2 * This file contains the major functions in WLAN
3 * driver. It includes init, exit, open, close and main
7 #include <linux/moduleparam.h>
8 #include <linux/delay.h>
9 #include <linux/etherdevice.h>
10 #include <linux/netdevice.h>
11 #include <linux/if_arp.h>
12 #include <linux/kthread.h>
13 #include <linux/kfifo.h>
14 #include <linux/stddef.h>
15 #include <linux/ieee80211.h>
16 #include <net/iw_handler.h>
17 #include <net/cfg80211.h>
29 #define DRIVER_RELEASE_VERSION "323.p0"
30 const char lbs_driver_version[] = "COMM-USB8388-" DRIVER_RELEASE_VERSION
37 /* Module parameters */
38 unsigned int lbs_debug;
39 EXPORT_SYMBOL_GPL(lbs_debug);
40 module_param_named(libertas_debug, lbs_debug, int, 0644);
43 /* This global structure is used to send the confirm_sleep command as
44 * fast as possible down to the firmware. */
45 struct cmd_confirm_sleep confirm_sleep;
49 * the table to keep region code
51 u16 lbs_region_code_to_index[MRVDRV_MAX_REGION_CODE] =
52 { 0x10, 0x20, 0x30, 0x31, 0x32, 0x40 };
55 * FW rate table. FW refers to rates by their index in this table, not by the
56 * rate value itself. Values of 0x00 are
59 static u8 fw_data_rates[MAX_RATES] =
60 { 0x02, 0x04, 0x0B, 0x16, 0x00, 0x0C, 0x12,
61 0x18, 0x24, 0x30, 0x48, 0x60, 0x6C, 0x00
65 * @brief use index to get the data rate
67 * @param idx The index of data rate
68 * @return data rate or 0
70 u32 lbs_fw_index_to_data_rate(u8 idx)
72 if (idx >= sizeof(fw_data_rates))
74 return fw_data_rates[idx];
78 * @brief use rate to get the index
80 * @param rate data rate
83 u8 lbs_data_rate_to_fw_index(u32 rate)
90 for (i = 0; i < sizeof(fw_data_rates); i++) {
91 if (rate == fw_data_rates[i])
98 static int lbs_add_rtap(struct lbs_private *priv);
99 static void lbs_remove_rtap(struct lbs_private *priv);
103 * Get function for sysfs attribute rtap
105 static ssize_t lbs_rtap_get(struct device *dev,
106 struct device_attribute *attr, char * buf)
108 struct lbs_private *priv = to_net_dev(dev)->ml_priv;
109 return snprintf(buf, 5, "0x%X\n", priv->monitormode);
113 * Set function for sysfs attribute rtap
115 static ssize_t lbs_rtap_set(struct device *dev,
116 struct device_attribute *attr, const char * buf, size_t count)
119 struct lbs_private *priv = to_net_dev(dev)->ml_priv;
121 sscanf(buf, "%x", &monitor_mode);
123 if (priv->monitormode == monitor_mode)
125 if (!priv->monitormode) {
126 if (priv->infra_open || priv->mesh_open)
128 if (priv->mode == IW_MODE_INFRA)
129 lbs_cmd_80211_deauthenticate(priv,
130 priv->curbssparams.bssid,
131 WLAN_REASON_DEAUTH_LEAVING);
132 else if (priv->mode == IW_MODE_ADHOC)
133 lbs_adhoc_stop(priv);
136 priv->monitormode = monitor_mode;
138 if (!priv->monitormode)
140 priv->monitormode = 0;
141 lbs_remove_rtap(priv);
143 if (priv->currenttxskb) {
144 dev_kfree_skb_any(priv->currenttxskb);
145 priv->currenttxskb = NULL;
148 /* Wake queues, command thread, etc. */
149 lbs_host_to_card_done(priv);
152 lbs_prepare_and_send_command(priv,
153 CMD_802_11_MONITOR_MODE, CMD_ACT_SET,
154 CMD_OPTION_WAITFORRSP, 0, &priv->monitormode);
159 * lbs_rtap attribute to be exported per ethX interface
160 * through sysfs (/sys/class/net/ethX/lbs_rtap)
162 static DEVICE_ATTR(lbs_rtap, 0644, lbs_rtap_get, lbs_rtap_set );
165 * @brief This function opens the ethX interface
167 * @param dev A pointer to net_device structure
168 * @return 0 or -EBUSY if monitor mode active
170 static int lbs_dev_open(struct net_device *dev)
172 struct lbs_private *priv = dev->ml_priv;
175 lbs_deb_enter(LBS_DEB_NET);
177 spin_lock_irq(&priv->driver_lock);
179 if (priv->monitormode) {
184 priv->infra_open = 1;
186 if (priv->connect_status == LBS_CONNECTED)
187 netif_carrier_on(dev);
189 netif_carrier_off(dev);
191 if (!priv->tx_pending_len)
192 netif_wake_queue(dev);
195 spin_unlock_irq(&priv->driver_lock);
196 lbs_deb_leave_args(LBS_DEB_NET, "ret %d", ret);
201 * @brief This function closes the ethX interface
203 * @param dev A pointer to net_device structure
206 static int lbs_eth_stop(struct net_device *dev)
208 struct lbs_private *priv = dev->ml_priv;
210 lbs_deb_enter(LBS_DEB_NET);
212 spin_lock_irq(&priv->driver_lock);
213 priv->infra_open = 0;
214 netif_stop_queue(dev);
215 spin_unlock_irq(&priv->driver_lock);
217 schedule_work(&priv->mcast_work);
219 lbs_deb_leave(LBS_DEB_NET);
223 static void lbs_tx_timeout(struct net_device *dev)
225 struct lbs_private *priv = dev->ml_priv;
227 lbs_deb_enter(LBS_DEB_TX);
229 lbs_pr_err("tx watch dog timeout\n");
231 dev->trans_start = jiffies;
233 if (priv->currenttxskb)
234 lbs_send_tx_feedback(priv, 0);
236 /* XX: Shouldn't we also call into the hw-specific driver
237 to kick it somehow? */
238 lbs_host_to_card_done(priv);
240 /* More often than not, this actually happens because the
241 firmware has crapped itself -- rather than just a very
242 busy medium. So send a harmless command, and if/when
243 _that_ times out, we'll kick it in the head. */
244 lbs_prepare_and_send_command(priv, CMD_802_11_RSSI, 0,
247 lbs_deb_leave(LBS_DEB_TX);
250 void lbs_host_to_card_done(struct lbs_private *priv)
254 lbs_deb_enter(LBS_DEB_THREAD);
256 spin_lock_irqsave(&priv->driver_lock, flags);
258 priv->dnld_sent = DNLD_RES_RECEIVED;
260 /* Wake main thread if commands are pending */
261 if (!priv->cur_cmd || priv->tx_pending_len > 0) {
262 if (!priv->wakeup_dev_required)
263 wake_up_interruptible(&priv->waitq);
266 spin_unlock_irqrestore(&priv->driver_lock, flags);
267 lbs_deb_leave(LBS_DEB_THREAD);
269 EXPORT_SYMBOL_GPL(lbs_host_to_card_done);
271 int lbs_set_mac_address(struct net_device *dev, void *addr)
274 struct lbs_private *priv = dev->ml_priv;
275 struct sockaddr *phwaddr = addr;
276 struct cmd_ds_802_11_mac_address cmd;
278 lbs_deb_enter(LBS_DEB_NET);
280 /* In case it was called from the mesh device */
283 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
284 cmd.action = cpu_to_le16(CMD_ACT_SET);
285 memcpy(cmd.macadd, phwaddr->sa_data, ETH_ALEN);
287 ret = lbs_cmd_with_response(priv, CMD_802_11_MAC_ADDRESS, &cmd);
289 lbs_deb_net("set MAC address failed\n");
293 memcpy(priv->current_addr, phwaddr->sa_data, ETH_ALEN);
294 memcpy(dev->dev_addr, phwaddr->sa_data, ETH_ALEN);
296 memcpy(priv->mesh_dev->dev_addr, phwaddr->sa_data, ETH_ALEN);
299 lbs_deb_leave_args(LBS_DEB_NET, "ret %d", ret);
304 static inline int mac_in_list(unsigned char *list, int list_len,
308 if (!memcmp(list, mac, ETH_ALEN))
317 static int lbs_add_mcast_addrs(struct cmd_ds_mac_multicast_adr *cmd,
318 struct net_device *dev, int nr_addrs)
321 struct dev_mc_list *mc_list;
323 if ((dev->flags & (IFF_UP|IFF_MULTICAST)) != (IFF_UP|IFF_MULTICAST))
326 netif_addr_lock_bh(dev);
327 for (mc_list = dev->mc_list; mc_list; mc_list = mc_list->next) {
328 if (mac_in_list(cmd->maclist, nr_addrs, mc_list->dmi_addr)) {
329 lbs_deb_net("mcast address %s:%pM skipped\n", dev->name,
334 if (i == MRVDRV_MAX_MULTICAST_LIST_SIZE)
336 memcpy(&cmd->maclist[6*i], mc_list->dmi_addr, ETH_ALEN);
337 lbs_deb_net("mcast address %s:%pM added to filter\n", dev->name,
341 netif_addr_unlock_bh(dev);
348 static void lbs_set_mcast_worker(struct work_struct *work)
350 struct lbs_private *priv = container_of(work, struct lbs_private, mcast_work);
351 struct cmd_ds_mac_multicast_adr mcast_cmd;
354 int old_mac_control = priv->mac_control;
356 lbs_deb_enter(LBS_DEB_NET);
358 dev_flags = priv->dev->flags;
360 dev_flags |= priv->mesh_dev->flags;
362 if (dev_flags & IFF_PROMISC) {
363 priv->mac_control |= CMD_ACT_MAC_PROMISCUOUS_ENABLE;
364 priv->mac_control &= ~(CMD_ACT_MAC_ALL_MULTICAST_ENABLE |
365 CMD_ACT_MAC_MULTICAST_ENABLE);
366 goto out_set_mac_control;
367 } else if (dev_flags & IFF_ALLMULTI) {
369 priv->mac_control |= CMD_ACT_MAC_ALL_MULTICAST_ENABLE;
370 priv->mac_control &= ~(CMD_ACT_MAC_PROMISCUOUS_ENABLE |
371 CMD_ACT_MAC_MULTICAST_ENABLE);
372 goto out_set_mac_control;
375 /* Once for priv->dev, again for priv->mesh_dev if it exists */
376 nr_addrs = lbs_add_mcast_addrs(&mcast_cmd, priv->dev, 0);
377 if (nr_addrs >= 0 && priv->mesh_dev)
378 nr_addrs = lbs_add_mcast_addrs(&mcast_cmd, priv->mesh_dev, nr_addrs);
383 int size = offsetof(struct cmd_ds_mac_multicast_adr,
384 maclist[6*nr_addrs]);
386 mcast_cmd.action = cpu_to_le16(CMD_ACT_SET);
387 mcast_cmd.hdr.size = cpu_to_le16(size);
388 mcast_cmd.nr_of_adrs = cpu_to_le16(nr_addrs);
390 lbs_cmd_async(priv, CMD_MAC_MULTICAST_ADR, &mcast_cmd.hdr, size);
392 priv->mac_control |= CMD_ACT_MAC_MULTICAST_ENABLE;
394 priv->mac_control &= ~CMD_ACT_MAC_MULTICAST_ENABLE;
396 priv->mac_control &= ~(CMD_ACT_MAC_PROMISCUOUS_ENABLE |
397 CMD_ACT_MAC_ALL_MULTICAST_ENABLE);
399 if (priv->mac_control != old_mac_control)
400 lbs_set_mac_control(priv);
402 lbs_deb_leave(LBS_DEB_NET);
405 void lbs_set_multicast_list(struct net_device *dev)
407 struct lbs_private *priv = dev->ml_priv;
409 schedule_work(&priv->mcast_work);
413 * @brief This function handles the major jobs in the LBS driver.
414 * It handles all events generated by firmware, RX data received
415 * from firmware and TX data sent from kernel.
417 * @param data A pointer to lbs_thread structure
420 static int lbs_thread(void *data)
422 struct net_device *dev = data;
423 struct lbs_private *priv = dev->ml_priv;
426 lbs_deb_enter(LBS_DEB_THREAD);
428 init_waitqueue_entry(&wait, current);
434 lbs_deb_thread("1: currenttxskb %p, dnld_sent %d\n",
435 priv->currenttxskb, priv->dnld_sent);
437 add_wait_queue(&priv->waitq, &wait);
438 set_current_state(TASK_INTERRUPTIBLE);
439 spin_lock_irq(&priv->driver_lock);
441 if (kthread_should_stop())
442 shouldsleep = 0; /* Bye */
443 else if (priv->surpriseremoved)
444 shouldsleep = 1; /* We need to wait until we're _told_ to die */
445 else if (priv->psstate == PS_STATE_SLEEP)
446 shouldsleep = 1; /* Sleep mode. Nothing we can do till it wakes */
447 else if (priv->cmd_timed_out)
448 shouldsleep = 0; /* Command timed out. Recover */
449 else if (!priv->fw_ready)
450 shouldsleep = 1; /* Firmware not ready. We're waiting for it */
451 else if (priv->dnld_sent)
452 shouldsleep = 1; /* Something is en route to the device already */
453 else if (priv->tx_pending_len > 0)
454 shouldsleep = 0; /* We've a packet to send */
455 else if (priv->resp_len[priv->resp_idx])
456 shouldsleep = 0; /* We have a command response */
457 else if (priv->cur_cmd)
458 shouldsleep = 1; /* Can't send a command; one already running */
459 else if (!list_empty(&priv->cmdpendingq) &&
460 !(priv->wakeup_dev_required))
461 shouldsleep = 0; /* We have a command to send */
462 else if (__kfifo_len(priv->event_fifo))
463 shouldsleep = 0; /* We have an event to process */
465 shouldsleep = 1; /* No command */
468 lbs_deb_thread("sleeping, connect_status %d, "
469 "psmode %d, psstate %d\n",
470 priv->connect_status,
471 priv->psmode, priv->psstate);
472 spin_unlock_irq(&priv->driver_lock);
475 spin_unlock_irq(&priv->driver_lock);
477 lbs_deb_thread("2: currenttxskb %p, dnld_send %d\n",
478 priv->currenttxskb, priv->dnld_sent);
480 set_current_state(TASK_RUNNING);
481 remove_wait_queue(&priv->waitq, &wait);
483 lbs_deb_thread("3: currenttxskb %p, dnld_sent %d\n",
484 priv->currenttxskb, priv->dnld_sent);
486 if (kthread_should_stop()) {
487 lbs_deb_thread("break from main thread\n");
491 if (priv->surpriseremoved) {
492 lbs_deb_thread("adapter removed; waiting to die...\n");
496 lbs_deb_thread("4: currenttxskb %p, dnld_sent %d\n",
497 priv->currenttxskb, priv->dnld_sent);
499 /* Process any pending command response */
500 spin_lock_irq(&priv->driver_lock);
501 resp_idx = priv->resp_idx;
502 if (priv->resp_len[resp_idx]) {
503 spin_unlock_irq(&priv->driver_lock);
504 lbs_process_command_response(priv,
505 priv->resp_buf[resp_idx],
506 priv->resp_len[resp_idx]);
507 spin_lock_irq(&priv->driver_lock);
508 priv->resp_len[resp_idx] = 0;
510 spin_unlock_irq(&priv->driver_lock);
512 /* Process hardware events, e.g. card removed, link lost */
513 spin_lock_irq(&priv->driver_lock);
514 while (__kfifo_len(priv->event_fifo)) {
516 __kfifo_get(priv->event_fifo, (unsigned char *) &event,
518 spin_unlock_irq(&priv->driver_lock);
519 lbs_process_event(priv, event);
520 spin_lock_irq(&priv->driver_lock);
522 spin_unlock_irq(&priv->driver_lock);
524 if (priv->wakeup_dev_required) {
525 lbs_deb_thread("Waking up device...\n");
527 if (priv->exit_deep_sleep(priv))
528 lbs_deb_thread("Wakeup device failed\n");
532 /* command timeout stuff */
533 if (priv->cmd_timed_out && priv->cur_cmd) {
534 struct cmd_ctrl_node *cmdnode = priv->cur_cmd;
536 if (++priv->nr_retries > 3) {
537 lbs_pr_info("Excessive timeouts submitting "
539 le16_to_cpu(cmdnode->cmdbuf->command));
540 lbs_complete_command(priv, cmdnode, -ETIMEDOUT);
541 priv->nr_retries = 0;
542 if (priv->reset_card)
543 priv->reset_card(priv);
545 priv->cur_cmd = NULL;
546 priv->dnld_sent = DNLD_RES_RECEIVED;
547 lbs_pr_info("requeueing command 0x%04x due "
548 "to timeout (#%d)\n",
549 le16_to_cpu(cmdnode->cmdbuf->command),
552 /* Stick it back at the _top_ of the pending queue
553 for immediate resubmission */
554 list_add(&cmdnode->list, &priv->cmdpendingq);
557 priv->cmd_timed_out = 0;
564 /* Check if we need to confirm Sleep Request received previously */
565 if (priv->psstate == PS_STATE_PRE_SLEEP &&
566 !priv->dnld_sent && !priv->cur_cmd) {
567 if (priv->connect_status == LBS_CONNECTED) {
568 lbs_deb_thread("pre-sleep, currenttxskb %p, "
569 "dnld_sent %d, cur_cmd %p\n",
570 priv->currenttxskb, priv->dnld_sent,
573 lbs_ps_confirm_sleep(priv);
575 /* workaround for firmware sending
576 * deauth/linkloss event immediately
577 * after sleep request; remove this
578 * after firmware fixes it
580 priv->psstate = PS_STATE_AWAKE;
581 lbs_pr_alert("ignore PS_SleepConfirm in "
582 "non-connected state\n");
586 /* The PS state is changed during processing of Sleep Request
589 if ((priv->psstate == PS_STATE_SLEEP) ||
590 (priv->psstate == PS_STATE_PRE_SLEEP))
593 if (priv->is_deep_sleep)
596 /* Execute the next command */
597 if (!priv->dnld_sent && !priv->cur_cmd)
598 lbs_execute_next_command(priv);
600 /* Wake-up command waiters which can't sleep in
601 * lbs_prepare_and_send_command
603 if (!list_empty(&priv->cmdpendingq))
604 wake_up_all(&priv->cmd_pending);
606 spin_lock_irq(&priv->driver_lock);
607 if (!priv->dnld_sent && priv->tx_pending_len > 0) {
608 int ret = priv->hw_host_to_card(priv, MVMS_DAT,
609 priv->tx_pending_buf,
610 priv->tx_pending_len);
612 lbs_deb_tx("host_to_card failed %d\n", ret);
613 priv->dnld_sent = DNLD_RES_RECEIVED;
615 priv->tx_pending_len = 0;
616 if (!priv->currenttxskb) {
617 /* We can wake the queues immediately if we aren't
618 waiting for TX feedback */
619 if (priv->connect_status == LBS_CONNECTED)
620 netif_wake_queue(priv->dev);
621 if (priv->mesh_dev &&
622 priv->mesh_connect_status == LBS_CONNECTED)
623 netif_wake_queue(priv->mesh_dev);
626 spin_unlock_irq(&priv->driver_lock);
629 del_timer(&priv->command_timer);
630 del_timer(&priv->auto_deepsleep_timer);
631 wake_up_all(&priv->cmd_pending);
633 lbs_deb_leave(LBS_DEB_THREAD);
637 static int lbs_suspend_callback(struct lbs_private *priv, unsigned long dummy,
638 struct cmd_header *cmd)
640 lbs_deb_enter(LBS_DEB_FW);
642 netif_device_detach(priv->dev);
644 netif_device_detach(priv->mesh_dev);
647 lbs_deb_leave(LBS_DEB_FW);
651 int lbs_suspend(struct lbs_private *priv)
653 struct cmd_header cmd;
656 lbs_deb_enter(LBS_DEB_FW);
658 if (priv->wol_criteria == 0xffffffff) {
659 lbs_pr_info("Suspend attempt without configuring wake params!\n");
663 memset(&cmd, 0, sizeof(cmd));
665 ret = __lbs_cmd(priv, CMD_802_11_HOST_SLEEP_ACTIVATE, &cmd,
666 sizeof(cmd), lbs_suspend_callback, 0);
668 lbs_pr_info("HOST_SLEEP_ACTIVATE failed: %d\n", ret);
670 lbs_deb_leave_args(LBS_DEB_FW, "ret %d", ret);
673 EXPORT_SYMBOL_GPL(lbs_suspend);
675 void lbs_resume(struct lbs_private *priv)
677 lbs_deb_enter(LBS_DEB_FW);
681 /* Firmware doesn't seem to give us RX packets any more
682 until we send it some command. Might as well update */
683 lbs_prepare_and_send_command(priv, CMD_802_11_RSSI, 0,
686 netif_device_attach(priv->dev);
688 netif_device_attach(priv->mesh_dev);
690 lbs_deb_leave(LBS_DEB_FW);
692 EXPORT_SYMBOL_GPL(lbs_resume);
695 * @brief This function gets the HW spec from the firmware and sets
696 * some basic parameters.
698 * @param priv A pointer to struct lbs_private structure
701 static int lbs_setup_firmware(struct lbs_private *priv)
704 s16 curlevel = 0, minlevel = 0, maxlevel = 0;
706 lbs_deb_enter(LBS_DEB_FW);
708 /* Read MAC address from firmware */
709 memset(priv->current_addr, 0xff, ETH_ALEN);
710 ret = lbs_update_hw_spec(priv);
714 /* Read power levels if available */
715 ret = lbs_get_tx_power(priv, &curlevel, &minlevel, &maxlevel);
717 priv->txpower_cur = curlevel;
718 priv->txpower_min = minlevel;
719 priv->txpower_max = maxlevel;
722 lbs_set_mac_control(priv);
724 lbs_deb_leave_args(LBS_DEB_FW, "ret %d", ret);
729 * This function handles the timeout of command sending.
730 * It will re-send the same command again.
732 static void command_timer_fn(unsigned long data)
734 struct lbs_private *priv = (struct lbs_private *)data;
737 lbs_deb_enter(LBS_DEB_CMD);
738 spin_lock_irqsave(&priv->driver_lock, flags);
743 lbs_pr_info("command 0x%04x timed out\n",
744 le16_to_cpu(priv->cur_cmd->cmdbuf->command));
746 priv->cmd_timed_out = 1;
747 wake_up_interruptible(&priv->waitq);
749 spin_unlock_irqrestore(&priv->driver_lock, flags);
750 lbs_deb_leave(LBS_DEB_CMD);
754 * This function put the device back to deep sleep mode when timer expires
755 * and no activity (command, event, data etc.) is detected.
757 static void auto_deepsleep_timer_fn(unsigned long data)
759 struct lbs_private *priv = (struct lbs_private *)data;
762 lbs_deb_enter(LBS_DEB_CMD);
764 if (priv->is_activity_detected) {
765 priv->is_activity_detected = 0;
767 if (priv->is_auto_deep_sleep_enabled &&
768 (!priv->wakeup_dev_required) &&
769 (priv->connect_status != LBS_CONNECTED)) {
770 lbs_deb_main("Entering auto deep sleep mode...\n");
771 ret = lbs_prepare_and_send_command(priv,
772 CMD_802_11_DEEP_SLEEP, 0,
775 lbs_pr_err("Enter Deep Sleep command failed\n");
778 mod_timer(&priv->auto_deepsleep_timer , jiffies +
779 (priv->auto_deep_sleep_timeout * HZ)/1000);
780 lbs_deb_leave(LBS_DEB_CMD);
783 int lbs_enter_auto_deep_sleep(struct lbs_private *priv)
785 lbs_deb_enter(LBS_DEB_SDIO);
787 priv->is_auto_deep_sleep_enabled = 1;
788 if (priv->is_deep_sleep)
789 priv->wakeup_dev_required = 1;
790 mod_timer(&priv->auto_deepsleep_timer ,
791 jiffies + (priv->auto_deep_sleep_timeout * HZ)/1000);
793 lbs_deb_leave(LBS_DEB_SDIO);
797 int lbs_exit_auto_deep_sleep(struct lbs_private *priv)
799 lbs_deb_enter(LBS_DEB_SDIO);
801 priv->is_auto_deep_sleep_enabled = 0;
802 priv->auto_deep_sleep_timeout = 0;
803 del_timer(&priv->auto_deepsleep_timer);
805 lbs_deb_leave(LBS_DEB_SDIO);
809 static int lbs_init_adapter(struct lbs_private *priv)
814 lbs_deb_enter(LBS_DEB_MAIN);
816 /* Allocate buffer to store the BSSID list */
817 bufsize = MAX_NETWORK_COUNT * sizeof(struct bss_descriptor);
818 priv->networks = kzalloc(bufsize, GFP_KERNEL);
819 if (!priv->networks) {
820 lbs_pr_err("Out of memory allocating beacons\n");
825 /* Initialize scan result lists */
826 INIT_LIST_HEAD(&priv->network_free_list);
827 INIT_LIST_HEAD(&priv->network_list);
828 for (i = 0; i < MAX_NETWORK_COUNT; i++) {
829 list_add_tail(&priv->networks[i].list,
830 &priv->network_free_list);
833 memset(priv->current_addr, 0xff, ETH_ALEN);
835 priv->connect_status = LBS_DISCONNECTED;
836 priv->mesh_connect_status = LBS_DISCONNECTED;
837 priv->secinfo.auth_mode = IW_AUTH_ALG_OPEN_SYSTEM;
838 priv->mode = IW_MODE_INFRA;
839 priv->channel = DEFAULT_AD_HOC_CHANNEL;
840 priv->mac_control = CMD_ACT_MAC_RX_ON | CMD_ACT_MAC_TX_ON;
842 priv->enablehwauto = 1;
843 priv->capability = WLAN_CAPABILITY_SHORT_PREAMBLE;
844 priv->psmode = LBS802_11POWERMODECAM;
845 priv->psstate = PS_STATE_FULL_POWER;
846 priv->is_deep_sleep = 0;
847 priv->is_auto_deep_sleep_enabled = 0;
848 priv->wakeup_dev_required = 0;
849 init_waitqueue_head(&priv->ds_awake_q);
851 mutex_init(&priv->lock);
853 setup_timer(&priv->command_timer, command_timer_fn,
854 (unsigned long)priv);
855 setup_timer(&priv->auto_deepsleep_timer, auto_deepsleep_timer_fn,
856 (unsigned long)priv);
858 INIT_LIST_HEAD(&priv->cmdfreeq);
859 INIT_LIST_HEAD(&priv->cmdpendingq);
861 spin_lock_init(&priv->driver_lock);
862 init_waitqueue_head(&priv->cmd_pending);
864 /* Allocate the command buffers */
865 if (lbs_allocate_cmd_buffer(priv)) {
866 lbs_pr_err("Out of memory allocating command buffers\n");
871 priv->resp_len[0] = priv->resp_len[1] = 0;
873 /* Create the event FIFO */
874 priv->event_fifo = kfifo_alloc(sizeof(u32) * 16, GFP_KERNEL, NULL);
875 if (IS_ERR(priv->event_fifo)) {
876 lbs_pr_err("Out of memory allocating event FIFO buffer\n");
882 lbs_deb_leave_args(LBS_DEB_MAIN, "ret %d", ret);
887 static void lbs_free_adapter(struct lbs_private *priv)
889 lbs_deb_enter(LBS_DEB_MAIN);
891 lbs_free_cmd_buffer(priv);
892 if (priv->event_fifo)
893 kfifo_free(priv->event_fifo);
894 del_timer(&priv->command_timer);
895 del_timer(&priv->auto_deepsleep_timer);
896 kfree(priv->networks);
897 priv->networks = NULL;
899 lbs_deb_leave(LBS_DEB_MAIN);
902 static const struct net_device_ops lbs_netdev_ops = {
903 .ndo_open = lbs_dev_open,
904 .ndo_stop = lbs_eth_stop,
905 .ndo_start_xmit = lbs_hard_start_xmit,
906 .ndo_set_mac_address = lbs_set_mac_address,
907 .ndo_tx_timeout = lbs_tx_timeout,
908 .ndo_set_multicast_list = lbs_set_multicast_list,
909 .ndo_change_mtu = eth_change_mtu,
910 .ndo_validate_addr = eth_validate_addr,
914 * @brief This function adds the card. it will probe the
915 * card, allocate the lbs_priv and initialize the device.
917 * @param card A pointer to card
918 * @return A pointer to struct lbs_private structure
920 struct lbs_private *lbs_add_card(void *card, struct device *dmdev)
922 struct net_device *dev;
923 struct wireless_dev *wdev;
924 struct lbs_private *priv = NULL;
926 lbs_deb_enter(LBS_DEB_MAIN);
928 /* Allocate an Ethernet device and register it */
929 wdev = lbs_cfg_alloc(dmdev);
931 lbs_pr_err("cfg80211 init failed\n");
935 wdev->iftype = NL80211_IFTYPE_STATION;
936 priv = wdev_priv(wdev);
939 if (lbs_init_adapter(priv)) {
940 lbs_pr_err("failed to initialize adapter structure.\n");
944 //TODO? dev = alloc_netdev_mq(0, "wlan%d", ether_setup, IWM_TX_QUEUES);
945 dev = alloc_netdev(0, "wlan%d", ether_setup);
947 dev_err(dmdev, "no memory for network device instance\n");
951 dev->ieee80211_ptr = wdev;
953 SET_NETDEV_DEV(dev, dmdev);
957 dev->netdev_ops = &lbs_netdev_ops;
958 dev->watchdog_timeo = 5 * HZ;
959 dev->ethtool_ops = &lbs_ethtool_ops;
961 dev->wireless_handlers = &lbs_handler_def;
963 dev->flags |= IFF_BROADCAST | IFF_MULTICAST;
966 // TODO: kzalloc + iwm_init_default_profile(iwm, iwm->umac_profile); ??
970 priv->infra_open = 0;
973 priv->rtap_net_dev = NULL;
974 strcpy(dev->name, "wlan%d");
976 lbs_deb_thread("Starting main thread...\n");
977 init_waitqueue_head(&priv->waitq);
978 priv->main_thread = kthread_run(lbs_thread, dev, "lbs_main");
979 if (IS_ERR(priv->main_thread)) {
980 lbs_deb_thread("Error creating main thread.\n");
984 priv->work_thread = create_singlethread_workqueue("lbs_worker");
985 INIT_DELAYED_WORK(&priv->assoc_work, lbs_association_worker);
986 INIT_DELAYED_WORK(&priv->scan_work, lbs_scan_worker);
987 INIT_WORK(&priv->mcast_work, lbs_set_mcast_worker);
990 sprintf(priv->mesh_ssid, "mesh");
991 priv->mesh_ssid_len = 4;
993 priv->wol_criteria = 0xffffffff;
994 priv->wol_gpio = 0xff;
1002 lbs_free_adapter(priv);
1010 lbs_deb_leave_args(LBS_DEB_MAIN, "priv %p", priv);
1013 EXPORT_SYMBOL_GPL(lbs_add_card);
1016 void lbs_remove_card(struct lbs_private *priv)
1018 struct net_device *dev = priv->dev;
1020 lbs_deb_enter(LBS_DEB_MAIN);
1022 lbs_remove_mesh(priv);
1023 lbs_remove_rtap(priv);
1027 cancel_delayed_work_sync(&priv->scan_work);
1028 cancel_delayed_work_sync(&priv->assoc_work);
1029 cancel_work_sync(&priv->mcast_work);
1031 /* worker thread destruction blocks on the in-flight command which
1032 * should have been cleared already in lbs_stop_card().
1034 lbs_deb_main("destroying worker thread\n");
1035 destroy_workqueue(priv->work_thread);
1036 lbs_deb_main("done destroying worker thread\n");
1038 if (priv->psmode == LBS802_11POWERMODEMAX_PSP) {
1039 priv->psmode = LBS802_11POWERMODECAM;
1040 lbs_ps_wakeup(priv, CMD_OPTION_WAITFORRSP);
1043 lbs_send_disconnect_notification(priv);
1045 if (priv->is_deep_sleep) {
1046 priv->is_deep_sleep = 0;
1047 wake_up_interruptible(&priv->ds_awake_q);
1050 /* Stop the thread servicing the interrupts */
1051 priv->surpriseremoved = 1;
1052 kthread_stop(priv->main_thread);
1054 lbs_free_adapter(priv);
1060 lbs_deb_leave(LBS_DEB_MAIN);
1062 EXPORT_SYMBOL_GPL(lbs_remove_card);
1065 static int lbs_rtap_supported(struct lbs_private *priv)
1067 if (MRVL_FW_MAJOR_REV(priv->fwrelease) == MRVL_FW_V5)
1070 /* newer firmware use a capability mask */
1071 return ((MRVL_FW_MAJOR_REV(priv->fwrelease) >= MRVL_FW_V10) &&
1072 (priv->fwcapinfo & MESH_CAPINFO_ENABLE_MASK));
1076 int lbs_start_card(struct lbs_private *priv)
1078 struct net_device *dev = priv->dev;
1081 lbs_deb_enter(LBS_DEB_MAIN);
1083 /* poke the firmware */
1084 ret = lbs_setup_firmware(priv);
1088 if (lbs_cfg_register(priv)) {
1089 lbs_pr_err("cannot register device\n");
1093 lbs_update_channel(priv);
1095 lbs_init_mesh(priv);
1098 * While rtap isn't related to mesh, only mesh-enabled
1099 * firmware implements the rtap functionality via
1100 * CMD_802_11_MONITOR_MODE.
1102 if (lbs_rtap_supported(priv)) {
1103 if (device_create_file(&dev->dev, &dev_attr_lbs_rtap))
1104 lbs_pr_err("cannot register lbs_rtap attribute\n");
1107 lbs_debugfs_init_one(priv, dev);
1109 lbs_pr_info("%s: Marvell WLAN 802.11 adapter\n", dev->name);
1114 lbs_deb_leave_args(LBS_DEB_MAIN, "ret %d", ret);
1117 EXPORT_SYMBOL_GPL(lbs_start_card);
1120 void lbs_stop_card(struct lbs_private *priv)
1122 struct net_device *dev;
1123 struct cmd_ctrl_node *cmdnode;
1124 unsigned long flags;
1126 lbs_deb_enter(LBS_DEB_MAIN);
1132 netif_stop_queue(dev);
1133 netif_carrier_off(dev);
1135 lbs_debugfs_remove_one(priv);
1136 lbs_deinit_mesh(priv);
1138 if (lbs_rtap_supported(priv))
1139 device_remove_file(&dev->dev, &dev_attr_lbs_rtap);
1141 /* Delete the timeout of the currently processing command */
1142 del_timer_sync(&priv->command_timer);
1143 del_timer_sync(&priv->auto_deepsleep_timer);
1145 /* Flush pending command nodes */
1146 spin_lock_irqsave(&priv->driver_lock, flags);
1147 lbs_deb_main("clearing pending commands\n");
1148 list_for_each_entry(cmdnode, &priv->cmdpendingq, list) {
1149 cmdnode->result = -ENOENT;
1150 cmdnode->cmdwaitqwoken = 1;
1151 wake_up_interruptible(&cmdnode->cmdwait_q);
1154 /* Flush the command the card is currently processing */
1155 if (priv->cur_cmd) {
1156 lbs_deb_main("clearing current command\n");
1157 priv->cur_cmd->result = -ENOENT;
1158 priv->cur_cmd->cmdwaitqwoken = 1;
1159 wake_up_interruptible(&priv->cur_cmd->cmdwait_q);
1161 lbs_deb_main("done clearing commands\n");
1162 spin_unlock_irqrestore(&priv->driver_lock, flags);
1164 unregister_netdev(dev);
1167 lbs_deb_leave(LBS_DEB_MAIN);
1169 EXPORT_SYMBOL_GPL(lbs_stop_card);
1172 void lbs_queue_event(struct lbs_private *priv, u32 event)
1174 unsigned long flags;
1176 lbs_deb_enter(LBS_DEB_THREAD);
1177 spin_lock_irqsave(&priv->driver_lock, flags);
1179 if (priv->psstate == PS_STATE_SLEEP)
1180 priv->psstate = PS_STATE_AWAKE;
1182 __kfifo_put(priv->event_fifo, (unsigned char *) &event, sizeof(u32));
1184 wake_up_interruptible(&priv->waitq);
1186 spin_unlock_irqrestore(&priv->driver_lock, flags);
1187 lbs_deb_leave(LBS_DEB_THREAD);
1189 EXPORT_SYMBOL_GPL(lbs_queue_event);
1191 void lbs_notify_command_response(struct lbs_private *priv, u8 resp_idx)
1193 lbs_deb_enter(LBS_DEB_THREAD);
1195 if (priv->psstate == PS_STATE_SLEEP)
1196 priv->psstate = PS_STATE_AWAKE;
1198 /* Swap buffers by flipping the response index */
1199 BUG_ON(resp_idx > 1);
1200 priv->resp_idx = resp_idx;
1202 wake_up_interruptible(&priv->waitq);
1204 lbs_deb_leave(LBS_DEB_THREAD);
1206 EXPORT_SYMBOL_GPL(lbs_notify_command_response);
1208 static int __init lbs_init_module(void)
1210 lbs_deb_enter(LBS_DEB_MAIN);
1211 memset(&confirm_sleep, 0, sizeof(confirm_sleep));
1212 confirm_sleep.hdr.command = cpu_to_le16(CMD_802_11_PS_MODE);
1213 confirm_sleep.hdr.size = cpu_to_le16(sizeof(confirm_sleep));
1214 confirm_sleep.action = cpu_to_le16(CMD_SUBCMD_SLEEP_CONFIRMED);
1216 lbs_deb_leave(LBS_DEB_MAIN);
1220 static void __exit lbs_exit_module(void)
1222 lbs_deb_enter(LBS_DEB_MAIN);
1223 lbs_debugfs_remove();
1224 lbs_deb_leave(LBS_DEB_MAIN);
1228 * rtap interface support fuctions
1231 static int lbs_rtap_open(struct net_device *dev)
1233 /* Yes, _stop_ the queue. Because we don't support injection */
1234 lbs_deb_enter(LBS_DEB_MAIN);
1235 netif_carrier_off(dev);
1236 netif_stop_queue(dev);
1237 lbs_deb_leave(LBS_DEB_LEAVE);
1241 static int lbs_rtap_stop(struct net_device *dev)
1243 lbs_deb_enter(LBS_DEB_MAIN);
1244 lbs_deb_leave(LBS_DEB_MAIN);
1248 static netdev_tx_t lbs_rtap_hard_start_xmit(struct sk_buff *skb,
1249 struct net_device *dev)
1251 netif_stop_queue(dev);
1252 return NETDEV_TX_BUSY;
1255 static void lbs_remove_rtap(struct lbs_private *priv)
1257 lbs_deb_enter(LBS_DEB_MAIN);
1258 if (priv->rtap_net_dev == NULL)
1260 unregister_netdev(priv->rtap_net_dev);
1261 free_netdev(priv->rtap_net_dev);
1262 priv->rtap_net_dev = NULL;
1264 lbs_deb_leave(LBS_DEB_MAIN);
1267 static const struct net_device_ops rtap_netdev_ops = {
1268 .ndo_open = lbs_rtap_open,
1269 .ndo_stop = lbs_rtap_stop,
1270 .ndo_start_xmit = lbs_rtap_hard_start_xmit,
1273 static int lbs_add_rtap(struct lbs_private *priv)
1276 struct net_device *rtap_dev;
1278 lbs_deb_enter(LBS_DEB_MAIN);
1279 if (priv->rtap_net_dev) {
1284 rtap_dev = alloc_netdev(0, "rtap%d", ether_setup);
1285 if (rtap_dev == NULL) {
1290 memcpy(rtap_dev->dev_addr, priv->current_addr, ETH_ALEN);
1291 rtap_dev->type = ARPHRD_IEEE80211_RADIOTAP;
1292 rtap_dev->netdev_ops = &rtap_netdev_ops;
1293 rtap_dev->ml_priv = priv;
1294 SET_NETDEV_DEV(rtap_dev, priv->dev->dev.parent);
1296 ret = register_netdev(rtap_dev);
1298 free_netdev(rtap_dev);
1301 priv->rtap_net_dev = rtap_dev;
1304 lbs_deb_leave_args(LBS_DEB_MAIN, "ret %d", ret);
1308 module_init(lbs_init_module);
1309 module_exit(lbs_exit_module);
1311 MODULE_DESCRIPTION("Libertas WLAN Driver Library");
1312 MODULE_AUTHOR("Marvell International Ltd.");
1313 MODULE_LICENSE("GPL");