_enqueue_hcmd(struct iwl4965_priv
*priv
, struct iwl4965_host_cmd
*cmd
)
672 struct iwl4965_tx_queue
*txq
= &priv
->txq
[IWL_CMD_QUEUE_NUM
];
673 struct iwl4965_queue
*q
= &txq
->q
;
674 struct iwl4965_tfd_frame
*tfd
;
676 struct iwl4965_cmd
*out_cmd
;
678 u16 fix_size
= (u16
)(cmd
->len
+ sizeof(out_cmd
->hdr
));
679 dma_addr_t phys_addr
;
683 /* If any of the command structures end up being larger than
684 * the TFD_MAX_PAYLOAD_SIZE, and it sent as a 'small' command then
685 * we will need to increase the size of the TFD entries */
686 BUG_ON((fix_size
> TFD_MAX_PAYLOAD_SIZE
) &&
687 !(cmd
->meta
.flags
& CMD_SIZE_HUGE
));
689 if (iwl4965_is_rfkill(priv
)) {
690 IWL_DEBUG_INFO("Not sending command - RF KILL");
694 if (iwl4965_queue_space(q
) < ((cmd
->meta
.flags
& CMD_ASYNC
) ? 2 : 1)) {
695 IWL_ERROR("No space for Tx\n");
699 spin_lock_irqsave(&priv
->hcmd_lock
, flags
);
701 tfd
= &txq
->bd
[q
->write_ptr
];
702 memset(tfd
, 0, sizeof(*tfd
));
704 control_flags
= (u32
*) tfd
;
706 idx
= get_cmd_index(q
, q
->write_ptr
, cmd
->meta
.flags
& CMD_SIZE_HUGE
);
707 out_cmd
= &txq
->cmd
[idx
];
709 out_cmd
->hdr
.cmd
= cmd
->id
;
710 memcpy(&out_cmd
->meta
, &cmd
->meta
, sizeof(cmd
->meta
));
711 memcpy(&out_cmd
->cmd
.payload
, cmd
->data
, cmd
->len
);
713 /* At this point, the out_cmd now has all of the incoming cmd
716 out_cmd
->hdr
.flags
= 0;
717 out_cmd
->hdr
.sequence
= cpu_to_le16(QUEUE_TO_SEQ(IWL_CMD_QUEUE_NUM
) |
718 INDEX_TO_SEQ(q
->write_ptr
));
719 if (out_cmd
->meta
.flags
& CMD_SIZE_HUGE
)
720 out_cmd
->hdr
.sequence
|= cpu_to_le16(SEQ_HUGE_FRAME
);
722 phys_addr
= txq
->dma_addr_cmd
+ sizeof(txq
->cmd
[0]) * idx
+
723 offsetof(struct iwl4965_cmd
, hdr
);
724 iwl4965_hw_txq_attach_buf_to_tfd(priv
, tfd
, phys_addr
, fix_size
);
726 IWL_DEBUG_HC("Sending command %s (#%x), seq: 0x%04X, "
727 "%d bytes at %d[%d]:%d\n",
728 get_cmd_string(out_cmd
->hdr
.cmd
),
729 out_cmd
->hdr
.cmd
, le16_to_cpu(out_cmd
->hdr
.sequence
),
730 fix_size
, q
->write_ptr
, idx
, IWL_CMD_QUEUE_NUM
);
732 txq
->need_update
= 1;
734 /* Set up entry in queue's byte count circular buffer */
735 ret
= iwl4965_tx_queue_update_wr_ptr(priv
, txq
, 0);
737 /* Increment and update queue's write index */
738 q
->write_ptr
= iwl4965_queue_inc_wrap(q
->write_ptr
, q
->n_bd
);
739 iwl4965_tx_queue_update_write_ptr(priv
, txq
);
741 spin_unlock_irqrestore(&priv
->hcmd_lock
, flags
);
742 return ret
? ret
: idx
;
745 static int iwl4965_send_cmd_async(struct iwl4965_priv
*priv
, struct iwl4965_host_cmd
*cmd
)
749 BUG_ON(!(cmd
->meta
.flags
& CMD_ASYNC
));
751 /* An asynchronous command can not expect an SKB to be set. */
752 BUG_ON(cmd
->meta
.flags
& CMD_WANT_SKB
);
754 /* An asynchronous command MUST have a callback. */
755 BUG_ON(!cmd
->meta
.u
.callback
);
757 if (test_bit(STATUS_EXIT_PENDING
, &priv
->status
))
760 ret
= iwl4965_enqueue_hcmd(priv
, cmd
);
762 IWL_ERROR("Error sending %s: iwl4965_enqueue_hcmd failed: %d\n",
763 get_cmd_string(cmd
->id
), ret
);
769 static int iwl4965_send_cmd_sync(struct iwl4965_priv
*priv
, struct iwl4965_host_cmd
*cmd
)
773 static atomic_t entry
= ATOMIC_INIT(0); /* reentrance protection */
775 BUG_ON(cmd
->meta
.flags
& CMD_ASYNC
);
777 /* A synchronous command can not have a callback set. */
778 BUG_ON(cmd
->meta
.u
.callback
!= NULL
);
780 if (atomic_xchg(&entry
, 1)) {
781 IWL_ERROR("Error sending %s: Already sending a host command\n",
782 get_cmd_string(cmd
->id
));
786 set_bit(STATUS_HCMD_ACTIVE
, &priv
->status
);
788 if (cmd
->meta
.flags
& CMD_WANT_SKB
)
789 cmd
->meta
.source
= &cmd
->meta
;
791 cmd_idx
= iwl4965_enqueue_hcmd(priv
, cmd
);
794 IWL_ERROR("Error sending %s: iwl4965_enqueue_hcmd failed: %d\n",
795 get_cmd_string(cmd
->id
), ret
);
799 ret
= wait_event_interruptible_timeout(priv
->wait_command_queue
,
800 !test_bit(STATUS_HCMD_ACTIVE
, &priv
->status
),
801 HOST_COMPLETE_TIMEOUT
);
803 if (test_bit(STATUS_HCMD_ACTIVE
, &priv
->status
)) {
804 IWL_ERROR("Error sending %s: time out after %dms.\n",
805 get_cmd_string(cmd
->id
),
806 jiffies_to_msecs(HOST_COMPLETE_TIMEOUT
));
808 clear_bit(STATUS_HCMD_ACTIVE
, &priv
->status
);
814 if (test_bit(STATUS_RF_KILL_HW
, &priv
->status
)) {
815 IWL_DEBUG_INFO("Command %s aborted: RF KILL Switch\n",
816 get_cmd_string(cmd
->id
));
820 if (test_bit(STATUS_FW_ERROR
, &priv
->status
)) {
821 IWL_DEBUG_INFO("Command %s failed: FW Error\n",
822 get_cmd_string(cmd
->id
));
826 if ((cmd
->meta
.flags
& CMD_WANT_SKB
) && !cmd
->meta
.u
.skb
) {
827 IWL_ERROR("Error: Response NULL in '%s'\n",
828 get_cmd_string(cmd
->id
));
837 if (cmd
->meta
.flags
& CMD_WANT_SKB
) {
838 struct iwl4965_cmd
*qcmd
;
840 /* Cancel the CMD_WANT_SKB flag for the cmd in the
841 * TX cmd queue. Otherwise in case the cmd comes
842 * in later, it will possibly set an invalid
843 * address (cmd->meta.source). */
844 qcmd
= &priv
->txq
[IWL_CMD_QUEUE_NUM
].cmd
[cmd_idx
];
845 qcmd
->meta
.flags
&= ~CMD_WANT_SKB
;
848 if (cmd
->meta
.u
.skb
) {
849 dev_kfree_skb_any(cmd
->meta
.u
.skb
);
850 cmd
->meta
.u
.skb
= NULL
;
853 atomic_set(&entry
, 0);
857 int iwl4965_send_cmd(struct iwl4965_priv
*priv
, struct iwl4965_host_cmd
*cmd
)
859 if (cmd
->meta
.flags
& CMD_ASYNC
)
860 return iwl4965_send_cmd_async(priv
, cmd
);
862 return iwl4965_send_cmd_sync(priv
, cmd
);
865 int iwl4965_send_cmd_pdu(struct iwl4965_priv
*priv
, u8 id
, u16 len
, const void *data
)
867 struct iwl4965_host_cmd cmd
= {
873 return iwl4965_send_cmd_sync(priv
, &cmd
);
876 static int __must_check
iwl4965_send_cmd_u32(struct iwl4965_priv
*priv
, u8 id
, u32 val
)
878 struct iwl4965_host_cmd cmd
= {
884 return iwl4965_send_cmd_sync(priv
, &cmd
);
887 int iwl4965_send_statistics_request(struct iwl4965_priv
*priv
)
889 return iwl4965_send_cmd_u32(priv
, REPLY_STATISTICS_CMD
, 0);
893 * iwl4965_rxon_add_station - add station into station table.
895 * there is only one AP station with id= IWL_AP_ID
896 * NOTE: mutex must be held before calling this fnction
898 static int iwl4965_rxon_add_station(struct iwl4965_priv
*priv
,
899 const u8
*addr
, int is_ap
)
903 /* Add station to device's station table */
904 #ifdef CONFIG_IWL4965_HT
905 struct ieee80211_conf
*conf
= &priv
->hw
->conf
;
906 struct ieee80211_ht_info
*cur_ht_config
= &conf
->ht_conf
;
909 (conf
->flags
& IEEE80211_CONF_SUPPORT_HT_MODE
) &&
910 (priv
->iw_mode
== IEEE80211_IF_TYPE_STA
))
911 sta_id
= iwl4965_add_station_flags(priv
, addr
, is_ap
,
914 #endif /* CONFIG_IWL4965_HT */
915 sta_id
= iwl4965_add_station_flags(priv
, addr
, is_ap
,
918 /* Set up default rate scaling table in device's station table */
919 iwl4965_add_station(priv
, addr
, is_ap
);
925 * iwl4965_set_rxon_channel - Set the phymode and channel values in staging RXON
926 * @phymode: MODE_IEEE80211A sets to 5.2GHz; all else set to 2.4GHz
927 * @channel: Any channel valid for the requested phymode
929 * In addition to setting the staging RXON, priv->phymode is also set.
931 * NOTE: Does not commit to the hardware; it sets appropriate bit fields
932 * in the staging RXON flag structure based on the phymode
934 static int iwl4965_set_rxon_channel(struct iwl4965_priv
*priv
,
935 enum ieee80211_band band
,
938 if (!iwl4965_get_channel_info(priv
, band
, channel
)) {
939 IWL_DEBUG_INFO("Could not set channel to %d [%d]\n",
944 if ((le16_to_cpu(priv
->staging_rxon
.channel
) == channel
) &&
945 (priv
->band
== band
))
948 priv
->staging_rxon
.channel
= cpu_to_le16(channel
);
949 if (band
== IEEE80211_BAND_5GHZ
)
950 priv
->staging_rxon
.flags
&= ~RXON_FLG_BAND_24G_MSK
;
952 priv
->staging_rxon
.flags
|= RXON_FLG_BAND_24G_MSK
;
956 IWL_DEBUG_INFO("Staging channel set to %d [%d]\n", channel
, band
);
962 * iwl4965_check_rxon_cmd - validate RXON structure is valid
964 * NOTE: This is really only useful during development and can eventually
965 * be #ifdef'd out once the driver is stable and folks aren't actively
968 static int iwl4965_check_rxon_cmd(struct iwl4965_rxon_cmd
*rxon
)
973 if (rxon
->flags
& RXON_FLG_BAND_24G_MSK
) {
974 error
|= le32_to_cpu(rxon
->flags
&
975 (RXON_FLG_TGJ_NARROW_BAND_MSK
|
976 RXON_FLG_RADAR_DETECT_MSK
));
978 IWL_WARNING("check 24G fields %d | %d\n",
981 error
|= (rxon
->flags
& RXON_FLG_SHORT_SLOT_MSK
) ?
982 0 : le32_to_cpu(RXON_FLG_SHORT_SLOT_MSK
);
984 IWL_WARNING("check 52 fields %d | %d\n",
986 error
|= le32_to_cpu(rxon
->flags
& RXON_FLG_CCK_MSK
);
988 IWL_WARNING("check 52 CCK %d | %d\n",
991 error
|= (rxon
->node_addr
[0] | rxon
->bssid_addr
[0]) & 0x1;
993 IWL_WARNING("check mac addr %d | %d\n", counter
++, error
);
995 /* make sure basic rates 6Mbps and 1Mbps are supported */
996 error
|= (((rxon
->ofdm_basic_rates
& IWL_RATE_6M_MASK
) == 0) &&
997 ((rxon
->cck_basic_rates
& IWL_RATE_1M_MASK
) == 0));
999 IWL_WARNING("check basic rate %d | %d\n", counter
++, error
);
1001 error
|= (le16_to_cpu(rxon
->assoc_id
) > 2007);
1003 IWL_WARNING("check assoc id %d | %d\n", counter
++, error
);
1005 error
|= ((rxon
->flags
& (RXON_FLG_CCK_MSK
| RXON_FLG_SHORT_SLOT_MSK
))
1006 == (RXON_FLG_CCK_MSK
| RXON_FLG_SHORT_SLOT_MSK
));
1008 IWL_WARNING("check CCK and short slot %d | %d\n",
1011 error
|= ((rxon
->flags
& (RXON_FLG_CCK_MSK
| RXON_FLG_AUTO_DETECT_MSK
))
1012 == (RXON_FLG_CCK_MSK
| RXON_FLG_AUTO_DETECT_MSK
));
1014 IWL_WARNING("check CCK & auto detect %d | %d\n",
1017 error
|= ((rxon
->flags
& (RXON_FLG_AUTO_DETECT_MSK
|
1018 RXON_FLG_TGG_PROTECT_MSK
)) == RXON_FLG_TGG_PROTECT_MSK
);
1020 IWL_WARNING("check TGG and auto detect %d | %d\n",
1024 IWL_WARNING("Tuning to channel %d\n",
1025 le16_to_cpu(rxon
->channel
));
1028 IWL_ERROR("Not a valid iwl4965_rxon_assoc_cmd field values\n");
1035 * iwl4965_full_rxon_required - check if full RXON (vs RXON_ASSOC) cmd is needed
1036 * @priv: staging_rxon is compared to active_rxon
1038 * If the RXON structure is changing enough to require a new tune,
1039 * or is clearing the RXON_FILTER_ASSOC_MSK, then return 1 to indicate that
1040 * a new tune (full RXON command, rather than RXON_ASSOC cmd) is required.
1042 static int iwl4965_full_rxon_required(struct iwl4965_priv
*priv
)
1045 /* These items are only settable from the full RXON command */
1046 if (!(priv
->active_rxon
.filter_flags
& RXON_FILTER_ASSOC_MSK
) ||
1047 compare_ether_addr(priv
->staging_rxon
.bssid_addr
,
1048 priv
->active_rxon
.bssid_addr
) ||
1049 compare_ether_addr(priv
->staging_rxon
.node_addr
,
1050 priv
->active_rxon
.node_addr
) ||
1051 compare_ether_addr(priv
->staging_rxon
.wlap_bssid_addr
,
1052 priv
->active_rxon
.wlap_bssid_addr
) ||
1053 (priv
->staging_rxon
.dev_type
!= priv
->active_rxon
.dev_type
) ||
1054 (priv
->staging_rxon
.channel
!= priv
->active_rxon
.channel
) ||
1055 (priv
->staging_rxon
.air_propagation
!=
1056 priv
->active_rxon
.air_propagation
) ||
1057 (priv
->staging_rxon
.ofdm_ht_single_stream_basic_rates
!=
1058 priv
->active_rxon
.ofdm_ht_single_stream_basic_rates
) ||
1059 (priv
->staging_rxon
.ofdm_ht_dual_stream_basic_rates
!=
1060 priv
->active_rxon
.ofdm_ht_dual_stream_basic_rates
) ||
1061 (priv
->staging_rxon
.rx_chain
!= priv
->active_rxon
.rx_chain
) ||
1062 (priv
->staging_rxon
.assoc_id
!= priv
->active_rxon
.assoc_id
))
1065 /* flags, filter_flags, ofdm_basic_rates, and cck_basic_rates can
1066 * be updated with the RXON_ASSOC command -- however only some
1067 * flag transitions are allowed using RXON_ASSOC */
1069 /* Check if we are not switching bands */
1070 if ((priv
->staging_rxon
.flags
& RXON_FLG_BAND_24G_MSK
) !=
1071 (priv
->active_rxon
.flags
& RXON_FLG_BAND_24G_MSK
))
1074 /* Check if we are switching association toggle */
1075 if ((priv
->staging_rxon
.filter_flags
& RXON_FILTER_ASSOC_MSK
) !=
1076 (priv
->active_rxon
.filter_flags
& RXON_FILTER_ASSOC_MSK
))
1082 static int iwl4965_send_rxon_assoc(struct iwl4965_priv
*priv
)
1085 struct iwl4965_rx_packet
*res
= NULL
;
1086 struct iwl4965_rxon_assoc_cmd rxon_assoc
;
1087 struct iwl4965_host_cmd cmd
= {
1088 .id
= REPLY_RXON_ASSOC
,
1089 .len
= sizeof(rxon_assoc
),
1090 .meta
.flags
= CMD_WANT_SKB
,
1091 .data
= &rxon_assoc
,
1093 const struct iwl4965_rxon_cmd
*rxon1
= &priv
->staging_rxon
;
1094 const struct iwl4965_rxon_cmd
*rxon2
= &priv
->active_rxon
;
1096 if ((rxon1
->flags
== rxon2
->flags
) &&
1097 (rxon1
->filter_flags
== rxon2
->filter_flags
) &&
1098 (rxon1
->cck_basic_rates
== rxon2
->cck_basic_rates
) &&
1099 (rxon1
->ofdm_ht_single_stream_basic_rates
==
1100 rxon2
->ofdm_ht_single_stream_basic_rates
) &&
1101 (rxon1
->ofdm_ht_dual_stream_basic_rates
==
1102 rxon2
->ofdm_ht_dual_stream_basic_rates
) &&
1103 (rxon1
->rx_chain
== rxon2
->rx_chain
) &&
1104 (rxon1
->ofdm_basic_rates
== rxon2
->ofdm_basic_rates
)) {
1105 IWL_DEBUG_INFO("Using current RXON_ASSOC. Not resending.\n");
1109 rxon_assoc
.flags
= priv
->staging_rxon
.flags
;
1110 rxon_assoc
.filter_flags
= priv
->staging_rxon
.filter_flags
;
1111 rxon_assoc
.ofdm_basic_rates
= priv
->staging_rxon
.ofdm_basic_rates
;
1112 rxon_assoc
.cck_basic_rates
= priv
->staging_rxon
.cck_basic_rates
;
1113 rxon_assoc
.reserved
= 0;
1114 rxon_assoc
.ofdm_ht_single_stream_basic_rates
=
1115 priv
->staging_rxon
.ofdm_ht_single_stream_basic_rates
;
1116 rxon_assoc
.ofdm_ht_dual_stream_basic_rates
=
1117 priv
->staging_rxon
.ofdm_ht_dual_stream_basic_rates
;
1118 rxon_assoc
.rx_chain_select_flags
= priv
->staging_rxon
.rx_chain
;
1120 rc
= iwl4965_send_cmd_sync(priv
, &cmd
);
1124 res
= (struct iwl4965_rx_packet
*)cmd
.meta
.u
.skb
->data
;
1125 if (res
->hdr
.flags
& IWL_CMD_FAILED_MSK
) {
1126 IWL_ERROR("Bad return from REPLY_RXON_ASSOC command\n");
1130 priv
->alloc_rxb_skb
--;
1131 dev_kfree_skb_any(cmd
.meta
.u
.skb
);
1137 * iwl4965_commit_rxon - commit staging_rxon to hardware
1139 * The RXON command in staging_rxon is committed to the hardware and
1140 * the active_rxon structure is updated with the new data. This
1141 * function correctly transitions out of the RXON_ASSOC_MSK state if
1142 * a HW tune is required based on the RXON structure changes.
1144 static int iwl4965_commit_rxon(struct iwl4965_priv
*priv
)
1146 /* cast away the const for active_rxon in this function */
1147 struct iwl4965_rxon_cmd
*active_rxon
= (void *)&priv
->active_rxon
;
1148 DECLARE_MAC_BUF(mac
);
1151 if (!iwl4965_is_alive(priv
))
1154 /* always get timestamp with Rx frame */
1155 priv
->staging_rxon
.flags
|= RXON_FLG_TSF2HOST_MSK
;
1157 rc
= iwl4965_check_rxon_cmd(&priv
->staging_rxon
);
1159 IWL_ERROR("Invalid RXON configuration. Not committing.\n");
1163 /* If we don't need to send a full RXON, we can use
1164 * iwl4965_rxon_assoc_cmd which is used to reconfigure filter
1165 * and other flags for the current radio configuration. */
1166 if (!iwl4965_full_rxon_required(priv
)) {
1167 rc
= iwl4965_send_rxon_assoc(priv
);
1169 IWL_ERROR("Error setting RXON_ASSOC "
1170 "configuration (%d).\n", rc
);
1174 memcpy(active_rxon
, &priv
->staging_rxon
, sizeof(*active_rxon
));
1179 /* station table will be cleared */
1180 priv
->assoc_station_added
= 0;
1182 #ifdef CONFIG_IWL4965_SENSITIVITY
1183 priv
->sensitivity_data
.state
= IWL_SENS_CALIB_NEED_REINIT
;
1184 if (!priv
->error_recovering
)
1185 priv
->start_calib
= 0;
1187 iwl4965_init_sensitivity(priv
, CMD_ASYNC
, 1);
1188 #endif /* CONFIG_IWL4965_SENSITIVITY */
1190 /* If we are currently associated and the new config requires
1191 * an RXON_ASSOC and the new config wants the associated mask enabled,
1192 * we must clear the associated from the active configuration
1193 * before we apply the new config */
1194 if (iwl4965_is_associated(priv
) &&
1195 (priv
->staging_rxon
.filter_flags
& RXON_FILTER_ASSOC_MSK
)) {
1196 IWL_DEBUG_INFO("Toggling associated bit on current RXON\n");
1197 active_rxon
->filter_flags
&= ~RXON_FILTER_ASSOC_MSK
;
1199 rc
= iwl4965_send_cmd_pdu(priv
, REPLY_RXON
,
1200 sizeof(struct iwl4965_rxon_cmd
),
1201 &priv
->active_rxon
);
1203 /* If the mask clearing failed then we set
1204 * active_rxon back to what it was previously */
1206 active_rxon
->filter_flags
|= RXON_FILTER_ASSOC_MSK
;
1207 IWL_ERROR("Error clearing ASSOC_MSK on current "
1208 "configuration (%d).\n", rc
);
1213 IWL_DEBUG_INFO("Sending RXON\n"
1214 "* with%s RXON_FILTER_ASSOC_MSK\n"
1217 ((priv
->staging_rxon
.filter_flags
&
1218 RXON_FILTER_ASSOC_MSK
) ? "" : "out"),
1219 le16_to_cpu(priv
->staging_rxon
.channel
),
1220 print_mac(mac
, priv
->staging_rxon
.bssid_addr
));
1222 /* Apply the new configuration */
1223 rc
= iwl4965_send_cmd_pdu(priv
, REPLY_RXON
,
1224 sizeof(struct iwl4965_rxon_cmd
), &priv
->staging_rxon
);
1226 IWL_ERROR("Error setting new configuration (%d).\n", rc
);
1230 iwl4965_clear_stations_table(priv
);
1232 #ifdef CONFIG_IWL4965_SENSITIVITY
1233 if (!priv
->error_recovering
)
1234 priv
->start_calib
= 0;
1236 priv
->sensitivity_data
.state
= IWL_SENS_CALIB_NEED_REINIT
;
1237 iwl4965_init_sensitivity(priv
, CMD_ASYNC
, 1);
1238 #endif /* CONFIG_IWL4965_SENSITIVITY */
1240 memcpy(active_rxon
, &priv
->staging_rxon
, sizeof(*active_rxon
));
1242 /* If we issue a new RXON command which required a tune then we must
1243 * send a new TXPOWER command or we won't be able to Tx any frames */
1244 rc
= iwl4965_hw_reg_send_txpower(priv
);
1246 IWL_ERROR("Error setting Tx power (%d).\n", rc
);
1250 /* Add the broadcast address so we can send broadcast frames */
1251 if (iwl4965_rxon_add_station(priv
, iwl4965_broadcast_addr
, 0) ==
1252 IWL_INVALID_STATION
) {
1253 IWL_ERROR("Error adding BROADCAST address for transmit.\n");
1257 /* If we have set the ASSOC_MSK and we are in BSS mode then
1258 * add the IWL_AP_ID to the station rate table */
1259 if (iwl4965_is_associated(priv
) &&
1260 (priv
->iw_mode
== IEEE80211_IF_TYPE_STA
)) {
1261 if (iwl4965_rxon_add_station(priv
, priv
->active_rxon
.bssid_addr
, 1)
1262 == IWL_INVALID_STATION
) {
1263 IWL_ERROR("Error adding AP address for transmit.\n");
1266 priv
->assoc_station_added
= 1;
1272 static int iwl4965_send_bt_config(struct iwl4965_priv
*priv
)
1274 struct iwl4965_bt_cmd bt_cmd
= {
1282 return iwl4965_send_cmd_pdu(priv
, REPLY_BT_CONFIG
,
1283 sizeof(struct iwl4965_bt_cmd
), &bt_cmd
);
1286 static int iwl4965_send_scan_abort(struct iwl4965_priv
*priv
)
1289 struct iwl4965_rx_packet
*res
;
1290 struct iwl4965_host_cmd cmd
= {
1291 .id
= REPLY_SCAN_ABORT_CMD
,
1292 .meta
.flags
= CMD_WANT_SKB
,
1295 /* If there isn't a scan actively going on in the hardware
1296 * then we are in between scan bands and not actually
1297 * actively scanning, so don't send the abort command */
1298 if (!test_bit(STATUS_SCAN_HW
, &priv
->status
)) {
1299 clear_bit(STATUS_SCAN_ABORTING
, &priv
->status
);
1303 rc
= iwl4965_send_cmd_sync(priv
, &cmd
);
1305 clear_bit(STATUS_SCAN_ABORTING
, &priv
->status
);
1309 res
= (struct iwl4965_rx_packet
*)cmd
.meta
.u
.skb
->data
;
1310 if (res
->u
.status
!= CAN_ABORT_STATUS
) {
1311 /* The scan abort will return 1 for success or
1312 * 2 for "failure". A failure condition can be
1313 * due to simply not being in an active scan which
1314 * can occur if we send the scan abort before we
1315 * the microcode has notified us that a scan is
1317 IWL_DEBUG_INFO("SCAN_ABORT returned %d.\n", res
->u
.status
);
1318 clear_bit(STATUS_SCAN_ABORTING
, &priv
->status
);
1319 clear_bit(STATUS_SCAN_HW
, &priv
->status
);
1322 dev_kfree_skb_any(cmd
.meta
.u
.skb
);
1327 static int iwl4965_card_state_sync_callback(struct iwl4965_priv
*priv
,
1328 struct iwl4965_cmd
*cmd
,
1329 struct sk_buff
*skb
)
1337 * Use: Sets the device's internal card state to enable, disable, or halt
1339 * When in the 'enable' state the card operates as normal.
1340 * When in the 'disable' state, the card enters into a low power mode.
1341 * When in the 'halt' state, the card is shut down and must be fully
1342 * restarted to come back on.
1344 static int iwl4965_send_card_state(struct iwl4965_priv
*priv
, u32 flags
, u8 meta_flag
)
1346 struct iwl4965_host_cmd cmd
= {
1347 .id
= REPLY_CARD_STATE_CMD
,
1350 .meta
.flags
= meta_flag
,
1353 if (meta_flag
& CMD_ASYNC
)
1354 cmd
.meta
.u
.callback
= iwl4965_card_state_sync_callback
;
1356 return iwl4965_send_cmd(priv
, &cmd
);
1359 static int iwl4965_add_sta_sync_callback(struct iwl4965_priv
*priv
,
1360 struct iwl4965_cmd
*cmd
, struct sk_buff
*skb
)
1362 struct iwl4965_rx_packet
*res
= NULL
;
1365 IWL_ERROR("Error: Response NULL in REPLY_ADD_STA.\n");
1369 res
= (struct iwl4965_rx_packet
*)skb
->data
;
1370 if (res
->hdr
.flags
& IWL_CMD_FAILED_MSK
) {
1371 IWL_ERROR("Bad return from REPLY_ADD_STA (0x%08X)\n",
1376 switch (res
->u
.add_sta
.status
) {
1377 case ADD_STA_SUCCESS_MSK
:
1383 /* We didn't cache the SKB; let the caller free it */
1387 int iwl4965_send_add_station(struct iwl4965_priv
*priv
,
1388 struct iwl4965_addsta_cmd
*sta
, u8 flags
)
1390 struct iwl4965_rx_packet
*res
= NULL
;
1392 struct iwl4965_host_cmd cmd
= {
1393 .id
= REPLY_ADD_STA
,
1394 .len
= sizeof(struct iwl4965_addsta_cmd
),
1395 .meta
.flags
= flags
,
1399 if (flags
& CMD_ASYNC
)
1400 cmd
.meta
.u
.callback
= iwl4965_add_sta_sync_callback
;
1402 cmd
.meta
.flags
|= CMD_WANT_SKB
;
1404 rc
= iwl4965_send_cmd(priv
, &cmd
);
1406 if (rc
|| (flags
& CMD_ASYNC
))
1409 res
= (struct iwl4965_rx_packet
*)cmd
.meta
.u
.skb
->data
;
1410 if (res
->hdr
.flags
& IWL_CMD_FAILED_MSK
) {
1411 IWL_ERROR("Bad return from REPLY_ADD_STA (0x%08X)\n",
1417 switch (res
->u
.add_sta
.status
) {
1418 case ADD_STA_SUCCESS_MSK
:
1419 IWL_DEBUG_INFO("REPLY_ADD_STA PASSED\n");
1423 IWL_WARNING("REPLY_ADD_STA failed\n");
1428 priv
->alloc_rxb_skb
--;
1429 dev_kfree_skb_any(cmd
.meta
.u
.skb
);
1434 static int iwl4965_update_sta_key_info(struct iwl4965_priv
*priv
,
1435 struct ieee80211_key_conf
*keyconf
,
1438 unsigned long flags
;
1439 __le16 key_flags
= 0;
1441 switch (keyconf
->alg
) {
1443 key_flags
|= STA_KEY_FLG_CCMP
;
1444 key_flags
|= cpu_to_le16(
1445 keyconf
->keyidx
<< STA_KEY_FLG_KEYID_POS
);
1446 key_flags
&= ~STA_KEY_FLG_INVALID
;
1453 spin_lock_irqsave(&priv
->sta_lock
, flags
);
1454 priv
->stations
[sta_id
].keyinfo
.alg
= keyconf
->alg
;
1455 priv
->stations
[sta_id
].keyinfo
.keylen
= keyconf
->keylen
;
1456 memcpy(priv
->stations
[sta_id
].keyinfo
.key
, keyconf
->key
,
1459 memcpy(priv
->stations
[sta_id
].sta
.key
.key
, keyconf
->key
,
1461 priv
->stations
[sta_id
].sta
.key
.key_flags
= key_flags
;
1462 priv
->stations
[sta_id
].sta
.sta
.modify_mask
= STA_MODIFY_KEY_MASK
;
1463 priv
->stations
[sta_id
].sta
.mode
= STA_CONTROL_MODIFY_MSK
;
1465 spin_unlock_irqrestore(&priv
->sta_lock
, flags
);
1467 IWL_DEBUG_INFO("hwcrypto: modify ucode station key info\n");
1468 iwl4965_send_add_station(priv
, &priv
->stations
[sta_id
].sta
, 0);
1472 static int iwl4965_clear_sta_key_info(struct iwl4965_priv
*priv
, u8 sta_id
)
1474 unsigned long flags
;
1476 spin_lock_irqsave(&priv
->sta_lock
, flags
);
1477 memset(&priv
->stations
[sta_id
].keyinfo
, 0, sizeof(struct iwl4965_hw_key
));
1478 memset(&priv
->stations
[sta_id
].sta
.key
, 0, sizeof(struct iwl4965_keyinfo
));
1479 priv
->stations
[sta_id
].sta
.key
.key_flags
= STA_KEY_FLG_NO_ENC
;
1480 priv
->stations
[sta_id
].sta
.sta
.modify_mask
= STA_MODIFY_KEY_MASK
;
1481 priv
->stations
[sta_id
].sta
.mode
= STA_CONTROL_MODIFY_MSK
;
1482 spin_unlock_irqrestore(&priv
->sta_lock
, flags
);
1484 IWL_DEBUG_INFO("hwcrypto: clear ucode station key info\n");
1485 iwl4965_send_add_station(priv
, &priv
->stations
[sta_id
].sta
, 0);
1489 static void iwl4965_clear_free_frames(struct iwl4965_priv
*priv
)
1491 struct list_head
*element
;
1493 IWL_DEBUG_INFO("%d frames on pre-allocated heap on clear.\n",
1494 priv
->frames_count
);
1496 while (!list_empty(&priv
->free_frames
)) {
1497 element
= priv
->free_frames
.next
;
1499 kfree(list_entry(element
, struct iwl4965_frame
, list
));
1500 priv
->frames_count
--;
1503 if (priv
->frames_count
) {
1504 IWL_WARNING("%d frames still in use. Did we lose one?\n",
1505 priv
->frames_count
);
1506 priv
->frames_count
= 0;
1510 static struct iwl4965_frame
*iwl4965_get_free_frame(struct iwl4965_priv
*priv
)
1512 struct iwl4965_frame
*frame
;
1513 struct list_head
*element
;
1514 if (list_empty(&priv
->free_frames
)) {
1515 frame
= kzalloc(sizeof(*frame
), GFP_KERNEL
);
1517 IWL_ERROR("Could not allocate frame!\n");
1521 priv
->frames_count
++;
1525 element
= priv
->free_frames
.next
;
1527 return list_entry(element
, struct iwl4965_frame
, list
);
1530 static void iwl4965_free_frame(struct iwl4965_priv
*priv
, struct iwl4965_frame
*frame
)
1532 memset(frame
, 0, sizeof(*frame
));
1533 list_add(&frame
->list
, &priv
->free_frames
);
1536 unsigned int iwl4965_fill_beacon_frame(struct iwl4965_priv
*priv
,
1537 struct ieee80211_hdr
*hdr
,
1538 const u8
*dest
, int left
)
1541 if (!iwl4965_is_associated(priv
) || !priv
->ibss_beacon
||
1542 ((priv
->iw_mode
!= IEEE80211_IF_TYPE_IBSS
) &&
1543 (priv
->iw_mode
!= IEEE80211_IF_TYPE_AP
)))
1546 if (priv
->ibss_beacon
->len
> left
)
1549 memcpy(hdr
, priv
->ibss_beacon
->data
, priv
->ibss_beacon
->len
);
1551 return priv
->ibss_beacon
->len
;
1554 int iwl4965_rate_index_from_plcp(int plcp
)
1558 /* 4965 HT rate format */
1559 if (plcp
& RATE_MCS_HT_MSK
) {
1562 if (i
>= IWL_RATE_MIMO_6M_PLCP
)
1563 i
= i
- IWL_RATE_MIMO_6M_PLCP
;
1565 i
+= IWL_FIRST_OFDM_RATE
;
1566 /* skip 9M not supported in ht*/
1567 if (i
>= IWL_RATE_9M_INDEX
)
1569 if ((i
>= IWL_FIRST_OFDM_RATE
) &&
1570 (i
<= IWL_LAST_OFDM_RATE
))
1573 /* 4965 legacy rate format, search for match in table */
1575 for (i
= 0; i
< ARRAY_SIZE(iwl4965_rates
); i
++)
1576 if (iwl4965_rates
[i
].plcp
== (plcp
&0xFF))
1582 static u8
iwl4965_rate_get_lowest_plcp(int rate_mask
)
1586 for (i
= IWL_RATE_1M_INDEX
; i
!= IWL_RATE_INVALID
;
1587 i
= iwl4965_rates
[i
].next_ieee
) {
1588 if (rate_mask
& (1 << i
))
1589 return iwl4965_rates
[i
].plcp
;
1592 return IWL_RATE_INVALID
;
1595 static int iwl4965_send_beacon_cmd(struct iwl4965_priv
*priv
)
1597 struct iwl4965_frame
*frame
;
1598 unsigned int frame_size
;
1602 frame
= iwl4965_get_free_frame(priv
);
1605 IWL_ERROR("Could not obtain free frame buffer for beacon "
1610 if (!(priv
->staging_rxon
.flags
& RXON_FLG_BAND_24G_MSK
)) {
1611 rate
= iwl4965_rate_get_lowest_plcp(priv
->active_rate_basic
&
1613 if (rate
== IWL_INVALID_RATE
)
1614 rate
= IWL_RATE_6M_PLCP
;
1616 rate
= iwl4965_rate_get_lowest_plcp(priv
->active_rate_basic
& 0xF);
1617 if (rate
== IWL_INVALID_RATE
)
1618 rate
= IWL_RATE_1M_PLCP
;
1621 frame_size
= iwl4965_hw_get_beacon_cmd(priv
, frame
, rate
);
1623 rc
= iwl4965_send_cmd_pdu(priv
, REPLY_TX_BEACON
, frame_size
,
1626 iwl4965_free_frame(priv
, frame
);
1631 /******************************************************************************
1633 * EEPROM related functions
1635 ******************************************************************************/
1637 static void get_eeprom_mac(struct iwl4965_priv
*priv
, u8
*mac
)
1639 memcpy(mac
, priv
->eeprom
.mac_address
, 6);
1642 static inline void iwl4965_eeprom_release_semaphore(struct iwl4965_priv
*priv
)
1644 iwl4965_clear_bit(priv
, CSR_HW_IF_CONFIG_REG
,
1645 CSR_HW_IF_CONFIG_REG_BIT_EEPROM_OWN_SEM
);
1649 * iwl4965_eeprom_init - read EEPROM contents
1651 * Load the EEPROM contents from adapter into priv->eeprom
1653 * NOTE: This routine uses the non-debug IO access functions.
1655 int iwl4965_eeprom_init(struct iwl4965_priv
*priv
)
1657 u16
*e
= (u16
*)&priv
->eeprom
;
1658 u32 gp
= iwl4965_read32(priv
, CSR_EEPROM_GP
);
1660 int sz
= sizeof(priv
->eeprom
);
1665 /* The EEPROM structure has several padding buffers within it
1666 * and when adding new EEPROM maps is subject to programmer errors
1667 * which may be very difficult to identify without explicitly
1668 * checking the resulting size of the eeprom map. */
1669 BUILD_BUG_ON(sizeof(priv
->eeprom
) != IWL_EEPROM_IMAGE_SIZE
);
1671 if ((gp
& CSR_EEPROM_GP_VALID_MSK
) == CSR_EEPROM_GP_BAD_SIGNATURE
) {
1672 IWL_ERROR("EEPROM not found, EEPROM_GP=0x%08x", gp
);
1676 /* Make sure driver (instead of uCode) is allowed to read EEPROM */
1677 rc
= iwl4965_eeprom_acquire_semaphore(priv
);
1679 IWL_ERROR("Failed to acquire EEPROM semaphore.\n");
1683 /* eeprom is an array of 16bit values */
1684 for (addr
= 0; addr
< sz
; addr
+= sizeof(u16
)) {
1685 _iwl4965_write32(priv
, CSR_EEPROM_REG
, addr
<< 1);
1686 _iwl4965_clear_bit(priv
, CSR_EEPROM_REG
, CSR_EEPROM_REG_BIT_CMD
);
1688 for (i
= 0; i
< IWL_EEPROM_ACCESS_TIMEOUT
;
1689 i
+= IWL_EEPROM_ACCESS_DELAY
) {
1690 r
= _iwl4965_read_direct32(priv
, CSR_EEPROM_REG
);
1691 if (r
& CSR_EEPROM_REG_READ_VALID_MSK
)
1693 udelay(IWL_EEPROM_ACCESS_DELAY
);
1696 if (!(r
& CSR_EEPROM_REG_READ_VALID_MSK
)) {
1697 IWL_ERROR("Time out reading EEPROM[%d]", addr
);
1701 e
[addr
/ 2] = le16_to_cpu((__force __le16
)(r
>> 16));
1706 iwl4965_eeprom_release_semaphore(priv
);
1710 /******************************************************************************
1712 * Misc. internal state and helper functions
1714 ******************************************************************************/
1715 #ifdef CONFIG_IWL4965_DEBUG
1718 * iwl4965_report_frame - dump frame to syslog during debug sessions
1720 * You may hack this function to show different aspects of received frames,
1721 * including selective frame dumps.
1722 * group100 parameter selects whether to show 1 out of 100 good frames.
1724 * TODO: This was originally written for 3945, need to audit for
1725 * proper operation with 4965.
1727 void iwl4965_report_frame(struct iwl4965_priv
*priv
,
1728 struct iwl4965_rx_packet
*pkt
,
1729 struct ieee80211_hdr
*header
, int group100
)
1732 u32 print_summary
= 0;
1733 u32 print_dump
= 0; /* set to 1 to dump all frames' contents */
1750 struct iwl4965_rx_frame_stats
*rx_stats
= IWL_RX_STATS(pkt
);
1751 struct iwl4965_rx_frame_hdr
*rx_hdr
= IWL_RX_HDR(pkt
);
1752 struct iwl4965_rx_frame_end
*rx_end
= IWL_RX_END(pkt
);
1753 u8
*data
= IWL_RX_DATA(pkt
);
1756 fc
= le16_to_cpu(header
->frame_control
);
1757 seq_ctl
= le16_to_cpu(header
->seq_ctrl
);
1760 channel
= le16_to_cpu(rx_hdr
->channel
);
1761 phy_flags
= le16_to_cpu(rx_hdr
->phy_flags
);
1762 rate_sym
= rx_hdr
->rate
;
1763 length
= le16_to_cpu(rx_hdr
->len
);
1765 /* end-of-frame status and timestamp */
1766 status
= le32_to_cpu(rx_end
->status
);
1767 bcn_tmr
= le32_to_cpu(rx_end
->beacon_timestamp
);
1768 tsf_low
= le64_to_cpu(rx_end
->timestamp
) & 0x0ffffffff;
1769 tsf
= le64_to_cpu(rx_end
->timestamp
);
1771 /* signal statistics */
1772 rssi
= rx_stats
->rssi
;
1773 agc
= rx_stats
->agc
;
1774 sig_avg
= le16_to_cpu(rx_stats
->sig_avg
);
1775 noise_diff
= le16_to_cpu(rx_stats
->noise_diff
);
1777 to_us
= !compare_ether_addr(header
->addr1
, priv
->mac_addr
);
1779 /* if data frame is to us and all is good,
1780 * (optionally) print summary for only 1 out of every 100 */
1781 if (to_us
&& (fc
& ~IEEE80211_FCTL_PROTECTED
) ==
1782 (IEEE80211_FCTL_FROMDS
| IEEE80211_FTYPE_DATA
)) {
1785 print_summary
= 1; /* print each frame */
1786 else if (priv
->framecnt_to_us
< 100) {
1787 priv
->framecnt_to_us
++;
1790 priv
->framecnt_to_us
= 0;
1795 /* print summary for all other frames */
1799 if (print_summary
) {
1804 title
= "100Frames";
1805 else if (fc
& IEEE80211_FCTL_RETRY
)
1807 else if (ieee80211_is_assoc_response(fc
))
1809 else if (ieee80211_is_reassoc_response(fc
))
1811 else if (ieee80211_is_probe_response(fc
)) {
1813 print_dump
= 1; /* dump frame contents */
1814 } else if (ieee80211_is_beacon(fc
)) {
1816 print_dump
= 1; /* dump frame contents */
1817 } else if (ieee80211_is_atim(fc
))
1819 else if (ieee80211_is_auth(fc
))
1821 else if (ieee80211_is_deauth(fc
))
1823 else if (ieee80211_is_disassoc(fc
))
1828 rate
= iwl4965_rate_index_from_plcp(rate_sym
);
1832 rate
= iwl4965_rates
[rate
].ieee
/ 2;
1834 /* print frame summary.
1835 * MAC addresses show just the last byte (for brevity),
1836 * but you can hack it to show more, if you'd like to. */
1838 IWL_DEBUG_RX("%s: mhd=0x%04x, dst=0x%02x, "
1839 "len=%u, rssi=%d, chnl=%d, rate=%u, \n",
1840 title
, fc
, header
->addr1
[5],
1841 length
, rssi
, channel
, rate
);
1843 /* src/dst addresses assume managed mode */
1844 IWL_DEBUG_RX("%s: 0x%04x, dst=0x%02x, "
1845 "src=0x%02x, rssi=%u, tim=%lu usec, "
1846 "phy=0x%02x, chnl=%d\n",
1847 title
, fc
, header
->addr1
[5],
1848 header
->addr3
[5], rssi
,
1849 tsf_low
- priv
->scan_start_tsf
,
1850 phy_flags
, channel
);
1854 iwl4965_print_hex_dump(IWL_DL_RX
, data
, length
);
1858 static void iwl4965_unset_hw_setting(struct iwl4965_priv
*priv
)
1860 if (priv
->hw_setting
.shared_virt
)
1861 pci_free_consistent(priv
->pci_dev
,
1862 sizeof(struct iwl4965_shared
),
1863 priv
->hw_setting
.shared_virt
,
1864 priv
->hw_setting
.shared_phys
);
1868 * iwl4965_supported_rate_to_ie - fill in the supported rate in IE field
1870 * return : set the bit for each supported rate insert in ie
1872 static u16
iwl4965_supported_rate_to_ie(u8
*ie
, u16 supported_rate
,
1873 u16 basic_rate
, int *left
)
1875 u16 ret_rates
= 0, bit
;
1880 for (bit
= 1, i
= 0; i
< IWL_RATE_COUNT
; i
++, bit
<<= 1) {
1881 if (bit
& supported_rate
) {
1883 rates
[*cnt
] = iwl4965_rates
[i
].ieee
|
1884 ((bit
& basic_rate
) ? 0x80 : 0x00);
1888 (*cnt
>= IWL_SUPPORTED_RATES_IE_LEN
))
1897 * iwl4965_fill_probe_req - fill in all required fields and IE for probe request
1899 static u16
iwl4965_fill_probe_req(struct iwl4965_priv
*priv
,
1900 enum ieee80211_band band
,
1901 struct ieee80211_mgmt
*frame
,
1902 int left
, int is_direct
)
1906 u16 active_rates
, ret_rates
, cck_rates
, active_rate_basic
;
1907 #ifdef CONFIG_IWL4965_HT
1908 const struct ieee80211_supported_band
*sband
=
1909 iwl4965_get_hw_mode(priv
, band
);
1910 #endif /* CONFIG_IWL4965_HT */
1912 /* Make sure there is enough space for the probe request,
1913 * two mandatory IEs and the data */
1919 frame
->frame_control
= cpu_to_le16(IEEE80211_STYPE_PROBE_REQ
);
1920 memcpy(frame
->da
, iwl4965_broadcast_addr
, ETH_ALEN
);
1921 memcpy(frame
->sa
, priv
->mac_addr
, ETH_ALEN
);
1922 memcpy(frame
->bssid
, iwl4965_broadcast_addr
, ETH_ALEN
);
1923 frame
->seq_ctrl
= 0;
1925 /* fill in our indirect SSID IE */
1932 pos
= &(frame
->u
.probe_req
.variable
[0]);
1933 *pos
++ = WLAN_EID_SSID
;
1936 /* fill in our direct SSID IE... */
1939 left
-= 2 + priv
->essid_len
;
1942 /* ... fill it in... */
1943 *pos
++ = WLAN_EID_SSID
;
1944 *pos
++ = priv
->essid_len
;
1945 memcpy(pos
, priv
->essid
, priv
->essid_len
);
1946 pos
+= priv
->essid_len
;
1947 len
+= 2 + priv
->essid_len
;
1950 /* fill in supported rate */
1956 /* ... fill it in... */
1957 *pos
++ = WLAN_EID_SUPP_RATES
;
1960 /* exclude 60M rate */
1961 active_rates
= priv
->rates_mask
;
1962 active_rates
&= ~IWL_RATE_60M_MASK
;
1964 active_rate_basic
= active_rates
& IWL_BASIC_RATES_MASK
;
1966 cck_rates
= IWL_CCK_RATES_MASK
& active_rates
;
1967 ret_rates
= iwl4965_supported_rate_to_ie(pos
, cck_rates
,
1968 active_rate_basic
, &left
);
1969 active_rates
&= ~ret_rates
;
1971 ret_rates
= iwl4965_supported_rate_to_ie(pos
, active_rates
,
1972 active_rate_basic
, &left
);
1973 active_rates
&= ~ret_rates
;
1977 if (active_rates
== 0)
1980 /* fill in supported extended rate */
1985 /* ... fill it in... */
1986 *pos
++ = WLAN_EID_EXT_SUPP_RATES
;
1988 iwl4965_supported_rate_to_ie(pos
, active_rates
,
1989 active_rate_basic
, &left
);
1993 #ifdef CONFIG_IWL4965_HT
1994 if (sband
&& sband
->ht_info
.ht_supported
) {
1995 struct ieee80211_ht_cap
*ht_cap
;
1997 *pos
++ = WLAN_EID_HT_CAPABILITY
;
1998 *pos
++ = sizeof(struct ieee80211_ht_cap
);
1999 ht_cap
= (struct ieee80211_ht_cap
*)pos
;
2000 ht_cap
->cap_info
= cpu_to_le16(sband
->ht_info
.cap
);
2001 memcpy(ht_cap
->supp_mcs_set
, sband
->ht_info
.supp_mcs_set
, 16);
2002 ht_cap
->ampdu_params_info
=(sband
->ht_info
.ampdu_factor
&
2003 IEEE80211_HT_CAP_AMPDU_FACTOR
) |
2004 ((sband
->ht_info
.ampdu_density
<< 2) &
2005 IEEE80211_HT_CAP_AMPDU_DENSITY
);
2006 len
+= 2 + sizeof(struct ieee80211_ht_cap
);
2008 #endif /*CONFIG_IWL4965_HT */
2017 static int iwl4965_send_qos_params_command(struct iwl4965_priv
*priv
,
2018 struct iwl4965_qosparam_cmd
*qos
)
2021 return iwl4965_send_cmd_pdu(priv
, REPLY_QOS_PARAM
,
2022 sizeof(struct iwl4965_qosparam_cmd
), qos
);
2025 static void iwl4965_reset_qos(struct iwl4965_priv
*priv
)
2031 unsigned long flags
;
2034 spin_lock_irqsave(&priv
->lock
, flags
);
2035 priv
->qos_data
.qos_active
= 0;
2037 if (priv
->iw_mode
== IEEE80211_IF_TYPE_IBSS
) {
2038 if (priv
->qos_data
.qos_enable
)
2039 priv
->qos_data
.qos_active
= 1;
2040 if (!(priv
->active_rate
& 0xfff0)) {
2044 } else if (priv
->iw_mode
== IEEE80211_IF_TYPE_AP
) {
2045 if (priv
->qos_data
.qos_enable
)
2046 priv
->qos_data
.qos_active
= 1;
2047 } else if (!(priv
->staging_rxon
.flags
& RXON_FLG_SHORT_SLOT_MSK
)) {
2052 if (priv
->qos_data
.qos_active
)
2055 priv
->qos_data
.def_qos_parm
.ac
[0].cw_min
= cpu_to_le16(cw_min
);
2056 priv
->qos_data
.def_qos_parm
.ac
[0].cw_max
= cpu_to_le16(cw_max
);
2057 priv
->qos_data
.def_qos_parm
.ac
[0].aifsn
= aifs
;
2058 priv
->qos_data
.def_qos_parm
.ac
[0].edca_txop
= 0;
2059 priv
->qos_data
.def_qos_parm
.ac
[0].reserved1
= 0;
2061 if (priv
->qos_data
.qos_active
) {
2063 priv
->qos_data
.def_qos_parm
.ac
[i
].cw_min
= cpu_to_le16(cw_min
);
2064 priv
->qos_data
.def_qos_parm
.ac
[i
].cw_max
= cpu_to_le16(cw_max
);
2065 priv
->qos_data
.def_qos_parm
.ac
[i
].aifsn
= 7;
2066 priv
->qos_data
.def_qos_parm
.ac
[i
].edca_txop
= 0;
2067 priv
->qos_data
.def_qos_parm
.ac
[i
].reserved1
= 0;
2070 priv
->qos_data
.def_qos_parm
.ac
[i
].cw_min
=
2071 cpu_to_le16((cw_min
+ 1) / 2 - 1);
2072 priv
->qos_data
.def_qos_parm
.ac
[i
].cw_max
=
2073 cpu_to_le16(cw_max
);
2074 priv
->qos_data
.def_qos_parm
.ac
[i
].aifsn
= 2;
2076 priv
->qos_data
.def_qos_parm
.ac
[i
].edca_txop
=
2079 priv
->qos_data
.def_qos_parm
.ac
[i
].edca_txop
=
2081 priv
->qos_data
.def_qos_parm
.ac
[i
].reserved1
= 0;
2084 priv
->qos_data
.def_qos_parm
.ac
[i
].cw_min
=
2085 cpu_to_le16((cw_min
+ 1) / 4 - 1);
2086 priv
->qos_data
.def_qos_parm
.ac
[i
].cw_max
=
2087 cpu_to_le16((cw_max
+ 1) / 2 - 1);
2088 priv
->qos_data
.def_qos_parm
.ac
[i
].aifsn
= 2;
2089 priv
->qos_data
.def_qos_parm
.ac
[i
].reserved1
= 0;
2091 priv
->qos_data
.def_qos_parm
.ac
[i
].edca_txop
=
2094 priv
->qos_data
.def_qos_parm
.ac
[i
].edca_txop
=
2097 for (i
= 1; i
< 4; i
++) {
2098 priv
->qos_data
.def_qos_parm
.ac
[i
].cw_min
=
2099 cpu_to_le16(cw_min
);
2100 priv
->qos_data
.def_qos_parm
.ac
[i
].cw_max
=
2101 cpu_to_le16(cw_max
);
2102 priv
->qos_data
.def_qos_parm
.ac
[i
].aifsn
= aifs
;
2103 priv
->qos_data
.def_qos_parm
.ac
[i
].edca_txop
= 0;
2104 priv
->qos_data
.def_qos_parm
.ac
[i
].reserved1
= 0;
2107 IWL_DEBUG_QOS("set QoS to default \n");
2109 spin_unlock_irqrestore(&priv
->lock
, flags
);
2112 static void iwl4965_activate_qos(struct iwl4965_priv
*priv
, u8 force
)
2114 unsigned long flags
;
2116 if (test_bit(STATUS_EXIT_PENDING
, &priv
->status
))
2119 if (!priv
->qos_data
.qos_enable
)
2122 spin_lock_irqsave(&priv
->lock
, flags
);
2123 priv
->qos_data
.def_qos_parm
.qos_flags
= 0;
2125 if (priv
->qos_data
.qos_cap
.q_AP
.queue_request
&&
2126 !priv
->qos_data
.qos_cap
.q_AP
.txop_request
)
2127 priv
->qos_data
.def_qos_parm
.qos_flags
|=
2128 QOS_PARAM_FLG_TXOP_TYPE_MSK
;
2129 if (priv
->qos_data
.qos_active
)
2130 priv
->qos_data
.def_qos_parm
.qos_flags
|=
2131 QOS_PARAM_FLG_UPDATE_EDCA_MSK
;
2133 #ifdef CONFIG_IWL4965_HT
2134 if (priv
->current_ht_config
.is_ht
)
2135 priv
->qos_data
.def_qos_parm
.qos_flags
|= QOS_PARAM_FLG_TGN_MSK
;
2136 #endif /* CONFIG_IWL4965_HT */
2138 spin_unlock_irqrestore(&priv
->lock
, flags
);
2140 if (force
|| iwl4965_is_associated(priv
)) {
2141 IWL_DEBUG_QOS("send QoS cmd with Qos active=%d FLAGS=0x%X\n",
2142 priv
->qos_data
.qos_active
,
2143 priv
->qos_data
.def_qos_parm
.qos_flags
);
2145 iwl4965_send_qos_params_command(priv
,
2146 &(priv
->qos_data
.def_qos_parm
));
2151 * Power management (not Tx power!) functions
2153 #define MSEC_TO_USEC 1024
2155 #define NOSLP __constant_cpu_to_le16(0), 0, 0
2156 #define SLP IWL_POWER_DRIVER_ALLOW_SLEEP_MSK, 0, 0
2157 #define SLP_TIMEOUT(T) __constant_cpu_to_le32((T) * MSEC_TO_USEC)
2158 #define SLP_VEC(X0, X1, X2, X3, X4) {__constant_cpu_to_le32(X0), \
2159 __constant_cpu_to_le32(X1), \
2160 __constant_cpu_to_le32(X2), \
2161 __constant_cpu_to_le32(X3), \
2162 __constant_cpu_to_le32(X4)}
2165 /* default power management (not Tx power) table values */
2167 static struct iwl4965_power_vec_entry range_0
[IWL_POWER_AC
] = {
2168 {{NOSLP
, SLP_TIMEOUT(0), SLP_TIMEOUT(0), SLP_VEC(0, 0, 0, 0, 0)}, 0},
2169 {{SLP
, SLP_TIMEOUT(200), SLP_TIMEOUT(500), SLP_VEC(1, 2, 3, 4, 4)}, 0},
2170 {{SLP
, SLP_TIMEOUT(200), SLP_TIMEOUT(300), SLP_VEC(2, 4, 6, 7, 7)}, 0},
2171 {{SLP
, SLP_TIMEOUT(50), SLP_TIMEOUT(100), SLP_VEC(2, 6, 9, 9, 10)}, 0},
2172 {{SLP
, SLP_TIMEOUT(50), SLP_TIMEOUT(25), SLP_VEC(2, 7, 9, 9, 10)}, 1},
2173 {{SLP
, SLP_TIMEOUT(25), SLP_TIMEOUT(25), SLP_VEC(4, 7, 10, 10, 10)}, 1}
2177 static struct iwl4965_power_vec_entry range_1
[IWL_POWER_AC
] = {
2178 {{NOSLP
, SLP_TIMEOUT(0), SLP_TIMEOUT(0), SLP_VEC(0, 0, 0, 0, 0)}, 0},
2179 {{SLP
, SLP_TIMEOUT(200), SLP_TIMEOUT(500),
2180 SLP_VEC(1, 2, 3, 4, 0xFF)}, 0},
2181 {{SLP
, SLP_TIMEOUT(200), SLP_TIMEOUT(300),
2182 SLP_VEC(2, 4, 6, 7, 0xFF)}, 0},
2183 {{SLP
, SLP_TIMEOUT(50), SLP_TIMEOUT(100),
2184 SLP_VEC(2, 6, 9, 9, 0xFF)}, 0},
2185 {{SLP
, SLP_TIMEOUT(50), SLP_TIMEOUT(25), SLP_VEC(2, 7, 9, 9, 0xFF)}, 0},
2186 {{SLP
, SLP_TIMEOUT(25), SLP_TIMEOUT(25),
2187 SLP_VEC(4, 7, 10, 10, 0xFF)}, 0}
2190 int iwl4965_power_init_handle(struct iwl4965_priv
*priv
)
2193 struct iwl4965_power_mgr
*pow_data
;
2194 int size
= sizeof(struct iwl4965_power_vec_entry
) * IWL_POWER_AC
;
2197 IWL_DEBUG_POWER("Initialize power \n");
2199 pow_data
= &(priv
->power_data
);
2201 memset(pow_data
, 0, sizeof(*pow_data
));
2203 pow_data
->active_index
= IWL_POWER_RANGE_0
;
2204 pow_data
->dtim_val
= 0xffff;
2206 memcpy(&pow_data
->pwr_range_0
[0], &range_0
[0], size
);
2207 memcpy(&pow_data
->pwr_range_1
[0], &range_1
[0], size
);
2209 rc
= pci_read_config_word(priv
->pci_dev
, PCI_LINK_CTRL
, &pci_pm
);
2213 struct iwl4965_powertable_cmd
*cmd
;
2215 IWL_DEBUG_POWER("adjust power command flags\n");
2217 for (i
= 0; i
< IWL_POWER_AC
; i
++) {
2218 cmd
= &pow_data
->pwr_range_0
[i
].cmd
;
2221 cmd
->flags
&= ~IWL_POWER_PCI_PM_MSK
;
2223 cmd
->flags
|= IWL_POWER_PCI_PM_MSK
;
2229 static int iwl4965_update_power_cmd(struct iwl4965_priv
*priv
,
2230 struct iwl4965_powertable_cmd
*cmd
, u32 mode
)
2235 struct iwl4965_power_vec_entry
*range
;
2237 struct iwl4965_power_mgr
*pow_data
;
2239 if (mode
> IWL_POWER_INDEX_5
) {
2240 IWL_DEBUG_POWER("Error invalid power mode \n");
2243 pow_data
= &(priv
->power_data
);
2245 if (pow_data
->active_index
== IWL_POWER_RANGE_0
)
2246 range
= &pow_data
->pwr_range_0
[0];
2248 range
= &pow_data
->pwr_range_1
[1];
2250 memcpy(cmd
, &range
[mode
].cmd
, sizeof(struct iwl4965_powertable_cmd
));
2252 #ifdef IWL_MAC80211_DISABLE
2253 if (priv
->assoc_network
!= NULL
) {
2254 unsigned long flags
;
2256 period
= priv
->assoc_network
->tim
.tim_period
;
2258 #endif /*IWL_MAC80211_DISABLE */
2259 skip
= range
[mode
].no_dtim
;
2268 cmd
->flags
&= ~IWL_POWER_SLEEP_OVER_DTIM_MSK
;
2270 __le32 slp_itrvl
= cmd
->sleep_interval
[IWL_POWER_VEC_SIZE
- 1];
2271 max_sleep
= (le32_to_cpu(slp_itrvl
) / period
) * period
;
2272 cmd
->flags
|= IWL_POWER_SLEEP_OVER_DTIM_MSK
;
2275 for (i
= 0; i
< IWL_POWER_VEC_SIZE
; i
++) {
2276 if (le32_to_cpu(cmd
->sleep_interval
[i
]) > max_sleep
)
2277 cmd
->sleep_interval
[i
] = cpu_to_le32(max_sleep
);
2280 IWL_DEBUG_POWER("Flags value = 0x%08X\n", cmd
->flags
);
2281 IWL_DEBUG_POWER("Tx timeout = %u\n", le32_to_cpu(cmd
->tx_data_timeout
));
2282 IWL_DEBUG_POWER("Rx timeout = %u\n", le32_to_cpu(cmd
->rx_data_timeout
));
2283 IWL_DEBUG_POWER("Sleep interval vector = { %d , %d , %d , %d , %d }\n",
2284 le32_to_cpu(cmd
->sleep_interval
[0]),
2285 le32_to_cpu(cmd
->sleep_interval
[1]),
2286 le32_to_cpu(cmd
->sleep_interval
[2]),
2287 le32_to_cpu(cmd
->sleep_interval
[3]),
2288 le32_to_cpu(cmd
->sleep_interval
[4]));
2293 static int iwl4965_send_power_mode(struct iwl4965_priv
*priv
, u32 mode
)
2295 u32
uninitialized_var(final_mode
);
2297 struct iwl4965_powertable_cmd cmd
;
2299 /* If on battery, set to 3,
2300 * if plugged into AC power, set to CAM ("continuously aware mode"),
2301 * else user level */
2303 case IWL_POWER_BATTERY
:
2304 final_mode
= IWL_POWER_INDEX_3
;
2307 final_mode
= IWL_POWER_MODE_CAM
;
2314 cmd
.keep_alive_beacons
= 0;
2316 iwl4965_update_power_cmd(priv
, &cmd
, final_mode
);
2318 rc
= iwl4965_send_cmd_pdu(priv
, POWER_TABLE_CMD
, sizeof(cmd
), &cmd
);
2320 if (final_mode
== IWL_POWER_MODE_CAM
)
2321 clear_bit(STATUS_POWER_PMI
, &priv
->status
);
2323 set_bit(STATUS_POWER_PMI
, &priv
->status
);
2328 int iwl4965_is_network_packet(struct iwl4965_priv
*priv
, struct ieee80211_hdr
*header
)
2330 /* Filter incoming packets to determine if they are targeted toward
2331 * this network, discarding packets coming from ourselves */
2332 switch (priv
->iw_mode
) {
2333 case IEEE80211_IF_TYPE_IBSS
: /* Header: Dest. | Source | BSSID */
2334 /* packets from our adapter are dropped (echo) */
2335 if (!compare_ether_addr(header
->addr2
, priv
->mac_addr
))
2337 /* {broad,multi}cast packets to our IBSS go through */
2338 if (is_multicast_ether_addr(header
->addr1
))
2339 return !compare_ether_addr(header
->addr3
, priv
->bssid
);
2340 /* packets to our adapter go through */
2341 return !compare_ether_addr(header
->addr1
, priv
->mac_addr
);
2342 case IEEE80211_IF_TYPE_STA
: /* Header: Dest. | AP{BSSID} | Source */
2343 /* packets from our adapter are dropped (echo) */
2344 if (!compare_ether_addr(header
->addr3
, priv
->mac_addr
))
2346 /* {broad,multi}cast packets to our BSS go through */
2347 if (is_multicast_ether_addr(header
->addr1
))
2348 return !compare_ether_addr(header
->addr2
, priv
->bssid
);
2349 /* packets to our adapter go through */
2350 return !compare_ether_addr(header
->addr1
, priv
->mac_addr
);
2356 #define TX_STATUS_ENTRY(x) case TX_STATUS_FAIL_ ## x: return #x
2358 static const char *iwl4965_get_tx_fail_reason(u32 status
)
2360 switch (status
& TX_STATUS_MSK
) {
2361 case TX_STATUS_SUCCESS
:
2363 TX_STATUS_ENTRY(SHORT_LIMIT
);
2364 TX_STATUS_ENTRY(LONG_LIMIT
);
2365 TX_STATUS_ENTRY(FIFO_UNDERRUN
);
2366 TX_STATUS_ENTRY(MGMNT_ABORT
);
2367 TX_STATUS_ENTRY(NEXT_FRAG
);
2368 TX_STATUS_ENTRY(LIFE_EXPIRE
);
2369 TX_STATUS_ENTRY(DEST_PS
);
2370 TX_STATUS_ENTRY(ABORTED
);
2371 TX_STATUS_ENTRY(BT_RETRY
);
2372 TX_STATUS_ENTRY(STA_INVALID
);
2373 TX_STATUS_ENTRY(FRAG_DROPPED
);
2374 TX_STATUS_ENTRY(TID_DISABLE
);
2375 TX_STATUS_ENTRY(FRAME_FLUSHED
);
2376 TX_STATUS_ENTRY(INSUFFICIENT_CF_POLL
);
2377 TX_STATUS_ENTRY(TX_LOCKED
);
2378 TX_STATUS_ENTRY(NO_BEACON_ON_RADAR
);
2385 * iwl4965_scan_cancel - Cancel any currently executing HW scan
2387 * NOTE: priv->mutex is not required before calling this function
2389 static int iwl4965_scan_cancel(struct iwl4965_priv
*priv
)
2391 if (!test_bit(STATUS_SCAN_HW
, &priv
->status
)) {
2392 clear_bit(STATUS_SCANNING
, &priv
->status
);
2396 if (test_bit(STATUS_SCANNING
, &priv
->status
)) {
2397 if (!test_bit(STATUS_SCAN_ABORTING
, &priv
->status
)) {
2398 IWL_DEBUG_SCAN("Queuing scan abort.\n");
2399 set_bit(STATUS_SCAN_ABORTING
, &priv
->status
);
2400 queue_work(priv
->workqueue
, &priv
->abort_scan
);
2403 IWL_DEBUG_SCAN("Scan abort already in progress.\n");
2405 return test_bit(STATUS_SCANNING
, &priv
->status
);
2412 * iwl4965_scan_cancel_timeout - Cancel any currently executing HW scan
2413 * @ms: amount of time to wait (in milliseconds) for scan to abort
2415 * NOTE: priv->mutex must be held before calling this function
2417 static int iwl4965_scan_cancel_timeout(struct iwl4965_priv
*priv
, unsigned long ms
)
2419 unsigned long now
= jiffies
;
2422 ret
= iwl4965_scan_cancel(priv
);
2424 mutex_unlock(&priv
->mutex
);
2425 while (!time_after(jiffies
, now
+ msecs_to_jiffies(ms
)) &&
2426 test_bit(STATUS_SCANNING
, &priv
->status
))
2428 mutex_lock(&priv
->mutex
);
2430 return test_bit(STATUS_SCANNING
, &priv
->status
);
2436 static void iwl4965_sequence_reset(struct iwl4965_priv
*priv
)
2438 /* Reset ieee stats */
2440 /* We don't reset the net_device_stats (ieee->stats) on
2443 priv
->last_seq_num
= -1;
2444 priv
->last_frag_num
= -1;
2445 priv
->last_packet_time
= 0;
2447 iwl4965_scan_cancel(priv
);
2450 #define MAX_UCODE_BEACON_INTERVAL 4096
2451 #define INTEL_CONN_LISTEN_INTERVAL __constant_cpu_to_le16(0xA)
2453 static __le16
iwl4965_adjust_beacon_interval(u16 beacon_val
)
2456 u16 beacon_factor
= 0;
2459 (beacon_val
+ MAX_UCODE_BEACON_INTERVAL
)
2460 / MAX_UCODE_BEACON_INTERVAL
;
2461 new_val
= beacon_val
/ beacon_factor
;
2463 return cpu_to_le16(new_val
);
2466 static void iwl4965_setup_rxon_timing(struct iwl4965_priv
*priv
)
2468 u64 interval_tm_unit
;
2470 unsigned long flags
;
2471 struct ieee80211_conf
*conf
= NULL
;
2474 conf
= ieee80211_get_hw_conf(priv
->hw
);
2476 spin_lock_irqsave(&priv
->lock
, flags
);
2477 priv
->rxon_timing
.timestamp
.dw
[1] = cpu_to_le32(priv
->timestamp1
);
2478 priv
->rxon_timing
.timestamp
.dw
[0] = cpu_to_le32(priv
->timestamp0
);
2480 priv
->rxon_timing
.listen_interval
= INTEL_CONN_LISTEN_INTERVAL
;
2482 tsf
= priv
->timestamp1
;
2483 tsf
= ((tsf
<< 32) | priv
->timestamp0
);
2485 beacon_int
= priv
->beacon_int
;
2486 spin_unlock_irqrestore(&priv
->lock
, flags
);
2488 if (priv
->iw_mode
== IEEE80211_IF_TYPE_STA
) {
2489 if (beacon_int
== 0) {
2490 priv
->rxon_timing
.beacon_interval
= cpu_to_le16(100);
2491 priv
->rxon_timing
.beacon_init_val
= cpu_to_le32(102400);
2493 priv
->rxon_timing
.beacon_interval
=
2494 cpu_to_le16(beacon_int
);
2495 priv
->rxon_timing
.beacon_interval
=
2496 iwl4965_adjust_beacon_interval(
2497 le16_to_cpu(priv
->rxon_timing
.beacon_interval
));
2500 priv
->rxon_timing
.atim_window
= 0;
2502 priv
->rxon_timing
.beacon_interval
=
2503 iwl4965_adjust_beacon_interval(conf
->beacon_int
);
2504 /* TODO: we need to get atim_window from upper stack
2505 * for now we set to 0 */
2506 priv
->rxon_timing
.atim_window
= 0;
2510 (le16_to_cpu(priv
->rxon_timing
.beacon_interval
) * 1024);
2511 result
= do_div(tsf
, interval_tm_unit
);
2512 priv
->rxon_timing
.beacon_init_val
=
2513 cpu_to_le32((u32
) ((u64
) interval_tm_unit
- result
));
2516 ("beacon interval %d beacon timer %d beacon tim %d\n",
2517 le16_to_cpu(priv
->rxon_timing
.beacon_interval
),
2518 le32_to_cpu(priv
->rxon_timing
.beacon_init_val
),
2519 le16_to_cpu(priv
->rxon_timing
.atim_window
));
2522 static int iwl4965_scan_initiate(struct iwl4965_priv
*priv
)
2524 if (priv
->iw_mode
== IEEE80211_IF_TYPE_AP
) {
2525 IWL_ERROR("APs don't scan.\n");
2529 if (!iwl4965_is_ready_rf(priv
)) {
2530 IWL_DEBUG_SCAN("Aborting scan due to not ready.\n");
2534 if (test_bit(STATUS_SCANNING
, &priv
->status
)) {
2535 IWL_DEBUG_SCAN("Scan already in progress.\n");
2539 if (test_bit(STATUS_SCAN_ABORTING
, &priv
->status
)) {
2540 IWL_DEBUG_SCAN("Scan request while abort pending. "
2545 IWL_DEBUG_INFO("Starting scan...\n");
2546 priv
->scan_bands
= 2;
2547 set_bit(STATUS_SCANNING
, &priv
->status
);
2548 priv
->scan_start
= jiffies
;
2549 priv
->scan_pass_start
= priv
->scan_start
;
2551 queue_work(priv
->workqueue
, &priv
->request_scan
);
2556 static int iwl4965_set_rxon_hwcrypto(struct iwl4965_priv
*priv
, int hw_decrypt
)
2558 struct iwl4965_rxon_cmd
*rxon
= &priv
->staging_rxon
;
2561 rxon
->filter_flags
&= ~RXON_FILTER_DIS_DECRYPT_MSK
;
2563 rxon
->filter_flags
|= RXON_FILTER_DIS_DECRYPT_MSK
;
2568 static void iwl4965_set_flags_for_phymode(struct iwl4965_priv
*priv
,
2569 enum ieee80211_band band
)
2571 if (band
== IEEE80211_BAND_5GHZ
) {
2572 priv
->staging_rxon
.flags
&=
2573 ~(RXON_FLG_BAND_24G_MSK
| RXON_FLG_AUTO_DETECT_MSK
2574 | RXON_FLG_CCK_MSK
);
2575 priv
->staging_rxon
.flags
|= RXON_FLG_SHORT_SLOT_MSK
;
2577 /* Copied from iwl4965_bg_post_associate() */
2578 if (priv
->assoc_capability
& WLAN_CAPABILITY_SHORT_SLOT_TIME
)
2579 priv
->staging_rxon
.flags
|= RXON_FLG_SHORT_SLOT_MSK
;
2581 priv
->staging_rxon
.flags
&= ~RXON_FLG_SHORT_SLOT_MSK
;
2583 if (priv
->iw_mode
== IEEE80211_IF_TYPE_IBSS
)
2584 priv
->staging_rxon
.flags
&= ~RXON_FLG_SHORT_SLOT_MSK
;
2586 priv
->staging_rxon
.flags
|= RXON_FLG_BAND_24G_MSK
;
2587 priv
->staging_rxon
.flags
|= RXON_FLG_AUTO_DETECT_MSK
;
2588 priv
->staging_rxon
.flags
&= ~RXON_FLG_CCK_MSK
;
2593 * initialize rxon structure with default values from eeprom
2595 static void iwl4965_connection_init_rx_config(struct iwl4965_priv
*priv
)
2597 const struct iwl4965_channel_info
*ch_info
;
2599 memset(&priv
->staging_rxon
, 0, sizeof(priv
->staging_rxon
));
2601 switch (priv
->iw_mode
) {
2602 case IEEE80211_IF_TYPE_AP
:
2603 priv
->staging_rxon
.dev_type
= RXON_DEV_TYPE_AP
;
2606 case IEEE80211_IF_TYPE_STA
:
2607 priv
->staging_rxon
.dev_type
= RXON_DEV_TYPE_ESS
;
2608 priv
->staging_rxon
.filter_flags
= RXON_FILTER_ACCEPT_GRP_MSK
;
2611 case IEEE80211_IF_TYPE_IBSS
:
2612 priv
->staging_rxon
.dev_type
= RXON_DEV_TYPE_IBSS
;
2613 priv
->staging_rxon
.flags
= RXON_FLG_SHORT_PREAMBLE_MSK
;
2614 priv
->staging_rxon
.filter_flags
= RXON_FILTER_BCON_AWARE_MSK
|
2615 RXON_FILTER_ACCEPT_GRP_MSK
;
2618 case IEEE80211_IF_TYPE_MNTR
:
2619 priv
->staging_rxon
.dev_type
= RXON_DEV_TYPE_SNIFFER
;
2620 priv
->staging_rxon
.filter_flags
= RXON_FILTER_PROMISC_MSK
|
2621 RXON_FILTER_CTL2HOST_MSK
| RXON_FILTER_ACCEPT_GRP_MSK
;
2626 /* TODO: Figure out when short_preamble would be set and cache from
2628 if (!hw_to_local(priv
->hw
)->short_preamble
)
2629 priv
->staging_rxon
.flags
&= ~RXON_FLG_SHORT_PREAMBLE_MSK
;
2631 priv
->staging_rxon
.flags
|= RXON_FLG_SHORT_PREAMBLE_MSK
;
2634 ch_info
= iwl4965_get_channel_info(priv
, priv
->band
,
2635 le16_to_cpu(priv
->staging_rxon
.channel
));
2638 ch_info
= &priv
->channel_info
[0];
2641 * in some case A channels are all non IBSS
2642 * in this case force B/G channel
2644 if ((priv
->iw_mode
== IEEE80211_IF_TYPE_IBSS
) &&
2645 !(is_channel_ibss(ch_info
)))
2646 ch_info
= &priv
->channel_info
[0];
2648 priv
->staging_rxon
.channel
= cpu_to_le16(ch_info
->channel
);
2649 priv
->band
= ch_info
->band
;
2651 iwl4965_set_flags_for_phymode(priv
, priv
->band
);
2653 priv
->staging_rxon
.ofdm_basic_rates
=
2654 (IWL_OFDM_RATES_MASK
>> IWL_FIRST_OFDM_RATE
) & 0xFF;
2655 priv
->staging_rxon
.cck_basic_rates
=
2656 (IWL_CCK_RATES_MASK
>> IWL_FIRST_CCK_RATE
) & 0xF;
2658 priv
->staging_rxon
.flags
&= ~(RXON_FLG_CHANNEL_MODE_MIXED_MSK
|
2659 RXON_FLG_CHANNEL_MODE_PURE_40_MSK
);
2660 memcpy(priv
->staging_rxon
.node_addr
, priv
->mac_addr
, ETH_ALEN
);
2661 memcpy(priv
->staging_rxon
.wlap_bssid_addr
, priv
->mac_addr
, ETH_ALEN
);
2662 priv
->staging_rxon
.ofdm_ht_single_stream_basic_rates
= 0xff;
2663 priv
->staging_rxon
.ofdm_ht_dual_stream_basic_rates
= 0xff;
2664 iwl4965_set_rxon_chain(priv
);
2667 static int iwl4965_set_mode(struct iwl4965_priv
*priv
, int mode
)
2669 if (mode
== IEEE80211_IF_TYPE_IBSS
) {
2670 const struct iwl4965_channel_info
*ch_info
;
2672 ch_info
= iwl4965_get_channel_info(priv
,
2674 le16_to_cpu(priv
->staging_rxon
.channel
));
2676 if (!ch_info
|| !is_channel_ibss(ch_info
)) {
2677 IWL_ERROR("channel %d not IBSS channel\n",
2678 le16_to_cpu(priv
->staging_rxon
.channel
));
2683 priv
->iw_mode
= mode
;
2685 iwl4965_connection_init_rx_config(priv
);
2686 memcpy(priv
->staging_rxon
.node_addr
, priv
->mac_addr
, ETH_ALEN
);
2688 iwl4965_clear_stations_table(priv
);
2690 /* dont commit rxon if rf-kill is on*/
2691 if (!iwl4965_is_ready_rf(priv
))
2694 cancel_delayed_work(&priv
->scan_check
);
2695 if (iwl4965_scan_cancel_timeout(priv
, 100)) {
2696 IWL_WARNING("Aborted scan still in progress after 100ms\n");
2697 IWL_DEBUG_MAC80211("leaving - scan abort failed.\n");
2701 iwl4965_commit_rxon(priv
);
2706 static void iwl4965_build_tx_cmd_hwcrypto(struct iwl4965_priv
*priv
,
2707 struct ieee80211_tx_control
*ctl
,
2708 struct iwl4965_cmd
*cmd
,
2709 struct sk_buff
*skb_frag
,
2712 struct iwl4965_hw_key
*keyinfo
= &priv
->stations
[ctl
->key_idx
].keyinfo
;
2714 switch (keyinfo
->alg
) {
2716 cmd
->cmd
.tx
.sec_ctl
= TX_CMD_SEC_CCM
;
2717 memcpy(cmd
->cmd
.tx
.key
, keyinfo
->key
, keyinfo
->keylen
);
2718 IWL_DEBUG_TX("tx_cmd with aes hwcrypto\n");
2723 cmd
->cmd
.tx
.sec_ctl
= TX_CMD_SEC_TKIP
;
2726 memcpy(cmd
->cmd
.tx
.tkip_mic
.byte
, skb_frag
->tail
- 8,
2729 memset(cmd
->cmd
.tx
.tkip_mic
.byte
, 0, 8);
2734 cmd
->cmd
.tx
.sec_ctl
= TX_CMD_SEC_WEP
|
2735 (ctl
->key_idx
& TX_CMD_SEC_MSK
) << TX_CMD_SEC_SHIFT
;
2737 if (keyinfo
->keylen
== 13)
2738 cmd
->cmd
.tx
.sec_ctl
|= TX_CMD_SEC_KEY128
;
2740 memcpy(&cmd
->cmd
.tx
.key
[3], keyinfo
->key
, keyinfo
->keylen
);
2742 IWL_DEBUG_TX("Configuring packet for WEP encryption "
2743 "with key %d\n", ctl
->key_idx
);
2747 printk(KERN_ERR
"Unknown encode alg %d\n", keyinfo
->alg
);
2753 * handle build REPLY_TX command notification.
2755 static void iwl4965_build_tx_cmd_basic(struct iwl4965_priv
*priv
,
2756 struct iwl4965_cmd
*cmd
,
2757 struct ieee80211_tx_control
*ctrl
,
2758 struct ieee80211_hdr
*hdr
,
2759 int is_unicast
, u8 std_id
)
2762 u16 fc
= le16_to_cpu(hdr
->frame_control
);
2763 __le32 tx_flags
= cmd
->cmd
.tx
.tx_flags
;
2765 cmd
->cmd
.tx
.stop_time
.life_time
= TX_CMD_LIFE_TIME_INFINITE
;
2766 if (!(ctrl
->flags
& IEEE80211_TXCTL_NO_ACK
)) {
2767 tx_flags
|= TX_CMD_FLG_ACK_MSK
;
2768 if ((fc
& IEEE80211_FCTL_FTYPE
) == IEEE80211_FTYPE_MGMT
)
2769 tx_flags
|= TX_CMD_FLG_SEQ_CTL_MSK
;
2770 if (ieee80211_is_probe_response(fc
) &&
2771 !(le16_to_cpu(hdr
->seq_ctrl
) & 0xf))
2772 tx_flags
|= TX_CMD_FLG_TSF_MSK
;
2774 tx_flags
&= (~TX_CMD_FLG_ACK_MSK
);
2775 tx_flags
|= TX_CMD_FLG_SEQ_CTL_MSK
;
2778 if (ieee80211_is_back_request(fc
))
2779 tx_flags
|= TX_CMD_FLG_ACK_MSK
| TX_CMD_FLG_IMM_BA_RSP_MASK
;
2782 cmd
->cmd
.tx
.sta_id
= std_id
;
2783 if (ieee80211_get_morefrag(hdr
))
2784 tx_flags
|= TX_CMD_FLG_MORE_FRAG_MSK
;
2786 qc
= ieee80211_get_qos_ctrl(hdr
);
2788 cmd
->cmd
.tx
.tid_tspec
= (u8
) (le16_to_cpu(*qc
) & 0xf);
2789 tx_flags
&= ~TX_CMD_FLG_SEQ_CTL_MSK
;
2791 tx_flags
|= TX_CMD_FLG_SEQ_CTL_MSK
;
2793 if (ctrl
->flags
& IEEE80211_TXCTL_USE_RTS_CTS
) {
2794 tx_flags
|= TX_CMD_FLG_RTS_MSK
;
2795 tx_flags
&= ~TX_CMD_FLG_CTS_MSK
;
2796 } else if (ctrl
->flags
& IEEE80211_TXCTL_USE_CTS_PROTECT
) {
2797 tx_flags
&= ~TX_CMD_FLG_RTS_MSK
;
2798 tx_flags
|= TX_CMD_FLG_CTS_MSK
;
2801 if ((tx_flags
& TX_CMD_FLG_RTS_MSK
) || (tx_flags
& TX_CMD_FLG_CTS_MSK
))
2802 tx_flags
|= TX_CMD_FLG_FULL_TXOP_PROT_MSK
;
2804 tx_flags
&= ~(TX_CMD_FLG_ANT_SEL_MSK
);
2805 if ((fc
& IEEE80211_FCTL_FTYPE
) == IEEE80211_FTYPE_MGMT
) {
2806 if ((fc
& IEEE80211_FCTL_STYPE
) == IEEE80211_STYPE_ASSOC_REQ
||
2807 (fc
& IEEE80211_FCTL_STYPE
) == IEEE80211_STYPE_REASSOC_REQ
)
2808 cmd
->cmd
.tx
.timeout
.pm_frame_timeout
= cpu_to_le16(3);
2810 cmd
->cmd
.tx
.timeout
.pm_frame_timeout
= cpu_to_le16(2);
2812 cmd
->cmd
.tx
.timeout
.pm_frame_timeout
= 0;
2814 cmd
->cmd
.tx
.driver_txop
= 0;
2815 cmd
->cmd
.tx
.tx_flags
= tx_flags
;
2816 cmd
->cmd
.tx
.next_frame_len
= 0;
2820 * iwl4965_get_sta_id - Find station's index within station table
2822 * If new IBSS station, create new entry in station table
2824 static int iwl4965_get_sta_id(struct iwl4965_priv
*priv
,
2825 struct ieee80211_hdr
*hdr
)
2828 u16 fc
= le16_to_cpu(hdr
->frame_control
);
2829 DECLARE_MAC_BUF(mac
);
2831 /* If this frame is broadcast or management, use broadcast station id */
2832 if (((fc
& IEEE80211_FCTL_FTYPE
) != IEEE80211_FTYPE_DATA
) ||
2833 is_multicast_ether_addr(hdr
->addr1
))
2834 return priv
->hw_setting
.bcast_sta_id
;
2836 switch (priv
->iw_mode
) {
2838 /* If we are a client station in a BSS network, use the special
2839 * AP station entry (that's the only station we communicate with) */
2840 case IEEE80211_IF_TYPE_STA
:
2843 /* If we are an AP, then find the station, or use BCAST */
2844 case IEEE80211_IF_TYPE_AP
:
2845 sta_id
= iwl4965_hw_find_station(priv
, hdr
->addr1
);
2846 if (sta_id
!= IWL_INVALID_STATION
)
2848 return priv
->hw_setting
.bcast_sta_id
;
2850 /* If this frame is going out to an IBSS network, find the station,
2851 * or create a new station table entry */
2852 case IEEE80211_IF_TYPE_IBSS
:
2853 sta_id
= iwl4965_hw_find_station(priv
, hdr
->addr1
);
2854 if (sta_id
!= IWL_INVALID_STATION
)
2857 /* Create new station table entry */
2858 sta_id
= iwl4965_add_station_flags(priv
, hdr
->addr1
,
2859 0, CMD_ASYNC
, NULL
);
2861 if (sta_id
!= IWL_INVALID_STATION
)
2864 IWL_DEBUG_DROP("Station %s not in station map. "
2865 "Defaulting to broadcast...\n",
2866 print_mac(mac
, hdr
->addr1
));
2867 iwl4965_print_hex_dump(IWL_DL_DROP
, (u8
*) hdr
, sizeof(*hdr
));
2868 return priv
->hw_setting
.bcast_sta_id
;
2871 IWL_WARNING("Unknown mode of operation: %d", priv
->iw_mode
);
2872 return priv
->hw_setting
.bcast_sta_id
;
2877 * start REPLY_TX command process
2879 static int iwl4965_tx_skb(struct iwl4965_priv
*priv
,
2880 struct sk_buff
*skb
, struct ieee80211_tx_control
*ctl
)
2882 struct ieee80211_hdr
*hdr
= (struct ieee80211_hdr
*)skb
->data
;
2883 struct iwl4965_tfd_frame
*tfd
;
2885 int txq_id
= ctl
->queue
;
2886 struct iwl4965_tx_queue
*txq
= NULL
;
2887 struct iwl4965_queue
*q
= NULL
;
2888 dma_addr_t phys_addr
;
2889 dma_addr_t txcmd_phys
;
2890 dma_addr_t scratch_phys
;
2891 struct iwl4965_cmd
*out_cmd
= NULL
;
2892 u16 len
, idx
, len_org
;
2893 u8 id
, hdr_len
, unicast
;
2898 u8 wait_write_ptr
= 0;
2899 unsigned long flags
;
2902 spin_lock_irqsave(&priv
->lock
, flags
);
2903 if (iwl4965_is_rfkill(priv
)) {
2904 IWL_DEBUG_DROP("Dropping - RF KILL\n");
2909 IWL_DEBUG_DROP("Dropping - !priv->vif\n");
2913 if ((ctl
->tx_rate
->hw_value
& 0xFF) == IWL_INVALID_RATE
) {
2914 IWL_ERROR("ERROR: No TX rate available.\n");
2918 unicast
= !is_multicast_ether_addr(hdr
->addr1
);
2921 fc
= le16_to_cpu(hdr
->frame_control
);
2923 #ifdef CONFIG_IWL4965_DEBUG
2924 if (ieee80211_is_auth(fc
))
2925 IWL_DEBUG_TX("Sending AUTH frame\n");
2926 else if (ieee80211_is_assoc_request(fc
))
2927 IWL_DEBUG_TX("Sending ASSOC frame\n");
2928 else if (ieee80211_is_reassoc_request(fc
))
2929 IWL_DEBUG_TX("Sending REASSOC frame\n");
2932 /* drop all data frame if we are not associated */
2933 if (((fc
& IEEE80211_FCTL_FTYPE
) == IEEE80211_FTYPE_DATA
) &&
2934 (!iwl4965_is_associated(priv
) ||
2935 ((priv
->iw_mode
== IEEE80211_IF_TYPE_STA
) && !priv
->assoc_id
) ||
2936 !priv
->assoc_station_added
)) {
2937 IWL_DEBUG_DROP("Dropping - !iwl4965_is_associated\n");
2941 spin_unlock_irqrestore(&priv
->lock
, flags
);
2943 hdr_len
= ieee80211_get_hdrlen(fc
);
2945 /* Find (or create) index into station table for destination station */
2946 sta_id
= iwl4965_get_sta_id(priv
, hdr
);
2947 if (sta_id
== IWL_INVALID_STATION
) {
2948 DECLARE_MAC_BUF(mac
);
2950 IWL_DEBUG_DROP("Dropping - INVALID STATION: %s\n",
2951 print_mac(mac
, hdr
->addr1
));
2955 IWL_DEBUG_RATE("station Id %d\n", sta_id
);
2957 qc
= ieee80211_get_qos_ctrl(hdr
);
2959 u8 tid
= (u8
)(le16_to_cpu(*qc
) & 0xf);
2960 seq_number
= priv
->stations
[sta_id
].tid
[tid
].seq_number
&
2962 hdr
->seq_ctrl
= cpu_to_le16(seq_number
) |
2964 __constant_cpu_to_le16(IEEE80211_SCTL_FRAG
));
2966 #ifdef CONFIG_IWL4965_HT
2967 /* aggregation is on for this <sta,tid> */
2968 if (ctl
->flags
& IEEE80211_TXCTL_AMPDU
)
2969 txq_id
= priv
->stations
[sta_id
].tid
[tid
].agg
.txq_id
;
2970 priv
->stations
[sta_id
].tid
[tid
].tfds_in_queue
++;
2971 #endif /* CONFIG_IWL4965_HT */
2974 /* Descriptor for chosen Tx queue */
2975 txq
= &priv
->txq
[txq_id
];
2978 spin_lock_irqsave(&priv
->lock
, flags
);
2980 /* Set up first empty TFD within this queue's circular TFD buffer */
2981 tfd
= &txq
->bd
[q
->write_ptr
];
2982 memset(tfd
, 0, sizeof(*tfd
));
2983 control_flags
= (u32
*) tfd
;
2984 idx
= get_cmd_index(q
, q
->write_ptr
, 0);
2986 /* Set up driver data for this TFD */
2987 memset(&(txq
->txb
[q
->write_ptr
]), 0, sizeof(struct iwl4965_tx_info
));
2988 txq
->txb
[q
->write_ptr
].skb
[0] = skb
;
2989 memcpy(&(txq
->txb
[q
->write_ptr
].status
.control
),
2990 ctl
, sizeof(struct ieee80211_tx_control
));
2992 /* Set up first empty entry in queue's array of Tx/cmd buffers */
2993 out_cmd
= &txq
->cmd
[idx
];
2994 memset(&out_cmd
->hdr
, 0, sizeof(out_cmd
->hdr
));
2995 memset(&out_cmd
->cmd
.tx
, 0, sizeof(out_cmd
->cmd
.tx
));
2998 * Set up the Tx-command (not MAC!) header.
2999 * Store the chosen Tx queue and TFD index within the sequence field;
3000 * after Tx, uCode's Tx response will return this value so driver can
3001 * locate the frame within the tx queue and do post-tx processing.
3003 out_cmd
->hdr
.cmd
= REPLY_TX
;
3004 out_cmd
->hdr
.sequence
= cpu_to_le16((u16
)(QUEUE_TO_SEQ(txq_id
) |
3005 INDEX_TO_SEQ(q
->write_ptr
)));
3007 /* Copy MAC header from skb into command buffer */
3008 memcpy(out_cmd
->cmd
.tx
.hdr
, hdr
, hdr_len
);
3011 * Use the first empty entry in this queue's command buffer array
3012 * to contain the Tx command and MAC header concatenated together
3013 * (payload data will be in another buffer).
3014 * Size of this varies, due to varying MAC header length.
3015 * If end is not dword aligned, we'll have 2 extra bytes at the end
3016 * of the MAC header (device reads on dword boundaries).
3017 * We'll tell device about this padding later.
3019 len
= priv
->hw_setting
.tx_cmd_len
+
3020 sizeof(struct iwl4965_cmd_header
) + hdr_len
;
3023 len
= (len
+ 3) & ~3;
3030 /* Physical address of this Tx command's header (not MAC header!),
3031 * within command buffer array. */
3032 txcmd_phys
= txq
->dma_addr_cmd
+ sizeof(struct iwl4965_cmd
) * idx
+
3033 offsetof(struct iwl4965_cmd
, hdr
);
3035 /* Add buffer containing Tx command and MAC(!) header to TFD's
3037 iwl4965_hw_txq_attach_buf_to_tfd(priv
, tfd
, txcmd_phys
, len
);
3039 if (!(ctl
->flags
& IEEE80211_TXCTL_DO_NOT_ENCRYPT
))
3040 iwl4965_build_tx_cmd_hwcrypto(priv
, ctl
, out_cmd
, skb
, 0);
3042 /* Set up TFD's 2nd entry to point directly to remainder of skb,
3043 * if any (802.11 null frames have no payload). */
3044 len
= skb
->len
- hdr_len
;
3046 phys_addr
= pci_map_single(priv
->pci_dev
, skb
->data
+ hdr_len
,
3047 len
, PCI_DMA_TODEVICE
);
3048 iwl4965_hw_txq_attach_buf_to_tfd(priv
, tfd
, phys_addr
, len
);
3051 /* Tell 4965 about any 2-byte padding after MAC header */
3053 out_cmd
->cmd
.tx
.tx_flags
|= TX_CMD_FLG_MH_PAD_MSK
;
3055 /* Total # bytes to be transmitted */
3056 len
= (u16
)skb
->len
;
3057 out_cmd
->cmd
.tx
.len
= cpu_to_le16(len
);
3059 /* TODO need this for burst mode later on */
3060 iwl4965_build_tx_cmd_basic(priv
, out_cmd
, ctl
, hdr
, unicast
, sta_id
);
3062 /* set is_hcca to 0; it probably will never be implemented */
3063 iwl4965_hw_build_tx_cmd_rate(priv
, out_cmd
, ctl
, hdr
, sta_id
, 0);
3065 scratch_phys
= txcmd_phys
+ sizeof(struct iwl4965_cmd_header
) +
3066 offsetof(struct iwl4965_tx_cmd
, scratch
);
3067 out_cmd
->cmd
.tx
.dram_lsb_ptr
= cpu_to_le32(scratch_phys
);
3068 out_cmd
->cmd
.tx
.dram_msb_ptr
= iwl_get_dma_hi_address(scratch_phys
);
3070 if (!ieee80211_get_morefrag(hdr
)) {
3071 txq
->need_update
= 1;
3073 u8 tid
= (u8
)(le16_to_cpu(*qc
) & 0xf);
3074 priv
->stations
[sta_id
].tid
[tid
].seq_number
= seq_number
;
3078 txq
->need_update
= 0;
3081 iwl4965_print_hex_dump(IWL_DL_TX
, out_cmd
->cmd
.payload
,
3082 sizeof(out_cmd
->cmd
.tx
));
3084 iwl4965_print_hex_dump(IWL_DL_TX
, (u8
*)out_cmd
->cmd
.tx
.hdr
,
3085 ieee80211_get_hdrlen(fc
));
3087 /* Set up entry for this TFD in Tx byte-count array */
3088 iwl4965_tx_queue_update_wr_ptr(priv
, txq
, len
);
3090 /* Tell device the write index *just past* this latest filled TFD */
3091 q
->write_ptr
= iwl4965_queue_inc_wrap(q
->write_ptr
, q
->n_bd
);
3092 rc
= iwl4965_tx_queue_update_write_ptr(priv
, txq
);
3093 spin_unlock_irqrestore(&priv
->lock
, flags
);
3098 if ((iwl4965_queue_space(q
) < q
->high_mark
)
3099 && priv
->mac80211_registered
) {
3100 if (wait_write_ptr
) {
3101 spin_lock_irqsave(&priv
->lock
, flags
);
3102 txq
->need_update
= 1;
3103 iwl4965_tx_queue_update_write_ptr(priv
, txq
);
3104 spin_unlock_irqrestore(&priv
->lock
, flags
);
3107 ieee80211_stop_queue(priv
->hw
, ctl
->queue
);
3113 spin_unlock_irqrestore(&priv
->lock
, flags
);
3118 static void iwl4965_set_rate(struct iwl4965_priv
*priv
)
3120 const struct ieee80211_supported_band
*hw
= NULL
;
3121 struct ieee80211_rate
*rate
;
3124 hw
= iwl4965_get_hw_mode(priv
, priv
->band
);
3126 IWL_ERROR("Failed to set rate: unable to get hw mode\n");
3130 priv
->active_rate
= 0;
3131 priv
->active_rate_basic
= 0;
3133 for (i
= 0; i
< hw
->n_bitrates
; i
++) {
3134 rate
= &(hw
->bitrates
[i
]);
3135 if (rate
->hw_value
< IWL_RATE_COUNT
)
3136 priv
->active_rate
|= (1 << rate
->hw_value
);
3139 IWL_DEBUG_RATE("Set active_rate = %0x, active_rate_basic = %0x\n",
3140 priv
->active_rate
, priv
->active_rate_basic
);
3143 * If a basic rate is configured, then use it (adding IWL_RATE_1M_MASK)
3144 * otherwise set it to the default of all CCK rates and 6, 12, 24 for
3147 if (priv
->active_rate_basic
& IWL_CCK_BASIC_RATES_MASK
)
3148 priv
->staging_rxon
.cck_basic_rates
=
3149 ((priv
->active_rate_basic
&
3150 IWL_CCK_RATES_MASK
) >> IWL_FIRST_CCK_RATE
) & 0xF;
3152 priv
->staging_rxon
.cck_basic_rates
=
3153 (IWL_CCK_BASIC_RATES_MASK
>> IWL_FIRST_CCK_RATE
) & 0xF;
3155 if (priv
->active_rate_basic
& IWL_OFDM_BASIC_RATES_MASK
)
3156 priv
->staging_rxon
.ofdm_basic_rates
=
3157 ((priv
->active_rate_basic
&
3158 (IWL_OFDM_BASIC_RATES_MASK
| IWL_RATE_6M_MASK
)) >>
3159 IWL_FIRST_OFDM_RATE
) & 0xFF;
3161 priv
->staging_rxon
.ofdm_basic_rates
=
3162 (IWL_OFDM_BASIC_RATES_MASK
>> IWL_FIRST_OFDM_RATE
) & 0xFF;
3165 static void iwl4965_radio_kill_sw(struct iwl4965_priv
*priv
, int disable_radio
)
3167 unsigned long flags
;
3169 if (!!disable_radio
== test_bit(STATUS_RF_KILL_SW
, &priv
->status
))
3172 IWL_DEBUG_RF_KILL("Manual SW RF KILL set to: RADIO %s\n",
3173 disable_radio
? "OFF" : "ON");
3175 if (disable_radio
) {
3176 iwl4965_scan_cancel(priv
);
3177 /* FIXME: This is a workaround for AP */
3178 if (priv
->iw_mode
!= IEEE80211_IF_TYPE_AP
) {
3179 spin_lock_irqsave(&priv
->lock
, flags
);
3180 iwl4965_write32(priv
, CSR_UCODE_DRV_GP1_SET
,
3181 CSR_UCODE_SW_BIT_RFKILL
);
3182 spin_unlock_irqrestore(&priv
->lock
, flags
);
3183 iwl4965_send_card_state(priv
, CARD_STATE_CMD_DISABLE
, 0);
3184 set_bit(STATUS_RF_KILL_SW
, &priv
->status
);
3189 spin_lock_irqsave(&priv
->lock
, flags
);
3190 iwl4965_write32(priv
, CSR_UCODE_DRV_GP1_CLR
, CSR_UCODE_SW_BIT_RFKILL
);
3192 clear_bit(STATUS_RF_KILL_SW
, &priv
->status
);
3193 spin_unlock_irqrestore(&priv
->lock
, flags
);
3198 spin_lock_irqsave(&priv
->lock
, flags
);
3199 iwl4965_read32(priv
, CSR_UCODE_DRV_GP1
);
3200 if (!iwl4965_grab_nic_access(priv
))
3201 iwl4965_release_nic_access(priv
);
3202 spin_unlock_irqrestore(&priv
->lock
, flags
);
3204 if (test_bit(STATUS_RF_KILL_HW
, &priv
->status
)) {
3205 IWL_DEBUG_RF_KILL("Can not turn radio back on - "
3206 "disabled by HW switch\n");
3210 queue_work(priv
->workqueue
, &priv
->restart
);
3214 void iwl4965_set_decrypted_flag(struct iwl4965_priv
*priv
, struct sk_buff
*skb
,
3215 u32 decrypt_res
, struct ieee80211_rx_status
*stats
)
3218 le16_to_cpu(((struct ieee80211_hdr
*)skb
->data
)->frame_control
);
3220 if (priv
->active_rxon
.filter_flags
& RXON_FILTER_DIS_DECRYPT_MSK
)
3223 if (!(fc
& IEEE80211_FCTL_PROTECTED
))
3226 IWL_DEBUG_RX("decrypt_res:0x%x\n", decrypt_res
);
3227 switch (decrypt_res
& RX_RES_STATUS_SEC_TYPE_MSK
) {
3228 case RX_RES_STATUS_SEC_TYPE_TKIP
:
3229 if ((decrypt_res
& RX_RES_STATUS_DECRYPT_TYPE_MSK
) ==
3230 RX_RES_STATUS_BAD_ICV_MIC
)
3231 stats
->flag
|= RX_FLAG_MMIC_ERROR
;
3232 case RX_RES_STATUS_SEC_TYPE_WEP
:
3233 case RX_RES_STATUS_SEC_TYPE_CCMP
:
3234 if ((decrypt_res
& RX_RES_STATUS_DECRYPT_TYPE_MSK
) ==
3235 RX_RES_STATUS_DECRYPT_OK
) {
3236 IWL_DEBUG_RX("hw decrypt successfully!!!\n");
3237 stats
->flag
|= RX_FLAG_DECRYPTED
;
3247 #define IWL_PACKET_RETRY_TIME HZ
3249 int iwl4965_is_duplicate_packet(struct iwl4965_priv
*priv
, struct ieee80211_hdr
*header
)
3251 u16 sc
= le16_to_cpu(header
->seq_ctrl
);
3252 u16 seq
= (sc
& IEEE80211_SCTL_SEQ
) >> 4;
3253 u16 frag
= sc
& IEEE80211_SCTL_FRAG
;
3254 u16
*last_seq
, *last_frag
;
3255 unsigned long *last_time
;
3257 switch (priv
->iw_mode
) {
3258 case IEEE80211_IF_TYPE_IBSS
:{
3259 struct list_head
*p
;
3260 struct iwl4965_ibss_seq
*entry
= NULL
;
3261 u8
*mac
= header
->addr2
;
3262 int index
= mac
[5] & (IWL_IBSS_MAC_HASH_SIZE
- 1);
3264 __list_for_each(p
, &priv
->ibss_mac_hash
[index
]) {
3265 entry
= list_entry(p
, struct iwl4965_ibss_seq
, list
);
3266 if (!compare_ether_addr(entry
->mac
, mac
))
3269 if (p
== &priv
->ibss_mac_hash
[index
]) {
3270 entry
= kzalloc(sizeof(*entry
), GFP_ATOMIC
);
3272 IWL_ERROR("Cannot malloc new mac entry\n");
3275 memcpy(entry
->mac
, mac
, ETH_ALEN
);
3276 entry
->seq_num
= seq
;
3277 entry
->frag_num
= frag
;
3278 entry
->packet_time
= jiffies
;
3279 list_add(&entry
->list
, &priv
->ibss_mac_hash
[index
]);
3282 last_seq
= &entry
->seq_num
;
3283 last_frag
= &entry
->frag_num
;
3284 last_time
= &entry
->packet_time
;
3287 case IEEE80211_IF_TYPE_STA
:
3288 last_seq
= &priv
->last_seq_num
;
3289 last_frag
= &priv
->last_frag_num
;
3290 last_time
= &priv
->last_packet_time
;
3295 if ((*last_seq
== seq
) &&
3296 time_after(*last_time
+ IWL_PACKET_RETRY_TIME
, jiffies
)) {
3297 if (*last_frag
== frag
)
3299 if (*last_frag
+ 1 != frag
)
3300 /* out-of-order fragment */
3306 *last_time
= jiffies
;
3313 #ifdef CONFIG_IWL4965_SPECTRUM_MEASUREMENT
3315 #include "iwl-spectrum.h"
3317 #define BEACON_TIME_MASK_LOW 0x00FFFFFF
3318 #define BEACON_TIME_MASK_HIGH 0xFF000000
3319 #define TIME_UNIT 1024
3322 * extended beacon time format
3323 * time in usec will be changed into a 32-bit value in 8:24 format
3324 * the high 1 byte is the beacon counts
3325 * the lower 3 bytes is the time in usec within one beacon interval
3328 static u32
iwl4965_usecs_to_beacons(u32 usec
, u32 beacon_interval
)
3332 u32 interval
= beacon_interval
* 1024;
3334 if (!interval
|| !usec
)
3337 quot
= (usec
/ interval
) & (BEACON_TIME_MASK_HIGH
>> 24);
3338 rem
= (usec
% interval
) & BEACON_TIME_MASK_LOW
;
3340 return (quot
<< 24) + rem
;
3343 /* base is usually what we get from ucode with each received frame,
3344 * the same as HW timer counter counting down
3347 static __le32
iwl4965_add_beacon_time(u32 base
, u32 addon
, u32 beacon_interval
)
3349 u32 base_low
= base
& BEACON_TIME_MASK_LOW
;
3350 u32 addon_low
= addon
& BEACON_TIME_MASK_LOW
;
3351 u32 interval
= beacon_interval
* TIME_UNIT
;
3352 u32 res
= (base
& BEACON_TIME_MASK_HIGH
) +
3353 (addon
& BEACON_TIME_MASK_HIGH
);
3355 if (base_low
> addon_low
)
3356 res
+= base_low
- addon_low
;
3357 else if (base_low
< addon_low
) {
3358 res
+= interval
+ base_low
- addon_low
;
3363 return cpu_to_le32(res
);
3366 static int iwl4965_get_measurement(struct iwl4965_priv
*priv
,
3367 struct ieee80211_measurement_params
*params
,
3370 struct iwl4965_spectrum_cmd spectrum
;
3371 struct iwl4965_rx_packet
*res
;
3372 struct iwl4965_host_cmd cmd
= {
3373 .id
= REPLY_SPECTRUM_MEASUREMENT_CMD
,
3374 .data
= (void *)&spectrum
,
3375 .meta
.flags
= CMD_WANT_SKB
,
3377 u32 add_time
= le64_to_cpu(params
->start_time
);
3379 int spectrum_resp_status
;
3380 int duration
= le16_to_cpu(params
->duration
);
3382 if (iwl4965_is_associated(priv
))
3384 iwl4965_usecs_to_beacons(
3385 le64_to_cpu(params
->start_time
) - priv
->last_tsf
,
3386 le16_to_cpu(priv
->rxon_timing
.beacon_interval
));
3388 memset(&spectrum
, 0, sizeof(spectrum
));
3390 spectrum
.channel_count
= cpu_to_le16(1);
3392 RXON_FLG_TSF2HOST_MSK
| RXON_FLG_ANT_A_MSK
| RXON_FLG_DIS_DIV_MSK
;
3393 spectrum
.filter_flags
= MEASUREMENT_FILTER_FLAG
;
3394 cmd
.len
= sizeof(spectrum
);
3395 spectrum
.len
= cpu_to_le16(cmd
.len
- sizeof(spectrum
.len
));
3397 if (iwl4965_is_associated(priv
))
3398 spectrum
.start_time
=
3399 iwl4965_add_beacon_time(priv
->last_beacon_time
,
3401 le16_to_cpu(priv
->rxon_timing
.beacon_interval
));
3403 spectrum
.start_time
= 0;
3405 spectrum
.channels
[0].duration
= cpu_to_le32(duration
* TIME_UNIT
);
3406 spectrum
.channels
[0].channel
= params
->channel
;
3407 spectrum
.channels
[0].type
= type
;
3408 if (priv
->active_rxon
.flags
& RXON_FLG_BAND_24G_MSK
)
3409 spectrum
.flags
|= RXON_FLG_BAND_24G_MSK
|
3410 RXON_FLG_AUTO_DETECT_MSK
| RXON_FLG_TGG_PROTECT_MSK
;
3412 rc
= iwl4965_send_cmd_sync(priv
, &cmd
);
3416 res
= (struct iwl4965_rx_packet
*)cmd
.meta
.u
.skb
->data
;
3417 if (res
->hdr
.flags
& IWL_CMD_FAILED_MSK
) {
3418 IWL_ERROR("Bad return from REPLY_RX_ON_ASSOC command\n");
3422 spectrum_resp_status
= le16_to_cpu(res
->u
.spectrum
.status
);
3423 switch (spectrum_resp_status
) {
3424 case 0: /* Command will be handled */
3425 if (res
->u
.spectrum
.id
!= 0xff) {
3427 ("Replaced existing measurement: %d\n",
3428 res
->u
.spectrum
.id
);
3429 priv
->measurement_status
&= ~MEASUREMENT_READY
;
3431 priv
->measurement_status
|= MEASUREMENT_ACTIVE
;
3435 case 1: /* Command will not be handled */
3440 dev_kfree_skb_any(cmd
.meta
.u
.skb
);
3446 static void iwl4965_txstatus_to_ieee(struct iwl4965_priv
*priv
,
3447 struct iwl4965_tx_info
*tx_sta
)
3450 tx_sta
->status
.ack_signal
= 0;
3451 tx_sta
->status
.excessive_retries
= 0;
3452 tx_sta
->status
.queue_length
= 0;
3453 tx_sta
->status
.queue_number
= 0;
3456 ieee80211_tx_status_irqsafe(priv
->hw
,
3457 tx_sta
->skb
[0], &(tx_sta
->status
));
3459 ieee80211_tx_status(priv
->hw
,
3460 tx_sta
->skb
[0], &(tx_sta
->status
));
3462 tx_sta
->skb
[0] = NULL
;
3466 * iwl4965_tx_queue_reclaim - Reclaim Tx queue entries already Tx'd
3468 * When FW advances 'R' index, all entries between old and new 'R' index
3469 * need to be reclaimed. As result, some free space forms. If there is
3470 * enough free space (> low mark), wake the stack that feeds us.
3472 int iwl4965_tx_queue_reclaim(struct iwl4965_priv
*priv
, int txq_id
, int index
)
3474 struct iwl4965_tx_queue
*txq
= &priv
->txq
[txq_id
];
3475 struct iwl4965_queue
*q
= &txq
->q
;
3478 if ((index
>= q
->n_bd
) || (x2_queue_used(q
, index
) == 0)) {
3479 IWL_ERROR("Read index for DMA queue txq id (%d), index %d, "
3480 "is out of range [0-%d] %d %d.\n", txq_id
,
3481 index
, q
->n_bd
, q
->write_ptr
, q
->read_ptr
);
3485 for (index
= iwl4965_queue_inc_wrap(index
, q
->n_bd
);
3486 q
->read_ptr
!= index
;
3487 q
->read_ptr
= iwl4965_queue_inc_wrap(q
->read_ptr
, q
->n_bd
)) {
3488 if (txq_id
!= IWL_CMD_QUEUE_NUM
) {
3489 iwl4965_txstatus_to_ieee(priv
,
3490 &(txq
->txb
[txq
->q
.read_ptr
]));
3491 iwl4965_hw_txq_free_tfd(priv
, txq
);
3492 } else if (nfreed
> 1) {
3493 IWL_ERROR("HCMD skipped: index (%d) %d %d\n", index
,
3494 q
->write_ptr
, q
->read_ptr
);
3495 queue_work(priv
->workqueue
, &priv
->restart
);
3500 /* if (iwl4965_queue_space(q) > q->low_mark && (txq_id >= 0) &&
3501 (txq_id != IWL_CMD_QUEUE_NUM) &&
3502 priv->mac80211_registered)
3503 ieee80211_wake_queue(priv->hw, txq_id); */
3509 static int iwl4965_is_tx_success(u32 status
)
3511 status
&= TX_STATUS_MSK
;
3512 return (status
== TX_STATUS_SUCCESS
)
3513 || (status
== TX_STATUS_DIRECT_DONE
);
3516 /******************************************************************************
3518 * Generic RX handler implementations
3520 ******************************************************************************/
3521 #ifdef CONFIG_IWL4965_HT
3523 static inline int iwl4965_get_ra_sta_id(struct iwl4965_priv
*priv
,
3524 struct ieee80211_hdr
*hdr
)
3526 if (priv
->iw_mode
== IEEE80211_IF_TYPE_STA
)
3529 u8
*da
= ieee80211_get_DA(hdr
);
3530 return iwl4965_hw_find_station(priv
, da
);
3534 static struct ieee80211_hdr
*iwl4965_tx_queue_get_hdr(
3535 struct iwl4965_priv
*priv
, int txq_id
, int idx
)
3537 if (priv
->txq
[txq_id
].txb
[idx
].skb
[0])
3538 return (struct ieee80211_hdr
*)priv
->txq
[txq_id
].
3539 txb
[idx
].skb
[0]->data
;
3543 static inline u32
iwl4965_get_scd_ssn(struct iwl4965_tx_resp
*tx_resp
)
3545 __le32
*scd_ssn
= (__le32
*)((u32
*)&tx_resp
->status
+
3546 tx_resp
->frame_count
);
3547 return le32_to_cpu(*scd_ssn
) & MAX_SN
;
3552 * iwl4965_tx_status_reply_tx - Handle Tx rspnse for frames in aggregation queue
3554 static int iwl4965_tx_status_reply_tx(struct iwl4965_priv
*priv
,
3555 struct iwl4965_ht_agg
*agg
,
3556 struct iwl4965_tx_resp_agg
*tx_resp
,
3560 struct agg_tx_status
*frame_status
= &tx_resp
->status
;
3561 struct ieee80211_tx_status
*tx_status
= NULL
;
3562 struct ieee80211_hdr
*hdr
= NULL
;
3567 if (agg
->wait_for_ba
)
3568 IWL_DEBUG_TX_REPLY("got tx response w/o block-ack\n");
3570 agg
->frame_count
= tx_resp
->frame_count
;
3571 agg
->start_idx
= start_idx
;
3572 agg
->rate_n_flags
= le32_to_cpu(tx_resp
->rate_n_flags
);
3575 /* # frames attempted by Tx command */
3576 if (agg
->frame_count
== 1) {
3577 /* Only one frame was attempted; no block-ack will arrive */
3578 status
= le16_to_cpu(frame_status
[0].status
);
3579 seq
= le16_to_cpu(frame_status
[0].sequence
);
3580 idx
= SEQ_TO_INDEX(seq
);
3581 txq_id
= SEQ_TO_QUEUE(seq
);
3583 /* FIXME: code repetition */
3584 IWL_DEBUG_TX_REPLY("FrameCnt = %d, StartIdx=%d idx=%d\n",
3585 agg
->frame_count
, agg
->start_idx
, idx
);
3587 tx_status
= &(priv
->txq
[txq_id
].txb
[idx
].status
);
3588 tx_status
->retry_count
= tx_resp
->failure_frame
;
3589 tx_status
->queue_number
= status
& 0xff;
3590 tx_status
->queue_length
= tx_resp
->failure_rts
;
3591 tx_status
->control
.flags
&= ~IEEE80211_TXCTL_AMPDU
;
3592 tx_status
->flags
= iwl4965_is_tx_success(status
)?
3593 IEEE80211_TX_STATUS_ACK
: 0;
3595 tx_status->control.tx_rate =
3596 iwl4965_hw_get_rate_n_flags(tx_resp->rate_n_flags); */
3597 /* FIXME: code repetition end */
3599 IWL_DEBUG_TX_REPLY("1 Frame 0x%x failure :%d\n",
3600 status
& 0xff, tx_resp
->failure_frame
);
3601 IWL_DEBUG_TX_REPLY("Rate Info rate_n_flags=%x\n",
3602 iwl4965_hw_get_rate_n_flags(tx_resp
->rate_n_flags
));
3604 agg
->wait_for_ba
= 0;
3606 /* Two or more frames were attempted; expect block-ack */
3608 int start
= agg
->start_idx
;
3610 /* Construct bit-map of pending frames within Tx window */
3611 for (i
= 0; i
< agg
->frame_count
; i
++) {
3613 status
= le16_to_cpu(frame_status
[i
].status
);
3614 seq
= le16_to_cpu(frame_status
[i
].sequence
);
3615 idx
= SEQ_TO_INDEX(seq
);
3616 txq_id
= SEQ_TO_QUEUE(seq
);
3618 if (status
& (AGG_TX_STATE_FEW_BYTES_MSK
|
3619 AGG_TX_STATE_ABORT_MSK
))
3622 IWL_DEBUG_TX_REPLY("FrameCnt = %d, txq_id=%d idx=%d\n",
3623 agg
->frame_count
, txq_id
, idx
);
3625 hdr
= iwl4965_tx_queue_get_hdr(priv
, txq_id
, idx
);
3627 sc
= le16_to_cpu(hdr
->seq_ctrl
);
3628 if (idx
!= (SEQ_TO_SN(sc
) & 0xff)) {
3629 IWL_ERROR("BUG_ON idx doesn't match seq control"
3630 " idx=%d, seq_idx=%d, seq=%d\n",
3636 IWL_DEBUG_TX_REPLY("AGG Frame i=%d idx %d seq=%d\n",
3637 i
, idx
, SEQ_TO_SN(sc
));
3641 sh
= (start
- idx
) + 0xff;
3642 bitmap
= bitmap
<< sh
;
3645 } else if (sh
< -64)
3646 sh
= 0xff - (start
- idx
);
3650 bitmap
= bitmap
<< sh
;
3653 bitmap
|= (1 << sh
);
3654 IWL_DEBUG_TX_REPLY("start=%d bitmap=0x%x\n",
3655 start
, (u32
)(bitmap
& 0xFFFFFFFF));
3658 agg
->bitmap
= bitmap
;
3659 agg
->start_idx
= start
;
3660 agg
->rate_n_flags
= le32_to_cpu(tx_resp
->rate_n_flags
);
3661 IWL_DEBUG_TX_REPLY("Frames %d start_idx=%d bitmap=0x%llx\n",
3662 agg
->frame_count
, agg
->start_idx
,
3666 agg
->wait_for_ba
= 1;
3673 * iwl4965_rx_reply_tx - Handle standard (non-aggregation) Tx response
3675 static void iwl4965_rx_reply_tx(struct iwl4965_priv
*priv
,
3676 struct iwl4965_rx_mem_buffer
*rxb
)
3678 struct iwl4965_rx_packet
*pkt
= (void *)rxb
->skb
->data
;
3679 u16 sequence
= le16_to_cpu(pkt
->hdr
.sequence
);
3680 int txq_id
= SEQ_TO_QUEUE(sequence
);
3681 int index
= SEQ_TO_INDEX(sequence
);
3682 struct iwl4965_tx_queue
*txq
= &priv
->txq
[txq_id
];
3683 struct ieee80211_tx_status
*tx_status
;
3684 struct iwl4965_tx_resp
*tx_resp
= (void *)&pkt
->u
.raw
[0];
3685 u32 status
= le32_to_cpu(tx_resp
->status
);
3686 #ifdef CONFIG_IWL4965_HT
3687 int tid
= MAX_TID_COUNT
, sta_id
= IWL_INVALID_STATION
;
3688 struct ieee80211_hdr
*hdr
;
3692 if ((index
>= txq
->q
.n_bd
) || (x2_queue_used(&txq
->q
, index
) == 0)) {
3693 IWL_ERROR("Read index for DMA queue txq_id (%d) index %d "
3694 "is out of range [0-%d] %d %d\n", txq_id
,
3695 index
, txq
->q
.n_bd
, txq
->q
.write_ptr
,
3700 #ifdef CONFIG_IWL4965_HT
3701 hdr
= iwl4965_tx_queue_get_hdr(priv
, txq_id
, index
);
3702 qc
= ieee80211_get_qos_ctrl(hdr
);
3705 tid
= le16_to_cpu(*qc
) & 0xf;
3707 sta_id
= iwl4965_get_ra_sta_id(priv
, hdr
);
3708 if (txq
->sched_retry
&& unlikely(sta_id
== IWL_INVALID_STATION
)) {
3709 IWL_ERROR("Station not known\n");
3713 if (txq
->sched_retry
) {
3714 const u32 scd_ssn
= iwl4965_get_scd_ssn(tx_resp
);
3715 struct iwl4965_ht_agg
*agg
= NULL
;
3720 agg
= &priv
->stations
[sta_id
].tid
[tid
].agg
;
3722 iwl4965_tx_status_reply_tx(priv
, agg
,
3723 (struct iwl4965_tx_resp_agg
*)tx_resp
, index
);
3725 if ((tx_resp
->frame_count
== 1) &&
3726 !iwl4965_is_tx_success(status
)) {
3727 /* TODO: send BAR */
3730 if (txq
->q
.read_ptr
!= (scd_ssn
& 0xff)) {
3732 index
= iwl4965_queue_dec_wrap(scd_ssn
& 0xff, txq
->q
.n_bd
);
3733 IWL_DEBUG_TX_REPLY("Retry scheduler reclaim scd_ssn "
3734 "%d index %d\n", scd_ssn
, index
);
3735 freed
= iwl4965_tx_queue_reclaim(priv
, txq_id
, index
);
3736 priv
->stations
[sta_id
].tid
[tid
].tfds_in_queue
-= freed
;
3738 if (iwl4965_queue_space(&txq
->q
) > txq
->q
.low_mark
&&
3739 txq_id
>= 0 && priv
->mac80211_registered
&&
3740 agg
->state
!= IWL_EMPTYING_HW_QUEUE_DELBA
)
3741 ieee80211_wake_queue(priv
->hw
, txq_id
);
3743 iwl4965_check_empty_hw_queue(priv
, sta_id
, tid
, txq_id
);
3746 #endif /* CONFIG_IWL4965_HT */
3747 tx_status
= &(txq
->txb
[txq
->q
.read_ptr
].status
);
3749 tx_status
->retry_count
= tx_resp
->failure_frame
;
3750 tx_status
->queue_number
= status
;
3751 tx_status
->queue_length
= tx_resp
->bt_kill_count
;
3752 tx_status
->queue_length
|= tx_resp
->failure_rts
;
3755 iwl4965_is_tx_success(status
) ? IEEE80211_TX_STATUS_ACK
: 0;
3757 IWL_DEBUG_TX("Tx queue %d Status %s (0x%08x) rate_n_flags 0x%x "
3758 "retries %d\n", txq_id
, iwl4965_get_tx_fail_reason(status
),
3759 status
, le32_to_cpu(tx_resp
->rate_n_flags
),
3760 tx_resp
->failure_frame
);
3762 IWL_DEBUG_TX_REPLY("Tx queue reclaim %d\n", index
);
3764 int freed
= iwl4965_tx_queue_reclaim(priv
, txq_id
, index
);
3765 #ifdef CONFIG_IWL4965_HT
3766 if (tid
!= MAX_TID_COUNT
)
3767 priv
->stations
[sta_id
].tid
[tid
].tfds_in_queue
-= freed
;
3768 if (iwl4965_queue_space(&txq
->q
) > txq
->q
.low_mark
&&
3770 priv
->mac80211_registered
)
3771 ieee80211_wake_queue(priv
->hw
, txq_id
);
3772 if (tid
!= MAX_TID_COUNT
)
3773 iwl4965_check_empty_hw_queue(priv
, sta_id
, tid
, txq_id
);
3776 #ifdef CONFIG_IWL4965_HT
3778 #endif /* CONFIG_IWL4965_HT */
3780 if (iwl_check_bits(status
, TX_ABORT_REQUIRED_MSK
))
3781 IWL_ERROR("TODO: Implement Tx ABORT REQUIRED!!!\n");
3785 static void iwl4965_rx_reply_alive(struct iwl4965_priv
*priv
,
3786 struct iwl4965_rx_mem_buffer
*rxb
)
3788 struct iwl4965_rx_packet
*pkt
= (void *)rxb
->skb
->data
;
3789 struct iwl4965_alive_resp
*palive
;
3790 struct delayed_work
*pwork
;
3792 palive
= &pkt
->u
.alive_frame
;
3794 IWL_DEBUG_INFO("Alive ucode status 0x%08X revision "
3796 palive
->is_valid
, palive
->ver_type
,
3797 palive
->ver_subtype
);
3799 if (palive
->ver_subtype
== INITIALIZE_SUBTYPE
) {
3800 IWL_DEBUG_INFO("Initialization Alive received.\n");
3801 memcpy(&priv
->card_alive_init
,
3802 &pkt
->u
.alive_frame
,
3803 sizeof(struct iwl4965_init_alive_resp
));
3804 pwork
= &priv
->init_alive_start
;
3806 IWL_DEBUG_INFO("Runtime Alive received.\n");
3807 memcpy(&priv
->card_alive
, &pkt
->u
.alive_frame
,
3808 sizeof(struct iwl4965_alive_resp
));
3809 pwork
= &priv
->alive_start
;
3812 /* We delay the ALIVE response by 5ms to
3813 * give the HW RF Kill time to activate... */
3814 if (palive
->is_valid
== UCODE_VALID_OK
)
3815 queue_delayed_work(priv
->workqueue
, pwork
,
3816 msecs_to_jiffies(5));
3818 IWL_WARNING("uCode did not respond OK.\n");
3821 static void iwl4965_rx_reply_add_sta(struct iwl4965_priv
*priv
,
3822 struct iwl4965_rx_mem_buffer
*rxb
)
3824 struct iwl4965_rx_packet
*pkt
= (void *)rxb
->skb
->data
;
3826 IWL_DEBUG_RX("Received REPLY_ADD_STA: 0x%02X\n", pkt
->u
.status
);
3830 static void iwl4965_rx_reply_error(struct iwl4965_priv
*priv
,
3831 struct iwl4965_rx_mem_buffer
*rxb
)
3833 struct iwl4965_rx_packet
*pkt
= (void *)rxb
->skb
->data
;
3835 IWL_ERROR("Error Reply type 0x%08X cmd %s (0x%02X) "
3836 "seq 0x%04X ser 0x%08X\n",
3837 le32_to_cpu(pkt
->u
.err_resp
.error_type
),
3838 get_cmd_string(pkt
->u
.err_resp
.cmd_id
),
3839 pkt
->u
.err_resp
.cmd_id
,
3840 le16_to_cpu(pkt
->u
.err_resp
.bad_cmd_seq_num
),
3841 le32_to_cpu(pkt
->u
.err_resp
.error_info
));
3844 #define TX_STATUS_ENTRY(x) case TX_STATUS_FAIL_ ## x: return #x
3846 static void iwl4965_rx_csa(struct iwl4965_priv
*priv
, struct iwl4965_rx_mem_buffer
*rxb
)
3848 struct iwl4965_rx_packet
*pkt
= (void *)rxb
->skb
->data
;
3849 struct iwl4965_rxon_cmd
*rxon
= (void *)&priv
->active_rxon
;
3850 struct iwl4965_csa_notification
*csa
= &(pkt
->u
.csa_notif
);
3851 IWL_DEBUG_11H("CSA notif: channel %d, status %d\n",
3852 le16_to_cpu(csa
->channel
), le32_to_cpu(csa
->status
));
3853 rxon
->channel
= csa
->channel
;
3854 priv
->staging_rxon
.channel
= csa
->channel
;
3857 static void iwl4965_rx_spectrum_measure_notif(struct iwl4965_priv
*priv
,
3858 struct iwl4965_rx_mem_buffer
*rxb
)
3860 #ifdef CONFIG_IWL4965_SPECTRUM_MEASUREMENT
3861 struct iwl4965_rx_packet
*pkt
= (void *)rxb
->skb
->data
;
3862 struct iwl4965_spectrum_notification
*report
= &(pkt
->u
.spectrum_notif
);
3864 if (!report
->state
) {
3865 IWL_DEBUG(IWL_DL_11H
| IWL_DL_INFO
,
3866 "Spectrum Measure Notification: Start\n");
3870 memcpy(&priv
->measure_report
, report
, sizeof(*report
));
3871 priv
->measurement_status
|= MEASUREMENT_READY
;
3875 static void iwl4965_rx_pm_sleep_notif(struct iwl4965_priv
*priv
,
3876 struct iwl4965_rx_mem_buffer
*rxb
)
3878 #ifdef CONFIG_IWL4965_DEBUG
3879 struct iwl4965_rx_packet
*pkt
= (void *)rxb
->skb
->data
;
3880 struct iwl4965_sleep_notification
*sleep
= &(pkt
->u
.sleep_notif
);
3881 IWL_DEBUG_RX("sleep mode: %d, src: %d\n",
3882 sleep
->pm_sleep_mode
, sleep
->pm_wakeup_src
);
3886 static void iwl4965_rx_pm_debug_statistics_notif(struct iwl4965_priv
*priv
,
3887 struct iwl4965_rx_mem_buffer
*rxb
)
3889 struct iwl4965_rx_packet
*pkt
= (void *)rxb
->skb
->data
;
3890 IWL_DEBUG_RADIO("Dumping %d bytes of unhandled "
3891 "notification for %s:\n",
3892 le32_to_cpu(pkt
->len
), get_cmd_string(pkt
->hdr
.cmd
));
3893 iwl4965_print_hex_dump(IWL_DL_RADIO
, pkt
->u
.raw
, le32_to_cpu(pkt
->len
));
3896 static void iwl4965_bg_beacon_update(struct work_struct
*work
)
3898 struct iwl4965_priv
*priv
=
3899 container_of(work
, struct iwl4965_priv
, beacon_update
);
3900 struct sk_buff
*beacon
;
3902 /* Pull updated AP beacon from mac80211. will fail if not in AP mode */
3903 beacon
= ieee80211_beacon_get(priv
->hw
, priv
->vif
, NULL
);
3906 IWL_ERROR("update beacon failed\n");
3910 mutex_lock(&priv
->mutex
);
3911 /* new beacon skb is allocated every time; dispose previous.*/
3912 if (priv
->ibss_beacon
)
3913 dev_kfree_skb(priv
->ibss_beacon
);
3915 priv
->ibss_beacon
= beacon
;
3916 mutex_unlock(&priv
->mutex
);
3918 iwl4965_send_beacon_cmd(priv
);
3921 static void iwl4965_rx_beacon_notif(struct iwl4965_priv
*priv
,
3922 struct iwl4965_rx_mem_buffer
*rxb
)
3924 #ifdef CONFIG_IWL4965_DEBUG
3925 struct iwl4965_rx_packet
*pkt
= (void *)rxb
->skb
->data
;
3926 struct iwl4965_beacon_notif
*beacon
= &(pkt
->u
.beacon_status
);
3927 u8 rate
= iwl4965_hw_get_rate(beacon
->beacon_notify_hdr
.rate_n_flags
);
3929 IWL_DEBUG_RX("beacon status %x retries %d iss %d "
3930 "tsf %d %d rate %d\n",
3931 le32_to_cpu(beacon
->beacon_notify_hdr
.status
) & TX_STATUS_MSK
,
3932 beacon
->beacon_notify_hdr
.failure_frame
,
3933 le32_to_cpu(beacon
->ibss_mgr_status
),
3934 le32_to_cpu(beacon
->high_tsf
),
3935 le32_to_cpu(beacon
->low_tsf
), rate
);
3938 if ((priv
->iw_mode
== IEEE80211_IF_TYPE_AP
) &&
3939 (!test_bit(STATUS_EXIT_PENDING
, &priv
->status
)))
3940 queue_work(priv
->workqueue
, &priv
->beacon_update
);
3943 /* Service response to REPLY_SCAN_CMD (0x80) */
3944 static void iwl4965_rx_reply_scan(struct iwl4965_priv
*priv
,
3945 struct iwl4965_rx_mem_buffer
*rxb
)
3947 #ifdef CONFIG_IWL4965_DEBUG
3948 struct iwl4965_rx_packet
*pkt
= (void *)rxb
->skb
->data
;
3949 struct iwl4965_scanreq_notification
*notif
=
3950 (struct iwl4965_scanreq_notification
*)pkt
->u
.raw
;
3952 IWL_DEBUG_RX("Scan request status = 0x%x\n", notif
->status
);
3956 /* Service SCAN_START_NOTIFICATION (0x82) */
3957 static void iwl4965_rx_scan_start_notif(struct iwl4965_priv
*priv
,
3958 struct iwl4965_rx_mem_buffer
*rxb
)
3960 struct iwl4965_rx_packet
*pkt
= (void *)rxb
->skb
->data
;
3961 struct iwl4965_scanstart_notification
*notif
=
3962 (struct iwl4965_scanstart_notification
*)pkt
->u
.raw
;
3963 priv
->scan_start_tsf
= le32_to_cpu(notif
->tsf_low
);
3964 IWL_DEBUG_SCAN("Scan start: "
3966 "(TSF: 0x%08X:%08X) - %d (beacon timer %u)\n",
3968 notif
->band
? "bg" : "a",
3970 notif
->tsf_low
, notif
->status
, notif
->beacon_timer
);
3973 /* Service SCAN_RESULTS_NOTIFICATION (0x83) */
3974 static void iwl4965_rx_scan_results_notif(struct iwl4965_priv
*priv
,
3975 struct iwl4965_rx_mem_buffer
*rxb
)
3977 struct iwl4965_rx_packet
*pkt
= (void *)rxb
->skb
->data
;
3978 struct iwl4965_scanresults_notification
*notif
=
3979 (struct iwl4965_scanresults_notification
*)pkt
->u
.raw
;
3981 IWL_DEBUG_SCAN("Scan ch.res: "
3983 "(TSF: 0x%08X:%08X) - %d "
3984 "elapsed=%lu usec (%dms since last)\n",
3986 notif
->band
? "bg" : "a",
3987 le32_to_cpu(notif
->tsf_high
),
3988 le32_to_cpu(notif
->tsf_low
),
3989 le32_to_cpu(notif
->statistics
[0]),
3990 le32_to_cpu(notif
->tsf_low
) - priv
->scan_start_tsf
,
3991 jiffies_to_msecs(elapsed_jiffies
3992 (priv
->last_scan_jiffies
, jiffies
)));
3994 priv
->last_scan_jiffies
= jiffies
;
3995 priv
->next_scan_jiffies
= 0;
3998 /* Service SCAN_COMPLETE_NOTIFICATION (0x84) */
3999 static void iwl4965_rx_scan_complete_notif(struct iwl4965_priv
*priv
,
4000 struct iwl4965_rx_mem_buffer
*rxb
)
4002 struct iwl4965_rx_packet
*pkt
= (void *)rxb
->skb
->data
;
4003 struct iwl4965_scancomplete_notification
*scan_notif
= (void *)pkt
->u
.raw
;
4005 IWL_DEBUG_SCAN("Scan complete: %d channels (TSF 0x%08X:%08X) - %d\n",
4006 scan_notif
->scanned_channels
,
4007 scan_notif
->tsf_low
,
4008 scan_notif
->tsf_high
, scan_notif
->status
);
4010 /* The HW is no longer scanning */
4011 clear_bit(STATUS_SCAN_HW
, &priv
->status
);
4013 /* The scan completion notification came in, so kill that timer... */
4014 cancel_delayed_work(&priv
->scan_check
);
4016 IWL_DEBUG_INFO("Scan pass on %sGHz took %dms\n",
4017 (priv
->scan_bands
== 2) ? "2.4" : "5.2",
4018 jiffies_to_msecs(elapsed_jiffies
4019 (priv
->scan_pass_start
, jiffies
)));
4021 /* Remove this scanned band from the list
4022 * of pending bands to scan */
4025 /* If a request to abort was given, or the scan did not succeed
4026 * then we reset the scan state machine and terminate,
4027 * re-queuing another scan if one has been requested */
4028 if (test_bit(STATUS_SCAN_ABORTING
, &priv
->status
)) {
4029 IWL_DEBUG_INFO("Aborted scan completed.\n");
4030 clear_bit(STATUS_SCAN_ABORTING
, &priv
->status
);
4032 /* If there are more bands on this scan pass reschedule */
4033 if (priv
->scan_bands
> 0)
4037 priv
->last_scan_jiffies
= jiffies
;
4038 priv
->next_scan_jiffies
= 0;
4039 IWL_DEBUG_INFO("Setting scan to off\n");
4041 clear_bit(STATUS_SCANNING
, &priv
->status
);
4043 IWL_DEBUG_INFO("Scan took %dms\n",
4044 jiffies_to_msecs(elapsed_jiffies(priv
->scan_start
, jiffies
)));
4046 queue_work(priv
->workqueue
, &priv
->scan_completed
);
4051 priv
->scan_pass_start
= jiffies
;
4052 queue_work(priv
->workqueue
, &priv
->request_scan
);
4055 /* Handle notification from uCode that card's power state is changing
4056 * due to software, hardware, or critical temperature RFKILL */
4057 static void iwl4965_rx_card_state_notif(struct iwl4965_priv
*priv
,
4058 struct iwl4965_rx_mem_buffer
*rxb
)
4060 struct iwl4965_rx_packet
*pkt
= (void *)rxb
->skb
->data
;
4061 u32 flags
= le32_to_cpu(pkt
->u
.card_state_notif
.flags
);
4062 unsigned long status
= priv
->status
;
4064 IWL_DEBUG_RF_KILL("Card state received: HW:%s SW:%s\n",
4065 (flags
& HW_CARD_DISABLED
) ? "Kill" : "On",
4066 (flags
& SW_CARD_DISABLED
) ? "Kill" : "On");
4068 if (flags
& (SW_CARD_DISABLED
| HW_CARD_DISABLED
|
4069 RF_CARD_DISABLED
)) {
4071 iwl4965_write32(priv
, CSR_UCODE_DRV_GP1_SET
,
4072 CSR_UCODE_DRV_GP1_BIT_CMD_BLOCKED
);
4074 if (!iwl4965_grab_nic_access(priv
)) {
4075 iwl4965_write_direct32(
4076 priv
, HBUS_TARG_MBX_C
,
4077 HBUS_TARG_MBX_C_REG_BIT_CMD_BLOCKED
);
4079 iwl4965_release_nic_access(priv
);
4082 if (!(flags
& RXON_CARD_DISABLED
)) {
4083 iwl4965_write32(priv
, CSR_UCODE_DRV_GP1_CLR
,
4084 CSR_UCODE_DRV_GP1_BIT_CMD_BLOCKED
);
4085 if (!iwl4965_grab_nic_access(priv
)) {
4086 iwl4965_write_direct32(
4087 priv
, HBUS_TARG_MBX_C
,
4088 HBUS_TARG_MBX_C_REG_BIT_CMD_BLOCKED
);
4090 iwl4965_release_nic_access(priv
);
4094 if (flags
& RF_CARD_DISABLED
) {
4095 iwl4965_write32(priv
, CSR_UCODE_DRV_GP1_SET
,
4096 CSR_UCODE_DRV_GP1_REG_BIT_CT_KILL_EXIT
);
4097 iwl4965_read32(priv
, CSR_UCODE_DRV_GP1
);
4098 if (!iwl4965_grab_nic_access(priv
))
4099 iwl4965_release_nic_access(priv
);
4103 if (flags
& HW_CARD_DISABLED
)
4104 set_bit(STATUS_RF_KILL_HW
, &priv
->status
);
4106 clear_bit(STATUS_RF_KILL_HW
, &priv
->status
);
4109 if (flags
& SW_CARD_DISABLED
)
4110 set_bit(STATUS_RF_KILL_SW
, &priv
->status
);
4112 clear_bit(STATUS_RF_KILL_SW
, &priv
->status
);
4114 if (!(flags
& RXON_CARD_DISABLED
))
4115 iwl4965_scan_cancel(priv
);
4117 if ((test_bit(STATUS_RF_KILL_HW
, &status
) !=
4118 test_bit(STATUS_RF_KILL_HW
, &priv
->status
)) ||
4119 (test_bit(STATUS_RF_KILL_SW
, &status
) !=
4120 test_bit(STATUS_RF_KILL_SW
, &priv
->status
)))
4121 queue_work(priv
->workqueue
, &priv
->rf_kill
);
4123 wake_up_interruptible(&priv
->wait_command_queue
);
4127 * iwl4965_setup_rx_handlers - Initialize Rx handler callbacks
4129 * Setup the RX handlers for each of the reply types sent from the uCode
4132 * This function chains into the hardware specific files for them to setup
4133 * any hardware specific handlers as well.
4135 static void iwl4965_setup_rx_handlers(struct iwl4965_priv
*priv
)
4137 priv
->rx_handlers
[REPLY_ALIVE
] = iwl4965_rx_reply_alive
;
4138 priv
->rx_handlers
[REPLY_ADD_STA
] = iwl4965_rx_reply_add_sta
;
4139 priv
->rx_handlers
[REPLY_ERROR
] = iwl4965_rx_reply_error
;
4140 priv
->rx_handlers
[CHANNEL_SWITCH_NOTIFICATION
] = iwl4965_rx_csa
;
4141 priv
->rx_handlers
[SPECTRUM_MEASURE_NOTIFICATION
] =
4142 iwl4965_rx_spectrum_measure_notif
;
4143 priv
->rx_handlers
[PM_SLEEP_NOTIFICATION
] = iwl4965_rx_pm_sleep_notif
;
4144 priv
->rx_handlers
[PM_DEBUG_STATISTIC_NOTIFIC
] =
4145 iwl4965_rx_pm_debug_statistics_notif
;
4146 priv
->rx_handlers
[BEACON_NOTIFICATION
] = iwl4965_rx_beacon_notif
;
4149 * The same handler is used for both the REPLY to a discrete
4150 * statistics request from the host as well as for the periodic
4151 * statistics notifications (after received beacons) from the uCode.
4153 priv
->rx_handlers
[REPLY_STATISTICS_CMD
] = iwl4965_hw_rx_statistics
;
4154 priv
->rx_handlers
[STATISTICS_NOTIFICATION
] = iwl4965_hw_rx_statistics
;
4156 priv
->rx_handlers
[REPLY_SCAN_CMD
] = iwl4965_rx_reply_scan
;
4157 priv
->rx_handlers
[SCAN_START_NOTIFICATION
] = iwl4965_rx_scan_start_notif
;
4158 priv
->rx_handlers
[SCAN_RESULTS_NOTIFICATION
] =
4159 iwl4965_rx_scan_results_notif
;
4160 priv
->rx_handlers
[SCAN_COMPLETE_NOTIFICATION
] =
4161 iwl4965_rx_scan_complete_notif
;
4162 priv
->rx_handlers
[CARD_STATE_NOTIFICATION
] = iwl4965_rx_card_state_notif
;
4163 priv
->rx_handlers
[REPLY_TX
] = iwl4965_rx_reply_tx
;
4165 /* Set up hardware specific Rx handlers */
4166 iwl4965_hw_rx_handler_setup(priv
);
4170 * iwl4965_tx_cmd_complete - Pull unused buffers off the queue and reclaim them
4171 * @rxb: Rx buffer to reclaim
4173 * If an Rx buffer has an async callback associated with it the callback
4174 * will be executed. The attached skb (if present) will only be freed
4175 * if the callback returns 1
4177 static void iwl4965_tx_cmd_complete(struct iwl4965_priv
*priv
,
4178 struct iwl4965_rx_mem_buffer
*rxb
)
4180 struct iwl4965_rx_packet
*pkt
= (struct iwl4965_rx_packet
*)rxb
->skb
->data
;
4181 u16 sequence
= le16_to_cpu(pkt
->hdr
.sequence
);
4182 int txq_id
= SEQ_TO_QUEUE(sequence
);
4183 int index
= SEQ_TO_INDEX(sequence
);
4184 int huge
= sequence
& SEQ_HUGE_FRAME
;
4186 struct iwl4965_cmd
*cmd
;
4188 /* If a Tx command is being handled and it isn't in the actual
4189 * command queue then there a command routing bug has been introduced
4190 * in the queue management code. */
4191 if (txq_id
!= IWL_CMD_QUEUE_NUM
)
4192 IWL_ERROR("Error wrong command queue %d command id 0x%X\n",
4193 txq_id
, pkt
->hdr
.cmd
);
4194 BUG_ON(txq_id
!= IWL_CMD_QUEUE_NUM
);
4196 cmd_index
= get_cmd_index(&priv
->txq
[IWL_CMD_QUEUE_NUM
].q
, index
, huge
);
4197 cmd
= &priv
->txq
[IWL_CMD_QUEUE_NUM
].cmd
[cmd_index
];
4199 /* Input error checking is done when commands are added to queue. */
4200 if (cmd
->meta
.flags
& CMD_WANT_SKB
) {
4201 cmd
->meta
.source
->u
.skb
= rxb
->skb
;
4203 } else if (cmd
->meta
.u
.callback
&&
4204 !cmd
->meta
.u
.callback(priv
, cmd
, rxb
->skb
))
4207 iwl4965_tx_queue_reclaim(priv
, txq_id
, index
);
4209 if (!(cmd
->meta
.flags
& CMD_ASYNC
)) {
4210 clear_bit(STATUS_HCMD_ACTIVE
, &priv
->status
);
4211 wake_up_interruptible(&priv
->wait_command_queue
);
4215 /************************** RX-FUNCTIONS ****************************/
4217 * Rx theory of operation
4219 * Driver allocates a circular buffer of Receive Buffer Descriptors (RBDs),
4220 * each of which point to Receive Buffers to be filled by 4965. These get
4221 * used not only for Rx frames, but for any command response or notification
4222 * from the 4965. The driver and 4965 manage the Rx buffers by means
4223 * of indexes into the circular buffer.
4226 * The host/firmware share two index registers for managing the Rx buffers.
4228 * The READ index maps to the first position that the firmware may be writing
4229 * to -- the driver can read up to (but not including) this position and get
4231 * The READ index is managed by the firmware once the card is enabled.
4233 * The WRITE index maps to the last position the driver has read from -- the
4234 * position preceding WRITE is the last slot the firmware can place a packet.
4236 * The queue is empty (no good data) if WRITE = READ - 1, and is full if
4239 * During initialization, the host sets up the READ queue position to the first
4240 * INDEX position, and WRITE to the last (READ - 1 wrapped)
4242 * When the firmware places a packet in a buffer, it will advance the READ index
4243 * and fire the RX interrupt. The driver can then query the READ index and
4244 * process as many packets as possible, moving the WRITE index forward as it
4245 * resets the Rx queue buffers with new memory.
4247 * The management in the driver is as follows:
4248 * + A list of pre-allocated SKBs is stored in iwl->rxq->rx_free. When
4249 * iwl->rxq->free_count drops to or below RX_LOW_WATERMARK, work is scheduled
4250 * to replenish the iwl->rxq->rx_free.
4251 * + In iwl4965_rx_replenish (scheduled) if 'processed' != 'read' then the
4252 * iwl->rxq is replenished and the READ INDEX is updated (updating the
4253 * 'processed' and 'read' driver indexes as well)
4254 * + A received packet is processed and handed to the kernel network stack,
4255 * detached from the iwl->rxq. The driver 'processed' index is updated.
4256 * + The Host/Firmware iwl->rxq is replenished at tasklet time from the rx_free
4257 * list. If there are no allocated buffers in iwl->rxq->rx_free, the READ
4258 * INDEX is not incremented and iwl->status(RX_STALLED) is set. If there
4259 * were enough free buffers and RX_STALLED is set it is cleared.
4264 * iwl4965_rx_queue_alloc() Allocates rx_free
4265 * iwl4965_rx_replenish() Replenishes rx_free list from rx_used, and calls
4266 * iwl4965_rx_queue_restock
4267 * iwl4965_rx_queue_restock() Moves available buffers from rx_free into Rx
4268 * queue, updates firmware pointers, and updates
4269 * the WRITE index. If insufficient rx_free buffers
4270 * are available, schedules iwl4965_rx_replenish
4272 * -- enable interrupts --
4273 * ISR - iwl4965_rx() Detach iwl4965_rx_mem_buffers from pool up to the
4274 * READ INDEX, detaching the SKB from the pool.
4275 * Moves the packet buffer from queue to rx_used.
4276 * Calls iwl4965_rx_queue_restock to refill any empty
4283 * iwl4965_rx_queue_space - Return number of free slots available in queue.
4285 static int iwl4965_rx_queue_space(const struct iwl4965_rx_queue
*q
)
4287 int s
= q
->read
- q
->write
;
4290 /* keep some buffer to not confuse full and empty queue */
4298 * iwl4965_rx_queue_update_write_ptr - Update the write pointer for the RX queue
4300 int iwl4965_rx_queue_update_write_ptr(struct iwl4965_priv
*priv
, struct iwl4965_rx_queue
*q
)
4304 unsigned long flags
;
4306 spin_lock_irqsave(&q
->lock
, flags
);
4308 if (q
->need_update
== 0)
4311 /* If power-saving is in use, make sure device is awake */
4312 if (test_bit(STATUS_POWER_PMI
, &priv
->status
)) {
4313 reg
= iwl4965_read32(priv
, CSR_UCODE_DRV_GP1
);
4315 if (reg
& CSR_UCODE_DRV_GP1_BIT_MAC_SLEEP
) {
4316 iwl4965_set_bit(priv
, CSR_GP_CNTRL
,
4317 CSR_GP_CNTRL_REG_FLAG_MAC_ACCESS_REQ
);
4321 rc
= iwl4965_grab_nic_access(priv
);
4325 /* Device expects a multiple of 8 */
4326 iwl4965_write_direct32(priv
, FH_RSCSR_CHNL0_WPTR
,
4328 iwl4965_release_nic_access(priv
);
4330 /* Else device is assumed to be awake */
4332 /* Device expects a multiple of 8 */
4333 iwl4965_write32(priv
, FH_RSCSR_CHNL0_WPTR
, q
->write
& ~0x7);
4339 spin_unlock_irqrestore(&q
->lock
, flags
);
4344 * iwl4965_dma_addr2rbd_ptr - convert a DMA address to a uCode read buffer ptr
4346 static inline __le32
iwl4965_dma_addr2rbd_ptr(struct iwl4965_priv
*priv
,
4347 dma_addr_t dma_addr
)
4349 return cpu_to_le32((u32
)(dma_addr
>> 8));
4354 * iwl4965_rx_queue_restock - refill RX queue from pre-allocated pool
4356 * If there are slots in the RX queue that need to be restocked,
4357 * and we have free pre-allocated buffers, fill the ranks as much
4358 * as we can, pulling from rx_free.
4360 * This moves the 'write' index forward to catch up with 'processed', and
4361 * also updates the memory address in the firmware to reference the new
4364 static int iwl4965_rx_queue_restock(struct iwl4965_priv
*priv
)
4366 struct iwl4965_rx_queue
*rxq
= &priv
->rxq
;
4367 struct list_head
*element
;
4368 struct iwl4965_rx_mem_buffer
*rxb
;
4369 unsigned long flags
;
4372 spin_lock_irqsave(&rxq
->lock
, flags
);
4373 write
= rxq
->write
& ~0x7;
4374 while ((iwl4965_rx_queue_space(rxq
) > 0) && (rxq
->free_count
)) {
4375 /* Get next free Rx buffer, remove from free list */
4376 element
= rxq
->rx_free
.next
;
4377 rxb
= list_entry(element
, struct iwl4965_rx_mem_buffer
, list
);
4380 /* Point to Rx buffer via next RBD in circular buffer */
4381 rxq
->bd
[rxq
->write
] = iwl4965_dma_addr2rbd_ptr(priv
, rxb
->dma_addr
);
4382 rxq
->queue
[rxq
->write
] = rxb
;
4383 rxq
->write
= (rxq
->write
+ 1) & RX_QUEUE_MASK
;
4386 spin_unlock_irqrestore(&rxq
->lock
, flags
);
4387 /* If the pre-allocated buffer pool is dropping low, schedule to
4389 if (rxq
->free_count
<= RX_LOW_WATERMARK
)
4390 queue_work(priv
->workqueue
, &priv
->rx_replenish
);
4393 /* If we've added more space for the firmware to place data, tell it.
4394 * Increment device's write pointer in multiples of 8. */
4395 if ((write
!= (rxq
->write
& ~0x7))
4396 || (abs(rxq
->write
- rxq
->read
) > 7)) {
4397 spin_lock_irqsave(&rxq
->lock
, flags
);
4398 rxq
->need_update
= 1;
4399 spin_unlock_irqrestore(&rxq
->lock
, flags
);
4400 rc
= iwl4965_rx_queue_update_write_ptr(priv
, rxq
);
4409 * iwl4965_rx_replenish - Move all used packet from rx_used to rx_free
4411 * When moving to rx_free an SKB is allocated for the slot.
4413 * Also restock the Rx queue via iwl4965_rx_queue_restock.
4414 * This is called as a scheduled work item (except for during initialization)
4416 static void iwl4965_rx_allocate(struct iwl4965_priv
*priv
)
4418 struct iwl4965_rx_queue
*rxq
= &priv
->rxq
;
4419 struct list_head
*element
;
4420 struct iwl4965_rx_mem_buffer
*rxb
;
4421 unsigned long flags
;
4422 spin_lock_irqsave(&rxq
->lock
, flags
);
4423 while (!list_empty(&rxq
->rx_used
)) {
4424 element
= rxq
->rx_used
.next
;
4425 rxb
= list_entry(element
, struct iwl4965_rx_mem_buffer
, list
);
4427 /* Alloc a new receive buffer */
4429 alloc_skb(priv
->hw_setting
.rx_buf_size
,
4430 __GFP_NOWARN
| GFP_ATOMIC
);
4432 if (net_ratelimit())
4433 printk(KERN_CRIT DRV_NAME
4434 ": Can not allocate SKB buffers\n");
4435 /* We don't reschedule replenish work here -- we will
4436 * call the restock method and if it still needs
4437 * more buffers it will schedule replenish */
4440 priv
->alloc_rxb_skb
++;
4443 /* Get physical address of RB/SKB */
4445 pci_map_single(priv
->pci_dev
, rxb
->skb
->data
,
4446 priv
->hw_setting
.rx_buf_size
, PCI_DMA_FROMDEVICE
);
4447 list_add_tail(&rxb
->list
, &rxq
->rx_free
);
4450 spin_unlock_irqrestore(&rxq
->lock
, flags
);
4454 * this should be called while priv->lock is locked
4456 static void __iwl4965_rx_replenish(void *data
)
4458 struct iwl4965_priv
*priv
= data
;
4460 iwl4965_rx_allocate(priv
);
4461 iwl4965_rx_queue_restock(priv
);
4465 void iwl4965_rx_replenish(void *data
)
4467 struct iwl4965_priv
*priv
= data
;
4468 unsigned long flags
;
4470 iwl4965_rx_allocate(priv
);
4472 spin_lock_irqsave(&priv
->lock
, flags
);
4473 iwl4965_rx_queue_restock(priv
);
4474 spin_unlock_irqrestore(&priv
->lock
, flags
);
4477 /* Assumes that the skb field of the buffers in 'pool' is kept accurate.
4478 * If an SKB has been detached, the POOL needs to have its SKB set to NULL
4479 * This free routine walks the list of POOL entries and if SKB is set to
4480 * non NULL it is unmapped and freed
4482 static void iwl4965_rx_queue_free(struct iwl4965_priv
*priv
, struct iwl4965_rx_queue
*rxq
)
4485 for (i
= 0; i
< RX_QUEUE_SIZE
+ RX_FREE_BUFFERS
; i
++) {
4486 if (rxq
->pool
[i
].skb
!= NULL
) {
4487 pci_unmap_single(priv
->pci_dev
,
4488 rxq
->pool
[i
].dma_addr
,
4489 priv
->hw_setting
.rx_buf_size
,
4490 PCI_DMA_FROMDEVICE
);
4491 dev_kfree_skb(rxq
->pool
[i
].skb
);
4495 pci_free_consistent(priv
->pci_dev
, 4 * RX_QUEUE_SIZE
, rxq
->bd
,
4500 int iwl4965_rx_queue_alloc(struct iwl4965_priv
*priv
)
4502 struct iwl4965_rx_queue
*rxq
= &priv
->rxq
;
4503 struct pci_dev
*dev
= priv
->pci_dev
;
4506 spin_lock_init(&rxq
->lock
);
4507 INIT_LIST_HEAD(&rxq
->rx_free
);
4508 INIT_LIST_HEAD(&rxq
->rx_used
);
4510 /* Alloc the circular buffer of Read Buffer Descriptors (RBDs) */
4511 rxq
->bd
= pci_alloc_consistent(dev
, 4 * RX_QUEUE_SIZE
, &rxq
->dma_addr
);
4515 /* Fill the rx_used queue with _all_ of the Rx buffers */
4516 for (i
= 0; i
< RX_FREE_BUFFERS
+ RX_QUEUE_SIZE
; i
++)
4517 list_add_tail(&rxq
->pool
[i
].list
, &rxq
->rx_used
);
4519 /* Set us so that we have processed and used all buffers, but have
4520 * not restocked the Rx queue with fresh buffers */
4521 rxq
->read
= rxq
->write
= 0;
4522 rxq
->free_count
= 0;
4523 rxq
->need_update
= 0;
4527 void iwl4965_rx_queue_reset(struct iwl4965_priv
*priv
, struct iwl4965_rx_queue
*rxq
)
4529 unsigned long flags
;
4531 spin_lock_irqsave(&rxq
->lock
, flags
);
4532 INIT_LIST_HEAD(&rxq
->rx_free
);
4533 INIT_LIST_HEAD(&rxq
->rx_used
);
4534 /* Fill the rx_used queue with _all_ of the Rx buffers */
4535 for (i
= 0; i
< RX_FREE_BUFFERS
+ RX_QUEUE_SIZE
; i
++) {
4536 /* In the reset function, these buffers may have been allocated
4537 * to an SKB, so we need to unmap and free potential storage */
4538 if (rxq
->pool
[i
].skb
!= NULL
) {
4539 pci_unmap_single(priv
->pci_dev
,
4540 rxq
->pool
[i
].dma_addr
,
4541 priv
->hw_setting
.rx_buf_size
,
4542 PCI_DMA_FROMDEVICE
);
4543 priv
->alloc_rxb_skb
--;
4544 dev_kfree_skb(rxq
->pool
[i
].skb
);
4545 rxq
->pool
[i
].skb
= NULL
;
4547 list_add_tail(&rxq
->pool
[i
].list
, &rxq
->rx_used
);
4550 /* Set us so that we have processed and used all buffers, but have
4551 * not restocked the Rx queue with fresh buffers */
4552 rxq
->read
= rxq
->write
= 0;
4553 rxq
->free_count
= 0;
4554 spin_unlock_irqrestore(&rxq
->lock
, flags
);
4557 /* Convert linear signal-to-noise ratio into dB */
4558 static u8 ratio2dB
[100] = {
4559 /* 0 1 2 3 4 5 6 7 8 9 */
4560 0, 0, 6, 10, 12, 14, 16, 17, 18, 19, /* 00 - 09 */
4561 20, 21, 22, 22, 23, 23, 24, 25, 26, 26, /* 10 - 19 */
4562 26, 26, 26, 27, 27, 28, 28, 28, 29, 29, /* 20 - 29 */
4563 29, 30, 30, 30, 31, 31, 31, 31, 32, 32, /* 30 - 39 */
4564 32, 32, 32, 33, 33, 33, 33, 33, 34, 34, /* 40 - 49 */
4565 34, 34, 34, 34, 35, 35, 35, 35, 35, 35, /* 50 - 59 */
4566 36, 36, 36, 36, 36, 36, 36, 37, 37, 37, /* 60 - 69 */
4567 37, 37, 37, 37, 37, 38, 38, 38, 38, 38, /* 70 - 79 */
4568 38, 38, 38, 38, 38, 39, 39, 39, 39, 39, /* 80 - 89 */
4569 39, 39, 39, 39, 39, 40, 40, 40, 40, 40 /* 90 - 99 */
4572 /* Calculates a relative dB value from a ratio of linear
4573 * (i.e. not dB) signal levels.
4574 * Conversion assumes that levels are voltages (20*log), not powers (10*log). */
4575 int iwl4965_calc_db_from_ratio(int sig_ratio
)
4577 /* 1000:1 or higher just report as 60 dB */
4578 if (sig_ratio
>= 1000)
4581 /* 100:1 or higher, divide by 10 and use table,
4582 * add 20 dB to make up for divide by 10 */
4583 if (sig_ratio
>= 100)
4584 return (20 + (int)ratio2dB
[sig_ratio
/10]);
4586 /* We shouldn't see this */
4590 /* Use table for ratios 1:1 - 99:1 */
4591 return (int)ratio2dB
[sig_ratio
];
4594 #define PERFECT_RSSI (-20) /* dBm */
4595 #define WORST_RSSI (-95) /* dBm */
4596 #define RSSI_RANGE (PERFECT_RSSI - WORST_RSSI)
4598 /* Calculate an indication of rx signal quality (a percentage, not dBm!).
4599 * See http://www.ces.clemson.edu/linux/signal_quality.shtml for info
4600 * about formulas used below. */
4601 int iwl4965_calc_sig_qual(int rssi_dbm
, int noise_dbm
)
4604 int degradation
= PERFECT_RSSI
- rssi_dbm
;
4606 /* If we get a noise measurement, use signal-to-noise ratio (SNR)
4607 * as indicator; formula is (signal dbm - noise dbm).
4608 * SNR at or above 40 is a great signal (100%).
4609 * Below that, scale to fit SNR of 0 - 40 dB within 0 - 100% indicator.
4610 * Weakest usable signal is usually 10 - 15 dB SNR. */
4612 if (rssi_dbm
- noise_dbm
>= 40)
4614 else if (rssi_dbm
< noise_dbm
)
4616 sig_qual
= ((rssi_dbm
- noise_dbm
) * 5) / 2;
4618 /* Else use just the signal level.
4619 * This formula is a least squares fit of data points collected and
4620 * compared with a reference system that had a percentage (%) display
4621 * for signal quality. */
4623 sig_qual
= (100 * (RSSI_RANGE
* RSSI_RANGE
) - degradation
*
4624 (15 * RSSI_RANGE
+ 62 * degradation
)) /
4625 (RSSI_RANGE
* RSSI_RANGE
);
4629 else if (sig_qual
< 1)
4636 * iwl4965_rx_handle - Main entry function for receiving responses from uCode
4638 * Uses the priv->rx_handlers callback function array to invoke
4639 * the appropriate handlers, including command responses,
4640 * frame-received notifications, and other notifications.
4642 static void iwl4965_rx_handle(struct iwl4965_priv
*priv
)
4644 struct iwl4965_rx_mem_buffer
*rxb
;
4645 struct iwl4965_rx_packet
*pkt
;
4646 struct iwl4965_rx_queue
*rxq
= &priv
->rxq
;
4649 unsigned long flags
;
4653 /* uCode's read index (stored in shared DRAM) indicates the last Rx
4654 * buffer that the driver may process (last buffer filled by ucode). */
4655 r
= iwl4965_hw_get_rx_read(priv
);
4658 /* Rx interrupt, but nothing sent from uCode */
4660 IWL_DEBUG(IWL_DL_RX
| IWL_DL_ISR
, "r = %d, i = %d\n", r
, i
);
4662 if (iwl4965_rx_queue_space(rxq
) > (RX_QUEUE_SIZE
/ 2))
4666 rxb
= rxq
->queue
[i
];
4668 /* If an RXB doesn't have a Rx queue slot associated with it,
4669 * then a bug has been introduced in the queue refilling
4670 * routines -- catch it here */
4671 BUG_ON(rxb
== NULL
);
4673 rxq
->queue
[i
] = NULL
;
4675 pci_dma_sync_single_for_cpu(priv
->pci_dev
, rxb
->dma_addr
,
4676 priv
->hw_setting
.rx_buf_size
,
4677 PCI_DMA_FROMDEVICE
);
4678 pkt
= (struct iwl4965_rx_packet
*)rxb
->skb
->data
;
4680 /* Reclaim a command buffer only if this packet is a response
4681 * to a (driver-originated) command.
4682 * If the packet (e.g. Rx frame) originated from uCode,
4683 * there is no command buffer to reclaim.
4684 * Ucode should set SEQ_RX_FRAME bit if ucode-originated,
4685 * but apparently a few don't get set; catch them here. */
4686 reclaim
= !(pkt
->hdr
.sequence
& SEQ_RX_FRAME
) &&
4687 (pkt
->hdr
.cmd
!= REPLY_RX_PHY_CMD
) &&
4688 (pkt
->hdr
.cmd
!= REPLY_4965_RX
) &&
4689 (pkt
->hdr
.cmd
!= REPLY_COMPRESSED_BA
) &&
4690 (pkt
->hdr
.cmd
!= STATISTICS_NOTIFICATION
) &&
4691 (pkt
->hdr
.cmd
!= REPLY_TX
);
4693 /* Based on type of command response or notification,
4694 * handle those that need handling via function in
4695 * rx_handlers table. See iwl4965_setup_rx_handlers() */
4696 if (priv
->rx_handlers
[pkt
->hdr
.cmd
]) {
4697 IWL_DEBUG(IWL_DL_HOST_COMMAND
| IWL_DL_RX
| IWL_DL_ISR
,
4698 "r = %d, i = %d, %s, 0x%02x\n", r
, i
,
4699 get_cmd_string(pkt
->hdr
.cmd
), pkt
->hdr
.cmd
);
4700 priv
->rx_handlers
[pkt
->hdr
.cmd
] (priv
, rxb
);
4702 /* No handling needed */
4703 IWL_DEBUG(IWL_DL_HOST_COMMAND
| IWL_DL_RX
| IWL_DL_ISR
,
4704 "r %d i %d No handler needed for %s, 0x%02x\n",
4705 r
, i
, get_cmd_string(pkt
->hdr
.cmd
),
4710 /* Invoke any callbacks, transfer the skb to caller, and
4711 * fire off the (possibly) blocking iwl4965_send_cmd()
4712 * as we reclaim the driver command queue */
4713 if (rxb
&& rxb
->skb
)
4714 iwl4965_tx_cmd_complete(priv
, rxb
);
4716 IWL_WARNING("Claim null rxb?\n");
4719 /* For now we just don't re-use anything. We can tweak this
4720 * later to try and re-use notification packets and SKBs that
4721 * fail to Rx correctly */
4722 if (rxb
->skb
!= NULL
) {
4723 priv
->alloc_rxb_skb
--;
4724 dev_kfree_skb_any(rxb
->skb
);
4728 pci_unmap_single(priv
->pci_dev
, rxb
->dma_addr
,
4729 priv
->hw_setting
.rx_buf_size
,
4730 PCI_DMA_FROMDEVICE
);
4731 spin_lock_irqsave(&rxq
->lock
, flags
);
4732 list_add_tail(&rxb
->list
, &priv
->rxq
.rx_used
);
4733 spin_unlock_irqrestore(&rxq
->lock
, flags
);
4734 i
= (i
+ 1) & RX_QUEUE_MASK
;
4735 /* If there are a lot of unused frames,
4736 * restock the Rx queue so ucode wont assert. */
4741 __iwl4965_rx_replenish(priv
);
4747 /* Backtrack one entry */
4749 iwl4965_rx_queue_restock(priv
);
4753 * iwl4965_tx_queue_update_write_ptr - Send new write index to hardware
4755 static int iwl4965_tx_queue_update_write_ptr(struct iwl4965_priv
*priv
,
4756 struct iwl4965_tx_queue
*txq
)
4760 int txq_id
= txq
->q
.id
;
4762 if (txq
->need_update
== 0)
4765 /* if we're trying to save power */
4766 if (test_bit(STATUS_POWER_PMI
, &priv
->status
)) {
4767 /* wake up nic if it's powered down ...
4768 * uCode will wake up, and interrupt us again, so next
4769 * time we'll skip this part. */
4770 reg
= iwl4965_read32(priv
, CSR_UCODE_DRV_GP1
);
4772 if (reg
& CSR_UCODE_DRV_GP1_BIT_MAC_SLEEP
) {
4773 IWL_DEBUG_INFO("Requesting wakeup, GP1 = 0x%x\n", reg
);
4774 iwl4965_set_bit(priv
, CSR_GP_CNTRL
,
4775 CSR_GP_CNTRL_REG_FLAG_MAC_ACCESS_REQ
);
4779 /* restore this queue's parameters in nic hardware. */
4780 rc
= iwl4965_grab_nic_access(priv
);
4783 iwl4965_write_direct32(priv
, HBUS_TARG_WRPTR
,
4784 txq
->q
.write_ptr
| (txq_id
<< 8));
4785 iwl4965_release_nic_access(priv
);
4787 /* else not in power-save mode, uCode will never sleep when we're
4788 * trying to tx (during RFKILL, we're not trying to tx). */
4790 iwl4965_write32(priv
, HBUS_TARG_WRPTR
,
4791 txq
->q
.write_ptr
| (txq_id
<< 8));
4793 txq
->need_update
= 0;
4798 #ifdef CONFIG_IWL4965_DEBUG
4799 static void iwl4965_print_rx_config_cmd(struct iwl4965_rxon_cmd
*rxon
)
4801 DECLARE_MAC_BUF(mac
);
4803 IWL_DEBUG_RADIO("RX CONFIG:\n");
4804 iwl4965_print_hex_dump(IWL_DL_RADIO
, (u8
*) rxon
, sizeof(*rxon
));
4805 IWL_DEBUG_RADIO("u16 channel: 0x%x\n", le16_to_cpu(rxon
->channel
));
4806 IWL_DEBUG_RADIO("u32 flags: 0x%08X\n", le32_to_cpu(rxon
->flags
));
4807 IWL_DEBUG_RADIO("u32 filter_flags: 0x%08x\n",
4808 le32_to_cpu(rxon
->filter_flags
));
4809 IWL_DEBUG_RADIO("u8 dev_type: 0x%x\n", rxon
->dev_type
);
4810 IWL_DEBUG_RADIO("u8 ofdm_basic_rates: 0x%02x\n",
4811 rxon
->ofdm_basic_rates
);
4812 IWL_DEBUG_RADIO("u8 cck_basic_rates: 0x%02x\n", rxon
->cck_basic_rates
);
4813 IWL_DEBUG_RADIO("u8[6] node_addr: %s\n",
4814 print_mac(mac
, rxon
->node_addr
));
4815 IWL_DEBUG_RADIO("u8[6] bssid_addr: %s\n",
4816 print_mac(mac
, rxon
->bssid_addr
));
4817 IWL_DEBUG_RADIO("u16 assoc_id: 0x%x\n", le16_to_cpu(rxon
->assoc_id
));
4821 static void iwl4965_enable_interrupts(struct iwl4965_priv
*priv
)
4823 IWL_DEBUG_ISR("Enabling interrupts\n");
4824 set_bit(STATUS_INT_ENABLED
, &priv
->status
);
4825 iwl4965_write32(priv
, CSR_INT_MASK
, CSR_INI_SET_MASK
);
4828 static inline void iwl4965_disable_interrupts(struct iwl4965_priv
*priv
)
4830 clear_bit(STATUS_INT_ENABLED
, &priv
->status
);
4832 /* disable interrupts from uCode/NIC to host */
4833 iwl4965_write32(priv
, CSR_INT_MASK
, 0x00000000);
4835 /* acknowledge/clear/reset any interrupts still pending
4836 * from uCode or flow handler (Rx/Tx DMA) */
4837 iwl4965_write32(priv
, CSR_INT
, 0xffffffff);
4838 iwl4965_write32(priv
, CSR_FH_INT_STATUS
, 0xffffffff);
4839 IWL_DEBUG_ISR("Disabled interrupts\n");
4842 static const char *desc_lookup(int i
)
4850 return "BAD_CHECKSUM";
4852 return "NMI_INTERRUPT";
4856 return "FATAL_ERROR";
4862 #define ERROR_START_OFFSET (1 * sizeof(u32))
4863 #define ERROR_ELEM_SIZE (7 * sizeof(u32))
4865 static void iwl4965_dump_nic_error_log(struct iwl4965_priv
*priv
)
4868 u32 desc
, time
, count
, base
, data1
;
4869 u32 blink1
, blink2
, ilink1
, ilink2
;
4872 base
= le32_to_cpu(priv
->card_alive
.error_event_table_ptr
);
4874 if (!iwl4965_hw_valid_rtc_data_addr(base
)) {
4875 IWL_ERROR("Not valid error log pointer 0x%08X\n", base
);
4879 rc
= iwl4965_grab_nic_access(priv
);
4881 IWL_WARNING("Can not read from adapter at this time.\n");
4885 count
= iwl4965_read_targ_mem(priv
, base
);
4887 if (ERROR_START_OFFSET
<= count
* ERROR_ELEM_SIZE
) {
4888 IWL_ERROR("Start IWL Error Log Dump:\n");
4889 IWL_ERROR("Status: 0x%08lX, Config: %08X count: %d\n",
4890 priv
->status
, priv
->config
, count
);
4893 desc
= iwl4965_read_targ_mem(priv
, base
+ 1 * sizeof(u32
));
4894 blink1
= iwl4965_read_targ_mem(priv
, base
+ 3 * sizeof(u32
));
4895 blink2
= iwl4965_read_targ_mem(priv
, base
+ 4 * sizeof(u32
));
4896 ilink1
= iwl4965_read_targ_mem(priv
, base
+ 5 * sizeof(u32
));
4897 ilink2
= iwl4965_read_targ_mem(priv
, base
+ 6 * sizeof(u32
));
4898 data1
= iwl4965_read_targ_mem(priv
, base
+ 7 * sizeof(u32
));
4899 data2
= iwl4965_read_targ_mem(priv
, base
+ 8 * sizeof(u32
));
4900 line
= iwl4965_read_targ_mem(priv
, base
+ 9 * sizeof(u32
));
4901 time
= iwl4965_read_targ_mem(priv
, base
+ 11 * sizeof(u32
));
4903 IWL_ERROR("Desc Time "
4904 "data1 data2 line\n");
4905 IWL_ERROR("%-13s (#%d) %010u 0x%08X 0x%08X %u\n",
4906 desc_lookup(desc
), desc
, time
, data1
, data2
, line
);
4907 IWL_ERROR("blink1 blink2 ilink1 ilink2\n");
4908 IWL_ERROR("0x%05X 0x%05X 0x%05X 0x%05X\n", blink1
, blink2
,
4911 iwl4965_release_nic_access(priv
);
4914 #define EVENT_START_OFFSET (4 * sizeof(u32))
4917 * iwl4965_print_event_log - Dump error event log to syslog
4919 * NOTE: Must be called with iwl4965_grab_nic_access() already obtained!
4921 static void iwl4965_print_event_log(struct iwl4965_priv
*priv
, u32 start_idx
,
4922 u32 num_events
, u32 mode
)
4925 u32 base
; /* SRAM byte address of event log header */
4926 u32 event_size
; /* 2 u32s, or 3 u32s if timestamp recorded */
4927 u32 ptr
; /* SRAM byte address of log data */
4928 u32 ev
, time
, data
; /* event log data */
4930 if (num_events
== 0)
4933 base
= le32_to_cpu(priv
->card_alive
.log_event_table_ptr
);
4936 event_size
= 2 * sizeof(u32
);
4938 event_size
= 3 * sizeof(u32
);
4940 ptr
= base
+ EVENT_START_OFFSET
+ (start_idx
* event_size
);
4942 /* "time" is actually "data" for mode 0 (no timestamp).
4943 * place event id # at far right for easier visual parsing. */
4944 for (i
= 0; i
< num_events
; i
++) {
4945 ev
= iwl4965_read_targ_mem(priv
, ptr
);
4947 time
= iwl4965_read_targ_mem(priv
, ptr
);
4950 IWL_ERROR("0x%08x\t%04u\n", time
, ev
); /* data, ev */
4952 data
= iwl4965_read_targ_mem(priv
, ptr
);
4954 IWL_ERROR("%010u\t0x%08x\t%04u\n", time
, data
, ev
);
4959 static void iwl4965_dump_nic_event_log(struct iwl4965_priv
*priv
)
4962 u32 base
; /* SRAM byte address of event log header */
4963 u32 capacity
; /* event log capacity in # entries */
4964 u32 mode
; /* 0 - no timestamp, 1 - timestamp recorded */
4965 u32 num_wraps
; /* # times uCode wrapped to top of log */
4966 u32 next_entry
; /* index of next entry to be written by uCode */
4967 u32 size
; /* # entries that we'll print */
4969 base
= le32_to_cpu(priv
->card_alive
.log_event_table_ptr
);
4970 if (!iwl4965_hw_valid_rtc_data_addr(base
)) {
4971 IWL_ERROR("Invalid event log pointer 0x%08X\n", base
);
4975 rc
= iwl4965_grab_nic_access(priv
);
4977 IWL_WARNING("Can not read from adapter at this time.\n");
4981 /* event log header */
4982 capacity
= iwl4965_read_targ_mem(priv
, base
);
4983 mode
= iwl4965_read_targ_mem(priv
, base
+ (1 * sizeof(u32
)));
4984 num_wraps
= iwl4965_read_targ_mem(priv
, base
+ (2 * sizeof(u32
)));
4985 next_entry
= iwl4965_read_targ_mem(priv
, base
+ (3 * sizeof(u32
)));
4987 size
= num_wraps
? capacity
: next_entry
;
4989 /* bail out if nothing in log */
4991 IWL_ERROR("Start IWL Event Log Dump: nothing in log\n");
4992 iwl4965_release_nic_access(priv
);
4996 IWL_ERROR("Start IWL Event Log Dump: display count %d, wraps %d\n",
4999 /* if uCode has wrapped back to top of log, start at the oldest entry,
5000 * i.e the next one that uCode would fill. */
5002 iwl4965_print_event_log(priv
, next_entry
,
5003 capacity
- next_entry
, mode
);
5005 /* (then/else) start at top of log */
5006 iwl4965_print_event_log(priv
, 0, next_entry
, mode
);
5008 iwl4965_release_nic_access(priv
);
5012 * iwl4965_irq_handle_error - called for HW or SW error interrupt from card
5014 static void iwl4965_irq_handle_error(struct iwl4965_priv
*priv
)
5016 /* Set the FW error flag -- cleared on iwl4965_down */
5017 set_bit(STATUS_FW_ERROR
, &priv
->status
);
5019 /* Cancel currently queued command. */
5020 clear_bit(STATUS_HCMD_ACTIVE
, &priv
->status
);
5022 #ifdef CONFIG_IWL4965_DEBUG
5023 if (iwl4965_debug_level
& IWL_DL_FW_ERRORS
) {
5024 iwl4965_dump_nic_error_log(priv
);
5025 iwl4965_dump_nic_event_log(priv
);
5026 iwl4965_print_rx_config_cmd(&priv
->staging_rxon
);
5030 wake_up_interruptible(&priv
->wait_command_queue
);
5032 /* Keep the restart process from trying to send host
5033 * commands by clearing the INIT status bit */
5034 clear_bit(STATUS_READY
, &priv
->status
);
5036 if (!test_bit(STATUS_EXIT_PENDING
, &priv
->status
)) {
5037 IWL_DEBUG(IWL_DL_INFO
| IWL_DL_FW_ERRORS
,
5038 "Restarting adapter due to uCode error.\n");
5040 if (iwl4965_is_associated(priv
)) {
5041 memcpy(&priv
->recovery_rxon
, &priv
->active_rxon
,
5042 sizeof(priv
->recovery_rxon
));
5043 priv
->error_recovering
= 1;
5045 queue_work(priv
->workqueue
, &priv
->restart
);
5049 static void iwl4965_error_recovery(struct iwl4965_priv
*priv
)
5051 unsigned long flags
;
5053 memcpy(&priv
->staging_rxon
, &priv
->recovery_rxon
,
5054 sizeof(priv
->staging_rxon
));
5055 priv
->staging_rxon
.filter_flags
&= ~RXON_FILTER_ASSOC_MSK
;
5056 iwl4965_commit_rxon(priv
);
5058 iwl4965_rxon_add_station(priv
, priv
->bssid
, 1);
5060 spin_lock_irqsave(&priv
->lock
, flags
);
5061 priv
->assoc_id
= le16_to_cpu(priv
->staging_rxon
.assoc_id
);
5062 priv
->error_recovering
= 0;
5063 spin_unlock_irqrestore(&priv
->lock
, flags
);
5066 static void iwl4965_irq_tasklet(struct iwl4965_priv
*priv
)
5068 u32 inta
, handled
= 0;
5070 unsigned long flags
;
5071 #ifdef CONFIG_IWL4965_DEBUG
5075 spin_lock_irqsave(&priv
->lock
, flags
);
5077 /* Ack/clear/reset pending uCode interrupts.
5078 * Note: Some bits in CSR_INT are "OR" of bits in CSR_FH_INT_STATUS,
5079 * and will clear only when CSR_FH_INT_STATUS gets cleared. */
5080 inta
= iwl4965_read32(priv
, CSR_INT
);
5081 iwl4965_write32(priv
, CSR_INT
, inta
);
5083 /* Ack/clear/reset pending flow-handler (DMA) interrupts.
5084 * Any new interrupts that happen after this, either while we're
5085 * in this tasklet, or later, will show up in next ISR/tasklet. */
5086 inta_fh
= iwl4965_read32(priv
, CSR_FH_INT_STATUS
);
5087 iwl4965_write32(priv
, CSR_FH_INT_STATUS
, inta_fh
);
5089 #ifdef CONFIG_IWL4965_DEBUG
5090 if (iwl4965_debug_level
& IWL_DL_ISR
) {
5091 /* just for debug */
5092 inta_mask
= iwl4965_read32(priv
, CSR_INT_MASK
);
5093 IWL_DEBUG_ISR("inta 0x%08x, enabled 0x%08x, fh 0x%08x\n",
5094 inta
, inta_mask
, inta_fh
);
5098 /* Since CSR_INT and CSR_FH_INT_STATUS reads and clears are not
5099 * atomic, make sure that inta covers all the interrupts that
5100 * we've discovered, even if FH interrupt came in just after
5101 * reading CSR_INT. */
5102 if (inta_fh
& CSR_FH_INT_RX_MASK
)
5103 inta
|= CSR_INT_BIT_FH_RX
;
5104 if (inta_fh
& CSR_FH_INT_TX_MASK
)
5105 inta
|= CSR_INT_BIT_FH_TX
;
5107 /* Now service all interrupt bits discovered above. */
5108 if (inta
& CSR_INT_BIT_HW_ERR
) {
5109 IWL_ERROR("Microcode HW error detected. Restarting.\n");
5111 /* Tell the device to stop sending interrupts */
5112 iwl4965_disable_interrupts(priv
);
5114 iwl4965_irq_handle_error(priv
);
5116 handled
|= CSR_INT_BIT_HW_ERR
;
5118 spin_unlock_irqrestore(&priv
->lock
, flags
);
5123 #ifdef CONFIG_IWL4965_DEBUG
5124 if (iwl4965_debug_level
& (IWL_DL_ISR
)) {
5125 /* NIC fires this, but we don't use it, redundant with WAKEUP */
5126 if (inta
& CSR_INT_BIT_SCD
)
5127 IWL_DEBUG_ISR("Scheduler finished to transmit "
5128 "the frame/frames.\n");
5130 /* Alive notification via Rx interrupt will do the real work */
5131 if (inta
& CSR_INT_BIT_ALIVE
)
5132 IWL_DEBUG_ISR("Alive interrupt\n");
5135 /* Safely ignore these bits for debug checks below */
5136 inta
&= ~(CSR_INT_BIT_SCD
| CSR_INT_BIT_ALIVE
);
5138 /* HW RF KILL switch toggled */
5139 if (inta
& CSR_INT_BIT_RF_KILL
) {
5141 if (!(iwl4965_read32(priv
, CSR_GP_CNTRL
) &
5142 CSR_GP_CNTRL_REG_FLAG_HW_RF_KILL_SW
))
5145 IWL_DEBUG(IWL_DL_INFO
| IWL_DL_RF_KILL
| IWL_DL_ISR
,
5146 "RF_KILL bit toggled to %s.\n",
5147 hw_rf_kill
? "disable radio":"enable radio");
5149 /* Queue restart only if RF_KILL switch was set to "kill"
5150 * when we loaded driver, and is now set to "enable".
5151 * After we're Alive, RF_KILL gets handled by
5152 * iwl_rx_card_state_notif() */
5153 if (!hw_rf_kill
&& !test_bit(STATUS_ALIVE
, &priv
->status
)) {
5154 clear_bit(STATUS_RF_KILL_HW
, &priv
->status
);
5155 queue_work(priv
->workqueue
, &priv
->restart
);
5158 handled
|= CSR_INT_BIT_RF_KILL
;
5161 /* Chip got too hot and stopped itself */
5162 if (inta
& CSR_INT_BIT_CT_KILL
) {
5163 IWL_ERROR("Microcode CT kill error detected.\n");
5164 handled
|= CSR_INT_BIT_CT_KILL
;
5167 /* Error detected by uCode */
5168 if (inta
& CSR_INT_BIT_SW_ERR
) {
5169 IWL_ERROR("Microcode SW error detected. Restarting 0x%X.\n",
5171 iwl4965_irq_handle_error(priv
);
5172 handled
|= CSR_INT_BIT_SW_ERR
;
5175 /* uCode wakes up after power-down sleep */
5176 if (inta
& CSR_INT_BIT_WAKEUP
) {
5177 IWL_DEBUG_ISR("Wakeup interrupt\n");
5178 iwl4965_rx_queue_update_write_ptr(priv
, &priv
->rxq
);
5179 iwl4965_tx_queue_update_write_ptr(priv
, &priv
->txq
[0]);
5180 iwl4965_tx_queue_update_write_ptr(priv
, &priv
->txq
[1]);
5181 iwl4965_tx_queue_update_write_ptr(priv
, &priv
->txq
[2]);
5182 iwl4965_tx_queue_update_write_ptr(priv
, &priv
->txq
[3]);
5183 iwl4965_tx_queue_update_write_ptr(priv
, &priv
->txq
[4]);
5184 iwl4965_tx_queue_update_write_ptr(priv
, &priv
->txq
[5]);
5186 handled
|= CSR_INT_BIT_WAKEUP
;
5189 /* All uCode command responses, including Tx command responses,
5190 * Rx "responses" (frame-received notification), and other
5191 * notifications from uCode come through here*/
5192 if (inta
& (CSR_INT_BIT_FH_RX
| CSR_INT_BIT_SW_RX
)) {
5193 iwl4965_rx_handle(priv
);
5194 handled
|= (CSR_INT_BIT_FH_RX
| CSR_INT_BIT_SW_RX
);
5197 if (inta
& CSR_INT_BIT_FH_TX
) {
5198 IWL_DEBUG_ISR("Tx interrupt\n");
5199 handled
|= CSR_INT_BIT_FH_TX
;
5202 if (inta
& ~handled
)
5203 IWL_ERROR("Unhandled INTA bits 0x%08x\n", inta
& ~handled
);
5205 if (inta
& ~CSR_INI_SET_MASK
) {
5206 IWL_WARNING("Disabled INTA bits 0x%08x were pending\n",
5207 inta
& ~CSR_INI_SET_MASK
);
5208 IWL_WARNING(" with FH_INT = 0x%08x\n", inta_fh
);
5211 /* Re-enable all interrupts */
5212 iwl4965_enable_interrupts(priv
);
5214 #ifdef CONFIG_IWL4965_DEBUG
5215 if (iwl4965_debug_level
& (IWL_DL_ISR
)) {
5216 inta
= iwl4965_read32(priv
, CSR_INT
);
5217 inta_mask
= iwl4965_read32(priv
, CSR_INT_MASK
);
5218 inta_fh
= iwl4965_read32(priv
, CSR_FH_INT_STATUS
);
5219 IWL_DEBUG_ISR("End inta 0x%08x, enabled 0x%08x, fh 0x%08x, "
5220 "flags 0x%08lx\n", inta
, inta_mask
, inta_fh
, flags
);
5223 spin_unlock_irqrestore(&priv
->lock
, flags
);
5226 static irqreturn_t
iwl4965_isr(int irq
, void *data
)
5228 struct iwl4965_priv
*priv
= data
;
5229 u32 inta
, inta_mask
;
5234 spin_lock(&priv
->lock
);
5236 /* Disable (but don't clear!) interrupts here to avoid
5237 * back-to-back ISRs and sporadic interrupts from our NIC.
5238 * If we have something to service, the tasklet will re-enable ints.
5239 * If we *don't* have something, we'll re-enable before leaving here. */
5240 inta_mask
= iwl4965_read32(priv
, CSR_INT_MASK
); /* just for debug */
5241 iwl4965_write32(priv
, CSR_INT_MASK
, 0x00000000);
5243 /* Discover which interrupts are active/pending */
5244 inta
= iwl4965_read32(priv
, CSR_INT
);
5245 inta_fh
= iwl4965_read32(priv
, CSR_FH_INT_STATUS
);
5247 /* Ignore interrupt if there's nothing in NIC to service.
5248 * This may be due to IRQ shared with another device,
5249 * or due to sporadic interrupts thrown from our NIC. */
5250 if (!inta
&& !inta_fh
) {
5251 IWL_DEBUG_ISR("Ignore interrupt, inta == 0, inta_fh == 0\n");
5255 if ((inta
== 0xFFFFFFFF) || ((inta
& 0xFFFFFFF0) == 0xa5a5a5a0)) {
5256 /* Hardware disappeared. It might have already raised
5258 IWL_WARNING("HARDWARE GONE?? INTA == 0x%080x\n", inta
);
5262 IWL_DEBUG_ISR("ISR inta 0x%08x, enabled 0x%08x, fh 0x%08x\n",
5263 inta
, inta_mask
, inta_fh
);
5265 inta
&= ~CSR_INT_BIT_SCD
;
5267 /* iwl4965_irq_tasklet() will service interrupts and re-enable them */
5268 if (likely(inta
|| inta_fh
))
5269 tasklet_schedule(&priv
->irq_tasklet
);
5272 spin_unlock(&priv
->lock
);
5276 /* re-enable interrupts here since we don't have anything to service. */
5277 iwl4965_enable_interrupts(priv
);
5278 spin_unlock(&priv
->lock
);
5282 /************************** EEPROM BANDS ****************************
5284 * The iwl4965_eeprom_band definitions below provide the mapping from the
5285 * EEPROM contents to the specific channel number supported for each
5288 * For example, iwl4965_priv->eeprom.band_3_channels[4] from the band_3
5289 * definition below maps to physical channel 42 in the 5.2GHz spectrum.
5290 * The specific geography and calibration information for that channel
5291 * is contained in the eeprom map itself.
5293 * During init, we copy the eeprom information and channel map
5294 * information into priv->channel_info_24/52 and priv->channel_map_24/52
5296 * channel_map_24/52 provides the index in the channel_info array for a
5297 * given channel. We have to have two separate maps as there is channel
5298 * overlap with the 2.4GHz and 5.2GHz spectrum as seen in band_1 and
5301 * A value of 0xff stored in the channel_map indicates that the channel
5302 * is not supported by the hardware at all.
5304 * A value of 0xfe in the channel_map indicates that the channel is not
5305 * valid for Tx with the current hardware. This means that
5306 * while the system can tune and receive on a given channel, it may not
5307 * be able to associate or transmit any frames on that
5308 * channel. There is no corresponding channel information for that
5311 *********************************************************************/
5314 static const u8 iwl4965_eeprom_band_1
[14] = {
5315 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14
5319 static const u8 iwl4965_eeprom_band_2
[] = { /* 4915-5080MHz */
5320 183, 184, 185, 187, 188, 189, 192, 196, 7, 8, 11, 12, 16
5323 static const u8 iwl4965_eeprom_band_3
[] = { /* 5170-5320MHz */
5324 34, 36, 38, 40, 42, 44, 46, 48, 52, 56, 60, 64
5327 static const u8 iwl4965_eeprom_band_4
[] = { /* 5500-5700MHz */
5328 100, 104, 108, 112, 116, 120, 124, 128, 132, 136, 140
5331 static const u8 iwl4965_eeprom_band_5
[] = { /* 5725-5825MHz */
5332 145, 149, 153, 157, 161, 165
5335 static u8 iwl4965_eeprom_band_6
[] = { /* 2.4 FAT channel */
5339 static u8 iwl4965_eeprom_band_7
[] = { /* 5.2 FAT channel */
5340 36, 44, 52, 60, 100, 108, 116, 124, 132, 149, 157
5343 static void iwl4965_init_band_reference(const struct iwl4965_priv
*priv
,
5345 int *eeprom_ch_count
,
5346 const struct iwl4965_eeprom_channel
5348 const u8
**eeprom_ch_index
)
5351 case 1: /* 2.4GHz band */
5352 *eeprom_ch_count
= ARRAY_SIZE(iwl4965_eeprom_band_1
);
5353 *eeprom_ch_info
= priv
->eeprom
.band_1_channels
;
5354 *eeprom_ch_index
= iwl4965_eeprom_band_1
;
5356 case 2: /* 4.9GHz band */
5357 *eeprom_ch_count
= ARRAY_SIZE(iwl4965_eeprom_band_2
);
5358 *eeprom_ch_info
= priv
->eeprom
.band_2_channels
;
5359 *eeprom_ch_index
= iwl4965_eeprom_band_2
;
5361 case 3: /* 5.2GHz band */
5362 *eeprom_ch_count
= ARRAY_SIZE(iwl4965_eeprom_band_3
);
5363 *eeprom_ch_info
= priv
->eeprom
.band_3_channels
;
5364 *eeprom_ch_index
= iwl4965_eeprom_band_3
;
5366 case 4: /* 5.5GHz band */
5367 *eeprom_ch_count
= ARRAY_SIZE(iwl4965_eeprom_band_4
);
5368 *eeprom_ch_info
= priv
->eeprom
.band_4_channels
;
5369 *eeprom_ch_index
= iwl4965_eeprom_band_4
;
5371 case 5: /* 5.7GHz band */
5372 *eeprom_ch_count
= ARRAY_SIZE(iwl4965_eeprom_band_5
);
5373 *eeprom_ch_info
= priv
->eeprom
.band_5_channels
;
5374 *eeprom_ch_index
= iwl4965_eeprom_band_5
;
5376 case 6: /* 2.4GHz FAT channels */
5377 *eeprom_ch_count
= ARRAY_SIZE(iwl4965_eeprom_band_6
);
5378 *eeprom_ch_info
= priv
->eeprom
.band_24_channels
;
5379 *eeprom_ch_index
= iwl4965_eeprom_band_6
;
5381 case 7: /* 5 GHz FAT channels */
5382 *eeprom_ch_count
= ARRAY_SIZE(iwl4965_eeprom_band_7
);
5383 *eeprom_ch_info
= priv
->eeprom
.band_52_channels
;
5384 *eeprom_ch_index
= iwl4965_eeprom_band_7
;
5393 * iwl4965_get_channel_info - Find driver's private channel info
5395 * Based on band and channel number.
5397 const struct iwl4965_channel_info
*iwl4965_get_channel_info(const struct iwl4965_priv
*priv
,
5398 enum ieee80211_band band
, u16 channel
)
5403 case IEEE80211_BAND_5GHZ
:
5404 for (i
= 14; i
< priv
->channel_count
; i
++) {
5405 if (priv
->channel_info
[i
].channel
== channel
)
5406 return &priv
->channel_info
[i
];
5409 case IEEE80211_BAND_2GHZ
:
5410 if (channel
>= 1 && channel
<= 14)
5411 return &priv
->channel_info
[channel
- 1];
5420 #define CHECK_AND_PRINT(x) ((eeprom_ch_info[ch].flags & EEPROM_CHANNEL_##x) \
5424 * iwl4965_init_channel_map - Set up driver's info for all possible channels
5426 static int iwl4965_init_channel_map(struct iwl4965_priv
*priv
)
5428 int eeprom_ch_count
= 0;
5429 const u8
*eeprom_ch_index
= NULL
;
5430 const struct iwl4965_eeprom_channel
*eeprom_ch_info
= NULL
;
5432 struct iwl4965_channel_info
*ch_info
;
5434 if (priv
->channel_count
) {
5435 IWL_DEBUG_INFO("Channel map already initialized.\n");
5439 if (priv
->eeprom
.version
< 0x2f) {
5440 IWL_WARNING("Unsupported EEPROM version: 0x%04X\n",
5441 priv
->eeprom
.version
);
5445 IWL_DEBUG_INFO("Initializing regulatory info from EEPROM\n");
5447 priv
->channel_count
=
5448 ARRAY_SIZE(iwl4965_eeprom_band_1
) +
5449 ARRAY_SIZE(iwl4965_eeprom_band_2
) +
5450 ARRAY_SIZE(iwl4965_eeprom_band_3
) +
5451 ARRAY_SIZE(iwl4965_eeprom_band_4
) +
5452 ARRAY_SIZE(iwl4965_eeprom_band_5
);
5454 IWL_DEBUG_INFO("Parsing data for %d channels.\n", priv
->channel_count
);
5456 priv
->channel_info
= kzalloc(sizeof(struct iwl4965_channel_info
) *
5457 priv
->channel_count
, GFP_KERNEL
);
5458 if (!priv
->channel_info
) {
5459 IWL_ERROR("Could not allocate channel_info\n");
5460 priv
->channel_count
= 0;
5464 ch_info
= priv
->channel_info
;
5466 /* Loop through the 5 EEPROM bands adding them in order to the
5467 * channel map we maintain (that contains additional information than
5468 * what just in the EEPROM) */
5469 for (band
= 1; band
<= 5; band
++) {
5471 iwl4965_init_band_reference(priv
, band
, &eeprom_ch_count
,
5472 &eeprom_ch_info
, &eeprom_ch_index
);
5474 /* Loop through each band adding each of the channels */
5475 for (ch
= 0; ch
< eeprom_ch_count
; ch
++) {
5476 ch_info
->channel
= eeprom_ch_index
[ch
];
5477 ch_info
->band
= (band
== 1) ? IEEE80211_BAND_2GHZ
:
5478 IEEE80211_BAND_5GHZ
;
5480 /* permanently store EEPROM's channel regulatory flags
5481 * and max power in channel info database. */
5482 ch_info
->eeprom
= eeprom_ch_info
[ch
];
5484 /* Copy the run-time flags so they are there even on
5485 * invalid channels */
5486 ch_info
->flags
= eeprom_ch_info
[ch
].flags
;
5488 if (!(is_channel_valid(ch_info
))) {
5489 IWL_DEBUG_INFO("Ch. %d Flags %x [%sGHz] - "
5493 is_channel_a_band(ch_info
) ?
5499 /* Initialize regulatory-based run-time data */
5500 ch_info
->max_power_avg
= ch_info
->curr_txpow
=
5501 eeprom_ch_info
[ch
].max_power_avg
;
5502 ch_info
->scan_power
= eeprom_ch_info
[ch
].max_power_avg
;
5503 ch_info
->min_power
= 0;
5505 IWL_DEBUG_INFO("Ch. %d [%sGHz] %s%s%s%s%s%s(0x%02x"
5506 " %ddBm): Ad-Hoc %ssupported\n",
5508 is_channel_a_band(ch_info
) ?
5510 CHECK_AND_PRINT(IBSS
),
5511 CHECK_AND_PRINT(ACTIVE
),
5512 CHECK_AND_PRINT(RADAR
),
5513 CHECK_AND_PRINT(WIDE
),
5514 CHECK_AND_PRINT(NARROW
),
5515 CHECK_AND_PRINT(DFS
),
5516 eeprom_ch_info
[ch
].flags
,
5517 eeprom_ch_info
[ch
].max_power_avg
,
5518 ((eeprom_ch_info
[ch
].
5519 flags
& EEPROM_CHANNEL_IBSS
)
5520 && !(eeprom_ch_info
[ch
].
5521 flags
& EEPROM_CHANNEL_RADAR
))
5524 /* Set the user_txpower_limit to the highest power
5525 * supported by any channel */
5526 if (eeprom_ch_info
[ch
].max_power_avg
>
5527 priv
->user_txpower_limit
)
5528 priv
->user_txpower_limit
=
5529 eeprom_ch_info
[ch
].max_power_avg
;
5535 /* Two additional EEPROM bands for 2.4 and 5 GHz FAT channels */
5536 for (band
= 6; band
<= 7; band
++) {
5537 enum ieee80211_band ieeeband
;
5538 u8 fat_extension_chan
;
5540 iwl4965_init_band_reference(priv
, band
, &eeprom_ch_count
,
5541 &eeprom_ch_info
, &eeprom_ch_index
);
5543 /* EEPROM band 6 is 2.4, band 7 is 5 GHz */
5544 ieeeband
= (band
== 6) ? IEEE80211_BAND_2GHZ
: IEEE80211_BAND_5GHZ
;
5546 /* Loop through each band adding each of the channels */
5547 for (ch
= 0; ch
< eeprom_ch_count
; ch
++) {
5550 ((eeprom_ch_index
[ch
] == 5) ||
5551 (eeprom_ch_index
[ch
] == 6) ||
5552 (eeprom_ch_index
[ch
] == 7)))
5553 fat_extension_chan
= HT_IE_EXT_CHANNEL_MAX
;
5555 fat_extension_chan
= HT_IE_EXT_CHANNEL_ABOVE
;
5557 /* Set up driver's info for lower half */
5558 iwl4965_set_fat_chan_info(priv
, ieeeband
,
5559 eeprom_ch_index
[ch
],
5560 &(eeprom_ch_info
[ch
]),
5561 fat_extension_chan
);
5563 /* Set up driver's info for upper half */
5564 iwl4965_set_fat_chan_info(priv
, ieeeband
,
5565 (eeprom_ch_index
[ch
] + 4),
5566 &(eeprom_ch_info
[ch
]),
5567 HT_IE_EXT_CHANNEL_BELOW
);
5575 * iwl4965_free_channel_map - undo allocations in iwl4965_init_channel_map
5577 static void iwl4965_free_channel_map(struct iwl4965_priv
*priv
)
5579 kfree(priv
->channel_info
);
5580 priv
->channel_count
= 0;
5583 /* For active scan, listen ACTIVE_DWELL_TIME (msec) on each channel after
5584 * sending probe req. This should be set long enough to hear probe responses
5585 * from more than one AP. */
5586 #define IWL_ACTIVE_DWELL_TIME_24 (20) /* all times in msec */
5587 #define IWL_ACTIVE_DWELL_TIME_52 (10)
5589 /* For faster active scanning, scan will move to the next channel if fewer than
5590 * PLCP_QUIET_THRESH packets are heard on this channel within
5591 * ACTIVE_QUIET_TIME after sending probe request. This shortens the dwell
5592 * time if it's a quiet channel (nothing responded to our probe, and there's
5593 * no other traffic).
5594 * Disable "quiet" feature by setting PLCP_QUIET_THRESH to 0. */
5595 #define IWL_PLCP_QUIET_THRESH __constant_cpu_to_le16(1) /* packets */
5596 #define IWL_ACTIVE_QUIET_TIME __constant_cpu_to_le16(5) /* msec */
5598 /* For passive scan, listen PASSIVE_DWELL_TIME (msec) on each channel.
5599 * Must be set longer than active dwell time.
5600 * For the most reliable scan, set > AP beacon interval (typically 100msec). */
5601 #define IWL_PASSIVE_DWELL_TIME_24 (20) /* all times in msec */
5602 #define IWL_PASSIVE_DWELL_TIME_52 (10)
5603 #define IWL_PASSIVE_DWELL_BASE (100)
5604 #define IWL_CHANNEL_TUNE_TIME 5
5606 static inline u16
iwl4965_get_active_dwell_time(struct iwl4965_priv
*priv
,
5607 enum ieee80211_band band
)
5609 if (band
== IEEE80211_BAND_5GHZ
)
5610 return IWL_ACTIVE_DWELL_TIME_52
;
5612 return IWL_ACTIVE_DWELL_TIME_24
;
5615 static u16
iwl4965_get_passive_dwell_time(struct iwl4965_priv
*priv
,
5616 enum ieee80211_band band
)
5618 u16 active
= iwl4965_get_active_dwell_time(priv
, band
);
5619 u16 passive
= (band
!= IEEE80211_BAND_5GHZ
) ?
5620 IWL_PASSIVE_DWELL_BASE
+ IWL_PASSIVE_DWELL_TIME_24
:
5621 IWL_PASSIVE_DWELL_BASE
+ IWL_PASSIVE_DWELL_TIME_52
;
5623 if (iwl4965_is_associated(priv
)) {
5624 /* If we're associated, we clamp the maximum passive
5625 * dwell time to be 98% of the beacon interval (minus
5626 * 2 * channel tune time) */
5627 passive
= priv
->beacon_int
;
5628 if ((passive
> IWL_PASSIVE_DWELL_BASE
) || !passive
)
5629 passive
= IWL_PASSIVE_DWELL_BASE
;
5630 passive
= (passive
* 98) / 100 - IWL_CHANNEL_TUNE_TIME
* 2;
5633 if (passive
<= active
)
5634 passive
= active
+ 1;
5639 static int iwl4965_get_channels_for_scan(struct iwl4965_priv
*priv
,
5640 enum ieee80211_band band
,
5641 u8 is_active
, u8 direct_mask
,
5642 struct iwl4965_scan_channel
*scan_ch
)
5644 const struct ieee80211_channel
*channels
= NULL
;
5645 const struct ieee80211_supported_band
*sband
;
5646 const struct iwl4965_channel_info
*ch_info
;
5647 u16 passive_dwell
= 0;
5648 u16 active_dwell
= 0;
5651 sband
= iwl4965_get_hw_mode(priv
, band
);
5655 channels
= sband
->channels
;
5657 active_dwell
= iwl4965_get_active_dwell_time(priv
, band
);
5658 passive_dwell
= iwl4965_get_passive_dwell_time(priv
, band
);
5660 for (i
= 0, added
= 0; i
< sband
->n_channels
; i
++) {
5661 if (ieee80211_frequency_to_channel(channels
[i
].center_freq
) ==
5662 le16_to_cpu(priv
->active_rxon
.channel
)) {
5663 if (iwl4965_is_associated(priv
)) {
5665 ("Skipping current channel %d\n",
5666 le16_to_cpu(priv
->active_rxon
.channel
));
5669 } else if (priv
->only_active_channel
)
5672 scan_ch
->channel
= ieee80211_frequency_to_channel(channels
[i
].center_freq
);
5674 ch_info
= iwl4965_get_channel_info(priv
, band
,
5676 if (!is_channel_valid(ch_info
)) {
5677 IWL_DEBUG_SCAN("Channel %d is INVALID for this SKU.\n",
5682 if (!is_active
|| is_channel_passive(ch_info
) ||
5683 (channels
[i
].flags
& IEEE80211_CHAN_PASSIVE_SCAN
))
5684 scan_ch
->type
= 0; /* passive */
5686 scan_ch
->type
= 1; /* active */
5688 if (scan_ch
->type
& 1)
5689 scan_ch
->type
|= (direct_mask
<< 1);
5691 if (is_channel_narrow(ch_info
))
5692 scan_ch
->type
|= (1 << 7);
5694 scan_ch
->active_dwell
= cpu_to_le16(active_dwell
);
5695 scan_ch
->passive_dwell
= cpu_to_le16(passive_dwell
);
5697 /* Set txpower levels to defaults */
5698 scan_ch
->tpc
.dsp_atten
= 110;
5699 /* scan_pwr_info->tpc.dsp_atten; */
5701 /*scan_pwr_info->tpc.tx_gain; */
5702 if (band
== IEEE80211_BAND_5GHZ
)
5703 scan_ch
->tpc
.tx_gain
= ((1 << 5) | (3 << 3)) | 3;
5705 scan_ch
->tpc
.tx_gain
= ((1 << 5) | (5 << 3));
5706 /* NOTE: if we were doing 6Mb OFDM for scans we'd use
5708 * scan_ch->tpc.tx_gain = ((1 << 5) | (2 << 3)) | 3;
5712 IWL_DEBUG_SCAN("Scanning %d [%s %d]\n",
5714 (scan_ch
->type
& 1) ? "ACTIVE" : "PASSIVE",
5715 (scan_ch
->type
& 1) ?
5716 active_dwell
: passive_dwell
);
5722 IWL_DEBUG_SCAN("total channels to scan %d \n", added
);
5726 static void iwl4965_init_hw_rates(struct iwl4965_priv
*priv
,
5727 struct ieee80211_rate
*rates
)
5731 for (i
= 0; i
< IWL_RATE_COUNT
; i
++) {
5732 rates
[i
].bitrate
= iwl4965_rates
[i
].ieee
* 5;
5733 rates
[i
].hw_value
= i
; /* Rate scaling will work on indexes */
5734 rates
[i
].hw_value_short
= i
;
5736 if ((i
> IWL_LAST_OFDM_RATE
) || (i
< IWL_FIRST_OFDM_RATE
)) {
5738 * If CCK != 1M then set short preamble rate flag.
5740 rates
[i
].flags
|= (iwl4965_rates
[i
].plcp
== 10) ?
5741 0 : IEEE80211_RATE_SHORT_PREAMBLE
;
5747 * iwl4965_init_geos - Initialize mac80211's geo/channel info based from eeprom
5749 static int iwl4965_init_geos(struct iwl4965_priv
*priv
)
5751 struct iwl4965_channel_info
*ch
;
5752 struct ieee80211_supported_band
*band
;
5753 struct ieee80211_channel
*channels
;
5754 struct ieee80211_channel
*geo_ch
;
5755 struct ieee80211_rate
*rates
;
5758 if (priv
->bands
[IEEE80211_BAND_2GHZ
].n_bitrates
||
5759 priv
->bands
[IEEE80211_BAND_5GHZ
].n_bitrates
) {
5760 IWL_DEBUG_INFO("Geography modes already initialized.\n");
5761 set_bit(STATUS_GEO_CONFIGURED
, &priv
->status
);
5765 channels
= kzalloc(sizeof(struct ieee80211_channel
) *
5766 priv
->channel_count
, GFP_KERNEL
);
5770 rates
= kzalloc((sizeof(struct ieee80211_rate
) * (IWL_MAX_RATES
+ 1)),
5777 /* 5.2GHz channels start after the 2.4GHz channels */
5778 band
= &priv
->bands
[IEEE80211_BAND_5GHZ
];
5779 band
->channels
= &channels
[ARRAY_SIZE(iwl4965_eeprom_band_1
)];
5780 band
->bitrates
= &rates
[4];
5781 band
->n_bitrates
= 8; /* just OFDM */
5783 iwl4965_init_ht_hw_capab(&band
->ht_info
, IEEE80211_BAND_5GHZ
);
5785 band
= &priv
->bands
[IEEE80211_BAND_2GHZ
];
5786 band
->channels
= channels
;
5787 band
->bitrates
= rates
;
5788 band
->n_bitrates
= 12; /* OFDM & CCK */
5790 iwl4965_init_ht_hw_capab(&band
->ht_info
, IEEE80211_BAND_2GHZ
);
5792 priv
->ieee_channels
= channels
;
5793 priv
->ieee_rates
= rates
;
5795 iwl4965_init_hw_rates(priv
, rates
);
5797 for (i
= 0, geo_ch
= channels
; i
< priv
->channel_count
; i
++) {
5798 ch
= &priv
->channel_info
[i
];
5800 if (!is_channel_valid(ch
)) {
5801 IWL_DEBUG_INFO("Channel %d [%sGHz] is restricted -- "
5803 ch
->channel
, is_channel_a_band(ch
) ?
5808 if (is_channel_a_band(ch
)) {
5809 geo_ch
= &priv
->bands
[IEEE80211_BAND_5GHZ
].channels
[priv
->bands
[IEEE80211_BAND_5GHZ
].n_channels
++];
5811 geo_ch
= &priv
->bands
[IEEE80211_BAND_2GHZ
].channels
[priv
->bands
[IEEE80211_BAND_2GHZ
].n_channels
++];
5813 geo_ch
->center_freq
= ieee80211chan2mhz(ch
->channel
);
5814 geo_ch
->max_power
= ch
->max_power_avg
;
5815 geo_ch
->max_antenna_gain
= 0xff;
5816 geo_ch
->hw_value
= ch
->channel
;
5818 if (is_channel_valid(ch
)) {
5819 if (!(ch
->flags
& EEPROM_CHANNEL_IBSS
))
5820 geo_ch
->flags
|= IEEE80211_CHAN_NO_IBSS
;
5822 if (!(ch
->flags
& EEPROM_CHANNEL_ACTIVE
))
5823 geo_ch
->flags
|= IEEE80211_CHAN_PASSIVE_SCAN
;
5825 if (ch
->flags
& EEPROM_CHANNEL_RADAR
)
5826 geo_ch
->flags
|= IEEE80211_CHAN_RADAR
;
5828 if (ch
->max_power_avg
> priv
->max_channel_txpower_limit
)
5829 priv
->max_channel_txpower_limit
=
5832 geo_ch
->flags
|= IEEE80211_CHAN_DISABLED
;
5835 if ((priv
->bands
[IEEE80211_BAND_5GHZ
].n_channels
== 0) && priv
->is_abg
) {
5836 printk(KERN_INFO DRV_NAME
5837 ": Incorrectly detected BG card as ABG. Please send "
5838 "your PCI ID 0x%04X:0x%04X to maintainer.\n",
5839 priv
->pci_dev
->device
, priv
->pci_dev
->subsystem_device
);
5843 printk(KERN_INFO DRV_NAME
5844 ": Tunable channels: %d 802.11bg, %d 802.11a channels\n",
5845 priv
->bands
[IEEE80211_BAND_2GHZ
].n_channels
,
5846 priv
->bands
[IEEE80211_BAND_5GHZ
].n_channels
);
5848 priv
->hw
->wiphy
->bands
[IEEE80211_BAND_2GHZ
] = &priv
->bands
[IEEE80211_BAND_2GHZ
];
5849 priv
->hw
->wiphy
->bands
[IEEE80211_BAND_5GHZ
] = &priv
->bands
[IEEE80211_BAND_5GHZ
];
5851 set_bit(STATUS_GEO_CONFIGURED
, &priv
->status
);
5857 * iwl4965_free_geos - undo allocations in iwl4965_init_geos
5859 static void iwl4965_free_geos(struct iwl4965_priv
*priv
)
5861 kfree(priv
->ieee_channels
);
5862 kfree(priv
->ieee_rates
);
5863 clear_bit(STATUS_GEO_CONFIGURED
, &priv
->status
);
5866 /******************************************************************************
5868 * uCode download functions
5870 ******************************************************************************/
5872 static void iwl4965_dealloc_ucode_pci(struct iwl4965_priv
*priv
)
5874 iwl_free_fw_desc(priv
->pci_dev
, &priv
->ucode_code
);
5875 iwl_free_fw_desc(priv
->pci_dev
, &priv
->ucode_data
);
5876 iwl_free_fw_desc(priv
->pci_dev
, &priv
->ucode_data_backup
);
5877 iwl_free_fw_desc(priv
->pci_dev
, &priv
->ucode_init
);
5878 iwl_free_fw_desc(priv
->pci_dev
, &priv
->ucode_init_data
);
5879 iwl_free_fw_desc(priv
->pci_dev
, &priv
->ucode_boot
);
5883 * iwl4965_verify_inst_full - verify runtime uCode image in card vs. host,
5884 * looking at all data.
5886 static int iwl4965_verify_inst_full(struct iwl4965_priv
*priv
, __le32
*image
,
5894 IWL_DEBUG_INFO("ucode inst image size is %u\n", len
);
5896 rc
= iwl4965_grab_nic_access(priv
);
5900 iwl4965_write_direct32(priv
, HBUS_TARG_MEM_RADDR
, RTC_INST_LOWER_BOUND
);
5903 for (; len
> 0; len
-= sizeof(u32
), image
++) {
5904 /* read data comes through single port, auto-incr addr */
5905 /* NOTE: Use the debugless read so we don't flood kernel log
5906 * if IWL_DL_IO is set */
5907 val
= _iwl4965_read_direct32(priv
, HBUS_TARG_MEM_RDAT
);
5908 if (val
!= le32_to_cpu(*image
)) {
5909 IWL_ERROR("uCode INST section is invalid at "
5910 "offset 0x%x, is 0x%x, s/b 0x%x\n",
5911 save_len
- len
, val
, le32_to_cpu(*image
));
5919 iwl4965_release_nic_access(priv
);
5923 ("ucode image in INSTRUCTION memory is good\n");
5930 * iwl4965_verify_inst_sparse - verify runtime uCode image in card vs. host,
5931 * using sample data 100 bytes apart. If these sample points are good,
5932 * it's a pretty good bet that everything between them is good, too.
5934 static int iwl4965_verify_inst_sparse(struct iwl4965_priv
*priv
, __le32
*image
, u32 len
)
5941 IWL_DEBUG_INFO("ucode inst image size is %u\n", len
);
5943 rc
= iwl4965_grab_nic_access(priv
);
5947 for (i
= 0; i
< len
; i
+= 100, image
+= 100/sizeof(u32
)) {
5948 /* read data comes through single port, auto-incr addr */
5949 /* NOTE: Use the debugless read so we don't flood kernel log
5950 * if IWL_DL_IO is set */
5951 iwl4965_write_direct32(priv
, HBUS_TARG_MEM_RADDR
,
5952 i
+ RTC_INST_LOWER_BOUND
);
5953 val
= _iwl4965_read_direct32(priv
, HBUS_TARG_MEM_RDAT
);
5954 if (val
!= le32_to_cpu(*image
)) {
5955 #if 0 /* Enable this if you want to see details */
5956 IWL_ERROR("uCode INST section is invalid at "
5957 "offset 0x%x, is 0x%x, s/b 0x%x\n",
5967 iwl4965_release_nic_access(priv
);
5974 * iwl4965_verify_ucode - determine which instruction image is in SRAM,
5975 * and verify its contents
5977 static int iwl4965_verify_ucode(struct iwl4965_priv
*priv
)
5984 image
= (__le32
*)priv
->ucode_boot
.v_addr
;
5985 len
= priv
->ucode_boot
.len
;
5986 rc
= iwl4965_verify_inst_sparse(priv
, image
, len
);
5988 IWL_DEBUG_INFO("Bootstrap uCode is good in inst SRAM\n");
5992 /* Try initialize */
5993 image
= (__le32
*)priv
->ucode_init
.v_addr
;
5994 len
= priv
->ucode_init
.len
;
5995 rc
= iwl4965_verify_inst_sparse(priv
, image
, len
);
5997 IWL_DEBUG_INFO("Initialize uCode is good in inst SRAM\n");
6001 /* Try runtime/protocol */
6002 image
= (__le32
*)priv
->ucode_code
.v_addr
;
6003 len
= priv
->ucode_code
.len
;
6004 rc
= iwl4965_verify_inst_sparse(priv
, image
, len
);
6006 IWL_DEBUG_INFO("Runtime uCode is good in inst SRAM\n");
6010 IWL_ERROR("NO VALID UCODE IMAGE IN INSTRUCTION SRAM!!\n");
6012 /* Since nothing seems to match, show first several data entries in
6013 * instruction SRAM, so maybe visual inspection will give a clue.
6014 * Selection of bootstrap image (vs. other images) is arbitrary. */
6015 image
= (__le32
*)priv
->ucode_boot
.v_addr
;
6016 len
= priv
->ucode_boot
.len
;
6017 rc
= iwl4965_verify_inst_full(priv
, image
, len
);
6023 /* check contents of special bootstrap uCode SRAM */
6024 static int iwl4965_verify_bsm(struct iwl4965_priv
*priv
)
6026 __le32
*image
= priv
->ucode_boot
.v_addr
;
6027 u32 len
= priv
->ucode_boot
.len
;
6031 IWL_DEBUG_INFO("Begin verify bsm\n");
6033 /* verify BSM SRAM contents */
6034 val
= iwl4965_read_prph(priv
, BSM_WR_DWCOUNT_REG
);
6035 for (reg
= BSM_SRAM_LOWER_BOUND
;
6036 reg
< BSM_SRAM_LOWER_BOUND
+ len
;
6037 reg
+= sizeof(u32
), image
++) {
6038 val
= iwl4965_read_prph(priv
, reg
);
6039 if (val
!= le32_to_cpu(*image
)) {
6040 IWL_ERROR("BSM uCode verification failed at "
6041 "addr 0x%08X+%u (of %u), is 0x%x, s/b 0x%x\n",
6042 BSM_SRAM_LOWER_BOUND
,
6043 reg
- BSM_SRAM_LOWER_BOUND
, len
,
6044 val
, le32_to_cpu(*image
));
6049 IWL_DEBUG_INFO("BSM bootstrap uCode image OK\n");
6055 * iwl4965_load_bsm - Load bootstrap instructions
6059 * The Bootstrap State Machine (BSM) stores a short bootstrap uCode program
6060 * in special SRAM that does not power down during RFKILL. When powering back
6061 * up after power-saving sleeps (or during initial uCode load), the BSM loads
6062 * the bootstrap program into the on-board processor, and starts it.
6064 * The bootstrap program loads (via DMA) instructions and data for a new
6065 * program from host DRAM locations indicated by the host driver in the
6066 * BSM_DRAM_* registers. Once the new program is loaded, it starts
6069 * When initializing the NIC, the host driver points the BSM to the
6070 * "initialize" uCode image. This uCode sets up some internal data, then
6071 * notifies host via "initialize alive" that it is complete.
6073 * The host then replaces the BSM_DRAM_* pointer values to point to the
6074 * normal runtime uCode instructions and a backup uCode data cache buffer
6075 * (filled initially with starting data values for the on-board processor),
6076 * then triggers the "initialize" uCode to load and launch the runtime uCode,
6077 * which begins normal operation.
6079 * When doing a power-save shutdown, runtime uCode saves data SRAM into
6080 * the backup data cache in DRAM before SRAM is powered down.
6082 * When powering back up, the BSM loads the bootstrap program. This reloads
6083 * the runtime uCode instructions and the backup data cache into SRAM,
6084 * and re-launches the runtime uCode from where it left off.
6086 static int iwl4965_load_bsm(struct iwl4965_priv
*priv
)
6088 __le32
*image
= priv
->ucode_boot
.v_addr
;
6089 u32 len
= priv
->ucode_boot
.len
;
6099 IWL_DEBUG_INFO("Begin load bsm\n");
6101 /* make sure bootstrap program is no larger than BSM's SRAM size */
6102 if (len
> IWL_MAX_BSM_SIZE
)
6105 /* Tell bootstrap uCode where to find the "Initialize" uCode
6106 * in host DRAM ... host DRAM physical address bits 35:4 for 4965.
6107 * NOTE: iwl4965_initialize_alive_start() will replace these values,
6108 * after the "initialize" uCode has run, to point to
6109 * runtime/protocol instructions and backup data cache. */
6110 pinst
= priv
->ucode_init
.p_addr
>> 4;
6111 pdata
= priv
->ucode_init_data
.p_addr
>> 4;
6112 inst_len
= priv
->ucode_init
.len
;
6113 data_len
= priv
->ucode_init_data
.len
;
6115 rc
= iwl4965_grab_nic_access(priv
);
6119 iwl4965_write_prph(priv
, BSM_DRAM_INST_PTR_REG
, pinst
);
6120 iwl4965_write_prph(priv
, BSM_DRAM_DATA_PTR_REG
, pdata
);
6121 iwl4965_write_prph(priv
, BSM_DRAM_INST_BYTECOUNT_REG
, inst_len
);
6122 iwl4965_write_prph(priv
, BSM_DRAM_DATA_BYTECOUNT_REG
, data_len
);
6124 /* Fill BSM memory with bootstrap instructions */
6125 for (reg_offset
= BSM_SRAM_LOWER_BOUND
;
6126 reg_offset
< BSM_SRAM_LOWER_BOUND
+ len
;
6127 reg_offset
+= sizeof(u32
), image
++)
6128 _iwl4965_write_prph(priv
, reg_offset
,
6129 le32_to_cpu(*image
));
6131 rc
= iwl4965_verify_bsm(priv
);
6133 iwl4965_release_nic_access(priv
);
6137 /* Tell BSM to copy from BSM SRAM into instruction SRAM, when asked */
6138 iwl4965_write_prph(priv
, BSM_WR_MEM_SRC_REG
, 0x0);
6139 iwl4965_write_prph(priv
, BSM_WR_MEM_DST_REG
,
6140 RTC_INST_LOWER_BOUND
);
6141 iwl4965_write_prph(priv
, BSM_WR_DWCOUNT_REG
, len
/ sizeof(u32
));
6143 /* Load bootstrap code into instruction SRAM now,
6144 * to prepare to load "initialize" uCode */
6145 iwl4965_write_prph(priv
, BSM_WR_CTRL_REG
,
6146 BSM_WR_CTRL_REG_BIT_START
);
6148 /* Wait for load of bootstrap uCode to finish */
6149 for (i
= 0; i
< 100; i
++) {
6150 done
= iwl4965_read_prph(priv
, BSM_WR_CTRL_REG
);
6151 if (!(done
& BSM_WR_CTRL_REG_BIT_START
))
6156 IWL_DEBUG_INFO("BSM write complete, poll %d iterations\n", i
);
6158 IWL_ERROR("BSM write did not complete!\n");
6162 /* Enable future boot loads whenever power management unit triggers it
6163 * (e.g. when powering back up after power-save shutdown) */
6164 iwl4965_write_prph(priv
, BSM_WR_CTRL_REG
,
6165 BSM_WR_CTRL_REG_BIT_START_EN
);
6167 iwl4965_release_nic_access(priv
);
6172 static void iwl4965_nic_start(struct iwl4965_priv
*priv
)
6174 /* Remove all resets to allow NIC to operate */
6175 iwl4965_write32(priv
, CSR_RESET
, 0);
6180 * iwl4965_read_ucode - Read uCode images from disk file.
6182 * Copy into buffers for card to fetch via bus-mastering
6184 static int iwl4965_read_ucode(struct iwl4965_priv
*priv
)
6186 struct iwl4965_ucode
*ucode
;
6188 const struct firmware
*ucode_raw
;
6189 const char *name
= "iwlwifi-4965" IWL4965_UCODE_API
".ucode";
6192 u32 ver
, inst_size
, data_size
, init_size
, init_data_size
, boot_size
;
6194 /* Ask kernel firmware_class module to get the boot firmware off disk.
6195 * request_firmware() is synchronous, file is in memory on return. */
6196 ret
= request_firmware(&ucode_raw
, name
, &priv
->pci_dev
->dev
);
6198 IWL_ERROR("%s firmware file req failed: Reason %d\n",
6203 IWL_DEBUG_INFO("Got firmware '%s' file (%zd bytes) from disk\n",
6204 name
, ucode_raw
->size
);
6206 /* Make sure that we got at least our header! */
6207 if (ucode_raw
->size
< sizeof(*ucode
)) {
6208 IWL_ERROR("File size way too small!\n");
6213 /* Data from ucode file: header followed by uCode images */
6214 ucode
= (void *)ucode_raw
->data
;
6216 ver
= le32_to_cpu(ucode
->ver
);
6217 inst_size
= le32_to_cpu(ucode
->inst_size
);
6218 data_size
= le32_to_cpu(ucode
->data_size
);
6219 init_size
= le32_to_cpu(ucode
->init_size
);
6220 init_data_size
= le32_to_cpu(ucode
->init_data_size
);
6221 boot_size
= le32_to_cpu(ucode
->boot_size
);
6223 IWL_DEBUG_INFO("f/w package hdr ucode version = 0x%x\n", ver
);
6224 IWL_DEBUG_INFO("f/w package hdr runtime inst size = %u\n",
6226 IWL_DEBUG_INFO("f/w package hdr runtime data size = %u\n",
6228 IWL_DEBUG_INFO("f/w package hdr init inst size = %u\n",
6230 IWL_DEBUG_INFO("f/w package hdr init data size = %u\n",
6232 IWL_DEBUG_INFO("f/w package hdr boot inst size = %u\n",
6235 /* Verify size of file vs. image size info in file's header */
6236 if (ucode_raw
->size
< sizeof(*ucode
) +
6237 inst_size
+ data_size
+ init_size
+
6238 init_data_size
+ boot_size
) {
6240 IWL_DEBUG_INFO("uCode file size %d too small\n",
6241 (int)ucode_raw
->size
);
6246 /* Verify that uCode images will fit in card's SRAM */
6247 if (inst_size
> IWL_MAX_INST_SIZE
) {
6248 IWL_DEBUG_INFO("uCode instr len %d too large to fit in\n",
6254 if (data_size
> IWL_MAX_DATA_SIZE
) {
6255 IWL_DEBUG_INFO("uCode data len %d too large to fit in\n",
6260 if (init_size
> IWL_MAX_INST_SIZE
) {
6262 ("uCode init instr len %d too large to fit in\n",
6267 if (init_data_size
> IWL_MAX_DATA_SIZE
) {
6269 ("uCode init data len %d too large to fit in\n",
6274 if (boot_size
> IWL_MAX_BSM_SIZE
) {
6276 ("uCode boot instr len %d too large to fit in\n",
6282 /* Allocate ucode buffers for card's bus-master loading ... */
6284 /* Runtime instructions and 2 copies of data:
6285 * 1) unmodified from disk
6286 * 2) backup cache for save/restore during power-downs */
6287 priv
->ucode_code
.len
= inst_size
;
6288 iwl_alloc_fw_desc(priv
->pci_dev
, &priv
->ucode_code
);
6290 priv
->ucode_data
.len
= data_size
;
6291 iwl_alloc_fw_desc(priv
->pci_dev
, &priv
->ucode_data
);
6293 priv
->ucode_data_backup
.len
= data_size
;
6294 iwl_alloc_fw_desc(priv
->pci_dev
, &priv
->ucode_data_backup
);
6296 /* Initialization instructions and data */
6297 if (init_size
&& init_data_size
) {
6298 priv
->ucode_init
.len
= init_size
;
6299 iwl_alloc_fw_desc(priv
->pci_dev
, &priv
->ucode_init
);
6301 priv
->ucode_init_data
.len
= init_data_size
;
6302 iwl_alloc_fw_desc(priv
->pci_dev
, &priv
->ucode_init_data
);
6304 if (!priv
->ucode_init
.v_addr
|| !priv
->ucode_init_data
.v_addr
)
6308 /* Bootstrap (instructions only, no data) */
6310 priv
->ucode_boot
.len
= boot_size
;
6311 iwl_alloc_fw_desc(priv
->pci_dev
, &priv
->ucode_boot
);
6313 if (!priv
->ucode_boot
.v_addr
)
6317 /* Copy images into buffers for card's bus-master reads ... */
6319 /* Runtime instructions (first block of data in file) */
6320 src
= &ucode
->data
[0];
6321 len
= priv
->ucode_code
.len
;
6322 IWL_DEBUG_INFO("Copying (but not loading) uCode instr len %Zd\n", len
);
6323 memcpy(priv
->ucode_code
.v_addr
, src
, len
);
6324 IWL_DEBUG_INFO("uCode instr buf vaddr = 0x%p, paddr = 0x%08x\n",
6325 priv
->ucode_code
.v_addr
, (u32
)priv
->ucode_code
.p_addr
);
6327 /* Runtime data (2nd block)
6328 * NOTE: Copy into backup buffer will be done in iwl4965_up() */
6329 src
= &ucode
->data
[inst_size
];
6330 len
= priv
->ucode_data
.len
;
6331 IWL_DEBUG_INFO("Copying (but not loading) uCode data len %Zd\n", len
);
6332 memcpy(priv
->ucode_data
.v_addr
, src
, len
);
6333 memcpy(priv
->ucode_data_backup
.v_addr
, src
, len
);
6335 /* Initialization instructions (3rd block) */
6337 src
= &ucode
->data
[inst_size
+ data_size
];
6338 len
= priv
->ucode_init
.len
;
6339 IWL_DEBUG_INFO("Copying (but not loading) init instr len %Zd\n",
6341 memcpy(priv
->ucode_init
.v_addr
, src
, len
);
6344 /* Initialization data (4th block) */
6345 if (init_data_size
) {
6346 src
= &ucode
->data
[inst_size
+ data_size
+ init_size
];
6347 len
= priv
->ucode_init_data
.len
;
6348 IWL_DEBUG_INFO("Copying (but not loading) init data len %Zd\n",
6350 memcpy(priv
->ucode_init_data
.v_addr
, src
, len
);
6353 /* Bootstrap instructions (5th block) */
6354 src
= &ucode
->data
[inst_size
+ data_size
+ init_size
+ init_data_size
];
6355 len
= priv
->ucode_boot
.len
;
6356 IWL_DEBUG_INFO("Copying (but not loading) boot instr len %Zd\n", len
);
6357 memcpy(priv
->ucode_boot
.v_addr
, src
, len
);
6359 /* We have our copies now, allow OS release its copies */
6360 release_firmware(ucode_raw
);
6364 IWL_ERROR("failed to allocate pci memory\n");
6366 iwl4965_dealloc_ucode_pci(priv
);
6369 release_firmware(ucode_raw
);
6377 * iwl4965_set_ucode_ptrs - Set uCode address location
6379 * Tell initialization uCode where to find runtime uCode.
6381 * BSM registers initially contain pointers to initialization uCode.
6382 * We need to replace them to load runtime uCode inst and data,
6383 * and to save runtime data when powering down.
6385 static int iwl4965_set_ucode_ptrs(struct iwl4965_priv
*priv
)
6390 unsigned long flags
;
6392 /* bits 35:4 for 4965 */
6393 pinst
= priv
->ucode_code
.p_addr
>> 4;
6394 pdata
= priv
->ucode_data_backup
.p_addr
>> 4;
6396 spin_lock_irqsave(&priv
->lock
, flags
);
6397 rc
= iwl4965_grab_nic_access(priv
);
6399 spin_unlock_irqrestore(&priv
->lock
, flags
);
6403 /* Tell bootstrap uCode where to find image to load */
6404 iwl4965_write_prph(priv
, BSM_DRAM_INST_PTR_REG
, pinst
);
6405 iwl4965_write_prph(priv
, BSM_DRAM_DATA_PTR_REG
, pdata
);
6406 iwl4965_write_prph(priv
, BSM_DRAM_DATA_BYTECOUNT_REG
,
6407 priv
->ucode_data
.len
);
6409 /* Inst bytecount must be last to set up, bit 31 signals uCode
6410 * that all new ptr/size info is in place */
6411 iwl4965_write_prph(priv
, BSM_DRAM_INST_BYTECOUNT_REG
,
6412 priv
->ucode_code
.len
| BSM_DRAM_INST_LOAD
);
6414 iwl4965_release_nic_access(priv
);
6416 spin_unlock_irqrestore(&priv
->lock
, flags
);
6418 IWL_DEBUG_INFO("Runtime uCode pointers are set.\n");
6424 * iwl4965_init_alive_start - Called after REPLY_ALIVE notification received
6426 * Called after REPLY_ALIVE notification received from "initialize" uCode.
6428 * The 4965 "initialize" ALIVE reply contains calibration data for:
6429 * Voltage, temperature, and MIMO tx gain correction, now stored in priv
6430 * (3945 does not contain this data).
6432 * Tell "initialize" uCode to go ahead and load the runtime uCode.
6434 static void iwl4965_init_alive_start(struct iwl4965_priv
*priv
)
6436 /* Check alive response for "valid" sign from uCode */
6437 if (priv
->card_alive_init
.is_valid
!= UCODE_VALID_OK
) {
6438 /* We had an error bringing up the hardware, so take it
6439 * all the way back down so we can try again */
6440 IWL_DEBUG_INFO("Initialize Alive failed.\n");
6444 /* Bootstrap uCode has loaded initialize uCode ... verify inst image.
6445 * This is a paranoid check, because we would not have gotten the
6446 * "initialize" alive if code weren't properly loaded. */
6447 if (iwl4965_verify_ucode(priv
)) {
6448 /* Runtime instruction load was bad;
6449 * take it all the way back down so we can try again */
6450 IWL_DEBUG_INFO("Bad \"initialize\" uCode load.\n");
6454 /* Calculate temperature */
6455 priv
->temperature
= iwl4965_get_temperature(priv
);
6457 /* Send pointers to protocol/runtime uCode image ... init code will
6458 * load and launch runtime uCode, which will send us another "Alive"
6460 IWL_DEBUG_INFO("Initialization Alive received.\n");
6461 if (iwl4965_set_ucode_ptrs(priv
)) {
6462 /* Runtime instruction load won't happen;
6463 * take it all the way back down so we can try again */
6464 IWL_DEBUG_INFO("Couldn't set up uCode pointers.\n");
6470 queue_work(priv
->workqueue
, &priv
->restart
);
6475 * iwl4965_alive_start - called after REPLY_ALIVE notification received
6476 * from protocol/runtime uCode (initialization uCode's
6477 * Alive gets handled by iwl4965_init_alive_start()).
6479 static void iwl4965_alive_start(struct iwl4965_priv
*priv
)
6483 IWL_DEBUG_INFO("Runtime Alive received.\n");
6485 if (priv
->card_alive
.is_valid
!= UCODE_VALID_OK
) {
6486 /* We had an error bringing up the hardware, so take it
6487 * all the way back down so we can try again */
6488 IWL_DEBUG_INFO("Alive failed.\n");
6492 /* Initialize uCode has loaded Runtime uCode ... verify inst image.
6493 * This is a paranoid check, because we would not have gotten the
6494 * "runtime" alive if code weren't properly loaded. */
6495 if (iwl4965_verify_ucode(priv
)) {
6496 /* Runtime instruction load was bad;
6497 * take it all the way back down so we can try again */
6498 IWL_DEBUG_INFO("Bad runtime uCode load.\n");
6502 iwl4965_clear_stations_table(priv
);
6504 rc
= iwl4965_alive_notify(priv
);
6506 IWL_WARNING("Could not complete ALIVE transition [ntf]: %d\n",
6511 /* After the ALIVE response, we can send host commands to 4965 uCode */
6512 set_bit(STATUS_ALIVE
, &priv
->status
);
6514 /* Clear out the uCode error bit if it is set */
6515 clear_bit(STATUS_FW_ERROR
, &priv
->status
);
6517 if (iwl4965_is_rfkill(priv
))
6520 ieee80211_start_queues(priv
->hw
);
6522 priv
->active_rate
= priv
->rates_mask
;
6523 priv
->active_rate_basic
= priv
->rates_mask
& IWL_BASIC_RATES_MASK
;
6525 iwl4965_send_power_mode(priv
, IWL_POWER_LEVEL(priv
->power_mode
));
6527 if (iwl4965_is_associated(priv
)) {
6528 struct iwl4965_rxon_cmd
*active_rxon
=
6529 (struct iwl4965_rxon_cmd
*)(&priv
->active_rxon
);
6531 memcpy(&priv
->staging_rxon
, &priv
->active_rxon
,
6532 sizeof(priv
->staging_rxon
));
6533 active_rxon
->filter_flags
&= ~RXON_FILTER_ASSOC_MSK
;
6535 /* Initialize our rx_config data */
6536 iwl4965_connection_init_rx_config(priv
);
6537 memcpy(priv
->staging_rxon
.node_addr
, priv
->mac_addr
, ETH_ALEN
);
6540 /* Configure Bluetooth device coexistence support */
6541 iwl4965_send_bt_config(priv
);
6543 /* Configure the adapter for unassociated operation */
6544 iwl4965_commit_rxon(priv
);
6546 /* At this point, the NIC is initialized and operational */
6547 priv
->notif_missed_beacons
= 0;
6548 set_bit(STATUS_READY
, &priv
->status
);
6550 iwl4965_rf_kill_ct_config(priv
);
6552 IWL_DEBUG_INFO("ALIVE processing complete.\n");
6553 wake_up_interruptible(&priv
->wait_command_queue
);
6555 if (priv
->error_recovering
)
6556 iwl4965_error_recovery(priv
);
6561 queue_work(priv
->workqueue
, &priv
->restart
);
6564 static void iwl4965_cancel_deferred_work(struct iwl4965_priv
*priv
);
6566 static void __iwl4965_down(struct iwl4965_priv
*priv
)
6568 unsigned long flags
;
6569 int exit_pending
= test_bit(STATUS_EXIT_PENDING
, &priv
->status
);
6570 struct ieee80211_conf
*conf
= NULL
;
6572 IWL_DEBUG_INFO(DRV_NAME
" is going down\n");
6574 conf
= ieee80211_get_hw_conf(priv
->hw
);
6577 set_bit(STATUS_EXIT_PENDING
, &priv
->status
);
6579 iwl4965_clear_stations_table(priv
);
6581 /* Unblock any waiting calls */
6582 wake_up_interruptible_all(&priv
->wait_command_queue
);
6584 /* Wipe out the EXIT_PENDING status bit if we are not actually
6585 * exiting the module */
6587 clear_bit(STATUS_EXIT_PENDING
, &priv
->status
);
6589 /* stop and reset the on-board processor */
6590 iwl4965_write32(priv
, CSR_RESET
, CSR_RESET_REG_FLAG_NEVO_RESET
);
6592 /* tell the device to stop sending interrupts */
6593 iwl4965_disable_interrupts(priv
);
6595 if (priv
->mac80211_registered
)
6596 ieee80211_stop_queues(priv
->hw
);
6598 /* If we have not previously called iwl4965_init() then
6599 * clear all bits but the RF Kill and SUSPEND bits and return */
6600 if (!iwl4965_is_init(priv
)) {
6601 priv
->status
= test_bit(STATUS_RF_KILL_HW
, &priv
->status
) <<
6603 test_bit(STATUS_RF_KILL_SW
, &priv
->status
) <<
6605 test_bit(STATUS_GEO_CONFIGURED
, &priv
->status
) <<
6606 STATUS_GEO_CONFIGURED
|
6607 test_bit(STATUS_IN_SUSPEND
, &priv
->status
) <<
6612 /* ...otherwise clear out all the status bits but the RF Kill and
6613 * SUSPEND bits and continue taking the NIC down. */
6614 priv
->status
&= test_bit(STATUS_RF_KILL_HW
, &priv
->status
) <<
6616 test_bit(STATUS_RF_KILL_SW
, &priv
->status
) <<
6618 test_bit(STATUS_GEO_CONFIGURED
, &priv
->status
) <<
6619 STATUS_GEO_CONFIGURED
|
6620 test_bit(STATUS_IN_SUSPEND
, &priv
->status
) <<
6622 test_bit(STATUS_FW_ERROR
, &priv
->status
) <<
6625 spin_lock_irqsave(&priv
->lock
, flags
);
6626 iwl4965_clear_bit(priv
, CSR_GP_CNTRL
,
6627 CSR_GP_CNTRL_REG_FLAG_MAC_ACCESS_REQ
);
6628 spin_unlock_irqrestore(&priv
->lock
, flags
);
6630 iwl4965_hw_txq_ctx_stop(priv
);
6631 iwl4965_hw_rxq_stop(priv
);
6633 spin_lock_irqsave(&priv
->lock
, flags
);
6634 if (!iwl4965_grab_nic_access(priv
)) {
6635 iwl4965_write_prph(priv
, APMG_CLK_DIS_REG
,
6636 APMG_CLK_VAL_DMA_CLK_RQT
);
6637 iwl4965_release_nic_access(priv
);
6639 spin_unlock_irqrestore(&priv
->lock
, flags
);
6643 iwl4965_hw_nic_stop_master(priv
);
6644 iwl4965_set_bit(priv
, CSR_RESET
, CSR_RESET_REG_FLAG_SW_RESET
);
6645 iwl4965_hw_nic_reset(priv
);
6648 memset(&priv
->card_alive
, 0, sizeof(struct iwl4965_alive_resp
));
6650 if (priv
->ibss_beacon
)
6651 dev_kfree_skb(priv
->ibss_beacon
);
6652 priv
->ibss_beacon
= NULL
;
6654 /* clear out any free frames */
6655 iwl4965_clear_free_frames(priv
);
6658 static void iwl4965_down(struct iwl4965_priv
*priv
)
6660 mutex_lock(&priv
->mutex
);
6661 __iwl4965_down(priv
);
6662 mutex_unlock(&priv
->mutex
);
6664 iwl4965_cancel_deferred_work(priv
);
6667 #define MAX_HW_RESTARTS 5
6669 static int __iwl4965_up(struct iwl4965_priv
*priv
)
6673 if (test_bit(STATUS_EXIT_PENDING
, &priv
->status
)) {
6674 IWL_WARNING("Exit pending; will not bring the NIC up\n");
6678 if (test_bit(STATUS_RF_KILL_SW
, &priv
->status
)) {
6679 IWL_WARNING("Radio disabled by SW RF kill (module "
6684 if (!priv
->ucode_data_backup
.v_addr
|| !priv
->ucode_data
.v_addr
) {
6685 IWL_ERROR("ucode not available for device bringup\n");
6689 /* If platform's RF_KILL switch is NOT set to KILL */
6690 if (iwl4965_read32(priv
, CSR_GP_CNTRL
) &
6691 CSR_GP_CNTRL_REG_FLAG_HW_RF_KILL_SW
)
6692 clear_bit(STATUS_RF_KILL_HW
, &priv
->status
);
6694 set_bit(STATUS_RF_KILL_HW
, &priv
->status
);
6695 if (!test_bit(STATUS_IN_SUSPEND
, &priv
->status
)) {
6696 IWL_WARNING("Radio disabled by HW RF Kill switch\n");
6701 iwl4965_write32(priv
, CSR_INT
, 0xFFFFFFFF);
6703 rc
= iwl4965_hw_nic_init(priv
);
6705 IWL_ERROR("Unable to int nic\n");
6709 /* make sure rfkill handshake bits are cleared */
6710 iwl4965_write32(priv
, CSR_UCODE_DRV_GP1_CLR
, CSR_UCODE_SW_BIT_RFKILL
);
6711 iwl4965_write32(priv
, CSR_UCODE_DRV_GP1_CLR
,
6712 CSR_UCODE_DRV_GP1_BIT_CMD_BLOCKED
);
6714 /* clear (again), then enable host interrupts */
6715 iwl4965_write32(priv
, CSR_INT
, 0xFFFFFFFF);
6716 iwl4965_enable_interrupts(priv
);
6718 /* really make sure rfkill handshake bits are cleared */
6719 iwl4965_write32(priv
, CSR_UCODE_DRV_GP1_CLR
, CSR_UCODE_SW_BIT_RFKILL
);
6720 iwl4965_write32(priv
, CSR_UCODE_DRV_GP1_CLR
, CSR_UCODE_SW_BIT_RFKILL
);
6722 /* Copy original ucode data image from disk into backup cache.
6723 * This will be used to initialize the on-board processor's
6724 * data SRAM for a clean start when the runtime program first loads. */
6725 memcpy(priv
->ucode_data_backup
.v_addr
, priv
->ucode_data
.v_addr
,
6726 priv
->ucode_data
.len
);
6728 /* We return success when we resume from suspend and rf_kill is on. */
6729 if (test_bit(STATUS_RF_KILL_HW
, &priv
->status
))
6732 for (i
= 0; i
< MAX_HW_RESTARTS
; i
++) {
6734 iwl4965_clear_stations_table(priv
);
6736 /* load bootstrap state machine,
6737 * load bootstrap program into processor's memory,
6738 * prepare to load the "initialize" uCode */
6739 rc
= iwl4965_load_bsm(priv
);
6742 IWL_ERROR("Unable to set up bootstrap uCode: %d\n", rc
);
6746 /* start card; "initialize" will load runtime ucode */
6747 iwl4965_nic_start(priv
);
6749 IWL_DEBUG_INFO(DRV_NAME
" is coming up\n");
6754 set_bit(STATUS_EXIT_PENDING
, &priv
->status
);
6755 __iwl4965_down(priv
);
6757 /* tried to restart and config the device for as long as our
6758 * patience could withstand */
6759 IWL_ERROR("Unable to initialize device after %d attempts.\n", i
);
6764 /*****************************************************************************
6766 * Workqueue callbacks
6768 *****************************************************************************/
6770 static void iwl4965_bg_init_alive_start(struct work_struct
*data
)
6772 struct iwl4965_priv
*priv
=
6773 container_of(data
, struct iwl4965_priv
, init_alive_start
.work
);
6775 if (test_bit(STATUS_EXIT_PENDING
, &priv
->status
))
6778 mutex_lock(&priv
->mutex
);
6779 iwl4965_init_alive_start(priv
);
6780 mutex_unlock(&priv
->mutex
);
6783 static void iwl4965_bg_alive_start(struct work_struct
*data
)
6785 struct iwl4965_priv
*priv
=
6786 container_of(data
, struct iwl4965_priv
, alive_start
.work
);
6788 if (test_bit(STATUS_EXIT_PENDING
, &priv
->status
))
6791 mutex_lock(&priv
->mutex
);
6792 iwl4965_alive_start(priv
);
6793 mutex_unlock(&priv
->mutex
);
6796 static void iwl4965_bg_rf_kill(struct work_struct
*work
)
6798 struct iwl4965_priv
*priv
= container_of(work
, struct iwl4965_priv
, rf_kill
);
6800 wake_up_interruptible(&priv
->wait_command_queue
);
6802 if (test_bit(STATUS_EXIT_PENDING
, &priv
->status
))
6805 mutex_lock(&priv
->mutex
);
6807 if (!iwl4965_is_rfkill(priv
)) {
6808 IWL_DEBUG(IWL_DL_INFO
| IWL_DL_RF_KILL
,
6809 "HW and/or SW RF Kill no longer active, restarting "
6811 if (!test_bit(STATUS_EXIT_PENDING
, &priv
->status
))
6812 queue_work(priv
->workqueue
, &priv
->restart
);
6815 if (!test_bit(STATUS_RF_KILL_HW
, &priv
->status
))
6816 IWL_DEBUG_RF_KILL("Can not turn radio back on - "
6817 "disabled by SW switch\n");
6819 IWL_WARNING("Radio Frequency Kill Switch is On:\n"
6820 "Kill switch must be turned off for "
6821 "wireless networking to work.\n");
6823 mutex_unlock(&priv
->mutex
);
6826 #define IWL_SCAN_CHECK_WATCHDOG (7 * HZ)
6828 static void iwl4965_bg_scan_check(struct work_struct
*data
)
6830 struct iwl4965_priv
*priv
=
6831 container_of(data
, struct iwl4965_priv
, scan_check
.work
);
6833 if (test_bit(STATUS_EXIT_PENDING
, &priv
->status
))
6836 mutex_lock(&priv
->mutex
);
6837 if (test_bit(STATUS_SCANNING
, &priv
->status
) ||
6838 test_bit(STATUS_SCAN_ABORTING
, &priv
->status
)) {
6839 IWL_DEBUG(IWL_DL_INFO
| IWL_DL_SCAN
,
6840 "Scan completion watchdog resetting adapter (%dms)\n",
6841 jiffies_to_msecs(IWL_SCAN_CHECK_WATCHDOG
));
6843 if (!test_bit(STATUS_EXIT_PENDING
, &priv
->status
))
6844 iwl4965_send_scan_abort(priv
);
6846 mutex_unlock(&priv
->mutex
);
6849 static void iwl4965_bg_request_scan(struct work_struct
*data
)
6851 struct iwl4965_priv
*priv
=
6852 container_of(data
, struct iwl4965_priv
, request_scan
);
6853 struct iwl4965_host_cmd cmd
= {
6854 .id
= REPLY_SCAN_CMD
,
6855 .len
= sizeof(struct iwl4965_scan_cmd
),
6856 .meta
.flags
= CMD_SIZE_HUGE
,
6859 struct iwl4965_scan_cmd
*scan
;
6860 struct ieee80211_conf
*conf
= NULL
;
6862 enum ieee80211_band band
;
6865 conf
= ieee80211_get_hw_conf(priv
->hw
);
6867 mutex_lock(&priv
->mutex
);
6869 if (!iwl4965_is_ready(priv
)) {
6870 IWL_WARNING("request scan called when driver not ready.\n");
6874 /* Make sure the scan wasn't cancelled before this queued work
6875 * was given the chance to run... */
6876 if (!test_bit(STATUS_SCANNING
, &priv
->status
))
6879 /* This should never be called or scheduled if there is currently
6880 * a scan active in the hardware. */
6881 if (test_bit(STATUS_SCAN_HW
, &priv
->status
)) {
6882 IWL_DEBUG_INFO("Multiple concurrent scan requests in parallel. "
6883 "Ignoring second request.\n");
6888 if (test_bit(STATUS_EXIT_PENDING
, &priv
->status
)) {
6889 IWL_DEBUG_SCAN("Aborting scan due to device shutdown\n");
6893 if (test_bit(STATUS_SCAN_ABORTING
, &priv
->status
)) {
6894 IWL_DEBUG_HC("Scan request while abort pending. Queuing.\n");
6898 if (iwl4965_is_rfkill(priv
)) {
6899 IWL_DEBUG_HC("Aborting scan due to RF Kill activation\n");
6903 if (!test_bit(STATUS_READY
, &priv
->status
)) {
6904 IWL_DEBUG_HC("Scan request while uninitialized. Queuing.\n");
6908 if (!priv
->scan_bands
) {
6909 IWL_DEBUG_HC("Aborting scan due to no requested bands\n");
6914 priv
->scan
= kmalloc(sizeof(struct iwl4965_scan_cmd
) +
6915 IWL_MAX_SCAN_SIZE
, GFP_KERNEL
);
6922 memset(scan
, 0, sizeof(struct iwl4965_scan_cmd
) + IWL_MAX_SCAN_SIZE
);
6924 scan
->quiet_plcp_th
= IWL_PLCP_QUIET_THRESH
;
6925 scan
->quiet_time
= IWL_ACTIVE_QUIET_TIME
;
6927 if (iwl4965_is_associated(priv
)) {
6930 u32 suspend_time
= 100;
6931 u32 scan_suspend_time
= 100;
6932 unsigned long flags
;
6934 IWL_DEBUG_INFO("Scanning while associated...\n");
6936 spin_lock_irqsave(&priv
->lock
, flags
);
6937 interval
= priv
->beacon_int
;
6938 spin_unlock_irqrestore(&priv
->lock
, flags
);
6940 scan
->suspend_time
= 0;
6941 scan
->max_out_time
= cpu_to_le32(200 * 1024);
6943 interval
= suspend_time
;
6945 extra
= (suspend_time
/ interval
) << 22;
6946 scan_suspend_time
= (extra
|
6947 ((suspend_time
% interval
) * 1024));
6948 scan
->suspend_time
= cpu_to_le32(scan_suspend_time
);
6949 IWL_DEBUG_SCAN("suspend_time 0x%X beacon interval %d\n",
6950 scan_suspend_time
, interval
);
6953 /* We should add the ability for user to lock to PASSIVE ONLY */
6954 if (priv
->one_direct_scan
) {
6956 ("Kicking off one direct scan for '%s'\n",
6957 iwl4965_escape_essid(priv
->direct_ssid
,
6958 priv
->direct_ssid_len
));
6959 scan
->direct_scan
[0].id
= WLAN_EID_SSID
;
6960 scan
->direct_scan
[0].len
= priv
->direct_ssid_len
;
6961 memcpy(scan
->direct_scan
[0].ssid
,
6962 priv
->direct_ssid
, priv
->direct_ssid_len
);
6964 } else if (!iwl4965_is_associated(priv
) && priv
->essid_len
) {
6965 scan
->direct_scan
[0].id
= WLAN_EID_SSID
;
6966 scan
->direct_scan
[0].len
= priv
->essid_len
;
6967 memcpy(scan
->direct_scan
[0].ssid
, priv
->essid
, priv
->essid_len
);
6972 scan
->tx_cmd
.tx_flags
= TX_CMD_FLG_SEQ_CTL_MSK
;
6973 scan
->tx_cmd
.sta_id
= priv
->hw_setting
.bcast_sta_id
;
6974 scan
->tx_cmd
.stop_time
.life_time
= TX_CMD_LIFE_TIME_INFINITE
;
6977 switch (priv
->scan_bands
) {
6979 scan
->flags
= RXON_FLG_BAND_24G_MSK
| RXON_FLG_AUTO_DETECT_MSK
;
6980 scan
->tx_cmd
.rate_n_flags
=
6981 iwl4965_hw_set_rate_n_flags(IWL_RATE_1M_PLCP
,
6982 RATE_MCS_ANT_B_MSK
|RATE_MCS_CCK_MSK
);
6984 scan
->good_CRC_th
= 0;
6985 band
= IEEE80211_BAND_2GHZ
;
6989 scan
->tx_cmd
.rate_n_flags
=
6990 iwl4965_hw_set_rate_n_flags(IWL_RATE_6M_PLCP
,
6991 RATE_MCS_ANT_B_MSK
);
6992 scan
->good_CRC_th
= IWL_GOOD_CRC_TH
;
6993 band
= IEEE80211_BAND_5GHZ
;
6997 IWL_WARNING("Invalid scan band count\n");
7001 /* We don't build a direct scan probe request; the uCode will do
7002 * that based on the direct_mask added to each channel entry */
7003 cmd_len
= iwl4965_fill_probe_req(priv
, band
,
7004 (struct ieee80211_mgmt
*)scan
->data
,
7005 IWL_MAX_SCAN_SIZE
- sizeof(*scan
), 0);
7007 scan
->tx_cmd
.len
= cpu_to_le16(cmd_len
);
7008 /* select Rx chains */
7010 /* Force use of chains B and C (0x6) for scan Rx.
7011 * Avoid A (0x1) because of its off-channel reception on A-band.
7012 * MIMO is not used here, but value is required to make uCode happy. */
7013 scan
->rx_chain
= RXON_RX_CHAIN_DRIVER_FORCE_MSK
|
7014 cpu_to_le16((0x7 << RXON_RX_CHAIN_VALID_POS
) |
7015 (0x6 << RXON_RX_CHAIN_FORCE_SEL_POS
) |
7016 (0x7 << RXON_RX_CHAIN_FORCE_MIMO_SEL_POS
));
7018 if (priv
->iw_mode
== IEEE80211_IF_TYPE_MNTR
)
7019 scan
->filter_flags
= RXON_FILTER_PROMISC_MSK
;
7023 ("Initiating direct scan for %s.\n",
7024 iwl4965_escape_essid(priv
->essid
, priv
->essid_len
));
7026 IWL_DEBUG_SCAN("Initiating indirect scan.\n");
7028 scan
->channel_count
=
7029 iwl4965_get_channels_for_scan(
7030 priv
, band
, 1, /* active */
7032 (void *)&scan
->data
[le16_to_cpu(scan
->tx_cmd
.len
)]);
7034 cmd
.len
+= le16_to_cpu(scan
->tx_cmd
.len
) +
7035 scan
->channel_count
* sizeof(struct iwl4965_scan_channel
);
7037 scan
->len
= cpu_to_le16(cmd
.len
);
7039 set_bit(STATUS_SCAN_HW
, &priv
->status
);
7040 rc
= iwl4965_send_cmd_sync(priv
, &cmd
);
7044 queue_delayed_work(priv
->workqueue
, &priv
->scan_check
,
7045 IWL_SCAN_CHECK_WATCHDOG
);
7047 mutex_unlock(&priv
->mutex
);
7051 /* inform mac80211 scan aborted */
7052 queue_work(priv
->workqueue
, &priv
->scan_completed
);
7053 mutex_unlock(&priv
->mutex
);
7056 static void iwl4965_bg_up(struct work_struct
*data
)
7058 struct iwl4965_priv
*priv
= container_of(data
, struct iwl4965_priv
, up
);
7060 if (test_bit(STATUS_EXIT_PENDING
, &priv
->status
))
7063 mutex_lock(&priv
->mutex
);
7065 mutex_unlock(&priv
->mutex
);
7068 static void iwl4965_bg_restart(struct work_struct
*data
)
7070 struct iwl4965_priv
*priv
= container_of(data
, struct iwl4965_priv
, restart
);
7072 if (test_bit(STATUS_EXIT_PENDING
, &priv
->status
))
7076 queue_work(priv
->workqueue
, &priv
->up
);
7079 static void iwl4965_bg_rx_replenish(struct work_struct
*data
)
7081 struct iwl4965_priv
*priv
=
7082 container_of(data
, struct iwl4965_priv
, rx_replenish
);
7084 if (test_bit(STATUS_EXIT_PENDING
, &priv
->status
))
7087 mutex_lock(&priv
->mutex
);
7088 iwl4965_rx_replenish(priv
);
7089 mutex_unlock(&priv
->mutex
);
7092 #define IWL_DELAY_NEXT_SCAN (HZ*2)
7094 static void iwl4965_bg_post_associate(struct work_struct
*data
)
7096 struct iwl4965_priv
*priv
= container_of(data
, struct iwl4965_priv
,
7097 post_associate
.work
);
7100 struct ieee80211_conf
*conf
= NULL
;
7101 DECLARE_MAC_BUF(mac
);
7103 if (priv
->iw_mode
== IEEE80211_IF_TYPE_AP
) {
7104 IWL_ERROR("%s Should not be called in AP mode\n", __FUNCTION__
);
7108 IWL_DEBUG_ASSOC("Associated as %d to: %s\n",
7110 print_mac(mac
, priv
->active_rxon
.bssid_addr
));
7113 if (test_bit(STATUS_EXIT_PENDING
, &priv
->status
))
7116 mutex_lock(&priv
->mutex
);
7118 if (!priv
->vif
|| !priv
->is_open
) {
7119 mutex_unlock(&priv
->mutex
);
7122 iwl4965_scan_cancel_timeout(priv
, 200);
7124 conf
= ieee80211_get_hw_conf(priv
->hw
);
7126 priv
->staging_rxon
.filter_flags
&= ~RXON_FILTER_ASSOC_MSK
;
7127 iwl4965_commit_rxon(priv
);
7129 memset(&priv
->rxon_timing
, 0, sizeof(struct iwl4965_rxon_time_cmd
));
7130 iwl4965_setup_rxon_timing(priv
);
7131 rc
= iwl4965_send_cmd_pdu(priv
, REPLY_RXON_TIMING
,
7132 sizeof(priv
->rxon_timing
), &priv
->rxon_timing
);
7134 IWL_WARNING("REPLY_RXON_TIMING failed - "
7135 "Attempting to continue.\n");
7137 priv
->staging_rxon
.filter_flags
|= RXON_FILTER_ASSOC_MSK
;
7139 #ifdef CONFIG_IWL4965_HT
7140 if (priv
->current_ht_config
.is_ht
)
7141 iwl4965_set_rxon_ht(priv
, &priv
->current_ht_config
);
7142 #endif /* CONFIG_IWL4965_HT*/
7143 iwl4965_set_rxon_chain(priv
);
7144 priv
->staging_rxon
.assoc_id
= cpu_to_le16(priv
->assoc_id
);
7146 IWL_DEBUG_ASSOC("assoc id %d beacon interval %d\n",
7147 priv
->assoc_id
, priv
->beacon_int
);
7149 if (priv
->assoc_capability
& WLAN_CAPABILITY_SHORT_PREAMBLE
)
7150 priv
->staging_rxon
.flags
|= RXON_FLG_SHORT_PREAMBLE_MSK
;
7152 priv
->staging_rxon
.flags
&= ~RXON_FLG_SHORT_PREAMBLE_MSK
;
7154 if (priv
->staging_rxon
.flags
& RXON_FLG_BAND_24G_MSK
) {
7155 if (priv
->assoc_capability
& WLAN_CAPABILITY_SHORT_SLOT_TIME
)
7156 priv
->staging_rxon
.flags
|= RXON_FLG_SHORT_SLOT_MSK
;
7158 priv
->staging_rxon
.flags
&= ~RXON_FLG_SHORT_SLOT_MSK
;
7160 if (priv
->iw_mode
== IEEE80211_IF_TYPE_IBSS
)
7161 priv
->staging_rxon
.flags
&= ~RXON_FLG_SHORT_SLOT_MSK
;
7165 iwl4965_commit_rxon(priv
);
7167 switch (priv
->iw_mode
) {
7168 case IEEE80211_IF_TYPE_STA
:
7169 iwl4965_rate_scale_init(priv
->hw
, IWL_AP_ID
);
7172 case IEEE80211_IF_TYPE_IBSS
:
7174 /* clear out the station table */
7175 iwl4965_clear_stations_table(priv
);
7177 iwl4965_rxon_add_station(priv
, iwl4965_broadcast_addr
, 0);
7178 iwl4965_rxon_add_station(priv
, priv
->bssid
, 0);
7179 iwl4965_rate_scale_init(priv
->hw
, IWL_STA_ID
);
7180 iwl4965_send_beacon_cmd(priv
);
7185 IWL_ERROR("%s Should not be called in %d mode\n",
7186 __FUNCTION__
, priv
->iw_mode
);
7190 iwl4965_sequence_reset(priv
);
7192 #ifdef CONFIG_IWL4965_SENSITIVITY
7193 /* Enable Rx differential gain and sensitivity calibrations */
7194 iwl4965_chain_noise_reset(priv
);
7195 priv
->start_calib
= 1;
7196 #endif /* CONFIG_IWL4965_SENSITIVITY */
7198 if (priv
->iw_mode
== IEEE80211_IF_TYPE_IBSS
)
7199 priv
->assoc_station_added
= 1;
7201 iwl4965_activate_qos(priv
, 0);
7203 /* we have just associated, don't start scan too early */
7204 priv
->next_scan_jiffies
= jiffies
+ IWL_DELAY_NEXT_SCAN
;
7205 mutex_unlock(&priv
->mutex
);
7208 static void iwl4965_bg_abort_scan(struct work_struct
*work
)
7210 struct iwl4965_priv
*priv
= container_of(work
, struct iwl4965_priv
, abort_scan
);
7212 if (!iwl4965_is_ready(priv
))
7215 mutex_lock(&priv
->mutex
);
7217 set_bit(STATUS_SCAN_ABORTING
, &priv
->status
);
7218 iwl4965_send_scan_abort(priv
);
7220 mutex_unlock(&priv
->mutex
);
7223 static int iwl4965_mac_config(struct ieee80211_hw
*hw
, struct ieee80211_conf
*conf
);
7225 static void iwl4965_bg_scan_completed(struct work_struct
*work
)
7227 struct iwl4965_priv
*priv
=
7228 container_of(work
, struct iwl4965_priv
, scan_completed
);
7230 IWL_DEBUG(IWL_DL_INFO
| IWL_DL_SCAN
, "SCAN complete scan\n");
7232 if (test_bit(STATUS_EXIT_PENDING
, &priv
->status
))
7235 if (test_bit(STATUS_CONF_PENDING
, &priv
->status
))
7236 iwl4965_mac_config(priv
->hw
, ieee80211_get_hw_conf(priv
->hw
));
7238 ieee80211_scan_completed(priv
->hw
);
7240 /* Since setting the TXPOWER may have been deferred while
7241 * performing the scan, fire one off */
7242 mutex_lock(&priv
->mutex
);
7243 iwl4965_hw_reg_send_txpower(priv
);
7244 mutex_unlock(&priv
->mutex
);
7247 /*****************************************************************************
7249 * mac80211 entry point functions
7251 *****************************************************************************/
7253 #define UCODE_READY_TIMEOUT (2 * HZ)
7255 static int iwl4965_mac_start(struct ieee80211_hw
*hw
)
7257 struct iwl4965_priv
*priv
= hw
->priv
;
7260 IWL_DEBUG_MAC80211("enter\n");
7262 if (pci_enable_device(priv
->pci_dev
)) {
7263 IWL_ERROR("Fail to pci_enable_device\n");
7266 pci_restore_state(priv
->pci_dev
);
7267 pci_enable_msi(priv
->pci_dev
);
7269 ret
= request_irq(priv
->pci_dev
->irq
, iwl4965_isr
, IRQF_SHARED
,
7272 IWL_ERROR("Error allocating IRQ %d\n", priv
->pci_dev
->irq
);
7273 goto out_disable_msi
;
7276 /* we should be verifying the device is ready to be opened */
7277 mutex_lock(&priv
->mutex
);
7279 memset(&priv
->staging_rxon
, 0, sizeof(struct iwl4965_rxon_cmd
));
7280 /* fetch ucode file from disk, alloc and copy to bus-master buffers ...
7281 * ucode filename and max sizes are card-specific. */
7283 if (!priv
->ucode_code
.len
) {
7284 ret
= iwl4965_read_ucode(priv
);
7286 IWL_ERROR("Could not read microcode: %d\n", ret
);
7287 mutex_unlock(&priv
->mutex
);
7288 goto out_release_irq
;
7292 ret
= __iwl4965_up(priv
);
7294 mutex_unlock(&priv
->mutex
);
7297 goto out_release_irq
;
7299 IWL_DEBUG_INFO("Start UP work done.\n");
7301 if (test_bit(STATUS_IN_SUSPEND
, &priv
->status
))
7304 /* Wait for START_ALIVE from ucode. Otherwise callbacks from
7305 * mac80211 will not be run successfully. */
7306 ret
= wait_event_interruptible_timeout(priv
->wait_command_queue
,
7307 test_bit(STATUS_READY
, &priv
->status
),
7308 UCODE_READY_TIMEOUT
);
7310 if (!test_bit(STATUS_READY
, &priv
->status
)) {
7311 IWL_ERROR("Wait for START_ALIVE timeout after %dms.\n",
7312 jiffies_to_msecs(UCODE_READY_TIMEOUT
));
7314 goto out_release_irq
;
7319 IWL_DEBUG_MAC80211("leave\n");
7323 free_irq(priv
->pci_dev
->irq
, priv
);
7325 pci_disable_msi(priv
->pci_dev
);
7326 pci_disable_device(priv
->pci_dev
);
7328 IWL_DEBUG_MAC80211("leave - failed\n");
7332 static void iwl4965_mac_stop(struct ieee80211_hw
*hw
)
7334 struct iwl4965_priv
*priv
= hw
->priv
;
7336 IWL_DEBUG_MAC80211("enter\n");
7338 if (!priv
->is_open
) {
7339 IWL_DEBUG_MAC80211("leave - skip\n");
7345 if (iwl4965_is_ready_rf(priv
)) {
7346 /* stop mac, cancel any scan request and clear
7347 * RXON_FILTER_ASSOC_MSK BIT
7349 mutex_lock(&priv
->mutex
);
7350 iwl4965_scan_cancel_timeout(priv
, 100);
7351 cancel_delayed_work(&priv
->post_associate
);
7352 mutex_unlock(&priv
->mutex
);
7357 flush_workqueue(priv
->workqueue
);
7358 free_irq(priv
->pci_dev
->irq
, priv
);
7359 pci_disable_msi(priv
->pci_dev
);
7360 pci_save_state(priv
->pci_dev
);
7361 pci_disable_device(priv
->pci_dev
);
7363 IWL_DEBUG_MAC80211("leave\n");
7366 static int iwl4965_mac_tx(struct ieee80211_hw
*hw
, struct sk_buff
*skb
,
7367 struct ieee80211_tx_control
*ctl
)
7369 struct iwl4965_priv
*priv
= hw
->priv
;
7371 IWL_DEBUG_MAC80211("enter\n");
7373 if (priv
->iw_mode
== IEEE80211_IF_TYPE_MNTR
) {
7374 IWL_DEBUG_MAC80211("leave - monitor\n");
7378 IWL_DEBUG_TX("dev->xmit(%d bytes) at rate 0x%02x\n", skb
->len
,
7379 ctl
->tx_rate
->bitrate
);
7381 if (iwl4965_tx_skb(priv
, skb
, ctl
))
7382 dev_kfree_skb_any(skb
);
7384 IWL_DEBUG_MAC80211("leave\n");
7388 static int iwl4965_mac_add_interface(struct ieee80211_hw
*hw
,
7389 struct ieee80211_if_init_conf
*conf
)
7391 struct iwl4965_priv
*priv
= hw
->priv
;
7392 unsigned long flags
;
7393 DECLARE_MAC_BUF(mac
);
7395 IWL_DEBUG_MAC80211("enter: type %d\n", conf
->type
);
7398 IWL_DEBUG_MAC80211("leave - vif != NULL\n");
7402 spin_lock_irqsave(&priv
->lock
, flags
);
7403 priv
->vif
= conf
->vif
;
7405 spin_unlock_irqrestore(&priv
->lock
, flags
);
7407 mutex_lock(&priv
->mutex
);
7409 if (conf
->mac_addr
) {
7410 IWL_DEBUG_MAC80211("Set %s\n", print_mac(mac
, conf
->mac_addr
));
7411 memcpy(priv
->mac_addr
, conf
->mac_addr
, ETH_ALEN
);
7414 if (iwl4965_is_ready(priv
))
7415 iwl4965_set_mode(priv
, conf
->type
);
7417 mutex_unlock(&priv
->mutex
);
7419 IWL_DEBUG_MAC80211("leave\n");
7424 * iwl4965_mac_config - mac80211 config callback
7426 * We ignore conf->flags & IEEE80211_CONF_SHORT_SLOT_TIME since it seems to
7427 * be set inappropriately and the driver currently sets the hardware up to
7428 * use it whenever needed.
7430 static int iwl4965_mac_config(struct ieee80211_hw
*hw
, struct ieee80211_conf
*conf
)
7432 struct iwl4965_priv
*priv
= hw
->priv
;
7433 const struct iwl4965_channel_info
*ch_info
;
7434 unsigned long flags
;
7437 mutex_lock(&priv
->mutex
);
7438 IWL_DEBUG_MAC80211("enter to channel %d\n", conf
->channel
->hw_value
);
7440 priv
->add_radiotap
= !!(conf
->flags
& IEEE80211_CONF_RADIOTAP
);
7442 if (!iwl4965_is_ready(priv
)) {
7443 IWL_DEBUG_MAC80211("leave - not ready\n");
7448 if (unlikely(!iwl4965_param_disable_hw_scan
&&
7449 test_bit(STATUS_SCANNING
, &priv
->status
))) {
7450 IWL_DEBUG_MAC80211("leave - scanning\n");
7451 set_bit(STATUS_CONF_PENDING
, &priv
->status
);
7452 mutex_unlock(&priv
->mutex
);
7456 spin_lock_irqsave(&priv
->lock
, flags
);
7458 ch_info
= iwl4965_get_channel_info(priv
, conf
->channel
->band
,
7459 ieee80211_frequency_to_channel(conf
->channel
->center_freq
));
7460 if (!is_channel_valid(ch_info
)) {
7461 IWL_DEBUG_MAC80211("leave - invalid channel\n");
7462 spin_unlock_irqrestore(&priv
->lock
, flags
);
7467 #ifdef CONFIG_IWL4965_HT
7468 /* if we are switching from ht to 2.4 clear flags
7469 * from any ht related info since 2.4 does not
7471 if ((le16_to_cpu(priv
->staging_rxon
.channel
) != conf
->channel
->hw_value
)
7472 #ifdef IEEE80211_CONF_CHANNEL_SWITCH
7473 && !(conf
->flags
& IEEE80211_CONF_CHANNEL_SWITCH
)
7476 priv
->staging_rxon
.flags
= 0;
7477 #endif /* CONFIG_IWL4965_HT */
7479 iwl4965_set_rxon_channel(priv
, conf
->channel
->band
,
7480 ieee80211_frequency_to_channel(conf
->channel
->center_freq
));
7482 iwl4965_set_flags_for_phymode(priv
, conf
->channel
->band
);
7484 /* The list of supported rates and rate mask can be different
7485 * for each band; since the band may have changed, reset
7486 * the rate mask to what mac80211 lists */
7487 iwl4965_set_rate(priv
);
7489 spin_unlock_irqrestore(&priv
->lock
, flags
);
7491 #ifdef IEEE80211_CONF_CHANNEL_SWITCH
7492 if (conf
->flags
& IEEE80211_CONF_CHANNEL_SWITCH
) {
7493 iwl4965_hw_channel_switch(priv
, conf
->channel
);
7498 iwl4965_radio_kill_sw(priv
, !conf
->radio_enabled
);
7500 if (!conf
->radio_enabled
) {
7501 IWL_DEBUG_MAC80211("leave - radio disabled\n");
7505 if (iwl4965_is_rfkill(priv
)) {
7506 IWL_DEBUG_MAC80211("leave - RF kill\n");
7511 iwl4965_set_rate(priv
);
7513 if (memcmp(&priv
->active_rxon
,
7514 &priv
->staging_rxon
, sizeof(priv
->staging_rxon
)))
7515 iwl4965_commit_rxon(priv
);
7517 IWL_DEBUG_INFO("No re-sending same RXON configuration.\n");
7519 IWL_DEBUG_MAC80211("leave\n");
7522 clear_bit(STATUS_CONF_PENDING
, &priv
->status
);
7523 mutex_unlock(&priv
->mutex
);
7527 static void iwl4965_config_ap(struct iwl4965_priv
*priv
)
7531 if (test_bit(STATUS_EXIT_PENDING
, &priv
->status
))
7534 /* The following should be done only at AP bring up */
7535 if ((priv
->active_rxon
.filter_flags
& RXON_FILTER_ASSOC_MSK
) == 0) {
7537 /* RXON - unassoc (to set timing command) */
7538 priv
->staging_rxon
.filter_flags
&= ~RXON_FILTER_ASSOC_MSK
;
7539 iwl4965_commit_rxon(priv
);
7542 memset(&priv
->rxon_timing
, 0, sizeof(struct iwl4965_rxon_time_cmd
));
7543 iwl4965_setup_rxon_timing(priv
);
7544 rc
= iwl4965_send_cmd_pdu(priv
, REPLY_RXON_TIMING
,
7545 sizeof(priv
->rxon_timing
), &priv
->rxon_timing
);
7547 IWL_WARNING("REPLY_RXON_TIMING failed - "
7548 "Attempting to continue.\n");
7550 iwl4965_set_rxon_chain(priv
);
7552 /* FIXME: what should be the assoc_id for AP? */
7553 priv
->staging_rxon
.assoc_id
= cpu_to_le16(priv
->assoc_id
);
7554 if (priv
->assoc_capability
& WLAN_CAPABILITY_SHORT_PREAMBLE
)
7555 priv
->staging_rxon
.flags
|=
7556 RXON_FLG_SHORT_PREAMBLE_MSK
;
7558 priv
->staging_rxon
.flags
&=
7559 ~RXON_FLG_SHORT_PREAMBLE_MSK
;
7561 if (priv
->staging_rxon
.flags
& RXON_FLG_BAND_24G_MSK
) {
7562 if (priv
->assoc_capability
&
7563 WLAN_CAPABILITY_SHORT_SLOT_TIME
)
7564 priv
->staging_rxon
.flags
|=
7565 RXON_FLG_SHORT_SLOT_MSK
;
7567 priv
->staging_rxon
.flags
&=
7568 ~RXON_FLG_SHORT_SLOT_MSK
;
7570 if (priv
->iw_mode
== IEEE80211_IF_TYPE_IBSS
)
7571 priv
->staging_rxon
.flags
&=
7572 ~RXON_FLG_SHORT_SLOT_MSK
;
7574 /* restore RXON assoc */
7575 priv
->staging_rxon
.filter_flags
|= RXON_FILTER_ASSOC_MSK
;
7576 iwl4965_commit_rxon(priv
);
7577 iwl4965_activate_qos(priv
, 1);
7578 iwl4965_rxon_add_station(priv
, iwl4965_broadcast_addr
, 0);
7580 iwl4965_send_beacon_cmd(priv
);
7582 /* FIXME - we need to add code here to detect a totally new
7583 * configuration, reset the AP, unassoc, rxon timing, assoc,
7584 * clear sta table, add BCAST sta... */
7587 static int iwl4965_mac_config_interface(struct ieee80211_hw
*hw
,
7588 struct ieee80211_vif
*vif
,
7589 struct ieee80211_if_conf
*conf
)
7591 struct iwl4965_priv
*priv
= hw
->priv
;
7592 DECLARE_MAC_BUF(mac
);
7593 unsigned long flags
;
7599 if ((priv
->iw_mode
== IEEE80211_IF_TYPE_AP
) &&
7600 (!conf
->beacon
|| !conf
->ssid_len
)) {
7602 ("Leaving in AP mode because HostAPD is not ready.\n");
7606 if (!iwl4965_is_alive(priv
))
7609 mutex_lock(&priv
->mutex
);
7612 IWL_DEBUG_MAC80211("bssid: %s\n",
7613 print_mac(mac
, conf
->bssid
));
7616 * very dubious code was here; the probe filtering flag is never set:
7618 if (unlikely(test_bit(STATUS_SCANNING, &priv->status)) &&
7619 !(priv->hw->flags & IEEE80211_HW_NO_PROBE_FILTERING)) {
7621 if (unlikely(test_bit(STATUS_SCANNING
, &priv
->status
))) {
7622 IWL_DEBUG_MAC80211("leave - scanning\n");
7623 mutex_unlock(&priv
->mutex
);
7627 if (priv
->vif
!= vif
) {
7628 IWL_DEBUG_MAC80211("leave - priv->vif != vif\n");
7629 mutex_unlock(&priv
->mutex
);
7633 if (priv
->iw_mode
== IEEE80211_IF_TYPE_AP
) {
7635 conf
->bssid
= priv
->mac_addr
;
7636 memcpy(priv
->bssid
, priv
->mac_addr
, ETH_ALEN
);
7637 IWL_DEBUG_MAC80211("bssid was set to: %s\n",
7638 print_mac(mac
, conf
->bssid
));
7640 if (priv
->ibss_beacon
)
7641 dev_kfree_skb(priv
->ibss_beacon
);
7643 priv
->ibss_beacon
= conf
->beacon
;
7646 if (iwl4965_is_rfkill(priv
))
7649 if (conf
->bssid
&& !is_zero_ether_addr(conf
->bssid
) &&
7650 !is_multicast_ether_addr(conf
->bssid
)) {
7651 /* If there is currently a HW scan going on in the background
7652 * then we need to cancel it else the RXON below will fail. */
7653 if (iwl4965_scan_cancel_timeout(priv
, 100)) {
7654 IWL_WARNING("Aborted scan still in progress "
7656 IWL_DEBUG_MAC80211("leaving - scan abort failed.\n");
7657 mutex_unlock(&priv
->mutex
);
7660 memcpy(priv
->staging_rxon
.bssid_addr
, conf
->bssid
, ETH_ALEN
);
7662 /* TODO: Audit driver for usage of these members and see
7663 * if mac80211 deprecates them (priv->bssid looks like it
7664 * shouldn't be there, but I haven't scanned the IBSS code
7665 * to verify) - jpk */
7666 memcpy(priv
->bssid
, conf
->bssid
, ETH_ALEN
);
7668 if (priv
->iw_mode
== IEEE80211_IF_TYPE_AP
)
7669 iwl4965_config_ap(priv
);
7671 rc
= iwl4965_commit_rxon(priv
);
7672 if ((priv
->iw_mode
== IEEE80211_IF_TYPE_STA
) && rc
)
7673 iwl4965_rxon_add_station(
7674 priv
, priv
->active_rxon
.bssid_addr
, 1);
7678 iwl4965_scan_cancel_timeout(priv
, 100);
7679 priv
->staging_rxon
.filter_flags
&= ~RXON_FILTER_ASSOC_MSK
;
7680 iwl4965_commit_rxon(priv
);
7684 spin_lock_irqsave(&priv
->lock
, flags
);
7685 if (!conf
->ssid_len
)
7686 memset(priv
->essid
, 0, IW_ESSID_MAX_SIZE
);
7688 memcpy(priv
->essid
, conf
->ssid
, conf
->ssid_len
);
7690 priv
->essid_len
= conf
->ssid_len
;
7691 spin_unlock_irqrestore(&priv
->lock
, flags
);
7693 IWL_DEBUG_MAC80211("leave\n");
7694 mutex_unlock(&priv
->mutex
);
7699 static void iwl4965_configure_filter(struct ieee80211_hw
*hw
,
7700 unsigned int changed_flags
,
7701 unsigned int *total_flags
,
7702 int mc_count
, struct dev_addr_list
*mc_list
)
7706 * see also iwl4965_connection_init_rx_config
7711 static void iwl4965_mac_remove_interface(struct ieee80211_hw
*hw
,
7712 struct ieee80211_if_init_conf
*conf
)
7714 struct iwl4965_priv
*priv
= hw
->priv
;
7716 IWL_DEBUG_MAC80211("enter\n");
7718 mutex_lock(&priv
->mutex
);
7720 if (iwl4965_is_ready_rf(priv
)) {
7721 iwl4965_scan_cancel_timeout(priv
, 100);
7722 cancel_delayed_work(&priv
->post_associate
);
7723 priv
->staging_rxon
.filter_flags
&= ~RXON_FILTER_ASSOC_MSK
;
7724 iwl4965_commit_rxon(priv
);
7726 if (priv
->vif
== conf
->vif
) {
7728 memset(priv
->bssid
, 0, ETH_ALEN
);
7729 memset(priv
->essid
, 0, IW_ESSID_MAX_SIZE
);
7730 priv
->essid_len
= 0;
7732 mutex_unlock(&priv
->mutex
);
7734 IWL_DEBUG_MAC80211("leave\n");
7738 static void iwl4965_bss_info_changed(struct ieee80211_hw
*hw
,
7739 struct ieee80211_vif
*vif
,
7740 struct ieee80211_bss_conf
*bss_conf
,
7743 struct iwl4965_priv
*priv
= hw
->priv
;
7745 if (changes
& BSS_CHANGED_ERP_PREAMBLE
) {
7746 if (bss_conf
->use_short_preamble
)
7747 priv
->staging_rxon
.flags
|= RXON_FLG_SHORT_PREAMBLE_MSK
;
7749 priv
->staging_rxon
.flags
&= ~RXON_FLG_SHORT_PREAMBLE_MSK
;
7752 if (changes
& BSS_CHANGED_ERP_CTS_PROT
) {
7753 if (bss_conf
->use_cts_prot
&& (priv
->band
!= IEEE80211_BAND_5GHZ
))
7754 priv
->staging_rxon
.flags
|= RXON_FLG_TGG_PROTECT_MSK
;
7756 priv
->staging_rxon
.flags
&= ~RXON_FLG_TGG_PROTECT_MSK
;
7759 if (changes
& BSS_CHANGED_ASSOC
) {
7762 * do stuff instead of sniffing assoc resp
7766 if (iwl4965_is_associated(priv
))
7767 iwl4965_send_rxon_assoc(priv
);
7770 static int iwl4965_mac_hw_scan(struct ieee80211_hw
*hw
, u8
*ssid
, size_t len
)
7773 unsigned long flags
;
7774 struct iwl4965_priv
*priv
= hw
->priv
;
7776 IWL_DEBUG_MAC80211("enter\n");
7778 mutex_lock(&priv
->mutex
);
7779 spin_lock_irqsave(&priv
->lock
, flags
);
7781 if (!iwl4965_is_ready_rf(priv
)) {
7783 IWL_DEBUG_MAC80211("leave - not ready or exit pending\n");
7787 if (priv
->iw_mode
== IEEE80211_IF_TYPE_AP
) { /* APs don't scan */
7789 IWL_ERROR("ERROR: APs don't scan\n");
7793 /* we don't schedule scan within next_scan_jiffies period */
7794 if (priv
->next_scan_jiffies
&&
7795 time_after(priv
->next_scan_jiffies
, jiffies
)) {
7799 /* if we just finished scan ask for delay */
7800 if (priv
->last_scan_jiffies
&& time_after(priv
->last_scan_jiffies
+
7801 IWL_DELAY_NEXT_SCAN
, jiffies
)) {
7806 IWL_DEBUG_SCAN("direct scan for %s [%d]\n ",
7807 iwl4965_escape_essid(ssid
, len
), (int)len
);
7809 priv
->one_direct_scan
= 1;
7810 priv
->direct_ssid_len
= (u8
)
7811 min((u8
) len
, (u8
) IW_ESSID_MAX_SIZE
);
7812 memcpy(priv
->direct_ssid
, ssid
, priv
->direct_ssid_len
);
7814 priv
->one_direct_scan
= 0;
7816 rc
= iwl4965_scan_initiate(priv
);
7818 IWL_DEBUG_MAC80211("leave\n");
7821 spin_unlock_irqrestore(&priv
->lock
, flags
);
7822 mutex_unlock(&priv
->mutex
);
7827 static int iwl4965_mac_set_key(struct ieee80211_hw
*hw
, enum set_key_cmd cmd
,
7828 const u8
*local_addr
, const u8
*addr
,
7829 struct ieee80211_key_conf
*key
)
7831 struct iwl4965_priv
*priv
= hw
->priv
;
7832 DECLARE_MAC_BUF(mac
);
7836 IWL_DEBUG_MAC80211("enter\n");
7838 if (!iwl4965_param_hwcrypto
) {
7839 IWL_DEBUG_MAC80211("leave - hwcrypto disabled\n");
7843 if (is_zero_ether_addr(addr
))
7844 /* only support pairwise keys */
7847 sta_id
= iwl4965_hw_find_station(priv
, addr
);
7848 if (sta_id
== IWL_INVALID_STATION
) {
7849 IWL_DEBUG_MAC80211("leave - %s not in station map.\n",
7850 print_mac(mac
, addr
));
7854 mutex_lock(&priv
->mutex
);
7856 iwl4965_scan_cancel_timeout(priv
, 100);
7860 rc
= iwl4965_update_sta_key_info(priv
, key
, sta_id
);
7862 iwl4965_set_rxon_hwcrypto(priv
, 1);
7863 iwl4965_commit_rxon(priv
);
7864 key
->hw_key_idx
= sta_id
;
7865 IWL_DEBUG_MAC80211("set_key success, using hwcrypto\n");
7866 key
->flags
|= IEEE80211_KEY_FLAG_GENERATE_IV
;
7870 rc
= iwl4965_clear_sta_key_info(priv
, sta_id
);
7872 iwl4965_set_rxon_hwcrypto(priv
, 0);
7873 iwl4965_commit_rxon(priv
);
7874 IWL_DEBUG_MAC80211("disable hwcrypto key\n");
7881 IWL_DEBUG_MAC80211("leave\n");
7882 mutex_unlock(&priv
->mutex
);
7887 static int iwl4965_mac_conf_tx(struct ieee80211_hw
*hw
, int queue
,
7888 const struct ieee80211_tx_queue_params
*params
)
7890 struct iwl4965_priv
*priv
= hw
->priv
;
7891 unsigned long flags
;
7894 IWL_DEBUG_MAC80211("enter\n");
7896 if (!iwl4965_is_ready_rf(priv
)) {
7897 IWL_DEBUG_MAC80211("leave - RF not ready\n");
7901 if (queue
>= AC_NUM
) {
7902 IWL_DEBUG_MAC80211("leave - queue >= AC_NUM %d\n", queue
);
7906 if (!priv
->qos_data
.qos_enable
) {
7907 priv
->qos_data
.qos_active
= 0;
7908 IWL_DEBUG_MAC80211("leave - qos not enabled\n");
7911 q
= AC_NUM
- 1 - queue
;
7913 spin_lock_irqsave(&priv
->lock
, flags
);
7915 priv
->qos_data
.def_qos_parm
.ac
[q
].cw_min
= cpu_to_le16(params
->cw_min
);
7916 priv
->qos_data
.def_qos_parm
.ac
[q
].cw_max
= cpu_to_le16(params
->cw_max
);
7917 priv
->qos_data
.def_qos_parm
.ac
[q
].aifsn
= params
->aifs
;
7918 priv
->qos_data
.def_qos_parm
.ac
[q
].edca_txop
=
7919 cpu_to_le16((params
->burst_time
* 100));
7921 priv
->qos_data
.def_qos_parm
.ac
[q
].reserved1
= 0;
7922 priv
->qos_data
.qos_active
= 1;
7924 spin_unlock_irqrestore(&priv
->lock
, flags
);
7926 mutex_lock(&priv
->mutex
);
7927 if (priv
->iw_mode
== IEEE80211_IF_TYPE_AP
)
7928 iwl4965_activate_qos(priv
, 1);
7929 else if (priv
->assoc_id
&& iwl4965_is_associated(priv
))
7930 iwl4965_activate_qos(priv
, 0);
7932 mutex_unlock(&priv
->mutex
);
7934 IWL_DEBUG_MAC80211("leave\n");
7938 static int iwl4965_mac_get_tx_stats(struct ieee80211_hw
*hw
,
7939 struct ieee80211_tx_queue_stats
*stats
)
7941 struct iwl4965_priv
*priv
= hw
->priv
;
7943 struct iwl4965_tx_queue
*txq
;
7944 struct iwl4965_queue
*q
;
7945 unsigned long flags
;
7947 IWL_DEBUG_MAC80211("enter\n");
7949 if (!iwl4965_is_ready_rf(priv
)) {
7950 IWL_DEBUG_MAC80211("leave - RF not ready\n");
7954 spin_lock_irqsave(&priv
->lock
, flags
);
7956 for (i
= 0; i
< AC_NUM
; i
++) {
7957 txq
= &priv
->txq
[i
];
7959 avail
= iwl4965_queue_space(q
);
7961 stats
->data
[i
].len
= q
->n_window
- avail
;
7962 stats
->data
[i
].limit
= q
->n_window
- q
->high_mark
;
7963 stats
->data
[i
].count
= q
->n_window
;
7966 spin_unlock_irqrestore(&priv
->lock
, flags
);
7968 IWL_DEBUG_MAC80211("leave\n");
7973 static int iwl4965_mac_get_stats(struct ieee80211_hw
*hw
,
7974 struct ieee80211_low_level_stats
*stats
)
7976 IWL_DEBUG_MAC80211("enter\n");
7977 IWL_DEBUG_MAC80211("leave\n");
7982 static u64
iwl4965_mac_get_tsf(struct ieee80211_hw
*hw
)
7984 IWL_DEBUG_MAC80211("enter\n");
7985 IWL_DEBUG_MAC80211("leave\n");
7990 static void iwl4965_mac_reset_tsf(struct ieee80211_hw
*hw
)
7992 struct iwl4965_priv
*priv
= hw
->priv
;
7993 unsigned long flags
;
7995 mutex_lock(&priv
->mutex
);
7996 IWL_DEBUG_MAC80211("enter\n");
7998 priv
->lq_mngr
.lq_ready
= 0;
7999 #ifdef CONFIG_IWL4965_HT
8000 spin_lock_irqsave(&priv
->lock
, flags
);
8001 memset(&priv
->current_ht_config
, 0, sizeof(struct iwl_ht_info
));
8002 spin_unlock_irqrestore(&priv
->lock
, flags
);
8003 #endif /* CONFIG_IWL4965_HT */
8005 iwl4965_reset_qos(priv
);
8007 cancel_delayed_work(&priv
->post_associate
);
8009 spin_lock_irqsave(&priv
->lock
, flags
);
8011 priv
->assoc_capability
= 0;
8012 priv
->call_post_assoc_from_beacon
= 0;
8013 priv
->assoc_station_added
= 0;
8015 /* new association get rid of ibss beacon skb */
8016 if (priv
->ibss_beacon
)
8017 dev_kfree_skb(priv
->ibss_beacon
);
8019 priv
->ibss_beacon
= NULL
;
8021 priv
->beacon_int
= priv
->hw
->conf
.beacon_int
;
8022 priv
->timestamp1
= 0;
8023 priv
->timestamp0
= 0;
8024 if ((priv
->iw_mode
== IEEE80211_IF_TYPE_STA
))
8025 priv
->beacon_int
= 0;
8027 spin_unlock_irqrestore(&priv
->lock
, flags
);
8029 if (!iwl4965_is_ready_rf(priv
)) {
8030 IWL_DEBUG_MAC80211("leave - not ready\n");
8031 mutex_unlock(&priv
->mutex
);
8035 /* we are restarting association process
8036 * clear RXON_FILTER_ASSOC_MSK bit
8038 if (priv
->iw_mode
!= IEEE80211_IF_TYPE_AP
) {
8039 iwl4965_scan_cancel_timeout(priv
, 100);
8040 priv
->staging_rxon
.filter_flags
&= ~RXON_FILTER_ASSOC_MSK
;
8041 iwl4965_commit_rxon(priv
);
8044 /* Per mac80211.h: This is only used in IBSS mode... */
8045 if (priv
->iw_mode
!= IEEE80211_IF_TYPE_IBSS
) {
8047 IWL_DEBUG_MAC80211("leave - not in IBSS\n");
8048 mutex_unlock(&priv
->mutex
);
8052 priv
->only_active_channel
= 0;
8054 iwl4965_set_rate(priv
);
8056 mutex_unlock(&priv
->mutex
);
8058 IWL_DEBUG_MAC80211("leave\n");
8061 static int iwl4965_mac_beacon_update(struct ieee80211_hw
*hw
, struct sk_buff
*skb
,
8062 struct ieee80211_tx_control
*control
)
8064 struct iwl4965_priv
*priv
= hw
->priv
;
8065 unsigned long flags
;
8067 mutex_lock(&priv
->mutex
);
8068 IWL_DEBUG_MAC80211("enter\n");
8070 if (!iwl4965_is_ready_rf(priv
)) {
8071 IWL_DEBUG_MAC80211("leave - RF not ready\n");
8072 mutex_unlock(&priv
->mutex
);
8076 if (priv
->iw_mode
!= IEEE80211_IF_TYPE_IBSS
) {
8077 IWL_DEBUG_MAC80211("leave - not IBSS\n");
8078 mutex_unlock(&priv
->mutex
);
8082 spin_lock_irqsave(&priv
->lock
, flags
);
8084 if (priv
->ibss_beacon
)
8085 dev_kfree_skb(priv
->ibss_beacon
);
8087 priv
->ibss_beacon
= skb
;
8091 IWL_DEBUG_MAC80211("leave\n");
8092 spin_unlock_irqrestore(&priv
->lock
, flags
);
8094 iwl4965_reset_qos(priv
);
8096 queue_work(priv
->workqueue
, &priv
->post_associate
.work
);
8098 mutex_unlock(&priv
->mutex
);
8103 #ifdef CONFIG_IWL4965_HT
8105 static void iwl4965_ht_info_fill(struct ieee80211_conf
*conf
,
8106 struct iwl4965_priv
*priv
)
8108 struct iwl_ht_info
*iwl_conf
= &priv
->current_ht_config
;
8109 struct ieee80211_ht_info
*ht_conf
= &conf
->ht_conf
;
8110 struct ieee80211_ht_bss_info
*ht_bss_conf
= &conf
->ht_bss_conf
;
8112 IWL_DEBUG_MAC80211("enter: \n");
8114 if (!(conf
->flags
& IEEE80211_CONF_SUPPORT_HT_MODE
)) {
8115 iwl_conf
->is_ht
= 0;
8119 iwl_conf
->is_ht
= 1;
8120 priv
->ps_mode
= (u8
)((ht_conf
->cap
& IEEE80211_HT_CAP_MIMO_PS
) >> 2);
8122 if (ht_conf
->cap
& IEEE80211_HT_CAP_SGI_20
)
8123 iwl_conf
->sgf
|= 0x1;
8124 if (ht_conf
->cap
& IEEE80211_HT_CAP_SGI_40
)
8125 iwl_conf
->sgf
|= 0x2;
8127 iwl_conf
->is_green_field
= !!(ht_conf
->cap
& IEEE80211_HT_CAP_GRN_FLD
);
8128 iwl_conf
->max_amsdu_size
=
8129 !!(ht_conf
->cap
& IEEE80211_HT_CAP_MAX_AMSDU
);
8130 iwl_conf
->supported_chan_width
=
8131 !!(ht_conf
->cap
& IEEE80211_HT_CAP_SUP_WIDTH
);
8132 iwl_conf
->tx_mimo_ps_mode
=
8133 (u8
)((ht_conf
->cap
& IEEE80211_HT_CAP_MIMO_PS
) >> 2);
8134 memcpy(iwl_conf
->supp_mcs_set
, ht_conf
->supp_mcs_set
, 16);
8136 iwl_conf
->control_channel
= ht_bss_conf
->primary_channel
;
8137 iwl_conf
->extension_chan_offset
=
8138 ht_bss_conf
->bss_cap
& IEEE80211_HT_IE_CHA_SEC_OFFSET
;
8139 iwl_conf
->tx_chan_width
=
8140 !!(ht_bss_conf
->bss_cap
& IEEE80211_HT_IE_CHA_WIDTH
);
8141 iwl_conf
->ht_protection
=
8142 ht_bss_conf
->bss_op_mode
& IEEE80211_HT_IE_HT_PROTECTION
;
8143 iwl_conf
->non_GF_STA_present
=
8144 !!(ht_bss_conf
->bss_op_mode
& IEEE80211_HT_IE_NON_GF_STA_PRSNT
);
8146 IWL_DEBUG_MAC80211("control channel %d\n",
8147 iwl_conf
->control_channel
);
8148 IWL_DEBUG_MAC80211("leave\n");
8151 static int iwl4965_mac_conf_ht(struct ieee80211_hw
*hw
,
8152 struct ieee80211_conf
*conf
)
8154 struct iwl4965_priv
*priv
= hw
->priv
;
8156 IWL_DEBUG_MAC80211("enter: \n");
8158 iwl4965_ht_info_fill(conf
, priv
);
8159 iwl4965_set_rxon_chain(priv
);
8161 if (priv
&& priv
->assoc_id
&&
8162 (priv
->iw_mode
== IEEE80211_IF_TYPE_STA
)) {
8163 unsigned long flags
;
8165 spin_lock_irqsave(&priv
->lock
, flags
);
8166 if (priv
->beacon_int
)
8167 queue_work(priv
->workqueue
, &priv
->post_associate
.work
);
8169 priv
->call_post_assoc_from_beacon
= 1;
8170 spin_unlock_irqrestore(&priv
->lock
, flags
);
8173 IWL_DEBUG_MAC80211("leave:\n");
8177 #endif /*CONFIG_IWL4965_HT*/
8179 /*****************************************************************************
8183 *****************************************************************************/
8185 #ifdef CONFIG_IWL4965_DEBUG
8188 * The following adds a new attribute to the sysfs representation
8189 * of this device driver (i.e. a new file in /sys/bus/pci/drivers/iwl/)
8190 * used for controlling the debug level.
8192 * See the level definitions in iwl for details.
8195 static ssize_t
show_debug_level(struct device_driver
*d
, char *buf
)
8197 return sprintf(buf
, "0x%08X\n", iwl4965_debug_level
);
8199 static ssize_t
store_debug_level(struct device_driver
*d
,
8200 const char *buf
, size_t count
)
8202 char *p
= (char *)buf
;
8205 val
= simple_strtoul(p
, &p
, 0);
8207 printk(KERN_INFO DRV_NAME
8208 ": %s is not in hex or decimal form.\n", buf
);
8210 iwl4965_debug_level
= val
;
8212 return strnlen(buf
, count
);
8215 static DRIVER_ATTR(debug_level
, S_IWUSR
| S_IRUGO
,
8216 show_debug_level
, store_debug_level
);
8218 #endif /* CONFIG_IWL4965_DEBUG */
8220 static ssize_t
show_rf_kill(struct device
*d
,
8221 struct device_attribute
*attr
, char *buf
)
8224 * 0 - RF kill not enabled
8225 * 1 - SW based RF kill active (sysfs)
8226 * 2 - HW based RF kill active
8227 * 3 - Both HW and SW based RF kill active
8229 struct iwl4965_priv
*priv
= (struct iwl4965_priv
*)d
->driver_data
;
8230 int val
= (test_bit(STATUS_RF_KILL_SW
, &priv
->status
) ? 0x1 : 0x0) |
8231 (test_bit(STATUS_RF_KILL_HW
, &priv
->status
) ? 0x2 : 0x0);
8233 return sprintf(buf
, "%i\n", val
);
8236 static ssize_t
store_rf_kill(struct device
*d
,
8237 struct device_attribute
*attr
,
8238 const char *buf
, size_t count
)
8240 struct iwl4965_priv
*priv
= (struct iwl4965_priv
*)d
->driver_data
;
8242 mutex_lock(&priv
->mutex
);
8243 iwl4965_radio_kill_sw(priv
, buf
[0] == '1');
8244 mutex_unlock(&priv
->mutex
);
8249 static DEVICE_ATTR(rf_kill
, S_IWUSR
| S_IRUGO
, show_rf_kill
, store_rf_kill
);
8251 static ssize_t
show_temperature(struct device
*d
,
8252 struct device_attribute
*attr
, char *buf
)
8254 struct iwl4965_priv
*priv
= (struct iwl4965_priv
*)d
->driver_data
;
8256 if (!iwl4965_is_alive(priv
))
8259 return sprintf(buf
, "%d\n", iwl4965_hw_get_temperature(priv
));
8262 static DEVICE_ATTR(temperature
, S_IRUGO
, show_temperature
, NULL
);
8264 static ssize_t
show_rs_window(struct device
*d
,
8265 struct device_attribute
*attr
,
8268 struct iwl4965_priv
*priv
= d
->driver_data
;
8269 return iwl4965_fill_rs_info(priv
->hw
, buf
, IWL_AP_ID
);
8271 static DEVICE_ATTR(rs_window
, S_IRUGO
, show_rs_window
, NULL
);
8273 static ssize_t
show_tx_power(struct device
*d
,
8274 struct device_attribute
*attr
, char *buf
)
8276 struct iwl4965_priv
*priv
= (struct iwl4965_priv
*)d
->driver_data
;
8277 return sprintf(buf
, "%d\n", priv
->user_txpower_limit
);
8280 static ssize_t
store_tx_power(struct device
*d
,
8281 struct device_attribute
*attr
,
8282 const char *buf
, size_t count
)
8284 struct iwl4965_priv
*priv
= (struct iwl4965_priv
*)d
->driver_data
;
8285 char *p
= (char *)buf
;
8288 val
= simple_strtoul(p
, &p
, 10);
8290 printk(KERN_INFO DRV_NAME
8291 ": %s is not in decimal form.\n", buf
);
8293 iwl4965_hw_reg_set_txpower(priv
, val
);
8298 static DEVICE_ATTR(tx_power
, S_IWUSR
| S_IRUGO
, show_tx_power
, store_tx_power
);
8300 static ssize_t
show_flags(struct device
*d
,
8301 struct device_attribute
*attr
, char *buf
)
8303 struct iwl4965_priv
*priv
= (struct iwl4965_priv
*)d
->driver_data
;
8305 return sprintf(buf
, "0x%04X\n", priv
->active_rxon
.flags
);
8308 static ssize_t
store_flags(struct device
*d
,
8309 struct device_attribute
*attr
,
8310 const char *buf
, size_t count
)
8312 struct iwl4965_priv
*priv
= (struct iwl4965_priv
*)d
->driver_data
;
8313 u32 flags
= simple_strtoul(buf
, NULL
, 0);
8315 mutex_lock(&priv
->mutex
);
8316 if (le32_to_cpu(priv
->staging_rxon
.flags
) != flags
) {
8317 /* Cancel any currently running scans... */
8318 if (iwl4965_scan_cancel_timeout(priv
, 100))
8319 IWL_WARNING("Could not cancel scan.\n");
8321 IWL_DEBUG_INFO("Committing rxon.flags = 0x%04X\n",
8323 priv
->staging_rxon
.flags
= cpu_to_le32(flags
);
8324 iwl4965_commit_rxon(priv
);
8327 mutex_unlock(&priv
->mutex
);
8332 static DEVICE_ATTR(flags
, S_IWUSR
| S_IRUGO
, show_flags
, store_flags
);
8334 static ssize_t
show_filter_flags(struct device
*d
,
8335 struct device_attribute
*attr
, char *buf
)
8337 struct iwl4965_priv
*priv
= (struct iwl4965_priv
*)d
->driver_data
;
8339 return sprintf(buf
, "0x%04X\n",
8340 le32_to_cpu(priv
->active_rxon
.filter_flags
));
8343 static ssize_t
store_filter_flags(struct device
*d
,
8344 struct device_attribute
*attr
,
8345 const char *buf
, size_t count
)
8347 struct iwl4965_priv
*priv
= (struct iwl4965_priv
*)d
->driver_data
;
8348 u32 filter_flags
= simple_strtoul(buf
, NULL
, 0);
8350 mutex_lock(&priv
->mutex
);
8351 if (le32_to_cpu(priv
->staging_rxon
.filter_flags
) != filter_flags
) {
8352 /* Cancel any currently running scans... */
8353 if (iwl4965_scan_cancel_timeout(priv
, 100))
8354 IWL_WARNING("Could not cancel scan.\n");
8356 IWL_DEBUG_INFO("Committing rxon.filter_flags = "
8357 "0x%04X\n", filter_flags
);
8358 priv
->staging_rxon
.filter_flags
=
8359 cpu_to_le32(filter_flags
);
8360 iwl4965_commit_rxon(priv
);
8363 mutex_unlock(&priv
->mutex
);
8368 static DEVICE_ATTR(filter_flags
, S_IWUSR
| S_IRUGO
, show_filter_flags
,
8369 store_filter_flags
);
8371 #ifdef CONFIG_IWL4965_SPECTRUM_MEASUREMENT
8373 static ssize_t
show_measurement(struct device
*d
,
8374 struct device_attribute
*attr
, char *buf
)
8376 struct iwl4965_priv
*priv
= dev_get_drvdata(d
);
8377 struct iwl4965_spectrum_notification measure_report
;
8378 u32 size
= sizeof(measure_report
), len
= 0, ofs
= 0;
8379 u8
*data
= (u8
*) & measure_report
;
8380 unsigned long flags
;
8382 spin_lock_irqsave(&priv
->lock
, flags
);
8383 if (!(priv
->measurement_status
& MEASUREMENT_READY
)) {
8384 spin_unlock_irqrestore(&priv
->lock
, flags
);
8387 memcpy(&measure_report
, &priv
->measure_report
, size
);
8388 priv
->measurement_status
= 0;
8389 spin_unlock_irqrestore(&priv
->lock
, flags
);
8391 while (size
&& (PAGE_SIZE
- len
)) {
8392 hex_dump_to_buffer(data
+ ofs
, size
, 16, 1, buf
+ len
,
8393 PAGE_SIZE
- len
, 1);
8395 if (PAGE_SIZE
- len
)
8399 size
-= min(size
, 16U);
8405 static ssize_t
store_measurement(struct device
*d
,
8406 struct device_attribute
*attr
,
8407 const char *buf
, size_t count
)
8409 struct iwl4965_priv
*priv
= dev_get_drvdata(d
);
8410 struct ieee80211_measurement_params params
= {
8411 .channel
= le16_to_cpu(priv
->active_rxon
.channel
),
8412 .start_time
= cpu_to_le64(priv
->last_tsf
),
8413 .duration
= cpu_to_le16(1),
8415 u8 type
= IWL_MEASURE_BASIC
;
8421 strncpy(buffer
, buf
, min(sizeof(buffer
), count
));
8422 channel
= simple_strtoul(p
, NULL
, 0);
8424 params
.channel
= channel
;
8427 while (*p
&& *p
!= ' ')
8430 type
= simple_strtoul(p
+ 1, NULL
, 0);
8433 IWL_DEBUG_INFO("Invoking measurement of type %d on "
8434 "channel %d (for '%s')\n", type
, params
.channel
, buf
);
8435 iwl4965_get_measurement(priv
, ¶ms
, type
);
8440 static DEVICE_ATTR(measurement
, S_IRUSR
| S_IWUSR
,
8441 show_measurement
, store_measurement
);
8442 #endif /* CONFIG_IWL4965_SPECTRUM_MEASUREMENT */
8444 static ssize_t
store_retry_rate(struct device
*d
,
8445 struct device_attribute
*attr
,
8446 const char *buf
, size_t count
)
8448 struct iwl4965_priv
*priv
= dev_get_drvdata(d
);
8450 priv
->retry_rate
= simple_strtoul(buf
, NULL
, 0);
8451 if (priv
->retry_rate
<= 0)
8452 priv
->retry_rate
= 1;
8457 static ssize_t
show_retry_rate(struct device
*d
,
8458 struct device_attribute
*attr
, char *buf
)
8460 struct iwl4965_priv
*priv
= dev_get_drvdata(d
);
8461 return sprintf(buf
, "%d", priv
->retry_rate
);
8464 static DEVICE_ATTR(retry_rate
, S_IWUSR
| S_IRUSR
, show_retry_rate
,
8467 static ssize_t
store_power_level(struct device
*d
,
8468 struct device_attribute
*attr
,
8469 const char *buf
, size_t count
)
8471 struct iwl4965_priv
*priv
= dev_get_drvdata(d
);
8475 mode
= simple_strtoul(buf
, NULL
, 0);
8476 mutex_lock(&priv
->mutex
);
8478 if (!iwl4965_is_ready(priv
)) {
8483 if ((mode
< 1) || (mode
> IWL_POWER_LIMIT
) || (mode
== IWL_POWER_AC
))
8484 mode
= IWL_POWER_AC
;
8486 mode
|= IWL_POWER_ENABLED
;
8488 if (mode
!= priv
->power_mode
) {
8489 rc
= iwl4965_send_power_mode(priv
, IWL_POWER_LEVEL(mode
));
8491 IWL_DEBUG_MAC80211("failed setting power mode.\n");
8494 priv
->power_mode
= mode
;
8500 mutex_unlock(&priv
->mutex
);
8504 #define MAX_WX_STRING 80
8506 /* Values are in microsecond */
8507 static const s32 timeout_duration
[] = {
8514 static const s32 period_duration
[] = {
8522 static ssize_t
show_power_level(struct device
*d
,
8523 struct device_attribute
*attr
, char *buf
)
8525 struct iwl4965_priv
*priv
= dev_get_drvdata(d
);
8526 int level
= IWL_POWER_LEVEL(priv
->power_mode
);
8529 p
+= sprintf(p
, "%d ", level
);
8531 case IWL_POWER_MODE_CAM
:
8533 p
+= sprintf(p
, "(AC)");
8535 case IWL_POWER_BATTERY
:
8536 p
+= sprintf(p
, "(BATTERY)");
8540 "(Timeout %dms, Period %dms)",
8541 timeout_duration
[level
- 1] / 1000,
8542 period_duration
[level
- 1] / 1000);
8545 if (!(priv
->power_mode
& IWL_POWER_ENABLED
))
8546 p
+= sprintf(p
, " OFF\n");
8548 p
+= sprintf(p
, " \n");
8550 return (p
- buf
+ 1);
8554 static DEVICE_ATTR(power_level
, S_IWUSR
| S_IRUSR
, show_power_level
,
8557 static ssize_t
show_channels(struct device
*d
,
8558 struct device_attribute
*attr
, char *buf
)
8560 /* all this shit doesn't belong into sysfs anyway */
8564 static DEVICE_ATTR(channels
, S_IRUSR
, show_channels
, NULL
);
8566 static ssize_t
show_statistics(struct device
*d
,
8567 struct device_attribute
*attr
, char *buf
)
8569 struct iwl4965_priv
*priv
= dev_get_drvdata(d
);
8570 u32 size
= sizeof(struct iwl4965_notif_statistics
);
8571 u32 len
= 0, ofs
= 0;
8572 u8
*data
= (u8
*) & priv
->statistics
;
8575 if (!iwl4965_is_alive(priv
))
8578 mutex_lock(&priv
->mutex
);
8579 rc
= iwl4965_send_statistics_request(priv
);
8580 mutex_unlock(&priv
->mutex
);
8584 "Error sending statistics request: 0x%08X\n", rc
);
8588 while (size
&& (PAGE_SIZE
- len
)) {
8589 hex_dump_to_buffer(data
+ ofs
, size
, 16, 1, buf
+ len
,
8590 PAGE_SIZE
- len
, 1);
8592 if (PAGE_SIZE
- len
)
8596 size
-= min(size
, 16U);
8602 static DEVICE_ATTR(statistics
, S_IRUGO
, show_statistics
, NULL
);
8604 static ssize_t
show_antenna(struct device
*d
,
8605 struct device_attribute
*attr
, char *buf
)
8607 struct iwl4965_priv
*priv
= dev_get_drvdata(d
);
8609 if (!iwl4965_is_alive(priv
))
8612 return sprintf(buf
, "%d\n", priv
->antenna
);
8615 static ssize_t
store_antenna(struct device
*d
,
8616 struct device_attribute
*attr
,
8617 const char *buf
, size_t count
)
8620 struct iwl4965_priv
*priv
= dev_get_drvdata(d
);
8625 if (sscanf(buf
, "%1i", &ant
) != 1) {
8626 IWL_DEBUG_INFO("not in hex or decimal form.\n");
8630 if ((ant
>= 0) && (ant
<= 2)) {
8631 IWL_DEBUG_INFO("Setting antenna select to %d.\n", ant
);
8632 priv
->antenna
= (enum iwl4965_antenna
)ant
;
8634 IWL_DEBUG_INFO("Bad antenna select value %d.\n", ant
);
8640 static DEVICE_ATTR(antenna
, S_IWUSR
| S_IRUGO
, show_antenna
, store_antenna
);
8642 static ssize_t
show_status(struct device
*d
,
8643 struct device_attribute
*attr
, char *buf
)
8645 struct iwl4965_priv
*priv
= (struct iwl4965_priv
*)d
->driver_data
;
8646 if (!iwl4965_is_alive(priv
))
8648 return sprintf(buf
, "0x%08x\n", (int)priv
->status
);
8651 static DEVICE_ATTR(status
, S_IRUGO
, show_status
, NULL
);
8653 static ssize_t
dump_error_log(struct device
*d
,
8654 struct device_attribute
*attr
,
8655 const char *buf
, size_t count
)
8657 char *p
= (char *)buf
;
8660 iwl4965_dump_nic_error_log((struct iwl4965_priv
*)d
->driver_data
);
8662 return strnlen(buf
, count
);
8665 static DEVICE_ATTR(dump_errors
, S_IWUSR
, NULL
, dump_error_log
);
8667 static ssize_t
dump_event_log(struct device
*d
,
8668 struct device_attribute
*attr
,
8669 const char *buf
, size_t count
)
8671 char *p
= (char *)buf
;
8674 iwl4965_dump_nic_event_log((struct iwl4965_priv
*)d
->driver_data
);
8676 return strnlen(buf
, count
);
8679 static DEVICE_ATTR(dump_events
, S_IWUSR
, NULL
, dump_event_log
);
8681 /*****************************************************************************
8683 * driver setup and teardown
8685 *****************************************************************************/
8687 static void iwl4965_setup_deferred_work(struct iwl4965_priv
*priv
)
8689 priv
->workqueue
= create_workqueue(DRV_NAME
);
8691 init_waitqueue_head(&priv
->wait_command_queue
);
8693 INIT_WORK(&priv
->up
, iwl4965_bg_up
);
8694 INIT_WORK(&priv
->restart
, iwl4965_bg_restart
);
8695 INIT_WORK(&priv
->rx_replenish
, iwl4965_bg_rx_replenish
);
8696 INIT_WORK(&priv
->scan_completed
, iwl4965_bg_scan_completed
);
8697 INIT_WORK(&priv
->request_scan
, iwl4965_bg_request_scan
);
8698 INIT_WORK(&priv
->abort_scan
, iwl4965_bg_abort_scan
);
8699 INIT_WORK(&priv
->rf_kill
, iwl4965_bg_rf_kill
);
8700 INIT_WORK(&priv
->beacon_update
, iwl4965_bg_beacon_update
);
8701 INIT_DELAYED_WORK(&priv
->post_associate
, iwl4965_bg_post_associate
);
8702 INIT_DELAYED_WORK(&priv
->init_alive_start
, iwl4965_bg_init_alive_start
);
8703 INIT_DELAYED_WORK(&priv
->alive_start
, iwl4965_bg_alive_start
);
8704 INIT_DELAYED_WORK(&priv
->scan_check
, iwl4965_bg_scan_check
);
8706 iwl4965_hw_setup_deferred_work(priv
);
8708 tasklet_init(&priv
->irq_tasklet
, (void (*)(unsigned long))
8709 iwl4965_irq_tasklet
, (unsigned long)priv
);
8712 static void iwl4965_cancel_deferred_work(struct iwl4965_priv
*priv
)
8714 iwl4965_hw_cancel_deferred_work(priv
);
8716 cancel_delayed_work_sync(&priv
->init_alive_start
);
8717 cancel_delayed_work(&priv
->scan_check
);
8718 cancel_delayed_work(&priv
->alive_start
);
8719 cancel_delayed_work(&priv
->post_associate
);
8720 cancel_work_sync(&priv
->beacon_update
);
8723 static struct attribute
*iwl4965_sysfs_entries
[] = {
8724 &dev_attr_antenna
.attr
,
8725 &dev_attr_channels
.attr
,
8726 &dev_attr_dump_errors
.attr
,
8727 &dev_attr_dump_events
.attr
,
8728 &dev_attr_flags
.attr
,
8729 &dev_attr_filter_flags
.attr
,
8730 #ifdef CONFIG_IWL4965_SPECTRUM_MEASUREMENT
8731 &dev_attr_measurement
.attr
,
8733 &dev_attr_power_level
.attr
,
8734 &dev_attr_retry_rate
.attr
,
8735 &dev_attr_rf_kill
.attr
,
8736 &dev_attr_rs_window
.attr
,
8737 &dev_attr_statistics
.attr
,
8738 &dev_attr_status
.attr
,
8739 &dev_attr_temperature
.attr
,
8740 &dev_attr_tx_power
.attr
,
8745 static struct attribute_group iwl4965_attribute_group
= {
8746 .name
= NULL
, /* put in device directory */
8747 .attrs
= iwl4965_sysfs_entries
,
8750 static struct ieee80211_ops iwl4965_hw_ops
= {
8751 .tx
= iwl4965_mac_tx
,
8752 .start
= iwl4965_mac_start
,
8753 .stop
= iwl4965_mac_stop
,
8754 .add_interface
= iwl4965_mac_add_interface
,
8755 .remove_interface
= iwl4965_mac_remove_interface
,
8756 .config
= iwl4965_mac_config
,
8757 .config_interface
= iwl4965_mac_config_interface
,
8758 .configure_filter
= iwl4965_configure_filter
,
8759 .set_key
= iwl4965_mac_set_key
,
8760 .get_stats
= iwl4965_mac_get_stats
,
8761 .get_tx_stats
= iwl4965_mac_get_tx_stats
,
8762 .conf_tx
= iwl4965_mac_conf_tx
,
8763 .get_tsf
= iwl4965_mac_get_tsf
,
8764 .reset_tsf
= iwl4965_mac_reset_tsf
,
8765 .beacon_update
= iwl4965_mac_beacon_update
,
8766 .bss_info_changed
= iwl4965_bss_info_changed
,
8767 #ifdef CONFIG_IWL4965_HT
8768 .conf_ht
= iwl4965_mac_conf_ht
,
8769 .ampdu_action
= iwl4965_mac_ampdu_action
,
8770 #endif /* CONFIG_IWL4965_HT */
8771 .hw_scan
= iwl4965_mac_hw_scan
8774 static int iwl4965_pci_probe(struct pci_dev
*pdev
, const struct pci_device_id
*ent
)
8777 struct iwl4965_priv
*priv
;
8778 struct ieee80211_hw
*hw
;
8780 DECLARE_MAC_BUF(mac
);
8782 /* Disabling hardware scan means that mac80211 will perform scans
8783 * "the hard way", rather than using device's scan. */
8784 if (iwl4965_param_disable_hw_scan
) {
8785 IWL_DEBUG_INFO("Disabling hw_scan\n");
8786 iwl4965_hw_ops
.hw_scan
= NULL
;
8789 if ((iwl4965_param_queues_num
> IWL_MAX_NUM_QUEUES
) ||
8790 (iwl4965_param_queues_num
< IWL_MIN_NUM_QUEUES
)) {
8791 IWL_ERROR("invalid queues_num, should be between %d and %d\n",
8792 IWL_MIN_NUM_QUEUES
, IWL_MAX_NUM_QUEUES
);
8797 /* mac80211 allocates memory for this device instance, including
8798 * space for this driver's private structure */
8799 hw
= ieee80211_alloc_hw(sizeof(struct iwl4965_priv
), &iwl4965_hw_ops
);
8801 IWL_ERROR("Can not allocate network device\n");
8805 SET_IEEE80211_DEV(hw
, &pdev
->dev
);
8807 hw
->rate_control_algorithm
= "iwl-4965-rs";
8809 IWL_DEBUG_INFO("*** LOAD DRIVER ***\n");
8813 priv
->pci_dev
= pdev
;
8814 priv
->antenna
= (enum iwl4965_antenna
)iwl4965_param_antenna
;
8815 #ifdef CONFIG_IWL4965_DEBUG
8816 iwl4965_debug_level
= iwl4965_param_debug
;
8817 atomic_set(&priv
->restrict_refcnt
, 0);
8819 priv
->retry_rate
= 1;
8821 priv
->ibss_beacon
= NULL
;
8823 /* Tell mac80211 and its clients (e.g. Wireless Extensions)
8824 * the range of signal quality values that we'll provide.
8825 * Negative values for level/noise indicate that we'll provide dBm.
8826 * For WE, at least, non-0 values here *enable* display of values
8827 * in app (iwconfig). */
8828 hw
->max_rssi
= -20; /* signal level, negative indicates dBm */
8829 hw
->max_noise
= -20; /* noise level, negative indicates dBm */
8830 hw
->max_signal
= 100; /* link quality indication (%) */
8832 /* Tell mac80211 our Tx characteristics */
8833 hw
->flags
= IEEE80211_HW_HOST_GEN_BEACON_TEMPLATE
;
8835 /* Default value; 4 EDCA QOS priorities */
8837 #ifdef CONFIG_IWL4965_HT
8838 /* Enhanced value; more queues, to support 11n aggregation */
8840 #endif /* CONFIG_IWL4965_HT */
8842 spin_lock_init(&priv
->lock
);
8843 spin_lock_init(&priv
->power_data
.lock
);
8844 spin_lock_init(&priv
->sta_lock
);
8845 spin_lock_init(&priv
->hcmd_lock
);
8846 spin_lock_init(&priv
->lq_mngr
.lock
);
8848 for (i
= 0; i
< IWL_IBSS_MAC_HASH_SIZE
; i
++)
8849 INIT_LIST_HEAD(&priv
->ibss_mac_hash
[i
]);
8851 INIT_LIST_HEAD(&priv
->free_frames
);
8853 mutex_init(&priv
->mutex
);
8854 if (pci_enable_device(pdev
)) {
8856 goto out_ieee80211_free_hw
;
8859 pci_set_master(pdev
);
8861 /* Clear the driver's (not device's) station table */
8862 iwl4965_clear_stations_table(priv
);
8864 priv
->data_retry_limit
= -1;
8865 priv
->ieee_channels
= NULL
;
8866 priv
->ieee_rates
= NULL
;
8867 priv
->band
= IEEE80211_BAND_2GHZ
;
8869 err
= pci_set_dma_mask(pdev
, DMA_32BIT_MASK
);
8871 err
= pci_set_consistent_dma_mask(pdev
, DMA_32BIT_MASK
);
8873 printk(KERN_WARNING DRV_NAME
": No suitable DMA available.\n");
8874 goto out_pci_disable_device
;
8877 pci_set_drvdata(pdev
, priv
);
8878 err
= pci_request_regions(pdev
, DRV_NAME
);
8880 goto out_pci_disable_device
;
8882 /* We disable the RETRY_TIMEOUT register (0x41) to keep
8883 * PCI Tx retries from interfering with C3 CPU state */
8884 pci_write_config_byte(pdev
, 0x41, 0x00);
8886 priv
->hw_base
= pci_iomap(pdev
, 0, 0);
8887 if (!priv
->hw_base
) {
8889 goto out_pci_release_regions
;
8892 IWL_DEBUG_INFO("pci_resource_len = 0x%08llx\n",
8893 (unsigned long long) pci_resource_len(pdev
, 0));
8894 IWL_DEBUG_INFO("pci_resource_base = %p\n", priv
->hw_base
);
8896 /* Initialize module parameter values here */
8898 /* Disable radio (SW RF KILL) via parameter when loading driver */
8899 if (iwl4965_param_disable
) {
8900 set_bit(STATUS_RF_KILL_SW
, &priv
->status
);
8901 IWL_DEBUG_INFO("Radio disabled.\n");
8904 priv
->iw_mode
= IEEE80211_IF_TYPE_STA
;
8907 priv
->use_ant_b_for_management_frame
= 1; /* start with ant B */
8908 priv
->valid_antenna
= 0x7; /* assume all 3 connected */
8909 priv
->ps_mode
= IWL_MIMO_PS_NONE
;
8911 /* Choose which receivers/antennas to use */
8912 iwl4965_set_rxon_chain(priv
);
8914 printk(KERN_INFO DRV_NAME
8915 ": Detected Intel Wireless WiFi Link 4965AGN\n");
8917 /* Device-specific setup */
8918 if (iwl4965_hw_set_hw_setting(priv
)) {
8919 IWL_ERROR("failed to set hw settings\n");
8923 if (iwl4965_param_qos_enable
)
8924 priv
->qos_data
.qos_enable
= 1;
8926 iwl4965_reset_qos(priv
);
8928 priv
->qos_data
.qos_active
= 0;
8929 priv
->qos_data
.qos_cap
.val
= 0;
8931 iwl4965_set_rxon_channel(priv
, IEEE80211_BAND_2GHZ
, 6);
8932 iwl4965_setup_deferred_work(priv
);
8933 iwl4965_setup_rx_handlers(priv
);
8935 priv
->rates_mask
= IWL_RATES_MASK
;
8936 /* If power management is turned on, default to AC mode */
8937 priv
->power_mode
= IWL_POWER_AC
;
8938 priv
->user_txpower_limit
= IWL_DEFAULT_TX_POWER
;
8940 iwl4965_disable_interrupts(priv
);
8942 err
= sysfs_create_group(&pdev
->dev
.kobj
, &iwl4965_attribute_group
);
8944 IWL_ERROR("failed to create sysfs device attributes\n");
8945 goto out_release_irq
;
8949 iwl4965_set_bit(priv
, CSR_GIO_CHICKEN_BITS
,
8950 CSR_GIO_CHICKEN_BITS_REG_BIT_DIS_L0S_EXIT_TIMER
);
8952 iwl4965_set_bit(priv
, CSR_GP_CNTRL
, CSR_GP_CNTRL_REG_FLAG_INIT_DONE
);
8953 err
= iwl4965_poll_bit(priv
, CSR_GP_CNTRL
,
8954 CSR_GP_CNTRL_REG_FLAG_MAC_CLOCK_READY
,
8955 CSR_GP_CNTRL_REG_FLAG_MAC_CLOCK_READY
, 25000);
8957 IWL_DEBUG_INFO("Failed to init the card\n");
8958 goto out_remove_sysfs
;
8960 /* Read the EEPROM */
8961 err
= iwl4965_eeprom_init(priv
);
8963 IWL_ERROR("Unable to init EEPROM\n");
8964 goto out_remove_sysfs
;
8966 /* MAC Address location in EEPROM same for 3945/4965 */
8967 get_eeprom_mac(priv
, priv
->mac_addr
);
8968 IWL_DEBUG_INFO("MAC address: %s\n", print_mac(mac
, priv
->mac_addr
));
8969 SET_IEEE80211_PERM_ADDR(priv
->hw
, priv
->mac_addr
);
8971 err
= iwl4965_init_channel_map(priv
);
8973 IWL_ERROR("initializing regulatory failed: %d\n", err
);
8974 goto out_remove_sysfs
;
8977 err
= iwl4965_init_geos(priv
);
8979 IWL_ERROR("initializing geos failed: %d\n", err
);
8980 goto out_free_channel_map
;
8983 iwl4965_rate_control_register(priv
->hw
);
8984 err
= ieee80211_register_hw(priv
->hw
);
8986 IWL_ERROR("Failed to register network device (error %d)\n", err
);
8990 priv
->hw
->conf
.beacon_int
= 100;
8991 priv
->mac80211_registered
= 1;
8992 pci_save_state(pdev
);
8993 pci_disable_device(pdev
);
8998 iwl4965_free_geos(priv
);
8999 out_free_channel_map
:
9000 iwl4965_free_channel_map(priv
);
9002 sysfs_remove_group(&pdev
->dev
.kobj
, &iwl4965_attribute_group
);
9005 destroy_workqueue(priv
->workqueue
);
9006 priv
->workqueue
= NULL
;
9007 iwl4965_unset_hw_setting(priv
);
9010 pci_iounmap(pdev
, priv
->hw_base
);
9011 out_pci_release_regions
:
9012 pci_release_regions(pdev
);
9013 out_pci_disable_device
:
9014 pci_disable_device(pdev
);
9015 pci_set_drvdata(pdev
, NULL
);
9016 out_ieee80211_free_hw
:
9017 ieee80211_free_hw(priv
->hw
);
9022 static void iwl4965_pci_remove(struct pci_dev
*pdev
)
9024 struct iwl4965_priv
*priv
= pci_get_drvdata(pdev
);
9025 struct list_head
*p
, *q
;
9031 IWL_DEBUG_INFO("*** UNLOAD DRIVER ***\n");
9033 set_bit(STATUS_EXIT_PENDING
, &priv
->status
);
9037 /* Free MAC hash list for ADHOC */
9038 for (i
= 0; i
< IWL_IBSS_MAC_HASH_SIZE
; i
++) {
9039 list_for_each_safe(p
, q
, &priv
->ibss_mac_hash
[i
]) {
9041 kfree(list_entry(p
, struct iwl4965_ibss_seq
, list
));
9045 sysfs_remove_group(&pdev
->dev
.kobj
, &iwl4965_attribute_group
);
9047 iwl4965_dealloc_ucode_pci(priv
);
9050 iwl4965_rx_queue_free(priv
, &priv
->rxq
);
9051 iwl4965_hw_txq_ctx_free(priv
);
9053 iwl4965_unset_hw_setting(priv
);
9054 iwl4965_clear_stations_table(priv
);
9056 if (priv
->mac80211_registered
) {
9057 ieee80211_unregister_hw(priv
->hw
);
9058 iwl4965_rate_control_unregister(priv
->hw
);
9061 /*netif_stop_queue(dev); */
9062 flush_workqueue(priv
->workqueue
);
9064 /* ieee80211_unregister_hw calls iwl4965_mac_stop, which flushes
9065 * priv->workqueue... so we can't take down the workqueue
9067 destroy_workqueue(priv
->workqueue
);
9068 priv
->workqueue
= NULL
;
9070 pci_iounmap(pdev
, priv
->hw_base
);
9071 pci_release_regions(pdev
);
9072 pci_disable_device(pdev
);
9073 pci_set_drvdata(pdev
, NULL
);
9075 iwl4965_free_channel_map(priv
);
9076 iwl4965_free_geos(priv
);
9078 if (priv
->ibss_beacon
)
9079 dev_kfree_skb(priv
->ibss_beacon
);
9081 ieee80211_free_hw(priv
->hw
);
9086 static int iwl4965_pci_suspend(struct pci_dev
*pdev
, pm_message_t state
)
9088 struct iwl4965_priv
*priv
= pci_get_drvdata(pdev
);
9090 if (priv
->is_open
) {
9091 set_bit(STATUS_IN_SUSPEND
, &priv
->status
);
9092 iwl4965_mac_stop(priv
->hw
);
9096 pci_set_power_state(pdev
, PCI_D3hot
);
9101 static int iwl4965_pci_resume(struct pci_dev
*pdev
)
9103 struct iwl4965_priv
*priv
= pci_get_drvdata(pdev
);
9105 pci_set_power_state(pdev
, PCI_D0
);
9108 iwl4965_mac_start(priv
->hw
);
9110 clear_bit(STATUS_IN_SUSPEND
, &priv
->status
);
9114 #endif /* CONFIG_PM */
9116 /*****************************************************************************
9118 * driver and module entry point
9120 *****************************************************************************/
9122 static struct pci_driver iwl4965_driver
= {
9124 .id_table
= iwl4965_hw_card_ids
,
9125 .probe
= iwl4965_pci_probe
,
9126 .remove
= __devexit_p(iwl4965_pci_remove
),
9128 .suspend
= iwl4965_pci_suspend
,
9129 .resume
= iwl4965_pci_resume
,
9133 static int __init
iwl4965_init(void)
9137 printk(KERN_INFO DRV_NAME
": " DRV_DESCRIPTION
", " DRV_VERSION
"\n");
9138 printk(KERN_INFO DRV_NAME
": " DRV_COPYRIGHT
"\n");
9139 ret
= pci_register_driver(&iwl4965_driver
);
9141 IWL_ERROR("Unable to initialize PCI module\n");
9144 #ifdef CONFIG_IWL4965_DEBUG
9145 ret
= driver_create_file(&iwl4965_driver
.driver
, &driver_attr_debug_level
);
9147 IWL_ERROR("Unable to create driver sysfs file\n");
9148 pci_unregister_driver(&iwl4965_driver
);
9156 static void __exit
iwl4965_exit(void)
9158 #ifdef CONFIG_IWL4965_DEBUG
9159 driver_remove_file(&iwl4965_driver
.driver
, &driver_attr_debug_level
);
9161 pci_unregister_driver(&iwl4965_driver
);
9164 module_param_named(antenna
, iwl4965_param_antenna
, int, 0444);
9165 MODULE_PARM_DESC(antenna
, "select antenna (1=Main, 2=Aux, default 0 [both])");
9166 module_param_named(disable
, iwl4965_param_disable
, int, 0444);
9167 MODULE_PARM_DESC(disable
, "manually disable the radio (default 0 [radio on])");
9168 module_param_named(hwcrypto
, iwl4965_param_hwcrypto
, int, 0444);
9169 MODULE_PARM_DESC(hwcrypto
,
9170 "using hardware crypto engine (default 0 [software])\n");
9171 module_param_named(debug
, iwl4965_param_debug
, int, 0444);
9172 MODULE_PARM_DESC(debug
, "debug output mask");
9173 module_param_named(disable_hw_scan
, iwl4965_param_disable_hw_scan
, int, 0444);
9174 MODULE_PARM_DESC(disable_hw_scan
, "disable hardware scanning (default 0)");
9176 module_param_named(queues_num
, iwl4965_param_queues_num
, int, 0444);
9177 MODULE_PARM_DESC(queues_num
, "number of hw queues.");
9180 module_param_named(qos_enable
, iwl4965_param_qos_enable
, int, 0444);
9181 MODULE_PARM_DESC(qos_enable
, "enable all QoS functionality");
9182 module_param_named(amsdu_size_8K
, iwl4965_param_amsdu_size_8K
, int, 0444);
9183 MODULE_PARM_DESC(amsdu_size_8K
, "enable 8K amsdu size");
9185 module_exit(iwl4965_exit
);
9186 module_init(iwl4965_init
);