2 * Copyright (c) 2006 Damien Bergamini <damien.bergamini@free.fr>
3 * Copyright (c) 2006 Sam Leffler, Errno Consulting
4 * Copyright (c) 2007 Christoph Hellwig <hch@lst.de>
5 * Copyright (c) 2008-2009 Weongyo Jeong <weongyo@freebsd.org>
6 * Copyright (c) 2012 Pontus Fuchs <pontus.fuchs@gmail.com>
8 * Permission to use, copy, modify, and/or distribute this software for any
9 * purpose with or without fee is hereby granted, provided that the above
10 * copyright notice and this permission notice appear in all copies.
12 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
13 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
14 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
15 * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
16 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
17 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
18 * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
22 * This driver is based on the uath driver written by Damien Bergamini for
23 * OpenBSD, who did black-box analysis of the Windows binary driver to find
24 * out how the hardware works. It contains a lot magic numbers because of
25 * that and only has minimal functionality.
27 #include <linux/compiler.h>
28 #include <linux/kernel.h>
29 #include <linux/module.h>
30 #include <linux/list.h>
31 #include <linux/completion.h>
32 #include <linux/firmware.h>
33 #include <linux/skbuff.h>
34 #include <linux/usb.h>
35 #include <net/mac80211.h>
38 #include "ar5523_hw.h"
41 * Various supported device vendors/products.
42 * UB51: AR5005UG 802.11b/g, UB52: AR5005UX 802.11a/b/g
45 static int ar5523_submit_rx_cmd(struct ar5523 *ar);
46 static void ar5523_data_tx_pkt_put(struct ar5523 *ar);
48 static void ar5523_read_reply(struct ar5523 *ar, struct ar5523_cmd_hdr *hdr,
49 struct ar5523_tx_cmd *cmd)
54 dlen = be32_to_cpu(hdr->len) - sizeof(*hdr);
61 ar5523_dbg(ar, "Code = %d len = %d\n", be32_to_cpu(hdr->code) & 0xff,
64 rp = (__be32 *)(hdr + 1);
65 if (dlen >= sizeof(u32)) {
66 olen = be32_to_cpu(rp[0]);
69 /* convention is 0 =>'s one word */
76 if (cmd->olen < olen) {
77 ar5523_err(ar, "olen to small %d < %d\n",
80 cmd->res = -EOVERFLOW;
83 memcpy(cmd->odata, &rp[1], olen);
92 static void ar5523_cmd_rx_cb(struct urb *urb)
94 struct ar5523 *ar = urb->context;
95 struct ar5523_tx_cmd *cmd = &ar->tx_cmd;
96 struct ar5523_cmd_hdr *hdr = ar->rx_cmd_buf;
101 if (urb->status != -ESHUTDOWN)
102 ar5523_err(ar, "RX USB error %d.\n", urb->status);
106 if (urb->actual_length < sizeof(struct ar5523_cmd_hdr)) {
107 ar5523_err(ar, "RX USB to short.\n");
111 ar5523_dbg(ar, "%s code %02x priv %d\n", __func__,
112 be32_to_cpu(hdr->code) & 0xff, hdr->priv);
114 code = be32_to_cpu(hdr->code);
115 hdrlen = be32_to_cpu(hdr->len);
117 switch (code & 0xff) {
119 /* reply to a read command */
120 if (hdr->priv != AR5523_CMD_ID) {
121 ar5523_err(ar, "Unexpected command id: %02x\n",
125 ar5523_read_reply(ar, hdr, cmd);
128 case WDCMSG_DEVICE_AVAIL:
129 ar5523_dbg(ar, "WDCMSG_DEVICE_AVAIL\n");
132 complete(&cmd->done);
135 case WDCMSG_SEND_COMPLETE:
136 ar5523_dbg(ar, "WDCMSG_SEND_COMPLETE: %d pending\n",
137 atomic_read(&ar->tx_nr_pending));
138 if (!test_bit(AR5523_HW_UP, &ar->flags))
139 ar5523_dbg(ar, "Unexpected WDCMSG_SEND_COMPLETE\n");
141 mod_timer(&ar->tx_wd_timer,
142 jiffies + AR5523_TX_WD_TIMEOUT);
143 ar5523_data_tx_pkt_put(ar);
148 case WDCMSG_TARGET_START:
149 /* This command returns a bogus id so it needs special
151 dlen = hdrlen - sizeof(*hdr);
152 if (dlen != (int)sizeof(u32)) {
153 ar5523_err(ar, "Invalid reply to WDCMSG_TARGET_START");
157 ar5523_err(ar, "Unexpected WDCMSG_TARGET_START reply");
160 memcpy(cmd->odata, hdr + 1, sizeof(u32));
161 cmd->olen = sizeof(u32);
163 complete(&cmd->done);
166 case WDCMSG_STATS_UPDATE:
167 ar5523_dbg(ar, "WDCMSG_STATS_UPDATE\n");
172 ar5523_submit_rx_cmd(ar);
175 static int ar5523_alloc_rx_cmd(struct ar5523 *ar)
177 ar->rx_cmd_urb = usb_alloc_urb(0, GFP_KERNEL);
181 ar->rx_cmd_buf = usb_alloc_coherent(ar->dev, AR5523_MAX_RXCMDSZ,
183 &ar->rx_cmd_urb->transfer_dma);
184 if (!ar->rx_cmd_buf) {
185 usb_free_urb(ar->rx_cmd_urb);
191 static void ar5523_cancel_rx_cmd(struct ar5523 *ar)
193 usb_kill_urb(ar->rx_cmd_urb);
196 static void ar5523_free_rx_cmd(struct ar5523 *ar)
198 usb_free_coherent(ar->dev, AR5523_MAX_RXCMDSZ,
199 ar->rx_cmd_buf, ar->rx_cmd_urb->transfer_dma);
200 usb_free_urb(ar->rx_cmd_urb);
203 static int ar5523_submit_rx_cmd(struct ar5523 *ar)
207 usb_fill_bulk_urb(ar->rx_cmd_urb, ar->dev,
208 ar5523_cmd_rx_pipe(ar->dev), ar->rx_cmd_buf,
209 AR5523_MAX_RXCMDSZ, ar5523_cmd_rx_cb, ar);
210 ar->rx_cmd_urb->transfer_flags |= URB_NO_TRANSFER_DMA_MAP;
212 error = usb_submit_urb(ar->rx_cmd_urb, GFP_ATOMIC);
214 if (error != -ENODEV)
215 ar5523_err(ar, "error %d when submitting rx urb\n",
223 * Command submitted cb
225 static void ar5523_cmd_tx_cb(struct urb *urb)
227 struct ar5523_tx_cmd *cmd = urb->context;
228 struct ar5523 *ar = cmd->ar;
231 ar5523_err(ar, "Failed to TX command. Status = %d\n",
233 cmd->res = urb->status;
234 complete(&cmd->done);
238 if (!(cmd->flags & AR5523_CMD_FLAG_READ)) {
240 complete(&cmd->done);
244 static void ar5523_cancel_tx_cmd(struct ar5523 *ar)
246 usb_kill_urb(ar->tx_cmd.urb_tx);
249 static int ar5523_cmd(struct ar5523 *ar, u32 code, const void *idata,
250 int ilen, void *odata, int olen, int flags)
252 struct ar5523_cmd_hdr *hdr;
253 struct ar5523_tx_cmd *cmd = &ar->tx_cmd;
256 /* always bulk-out a multiple of 4 bytes */
257 xferlen = (sizeof(struct ar5523_cmd_hdr) + ilen + 3) & ~3;
259 hdr = (struct ar5523_cmd_hdr *)cmd->buf_tx;
260 memset(hdr, 0, sizeof(struct ar5523_cmd_hdr));
261 hdr->len = cpu_to_be32(xferlen);
262 hdr->code = cpu_to_be32(code);
263 hdr->priv = AR5523_CMD_ID;
265 if (flags & AR5523_CMD_FLAG_MAGIC)
266 hdr->magic = cpu_to_be32(1 << 24);
268 memcpy(hdr + 1, idata, ilen);
274 ar5523_dbg(ar, "do cmd %02x\n", code);
276 usb_fill_bulk_urb(cmd->urb_tx, ar->dev, ar5523_cmd_tx_pipe(ar->dev),
277 cmd->buf_tx, xferlen, ar5523_cmd_tx_cb, cmd);
278 cmd->urb_tx->transfer_flags |= URB_NO_TRANSFER_DMA_MAP;
280 error = usb_submit_urb(cmd->urb_tx, GFP_KERNEL);
282 ar5523_err(ar, "could not send command 0x%x, error=%d\n",
287 if (!wait_for_completion_timeout(&cmd->done, 2 * HZ)) {
288 ar5523_cancel_tx_cmd(ar);
290 ar5523_err(ar, "timeout waiting for command %02x reply\n",
292 cmd->res = -ETIMEDOUT;
297 static int ar5523_cmd_write(struct ar5523 *ar, u32 code, const void *data,
300 flags &= ~AR5523_CMD_FLAG_READ;
301 return ar5523_cmd(ar, code, data, len, NULL, 0, flags);
304 static int ar5523_cmd_read(struct ar5523 *ar, u32 code, const void *idata,
305 int ilen, void *odata, int olen, int flags)
307 flags |= AR5523_CMD_FLAG_READ;
308 return ar5523_cmd(ar, code, idata, ilen, odata, olen, flags);
311 static int ar5523_config(struct ar5523 *ar, u32 reg, u32 val)
313 struct ar5523_write_mac write;
316 write.reg = cpu_to_be32(reg);
317 write.len = cpu_to_be32(0); /* 0 = single write */
318 *(__be32 *)write.data = cpu_to_be32(val);
320 error = ar5523_cmd_write(ar, WDCMSG_TARGET_SET_CONFIG, &write,
323 ar5523_err(ar, "could not write register 0x%02x\n", reg);
327 static int ar5523_config_multi(struct ar5523 *ar, u32 reg, const void *data,
330 struct ar5523_write_mac write;
333 write.reg = cpu_to_be32(reg);
334 write.len = cpu_to_be32(len);
335 memcpy(write.data, data, len);
337 /* properly handle the case where len is zero (reset) */
338 error = ar5523_cmd_write(ar, WDCMSG_TARGET_SET_CONFIG, &write,
339 (len == 0) ? sizeof(u32) : 2 * sizeof(u32) + len, 0);
341 ar5523_err(ar, "could not write %d bytes to register 0x%02x\n",
346 static int ar5523_get_status(struct ar5523 *ar, u32 which, void *odata,
352 which_be = cpu_to_be32(which);
353 error = ar5523_cmd_read(ar, WDCMSG_TARGET_GET_STATUS,
354 &which_be, sizeof(which_be), odata, olen, AR5523_CMD_FLAG_MAGIC);
356 ar5523_err(ar, "could not read EEPROM offset 0x%02x\n", which);
360 static int ar5523_get_capability(struct ar5523 *ar, u32 cap, u32 *val)
363 __be32 cap_be, val_be;
365 cap_be = cpu_to_be32(cap);
366 error = ar5523_cmd_read(ar, WDCMSG_TARGET_GET_CAPABILITY, &cap_be,
367 sizeof(cap_be), &val_be, sizeof(__be32),
368 AR5523_CMD_FLAG_MAGIC);
370 ar5523_err(ar, "could not read capability %u\n", cap);
373 *val = be32_to_cpu(val_be);
377 static int ar5523_get_devcap(struct ar5523 *ar)
379 #define GETCAP(x) do { \
380 error = ar5523_get_capability(ar, x, &cap); \
383 ar5523_info(ar, "Cap: " \
384 "%s=0x%08x\n", #x, cap); \
389 /* collect device capabilities */
390 GETCAP(CAP_TARGET_VERSION);
391 GETCAP(CAP_TARGET_REVISION);
392 GETCAP(CAP_MAC_VERSION);
393 GETCAP(CAP_MAC_REVISION);
394 GETCAP(CAP_PHY_REVISION);
395 GETCAP(CAP_ANALOG_5GHz_REVISION);
396 GETCAP(CAP_ANALOG_2GHz_REVISION);
398 GETCAP(CAP_REG_DOMAIN);
399 GETCAP(CAP_REG_CAP_BITS);
400 GETCAP(CAP_WIRELESS_MODES);
401 GETCAP(CAP_CHAN_SPREAD_SUPPORT);
402 GETCAP(CAP_COMPRESS_SUPPORT);
403 GETCAP(CAP_BURST_SUPPORT);
404 GETCAP(CAP_FAST_FRAMES_SUPPORT);
405 GETCAP(CAP_CHAP_TUNING_SUPPORT);
406 GETCAP(CAP_TURBOG_SUPPORT);
407 GETCAP(CAP_TURBO_PRIME_SUPPORT);
408 GETCAP(CAP_DEVICE_TYPE);
409 GETCAP(CAP_WME_SUPPORT);
410 GETCAP(CAP_TOTAL_QUEUES);
411 GETCAP(CAP_CONNECTION_ID_MAX);
413 GETCAP(CAP_LOW_5GHZ_CHAN);
414 GETCAP(CAP_HIGH_5GHZ_CHAN);
415 GETCAP(CAP_LOW_2GHZ_CHAN);
416 GETCAP(CAP_HIGH_2GHZ_CHAN);
417 GETCAP(CAP_TWICE_ANTENNAGAIN_5G);
418 GETCAP(CAP_TWICE_ANTENNAGAIN_2G);
420 GETCAP(CAP_CIPHER_AES_CCM);
421 GETCAP(CAP_CIPHER_TKIP);
422 GETCAP(CAP_MIC_TKIP);
426 static int ar5523_set_ledsteady(struct ar5523 *ar, int lednum, int ledmode)
428 struct ar5523_cmd_ledsteady led;
430 led.lednum = cpu_to_be32(lednum);
431 led.ledmode = cpu_to_be32(ledmode);
433 ar5523_dbg(ar, "set %s led %s (steady)\n",
434 (lednum == UATH_LED_LINK) ? "link" : "activity",
435 ledmode ? "on" : "off");
436 return ar5523_cmd_write(ar, WDCMSG_SET_LED_STEADY, &led, sizeof(led),
440 static int ar5523_set_rxfilter(struct ar5523 *ar, u32 bits, u32 op)
442 struct ar5523_cmd_rx_filter rxfilter;
444 rxfilter.bits = cpu_to_be32(bits);
445 rxfilter.op = cpu_to_be32(op);
447 ar5523_dbg(ar, "setting Rx filter=0x%x flags=0x%x\n", bits, op);
448 return ar5523_cmd_write(ar, WDCMSG_RX_FILTER, &rxfilter,
449 sizeof(rxfilter), 0);
452 static int ar5523_reset_tx_queues(struct ar5523 *ar)
454 __be32 qid = cpu_to_be32(0);
456 ar5523_dbg(ar, "resetting Tx queue\n");
457 return ar5523_cmd_write(ar, WDCMSG_RELEASE_TX_QUEUE,
458 &qid, sizeof(qid), 0);
461 static int ar5523_set_chan(struct ar5523 *ar)
463 struct ieee80211_conf *conf = &ar->hw->conf;
465 struct ar5523_cmd_reset reset;
467 memset(&reset, 0, sizeof(reset));
468 reset.flags |= cpu_to_be32(UATH_CHAN_2GHZ);
469 reset.flags |= cpu_to_be32(UATH_CHAN_OFDM);
470 reset.freq = cpu_to_be32(conf->chandef.chan->center_freq);
471 reset.maxrdpower = cpu_to_be32(50); /* XXX */
472 reset.channelchange = cpu_to_be32(1);
473 reset.keeprccontent = cpu_to_be32(0);
475 ar5523_dbg(ar, "set chan flags 0x%x freq %d\n",
476 be32_to_cpu(reset.flags),
477 conf->chandef.chan->center_freq);
478 return ar5523_cmd_write(ar, WDCMSG_RESET, &reset, sizeof(reset), 0);
481 static int ar5523_queue_init(struct ar5523 *ar)
483 struct ar5523_cmd_txq_setup qinfo;
485 ar5523_dbg(ar, "setting up Tx queue\n");
486 qinfo.qid = cpu_to_be32(0);
487 qinfo.len = cpu_to_be32(sizeof(qinfo.attr));
488 qinfo.attr.priority = cpu_to_be32(0); /* XXX */
489 qinfo.attr.aifs = cpu_to_be32(3);
490 qinfo.attr.logcwmin = cpu_to_be32(4);
491 qinfo.attr.logcwmax = cpu_to_be32(10);
492 qinfo.attr.bursttime = cpu_to_be32(0);
493 qinfo.attr.mode = cpu_to_be32(0);
494 qinfo.attr.qflags = cpu_to_be32(1); /* XXX? */
495 return ar5523_cmd_write(ar, WDCMSG_SETUP_TX_QUEUE, &qinfo,
499 static int ar5523_switch_chan(struct ar5523 *ar)
503 error = ar5523_set_chan(ar);
505 ar5523_err(ar, "could not set chan, error %d\n", error);
510 error = ar5523_reset_tx_queues(ar);
512 ar5523_err(ar, "could not reset Tx queues, error %d\n",
516 /* set Tx rings WME properties */
517 error = ar5523_queue_init(ar);
519 ar5523_err(ar, "could not init wme, error %d\n", error);
525 static void ar5523_rx_data_put(struct ar5523 *ar,
526 struct ar5523_rx_data *data)
529 spin_lock_irqsave(&ar->rx_data_list_lock, flags);
530 list_move(&data->list, &ar->rx_data_free);
531 spin_unlock_irqrestore(&ar->rx_data_list_lock, flags);
534 static void ar5523_data_rx_cb(struct urb *urb)
536 struct ar5523_rx_data *data = urb->context;
537 struct ar5523 *ar = data->ar;
538 struct ar5523_rx_desc *desc;
539 struct ar5523_chunk *chunk;
540 struct ieee80211_hw *hw = ar->hw;
541 struct ieee80211_rx_status *rx_status;
543 int usblen = urb->actual_length;
546 ar5523_dbg(ar, "%s\n", __func__);
547 /* sync/async unlink faults aren't errors */
549 if (urb->status != -ESHUTDOWN)
550 ar5523_err(ar, "%s: USB err: %d\n", __func__,
555 if (usblen < AR5523_MIN_RXBUFSZ) {
556 ar5523_err(ar, "RX: wrong xfer size (usblen=%d)\n", usblen);
560 chunk = (struct ar5523_chunk *) data->skb->data;
562 if (((chunk->flags & UATH_CFLAGS_FINAL) == 0) ||
563 chunk->seqnum != 0) {
564 ar5523_dbg(ar, "RX: No final flag. s: %d f: %02x l: %d\n",
565 chunk->seqnum, chunk->flags,
566 be16_to_cpu(chunk->length));
570 /* Rx descriptor is located at the end, 32-bit aligned */
571 desc = (struct ar5523_rx_desc *)
572 (data->skb->data + usblen - sizeof(struct ar5523_rx_desc));
574 rxlen = be32_to_cpu(desc->len);
575 if (rxlen > ar->rxbufsz) {
576 ar5523_dbg(ar, "RX: Bad descriptor (len=%d)\n",
577 be32_to_cpu(desc->len));
582 ar5523_dbg(ar, "RX: rxlen is 0\n");
586 if (be32_to_cpu(desc->status) != 0) {
587 ar5523_dbg(ar, "Bad RX status (0x%x len = %d). Skip\n",
588 be32_to_cpu(desc->status), be32_to_cpu(desc->len));
592 skb_reserve(data->skb, sizeof(*chunk));
593 skb_put(data->skb, rxlen - sizeof(struct ar5523_rx_desc));
595 hdrlen = ieee80211_get_hdrlen_from_skb(data->skb);
596 if (!IS_ALIGNED(hdrlen, 4)) {
597 ar5523_dbg(ar, "eek, alignment workaround activated\n");
598 pad = ALIGN(hdrlen, 4) - hdrlen;
599 memmove(data->skb->data + pad, data->skb->data, hdrlen);
600 skb_pull(data->skb, pad);
601 skb_put(data->skb, pad);
604 rx_status = IEEE80211_SKB_RXCB(data->skb);
605 memset(rx_status, 0, sizeof(*rx_status));
606 rx_status->freq = be32_to_cpu(desc->channel);
607 rx_status->band = hw->conf.chandef.chan->band;
608 rx_status->signal = -95 + be32_to_cpu(desc->rssi);
610 ieee80211_rx_irqsafe(hw, data->skb);
615 dev_kfree_skb_irq(data->skb);
619 ar5523_rx_data_put(ar, data);
620 if (atomic_inc_return(&ar->rx_data_free_cnt) >=
621 AR5523_RX_DATA_REFILL_COUNT &&
622 test_bit(AR5523_HW_UP, &ar->flags))
623 queue_work(ar->wq, &ar->rx_refill_work);
626 static void ar5523_rx_refill_work(struct work_struct *work)
628 struct ar5523 *ar = container_of(work, struct ar5523, rx_refill_work);
629 struct ar5523_rx_data *data;
633 ar5523_dbg(ar, "%s\n", __func__);
635 spin_lock_irqsave(&ar->rx_data_list_lock, flags);
637 if (!list_empty(&ar->rx_data_free))
638 data = (struct ar5523_rx_data *) ar->rx_data_free.next;
641 spin_unlock_irqrestore(&ar->rx_data_list_lock, flags);
646 data->skb = alloc_skb(ar->rxbufsz, GFP_KERNEL);
648 ar5523_err(ar, "could not allocate rx skbuff\n");
652 usb_fill_bulk_urb(data->urb, ar->dev,
653 ar5523_data_rx_pipe(ar->dev), data->skb->data,
654 ar->rxbufsz, ar5523_data_rx_cb, data);
656 spin_lock_irqsave(&ar->rx_data_list_lock, flags);
657 list_move(&data->list, &ar->rx_data_used);
658 spin_unlock_irqrestore(&ar->rx_data_list_lock, flags);
659 atomic_dec(&ar->rx_data_free_cnt);
661 error = usb_submit_urb(data->urb, GFP_KERNEL);
663 kfree_skb(data->skb);
664 if (error != -ENODEV)
665 ar5523_err(ar, "Err sending rx data urb %d\n",
667 ar5523_rx_data_put(ar, data);
668 atomic_inc(&ar->rx_data_free_cnt);
677 static void ar5523_cancel_rx_bufs(struct ar5523 *ar)
679 struct ar5523_rx_data *data;
683 spin_lock_irqsave(&ar->rx_data_list_lock, flags);
684 if (!list_empty(&ar->rx_data_used))
685 data = (struct ar5523_rx_data *) ar->rx_data_used.next;
688 spin_unlock_irqrestore(&ar->rx_data_list_lock, flags);
693 usb_kill_urb(data->urb);
694 list_move(&data->list, &ar->rx_data_free);
695 atomic_inc(&ar->rx_data_free_cnt);
699 static void ar5523_free_rx_bufs(struct ar5523 *ar)
701 struct ar5523_rx_data *data;
703 ar5523_cancel_rx_bufs(ar);
704 while (!list_empty(&ar->rx_data_free)) {
705 data = (struct ar5523_rx_data *) ar->rx_data_free.next;
706 list_del(&data->list);
707 usb_free_urb(data->urb);
711 static int ar5523_alloc_rx_bufs(struct ar5523 *ar)
715 for (i = 0; i < AR5523_RX_DATA_COUNT; i++) {
716 struct ar5523_rx_data *data = &ar->rx_data[i];
719 data->urb = usb_alloc_urb(0, GFP_KERNEL);
722 list_add_tail(&data->list, &ar->rx_data_free);
723 atomic_inc(&ar->rx_data_free_cnt);
728 ar5523_free_rx_bufs(ar);
732 static void ar5523_data_tx_pkt_put(struct ar5523 *ar)
734 atomic_dec(&ar->tx_nr_total);
735 if (!atomic_dec_return(&ar->tx_nr_pending)) {
736 del_timer(&ar->tx_wd_timer);
737 wake_up(&ar->tx_flush_waitq);
740 if (atomic_read(&ar->tx_nr_total) < AR5523_TX_DATA_RESTART_COUNT) {
741 ar5523_dbg(ar, "restart tx queue\n");
742 ieee80211_wake_queues(ar->hw);
746 static void ar5523_data_tx_cb(struct urb *urb)
748 struct sk_buff *skb = urb->context;
749 struct ieee80211_tx_info *txi = IEEE80211_SKB_CB(skb);
750 struct ar5523_tx_data *data = (struct ar5523_tx_data *)
752 struct ar5523 *ar = data->ar;
755 ar5523_dbg(ar, "data tx urb completed: %d\n", urb->status);
757 spin_lock_irqsave(&ar->tx_data_list_lock, flags);
758 list_del(&data->list);
759 spin_unlock_irqrestore(&ar->tx_data_list_lock, flags);
762 ar5523_dbg(ar, "%s: urb status: %d\n", __func__, urb->status);
763 ar5523_data_tx_pkt_put(ar);
764 ieee80211_free_txskb(ar->hw, skb);
766 skb_pull(skb, sizeof(struct ar5523_tx_desc) + sizeof(__be32));
767 ieee80211_tx_status_irqsafe(ar->hw, skb);
772 static void ar5523_tx(struct ieee80211_hw *hw,
773 struct ieee80211_tx_control *control,
776 struct ieee80211_tx_info *txi = IEEE80211_SKB_CB(skb);
777 struct ar5523_tx_data *data = (struct ar5523_tx_data *)
779 struct ar5523 *ar = hw->priv;
782 ar5523_dbg(ar, "tx called\n");
783 if (atomic_inc_return(&ar->tx_nr_total) >= AR5523_TX_DATA_COUNT) {
784 ar5523_dbg(ar, "tx queue full\n");
785 ar5523_dbg(ar, "stop queues (tot %d pend %d)\n",
786 atomic_read(&ar->tx_nr_total),
787 atomic_read(&ar->tx_nr_pending));
788 ieee80211_stop_queues(hw);
791 spin_lock_irqsave(&ar->tx_data_list_lock, flags);
792 list_add_tail(&data->list, &ar->tx_queue_pending);
793 spin_unlock_irqrestore(&ar->tx_data_list_lock, flags);
795 ieee80211_queue_work(ar->hw, &ar->tx_work);
798 static void ar5523_tx_work_locked(struct ar5523 *ar)
800 struct ar5523_tx_data *data;
801 struct ar5523_tx_desc *desc;
802 struct ar5523_chunk *chunk;
803 struct ieee80211_tx_info *txi;
806 int error = 0, paylen;
810 BUILD_BUG_ON(sizeof(struct ar5523_tx_data) >
811 IEEE80211_TX_INFO_DRIVER_DATA_SIZE);
813 ar5523_dbg(ar, "%s\n", __func__);
815 spin_lock_irqsave(&ar->tx_data_list_lock, flags);
816 if (!list_empty(&ar->tx_queue_pending)) {
817 data = (struct ar5523_tx_data *)
818 ar->tx_queue_pending.next;
819 list_del(&data->list);
822 spin_unlock_irqrestore(&ar->tx_data_list_lock, flags);
827 txi = container_of((void *)data, struct ieee80211_tx_info,
831 skb = container_of((void *)txi, struct sk_buff, cb);
834 urb = usb_alloc_urb(0, GFP_KERNEL);
836 ieee80211_free_txskb(ar->hw, skb);
843 desc = skb_push(skb, sizeof(*desc));
844 chunk = skb_push(skb, sizeof(*chunk));
847 chunk->flags = UATH_CFLAGS_FINAL;
848 chunk->length = cpu_to_be16(skb->len);
850 desc->msglen = cpu_to_be32(skb->len);
851 desc->msgid = AR5523_DATA_ID;
852 desc->buflen = cpu_to_be32(paylen);
853 desc->type = cpu_to_be32(WDCMSG_SEND);
854 desc->flags = cpu_to_be32(UATH_TX_NOTIFY);
856 if (test_bit(AR5523_CONNECTED, &ar->flags))
857 desc->connid = cpu_to_be32(AR5523_ID_BSS);
859 desc->connid = cpu_to_be32(AR5523_ID_BROADCAST);
861 if (txi->flags & IEEE80211_TX_CTL_USE_MINRATE)
862 txqid |= UATH_TXQID_MINRATE;
864 desc->txqid = cpu_to_be32(txqid);
866 urb->transfer_flags = URB_ZERO_PACKET;
867 usb_fill_bulk_urb(urb, ar->dev, ar5523_data_tx_pipe(ar->dev),
868 skb->data, skb->len, ar5523_data_tx_cb, skb);
870 spin_lock_irqsave(&ar->tx_data_list_lock, flags);
871 list_add_tail(&data->list, &ar->tx_queue_submitted);
872 spin_unlock_irqrestore(&ar->tx_data_list_lock, flags);
873 mod_timer(&ar->tx_wd_timer, jiffies + AR5523_TX_WD_TIMEOUT);
874 atomic_inc(&ar->tx_nr_pending);
876 ar5523_dbg(ar, "TX Frame (%d pending)\n",
877 atomic_read(&ar->tx_nr_pending));
878 error = usb_submit_urb(urb, GFP_KERNEL);
880 ar5523_err(ar, "error %d when submitting tx urb\n",
882 spin_lock_irqsave(&ar->tx_data_list_lock, flags);
883 list_del(&data->list);
884 spin_unlock_irqrestore(&ar->tx_data_list_lock, flags);
885 atomic_dec(&ar->tx_nr_pending);
886 ar5523_data_tx_pkt_put(ar);
888 ieee80211_free_txskb(ar->hw, skb);
893 static void ar5523_tx_work(struct work_struct *work)
895 struct ar5523 *ar = container_of(work, struct ar5523, tx_work);
897 ar5523_dbg(ar, "%s\n", __func__);
898 mutex_lock(&ar->mutex);
899 ar5523_tx_work_locked(ar);
900 mutex_unlock(&ar->mutex);
903 static void ar5523_tx_wd_timer(unsigned long arg)
905 struct ar5523 *ar = (struct ar5523 *) arg;
907 ar5523_dbg(ar, "TX watchdog timer triggered\n");
908 ieee80211_queue_work(ar->hw, &ar->tx_wd_work);
911 static void ar5523_tx_wd_work(struct work_struct *work)
913 struct ar5523 *ar = container_of(work, struct ar5523, tx_wd_work);
915 /* Occasionally the TX queues stop responding. The only way to
916 * recover seems to be to reset the dongle.
919 mutex_lock(&ar->mutex);
920 ar5523_err(ar, "TX queue stuck (tot %d pend %d)\n",
921 atomic_read(&ar->tx_nr_total),
922 atomic_read(&ar->tx_nr_pending));
924 ar5523_err(ar, "Will restart dongle.\n");
925 ar5523_cmd_write(ar, WDCMSG_TARGET_RESET, NULL, 0, 0);
926 mutex_unlock(&ar->mutex);
929 static void ar5523_flush_tx(struct ar5523 *ar)
931 ar5523_tx_work_locked(ar);
933 /* Don't waste time trying to flush if USB is disconnected */
934 if (test_bit(AR5523_USB_DISCONNECTED, &ar->flags))
936 if (!wait_event_timeout(ar->tx_flush_waitq,
937 !atomic_read(&ar->tx_nr_pending), AR5523_FLUSH_TIMEOUT))
938 ar5523_err(ar, "flush timeout (tot %d pend %d)\n",
939 atomic_read(&ar->tx_nr_total),
940 atomic_read(&ar->tx_nr_pending));
943 static void ar5523_free_tx_cmd(struct ar5523 *ar)
945 struct ar5523_tx_cmd *cmd = &ar->tx_cmd;
947 usb_free_coherent(ar->dev, AR5523_MAX_RXCMDSZ, cmd->buf_tx,
948 cmd->urb_tx->transfer_dma);
949 usb_free_urb(cmd->urb_tx);
952 static int ar5523_alloc_tx_cmd(struct ar5523 *ar)
954 struct ar5523_tx_cmd *cmd = &ar->tx_cmd;
957 init_completion(&cmd->done);
959 cmd->urb_tx = usb_alloc_urb(0, GFP_KERNEL);
962 cmd->buf_tx = usb_alloc_coherent(ar->dev, AR5523_MAX_TXCMDSZ,
964 &cmd->urb_tx->transfer_dma);
966 usb_free_urb(cmd->urb_tx);
973 * This function is called periodically (every second) when associated to
974 * query device statistics.
976 static void ar5523_stat_work(struct work_struct *work)
978 struct ar5523 *ar = container_of(work, struct ar5523, stat_work.work);
981 ar5523_dbg(ar, "%s\n", __func__);
982 mutex_lock(&ar->mutex);
985 * Send request for statistics asynchronously once a second. This
986 * seems to be important. Throughput is a lot better if this is done.
988 error = ar5523_cmd_write(ar, WDCMSG_TARGET_GET_STATS, NULL, 0, 0);
990 ar5523_err(ar, "could not query stats, error %d\n", error);
991 mutex_unlock(&ar->mutex);
992 ieee80211_queue_delayed_work(ar->hw, &ar->stat_work, HZ);
996 * Interface routines to the mac80211 stack.
998 static int ar5523_start(struct ieee80211_hw *hw)
1000 struct ar5523 *ar = hw->priv;
1004 ar5523_dbg(ar, "start called\n");
1006 mutex_lock(&ar->mutex);
1007 val = cpu_to_be32(0);
1008 ar5523_cmd_write(ar, WDCMSG_BIND, &val, sizeof(val), 0);
1010 /* set MAC address */
1011 ar5523_config_multi(ar, CFG_MAC_ADDR, &ar->hw->wiphy->perm_addr,
1014 /* XXX honor net80211 state */
1015 ar5523_config(ar, CFG_RATE_CONTROL_ENABLE, 0x00000001);
1016 ar5523_config(ar, CFG_DIVERSITY_CTL, 0x00000001);
1017 ar5523_config(ar, CFG_ABOLT, 0x0000003f);
1018 ar5523_config(ar, CFG_WME_ENABLED, 0x00000000);
1020 ar5523_config(ar, CFG_SERVICE_TYPE, 1);
1021 ar5523_config(ar, CFG_TP_SCALE, 0x00000000);
1022 ar5523_config(ar, CFG_TPC_HALF_DBM5, 0x0000003c);
1023 ar5523_config(ar, CFG_TPC_HALF_DBM2, 0x0000003c);
1024 ar5523_config(ar, CFG_OVERRD_TX_POWER, 0x00000000);
1025 ar5523_config(ar, CFG_GMODE_PROTECTION, 0x00000000);
1026 ar5523_config(ar, CFG_GMODE_PROTECT_RATE_INDEX, 0x00000003);
1027 ar5523_config(ar, CFG_PROTECTION_TYPE, 0x00000000);
1028 ar5523_config(ar, CFG_MODE_CTS, 0x00000002);
1030 error = ar5523_cmd_read(ar, WDCMSG_TARGET_START, NULL, 0,
1031 &val, sizeof(val), AR5523_CMD_FLAG_MAGIC);
1033 ar5523_dbg(ar, "could not start target, error %d\n", error);
1036 ar5523_dbg(ar, "WDCMSG_TARGET_START returns handle: 0x%x\n",
1039 ar5523_switch_chan(ar);
1041 val = cpu_to_be32(TARGET_DEVICE_AWAKE);
1042 ar5523_cmd_write(ar, WDCMSG_SET_PWR_MODE, &val, sizeof(val), 0);
1044 ar5523_cmd_write(ar, WDCMSG_RESET_KEY_CACHE, NULL, 0, 0);
1046 set_bit(AR5523_HW_UP, &ar->flags);
1047 queue_work(ar->wq, &ar->rx_refill_work);
1050 ar5523_set_rxfilter(ar, 0, UATH_FILTER_OP_INIT);
1051 ar5523_set_rxfilter(ar,
1052 UATH_FILTER_RX_UCAST | UATH_FILTER_RX_MCAST |
1053 UATH_FILTER_RX_BCAST | UATH_FILTER_RX_BEACON,
1054 UATH_FILTER_OP_SET);
1056 ar5523_set_ledsteady(ar, UATH_LED_ACTIVITY, UATH_LED_ON);
1057 ar5523_dbg(ar, "start OK\n");
1060 mutex_unlock(&ar->mutex);
1064 static void ar5523_stop(struct ieee80211_hw *hw)
1066 struct ar5523 *ar = hw->priv;
1068 ar5523_dbg(ar, "stop called\n");
1070 cancel_delayed_work_sync(&ar->stat_work);
1071 mutex_lock(&ar->mutex);
1072 clear_bit(AR5523_HW_UP, &ar->flags);
1074 ar5523_set_ledsteady(ar, UATH_LED_LINK, UATH_LED_OFF);
1075 ar5523_set_ledsteady(ar, UATH_LED_ACTIVITY, UATH_LED_OFF);
1077 ar5523_cmd_write(ar, WDCMSG_TARGET_STOP, NULL, 0, 0);
1079 del_timer_sync(&ar->tx_wd_timer);
1080 cancel_work_sync(&ar->tx_wd_work);
1081 cancel_work_sync(&ar->rx_refill_work);
1082 ar5523_cancel_rx_bufs(ar);
1083 mutex_unlock(&ar->mutex);
1086 static int ar5523_set_rts_threshold(struct ieee80211_hw *hw, u32 value)
1088 struct ar5523 *ar = hw->priv;
1091 ar5523_dbg(ar, "set_rts_threshold called\n");
1092 mutex_lock(&ar->mutex);
1094 ret = ar5523_config(ar, CFG_USER_RTS_THRESHOLD, value);
1096 mutex_unlock(&ar->mutex);
1100 static void ar5523_flush(struct ieee80211_hw *hw, struct ieee80211_vif *vif,
1101 u32 queues, bool drop)
1103 struct ar5523 *ar = hw->priv;
1105 ar5523_dbg(ar, "flush called\n");
1106 ar5523_flush_tx(ar);
1109 static int ar5523_add_interface(struct ieee80211_hw *hw,
1110 struct ieee80211_vif *vif)
1112 struct ar5523 *ar = hw->priv;
1114 ar5523_dbg(ar, "add interface called\n");
1117 ar5523_dbg(ar, "invalid add_interface\n");
1121 switch (vif->type) {
1122 case NL80211_IFTYPE_STATION:
1131 static void ar5523_remove_interface(struct ieee80211_hw *hw,
1132 struct ieee80211_vif *vif)
1134 struct ar5523 *ar = hw->priv;
1136 ar5523_dbg(ar, "remove interface called\n");
1140 static int ar5523_hwconfig(struct ieee80211_hw *hw, u32 changed)
1142 struct ar5523 *ar = hw->priv;
1144 ar5523_dbg(ar, "config called\n");
1145 mutex_lock(&ar->mutex);
1146 if (changed & IEEE80211_CONF_CHANGE_CHANNEL) {
1147 ar5523_dbg(ar, "Do channel switch\n");
1148 ar5523_flush_tx(ar);
1149 ar5523_switch_chan(ar);
1151 mutex_unlock(&ar->mutex);
1155 static int ar5523_get_wlan_mode(struct ar5523 *ar,
1156 struct ieee80211_bss_conf *bss_conf)
1158 struct ieee80211_supported_band *band;
1160 struct ieee80211_sta *sta;
1163 band = ar->hw->wiphy->bands[ar->hw->conf.chandef.chan->band];
1164 sta = ieee80211_find_sta(ar->vif, bss_conf->bssid);
1166 ar5523_info(ar, "STA not found!\n");
1167 return WLAN_MODE_11b;
1169 sta_rate_set = sta->supp_rates[ar->hw->conf.chandef.chan->band];
1171 for (bit = 0; bit < band->n_bitrates; bit++) {
1172 if (sta_rate_set & 1) {
1173 int rate = band->bitrates[bit].bitrate;
1183 return WLAN_MODE_11g;
1188 return WLAN_MODE_11b;
1191 static void ar5523_create_rateset(struct ar5523 *ar,
1192 struct ieee80211_bss_conf *bss_conf,
1193 struct ar5523_cmd_rateset *rs,
1196 struct ieee80211_supported_band *band;
1197 struct ieee80211_sta *sta;
1199 u32 sta_rate_set, basic_rate_set;
1201 sta = ieee80211_find_sta(ar->vif, bss_conf->bssid);
1202 basic_rate_set = bss_conf->basic_rates;
1204 ar5523_info(ar, "STA not found. Cannot set rates\n");
1205 sta_rate_set = bss_conf->basic_rates;
1207 sta_rate_set = sta->supp_rates[ar->hw->conf.chandef.chan->band];
1209 ar5523_dbg(ar, "sta rate_set = %08x\n", sta_rate_set);
1211 band = ar->hw->wiphy->bands[ar->hw->conf.chandef.chan->band];
1212 for (bit = 0; bit < band->n_bitrates; bit++) {
1213 BUG_ON(i >= AR5523_MAX_NRATES);
1214 ar5523_dbg(ar, "Considering rate %d : %d\n",
1215 band->bitrates[bit].hw_value, sta_rate_set & 1);
1216 if (sta_rate_set & 1) {
1217 rs->set[i] = band->bitrates[bit].hw_value;
1218 if (basic_rate_set & 1 && basic)
1223 basic_rate_set >>= 1;
1229 static int ar5523_set_basic_rates(struct ar5523 *ar,
1230 struct ieee80211_bss_conf *bss)
1232 struct ar5523_cmd_rates rates;
1234 memset(&rates, 0, sizeof(rates));
1235 rates.connid = cpu_to_be32(2); /* XXX */
1236 rates.size = cpu_to_be32(sizeof(struct ar5523_cmd_rateset));
1237 ar5523_create_rateset(ar, bss, &rates.rateset, true);
1239 return ar5523_cmd_write(ar, WDCMSG_SET_BASIC_RATE, &rates,
1243 static int ar5523_create_connection(struct ar5523 *ar,
1244 struct ieee80211_vif *vif,
1245 struct ieee80211_bss_conf *bss)
1247 struct ar5523_cmd_create_connection create;
1250 memset(&create, 0, sizeof(create));
1251 create.connid = cpu_to_be32(2);
1252 create.bssid = cpu_to_be32(0);
1253 /* XXX packed or not? */
1254 create.size = cpu_to_be32(sizeof(struct ar5523_cmd_rateset));
1256 ar5523_create_rateset(ar, bss, &create.connattr.rateset, false);
1258 wlan_mode = ar5523_get_wlan_mode(ar, bss);
1259 create.connattr.wlanmode = cpu_to_be32(wlan_mode);
1261 return ar5523_cmd_write(ar, WDCMSG_CREATE_CONNECTION, &create,
1265 static int ar5523_write_associd(struct ar5523 *ar,
1266 struct ieee80211_bss_conf *bss)
1268 struct ar5523_cmd_set_associd associd;
1270 memset(&associd, 0, sizeof(associd));
1271 associd.defaultrateix = cpu_to_be32(0); /* XXX */
1272 associd.associd = cpu_to_be32(bss->aid);
1273 associd.timoffset = cpu_to_be32(0x3b); /* XXX */
1274 memcpy(associd.bssid, bss->bssid, ETH_ALEN);
1275 return ar5523_cmd_write(ar, WDCMSG_WRITE_ASSOCID, &associd,
1276 sizeof(associd), 0);
1279 static void ar5523_bss_info_changed(struct ieee80211_hw *hw,
1280 struct ieee80211_vif *vif,
1281 struct ieee80211_bss_conf *bss,
1284 struct ar5523 *ar = hw->priv;
1287 ar5523_dbg(ar, "bss_info_changed called\n");
1288 mutex_lock(&ar->mutex);
1290 if (!(changed & BSS_CHANGED_ASSOC))
1294 error = ar5523_create_connection(ar, vif, bss);
1296 ar5523_err(ar, "could not create connection\n");
1300 error = ar5523_set_basic_rates(ar, bss);
1302 ar5523_err(ar, "could not set negotiated rate set\n");
1306 error = ar5523_write_associd(ar, bss);
1308 ar5523_err(ar, "could not set association\n");
1312 /* turn link LED on */
1313 ar5523_set_ledsteady(ar, UATH_LED_LINK, UATH_LED_ON);
1314 set_bit(AR5523_CONNECTED, &ar->flags);
1315 ieee80211_queue_delayed_work(hw, &ar->stat_work, HZ);
1318 cancel_delayed_work(&ar->stat_work);
1319 clear_bit(AR5523_CONNECTED, &ar->flags);
1320 ar5523_set_ledsteady(ar, UATH_LED_LINK, UATH_LED_OFF);
1324 mutex_unlock(&ar->mutex);
1328 #define AR5523_SUPPORTED_FILTERS (FIF_ALLMULTI | \
1332 static void ar5523_configure_filter(struct ieee80211_hw *hw,
1333 unsigned int changed_flags,
1334 unsigned int *total_flags,
1337 struct ar5523 *ar = hw->priv;
1340 ar5523_dbg(ar, "configure_filter called\n");
1341 mutex_lock(&ar->mutex);
1342 ar5523_flush_tx(ar);
1344 *total_flags &= AR5523_SUPPORTED_FILTERS;
1346 /* The filters seems strange. UATH_FILTER_RX_BCAST and
1347 * UATH_FILTER_RX_MCAST does not result in those frames being RXed.
1348 * The only way I have found to get [mb]cast frames seems to be
1349 * to set UATH_FILTER_RX_PROM. */
1350 filter |= UATH_FILTER_RX_UCAST | UATH_FILTER_RX_MCAST |
1351 UATH_FILTER_RX_BCAST | UATH_FILTER_RX_BEACON |
1352 UATH_FILTER_RX_PROM;
1354 ar5523_set_rxfilter(ar, 0, UATH_FILTER_OP_INIT);
1355 ar5523_set_rxfilter(ar, filter, UATH_FILTER_OP_SET);
1357 mutex_unlock(&ar->mutex);
1360 static const struct ieee80211_ops ar5523_ops = {
1361 .start = ar5523_start,
1362 .stop = ar5523_stop,
1364 .set_rts_threshold = ar5523_set_rts_threshold,
1365 .add_interface = ar5523_add_interface,
1366 .remove_interface = ar5523_remove_interface,
1367 .config = ar5523_hwconfig,
1368 .bss_info_changed = ar5523_bss_info_changed,
1369 .configure_filter = ar5523_configure_filter,
1370 .flush = ar5523_flush,
1373 static int ar5523_host_available(struct ar5523 *ar)
1375 struct ar5523_cmd_host_available setup;
1377 /* inform target the host is available */
1378 setup.sw_ver_major = cpu_to_be32(ATH_SW_VER_MAJOR);
1379 setup.sw_ver_minor = cpu_to_be32(ATH_SW_VER_MINOR);
1380 setup.sw_ver_patch = cpu_to_be32(ATH_SW_VER_PATCH);
1381 setup.sw_ver_build = cpu_to_be32(ATH_SW_VER_BUILD);
1382 return ar5523_cmd_read(ar, WDCMSG_HOST_AVAILABLE,
1383 &setup, sizeof(setup), NULL, 0, 0);
1386 static int ar5523_get_devstatus(struct ar5523 *ar)
1388 u8 macaddr[ETH_ALEN];
1391 /* retrieve MAC address */
1392 error = ar5523_get_status(ar, ST_MAC_ADDR, macaddr, ETH_ALEN);
1394 ar5523_err(ar, "could not read MAC address\n");
1398 SET_IEEE80211_PERM_ADDR(ar->hw, macaddr);
1400 error = ar5523_get_status(ar, ST_SERIAL_NUMBER,
1401 &ar->serial[0], sizeof(ar->serial));
1403 ar5523_err(ar, "could not read device serial number\n");
1409 #define AR5523_SANE_RXBUFSZ 2000
1411 static int ar5523_get_max_rxsz(struct ar5523 *ar)
1416 /* Get max rx size */
1417 error = ar5523_get_status(ar, ST_WDC_TRANSPORT_CHUNK_SIZE, &rxsize,
1420 ar5523_err(ar, "could not read max RX size\n");
1424 ar->rxbufsz = be32_to_cpu(rxsize);
1426 if (!ar->rxbufsz || ar->rxbufsz > AR5523_SANE_RXBUFSZ) {
1427 ar5523_err(ar, "Bad rxbufsz from device. Using %d instead\n",
1428 AR5523_SANE_RXBUFSZ);
1429 ar->rxbufsz = AR5523_SANE_RXBUFSZ;
1432 ar5523_dbg(ar, "Max RX buf size: %d\n", ar->rxbufsz);
1437 * This is copied from rtl818x, but we should probably move this
1438 * to common code as in OpenBSD.
1440 static const struct ieee80211_rate ar5523_rates[] = {
1441 { .bitrate = 10, .hw_value = 2, },
1442 { .bitrate = 20, .hw_value = 4 },
1443 { .bitrate = 55, .hw_value = 11, },
1444 { .bitrate = 110, .hw_value = 22, },
1445 { .bitrate = 60, .hw_value = 12, },
1446 { .bitrate = 90, .hw_value = 18, },
1447 { .bitrate = 120, .hw_value = 24, },
1448 { .bitrate = 180, .hw_value = 36, },
1449 { .bitrate = 240, .hw_value = 48, },
1450 { .bitrate = 360, .hw_value = 72, },
1451 { .bitrate = 480, .hw_value = 96, },
1452 { .bitrate = 540, .hw_value = 108, },
1455 static const struct ieee80211_channel ar5523_channels[] = {
1456 { .center_freq = 2412 },
1457 { .center_freq = 2417 },
1458 { .center_freq = 2422 },
1459 { .center_freq = 2427 },
1460 { .center_freq = 2432 },
1461 { .center_freq = 2437 },
1462 { .center_freq = 2442 },
1463 { .center_freq = 2447 },
1464 { .center_freq = 2452 },
1465 { .center_freq = 2457 },
1466 { .center_freq = 2462 },
1467 { .center_freq = 2467 },
1468 { .center_freq = 2472 },
1469 { .center_freq = 2484 },
1472 static int ar5523_init_modes(struct ar5523 *ar)
1474 BUILD_BUG_ON(sizeof(ar->channels) != sizeof(ar5523_channels));
1475 BUILD_BUG_ON(sizeof(ar->rates) != sizeof(ar5523_rates));
1477 memcpy(ar->channels, ar5523_channels, sizeof(ar5523_channels));
1478 memcpy(ar->rates, ar5523_rates, sizeof(ar5523_rates));
1480 ar->band.band = NL80211_BAND_2GHZ;
1481 ar->band.channels = ar->channels;
1482 ar->band.n_channels = ARRAY_SIZE(ar5523_channels);
1483 ar->band.bitrates = ar->rates;
1484 ar->band.n_bitrates = ARRAY_SIZE(ar5523_rates);
1485 ar->hw->wiphy->bands[NL80211_BAND_2GHZ] = &ar->band;
1490 * Load the MIPS R4000 microcode into the device. Once the image is loaded,
1491 * the device will detach itself from the bus and reattach later with a new
1492 * product Id (a la ezusb).
1494 static int ar5523_load_firmware(struct usb_device *dev)
1496 struct ar5523_fwblock *txblock, *rxblock;
1497 const struct firmware *fw;
1500 int foolen; /* XXX(hch): handle short transfers */
1503 if (reject_firmware(&fw, AR5523_FIRMWARE_FILE, &dev->dev)) {
1504 dev_err(&dev->dev, "no firmware found: %s\n",
1505 AR5523_FIRMWARE_FILE);
1509 txblock = kmalloc(sizeof(*txblock), GFP_KERNEL);
1513 rxblock = kmalloc(sizeof(*rxblock), GFP_KERNEL);
1515 goto out_free_txblock;
1517 fwbuf = kmalloc(AR5523_MAX_FWBLOCK_SIZE, GFP_KERNEL);
1519 goto out_free_rxblock;
1521 memset(txblock, 0, sizeof(struct ar5523_fwblock));
1522 txblock->flags = cpu_to_be32(AR5523_WRITE_BLOCK);
1523 txblock->total = cpu_to_be32(fw->size);
1528 int mlen = min(len, AR5523_MAX_FWBLOCK_SIZE);
1530 txblock->remain = cpu_to_be32(len - mlen);
1531 txblock->len = cpu_to_be32(mlen);
1533 /* send firmware block meta-data */
1534 error = usb_bulk_msg(dev, ar5523_cmd_tx_pipe(dev),
1535 txblock, sizeof(*txblock), &foolen,
1536 AR5523_CMD_TIMEOUT);
1539 "could not send firmware block info\n");
1540 goto out_free_fwbuf;
1543 /* send firmware block data */
1544 memcpy(fwbuf, fw->data + offset, mlen);
1545 error = usb_bulk_msg(dev, ar5523_data_tx_pipe(dev),
1546 fwbuf, mlen, &foolen,
1547 AR5523_DATA_TIMEOUT);
1550 "could not send firmware block data\n");
1551 goto out_free_fwbuf;
1554 /* wait for ack from firmware */
1555 error = usb_bulk_msg(dev, ar5523_cmd_rx_pipe(dev),
1556 rxblock, sizeof(*rxblock), &foolen,
1557 AR5523_CMD_TIMEOUT);
1560 "could not read firmware answer\n");
1561 goto out_free_fwbuf;
1569 * Set the error to -ENXIO to make sure we continue probing for
1581 release_firmware(fw);
1585 static int ar5523_probe(struct usb_interface *intf,
1586 const struct usb_device_id *id)
1588 struct usb_device *dev = interface_to_usbdev(intf);
1589 struct ieee80211_hw *hw;
1591 int error = -ENOMEM;
1594 * Load firmware if the device requires it. This will return
1595 * -ENXIO on success and we'll get called back afer the usb
1596 * id changes to indicate that the firmware is present.
1598 if (id->driver_info & AR5523_FLAG_PRE_FIRMWARE)
1599 return ar5523_load_firmware(dev);
1602 hw = ieee80211_alloc_hw(sizeof(*ar), &ar5523_ops);
1605 SET_IEEE80211_DEV(hw, &intf->dev);
1610 mutex_init(&ar->mutex);
1612 INIT_DELAYED_WORK(&ar->stat_work, ar5523_stat_work);
1613 init_timer(&ar->tx_wd_timer);
1614 setup_timer(&ar->tx_wd_timer, ar5523_tx_wd_timer, (unsigned long) ar);
1615 INIT_WORK(&ar->tx_wd_work, ar5523_tx_wd_work);
1616 INIT_WORK(&ar->tx_work, ar5523_tx_work);
1617 INIT_LIST_HEAD(&ar->tx_queue_pending);
1618 INIT_LIST_HEAD(&ar->tx_queue_submitted);
1619 spin_lock_init(&ar->tx_data_list_lock);
1620 atomic_set(&ar->tx_nr_total, 0);
1621 atomic_set(&ar->tx_nr_pending, 0);
1622 init_waitqueue_head(&ar->tx_flush_waitq);
1624 atomic_set(&ar->rx_data_free_cnt, 0);
1625 INIT_WORK(&ar->rx_refill_work, ar5523_rx_refill_work);
1626 INIT_LIST_HEAD(&ar->rx_data_free);
1627 INIT_LIST_HEAD(&ar->rx_data_used);
1628 spin_lock_init(&ar->rx_data_list_lock);
1630 ar->wq = create_singlethread_workqueue("ar5523");
1632 ar5523_err(ar, "Could not create wq\n");
1636 error = ar5523_alloc_rx_bufs(ar);
1638 ar5523_err(ar, "Could not allocate rx buffers\n");
1642 error = ar5523_alloc_rx_cmd(ar);
1644 ar5523_err(ar, "Could not allocate rx command buffers\n");
1645 goto out_free_rx_bufs;
1648 error = ar5523_alloc_tx_cmd(ar);
1650 ar5523_err(ar, "Could not allocate tx command buffers\n");
1651 goto out_free_rx_cmd;
1654 error = ar5523_submit_rx_cmd(ar);
1656 ar5523_err(ar, "Failed to submit rx cmd\n");
1657 goto out_free_tx_cmd;
1661 * We're now ready to send/receive firmware commands.
1663 error = ar5523_host_available(ar);
1665 ar5523_err(ar, "could not initialize adapter\n");
1666 goto out_cancel_rx_cmd;
1669 error = ar5523_get_max_rxsz(ar);
1671 ar5523_err(ar, "could not get caps from adapter\n");
1672 goto out_cancel_rx_cmd;
1675 error = ar5523_get_devcap(ar);
1677 ar5523_err(ar, "could not get caps from adapter\n");
1678 goto out_cancel_rx_cmd;
1681 error = ar5523_get_devstatus(ar);
1683 ar5523_err(ar, "could not get device status\n");
1684 goto out_cancel_rx_cmd;
1687 ar5523_info(ar, "MAC/BBP AR5523, RF AR%c112\n",
1688 (id->driver_info & AR5523_FLAG_ABG) ? '5' : '2');
1691 ieee80211_hw_set(hw, HAS_RATE_CONTROL);
1692 ieee80211_hw_set(hw, RX_INCLUDES_FCS);
1693 ieee80211_hw_set(hw, SIGNAL_DBM);
1694 hw->extra_tx_headroom = sizeof(struct ar5523_tx_desc) +
1695 sizeof(struct ar5523_chunk);
1696 hw->wiphy->interface_modes = BIT(NL80211_IFTYPE_STATION);
1699 error = ar5523_init_modes(ar);
1701 goto out_cancel_rx_cmd;
1703 wiphy_ext_feature_set(hw->wiphy, NL80211_EXT_FEATURE_CQM_RSSI_LIST);
1705 usb_set_intfdata(intf, hw);
1707 error = ieee80211_register_hw(hw);
1709 ar5523_err(ar, "could not register device\n");
1710 goto out_cancel_rx_cmd;
1713 ar5523_info(ar, "Found and initialized AR5523 device\n");
1717 ar5523_cancel_rx_cmd(ar);
1719 ar5523_free_tx_cmd(ar);
1721 ar5523_free_rx_cmd(ar);
1723 ar5523_free_rx_bufs(ar);
1725 destroy_workqueue(ar->wq);
1727 ieee80211_free_hw(hw);
1732 static void ar5523_disconnect(struct usb_interface *intf)
1734 struct ieee80211_hw *hw = usb_get_intfdata(intf);
1735 struct ar5523 *ar = hw->priv;
1737 ar5523_dbg(ar, "detaching\n");
1738 set_bit(AR5523_USB_DISCONNECTED, &ar->flags);
1740 ieee80211_unregister_hw(hw);
1742 ar5523_cancel_rx_cmd(ar);
1743 ar5523_free_tx_cmd(ar);
1744 ar5523_free_rx_cmd(ar);
1745 ar5523_free_rx_bufs(ar);
1747 destroy_workqueue(ar->wq);
1749 ieee80211_free_hw(hw);
1750 usb_set_intfdata(intf, NULL);
1753 #define AR5523_DEVICE_UG(vendor, device) \
1754 { USB_DEVICE((vendor), (device)) }, \
1755 { USB_DEVICE((vendor), (device) + 1), \
1756 .driver_info = AR5523_FLAG_PRE_FIRMWARE }
1757 #define AR5523_DEVICE_UX(vendor, device) \
1758 { USB_DEVICE((vendor), (device)), \
1759 .driver_info = AR5523_FLAG_ABG }, \
1760 { USB_DEVICE((vendor), (device) + 1), \
1761 .driver_info = AR5523_FLAG_ABG|AR5523_FLAG_PRE_FIRMWARE }
1763 static const struct usb_device_id ar5523_id_table[] = {
1764 AR5523_DEVICE_UG(0x168c, 0x0001), /* Atheros / AR5523 */
1765 AR5523_DEVICE_UG(0x0cf3, 0x0001), /* Atheros2 / AR5523_1 */
1766 AR5523_DEVICE_UG(0x0cf3, 0x0003), /* Atheros2 / AR5523_2 */
1767 AR5523_DEVICE_UX(0x0cf3, 0x0005), /* Atheros2 / AR5523_3 */
1768 AR5523_DEVICE_UG(0x0d8e, 0x7801), /* Conceptronic / AR5523_1 */
1769 AR5523_DEVICE_UX(0x0d8e, 0x7811), /* Conceptronic / AR5523_2 */
1770 AR5523_DEVICE_UX(0x2001, 0x3a00), /* Dlink / DWLAG132 */
1771 AR5523_DEVICE_UG(0x2001, 0x3a02), /* Dlink / DWLG132 */
1772 AR5523_DEVICE_UX(0x2001, 0x3a04), /* Dlink / DWLAG122 */
1773 AR5523_DEVICE_UG(0x07d1, 0x3a07), /* D-Link / WUA-2340 rev A1 */
1774 AR5523_DEVICE_UG(0x1690, 0x0712), /* Gigaset / AR5523 */
1775 AR5523_DEVICE_UG(0x1690, 0x0710), /* Gigaset / SMCWUSBTG */
1776 AR5523_DEVICE_UG(0x129b, 0x160b), /* Gigaset / USB stick 108
1777 (CyberTAN Technology) */
1778 AR5523_DEVICE_UG(0x16ab, 0x7801), /* Globalsun / AR5523_1 */
1779 AR5523_DEVICE_UX(0x16ab, 0x7811), /* Globalsun / AR5523_2 */
1780 AR5523_DEVICE_UG(0x0d8e, 0x7802), /* Globalsun / AR5523_3 */
1781 AR5523_DEVICE_UX(0x0846, 0x4300), /* Netgear / WG111U */
1782 AR5523_DEVICE_UG(0x0846, 0x4250), /* Netgear / WG111T */
1783 AR5523_DEVICE_UG(0x0846, 0x5f00), /* Netgear / WPN111 */
1784 AR5523_DEVICE_UG(0x083a, 0x4506), /* SMC / EZ Connect
1786 AR5523_DEVICE_UG(0x157e, 0x3006), /* Umedia / AR5523_1 */
1787 AR5523_DEVICE_UX(0x157e, 0x3205), /* Umedia / AR5523_2 */
1788 AR5523_DEVICE_UG(0x157e, 0x3006), /* Umedia / TEW444UBEU */
1789 AR5523_DEVICE_UG(0x1435, 0x0826), /* Wistronneweb / AR5523_1 */
1790 AR5523_DEVICE_UX(0x1435, 0x0828), /* Wistronneweb / AR5523_2 */
1791 AR5523_DEVICE_UG(0x0cde, 0x0012), /* Zcom / AR5523 */
1792 AR5523_DEVICE_UG(0x1385, 0x4250), /* Netgear3 / WG111T (2) */
1793 AR5523_DEVICE_UG(0x1385, 0x5f00), /* Netgear / WPN111 */
1794 AR5523_DEVICE_UG(0x1385, 0x5f02), /* Netgear / WPN111 */
1797 MODULE_DEVICE_TABLE(usb, ar5523_id_table);
1799 static struct usb_driver ar5523_driver = {
1801 .id_table = ar5523_id_table,
1802 .probe = ar5523_probe,
1803 .disconnect = ar5523_disconnect,
1806 module_usb_driver(ar5523_driver);
1808 MODULE_LICENSE("Dual BSD/GPL");
projects / releases.git / blob