if_rsu.c revision 288051
1253789Srpaulo/* $OpenBSD: if_rsu.c,v 1.17 2013/04/15 09:23:01 mglocker Exp $ */ 2253789Srpaulo 3253789Srpaulo/*- 4253789Srpaulo * Copyright (c) 2010 Damien Bergamini <damien.bergamini@free.fr> 5253789Srpaulo * 6253789Srpaulo * Permission to use, copy, modify, and distribute this software for any 7253789Srpaulo * purpose with or without fee is hereby granted, provided that the above 8253789Srpaulo * copyright notice and this permission notice appear in all copies. 9253789Srpaulo * 10253789Srpaulo * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES 11253789Srpaulo * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF 12253789Srpaulo * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR 13253789Srpaulo * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES 14253789Srpaulo * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN 15253789Srpaulo * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF 16253789Srpaulo * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. 17253789Srpaulo */ 18253789Srpaulo#include <sys/cdefs.h> 19253789Srpaulo__FBSDID("$FreeBSD: head/sys/dev/usb/wlan/if_rsu.c 288051 2015-09-21 02:12:01Z adrian $"); 20253789Srpaulo 21253789Srpaulo/* 22253789Srpaulo * Driver for Realtek RTL8188SU/RTL8191SU/RTL8192SU. 23253789Srpaulo * 24253789Srpaulo * TODO: 25253789Srpaulo * o 11n support 26253789Srpaulo * o h/w crypto 27253789Srpaulo * o hostap / ibss / mesh 28253789Srpaulo */ 29287727Sadrian 30253789Srpaulo#include <sys/param.h> 31253789Srpaulo#include <sys/endian.h> 32253789Srpaulo#include <sys/sockio.h> 33253789Srpaulo#include <sys/mbuf.h> 34253789Srpaulo#include <sys/kernel.h> 35253789Srpaulo#include <sys/socket.h> 36253789Srpaulo#include <sys/systm.h> 37253789Srpaulo#include <sys/conf.h> 38253789Srpaulo#include <sys/bus.h> 39253789Srpaulo#include <sys/rman.h> 40253789Srpaulo#include <sys/firmware.h> 41253789Srpaulo#include <sys/module.h> 42253789Srpaulo 43253789Srpaulo#include <machine/bus.h> 44253789Srpaulo#include <machine/resource.h> 45253789Srpaulo 46253789Srpaulo#include <net/bpf.h> 47253789Srpaulo#include <net/if.h> 48257176Sglebius#include <net/if_var.h> 49253789Srpaulo#include <net/if_arp.h> 50253789Srpaulo#include <net/if_dl.h> 51253789Srpaulo#include <net/if_media.h> 52253789Srpaulo#include <net/if_types.h> 53253789Srpaulo 54253789Srpaulo#include <netinet/in.h> 55253789Srpaulo#include <netinet/in_systm.h> 56253789Srpaulo#include <netinet/in_var.h> 57253789Srpaulo#include <netinet/if_ether.h> 58253789Srpaulo#include <netinet/ip.h> 59253789Srpaulo 60253789Srpaulo#include <net80211/ieee80211_var.h> 61253789Srpaulo#include <net80211/ieee80211_regdomain.h> 62253789Srpaulo#include <net80211/ieee80211_radiotap.h> 63253789Srpaulo 64253789Srpaulo#include <dev/usb/usb.h> 65253789Srpaulo#include <dev/usb/usbdi.h> 66253789Srpaulo#include "usbdevs.h" 67253789Srpaulo 68253789Srpaulo#define USB_DEBUG_VAR rsu_debug 69253789Srpaulo#include <dev/usb/usb_debug.h> 70253789Srpaulo 71253789Srpaulo#include <dev/usb/wlan/if_rsureg.h> 72253789Srpaulo 73253789Srpaulo#ifdef USB_DEBUG 74253789Srpaulostatic int rsu_debug = 0; 75253789SrpauloSYSCTL_NODE(_hw_usb, OID_AUTO, rsu, CTLFLAG_RW, 0, "USB rsu"); 76276701ShselaskySYSCTL_INT(_hw_usb_rsu, OID_AUTO, debug, CTLFLAG_RWTUN, &rsu_debug, 0, 77253789Srpaulo "Debug level"); 78287727Sadrian#define RSU_DPRINTF(_sc, _flg, ...) \ 79287727Sadrian do \ 80287727Sadrian if (((_flg) == (RSU_DEBUG_ANY)) || (rsu_debug & (_flg))) \ 81287727Sadrian device_printf((_sc)->sc_dev, __VA_ARGS__); \ 82287727Sadrian while (0) 83287727Sadrian#else 84287727Sadrian#define RSU_DPRINTF(_sc, _flg, ...) 85253789Srpaulo#endif 86253789Srpaulo 87287947Sadrianstatic int rsu_enable_11n = 0; 88287947SadrianTUNABLE_INT("hw.usb.rsu.enable_11n", &rsu_enable_11n); 89287947Sadrian 90287727Sadrian#define RSU_DEBUG_ANY 0xffffffff 91287727Sadrian#define RSU_DEBUG_TX 0x00000001 92287727Sadrian#define RSU_DEBUG_RX 0x00000002 93287727Sadrian#define RSU_DEBUG_RESET 0x00000004 94287727Sadrian#define RSU_DEBUG_CALIB 0x00000008 95287727Sadrian#define RSU_DEBUG_STATE 0x00000010 96287727Sadrian#define RSU_DEBUG_SCAN 0x00000020 97287727Sadrian#define RSU_DEBUG_FWCMD 0x00000040 98287727Sadrian#define RSU_DEBUG_TXDONE 0x00000080 99287727Sadrian#define RSU_DEBUG_FW 0x00000100 100287727Sadrian#define RSU_DEBUG_FWDBG 0x00000200 101287727Sadrian 102253789Srpaulostatic const STRUCT_USB_HOST_ID rsu_devs[] = { 103253789Srpaulo#define RSU_HT_NOT_SUPPORTED 0 104253789Srpaulo#define RSU_HT_SUPPORTED 1 105253789Srpaulo#define RSU_DEV_HT(v,p) { USB_VPI(USB_VENDOR_##v, USB_PRODUCT_##v##_##p, \ 106253789Srpaulo RSU_HT_SUPPORTED) } 107253789Srpaulo#define RSU_DEV(v,p) { USB_VPI(USB_VENDOR_##v, USB_PRODUCT_##v##_##p, \ 108253789Srpaulo RSU_HT_NOT_SUPPORTED) } 109253789Srpaulo RSU_DEV(ASUS, RTL8192SU), 110253789Srpaulo RSU_DEV(AZUREWAVE, RTL8192SU_4), 111253789Srpaulo RSU_DEV_HT(ACCTON, RTL8192SU), 112253789Srpaulo RSU_DEV_HT(ASUS, USBN10), 113253789Srpaulo RSU_DEV_HT(AZUREWAVE, RTL8192SU_1), 114253789Srpaulo RSU_DEV_HT(AZUREWAVE, RTL8192SU_2), 115253789Srpaulo RSU_DEV_HT(AZUREWAVE, RTL8192SU_3), 116253789Srpaulo RSU_DEV_HT(AZUREWAVE, RTL8192SU_5), 117253789Srpaulo RSU_DEV_HT(BELKIN, RTL8192SU_1), 118253789Srpaulo RSU_DEV_HT(BELKIN, RTL8192SU_2), 119253789Srpaulo RSU_DEV_HT(BELKIN, RTL8192SU_3), 120253789Srpaulo RSU_DEV_HT(CONCEPTRONIC2, RTL8192SU_1), 121253789Srpaulo RSU_DEV_HT(CONCEPTRONIC2, RTL8192SU_2), 122253789Srpaulo RSU_DEV_HT(CONCEPTRONIC2, RTL8192SU_3), 123253789Srpaulo RSU_DEV_HT(COREGA, RTL8192SU), 124253789Srpaulo RSU_DEV_HT(DLINK2, DWA131A1), 125253789Srpaulo RSU_DEV_HT(DLINK2, RTL8192SU_1), 126253789Srpaulo RSU_DEV_HT(DLINK2, RTL8192SU_2), 127253789Srpaulo RSU_DEV_HT(EDIMAX, RTL8192SU_1), 128253789Srpaulo RSU_DEV_HT(EDIMAX, RTL8192SU_2), 129258028Skevlo RSU_DEV_HT(EDIMAX, EW7622UMN), 130253789Srpaulo RSU_DEV_HT(GUILLEMOT, HWGUN54), 131253789Srpaulo RSU_DEV_HT(GUILLEMOT, HWNUM300), 132253789Srpaulo RSU_DEV_HT(HAWKING, RTL8192SU_1), 133253789Srpaulo RSU_DEV_HT(HAWKING, RTL8192SU_2), 134253789Srpaulo RSU_DEV_HT(PLANEX2, GWUSNANO), 135253789Srpaulo RSU_DEV_HT(REALTEK, RTL8171), 136253789Srpaulo RSU_DEV_HT(REALTEK, RTL8172), 137253789Srpaulo RSU_DEV_HT(REALTEK, RTL8173), 138253789Srpaulo RSU_DEV_HT(REALTEK, RTL8174), 139253789Srpaulo RSU_DEV_HT(REALTEK, RTL8192SU), 140253789Srpaulo RSU_DEV_HT(REALTEK, RTL8712), 141253789Srpaulo RSU_DEV_HT(REALTEK, RTL8713), 142253789Srpaulo RSU_DEV_HT(SENAO, RTL8192SU_1), 143253789Srpaulo RSU_DEV_HT(SENAO, RTL8192SU_2), 144253789Srpaulo RSU_DEV_HT(SITECOMEU, WL349V1), 145253789Srpaulo RSU_DEV_HT(SITECOMEU, WL353), 146253789Srpaulo RSU_DEV_HT(SWEEX2, LW154), 147274684Skevlo RSU_DEV_HT(TRENDNET, TEW646UBH), 148253789Srpaulo#undef RSU_DEV_HT 149253789Srpaulo#undef RSU_DEV 150253789Srpaulo}; 151253789Srpaulo 152253789Srpaulostatic device_probe_t rsu_match; 153253789Srpaulostatic device_attach_t rsu_attach; 154253789Srpaulostatic device_detach_t rsu_detach; 155267041Shselaskystatic usb_callback_t rsu_bulk_tx_callback_be_bk; 156267041Shselaskystatic usb_callback_t rsu_bulk_tx_callback_vi_vo; 157287896Sadrianstatic usb_callback_t rsu_bulk_tx_callback_h2c; 158253789Srpaulostatic usb_callback_t rsu_bulk_rx_callback; 159253789Srpaulostatic usb_error_t rsu_do_request(struct rsu_softc *, 160253789Srpaulo struct usb_device_request *, void *); 161253789Srpaulostatic struct ieee80211vap * 162253789Srpaulo rsu_vap_create(struct ieee80211com *, const char name[], 163253789Srpaulo int, enum ieee80211_opmode, int, const uint8_t bssid[], 164253789Srpaulo const uint8_t mac[]); 165253789Srpaulostatic void rsu_vap_delete(struct ieee80211vap *); 166253789Srpaulostatic void rsu_scan_start(struct ieee80211com *); 167253789Srpaulostatic void rsu_scan_end(struct ieee80211com *); 168253789Srpaulostatic void rsu_set_channel(struct ieee80211com *); 169283540Sglebiusstatic void rsu_update_mcast(struct ieee80211com *); 170253789Srpaulostatic int rsu_alloc_rx_list(struct rsu_softc *); 171253789Srpaulostatic void rsu_free_rx_list(struct rsu_softc *); 172253789Srpaulostatic int rsu_alloc_tx_list(struct rsu_softc *); 173253789Srpaulostatic void rsu_free_tx_list(struct rsu_softc *); 174253789Srpaulostatic void rsu_free_list(struct rsu_softc *, struct rsu_data [], int); 175253789Srpaulostatic struct rsu_data *_rsu_getbuf(struct rsu_softc *); 176253789Srpaulostatic struct rsu_data *rsu_getbuf(struct rsu_softc *); 177287953Sadrianstatic void rsu_freebuf(struct rsu_softc *, struct rsu_data *); 178253789Srpaulostatic int rsu_write_region_1(struct rsu_softc *, uint16_t, uint8_t *, 179253789Srpaulo int); 180253789Srpaulostatic void rsu_write_1(struct rsu_softc *, uint16_t, uint8_t); 181253789Srpaulostatic void rsu_write_2(struct rsu_softc *, uint16_t, uint16_t); 182253789Srpaulostatic void rsu_write_4(struct rsu_softc *, uint16_t, uint32_t); 183253789Srpaulostatic int rsu_read_region_1(struct rsu_softc *, uint16_t, uint8_t *, 184253789Srpaulo int); 185253789Srpaulostatic uint8_t rsu_read_1(struct rsu_softc *, uint16_t); 186253789Srpaulostatic uint16_t rsu_read_2(struct rsu_softc *, uint16_t); 187253789Srpaulostatic uint32_t rsu_read_4(struct rsu_softc *, uint16_t); 188253789Srpaulostatic int rsu_fw_iocmd(struct rsu_softc *, uint32_t); 189253789Srpaulostatic uint8_t rsu_efuse_read_1(struct rsu_softc *, uint16_t); 190253789Srpaulostatic int rsu_read_rom(struct rsu_softc *); 191253789Srpaulostatic int rsu_fw_cmd(struct rsu_softc *, uint8_t, void *, int); 192253789Srpaulostatic void rsu_calib_task(void *, int); 193253789Srpaulostatic int rsu_newstate(struct ieee80211vap *, enum ieee80211_state, int); 194253789Srpaulo#ifdef notyet 195253789Srpaulostatic void rsu_set_key(struct rsu_softc *, const struct ieee80211_key *); 196253789Srpaulostatic void rsu_delete_key(struct rsu_softc *, const struct ieee80211_key *); 197253789Srpaulo#endif 198253789Srpaulostatic int rsu_site_survey(struct rsu_softc *, struct ieee80211vap *); 199253789Srpaulostatic int rsu_join_bss(struct rsu_softc *, struct ieee80211_node *); 200253789Srpaulostatic int rsu_disconnect(struct rsu_softc *); 201253789Srpaulostatic void rsu_event_survey(struct rsu_softc *, uint8_t *, int); 202253789Srpaulostatic void rsu_event_join_bss(struct rsu_softc *, uint8_t *, int); 203253789Srpaulostatic void rsu_rx_event(struct rsu_softc *, uint8_t, uint8_t *, int); 204253789Srpaulostatic void rsu_rx_multi_event(struct rsu_softc *, uint8_t *, int); 205253789Srpaulostatic int8_t rsu_get_rssi(struct rsu_softc *, int, void *); 206253789Srpaulostatic struct mbuf * 207253789Srpaulo rsu_rx_frame(struct rsu_softc *, uint8_t *, int, int *); 208253789Srpaulostatic struct mbuf * 209253789Srpaulo rsu_rx_multi_frame(struct rsu_softc *, uint8_t *, int, int *); 210253789Srpaulostatic struct mbuf * 211253789Srpaulo rsu_rxeof(struct usb_xfer *, struct rsu_data *, int *); 212253789Srpaulostatic void rsu_txeof(struct usb_xfer *, struct rsu_data *); 213253789Srpaulostatic int rsu_raw_xmit(struct ieee80211_node *, struct mbuf *, 214253789Srpaulo const struct ieee80211_bpf_params *); 215287197Sglebiusstatic void rsu_init(struct rsu_softc *); 216253789Srpaulostatic int rsu_tx_start(struct rsu_softc *, struct ieee80211_node *, 217266505Shselasky struct mbuf *, struct rsu_data *); 218287197Sglebiusstatic int rsu_transmit(struct ieee80211com *, struct mbuf *); 219287197Sglebiusstatic void rsu_start(struct rsu_softc *); 220287197Sglebiusstatic void rsu_parent(struct ieee80211com *); 221287197Sglebiusstatic void rsu_stop(struct rsu_softc *); 222287892Sadrianstatic void rsu_ms_delay(struct rsu_softc *, int); 223253789Srpaulo 224253789Srpaulostatic device_method_t rsu_methods[] = { 225253789Srpaulo DEVMETHOD(device_probe, rsu_match), 226253789Srpaulo DEVMETHOD(device_attach, rsu_attach), 227253789Srpaulo DEVMETHOD(device_detach, rsu_detach), 228253789Srpaulo 229253789Srpaulo DEVMETHOD_END 230253789Srpaulo}; 231253789Srpaulo 232253789Srpaulostatic driver_t rsu_driver = { 233253789Srpaulo .name = "rsu", 234253789Srpaulo .methods = rsu_methods, 235253789Srpaulo .size = sizeof(struct rsu_softc) 236253789Srpaulo}; 237253789Srpaulo 238253789Srpaulostatic devclass_t rsu_devclass; 239253789Srpaulo 240253789SrpauloDRIVER_MODULE(rsu, uhub, rsu_driver, rsu_devclass, NULL, 0); 241253789SrpauloMODULE_DEPEND(rsu, wlan, 1, 1, 1); 242253789SrpauloMODULE_DEPEND(rsu, usb, 1, 1, 1); 243253789SrpauloMODULE_DEPEND(rsu, firmware, 1, 1, 1); 244253789SrpauloMODULE_VERSION(rsu, 1); 245253789Srpaulo 246267041Shselaskystatic uint8_t rsu_wme_ac_xfer_map[4] = { 247267041Shselasky [WME_AC_BE] = RSU_BULK_TX_BE_BK, 248267041Shselasky [WME_AC_BK] = RSU_BULK_TX_BE_BK, 249267041Shselasky [WME_AC_VI] = RSU_BULK_TX_VI_VO, 250267041Shselasky [WME_AC_VO] = RSU_BULK_TX_VI_VO, 251267041Shselasky}; 252267041Shselasky 253287896Sadrian/* XXX hard-coded */ 254287896Sadrian#define RSU_H2C_ENDPOINT 3 255287896Sadrian 256253789Srpaulostatic const struct usb_config rsu_config[RSU_N_TRANSFER] = { 257253789Srpaulo [RSU_BULK_RX] = { 258253789Srpaulo .type = UE_BULK, 259253789Srpaulo .endpoint = UE_ADDR_ANY, 260253789Srpaulo .direction = UE_DIR_IN, 261253789Srpaulo .bufsize = RSU_RXBUFSZ, 262253789Srpaulo .flags = { 263253789Srpaulo .pipe_bof = 1, 264253789Srpaulo .short_xfer_ok = 1 265253789Srpaulo }, 266253789Srpaulo .callback = rsu_bulk_rx_callback 267253789Srpaulo }, 268267041Shselasky [RSU_BULK_TX_BE_BK] = { 269253789Srpaulo .type = UE_BULK, 270253789Srpaulo .endpoint = 0x06, 271253789Srpaulo .direction = UE_DIR_OUT, 272253789Srpaulo .bufsize = RSU_TXBUFSZ, 273253789Srpaulo .flags = { 274253789Srpaulo .ext_buffer = 1, 275253789Srpaulo .pipe_bof = 1, 276253789Srpaulo .force_short_xfer = 1 277253789Srpaulo }, 278267041Shselasky .callback = rsu_bulk_tx_callback_be_bk, 279253789Srpaulo .timeout = RSU_TX_TIMEOUT 280253789Srpaulo }, 281267041Shselasky [RSU_BULK_TX_VI_VO] = { 282253789Srpaulo .type = UE_BULK, 283253789Srpaulo .endpoint = 0x04, 284253789Srpaulo .direction = UE_DIR_OUT, 285253789Srpaulo .bufsize = RSU_TXBUFSZ, 286253789Srpaulo .flags = { 287253789Srpaulo .ext_buffer = 1, 288253789Srpaulo .pipe_bof = 1, 289253789Srpaulo .force_short_xfer = 1 290253789Srpaulo }, 291267041Shselasky .callback = rsu_bulk_tx_callback_vi_vo, 292253789Srpaulo .timeout = RSU_TX_TIMEOUT 293253789Srpaulo }, 294287896Sadrian [RSU_BULK_TX_H2C] = { 295287896Sadrian .type = UE_BULK, 296287896Sadrian .endpoint = 0x0d, 297287896Sadrian .direction = UE_DIR_OUT, 298287896Sadrian .bufsize = RSU_TXBUFSZ, 299287896Sadrian .flags = { 300287896Sadrian .ext_buffer = 1, 301287896Sadrian .pipe_bof = 1, 302287896Sadrian .short_xfer_ok = 1 303287896Sadrian }, 304287896Sadrian .callback = rsu_bulk_tx_callback_h2c, 305287896Sadrian .timeout = RSU_TX_TIMEOUT 306287896Sadrian }, 307253789Srpaulo}; 308253789Srpaulo 309253789Srpaulostatic int 310253789Srpaulorsu_match(device_t self) 311253789Srpaulo{ 312253789Srpaulo struct usb_attach_arg *uaa = device_get_ivars(self); 313253789Srpaulo 314253789Srpaulo if (uaa->usb_mode != USB_MODE_HOST || 315253789Srpaulo uaa->info.bIfaceIndex != 0 || 316253789Srpaulo uaa->info.bConfigIndex != 0) 317253789Srpaulo return (ENXIO); 318253789Srpaulo 319253789Srpaulo return (usbd_lookup_id_by_uaa(rsu_devs, sizeof(rsu_devs), uaa)); 320253789Srpaulo} 321253789Srpaulo 322253789Srpaulostatic int 323287763Sadrianrsu_send_mgmt(struct ieee80211_node *ni, int type, int arg) 324287763Sadrian{ 325287763Sadrian 326287763Sadrian return (ENOTSUP); 327287763Sadrian} 328287763Sadrian 329287895Sadrianstatic void 330287895Sadrianrsu_update_chw(struct ieee80211com *ic) 331287895Sadrian{ 332287895Sadrian 333287895Sadrian} 334287895Sadrian 335287763Sadrianstatic int 336287895Sadrianrsu_ampdu_enable(struct ieee80211_node *ni, struct ieee80211_tx_ampdu *tap) 337287895Sadrian{ 338287895Sadrian 339287895Sadrian /* Firmware handles this; not our problem */ 340287895Sadrian return (0); 341287895Sadrian} 342287895Sadrian 343287895Sadrianstatic int 344287895Sadrianrsu_wme_update(struct ieee80211com *ic) 345287895Sadrian{ 346287895Sadrian 347287895Sadrian /* Firmware handles this; not our problem */ 348287895Sadrian return (0); 349287895Sadrian} 350287895Sadrian 351287895Sadrianstatic int 352253789Srpaulorsu_attach(device_t self) 353253789Srpaulo{ 354253789Srpaulo struct usb_attach_arg *uaa = device_get_ivars(self); 355253789Srpaulo struct rsu_softc *sc = device_get_softc(self); 356287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 357253789Srpaulo int error; 358253789Srpaulo uint8_t iface_index, bands; 359287894Sadrian struct usb_interface *iface; 360253789Srpaulo 361253789Srpaulo device_set_usb_desc(self); 362253789Srpaulo sc->sc_udev = uaa->device; 363253789Srpaulo sc->sc_dev = self; 364287947Sadrian if (rsu_enable_11n) 365287947Sadrian sc->sc_ht = !! (USB_GET_DRIVER_INFO(uaa) & RSU_HT_SUPPORTED); 366253789Srpaulo 367287894Sadrian /* Get number of endpoints */ 368287894Sadrian iface = usbd_get_iface(sc->sc_udev, 0); 369287894Sadrian sc->sc_nendpoints = iface->idesc->bNumEndpoints; 370287894Sadrian 371287897Sadrian /* Endpoints are hard-coded for now, so enforce 4-endpoint only */ 372287897Sadrian if (sc->sc_nendpoints != 4) { 373287897Sadrian device_printf(sc->sc_dev, 374287897Sadrian "the driver currently only supports 4-endpoint devices\n"); 375287897Sadrian return (ENXIO); 376287897Sadrian } 377287897Sadrian 378253789Srpaulo mtx_init(&sc->sc_mtx, device_get_nameunit(self), MTX_NETWORK_LOCK, 379253789Srpaulo MTX_DEF); 380253789Srpaulo TIMEOUT_TASK_INIT(taskqueue_thread, &sc->calib_task, 0, 381253789Srpaulo rsu_calib_task, sc); 382287197Sglebius mbufq_init(&sc->sc_snd, ifqmaxlen); 383253789Srpaulo 384266535Shselasky /* Allocate Tx/Rx buffers. */ 385266535Shselasky error = rsu_alloc_rx_list(sc); 386266535Shselasky if (error != 0) { 387266535Shselasky device_printf(sc->sc_dev, "could not allocate Rx buffers\n"); 388266535Shselasky goto fail_usb; 389266535Shselasky } 390266535Shselasky 391266535Shselasky error = rsu_alloc_tx_list(sc); 392266535Shselasky if (error != 0) { 393266535Shselasky device_printf(sc->sc_dev, "could not allocate Tx buffers\n"); 394266535Shselasky rsu_free_rx_list(sc); 395266535Shselasky goto fail_usb; 396266535Shselasky } 397266535Shselasky 398253789Srpaulo iface_index = 0; 399253789Srpaulo error = usbd_transfer_setup(uaa->device, &iface_index, sc->sc_xfer, 400253789Srpaulo rsu_config, RSU_N_TRANSFER, sc, &sc->sc_mtx); 401253789Srpaulo if (error) { 402253789Srpaulo device_printf(sc->sc_dev, 403253789Srpaulo "could not allocate USB transfers, err=%s\n", 404253789Srpaulo usbd_errstr(error)); 405253831Srpaulo goto fail_usb; 406253789Srpaulo } 407253789Srpaulo RSU_LOCK(sc); 408253789Srpaulo /* Read chip revision. */ 409253789Srpaulo sc->cut = MS(rsu_read_4(sc, R92S_PMC_FSM), R92S_PMC_FSM_CUT); 410253789Srpaulo if (sc->cut != 3) 411253789Srpaulo sc->cut = (sc->cut >> 1) + 1; 412253789Srpaulo error = rsu_read_rom(sc); 413276611Shselasky RSU_UNLOCK(sc); 414253789Srpaulo if (error != 0) { 415253789Srpaulo device_printf(self, "could not read ROM\n"); 416253831Srpaulo goto fail_rom; 417253789Srpaulo } 418287197Sglebius IEEE80211_ADDR_COPY(ic->ic_macaddr, &sc->rom[0x12]); 419253789Srpaulo device_printf(self, "MAC/BB RTL8712 cut %d\n", sc->cut); 420253789Srpaulo 421283537Sglebius ic->ic_softc = sc; 422283527Sglebius ic->ic_name = device_get_nameunit(self); 423253789Srpaulo ic->ic_phytype = IEEE80211_T_OFDM; /* Not only, but not used. */ 424253789Srpaulo ic->ic_opmode = IEEE80211_M_STA; /* Default to BSS mode. */ 425253789Srpaulo 426253789Srpaulo /* Set device capabilities. */ 427253789Srpaulo ic->ic_caps = 428253789Srpaulo IEEE80211_C_STA | /* station mode */ 429287727Sadrian#if 0 430253789Srpaulo IEEE80211_C_BGSCAN | /* Background scan. */ 431287727Sadrian#endif 432253789Srpaulo IEEE80211_C_SHPREAMBLE | /* Short preamble supported. */ 433287901Sadrian IEEE80211_C_WME | /* WME/QoS */ 434253789Srpaulo IEEE80211_C_SHSLOT | /* Short slot time supported. */ 435253789Srpaulo IEEE80211_C_WPA; /* WPA/RSN. */ 436253789Srpaulo 437253789Srpaulo /* Check if HT support is present. */ 438287947Sadrian if (sc->sc_ht) { 439287947Sadrian device_printf(sc->sc_dev, "%s: enabling 11n\n", __func__); 440287947Sadrian 441287947Sadrian /* Enable basic HT */ 442287947Sadrian ic->ic_htcaps = IEEE80211_HTC_HT | 443287947Sadrian IEEE80211_HTC_AMPDU | 444287947Sadrian IEEE80211_HTC_AMSDU | 445287947Sadrian IEEE80211_HTCAP_MAXAMSDU_3839 | 446287947Sadrian IEEE80211_HTCAP_SMPS_OFF; 447287947Sadrian 448288049Sadrian /* 449288049Sadrian * XXX HT40 isn't working in this driver yet - there's 450288049Sadrian * something missing. Disable it for now. 451288049Sadrian */ 452288049Sadrian#if 0 453287947Sadrian ic->ic_htcaps |= IEEE80211_HTCAP_CHWIDTH40; 454288049Sadrian#endif 455287947Sadrian 456287947Sadrian /* set number of spatial streams */ 457287947Sadrian ic->ic_txstream = 1; 458287947Sadrian ic->ic_rxstream = 1; 459253789Srpaulo } 460253789Srpaulo 461253789Srpaulo /* Set supported .11b and .11g rates. */ 462253789Srpaulo bands = 0; 463253789Srpaulo setbit(&bands, IEEE80211_MODE_11B); 464253789Srpaulo setbit(&bands, IEEE80211_MODE_11G); 465287947Sadrian if (sc->sc_ht) 466287947Sadrian setbit(&bands, IEEE80211_MODE_11NG); 467253789Srpaulo ieee80211_init_channels(ic, NULL, &bands); 468253789Srpaulo 469287197Sglebius ieee80211_ifattach(ic); 470253789Srpaulo ic->ic_raw_xmit = rsu_raw_xmit; 471253789Srpaulo ic->ic_scan_start = rsu_scan_start; 472253789Srpaulo ic->ic_scan_end = rsu_scan_end; 473253789Srpaulo ic->ic_set_channel = rsu_set_channel; 474253789Srpaulo ic->ic_vap_create = rsu_vap_create; 475253789Srpaulo ic->ic_vap_delete = rsu_vap_delete; 476253789Srpaulo ic->ic_update_mcast = rsu_update_mcast; 477287197Sglebius ic->ic_parent = rsu_parent; 478287197Sglebius ic->ic_transmit = rsu_transmit; 479287763Sadrian ic->ic_send_mgmt = rsu_send_mgmt; 480287895Sadrian ic->ic_update_chw = rsu_update_chw; 481287895Sadrian ic->ic_ampdu_enable = rsu_ampdu_enable; 482287895Sadrian ic->ic_wme.wme_update = rsu_wme_update; 483253789Srpaulo 484253789Srpaulo ieee80211_radiotap_attach(ic, &sc->sc_txtap.wt_ihdr, 485253789Srpaulo sizeof(sc->sc_txtap), RSU_TX_RADIOTAP_PRESENT, 486253789Srpaulo &sc->sc_rxtap.wr_ihdr, sizeof(sc->sc_rxtap), 487253789Srpaulo RSU_RX_RADIOTAP_PRESENT); 488253789Srpaulo 489253789Srpaulo if (bootverbose) 490253789Srpaulo ieee80211_announce(ic); 491253789Srpaulo 492253789Srpaulo return (0); 493253789Srpaulo 494253831Srpaulofail_rom: 495253831Srpaulo usbd_transfer_unsetup(sc->sc_xfer, RSU_N_TRANSFER); 496253831Srpaulofail_usb: 497253831Srpaulo mtx_destroy(&sc->sc_mtx); 498253789Srpaulo return (ENXIO); 499253789Srpaulo} 500253789Srpaulo 501253789Srpaulostatic int 502253789Srpaulorsu_detach(device_t self) 503253789Srpaulo{ 504253789Srpaulo struct rsu_softc *sc = device_get_softc(self); 505287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 506253789Srpaulo 507287197Sglebius RSU_LOCK(sc); 508287197Sglebius rsu_stop(sc); 509287197Sglebius RSU_UNLOCK(sc); 510253789Srpaulo usbd_transfer_unsetup(sc->sc_xfer, RSU_N_TRANSFER); 511288051Sadrian 512288051Sadrian /* Frames are freed; detach from net80211 */ 513253789Srpaulo ieee80211_ifdetach(ic); 514253789Srpaulo 515253789Srpaulo taskqueue_drain_timeout(taskqueue_thread, &sc->calib_task); 516253789Srpaulo 517253789Srpaulo /* Free Tx/Rx buffers. */ 518253789Srpaulo rsu_free_tx_list(sc); 519253789Srpaulo rsu_free_rx_list(sc); 520253789Srpaulo 521253789Srpaulo mtx_destroy(&sc->sc_mtx); 522253789Srpaulo 523253789Srpaulo return (0); 524253789Srpaulo} 525253789Srpaulo 526253789Srpaulostatic usb_error_t 527253789Srpaulorsu_do_request(struct rsu_softc *sc, struct usb_device_request *req, 528253789Srpaulo void *data) 529253789Srpaulo{ 530253789Srpaulo usb_error_t err; 531253789Srpaulo int ntries = 10; 532253789Srpaulo 533253789Srpaulo RSU_ASSERT_LOCKED(sc); 534253789Srpaulo 535253789Srpaulo while (ntries--) { 536253789Srpaulo err = usbd_do_request_flags(sc->sc_udev, &sc->sc_mtx, 537253789Srpaulo req, data, 0, NULL, 250 /* ms */); 538266466Shselasky if (err == 0 || err == USB_ERR_NOT_CONFIGURED) 539253789Srpaulo break; 540253789Srpaulo DPRINTFN(1, "Control request failed, %s (retrying)\n", 541253789Srpaulo usbd_errstr(err)); 542287892Sadrian rsu_ms_delay(sc, 10); 543253789Srpaulo } 544253789Srpaulo 545253789Srpaulo return (err); 546253789Srpaulo} 547253789Srpaulo 548253789Srpaulostatic struct ieee80211vap * 549253789Srpaulorsu_vap_create(struct ieee80211com *ic, const char name[IFNAMSIZ], int unit, 550253789Srpaulo enum ieee80211_opmode opmode, int flags, 551253789Srpaulo const uint8_t bssid[IEEE80211_ADDR_LEN], 552253789Srpaulo const uint8_t mac[IEEE80211_ADDR_LEN]) 553253789Srpaulo{ 554253789Srpaulo struct rsu_vap *uvp; 555253789Srpaulo struct ieee80211vap *vap; 556253789Srpaulo 557253789Srpaulo if (!TAILQ_EMPTY(&ic->ic_vaps)) /* only one at a time */ 558253789Srpaulo return (NULL); 559253789Srpaulo 560287197Sglebius uvp = malloc(sizeof(struct rsu_vap), M_80211_VAP, M_WAITOK | M_ZERO); 561253789Srpaulo vap = &uvp->vap; 562253789Srpaulo 563257743Shselasky if (ieee80211_vap_setup(ic, vap, name, unit, opmode, 564287197Sglebius flags, bssid) != 0) { 565257743Shselasky /* out of memory */ 566257743Shselasky free(uvp, M_80211_VAP); 567257743Shselasky return (NULL); 568257743Shselasky } 569257743Shselasky 570253789Srpaulo /* override state transition machine */ 571253789Srpaulo uvp->newstate = vap->iv_newstate; 572253789Srpaulo vap->iv_newstate = rsu_newstate; 573253789Srpaulo 574287950Sadrian /* Limits from the r92su driver */ 575287950Sadrian vap->iv_ampdu_density = IEEE80211_HTCAP_MPDUDENSITY_16; 576287950Sadrian vap->iv_ampdu_rxmax = IEEE80211_HTCAP_MAXRXAMPDU_32K; 577287950Sadrian 578253789Srpaulo /* complete setup */ 579253789Srpaulo ieee80211_vap_attach(vap, ieee80211_media_change, 580287197Sglebius ieee80211_media_status, mac); 581253789Srpaulo ic->ic_opmode = opmode; 582253789Srpaulo 583253789Srpaulo return (vap); 584253789Srpaulo} 585253789Srpaulo 586253789Srpaulostatic void 587253789Srpaulorsu_vap_delete(struct ieee80211vap *vap) 588253789Srpaulo{ 589253789Srpaulo struct rsu_vap *uvp = RSU_VAP(vap); 590253789Srpaulo 591253789Srpaulo ieee80211_vap_detach(vap); 592253789Srpaulo free(uvp, M_80211_VAP); 593253789Srpaulo} 594253789Srpaulo 595253789Srpaulostatic void 596253789Srpaulorsu_scan_start(struct ieee80211com *ic) 597253789Srpaulo{ 598287197Sglebius struct rsu_softc *sc = ic->ic_softc; 599253789Srpaulo int error; 600253789Srpaulo 601253789Srpaulo /* Scanning is done by the firmware. */ 602253789Srpaulo RSU_LOCK(sc); 603253789Srpaulo error = rsu_site_survey(sc, TAILQ_FIRST(&ic->ic_vaps)); 604253789Srpaulo RSU_UNLOCK(sc); 605253789Srpaulo if (error != 0) 606253789Srpaulo device_printf(sc->sc_dev, 607253789Srpaulo "could not send site survey command\n"); 608253789Srpaulo} 609253789Srpaulo 610253789Srpaulostatic void 611253789Srpaulorsu_scan_end(struct ieee80211com *ic) 612253789Srpaulo{ 613253789Srpaulo /* Nothing to do here. */ 614253789Srpaulo} 615253789Srpaulo 616253789Srpaulostatic void 617253789Srpaulorsu_set_channel(struct ieee80211com *ic __unused) 618253789Srpaulo{ 619253789Srpaulo /* We are unable to switch channels, yet. */ 620253789Srpaulo} 621253789Srpaulo 622253789Srpaulostatic void 623283540Sglebiusrsu_update_mcast(struct ieee80211com *ic) 624253789Srpaulo{ 625253789Srpaulo /* XXX do nothing? */ 626253789Srpaulo} 627253789Srpaulo 628253789Srpaulostatic int 629253789Srpaulorsu_alloc_list(struct rsu_softc *sc, struct rsu_data data[], 630253789Srpaulo int ndata, int maxsz) 631253789Srpaulo{ 632253789Srpaulo int i, error; 633253789Srpaulo 634253789Srpaulo for (i = 0; i < ndata; i++) { 635253789Srpaulo struct rsu_data *dp = &data[i]; 636253789Srpaulo dp->sc = sc; 637253789Srpaulo dp->m = NULL; 638253789Srpaulo dp->buf = malloc(maxsz, M_USBDEV, M_NOWAIT); 639253789Srpaulo if (dp->buf == NULL) { 640253789Srpaulo device_printf(sc->sc_dev, 641253789Srpaulo "could not allocate buffer\n"); 642253789Srpaulo error = ENOMEM; 643253789Srpaulo goto fail; 644253789Srpaulo } 645253789Srpaulo dp->ni = NULL; 646253789Srpaulo } 647253789Srpaulo 648253789Srpaulo return (0); 649253789Srpaulofail: 650253789Srpaulo rsu_free_list(sc, data, ndata); 651253789Srpaulo return (error); 652253789Srpaulo} 653253789Srpaulo 654253789Srpaulostatic int 655253789Srpaulorsu_alloc_rx_list(struct rsu_softc *sc) 656253789Srpaulo{ 657253789Srpaulo int error, i; 658253789Srpaulo 659253789Srpaulo error = rsu_alloc_list(sc, sc->sc_rx, RSU_RX_LIST_COUNT, 660253789Srpaulo RSU_RXBUFSZ); 661253789Srpaulo if (error != 0) 662253789Srpaulo return (error); 663253789Srpaulo 664253789Srpaulo STAILQ_INIT(&sc->sc_rx_active); 665253789Srpaulo STAILQ_INIT(&sc->sc_rx_inactive); 666253789Srpaulo 667253789Srpaulo for (i = 0; i < RSU_RX_LIST_COUNT; i++) 668253789Srpaulo STAILQ_INSERT_HEAD(&sc->sc_rx_inactive, &sc->sc_rx[i], next); 669253789Srpaulo 670253789Srpaulo return (0); 671253789Srpaulo} 672253789Srpaulo 673253789Srpaulostatic int 674253789Srpaulorsu_alloc_tx_list(struct rsu_softc *sc) 675253789Srpaulo{ 676253789Srpaulo int error, i; 677253789Srpaulo 678253789Srpaulo error = rsu_alloc_list(sc, sc->sc_tx, RSU_TX_LIST_COUNT, 679253789Srpaulo RSU_TXBUFSZ); 680253789Srpaulo if (error != 0) 681253789Srpaulo return (error); 682253789Srpaulo 683253789Srpaulo STAILQ_INIT(&sc->sc_tx_inactive); 684253789Srpaulo 685267041Shselasky for (i = 0; i != RSU_N_TRANSFER; i++) { 686266505Shselasky STAILQ_INIT(&sc->sc_tx_active[i]); 687266505Shselasky STAILQ_INIT(&sc->sc_tx_pending[i]); 688266505Shselasky } 689266505Shselasky 690253789Srpaulo for (i = 0; i < RSU_TX_LIST_COUNT; i++) { 691253789Srpaulo STAILQ_INSERT_HEAD(&sc->sc_tx_inactive, &sc->sc_tx[i], next); 692253789Srpaulo } 693253789Srpaulo 694253789Srpaulo return (0); 695253789Srpaulo} 696253789Srpaulo 697253789Srpaulostatic void 698253789Srpaulorsu_free_tx_list(struct rsu_softc *sc) 699253789Srpaulo{ 700266535Shselasky int i; 701266535Shselasky 702266535Shselasky /* prevent further allocations from TX list(s) */ 703266535Shselasky STAILQ_INIT(&sc->sc_tx_inactive); 704266535Shselasky 705267041Shselasky for (i = 0; i != RSU_N_TRANSFER; i++) { 706266535Shselasky STAILQ_INIT(&sc->sc_tx_active[i]); 707266535Shselasky STAILQ_INIT(&sc->sc_tx_pending[i]); 708266535Shselasky } 709266535Shselasky 710253789Srpaulo rsu_free_list(sc, sc->sc_tx, RSU_TX_LIST_COUNT); 711253789Srpaulo} 712253789Srpaulo 713253789Srpaulostatic void 714253789Srpaulorsu_free_rx_list(struct rsu_softc *sc) 715253789Srpaulo{ 716266535Shselasky /* prevent further allocations from RX list(s) */ 717266535Shselasky STAILQ_INIT(&sc->sc_rx_inactive); 718266535Shselasky STAILQ_INIT(&sc->sc_rx_active); 719266535Shselasky 720253789Srpaulo rsu_free_list(sc, sc->sc_rx, RSU_RX_LIST_COUNT); 721253789Srpaulo} 722253789Srpaulo 723253789Srpaulostatic void 724253789Srpaulorsu_free_list(struct rsu_softc *sc, struct rsu_data data[], int ndata) 725253789Srpaulo{ 726253789Srpaulo int i; 727253789Srpaulo 728253789Srpaulo for (i = 0; i < ndata; i++) { 729253789Srpaulo struct rsu_data *dp = &data[i]; 730253789Srpaulo 731253789Srpaulo if (dp->buf != NULL) { 732253789Srpaulo free(dp->buf, M_USBDEV); 733253789Srpaulo dp->buf = NULL; 734253789Srpaulo } 735253789Srpaulo if (dp->ni != NULL) { 736253789Srpaulo ieee80211_free_node(dp->ni); 737253789Srpaulo dp->ni = NULL; 738253789Srpaulo } 739253789Srpaulo } 740253789Srpaulo} 741253789Srpaulo 742253789Srpaulostatic struct rsu_data * 743253789Srpaulo_rsu_getbuf(struct rsu_softc *sc) 744253789Srpaulo{ 745253789Srpaulo struct rsu_data *bf; 746253789Srpaulo 747253789Srpaulo bf = STAILQ_FIRST(&sc->sc_tx_inactive); 748253789Srpaulo if (bf != NULL) 749253789Srpaulo STAILQ_REMOVE_HEAD(&sc->sc_tx_inactive, next); 750253789Srpaulo else 751253789Srpaulo bf = NULL; 752287954Sadrian return (bf); 753253789Srpaulo} 754253789Srpaulo 755253789Srpaulostatic struct rsu_data * 756253789Srpaulorsu_getbuf(struct rsu_softc *sc) 757253789Srpaulo{ 758253789Srpaulo struct rsu_data *bf; 759253789Srpaulo 760253789Srpaulo RSU_ASSERT_LOCKED(sc); 761253789Srpaulo 762253789Srpaulo bf = _rsu_getbuf(sc); 763288051Sadrian if (bf == NULL) { 764288051Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TX, "%s: no buffers\n", __func__); 765288051Sadrian } 766253789Srpaulo return (bf); 767253789Srpaulo} 768253789Srpaulo 769287953Sadrianstatic void 770287953Sadrianrsu_freebuf(struct rsu_softc *sc, struct rsu_data *bf) 771287953Sadrian{ 772287953Sadrian 773287953Sadrian RSU_ASSERT_LOCKED(sc); 774287953Sadrian STAILQ_INSERT_TAIL(&sc->sc_tx_inactive, bf, next); 775287953Sadrian} 776287953Sadrian 777253789Srpaulostatic int 778253789Srpaulorsu_write_region_1(struct rsu_softc *sc, uint16_t addr, uint8_t *buf, 779253789Srpaulo int len) 780253789Srpaulo{ 781253789Srpaulo usb_device_request_t req; 782253789Srpaulo 783253789Srpaulo req.bmRequestType = UT_WRITE_VENDOR_DEVICE; 784253789Srpaulo req.bRequest = R92S_REQ_REGS; 785253789Srpaulo USETW(req.wValue, addr); 786253789Srpaulo USETW(req.wIndex, 0); 787253789Srpaulo USETW(req.wLength, len); 788253789Srpaulo 789253789Srpaulo return (rsu_do_request(sc, &req, buf)); 790253789Srpaulo} 791253789Srpaulo 792253789Srpaulostatic void 793253789Srpaulorsu_write_1(struct rsu_softc *sc, uint16_t addr, uint8_t val) 794253789Srpaulo{ 795253789Srpaulo rsu_write_region_1(sc, addr, &val, 1); 796253789Srpaulo} 797253789Srpaulo 798253789Srpaulostatic void 799253789Srpaulorsu_write_2(struct rsu_softc *sc, uint16_t addr, uint16_t val) 800253789Srpaulo{ 801253789Srpaulo val = htole16(val); 802253789Srpaulo rsu_write_region_1(sc, addr, (uint8_t *)&val, 2); 803253789Srpaulo} 804253789Srpaulo 805253789Srpaulostatic void 806253789Srpaulorsu_write_4(struct rsu_softc *sc, uint16_t addr, uint32_t val) 807253789Srpaulo{ 808253789Srpaulo val = htole32(val); 809253789Srpaulo rsu_write_region_1(sc, addr, (uint8_t *)&val, 4); 810253789Srpaulo} 811253789Srpaulo 812253789Srpaulostatic int 813253789Srpaulorsu_read_region_1(struct rsu_softc *sc, uint16_t addr, uint8_t *buf, 814253789Srpaulo int len) 815253789Srpaulo{ 816253789Srpaulo usb_device_request_t req; 817253789Srpaulo 818253789Srpaulo req.bmRequestType = UT_READ_VENDOR_DEVICE; 819253789Srpaulo req.bRequest = R92S_REQ_REGS; 820253789Srpaulo USETW(req.wValue, addr); 821253789Srpaulo USETW(req.wIndex, 0); 822253789Srpaulo USETW(req.wLength, len); 823253789Srpaulo 824253789Srpaulo return (rsu_do_request(sc, &req, buf)); 825253789Srpaulo} 826253789Srpaulo 827253789Srpaulostatic uint8_t 828253789Srpaulorsu_read_1(struct rsu_softc *sc, uint16_t addr) 829253789Srpaulo{ 830253789Srpaulo uint8_t val; 831253789Srpaulo 832253789Srpaulo if (rsu_read_region_1(sc, addr, &val, 1) != 0) 833253789Srpaulo return (0xff); 834253789Srpaulo return (val); 835253789Srpaulo} 836253789Srpaulo 837253789Srpaulostatic uint16_t 838253789Srpaulorsu_read_2(struct rsu_softc *sc, uint16_t addr) 839253789Srpaulo{ 840253789Srpaulo uint16_t val; 841253789Srpaulo 842253789Srpaulo if (rsu_read_region_1(sc, addr, (uint8_t *)&val, 2) != 0) 843253789Srpaulo return (0xffff); 844253789Srpaulo return (le16toh(val)); 845253789Srpaulo} 846253789Srpaulo 847253789Srpaulostatic uint32_t 848253789Srpaulorsu_read_4(struct rsu_softc *sc, uint16_t addr) 849253789Srpaulo{ 850253789Srpaulo uint32_t val; 851253789Srpaulo 852253789Srpaulo if (rsu_read_region_1(sc, addr, (uint8_t *)&val, 4) != 0) 853253789Srpaulo return (0xffffffff); 854253789Srpaulo return (le32toh(val)); 855253789Srpaulo} 856253789Srpaulo 857253789Srpaulostatic int 858253789Srpaulorsu_fw_iocmd(struct rsu_softc *sc, uint32_t iocmd) 859253789Srpaulo{ 860253789Srpaulo int ntries; 861253789Srpaulo 862253789Srpaulo rsu_write_4(sc, R92S_IOCMD_CTRL, iocmd); 863287892Sadrian rsu_ms_delay(sc, 1); 864253789Srpaulo for (ntries = 0; ntries < 50; ntries++) { 865253789Srpaulo if (rsu_read_4(sc, R92S_IOCMD_CTRL) == 0) 866253789Srpaulo return (0); 867287892Sadrian rsu_ms_delay(sc, 1); 868253789Srpaulo } 869253789Srpaulo return (ETIMEDOUT); 870253789Srpaulo} 871253789Srpaulo 872253789Srpaulostatic uint8_t 873253789Srpaulorsu_efuse_read_1(struct rsu_softc *sc, uint16_t addr) 874253789Srpaulo{ 875253789Srpaulo uint32_t reg; 876253789Srpaulo int ntries; 877253789Srpaulo 878253789Srpaulo reg = rsu_read_4(sc, R92S_EFUSE_CTRL); 879253789Srpaulo reg = RW(reg, R92S_EFUSE_CTRL_ADDR, addr); 880253789Srpaulo reg &= ~R92S_EFUSE_CTRL_VALID; 881253789Srpaulo rsu_write_4(sc, R92S_EFUSE_CTRL, reg); 882253789Srpaulo /* Wait for read operation to complete. */ 883253789Srpaulo for (ntries = 0; ntries < 100; ntries++) { 884253789Srpaulo reg = rsu_read_4(sc, R92S_EFUSE_CTRL); 885253789Srpaulo if (reg & R92S_EFUSE_CTRL_VALID) 886253789Srpaulo return (MS(reg, R92S_EFUSE_CTRL_DATA)); 887287892Sadrian rsu_ms_delay(sc, 1); 888253789Srpaulo } 889253789Srpaulo device_printf(sc->sc_dev, 890253789Srpaulo "could not read efuse byte at address 0x%x\n", addr); 891253789Srpaulo return (0xff); 892253789Srpaulo} 893253789Srpaulo 894253789Srpaulostatic int 895253789Srpaulorsu_read_rom(struct rsu_softc *sc) 896253789Srpaulo{ 897253789Srpaulo uint8_t *rom = sc->rom; 898253789Srpaulo uint16_t addr = 0; 899253789Srpaulo uint32_t reg; 900253789Srpaulo uint8_t off, msk; 901253789Srpaulo int i; 902253789Srpaulo 903253789Srpaulo /* Make sure that ROM type is eFuse and that autoload succeeded. */ 904253789Srpaulo reg = rsu_read_1(sc, R92S_EE_9346CR); 905253789Srpaulo if ((reg & (R92S_9356SEL | R92S_EEPROM_EN)) != R92S_EEPROM_EN) 906253789Srpaulo return (EIO); 907253789Srpaulo 908253789Srpaulo /* Turn on 2.5V to prevent eFuse leakage. */ 909253789Srpaulo reg = rsu_read_1(sc, R92S_EFUSE_TEST + 3); 910253789Srpaulo rsu_write_1(sc, R92S_EFUSE_TEST + 3, reg | 0x80); 911287892Sadrian rsu_ms_delay(sc, 1); 912253789Srpaulo rsu_write_1(sc, R92S_EFUSE_TEST + 3, reg & ~0x80); 913253789Srpaulo 914253789Srpaulo /* Read full ROM image. */ 915253789Srpaulo memset(&sc->rom, 0xff, sizeof(sc->rom)); 916253789Srpaulo while (addr < 512) { 917253789Srpaulo reg = rsu_efuse_read_1(sc, addr); 918253789Srpaulo if (reg == 0xff) 919253789Srpaulo break; 920253789Srpaulo addr++; 921253789Srpaulo off = reg >> 4; 922253789Srpaulo msk = reg & 0xf; 923253789Srpaulo for (i = 0; i < 4; i++) { 924253789Srpaulo if (msk & (1 << i)) 925253789Srpaulo continue; 926253789Srpaulo rom[off * 8 + i * 2 + 0] = 927253789Srpaulo rsu_efuse_read_1(sc, addr); 928253789Srpaulo addr++; 929253789Srpaulo rom[off * 8 + i * 2 + 1] = 930253789Srpaulo rsu_efuse_read_1(sc, addr); 931253789Srpaulo addr++; 932253789Srpaulo } 933253789Srpaulo } 934253789Srpaulo#ifdef USB_DEBUG 935253789Srpaulo if (rsu_debug >= 5) { 936253789Srpaulo /* Dump ROM content. */ 937253789Srpaulo printf("\n"); 938253789Srpaulo for (i = 0; i < sizeof(sc->rom); i++) 939253789Srpaulo printf("%02x:", rom[i]); 940253789Srpaulo printf("\n"); 941253789Srpaulo } 942253789Srpaulo#endif 943253789Srpaulo return (0); 944253789Srpaulo} 945253789Srpaulo 946253789Srpaulostatic int 947253789Srpaulorsu_fw_cmd(struct rsu_softc *sc, uint8_t code, void *buf, int len) 948253789Srpaulo{ 949287896Sadrian const uint8_t which = RSU_H2C_ENDPOINT; 950253789Srpaulo struct rsu_data *data; 951253789Srpaulo struct r92s_tx_desc *txd; 952253789Srpaulo struct r92s_fw_cmd_hdr *cmd; 953266505Shselasky int cmdsz; 954266505Shselasky int xferlen; 955253789Srpaulo 956287954Sadrian RSU_ASSERT_LOCKED(sc); 957287954Sadrian 958253789Srpaulo data = rsu_getbuf(sc); 959253789Srpaulo if (data == NULL) 960253789Srpaulo return (ENOMEM); 961253789Srpaulo 962253789Srpaulo /* Round-up command length to a multiple of 8 bytes. */ 963253789Srpaulo cmdsz = (len + 7) & ~7; 964253789Srpaulo 965253789Srpaulo xferlen = sizeof(*txd) + sizeof(*cmd) + cmdsz; 966253789Srpaulo KASSERT(xferlen <= RSU_TXBUFSZ, ("%s: invalid length", __func__)); 967253789Srpaulo memset(data->buf, 0, xferlen); 968253789Srpaulo 969253789Srpaulo /* Setup Tx descriptor. */ 970253789Srpaulo txd = (struct r92s_tx_desc *)data->buf; 971253789Srpaulo txd->txdw0 = htole32( 972253789Srpaulo SM(R92S_TXDW0_OFFSET, sizeof(*txd)) | 973253789Srpaulo SM(R92S_TXDW0_PKTLEN, sizeof(*cmd) + cmdsz) | 974253789Srpaulo R92S_TXDW0_OWN | R92S_TXDW0_FSG | R92S_TXDW0_LSG); 975253789Srpaulo txd->txdw1 = htole32(SM(R92S_TXDW1_QSEL, R92S_TXDW1_QSEL_H2C)); 976253789Srpaulo 977253789Srpaulo /* Setup command header. */ 978253789Srpaulo cmd = (struct r92s_fw_cmd_hdr *)&txd[1]; 979253789Srpaulo cmd->len = htole16(cmdsz); 980253789Srpaulo cmd->code = code; 981253789Srpaulo cmd->seq = sc->cmd_seq; 982253789Srpaulo sc->cmd_seq = (sc->cmd_seq + 1) & 0x7f; 983253789Srpaulo 984253789Srpaulo /* Copy command payload. */ 985253789Srpaulo memcpy(&cmd[1], buf, len); 986253789Srpaulo 987287740Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TX | RSU_DEBUG_FWCMD, 988287727Sadrian "%s: Tx cmd code=0x%x len=0x%x\n", 989287727Sadrian __func__, code, cmdsz); 990253789Srpaulo data->buflen = xferlen; 991266505Shselasky STAILQ_INSERT_TAIL(&sc->sc_tx_pending[which], data, next); 992267041Shselasky usbd_transfer_start(sc->sc_xfer[which]); 993253789Srpaulo 994253789Srpaulo return (0); 995253789Srpaulo} 996253789Srpaulo 997253789Srpaulo/* ARGSUSED */ 998253789Srpaulostatic void 999253789Srpaulorsu_calib_task(void *arg, int pending __unused) 1000253789Srpaulo{ 1001253789Srpaulo struct rsu_softc *sc = arg; 1002253789Srpaulo uint32_t reg; 1003253789Srpaulo 1004287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_CALIB, "%s: running calibration task\n", 1005287727Sadrian __func__); 1006267041Shselasky 1007253789Srpaulo RSU_LOCK(sc); 1008253789Srpaulo#ifdef notyet 1009253789Srpaulo /* Read WPS PBC status. */ 1010253789Srpaulo rsu_write_1(sc, R92S_MAC_PINMUX_CTRL, 1011253789Srpaulo R92S_GPIOMUX_EN | SM(R92S_GPIOSEL_GPIO, R92S_GPIOSEL_GPIO_JTAG)); 1012253789Srpaulo rsu_write_1(sc, R92S_GPIO_IO_SEL, 1013253789Srpaulo rsu_read_1(sc, R92S_GPIO_IO_SEL) & ~R92S_GPIO_WPS); 1014253789Srpaulo reg = rsu_read_1(sc, R92S_GPIO_CTRL); 1015253789Srpaulo if (reg != 0xff && (reg & R92S_GPIO_WPS)) 1016253789Srpaulo DPRINTF(("WPS PBC is pushed\n")); 1017253789Srpaulo#endif 1018253789Srpaulo /* Read current signal level. */ 1019253789Srpaulo if (rsu_fw_iocmd(sc, 0xf4000001) == 0) { 1020253789Srpaulo reg = rsu_read_4(sc, R92S_IOCMD_DATA); 1021287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_CALIB, "%s: RSSI=%d%%\n", 1022287727Sadrian __func__, reg >> 4); 1023253789Srpaulo } 1024267041Shselasky if (sc->sc_calibrating) 1025267041Shselasky taskqueue_enqueue_timeout(taskqueue_thread, &sc->calib_task, hz); 1026267041Shselasky RSU_UNLOCK(sc); 1027253789Srpaulo} 1028253789Srpaulo 1029253789Srpaulostatic int 1030253789Srpaulorsu_newstate(struct ieee80211vap *vap, enum ieee80211_state nstate, int arg) 1031253789Srpaulo{ 1032253789Srpaulo struct rsu_vap *uvp = RSU_VAP(vap); 1033253789Srpaulo struct ieee80211com *ic = vap->iv_ic; 1034286950Sadrian struct rsu_softc *sc = ic->ic_softc; 1035253789Srpaulo struct ieee80211_node *ni; 1036253789Srpaulo struct ieee80211_rateset *rs; 1037253789Srpaulo enum ieee80211_state ostate; 1038253789Srpaulo int error, startcal = 0; 1039253789Srpaulo 1040253789Srpaulo ostate = vap->iv_state; 1041287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_STATE, "%s: %s -> %s\n", 1042287727Sadrian __func__, 1043287727Sadrian ieee80211_state_name[ostate], 1044253789Srpaulo ieee80211_state_name[nstate]); 1045253789Srpaulo 1046253789Srpaulo IEEE80211_UNLOCK(ic); 1047253789Srpaulo if (ostate == IEEE80211_S_RUN) { 1048253789Srpaulo RSU_LOCK(sc); 1049253789Srpaulo /* Stop calibration. */ 1050253789Srpaulo sc->sc_calibrating = 0; 1051253789Srpaulo RSU_UNLOCK(sc); 1052253789Srpaulo taskqueue_drain_timeout(taskqueue_thread, &sc->calib_task); 1053253789Srpaulo /* Disassociate from our current BSS. */ 1054253789Srpaulo RSU_LOCK(sc); 1055253789Srpaulo rsu_disconnect(sc); 1056253789Srpaulo } else 1057253789Srpaulo RSU_LOCK(sc); 1058253789Srpaulo switch (nstate) { 1059253789Srpaulo case IEEE80211_S_INIT: 1060253789Srpaulo break; 1061253789Srpaulo case IEEE80211_S_AUTH: 1062253789Srpaulo ni = ieee80211_ref_node(vap->iv_bss); 1063253789Srpaulo error = rsu_join_bss(sc, ni); 1064253789Srpaulo ieee80211_free_node(ni); 1065253789Srpaulo if (error != 0) { 1066253789Srpaulo device_printf(sc->sc_dev, 1067253789Srpaulo "could not send join command\n"); 1068253789Srpaulo } 1069253789Srpaulo break; 1070253789Srpaulo case IEEE80211_S_RUN: 1071253789Srpaulo ni = ieee80211_ref_node(vap->iv_bss); 1072253789Srpaulo rs = &ni->ni_rates; 1073253789Srpaulo /* Indicate highest supported rate. */ 1074253789Srpaulo ni->ni_txrate = rs->rs_rates[rs->rs_nrates - 1]; 1075253789Srpaulo ieee80211_free_node(ni); 1076253789Srpaulo startcal = 1; 1077253789Srpaulo break; 1078253789Srpaulo default: 1079253789Srpaulo break; 1080253789Srpaulo } 1081253789Srpaulo sc->sc_calibrating = 1; 1082267041Shselasky /* Start periodic calibration. */ 1083267041Shselasky taskqueue_enqueue_timeout(taskqueue_thread, &sc->calib_task, hz); 1084253789Srpaulo RSU_UNLOCK(sc); 1085253789Srpaulo IEEE80211_LOCK(ic); 1086253789Srpaulo return (uvp->newstate(vap, nstate, arg)); 1087253789Srpaulo} 1088253789Srpaulo 1089253789Srpaulo#ifdef notyet 1090253789Srpaulostatic void 1091253789Srpaulorsu_set_key(struct rsu_softc *sc, const struct ieee80211_key *k) 1092253789Srpaulo{ 1093253789Srpaulo struct r92s_fw_cmd_set_key key; 1094253789Srpaulo 1095253789Srpaulo memset(&key, 0, sizeof(key)); 1096253789Srpaulo /* Map net80211 cipher to HW crypto algorithm. */ 1097253789Srpaulo switch (k->wk_cipher->ic_cipher) { 1098253789Srpaulo case IEEE80211_CIPHER_WEP: 1099253789Srpaulo if (k->wk_keylen < 8) 1100253789Srpaulo key.algo = R92S_KEY_ALGO_WEP40; 1101253789Srpaulo else 1102253789Srpaulo key.algo = R92S_KEY_ALGO_WEP104; 1103253789Srpaulo break; 1104253789Srpaulo case IEEE80211_CIPHER_TKIP: 1105253789Srpaulo key.algo = R92S_KEY_ALGO_TKIP; 1106253789Srpaulo break; 1107253789Srpaulo case IEEE80211_CIPHER_AES_CCM: 1108253789Srpaulo key.algo = R92S_KEY_ALGO_AES; 1109253789Srpaulo break; 1110253789Srpaulo default: 1111253789Srpaulo return; 1112253789Srpaulo } 1113253789Srpaulo key.id = k->wk_keyix; 1114253789Srpaulo key.grpkey = (k->wk_flags & IEEE80211_KEY_GROUP) != 0; 1115253789Srpaulo memcpy(key.key, k->wk_key, MIN(k->wk_keylen, sizeof(key.key))); 1116253789Srpaulo (void)rsu_fw_cmd(sc, R92S_CMD_SET_KEY, &key, sizeof(key)); 1117253789Srpaulo} 1118253789Srpaulo 1119253789Srpaulostatic void 1120253789Srpaulorsu_delete_key(struct rsu_softc *sc, const struct ieee80211_key *k) 1121253789Srpaulo{ 1122253789Srpaulo struct r92s_fw_cmd_set_key key; 1123253789Srpaulo 1124253789Srpaulo memset(&key, 0, sizeof(key)); 1125253789Srpaulo key.id = k->wk_keyix; 1126253789Srpaulo (void)rsu_fw_cmd(sc, R92S_CMD_SET_KEY, &key, sizeof(key)); 1127253789Srpaulo} 1128253789Srpaulo#endif 1129253789Srpaulo 1130253789Srpaulostatic int 1131253789Srpaulorsu_site_survey(struct rsu_softc *sc, struct ieee80211vap *vap) 1132253789Srpaulo{ 1133253789Srpaulo struct r92s_fw_cmd_sitesurvey cmd; 1134287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1135287954Sadrian int r; 1136253789Srpaulo 1137287954Sadrian RSU_ASSERT_LOCKED(sc); 1138287954Sadrian 1139253789Srpaulo memset(&cmd, 0, sizeof(cmd)); 1140287197Sglebius if ((ic->ic_flags & IEEE80211_F_ASCAN) || sc->sc_scan_pass == 1) 1141253789Srpaulo cmd.active = htole32(1); 1142253789Srpaulo cmd.limit = htole32(48); 1143287197Sglebius if (sc->sc_scan_pass == 1 && vap->iv_des_nssid > 0) { 1144253789Srpaulo /* Do a directed scan for second pass. */ 1145253789Srpaulo cmd.ssidlen = htole32(vap->iv_des_ssid[0].len); 1146253789Srpaulo memcpy(cmd.ssid, vap->iv_des_ssid[0].ssid, 1147253789Srpaulo vap->iv_des_ssid[0].len); 1148253789Srpaulo 1149253789Srpaulo } 1150287197Sglebius DPRINTF("sending site survey command, pass=%d\n", sc->sc_scan_pass); 1151287954Sadrian r = rsu_fw_cmd(sc, R92S_CMD_SITE_SURVEY, &cmd, sizeof(cmd)); 1152287954Sadrian if (r == 0) { 1153287954Sadrian sc->sc_scanning = 1; 1154287954Sadrian } 1155287954Sadrian return (r); 1156253789Srpaulo} 1157253789Srpaulo 1158253789Srpaulostatic int 1159253789Srpaulorsu_join_bss(struct rsu_softc *sc, struct ieee80211_node *ni) 1160253789Srpaulo{ 1161287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1162253789Srpaulo struct ieee80211vap *vap = ni->ni_vap; 1163253789Srpaulo struct ndis_wlan_bssid_ex *bss; 1164253789Srpaulo struct ndis_802_11_fixed_ies *fixed; 1165253789Srpaulo struct r92s_fw_cmd_auth auth; 1166267066Shselasky uint8_t buf[sizeof(*bss) + 128] __aligned(4); 1167267066Shselasky uint8_t *frm; 1168253789Srpaulo uint8_t opmode; 1169253789Srpaulo int error; 1170287954Sadrian int cnt; 1171287954Sadrian char *msg = "rsujoin"; 1172253789Srpaulo 1173287954Sadrian RSU_ASSERT_LOCKED(sc); 1174287954Sadrian 1175287954Sadrian /* 1176287954Sadrian * Until net80211 scanning doesn't automatically finish 1177287954Sadrian * before we tell it to, let's just wait until any pending 1178287954Sadrian * scan is done. 1179287954Sadrian * 1180287954Sadrian * XXX TODO: yes, this releases and re-acquires the lock. 1181287954Sadrian * We should re-verify the state whenever we re-attempt this! 1182287954Sadrian */ 1183287954Sadrian cnt = 0; 1184287954Sadrian while (sc->sc_scanning && cnt < 10) { 1185287954Sadrian device_printf(sc->sc_dev, 1186287954Sadrian "%s: still scanning! (attempt %d)\n", 1187287954Sadrian __func__, cnt); 1188287954Sadrian msleep(msg, &sc->sc_mtx, 0, msg, hz / 2); 1189287954Sadrian cnt++; 1190287954Sadrian } 1191287954Sadrian 1192253789Srpaulo /* Let the FW decide the opmode based on the capinfo field. */ 1193253789Srpaulo opmode = NDIS802_11AUTOUNKNOWN; 1194287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RESET, 1195287727Sadrian "%s: setting operating mode to %d\n", 1196287727Sadrian __func__, opmode); 1197253789Srpaulo error = rsu_fw_cmd(sc, R92S_CMD_SET_OPMODE, &opmode, sizeof(opmode)); 1198253789Srpaulo if (error != 0) 1199253789Srpaulo return (error); 1200253789Srpaulo 1201253789Srpaulo memset(&auth, 0, sizeof(auth)); 1202253789Srpaulo if (vap->iv_flags & IEEE80211_F_WPA) { 1203253789Srpaulo auth.mode = R92S_AUTHMODE_WPA; 1204267066Shselasky auth.dot1x = (ni->ni_authmode == IEEE80211_AUTH_8021X); 1205253789Srpaulo } else 1206253789Srpaulo auth.mode = R92S_AUTHMODE_OPEN; 1207287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RESET, 1208287727Sadrian "%s: setting auth mode to %d\n", 1209287727Sadrian __func__, auth.mode); 1210253789Srpaulo error = rsu_fw_cmd(sc, R92S_CMD_SET_AUTH, &auth, sizeof(auth)); 1211253789Srpaulo if (error != 0) 1212253789Srpaulo return (error); 1213253789Srpaulo 1214253789Srpaulo memset(buf, 0, sizeof(buf)); 1215253789Srpaulo bss = (struct ndis_wlan_bssid_ex *)buf; 1216253789Srpaulo IEEE80211_ADDR_COPY(bss->macaddr, ni->ni_bssid); 1217253789Srpaulo bss->ssid.ssidlen = htole32(ni->ni_esslen); 1218253789Srpaulo memcpy(bss->ssid.ssid, ni->ni_essid, ni->ni_esslen); 1219253789Srpaulo if (vap->iv_flags & (IEEE80211_F_PRIVACY | IEEE80211_F_WPA)) 1220253789Srpaulo bss->privacy = htole32(1); 1221253789Srpaulo bss->rssi = htole32(ni->ni_avgrssi); 1222253789Srpaulo if (ic->ic_curmode == IEEE80211_MODE_11B) 1223253789Srpaulo bss->networktype = htole32(NDIS802_11DS); 1224253789Srpaulo else 1225253789Srpaulo bss->networktype = htole32(NDIS802_11OFDM24); 1226253789Srpaulo bss->config.len = htole32(sizeof(bss->config)); 1227253789Srpaulo bss->config.bintval = htole32(ni->ni_intval); 1228253789Srpaulo bss->config.dsconfig = htole32(ieee80211_chan2ieee(ic, ni->ni_chan)); 1229253789Srpaulo bss->inframode = htole32(NDIS802_11INFRASTRUCTURE); 1230287727Sadrian /* XXX verify how this is supposed to look! */ 1231253789Srpaulo memcpy(bss->supprates, ni->ni_rates.rs_rates, 1232253789Srpaulo ni->ni_rates.rs_nrates); 1233253789Srpaulo /* Write the fixed fields of the beacon frame. */ 1234253789Srpaulo fixed = (struct ndis_802_11_fixed_ies *)&bss[1]; 1235253789Srpaulo memcpy(&fixed->tstamp, ni->ni_tstamp.data, 8); 1236253789Srpaulo fixed->bintval = htole16(ni->ni_intval); 1237253789Srpaulo fixed->capabilities = htole16(ni->ni_capinfo); 1238253789Srpaulo /* Write IEs to be included in the association request. */ 1239253789Srpaulo frm = (uint8_t *)&fixed[1]; 1240253789Srpaulo frm = ieee80211_add_rsn(frm, vap); 1241253789Srpaulo frm = ieee80211_add_wpa(frm, vap); 1242253789Srpaulo frm = ieee80211_add_qos(frm, ni); 1243287947Sadrian if ((ic->ic_flags & IEEE80211_F_WME) && 1244287947Sadrian (ni->ni_ies.wme_ie != NULL)) 1245287947Sadrian frm = ieee80211_add_wme_info(frm, &ic->ic_wme); 1246253789Srpaulo if (ni->ni_flags & IEEE80211_NODE_HT) 1247253789Srpaulo frm = ieee80211_add_htcap(frm, ni); 1248253789Srpaulo bss->ieslen = htole32(frm - (uint8_t *)fixed); 1249253789Srpaulo bss->len = htole32(((frm - buf) + 3) & ~3); 1250287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RESET | RSU_DEBUG_FWCMD, 1251287727Sadrian "%s: sending join bss command to %s chan %d\n", 1252287727Sadrian __func__, 1253253789Srpaulo ether_sprintf(bss->macaddr), le32toh(bss->config.dsconfig)); 1254253789Srpaulo return (rsu_fw_cmd(sc, R92S_CMD_JOIN_BSS, buf, sizeof(buf))); 1255253789Srpaulo} 1256253789Srpaulo 1257253789Srpaulostatic int 1258253789Srpaulorsu_disconnect(struct rsu_softc *sc) 1259253789Srpaulo{ 1260253789Srpaulo uint32_t zero = 0; /* :-) */ 1261253789Srpaulo 1262253789Srpaulo /* Disassociate from our current BSS. */ 1263287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_STATE | RSU_DEBUG_FWCMD, 1264287727Sadrian "%s: sending disconnect command\n", __func__); 1265253789Srpaulo return (rsu_fw_cmd(sc, R92S_CMD_DISCONNECT, &zero, sizeof(zero))); 1266253789Srpaulo} 1267253789Srpaulo 1268253789Srpaulostatic void 1269253789Srpaulorsu_event_survey(struct rsu_softc *sc, uint8_t *buf, int len) 1270253789Srpaulo{ 1271287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1272253789Srpaulo struct ieee80211_frame *wh; 1273253789Srpaulo struct ndis_wlan_bssid_ex *bss; 1274287804Sadrian struct ieee80211_rx_stats rxs; 1275253789Srpaulo struct mbuf *m; 1276253789Srpaulo int pktlen; 1277253789Srpaulo 1278253789Srpaulo if (__predict_false(len < sizeof(*bss))) 1279253789Srpaulo return; 1280253789Srpaulo bss = (struct ndis_wlan_bssid_ex *)buf; 1281253789Srpaulo if (__predict_false(len < sizeof(*bss) + le32toh(bss->ieslen))) 1282253789Srpaulo return; 1283253789Srpaulo 1284287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_SCAN, 1285287727Sadrian "%s: found BSS %s: len=%d chan=%d inframode=%d " 1286287742Sadrian "networktype=%d privacy=%d, RSSI=%d\n", 1287287727Sadrian __func__, 1288253789Srpaulo ether_sprintf(bss->macaddr), le32toh(bss->len), 1289253789Srpaulo le32toh(bss->config.dsconfig), le32toh(bss->inframode), 1290287742Sadrian le32toh(bss->networktype), le32toh(bss->privacy), 1291287742Sadrian le32toh(bss->rssi)); 1292253789Srpaulo 1293253789Srpaulo /* Build a fake beacon frame to let net80211 do all the parsing. */ 1294287727Sadrian /* XXX TODO: just call the new scan API methods! */ 1295253789Srpaulo pktlen = sizeof(*wh) + le32toh(bss->ieslen); 1296253789Srpaulo if (__predict_false(pktlen > MCLBYTES)) 1297253789Srpaulo return; 1298260513Skevlo m = m_get2(pktlen, M_NOWAIT, MT_DATA, M_PKTHDR); 1299253789Srpaulo if (__predict_false(m == NULL)) 1300253789Srpaulo return; 1301253789Srpaulo wh = mtod(m, struct ieee80211_frame *); 1302253789Srpaulo wh->i_fc[0] = IEEE80211_FC0_VERSION_0 | IEEE80211_FC0_TYPE_MGT | 1303253789Srpaulo IEEE80211_FC0_SUBTYPE_BEACON; 1304253789Srpaulo wh->i_fc[1] = IEEE80211_FC1_DIR_NODS; 1305258919Shselasky USETW(wh->i_dur, 0); 1306287197Sglebius IEEE80211_ADDR_COPY(wh->i_addr1, ieee80211broadcastaddr); 1307253789Srpaulo IEEE80211_ADDR_COPY(wh->i_addr2, bss->macaddr); 1308253789Srpaulo IEEE80211_ADDR_COPY(wh->i_addr3, bss->macaddr); 1309253789Srpaulo *(uint16_t *)wh->i_seq = 0; 1310253789Srpaulo memcpy(&wh[1], (uint8_t *)&bss[1], le32toh(bss->ieslen)); 1311253789Srpaulo 1312253789Srpaulo /* Finalize mbuf. */ 1313253789Srpaulo m->m_pkthdr.len = m->m_len = pktlen; 1314287804Sadrian 1315287804Sadrian /* Set channel flags for input path */ 1316287804Sadrian bzero(&rxs, sizeof(rxs)); 1317287804Sadrian rxs.r_flags |= IEEE80211_R_IEEE | IEEE80211_R_FREQ; 1318287804Sadrian rxs.r_flags |= IEEE80211_R_NF | IEEE80211_R_RSSI; 1319287804Sadrian rxs.c_ieee = le32toh(bss->config.dsconfig); 1320287804Sadrian rxs.c_freq = ieee80211_ieee2mhz(rxs.c_ieee, IEEE80211_CHAN_2GHZ); 1321287804Sadrian rxs.rssi = le32toh(bss->rssi); 1322287804Sadrian rxs.nf = 0; /* XXX */ 1323287804Sadrian 1324253789Srpaulo /* XXX avoid a LOR */ 1325253789Srpaulo RSU_UNLOCK(sc); 1326287804Sadrian ieee80211_input_mimo_all(ic, m, &rxs); 1327253789Srpaulo RSU_LOCK(sc); 1328253789Srpaulo} 1329253789Srpaulo 1330253789Srpaulostatic void 1331253789Srpaulorsu_event_join_bss(struct rsu_softc *sc, uint8_t *buf, int len) 1332253789Srpaulo{ 1333287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1334253789Srpaulo struct ieee80211vap *vap = TAILQ_FIRST(&ic->ic_vaps); 1335253789Srpaulo struct ieee80211_node *ni = vap->iv_bss; 1336253789Srpaulo struct r92s_event_join_bss *rsp; 1337267066Shselasky uint32_t tmp; 1338253789Srpaulo int res; 1339253789Srpaulo 1340253789Srpaulo if (__predict_false(len < sizeof(*rsp))) 1341253789Srpaulo return; 1342253789Srpaulo rsp = (struct r92s_event_join_bss *)buf; 1343253789Srpaulo res = (int)le32toh(rsp->join_res); 1344253789Srpaulo 1345287740Sadrian RSU_DPRINTF(sc, RSU_DEBUG_STATE | RSU_DEBUG_FWCMD, 1346287740Sadrian "%s: Rx join BSS event len=%d res=%d\n", 1347287740Sadrian __func__, len, res); 1348287954Sadrian 1349287954Sadrian /* 1350287954Sadrian * XXX Don't do this; there's likely a better way to tell 1351287954Sadrian * the caller we failed. 1352287954Sadrian */ 1353253789Srpaulo if (res <= 0) { 1354253789Srpaulo RSU_UNLOCK(sc); 1355253789Srpaulo ieee80211_new_state(vap, IEEE80211_S_SCAN, -1); 1356253789Srpaulo RSU_LOCK(sc); 1357253789Srpaulo return; 1358253789Srpaulo } 1359287954Sadrian 1360267066Shselasky tmp = le32toh(rsp->associd); 1361267066Shselasky if (tmp >= vap->iv_max_aid) { 1362267066Shselasky DPRINTF("Assoc ID overflow\n"); 1363267066Shselasky tmp = 1; 1364267066Shselasky } 1365287740Sadrian RSU_DPRINTF(sc, RSU_DEBUG_STATE | RSU_DEBUG_FWCMD, 1366287740Sadrian "%s: associated with %s associd=%d\n", 1367287740Sadrian __func__, ether_sprintf(rsp->bss.macaddr), tmp); 1368287740Sadrian /* XXX is this required? What's the top two bits for again? */ 1369267066Shselasky ni->ni_associd = tmp | 0xc000; 1370253789Srpaulo RSU_UNLOCK(sc); 1371253789Srpaulo ieee80211_new_state(vap, IEEE80211_S_RUN, 1372253789Srpaulo IEEE80211_FC0_SUBTYPE_ASSOC_RESP); 1373253789Srpaulo RSU_LOCK(sc); 1374253789Srpaulo} 1375253789Srpaulo 1376253789Srpaulostatic void 1377287949Sadrianrsu_event_addba_req_report(struct rsu_softc *sc, uint8_t *buf, int len) 1378287949Sadrian{ 1379287949Sadrian struct ieee80211com *ic = &sc->sc_ic; 1380287949Sadrian struct ieee80211vap *vap = TAILQ_FIRST(&ic->ic_vaps); 1381287949Sadrian struct r92s_add_ba_event *ba = (void *) buf; 1382287949Sadrian struct ieee80211_node *ni; 1383287949Sadrian 1384287949Sadrian if (len < sizeof(*ba)) { 1385287949Sadrian device_printf(sc->sc_dev, "%s: short read (%d)\n", __func__, len); 1386287949Sadrian return; 1387287949Sadrian } 1388287949Sadrian 1389287949Sadrian if (vap == NULL) 1390287949Sadrian return; 1391287949Sadrian 1392287949Sadrian device_printf(sc->sc_dev, "%s: mac=%s, tid=%d, ssn=%d\n", 1393287949Sadrian __func__, 1394287949Sadrian ether_sprintf(ba->mac_addr), 1395287949Sadrian (int) ba->tid, 1396287949Sadrian (int) le16toh(ba->ssn)); 1397287949Sadrian 1398287949Sadrian /* XXX do node lookup; this is STA specific */ 1399287949Sadrian 1400287949Sadrian ni = ieee80211_ref_node(vap->iv_bss); 1401287949Sadrian ieee80211_ampdu_rx_start_ext(ni, ba->tid, le16toh(ba->ssn) >> 4, 32); 1402287949Sadrian ieee80211_free_node(ni); 1403287949Sadrian} 1404287949Sadrian 1405287949Sadrianstatic void 1406253789Srpaulorsu_rx_event(struct rsu_softc *sc, uint8_t code, uint8_t *buf, int len) 1407253789Srpaulo{ 1408287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1409253789Srpaulo struct ieee80211vap *vap = TAILQ_FIRST(&ic->ic_vaps); 1410253789Srpaulo 1411287740Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RX | RSU_DEBUG_FWCMD, 1412287727Sadrian "%s: Rx event code=%d len=%d\n", __func__, code, len); 1413253789Srpaulo switch (code) { 1414253789Srpaulo case R92S_EVT_SURVEY: 1415287947Sadrian rsu_event_survey(sc, buf, len); 1416253789Srpaulo break; 1417253789Srpaulo case R92S_EVT_SURVEY_DONE: 1418287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_SCAN, 1419287727Sadrian "%s: site survey pass %d done, found %d BSS\n", 1420287727Sadrian __func__, sc->sc_scan_pass, le32toh(*(uint32_t *)buf)); 1421287954Sadrian sc->sc_scanning = 0; 1422253789Srpaulo if (vap->iv_state != IEEE80211_S_SCAN) 1423253789Srpaulo break; /* Ignore if not scanning. */ 1424287954Sadrian 1425287954Sadrian /* 1426287954Sadrian * XXX TODO: This needs to be done without a transition to 1427287954Sadrian * the SCAN state again. Grr. 1428287954Sadrian */ 1429287197Sglebius if (sc->sc_scan_pass == 0 && vap->iv_des_nssid != 0) { 1430253789Srpaulo /* Schedule a directed scan for hidden APs. */ 1431287947Sadrian /* XXX bad! */ 1432287197Sglebius sc->sc_scan_pass = 1; 1433253789Srpaulo RSU_UNLOCK(sc); 1434253789Srpaulo ieee80211_new_state(vap, IEEE80211_S_SCAN, -1); 1435253789Srpaulo RSU_LOCK(sc); 1436253789Srpaulo break; 1437253789Srpaulo } 1438287197Sglebius sc->sc_scan_pass = 0; 1439253789Srpaulo break; 1440253789Srpaulo case R92S_EVT_JOIN_BSS: 1441253789Srpaulo if (vap->iv_state == IEEE80211_S_AUTH) 1442253789Srpaulo rsu_event_join_bss(sc, buf, len); 1443253789Srpaulo break; 1444253789Srpaulo case R92S_EVT_DEL_STA: 1445287740Sadrian RSU_DPRINTF(sc, RSU_DEBUG_FWCMD | RSU_DEBUG_STATE, 1446287740Sadrian "%s: disassociated from %s\n", __func__, 1447287740Sadrian ether_sprintf(buf)); 1448253789Srpaulo if (vap->iv_state == IEEE80211_S_RUN && 1449253789Srpaulo IEEE80211_ADDR_EQ(vap->iv_bss->ni_bssid, buf)) { 1450253789Srpaulo RSU_UNLOCK(sc); 1451253789Srpaulo ieee80211_new_state(vap, IEEE80211_S_SCAN, -1); 1452253789Srpaulo RSU_LOCK(sc); 1453253789Srpaulo } 1454253789Srpaulo break; 1455253789Srpaulo case R92S_EVT_WPS_PBC: 1456287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RX | RSU_DEBUG_FWCMD, 1457287727Sadrian "%s: WPS PBC pushed.\n", __func__); 1458253789Srpaulo break; 1459253789Srpaulo case R92S_EVT_FWDBG: 1460287727Sadrian buf[60] = '\0'; 1461287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_FWDBG, "FWDBG: %s\n", (char *)buf); 1462253789Srpaulo break; 1463287949Sadrian 1464287949Sadrian case R92S_EVT_ADDBA_REQ_REPORT: 1465287949Sadrian rsu_event_addba_req_report(sc, buf, len); 1466287949Sadrian break; 1467267041Shselasky default: 1468287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_ANY, "%s: unhandled code (%d)\n", 1469287727Sadrian __func__, code); 1470267041Shselasky break; 1471253789Srpaulo } 1472253789Srpaulo} 1473253789Srpaulo 1474253789Srpaulostatic void 1475253789Srpaulorsu_rx_multi_event(struct rsu_softc *sc, uint8_t *buf, int len) 1476253789Srpaulo{ 1477253789Srpaulo struct r92s_fw_cmd_hdr *cmd; 1478253789Srpaulo int cmdsz; 1479253789Srpaulo 1480287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RX, "%s: Rx events len=%d\n", __func__, len); 1481253789Srpaulo 1482253789Srpaulo /* Skip Rx status. */ 1483253789Srpaulo buf += sizeof(struct r92s_rx_stat); 1484253789Srpaulo len -= sizeof(struct r92s_rx_stat); 1485253789Srpaulo 1486253789Srpaulo /* Process all events. */ 1487253789Srpaulo for (;;) { 1488253789Srpaulo /* Check that command header fits. */ 1489253789Srpaulo if (__predict_false(len < sizeof(*cmd))) 1490253789Srpaulo break; 1491253789Srpaulo cmd = (struct r92s_fw_cmd_hdr *)buf; 1492253789Srpaulo /* Check that command payload fits. */ 1493253789Srpaulo cmdsz = le16toh(cmd->len); 1494253789Srpaulo if (__predict_false(len < sizeof(*cmd) + cmdsz)) 1495253789Srpaulo break; 1496253789Srpaulo 1497253789Srpaulo /* Process firmware event. */ 1498253789Srpaulo rsu_rx_event(sc, cmd->code, (uint8_t *)&cmd[1], cmdsz); 1499253789Srpaulo 1500253789Srpaulo if (!(cmd->seq & R92S_FW_CMD_MORE)) 1501253789Srpaulo break; 1502253789Srpaulo buf += sizeof(*cmd) + cmdsz; 1503253789Srpaulo len -= sizeof(*cmd) + cmdsz; 1504253789Srpaulo } 1505253789Srpaulo} 1506253789Srpaulo 1507253789Srpaulostatic int8_t 1508253789Srpaulorsu_get_rssi(struct rsu_softc *sc, int rate, void *physt) 1509253789Srpaulo{ 1510253789Srpaulo static const int8_t cckoff[] = { 14, -2, -20, -40 }; 1511253789Srpaulo struct r92s_rx_phystat *phy; 1512253789Srpaulo struct r92s_rx_cck *cck; 1513253789Srpaulo uint8_t rpt; 1514253789Srpaulo int8_t rssi; 1515253789Srpaulo 1516253789Srpaulo if (rate <= 3) { 1517253789Srpaulo cck = (struct r92s_rx_cck *)physt; 1518253789Srpaulo rpt = (cck->agc_rpt >> 6) & 0x3; 1519253789Srpaulo rssi = cck->agc_rpt & 0x3e; 1520253789Srpaulo rssi = cckoff[rpt] - rssi; 1521253789Srpaulo } else { /* OFDM/HT. */ 1522253789Srpaulo phy = (struct r92s_rx_phystat *)physt; 1523253789Srpaulo rssi = ((le32toh(phy->phydw1) >> 1) & 0x7f) - 106; 1524253789Srpaulo } 1525253789Srpaulo return (rssi); 1526253789Srpaulo} 1527253789Srpaulo 1528253789Srpaulostatic struct mbuf * 1529253789Srpaulorsu_rx_frame(struct rsu_softc *sc, uint8_t *buf, int pktlen, int *rssi) 1530253789Srpaulo{ 1531287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1532253789Srpaulo struct ieee80211_frame *wh; 1533253789Srpaulo struct r92s_rx_stat *stat; 1534253789Srpaulo uint32_t rxdw0, rxdw3; 1535253789Srpaulo struct mbuf *m; 1536253789Srpaulo uint8_t rate; 1537253789Srpaulo int infosz; 1538253789Srpaulo 1539253789Srpaulo stat = (struct r92s_rx_stat *)buf; 1540253789Srpaulo rxdw0 = le32toh(stat->rxdw0); 1541253789Srpaulo rxdw3 = le32toh(stat->rxdw3); 1542253789Srpaulo 1543253789Srpaulo if (__predict_false(rxdw0 & R92S_RXDW0_CRCERR)) { 1544287197Sglebius counter_u64_add(ic->ic_ierrors, 1); 1545253789Srpaulo return NULL; 1546253789Srpaulo } 1547253789Srpaulo if (__predict_false(pktlen < sizeof(*wh) || pktlen > MCLBYTES)) { 1548287197Sglebius counter_u64_add(ic->ic_ierrors, 1); 1549253789Srpaulo return NULL; 1550253789Srpaulo } 1551253789Srpaulo 1552253789Srpaulo rate = MS(rxdw3, R92S_RXDW3_RATE); 1553253789Srpaulo infosz = MS(rxdw0, R92S_RXDW0_INFOSZ) * 8; 1554253789Srpaulo 1555253789Srpaulo /* Get RSSI from PHY status descriptor if present. */ 1556253789Srpaulo if (infosz != 0) 1557253789Srpaulo *rssi = rsu_get_rssi(sc, rate, &stat[1]); 1558253789Srpaulo else 1559253789Srpaulo *rssi = 0; 1560253789Srpaulo 1561287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RX, 1562287727Sadrian "%s: Rx frame len=%d rate=%d infosz=%d rssi=%d\n", 1563287727Sadrian __func__, 1564253789Srpaulo pktlen, rate, infosz, *rssi); 1565253789Srpaulo 1566260513Skevlo m = m_get2(pktlen, M_NOWAIT, MT_DATA, M_PKTHDR); 1567253789Srpaulo if (__predict_false(m == NULL)) { 1568287197Sglebius counter_u64_add(ic->ic_ierrors, 1); 1569253789Srpaulo return NULL; 1570253789Srpaulo } 1571253789Srpaulo /* Hardware does Rx TCP checksum offload. */ 1572253789Srpaulo if (rxdw3 & R92S_RXDW3_TCPCHKVALID) { 1573253789Srpaulo if (__predict_true(rxdw3 & R92S_RXDW3_TCPCHKRPT)) 1574253789Srpaulo m->m_pkthdr.csum_flags |= CSUM_DATA_VALID; 1575253789Srpaulo } 1576253789Srpaulo wh = (struct ieee80211_frame *)((uint8_t *)&stat[1] + infosz); 1577253789Srpaulo memcpy(mtod(m, uint8_t *), wh, pktlen); 1578253789Srpaulo m->m_pkthdr.len = m->m_len = pktlen; 1579253789Srpaulo 1580253789Srpaulo if (ieee80211_radiotap_active(ic)) { 1581253789Srpaulo struct rsu_rx_radiotap_header *tap = &sc->sc_rxtap; 1582253789Srpaulo 1583253789Srpaulo /* Map HW rate index to 802.11 rate. */ 1584253789Srpaulo tap->wr_flags = 2; 1585253789Srpaulo if (!(rxdw3 & R92S_RXDW3_HTC)) { 1586253789Srpaulo switch (rate) { 1587253789Srpaulo /* CCK. */ 1588253789Srpaulo case 0: tap->wr_rate = 2; break; 1589253789Srpaulo case 1: tap->wr_rate = 4; break; 1590253789Srpaulo case 2: tap->wr_rate = 11; break; 1591253789Srpaulo case 3: tap->wr_rate = 22; break; 1592253789Srpaulo /* OFDM. */ 1593253789Srpaulo case 4: tap->wr_rate = 12; break; 1594253789Srpaulo case 5: tap->wr_rate = 18; break; 1595253789Srpaulo case 6: tap->wr_rate = 24; break; 1596253789Srpaulo case 7: tap->wr_rate = 36; break; 1597253789Srpaulo case 8: tap->wr_rate = 48; break; 1598253789Srpaulo case 9: tap->wr_rate = 72; break; 1599253789Srpaulo case 10: tap->wr_rate = 96; break; 1600253789Srpaulo case 11: tap->wr_rate = 108; break; 1601253789Srpaulo } 1602253789Srpaulo } else if (rate >= 12) { /* MCS0~15. */ 1603253789Srpaulo /* Bit 7 set means HT MCS instead of rate. */ 1604253789Srpaulo tap->wr_rate = 0x80 | (rate - 12); 1605253789Srpaulo } 1606253789Srpaulo tap->wr_dbm_antsignal = *rssi; 1607253789Srpaulo tap->wr_chan_freq = htole16(ic->ic_curchan->ic_freq); 1608253789Srpaulo tap->wr_chan_flags = htole16(ic->ic_curchan->ic_flags); 1609253789Srpaulo } 1610253789Srpaulo 1611253789Srpaulo return (m); 1612253789Srpaulo} 1613253789Srpaulo 1614253789Srpaulostatic struct mbuf * 1615253789Srpaulorsu_rx_multi_frame(struct rsu_softc *sc, uint8_t *buf, int len, int *rssi) 1616253789Srpaulo{ 1617253789Srpaulo struct r92s_rx_stat *stat; 1618253789Srpaulo uint32_t rxdw0; 1619253789Srpaulo int totlen, pktlen, infosz, npkts; 1620253789Srpaulo struct mbuf *m, *m0 = NULL, *prevm = NULL; 1621253789Srpaulo 1622253789Srpaulo /* Get the number of encapsulated frames. */ 1623253789Srpaulo stat = (struct r92s_rx_stat *)buf; 1624253789Srpaulo npkts = MS(le32toh(stat->rxdw2), R92S_RXDW2_PKTCNT); 1625287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RX, 1626287727Sadrian "%s: Rx %d frames in one chunk\n", __func__, npkts); 1627253789Srpaulo 1628253789Srpaulo /* Process all of them. */ 1629253789Srpaulo while (npkts-- > 0) { 1630253789Srpaulo if (__predict_false(len < sizeof(*stat))) 1631253789Srpaulo break; 1632253789Srpaulo stat = (struct r92s_rx_stat *)buf; 1633253789Srpaulo rxdw0 = le32toh(stat->rxdw0); 1634253789Srpaulo 1635253789Srpaulo pktlen = MS(rxdw0, R92S_RXDW0_PKTLEN); 1636253789Srpaulo if (__predict_false(pktlen == 0)) 1637253789Srpaulo break; 1638253789Srpaulo 1639253789Srpaulo infosz = MS(rxdw0, R92S_RXDW0_INFOSZ) * 8; 1640253789Srpaulo 1641253789Srpaulo /* Make sure everything fits in xfer. */ 1642253789Srpaulo totlen = sizeof(*stat) + infosz + pktlen; 1643253789Srpaulo if (__predict_false(totlen > len)) 1644253789Srpaulo break; 1645253789Srpaulo 1646253789Srpaulo /* Process 802.11 frame. */ 1647253789Srpaulo m = rsu_rx_frame(sc, buf, pktlen, rssi); 1648253789Srpaulo if (m0 == NULL) 1649253789Srpaulo m0 = m; 1650253789Srpaulo if (prevm == NULL) 1651253789Srpaulo prevm = m; 1652253789Srpaulo else { 1653253789Srpaulo prevm->m_next = m; 1654253789Srpaulo prevm = m; 1655253789Srpaulo } 1656253789Srpaulo /* Next chunk is 128-byte aligned. */ 1657253789Srpaulo totlen = (totlen + 127) & ~127; 1658253789Srpaulo buf += totlen; 1659253789Srpaulo len -= totlen; 1660253789Srpaulo } 1661253789Srpaulo 1662253789Srpaulo return (m0); 1663253789Srpaulo} 1664253789Srpaulo 1665253789Srpaulostatic struct mbuf * 1666253789Srpaulorsu_rxeof(struct usb_xfer *xfer, struct rsu_data *data, int *rssi) 1667253789Srpaulo{ 1668253789Srpaulo struct rsu_softc *sc = data->sc; 1669287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1670253789Srpaulo struct r92s_rx_stat *stat; 1671253789Srpaulo int len; 1672253789Srpaulo 1673253789Srpaulo usbd_xfer_status(xfer, &len, NULL, NULL, NULL); 1674253789Srpaulo 1675253789Srpaulo if (__predict_false(len < sizeof(*stat))) { 1676253789Srpaulo DPRINTF("xfer too short %d\n", len); 1677287197Sglebius counter_u64_add(ic->ic_ierrors, 1); 1678253789Srpaulo return (NULL); 1679253789Srpaulo } 1680253789Srpaulo /* Determine if it is a firmware C2H event or an 802.11 frame. */ 1681253789Srpaulo stat = (struct r92s_rx_stat *)data->buf; 1682253789Srpaulo if ((le32toh(stat->rxdw1) & 0x1ff) == 0x1ff) { 1683253789Srpaulo rsu_rx_multi_event(sc, data->buf, len); 1684253789Srpaulo /* No packets to process. */ 1685253789Srpaulo return (NULL); 1686253789Srpaulo } else 1687253789Srpaulo return (rsu_rx_multi_frame(sc, data->buf, len, rssi)); 1688253789Srpaulo} 1689253789Srpaulo 1690253789Srpaulostatic void 1691253789Srpaulorsu_bulk_rx_callback(struct usb_xfer *xfer, usb_error_t error) 1692253789Srpaulo{ 1693253789Srpaulo struct rsu_softc *sc = usbd_xfer_softc(xfer); 1694287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1695253789Srpaulo struct ieee80211_frame *wh; 1696253789Srpaulo struct ieee80211_node *ni; 1697253789Srpaulo struct mbuf *m = NULL, *next; 1698253789Srpaulo struct rsu_data *data; 1699253789Srpaulo int rssi = 1; 1700253789Srpaulo 1701253789Srpaulo RSU_ASSERT_LOCKED(sc); 1702253789Srpaulo 1703253789Srpaulo switch (USB_GET_STATE(xfer)) { 1704253789Srpaulo case USB_ST_TRANSFERRED: 1705253789Srpaulo data = STAILQ_FIRST(&sc->sc_rx_active); 1706253789Srpaulo if (data == NULL) 1707253789Srpaulo goto tr_setup; 1708253789Srpaulo STAILQ_REMOVE_HEAD(&sc->sc_rx_active, next); 1709253789Srpaulo m = rsu_rxeof(xfer, data, &rssi); 1710253789Srpaulo STAILQ_INSERT_TAIL(&sc->sc_rx_inactive, data, next); 1711253789Srpaulo /* FALLTHROUGH */ 1712253789Srpaulo case USB_ST_SETUP: 1713253789Srpaulotr_setup: 1714253789Srpaulo data = STAILQ_FIRST(&sc->sc_rx_inactive); 1715253789Srpaulo if (data == NULL) { 1716253789Srpaulo KASSERT(m == NULL, ("mbuf isn't NULL")); 1717253789Srpaulo return; 1718253789Srpaulo } 1719253789Srpaulo STAILQ_REMOVE_HEAD(&sc->sc_rx_inactive, next); 1720253789Srpaulo STAILQ_INSERT_TAIL(&sc->sc_rx_active, data, next); 1721253789Srpaulo usbd_xfer_set_frame_data(xfer, 0, data->buf, 1722253789Srpaulo usbd_xfer_max_len(xfer)); 1723253789Srpaulo usbd_transfer_submit(xfer); 1724253789Srpaulo /* 1725253789Srpaulo * To avoid LOR we should unlock our private mutex here to call 1726253789Srpaulo * ieee80211_input() because here is at the end of a USB 1727253789Srpaulo * callback and safe to unlock. 1728253789Srpaulo */ 1729253789Srpaulo RSU_UNLOCK(sc); 1730253789Srpaulo while (m != NULL) { 1731253789Srpaulo next = m->m_next; 1732253789Srpaulo m->m_next = NULL; 1733253789Srpaulo wh = mtod(m, struct ieee80211_frame *); 1734253789Srpaulo ni = ieee80211_find_rxnode(ic, 1735253789Srpaulo (struct ieee80211_frame_min *)wh); 1736253789Srpaulo if (ni != NULL) { 1737287949Sadrian if (ni->ni_flags & IEEE80211_NODE_HT) 1738287949Sadrian m->m_flags |= M_AMPDU; 1739253789Srpaulo (void)ieee80211_input(ni, m, rssi, 0); 1740253789Srpaulo ieee80211_free_node(ni); 1741253789Srpaulo } else 1742253789Srpaulo (void)ieee80211_input_all(ic, m, rssi, 0); 1743253789Srpaulo m = next; 1744253789Srpaulo } 1745253789Srpaulo RSU_LOCK(sc); 1746253789Srpaulo break; 1747253789Srpaulo default: 1748253789Srpaulo /* needs it to the inactive queue due to a error. */ 1749253789Srpaulo data = STAILQ_FIRST(&sc->sc_rx_active); 1750253789Srpaulo if (data != NULL) { 1751253789Srpaulo STAILQ_REMOVE_HEAD(&sc->sc_rx_active, next); 1752253789Srpaulo STAILQ_INSERT_TAIL(&sc->sc_rx_inactive, data, next); 1753253789Srpaulo } 1754253789Srpaulo if (error != USB_ERR_CANCELLED) { 1755253789Srpaulo usbd_xfer_set_stall(xfer); 1756287197Sglebius counter_u64_add(ic->ic_ierrors, 1); 1757253789Srpaulo goto tr_setup; 1758253789Srpaulo } 1759253789Srpaulo break; 1760253789Srpaulo } 1761253789Srpaulo 1762253789Srpaulo} 1763253789Srpaulo 1764253789Srpaulostatic void 1765253789Srpaulorsu_txeof(struct usb_xfer *xfer, struct rsu_data *data) 1766253789Srpaulo{ 1767287727Sadrian#ifdef USB_DEBUG 1768287727Sadrian struct rsu_softc *sc = usbd_xfer_softc(xfer); 1769287727Sadrian#endif 1770253789Srpaulo 1771287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TXDONE, "%s: called; data=%p\n", 1772287727Sadrian __func__, 1773287727Sadrian data); 1774287727Sadrian 1775253789Srpaulo if (data->m) { 1776287197Sglebius /* XXX status? */ 1777287197Sglebius ieee80211_tx_complete(data->ni, data->m, 0); 1778253789Srpaulo data->m = NULL; 1779253789Srpaulo data->ni = NULL; 1780253789Srpaulo } 1781253789Srpaulo} 1782253789Srpaulo 1783253789Srpaulostatic void 1784266505Shselaskyrsu_bulk_tx_callback_sub(struct usb_xfer *xfer, usb_error_t error, 1785266505Shselasky uint8_t which) 1786253789Srpaulo{ 1787253789Srpaulo struct rsu_softc *sc = usbd_xfer_softc(xfer); 1788287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1789253789Srpaulo struct rsu_data *data; 1790253789Srpaulo 1791253789Srpaulo RSU_ASSERT_LOCKED(sc); 1792253789Srpaulo 1793253789Srpaulo switch (USB_GET_STATE(xfer)) { 1794253789Srpaulo case USB_ST_TRANSFERRED: 1795266505Shselasky data = STAILQ_FIRST(&sc->sc_tx_active[which]); 1796253789Srpaulo if (data == NULL) 1797253789Srpaulo goto tr_setup; 1798287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TXDONE, "%s: transfer done %p\n", 1799287727Sadrian __func__, data); 1800266505Shselasky STAILQ_REMOVE_HEAD(&sc->sc_tx_active[which], next); 1801253789Srpaulo rsu_txeof(xfer, data); 1802287953Sadrian rsu_freebuf(sc, data); 1803253789Srpaulo /* FALLTHROUGH */ 1804253789Srpaulo case USB_ST_SETUP: 1805253789Srpaulotr_setup: 1806266505Shselasky data = STAILQ_FIRST(&sc->sc_tx_pending[which]); 1807253789Srpaulo if (data == NULL) { 1808287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TXDONE, 1809287727Sadrian "%s: empty pending queue sc %p\n", __func__, sc); 1810253789Srpaulo return; 1811253789Srpaulo } 1812266505Shselasky STAILQ_REMOVE_HEAD(&sc->sc_tx_pending[which], next); 1813266505Shselasky STAILQ_INSERT_TAIL(&sc->sc_tx_active[which], data, next); 1814253789Srpaulo usbd_xfer_set_frame_data(xfer, 0, data->buf, data->buflen); 1815287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TXDONE, 1816287727Sadrian "%s: submitting transfer %p\n", 1817287727Sadrian __func__, 1818287727Sadrian data); 1819253789Srpaulo usbd_transfer_submit(xfer); 1820253789Srpaulo break; 1821253789Srpaulo default: 1822266505Shselasky data = STAILQ_FIRST(&sc->sc_tx_active[which]); 1823266505Shselasky if (data != NULL) { 1824266505Shselasky STAILQ_REMOVE_HEAD(&sc->sc_tx_active[which], next); 1825266505Shselasky rsu_txeof(xfer, data); 1826287953Sadrian rsu_freebuf(sc, data); 1827253789Srpaulo } 1828287197Sglebius counter_u64_add(ic->ic_oerrors, 1); 1829266505Shselasky 1830253789Srpaulo if (error != USB_ERR_CANCELLED) { 1831253789Srpaulo usbd_xfer_set_stall(xfer); 1832253789Srpaulo goto tr_setup; 1833253789Srpaulo } 1834253789Srpaulo break; 1835253789Srpaulo } 1836253789Srpaulo} 1837253789Srpaulo 1838266505Shselaskystatic void 1839267041Shselaskyrsu_bulk_tx_callback_be_bk(struct usb_xfer *xfer, usb_error_t error) 1840266505Shselasky{ 1841267041Shselasky rsu_bulk_tx_callback_sub(xfer, error, RSU_BULK_TX_BE_BK); 1842266505Shselasky} 1843266505Shselasky 1844266505Shselaskystatic void 1845267041Shselaskyrsu_bulk_tx_callback_vi_vo(struct usb_xfer *xfer, usb_error_t error) 1846266505Shselasky{ 1847267041Shselasky rsu_bulk_tx_callback_sub(xfer, error, RSU_BULK_TX_VI_VO); 1848266505Shselasky} 1849266505Shselasky 1850287896Sadrianstatic void 1851287896Sadrianrsu_bulk_tx_callback_h2c(struct usb_xfer *xfer, usb_error_t error) 1852287896Sadrian{ 1853287896Sadrian rsu_bulk_tx_callback_sub(xfer, error, RSU_BULK_TX_H2C); 1854287896Sadrian} 1855287896Sadrian 1856253789Srpaulostatic int 1857253789Srpaulorsu_tx_start(struct rsu_softc *sc, struct ieee80211_node *ni, 1858266505Shselasky struct mbuf *m0, struct rsu_data *data) 1859253789Srpaulo{ 1860287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1861253789Srpaulo struct ieee80211vap *vap = ni->ni_vap; 1862253789Srpaulo struct ieee80211_frame *wh; 1863253789Srpaulo struct ieee80211_key *k = NULL; 1864253789Srpaulo struct r92s_tx_desc *txd; 1865266505Shselasky uint8_t type; 1866287901Sadrian int prio = 0; 1867266505Shselasky uint8_t which; 1868266505Shselasky int hasqos; 1869266505Shselasky int xferlen; 1870287901Sadrian int qid; 1871253789Srpaulo 1872253789Srpaulo RSU_ASSERT_LOCKED(sc); 1873253789Srpaulo 1874253789Srpaulo wh = mtod(m0, struct ieee80211_frame *); 1875253789Srpaulo type = wh->i_fc[0] & IEEE80211_FC0_TYPE_MASK; 1876253789Srpaulo 1877287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TX, "%s: data=%p, m=%p\n", 1878287727Sadrian __func__, data, m0); 1879287727Sadrian 1880260444Skevlo if (wh->i_fc[1] & IEEE80211_FC1_PROTECTED) { 1881253789Srpaulo k = ieee80211_crypto_encap(ni, m0); 1882253789Srpaulo if (k == NULL) { 1883253789Srpaulo device_printf(sc->sc_dev, 1884253789Srpaulo "ieee80211_crypto_encap returns NULL.\n"); 1885253789Srpaulo /* XXX we don't expect the fragmented frames */ 1886253789Srpaulo m_freem(m0); 1887253789Srpaulo return (ENOBUFS); 1888253789Srpaulo } 1889253789Srpaulo wh = mtod(m0, struct ieee80211_frame *); 1890253789Srpaulo } 1891287901Sadrian /* If we have QoS then use it */ 1892287901Sadrian /* XXX TODO: mbuf WME/PRI versus TID? */ 1893287901Sadrian if (IEEE80211_QOS_HAS_SEQ(wh)) { 1894287901Sadrian /* Has QoS */ 1895287901Sadrian prio = M_WME_GETAC(m0); 1896287901Sadrian which = rsu_wme_ac_xfer_map[prio]; 1897287901Sadrian hasqos = 1; 1898287901Sadrian } else { 1899287901Sadrian /* Non-QoS TID */ 1900287901Sadrian /* XXX TODO: tid=0 for non-qos TID? */ 1901287901Sadrian which = rsu_wme_ac_xfer_map[WME_AC_BE]; 1902287901Sadrian hasqos = 0; 1903287901Sadrian prio = 0; 1904287901Sadrian } 1905287901Sadrian 1906287901Sadrian qid = rsu_ac2qid[prio]; 1907287901Sadrian#if 0 1908253789Srpaulo switch (type) { 1909253789Srpaulo case IEEE80211_FC0_TYPE_CTL: 1910253789Srpaulo case IEEE80211_FC0_TYPE_MGT: 1911267041Shselasky which = rsu_wme_ac_xfer_map[WME_AC_VO]; 1912253789Srpaulo break; 1913253789Srpaulo default: 1914267041Shselasky which = rsu_wme_ac_xfer_map[M_WME_GETAC(m0)]; 1915253789Srpaulo break; 1916253789Srpaulo } 1917253789Srpaulo hasqos = 0; 1918287901Sadrian#endif 1919287947Sadrian 1920287947Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TX, "%s: pri=%d, which=%d, hasqos=%d\n", 1921287947Sadrian __func__, 1922287947Sadrian prio, 1923287947Sadrian which, 1924287947Sadrian hasqos); 1925287947Sadrian 1926253789Srpaulo /* Fill Tx descriptor. */ 1927253789Srpaulo txd = (struct r92s_tx_desc *)data->buf; 1928253789Srpaulo memset(txd, 0, sizeof(*txd)); 1929253789Srpaulo 1930253789Srpaulo txd->txdw0 |= htole32( 1931253789Srpaulo SM(R92S_TXDW0_PKTLEN, m0->m_pkthdr.len) | 1932253789Srpaulo SM(R92S_TXDW0_OFFSET, sizeof(*txd)) | 1933253789Srpaulo R92S_TXDW0_OWN | R92S_TXDW0_FSG | R92S_TXDW0_LSG); 1934253789Srpaulo 1935253789Srpaulo txd->txdw1 |= htole32( 1936287901Sadrian SM(R92S_TXDW1_MACID, R92S_MACID_BSS) | SM(R92S_TXDW1_QSEL, qid)); 1937253789Srpaulo if (!hasqos) 1938253789Srpaulo txd->txdw1 |= htole32(R92S_TXDW1_NONQOS); 1939253789Srpaulo#ifdef notyet 1940253789Srpaulo if (k != NULL) { 1941253789Srpaulo switch (k->wk_cipher->ic_cipher) { 1942253789Srpaulo case IEEE80211_CIPHER_WEP: 1943253789Srpaulo cipher = R92S_TXDW1_CIPHER_WEP; 1944253789Srpaulo break; 1945253789Srpaulo case IEEE80211_CIPHER_TKIP: 1946253789Srpaulo cipher = R92S_TXDW1_CIPHER_TKIP; 1947253789Srpaulo break; 1948253789Srpaulo case IEEE80211_CIPHER_AES_CCM: 1949253789Srpaulo cipher = R92S_TXDW1_CIPHER_AES; 1950253789Srpaulo break; 1951253789Srpaulo default: 1952253789Srpaulo cipher = R92S_TXDW1_CIPHER_NONE; 1953253789Srpaulo } 1954253789Srpaulo txd->txdw1 |= htole32( 1955253789Srpaulo SM(R92S_TXDW1_CIPHER, cipher) | 1956253789Srpaulo SM(R92S_TXDW1_KEYIDX, k->k_id)); 1957253789Srpaulo } 1958253789Srpaulo#endif 1959287947Sadrian /* XXX todo: set AGGEN bit if appropriate? */ 1960253789Srpaulo txd->txdw2 |= htole32(R92S_TXDW2_BK); 1961253789Srpaulo if (IEEE80211_IS_MULTICAST(wh->i_addr1)) 1962253789Srpaulo txd->txdw2 |= htole32(R92S_TXDW2_BMCAST); 1963253789Srpaulo /* 1964253789Srpaulo * Firmware will use and increment the sequence number for the 1965287901Sadrian * specified priority. 1966253789Srpaulo */ 1967287901Sadrian txd->txdw3 |= htole32(SM(R92S_TXDW3_SEQ, prio)); 1968253789Srpaulo 1969253789Srpaulo if (ieee80211_radiotap_active_vap(vap)) { 1970253789Srpaulo struct rsu_tx_radiotap_header *tap = &sc->sc_txtap; 1971253789Srpaulo 1972253789Srpaulo tap->wt_flags = 0; 1973253789Srpaulo tap->wt_chan_freq = htole16(ic->ic_curchan->ic_freq); 1974253789Srpaulo tap->wt_chan_flags = htole16(ic->ic_curchan->ic_flags); 1975253789Srpaulo ieee80211_radiotap_tx(vap, m0); 1976253789Srpaulo } 1977287727Sadrian 1978253789Srpaulo xferlen = sizeof(*txd) + m0->m_pkthdr.len; 1979253789Srpaulo m_copydata(m0, 0, m0->m_pkthdr.len, (caddr_t)&txd[1]); 1980253789Srpaulo 1981253789Srpaulo data->buflen = xferlen; 1982253789Srpaulo data->ni = ni; 1983253789Srpaulo data->m = m0; 1984266505Shselasky STAILQ_INSERT_TAIL(&sc->sc_tx_pending[which], data, next); 1985253789Srpaulo 1986266505Shselasky /* start transfer, if any */ 1987267041Shselasky usbd_transfer_start(sc->sc_xfer[which]); 1988253789Srpaulo return (0); 1989253789Srpaulo} 1990253789Srpaulo 1991287197Sglebiusstatic int 1992287197Sglebiusrsu_transmit(struct ieee80211com *ic, struct mbuf *m) 1993253789Srpaulo{ 1994287197Sglebius struct rsu_softc *sc = ic->ic_softc; 1995287197Sglebius int error; 1996253789Srpaulo 1997253789Srpaulo RSU_LOCK(sc); 1998287197Sglebius if (!sc->sc_running) { 1999287197Sglebius RSU_UNLOCK(sc); 2000287197Sglebius return (ENXIO); 2001287197Sglebius } 2002287197Sglebius error = mbufq_enqueue(&sc->sc_snd, m); 2003287197Sglebius if (error) { 2004288051Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TX, 2005288051Sadrian "%s: mbufq_enable: failed (%d)\n", 2006288051Sadrian __func__, 2007288051Sadrian error); 2008287197Sglebius RSU_UNLOCK(sc); 2009287197Sglebius return (error); 2010287197Sglebius } 2011287197Sglebius rsu_start(sc); 2012253789Srpaulo RSU_UNLOCK(sc); 2013287197Sglebius 2014287197Sglebius return (0); 2015253789Srpaulo} 2016253789Srpaulo 2017253789Srpaulostatic void 2018288051Sadrianrsu_drain_mbufq(struct rsu_softc *sc) 2019288051Sadrian{ 2020288051Sadrian struct mbuf *m; 2021288051Sadrian struct ieee80211_node *ni; 2022288051Sadrian 2023288051Sadrian RSU_ASSERT_LOCKED(sc); 2024288051Sadrian while ((m = mbufq_dequeue(&sc->sc_snd)) != NULL) { 2025288051Sadrian ni = (struct ieee80211_node *)m->m_pkthdr.rcvif; 2026288051Sadrian m->m_pkthdr.rcvif = NULL; 2027288051Sadrian ieee80211_free_node(ni); 2028288051Sadrian m_freem(m); 2029288051Sadrian } 2030288051Sadrian} 2031288051Sadrian 2032288051Sadrianstatic void 2033287197Sglebiusrsu_start(struct rsu_softc *sc) 2034253789Srpaulo{ 2035253789Srpaulo struct ieee80211_node *ni; 2036266505Shselasky struct rsu_data *bf; 2037253789Srpaulo struct mbuf *m; 2038253789Srpaulo 2039253789Srpaulo RSU_ASSERT_LOCKED(sc); 2040253789Srpaulo 2041287197Sglebius while ((m = mbufq_dequeue(&sc->sc_snd)) != NULL) { 2042287197Sglebius bf = rsu_getbuf(sc); 2043287197Sglebius if (bf == NULL) { 2044288051Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TX, 2045288051Sadrian "%s: failed to get buffer\n", __func__); 2046287197Sglebius mbufq_prepend(&sc->sc_snd, m); 2047253789Srpaulo break; 2048287197Sglebius } 2049287197Sglebius 2050253789Srpaulo ni = (struct ieee80211_node *)m->m_pkthdr.rcvif; 2051253789Srpaulo m->m_pkthdr.rcvif = NULL; 2052253789Srpaulo 2053287197Sglebius if (rsu_tx_start(sc, ni, m, bf) != 0) { 2054288051Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TX, 2055288051Sadrian "%s: failed to transmit\n", __func__); 2056287197Sglebius if_inc_counter(ni->ni_vap->iv_ifp, 2057287197Sglebius IFCOUNTER_OERRORS, 1); 2058287953Sadrian rsu_freebuf(sc, bf); 2059253789Srpaulo ieee80211_free_node(ni); 2060287197Sglebius break; 2061253789Srpaulo } 2062253789Srpaulo } 2063253789Srpaulo} 2064253789Srpaulo 2065287197Sglebiusstatic void 2066287197Sglebiusrsu_parent(struct ieee80211com *ic) 2067253789Srpaulo{ 2068286950Sadrian struct rsu_softc *sc = ic->ic_softc; 2069287197Sglebius int startall = 0; 2070253789Srpaulo 2071287197Sglebius RSU_LOCK(sc); 2072287197Sglebius if (ic->ic_nrunning > 0) { 2073287197Sglebius if (!sc->sc_running) { 2074287197Sglebius rsu_init(sc); 2075287197Sglebius startall = 1; 2076253789Srpaulo } 2077287197Sglebius } else if (sc->sc_running) 2078287197Sglebius rsu_stop(sc); 2079287197Sglebius RSU_UNLOCK(sc); 2080253789Srpaulo 2081287197Sglebius if (startall) 2082287197Sglebius ieee80211_start_all(ic); 2083253789Srpaulo} 2084253789Srpaulo 2085253789Srpaulo/* 2086253789Srpaulo * Power on sequence for A-cut adapters. 2087253789Srpaulo */ 2088253789Srpaulostatic void 2089253789Srpaulorsu_power_on_acut(struct rsu_softc *sc) 2090253789Srpaulo{ 2091253789Srpaulo uint32_t reg; 2092253789Srpaulo 2093253789Srpaulo rsu_write_1(sc, R92S_SPS0_CTRL + 1, 0x53); 2094253789Srpaulo rsu_write_1(sc, R92S_SPS0_CTRL + 0, 0x57); 2095253789Srpaulo 2096253789Srpaulo /* Enable AFE macro block's bandgap and Mbias. */ 2097253789Srpaulo rsu_write_1(sc, R92S_AFE_MISC, 2098253789Srpaulo rsu_read_1(sc, R92S_AFE_MISC) | 2099253789Srpaulo R92S_AFE_MISC_BGEN | R92S_AFE_MISC_MBEN); 2100253789Srpaulo /* Enable LDOA15 block. */ 2101253789Srpaulo rsu_write_1(sc, R92S_LDOA15_CTRL, 2102253789Srpaulo rsu_read_1(sc, R92S_LDOA15_CTRL) | R92S_LDA15_EN); 2103253789Srpaulo 2104253789Srpaulo rsu_write_1(sc, R92S_SPS1_CTRL, 2105253789Srpaulo rsu_read_1(sc, R92S_SPS1_CTRL) | R92S_SPS1_LDEN); 2106287892Sadrian rsu_ms_delay(sc, 2000); 2107253789Srpaulo /* Enable switch regulator block. */ 2108253789Srpaulo rsu_write_1(sc, R92S_SPS1_CTRL, 2109253789Srpaulo rsu_read_1(sc, R92S_SPS1_CTRL) | R92S_SPS1_SWEN); 2110253789Srpaulo 2111253789Srpaulo rsu_write_4(sc, R92S_SPS1_CTRL, 0x00a7b267); 2112253789Srpaulo 2113253789Srpaulo rsu_write_1(sc, R92S_SYS_ISO_CTRL + 1, 2114253789Srpaulo rsu_read_1(sc, R92S_SYS_ISO_CTRL + 1) | 0x08); 2115253789Srpaulo 2116253789Srpaulo rsu_write_1(sc, R92S_SYS_FUNC_EN + 1, 2117253789Srpaulo rsu_read_1(sc, R92S_SYS_FUNC_EN + 1) | 0x20); 2118253789Srpaulo 2119253789Srpaulo rsu_write_1(sc, R92S_SYS_ISO_CTRL + 1, 2120253789Srpaulo rsu_read_1(sc, R92S_SYS_ISO_CTRL + 1) & ~0x90); 2121253789Srpaulo 2122253789Srpaulo /* Enable AFE clock. */ 2123253789Srpaulo rsu_write_1(sc, R92S_AFE_XTAL_CTRL + 1, 2124253789Srpaulo rsu_read_1(sc, R92S_AFE_XTAL_CTRL + 1) & ~0x04); 2125253789Srpaulo /* Enable AFE PLL macro block. */ 2126253789Srpaulo rsu_write_1(sc, R92S_AFE_PLL_CTRL, 2127253789Srpaulo rsu_read_1(sc, R92S_AFE_PLL_CTRL) | 0x11); 2128253789Srpaulo /* Attach AFE PLL to MACTOP/BB. */ 2129253789Srpaulo rsu_write_1(sc, R92S_SYS_ISO_CTRL, 2130253789Srpaulo rsu_read_1(sc, R92S_SYS_ISO_CTRL) & ~0x11); 2131253789Srpaulo 2132253789Srpaulo /* Switch to 40MHz clock instead of 80MHz. */ 2133253789Srpaulo rsu_write_2(sc, R92S_SYS_CLKR, 2134253789Srpaulo rsu_read_2(sc, R92S_SYS_CLKR) & ~R92S_SYS_CLKSEL); 2135253789Srpaulo 2136253789Srpaulo /* Enable MAC clock. */ 2137253789Srpaulo rsu_write_2(sc, R92S_SYS_CLKR, 2138253789Srpaulo rsu_read_2(sc, R92S_SYS_CLKR) | 2139253789Srpaulo R92S_MAC_CLK_EN | R92S_SYS_CLK_EN); 2140253789Srpaulo 2141253789Srpaulo rsu_write_1(sc, R92S_PMC_FSM, 0x02); 2142253789Srpaulo 2143253789Srpaulo /* Enable digital core and IOREG R/W. */ 2144253789Srpaulo rsu_write_1(sc, R92S_SYS_FUNC_EN + 1, 2145253789Srpaulo rsu_read_1(sc, R92S_SYS_FUNC_EN + 1) | 0x08); 2146253789Srpaulo 2147253789Srpaulo rsu_write_1(sc, R92S_SYS_FUNC_EN + 1, 2148253789Srpaulo rsu_read_1(sc, R92S_SYS_FUNC_EN + 1) | 0x80); 2149253789Srpaulo 2150253789Srpaulo /* Switch the control path to firmware. */ 2151253789Srpaulo reg = rsu_read_2(sc, R92S_SYS_CLKR); 2152253789Srpaulo reg = (reg & ~R92S_SWHW_SEL) | R92S_FWHW_SEL; 2153253789Srpaulo rsu_write_2(sc, R92S_SYS_CLKR, reg); 2154253789Srpaulo 2155253789Srpaulo rsu_write_2(sc, R92S_CR, 0x37fc); 2156253789Srpaulo 2157253789Srpaulo /* Fix USB RX FIFO issue. */ 2158253789Srpaulo rsu_write_1(sc, 0xfe5c, 2159253789Srpaulo rsu_read_1(sc, 0xfe5c) | 0x80); 2160253789Srpaulo rsu_write_1(sc, 0x00ab, 2161253789Srpaulo rsu_read_1(sc, 0x00ab) | 0xc0); 2162253789Srpaulo 2163253789Srpaulo rsu_write_1(sc, R92S_SYS_CLKR, 2164253789Srpaulo rsu_read_1(sc, R92S_SYS_CLKR) & ~R92S_SYS_CPU_CLKSEL); 2165253789Srpaulo} 2166253789Srpaulo 2167253789Srpaulo/* 2168253789Srpaulo * Power on sequence for B-cut and C-cut adapters. 2169253789Srpaulo */ 2170253789Srpaulostatic void 2171253789Srpaulorsu_power_on_bcut(struct rsu_softc *sc) 2172253789Srpaulo{ 2173253789Srpaulo uint32_t reg; 2174253789Srpaulo int ntries; 2175253789Srpaulo 2176253789Srpaulo /* Prevent eFuse leakage. */ 2177253789Srpaulo rsu_write_1(sc, 0x37, 0xb0); 2178287892Sadrian rsu_ms_delay(sc, 10); 2179253789Srpaulo rsu_write_1(sc, 0x37, 0x30); 2180253789Srpaulo 2181253789Srpaulo /* Switch the control path to hardware. */ 2182253789Srpaulo reg = rsu_read_2(sc, R92S_SYS_CLKR); 2183253789Srpaulo if (reg & R92S_FWHW_SEL) { 2184253789Srpaulo rsu_write_2(sc, R92S_SYS_CLKR, 2185253789Srpaulo reg & ~(R92S_SWHW_SEL | R92S_FWHW_SEL)); 2186253789Srpaulo } 2187253789Srpaulo rsu_write_1(sc, R92S_SYS_FUNC_EN + 1, 2188253789Srpaulo rsu_read_1(sc, R92S_SYS_FUNC_EN + 1) & ~0x8c); 2189287892Sadrian rsu_ms_delay(sc, 1); 2190253789Srpaulo 2191253789Srpaulo rsu_write_1(sc, R92S_SPS0_CTRL + 1, 0x53); 2192253789Srpaulo rsu_write_1(sc, R92S_SPS0_CTRL + 0, 0x57); 2193253789Srpaulo 2194253789Srpaulo reg = rsu_read_1(sc, R92S_AFE_MISC); 2195253789Srpaulo rsu_write_1(sc, R92S_AFE_MISC, reg | R92S_AFE_MISC_BGEN); 2196253789Srpaulo rsu_write_1(sc, R92S_AFE_MISC, reg | R92S_AFE_MISC_BGEN | 2197253789Srpaulo R92S_AFE_MISC_MBEN | R92S_AFE_MISC_I32_EN); 2198253789Srpaulo 2199253789Srpaulo /* Enable PLL. */ 2200253789Srpaulo rsu_write_1(sc, R92S_LDOA15_CTRL, 2201253789Srpaulo rsu_read_1(sc, R92S_LDOA15_CTRL) | R92S_LDA15_EN); 2202253789Srpaulo 2203253789Srpaulo rsu_write_1(sc, R92S_LDOV12D_CTRL, 2204253789Srpaulo rsu_read_1(sc, R92S_LDOV12D_CTRL) | R92S_LDV12_EN); 2205253789Srpaulo 2206253789Srpaulo rsu_write_1(sc, R92S_SYS_ISO_CTRL + 1, 2207253789Srpaulo rsu_read_1(sc, R92S_SYS_ISO_CTRL + 1) | 0x08); 2208253789Srpaulo 2209253789Srpaulo rsu_write_1(sc, R92S_SYS_FUNC_EN + 1, 2210253789Srpaulo rsu_read_1(sc, R92S_SYS_FUNC_EN + 1) | 0x20); 2211253789Srpaulo 2212253789Srpaulo /* Support 64KB IMEM. */ 2213253789Srpaulo rsu_write_1(sc, R92S_SYS_ISO_CTRL + 1, 2214253789Srpaulo rsu_read_1(sc, R92S_SYS_ISO_CTRL + 1) & ~0x97); 2215253789Srpaulo 2216253789Srpaulo /* Enable AFE clock. */ 2217253789Srpaulo rsu_write_1(sc, R92S_AFE_XTAL_CTRL + 1, 2218253789Srpaulo rsu_read_1(sc, R92S_AFE_XTAL_CTRL + 1) & ~0x04); 2219253789Srpaulo /* Enable AFE PLL macro block. */ 2220253789Srpaulo reg = rsu_read_1(sc, R92S_AFE_PLL_CTRL); 2221253789Srpaulo rsu_write_1(sc, R92S_AFE_PLL_CTRL, reg | 0x11); 2222287892Sadrian rsu_ms_delay(sc, 1); 2223253789Srpaulo rsu_write_1(sc, R92S_AFE_PLL_CTRL, reg | 0x51); 2224287892Sadrian rsu_ms_delay(sc, 1); 2225253789Srpaulo rsu_write_1(sc, R92S_AFE_PLL_CTRL, reg | 0x11); 2226287892Sadrian rsu_ms_delay(sc, 1); 2227253789Srpaulo 2228253789Srpaulo /* Attach AFE PLL to MACTOP/BB. */ 2229253789Srpaulo rsu_write_1(sc, R92S_SYS_ISO_CTRL, 2230253789Srpaulo rsu_read_1(sc, R92S_SYS_ISO_CTRL) & ~0x11); 2231253789Srpaulo 2232253789Srpaulo /* Switch to 40MHz clock. */ 2233253789Srpaulo rsu_write_1(sc, R92S_SYS_CLKR, 0x00); 2234253789Srpaulo /* Disable CPU clock and 80MHz SSC. */ 2235253789Srpaulo rsu_write_1(sc, R92S_SYS_CLKR, 2236253789Srpaulo rsu_read_1(sc, R92S_SYS_CLKR) | 0xa0); 2237253789Srpaulo /* Enable MAC clock. */ 2238253789Srpaulo rsu_write_2(sc, R92S_SYS_CLKR, 2239253789Srpaulo rsu_read_2(sc, R92S_SYS_CLKR) | 2240253789Srpaulo R92S_MAC_CLK_EN | R92S_SYS_CLK_EN); 2241253789Srpaulo 2242253789Srpaulo rsu_write_1(sc, R92S_PMC_FSM, 0x02); 2243253789Srpaulo 2244253789Srpaulo /* Enable digital core and IOREG R/W. */ 2245253789Srpaulo rsu_write_1(sc, R92S_SYS_FUNC_EN + 1, 2246253789Srpaulo rsu_read_1(sc, R92S_SYS_FUNC_EN + 1) | 0x08); 2247253789Srpaulo 2248253789Srpaulo rsu_write_1(sc, R92S_SYS_FUNC_EN + 1, 2249253789Srpaulo rsu_read_1(sc, R92S_SYS_FUNC_EN + 1) | 0x80); 2250253789Srpaulo 2251253789Srpaulo /* Switch the control path to firmware. */ 2252253789Srpaulo reg = rsu_read_2(sc, R92S_SYS_CLKR); 2253253789Srpaulo reg = (reg & ~R92S_SWHW_SEL) | R92S_FWHW_SEL; 2254253789Srpaulo rsu_write_2(sc, R92S_SYS_CLKR, reg); 2255253789Srpaulo 2256253789Srpaulo rsu_write_2(sc, R92S_CR, 0x37fc); 2257253789Srpaulo 2258253789Srpaulo /* Fix USB RX FIFO issue. */ 2259253789Srpaulo rsu_write_1(sc, 0xfe5c, 2260253789Srpaulo rsu_read_1(sc, 0xfe5c) | 0x80); 2261253789Srpaulo 2262253789Srpaulo rsu_write_1(sc, R92S_SYS_CLKR, 2263253789Srpaulo rsu_read_1(sc, R92S_SYS_CLKR) & ~R92S_SYS_CPU_CLKSEL); 2264253789Srpaulo 2265253789Srpaulo rsu_write_1(sc, 0xfe1c, 0x80); 2266253789Srpaulo 2267253789Srpaulo /* Make sure TxDMA is ready to download firmware. */ 2268253789Srpaulo for (ntries = 0; ntries < 20; ntries++) { 2269253789Srpaulo reg = rsu_read_1(sc, R92S_TCR); 2270253789Srpaulo if ((reg & (R92S_TCR_IMEM_CHK_RPT | R92S_TCR_EMEM_CHK_RPT)) == 2271253789Srpaulo (R92S_TCR_IMEM_CHK_RPT | R92S_TCR_EMEM_CHK_RPT)) 2272253789Srpaulo break; 2273287892Sadrian rsu_ms_delay(sc, 1); 2274253789Srpaulo } 2275253789Srpaulo if (ntries == 20) { 2276287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RESET | RSU_DEBUG_TX, 2277287727Sadrian "%s: TxDMA is not ready\n", 2278287727Sadrian __func__); 2279253789Srpaulo /* Reset TxDMA. */ 2280253789Srpaulo reg = rsu_read_1(sc, R92S_CR); 2281253789Srpaulo rsu_write_1(sc, R92S_CR, reg & ~R92S_CR_TXDMA_EN); 2282287892Sadrian rsu_ms_delay(sc, 1); 2283253789Srpaulo rsu_write_1(sc, R92S_CR, reg | R92S_CR_TXDMA_EN); 2284253789Srpaulo } 2285253789Srpaulo} 2286253789Srpaulo 2287253789Srpaulostatic void 2288253789Srpaulorsu_power_off(struct rsu_softc *sc) 2289253789Srpaulo{ 2290253789Srpaulo /* Turn RF off. */ 2291253789Srpaulo rsu_write_1(sc, R92S_RF_CTRL, 0x00); 2292287892Sadrian rsu_ms_delay(sc, 5); 2293253789Srpaulo 2294253789Srpaulo /* Turn MAC off. */ 2295253789Srpaulo /* Switch control path. */ 2296253789Srpaulo rsu_write_1(sc, R92S_SYS_CLKR + 1, 0x38); 2297253789Srpaulo /* Reset MACTOP. */ 2298253789Srpaulo rsu_write_1(sc, R92S_SYS_FUNC_EN + 1, 0x70); 2299253789Srpaulo rsu_write_1(sc, R92S_PMC_FSM, 0x06); 2300253789Srpaulo rsu_write_1(sc, R92S_SYS_ISO_CTRL + 0, 0xf9); 2301253789Srpaulo rsu_write_1(sc, R92S_SYS_ISO_CTRL + 1, 0xe8); 2302253789Srpaulo 2303253789Srpaulo /* Disable AFE PLL. */ 2304253789Srpaulo rsu_write_1(sc, R92S_AFE_PLL_CTRL, 0x00); 2305253789Srpaulo /* Disable A15V. */ 2306253789Srpaulo rsu_write_1(sc, R92S_LDOA15_CTRL, 0x54); 2307253789Srpaulo /* Disable eFuse 1.2V. */ 2308253789Srpaulo rsu_write_1(sc, R92S_SYS_FUNC_EN + 1, 0x50); 2309253789Srpaulo rsu_write_1(sc, R92S_LDOV12D_CTRL, 0x24); 2310253789Srpaulo /* Enable AFE macro block's bandgap and Mbias. */ 2311253789Srpaulo rsu_write_1(sc, R92S_AFE_MISC, 0x30); 2312253789Srpaulo /* Disable 1.6V LDO. */ 2313253789Srpaulo rsu_write_1(sc, R92S_SPS0_CTRL + 0, 0x56); 2314253789Srpaulo rsu_write_1(sc, R92S_SPS0_CTRL + 1, 0x43); 2315253789Srpaulo} 2316253789Srpaulo 2317253789Srpaulostatic int 2318253807Srpaulorsu_fw_loadsection(struct rsu_softc *sc, const uint8_t *buf, int len) 2319253789Srpaulo{ 2320267041Shselasky const uint8_t which = rsu_wme_ac_xfer_map[WME_AC_VO]; 2321253789Srpaulo struct rsu_data *data; 2322253789Srpaulo struct r92s_tx_desc *txd; 2323253789Srpaulo int mlen; 2324253789Srpaulo 2325253789Srpaulo while (len > 0) { 2326253789Srpaulo data = rsu_getbuf(sc); 2327253789Srpaulo if (data == NULL) 2328253789Srpaulo return (ENOMEM); 2329253789Srpaulo txd = (struct r92s_tx_desc *)data->buf; 2330253789Srpaulo memset(txd, 0, sizeof(*txd)); 2331253789Srpaulo if (len <= RSU_TXBUFSZ - sizeof(*txd)) { 2332253789Srpaulo /* Last chunk. */ 2333253789Srpaulo txd->txdw0 |= htole32(R92S_TXDW0_LINIP); 2334253789Srpaulo mlen = len; 2335253789Srpaulo } else 2336253789Srpaulo mlen = RSU_TXBUFSZ - sizeof(*txd); 2337253789Srpaulo txd->txdw0 |= htole32(SM(R92S_TXDW0_PKTLEN, mlen)); 2338253789Srpaulo memcpy(&txd[1], buf, mlen); 2339253789Srpaulo data->buflen = sizeof(*txd) + mlen; 2340287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TX | RSU_DEBUG_FW | RSU_DEBUG_RESET, 2341287727Sadrian "%s: starting transfer %p\n", 2342287727Sadrian __func__, data); 2343266505Shselasky STAILQ_INSERT_TAIL(&sc->sc_tx_pending[which], data, next); 2344253789Srpaulo buf += mlen; 2345253789Srpaulo len -= mlen; 2346253789Srpaulo } 2347267041Shselasky usbd_transfer_start(sc->sc_xfer[which]); 2348253789Srpaulo return (0); 2349253789Srpaulo} 2350253789Srpaulo 2351253789Srpaulostatic int 2352253789Srpaulorsu_load_firmware(struct rsu_softc *sc) 2353253789Srpaulo{ 2354253807Srpaulo const struct r92s_fw_hdr *hdr; 2355253789Srpaulo struct r92s_fw_priv *dmem; 2356287947Sadrian struct ieee80211com *ic = &sc->sc_ic; 2357253807Srpaulo const uint8_t *imem, *emem; 2358253789Srpaulo int imemsz, ememsz; 2359253789Srpaulo const struct firmware *fw; 2360253789Srpaulo size_t size; 2361253789Srpaulo uint32_t reg; 2362253789Srpaulo int ntries, error; 2363253789Srpaulo 2364267041Shselasky if (rsu_read_1(sc, R92S_TCR) & R92S_TCR_FWRDY) { 2365287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_FW | RSU_DEBUG_RESET, 2366287727Sadrian "%s: Firmware already loaded\n", 2367287727Sadrian __func__); 2368267041Shselasky return (0); 2369267041Shselasky } 2370267041Shselasky 2371253789Srpaulo RSU_UNLOCK(sc); 2372253789Srpaulo /* Read firmware image from the filesystem. */ 2373253789Srpaulo if ((fw = firmware_get("rsu-rtl8712fw")) == NULL) { 2374253789Srpaulo device_printf(sc->sc_dev, 2375253789Srpaulo "%s: failed load firmware of file rsu-rtl8712fw\n", 2376253789Srpaulo __func__); 2377253789Srpaulo RSU_LOCK(sc); 2378253789Srpaulo return (ENXIO); 2379253789Srpaulo } 2380253789Srpaulo RSU_LOCK(sc); 2381253789Srpaulo size = fw->datasize; 2382253789Srpaulo if (size < sizeof(*hdr)) { 2383253789Srpaulo device_printf(sc->sc_dev, "firmware too short\n"); 2384253789Srpaulo error = EINVAL; 2385253789Srpaulo goto fail; 2386253789Srpaulo } 2387253807Srpaulo hdr = (const struct r92s_fw_hdr *)fw->data; 2388253789Srpaulo if (hdr->signature != htole16(0x8712) && 2389253789Srpaulo hdr->signature != htole16(0x8192)) { 2390253789Srpaulo device_printf(sc->sc_dev, 2391253789Srpaulo "invalid firmware signature 0x%x\n", 2392253789Srpaulo le16toh(hdr->signature)); 2393253789Srpaulo error = EINVAL; 2394253789Srpaulo goto fail; 2395253789Srpaulo } 2396253789Srpaulo DPRINTF("FW V%d %02x-%02x %02x:%02x\n", le16toh(hdr->version), 2397253789Srpaulo hdr->month, hdr->day, hdr->hour, hdr->minute); 2398253789Srpaulo 2399253789Srpaulo /* Make sure that driver and firmware are in sync. */ 2400253789Srpaulo if (hdr->privsz != htole32(sizeof(*dmem))) { 2401253789Srpaulo device_printf(sc->sc_dev, "unsupported firmware image\n"); 2402253789Srpaulo error = EINVAL; 2403253789Srpaulo goto fail; 2404253789Srpaulo } 2405253789Srpaulo /* Get FW sections sizes. */ 2406253789Srpaulo imemsz = le32toh(hdr->imemsz); 2407253789Srpaulo ememsz = le32toh(hdr->sramsz); 2408253789Srpaulo /* Check that all FW sections fit in image. */ 2409253789Srpaulo if (size < sizeof(*hdr) + imemsz + ememsz) { 2410253789Srpaulo device_printf(sc->sc_dev, "firmware too short\n"); 2411253789Srpaulo error = EINVAL; 2412253789Srpaulo goto fail; 2413253789Srpaulo } 2414253807Srpaulo imem = (const uint8_t *)&hdr[1]; 2415253789Srpaulo emem = imem + imemsz; 2416253789Srpaulo 2417253789Srpaulo /* Load IMEM section. */ 2418253789Srpaulo error = rsu_fw_loadsection(sc, imem, imemsz); 2419253789Srpaulo if (error != 0) { 2420253789Srpaulo device_printf(sc->sc_dev, 2421253789Srpaulo "could not load firmware section %s\n", "IMEM"); 2422253789Srpaulo goto fail; 2423253789Srpaulo } 2424253789Srpaulo /* Wait for load to complete. */ 2425266535Shselasky for (ntries = 0; ntries != 50; ntries++) { 2426287892Sadrian rsu_ms_delay(sc, 10); 2427267041Shselasky reg = rsu_read_1(sc, R92S_TCR); 2428253789Srpaulo if (reg & R92S_TCR_IMEM_CODE_DONE) 2429253789Srpaulo break; 2430253789Srpaulo } 2431266535Shselasky if (ntries == 50) { 2432266535Shselasky device_printf(sc->sc_dev, "timeout waiting for IMEM transfer\n"); 2433253789Srpaulo error = ETIMEDOUT; 2434253789Srpaulo goto fail; 2435253789Srpaulo } 2436253789Srpaulo /* Load EMEM section. */ 2437253789Srpaulo error = rsu_fw_loadsection(sc, emem, ememsz); 2438253789Srpaulo if (error != 0) { 2439253789Srpaulo device_printf(sc->sc_dev, 2440253789Srpaulo "could not load firmware section %s\n", "EMEM"); 2441253789Srpaulo goto fail; 2442253789Srpaulo } 2443253789Srpaulo /* Wait for load to complete. */ 2444266542Shselasky for (ntries = 0; ntries != 50; ntries++) { 2445287892Sadrian rsu_ms_delay(sc, 10); 2446253789Srpaulo reg = rsu_read_2(sc, R92S_TCR); 2447253789Srpaulo if (reg & R92S_TCR_EMEM_CODE_DONE) 2448253789Srpaulo break; 2449253789Srpaulo } 2450266542Shselasky if (ntries == 50) { 2451266535Shselasky device_printf(sc->sc_dev, "timeout waiting for EMEM transfer\n"); 2452253789Srpaulo error = ETIMEDOUT; 2453253789Srpaulo goto fail; 2454253789Srpaulo } 2455253789Srpaulo /* Enable CPU. */ 2456253789Srpaulo rsu_write_1(sc, R92S_SYS_CLKR, 2457253789Srpaulo rsu_read_1(sc, R92S_SYS_CLKR) | R92S_SYS_CPU_CLKSEL); 2458253789Srpaulo if (!(rsu_read_1(sc, R92S_SYS_CLKR) & R92S_SYS_CPU_CLKSEL)) { 2459253789Srpaulo device_printf(sc->sc_dev, "could not enable system clock\n"); 2460253789Srpaulo error = EIO; 2461253789Srpaulo goto fail; 2462253789Srpaulo } 2463253789Srpaulo rsu_write_2(sc, R92S_SYS_FUNC_EN, 2464253789Srpaulo rsu_read_2(sc, R92S_SYS_FUNC_EN) | R92S_FEN_CPUEN); 2465253789Srpaulo if (!(rsu_read_2(sc, R92S_SYS_FUNC_EN) & R92S_FEN_CPUEN)) { 2466253789Srpaulo device_printf(sc->sc_dev, 2467253789Srpaulo "could not enable microcontroller\n"); 2468253789Srpaulo error = EIO; 2469253789Srpaulo goto fail; 2470253789Srpaulo } 2471253789Srpaulo /* Wait for CPU to initialize. */ 2472253789Srpaulo for (ntries = 0; ntries < 100; ntries++) { 2473267041Shselasky if (rsu_read_1(sc, R92S_TCR) & R92S_TCR_IMEM_RDY) 2474253789Srpaulo break; 2475287892Sadrian rsu_ms_delay(sc, 1); 2476253789Srpaulo } 2477253789Srpaulo if (ntries == 100) { 2478253789Srpaulo device_printf(sc->sc_dev, 2479253789Srpaulo "timeout waiting for microcontroller\n"); 2480253789Srpaulo error = ETIMEDOUT; 2481253789Srpaulo goto fail; 2482253789Srpaulo } 2483253789Srpaulo 2484253789Srpaulo /* Update DMEM section before loading. */ 2485253807Srpaulo dmem = __DECONST(struct r92s_fw_priv *, &hdr->priv); 2486253789Srpaulo memset(dmem, 0, sizeof(*dmem)); 2487253789Srpaulo dmem->hci_sel = R92S_HCI_SEL_USB | R92S_HCI_SEL_8172; 2488287897Sadrian dmem->nendpoints = sc->sc_nendpoints; 2489287897Sadrian /* XXX TODO: rf_config should come from ROM */ 2490287897Sadrian dmem->rf_config = 0x11; /* 1T1R */ 2491253789Srpaulo dmem->vcs_type = R92S_VCS_TYPE_AUTO; 2492253789Srpaulo dmem->vcs_mode = R92S_VCS_MODE_RTS_CTS; 2493287897Sadrian dmem->turbo_mode = 0; 2494287947Sadrian dmem->bw40_en = !! (ic->ic_htcaps & IEEE80211_HTCAP_CHWIDTH40); 2495287947Sadrian dmem->amsdu2ampdu_en = !! (sc->sc_ht); 2496287947Sadrian dmem->ampdu_en = !! (sc->sc_ht); 2497287947Sadrian dmem->agg_offload = !! (sc->sc_ht); 2498287909Sadrian dmem->qos_en = 1; 2499253789Srpaulo /* Load DMEM section. */ 2500253789Srpaulo error = rsu_fw_loadsection(sc, (uint8_t *)dmem, sizeof(*dmem)); 2501253789Srpaulo if (error != 0) { 2502253789Srpaulo device_printf(sc->sc_dev, 2503253789Srpaulo "could not load firmware section %s\n", "DMEM"); 2504253789Srpaulo goto fail; 2505253789Srpaulo } 2506253789Srpaulo /* Wait for load to complete. */ 2507253789Srpaulo for (ntries = 0; ntries < 100; ntries++) { 2508267041Shselasky if (rsu_read_1(sc, R92S_TCR) & R92S_TCR_DMEM_CODE_DONE) 2509253789Srpaulo break; 2510287892Sadrian rsu_ms_delay(sc, 1); 2511253789Srpaulo } 2512253789Srpaulo if (ntries == 100) { 2513253789Srpaulo device_printf(sc->sc_dev, "timeout waiting for %s transfer\n", 2514253789Srpaulo "DMEM"); 2515253789Srpaulo error = ETIMEDOUT; 2516253789Srpaulo goto fail; 2517253789Srpaulo } 2518253789Srpaulo /* Wait for firmware readiness. */ 2519253789Srpaulo for (ntries = 0; ntries < 60; ntries++) { 2520267041Shselasky if (!(rsu_read_1(sc, R92S_TCR) & R92S_TCR_FWRDY)) 2521253789Srpaulo break; 2522287892Sadrian rsu_ms_delay(sc, 1); 2523253789Srpaulo } 2524253789Srpaulo if (ntries == 60) { 2525253789Srpaulo device_printf(sc->sc_dev, 2526253789Srpaulo "timeout waiting for firmware readiness\n"); 2527253789Srpaulo error = ETIMEDOUT; 2528253789Srpaulo goto fail; 2529253789Srpaulo } 2530253789Srpaulo fail: 2531253789Srpaulo firmware_put(fw, FIRMWARE_UNLOAD); 2532253789Srpaulo return (error); 2533253789Srpaulo} 2534253789Srpaulo 2535253789Srpaulo 2536253789Srpaulostatic int 2537253789Srpaulorsu_raw_xmit(struct ieee80211_node *ni, struct mbuf *m, 2538253789Srpaulo const struct ieee80211_bpf_params *params) 2539253789Srpaulo{ 2540253789Srpaulo struct ieee80211com *ic = ni->ni_ic; 2541286950Sadrian struct rsu_softc *sc = ic->ic_softc; 2542253789Srpaulo struct rsu_data *bf; 2543253789Srpaulo 2544253789Srpaulo /* prevent management frames from being sent if we're not ready */ 2545287197Sglebius if (!sc->sc_running) { 2546253789Srpaulo m_freem(m); 2547253789Srpaulo ieee80211_free_node(ni); 2548253789Srpaulo return (ENETDOWN); 2549253789Srpaulo } 2550253789Srpaulo RSU_LOCK(sc); 2551253789Srpaulo bf = rsu_getbuf(sc); 2552253789Srpaulo if (bf == NULL) { 2553253789Srpaulo ieee80211_free_node(ni); 2554253789Srpaulo m_freem(m); 2555253789Srpaulo RSU_UNLOCK(sc); 2556253789Srpaulo return (ENOBUFS); 2557253789Srpaulo } 2558266505Shselasky if (rsu_tx_start(sc, ni, m, bf) != 0) { 2559253789Srpaulo ieee80211_free_node(ni); 2560287953Sadrian rsu_freebuf(sc, bf); 2561253789Srpaulo RSU_UNLOCK(sc); 2562253789Srpaulo return (EIO); 2563253789Srpaulo } 2564253789Srpaulo RSU_UNLOCK(sc); 2565253789Srpaulo 2566253789Srpaulo return (0); 2567253789Srpaulo} 2568253789Srpaulo 2569253789Srpaulostatic void 2570287197Sglebiusrsu_init(struct rsu_softc *sc) 2571253789Srpaulo{ 2572287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 2573287197Sglebius struct ieee80211vap *vap = TAILQ_FIRST(&ic->ic_vaps); 2574287197Sglebius uint8_t macaddr[IEEE80211_ADDR_LEN]; 2575253789Srpaulo struct r92s_set_pwr_mode cmd; 2576253789Srpaulo int error; 2577266535Shselasky int i; 2578253789Srpaulo 2579287197Sglebius RSU_ASSERT_LOCKED(sc); 2580287197Sglebius 2581288051Sadrian /* Ensure the mbuf queue is drained */ 2582288051Sadrian rsu_drain_mbufq(sc); 2583288051Sadrian 2584253789Srpaulo /* Init host async commands ring. */ 2585253789Srpaulo sc->cmdq.cur = sc->cmdq.next = sc->cmdq.queued = 0; 2586253789Srpaulo 2587253789Srpaulo /* Power on adapter. */ 2588253789Srpaulo if (sc->cut == 1) 2589253789Srpaulo rsu_power_on_acut(sc); 2590253789Srpaulo else 2591253789Srpaulo rsu_power_on_bcut(sc); 2592267041Shselasky 2593253789Srpaulo /* Load firmware. */ 2594253789Srpaulo error = rsu_load_firmware(sc); 2595253789Srpaulo if (error != 0) 2596253789Srpaulo goto fail; 2597253789Srpaulo 2598253789Srpaulo /* Enable Rx TCP checksum offload. */ 2599253789Srpaulo rsu_write_4(sc, R92S_RCR, 2600253789Srpaulo rsu_read_4(sc, R92S_RCR) | 0x04000000); 2601253789Srpaulo /* Append PHY status. */ 2602253789Srpaulo rsu_write_4(sc, R92S_RCR, 2603253789Srpaulo rsu_read_4(sc, R92S_RCR) | 0x02000000); 2604253789Srpaulo 2605253789Srpaulo rsu_write_4(sc, R92S_CR, 2606253789Srpaulo rsu_read_4(sc, R92S_CR) & ~0xff000000); 2607253789Srpaulo 2608253789Srpaulo /* Use 128 bytes pages. */ 2609253789Srpaulo rsu_write_1(sc, 0x00b5, 2610253789Srpaulo rsu_read_1(sc, 0x00b5) | 0x01); 2611253789Srpaulo /* Enable USB Rx aggregation. */ 2612253789Srpaulo rsu_write_1(sc, 0x00bd, 2613253789Srpaulo rsu_read_1(sc, 0x00bd) | 0x80); 2614253789Srpaulo /* Set USB Rx aggregation threshold. */ 2615253789Srpaulo rsu_write_1(sc, 0x00d9, 0x01); 2616253789Srpaulo /* Set USB Rx aggregation timeout (1.7ms/4). */ 2617253789Srpaulo rsu_write_1(sc, 0xfe5b, 0x04); 2618253789Srpaulo /* Fix USB Rx FIFO issue. */ 2619253789Srpaulo rsu_write_1(sc, 0xfe5c, 2620253789Srpaulo rsu_read_1(sc, 0xfe5c) | 0x80); 2621253789Srpaulo 2622253789Srpaulo /* Set MAC address. */ 2623287197Sglebius IEEE80211_ADDR_COPY(macaddr, vap ? vap->iv_myaddr : ic->ic_macaddr); 2624287197Sglebius rsu_write_region_1(sc, R92S_MACID, macaddr, IEEE80211_ADDR_LEN); 2625253789Srpaulo 2626266471Shselasky /* It really takes 1.5 seconds for the firmware to boot: */ 2627287892Sadrian rsu_ms_delay(sc, 2000); 2628253789Srpaulo 2629287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RESET, "%s: setting MAC address to %s\n", 2630287727Sadrian __func__, 2631287727Sadrian ether_sprintf(macaddr)); 2632287197Sglebius error = rsu_fw_cmd(sc, R92S_CMD_SET_MAC_ADDRESS, macaddr, 2633253789Srpaulo IEEE80211_ADDR_LEN); 2634253789Srpaulo if (error != 0) { 2635253789Srpaulo device_printf(sc->sc_dev, "could not set MAC address\n"); 2636253789Srpaulo goto fail; 2637253789Srpaulo } 2638253789Srpaulo 2639253789Srpaulo rsu_write_1(sc, R92S_USB_HRPWM, 2640253789Srpaulo R92S_USB_HRPWM_PS_ST_ACTIVE | R92S_USB_HRPWM_PS_ALL_ON); 2641253789Srpaulo 2642287741Sadrian /* Set PS mode fully active */ 2643253789Srpaulo memset(&cmd, 0, sizeof(cmd)); 2644253789Srpaulo cmd.mode = R92S_PS_MODE_ACTIVE; 2645287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RESET, "%s: setting ps mode to %d\n", 2646287727Sadrian __func__, cmd.mode); 2647253789Srpaulo error = rsu_fw_cmd(sc, R92S_CMD_SET_PWR_MODE, &cmd, sizeof(cmd)); 2648253789Srpaulo if (error != 0) { 2649253789Srpaulo device_printf(sc->sc_dev, "could not set PS mode\n"); 2650253789Srpaulo goto fail; 2651253789Srpaulo } 2652253789Srpaulo 2653287947Sadrian if (ic->ic_htcaps & IEEE80211_HTCAP_CHWIDTH40) { 2654253789Srpaulo /* Enable 40MHz mode. */ 2655253789Srpaulo error = rsu_fw_iocmd(sc, 2656253789Srpaulo SM(R92S_IOCMD_CLASS, 0xf4) | 2657253789Srpaulo SM(R92S_IOCMD_INDEX, 0x00) | 2658253789Srpaulo SM(R92S_IOCMD_VALUE, 0x0007)); 2659253789Srpaulo if (error != 0) { 2660253789Srpaulo device_printf(sc->sc_dev, 2661253789Srpaulo "could not enable 40MHz mode\n"); 2662253789Srpaulo goto fail; 2663253789Srpaulo } 2664253789Srpaulo } 2665253789Srpaulo 2666287197Sglebius sc->sc_scan_pass = 0; 2667253789Srpaulo usbd_transfer_start(sc->sc_xfer[RSU_BULK_RX]); 2668253789Srpaulo 2669253789Srpaulo /* We're ready to go. */ 2670287197Sglebius sc->sc_running = 1; 2671287954Sadrian sc->sc_scanning = 0; 2672253789Srpaulo return; 2673253789Srpaulofail: 2674266535Shselasky /* Need to stop all failed transfers, if any */ 2675266535Shselasky for (i = 0; i != RSU_N_TRANSFER; i++) 2676266535Shselasky usbd_transfer_stop(sc->sc_xfer[i]); 2677253789Srpaulo} 2678253789Srpaulo 2679253789Srpaulostatic void 2680287197Sglebiusrsu_stop(struct rsu_softc *sc) 2681253789Srpaulo{ 2682253789Srpaulo int i; 2683253789Srpaulo 2684287197Sglebius sc->sc_running = 0; 2685253789Srpaulo sc->sc_calibrating = 0; 2686253789Srpaulo taskqueue_cancel_timeout(taskqueue_thread, &sc->calib_task, NULL); 2687253789Srpaulo 2688253789Srpaulo /* Power off adapter. */ 2689253789Srpaulo rsu_power_off(sc); 2690253789Srpaulo 2691253789Srpaulo for (i = 0; i < RSU_N_TRANSFER; i++) 2692253789Srpaulo usbd_transfer_stop(sc->sc_xfer[i]); 2693288051Sadrian 2694288051Sadrian /* Ensure the mbuf queue is drained */ 2695288051Sadrian rsu_drain_mbufq(sc); 2696253789Srpaulo} 2697253789Srpaulo 2698287892Sadrian/* 2699287892Sadrian * Note: usb_pause_mtx() actually releases the mutex before calling pause(), 2700287892Sadrian * which breaks any kind of driver serialisation. 2701287892Sadrian */ 2702266471Shselaskystatic void 2703287892Sadrianrsu_ms_delay(struct rsu_softc *sc, int ms) 2704266471Shselasky{ 2705287892Sadrian 2706287892Sadrian //usb_pause_mtx(&sc->sc_mtx, hz / 1000); 2707287892Sadrian DELAY(ms * 1000); 2708266471Shselasky} 2709