2 * Atheros AR9170 driver
4 * mac80211 interaction code
6 * Copyright 2008, Johannes Berg <johannes@sipsolutions.net>
7 * Copyright 2009, Christian Lamparter <chunkeey@web.de>
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
19 * You should have received a copy of the GNU General Public License
20 * along with this program; see the file COPYING. If not, see
21 * http://www.gnu.org/licenses/.
23 * This file incorporates work covered by the following copyright and
25 * Copyright (c) 2007-2008 Atheros Communications, Inc.
27 * Permission to use, copy, modify, and/or distribute this software for any
28 * purpose with or without fee is hereby granted, provided that the above
29 * copyright notice and this permission notice appear in all copies.
31 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
32 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
33 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
34 * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
35 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
36 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
37 * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
40 #include <linux/init.h>
41 #include <linux/module.h>
42 #include <linux/etherdevice.h>
43 #include <net/mac80211.h>
48 static int modparam_nohwcrypt;
49 module_param_named(nohwcrypt, modparam_nohwcrypt, bool, S_IRUGO);
50 MODULE_PARM_DESC(nohwcrypt, "Disable hardware encryption.");
52 #define RATE(_bitrate, _hw_rate, _txpidx, _flags) { \
53 .bitrate = (_bitrate), \
55 .hw_value = (_hw_rate) | (_txpidx) << 4, \
58 static struct ieee80211_rate __ar9170_ratetable[] = {
60 RATE(20, 1, 1, IEEE80211_RATE_SHORT_PREAMBLE),
61 RATE(55, 2, 2, IEEE80211_RATE_SHORT_PREAMBLE),
62 RATE(110, 3, 3, IEEE80211_RATE_SHORT_PREAMBLE),
74 #define ar9170_g_ratetable (__ar9170_ratetable + 0)
75 #define ar9170_g_ratetable_size 12
76 #define ar9170_a_ratetable (__ar9170_ratetable + 4)
77 #define ar9170_a_ratetable_size 8
80 * NB: The hw_value is used as an index into the ar9170_phy_freq_params
81 * array in phy.c so that we don't have to do frequency lookups!
83 #define CHAN(_freq, _idx) { \
84 .center_freq = (_freq), \
86 .max_power = 18, /* XXX */ \
89 static struct ieee80211_channel ar9170_2ghz_chantable[] = {
106 static struct ieee80211_channel ar9170_5ghz_chantable[] = {
145 #define AR9170_HT_CAP \
147 .ht_supported = true, \
148 .cap = IEEE80211_HT_CAP_MAX_AMSDU | \
149 IEEE80211_HT_CAP_SUP_WIDTH_20_40 | \
150 IEEE80211_HT_CAP_SGI_40 | \
151 IEEE80211_HT_CAP_DSSSCCK40 | \
152 IEEE80211_HT_CAP_SM_PS, \
154 .ampdu_density = 6, \
156 .rx_mask = { 0xFF, 0xFF, 0, 0, 0, 0, 0, 0, 0, 0, }, \
160 static struct ieee80211_supported_band ar9170_band_2GHz = {
161 .channels = ar9170_2ghz_chantable,
162 .n_channels = ARRAY_SIZE(ar9170_2ghz_chantable),
163 .bitrates = ar9170_g_ratetable,
164 .n_bitrates = ar9170_g_ratetable_size,
165 .ht_cap = AR9170_HT_CAP,
168 static struct ieee80211_supported_band ar9170_band_5GHz = {
169 .channels = ar9170_5ghz_chantable,
170 .n_channels = ARRAY_SIZE(ar9170_5ghz_chantable),
171 .bitrates = ar9170_a_ratetable,
172 .n_bitrates = ar9170_a_ratetable_size,
173 .ht_cap = AR9170_HT_CAP,
176 #ifdef AR9170_QUEUE_DEBUG
178 * In case some wants works with AR9170's crazy tx_status queueing techniques.
179 * He might need this rather useful probing function.
181 * NOTE: caller must hold the queue's spinlock!
184 static void ar9170_print_txheader(struct ar9170 *ar, struct sk_buff *skb)
186 struct ar9170_tx_control *txc = (void *) skb->data;
187 struct ieee80211_hdr *hdr = (void *)txc->frame_data;
189 printk(KERN_DEBUG "%s: => FRAME [skb:%p, queue:%d, DA:[%pM] "
190 "mac_control:%04x, phy_control:%08x]\n",
191 wiphy_name(ar->hw->wiphy), skb, skb_get_queue_mapping(skb),
192 ieee80211_get_DA(hdr), le16_to_cpu(txc->mac_control),
193 le32_to_cpu(txc->phy_control));
196 static void ar9170_dump_station_tx_status_queue(struct ar9170 *ar,
197 struct sk_buff_head *queue)
202 printk(KERN_DEBUG "---[ cut here ]---\n");
203 printk(KERN_DEBUG "%s: %d entries in tx_status queue.\n",
204 wiphy_name(ar->hw->wiphy), skb_queue_len(queue));
206 skb_queue_walk(queue, skb) {
207 struct ar9170_tx_control *txc = (void *) skb->data;
208 struct ieee80211_hdr *hdr = (void *)txc->frame_data;
210 printk(KERN_DEBUG "index:%d => \n", i);
211 ar9170_print_txheader(ar, skb);
213 printk(KERN_DEBUG "---[ end ]---\n");
215 #endif /* AR9170_QUEUE_DEBUG */
217 void ar9170_handle_tx_status(struct ar9170 *ar, struct sk_buff *skb,
218 bool valid_status, u16 tx_status)
220 struct ieee80211_tx_info *txinfo;
221 unsigned int retries = 0, queue = skb_get_queue_mapping(skb);
224 spin_lock_irqsave(&ar->tx_stats_lock, flags);
225 ar->tx_stats[queue].len--;
226 if (ieee80211_queue_stopped(ar->hw, queue))
227 ieee80211_wake_queue(ar->hw, queue);
228 spin_unlock_irqrestore(&ar->tx_stats_lock, flags);
230 txinfo = IEEE80211_SKB_CB(skb);
231 ieee80211_tx_info_clear_status(txinfo);
234 case AR9170_TX_STATUS_RETRY:
236 case AR9170_TX_STATUS_COMPLETE:
237 txinfo->flags |= IEEE80211_TX_STAT_ACK;
240 case AR9170_TX_STATUS_FAILED:
241 retries = ar->hw->conf.long_frame_max_tx_count;
245 printk(KERN_ERR "%s: invalid tx_status response (%x).\n",
246 wiphy_name(ar->hw->wiphy), tx_status);
251 txinfo->status.rates[0].count = retries + 1;
253 skb_pull(skb, sizeof(struct ar9170_tx_control));
254 ieee80211_tx_status_irqsafe(ar->hw, skb);
257 static struct sk_buff *ar9170_find_skb_in_queue(struct ar9170 *ar,
260 struct sk_buff_head *q)
265 spin_lock_irqsave(&q->lock, flags);
266 skb_queue_walk(q, skb) {
267 struct ar9170_tx_control *txc = (void *) skb->data;
268 struct ieee80211_hdr *hdr = (void *) txc->frame_data;
269 u32 txc_queue = (le32_to_cpu(txc->phy_control) &
270 AR9170_TX_PHY_QOS_MASK) >>
271 AR9170_TX_PHY_QOS_SHIFT;
273 if ((queue != txc_queue) ||
274 (compare_ether_addr(ieee80211_get_DA(hdr), mac)))
277 __skb_unlink(skb, q);
278 spin_unlock_irqrestore(&q->lock, flags);
281 spin_unlock_irqrestore(&q->lock, flags);
285 static struct sk_buff *ar9170_find_queued_skb(struct ar9170 *ar, const u8 *mac,
288 struct ieee80211_sta *sta;
292 * Unfortunately, the firmware does not tell to which (queued) frame
293 * this transmission status report belongs to.
295 * So we have to make risky guesses - with the scarce information
296 * the firmware provided (-> destination MAC, and phy_control) -
297 * and hope that we picked the right one...
300 sta = ieee80211_find_sta(ar->hw, mac);
303 struct ar9170_sta_info *sta_priv = (void *) sta->drv_priv;
304 skb = skb_dequeue(&sta_priv->tx_status[queue]);
311 /* scan the waste queue for candidates */
312 skb = ar9170_find_skb_in_queue(ar, mac, queue,
313 &ar->global_tx_status_waste);
315 /* so it still _must_ be in the global list. */
316 skb = ar9170_find_skb_in_queue(ar, mac, queue,
317 &ar->global_tx_status);
320 #ifdef AR9170_QUEUE_DEBUG
321 if (unlikely((!skb) && net_ratelimit())) {
322 printk(KERN_ERR "%s: ESS:[%pM] does not have any "
323 "outstanding frames in this queue (%d).\n",
324 wiphy_name(ar->hw->wiphy), mac, queue);
326 #endif /* AR9170_QUEUE_DEBUG */
331 * This worker tries to keep the global tx_status queue empty.
332 * So we can guarantee that incoming tx_status reports for
333 * unregistered stations are always synced with the actual
334 * frame - which we think - belongs to.
337 static void ar9170_tx_status_janitor(struct work_struct *work)
339 struct ar9170 *ar = container_of(work, struct ar9170,
340 tx_status_janitor.work);
343 if (unlikely(!IS_STARTED(ar)))
346 /* recycle the garbage back to mac80211... one by one. */
347 while ((skb = skb_dequeue(&ar->global_tx_status_waste))) {
348 #ifdef AR9170_QUEUE_DEBUG
349 printk(KERN_DEBUG "%s: dispose queued frame =>\n",
350 wiphy_name(ar->hw->wiphy));
351 ar9170_print_txheader(ar, skb);
352 #endif /* AR9170_QUEUE_DEBUG */
353 ar9170_handle_tx_status(ar, skb, false,
354 AR9170_TX_STATUS_FAILED);
357 while ((skb = skb_dequeue(&ar->global_tx_status))) {
358 #ifdef AR9170_QUEUE_DEBUG
359 printk(KERN_DEBUG "%s: moving frame into waste queue =>\n",
360 wiphy_name(ar->hw->wiphy));
362 ar9170_print_txheader(ar, skb);
363 #endif /* AR9170_QUEUE_DEBUG */
364 skb_queue_tail(&ar->global_tx_status_waste, skb);
367 /* recall the janitor in 100ms - if there's garbage in the can. */
368 if (skb_queue_len(&ar->global_tx_status_waste) > 0)
369 queue_delayed_work(ar->hw->workqueue, &ar->tx_status_janitor,
370 msecs_to_jiffies(100));
373 void ar9170_handle_command_response(struct ar9170 *ar, void *buf, u32 len)
375 struct ar9170_cmd_response *cmd = (void *) buf;
377 if ((cmd->type & 0xc0) != 0xc0) {
378 ar->callback_cmd(ar, len, buf);
382 /* hardware event handlers */
386 * TX status notification:
387 * bytes: 0c c1 XX YY M1 M2 M3 M4 M5 M6 R4 R3 R2 R1 S2 S1
391 * M1-M6 is the MAC address
392 * R1-R4 is the transmit rate
393 * S1-S2 is the transmit status
397 u32 queue = (le32_to_cpu(cmd->tx_status.rate) &
398 AR9170_TX_PHY_QOS_MASK) >> AR9170_TX_PHY_QOS_SHIFT;
400 skb = ar9170_find_queued_skb(ar, cmd->tx_status.dst, queue);
404 ar9170_handle_tx_status(ar, skb, true,
405 le16_to_cpu(cmd->tx_status.status));
413 if (ar->vif && ar->vif->type == NL80211_IFTYPE_AP)
414 queue_work(ar->hw->workqueue, &ar->beacon_work);
419 * (IBSS) beacon send notification
420 * bytes: 04 c2 XX YY B4 B3 B2 B1
424 * B1-B4 "should" be the number of send out beacons.
429 /* End of Atim Window */
434 /* BlockACK events */
438 /* Watchdog Interrupt */
442 /* retransmission issue / SIFS/EIFS collision ?! */
446 printk(KERN_INFO "received unhandled event %x\n", cmd->type);
447 print_hex_dump_bytes("dump:", DUMP_PREFIX_NONE, buf, len);
452 static void ar9170_rx_reset_rx_mpdu(struct ar9170 *ar)
454 memset(&ar->rx_mpdu.plcp, 0, sizeof(struct ar9170_rx_head));
455 ar->rx_mpdu.has_plcp = false;
458 static int ar9170_nag_limiter(struct ar9170 *ar)
463 * we expect all sorts of errors in promiscuous mode.
464 * don't bother with it, it's OK!
466 if (ar->sniffer_enabled)
470 * only go for frequent errors! The hardware tends to
471 * do some stupid thing once in a while under load, in
472 * noisy environments or just for fun!
474 if (time_before(jiffies, ar->bad_hw_nagger) && net_ratelimit())
475 print_message = true;
477 print_message = false;
479 /* reset threshold for "once in a while" */
480 ar->bad_hw_nagger = jiffies + HZ / 4;
481 return print_message;
484 static int ar9170_rx_mac_status(struct ar9170 *ar,
485 struct ar9170_rx_head *head,
486 struct ar9170_rx_macstatus *mac,
487 struct ieee80211_rx_status *status)
491 BUILD_BUG_ON(sizeof(struct ar9170_rx_head) != 12);
492 BUILD_BUG_ON(sizeof(struct ar9170_rx_macstatus) != 4);
495 if (error & AR9170_RX_ERROR_MMIC) {
496 status->flag |= RX_FLAG_MMIC_ERROR;
497 error &= ~AR9170_RX_ERROR_MMIC;
500 if (error & AR9170_RX_ERROR_PLCP) {
501 status->flag |= RX_FLAG_FAILED_PLCP_CRC;
502 error &= ~AR9170_RX_ERROR_PLCP;
504 if (!(ar->filter_state & FIF_PLCPFAIL))
508 if (error & AR9170_RX_ERROR_FCS) {
509 status->flag |= RX_FLAG_FAILED_FCS_CRC;
510 error &= ~AR9170_RX_ERROR_FCS;
512 if (!(ar->filter_state & FIF_FCSFAIL))
516 decrypt = ar9170_get_decrypt_type(mac);
517 if (!(decrypt & AR9170_RX_ENC_SOFTWARE) &&
518 decrypt != AR9170_ENC_ALG_NONE)
519 status->flag |= RX_FLAG_DECRYPTED;
521 /* ignore wrong RA errors */
522 error &= ~AR9170_RX_ERROR_WRONG_RA;
524 if (error & AR9170_RX_ERROR_DECRYPT) {
525 error &= ~AR9170_RX_ERROR_DECRYPT;
527 * Rx decryption is done in place,
528 * the original data is lost anyway.
534 /* drop any other error frames */
535 if (unlikely(error)) {
536 /* TODO: update netdevice's RX dropped/errors statistics */
538 if (ar9170_nag_limiter(ar))
539 printk(KERN_DEBUG "%s: received frame with "
540 "suspicious error code (%#x).\n",
541 wiphy_name(ar->hw->wiphy), error);
546 status->band = ar->channel->band;
547 status->freq = ar->channel->center_freq;
549 switch (mac->status & AR9170_RX_STATUS_MODULATION_MASK) {
550 case AR9170_RX_STATUS_MODULATION_CCK:
551 if (mac->status & AR9170_RX_STATUS_SHORT_PREAMBLE)
552 status->flag |= RX_FLAG_SHORTPRE;
553 switch (head->plcp[0]) {
555 status->rate_idx = 0;
558 status->rate_idx = 1;
561 status->rate_idx = 2;
564 status->rate_idx = 3;
567 if (ar9170_nag_limiter(ar))
568 printk(KERN_ERR "%s: invalid plcp cck rate "
569 "(%x).\n", wiphy_name(ar->hw->wiphy),
575 case AR9170_RX_STATUS_MODULATION_OFDM:
576 switch (head->plcp[0] & 0xf) {
578 status->rate_idx = 0;
581 status->rate_idx = 1;
584 status->rate_idx = 2;
587 status->rate_idx = 3;
590 status->rate_idx = 4;
593 status->rate_idx = 5;
596 status->rate_idx = 6;
599 status->rate_idx = 7;
602 if (ar9170_nag_limiter(ar))
603 printk(KERN_ERR "%s: invalid plcp ofdm rate "
604 "(%x).\n", wiphy_name(ar->hw->wiphy),
608 if (status->band == IEEE80211_BAND_2GHZ)
609 status->rate_idx += 4;
612 case AR9170_RX_STATUS_MODULATION_HT:
613 if (head->plcp[3] & 0x80)
614 status->flag |= RX_FLAG_40MHZ;
615 if (head->plcp[6] & 0x80)
616 status->flag |= RX_FLAG_SHORT_GI;
618 status->rate_idx = clamp(0, 75, head->plcp[6] & 0x7f);
619 status->flag |= RX_FLAG_HT;
622 case AR9170_RX_STATUS_MODULATION_DUPOFDM:
624 if (ar9170_nag_limiter(ar))
625 printk(KERN_ERR "%s: invalid modulation\n",
626 wiphy_name(ar->hw->wiphy));
633 static void ar9170_rx_phy_status(struct ar9170 *ar,
634 struct ar9170_rx_phystatus *phy,
635 struct ieee80211_rx_status *status)
639 BUILD_BUG_ON(sizeof(struct ar9170_rx_phystatus) != 20);
641 for (i = 0; i < 3; i++)
642 if (phy->rssi[i] != 0x80)
643 status->antenna |= BIT(i);
645 /* post-process RSSI */
646 for (i = 0; i < 7; i++)
647 if (phy->rssi[i] & 0x80)
648 phy->rssi[i] = ((phy->rssi[i] & 0x7f) + 1) & 0x7f;
650 /* TODO: we could do something with phy_errors */
651 status->signal = ar->noise[0] + phy->rssi_combined;
652 status->noise = ar->noise[0];
655 static struct sk_buff *ar9170_rx_copy_data(u8 *buf, int len)
659 struct ieee80211_hdr *hdr = (void *) buf;
661 if (ieee80211_is_data_qos(hdr->frame_control)) {
662 u8 *qc = ieee80211_get_qos_ctl(hdr);
663 reserved += NET_IP_ALIGN;
665 if (*qc & IEEE80211_QOS_CONTROL_A_MSDU_PRESENT)
666 reserved += NET_IP_ALIGN;
669 if (ieee80211_has_a4(hdr->frame_control))
670 reserved += NET_IP_ALIGN;
672 reserved = 32 + (reserved & NET_IP_ALIGN);
674 skb = dev_alloc_skb(len + reserved);
676 skb_reserve(skb, reserved);
677 memcpy(skb_put(skb, len), buf, len);
684 * If the frame alignment is right (or the kernel has
685 * CONFIG_HAVE_EFFICIENT_UNALIGNED_ACCESS), and there
686 * is only a single MPDU in the USB frame, then we could
687 * submit to mac80211 the SKB directly. However, since
688 * there may be multiple packets in one SKB in stream
689 * mode, and we need to observe the proper ordering,
690 * this is non-trivial.
693 static void ar9170_handle_mpdu(struct ar9170 *ar, u8 *buf, int len)
695 struct ar9170_rx_head *head;
696 struct ar9170_rx_macstatus *mac;
697 struct ar9170_rx_phystatus *phy = NULL;
698 struct ieee80211_rx_status status;
702 if (unlikely(!IS_STARTED(ar) || len < (sizeof(*mac))))
706 mpdu_len = len - sizeof(*mac);
708 mac = (void *)(buf + mpdu_len);
709 if (unlikely(mac->error & AR9170_RX_ERROR_FATAL)) {
710 /* this frame is too damaged and can't be used - drop it */
715 switch (mac->status & AR9170_RX_STATUS_MPDU_MASK) {
716 case AR9170_RX_STATUS_MPDU_FIRST:
717 /* first mpdu packet has the plcp header */
718 if (likely(mpdu_len >= sizeof(struct ar9170_rx_head))) {
720 memcpy(&ar->rx_mpdu.plcp, (void *) buf,
721 sizeof(struct ar9170_rx_head));
723 mpdu_len -= sizeof(struct ar9170_rx_head);
724 buf += sizeof(struct ar9170_rx_head);
725 ar->rx_mpdu.has_plcp = true;
727 if (ar9170_nag_limiter(ar))
728 printk(KERN_ERR "%s: plcp info is clipped.\n",
729 wiphy_name(ar->hw->wiphy));
734 case AR9170_RX_STATUS_MPDU_LAST:
735 /* last mpdu has a extra tail with phy status information */
737 if (likely(mpdu_len >= sizeof(struct ar9170_rx_phystatus))) {
738 mpdu_len -= sizeof(struct ar9170_rx_phystatus);
739 phy = (void *)(buf + mpdu_len);
741 if (ar9170_nag_limiter(ar))
742 printk(KERN_ERR "%s: frame tail is clipped.\n",
743 wiphy_name(ar->hw->wiphy));
747 case AR9170_RX_STATUS_MPDU_MIDDLE:
748 /* middle mpdus are just data */
749 if (unlikely(!ar->rx_mpdu.has_plcp)) {
750 if (!ar9170_nag_limiter(ar))
753 printk(KERN_ERR "%s: rx stream did not start "
754 "with a first_mpdu frame tag.\n",
755 wiphy_name(ar->hw->wiphy));
760 head = &ar->rx_mpdu.plcp;
763 case AR9170_RX_STATUS_MPDU_SINGLE:
764 /* single mpdu - has plcp (head) and phy status (tail) */
767 mpdu_len -= sizeof(struct ar9170_rx_head);
768 mpdu_len -= sizeof(struct ar9170_rx_phystatus);
770 buf += sizeof(struct ar9170_rx_head);
771 phy = (void *)(buf + mpdu_len);
779 if (unlikely(mpdu_len < FCS_LEN))
782 memset(&status, 0, sizeof(status));
783 if (unlikely(ar9170_rx_mac_status(ar, head, mac, &status)))
787 ar9170_rx_phy_status(ar, phy, &status);
789 skb = ar9170_rx_copy_data(buf, mpdu_len);
791 ieee80211_rx_irqsafe(ar->hw, skb, &status);
794 void ar9170_rx(struct ar9170 *ar, struct sk_buff *skb)
796 unsigned int i, tlen, resplen, wlen = 0, clen = 0;
803 clen = tbuf[1] << 8 | tbuf[0];
804 wlen = ALIGN(clen, 4);
806 /* check if this is stream has a valid tag.*/
807 if (tbuf[2] != 0 || tbuf[3] != 0x4e) {
809 * TODO: handle the highly unlikely event that the
810 * corrupted stream has the TAG at the right position.
813 /* check if the frame can be repaired. */
814 if (!ar->rx_failover_missing) {
815 /* this is no "short read". */
816 if (ar9170_nag_limiter(ar)) {
817 printk(KERN_ERR "%s: missing tag!\n",
818 wiphy_name(ar->hw->wiphy));
824 if (ar->rx_failover_missing > tlen) {
825 if (ar9170_nag_limiter(ar)) {
826 printk(KERN_ERR "%s: possible multi "
827 "stream corruption!\n",
828 wiphy_name(ar->hw->wiphy));
834 memcpy(skb_put(ar->rx_failover, tlen), tbuf, tlen);
835 ar->rx_failover_missing -= tlen;
837 if (ar->rx_failover_missing <= 0) {
839 * nested ar9170_rx call!
840 * termination is guranteed, even when the
841 * combined frame also have a element with
845 ar->rx_failover_missing = 0;
846 ar9170_rx(ar, ar->rx_failover);
848 skb_reset_tail_pointer(ar->rx_failover);
849 skb_trim(ar->rx_failover, 0);
855 /* check if stream is clipped */
856 if (wlen > tlen - 4) {
857 if (ar->rx_failover_missing) {
858 /* TODO: handle double stream corruption. */
859 if (ar9170_nag_limiter(ar)) {
860 printk(KERN_ERR "%s: double rx stream "
862 wiphy_name(ar->hw->wiphy));
869 * save incomplete data set.
870 * the firmware will resend the missing bits when
871 * the rx - descriptor comes round again.
874 memcpy(skb_put(ar->rx_failover, tlen), tbuf, tlen);
875 ar->rx_failover_missing = clen - tlen;
885 /* weird thing, but this is the same in the original driver */
886 while (resplen > 2 && i < 12 &&
887 respbuf[0] == 0xff && respbuf[1] == 0xff) {
896 /* found the 6 * 0xffff marker? */
898 ar9170_handle_command_response(ar, respbuf, resplen);
900 ar9170_handle_mpdu(ar, respbuf, clen);
905 printk(KERN_ERR "%s: %d bytes of unprocessed "
906 "data left in rx stream!\n",
907 wiphy_name(ar->hw->wiphy), tlen);
915 printk(KERN_ERR "%s: damaged RX stream data [want:%d, "
916 "data:%d, rx:%d, pending:%d ]\n",
917 wiphy_name(ar->hw->wiphy), clen, wlen, tlen,
918 ar->rx_failover_missing);
920 if (ar->rx_failover_missing)
921 print_hex_dump_bytes("rxbuf:", DUMP_PREFIX_OFFSET,
922 ar->rx_failover->data,
923 ar->rx_failover->len);
925 print_hex_dump_bytes("stream:", DUMP_PREFIX_OFFSET,
926 skb->data, skb->len);
928 printk(KERN_ERR "%s: please check your hardware and cables, if "
929 "you see this message frequently.\n",
930 wiphy_name(ar->hw->wiphy));
933 if (ar->rx_failover_missing) {
934 skb_reset_tail_pointer(ar->rx_failover);
935 skb_trim(ar->rx_failover, 0);
936 ar->rx_failover_missing = 0;
940 #define AR9170_FILL_QUEUE(queue, ai_fs, cwmin, cwmax, _txop) \
942 queue.aifs = ai_fs; \
943 queue.cw_min = cwmin; \
944 queue.cw_max = cwmax; \
945 queue.txop = _txop; \
948 static int ar9170_op_start(struct ieee80211_hw *hw)
950 struct ar9170 *ar = hw->priv;
953 mutex_lock(&ar->mutex);
955 ar->filter_changed = 0;
957 /* reinitialize queues statistics */
958 memset(&ar->tx_stats, 0, sizeof(ar->tx_stats));
959 for (i = 0; i < ARRAY_SIZE(ar->tx_stats); i++)
960 ar->tx_stats[i].limit = 8;
962 /* reset QoS defaults */
963 AR9170_FILL_QUEUE(ar->edcf[0], 3, 15, 1023, 0); /* BEST EFFORT*/
964 AR9170_FILL_QUEUE(ar->edcf[1], 7, 15, 1023, 0); /* BACKGROUND */
965 AR9170_FILL_QUEUE(ar->edcf[2], 2, 7, 15, 94); /* VIDEO */
966 AR9170_FILL_QUEUE(ar->edcf[3], 2, 3, 7, 47); /* VOICE */
967 AR9170_FILL_QUEUE(ar->edcf[4], 2, 3, 7, 0); /* SPECIAL */
969 ar->bad_hw_nagger = jiffies;
975 err = ar9170_init_mac(ar);
979 err = ar9170_set_qos(ar);
983 err = ar9170_init_phy(ar, IEEE80211_BAND_2GHZ);
987 err = ar9170_init_rf(ar);
992 err = ar9170_write_reg(ar, 0x1c3d30, 0x100);
996 ar->state = AR9170_STARTED;
999 mutex_unlock(&ar->mutex);
1003 static void ar9170_op_stop(struct ieee80211_hw *hw)
1005 struct ar9170 *ar = hw->priv;
1008 ar->state = AR9170_IDLE;
1010 flush_workqueue(ar->hw->workqueue);
1012 cancel_delayed_work_sync(&ar->tx_status_janitor);
1013 cancel_work_sync(&ar->filter_config_work);
1014 cancel_work_sync(&ar->beacon_work);
1015 mutex_lock(&ar->mutex);
1016 skb_queue_purge(&ar->global_tx_status_waste);
1017 skb_queue_purge(&ar->global_tx_status);
1019 if (IS_ACCEPTING_CMD(ar)) {
1020 ar9170_set_leds_state(ar, 0);
1023 ar9170_write_reg(ar, 0x1c3d30, 0);
1027 mutex_unlock(&ar->mutex);
1030 int ar9170_op_tx(struct ieee80211_hw *hw, struct sk_buff *skb)
1032 struct ar9170 *ar = hw->priv;
1033 struct ieee80211_hdr *hdr;
1034 struct ar9170_tx_control *txc;
1035 struct ieee80211_tx_info *info;
1036 struct ieee80211_rate *rate = NULL;
1037 struct ieee80211_tx_rate *txrate;
1038 unsigned int queue = skb_get_queue_mapping(skb);
1039 unsigned long flags = 0;
1040 struct ar9170_sta_info *sta_info = NULL;
1047 if (unlikely(!IS_STARTED(ar)))
1050 hdr = (void *)skb->data;
1051 info = IEEE80211_SKB_CB(skb);
1054 spin_lock_irqsave(&ar->tx_stats_lock, flags);
1055 if (ar->tx_stats[queue].limit < ar->tx_stats[queue].len) {
1056 spin_unlock_irqrestore(&ar->tx_stats_lock, flags);
1057 return NETDEV_TX_OK;
1060 ar->tx_stats[queue].len++;
1061 ar->tx_stats[queue].count++;
1062 if (ar->tx_stats[queue].limit == ar->tx_stats[queue].len)
1063 ieee80211_stop_queue(hw, queue);
1065 spin_unlock_irqrestore(&ar->tx_stats_lock, flags);
1067 txc = (void *)skb_push(skb, sizeof(*txc));
1069 tx_status = (((info->flags & IEEE80211_TX_CTL_RATE_CTRL_PROBE) != 0) ||
1070 ((info->flags & IEEE80211_TX_CTL_REQ_TX_STATUS) != 0));
1072 if (info->control.hw_key) {
1073 icv = info->control.hw_key->icv_len;
1075 switch (info->control.hw_key->alg) {
1077 keytype = AR9170_TX_MAC_ENCR_RC4;
1080 keytype = AR9170_TX_MAC_ENCR_RC4;
1083 keytype = AR9170_TX_MAC_ENCR_AES;
1092 txc->length = cpu_to_le16(len + icv + 4);
1094 txc->mac_control = cpu_to_le16(AR9170_TX_MAC_HW_DURATION |
1095 AR9170_TX_MAC_BACKOFF);
1096 txc->mac_control |= cpu_to_le16(ar9170_qos_hwmap[queue] <<
1097 AR9170_TX_MAC_QOS_SHIFT);
1098 txc->mac_control |= cpu_to_le16(keytype);
1099 txc->phy_control = cpu_to_le32(0);
1101 if (info->flags & IEEE80211_TX_CTL_NO_ACK)
1102 txc->mac_control |= cpu_to_le16(AR9170_TX_MAC_NO_ACK);
1104 if (info->flags & IEEE80211_TX_CTL_AMPDU)
1105 txc->mac_control |= cpu_to_le16(AR9170_TX_MAC_AGGR);
1107 txrate = &info->control.rates[0];
1109 if (txrate->flags & IEEE80211_TX_RC_USE_CTS_PROTECT)
1110 txc->mac_control |= cpu_to_le16(AR9170_TX_MAC_PROT_CTS);
1111 else if (txrate->flags & IEEE80211_TX_RC_USE_RTS_CTS)
1112 txc->mac_control |= cpu_to_le16(AR9170_TX_MAC_PROT_RTS);
1114 if (txrate->flags & IEEE80211_TX_RC_GREEN_FIELD)
1115 txc->phy_control |= cpu_to_le32(AR9170_TX_PHY_GREENFIELD);
1117 if (txrate->flags & IEEE80211_TX_RC_USE_SHORT_PREAMBLE)
1118 txc->phy_control |= cpu_to_le32(AR9170_TX_PHY_SHORT_PREAMBLE);
1120 if (txrate->flags & IEEE80211_TX_RC_40_MHZ_WIDTH)
1121 txc->phy_control |= cpu_to_le32(AR9170_TX_PHY_BW_40MHZ);
1122 /* this works because 40 MHz is 2 and dup is 3 */
1123 if (txrate->flags & IEEE80211_TX_RC_DUP_DATA)
1124 txc->phy_control |= cpu_to_le32(AR9170_TX_PHY_BW_40MHZ_DUP);
1126 if (txrate->flags & IEEE80211_TX_RC_SHORT_GI)
1127 txc->phy_control |= cpu_to_le32(AR9170_TX_PHY_SHORT_GI);
1129 if (txrate->flags & IEEE80211_TX_RC_MCS) {
1130 u32 r = txrate->idx;
1133 r <<= AR9170_TX_PHY_MCS_SHIFT;
1134 if (WARN_ON(r & ~AR9170_TX_PHY_MCS_MASK))
1136 txc->phy_control |= cpu_to_le32(r & AR9170_TX_PHY_MCS_MASK);
1137 txc->phy_control |= cpu_to_le32(AR9170_TX_PHY_MOD_HT);
1139 if (txrate->flags & IEEE80211_TX_RC_40_MHZ_WIDTH) {
1140 if (info->band == IEEE80211_BAND_5GHZ)
1141 txpower = ar->power_5G_ht40;
1143 txpower = ar->power_2G_ht40;
1145 if (info->band == IEEE80211_BAND_5GHZ)
1146 txpower = ar->power_5G_ht20;
1148 txpower = ar->power_2G_ht20;
1151 power = txpower[(txrate->idx) & 7];
1156 u8 idx = txrate->idx;
1158 if (info->band != IEEE80211_BAND_2GHZ) {
1160 txpower = ar->power_5G_leg;
1161 mod = AR9170_TX_PHY_MOD_OFDM;
1164 txpower = ar->power_2G_cck;
1165 mod = AR9170_TX_PHY_MOD_CCK;
1167 mod = AR9170_TX_PHY_MOD_OFDM;
1168 txpower = ar->power_2G_ofdm;
1172 rate = &__ar9170_ratetable[idx];
1174 phyrate = rate->hw_value & 0xF;
1175 power = txpower[(rate->hw_value & 0x30) >> 4];
1176 phyrate <<= AR9170_TX_PHY_MCS_SHIFT;
1178 txc->phy_control |= cpu_to_le32(mod);
1179 txc->phy_control |= cpu_to_le32(phyrate);
1182 power <<= AR9170_TX_PHY_TX_PWR_SHIFT;
1183 power &= AR9170_TX_PHY_TX_PWR_MASK;
1184 txc->phy_control |= cpu_to_le32(power);
1187 if (ar->eeprom.tx_mask == 1) {
1188 chains = AR9170_TX_PHY_TXCHAIN_1;
1190 chains = AR9170_TX_PHY_TXCHAIN_2;
1192 /* >= 36M legacy OFDM - use only one chain */
1193 if (rate && rate->bitrate >= 360)
1194 chains = AR9170_TX_PHY_TXCHAIN_1;
1196 txc->phy_control |= cpu_to_le32(chains << AR9170_TX_PHY_TXCHAIN_SHIFT);
1199 txc->mac_control |= cpu_to_le16(AR9170_TX_MAC_RATE_PROBE);
1202 * Putting the QoS queue bits into an unexplored territory is
1203 * certainly not elegant.
1205 * In my defense: This idea provides a reasonable way to
1206 * smuggle valuable information to the tx_status callback.
1207 * Also, the idea behind this bit-abuse came straight from
1208 * the original driver code.
1212 cpu_to_le32(queue << AR9170_TX_PHY_QOS_SHIFT);
1214 if (info->control.sta) {
1215 sta_info = (void *) info->control.sta->drv_priv;
1216 skb_queue_tail(&sta_info->tx_status[queue], skb);
1218 skb_queue_tail(&ar->global_tx_status, skb);
1220 queue_delayed_work(ar->hw->workqueue,
1221 &ar->tx_status_janitor,
1222 msecs_to_jiffies(100));
1226 err = ar->tx(ar, skb, tx_status, 0);
1227 if (unlikely(tx_status && err)) {
1228 if (info->control.sta)
1229 skb_unlink(skb, &sta_info->tx_status[queue]);
1231 skb_unlink(skb, &ar->global_tx_status);
1234 return NETDEV_TX_OK;
1237 spin_lock_irqsave(&ar->tx_stats_lock, flags);
1238 ar->tx_stats[queue].len--;
1239 ar->tx_stats[queue].count--;
1240 spin_unlock_irqrestore(&ar->tx_stats_lock, flags);
1244 return NETDEV_TX_OK;
1247 static int ar9170_op_add_interface(struct ieee80211_hw *hw,
1248 struct ieee80211_if_init_conf *conf)
1250 struct ar9170 *ar = hw->priv;
1253 mutex_lock(&ar->mutex);
1260 ar->vif = conf->vif;
1261 memcpy(ar->mac_addr, conf->mac_addr, ETH_ALEN);
1263 if (modparam_nohwcrypt || (ar->vif->type != NL80211_IFTYPE_STATION)) {
1264 ar->rx_software_decryption = true;
1265 ar->disable_offload = true;
1269 ar->want_filter = AR9170_MAC_REG_FTF_DEFAULTS;
1270 err = ar9170_update_frame_filter(ar);
1274 err = ar9170_set_operating_mode(ar);
1277 mutex_unlock(&ar->mutex);
1281 static void ar9170_op_remove_interface(struct ieee80211_hw *hw,
1282 struct ieee80211_if_init_conf *conf)
1284 struct ar9170 *ar = hw->priv;
1286 mutex_lock(&ar->mutex);
1288 ar->want_filter = 0;
1289 ar9170_update_frame_filter(ar);
1290 ar9170_set_beacon_timers(ar);
1291 dev_kfree_skb(ar->beacon);
1293 ar->sniffer_enabled = false;
1294 ar->rx_software_decryption = false;
1295 ar9170_set_operating_mode(ar);
1296 mutex_unlock(&ar->mutex);
1299 static int ar9170_op_config(struct ieee80211_hw *hw, u32 changed)
1301 struct ar9170 *ar = hw->priv;
1304 mutex_lock(&ar->mutex);
1306 if (changed & IEEE80211_CONF_CHANGE_RADIO_ENABLED) {
1311 if (changed & IEEE80211_CONF_CHANGE_LISTEN_INTERVAL) {
1316 if (changed & IEEE80211_CONF_CHANGE_PS) {
1321 if (changed & IEEE80211_CONF_CHANGE_POWER) {
1326 if (changed & IEEE80211_CONF_CHANGE_RETRY_LIMITS) {
1328 * is it long_frame_max_tx_count or short_frame_max_tx_count?
1331 err = ar9170_set_hwretry_limit(ar,
1332 ar->hw->conf.long_frame_max_tx_count);
1337 if (changed & BSS_CHANGED_BEACON_INT) {
1338 err = ar9170_set_beacon_timers(ar);
1343 if (changed & IEEE80211_CONF_CHANGE_CHANNEL) {
1345 /* adjust slot time for 5 GHz */
1346 err = ar9170_set_slot_time(ar);
1350 err = ar9170_set_dyn_sifs_ack(ar);
1354 err = ar9170_set_channel(ar, hw->conf.channel,
1356 nl80211_to_ar9170(hw->conf.channel_type));
1362 mutex_unlock(&ar->mutex);
1366 static void ar9170_set_filters(struct work_struct *work)
1368 struct ar9170 *ar = container_of(work, struct ar9170,
1369 filter_config_work);
1372 if (unlikely(!IS_STARTED(ar)))
1375 mutex_lock(&ar->mutex);
1376 if (test_and_clear_bit(AR9170_FILTER_CHANGED_MODE,
1377 &ar->filter_changed)) {
1378 err = ar9170_set_operating_mode(ar);
1383 if (test_and_clear_bit(AR9170_FILTER_CHANGED_MULTICAST,
1384 &ar->filter_changed)) {
1385 err = ar9170_update_multicast(ar);
1390 if (test_and_clear_bit(AR9170_FILTER_CHANGED_FRAMEFILTER,
1391 &ar->filter_changed)) {
1392 err = ar9170_update_frame_filter(ar);
1398 mutex_unlock(&ar->mutex);
1401 static void ar9170_op_configure_filter(struct ieee80211_hw *hw,
1402 unsigned int changed_flags,
1403 unsigned int *new_flags,
1404 int mc_count, struct dev_mc_list *mclist)
1406 struct ar9170 *ar = hw->priv;
1408 /* mask supported flags */
1409 *new_flags &= FIF_ALLMULTI | FIF_CONTROL | FIF_BCN_PRBRESP_PROMISC |
1410 FIF_PROMISC_IN_BSS | FIF_FCSFAIL | FIF_PLCPFAIL;
1411 ar->filter_state = *new_flags;
1413 * We can support more by setting the sniffer bit and
1414 * then checking the error flags, later.
1417 if (changed_flags & FIF_ALLMULTI) {
1418 if (*new_flags & FIF_ALLMULTI) {
1419 ar->want_mc_hash = ~0ULL;
1424 /* always get broadcast frames */
1425 mchash = 1ULL << (0xff >> 2);
1427 for (i = 0; i < mc_count; i++) {
1428 if (WARN_ON(!mclist))
1430 mchash |= 1ULL << (mclist->dmi_addr[5] >> 2);
1431 mclist = mclist->next;
1433 ar->want_mc_hash = mchash;
1435 set_bit(AR9170_FILTER_CHANGED_MULTICAST, &ar->filter_changed);
1438 if (changed_flags & FIF_CONTROL) {
1439 u32 filter = AR9170_MAC_REG_FTF_PSPOLL |
1440 AR9170_MAC_REG_FTF_RTS |
1441 AR9170_MAC_REG_FTF_CTS |
1442 AR9170_MAC_REG_FTF_ACK |
1443 AR9170_MAC_REG_FTF_CFE |
1444 AR9170_MAC_REG_FTF_CFE_ACK;
1446 if (*new_flags & FIF_CONTROL)
1447 ar->want_filter = ar->cur_filter | filter;
1449 ar->want_filter = ar->cur_filter & ~filter;
1451 set_bit(AR9170_FILTER_CHANGED_FRAMEFILTER,
1452 &ar->filter_changed);
1455 if (changed_flags & FIF_PROMISC_IN_BSS) {
1456 ar->sniffer_enabled = ((*new_flags) & FIF_PROMISC_IN_BSS) != 0;
1457 set_bit(AR9170_FILTER_CHANGED_MODE,
1458 &ar->filter_changed);
1461 if (likely(IS_STARTED(ar)))
1462 queue_work(ar->hw->workqueue, &ar->filter_config_work);
1465 static void ar9170_op_bss_info_changed(struct ieee80211_hw *hw,
1466 struct ieee80211_vif *vif,
1467 struct ieee80211_bss_conf *bss_conf,
1470 struct ar9170 *ar = hw->priv;
1473 mutex_lock(&ar->mutex);
1475 if (changed & BSS_CHANGED_BSSID) {
1476 memcpy(ar->bssid, bss_conf->bssid, ETH_ALEN);
1477 err = ar9170_set_operating_mode(ar);
1482 if (changed & (BSS_CHANGED_BEACON | BSS_CHANGED_BEACON_ENABLED)) {
1483 err = ar9170_update_beacon(ar);
1487 err = ar9170_set_beacon_timers(ar);
1492 if (changed & BSS_CHANGED_ASSOC) {
1493 ar->state = bss_conf->assoc ? AR9170_ASSOCIATED : ar->state;
1495 #ifndef CONFIG_AR9170_LEDS
1496 /* enable assoc LED. */
1497 err = ar9170_set_leds_state(ar, bss_conf->assoc ? 2 : 0);
1498 #endif /* CONFIG_AR9170_LEDS */
1501 if (changed & BSS_CHANGED_BEACON_INT) {
1502 err = ar9170_set_beacon_timers(ar);
1507 if (changed & BSS_CHANGED_HT) {
1512 if (changed & BSS_CHANGED_ERP_SLOT) {
1513 err = ar9170_set_slot_time(ar);
1518 if (changed & BSS_CHANGED_BASIC_RATES) {
1519 err = ar9170_set_basic_rates(ar);
1525 mutex_unlock(&ar->mutex);
1528 static u64 ar9170_op_get_tsf(struct ieee80211_hw *hw)
1530 struct ar9170 *ar = hw->priv;
1536 mutex_lock(&ar->mutex);
1537 err = ar9170_read_reg(ar, AR9170_MAC_REG_TSF_L, &tsf_low);
1539 err = ar9170_read_reg(ar, AR9170_MAC_REG_TSF_H, &tsf_high);
1540 mutex_unlock(&ar->mutex);
1546 tsf = (tsf << 32) | tsf_low;
1550 static int ar9170_set_key(struct ieee80211_hw *hw, enum set_key_cmd cmd,
1551 struct ieee80211_vif *vif, struct ieee80211_sta *sta,
1552 struct ieee80211_key_conf *key)
1554 struct ar9170 *ar = hw->priv;
1558 if ((!ar->vif) || (ar->disable_offload))
1563 if (key->keylen == WLAN_KEY_LEN_WEP40)
1564 ktype = AR9170_ENC_ALG_WEP64;
1566 ktype = AR9170_ENC_ALG_WEP128;
1569 ktype = AR9170_ENC_ALG_TKIP;
1572 ktype = AR9170_ENC_ALG_AESCCMP;
1578 mutex_lock(&ar->mutex);
1579 if (cmd == SET_KEY) {
1580 if (unlikely(!IS_STARTED(ar))) {
1585 /* group keys need all-zeroes address */
1586 if (!(key->flags & IEEE80211_KEY_FLAG_PAIRWISE))
1589 if (key->flags & IEEE80211_KEY_FLAG_PAIRWISE) {
1590 for (i = 0; i < 64; i++)
1591 if (!(ar->usedkeys & BIT(i)))
1594 ar->rx_software_decryption = true;
1595 ar9170_set_operating_mode(ar);
1600 i = 64 + key->keyidx;
1603 key->hw_key_idx = i;
1605 err = ar9170_upload_key(ar, i, sta ? sta->addr : NULL, ktype, 0,
1606 key->key, min_t(u8, 16, key->keylen));
1610 if (key->alg == ALG_TKIP) {
1611 err = ar9170_upload_key(ar, i, sta ? sta->addr : NULL,
1612 ktype, 1, key->key + 16, 16);
1617 * hardware is not capable generating the MMIC
1618 * for fragmented frames!
1620 key->flags |= IEEE80211_KEY_FLAG_GENERATE_MMIC;
1624 ar->usedkeys |= BIT(i);
1626 key->flags |= IEEE80211_KEY_FLAG_GENERATE_IV;
1628 if (unlikely(!IS_STARTED(ar))) {
1629 /* The device is gone... together with the key ;-) */
1634 err = ar9170_disable_key(ar, key->hw_key_idx);
1638 if (key->hw_key_idx < 64) {
1639 ar->usedkeys &= ~BIT(key->hw_key_idx);
1641 err = ar9170_upload_key(ar, key->hw_key_idx, NULL,
1642 AR9170_ENC_ALG_NONE, 0,
1647 if (key->alg == ALG_TKIP) {
1648 err = ar9170_upload_key(ar, key->hw_key_idx,
1650 AR9170_ENC_ALG_NONE, 1,
1659 ar9170_regwrite_begin(ar);
1660 ar9170_regwrite(AR9170_MAC_REG_ROLL_CALL_TBL_L, ar->usedkeys);
1661 ar9170_regwrite(AR9170_MAC_REG_ROLL_CALL_TBL_H, ar->usedkeys >> 32);
1662 ar9170_regwrite_finish();
1663 err = ar9170_regwrite_result();
1666 mutex_unlock(&ar->mutex);
1671 static void ar9170_sta_notify(struct ieee80211_hw *hw,
1672 struct ieee80211_vif *vif,
1673 enum sta_notify_cmd cmd,
1674 struct ieee80211_sta *sta)
1676 struct ar9170 *ar = hw->priv;
1677 struct ar9170_sta_info *info = (void *) sta->drv_priv;
1678 struct sk_buff *skb;
1682 case STA_NOTIFY_ADD:
1683 for (i = 0; i < ar->hw->queues; i++)
1684 skb_queue_head_init(&info->tx_status[i]);
1687 case STA_NOTIFY_REMOVE:
1690 * transfer all outstanding frames that need a tx_status
1691 * reports to the global tx_status queue
1694 for (i = 0; i < ar->hw->queues; i++) {
1695 while ((skb = skb_dequeue(&info->tx_status[i]))) {
1696 #ifdef AR9170_QUEUE_DEBUG
1697 printk(KERN_DEBUG "%s: queueing frame in "
1698 "global tx_status queue =>\n",
1699 wiphy_name(ar->hw->wiphy));
1701 ar9170_print_txheader(ar, skb);
1702 #endif /* AR9170_QUEUE_DEBUG */
1703 skb_queue_tail(&ar->global_tx_status, skb);
1706 queue_delayed_work(ar->hw->workqueue, &ar->tx_status_janitor,
1707 msecs_to_jiffies(100));
1715 static int ar9170_get_stats(struct ieee80211_hw *hw,
1716 struct ieee80211_low_level_stats *stats)
1718 struct ar9170 *ar = hw->priv;
1722 mutex_lock(&ar->mutex);
1723 err = ar9170_read_reg(ar, AR9170_MAC_REG_TX_RETRY, &val);
1724 ar->stats.dot11ACKFailureCount += val;
1726 memcpy(stats, &ar->stats, sizeof(*stats));
1727 mutex_unlock(&ar->mutex);
1732 static int ar9170_get_tx_stats(struct ieee80211_hw *hw,
1733 struct ieee80211_tx_queue_stats *tx_stats)
1735 struct ar9170 *ar = hw->priv;
1737 spin_lock_bh(&ar->tx_stats_lock);
1738 memcpy(tx_stats, ar->tx_stats, sizeof(tx_stats[0]) * hw->queues);
1739 spin_unlock_bh(&ar->tx_stats_lock);
1744 static int ar9170_conf_tx(struct ieee80211_hw *hw, u16 queue,
1745 const struct ieee80211_tx_queue_params *param)
1747 struct ar9170 *ar = hw->priv;
1750 mutex_lock(&ar->mutex);
1751 if ((param) && !(queue > ar->hw->queues)) {
1752 memcpy(&ar->edcf[ar9170_qos_hwmap[queue]],
1753 param, sizeof(*param));
1755 ret = ar9170_set_qos(ar);
1759 mutex_unlock(&ar->mutex);
1763 static int ar9170_ampdu_action(struct ieee80211_hw *hw,
1764 enum ieee80211_ampdu_mlme_action action,
1765 struct ieee80211_sta *sta, u16 tid, u16 *ssn)
1768 case IEEE80211_AMPDU_RX_START:
1769 case IEEE80211_AMPDU_RX_STOP:
1771 * Something goes wrong -- RX locks up
1772 * after a while of receiving aggregated
1773 * frames -- not enabling for now.
1781 static const struct ieee80211_ops ar9170_ops = {
1782 .start = ar9170_op_start,
1783 .stop = ar9170_op_stop,
1785 .add_interface = ar9170_op_add_interface,
1786 .remove_interface = ar9170_op_remove_interface,
1787 .config = ar9170_op_config,
1788 .configure_filter = ar9170_op_configure_filter,
1789 .conf_tx = ar9170_conf_tx,
1790 .bss_info_changed = ar9170_op_bss_info_changed,
1791 .get_tsf = ar9170_op_get_tsf,
1792 .set_key = ar9170_set_key,
1793 .sta_notify = ar9170_sta_notify,
1794 .get_stats = ar9170_get_stats,
1795 .get_tx_stats = ar9170_get_tx_stats,
1796 .ampdu_action = ar9170_ampdu_action,
1799 void *ar9170_alloc(size_t priv_size)
1801 struct ieee80211_hw *hw;
1803 struct sk_buff *skb;
1807 * this buffer is used for rx stream reconstruction.
1808 * Under heavy load this device (or the transport layer?)
1809 * tends to split the streams into seperate rx descriptors.
1812 skb = __dev_alloc_skb(AR9170_MAX_RX_BUFFER_SIZE, GFP_KERNEL);
1816 hw = ieee80211_alloc_hw(priv_size, &ar9170_ops);
1822 ar->rx_failover = skb;
1824 mutex_init(&ar->mutex);
1825 spin_lock_init(&ar->cmdlock);
1826 spin_lock_init(&ar->tx_stats_lock);
1827 skb_queue_head_init(&ar->global_tx_status);
1828 skb_queue_head_init(&ar->global_tx_status_waste);
1829 ar9170_rx_reset_rx_mpdu(ar);
1830 INIT_WORK(&ar->filter_config_work, ar9170_set_filters);
1831 INIT_WORK(&ar->beacon_work, ar9170_new_beacon);
1832 INIT_DELAYED_WORK(&ar->tx_status_janitor, ar9170_tx_status_janitor);
1834 /* all hw supports 2.4 GHz, so set channel to 1 by default */
1835 ar->channel = &ar9170_2ghz_chantable[0];
1837 /* first part of wiphy init */
1838 ar->hw->wiphy->interface_modes = BIT(NL80211_IFTYPE_STATION) |
1839 BIT(NL80211_IFTYPE_WDS) |
1840 BIT(NL80211_IFTYPE_ADHOC);
1841 ar->hw->flags |= IEEE80211_HW_RX_INCLUDES_FCS |
1842 IEEE80211_HW_HOST_BROADCAST_PS_BUFFERING |
1843 IEEE80211_HW_SIGNAL_DBM |
1844 IEEE80211_HW_NOISE_DBM;
1846 ar->hw->queues = __AR9170_NUM_TXQ;
1847 ar->hw->extra_tx_headroom = 8;
1848 ar->hw->sta_data_size = sizeof(struct ar9170_sta_info);
1850 ar->hw->max_rates = 1;
1851 ar->hw->max_rate_tries = 3;
1853 for (i = 0; i < ARRAY_SIZE(ar->noise); i++)
1854 ar->noise[i] = -95; /* ATH_DEFAULT_NOISE_FLOOR */
1860 return ERR_PTR(-ENOMEM);
1863 static int ar9170_read_eeprom(struct ar9170 *ar)
1865 #define RW 8 /* number of words to read at once */
1866 #define RB (sizeof(u32) * RW)
1867 DECLARE_MAC_BUF(mbuf);
1868 u8 *eeprom = (void *)&ar->eeprom;
1869 u8 *addr = ar->eeprom.mac_address;
1871 int i, j, err, bands = 0;
1873 BUILD_BUG_ON(sizeof(ar->eeprom) & 3);
1875 BUILD_BUG_ON(RB > AR9170_MAX_CMD_LEN - 4);
1877 /* don't want to handle trailing remains */
1878 BUILD_BUG_ON(sizeof(ar->eeprom) % RB);
1881 for (i = 0; i < sizeof(ar->eeprom)/RB; i++) {
1882 for (j = 0; j < RW; j++)
1883 offsets[j] = cpu_to_le32(AR9170_EEPROM_START +
1886 err = ar->exec_cmd(ar, AR9170_CMD_RREG,
1887 RB, (u8 *) &offsets,
1888 RB, eeprom + RB * i);
1896 if (ar->eeprom.length == cpu_to_le16(0xFFFF))
1899 if (ar->eeprom.operating_flags & AR9170_OPFLAG_2GHZ) {
1900 ar->hw->wiphy->bands[IEEE80211_BAND_2GHZ] = &ar9170_band_2GHz;
1903 if (ar->eeprom.operating_flags & AR9170_OPFLAG_5GHZ) {
1904 ar->hw->wiphy->bands[IEEE80211_BAND_5GHZ] = &ar9170_band_5GHz;
1908 * I measured this, a bandswitch takes roughly
1909 * 135 ms and a frequency switch about 80.
1911 * FIXME: measure these values again once EEPROM settings
1912 * are used, that will influence them!
1915 ar->hw->channel_change_time = 135 * 1000;
1917 ar->hw->channel_change_time = 80 * 1000;
1919 ar->regulatory.current_rd = le16_to_cpu(ar->eeprom.reg_domain[0]);
1920 ar->regulatory.current_rd_ext = le16_to_cpu(ar->eeprom.reg_domain[1]);
1922 /* second part of wiphy init */
1923 SET_IEEE80211_PERM_ADDR(ar->hw, addr);
1925 return bands ? 0 : -EINVAL;
1928 static int ar9170_reg_notifier(struct wiphy *wiphy,
1929 struct regulatory_request *request)
1931 struct ieee80211_hw *hw = wiphy_to_ieee80211_hw(wiphy);
1932 struct ar9170 *ar = hw->priv;
1934 return ath_reg_notifier_apply(wiphy, request, &ar->regulatory);
1937 int ar9170_register(struct ar9170 *ar, struct device *pdev)
1941 /* try to read EEPROM, init MAC addr */
1942 err = ar9170_read_eeprom(ar);
1946 err = ath_regd_init(&ar->regulatory, ar->hw->wiphy,
1947 ar9170_reg_notifier);
1951 err = ieee80211_register_hw(ar->hw);
1955 if (!ath_is_world_regd(&ar->regulatory))
1956 regulatory_hint(ar->hw->wiphy, ar->regulatory.alpha2);
1958 err = ar9170_init_leds(ar);
1962 #ifdef CONFIG_AR9170_LEDS
1963 err = ar9170_register_leds(ar);
1966 #endif /* CONFIG_AR9170_LEDS */
1968 dev_info(pdev, "Atheros AR9170 is registered as '%s'\n",
1969 wiphy_name(ar->hw->wiphy));
1974 ieee80211_unregister_hw(ar->hw);
1980 void ar9170_unregister(struct ar9170 *ar)
1982 #ifdef CONFIG_AR9170_LEDS
1983 ar9170_unregister_leds(ar);
1984 #endif /* CONFIG_AR9170_LEDS */
1986 kfree_skb(ar->rx_failover);
1987 ieee80211_unregister_hw(ar->hw);
1988 mutex_destroy(&ar->mutex);
git://ftp.safe.ca / safe / jmp / linux-2.6 / blob