if_rsu.c revision 288257
1253789Srpaulo/* $OpenBSD: if_rsu.c,v 1.17 2013/04/15 09:23:01 mglocker Exp $ */ 2253789Srpaulo 3253789Srpaulo/*- 4253789Srpaulo * Copyright (c) 2010 Damien Bergamini <damien.bergamini@free.fr> 5253789Srpaulo * 6253789Srpaulo * Permission to use, copy, modify, and distribute this software for any 7253789Srpaulo * purpose with or without fee is hereby granted, provided that the above 8253789Srpaulo * copyright notice and this permission notice appear in all copies. 9253789Srpaulo * 10253789Srpaulo * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES 11253789Srpaulo * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF 12253789Srpaulo * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR 13253789Srpaulo * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES 14253789Srpaulo * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN 15253789Srpaulo * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF 16253789Srpaulo * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. 17253789Srpaulo */ 18253789Srpaulo#include <sys/cdefs.h> 19253789Srpaulo__FBSDID("$FreeBSD: head/sys/dev/usb/wlan/if_rsu.c 288257 2015-09-26 07:25:53Z adrian $"); 20253789Srpaulo 21253789Srpaulo/* 22253789Srpaulo * Driver for Realtek RTL8188SU/RTL8191SU/RTL8192SU. 23253789Srpaulo * 24253789Srpaulo * TODO: 25253789Srpaulo * o h/w crypto 26253789Srpaulo * o hostap / ibss / mesh 27288053Sadrian * o sensible RSSI levels 28288053Sadrian * o power-save operation 29253789Srpaulo */ 30287727Sadrian 31253789Srpaulo#include <sys/param.h> 32253789Srpaulo#include <sys/endian.h> 33253789Srpaulo#include <sys/sockio.h> 34253789Srpaulo#include <sys/mbuf.h> 35253789Srpaulo#include <sys/kernel.h> 36253789Srpaulo#include <sys/socket.h> 37253789Srpaulo#include <sys/systm.h> 38253789Srpaulo#include <sys/conf.h> 39253789Srpaulo#include <sys/bus.h> 40253789Srpaulo#include <sys/rman.h> 41253789Srpaulo#include <sys/firmware.h> 42253789Srpaulo#include <sys/module.h> 43253789Srpaulo 44253789Srpaulo#include <machine/bus.h> 45253789Srpaulo#include <machine/resource.h> 46253789Srpaulo 47253789Srpaulo#include <net/bpf.h> 48253789Srpaulo#include <net/if.h> 49257176Sglebius#include <net/if_var.h> 50253789Srpaulo#include <net/if_arp.h> 51253789Srpaulo#include <net/if_dl.h> 52253789Srpaulo#include <net/if_media.h> 53253789Srpaulo#include <net/if_types.h> 54253789Srpaulo 55253789Srpaulo#include <netinet/in.h> 56253789Srpaulo#include <netinet/in_systm.h> 57253789Srpaulo#include <netinet/in_var.h> 58253789Srpaulo#include <netinet/if_ether.h> 59253789Srpaulo#include <netinet/ip.h> 60253789Srpaulo 61253789Srpaulo#include <net80211/ieee80211_var.h> 62253789Srpaulo#include <net80211/ieee80211_regdomain.h> 63253789Srpaulo#include <net80211/ieee80211_radiotap.h> 64253789Srpaulo 65253789Srpaulo#include <dev/usb/usb.h> 66253789Srpaulo#include <dev/usb/usbdi.h> 67253789Srpaulo#include "usbdevs.h" 68253789Srpaulo 69253789Srpaulo#define USB_DEBUG_VAR rsu_debug 70253789Srpaulo#include <dev/usb/usb_debug.h> 71253789Srpaulo 72253789Srpaulo#include <dev/usb/wlan/if_rsureg.h> 73253789Srpaulo 74253789Srpaulo#ifdef USB_DEBUG 75253789Srpaulostatic int rsu_debug = 0; 76253789SrpauloSYSCTL_NODE(_hw_usb, OID_AUTO, rsu, CTLFLAG_RW, 0, "USB rsu"); 77276701ShselaskySYSCTL_INT(_hw_usb_rsu, OID_AUTO, debug, CTLFLAG_RWTUN, &rsu_debug, 0, 78253789Srpaulo "Debug level"); 79287727Sadrian#define RSU_DPRINTF(_sc, _flg, ...) \ 80287727Sadrian do \ 81287727Sadrian if (((_flg) == (RSU_DEBUG_ANY)) || (rsu_debug & (_flg))) \ 82287727Sadrian device_printf((_sc)->sc_dev, __VA_ARGS__); \ 83287727Sadrian while (0) 84287727Sadrian#else 85287727Sadrian#define RSU_DPRINTF(_sc, _flg, ...) 86253789Srpaulo#endif 87253789Srpaulo 88288053Sadrianstatic int rsu_enable_11n = 1; 89287947SadrianTUNABLE_INT("hw.usb.rsu.enable_11n", &rsu_enable_11n); 90287947Sadrian 91287727Sadrian#define RSU_DEBUG_ANY 0xffffffff 92287727Sadrian#define RSU_DEBUG_TX 0x00000001 93287727Sadrian#define RSU_DEBUG_RX 0x00000002 94287727Sadrian#define RSU_DEBUG_RESET 0x00000004 95287727Sadrian#define RSU_DEBUG_CALIB 0x00000008 96287727Sadrian#define RSU_DEBUG_STATE 0x00000010 97287727Sadrian#define RSU_DEBUG_SCAN 0x00000020 98287727Sadrian#define RSU_DEBUG_FWCMD 0x00000040 99287727Sadrian#define RSU_DEBUG_TXDONE 0x00000080 100287727Sadrian#define RSU_DEBUG_FW 0x00000100 101287727Sadrian#define RSU_DEBUG_FWDBG 0x00000200 102288089Sadrian#define RSU_DEBUG_AMPDU 0x00000400 103287727Sadrian 104253789Srpaulostatic const STRUCT_USB_HOST_ID rsu_devs[] = { 105253789Srpaulo#define RSU_HT_NOT_SUPPORTED 0 106253789Srpaulo#define RSU_HT_SUPPORTED 1 107253789Srpaulo#define RSU_DEV_HT(v,p) { USB_VPI(USB_VENDOR_##v, USB_PRODUCT_##v##_##p, \ 108253789Srpaulo RSU_HT_SUPPORTED) } 109253789Srpaulo#define RSU_DEV(v,p) { USB_VPI(USB_VENDOR_##v, USB_PRODUCT_##v##_##p, \ 110253789Srpaulo RSU_HT_NOT_SUPPORTED) } 111253789Srpaulo RSU_DEV(ASUS, RTL8192SU), 112253789Srpaulo RSU_DEV(AZUREWAVE, RTL8192SU_4), 113253789Srpaulo RSU_DEV_HT(ACCTON, RTL8192SU), 114253789Srpaulo RSU_DEV_HT(ASUS, USBN10), 115253789Srpaulo RSU_DEV_HT(AZUREWAVE, RTL8192SU_1), 116253789Srpaulo RSU_DEV_HT(AZUREWAVE, RTL8192SU_2), 117253789Srpaulo RSU_DEV_HT(AZUREWAVE, RTL8192SU_3), 118253789Srpaulo RSU_DEV_HT(AZUREWAVE, RTL8192SU_5), 119253789Srpaulo RSU_DEV_HT(BELKIN, RTL8192SU_1), 120253789Srpaulo RSU_DEV_HT(BELKIN, RTL8192SU_2), 121253789Srpaulo RSU_DEV_HT(BELKIN, RTL8192SU_3), 122253789Srpaulo RSU_DEV_HT(CONCEPTRONIC2, RTL8192SU_1), 123253789Srpaulo RSU_DEV_HT(CONCEPTRONIC2, RTL8192SU_2), 124253789Srpaulo RSU_DEV_HT(CONCEPTRONIC2, RTL8192SU_3), 125253789Srpaulo RSU_DEV_HT(COREGA, RTL8192SU), 126253789Srpaulo RSU_DEV_HT(DLINK2, DWA131A1), 127253789Srpaulo RSU_DEV_HT(DLINK2, RTL8192SU_1), 128253789Srpaulo RSU_DEV_HT(DLINK2, RTL8192SU_2), 129253789Srpaulo RSU_DEV_HT(EDIMAX, RTL8192SU_1), 130253789Srpaulo RSU_DEV_HT(EDIMAX, RTL8192SU_2), 131258028Skevlo RSU_DEV_HT(EDIMAX, EW7622UMN), 132253789Srpaulo RSU_DEV_HT(GUILLEMOT, HWGUN54), 133253789Srpaulo RSU_DEV_HT(GUILLEMOT, HWNUM300), 134253789Srpaulo RSU_DEV_HT(HAWKING, RTL8192SU_1), 135253789Srpaulo RSU_DEV_HT(HAWKING, RTL8192SU_2), 136253789Srpaulo RSU_DEV_HT(PLANEX2, GWUSNANO), 137253789Srpaulo RSU_DEV_HT(REALTEK, RTL8171), 138253789Srpaulo RSU_DEV_HT(REALTEK, RTL8172), 139253789Srpaulo RSU_DEV_HT(REALTEK, RTL8173), 140253789Srpaulo RSU_DEV_HT(REALTEK, RTL8174), 141253789Srpaulo RSU_DEV_HT(REALTEK, RTL8192SU), 142253789Srpaulo RSU_DEV_HT(REALTEK, RTL8712), 143253789Srpaulo RSU_DEV_HT(REALTEK, RTL8713), 144253789Srpaulo RSU_DEV_HT(SENAO, RTL8192SU_1), 145253789Srpaulo RSU_DEV_HT(SENAO, RTL8192SU_2), 146253789Srpaulo RSU_DEV_HT(SITECOMEU, WL349V1), 147253789Srpaulo RSU_DEV_HT(SITECOMEU, WL353), 148253789Srpaulo RSU_DEV_HT(SWEEX2, LW154), 149274684Skevlo RSU_DEV_HT(TRENDNET, TEW646UBH), 150253789Srpaulo#undef RSU_DEV_HT 151253789Srpaulo#undef RSU_DEV 152253789Srpaulo}; 153253789Srpaulo 154253789Srpaulostatic device_probe_t rsu_match; 155253789Srpaulostatic device_attach_t rsu_attach; 156253789Srpaulostatic device_detach_t rsu_detach; 157267041Shselaskystatic usb_callback_t rsu_bulk_tx_callback_be_bk; 158267041Shselaskystatic usb_callback_t rsu_bulk_tx_callback_vi_vo; 159287896Sadrianstatic usb_callback_t rsu_bulk_tx_callback_h2c; 160253789Srpaulostatic usb_callback_t rsu_bulk_rx_callback; 161253789Srpaulostatic usb_error_t rsu_do_request(struct rsu_softc *, 162253789Srpaulo struct usb_device_request *, void *); 163253789Srpaulostatic struct ieee80211vap * 164253789Srpaulo rsu_vap_create(struct ieee80211com *, const char name[], 165253789Srpaulo int, enum ieee80211_opmode, int, const uint8_t bssid[], 166253789Srpaulo const uint8_t mac[]); 167253789Srpaulostatic void rsu_vap_delete(struct ieee80211vap *); 168253789Srpaulostatic void rsu_scan_start(struct ieee80211com *); 169253789Srpaulostatic void rsu_scan_end(struct ieee80211com *); 170253789Srpaulostatic void rsu_set_channel(struct ieee80211com *); 171283540Sglebiusstatic void rsu_update_mcast(struct ieee80211com *); 172253789Srpaulostatic int rsu_alloc_rx_list(struct rsu_softc *); 173253789Srpaulostatic void rsu_free_rx_list(struct rsu_softc *); 174253789Srpaulostatic int rsu_alloc_tx_list(struct rsu_softc *); 175253789Srpaulostatic void rsu_free_tx_list(struct rsu_softc *); 176253789Srpaulostatic void rsu_free_list(struct rsu_softc *, struct rsu_data [], int); 177253789Srpaulostatic struct rsu_data *_rsu_getbuf(struct rsu_softc *); 178253789Srpaulostatic struct rsu_data *rsu_getbuf(struct rsu_softc *); 179287953Sadrianstatic void rsu_freebuf(struct rsu_softc *, struct rsu_data *); 180253789Srpaulostatic int rsu_write_region_1(struct rsu_softc *, uint16_t, uint8_t *, 181253789Srpaulo int); 182253789Srpaulostatic void rsu_write_1(struct rsu_softc *, uint16_t, uint8_t); 183253789Srpaulostatic void rsu_write_2(struct rsu_softc *, uint16_t, uint16_t); 184253789Srpaulostatic void rsu_write_4(struct rsu_softc *, uint16_t, uint32_t); 185253789Srpaulostatic int rsu_read_region_1(struct rsu_softc *, uint16_t, uint8_t *, 186253789Srpaulo int); 187253789Srpaulostatic uint8_t rsu_read_1(struct rsu_softc *, uint16_t); 188253789Srpaulostatic uint16_t rsu_read_2(struct rsu_softc *, uint16_t); 189253789Srpaulostatic uint32_t rsu_read_4(struct rsu_softc *, uint16_t); 190253789Srpaulostatic int rsu_fw_iocmd(struct rsu_softc *, uint32_t); 191253789Srpaulostatic uint8_t rsu_efuse_read_1(struct rsu_softc *, uint16_t); 192253789Srpaulostatic int rsu_read_rom(struct rsu_softc *); 193253789Srpaulostatic int rsu_fw_cmd(struct rsu_softc *, uint8_t, void *, int); 194253789Srpaulostatic void rsu_calib_task(void *, int); 195288052Sadrianstatic void rsu_tx_task(void *, int); 196253789Srpaulostatic int rsu_newstate(struct ieee80211vap *, enum ieee80211_state, int); 197253789Srpaulo#ifdef notyet 198253789Srpaulostatic void rsu_set_key(struct rsu_softc *, const struct ieee80211_key *); 199253789Srpaulostatic void rsu_delete_key(struct rsu_softc *, const struct ieee80211_key *); 200253789Srpaulo#endif 201253789Srpaulostatic int rsu_site_survey(struct rsu_softc *, struct ieee80211vap *); 202253789Srpaulostatic int rsu_join_bss(struct rsu_softc *, struct ieee80211_node *); 203253789Srpaulostatic int rsu_disconnect(struct rsu_softc *); 204253789Srpaulostatic void rsu_event_survey(struct rsu_softc *, uint8_t *, int); 205253789Srpaulostatic void rsu_event_join_bss(struct rsu_softc *, uint8_t *, int); 206253789Srpaulostatic void rsu_rx_event(struct rsu_softc *, uint8_t, uint8_t *, int); 207253789Srpaulostatic void rsu_rx_multi_event(struct rsu_softc *, uint8_t *, int); 208253789Srpaulostatic int8_t rsu_get_rssi(struct rsu_softc *, int, void *); 209253789Srpaulostatic struct mbuf * 210253789Srpaulo rsu_rx_frame(struct rsu_softc *, uint8_t *, int, int *); 211253789Srpaulostatic struct mbuf * 212253789Srpaulo rsu_rx_multi_frame(struct rsu_softc *, uint8_t *, int, int *); 213253789Srpaulostatic struct mbuf * 214253789Srpaulo rsu_rxeof(struct usb_xfer *, struct rsu_data *, int *); 215253789Srpaulostatic void rsu_txeof(struct usb_xfer *, struct rsu_data *); 216253789Srpaulostatic int rsu_raw_xmit(struct ieee80211_node *, struct mbuf *, 217253789Srpaulo const struct ieee80211_bpf_params *); 218287197Sglebiusstatic void rsu_init(struct rsu_softc *); 219253789Srpaulostatic int rsu_tx_start(struct rsu_softc *, struct ieee80211_node *, 220266505Shselasky struct mbuf *, struct rsu_data *); 221287197Sglebiusstatic int rsu_transmit(struct ieee80211com *, struct mbuf *); 222287197Sglebiusstatic void rsu_start(struct rsu_softc *); 223288052Sadrianstatic void _rsu_start(struct rsu_softc *); 224287197Sglebiusstatic void rsu_parent(struct ieee80211com *); 225287197Sglebiusstatic void rsu_stop(struct rsu_softc *); 226287892Sadrianstatic void rsu_ms_delay(struct rsu_softc *, int); 227253789Srpaulo 228253789Srpaulostatic device_method_t rsu_methods[] = { 229253789Srpaulo DEVMETHOD(device_probe, rsu_match), 230253789Srpaulo DEVMETHOD(device_attach, rsu_attach), 231253789Srpaulo DEVMETHOD(device_detach, rsu_detach), 232253789Srpaulo 233253789Srpaulo DEVMETHOD_END 234253789Srpaulo}; 235253789Srpaulo 236253789Srpaulostatic driver_t rsu_driver = { 237253789Srpaulo .name = "rsu", 238253789Srpaulo .methods = rsu_methods, 239253789Srpaulo .size = sizeof(struct rsu_softc) 240253789Srpaulo}; 241253789Srpaulo 242253789Srpaulostatic devclass_t rsu_devclass; 243253789Srpaulo 244253789SrpauloDRIVER_MODULE(rsu, uhub, rsu_driver, rsu_devclass, NULL, 0); 245253789SrpauloMODULE_DEPEND(rsu, wlan, 1, 1, 1); 246253789SrpauloMODULE_DEPEND(rsu, usb, 1, 1, 1); 247253789SrpauloMODULE_DEPEND(rsu, firmware, 1, 1, 1); 248253789SrpauloMODULE_VERSION(rsu, 1); 249253789Srpaulo 250267041Shselaskystatic uint8_t rsu_wme_ac_xfer_map[4] = { 251267041Shselasky [WME_AC_BE] = RSU_BULK_TX_BE_BK, 252267041Shselasky [WME_AC_BK] = RSU_BULK_TX_BE_BK, 253267041Shselasky [WME_AC_VI] = RSU_BULK_TX_VI_VO, 254267041Shselasky [WME_AC_VO] = RSU_BULK_TX_VI_VO, 255267041Shselasky}; 256267041Shselasky 257287896Sadrian/* XXX hard-coded */ 258287896Sadrian#define RSU_H2C_ENDPOINT 3 259287896Sadrian 260253789Srpaulostatic const struct usb_config rsu_config[RSU_N_TRANSFER] = { 261253789Srpaulo [RSU_BULK_RX] = { 262253789Srpaulo .type = UE_BULK, 263253789Srpaulo .endpoint = UE_ADDR_ANY, 264253789Srpaulo .direction = UE_DIR_IN, 265253789Srpaulo .bufsize = RSU_RXBUFSZ, 266253789Srpaulo .flags = { 267253789Srpaulo .pipe_bof = 1, 268253789Srpaulo .short_xfer_ok = 1 269253789Srpaulo }, 270253789Srpaulo .callback = rsu_bulk_rx_callback 271253789Srpaulo }, 272267041Shselasky [RSU_BULK_TX_BE_BK] = { 273253789Srpaulo .type = UE_BULK, 274253789Srpaulo .endpoint = 0x06, 275253789Srpaulo .direction = UE_DIR_OUT, 276253789Srpaulo .bufsize = RSU_TXBUFSZ, 277253789Srpaulo .flags = { 278253789Srpaulo .ext_buffer = 1, 279253789Srpaulo .pipe_bof = 1, 280253789Srpaulo .force_short_xfer = 1 281253789Srpaulo }, 282267041Shselasky .callback = rsu_bulk_tx_callback_be_bk, 283253789Srpaulo .timeout = RSU_TX_TIMEOUT 284253789Srpaulo }, 285267041Shselasky [RSU_BULK_TX_VI_VO] = { 286253789Srpaulo .type = UE_BULK, 287253789Srpaulo .endpoint = 0x04, 288253789Srpaulo .direction = UE_DIR_OUT, 289253789Srpaulo .bufsize = RSU_TXBUFSZ, 290253789Srpaulo .flags = { 291253789Srpaulo .ext_buffer = 1, 292253789Srpaulo .pipe_bof = 1, 293253789Srpaulo .force_short_xfer = 1 294253789Srpaulo }, 295267041Shselasky .callback = rsu_bulk_tx_callback_vi_vo, 296253789Srpaulo .timeout = RSU_TX_TIMEOUT 297253789Srpaulo }, 298287896Sadrian [RSU_BULK_TX_H2C] = { 299287896Sadrian .type = UE_BULK, 300287896Sadrian .endpoint = 0x0d, 301287896Sadrian .direction = UE_DIR_OUT, 302287896Sadrian .bufsize = RSU_TXBUFSZ, 303287896Sadrian .flags = { 304287896Sadrian .ext_buffer = 1, 305287896Sadrian .pipe_bof = 1, 306287896Sadrian .short_xfer_ok = 1 307287896Sadrian }, 308287896Sadrian .callback = rsu_bulk_tx_callback_h2c, 309287896Sadrian .timeout = RSU_TX_TIMEOUT 310287896Sadrian }, 311253789Srpaulo}; 312253789Srpaulo 313253789Srpaulostatic int 314253789Srpaulorsu_match(device_t self) 315253789Srpaulo{ 316253789Srpaulo struct usb_attach_arg *uaa = device_get_ivars(self); 317253789Srpaulo 318253789Srpaulo if (uaa->usb_mode != USB_MODE_HOST || 319253789Srpaulo uaa->info.bIfaceIndex != 0 || 320253789Srpaulo uaa->info.bConfigIndex != 0) 321253789Srpaulo return (ENXIO); 322253789Srpaulo 323253789Srpaulo return (usbd_lookup_id_by_uaa(rsu_devs, sizeof(rsu_devs), uaa)); 324253789Srpaulo} 325253789Srpaulo 326253789Srpaulostatic int 327287763Sadrianrsu_send_mgmt(struct ieee80211_node *ni, int type, int arg) 328287763Sadrian{ 329287763Sadrian 330287763Sadrian return (ENOTSUP); 331287763Sadrian} 332287763Sadrian 333287895Sadrianstatic void 334287895Sadrianrsu_update_chw(struct ieee80211com *ic) 335287895Sadrian{ 336287895Sadrian 337287895Sadrian} 338287895Sadrian 339288089Sadrian/* 340288089Sadrian * notification from net80211 that it'd like to do A-MPDU on the given TID. 341288089Sadrian * 342288089Sadrian * Note: this actually hangs traffic at the present moment, so don't use it. 343288089Sadrian * The firmware debug does indiciate it's sending and establishing a TX AMPDU 344288089Sadrian * session, but then no traffic flows. 345288089Sadrian */ 346287763Sadrianstatic int 347287895Sadrianrsu_ampdu_enable(struct ieee80211_node *ni, struct ieee80211_tx_ampdu *tap) 348287895Sadrian{ 349288089Sadrian#if 0 350288089Sadrian struct rsu_softc *sc = ni->ni_ic->ic_softc; 351288089Sadrian struct r92s_add_ba_req req; 352287895Sadrian 353288089Sadrian /* Don't enable if it's requested or running */ 354288089Sadrian if (IEEE80211_AMPDU_REQUESTED(tap)) 355288089Sadrian return (0); 356288089Sadrian if (IEEE80211_AMPDU_RUNNING(tap)) 357288089Sadrian return (0); 358288089Sadrian 359288089Sadrian /* We've decided to send addba; so send it */ 360288089Sadrian req.tid = htole32(tap->txa_tid); 361288089Sadrian 362288089Sadrian /* Attempt net80211 state */ 363288089Sadrian if (ieee80211_ampdu_tx_request_ext(ni, tap->txa_tid) != 1) 364288089Sadrian return (0); 365288089Sadrian 366288089Sadrian /* Send the firmware command */ 367288089Sadrian RSU_DPRINTF(sc, RSU_DEBUG_AMPDU, "%s: establishing AMPDU TX for TID %d\n", 368288089Sadrian __func__, 369288089Sadrian tap->txa_tid); 370288089Sadrian 371288089Sadrian RSU_LOCK(sc); 372288089Sadrian if (rsu_fw_cmd(sc, R92S_CMD_ADDBA_REQ, &req, sizeof(req)) != 1) { 373288089Sadrian RSU_UNLOCK(sc); 374288089Sadrian /* Mark failure */ 375288089Sadrian (void) ieee80211_ampdu_tx_request_active_ext(ni, tap->txa_tid, 0); 376288089Sadrian return (0); 377288089Sadrian } 378288089Sadrian RSU_UNLOCK(sc); 379288089Sadrian 380288089Sadrian /* Mark success; we don't get any further notifications */ 381288089Sadrian (void) ieee80211_ampdu_tx_request_active_ext(ni, tap->txa_tid, 1); 382288089Sadrian#endif 383288089Sadrian /* Return 0, we're driving this ourselves */ 384287895Sadrian return (0); 385287895Sadrian} 386287895Sadrian 387287895Sadrianstatic int 388287895Sadrianrsu_wme_update(struct ieee80211com *ic) 389287895Sadrian{ 390287895Sadrian 391287895Sadrian /* Firmware handles this; not our problem */ 392287895Sadrian return (0); 393287895Sadrian} 394287895Sadrian 395287895Sadrianstatic int 396253789Srpaulorsu_attach(device_t self) 397253789Srpaulo{ 398253789Srpaulo struct usb_attach_arg *uaa = device_get_ivars(self); 399253789Srpaulo struct rsu_softc *sc = device_get_softc(self); 400287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 401253789Srpaulo int error; 402253789Srpaulo uint8_t iface_index, bands; 403287894Sadrian struct usb_interface *iface; 404253789Srpaulo 405253789Srpaulo device_set_usb_desc(self); 406253789Srpaulo sc->sc_udev = uaa->device; 407253789Srpaulo sc->sc_dev = self; 408287947Sadrian if (rsu_enable_11n) 409287947Sadrian sc->sc_ht = !! (USB_GET_DRIVER_INFO(uaa) & RSU_HT_SUPPORTED); 410253789Srpaulo 411287894Sadrian /* Get number of endpoints */ 412287894Sadrian iface = usbd_get_iface(sc->sc_udev, 0); 413287894Sadrian sc->sc_nendpoints = iface->idesc->bNumEndpoints; 414287894Sadrian 415287897Sadrian /* Endpoints are hard-coded for now, so enforce 4-endpoint only */ 416287897Sadrian if (sc->sc_nendpoints != 4) { 417287897Sadrian device_printf(sc->sc_dev, 418287897Sadrian "the driver currently only supports 4-endpoint devices\n"); 419287897Sadrian return (ENXIO); 420287897Sadrian } 421287897Sadrian 422253789Srpaulo mtx_init(&sc->sc_mtx, device_get_nameunit(self), MTX_NETWORK_LOCK, 423253789Srpaulo MTX_DEF); 424253789Srpaulo TIMEOUT_TASK_INIT(taskqueue_thread, &sc->calib_task, 0, 425253789Srpaulo rsu_calib_task, sc); 426288052Sadrian TASK_INIT(&sc->tx_task, 0, rsu_tx_task, sc); 427287197Sglebius mbufq_init(&sc->sc_snd, ifqmaxlen); 428253789Srpaulo 429266535Shselasky /* Allocate Tx/Rx buffers. */ 430266535Shselasky error = rsu_alloc_rx_list(sc); 431266535Shselasky if (error != 0) { 432266535Shselasky device_printf(sc->sc_dev, "could not allocate Rx buffers\n"); 433266535Shselasky goto fail_usb; 434266535Shselasky } 435266535Shselasky 436266535Shselasky error = rsu_alloc_tx_list(sc); 437266535Shselasky if (error != 0) { 438266535Shselasky device_printf(sc->sc_dev, "could not allocate Tx buffers\n"); 439266535Shselasky rsu_free_rx_list(sc); 440266535Shselasky goto fail_usb; 441266535Shselasky } 442266535Shselasky 443253789Srpaulo iface_index = 0; 444253789Srpaulo error = usbd_transfer_setup(uaa->device, &iface_index, sc->sc_xfer, 445253789Srpaulo rsu_config, RSU_N_TRANSFER, sc, &sc->sc_mtx); 446253789Srpaulo if (error) { 447253789Srpaulo device_printf(sc->sc_dev, 448253789Srpaulo "could not allocate USB transfers, err=%s\n", 449253789Srpaulo usbd_errstr(error)); 450253831Srpaulo goto fail_usb; 451253789Srpaulo } 452253789Srpaulo RSU_LOCK(sc); 453253789Srpaulo /* Read chip revision. */ 454253789Srpaulo sc->cut = MS(rsu_read_4(sc, R92S_PMC_FSM), R92S_PMC_FSM_CUT); 455253789Srpaulo if (sc->cut != 3) 456253789Srpaulo sc->cut = (sc->cut >> 1) + 1; 457253789Srpaulo error = rsu_read_rom(sc); 458276611Shselasky RSU_UNLOCK(sc); 459253789Srpaulo if (error != 0) { 460253789Srpaulo device_printf(self, "could not read ROM\n"); 461253831Srpaulo goto fail_rom; 462253789Srpaulo } 463287197Sglebius IEEE80211_ADDR_COPY(ic->ic_macaddr, &sc->rom[0x12]); 464253789Srpaulo device_printf(self, "MAC/BB RTL8712 cut %d\n", sc->cut); 465253789Srpaulo 466283537Sglebius ic->ic_softc = sc; 467283527Sglebius ic->ic_name = device_get_nameunit(self); 468253789Srpaulo ic->ic_phytype = IEEE80211_T_OFDM; /* Not only, but not used. */ 469253789Srpaulo ic->ic_opmode = IEEE80211_M_STA; /* Default to BSS mode. */ 470253789Srpaulo 471253789Srpaulo /* Set device capabilities. */ 472253789Srpaulo ic->ic_caps = 473253789Srpaulo IEEE80211_C_STA | /* station mode */ 474287727Sadrian#if 0 475253789Srpaulo IEEE80211_C_BGSCAN | /* Background scan. */ 476287727Sadrian#endif 477253789Srpaulo IEEE80211_C_SHPREAMBLE | /* Short preamble supported. */ 478287901Sadrian IEEE80211_C_WME | /* WME/QoS */ 479253789Srpaulo IEEE80211_C_SHSLOT | /* Short slot time supported. */ 480253789Srpaulo IEEE80211_C_WPA; /* WPA/RSN. */ 481253789Srpaulo 482253789Srpaulo /* Check if HT support is present. */ 483287947Sadrian if (sc->sc_ht) { 484287947Sadrian device_printf(sc->sc_dev, "%s: enabling 11n\n", __func__); 485287947Sadrian 486287947Sadrian /* Enable basic HT */ 487287947Sadrian ic->ic_htcaps = IEEE80211_HTC_HT | 488287947Sadrian IEEE80211_HTC_AMPDU | 489287947Sadrian IEEE80211_HTC_AMSDU | 490287947Sadrian IEEE80211_HTCAP_MAXAMSDU_3839 | 491287947Sadrian IEEE80211_HTCAP_SMPS_OFF; 492287947Sadrian ic->ic_htcaps |= IEEE80211_HTCAP_CHWIDTH40; 493287947Sadrian 494287947Sadrian /* set number of spatial streams */ 495287947Sadrian ic->ic_txstream = 1; 496287947Sadrian ic->ic_rxstream = 1; 497253789Srpaulo } 498253789Srpaulo 499253789Srpaulo /* Set supported .11b and .11g rates. */ 500253789Srpaulo bands = 0; 501253789Srpaulo setbit(&bands, IEEE80211_MODE_11B); 502253789Srpaulo setbit(&bands, IEEE80211_MODE_11G); 503287947Sadrian if (sc->sc_ht) 504287947Sadrian setbit(&bands, IEEE80211_MODE_11NG); 505253789Srpaulo ieee80211_init_channels(ic, NULL, &bands); 506253789Srpaulo 507287197Sglebius ieee80211_ifattach(ic); 508253789Srpaulo ic->ic_raw_xmit = rsu_raw_xmit; 509253789Srpaulo ic->ic_scan_start = rsu_scan_start; 510253789Srpaulo ic->ic_scan_end = rsu_scan_end; 511253789Srpaulo ic->ic_set_channel = rsu_set_channel; 512253789Srpaulo ic->ic_vap_create = rsu_vap_create; 513253789Srpaulo ic->ic_vap_delete = rsu_vap_delete; 514253789Srpaulo ic->ic_update_mcast = rsu_update_mcast; 515287197Sglebius ic->ic_parent = rsu_parent; 516287197Sglebius ic->ic_transmit = rsu_transmit; 517287763Sadrian ic->ic_send_mgmt = rsu_send_mgmt; 518287895Sadrian ic->ic_update_chw = rsu_update_chw; 519287895Sadrian ic->ic_ampdu_enable = rsu_ampdu_enable; 520287895Sadrian ic->ic_wme.wme_update = rsu_wme_update; 521253789Srpaulo 522253789Srpaulo ieee80211_radiotap_attach(ic, &sc->sc_txtap.wt_ihdr, 523253789Srpaulo sizeof(sc->sc_txtap), RSU_TX_RADIOTAP_PRESENT, 524253789Srpaulo &sc->sc_rxtap.wr_ihdr, sizeof(sc->sc_rxtap), 525253789Srpaulo RSU_RX_RADIOTAP_PRESENT); 526253789Srpaulo 527253789Srpaulo if (bootverbose) 528253789Srpaulo ieee80211_announce(ic); 529253789Srpaulo 530253789Srpaulo return (0); 531253789Srpaulo 532253831Srpaulofail_rom: 533253831Srpaulo usbd_transfer_unsetup(sc->sc_xfer, RSU_N_TRANSFER); 534253831Srpaulofail_usb: 535253831Srpaulo mtx_destroy(&sc->sc_mtx); 536253789Srpaulo return (ENXIO); 537253789Srpaulo} 538253789Srpaulo 539253789Srpaulostatic int 540253789Srpaulorsu_detach(device_t self) 541253789Srpaulo{ 542253789Srpaulo struct rsu_softc *sc = device_get_softc(self); 543287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 544253789Srpaulo 545287197Sglebius RSU_LOCK(sc); 546287197Sglebius rsu_stop(sc); 547287197Sglebius RSU_UNLOCK(sc); 548253789Srpaulo usbd_transfer_unsetup(sc->sc_xfer, RSU_N_TRANSFER); 549288051Sadrian 550288051Sadrian /* Frames are freed; detach from net80211 */ 551253789Srpaulo ieee80211_ifdetach(ic); 552253789Srpaulo 553253789Srpaulo taskqueue_drain_timeout(taskqueue_thread, &sc->calib_task); 554288052Sadrian taskqueue_drain(taskqueue_thread, &sc->tx_task); 555253789Srpaulo 556253789Srpaulo /* Free Tx/Rx buffers. */ 557253789Srpaulo rsu_free_tx_list(sc); 558253789Srpaulo rsu_free_rx_list(sc); 559253789Srpaulo 560253789Srpaulo mtx_destroy(&sc->sc_mtx); 561253789Srpaulo 562253789Srpaulo return (0); 563253789Srpaulo} 564253789Srpaulo 565253789Srpaulostatic usb_error_t 566253789Srpaulorsu_do_request(struct rsu_softc *sc, struct usb_device_request *req, 567253789Srpaulo void *data) 568253789Srpaulo{ 569253789Srpaulo usb_error_t err; 570253789Srpaulo int ntries = 10; 571253789Srpaulo 572253789Srpaulo RSU_ASSERT_LOCKED(sc); 573253789Srpaulo 574253789Srpaulo while (ntries--) { 575253789Srpaulo err = usbd_do_request_flags(sc->sc_udev, &sc->sc_mtx, 576253789Srpaulo req, data, 0, NULL, 250 /* ms */); 577266466Shselasky if (err == 0 || err == USB_ERR_NOT_CONFIGURED) 578253789Srpaulo break; 579253789Srpaulo DPRINTFN(1, "Control request failed, %s (retrying)\n", 580253789Srpaulo usbd_errstr(err)); 581287892Sadrian rsu_ms_delay(sc, 10); 582253789Srpaulo } 583253789Srpaulo 584253789Srpaulo return (err); 585253789Srpaulo} 586253789Srpaulo 587253789Srpaulostatic struct ieee80211vap * 588253789Srpaulorsu_vap_create(struct ieee80211com *ic, const char name[IFNAMSIZ], int unit, 589253789Srpaulo enum ieee80211_opmode opmode, int flags, 590253789Srpaulo const uint8_t bssid[IEEE80211_ADDR_LEN], 591253789Srpaulo const uint8_t mac[IEEE80211_ADDR_LEN]) 592253789Srpaulo{ 593253789Srpaulo struct rsu_vap *uvp; 594253789Srpaulo struct ieee80211vap *vap; 595253789Srpaulo 596253789Srpaulo if (!TAILQ_EMPTY(&ic->ic_vaps)) /* only one at a time */ 597253789Srpaulo return (NULL); 598253789Srpaulo 599287197Sglebius uvp = malloc(sizeof(struct rsu_vap), M_80211_VAP, M_WAITOK | M_ZERO); 600253789Srpaulo vap = &uvp->vap; 601253789Srpaulo 602257743Shselasky if (ieee80211_vap_setup(ic, vap, name, unit, opmode, 603287197Sglebius flags, bssid) != 0) { 604257743Shselasky /* out of memory */ 605257743Shselasky free(uvp, M_80211_VAP); 606257743Shselasky return (NULL); 607257743Shselasky } 608257743Shselasky 609253789Srpaulo /* override state transition machine */ 610253789Srpaulo uvp->newstate = vap->iv_newstate; 611253789Srpaulo vap->iv_newstate = rsu_newstate; 612253789Srpaulo 613287950Sadrian /* Limits from the r92su driver */ 614287950Sadrian vap->iv_ampdu_density = IEEE80211_HTCAP_MPDUDENSITY_16; 615287950Sadrian vap->iv_ampdu_rxmax = IEEE80211_HTCAP_MAXRXAMPDU_32K; 616287950Sadrian 617253789Srpaulo /* complete setup */ 618253789Srpaulo ieee80211_vap_attach(vap, ieee80211_media_change, 619287197Sglebius ieee80211_media_status, mac); 620253789Srpaulo ic->ic_opmode = opmode; 621253789Srpaulo 622253789Srpaulo return (vap); 623253789Srpaulo} 624253789Srpaulo 625253789Srpaulostatic void 626253789Srpaulorsu_vap_delete(struct ieee80211vap *vap) 627253789Srpaulo{ 628253789Srpaulo struct rsu_vap *uvp = RSU_VAP(vap); 629253789Srpaulo 630253789Srpaulo ieee80211_vap_detach(vap); 631253789Srpaulo free(uvp, M_80211_VAP); 632253789Srpaulo} 633253789Srpaulo 634253789Srpaulostatic void 635253789Srpaulorsu_scan_start(struct ieee80211com *ic) 636253789Srpaulo{ 637287197Sglebius struct rsu_softc *sc = ic->ic_softc; 638253789Srpaulo int error; 639253789Srpaulo 640253789Srpaulo /* Scanning is done by the firmware. */ 641253789Srpaulo RSU_LOCK(sc); 642288089Sadrian /* XXX TODO: force awake if in in network-sleep? */ 643253789Srpaulo error = rsu_site_survey(sc, TAILQ_FIRST(&ic->ic_vaps)); 644253789Srpaulo RSU_UNLOCK(sc); 645253789Srpaulo if (error != 0) 646253789Srpaulo device_printf(sc->sc_dev, 647253789Srpaulo "could not send site survey command\n"); 648253789Srpaulo} 649253789Srpaulo 650253789Srpaulostatic void 651253789Srpaulorsu_scan_end(struct ieee80211com *ic) 652253789Srpaulo{ 653253789Srpaulo /* Nothing to do here. */ 654253789Srpaulo} 655253789Srpaulo 656253789Srpaulostatic void 657253789Srpaulorsu_set_channel(struct ieee80211com *ic __unused) 658253789Srpaulo{ 659253789Srpaulo /* We are unable to switch channels, yet. */ 660253789Srpaulo} 661253789Srpaulo 662253789Srpaulostatic void 663283540Sglebiusrsu_update_mcast(struct ieee80211com *ic) 664253789Srpaulo{ 665253789Srpaulo /* XXX do nothing? */ 666253789Srpaulo} 667253789Srpaulo 668253789Srpaulostatic int 669253789Srpaulorsu_alloc_list(struct rsu_softc *sc, struct rsu_data data[], 670253789Srpaulo int ndata, int maxsz) 671253789Srpaulo{ 672253789Srpaulo int i, error; 673253789Srpaulo 674253789Srpaulo for (i = 0; i < ndata; i++) { 675253789Srpaulo struct rsu_data *dp = &data[i]; 676253789Srpaulo dp->sc = sc; 677253789Srpaulo dp->m = NULL; 678253789Srpaulo dp->buf = malloc(maxsz, M_USBDEV, M_NOWAIT); 679253789Srpaulo if (dp->buf == NULL) { 680253789Srpaulo device_printf(sc->sc_dev, 681253789Srpaulo "could not allocate buffer\n"); 682253789Srpaulo error = ENOMEM; 683253789Srpaulo goto fail; 684253789Srpaulo } 685253789Srpaulo dp->ni = NULL; 686253789Srpaulo } 687253789Srpaulo 688253789Srpaulo return (0); 689253789Srpaulofail: 690253789Srpaulo rsu_free_list(sc, data, ndata); 691253789Srpaulo return (error); 692253789Srpaulo} 693253789Srpaulo 694253789Srpaulostatic int 695253789Srpaulorsu_alloc_rx_list(struct rsu_softc *sc) 696253789Srpaulo{ 697253789Srpaulo int error, i; 698253789Srpaulo 699253789Srpaulo error = rsu_alloc_list(sc, sc->sc_rx, RSU_RX_LIST_COUNT, 700253789Srpaulo RSU_RXBUFSZ); 701253789Srpaulo if (error != 0) 702253789Srpaulo return (error); 703253789Srpaulo 704253789Srpaulo STAILQ_INIT(&sc->sc_rx_active); 705253789Srpaulo STAILQ_INIT(&sc->sc_rx_inactive); 706253789Srpaulo 707253789Srpaulo for (i = 0; i < RSU_RX_LIST_COUNT; i++) 708253789Srpaulo STAILQ_INSERT_HEAD(&sc->sc_rx_inactive, &sc->sc_rx[i], next); 709253789Srpaulo 710253789Srpaulo return (0); 711253789Srpaulo} 712253789Srpaulo 713253789Srpaulostatic int 714253789Srpaulorsu_alloc_tx_list(struct rsu_softc *sc) 715253789Srpaulo{ 716253789Srpaulo int error, i; 717253789Srpaulo 718253789Srpaulo error = rsu_alloc_list(sc, sc->sc_tx, RSU_TX_LIST_COUNT, 719253789Srpaulo RSU_TXBUFSZ); 720253789Srpaulo if (error != 0) 721253789Srpaulo return (error); 722253789Srpaulo 723253789Srpaulo STAILQ_INIT(&sc->sc_tx_inactive); 724253789Srpaulo 725267041Shselasky for (i = 0; i != RSU_N_TRANSFER; i++) { 726266505Shselasky STAILQ_INIT(&sc->sc_tx_active[i]); 727266505Shselasky STAILQ_INIT(&sc->sc_tx_pending[i]); 728266505Shselasky } 729266505Shselasky 730253789Srpaulo for (i = 0; i < RSU_TX_LIST_COUNT; i++) { 731253789Srpaulo STAILQ_INSERT_HEAD(&sc->sc_tx_inactive, &sc->sc_tx[i], next); 732253789Srpaulo } 733253789Srpaulo 734253789Srpaulo return (0); 735253789Srpaulo} 736253789Srpaulo 737253789Srpaulostatic void 738253789Srpaulorsu_free_tx_list(struct rsu_softc *sc) 739253789Srpaulo{ 740266535Shselasky int i; 741266535Shselasky 742266535Shselasky /* prevent further allocations from TX list(s) */ 743266535Shselasky STAILQ_INIT(&sc->sc_tx_inactive); 744266535Shselasky 745267041Shselasky for (i = 0; i != RSU_N_TRANSFER; i++) { 746266535Shselasky STAILQ_INIT(&sc->sc_tx_active[i]); 747266535Shselasky STAILQ_INIT(&sc->sc_tx_pending[i]); 748266535Shselasky } 749266535Shselasky 750253789Srpaulo rsu_free_list(sc, sc->sc_tx, RSU_TX_LIST_COUNT); 751253789Srpaulo} 752253789Srpaulo 753253789Srpaulostatic void 754253789Srpaulorsu_free_rx_list(struct rsu_softc *sc) 755253789Srpaulo{ 756266535Shselasky /* prevent further allocations from RX list(s) */ 757266535Shselasky STAILQ_INIT(&sc->sc_rx_inactive); 758266535Shselasky STAILQ_INIT(&sc->sc_rx_active); 759266535Shselasky 760253789Srpaulo rsu_free_list(sc, sc->sc_rx, RSU_RX_LIST_COUNT); 761253789Srpaulo} 762253789Srpaulo 763253789Srpaulostatic void 764253789Srpaulorsu_free_list(struct rsu_softc *sc, struct rsu_data data[], int ndata) 765253789Srpaulo{ 766253789Srpaulo int i; 767253789Srpaulo 768253789Srpaulo for (i = 0; i < ndata; i++) { 769253789Srpaulo struct rsu_data *dp = &data[i]; 770253789Srpaulo 771253789Srpaulo if (dp->buf != NULL) { 772253789Srpaulo free(dp->buf, M_USBDEV); 773253789Srpaulo dp->buf = NULL; 774253789Srpaulo } 775253789Srpaulo if (dp->ni != NULL) { 776253789Srpaulo ieee80211_free_node(dp->ni); 777253789Srpaulo dp->ni = NULL; 778253789Srpaulo } 779253789Srpaulo } 780253789Srpaulo} 781253789Srpaulo 782253789Srpaulostatic struct rsu_data * 783253789Srpaulo_rsu_getbuf(struct rsu_softc *sc) 784253789Srpaulo{ 785253789Srpaulo struct rsu_data *bf; 786253789Srpaulo 787253789Srpaulo bf = STAILQ_FIRST(&sc->sc_tx_inactive); 788253789Srpaulo if (bf != NULL) 789253789Srpaulo STAILQ_REMOVE_HEAD(&sc->sc_tx_inactive, next); 790253789Srpaulo else 791253789Srpaulo bf = NULL; 792287954Sadrian return (bf); 793253789Srpaulo} 794253789Srpaulo 795253789Srpaulostatic struct rsu_data * 796253789Srpaulorsu_getbuf(struct rsu_softc *sc) 797253789Srpaulo{ 798253789Srpaulo struct rsu_data *bf; 799253789Srpaulo 800253789Srpaulo RSU_ASSERT_LOCKED(sc); 801253789Srpaulo 802253789Srpaulo bf = _rsu_getbuf(sc); 803288051Sadrian if (bf == NULL) { 804288051Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TX, "%s: no buffers\n", __func__); 805288051Sadrian } 806253789Srpaulo return (bf); 807253789Srpaulo} 808253789Srpaulo 809287953Sadrianstatic void 810287953Sadrianrsu_freebuf(struct rsu_softc *sc, struct rsu_data *bf) 811287953Sadrian{ 812287953Sadrian 813287953Sadrian RSU_ASSERT_LOCKED(sc); 814287953Sadrian STAILQ_INSERT_TAIL(&sc->sc_tx_inactive, bf, next); 815287953Sadrian} 816287953Sadrian 817253789Srpaulostatic int 818253789Srpaulorsu_write_region_1(struct rsu_softc *sc, uint16_t addr, uint8_t *buf, 819253789Srpaulo int len) 820253789Srpaulo{ 821253789Srpaulo usb_device_request_t req; 822253789Srpaulo 823253789Srpaulo req.bmRequestType = UT_WRITE_VENDOR_DEVICE; 824253789Srpaulo req.bRequest = R92S_REQ_REGS; 825253789Srpaulo USETW(req.wValue, addr); 826253789Srpaulo USETW(req.wIndex, 0); 827253789Srpaulo USETW(req.wLength, len); 828253789Srpaulo 829253789Srpaulo return (rsu_do_request(sc, &req, buf)); 830253789Srpaulo} 831253789Srpaulo 832253789Srpaulostatic void 833253789Srpaulorsu_write_1(struct rsu_softc *sc, uint16_t addr, uint8_t val) 834253789Srpaulo{ 835253789Srpaulo rsu_write_region_1(sc, addr, &val, 1); 836253789Srpaulo} 837253789Srpaulo 838253789Srpaulostatic void 839253789Srpaulorsu_write_2(struct rsu_softc *sc, uint16_t addr, uint16_t val) 840253789Srpaulo{ 841253789Srpaulo val = htole16(val); 842253789Srpaulo rsu_write_region_1(sc, addr, (uint8_t *)&val, 2); 843253789Srpaulo} 844253789Srpaulo 845253789Srpaulostatic void 846253789Srpaulorsu_write_4(struct rsu_softc *sc, uint16_t addr, uint32_t val) 847253789Srpaulo{ 848253789Srpaulo val = htole32(val); 849253789Srpaulo rsu_write_region_1(sc, addr, (uint8_t *)&val, 4); 850253789Srpaulo} 851253789Srpaulo 852253789Srpaulostatic int 853253789Srpaulorsu_read_region_1(struct rsu_softc *sc, uint16_t addr, uint8_t *buf, 854253789Srpaulo int len) 855253789Srpaulo{ 856253789Srpaulo usb_device_request_t req; 857253789Srpaulo 858253789Srpaulo req.bmRequestType = UT_READ_VENDOR_DEVICE; 859253789Srpaulo req.bRequest = R92S_REQ_REGS; 860253789Srpaulo USETW(req.wValue, addr); 861253789Srpaulo USETW(req.wIndex, 0); 862253789Srpaulo USETW(req.wLength, len); 863253789Srpaulo 864253789Srpaulo return (rsu_do_request(sc, &req, buf)); 865253789Srpaulo} 866253789Srpaulo 867253789Srpaulostatic uint8_t 868253789Srpaulorsu_read_1(struct rsu_softc *sc, uint16_t addr) 869253789Srpaulo{ 870253789Srpaulo uint8_t val; 871253789Srpaulo 872253789Srpaulo if (rsu_read_region_1(sc, addr, &val, 1) != 0) 873253789Srpaulo return (0xff); 874253789Srpaulo return (val); 875253789Srpaulo} 876253789Srpaulo 877253789Srpaulostatic uint16_t 878253789Srpaulorsu_read_2(struct rsu_softc *sc, uint16_t addr) 879253789Srpaulo{ 880253789Srpaulo uint16_t val; 881253789Srpaulo 882253789Srpaulo if (rsu_read_region_1(sc, addr, (uint8_t *)&val, 2) != 0) 883253789Srpaulo return (0xffff); 884253789Srpaulo return (le16toh(val)); 885253789Srpaulo} 886253789Srpaulo 887253789Srpaulostatic uint32_t 888253789Srpaulorsu_read_4(struct rsu_softc *sc, uint16_t addr) 889253789Srpaulo{ 890253789Srpaulo uint32_t val; 891253789Srpaulo 892253789Srpaulo if (rsu_read_region_1(sc, addr, (uint8_t *)&val, 4) != 0) 893253789Srpaulo return (0xffffffff); 894253789Srpaulo return (le32toh(val)); 895253789Srpaulo} 896253789Srpaulo 897253789Srpaulostatic int 898253789Srpaulorsu_fw_iocmd(struct rsu_softc *sc, uint32_t iocmd) 899253789Srpaulo{ 900253789Srpaulo int ntries; 901253789Srpaulo 902253789Srpaulo rsu_write_4(sc, R92S_IOCMD_CTRL, iocmd); 903287892Sadrian rsu_ms_delay(sc, 1); 904253789Srpaulo for (ntries = 0; ntries < 50; ntries++) { 905253789Srpaulo if (rsu_read_4(sc, R92S_IOCMD_CTRL) == 0) 906253789Srpaulo return (0); 907287892Sadrian rsu_ms_delay(sc, 1); 908253789Srpaulo } 909253789Srpaulo return (ETIMEDOUT); 910253789Srpaulo} 911253789Srpaulo 912253789Srpaulostatic uint8_t 913253789Srpaulorsu_efuse_read_1(struct rsu_softc *sc, uint16_t addr) 914253789Srpaulo{ 915253789Srpaulo uint32_t reg; 916253789Srpaulo int ntries; 917253789Srpaulo 918253789Srpaulo reg = rsu_read_4(sc, R92S_EFUSE_CTRL); 919253789Srpaulo reg = RW(reg, R92S_EFUSE_CTRL_ADDR, addr); 920253789Srpaulo reg &= ~R92S_EFUSE_CTRL_VALID; 921253789Srpaulo rsu_write_4(sc, R92S_EFUSE_CTRL, reg); 922253789Srpaulo /* Wait for read operation to complete. */ 923253789Srpaulo for (ntries = 0; ntries < 100; ntries++) { 924253789Srpaulo reg = rsu_read_4(sc, R92S_EFUSE_CTRL); 925253789Srpaulo if (reg & R92S_EFUSE_CTRL_VALID) 926253789Srpaulo return (MS(reg, R92S_EFUSE_CTRL_DATA)); 927287892Sadrian rsu_ms_delay(sc, 1); 928253789Srpaulo } 929253789Srpaulo device_printf(sc->sc_dev, 930253789Srpaulo "could not read efuse byte at address 0x%x\n", addr); 931253789Srpaulo return (0xff); 932253789Srpaulo} 933253789Srpaulo 934253789Srpaulostatic int 935253789Srpaulorsu_read_rom(struct rsu_softc *sc) 936253789Srpaulo{ 937253789Srpaulo uint8_t *rom = sc->rom; 938253789Srpaulo uint16_t addr = 0; 939253789Srpaulo uint32_t reg; 940253789Srpaulo uint8_t off, msk; 941253789Srpaulo int i; 942253789Srpaulo 943253789Srpaulo /* Make sure that ROM type is eFuse and that autoload succeeded. */ 944253789Srpaulo reg = rsu_read_1(sc, R92S_EE_9346CR); 945253789Srpaulo if ((reg & (R92S_9356SEL | R92S_EEPROM_EN)) != R92S_EEPROM_EN) 946253789Srpaulo return (EIO); 947253789Srpaulo 948253789Srpaulo /* Turn on 2.5V to prevent eFuse leakage. */ 949253789Srpaulo reg = rsu_read_1(sc, R92S_EFUSE_TEST + 3); 950253789Srpaulo rsu_write_1(sc, R92S_EFUSE_TEST + 3, reg | 0x80); 951287892Sadrian rsu_ms_delay(sc, 1); 952253789Srpaulo rsu_write_1(sc, R92S_EFUSE_TEST + 3, reg & ~0x80); 953253789Srpaulo 954253789Srpaulo /* Read full ROM image. */ 955253789Srpaulo memset(&sc->rom, 0xff, sizeof(sc->rom)); 956253789Srpaulo while (addr < 512) { 957253789Srpaulo reg = rsu_efuse_read_1(sc, addr); 958253789Srpaulo if (reg == 0xff) 959253789Srpaulo break; 960253789Srpaulo addr++; 961253789Srpaulo off = reg >> 4; 962253789Srpaulo msk = reg & 0xf; 963253789Srpaulo for (i = 0; i < 4; i++) { 964253789Srpaulo if (msk & (1 << i)) 965253789Srpaulo continue; 966253789Srpaulo rom[off * 8 + i * 2 + 0] = 967253789Srpaulo rsu_efuse_read_1(sc, addr); 968253789Srpaulo addr++; 969253789Srpaulo rom[off * 8 + i * 2 + 1] = 970253789Srpaulo rsu_efuse_read_1(sc, addr); 971253789Srpaulo addr++; 972253789Srpaulo } 973253789Srpaulo } 974253789Srpaulo#ifdef USB_DEBUG 975253789Srpaulo if (rsu_debug >= 5) { 976253789Srpaulo /* Dump ROM content. */ 977253789Srpaulo printf("\n"); 978253789Srpaulo for (i = 0; i < sizeof(sc->rom); i++) 979253789Srpaulo printf("%02x:", rom[i]); 980253789Srpaulo printf("\n"); 981253789Srpaulo } 982253789Srpaulo#endif 983253789Srpaulo return (0); 984253789Srpaulo} 985253789Srpaulo 986253789Srpaulostatic int 987253789Srpaulorsu_fw_cmd(struct rsu_softc *sc, uint8_t code, void *buf, int len) 988253789Srpaulo{ 989287896Sadrian const uint8_t which = RSU_H2C_ENDPOINT; 990253789Srpaulo struct rsu_data *data; 991253789Srpaulo struct r92s_tx_desc *txd; 992253789Srpaulo struct r92s_fw_cmd_hdr *cmd; 993266505Shselasky int cmdsz; 994266505Shselasky int xferlen; 995253789Srpaulo 996287954Sadrian RSU_ASSERT_LOCKED(sc); 997287954Sadrian 998253789Srpaulo data = rsu_getbuf(sc); 999253789Srpaulo if (data == NULL) 1000253789Srpaulo return (ENOMEM); 1001253789Srpaulo 1002288089Sadrian /* Blank the entire payload, just to be safe */ 1003288089Sadrian memset(data->buf, '\0', RSU_TXBUFSZ); 1004288089Sadrian 1005253789Srpaulo /* Round-up command length to a multiple of 8 bytes. */ 1006288089Sadrian /* XXX TODO: is this required? */ 1007253789Srpaulo cmdsz = (len + 7) & ~7; 1008253789Srpaulo 1009253789Srpaulo xferlen = sizeof(*txd) + sizeof(*cmd) + cmdsz; 1010253789Srpaulo KASSERT(xferlen <= RSU_TXBUFSZ, ("%s: invalid length", __func__)); 1011253789Srpaulo memset(data->buf, 0, xferlen); 1012253789Srpaulo 1013253789Srpaulo /* Setup Tx descriptor. */ 1014253789Srpaulo txd = (struct r92s_tx_desc *)data->buf; 1015253789Srpaulo txd->txdw0 = htole32( 1016253789Srpaulo SM(R92S_TXDW0_OFFSET, sizeof(*txd)) | 1017253789Srpaulo SM(R92S_TXDW0_PKTLEN, sizeof(*cmd) + cmdsz) | 1018253789Srpaulo R92S_TXDW0_OWN | R92S_TXDW0_FSG | R92S_TXDW0_LSG); 1019253789Srpaulo txd->txdw1 = htole32(SM(R92S_TXDW1_QSEL, R92S_TXDW1_QSEL_H2C)); 1020253789Srpaulo 1021253789Srpaulo /* Setup command header. */ 1022253789Srpaulo cmd = (struct r92s_fw_cmd_hdr *)&txd[1]; 1023253789Srpaulo cmd->len = htole16(cmdsz); 1024253789Srpaulo cmd->code = code; 1025253789Srpaulo cmd->seq = sc->cmd_seq; 1026253789Srpaulo sc->cmd_seq = (sc->cmd_seq + 1) & 0x7f; 1027253789Srpaulo 1028253789Srpaulo /* Copy command payload. */ 1029253789Srpaulo memcpy(&cmd[1], buf, len); 1030253789Srpaulo 1031287740Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TX | RSU_DEBUG_FWCMD, 1032287727Sadrian "%s: Tx cmd code=0x%x len=0x%x\n", 1033287727Sadrian __func__, code, cmdsz); 1034253789Srpaulo data->buflen = xferlen; 1035266505Shselasky STAILQ_INSERT_TAIL(&sc->sc_tx_pending[which], data, next); 1036267041Shselasky usbd_transfer_start(sc->sc_xfer[which]); 1037253789Srpaulo 1038253789Srpaulo return (0); 1039253789Srpaulo} 1040253789Srpaulo 1041253789Srpaulo/* ARGSUSED */ 1042253789Srpaulostatic void 1043253789Srpaulorsu_calib_task(void *arg, int pending __unused) 1044253789Srpaulo{ 1045253789Srpaulo struct rsu_softc *sc = arg; 1046253789Srpaulo uint32_t reg; 1047253789Srpaulo 1048287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_CALIB, "%s: running calibration task\n", 1049287727Sadrian __func__); 1050267041Shselasky 1051253789Srpaulo RSU_LOCK(sc); 1052253789Srpaulo#ifdef notyet 1053253789Srpaulo /* Read WPS PBC status. */ 1054253789Srpaulo rsu_write_1(sc, R92S_MAC_PINMUX_CTRL, 1055253789Srpaulo R92S_GPIOMUX_EN | SM(R92S_GPIOSEL_GPIO, R92S_GPIOSEL_GPIO_JTAG)); 1056253789Srpaulo rsu_write_1(sc, R92S_GPIO_IO_SEL, 1057253789Srpaulo rsu_read_1(sc, R92S_GPIO_IO_SEL) & ~R92S_GPIO_WPS); 1058253789Srpaulo reg = rsu_read_1(sc, R92S_GPIO_CTRL); 1059253789Srpaulo if (reg != 0xff && (reg & R92S_GPIO_WPS)) 1060253789Srpaulo DPRINTF(("WPS PBC is pushed\n")); 1061253789Srpaulo#endif 1062253789Srpaulo /* Read current signal level. */ 1063253789Srpaulo if (rsu_fw_iocmd(sc, 0xf4000001) == 0) { 1064253789Srpaulo reg = rsu_read_4(sc, R92S_IOCMD_DATA); 1065287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_CALIB, "%s: RSSI=%d%%\n", 1066287727Sadrian __func__, reg >> 4); 1067253789Srpaulo } 1068267041Shselasky if (sc->sc_calibrating) 1069267041Shselasky taskqueue_enqueue_timeout(taskqueue_thread, &sc->calib_task, hz); 1070267041Shselasky RSU_UNLOCK(sc); 1071253789Srpaulo} 1072253789Srpaulo 1073288052Sadrianstatic void 1074288052Sadrianrsu_tx_task(void *arg, int pending __unused) 1075288052Sadrian{ 1076288052Sadrian struct rsu_softc *sc = arg; 1077288052Sadrian 1078288052Sadrian RSU_LOCK(sc); 1079288052Sadrian _rsu_start(sc); 1080288052Sadrian RSU_UNLOCK(sc); 1081288052Sadrian} 1082288052Sadrian 1083288094Sadrian#define RSU_PWR_UNKNOWN 0x0 1084288089Sadrian#define RSU_PWR_ACTIVE 0x1 1085288089Sadrian#define RSU_PWR_OFF 0x2 1086288089Sadrian#define RSU_PWR_SLEEP 0x3 1087288089Sadrian 1088288089Sadrian/* 1089288089Sadrian * Set the current power state. 1090288089Sadrian * 1091288089Sadrian * The rtlwifi code doesn't do this so aggressively; it 1092288089Sadrian * waits for an idle period after association with 1093288089Sadrian * no traffic before doing this. 1094288089Sadrian * 1095288089Sadrian * For now - it's on in all states except RUN, and 1096288089Sadrian * in RUN it'll transition to allow sleep. 1097288089Sadrian */ 1098288089Sadrian 1099288089Sadrianstruct r92s_pwr_cmd { 1100288089Sadrian uint8_t mode; 1101288089Sadrian uint8_t smart_ps; 1102288089Sadrian uint8_t bcn_pass_time; 1103288089Sadrian}; 1104288089Sadrian 1105253789Srpaulostatic int 1106288089Sadrianrsu_set_fw_power_state(struct rsu_softc *sc, int state) 1107288089Sadrian{ 1108288089Sadrian struct r92s_set_pwr_mode cmd; 1109288089Sadrian //struct r92s_pwr_cmd cmd; 1110288089Sadrian int error; 1111288089Sadrian 1112288094Sadrian RSU_ASSERT_LOCKED(sc); 1113288094Sadrian 1114288094Sadrian /* only change state if required */ 1115288094Sadrian if (sc->sc_curpwrstate == state) 1116288094Sadrian return (0); 1117288094Sadrian 1118288089Sadrian memset(&cmd, 0, sizeof(cmd)); 1119288089Sadrian 1120288089Sadrian switch (state) { 1121288089Sadrian case RSU_PWR_ACTIVE: 1122288089Sadrian /* Force the hardware awake */ 1123288089Sadrian rsu_write_1(sc, R92S_USB_HRPWM, 1124288089Sadrian R92S_USB_HRPWM_PS_ST_ACTIVE | R92S_USB_HRPWM_PS_ALL_ON); 1125288089Sadrian cmd.mode = R92S_PS_MODE_ACTIVE; 1126288089Sadrian break; 1127288089Sadrian case RSU_PWR_SLEEP: 1128288089Sadrian cmd.mode = R92S_PS_MODE_DTIM; /* XXX configurable? */ 1129288089Sadrian cmd.smart_ps = 1; /* XXX 2 if doing p2p */ 1130288089Sadrian cmd.bcn_pass_time = 5; /* in 100mS usb.c, linux/rtlwifi */ 1131288089Sadrian break; 1132288094Sadrian case RSU_PWR_OFF: 1133288094Sadrian cmd.mode = R92S_PS_MODE_RADIOOFF; 1134288094Sadrian break; 1135288089Sadrian default: 1136288089Sadrian device_printf(sc->sc_dev, "%s: unknown ps mode (%d)\n", 1137288089Sadrian __func__, 1138288089Sadrian state); 1139288089Sadrian return (ENXIO); 1140288089Sadrian } 1141288089Sadrian 1142288089Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RESET, 1143288089Sadrian "%s: setting ps mode to %d (mode %d)\n", 1144288089Sadrian __func__, state, cmd.mode); 1145288089Sadrian error = rsu_fw_cmd(sc, R92S_CMD_SET_PWR_MODE, &cmd, sizeof(cmd)); 1146288094Sadrian if (error == 0) 1147288094Sadrian sc->sc_curpwrstate = state; 1148288089Sadrian 1149288089Sadrian return (error); 1150288089Sadrian} 1151288089Sadrian 1152288089Sadrianstatic int 1153253789Srpaulorsu_newstate(struct ieee80211vap *vap, enum ieee80211_state nstate, int arg) 1154253789Srpaulo{ 1155253789Srpaulo struct rsu_vap *uvp = RSU_VAP(vap); 1156253789Srpaulo struct ieee80211com *ic = vap->iv_ic; 1157286950Sadrian struct rsu_softc *sc = ic->ic_softc; 1158253789Srpaulo struct ieee80211_node *ni; 1159253789Srpaulo struct ieee80211_rateset *rs; 1160253789Srpaulo enum ieee80211_state ostate; 1161253789Srpaulo int error, startcal = 0; 1162253789Srpaulo 1163253789Srpaulo ostate = vap->iv_state; 1164287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_STATE, "%s: %s -> %s\n", 1165287727Sadrian __func__, 1166287727Sadrian ieee80211_state_name[ostate], 1167253789Srpaulo ieee80211_state_name[nstate]); 1168253789Srpaulo 1169253789Srpaulo IEEE80211_UNLOCK(ic); 1170253789Srpaulo if (ostate == IEEE80211_S_RUN) { 1171253789Srpaulo RSU_LOCK(sc); 1172253789Srpaulo /* Stop calibration. */ 1173253789Srpaulo sc->sc_calibrating = 0; 1174253789Srpaulo RSU_UNLOCK(sc); 1175253789Srpaulo taskqueue_drain_timeout(taskqueue_thread, &sc->calib_task); 1176288052Sadrian taskqueue_drain(taskqueue_thread, &sc->tx_task); 1177253789Srpaulo /* Disassociate from our current BSS. */ 1178253789Srpaulo RSU_LOCK(sc); 1179253789Srpaulo rsu_disconnect(sc); 1180253789Srpaulo } else 1181253789Srpaulo RSU_LOCK(sc); 1182253789Srpaulo switch (nstate) { 1183253789Srpaulo case IEEE80211_S_INIT: 1184288089Sadrian (void) rsu_set_fw_power_state(sc, RSU_PWR_ACTIVE); 1185253789Srpaulo break; 1186253789Srpaulo case IEEE80211_S_AUTH: 1187253789Srpaulo ni = ieee80211_ref_node(vap->iv_bss); 1188288089Sadrian (void) rsu_set_fw_power_state(sc, RSU_PWR_ACTIVE); 1189253789Srpaulo error = rsu_join_bss(sc, ni); 1190253789Srpaulo ieee80211_free_node(ni); 1191253789Srpaulo if (error != 0) { 1192253789Srpaulo device_printf(sc->sc_dev, 1193253789Srpaulo "could not send join command\n"); 1194253789Srpaulo } 1195253789Srpaulo break; 1196253789Srpaulo case IEEE80211_S_RUN: 1197253789Srpaulo ni = ieee80211_ref_node(vap->iv_bss); 1198253789Srpaulo rs = &ni->ni_rates; 1199253789Srpaulo /* Indicate highest supported rate. */ 1200253789Srpaulo ni->ni_txrate = rs->rs_rates[rs->rs_nrates - 1]; 1201288089Sadrian (void) rsu_set_fw_power_state(sc, RSU_PWR_SLEEP); 1202253789Srpaulo ieee80211_free_node(ni); 1203253789Srpaulo startcal = 1; 1204253789Srpaulo break; 1205253789Srpaulo default: 1206253789Srpaulo break; 1207253789Srpaulo } 1208253789Srpaulo sc->sc_calibrating = 1; 1209267041Shselasky /* Start periodic calibration. */ 1210267041Shselasky taskqueue_enqueue_timeout(taskqueue_thread, &sc->calib_task, hz); 1211253789Srpaulo RSU_UNLOCK(sc); 1212253789Srpaulo IEEE80211_LOCK(ic); 1213253789Srpaulo return (uvp->newstate(vap, nstate, arg)); 1214253789Srpaulo} 1215253789Srpaulo 1216253789Srpaulo#ifdef notyet 1217253789Srpaulostatic void 1218253789Srpaulorsu_set_key(struct rsu_softc *sc, const struct ieee80211_key *k) 1219253789Srpaulo{ 1220253789Srpaulo struct r92s_fw_cmd_set_key key; 1221253789Srpaulo 1222253789Srpaulo memset(&key, 0, sizeof(key)); 1223253789Srpaulo /* Map net80211 cipher to HW crypto algorithm. */ 1224253789Srpaulo switch (k->wk_cipher->ic_cipher) { 1225253789Srpaulo case IEEE80211_CIPHER_WEP: 1226253789Srpaulo if (k->wk_keylen < 8) 1227253789Srpaulo key.algo = R92S_KEY_ALGO_WEP40; 1228253789Srpaulo else 1229253789Srpaulo key.algo = R92S_KEY_ALGO_WEP104; 1230253789Srpaulo break; 1231253789Srpaulo case IEEE80211_CIPHER_TKIP: 1232253789Srpaulo key.algo = R92S_KEY_ALGO_TKIP; 1233253789Srpaulo break; 1234253789Srpaulo case IEEE80211_CIPHER_AES_CCM: 1235253789Srpaulo key.algo = R92S_KEY_ALGO_AES; 1236253789Srpaulo break; 1237253789Srpaulo default: 1238253789Srpaulo return; 1239253789Srpaulo } 1240253789Srpaulo key.id = k->wk_keyix; 1241253789Srpaulo key.grpkey = (k->wk_flags & IEEE80211_KEY_GROUP) != 0; 1242253789Srpaulo memcpy(key.key, k->wk_key, MIN(k->wk_keylen, sizeof(key.key))); 1243253789Srpaulo (void)rsu_fw_cmd(sc, R92S_CMD_SET_KEY, &key, sizeof(key)); 1244253789Srpaulo} 1245253789Srpaulo 1246253789Srpaulostatic void 1247253789Srpaulorsu_delete_key(struct rsu_softc *sc, const struct ieee80211_key *k) 1248253789Srpaulo{ 1249253789Srpaulo struct r92s_fw_cmd_set_key key; 1250253789Srpaulo 1251253789Srpaulo memset(&key, 0, sizeof(key)); 1252253789Srpaulo key.id = k->wk_keyix; 1253253789Srpaulo (void)rsu_fw_cmd(sc, R92S_CMD_SET_KEY, &key, sizeof(key)); 1254253789Srpaulo} 1255253789Srpaulo#endif 1256253789Srpaulo 1257253789Srpaulostatic int 1258253789Srpaulorsu_site_survey(struct rsu_softc *sc, struct ieee80211vap *vap) 1259253789Srpaulo{ 1260253789Srpaulo struct r92s_fw_cmd_sitesurvey cmd; 1261287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1262287954Sadrian int r; 1263253789Srpaulo 1264287954Sadrian RSU_ASSERT_LOCKED(sc); 1265287954Sadrian 1266253789Srpaulo memset(&cmd, 0, sizeof(cmd)); 1267287197Sglebius if ((ic->ic_flags & IEEE80211_F_ASCAN) || sc->sc_scan_pass == 1) 1268253789Srpaulo cmd.active = htole32(1); 1269253789Srpaulo cmd.limit = htole32(48); 1270287197Sglebius if (sc->sc_scan_pass == 1 && vap->iv_des_nssid > 0) { 1271253789Srpaulo /* Do a directed scan for second pass. */ 1272253789Srpaulo cmd.ssidlen = htole32(vap->iv_des_ssid[0].len); 1273253789Srpaulo memcpy(cmd.ssid, vap->iv_des_ssid[0].ssid, 1274253789Srpaulo vap->iv_des_ssid[0].len); 1275253789Srpaulo 1276253789Srpaulo } 1277287197Sglebius DPRINTF("sending site survey command, pass=%d\n", sc->sc_scan_pass); 1278287954Sadrian r = rsu_fw_cmd(sc, R92S_CMD_SITE_SURVEY, &cmd, sizeof(cmd)); 1279287954Sadrian if (r == 0) { 1280287954Sadrian sc->sc_scanning = 1; 1281287954Sadrian } 1282287954Sadrian return (r); 1283253789Srpaulo} 1284253789Srpaulo 1285253789Srpaulostatic int 1286253789Srpaulorsu_join_bss(struct rsu_softc *sc, struct ieee80211_node *ni) 1287253789Srpaulo{ 1288287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1289253789Srpaulo struct ieee80211vap *vap = ni->ni_vap; 1290253789Srpaulo struct ndis_wlan_bssid_ex *bss; 1291253789Srpaulo struct ndis_802_11_fixed_ies *fixed; 1292253789Srpaulo struct r92s_fw_cmd_auth auth; 1293267066Shselasky uint8_t buf[sizeof(*bss) + 128] __aligned(4); 1294267066Shselasky uint8_t *frm; 1295253789Srpaulo uint8_t opmode; 1296253789Srpaulo int error; 1297287954Sadrian int cnt; 1298287954Sadrian char *msg = "rsujoin"; 1299253789Srpaulo 1300287954Sadrian RSU_ASSERT_LOCKED(sc); 1301287954Sadrian 1302287954Sadrian /* 1303287954Sadrian * Until net80211 scanning doesn't automatically finish 1304287954Sadrian * before we tell it to, let's just wait until any pending 1305287954Sadrian * scan is done. 1306287954Sadrian * 1307287954Sadrian * XXX TODO: yes, this releases and re-acquires the lock. 1308287954Sadrian * We should re-verify the state whenever we re-attempt this! 1309287954Sadrian */ 1310287954Sadrian cnt = 0; 1311287954Sadrian while (sc->sc_scanning && cnt < 10) { 1312287954Sadrian device_printf(sc->sc_dev, 1313287954Sadrian "%s: still scanning! (attempt %d)\n", 1314287954Sadrian __func__, cnt); 1315287954Sadrian msleep(msg, &sc->sc_mtx, 0, msg, hz / 2); 1316287954Sadrian cnt++; 1317287954Sadrian } 1318287954Sadrian 1319253789Srpaulo /* Let the FW decide the opmode based on the capinfo field. */ 1320253789Srpaulo opmode = NDIS802_11AUTOUNKNOWN; 1321287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RESET, 1322287727Sadrian "%s: setting operating mode to %d\n", 1323287727Sadrian __func__, opmode); 1324253789Srpaulo error = rsu_fw_cmd(sc, R92S_CMD_SET_OPMODE, &opmode, sizeof(opmode)); 1325253789Srpaulo if (error != 0) 1326253789Srpaulo return (error); 1327253789Srpaulo 1328253789Srpaulo memset(&auth, 0, sizeof(auth)); 1329253789Srpaulo if (vap->iv_flags & IEEE80211_F_WPA) { 1330253789Srpaulo auth.mode = R92S_AUTHMODE_WPA; 1331267066Shselasky auth.dot1x = (ni->ni_authmode == IEEE80211_AUTH_8021X); 1332253789Srpaulo } else 1333253789Srpaulo auth.mode = R92S_AUTHMODE_OPEN; 1334287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RESET, 1335287727Sadrian "%s: setting auth mode to %d\n", 1336287727Sadrian __func__, auth.mode); 1337253789Srpaulo error = rsu_fw_cmd(sc, R92S_CMD_SET_AUTH, &auth, sizeof(auth)); 1338253789Srpaulo if (error != 0) 1339253789Srpaulo return (error); 1340253789Srpaulo 1341253789Srpaulo memset(buf, 0, sizeof(buf)); 1342253789Srpaulo bss = (struct ndis_wlan_bssid_ex *)buf; 1343253789Srpaulo IEEE80211_ADDR_COPY(bss->macaddr, ni->ni_bssid); 1344253789Srpaulo bss->ssid.ssidlen = htole32(ni->ni_esslen); 1345253789Srpaulo memcpy(bss->ssid.ssid, ni->ni_essid, ni->ni_esslen); 1346253789Srpaulo if (vap->iv_flags & (IEEE80211_F_PRIVACY | IEEE80211_F_WPA)) 1347253789Srpaulo bss->privacy = htole32(1); 1348253789Srpaulo bss->rssi = htole32(ni->ni_avgrssi); 1349253789Srpaulo if (ic->ic_curmode == IEEE80211_MODE_11B) 1350253789Srpaulo bss->networktype = htole32(NDIS802_11DS); 1351253789Srpaulo else 1352253789Srpaulo bss->networktype = htole32(NDIS802_11OFDM24); 1353253789Srpaulo bss->config.len = htole32(sizeof(bss->config)); 1354253789Srpaulo bss->config.bintval = htole32(ni->ni_intval); 1355253789Srpaulo bss->config.dsconfig = htole32(ieee80211_chan2ieee(ic, ni->ni_chan)); 1356253789Srpaulo bss->inframode = htole32(NDIS802_11INFRASTRUCTURE); 1357287727Sadrian /* XXX verify how this is supposed to look! */ 1358253789Srpaulo memcpy(bss->supprates, ni->ni_rates.rs_rates, 1359253789Srpaulo ni->ni_rates.rs_nrates); 1360253789Srpaulo /* Write the fixed fields of the beacon frame. */ 1361253789Srpaulo fixed = (struct ndis_802_11_fixed_ies *)&bss[1]; 1362253789Srpaulo memcpy(&fixed->tstamp, ni->ni_tstamp.data, 8); 1363253789Srpaulo fixed->bintval = htole16(ni->ni_intval); 1364253789Srpaulo fixed->capabilities = htole16(ni->ni_capinfo); 1365253789Srpaulo /* Write IEs to be included in the association request. */ 1366253789Srpaulo frm = (uint8_t *)&fixed[1]; 1367253789Srpaulo frm = ieee80211_add_rsn(frm, vap); 1368253789Srpaulo frm = ieee80211_add_wpa(frm, vap); 1369253789Srpaulo frm = ieee80211_add_qos(frm, ni); 1370287947Sadrian if ((ic->ic_flags & IEEE80211_F_WME) && 1371287947Sadrian (ni->ni_ies.wme_ie != NULL)) 1372287947Sadrian frm = ieee80211_add_wme_info(frm, &ic->ic_wme); 1373288257Sadrian if (ni->ni_flags & IEEE80211_NODE_HT) { 1374253789Srpaulo frm = ieee80211_add_htcap(frm, ni); 1375288257Sadrian frm = ieee80211_add_htinfo(frm, ni); 1376288257Sadrian } 1377253789Srpaulo bss->ieslen = htole32(frm - (uint8_t *)fixed); 1378253789Srpaulo bss->len = htole32(((frm - buf) + 3) & ~3); 1379287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RESET | RSU_DEBUG_FWCMD, 1380287727Sadrian "%s: sending join bss command to %s chan %d\n", 1381287727Sadrian __func__, 1382253789Srpaulo ether_sprintf(bss->macaddr), le32toh(bss->config.dsconfig)); 1383253789Srpaulo return (rsu_fw_cmd(sc, R92S_CMD_JOIN_BSS, buf, sizeof(buf))); 1384253789Srpaulo} 1385253789Srpaulo 1386253789Srpaulostatic int 1387253789Srpaulorsu_disconnect(struct rsu_softc *sc) 1388253789Srpaulo{ 1389253789Srpaulo uint32_t zero = 0; /* :-) */ 1390253789Srpaulo 1391253789Srpaulo /* Disassociate from our current BSS. */ 1392287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_STATE | RSU_DEBUG_FWCMD, 1393287727Sadrian "%s: sending disconnect command\n", __func__); 1394253789Srpaulo return (rsu_fw_cmd(sc, R92S_CMD_DISCONNECT, &zero, sizeof(zero))); 1395253789Srpaulo} 1396253789Srpaulo 1397253789Srpaulostatic void 1398253789Srpaulorsu_event_survey(struct rsu_softc *sc, uint8_t *buf, int len) 1399253789Srpaulo{ 1400287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1401253789Srpaulo struct ieee80211_frame *wh; 1402253789Srpaulo struct ndis_wlan_bssid_ex *bss; 1403287804Sadrian struct ieee80211_rx_stats rxs; 1404253789Srpaulo struct mbuf *m; 1405253789Srpaulo int pktlen; 1406253789Srpaulo 1407253789Srpaulo if (__predict_false(len < sizeof(*bss))) 1408253789Srpaulo return; 1409253789Srpaulo bss = (struct ndis_wlan_bssid_ex *)buf; 1410253789Srpaulo if (__predict_false(len < sizeof(*bss) + le32toh(bss->ieslen))) 1411253789Srpaulo return; 1412253789Srpaulo 1413287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_SCAN, 1414287727Sadrian "%s: found BSS %s: len=%d chan=%d inframode=%d " 1415287742Sadrian "networktype=%d privacy=%d, RSSI=%d\n", 1416287727Sadrian __func__, 1417253789Srpaulo ether_sprintf(bss->macaddr), le32toh(bss->len), 1418253789Srpaulo le32toh(bss->config.dsconfig), le32toh(bss->inframode), 1419287742Sadrian le32toh(bss->networktype), le32toh(bss->privacy), 1420287742Sadrian le32toh(bss->rssi)); 1421253789Srpaulo 1422253789Srpaulo /* Build a fake beacon frame to let net80211 do all the parsing. */ 1423287727Sadrian /* XXX TODO: just call the new scan API methods! */ 1424253789Srpaulo pktlen = sizeof(*wh) + le32toh(bss->ieslen); 1425253789Srpaulo if (__predict_false(pktlen > MCLBYTES)) 1426253789Srpaulo return; 1427260513Skevlo m = m_get2(pktlen, M_NOWAIT, MT_DATA, M_PKTHDR); 1428253789Srpaulo if (__predict_false(m == NULL)) 1429253789Srpaulo return; 1430253789Srpaulo wh = mtod(m, struct ieee80211_frame *); 1431253789Srpaulo wh->i_fc[0] = IEEE80211_FC0_VERSION_0 | IEEE80211_FC0_TYPE_MGT | 1432253789Srpaulo IEEE80211_FC0_SUBTYPE_BEACON; 1433253789Srpaulo wh->i_fc[1] = IEEE80211_FC1_DIR_NODS; 1434258919Shselasky USETW(wh->i_dur, 0); 1435287197Sglebius IEEE80211_ADDR_COPY(wh->i_addr1, ieee80211broadcastaddr); 1436253789Srpaulo IEEE80211_ADDR_COPY(wh->i_addr2, bss->macaddr); 1437253789Srpaulo IEEE80211_ADDR_COPY(wh->i_addr3, bss->macaddr); 1438253789Srpaulo *(uint16_t *)wh->i_seq = 0; 1439253789Srpaulo memcpy(&wh[1], (uint8_t *)&bss[1], le32toh(bss->ieslen)); 1440253789Srpaulo 1441253789Srpaulo /* Finalize mbuf. */ 1442253789Srpaulo m->m_pkthdr.len = m->m_len = pktlen; 1443287804Sadrian 1444287804Sadrian /* Set channel flags for input path */ 1445287804Sadrian bzero(&rxs, sizeof(rxs)); 1446287804Sadrian rxs.r_flags |= IEEE80211_R_IEEE | IEEE80211_R_FREQ; 1447287804Sadrian rxs.r_flags |= IEEE80211_R_NF | IEEE80211_R_RSSI; 1448287804Sadrian rxs.c_ieee = le32toh(bss->config.dsconfig); 1449287804Sadrian rxs.c_freq = ieee80211_ieee2mhz(rxs.c_ieee, IEEE80211_CHAN_2GHZ); 1450287804Sadrian rxs.rssi = le32toh(bss->rssi); 1451287804Sadrian rxs.nf = 0; /* XXX */ 1452287804Sadrian 1453253789Srpaulo /* XXX avoid a LOR */ 1454253789Srpaulo RSU_UNLOCK(sc); 1455287804Sadrian ieee80211_input_mimo_all(ic, m, &rxs); 1456253789Srpaulo RSU_LOCK(sc); 1457253789Srpaulo} 1458253789Srpaulo 1459253789Srpaulostatic void 1460253789Srpaulorsu_event_join_bss(struct rsu_softc *sc, uint8_t *buf, int len) 1461253789Srpaulo{ 1462287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1463253789Srpaulo struct ieee80211vap *vap = TAILQ_FIRST(&ic->ic_vaps); 1464253789Srpaulo struct ieee80211_node *ni = vap->iv_bss; 1465253789Srpaulo struct r92s_event_join_bss *rsp; 1466267066Shselasky uint32_t tmp; 1467253789Srpaulo int res; 1468253789Srpaulo 1469253789Srpaulo if (__predict_false(len < sizeof(*rsp))) 1470253789Srpaulo return; 1471253789Srpaulo rsp = (struct r92s_event_join_bss *)buf; 1472253789Srpaulo res = (int)le32toh(rsp->join_res); 1473253789Srpaulo 1474287740Sadrian RSU_DPRINTF(sc, RSU_DEBUG_STATE | RSU_DEBUG_FWCMD, 1475287740Sadrian "%s: Rx join BSS event len=%d res=%d\n", 1476287740Sadrian __func__, len, res); 1477287954Sadrian 1478287954Sadrian /* 1479287954Sadrian * XXX Don't do this; there's likely a better way to tell 1480287954Sadrian * the caller we failed. 1481287954Sadrian */ 1482253789Srpaulo if (res <= 0) { 1483253789Srpaulo RSU_UNLOCK(sc); 1484253789Srpaulo ieee80211_new_state(vap, IEEE80211_S_SCAN, -1); 1485253789Srpaulo RSU_LOCK(sc); 1486253789Srpaulo return; 1487253789Srpaulo } 1488287954Sadrian 1489267066Shselasky tmp = le32toh(rsp->associd); 1490267066Shselasky if (tmp >= vap->iv_max_aid) { 1491267066Shselasky DPRINTF("Assoc ID overflow\n"); 1492267066Shselasky tmp = 1; 1493267066Shselasky } 1494287740Sadrian RSU_DPRINTF(sc, RSU_DEBUG_STATE | RSU_DEBUG_FWCMD, 1495287740Sadrian "%s: associated with %s associd=%d\n", 1496287740Sadrian __func__, ether_sprintf(rsp->bss.macaddr), tmp); 1497287740Sadrian /* XXX is this required? What's the top two bits for again? */ 1498267066Shselasky ni->ni_associd = tmp | 0xc000; 1499253789Srpaulo RSU_UNLOCK(sc); 1500253789Srpaulo ieee80211_new_state(vap, IEEE80211_S_RUN, 1501253789Srpaulo IEEE80211_FC0_SUBTYPE_ASSOC_RESP); 1502253789Srpaulo RSU_LOCK(sc); 1503253789Srpaulo} 1504253789Srpaulo 1505253789Srpaulostatic void 1506287949Sadrianrsu_event_addba_req_report(struct rsu_softc *sc, uint8_t *buf, int len) 1507287949Sadrian{ 1508287949Sadrian struct ieee80211com *ic = &sc->sc_ic; 1509287949Sadrian struct ieee80211vap *vap = TAILQ_FIRST(&ic->ic_vaps); 1510287949Sadrian struct r92s_add_ba_event *ba = (void *) buf; 1511287949Sadrian struct ieee80211_node *ni; 1512287949Sadrian 1513287949Sadrian if (len < sizeof(*ba)) { 1514287949Sadrian device_printf(sc->sc_dev, "%s: short read (%d)\n", __func__, len); 1515287949Sadrian return; 1516287949Sadrian } 1517287949Sadrian 1518287949Sadrian if (vap == NULL) 1519287949Sadrian return; 1520287949Sadrian 1521287949Sadrian device_printf(sc->sc_dev, "%s: mac=%s, tid=%d, ssn=%d\n", 1522287949Sadrian __func__, 1523287949Sadrian ether_sprintf(ba->mac_addr), 1524287949Sadrian (int) ba->tid, 1525287949Sadrian (int) le16toh(ba->ssn)); 1526287949Sadrian 1527287949Sadrian /* XXX do node lookup; this is STA specific */ 1528287949Sadrian 1529287949Sadrian ni = ieee80211_ref_node(vap->iv_bss); 1530287949Sadrian ieee80211_ampdu_rx_start_ext(ni, ba->tid, le16toh(ba->ssn) >> 4, 32); 1531287949Sadrian ieee80211_free_node(ni); 1532287949Sadrian} 1533287949Sadrian 1534287949Sadrianstatic void 1535253789Srpaulorsu_rx_event(struct rsu_softc *sc, uint8_t code, uint8_t *buf, int len) 1536253789Srpaulo{ 1537287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1538253789Srpaulo struct ieee80211vap *vap = TAILQ_FIRST(&ic->ic_vaps); 1539253789Srpaulo 1540287740Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RX | RSU_DEBUG_FWCMD, 1541287727Sadrian "%s: Rx event code=%d len=%d\n", __func__, code, len); 1542253789Srpaulo switch (code) { 1543253789Srpaulo case R92S_EVT_SURVEY: 1544287947Sadrian rsu_event_survey(sc, buf, len); 1545253789Srpaulo break; 1546253789Srpaulo case R92S_EVT_SURVEY_DONE: 1547287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_SCAN, 1548287727Sadrian "%s: site survey pass %d done, found %d BSS\n", 1549287727Sadrian __func__, sc->sc_scan_pass, le32toh(*(uint32_t *)buf)); 1550287954Sadrian sc->sc_scanning = 0; 1551253789Srpaulo if (vap->iv_state != IEEE80211_S_SCAN) 1552253789Srpaulo break; /* Ignore if not scanning. */ 1553287954Sadrian 1554287954Sadrian /* 1555287954Sadrian * XXX TODO: This needs to be done without a transition to 1556287954Sadrian * the SCAN state again. Grr. 1557287954Sadrian */ 1558287197Sglebius if (sc->sc_scan_pass == 0 && vap->iv_des_nssid != 0) { 1559253789Srpaulo /* Schedule a directed scan for hidden APs. */ 1560287947Sadrian /* XXX bad! */ 1561287197Sglebius sc->sc_scan_pass = 1; 1562253789Srpaulo RSU_UNLOCK(sc); 1563253789Srpaulo ieee80211_new_state(vap, IEEE80211_S_SCAN, -1); 1564253789Srpaulo RSU_LOCK(sc); 1565253789Srpaulo break; 1566253789Srpaulo } 1567287197Sglebius sc->sc_scan_pass = 0; 1568253789Srpaulo break; 1569253789Srpaulo case R92S_EVT_JOIN_BSS: 1570253789Srpaulo if (vap->iv_state == IEEE80211_S_AUTH) 1571253789Srpaulo rsu_event_join_bss(sc, buf, len); 1572253789Srpaulo break; 1573253789Srpaulo case R92S_EVT_DEL_STA: 1574287740Sadrian RSU_DPRINTF(sc, RSU_DEBUG_FWCMD | RSU_DEBUG_STATE, 1575287740Sadrian "%s: disassociated from %s\n", __func__, 1576287740Sadrian ether_sprintf(buf)); 1577253789Srpaulo if (vap->iv_state == IEEE80211_S_RUN && 1578253789Srpaulo IEEE80211_ADDR_EQ(vap->iv_bss->ni_bssid, buf)) { 1579253789Srpaulo RSU_UNLOCK(sc); 1580253789Srpaulo ieee80211_new_state(vap, IEEE80211_S_SCAN, -1); 1581253789Srpaulo RSU_LOCK(sc); 1582253789Srpaulo } 1583253789Srpaulo break; 1584253789Srpaulo case R92S_EVT_WPS_PBC: 1585287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RX | RSU_DEBUG_FWCMD, 1586287727Sadrian "%s: WPS PBC pushed.\n", __func__); 1587253789Srpaulo break; 1588253789Srpaulo case R92S_EVT_FWDBG: 1589287727Sadrian buf[60] = '\0'; 1590287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_FWDBG, "FWDBG: %s\n", (char *)buf); 1591253789Srpaulo break; 1592287949Sadrian case R92S_EVT_ADDBA_REQ_REPORT: 1593287949Sadrian rsu_event_addba_req_report(sc, buf, len); 1594287949Sadrian break; 1595267041Shselasky default: 1596288089Sadrian device_printf(sc->sc_dev, "%s: unhandled code (%d)\n", __func__, code); 1597267041Shselasky break; 1598253789Srpaulo } 1599253789Srpaulo} 1600253789Srpaulo 1601253789Srpaulostatic void 1602253789Srpaulorsu_rx_multi_event(struct rsu_softc *sc, uint8_t *buf, int len) 1603253789Srpaulo{ 1604253789Srpaulo struct r92s_fw_cmd_hdr *cmd; 1605253789Srpaulo int cmdsz; 1606253789Srpaulo 1607287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RX, "%s: Rx events len=%d\n", __func__, len); 1608253789Srpaulo 1609253789Srpaulo /* Skip Rx status. */ 1610253789Srpaulo buf += sizeof(struct r92s_rx_stat); 1611253789Srpaulo len -= sizeof(struct r92s_rx_stat); 1612253789Srpaulo 1613253789Srpaulo /* Process all events. */ 1614253789Srpaulo for (;;) { 1615253789Srpaulo /* Check that command header fits. */ 1616253789Srpaulo if (__predict_false(len < sizeof(*cmd))) 1617253789Srpaulo break; 1618253789Srpaulo cmd = (struct r92s_fw_cmd_hdr *)buf; 1619253789Srpaulo /* Check that command payload fits. */ 1620253789Srpaulo cmdsz = le16toh(cmd->len); 1621253789Srpaulo if (__predict_false(len < sizeof(*cmd) + cmdsz)) 1622253789Srpaulo break; 1623253789Srpaulo 1624253789Srpaulo /* Process firmware event. */ 1625253789Srpaulo rsu_rx_event(sc, cmd->code, (uint8_t *)&cmd[1], cmdsz); 1626253789Srpaulo 1627253789Srpaulo if (!(cmd->seq & R92S_FW_CMD_MORE)) 1628253789Srpaulo break; 1629253789Srpaulo buf += sizeof(*cmd) + cmdsz; 1630253789Srpaulo len -= sizeof(*cmd) + cmdsz; 1631253789Srpaulo } 1632253789Srpaulo} 1633253789Srpaulo 1634253789Srpaulostatic int8_t 1635253789Srpaulorsu_get_rssi(struct rsu_softc *sc, int rate, void *physt) 1636253789Srpaulo{ 1637253789Srpaulo static const int8_t cckoff[] = { 14, -2, -20, -40 }; 1638253789Srpaulo struct r92s_rx_phystat *phy; 1639253789Srpaulo struct r92s_rx_cck *cck; 1640253789Srpaulo uint8_t rpt; 1641253789Srpaulo int8_t rssi; 1642253789Srpaulo 1643253789Srpaulo if (rate <= 3) { 1644253789Srpaulo cck = (struct r92s_rx_cck *)physt; 1645253789Srpaulo rpt = (cck->agc_rpt >> 6) & 0x3; 1646253789Srpaulo rssi = cck->agc_rpt & 0x3e; 1647253789Srpaulo rssi = cckoff[rpt] - rssi; 1648253789Srpaulo } else { /* OFDM/HT. */ 1649253789Srpaulo phy = (struct r92s_rx_phystat *)physt; 1650253789Srpaulo rssi = ((le32toh(phy->phydw1) >> 1) & 0x7f) - 106; 1651253789Srpaulo } 1652253789Srpaulo return (rssi); 1653253789Srpaulo} 1654253789Srpaulo 1655253789Srpaulostatic struct mbuf * 1656253789Srpaulorsu_rx_frame(struct rsu_softc *sc, uint8_t *buf, int pktlen, int *rssi) 1657253789Srpaulo{ 1658287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1659253789Srpaulo struct ieee80211_frame *wh; 1660253789Srpaulo struct r92s_rx_stat *stat; 1661253789Srpaulo uint32_t rxdw0, rxdw3; 1662253789Srpaulo struct mbuf *m; 1663253789Srpaulo uint8_t rate; 1664253789Srpaulo int infosz; 1665253789Srpaulo 1666253789Srpaulo stat = (struct r92s_rx_stat *)buf; 1667253789Srpaulo rxdw0 = le32toh(stat->rxdw0); 1668253789Srpaulo rxdw3 = le32toh(stat->rxdw3); 1669253789Srpaulo 1670253789Srpaulo if (__predict_false(rxdw0 & R92S_RXDW0_CRCERR)) { 1671287197Sglebius counter_u64_add(ic->ic_ierrors, 1); 1672253789Srpaulo return NULL; 1673253789Srpaulo } 1674253789Srpaulo if (__predict_false(pktlen < sizeof(*wh) || pktlen > MCLBYTES)) { 1675287197Sglebius counter_u64_add(ic->ic_ierrors, 1); 1676253789Srpaulo return NULL; 1677253789Srpaulo } 1678253789Srpaulo 1679253789Srpaulo rate = MS(rxdw3, R92S_RXDW3_RATE); 1680253789Srpaulo infosz = MS(rxdw0, R92S_RXDW0_INFOSZ) * 8; 1681253789Srpaulo 1682253789Srpaulo /* Get RSSI from PHY status descriptor if present. */ 1683253789Srpaulo if (infosz != 0) 1684253789Srpaulo *rssi = rsu_get_rssi(sc, rate, &stat[1]); 1685253789Srpaulo else 1686253789Srpaulo *rssi = 0; 1687253789Srpaulo 1688287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RX, 1689287727Sadrian "%s: Rx frame len=%d rate=%d infosz=%d rssi=%d\n", 1690287727Sadrian __func__, 1691253789Srpaulo pktlen, rate, infosz, *rssi); 1692253789Srpaulo 1693260513Skevlo m = m_get2(pktlen, M_NOWAIT, MT_DATA, M_PKTHDR); 1694253789Srpaulo if (__predict_false(m == NULL)) { 1695287197Sglebius counter_u64_add(ic->ic_ierrors, 1); 1696253789Srpaulo return NULL; 1697253789Srpaulo } 1698253789Srpaulo /* Hardware does Rx TCP checksum offload. */ 1699253789Srpaulo if (rxdw3 & R92S_RXDW3_TCPCHKVALID) { 1700253789Srpaulo if (__predict_true(rxdw3 & R92S_RXDW3_TCPCHKRPT)) 1701253789Srpaulo m->m_pkthdr.csum_flags |= CSUM_DATA_VALID; 1702253789Srpaulo } 1703253789Srpaulo wh = (struct ieee80211_frame *)((uint8_t *)&stat[1] + infosz); 1704253789Srpaulo memcpy(mtod(m, uint8_t *), wh, pktlen); 1705253789Srpaulo m->m_pkthdr.len = m->m_len = pktlen; 1706253789Srpaulo 1707253789Srpaulo if (ieee80211_radiotap_active(ic)) { 1708253789Srpaulo struct rsu_rx_radiotap_header *tap = &sc->sc_rxtap; 1709253789Srpaulo 1710253789Srpaulo /* Map HW rate index to 802.11 rate. */ 1711253789Srpaulo tap->wr_flags = 2; 1712253789Srpaulo if (!(rxdw3 & R92S_RXDW3_HTC)) { 1713253789Srpaulo switch (rate) { 1714253789Srpaulo /* CCK. */ 1715253789Srpaulo case 0: tap->wr_rate = 2; break; 1716253789Srpaulo case 1: tap->wr_rate = 4; break; 1717253789Srpaulo case 2: tap->wr_rate = 11; break; 1718253789Srpaulo case 3: tap->wr_rate = 22; break; 1719253789Srpaulo /* OFDM. */ 1720253789Srpaulo case 4: tap->wr_rate = 12; break; 1721253789Srpaulo case 5: tap->wr_rate = 18; break; 1722253789Srpaulo case 6: tap->wr_rate = 24; break; 1723253789Srpaulo case 7: tap->wr_rate = 36; break; 1724253789Srpaulo case 8: tap->wr_rate = 48; break; 1725253789Srpaulo case 9: tap->wr_rate = 72; break; 1726253789Srpaulo case 10: tap->wr_rate = 96; break; 1727253789Srpaulo case 11: tap->wr_rate = 108; break; 1728253789Srpaulo } 1729253789Srpaulo } else if (rate >= 12) { /* MCS0~15. */ 1730253789Srpaulo /* Bit 7 set means HT MCS instead of rate. */ 1731253789Srpaulo tap->wr_rate = 0x80 | (rate - 12); 1732253789Srpaulo } 1733253789Srpaulo tap->wr_dbm_antsignal = *rssi; 1734253789Srpaulo tap->wr_chan_freq = htole16(ic->ic_curchan->ic_freq); 1735253789Srpaulo tap->wr_chan_flags = htole16(ic->ic_curchan->ic_flags); 1736253789Srpaulo } 1737253789Srpaulo 1738253789Srpaulo return (m); 1739253789Srpaulo} 1740253789Srpaulo 1741253789Srpaulostatic struct mbuf * 1742253789Srpaulorsu_rx_multi_frame(struct rsu_softc *sc, uint8_t *buf, int len, int *rssi) 1743253789Srpaulo{ 1744253789Srpaulo struct r92s_rx_stat *stat; 1745253789Srpaulo uint32_t rxdw0; 1746253789Srpaulo int totlen, pktlen, infosz, npkts; 1747253789Srpaulo struct mbuf *m, *m0 = NULL, *prevm = NULL; 1748253789Srpaulo 1749253789Srpaulo /* Get the number of encapsulated frames. */ 1750253789Srpaulo stat = (struct r92s_rx_stat *)buf; 1751253789Srpaulo npkts = MS(le32toh(stat->rxdw2), R92S_RXDW2_PKTCNT); 1752287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RX, 1753287727Sadrian "%s: Rx %d frames in one chunk\n", __func__, npkts); 1754253789Srpaulo 1755253789Srpaulo /* Process all of them. */ 1756253789Srpaulo while (npkts-- > 0) { 1757253789Srpaulo if (__predict_false(len < sizeof(*stat))) 1758253789Srpaulo break; 1759253789Srpaulo stat = (struct r92s_rx_stat *)buf; 1760253789Srpaulo rxdw0 = le32toh(stat->rxdw0); 1761253789Srpaulo 1762253789Srpaulo pktlen = MS(rxdw0, R92S_RXDW0_PKTLEN); 1763253789Srpaulo if (__predict_false(pktlen == 0)) 1764253789Srpaulo break; 1765253789Srpaulo 1766253789Srpaulo infosz = MS(rxdw0, R92S_RXDW0_INFOSZ) * 8; 1767253789Srpaulo 1768253789Srpaulo /* Make sure everything fits in xfer. */ 1769253789Srpaulo totlen = sizeof(*stat) + infosz + pktlen; 1770253789Srpaulo if (__predict_false(totlen > len)) 1771253789Srpaulo break; 1772253789Srpaulo 1773253789Srpaulo /* Process 802.11 frame. */ 1774253789Srpaulo m = rsu_rx_frame(sc, buf, pktlen, rssi); 1775253789Srpaulo if (m0 == NULL) 1776253789Srpaulo m0 = m; 1777253789Srpaulo if (prevm == NULL) 1778253789Srpaulo prevm = m; 1779253789Srpaulo else { 1780253789Srpaulo prevm->m_next = m; 1781253789Srpaulo prevm = m; 1782253789Srpaulo } 1783253789Srpaulo /* Next chunk is 128-byte aligned. */ 1784253789Srpaulo totlen = (totlen + 127) & ~127; 1785253789Srpaulo buf += totlen; 1786253789Srpaulo len -= totlen; 1787253789Srpaulo } 1788253789Srpaulo 1789253789Srpaulo return (m0); 1790253789Srpaulo} 1791253789Srpaulo 1792253789Srpaulostatic struct mbuf * 1793253789Srpaulorsu_rxeof(struct usb_xfer *xfer, struct rsu_data *data, int *rssi) 1794253789Srpaulo{ 1795253789Srpaulo struct rsu_softc *sc = data->sc; 1796287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1797253789Srpaulo struct r92s_rx_stat *stat; 1798253789Srpaulo int len; 1799253789Srpaulo 1800253789Srpaulo usbd_xfer_status(xfer, &len, NULL, NULL, NULL); 1801253789Srpaulo 1802253789Srpaulo if (__predict_false(len < sizeof(*stat))) { 1803253789Srpaulo DPRINTF("xfer too short %d\n", len); 1804287197Sglebius counter_u64_add(ic->ic_ierrors, 1); 1805253789Srpaulo return (NULL); 1806253789Srpaulo } 1807253789Srpaulo /* Determine if it is a firmware C2H event or an 802.11 frame. */ 1808253789Srpaulo stat = (struct r92s_rx_stat *)data->buf; 1809253789Srpaulo if ((le32toh(stat->rxdw1) & 0x1ff) == 0x1ff) { 1810253789Srpaulo rsu_rx_multi_event(sc, data->buf, len); 1811253789Srpaulo /* No packets to process. */ 1812253789Srpaulo return (NULL); 1813253789Srpaulo } else 1814253789Srpaulo return (rsu_rx_multi_frame(sc, data->buf, len, rssi)); 1815253789Srpaulo} 1816253789Srpaulo 1817253789Srpaulostatic void 1818253789Srpaulorsu_bulk_rx_callback(struct usb_xfer *xfer, usb_error_t error) 1819253789Srpaulo{ 1820253789Srpaulo struct rsu_softc *sc = usbd_xfer_softc(xfer); 1821287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1822253789Srpaulo struct ieee80211_frame *wh; 1823253789Srpaulo struct ieee80211_node *ni; 1824253789Srpaulo struct mbuf *m = NULL, *next; 1825253789Srpaulo struct rsu_data *data; 1826253789Srpaulo int rssi = 1; 1827253789Srpaulo 1828253789Srpaulo RSU_ASSERT_LOCKED(sc); 1829253789Srpaulo 1830253789Srpaulo switch (USB_GET_STATE(xfer)) { 1831253789Srpaulo case USB_ST_TRANSFERRED: 1832253789Srpaulo data = STAILQ_FIRST(&sc->sc_rx_active); 1833253789Srpaulo if (data == NULL) 1834253789Srpaulo goto tr_setup; 1835253789Srpaulo STAILQ_REMOVE_HEAD(&sc->sc_rx_active, next); 1836253789Srpaulo m = rsu_rxeof(xfer, data, &rssi); 1837253789Srpaulo STAILQ_INSERT_TAIL(&sc->sc_rx_inactive, data, next); 1838253789Srpaulo /* FALLTHROUGH */ 1839253789Srpaulo case USB_ST_SETUP: 1840253789Srpaulotr_setup: 1841288257Sadrian /* 1842288257Sadrian * XXX TODO: if we have an mbuf list, but then 1843288257Sadrian * we hit data == NULL, what now? 1844288257Sadrian */ 1845253789Srpaulo data = STAILQ_FIRST(&sc->sc_rx_inactive); 1846253789Srpaulo if (data == NULL) { 1847253789Srpaulo KASSERT(m == NULL, ("mbuf isn't NULL")); 1848253789Srpaulo return; 1849253789Srpaulo } 1850253789Srpaulo STAILQ_REMOVE_HEAD(&sc->sc_rx_inactive, next); 1851253789Srpaulo STAILQ_INSERT_TAIL(&sc->sc_rx_active, data, next); 1852253789Srpaulo usbd_xfer_set_frame_data(xfer, 0, data->buf, 1853253789Srpaulo usbd_xfer_max_len(xfer)); 1854253789Srpaulo usbd_transfer_submit(xfer); 1855253789Srpaulo /* 1856253789Srpaulo * To avoid LOR we should unlock our private mutex here to call 1857253789Srpaulo * ieee80211_input() because here is at the end of a USB 1858253789Srpaulo * callback and safe to unlock. 1859253789Srpaulo */ 1860253789Srpaulo RSU_UNLOCK(sc); 1861253789Srpaulo while (m != NULL) { 1862253789Srpaulo next = m->m_next; 1863253789Srpaulo m->m_next = NULL; 1864253789Srpaulo wh = mtod(m, struct ieee80211_frame *); 1865253789Srpaulo ni = ieee80211_find_rxnode(ic, 1866253789Srpaulo (struct ieee80211_frame_min *)wh); 1867253789Srpaulo if (ni != NULL) { 1868287949Sadrian if (ni->ni_flags & IEEE80211_NODE_HT) 1869287949Sadrian m->m_flags |= M_AMPDU; 1870253789Srpaulo (void)ieee80211_input(ni, m, rssi, 0); 1871253789Srpaulo ieee80211_free_node(ni); 1872253789Srpaulo } else 1873253789Srpaulo (void)ieee80211_input_all(ic, m, rssi, 0); 1874253789Srpaulo m = next; 1875253789Srpaulo } 1876253789Srpaulo RSU_LOCK(sc); 1877253789Srpaulo break; 1878253789Srpaulo default: 1879253789Srpaulo /* needs it to the inactive queue due to a error. */ 1880253789Srpaulo data = STAILQ_FIRST(&sc->sc_rx_active); 1881253789Srpaulo if (data != NULL) { 1882253789Srpaulo STAILQ_REMOVE_HEAD(&sc->sc_rx_active, next); 1883253789Srpaulo STAILQ_INSERT_TAIL(&sc->sc_rx_inactive, data, next); 1884253789Srpaulo } 1885253789Srpaulo if (error != USB_ERR_CANCELLED) { 1886253789Srpaulo usbd_xfer_set_stall(xfer); 1887287197Sglebius counter_u64_add(ic->ic_ierrors, 1); 1888253789Srpaulo goto tr_setup; 1889253789Srpaulo } 1890253789Srpaulo break; 1891253789Srpaulo } 1892253789Srpaulo 1893253789Srpaulo} 1894253789Srpaulo 1895253789Srpaulostatic void 1896253789Srpaulorsu_txeof(struct usb_xfer *xfer, struct rsu_data *data) 1897253789Srpaulo{ 1898287727Sadrian#ifdef USB_DEBUG 1899287727Sadrian struct rsu_softc *sc = usbd_xfer_softc(xfer); 1900287727Sadrian#endif 1901253789Srpaulo 1902287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TXDONE, "%s: called; data=%p\n", 1903287727Sadrian __func__, 1904287727Sadrian data); 1905287727Sadrian 1906253789Srpaulo if (data->m) { 1907287197Sglebius /* XXX status? */ 1908287197Sglebius ieee80211_tx_complete(data->ni, data->m, 0); 1909253789Srpaulo data->m = NULL; 1910253789Srpaulo data->ni = NULL; 1911253789Srpaulo } 1912253789Srpaulo} 1913253789Srpaulo 1914253789Srpaulostatic void 1915266505Shselaskyrsu_bulk_tx_callback_sub(struct usb_xfer *xfer, usb_error_t error, 1916266505Shselasky uint8_t which) 1917253789Srpaulo{ 1918253789Srpaulo struct rsu_softc *sc = usbd_xfer_softc(xfer); 1919287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 1920253789Srpaulo struct rsu_data *data; 1921253789Srpaulo 1922253789Srpaulo RSU_ASSERT_LOCKED(sc); 1923253789Srpaulo 1924253789Srpaulo switch (USB_GET_STATE(xfer)) { 1925253789Srpaulo case USB_ST_TRANSFERRED: 1926266505Shselasky data = STAILQ_FIRST(&sc->sc_tx_active[which]); 1927253789Srpaulo if (data == NULL) 1928253789Srpaulo goto tr_setup; 1929287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TXDONE, "%s: transfer done %p\n", 1930287727Sadrian __func__, data); 1931266505Shselasky STAILQ_REMOVE_HEAD(&sc->sc_tx_active[which], next); 1932253789Srpaulo rsu_txeof(xfer, data); 1933287953Sadrian rsu_freebuf(sc, data); 1934253789Srpaulo /* FALLTHROUGH */ 1935253789Srpaulo case USB_ST_SETUP: 1936253789Srpaulotr_setup: 1937266505Shselasky data = STAILQ_FIRST(&sc->sc_tx_pending[which]); 1938253789Srpaulo if (data == NULL) { 1939287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TXDONE, 1940287727Sadrian "%s: empty pending queue sc %p\n", __func__, sc); 1941253789Srpaulo return; 1942253789Srpaulo } 1943266505Shselasky STAILQ_REMOVE_HEAD(&sc->sc_tx_pending[which], next); 1944266505Shselasky STAILQ_INSERT_TAIL(&sc->sc_tx_active[which], data, next); 1945253789Srpaulo usbd_xfer_set_frame_data(xfer, 0, data->buf, data->buflen); 1946287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TXDONE, 1947287727Sadrian "%s: submitting transfer %p\n", 1948287727Sadrian __func__, 1949287727Sadrian data); 1950253789Srpaulo usbd_transfer_submit(xfer); 1951253789Srpaulo break; 1952253789Srpaulo default: 1953266505Shselasky data = STAILQ_FIRST(&sc->sc_tx_active[which]); 1954266505Shselasky if (data != NULL) { 1955266505Shselasky STAILQ_REMOVE_HEAD(&sc->sc_tx_active[which], next); 1956266505Shselasky rsu_txeof(xfer, data); 1957287953Sadrian rsu_freebuf(sc, data); 1958253789Srpaulo } 1959287197Sglebius counter_u64_add(ic->ic_oerrors, 1); 1960266505Shselasky 1961253789Srpaulo if (error != USB_ERR_CANCELLED) { 1962253789Srpaulo usbd_xfer_set_stall(xfer); 1963253789Srpaulo goto tr_setup; 1964253789Srpaulo } 1965253789Srpaulo break; 1966253789Srpaulo } 1967253789Srpaulo} 1968253789Srpaulo 1969266505Shselaskystatic void 1970267041Shselaskyrsu_bulk_tx_callback_be_bk(struct usb_xfer *xfer, usb_error_t error) 1971266505Shselasky{ 1972288052Sadrian struct rsu_softc *sc = usbd_xfer_softc(xfer); 1973288052Sadrian 1974267041Shselasky rsu_bulk_tx_callback_sub(xfer, error, RSU_BULK_TX_BE_BK); 1975288052Sadrian 1976288052Sadrian /* This kicks the TX taskqueue */ 1977288052Sadrian rsu_start(sc); 1978266505Shselasky} 1979266505Shselasky 1980266505Shselaskystatic void 1981267041Shselaskyrsu_bulk_tx_callback_vi_vo(struct usb_xfer *xfer, usb_error_t error) 1982266505Shselasky{ 1983288052Sadrian struct rsu_softc *sc = usbd_xfer_softc(xfer); 1984288052Sadrian 1985267041Shselasky rsu_bulk_tx_callback_sub(xfer, error, RSU_BULK_TX_VI_VO); 1986288052Sadrian 1987288052Sadrian /* This kicks the TX taskqueue */ 1988288052Sadrian rsu_start(sc); 1989266505Shselasky} 1990266505Shselasky 1991287896Sadrianstatic void 1992287896Sadrianrsu_bulk_tx_callback_h2c(struct usb_xfer *xfer, usb_error_t error) 1993287896Sadrian{ 1994288052Sadrian struct rsu_softc *sc = usbd_xfer_softc(xfer); 1995288052Sadrian 1996287896Sadrian rsu_bulk_tx_callback_sub(xfer, error, RSU_BULK_TX_H2C); 1997288052Sadrian 1998288052Sadrian /* This kicks the TX taskqueue */ 1999288052Sadrian rsu_start(sc); 2000287896Sadrian} 2001287896Sadrian 2002288257Sadrian/* 2003288257Sadrian * Transmit the given frame. 2004288257Sadrian * 2005288257Sadrian * This doesn't free the node or mbuf upon failure. 2006288257Sadrian */ 2007253789Srpaulostatic int 2008253789Srpaulorsu_tx_start(struct rsu_softc *sc, struct ieee80211_node *ni, 2009266505Shselasky struct mbuf *m0, struct rsu_data *data) 2010253789Srpaulo{ 2011287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 2012253789Srpaulo struct ieee80211vap *vap = ni->ni_vap; 2013253789Srpaulo struct ieee80211_frame *wh; 2014253789Srpaulo struct ieee80211_key *k = NULL; 2015253789Srpaulo struct r92s_tx_desc *txd; 2016266505Shselasky uint8_t type; 2017287901Sadrian int prio = 0; 2018266505Shselasky uint8_t which; 2019266505Shselasky int hasqos; 2020266505Shselasky int xferlen; 2021287901Sadrian int qid; 2022253789Srpaulo 2023253789Srpaulo RSU_ASSERT_LOCKED(sc); 2024253789Srpaulo 2025253789Srpaulo wh = mtod(m0, struct ieee80211_frame *); 2026253789Srpaulo type = wh->i_fc[0] & IEEE80211_FC0_TYPE_MASK; 2027253789Srpaulo 2028287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TX, "%s: data=%p, m=%p\n", 2029287727Sadrian __func__, data, m0); 2030287727Sadrian 2031260444Skevlo if (wh->i_fc[1] & IEEE80211_FC1_PROTECTED) { 2032253789Srpaulo k = ieee80211_crypto_encap(ni, m0); 2033253789Srpaulo if (k == NULL) { 2034253789Srpaulo device_printf(sc->sc_dev, 2035253789Srpaulo "ieee80211_crypto_encap returns NULL.\n"); 2036253789Srpaulo /* XXX we don't expect the fragmented frames */ 2037253789Srpaulo return (ENOBUFS); 2038253789Srpaulo } 2039253789Srpaulo wh = mtod(m0, struct ieee80211_frame *); 2040253789Srpaulo } 2041287901Sadrian /* If we have QoS then use it */ 2042287901Sadrian /* XXX TODO: mbuf WME/PRI versus TID? */ 2043287901Sadrian if (IEEE80211_QOS_HAS_SEQ(wh)) { 2044287901Sadrian /* Has QoS */ 2045287901Sadrian prio = M_WME_GETAC(m0); 2046287901Sadrian which = rsu_wme_ac_xfer_map[prio]; 2047287901Sadrian hasqos = 1; 2048287901Sadrian } else { 2049287901Sadrian /* Non-QoS TID */ 2050287901Sadrian /* XXX TODO: tid=0 for non-qos TID? */ 2051287901Sadrian which = rsu_wme_ac_xfer_map[WME_AC_BE]; 2052287901Sadrian hasqos = 0; 2053287901Sadrian prio = 0; 2054287901Sadrian } 2055287901Sadrian 2056287901Sadrian qid = rsu_ac2qid[prio]; 2057287901Sadrian#if 0 2058253789Srpaulo switch (type) { 2059253789Srpaulo case IEEE80211_FC0_TYPE_CTL: 2060253789Srpaulo case IEEE80211_FC0_TYPE_MGT: 2061267041Shselasky which = rsu_wme_ac_xfer_map[WME_AC_VO]; 2062253789Srpaulo break; 2063253789Srpaulo default: 2064267041Shselasky which = rsu_wme_ac_xfer_map[M_WME_GETAC(m0)]; 2065253789Srpaulo break; 2066253789Srpaulo } 2067253789Srpaulo hasqos = 0; 2068287901Sadrian#endif 2069287947Sadrian 2070287947Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TX, "%s: pri=%d, which=%d, hasqos=%d\n", 2071287947Sadrian __func__, 2072287947Sadrian prio, 2073287947Sadrian which, 2074287947Sadrian hasqos); 2075287947Sadrian 2076253789Srpaulo /* Fill Tx descriptor. */ 2077253789Srpaulo txd = (struct r92s_tx_desc *)data->buf; 2078253789Srpaulo memset(txd, 0, sizeof(*txd)); 2079253789Srpaulo 2080253789Srpaulo txd->txdw0 |= htole32( 2081253789Srpaulo SM(R92S_TXDW0_PKTLEN, m0->m_pkthdr.len) | 2082253789Srpaulo SM(R92S_TXDW0_OFFSET, sizeof(*txd)) | 2083253789Srpaulo R92S_TXDW0_OWN | R92S_TXDW0_FSG | R92S_TXDW0_LSG); 2084253789Srpaulo 2085253789Srpaulo txd->txdw1 |= htole32( 2086287901Sadrian SM(R92S_TXDW1_MACID, R92S_MACID_BSS) | SM(R92S_TXDW1_QSEL, qid)); 2087253789Srpaulo if (!hasqos) 2088253789Srpaulo txd->txdw1 |= htole32(R92S_TXDW1_NONQOS); 2089253789Srpaulo#ifdef notyet 2090253789Srpaulo if (k != NULL) { 2091253789Srpaulo switch (k->wk_cipher->ic_cipher) { 2092253789Srpaulo case IEEE80211_CIPHER_WEP: 2093253789Srpaulo cipher = R92S_TXDW1_CIPHER_WEP; 2094253789Srpaulo break; 2095253789Srpaulo case IEEE80211_CIPHER_TKIP: 2096253789Srpaulo cipher = R92S_TXDW1_CIPHER_TKIP; 2097253789Srpaulo break; 2098253789Srpaulo case IEEE80211_CIPHER_AES_CCM: 2099253789Srpaulo cipher = R92S_TXDW1_CIPHER_AES; 2100253789Srpaulo break; 2101253789Srpaulo default: 2102253789Srpaulo cipher = R92S_TXDW1_CIPHER_NONE; 2103253789Srpaulo } 2104253789Srpaulo txd->txdw1 |= htole32( 2105253789Srpaulo SM(R92S_TXDW1_CIPHER, cipher) | 2106253789Srpaulo SM(R92S_TXDW1_KEYIDX, k->k_id)); 2107253789Srpaulo } 2108253789Srpaulo#endif 2109287947Sadrian /* XXX todo: set AGGEN bit if appropriate? */ 2110253789Srpaulo txd->txdw2 |= htole32(R92S_TXDW2_BK); 2111253789Srpaulo if (IEEE80211_IS_MULTICAST(wh->i_addr1)) 2112253789Srpaulo txd->txdw2 |= htole32(R92S_TXDW2_BMCAST); 2113253789Srpaulo /* 2114253789Srpaulo * Firmware will use and increment the sequence number for the 2115287901Sadrian * specified priority. 2116253789Srpaulo */ 2117287901Sadrian txd->txdw3 |= htole32(SM(R92S_TXDW3_SEQ, prio)); 2118253789Srpaulo 2119253789Srpaulo if (ieee80211_radiotap_active_vap(vap)) { 2120253789Srpaulo struct rsu_tx_radiotap_header *tap = &sc->sc_txtap; 2121253789Srpaulo 2122253789Srpaulo tap->wt_flags = 0; 2123253789Srpaulo tap->wt_chan_freq = htole16(ic->ic_curchan->ic_freq); 2124253789Srpaulo tap->wt_chan_flags = htole16(ic->ic_curchan->ic_flags); 2125253789Srpaulo ieee80211_radiotap_tx(vap, m0); 2126253789Srpaulo } 2127287727Sadrian 2128253789Srpaulo xferlen = sizeof(*txd) + m0->m_pkthdr.len; 2129253789Srpaulo m_copydata(m0, 0, m0->m_pkthdr.len, (caddr_t)&txd[1]); 2130253789Srpaulo 2131253789Srpaulo data->buflen = xferlen; 2132253789Srpaulo data->ni = ni; 2133253789Srpaulo data->m = m0; 2134266505Shselasky STAILQ_INSERT_TAIL(&sc->sc_tx_pending[which], data, next); 2135253789Srpaulo 2136266505Shselasky /* start transfer, if any */ 2137267041Shselasky usbd_transfer_start(sc->sc_xfer[which]); 2138253789Srpaulo return (0); 2139253789Srpaulo} 2140253789Srpaulo 2141287197Sglebiusstatic int 2142287197Sglebiusrsu_transmit(struct ieee80211com *ic, struct mbuf *m) 2143253789Srpaulo{ 2144287197Sglebius struct rsu_softc *sc = ic->ic_softc; 2145287197Sglebius int error; 2146253789Srpaulo 2147253789Srpaulo RSU_LOCK(sc); 2148287197Sglebius if (!sc->sc_running) { 2149287197Sglebius RSU_UNLOCK(sc); 2150287197Sglebius return (ENXIO); 2151287197Sglebius } 2152288257Sadrian 2153288257Sadrian /* 2154288257Sadrian * XXX TODO: ensure that we treat 'm' as a list of frames 2155288257Sadrian * to transmit! 2156288257Sadrian */ 2157287197Sglebius error = mbufq_enqueue(&sc->sc_snd, m); 2158287197Sglebius if (error) { 2159288051Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TX, 2160288051Sadrian "%s: mbufq_enable: failed (%d)\n", 2161288051Sadrian __func__, 2162288051Sadrian error); 2163287197Sglebius RSU_UNLOCK(sc); 2164287197Sglebius return (error); 2165287197Sglebius } 2166253789Srpaulo RSU_UNLOCK(sc); 2167287197Sglebius 2168288052Sadrian /* This kicks the TX taskqueue */ 2169288052Sadrian rsu_start(sc); 2170288052Sadrian 2171287197Sglebius return (0); 2172253789Srpaulo} 2173253789Srpaulo 2174253789Srpaulostatic void 2175288051Sadrianrsu_drain_mbufq(struct rsu_softc *sc) 2176288051Sadrian{ 2177288051Sadrian struct mbuf *m; 2178288051Sadrian struct ieee80211_node *ni; 2179288051Sadrian 2180288051Sadrian RSU_ASSERT_LOCKED(sc); 2181288051Sadrian while ((m = mbufq_dequeue(&sc->sc_snd)) != NULL) { 2182288051Sadrian ni = (struct ieee80211_node *)m->m_pkthdr.rcvif; 2183288051Sadrian m->m_pkthdr.rcvif = NULL; 2184288051Sadrian ieee80211_free_node(ni); 2185288051Sadrian m_freem(m); 2186288051Sadrian } 2187288051Sadrian} 2188288051Sadrian 2189288051Sadrianstatic void 2190288052Sadrian_rsu_start(struct rsu_softc *sc) 2191253789Srpaulo{ 2192253789Srpaulo struct ieee80211_node *ni; 2193266505Shselasky struct rsu_data *bf; 2194253789Srpaulo struct mbuf *m; 2195253789Srpaulo 2196253789Srpaulo RSU_ASSERT_LOCKED(sc); 2197253789Srpaulo 2198287197Sglebius while ((m = mbufq_dequeue(&sc->sc_snd)) != NULL) { 2199287197Sglebius bf = rsu_getbuf(sc); 2200287197Sglebius if (bf == NULL) { 2201288051Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TX, 2202288051Sadrian "%s: failed to get buffer\n", __func__); 2203287197Sglebius mbufq_prepend(&sc->sc_snd, m); 2204253789Srpaulo break; 2205287197Sglebius } 2206287197Sglebius 2207253789Srpaulo ni = (struct ieee80211_node *)m->m_pkthdr.rcvif; 2208253789Srpaulo m->m_pkthdr.rcvif = NULL; 2209253789Srpaulo 2210287197Sglebius if (rsu_tx_start(sc, ni, m, bf) != 0) { 2211288051Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TX, 2212288051Sadrian "%s: failed to transmit\n", __func__); 2213287197Sglebius if_inc_counter(ni->ni_vap->iv_ifp, 2214287197Sglebius IFCOUNTER_OERRORS, 1); 2215287953Sadrian rsu_freebuf(sc, bf); 2216253789Srpaulo ieee80211_free_node(ni); 2217288257Sadrian m_freem(m); 2218287197Sglebius break; 2219253789Srpaulo } 2220253789Srpaulo } 2221253789Srpaulo} 2222253789Srpaulo 2223287197Sglebiusstatic void 2224288052Sadrianrsu_start(struct rsu_softc *sc) 2225288052Sadrian{ 2226288052Sadrian 2227288052Sadrian taskqueue_enqueue(taskqueue_thread, &sc->tx_task); 2228288052Sadrian} 2229288052Sadrian 2230288052Sadrianstatic void 2231287197Sglebiusrsu_parent(struct ieee80211com *ic) 2232253789Srpaulo{ 2233286950Sadrian struct rsu_softc *sc = ic->ic_softc; 2234287197Sglebius int startall = 0; 2235253789Srpaulo 2236287197Sglebius RSU_LOCK(sc); 2237287197Sglebius if (ic->ic_nrunning > 0) { 2238287197Sglebius if (!sc->sc_running) { 2239287197Sglebius rsu_init(sc); 2240287197Sglebius startall = 1; 2241253789Srpaulo } 2242287197Sglebius } else if (sc->sc_running) 2243287197Sglebius rsu_stop(sc); 2244287197Sglebius RSU_UNLOCK(sc); 2245253789Srpaulo 2246287197Sglebius if (startall) 2247287197Sglebius ieee80211_start_all(ic); 2248253789Srpaulo} 2249253789Srpaulo 2250253789Srpaulo/* 2251253789Srpaulo * Power on sequence for A-cut adapters. 2252253789Srpaulo */ 2253253789Srpaulostatic void 2254253789Srpaulorsu_power_on_acut(struct rsu_softc *sc) 2255253789Srpaulo{ 2256253789Srpaulo uint32_t reg; 2257253789Srpaulo 2258253789Srpaulo rsu_write_1(sc, R92S_SPS0_CTRL + 1, 0x53); 2259253789Srpaulo rsu_write_1(sc, R92S_SPS0_CTRL + 0, 0x57); 2260253789Srpaulo 2261253789Srpaulo /* Enable AFE macro block's bandgap and Mbias. */ 2262253789Srpaulo rsu_write_1(sc, R92S_AFE_MISC, 2263253789Srpaulo rsu_read_1(sc, R92S_AFE_MISC) | 2264253789Srpaulo R92S_AFE_MISC_BGEN | R92S_AFE_MISC_MBEN); 2265253789Srpaulo /* Enable LDOA15 block. */ 2266253789Srpaulo rsu_write_1(sc, R92S_LDOA15_CTRL, 2267253789Srpaulo rsu_read_1(sc, R92S_LDOA15_CTRL) | R92S_LDA15_EN); 2268253789Srpaulo 2269253789Srpaulo rsu_write_1(sc, R92S_SPS1_CTRL, 2270253789Srpaulo rsu_read_1(sc, R92S_SPS1_CTRL) | R92S_SPS1_LDEN); 2271287892Sadrian rsu_ms_delay(sc, 2000); 2272253789Srpaulo /* Enable switch regulator block. */ 2273253789Srpaulo rsu_write_1(sc, R92S_SPS1_CTRL, 2274253789Srpaulo rsu_read_1(sc, R92S_SPS1_CTRL) | R92S_SPS1_SWEN); 2275253789Srpaulo 2276253789Srpaulo rsu_write_4(sc, R92S_SPS1_CTRL, 0x00a7b267); 2277253789Srpaulo 2278253789Srpaulo rsu_write_1(sc, R92S_SYS_ISO_CTRL + 1, 2279253789Srpaulo rsu_read_1(sc, R92S_SYS_ISO_CTRL + 1) | 0x08); 2280253789Srpaulo 2281253789Srpaulo rsu_write_1(sc, R92S_SYS_FUNC_EN + 1, 2282253789Srpaulo rsu_read_1(sc, R92S_SYS_FUNC_EN + 1) | 0x20); 2283253789Srpaulo 2284253789Srpaulo rsu_write_1(sc, R92S_SYS_ISO_CTRL + 1, 2285253789Srpaulo rsu_read_1(sc, R92S_SYS_ISO_CTRL + 1) & ~0x90); 2286253789Srpaulo 2287253789Srpaulo /* Enable AFE clock. */ 2288253789Srpaulo rsu_write_1(sc, R92S_AFE_XTAL_CTRL + 1, 2289253789Srpaulo rsu_read_1(sc, R92S_AFE_XTAL_CTRL + 1) & ~0x04); 2290253789Srpaulo /* Enable AFE PLL macro block. */ 2291253789Srpaulo rsu_write_1(sc, R92S_AFE_PLL_CTRL, 2292253789Srpaulo rsu_read_1(sc, R92S_AFE_PLL_CTRL) | 0x11); 2293253789Srpaulo /* Attach AFE PLL to MACTOP/BB. */ 2294253789Srpaulo rsu_write_1(sc, R92S_SYS_ISO_CTRL, 2295253789Srpaulo rsu_read_1(sc, R92S_SYS_ISO_CTRL) & ~0x11); 2296253789Srpaulo 2297253789Srpaulo /* Switch to 40MHz clock instead of 80MHz. */ 2298253789Srpaulo rsu_write_2(sc, R92S_SYS_CLKR, 2299253789Srpaulo rsu_read_2(sc, R92S_SYS_CLKR) & ~R92S_SYS_CLKSEL); 2300253789Srpaulo 2301253789Srpaulo /* Enable MAC clock. */ 2302253789Srpaulo rsu_write_2(sc, R92S_SYS_CLKR, 2303253789Srpaulo rsu_read_2(sc, R92S_SYS_CLKR) | 2304253789Srpaulo R92S_MAC_CLK_EN | R92S_SYS_CLK_EN); 2305253789Srpaulo 2306253789Srpaulo rsu_write_1(sc, R92S_PMC_FSM, 0x02); 2307253789Srpaulo 2308253789Srpaulo /* Enable digital core and IOREG R/W. */ 2309253789Srpaulo rsu_write_1(sc, R92S_SYS_FUNC_EN + 1, 2310253789Srpaulo rsu_read_1(sc, R92S_SYS_FUNC_EN + 1) | 0x08); 2311253789Srpaulo 2312253789Srpaulo rsu_write_1(sc, R92S_SYS_FUNC_EN + 1, 2313253789Srpaulo rsu_read_1(sc, R92S_SYS_FUNC_EN + 1) | 0x80); 2314253789Srpaulo 2315253789Srpaulo /* Switch the control path to firmware. */ 2316253789Srpaulo reg = rsu_read_2(sc, R92S_SYS_CLKR); 2317253789Srpaulo reg = (reg & ~R92S_SWHW_SEL) | R92S_FWHW_SEL; 2318253789Srpaulo rsu_write_2(sc, R92S_SYS_CLKR, reg); 2319253789Srpaulo 2320253789Srpaulo rsu_write_2(sc, R92S_CR, 0x37fc); 2321253789Srpaulo 2322253789Srpaulo /* Fix USB RX FIFO issue. */ 2323253789Srpaulo rsu_write_1(sc, 0xfe5c, 2324253789Srpaulo rsu_read_1(sc, 0xfe5c) | 0x80); 2325253789Srpaulo rsu_write_1(sc, 0x00ab, 2326253789Srpaulo rsu_read_1(sc, 0x00ab) | 0xc0); 2327253789Srpaulo 2328253789Srpaulo rsu_write_1(sc, R92S_SYS_CLKR, 2329253789Srpaulo rsu_read_1(sc, R92S_SYS_CLKR) & ~R92S_SYS_CPU_CLKSEL); 2330253789Srpaulo} 2331253789Srpaulo 2332253789Srpaulo/* 2333253789Srpaulo * Power on sequence for B-cut and C-cut adapters. 2334253789Srpaulo */ 2335253789Srpaulostatic void 2336253789Srpaulorsu_power_on_bcut(struct rsu_softc *sc) 2337253789Srpaulo{ 2338253789Srpaulo uint32_t reg; 2339253789Srpaulo int ntries; 2340253789Srpaulo 2341253789Srpaulo /* Prevent eFuse leakage. */ 2342253789Srpaulo rsu_write_1(sc, 0x37, 0xb0); 2343287892Sadrian rsu_ms_delay(sc, 10); 2344253789Srpaulo rsu_write_1(sc, 0x37, 0x30); 2345253789Srpaulo 2346253789Srpaulo /* Switch the control path to hardware. */ 2347253789Srpaulo reg = rsu_read_2(sc, R92S_SYS_CLKR); 2348253789Srpaulo if (reg & R92S_FWHW_SEL) { 2349253789Srpaulo rsu_write_2(sc, R92S_SYS_CLKR, 2350253789Srpaulo reg & ~(R92S_SWHW_SEL | R92S_FWHW_SEL)); 2351253789Srpaulo } 2352253789Srpaulo rsu_write_1(sc, R92S_SYS_FUNC_EN + 1, 2353253789Srpaulo rsu_read_1(sc, R92S_SYS_FUNC_EN + 1) & ~0x8c); 2354287892Sadrian rsu_ms_delay(sc, 1); 2355253789Srpaulo 2356253789Srpaulo rsu_write_1(sc, R92S_SPS0_CTRL + 1, 0x53); 2357253789Srpaulo rsu_write_1(sc, R92S_SPS0_CTRL + 0, 0x57); 2358253789Srpaulo 2359253789Srpaulo reg = rsu_read_1(sc, R92S_AFE_MISC); 2360253789Srpaulo rsu_write_1(sc, R92S_AFE_MISC, reg | R92S_AFE_MISC_BGEN); 2361253789Srpaulo rsu_write_1(sc, R92S_AFE_MISC, reg | R92S_AFE_MISC_BGEN | 2362253789Srpaulo R92S_AFE_MISC_MBEN | R92S_AFE_MISC_I32_EN); 2363253789Srpaulo 2364253789Srpaulo /* Enable PLL. */ 2365253789Srpaulo rsu_write_1(sc, R92S_LDOA15_CTRL, 2366253789Srpaulo rsu_read_1(sc, R92S_LDOA15_CTRL) | R92S_LDA15_EN); 2367253789Srpaulo 2368253789Srpaulo rsu_write_1(sc, R92S_LDOV12D_CTRL, 2369253789Srpaulo rsu_read_1(sc, R92S_LDOV12D_CTRL) | R92S_LDV12_EN); 2370253789Srpaulo 2371253789Srpaulo rsu_write_1(sc, R92S_SYS_ISO_CTRL + 1, 2372253789Srpaulo rsu_read_1(sc, R92S_SYS_ISO_CTRL + 1) | 0x08); 2373253789Srpaulo 2374253789Srpaulo rsu_write_1(sc, R92S_SYS_FUNC_EN + 1, 2375253789Srpaulo rsu_read_1(sc, R92S_SYS_FUNC_EN + 1) | 0x20); 2376253789Srpaulo 2377253789Srpaulo /* Support 64KB IMEM. */ 2378253789Srpaulo rsu_write_1(sc, R92S_SYS_ISO_CTRL + 1, 2379253789Srpaulo rsu_read_1(sc, R92S_SYS_ISO_CTRL + 1) & ~0x97); 2380253789Srpaulo 2381253789Srpaulo /* Enable AFE clock. */ 2382253789Srpaulo rsu_write_1(sc, R92S_AFE_XTAL_CTRL + 1, 2383253789Srpaulo rsu_read_1(sc, R92S_AFE_XTAL_CTRL + 1) & ~0x04); 2384253789Srpaulo /* Enable AFE PLL macro block. */ 2385253789Srpaulo reg = rsu_read_1(sc, R92S_AFE_PLL_CTRL); 2386253789Srpaulo rsu_write_1(sc, R92S_AFE_PLL_CTRL, reg | 0x11); 2387287892Sadrian rsu_ms_delay(sc, 1); 2388253789Srpaulo rsu_write_1(sc, R92S_AFE_PLL_CTRL, reg | 0x51); 2389287892Sadrian rsu_ms_delay(sc, 1); 2390253789Srpaulo rsu_write_1(sc, R92S_AFE_PLL_CTRL, reg | 0x11); 2391287892Sadrian rsu_ms_delay(sc, 1); 2392253789Srpaulo 2393253789Srpaulo /* Attach AFE PLL to MACTOP/BB. */ 2394253789Srpaulo rsu_write_1(sc, R92S_SYS_ISO_CTRL, 2395253789Srpaulo rsu_read_1(sc, R92S_SYS_ISO_CTRL) & ~0x11); 2396253789Srpaulo 2397253789Srpaulo /* Switch to 40MHz clock. */ 2398253789Srpaulo rsu_write_1(sc, R92S_SYS_CLKR, 0x00); 2399253789Srpaulo /* Disable CPU clock and 80MHz SSC. */ 2400253789Srpaulo rsu_write_1(sc, R92S_SYS_CLKR, 2401253789Srpaulo rsu_read_1(sc, R92S_SYS_CLKR) | 0xa0); 2402253789Srpaulo /* Enable MAC clock. */ 2403253789Srpaulo rsu_write_2(sc, R92S_SYS_CLKR, 2404253789Srpaulo rsu_read_2(sc, R92S_SYS_CLKR) | 2405253789Srpaulo R92S_MAC_CLK_EN | R92S_SYS_CLK_EN); 2406253789Srpaulo 2407253789Srpaulo rsu_write_1(sc, R92S_PMC_FSM, 0x02); 2408253789Srpaulo 2409253789Srpaulo /* Enable digital core and IOREG R/W. */ 2410253789Srpaulo rsu_write_1(sc, R92S_SYS_FUNC_EN + 1, 2411253789Srpaulo rsu_read_1(sc, R92S_SYS_FUNC_EN + 1) | 0x08); 2412253789Srpaulo 2413253789Srpaulo rsu_write_1(sc, R92S_SYS_FUNC_EN + 1, 2414253789Srpaulo rsu_read_1(sc, R92S_SYS_FUNC_EN + 1) | 0x80); 2415253789Srpaulo 2416253789Srpaulo /* Switch the control path to firmware. */ 2417253789Srpaulo reg = rsu_read_2(sc, R92S_SYS_CLKR); 2418253789Srpaulo reg = (reg & ~R92S_SWHW_SEL) | R92S_FWHW_SEL; 2419253789Srpaulo rsu_write_2(sc, R92S_SYS_CLKR, reg); 2420253789Srpaulo 2421253789Srpaulo rsu_write_2(sc, R92S_CR, 0x37fc); 2422253789Srpaulo 2423253789Srpaulo /* Fix USB RX FIFO issue. */ 2424253789Srpaulo rsu_write_1(sc, 0xfe5c, 2425253789Srpaulo rsu_read_1(sc, 0xfe5c) | 0x80); 2426253789Srpaulo 2427253789Srpaulo rsu_write_1(sc, R92S_SYS_CLKR, 2428253789Srpaulo rsu_read_1(sc, R92S_SYS_CLKR) & ~R92S_SYS_CPU_CLKSEL); 2429253789Srpaulo 2430253789Srpaulo rsu_write_1(sc, 0xfe1c, 0x80); 2431253789Srpaulo 2432253789Srpaulo /* Make sure TxDMA is ready to download firmware. */ 2433253789Srpaulo for (ntries = 0; ntries < 20; ntries++) { 2434253789Srpaulo reg = rsu_read_1(sc, R92S_TCR); 2435253789Srpaulo if ((reg & (R92S_TCR_IMEM_CHK_RPT | R92S_TCR_EMEM_CHK_RPT)) == 2436253789Srpaulo (R92S_TCR_IMEM_CHK_RPT | R92S_TCR_EMEM_CHK_RPT)) 2437253789Srpaulo break; 2438287892Sadrian rsu_ms_delay(sc, 1); 2439253789Srpaulo } 2440253789Srpaulo if (ntries == 20) { 2441287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RESET | RSU_DEBUG_TX, 2442287727Sadrian "%s: TxDMA is not ready\n", 2443287727Sadrian __func__); 2444253789Srpaulo /* Reset TxDMA. */ 2445253789Srpaulo reg = rsu_read_1(sc, R92S_CR); 2446253789Srpaulo rsu_write_1(sc, R92S_CR, reg & ~R92S_CR_TXDMA_EN); 2447287892Sadrian rsu_ms_delay(sc, 1); 2448253789Srpaulo rsu_write_1(sc, R92S_CR, reg | R92S_CR_TXDMA_EN); 2449253789Srpaulo } 2450253789Srpaulo} 2451253789Srpaulo 2452253789Srpaulostatic void 2453253789Srpaulorsu_power_off(struct rsu_softc *sc) 2454253789Srpaulo{ 2455253789Srpaulo /* Turn RF off. */ 2456253789Srpaulo rsu_write_1(sc, R92S_RF_CTRL, 0x00); 2457287892Sadrian rsu_ms_delay(sc, 5); 2458253789Srpaulo 2459253789Srpaulo /* Turn MAC off. */ 2460253789Srpaulo /* Switch control path. */ 2461253789Srpaulo rsu_write_1(sc, R92S_SYS_CLKR + 1, 0x38); 2462253789Srpaulo /* Reset MACTOP. */ 2463253789Srpaulo rsu_write_1(sc, R92S_SYS_FUNC_EN + 1, 0x70); 2464253789Srpaulo rsu_write_1(sc, R92S_PMC_FSM, 0x06); 2465253789Srpaulo rsu_write_1(sc, R92S_SYS_ISO_CTRL + 0, 0xf9); 2466253789Srpaulo rsu_write_1(sc, R92S_SYS_ISO_CTRL + 1, 0xe8); 2467253789Srpaulo 2468253789Srpaulo /* Disable AFE PLL. */ 2469253789Srpaulo rsu_write_1(sc, R92S_AFE_PLL_CTRL, 0x00); 2470253789Srpaulo /* Disable A15V. */ 2471253789Srpaulo rsu_write_1(sc, R92S_LDOA15_CTRL, 0x54); 2472253789Srpaulo /* Disable eFuse 1.2V. */ 2473253789Srpaulo rsu_write_1(sc, R92S_SYS_FUNC_EN + 1, 0x50); 2474253789Srpaulo rsu_write_1(sc, R92S_LDOV12D_CTRL, 0x24); 2475253789Srpaulo /* Enable AFE macro block's bandgap and Mbias. */ 2476253789Srpaulo rsu_write_1(sc, R92S_AFE_MISC, 0x30); 2477253789Srpaulo /* Disable 1.6V LDO. */ 2478253789Srpaulo rsu_write_1(sc, R92S_SPS0_CTRL + 0, 0x56); 2479253789Srpaulo rsu_write_1(sc, R92S_SPS0_CTRL + 1, 0x43); 2480288094Sadrian 2481288094Sadrian /* Firmware - tell it to switch things off */ 2482288094Sadrian (void) rsu_set_fw_power_state(sc, RSU_PWR_OFF); 2483253789Srpaulo} 2484253789Srpaulo 2485253789Srpaulostatic int 2486253807Srpaulorsu_fw_loadsection(struct rsu_softc *sc, const uint8_t *buf, int len) 2487253789Srpaulo{ 2488267041Shselasky const uint8_t which = rsu_wme_ac_xfer_map[WME_AC_VO]; 2489253789Srpaulo struct rsu_data *data; 2490253789Srpaulo struct r92s_tx_desc *txd; 2491253789Srpaulo int mlen; 2492253789Srpaulo 2493253789Srpaulo while (len > 0) { 2494253789Srpaulo data = rsu_getbuf(sc); 2495253789Srpaulo if (data == NULL) 2496253789Srpaulo return (ENOMEM); 2497253789Srpaulo txd = (struct r92s_tx_desc *)data->buf; 2498253789Srpaulo memset(txd, 0, sizeof(*txd)); 2499253789Srpaulo if (len <= RSU_TXBUFSZ - sizeof(*txd)) { 2500253789Srpaulo /* Last chunk. */ 2501253789Srpaulo txd->txdw0 |= htole32(R92S_TXDW0_LINIP); 2502253789Srpaulo mlen = len; 2503253789Srpaulo } else 2504253789Srpaulo mlen = RSU_TXBUFSZ - sizeof(*txd); 2505253789Srpaulo txd->txdw0 |= htole32(SM(R92S_TXDW0_PKTLEN, mlen)); 2506253789Srpaulo memcpy(&txd[1], buf, mlen); 2507253789Srpaulo data->buflen = sizeof(*txd) + mlen; 2508287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_TX | RSU_DEBUG_FW | RSU_DEBUG_RESET, 2509287727Sadrian "%s: starting transfer %p\n", 2510287727Sadrian __func__, data); 2511266505Shselasky STAILQ_INSERT_TAIL(&sc->sc_tx_pending[which], data, next); 2512253789Srpaulo buf += mlen; 2513253789Srpaulo len -= mlen; 2514253789Srpaulo } 2515267041Shselasky usbd_transfer_start(sc->sc_xfer[which]); 2516253789Srpaulo return (0); 2517253789Srpaulo} 2518253789Srpaulo 2519253789Srpaulostatic int 2520253789Srpaulorsu_load_firmware(struct rsu_softc *sc) 2521253789Srpaulo{ 2522253807Srpaulo const struct r92s_fw_hdr *hdr; 2523253789Srpaulo struct r92s_fw_priv *dmem; 2524287947Sadrian struct ieee80211com *ic = &sc->sc_ic; 2525253807Srpaulo const uint8_t *imem, *emem; 2526253789Srpaulo int imemsz, ememsz; 2527253789Srpaulo const struct firmware *fw; 2528253789Srpaulo size_t size; 2529253789Srpaulo uint32_t reg; 2530253789Srpaulo int ntries, error; 2531253789Srpaulo 2532267041Shselasky if (rsu_read_1(sc, R92S_TCR) & R92S_TCR_FWRDY) { 2533288089Sadrian RSU_DPRINTF(sc, RSU_DEBUG_ANY, 2534287727Sadrian "%s: Firmware already loaded\n", 2535287727Sadrian __func__); 2536267041Shselasky return (0); 2537267041Shselasky } 2538267041Shselasky 2539253789Srpaulo RSU_UNLOCK(sc); 2540253789Srpaulo /* Read firmware image from the filesystem. */ 2541253789Srpaulo if ((fw = firmware_get("rsu-rtl8712fw")) == NULL) { 2542253789Srpaulo device_printf(sc->sc_dev, 2543253789Srpaulo "%s: failed load firmware of file rsu-rtl8712fw\n", 2544253789Srpaulo __func__); 2545253789Srpaulo RSU_LOCK(sc); 2546253789Srpaulo return (ENXIO); 2547253789Srpaulo } 2548253789Srpaulo RSU_LOCK(sc); 2549253789Srpaulo size = fw->datasize; 2550253789Srpaulo if (size < sizeof(*hdr)) { 2551253789Srpaulo device_printf(sc->sc_dev, "firmware too short\n"); 2552253789Srpaulo error = EINVAL; 2553253789Srpaulo goto fail; 2554253789Srpaulo } 2555253807Srpaulo hdr = (const struct r92s_fw_hdr *)fw->data; 2556253789Srpaulo if (hdr->signature != htole16(0x8712) && 2557253789Srpaulo hdr->signature != htole16(0x8192)) { 2558253789Srpaulo device_printf(sc->sc_dev, 2559253789Srpaulo "invalid firmware signature 0x%x\n", 2560253789Srpaulo le16toh(hdr->signature)); 2561253789Srpaulo error = EINVAL; 2562253789Srpaulo goto fail; 2563253789Srpaulo } 2564253789Srpaulo DPRINTF("FW V%d %02x-%02x %02x:%02x\n", le16toh(hdr->version), 2565253789Srpaulo hdr->month, hdr->day, hdr->hour, hdr->minute); 2566253789Srpaulo 2567253789Srpaulo /* Make sure that driver and firmware are in sync. */ 2568253789Srpaulo if (hdr->privsz != htole32(sizeof(*dmem))) { 2569253789Srpaulo device_printf(sc->sc_dev, "unsupported firmware image\n"); 2570253789Srpaulo error = EINVAL; 2571253789Srpaulo goto fail; 2572253789Srpaulo } 2573253789Srpaulo /* Get FW sections sizes. */ 2574253789Srpaulo imemsz = le32toh(hdr->imemsz); 2575253789Srpaulo ememsz = le32toh(hdr->sramsz); 2576253789Srpaulo /* Check that all FW sections fit in image. */ 2577253789Srpaulo if (size < sizeof(*hdr) + imemsz + ememsz) { 2578253789Srpaulo device_printf(sc->sc_dev, "firmware too short\n"); 2579253789Srpaulo error = EINVAL; 2580253789Srpaulo goto fail; 2581253789Srpaulo } 2582253807Srpaulo imem = (const uint8_t *)&hdr[1]; 2583253789Srpaulo emem = imem + imemsz; 2584253789Srpaulo 2585253789Srpaulo /* Load IMEM section. */ 2586253789Srpaulo error = rsu_fw_loadsection(sc, imem, imemsz); 2587253789Srpaulo if (error != 0) { 2588253789Srpaulo device_printf(sc->sc_dev, 2589253789Srpaulo "could not load firmware section %s\n", "IMEM"); 2590253789Srpaulo goto fail; 2591253789Srpaulo } 2592253789Srpaulo /* Wait for load to complete. */ 2593266535Shselasky for (ntries = 0; ntries != 50; ntries++) { 2594287892Sadrian rsu_ms_delay(sc, 10); 2595267041Shselasky reg = rsu_read_1(sc, R92S_TCR); 2596253789Srpaulo if (reg & R92S_TCR_IMEM_CODE_DONE) 2597253789Srpaulo break; 2598253789Srpaulo } 2599266535Shselasky if (ntries == 50) { 2600266535Shselasky device_printf(sc->sc_dev, "timeout waiting for IMEM transfer\n"); 2601253789Srpaulo error = ETIMEDOUT; 2602253789Srpaulo goto fail; 2603253789Srpaulo } 2604253789Srpaulo /* Load EMEM section. */ 2605253789Srpaulo error = rsu_fw_loadsection(sc, emem, ememsz); 2606253789Srpaulo if (error != 0) { 2607253789Srpaulo device_printf(sc->sc_dev, 2608253789Srpaulo "could not load firmware section %s\n", "EMEM"); 2609253789Srpaulo goto fail; 2610253789Srpaulo } 2611253789Srpaulo /* Wait for load to complete. */ 2612266542Shselasky for (ntries = 0; ntries != 50; ntries++) { 2613287892Sadrian rsu_ms_delay(sc, 10); 2614253789Srpaulo reg = rsu_read_2(sc, R92S_TCR); 2615253789Srpaulo if (reg & R92S_TCR_EMEM_CODE_DONE) 2616253789Srpaulo break; 2617253789Srpaulo } 2618266542Shselasky if (ntries == 50) { 2619266535Shselasky device_printf(sc->sc_dev, "timeout waiting for EMEM transfer\n"); 2620253789Srpaulo error = ETIMEDOUT; 2621253789Srpaulo goto fail; 2622253789Srpaulo } 2623253789Srpaulo /* Enable CPU. */ 2624253789Srpaulo rsu_write_1(sc, R92S_SYS_CLKR, 2625253789Srpaulo rsu_read_1(sc, R92S_SYS_CLKR) | R92S_SYS_CPU_CLKSEL); 2626253789Srpaulo if (!(rsu_read_1(sc, R92S_SYS_CLKR) & R92S_SYS_CPU_CLKSEL)) { 2627253789Srpaulo device_printf(sc->sc_dev, "could not enable system clock\n"); 2628253789Srpaulo error = EIO; 2629253789Srpaulo goto fail; 2630253789Srpaulo } 2631253789Srpaulo rsu_write_2(sc, R92S_SYS_FUNC_EN, 2632253789Srpaulo rsu_read_2(sc, R92S_SYS_FUNC_EN) | R92S_FEN_CPUEN); 2633253789Srpaulo if (!(rsu_read_2(sc, R92S_SYS_FUNC_EN) & R92S_FEN_CPUEN)) { 2634253789Srpaulo device_printf(sc->sc_dev, 2635253789Srpaulo "could not enable microcontroller\n"); 2636253789Srpaulo error = EIO; 2637253789Srpaulo goto fail; 2638253789Srpaulo } 2639253789Srpaulo /* Wait for CPU to initialize. */ 2640253789Srpaulo for (ntries = 0; ntries < 100; ntries++) { 2641267041Shselasky if (rsu_read_1(sc, R92S_TCR) & R92S_TCR_IMEM_RDY) 2642253789Srpaulo break; 2643287892Sadrian rsu_ms_delay(sc, 1); 2644253789Srpaulo } 2645253789Srpaulo if (ntries == 100) { 2646253789Srpaulo device_printf(sc->sc_dev, 2647253789Srpaulo "timeout waiting for microcontroller\n"); 2648253789Srpaulo error = ETIMEDOUT; 2649253789Srpaulo goto fail; 2650253789Srpaulo } 2651253789Srpaulo 2652253789Srpaulo /* Update DMEM section before loading. */ 2653253807Srpaulo dmem = __DECONST(struct r92s_fw_priv *, &hdr->priv); 2654253789Srpaulo memset(dmem, 0, sizeof(*dmem)); 2655253789Srpaulo dmem->hci_sel = R92S_HCI_SEL_USB | R92S_HCI_SEL_8172; 2656287897Sadrian dmem->nendpoints = sc->sc_nendpoints; 2657288089Sadrian dmem->chip_version = sc->cut; 2658287897Sadrian /* XXX TODO: rf_config should come from ROM */ 2659287897Sadrian dmem->rf_config = 0x11; /* 1T1R */ 2660253789Srpaulo dmem->vcs_type = R92S_VCS_TYPE_AUTO; 2661253789Srpaulo dmem->vcs_mode = R92S_VCS_MODE_RTS_CTS; 2662287897Sadrian dmem->turbo_mode = 0; 2663287947Sadrian dmem->bw40_en = !! (ic->ic_htcaps & IEEE80211_HTCAP_CHWIDTH40); 2664287947Sadrian dmem->amsdu2ampdu_en = !! (sc->sc_ht); 2665287947Sadrian dmem->ampdu_en = !! (sc->sc_ht); 2666287947Sadrian dmem->agg_offload = !! (sc->sc_ht); 2667287909Sadrian dmem->qos_en = 1; 2668288089Sadrian dmem->ps_offload = 1; 2669288089Sadrian dmem->lowpower_mode = 1; /* XXX TODO: configurable? */ 2670253789Srpaulo /* Load DMEM section. */ 2671253789Srpaulo error = rsu_fw_loadsection(sc, (uint8_t *)dmem, sizeof(*dmem)); 2672253789Srpaulo if (error != 0) { 2673253789Srpaulo device_printf(sc->sc_dev, 2674253789Srpaulo "could not load firmware section %s\n", "DMEM"); 2675253789Srpaulo goto fail; 2676253789Srpaulo } 2677253789Srpaulo /* Wait for load to complete. */ 2678253789Srpaulo for (ntries = 0; ntries < 100; ntries++) { 2679267041Shselasky if (rsu_read_1(sc, R92S_TCR) & R92S_TCR_DMEM_CODE_DONE) 2680253789Srpaulo break; 2681287892Sadrian rsu_ms_delay(sc, 1); 2682253789Srpaulo } 2683253789Srpaulo if (ntries == 100) { 2684253789Srpaulo device_printf(sc->sc_dev, "timeout waiting for %s transfer\n", 2685253789Srpaulo "DMEM"); 2686253789Srpaulo error = ETIMEDOUT; 2687253789Srpaulo goto fail; 2688253789Srpaulo } 2689253789Srpaulo /* Wait for firmware readiness. */ 2690253789Srpaulo for (ntries = 0; ntries < 60; ntries++) { 2691267041Shselasky if (!(rsu_read_1(sc, R92S_TCR) & R92S_TCR_FWRDY)) 2692253789Srpaulo break; 2693287892Sadrian rsu_ms_delay(sc, 1); 2694253789Srpaulo } 2695253789Srpaulo if (ntries == 60) { 2696253789Srpaulo device_printf(sc->sc_dev, 2697253789Srpaulo "timeout waiting for firmware readiness\n"); 2698253789Srpaulo error = ETIMEDOUT; 2699253789Srpaulo goto fail; 2700253789Srpaulo } 2701253789Srpaulo fail: 2702253789Srpaulo firmware_put(fw, FIRMWARE_UNLOAD); 2703253789Srpaulo return (error); 2704253789Srpaulo} 2705253789Srpaulo 2706253789Srpaulo 2707253789Srpaulostatic int 2708253789Srpaulorsu_raw_xmit(struct ieee80211_node *ni, struct mbuf *m, 2709253789Srpaulo const struct ieee80211_bpf_params *params) 2710253789Srpaulo{ 2711253789Srpaulo struct ieee80211com *ic = ni->ni_ic; 2712286950Sadrian struct rsu_softc *sc = ic->ic_softc; 2713253789Srpaulo struct rsu_data *bf; 2714253789Srpaulo 2715253789Srpaulo /* prevent management frames from being sent if we're not ready */ 2716287197Sglebius if (!sc->sc_running) { 2717253789Srpaulo m_freem(m); 2718253789Srpaulo ieee80211_free_node(ni); 2719253789Srpaulo return (ENETDOWN); 2720253789Srpaulo } 2721253789Srpaulo RSU_LOCK(sc); 2722253789Srpaulo bf = rsu_getbuf(sc); 2723253789Srpaulo if (bf == NULL) { 2724253789Srpaulo ieee80211_free_node(ni); 2725253789Srpaulo m_freem(m); 2726253789Srpaulo RSU_UNLOCK(sc); 2727253789Srpaulo return (ENOBUFS); 2728253789Srpaulo } 2729266505Shselasky if (rsu_tx_start(sc, ni, m, bf) != 0) { 2730253789Srpaulo ieee80211_free_node(ni); 2731288257Sadrian m_freem(m); 2732287953Sadrian rsu_freebuf(sc, bf); 2733253789Srpaulo RSU_UNLOCK(sc); 2734253789Srpaulo return (EIO); 2735253789Srpaulo } 2736253789Srpaulo RSU_UNLOCK(sc); 2737253789Srpaulo 2738253789Srpaulo return (0); 2739253789Srpaulo} 2740253789Srpaulo 2741253789Srpaulostatic void 2742287197Sglebiusrsu_init(struct rsu_softc *sc) 2743253789Srpaulo{ 2744287197Sglebius struct ieee80211com *ic = &sc->sc_ic; 2745287197Sglebius struct ieee80211vap *vap = TAILQ_FIRST(&ic->ic_vaps); 2746287197Sglebius uint8_t macaddr[IEEE80211_ADDR_LEN]; 2747253789Srpaulo int error; 2748266535Shselasky int i; 2749253789Srpaulo 2750287197Sglebius RSU_ASSERT_LOCKED(sc); 2751287197Sglebius 2752288051Sadrian /* Ensure the mbuf queue is drained */ 2753288051Sadrian rsu_drain_mbufq(sc); 2754288051Sadrian 2755253789Srpaulo /* Init host async commands ring. */ 2756253789Srpaulo sc->cmdq.cur = sc->cmdq.next = sc->cmdq.queued = 0; 2757253789Srpaulo 2758288089Sadrian /* Reset power management state. */ 2759288089Sadrian rsu_write_1(sc, R92S_USB_HRPWM, 0); 2760288089Sadrian 2761253789Srpaulo /* Power on adapter. */ 2762253789Srpaulo if (sc->cut == 1) 2763253789Srpaulo rsu_power_on_acut(sc); 2764253789Srpaulo else 2765253789Srpaulo rsu_power_on_bcut(sc); 2766267041Shselasky 2767253789Srpaulo /* Load firmware. */ 2768253789Srpaulo error = rsu_load_firmware(sc); 2769253789Srpaulo if (error != 0) 2770253789Srpaulo goto fail; 2771253789Srpaulo 2772253789Srpaulo /* Enable Rx TCP checksum offload. */ 2773253789Srpaulo rsu_write_4(sc, R92S_RCR, 2774253789Srpaulo rsu_read_4(sc, R92S_RCR) | 0x04000000); 2775253789Srpaulo /* Append PHY status. */ 2776253789Srpaulo rsu_write_4(sc, R92S_RCR, 2777253789Srpaulo rsu_read_4(sc, R92S_RCR) | 0x02000000); 2778253789Srpaulo 2779253789Srpaulo rsu_write_4(sc, R92S_CR, 2780253789Srpaulo rsu_read_4(sc, R92S_CR) & ~0xff000000); 2781253789Srpaulo 2782253789Srpaulo /* Use 128 bytes pages. */ 2783253789Srpaulo rsu_write_1(sc, 0x00b5, 2784253789Srpaulo rsu_read_1(sc, 0x00b5) | 0x01); 2785253789Srpaulo /* Enable USB Rx aggregation. */ 2786253789Srpaulo rsu_write_1(sc, 0x00bd, 2787253789Srpaulo rsu_read_1(sc, 0x00bd) | 0x80); 2788253789Srpaulo /* Set USB Rx aggregation threshold. */ 2789253789Srpaulo rsu_write_1(sc, 0x00d9, 0x01); 2790253789Srpaulo /* Set USB Rx aggregation timeout (1.7ms/4). */ 2791253789Srpaulo rsu_write_1(sc, 0xfe5b, 0x04); 2792253789Srpaulo /* Fix USB Rx FIFO issue. */ 2793253789Srpaulo rsu_write_1(sc, 0xfe5c, 2794253789Srpaulo rsu_read_1(sc, 0xfe5c) | 0x80); 2795253789Srpaulo 2796253789Srpaulo /* Set MAC address. */ 2797287197Sglebius IEEE80211_ADDR_COPY(macaddr, vap ? vap->iv_myaddr : ic->ic_macaddr); 2798287197Sglebius rsu_write_region_1(sc, R92S_MACID, macaddr, IEEE80211_ADDR_LEN); 2799253789Srpaulo 2800266471Shselasky /* It really takes 1.5 seconds for the firmware to boot: */ 2801287892Sadrian rsu_ms_delay(sc, 2000); 2802253789Srpaulo 2803287727Sadrian RSU_DPRINTF(sc, RSU_DEBUG_RESET, "%s: setting MAC address to %s\n", 2804287727Sadrian __func__, 2805287727Sadrian ether_sprintf(macaddr)); 2806287197Sglebius error = rsu_fw_cmd(sc, R92S_CMD_SET_MAC_ADDRESS, macaddr, 2807253789Srpaulo IEEE80211_ADDR_LEN); 2808253789Srpaulo if (error != 0) { 2809253789Srpaulo device_printf(sc->sc_dev, "could not set MAC address\n"); 2810253789Srpaulo goto fail; 2811253789Srpaulo } 2812253789Srpaulo 2813288089Sadrian /* Set PS mode fully active */ 2814288089Sadrian error = rsu_set_fw_power_state(sc, RSU_PWR_ACTIVE); 2815253789Srpaulo 2816253789Srpaulo if (error != 0) { 2817253789Srpaulo device_printf(sc->sc_dev, "could not set PS mode\n"); 2818253789Srpaulo goto fail; 2819253789Srpaulo } 2820253789Srpaulo 2821287197Sglebius sc->sc_scan_pass = 0; 2822253789Srpaulo usbd_transfer_start(sc->sc_xfer[RSU_BULK_RX]); 2823253789Srpaulo 2824253789Srpaulo /* We're ready to go. */ 2825287197Sglebius sc->sc_running = 1; 2826287954Sadrian sc->sc_scanning = 0; 2827253789Srpaulo return; 2828253789Srpaulofail: 2829266535Shselasky /* Need to stop all failed transfers, if any */ 2830266535Shselasky for (i = 0; i != RSU_N_TRANSFER; i++) 2831266535Shselasky usbd_transfer_stop(sc->sc_xfer[i]); 2832253789Srpaulo} 2833253789Srpaulo 2834253789Srpaulostatic void 2835287197Sglebiusrsu_stop(struct rsu_softc *sc) 2836253789Srpaulo{ 2837253789Srpaulo int i; 2838253789Srpaulo 2839288094Sadrian RSU_ASSERT_LOCKED(sc); 2840288094Sadrian 2841287197Sglebius sc->sc_running = 0; 2842253789Srpaulo sc->sc_calibrating = 0; 2843253789Srpaulo taskqueue_cancel_timeout(taskqueue_thread, &sc->calib_task, NULL); 2844288052Sadrian taskqueue_cancel(taskqueue_thread, &sc->tx_task, NULL); 2845253789Srpaulo 2846253789Srpaulo /* Power off adapter. */ 2847253789Srpaulo rsu_power_off(sc); 2848253789Srpaulo 2849253789Srpaulo for (i = 0; i < RSU_N_TRANSFER; i++) 2850253789Srpaulo usbd_transfer_stop(sc->sc_xfer[i]); 2851288051Sadrian 2852288051Sadrian /* Ensure the mbuf queue is drained */ 2853288051Sadrian rsu_drain_mbufq(sc); 2854253789Srpaulo} 2855253789Srpaulo 2856287892Sadrian/* 2857287892Sadrian * Note: usb_pause_mtx() actually releases the mutex before calling pause(), 2858287892Sadrian * which breaks any kind of driver serialisation. 2859287892Sadrian */ 2860266471Shselaskystatic void 2861287892Sadrianrsu_ms_delay(struct rsu_softc *sc, int ms) 2862266471Shselasky{ 2863287892Sadrian 2864287892Sadrian //usb_pause_mtx(&sc->sc_mtx, hz / 1000); 2865287892Sadrian DELAY(ms * 1000); 2866266471Shselasky} 2867