iwl-agn.c 97.8 KB
Newer Older
Z
Zhu Yi 已提交
1 2
/******************************************************************************
 *
W
Wey-Yi Guy 已提交
3
 * Copyright(c) 2003 - 2011 Intel Corporation. All rights reserved.
Z
Zhu Yi 已提交
4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24
 *
 * Portions of this file are derived from the ipw3945 project, as well
 * as portions of the ieee80211 subsystem header files.
 *
 * This program is free software; you can redistribute it and/or modify it
 * under the terms of version 2 of the GNU General Public License as
 * published by the Free Software Foundation.
 *
 * This program is distributed in the hope that it will be useful, but WITHOUT
 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
 * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for
 * more details.
 *
 * You should have received a copy of the GNU General Public License along with
 * this program; if not, write to the Free Software Foundation, Inc.,
 * 51 Franklin Street, Fifth Floor, Boston, MA 02110, USA
 *
 * The full GNU General Public License is included in this distribution in the
 * file called LICENSE.
 *
 * Contact Information:
25
 *  Intel Linux Wireless <ilw@linux.intel.com>
Z
Zhu Yi 已提交
26 27 28 29 30 31
 * Intel Corporation, 5200 N.E. Elam Young Parkway, Hillsboro, OR 97124-6497
 *
 *****************************************************************************/
#include <linux/kernel.h>
#include <linux/module.h>
#include <linux/init.h>
32
#include <linux/slab.h>
Z
Zhu Yi 已提交
33 34
#include <linux/dma-mapping.h>
#include <linux/delay.h>
35
#include <linux/sched.h>
Z
Zhu Yi 已提交
36 37 38 39 40 41 42 43 44 45
#include <linux/skbuff.h>
#include <linux/netdevice.h>
#include <linux/firmware.h>
#include <linux/etherdevice.h>
#include <linux/if_arp.h>

#include <net/mac80211.h>

#include <asm/div64.h>

A
Assaf Krauss 已提交
46
#include "iwl-eeprom.h"
47
#include "iwl-dev.h"
48
#include "iwl-core.h"
49
#include "iwl-io.h"
Z
Zhu Yi 已提交
50
#include "iwl-helpers.h"
51
#include "iwl-sta.h"
J
Johannes Berg 已提交
52
#include "iwl-agn-calib.h"
53
#include "iwl-agn.h"
54
#include "iwl-shared.h"
55
#include "iwl-bus.h"
56
#include "iwl-trans.h"
57

Z
Zhu Yi 已提交
58 59 60 61 62 63 64 65 66
/******************************************************************************
 *
 * module boiler plate
 *
 ******************************************************************************/

/*
 * module name, copyright, version, etc.
 */
67
#define DRV_DESCRIPTION	"Intel(R) Wireless WiFi Link AGN driver for Linux"
Z
Zhu Yi 已提交
68

69
#ifdef CONFIG_IWLWIFI_DEBUG
Z
Zhu Yi 已提交
70 71 72 73 74
#define VD "d"
#else
#define VD
#endif

75
#define DRV_VERSION     IWLWIFI_VERSION VD
Z
Zhu Yi 已提交
76 77 78 79


MODULE_DESCRIPTION(DRV_DESCRIPTION);
MODULE_VERSION(DRV_VERSION);
80
MODULE_AUTHOR(DRV_COPYRIGHT " " DRV_AUTHOR);
Z
Zhu Yi 已提交
81 82
MODULE_LICENSE("GPL");

83
void iwl_update_chain_flags(struct iwl_priv *priv)
M
Mohamed Abbas 已提交
84
{
85
	struct iwl_rxon_context *ctx;
M
Mohamed Abbas 已提交
86

W
Wey-Yi Guy 已提交
87 88 89 90
	for_each_context(priv, ctx) {
		iwlagn_set_rxon_chain(priv, ctx);
		if (ctx->active.rx_chain != ctx->staging.rx_chain)
			iwlagn_commit_rxon(priv, ctx);
91
	}
M
Mohamed Abbas 已提交
92 93
}

94 95
/* Parse the beacon frame to find the TIM element and set tim_idx & tim_size */
static void iwl_set_beacon_tim(struct iwl_priv *priv,
96 97
			       struct iwl_tx_beacon_cmd *tx_beacon_cmd,
			       u8 *beacon, u32 frame_size)
98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120
{
	u16 tim_idx;
	struct ieee80211_mgmt *mgmt = (struct ieee80211_mgmt *)beacon;

	/*
	 * The index is relative to frame start but we start looking at the
	 * variable-length part of the beacon.
	 */
	tim_idx = mgmt->u.beacon.variable - beacon;

	/* Parse variable-length elements of beacon to find WLAN_EID_TIM */
	while ((tim_idx < (frame_size - 2)) &&
			(beacon[tim_idx] != WLAN_EID_TIM))
		tim_idx += beacon[tim_idx+1] + 2;

	/* If TIM field was found, set variables */
	if ((tim_idx < (frame_size - 1)) && (beacon[tim_idx] == WLAN_EID_TIM)) {
		tx_beacon_cmd->tim_idx = cpu_to_le16(tim_idx);
		tx_beacon_cmd->tim_size = beacon[tim_idx+1];
	} else
		IWL_WARN(priv, "Unable to find TIM Element in beacon\n");
}

121
int iwlagn_send_beacon_cmd(struct iwl_priv *priv)
122 123
{
	struct iwl_tx_beacon_cmd *tx_beacon_cmd;
124 125
	struct iwl_host_cmd cmd = {
		.id = REPLY_TX_BEACON,
126
		.flags = CMD_SYNC,
127
	};
128
	struct ieee80211_tx_info *info;
129 130 131
	u32 frame_size;
	u32 rate_flags;
	u32 rate;
132

133 134 135 136
	/*
	 * We have to set up the TX command, the TX Beacon command, and the
	 * beacon contents.
	 */
137

138
	lockdep_assert_held(&priv->shrd->mutex);
139 140 141

	if (!priv->beacon_ctx) {
		IWL_ERR(priv, "trying to build beacon w/o beacon context!\n");
142
		return 0;
143 144
	}

145 146 147
	if (WARN_ON(!priv->beacon_skb))
		return -EINVAL;

148 149 150 151
	/* Allocate beacon command */
	if (!priv->beacon_cmd)
		priv->beacon_cmd = kzalloc(sizeof(*tx_beacon_cmd), GFP_KERNEL);
	tx_beacon_cmd = priv->beacon_cmd;
152 153 154 155
	if (!tx_beacon_cmd)
		return -ENOMEM;

	frame_size = priv->beacon_skb->len;
156

157
	/* Set up TX command fields */
158
	tx_beacon_cmd->tx.len = cpu_to_le16((u16)frame_size);
159
	tx_beacon_cmd->tx.sta_id = priv->beacon_ctx->bcast_sta_id;
160 161 162
	tx_beacon_cmd->tx.stop_time.life_time = TX_CMD_LIFE_TIME_INFINITE;
	tx_beacon_cmd->tx.tx_flags = TX_CMD_FLG_SEQ_CTL_MSK |
		TX_CMD_FLG_TSF_MSK | TX_CMD_FLG_STA_RATE_MSK;
163

164
	/* Set up TX beacon command fields */
165
	iwl_set_beacon_tim(priv, tx_beacon_cmd, priv->beacon_skb->data,
166
			   frame_size);
167

168
	/* Set up packet rate and flags */
169 170 171 172 173 174 175 176 177 178 179 180 181
	info = IEEE80211_SKB_CB(priv->beacon_skb);

	/*
	 * Let's set up the rate at least somewhat correctly;
	 * it will currently not actually be used by the uCode,
	 * it uses the broadcast station's rate instead.
	 */
	if (info->control.rates[0].idx < 0 ||
	    info->control.rates[0].flags & IEEE80211_TX_RC_MCS)
		rate = 0;
	else
		rate = info->control.rates[0].idx;

182
	priv->mgmt_tx_ant = iwl_toggle_tx_ant(priv, priv->mgmt_tx_ant,
183
					      hw_params(priv).valid_tx_ant);
184
	rate_flags = iwl_ant_idx_to_flags(priv->mgmt_tx_ant);
185 186 187 188 189

	/* In mac80211, rates for 5 GHz start at 0 */
	if (info->band == IEEE80211_BAND_5GHZ)
		rate += IWL_FIRST_OFDM_RATE;
	else if (rate >= IWL_FIRST_CCK_RATE && rate <= IWL_LAST_CCK_RATE)
190
		rate_flags |= RATE_MCS_CCK_MSK;
191 192 193

	tx_beacon_cmd->tx.rate_n_flags =
			iwl_hw_set_rate_n_flags(rate, rate_flags);
194

195
	/* Submit command */
196
	cmd.len[0] = sizeof(*tx_beacon_cmd);
197
	cmd.data[0] = tx_beacon_cmd;
198 199 200 201
	cmd.dataflags[0] = IWL_HCMD_DFL_NOCOPY;
	cmd.len[1] = frame_size;
	cmd.data[1] = priv->beacon_skb->data;
	cmd.dataflags[1] = IWL_HCMD_DFL_NOCOPY;
202

203
	return iwl_trans_send_cmd(trans(priv), &cmd);
204 205
}

206
static void iwl_bg_beacon_update(struct work_struct *work)
Z
Zhu Yi 已提交
207
{
208 209
	struct iwl_priv *priv =
		container_of(work, struct iwl_priv, beacon_update);
Z
Zhu Yi 已提交
210 211
	struct sk_buff *beacon;

212
	mutex_lock(&priv->shrd->mutex);
213 214 215 216
	if (!priv->beacon_ctx) {
		IWL_ERR(priv, "updating beacon w/o beacon context!\n");
		goto out;
	}
Z
Zhu Yi 已提交
217

218 219 220 221 222 223 224 225 226 227
	if (priv->beacon_ctx->vif->type != NL80211_IFTYPE_AP) {
		/*
		 * The ucode will send beacon notifications even in
		 * IBSS mode, but we don't want to process them. But
		 * we need to defer the type check to here due to
		 * requiring locking around the beacon_ctx access.
		 */
		goto out;
	}

228 229
	/* Pull updated AP beacon from mac80211. will fail if not in AP mode */
	beacon = ieee80211_beacon_get(priv->hw, priv->beacon_ctx->vif);
Z
Zhu Yi 已提交
230
	if (!beacon) {
231
		IWL_ERR(priv, "update beacon failed -- keeping old\n");
232
		goto out;
Z
Zhu Yi 已提交
233 234 235
	}

	/* new beacon skb is allocated every time; dispose previous.*/
236
	dev_kfree_skb(priv->beacon_skb);
Z
Zhu Yi 已提交
237

238
	priv->beacon_skb = beacon;
Z
Zhu Yi 已提交
239

240
	iwlagn_send_beacon_cmd(priv);
241
 out:
242
	mutex_unlock(&priv->shrd->mutex);
Z
Zhu Yi 已提交
243 244
}

245 246 247 248 249
static void iwl_bg_bt_runtime_config(struct work_struct *work)
{
	struct iwl_priv *priv =
		container_of(work, struct iwl_priv, bt_runtime_config);

250
	if (test_bit(STATUS_EXIT_PENDING, &priv->shrd->status))
251 252 253
		return;

	/* dont send host command if rf-kill is on */
254
	if (!iwl_is_ready_rf(priv->shrd))
255
		return;
W
Wey-Yi Guy 已提交
256
	iwlagn_send_advance_bt_config(priv);
257 258
}

259 260 261 262
static void iwl_bg_bt_full_concurrency(struct work_struct *work)
{
	struct iwl_priv *priv =
		container_of(work, struct iwl_priv, bt_full_concurrency);
263
	struct iwl_rxon_context *ctx;
264

265
	mutex_lock(&priv->shrd->mutex);
266

267
	if (test_bit(STATUS_EXIT_PENDING, &priv->shrd->status))
268
		goto out;
269 270

	/* dont send host command if rf-kill is on */
271
	if (!iwl_is_ready_rf(priv->shrd))
272
		goto out;
273 274 275 276 277 278 279 280 281

	IWL_DEBUG_INFO(priv, "BT coex in %s mode\n",
		       priv->bt_full_concurrent ?
		       "full concurrency" : "3-wire");

	/*
	 * LQ & RXON updated cmds must be sent before BT Config cmd
	 * to avoid 3-wire collisions
	 */
282
	for_each_context(priv, ctx) {
W
Wey-Yi Guy 已提交
283
		iwlagn_set_rxon_chain(priv, ctx);
284
		iwlagn_commit_rxon(priv, ctx);
285
	}
286

W
Wey-Yi Guy 已提交
287
	iwlagn_send_advance_bt_config(priv);
288
out:
289
	mutex_unlock(&priv->shrd->mutex);
290 291
}

292
/**
293
 * iwl_bg_statistics_periodic - Timer callback to queue statistics
294 295 296 297 298 299 300 301
 *
 * This callback is provided in order to send a statistics request.
 *
 * This timer function is continually reset to execute within
 * REG_RECALIB_PERIOD seconds since the last STATISTICS_NOTIFICATION
 * was received.  We need to ensure we receive the statistics in order
 * to update the temperature used for calibrating the TXPOWER.
 */
302
static void iwl_bg_statistics_periodic(unsigned long data)
303 304 305
{
	struct iwl_priv *priv = (struct iwl_priv *)data;

306
	if (test_bit(STATUS_EXIT_PENDING, &priv->shrd->status))
307 308
		return;

309
	/* dont send host command if rf-kill is on */
310
	if (!iwl_is_ready_rf(priv->shrd))
311 312
		return;

313
	iwl_send_statistics_request(priv, CMD_ASYNC, false);
314 315
}

316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331

static void iwl_print_cont_event_trace(struct iwl_priv *priv, u32 base,
					u32 start_idx, u32 num_events,
					u32 mode)
{
	u32 i;
	u32 ptr;        /* SRAM byte address of log data */
	u32 ev, time, data; /* event log data */
	unsigned long reg_flags;

	if (mode == 0)
		ptr = base + (4 * sizeof(u32)) + (start_idx * 2 * sizeof(u32));
	else
		ptr = base + (4 * sizeof(u32)) + (start_idx * 3 * sizeof(u32));

	/* Make sure device is powered up for SRAM reads */
332 333 334
	spin_lock_irqsave(&bus(priv)->reg_lock, reg_flags);
	if (iwl_grab_nic_access(bus(priv))) {
		spin_unlock_irqrestore(&bus(priv)->reg_lock, reg_flags);
335 336 337 338
		return;
	}

	/* Set starting address; reads will auto-increment */
339
	iwl_write32(bus(priv), HBUS_TARG_MEM_RADDR, ptr);
340 341 342 343 344 345 346
	rmb();

	/*
	 * "time" is actually "data" for mode 0 (no timestamp).
	 * place event id # at far right for easier visual parsing.
	 */
	for (i = 0; i < num_events; i++) {
347 348
		ev = iwl_read32(bus(priv), HBUS_TARG_MEM_RDAT);
		time = iwl_read32(bus(priv), HBUS_TARG_MEM_RDAT);
349 350 351 352
		if (mode == 0) {
			trace_iwlwifi_dev_ucode_cont_event(priv,
							0, time, ev);
		} else {
353
			data = iwl_read32(bus(priv), HBUS_TARG_MEM_RDAT);
354 355 356 357 358
			trace_iwlwifi_dev_ucode_cont_event(priv,
						time, data, ev);
		}
	}
	/* Allow device to power down */
359 360
	iwl_release_nic_access(bus(priv));
	spin_unlock_irqrestore(&bus(priv)->reg_lock, reg_flags);
361 362
}

J
Johannes Berg 已提交
363
static void iwl_continuous_event_trace(struct iwl_priv *priv)
364 365 366 367 368 369 370
{
	u32 capacity;   /* event log capacity in # entries */
	u32 base;       /* SRAM byte address of event log header */
	u32 mode;       /* 0 - no timestamp, 1 - timestamp recorded */
	u32 num_wraps;  /* # times uCode wrapped to top of log */
	u32 next_entry; /* index of next entry to be written by uCode */

J
Johannes Berg 已提交
371
	base = priv->device_pointers.error_event_table;
372
	if (iwlagn_hw_valid_rtc_data_addr(base)) {
373 374 375 376 377 378
		capacity = iwl_read_targ_mem(bus(priv), base);
		num_wraps = iwl_read_targ_mem(bus(priv),
						base + (2 * sizeof(u32)));
		mode = iwl_read_targ_mem(bus(priv), base + (1 * sizeof(u32)));
		next_entry = iwl_read_targ_mem(bus(priv),
						base + (3 * sizeof(u32)));
379 380 381 382 383 384 385 386 387 388 389 390 391 392 393 394 395 396 397 398 399 400 401 402 403 404 405 406 407 408 409 410 411 412 413 414 415 416 417 418 419 420 421 422 423 424 425 426 427 428
	} else
		return;

	if (num_wraps == priv->event_log.num_wraps) {
		iwl_print_cont_event_trace(priv,
				       base, priv->event_log.next_entry,
				       next_entry - priv->event_log.next_entry,
				       mode);
		priv->event_log.non_wraps_count++;
	} else {
		if ((num_wraps - priv->event_log.num_wraps) > 1)
			priv->event_log.wraps_more_count++;
		else
			priv->event_log.wraps_once_count++;
		trace_iwlwifi_dev_ucode_wrap_event(priv,
				num_wraps - priv->event_log.num_wraps,
				next_entry, priv->event_log.next_entry);
		if (next_entry < priv->event_log.next_entry) {
			iwl_print_cont_event_trace(priv, base,
			       priv->event_log.next_entry,
			       capacity - priv->event_log.next_entry,
			       mode);

			iwl_print_cont_event_trace(priv, base, 0,
				next_entry, mode);
		} else {
			iwl_print_cont_event_trace(priv, base,
			       next_entry, capacity - next_entry,
			       mode);

			iwl_print_cont_event_trace(priv, base, 0,
				next_entry, mode);
		}
	}
	priv->event_log.num_wraps = num_wraps;
	priv->event_log.next_entry = next_entry;
}

/**
 * iwl_bg_ucode_trace - Timer callback to log ucode event
 *
 * The timer is continually set to execute every
 * UCODE_TRACE_PERIOD milliseconds after the last timer expired
 * this function is to perform continuous uCode event logging operation
 * if enabled
 */
static void iwl_bg_ucode_trace(unsigned long data)
{
	struct iwl_priv *priv = (struct iwl_priv *)data;

429
	if (test_bit(STATUS_EXIT_PENDING, &priv->shrd->status))
430 431 432 433 434 435 436 437 438 439
		return;

	if (priv->event_log.ucode_trace) {
		iwl_continuous_event_trace(priv);
		/* Reschedule the timer to occur in UCODE_TRACE_PERIOD */
		mod_timer(&priv->ucode_trace,
			 jiffies + msecs_to_jiffies(UCODE_TRACE_PERIOD));
	}
}

440 441 442 443 444
static void iwl_bg_tx_flush(struct work_struct *work)
{
	struct iwl_priv *priv =
		container_of(work, struct iwl_priv, tx_flush);

445
	if (test_bit(STATUS_EXIT_PENDING, &priv->shrd->status))
446 447 448
		return;

	/* do nothing if rf-kill is on */
449
	if (!iwl_is_ready_rf(priv->shrd))
450 451
		return;

452 453
	IWL_DEBUG_INFO(priv, "device request: flush all tx frames\n");
	iwlagn_dev_txfifo_flush(priv, IWL_DROP_ALL);
454 455
}

456 457 458 459 460 461 462 463 464 465 466 467 468 469 470 471 472 473 474 475 476 477
/*****************************************************************************
 *
 * sysfs attributes
 *
 *****************************************************************************/

#ifdef CONFIG_IWLWIFI_DEBUG

/*
 * The following adds a new attribute to the sysfs representation
 * of this device driver (i.e. a new file in /sys/class/net/wlan0/device/)
 * used for controlling the debug level.
 *
 * See the level definitions in iwl for details.
 *
 * The debug_level being managed using sysfs below is a per device debug
 * level that is used instead of the global debug level if it (the per
 * device debug level) is set.
 */
static ssize_t show_debug_level(struct device *d,
				struct device_attribute *attr, char *buf)
{
478
	struct iwl_shared *shrd = dev_get_drvdata(d);
479
	return sprintf(buf, "0x%08X\n", iwl_get_debug_level(shrd));
480 481 482 483 484
}
static ssize_t store_debug_level(struct device *d,
				struct device_attribute *attr,
				 const char *buf, size_t count)
{
485 486
	struct iwl_shared *shrd = dev_get_drvdata(d);
	struct iwl_priv *priv = shrd->priv;
487 488 489 490 491 492 493
	unsigned long val;
	int ret;

	ret = strict_strtoul(buf, 0, &val);
	if (ret)
		IWL_ERR(priv, "%s is not in hex or decimal form.\n", buf);
	else {
494
		shrd->dbg_level_dev = val;
495
		if (iwl_alloc_traffic_mem(priv))
496
			IWL_ERR(shrd->priv,
497 498 499 500 501 502 503 504 505 506 507 508 509 510 511
				"Not enough memory to generate traffic log\n");
	}
	return strnlen(buf, count);
}

static DEVICE_ATTR(debug_level, S_IWUSR | S_IRUGO,
			show_debug_level, store_debug_level);


#endif /* CONFIG_IWLWIFI_DEBUG */


static ssize_t show_temperature(struct device *d,
				struct device_attribute *attr, char *buf)
{
512 513
	struct iwl_shared *shrd = dev_get_drvdata(d);
	struct iwl_priv *priv = shrd->priv;
514

515
	if (!iwl_is_alive(priv->shrd))
516 517 518 519 520 521 522 523 524 525 526 527
		return -EAGAIN;

	return sprintf(buf, "%d\n", priv->temperature);
}

static DEVICE_ATTR(temperature, S_IRUGO, show_temperature, NULL);

static ssize_t show_tx_power(struct device *d,
			     struct device_attribute *attr, char *buf)
{
	struct iwl_priv *priv = dev_get_drvdata(d);

528
	if (!iwl_is_ready_rf(priv->shrd))
529 530 531 532 533 534 535 536 537 538 539 540 541 542 543 544 545 546 547 548 549 550 551 552 553 554 555 556 557 558 559 560 561 562 563 564 565 566 567 568 569 570 571
		return sprintf(buf, "off\n");
	else
		return sprintf(buf, "%d\n", priv->tx_power_user_lmt);
}

static ssize_t store_tx_power(struct device *d,
			      struct device_attribute *attr,
			      const char *buf, size_t count)
{
	struct iwl_priv *priv = dev_get_drvdata(d);
	unsigned long val;
	int ret;

	ret = strict_strtoul(buf, 10, &val);
	if (ret)
		IWL_INFO(priv, "%s is not in decimal form.\n", buf);
	else {
		ret = iwl_set_tx_power(priv, val, false);
		if (ret)
			IWL_ERR(priv, "failed setting tx power (0x%d).\n",
				ret);
		else
			ret = count;
	}
	return ret;
}

static DEVICE_ATTR(tx_power, S_IWUSR | S_IRUGO, show_tx_power, store_tx_power);

static struct attribute *iwl_sysfs_entries[] = {
	&dev_attr_temperature.attr,
	&dev_attr_tx_power.attr,
#ifdef CONFIG_IWLWIFI_DEBUG
	&dev_attr_debug_level.attr,
#endif
	NULL
};

static struct attribute_group iwl_attribute_group = {
	.name = NULL,		/* put in device directory */
	.attrs = iwl_sysfs_entries,
};

Z
Zhu Yi 已提交
572 573 574 575 576 577
/******************************************************************************
 *
 * uCode download functions
 *
 ******************************************************************************/

578
static void iwl_free_fw_desc(struct iwl_priv *priv, struct fw_desc *desc)
579 580
{
	if (desc->v_addr)
581
		dma_free_coherent(priv->bus->dev, desc->len,
582 583 584 585 586
				  desc->v_addr, desc->p_addr);
	desc->v_addr = NULL;
	desc->len = 0;
}

587
static void iwl_free_fw_img(struct iwl_priv *priv, struct fw_img *img)
588
{
589 590
	iwl_free_fw_desc(priv, &img->code);
	iwl_free_fw_desc(priv, &img->data);
591 592
}

593 594 595 596
static void iwl_dealloc_ucode(struct iwl_priv *priv)
{
	iwl_free_fw_img(priv, &priv->ucode_rt);
	iwl_free_fw_img(priv, &priv->ucode_init);
J
Johannes Berg 已提交
597
	iwl_free_fw_img(priv, &priv->ucode_wowlan);
598 599 600
}

static int iwl_alloc_fw_desc(struct iwl_priv *priv, struct fw_desc *desc,
601 602 603 604 605 606 607
			     const void *data, size_t len)
{
	if (!len) {
		desc->v_addr = NULL;
		return -EINVAL;
	}

608
	desc->v_addr = dma_alloc_coherent(priv->bus->dev, len,
609 610 611
					  &desc->p_addr, GFP_KERNEL);
	if (!desc->v_addr)
		return -ENOMEM;
612

613 614 615 616 617
	desc->len = len;
	memcpy(desc->v_addr, data, len);
	return 0;
}

618 619 620 621 622 623 624 625 626 627 628 629 630 631 632 633 634 635 636 637 638 639 640 641 642 643 644 645 646 647 648 649 650 651 652 653 654 655 656 657 658 659 660 661
static void iwl_init_context(struct iwl_priv *priv, u32 ucode_flags)
{
	int i;

	/*
	 * The default context is always valid,
	 * the PAN context depends on uCode.
	 */
	priv->valid_contexts = BIT(IWL_RXON_CTX_BSS);
	if (ucode_flags & IWL_UCODE_TLV_FLAGS_PAN)
		priv->valid_contexts |= BIT(IWL_RXON_CTX_PAN);

	for (i = 0; i < NUM_IWL_RXON_CTX; i++)
		priv->contexts[i].ctxid = i;

	priv->contexts[IWL_RXON_CTX_BSS].always_active = true;
	priv->contexts[IWL_RXON_CTX_BSS].is_active = true;
	priv->contexts[IWL_RXON_CTX_BSS].rxon_cmd = REPLY_RXON;
	priv->contexts[IWL_RXON_CTX_BSS].rxon_timing_cmd = REPLY_RXON_TIMING;
	priv->contexts[IWL_RXON_CTX_BSS].rxon_assoc_cmd = REPLY_RXON_ASSOC;
	priv->contexts[IWL_RXON_CTX_BSS].qos_cmd = REPLY_QOS_PARAM;
	priv->contexts[IWL_RXON_CTX_BSS].ap_sta_id = IWL_AP_ID;
	priv->contexts[IWL_RXON_CTX_BSS].wep_key_cmd = REPLY_WEPKEY;
	priv->contexts[IWL_RXON_CTX_BSS].exclusive_interface_modes =
		BIT(NL80211_IFTYPE_ADHOC);
	priv->contexts[IWL_RXON_CTX_BSS].interface_modes =
		BIT(NL80211_IFTYPE_STATION);
	priv->contexts[IWL_RXON_CTX_BSS].ap_devtype = RXON_DEV_TYPE_AP;
	priv->contexts[IWL_RXON_CTX_BSS].ibss_devtype = RXON_DEV_TYPE_IBSS;
	priv->contexts[IWL_RXON_CTX_BSS].station_devtype = RXON_DEV_TYPE_ESS;
	priv->contexts[IWL_RXON_CTX_BSS].unused_devtype = RXON_DEV_TYPE_ESS;

	priv->contexts[IWL_RXON_CTX_PAN].rxon_cmd = REPLY_WIPAN_RXON;
	priv->contexts[IWL_RXON_CTX_PAN].rxon_timing_cmd =
		REPLY_WIPAN_RXON_TIMING;
	priv->contexts[IWL_RXON_CTX_PAN].rxon_assoc_cmd =
		REPLY_WIPAN_RXON_ASSOC;
	priv->contexts[IWL_RXON_CTX_PAN].qos_cmd = REPLY_WIPAN_QOS_PARAM;
	priv->contexts[IWL_RXON_CTX_PAN].ap_sta_id = IWL_AP_ID_PAN;
	priv->contexts[IWL_RXON_CTX_PAN].wep_key_cmd = REPLY_WIPAN_WEPKEY;
	priv->contexts[IWL_RXON_CTX_PAN].bcast_sta_id = IWLAGN_PAN_BCAST_ID;
	priv->contexts[IWL_RXON_CTX_PAN].station_flags = STA_FLG_PAN_STATION;
	priv->contexts[IWL_RXON_CTX_PAN].interface_modes =
		BIT(NL80211_IFTYPE_STATION) | BIT(NL80211_IFTYPE_AP);
662 663 664 665 666 667

	if (ucode_flags & IWL_UCODE_TLV_FLAGS_P2P)
		priv->contexts[IWL_RXON_CTX_PAN].interface_modes |=
			BIT(NL80211_IFTYPE_P2P_CLIENT) |
			BIT(NL80211_IFTYPE_P2P_GO);

668 669 670 671 672 673 674 675
	priv->contexts[IWL_RXON_CTX_PAN].ap_devtype = RXON_DEV_TYPE_CP;
	priv->contexts[IWL_RXON_CTX_PAN].station_devtype = RXON_DEV_TYPE_2STA;
	priv->contexts[IWL_RXON_CTX_PAN].unused_devtype = RXON_DEV_TYPE_P2P;

	BUILD_BUG_ON(NUM_IWL_RXON_CTX != 2);
}


676 677
struct iwlagn_ucode_capabilities {
	u32 max_probe_length;
678
	u32 standard_phy_calibration_size;
J
Johannes Berg 已提交
679
	u32 flags;
680
};
681

682
static void iwl_ucode_callback(const struct firmware *ucode_raw, void *context);
683 684
static int iwl_mac_setup_register(struct iwl_priv *priv,
				  struct iwlagn_ucode_capabilities *capa);
685

686 687 688
#define UCODE_EXPERIMENTAL_INDEX	100
#define UCODE_EXPERIMENTAL_TAG		"exp"

689 690 691
static int __must_check iwl_request_firmware(struct iwl_priv *priv, bool first)
{
	const char *name_pre = priv->cfg->fw_name_pre;
692
	char tag[8];
693

694 695 696 697 698 699
	if (first) {
#ifdef CONFIG_IWLWIFI_DEBUG_EXPERIMENTAL_UCODE
		priv->fw_index = UCODE_EXPERIMENTAL_INDEX;
		strcpy(tag, UCODE_EXPERIMENTAL_TAG);
	} else if (priv->fw_index == UCODE_EXPERIMENTAL_INDEX) {
#endif
700
		priv->fw_index = priv->cfg->ucode_api_max;
701 702
		sprintf(tag, "%d", priv->fw_index);
	} else {
703
		priv->fw_index--;
704 705
		sprintf(tag, "%d", priv->fw_index);
	}
706 707 708 709 710 711

	if (priv->fw_index < priv->cfg->ucode_api_min) {
		IWL_ERR(priv, "no suitable firmware found!\n");
		return -ENOENT;
	}

712
	sprintf(priv->firmware_name, "%s%s%s", name_pre, tag, ".ucode");
713

714 715 716
	IWL_DEBUG_INFO(priv, "attempting to load firmware %s'%s'\n",
		       (priv->fw_index == UCODE_EXPERIMENTAL_INDEX)
				? "EXPERIMENTAL " : "",
717 718 719
		       priv->firmware_name);

	return request_firmware_nowait(THIS_MODULE, 1, priv->firmware_name,
720
				       priv->bus->dev,
721
				       GFP_KERNEL, priv, iwl_ucode_callback);
722 723
}

724
struct iwlagn_firmware_pieces {
J
Johannes Berg 已提交
725 726 727
	const void *inst, *data, *init, *init_data, *wowlan_inst, *wowlan_data;
	size_t inst_size, data_size, init_size, init_data_size,
	       wowlan_inst_size, wowlan_data_size;
728 729

	u32 build;
730 731 732

	u32 init_evtlog_ptr, init_evtlog_size, init_errlog_ptr;
	u32 inst_evtlog_ptr, inst_evtlog_size, inst_errlog_ptr;
733 734 735 736 737 738 739 740 741 742 743 744 745 746 747
};

static int iwlagn_load_legacy_firmware(struct iwl_priv *priv,
				       const struct firmware *ucode_raw,
				       struct iwlagn_firmware_pieces *pieces)
{
	struct iwl_ucode_header *ucode = (void *)ucode_raw->data;
	u32 api_ver, hdr_size;
	const u8 *src;

	priv->ucode_ver = le32_to_cpu(ucode->ver);
	api_ver = IWL_UCODE_API(priv->ucode_ver);

	switch (api_ver) {
	default:
748 749 750 751
		hdr_size = 28;
		if (ucode_raw->size < hdr_size) {
			IWL_ERR(priv, "File size too small!\n");
			return -EINVAL;
752
		}
753 754 755 756 757 758 759
		pieces->build = le32_to_cpu(ucode->u.v2.build);
		pieces->inst_size = le32_to_cpu(ucode->u.v2.inst_size);
		pieces->data_size = le32_to_cpu(ucode->u.v2.data_size);
		pieces->init_size = le32_to_cpu(ucode->u.v2.init_size);
		pieces->init_data_size = le32_to_cpu(ucode->u.v2.init_data_size);
		src = ucode->u.v2.data;
		break;
760 761 762 763 764 765 766 767 768 769 770 771 772 773 774 775 776 777 778 779
	case 0:
	case 1:
	case 2:
		hdr_size = 24;
		if (ucode_raw->size < hdr_size) {
			IWL_ERR(priv, "File size too small!\n");
			return -EINVAL;
		}
		pieces->build = 0;
		pieces->inst_size = le32_to_cpu(ucode->u.v1.inst_size);
		pieces->data_size = le32_to_cpu(ucode->u.v1.data_size);
		pieces->init_size = le32_to_cpu(ucode->u.v1.init_size);
		pieces->init_data_size = le32_to_cpu(ucode->u.v1.init_data_size);
		src = ucode->u.v1.data;
		break;
	}

	/* Verify size of file vs. image size info in file's header */
	if (ucode_raw->size != hdr_size + pieces->inst_size +
				pieces->data_size + pieces->init_size +
J
Johannes Berg 已提交
780
				pieces->init_data_size) {
781 782 783 784 785 786 787 788 789 790 791 792 793 794 795 796 797 798 799

		IWL_ERR(priv,
			"uCode file size %d does not match expected size\n",
			(int)ucode_raw->size);
		return -EINVAL;
	}

	pieces->inst = src;
	src += pieces->inst_size;
	pieces->data = src;
	src += pieces->data_size;
	pieces->init = src;
	src += pieces->init_size;
	pieces->init_data = src;
	src += pieces->init_data_size;

	return 0;
}

800 801 802 803 804 805 806 807 808
static int iwlagn_load_firmware(struct iwl_priv *priv,
				const struct firmware *ucode_raw,
				struct iwlagn_firmware_pieces *pieces,
				struct iwlagn_ucode_capabilities *capa)
{
	struct iwl_tlv_ucode_header *ucode = (void *)ucode_raw->data;
	struct iwl_ucode_tlv *tlv;
	size_t len = ucode_raw->size;
	const u8 *data;
809 810
	int wanted_alternative = iwlagn_mod_params.wanted_ucode_alternative;
	int tmp;
811
	u64 alternatives;
812 813 814
	u32 tlv_len;
	enum iwl_ucode_tlv_type tlv_type;
	const u8 *tlv_data;
815

816 817
	if (len < sizeof(*ucode)) {
		IWL_ERR(priv, "uCode has invalid length: %zd\n", len);
818
		return -EINVAL;
819
	}
820

821 822 823
	if (ucode->magic != cpu_to_le32(IWL_TLV_UCODE_MAGIC)) {
		IWL_ERR(priv, "invalid uCode magic: 0X%x\n",
			le32_to_cpu(ucode->magic));
824
		return -EINVAL;
825
	}
826 827 828 829 830 831 832 833 834 835 836 837 838 839 840 841 842 843 844 845 846 847 848 849

	/*
	 * Check which alternatives are present, and "downgrade"
	 * when the chosen alternative is not present, warning
	 * the user when that happens. Some files may not have
	 * any alternatives, so don't warn in that case.
	 */
	alternatives = le64_to_cpu(ucode->alternatives);
	tmp = wanted_alternative;
	if (wanted_alternative > 63)
		wanted_alternative = 63;
	while (wanted_alternative && !(alternatives & BIT(wanted_alternative)))
		wanted_alternative--;
	if (wanted_alternative && wanted_alternative != tmp)
		IWL_WARN(priv,
			 "uCode alternative %d not available, choosing %d\n",
			 tmp, wanted_alternative);

	priv->ucode_ver = le32_to_cpu(ucode->ver);
	pieces->build = le32_to_cpu(ucode->build);
	data = ucode->data;

	len -= sizeof(*ucode);

850
	while (len >= sizeof(*tlv)) {
851 852 853 854 855 856 857 858 859 860
		u16 tlv_alt;

		len -= sizeof(*tlv);
		tlv = (void *)data;

		tlv_len = le32_to_cpu(tlv->length);
		tlv_type = le16_to_cpu(tlv->type);
		tlv_alt = le16_to_cpu(tlv->alternative);
		tlv_data = tlv->data;

861 862 863
		if (len < tlv_len) {
			IWL_ERR(priv, "invalid TLV len: %zd/%u\n",
				len, tlv_len);
864
			return -EINVAL;
865
		}
866 867 868 869 870 871 872 873 874 875 876 877 878 879 880 881 882 883 884 885 886 887 888 889 890 891 892 893 894
		len -= ALIGN(tlv_len, 4);
		data += sizeof(*tlv) + ALIGN(tlv_len, 4);

		/*
		 * Alternative 0 is always valid.
		 *
		 * Skip alternative TLVs that are not selected.
		 */
		if (tlv_alt != 0 && tlv_alt != wanted_alternative)
			continue;

		switch (tlv_type) {
		case IWL_UCODE_TLV_INST:
			pieces->inst = tlv_data;
			pieces->inst_size = tlv_len;
			break;
		case IWL_UCODE_TLV_DATA:
			pieces->data = tlv_data;
			pieces->data_size = tlv_len;
			break;
		case IWL_UCODE_TLV_INIT:
			pieces->init = tlv_data;
			pieces->init_size = tlv_len;
			break;
		case IWL_UCODE_TLV_INIT_DATA:
			pieces->init_data = tlv_data;
			pieces->init_data_size = tlv_len;
			break;
		case IWL_UCODE_TLV_BOOT:
J
Johannes Berg 已提交
895
			IWL_ERR(priv, "Found unexpected BOOT ucode\n");
896 897
			break;
		case IWL_UCODE_TLV_PROBE_MAX_LEN:
898 899 900
			if (tlv_len != sizeof(u32))
				goto invalid_tlv_len;
			capa->max_probe_length =
901
					le32_to_cpup((__le32 *)tlv_data);
902
			break;
J
Johannes Berg 已提交
903 904 905
		case IWL_UCODE_TLV_PAN:
			if (tlv_len)
				goto invalid_tlv_len;
J
Johannes Berg 已提交
906 907 908 909 910 911 912 913 914 915 916 917 918 919 920 921 922
			capa->flags |= IWL_UCODE_TLV_FLAGS_PAN;
			break;
		case IWL_UCODE_TLV_FLAGS:
			/* must be at least one u32 */
			if (tlv_len < sizeof(u32))
				goto invalid_tlv_len;
			/* and a proper number of u32s */
			if (tlv_len % sizeof(u32))
				goto invalid_tlv_len;
			/*
			 * This driver only reads the first u32 as
			 * right now no more features are defined,
			 * if that changes then either the driver
			 * will not work with the new firmware, or
			 * it'll not take advantage of new features.
			 */
			capa->flags = le32_to_cpup((__le32 *)tlv_data);
J
Johannes Berg 已提交
923
			break;
924
		case IWL_UCODE_TLV_INIT_EVTLOG_PTR:
925 926 927
			if (tlv_len != sizeof(u32))
				goto invalid_tlv_len;
			pieces->init_evtlog_ptr =
928
					le32_to_cpup((__le32 *)tlv_data);
929 930
			break;
		case IWL_UCODE_TLV_INIT_EVTLOG_SIZE:
931 932 933
			if (tlv_len != sizeof(u32))
				goto invalid_tlv_len;
			pieces->init_evtlog_size =
934
					le32_to_cpup((__le32 *)tlv_data);
935 936
			break;
		case IWL_UCODE_TLV_INIT_ERRLOG_PTR:
937 938 939
			if (tlv_len != sizeof(u32))
				goto invalid_tlv_len;
			pieces->init_errlog_ptr =
940
					le32_to_cpup((__le32 *)tlv_data);
941 942
			break;
		case IWL_UCODE_TLV_RUNT_EVTLOG_PTR:
943 944 945
			if (tlv_len != sizeof(u32))
				goto invalid_tlv_len;
			pieces->inst_evtlog_ptr =
946
					le32_to_cpup((__le32 *)tlv_data);
947 948
			break;
		case IWL_UCODE_TLV_RUNT_EVTLOG_SIZE:
949 950 951
			if (tlv_len != sizeof(u32))
				goto invalid_tlv_len;
			pieces->inst_evtlog_size =
952
					le32_to_cpup((__le32 *)tlv_data);
953 954
			break;
		case IWL_UCODE_TLV_RUNT_ERRLOG_PTR:
955 956 957
			if (tlv_len != sizeof(u32))
				goto invalid_tlv_len;
			pieces->inst_errlog_ptr =
958
					le32_to_cpup((__le32 *)tlv_data);
959
			break;
960 961
		case IWL_UCODE_TLV_ENHANCE_SENS_TBL:
			if (tlv_len)
962 963
				goto invalid_tlv_len;
			priv->enhance_sensitivity_table = true;
964
			break;
J
Johannes Berg 已提交
965 966 967 968 969 970 971 972
		case IWL_UCODE_TLV_WOWLAN_INST:
			pieces->wowlan_inst = tlv_data;
			pieces->wowlan_inst_size = tlv_len;
			break;
		case IWL_UCODE_TLV_WOWLAN_DATA:
			pieces->wowlan_data = tlv_data;
			pieces->wowlan_data_size = tlv_len;
			break;
973
		case IWL_UCODE_TLV_PHY_CALIBRATION_SIZE:
974 975 976
			if (tlv_len != sizeof(u32))
				goto invalid_tlv_len;
			capa->standard_phy_calibration_size =
977 978
					le32_to_cpup((__le32 *)tlv_data);
			break;
979
		default:
980
			IWL_DEBUG_INFO(priv, "unknown TLV: %d\n", tlv_type);
981 982 983 984
			break;
		}
	}

985 986 987
	if (len) {
		IWL_ERR(priv, "invalid TLV after parsing: %zd\n", len);
		iwl_print_hex_dump(priv, IWL_DL_FW, (u8 *)data, len);
988
		return -EINVAL;
989
	}
990

991 992 993 994 995 996 997
	return 0;

 invalid_tlv_len:
	IWL_ERR(priv, "TLV %d has invalid size: %u\n", tlv_type, tlv_len);
	iwl_print_hex_dump(priv, IWL_DL_FW, tlv_data, tlv_len);

	return -EINVAL;
998 999
}

Z
Zhu Yi 已提交
1000
/**
1001
 * iwl_ucode_callback - callback when firmware was loaded
Z
Zhu Yi 已提交
1002
 *
1003 1004
 * If loaded successfully, copies the firmware into buffers
 * for the card to fetch (via DMA).
Z
Zhu Yi 已提交
1005
 */
1006
static void iwl_ucode_callback(const struct firmware *ucode_raw, void *context)
Z
Zhu Yi 已提交
1007
{
1008
	struct iwl_priv *priv = context;
1009
	struct iwl_ucode_header *ucode;
1010 1011
	int err;
	struct iwlagn_firmware_pieces pieces;
1012
	const unsigned int api_max = priv->cfg->ucode_api_max;
1013
	unsigned int api_ok = priv->cfg->ucode_api_ok;
1014
	const unsigned int api_min = priv->cfg->ucode_api_min;
1015
	u32 api_ver;
1016
	char buildstr[25];
1017
	u32 build;
1018 1019
	struct iwlagn_ucode_capabilities ucode_capa = {
		.max_probe_length = 200,
1020
		.standard_phy_calibration_size =
1021
			IWL_DEFAULT_STANDARD_PHY_CALIBRATE_TBL_SIZE,
1022
	};
1023

1024 1025 1026
	if (!api_ok)
		api_ok = api_max;

1027
	memset(&pieces, 0, sizeof(pieces));
Z
Zhu Yi 已提交
1028

1029
	if (!ucode_raw) {
1030
		if (priv->fw_index <= api_ok)
1031 1032 1033
			IWL_ERR(priv,
				"request for firmware file '%s' failed.\n",
				priv->firmware_name);
1034
		goto try_again;
Z
Zhu Yi 已提交
1035 1036
	}

1037 1038
	IWL_DEBUG_INFO(priv, "Loaded firmware file '%s' (%zd bytes).\n",
		       priv->firmware_name, ucode_raw->size);
Z
Zhu Yi 已提交
1039

1040 1041
	/* Make sure that we got at least the API version number */
	if (ucode_raw->size < 4) {
1042
		IWL_ERR(priv, "File size way too small!\n");
1043
		goto try_again;
Z
Zhu Yi 已提交
1044 1045 1046
	}

	/* Data from ucode file:  header followed by uCode images */
1047
	ucode = (struct iwl_ucode_header *)ucode_raw->data;
Z
Zhu Yi 已提交
1048

1049 1050 1051
	if (ucode->ver)
		err = iwlagn_load_legacy_firmware(priv, ucode_raw, &pieces);
	else
1052 1053
		err = iwlagn_load_firmware(priv, ucode_raw, &pieces,
					   &ucode_capa);
1054

1055 1056
	if (err)
		goto try_again;
Z
Zhu Yi 已提交
1057

1058
	api_ver = IWL_UCODE_API(priv->ucode_ver);
1059
	build = pieces.build;
1060

1061 1062 1063 1064 1065
	/*
	 * api_ver should match the api version forming part of the
	 * firmware filename ... but we don't check for that and only rely
	 * on the API version read from firmware header from here on forward
	 */
1066 1067 1068 1069 1070 1071 1072 1073 1074
	/* no api version check required for experimental uCode */
	if (priv->fw_index != UCODE_EXPERIMENTAL_INDEX) {
		if (api_ver < api_min || api_ver > api_max) {
			IWL_ERR(priv,
				"Driver unable to support your firmware API. "
				"Driver supports v%u, firmware is v%u.\n",
				api_max, api_ver);
			goto try_again;
		}
1075

1076 1077 1078 1079 1080 1081 1082 1083 1084 1085 1086 1087
		if (api_ver < api_ok) {
			if (api_ok != api_max)
				IWL_ERR(priv, "Firmware has old API version, "
					"expected v%u through v%u, got v%u.\n",
					api_ok, api_max, api_ver);
			else
				IWL_ERR(priv, "Firmware has old API version, "
					"expected v%u, got v%u.\n",
					api_max, api_ver);
			IWL_ERR(priv, "New firmware can be obtained from "
				      "http://www.intellinuxwireless.org/.\n");
		}
1088
	}
1089

1090
	if (build)
1091 1092 1093
		sprintf(buildstr, " build %u%s", build,
		       (priv->fw_index == UCODE_EXPERIMENTAL_INDEX)
				? " (EXP)" : "");
1094 1095 1096 1097 1098 1099 1100 1101 1102
	else
		buildstr[0] = '\0';

	IWL_INFO(priv, "loaded firmware version %u.%u.%u.%u%s\n",
		 IWL_UCODE_MAJOR(priv->ucode_ver),
		 IWL_UCODE_MINOR(priv->ucode_ver),
		 IWL_UCODE_API(priv->ucode_ver),
		 IWL_UCODE_SERIAL(priv->ucode_ver),
		 buildstr);
1103

1104 1105
	snprintf(priv->hw->wiphy->fw_version,
		 sizeof(priv->hw->wiphy->fw_version),
1106
		 "%u.%u.%u.%u%s",
1107 1108 1109
		 IWL_UCODE_MAJOR(priv->ucode_ver),
		 IWL_UCODE_MINOR(priv->ucode_ver),
		 IWL_UCODE_API(priv->ucode_ver),
1110 1111
		 IWL_UCODE_SERIAL(priv->ucode_ver),
		 buildstr);
Z
Zhu Yi 已提交
1112

1113 1114 1115 1116 1117 1118
	/*
	 * For any of the failures below (before allocating pci memory)
	 * we will try to load a version with a smaller API -- maybe the
	 * user just got a corrupted version of the latest API.
	 */

1119 1120 1121 1122 1123 1124 1125 1126 1127 1128
	IWL_DEBUG_INFO(priv, "f/w package hdr ucode version raw = 0x%x\n",
		       priv->ucode_ver);
	IWL_DEBUG_INFO(priv, "f/w package hdr runtime inst size = %Zd\n",
		       pieces.inst_size);
	IWL_DEBUG_INFO(priv, "f/w package hdr runtime data size = %Zd\n",
		       pieces.data_size);
	IWL_DEBUG_INFO(priv, "f/w package hdr init inst size = %Zd\n",
		       pieces.init_size);
	IWL_DEBUG_INFO(priv, "f/w package hdr init data size = %Zd\n",
		       pieces.init_data_size);
Z
Zhu Yi 已提交
1129 1130

	/* Verify that uCode images will fit in card's SRAM */
1131
	if (pieces.inst_size > hw_params(priv).max_inst_size) {
1132 1133
		IWL_ERR(priv, "uCode instr len %Zd too large to fit in\n",
			pieces.inst_size);
1134
		goto try_again;
Z
Zhu Yi 已提交
1135 1136
	}

1137
	if (pieces.data_size > hw_params(priv).max_data_size) {
1138 1139
		IWL_ERR(priv, "uCode data len %Zd too large to fit in\n",
			pieces.data_size);
1140
		goto try_again;
Z
Zhu Yi 已提交
1141
	}
1142

1143
	if (pieces.init_size > hw_params(priv).max_inst_size) {
1144 1145
		IWL_ERR(priv, "uCode init instr len %Zd too large to fit in\n",
			pieces.init_size);
1146
		goto try_again;
Z
Zhu Yi 已提交
1147
	}
1148

1149
	if (pieces.init_data_size > hw_params(priv).max_data_size) {
1150 1151
		IWL_ERR(priv, "uCode init data len %Zd too large to fit in\n",
			pieces.init_data_size);
1152
		goto try_again;
Z
Zhu Yi 已提交
1153
	}
1154

Z
Zhu Yi 已提交
1155 1156 1157 1158 1159
	/* Allocate ucode buffers for card's bus-master loading ... */

	/* Runtime instructions and 2 copies of data:
	 * 1) unmodified from disk
	 * 2) backup cache for save/restore during power-downs */
1160
	if (iwl_alloc_fw_desc(priv, &priv->ucode_rt.code,
1161 1162
			      pieces.inst, pieces.inst_size))
		goto err_pci_alloc;
1163
	if (iwl_alloc_fw_desc(priv, &priv->ucode_rt.data,
1164
			      pieces.data, pieces.data_size))
1165 1166
		goto err_pci_alloc;

Z
Zhu Yi 已提交
1167
	/* Initialization instructions and data */
1168
	if (pieces.init_size && pieces.init_data_size) {
1169
		if (iwl_alloc_fw_desc(priv, &priv->ucode_init.code,
1170 1171
				      pieces.init, pieces.init_size))
			goto err_pci_alloc;
1172
		if (iwl_alloc_fw_desc(priv, &priv->ucode_init.data,
1173
				      pieces.init_data, pieces.init_data_size))
1174 1175
			goto err_pci_alloc;
	}
Z
Zhu Yi 已提交
1176

J
Johannes Berg 已提交
1177 1178 1179 1180 1181 1182 1183 1184 1185 1186 1187 1188
	/* WoWLAN instructions and data */
	if (pieces.wowlan_inst_size && pieces.wowlan_data_size) {
		if (iwl_alloc_fw_desc(priv, &priv->ucode_wowlan.code,
				      pieces.wowlan_inst,
				      pieces.wowlan_inst_size))
			goto err_pci_alloc;
		if (iwl_alloc_fw_desc(priv, &priv->ucode_wowlan.data,
				      pieces.wowlan_data,
				      pieces.wowlan_data_size))
			goto err_pci_alloc;
	}

1189 1190 1191 1192 1193 1194 1195
	/* Now that we can no longer fail, copy information */

	/*
	 * The (size - 16) / 12 formula is based on the information recorded
	 * for each event, which is of mode 1 (including timestamp) for all
	 * new microcodes that include this information.
	 */
W
Wey-Yi Guy 已提交
1196
	priv->init_evtlog_ptr = pieces.init_evtlog_ptr;
1197
	if (pieces.init_evtlog_size)
W
Wey-Yi Guy 已提交
1198
		priv->init_evtlog_size = (pieces.init_evtlog_size - 16)/12;
1199
	else
W
Wey-Yi Guy 已提交
1200
		priv->init_evtlog_size =
1201
			priv->cfg->base_params->max_event_log_size;
W
Wey-Yi Guy 已提交
1202 1203
	priv->init_errlog_ptr = pieces.init_errlog_ptr;
	priv->inst_evtlog_ptr = pieces.inst_evtlog_ptr;
1204
	if (pieces.inst_evtlog_size)
W
Wey-Yi Guy 已提交
1205
		priv->inst_evtlog_size = (pieces.inst_evtlog_size - 16)/12;
1206
	else
W
Wey-Yi Guy 已提交
1207
		priv->inst_evtlog_size =
1208
			priv->cfg->base_params->max_event_log_size;
W
Wey-Yi Guy 已提交
1209
	priv->inst_errlog_ptr = pieces.inst_errlog_ptr;
1210

1211 1212 1213
	priv->new_scan_threshold_behaviour =
		!!(ucode_capa.flags & IWL_UCODE_TLV_FLAGS_NEWSCAN);

1214 1215
	if (!(priv->cfg->sku & EEPROM_SKU_CAP_IPAN_ENABLE))
		ucode_capa.flags &= ~IWL_UCODE_TLV_FLAGS_PAN;
1216

1217 1218 1219 1220 1221 1222 1223
	/*
	 * if not PAN, then don't support P2P -- might be a uCode
	 * packaging bug or due to the eeprom check above
	 */
	if (!(ucode_capa.flags & IWL_UCODE_TLV_FLAGS_PAN))
		ucode_capa.flags &= ~IWL_UCODE_TLV_FLAGS_P2P;

1224 1225
	if (ucode_capa.flags & IWL_UCODE_TLV_FLAGS_PAN) {
		priv->sta_key_max_num = STA_KEY_MAX_NUM_PAN;
1226
		priv->shrd->cmd_queue = IWL_IPAN_CMD_QUEUE_NUM;
1227 1228
	} else {
		priv->sta_key_max_num = STA_KEY_MAX_NUM;
1229
		priv->shrd->cmd_queue = IWL_DEFAULT_CMD_QUEUE_NUM;
1230
	}
J
Johannes Berg 已提交
1231

1232 1233 1234 1235 1236 1237 1238 1239 1240
	/*
	 * figure out the offset of chain noise reset and gain commands
	 * base on the size of standard phy calibration commands table size
	 */
	if (ucode_capa.standard_phy_calibration_size >
	    IWL_MAX_PHY_CALIBRATE_TBL_SIZE)
		ucode_capa.standard_phy_calibration_size =
			IWL_MAX_STANDARD_PHY_CALIBRATE_TBL_SIZE;

W
Wey-Yi Guy 已提交
1241
	priv->phy_calib_chain_noise_reset_cmd =
1242
		ucode_capa.standard_phy_calibration_size;
W
Wey-Yi Guy 已提交
1243
	priv->phy_calib_chain_noise_gain_cmd =
1244 1245
		ucode_capa.standard_phy_calibration_size + 1;

1246 1247 1248
	/* initialize all valid contexts */
	iwl_init_context(priv, ucode_capa.flags);

1249 1250 1251 1252 1253
	/**************************************************
	 * This is still part of probe() in a sense...
	 *
	 * 9. Setup and register with mac80211 and debugfs
	 **************************************************/
1254
	err = iwl_mac_setup_register(priv, &ucode_capa);
1255 1256 1257 1258 1259 1260 1261
	if (err)
		goto out_unbind;

	err = iwl_dbgfs_register(priv, DRV_NAME);
	if (err)
		IWL_ERR(priv, "failed to create debugfs files. Ignoring error: %d\n", err);

1262
	err = sysfs_create_group(&(priv->bus->dev->kobj),
1263 1264 1265 1266 1267 1268
					&iwl_attribute_group);
	if (err) {
		IWL_ERR(priv, "failed to create sysfs device attributes\n");
		goto out_unbind;
	}

Z
Zhu Yi 已提交
1269 1270
	/* We have our copies now, allow OS release its copies */
	release_firmware(ucode_raw);
W
Wey-Yi Guy 已提交
1271
	complete(&priv->firmware_loading_complete);
1272 1273 1274 1275 1276 1277 1278 1279
	return;

 try_again:
	/* try next, if any */
	if (iwl_request_firmware(priv, false))
		goto out_unbind;
	release_firmware(ucode_raw);
	return;
Z
Zhu Yi 已提交
1280 1281

 err_pci_alloc:
1282
	IWL_ERR(priv, "failed to allocate pci memory\n");
1283
	iwl_dealloc_ucode(priv);
1284
 out_unbind:
W
Wey-Yi Guy 已提交
1285
	complete(&priv->firmware_loading_complete);
1286
	device_release_driver(priv->bus->dev);
Z
Zhu Yi 已提交
1287 1288 1289
	release_firmware(ucode_raw);
}

1290 1291 1292 1293 1294 1295 1296
static void iwl_rf_kill_ct_config(struct iwl_priv *priv)
{
	struct iwl_ct_kill_config cmd;
	struct iwl_ct_kill_throttling_config adv_cmd;
	unsigned long flags;
	int ret = 0;

1297
	spin_lock_irqsave(&priv->shrd->lock, flags);
1298
	iwl_write32(bus(priv), CSR_UCODE_DRV_GP1_CLR,
1299
		    CSR_UCODE_DRV_GP1_REG_BIT_CT_KILL_EXIT);
1300
	spin_unlock_irqrestore(&priv->shrd->lock, flags);
1301 1302
	priv->thermal_throttle.ct_kill_toggle = false;

1303
	if (priv->cfg->base_params->support_ct_kill_exit) {
1304
		adv_cmd.critical_temperature_enter =
1305
			cpu_to_le32(hw_params(priv).ct_kill_threshold);
1306
		adv_cmd.critical_temperature_exit =
1307
			cpu_to_le32(hw_params(priv).ct_kill_exit_threshold);
1308

1309
		ret = iwl_trans_send_cmd_pdu(trans(priv),
1310 1311
				       REPLY_CT_KILL_CONFIG_CMD,
				       CMD_SYNC, sizeof(adv_cmd), &adv_cmd);
1312 1313 1314 1315
		if (ret)
			IWL_ERR(priv, "REPLY_CT_KILL_CONFIG_CMD failed\n");
		else
			IWL_DEBUG_INFO(priv, "REPLY_CT_KILL_CONFIG_CMD "
1316 1317 1318 1319
				"succeeded, critical temperature enter is %d,"
				"exit is %d\n",
				hw_params(priv).ct_kill_threshold,
				hw_params(priv).ct_kill_exit_threshold);
1320 1321
	} else {
		cmd.critical_temperature_R =
1322
			cpu_to_le32(hw_params(priv).ct_kill_threshold);
1323

1324
		ret = iwl_trans_send_cmd_pdu(trans(priv),
1325 1326
				       REPLY_CT_KILL_CONFIG_CMD,
				       CMD_SYNC, sizeof(cmd), &cmd);
1327 1328 1329 1330
		if (ret)
			IWL_ERR(priv, "REPLY_CT_KILL_CONFIG_CMD failed\n");
		else
			IWL_DEBUG_INFO(priv, "REPLY_CT_KILL_CONFIG_CMD "
1331 1332 1333
				"succeeded, "
				"critical temperature is %d\n",
				hw_params(priv).ct_kill_threshold);
1334 1335 1336
	}
}

1337 1338 1339 1340 1341
static int iwlagn_send_calib_cfg_rt(struct iwl_priv *priv, u32 cfg)
{
	struct iwl_calib_cfg_cmd calib_cfg_cmd;
	struct iwl_host_cmd cmd = {
		.id = CALIBRATION_CFG_CMD,
1342 1343
		.len = { sizeof(struct iwl_calib_cfg_cmd), },
		.data = { &calib_cfg_cmd, },
1344 1345 1346 1347
	};

	memset(&calib_cfg_cmd, 0, sizeof(calib_cfg_cmd));
	calib_cfg_cmd.ucd_calib_cfg.once.is_enable = IWL_CALIB_INIT_CFG_ALL;
1348
	calib_cfg_cmd.ucd_calib_cfg.once.start = cpu_to_le32(cfg);
1349

1350
	return iwl_trans_send_cmd(trans(priv), &cmd);
1351 1352 1353
}


W
Wey-Yi Guy 已提交
1354 1355 1356 1357 1358 1359 1360 1361
static int iwlagn_send_tx_ant_config(struct iwl_priv *priv, u8 valid_tx_ant)
{
	struct iwl_tx_ant_config_cmd tx_ant_cmd = {
	  .valid = cpu_to_le32(valid_tx_ant),
	};

	if (IWL_UCODE_API(priv->ucode_ver) > 1) {
		IWL_DEBUG_HC(priv, "select valid tx ant: %u\n", valid_tx_ant);
1362
		return iwl_trans_send_cmd_pdu(trans(priv),
W
Wey-Yi Guy 已提交
1363 1364 1365 1366 1367 1368 1369 1370 1371 1372
					TX_ANT_CONFIGURATION_CMD,
					CMD_SYNC,
					sizeof(struct iwl_tx_ant_config_cmd),
					&tx_ant_cmd);
	} else {
		IWL_DEBUG_HC(priv, "TX_ANT_CONFIGURATION_CMD not supported\n");
		return -EOPNOTSUPP;
	}
}

Z
Zhu Yi 已提交
1373
/**
1374
 * iwl_alive_start - called after REPLY_ALIVE notification received
Z
Zhu Yi 已提交
1375
 *                   from protocol/runtime uCode (initialization uCode's
1376
 *                   Alive gets handled by iwl_init_alive_start()).
Z
Zhu Yi 已提交
1377
 */
1378
int iwl_alive_start(struct iwl_priv *priv)
Z
Zhu Yi 已提交
1379
{
1380
	int ret = 0;
1381
	struct iwl_rxon_context *ctx = &priv->contexts[IWL_RXON_CTX_BSS];
Z
Zhu Yi 已提交
1382

1383
	/*TODO: this should go to the transport layer */
1384
	iwl_reset_ict(trans(priv));
Z
Zhu Yi 已提交
1385

1386
	IWL_DEBUG_INFO(priv, "Runtime Alive received.\n");
1387

1388
	/* After the ALIVE response, we can send host commands to the uCode */
1389
	set_bit(STATUS_ALIVE, &priv->shrd->status);
Z
Zhu Yi 已提交
1390

1391 1392
	/* Enable watchdog to monitor the driver tx queues */
	iwl_setup_watchdog(priv);
1393

1394
	if (iwl_is_rfkill(priv->shrd))
1395
		return -ERFKILL;
Z
Zhu Yi 已提交
1396

1397
	/* download priority table before any calibration request */
1398 1399
	if (priv->cfg->bt_params &&
	    priv->cfg->bt_params->advanced_bt_coexist) {
1400
		/* Configure Bluetooth device coexistence support */
1401 1402 1403 1404 1405
		if (priv->cfg->bt_params->bt_sco_disable)
			priv->bt_enable_pspoll = false;
		else
			priv->bt_enable_pspoll = true;

1406 1407 1408
		priv->bt_valid = IWLAGN_BT_ALL_VALID_MSK;
		priv->kill_ack_mask = IWLAGN_BT_KILL_ACK_MASK_DEFAULT;
		priv->kill_cts_mask = IWLAGN_BT_KILL_CTS_MASK_DEFAULT;
W
Wey-Yi Guy 已提交
1409
		iwlagn_send_advance_bt_config(priv);
1410
		priv->bt_valid = IWLAGN_BT_VALID_ENABLE_FLAGS;
1411 1412
		priv->cur_rssi_ctx = NULL;

1413
		iwlagn_send_prio_tbl(priv);
1414 1415

		/* FIXME: w/a to force change uCode BT state machine */
1416 1417 1418 1419 1420 1421 1422 1423
		ret = iwlagn_send_bt_env(priv, IWL_BT_COEX_ENV_OPEN,
					 BT_COEX_PRIO_TBL_EVT_INIT_CALIB2);
		if (ret)
			return ret;
		ret = iwlagn_send_bt_env(priv, IWL_BT_COEX_ENV_CLOSE,
					 BT_COEX_PRIO_TBL_EVT_INIT_CALIB2);
		if (ret)
			return ret;
W
Wey-Yi Guy 已提交
1424 1425 1426 1427 1428
	} else {
		/*
		 * default is 2-wire BT coexexistence support
		 */
		iwl_send_bt_config(priv);
1429
	}
W
Wey-Yi Guy 已提交
1430

1431 1432 1433
	if (hw_params(priv).calib_rt_cfg)
		iwlagn_send_calib_cfg_rt(priv,
					 hw_params(priv).calib_rt_cfg);
1434

1435
	ieee80211_wake_queues(priv->hw);
Z
Zhu Yi 已提交
1436

1437
	priv->active_rate = IWL_RATES_MASK;
Z
Zhu Yi 已提交
1438

1439
	/* Configure Tx antenna selection based on H/W config */
W
Wey-Yi Guy 已提交
1440
	iwlagn_send_tx_ant_config(priv, priv->cfg->valid_tx_ant);
1441

1442
	if (iwl_is_associated_ctx(ctx) && !priv->shrd->wowlan) {
G
Gregory Greenman 已提交
1443
		struct iwl_rxon_cmd *active_rxon =
1444
				(struct iwl_rxon_cmd *)&ctx->active;
1445
		/* apply any changes in staging */
1446
		ctx->staging.filter_flags |= RXON_FILTER_ASSOC_MSK;
Z
Zhu Yi 已提交
1447 1448
		active_rxon->filter_flags &= ~RXON_FILTER_ASSOC_MSK;
	} else {
1449
		struct iwl_rxon_context *tmp;
Z
Zhu Yi 已提交
1450
		/* Initialize our rx_config data */
1451 1452
		for_each_context(priv, tmp)
			iwl_connection_init_rx_config(priv, tmp);
1453

W
Wey-Yi Guy 已提交
1454
		iwlagn_set_rxon_chain(priv, ctx);
Z
Zhu Yi 已提交
1455 1456
	}

1457
	if (!priv->shrd->wowlan) {
J
Johannes Berg 已提交
1458 1459 1460
		/* WoWLAN ucode will not reply in the same way, skip it */
		iwl_reset_run_time_calib(priv);
	}
1461

1462
	set_bit(STATUS_READY, &priv->shrd->status);
1463

Z
Zhu Yi 已提交
1464
	/* Configure the adapter for unassociated operation */
1465
	ret = iwlagn_commit_rxon(priv, ctx);
1466 1467
	if (ret)
		return ret;
Z
Zhu Yi 已提交
1468 1469

	/* At this point, the NIC is initialized and operational */
1470
	iwl_rf_kill_ct_config(priv);
1471

1472
	IWL_DEBUG_INFO(priv, "ALIVE processing complete.\n");
1473

1474
	return iwl_power_update_mode(priv, true);
Z
Zhu Yi 已提交
1475 1476
}

1477
static void iwl_cancel_deferred_work(struct iwl_priv *priv);
Z
Zhu Yi 已提交
1478

1479
static void __iwl_down(struct iwl_priv *priv)
Z
Zhu Yi 已提交
1480
{
1481
	int exit_pending;
Z
Zhu Yi 已提交
1482

1483
	IWL_DEBUG_INFO(priv, DRV_NAME " is going down\n");
Z
Zhu Yi 已提交
1484

1485 1486
	iwl_scan_cancel_timeout(priv, 200);

1487 1488 1489 1490 1491 1492 1493
	/*
	 * If active, scanning won't cancel it, so say it expired.
	 * No race since we hold the mutex here and a new one
	 * can't come in at this time.
	 */
	ieee80211_remain_on_channel_expired(priv->hw);

1494 1495
	exit_pending =
		test_and_set_bit(STATUS_EXIT_PENDING, &priv->shrd->status);
Z
Zhu Yi 已提交
1496

1497 1498
	/* Stop TX queues watchdog. We need to have STATUS_EXIT_PENDING bit set
	 * to prevent rearm timer */
1499
	del_timer_sync(&priv->watchdog);
1500

1501
	iwl_clear_ucode_stations(priv, NULL);
1502
	iwl_dealloc_bcast_stations(priv);
1503
	iwl_clear_driver_stations(priv);
Z
Zhu Yi 已提交
1504

1505
	/* reset BT coex data */
1506
	priv->bt_status = 0;
1507 1508
	priv->cur_rssi_ctx = NULL;
	priv->bt_is_sco = 0;
1509 1510 1511 1512 1513
	if (priv->cfg->bt_params)
		priv->bt_traffic_load =
			 priv->cfg->bt_params->bt_init_traffic_load;
	else
		priv->bt_traffic_load = 0;
1514 1515
	priv->bt_full_concurrent = false;
	priv->bt_ci_compliance = 0;
1516

Z
Zhu Yi 已提交
1517 1518 1519
	/* Wipe out the EXIT_PENDING status bit if we are not actually
	 * exiting the module */
	if (!exit_pending)
1520
		clear_bit(STATUS_EXIT_PENDING, &priv->shrd->status);
Z
Zhu Yi 已提交
1521 1522 1523 1524

	if (priv->mac80211_registered)
		ieee80211_stop_queues(priv->hw);

J
Johannes Berg 已提交
1525
	/* Clear out all status bits but a few that are stable across reset */
1526 1527
	priv->shrd->status &=
			test_bit(STATUS_RF_KILL_HW, &priv->shrd->status) <<
Z
Zhu Yi 已提交
1528
				STATUS_RF_KILL_HW |
1529
			test_bit(STATUS_GEO_CONFIGURED, &priv->shrd->status) <<
1530
				STATUS_GEO_CONFIGURED |
1531
			test_bit(STATUS_FW_ERROR, &priv->shrd->status) <<
1532
				STATUS_FW_ERROR |
1533
			test_bit(STATUS_EXIT_PENDING, &priv->shrd->status) <<
1534
				STATUS_EXIT_PENDING;
Z
Zhu Yi 已提交
1535

1536
	iwl_trans_stop_device(trans(priv));
1537

1538
	dev_kfree_skb(priv->beacon_skb);
1539
	priv->beacon_skb = NULL;
Z
Zhu Yi 已提交
1540 1541
}

1542
static void iwl_down(struct iwl_priv *priv)
Z
Zhu Yi 已提交
1543
{
1544
	mutex_lock(&priv->shrd->mutex);
1545
	__iwl_down(priv);
1546
	mutex_unlock(&priv->shrd->mutex);
1547

1548
	iwl_cancel_deferred_work(priv);
Z
Zhu Yi 已提交
1549 1550 1551 1552
}

#define MAX_HW_RESTARTS 5

1553
static int __iwl_up(struct iwl_priv *priv)
Z
Zhu Yi 已提交
1554
{
1555
	struct iwl_rxon_context *ctx;
1556
	int ret;
Z
Zhu Yi 已提交
1557

1558
	lockdep_assert_held(&priv->shrd->mutex);
1559

1560
	if (test_bit(STATUS_EXIT_PENDING, &priv->shrd->status)) {
1561
		IWL_WARN(priv, "Exit pending; will not bring the NIC up\n");
Z
Zhu Yi 已提交
1562 1563 1564
		return -EIO;
	}

1565
	for_each_context(priv, ctx) {
1566
		ret = iwlagn_alloc_bcast_station(priv, ctx);
1567 1568 1569 1570 1571
		if (ret) {
			iwl_dealloc_bcast_stations(priv);
			return ret;
		}
	}
1572

1573 1574 1575 1576 1577
	ret = iwlagn_run_init_ucode(priv);
	if (ret) {
		IWL_ERR(priv, "Failed to run INIT ucode: %d\n", ret);
		goto error;
	}
Z
Zhu Yi 已提交
1578

1579
	ret = iwlagn_load_ucode_wait_alive(priv,
1580
					   &priv->ucode_rt,
1581
					   IWL_UCODE_REGULAR);
1582 1583 1584
	if (ret) {
		IWL_ERR(priv, "Failed to start RT ucode: %d\n", ret);
		goto error;
Z
Zhu Yi 已提交
1585 1586
	}

1587 1588 1589 1590 1591 1592
	ret = iwl_alive_start(priv);
	if (ret)
		goto error;
	return 0;

 error:
1593
	set_bit(STATUS_EXIT_PENDING, &priv->shrd->status);
1594
	__iwl_down(priv);
1595
	clear_bit(STATUS_EXIT_PENDING, &priv->shrd->status);
Z
Zhu Yi 已提交
1596

1597 1598
	IWL_ERR(priv, "Unable to initialize device.\n");
	return ret;
Z
Zhu Yi 已提交
1599 1600 1601 1602 1603 1604 1605 1606 1607
}


/*****************************************************************************
 *
 * Workqueue callbacks
 *
 *****************************************************************************/

1608 1609 1610 1611 1612
static void iwl_bg_run_time_calib_work(struct work_struct *work)
{
	struct iwl_priv *priv = container_of(work, struct iwl_priv,
			run_time_calib_work);

1613
	mutex_lock(&priv->shrd->mutex);
1614

1615 1616
	if (test_bit(STATUS_EXIT_PENDING, &priv->shrd->status) ||
	    test_bit(STATUS_SCANNING, &priv->shrd->status)) {
1617
		mutex_unlock(&priv->shrd->mutex);
1618 1619 1620 1621
		return;
	}

	if (priv->start_calib) {
1622 1623
		iwl_chain_noise_calibration(priv);
		iwl_sensitivity_calibration(priv);
1624 1625
	}

1626
	mutex_unlock(&priv->shrd->mutex);
1627 1628
}

J
Johannes Berg 已提交
1629 1630 1631 1632 1633 1634 1635
static void iwlagn_prepare_restart(struct iwl_priv *priv)
{
	struct iwl_rxon_context *ctx;
	bool bt_full_concurrent;
	u8 bt_ci_compliance;
	u8 bt_load;
	u8 bt_status;
1636
	bool bt_is_sco;
J
Johannes Berg 已提交
1637

1638
	lockdep_assert_held(&priv->shrd->mutex);
J
Johannes Berg 已提交
1639 1640 1641 1642 1643 1644 1645 1646 1647 1648 1649 1650 1651 1652 1653 1654 1655 1656

	for_each_context(priv, ctx)
		ctx->vif = NULL;
	priv->is_open = 0;

	/*
	 * __iwl_down() will clear the BT status variables,
	 * which is correct, but when we restart we really
	 * want to keep them so restore them afterwards.
	 *
	 * The restart process will later pick them up and
	 * re-configure the hw when we reconfigure the BT
	 * command.
	 */
	bt_full_concurrent = priv->bt_full_concurrent;
	bt_ci_compliance = priv->bt_ci_compliance;
	bt_load = priv->bt_traffic_load;
	bt_status = priv->bt_status;
1657
	bt_is_sco = priv->bt_is_sco;
J
Johannes Berg 已提交
1658 1659 1660 1661 1662 1663 1664

	__iwl_down(priv);

	priv->bt_full_concurrent = bt_full_concurrent;
	priv->bt_ci_compliance = bt_ci_compliance;
	priv->bt_traffic_load = bt_load;
	priv->bt_status = bt_status;
1665
	priv->bt_is_sco = bt_is_sco;
J
Johannes Berg 已提交
1666 1667
}

1668
static void iwl_bg_restart(struct work_struct *data)
Z
Zhu Yi 已提交
1669
{
1670
	struct iwl_priv *priv = container_of(data, struct iwl_priv, restart);
Z
Zhu Yi 已提交
1671

1672
	if (test_bit(STATUS_EXIT_PENDING, &priv->shrd->status))
Z
Zhu Yi 已提交
1673 1674
		return;

1675
	if (test_and_clear_bit(STATUS_FW_ERROR, &priv->shrd->status)) {
1676
		mutex_lock(&priv->shrd->mutex);
J
Johannes Berg 已提交
1677
		iwlagn_prepare_restart(priv);
1678
		mutex_unlock(&priv->shrd->mutex);
1679
		iwl_cancel_deferred_work(priv);
J
Johannes Berg 已提交
1680 1681
		ieee80211_restart_hw(priv->hw);
	} else {
1682
		WARN_ON(1);
J
Johannes Berg 已提交
1683
	}
Z
Zhu Yi 已提交
1684 1685 1686 1687 1688 1689 1690 1691
}

/*****************************************************************************
 *
 * mac80211 entry point functions
 *
 *****************************************************************************/

1692 1693 1694 1695 1696 1697 1698 1699 1700 1701 1702 1703 1704 1705 1706 1707 1708 1709 1710 1711 1712 1713 1714 1715 1716 1717 1718 1719 1720 1721 1722 1723 1724 1725 1726 1727 1728 1729 1730 1731 1732 1733 1734 1735 1736 1737 1738 1739 1740 1741 1742 1743 1744 1745 1746 1747 1748 1749 1750 1751 1752 1753 1754 1755 1756 1757 1758 1759 1760 1761 1762
static const struct ieee80211_iface_limit iwlagn_sta_ap_limits[] = {
	{
		.max = 1,
		.types = BIT(NL80211_IFTYPE_STATION),
	},
	{
		.max = 1,
		.types = BIT(NL80211_IFTYPE_AP),
	},
};

static const struct ieee80211_iface_limit iwlagn_2sta_limits[] = {
	{
		.max = 2,
		.types = BIT(NL80211_IFTYPE_STATION),
	},
};

static const struct ieee80211_iface_limit iwlagn_p2p_sta_go_limits[] = {
	{
		.max = 1,
		.types = BIT(NL80211_IFTYPE_STATION),
	},
	{
		.max = 1,
		.types = BIT(NL80211_IFTYPE_P2P_GO) |
			 BIT(NL80211_IFTYPE_AP),
	},
};

static const struct ieee80211_iface_limit iwlagn_p2p_2sta_limits[] = {
	{
		.max = 2,
		.types = BIT(NL80211_IFTYPE_STATION),
	},
	{
		.max = 1,
		.types = BIT(NL80211_IFTYPE_P2P_CLIENT),
	},
};

static const struct ieee80211_iface_combination
iwlagn_iface_combinations_dualmode[] = {
	{ .num_different_channels = 1,
	  .max_interfaces = 2,
	  .beacon_int_infra_match = true,
	  .limits = iwlagn_sta_ap_limits,
	  .n_limits = ARRAY_SIZE(iwlagn_sta_ap_limits),
	},
	{ .num_different_channels = 1,
	  .max_interfaces = 2,
	  .limits = iwlagn_2sta_limits,
	  .n_limits = ARRAY_SIZE(iwlagn_2sta_limits),
	},
};

static const struct ieee80211_iface_combination
iwlagn_iface_combinations_p2p[] = {
	{ .num_different_channels = 1,
	  .max_interfaces = 2,
	  .beacon_int_infra_match = true,
	  .limits = iwlagn_p2p_sta_go_limits,
	  .n_limits = ARRAY_SIZE(iwlagn_p2p_sta_go_limits),
	},
	{ .num_different_channels = 1,
	  .max_interfaces = 2,
	  .limits = iwlagn_p2p_2sta_limits,
	  .n_limits = ARRAY_SIZE(iwlagn_p2p_2sta_limits),
	},
};

1763 1764 1765 1766
/*
 * Not a mac80211 entry point function, but it fits in with all the
 * other mac80211 functions grouped here.
 */
1767 1768
static int iwl_mac_setup_register(struct iwl_priv *priv,
				  struct iwlagn_ucode_capabilities *capa)
1769 1770 1771
{
	int ret;
	struct ieee80211_hw *hw = priv->hw;
1772 1773
	struct iwl_rxon_context *ctx;

1774 1775 1776 1777 1778
	hw->rate_control_algorithm = "iwl-agn-rs";

	/* Tell mac80211 our characteristics */
	hw->flags = IEEE80211_HW_SIGNAL_DBM |
		    IEEE80211_HW_AMPDU_AGGREGATION |
1779
		    IEEE80211_HW_NEED_DTIM_PERIOD |
1780 1781
		    IEEE80211_HW_SPECTRUM_MGMT |
		    IEEE80211_HW_REPORTS_TX_ACK_STATUS;
1782

1783 1784
	hw->max_tx_aggregation_subframes = LINK_QUAL_AGG_FRAME_LIMIT_DEF;

1785 1786
	hw->flags |= IEEE80211_HW_SUPPORTS_PS |
		     IEEE80211_HW_SUPPORTS_DYNAMIC_PS;
1787

1788
	if (priv->cfg->sku & EEPROM_SKU_CAP_11N_ENABLE)
J
Johannes Berg 已提交
1789 1790 1791
		hw->flags |= IEEE80211_HW_SUPPORTS_DYNAMIC_SMPS |
			     IEEE80211_HW_SUPPORTS_STATIC_SMPS;

J
Johannes Berg 已提交
1792 1793 1794
	if (capa->flags & IWL_UCODE_TLV_FLAGS_MFP)
		hw->flags |= IEEE80211_HW_MFP_CAPABLE;

1795
	hw->sta_data_size = sizeof(struct iwl_station_priv);
J
Johannes Berg 已提交
1796 1797
	hw->vif_data_size = sizeof(struct iwl_vif_priv);

1798 1799 1800 1801
	for_each_context(priv, ctx) {
		hw->wiphy->interface_modes |= ctx->interface_modes;
		hw->wiphy->interface_modes |= ctx->exclusive_interface_modes;
	}
1802

1803 1804
	BUILD_BUG_ON(NUM_IWL_RXON_CTX != 2);

1805
	if (hw->wiphy->interface_modes & BIT(NL80211_IFTYPE_P2P_CLIENT)) {
1806 1807 1808
		hw->wiphy->iface_combinations = iwlagn_iface_combinations_p2p;
		hw->wiphy->n_iface_combinations =
			ARRAY_SIZE(iwlagn_iface_combinations_p2p);
1809
	} else if (hw->wiphy->interface_modes & BIT(NL80211_IFTYPE_AP)) {
1810 1811 1812 1813 1814
		hw->wiphy->iface_combinations = iwlagn_iface_combinations_dualmode;
		hw->wiphy->n_iface_combinations =
			ARRAY_SIZE(iwlagn_iface_combinations_dualmode);
	}

1815 1816
	hw->wiphy->max_remain_on_channel_duration = 1000;

R
Reinette Chatre 已提交
1817
	hw->wiphy->flags |= WIPHY_FLAG_CUSTOM_REGULATORY |
J
Johannes Berg 已提交
1818 1819
			    WIPHY_FLAG_DISABLE_BEACON_HINTS |
			    WIPHY_FLAG_IBSS_RSN;
1820

J
Johannes Berg 已提交
1821 1822 1823 1824 1825 1826 1827 1828 1829 1830 1831 1832 1833 1834 1835 1836 1837
	if (priv->ucode_wowlan.code.len && device_can_wakeup(priv->bus->dev)) {
		hw->wiphy->wowlan.flags = WIPHY_WOWLAN_MAGIC_PKT |
					  WIPHY_WOWLAN_DISCONNECT |
					  WIPHY_WOWLAN_EAP_IDENTITY_REQ |
					  WIPHY_WOWLAN_RFKILL_RELEASE;
		if (!iwlagn_mod_params.sw_crypto)
			hw->wiphy->wowlan.flags |=
				WIPHY_WOWLAN_SUPPORTS_GTK_REKEY |
				WIPHY_WOWLAN_GTK_REKEY_FAILURE;

		hw->wiphy->wowlan.n_patterns = IWLAGN_WOWLAN_MAX_PATTERNS;
		hw->wiphy->wowlan.pattern_min_len =
					IWLAGN_WOWLAN_MIN_PATTERN_LEN;
		hw->wiphy->wowlan.pattern_max_len =
					IWLAGN_WOWLAN_MAX_PATTERN_LEN;
	}

1838 1839 1840 1841
	if (iwlagn_mod_params.power_save)
		hw->wiphy->flags |= WIPHY_FLAG_PS_ON_BY_DEFAULT;
	else
		hw->wiphy->flags &= ~WIPHY_FLAG_PS_ON_BY_DEFAULT;
1842

1843
	hw->wiphy->max_scan_ssids = PROBE_OPTION_MAX;
1844
	/* we create the 802.11 header and a zero-length SSID element */
1845
	hw->wiphy->max_scan_ie_len = capa->max_probe_length - 24 - 2;
1846 1847 1848 1849 1850 1851 1852 1853 1854 1855 1856 1857 1858

	/* Default value; 4 EDCA QOS priorities */
	hw->queues = 4;

	hw->max_listen_interval = IWL_CONN_MAX_LISTEN_INTERVAL;

	if (priv->bands[IEEE80211_BAND_2GHZ].n_channels)
		priv->hw->wiphy->bands[IEEE80211_BAND_2GHZ] =
			&priv->bands[IEEE80211_BAND_2GHZ];
	if (priv->bands[IEEE80211_BAND_5GHZ].n_channels)
		priv->hw->wiphy->bands[IEEE80211_BAND_5GHZ] =
			&priv->bands[IEEE80211_BAND_5GHZ];

1859 1860
	iwl_leds_init(priv);

1861 1862 1863 1864 1865 1866 1867 1868 1869 1870 1871
	ret = ieee80211_register_hw(priv->hw);
	if (ret) {
		IWL_ERR(priv, "Failed to register hw (error %d)\n", ret);
		return ret;
	}
	priv->mac80211_registered = 1;

	return 0;
}


1872
static int iwlagn_mac_start(struct ieee80211_hw *hw)
Z
Zhu Yi 已提交
1873
{
1874
	struct iwl_priv *priv = hw->priv;
1875
	int ret;
Z
Zhu Yi 已提交
1876

1877
	IWL_DEBUG_MAC80211(priv, "enter\n");
Z
Zhu Yi 已提交
1878 1879

	/* we should be verifying the device is ready to be opened */
1880
	mutex_lock(&priv->shrd->mutex);
1881
	ret = __iwl_up(priv);
1882
	mutex_unlock(&priv->shrd->mutex);
1883
	if (ret)
1884
		return ret;
1885

1886
	IWL_DEBUG_INFO(priv, "Start UP work done.\n");
1887

1888
	/* Now we should be done, and the READY bit should be set. */
1889
	if (WARN_ON(!test_bit(STATUS_READY, &priv->shrd->status)))
1890
		ret = -EIO;
T
Tomas Winkler 已提交
1891

1892
	iwlagn_led_enable(priv);
J
Johannes Berg 已提交
1893

T
Tomas Winkler 已提交
1894
	priv->is_open = 1;
1895
	IWL_DEBUG_MAC80211(priv, "leave\n");
Z
Zhu Yi 已提交
1896 1897 1898
	return 0;
}

1899
static void iwlagn_mac_stop(struct ieee80211_hw *hw)
Z
Zhu Yi 已提交
1900
{
1901
	struct iwl_priv *priv = hw->priv;
Z
Zhu Yi 已提交
1902

1903
	IWL_DEBUG_MAC80211(priv, "enter\n");
M
Mohamed Abbas 已提交
1904

J
Johannes Berg 已提交
1905
	if (!priv->is_open)
1906 1907
		return;

Z
Zhu Yi 已提交
1908
	priv->is_open = 0;
1909

1910
	iwl_down(priv);
1911

1912
	flush_workqueue(priv->shrd->workqueue);
1913

1914 1915
	/* User space software may expect getting rfkill changes
	 * even if interface is down */
1916
	iwl_write32(bus(priv), CSR_INT, 0xFFFFFFFF);
1917
	iwl_enable_rfkill_int(priv);
M
Mohamed Abbas 已提交
1918

1919
	IWL_DEBUG_MAC80211(priv, "leave\n");
Z
Zhu Yi 已提交
1920 1921
}

1922
#ifdef CONFIG_PM
J
Johannes Berg 已提交
1923 1924 1925 1926 1927 1928 1929 1930 1931 1932 1933 1934 1935 1936 1937 1938 1939 1940 1941 1942 1943 1944 1945 1946 1947 1948 1949 1950 1951 1952 1953 1954 1955 1956 1957 1958 1959
static int iwlagn_send_patterns(struct iwl_priv *priv,
				struct cfg80211_wowlan *wowlan)
{
	struct iwlagn_wowlan_patterns_cmd *pattern_cmd;
	struct iwl_host_cmd cmd = {
		.id = REPLY_WOWLAN_PATTERNS,
		.dataflags[0] = IWL_HCMD_DFL_NOCOPY,
		.flags = CMD_SYNC,
	};
	int i, err;

	if (!wowlan->n_patterns)
		return 0;

	cmd.len[0] = sizeof(*pattern_cmd) +
			wowlan->n_patterns * sizeof(struct iwlagn_wowlan_pattern);

	pattern_cmd = kmalloc(cmd.len[0], GFP_KERNEL);
	if (!pattern_cmd)
		return -ENOMEM;

	pattern_cmd->n_patterns = cpu_to_le32(wowlan->n_patterns);

	for (i = 0; i < wowlan->n_patterns; i++) {
		int mask_len = DIV_ROUND_UP(wowlan->patterns[i].pattern_len, 8);

		memcpy(&pattern_cmd->patterns[i].mask,
			wowlan->patterns[i].mask, mask_len);
		memcpy(&pattern_cmd->patterns[i].pattern,
			wowlan->patterns[i].pattern,
			wowlan->patterns[i].pattern_len);
		pattern_cmd->patterns[i].mask_size = mask_len;
		pattern_cmd->patterns[i].pattern_size =
			wowlan->patterns[i].pattern_len;
	}

	cmd.data[0] = pattern_cmd;
1960
	err = iwl_trans_send_cmd(trans(priv), &cmd);
J
Johannes Berg 已提交
1961 1962 1963
	kfree(pattern_cmd);
	return err;
}
1964
#endif
J
Johannes Berg 已提交
1965 1966 1967 1968 1969 1970 1971 1972 1973 1974

static void iwlagn_mac_set_rekey_data(struct ieee80211_hw *hw,
				      struct ieee80211_vif *vif,
				      struct cfg80211_gtk_rekey_data *data)
{
	struct iwl_priv *priv = hw->priv;

	if (iwlagn_mod_params.sw_crypto)
		return;

1975
	mutex_lock(&priv->shrd->mutex);
J
Johannes Berg 已提交
1976 1977 1978 1979 1980 1981 1982 1983 1984 1985

	if (priv->contexts[IWL_RXON_CTX_BSS].vif != vif)
		goto out;

	memcpy(priv->kek, data->kek, NL80211_KEK_LEN);
	memcpy(priv->kck, data->kck, NL80211_KCK_LEN);
	priv->replay_ctr = cpu_to_le64(be64_to_cpup((__be64 *)&data->replay_ctr));
	priv->have_rekey_data = true;

 out:
1986
	mutex_unlock(&priv->shrd->mutex);
J
Johannes Berg 已提交
1987 1988 1989 1990 1991 1992 1993 1994 1995 1996
}

struct wowlan_key_data {
	struct iwl_rxon_context *ctx;
	struct iwlagn_wowlan_rsc_tsc_params_cmd *rsc_tsc;
	struct iwlagn_wowlan_tkip_params_cmd *tkip;
	const u8 *bssid;
	bool error, use_rsc_tsc, use_tkip;
};

1997
#ifdef CONFIG_PM
J
Johannes Berg 已提交
1998 1999 2000 2001 2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013 2014 2015 2016 2017 2018 2019 2020 2021 2022 2023
static void iwlagn_convert_p1k(u16 *p1k, __le16 *out)
{
	int i;

	for (i = 0; i < IWLAGN_P1K_SIZE; i++)
		out[i] = cpu_to_le16(p1k[i]);
}

static void iwlagn_wowlan_program_keys(struct ieee80211_hw *hw,
				       struct ieee80211_vif *vif,
				       struct ieee80211_sta *sta,
				       struct ieee80211_key_conf *key,
				       void *_data)
{
	struct iwl_priv *priv = hw->priv;
	struct wowlan_key_data *data = _data;
	struct iwl_rxon_context *ctx = data->ctx;
	struct aes_sc *aes_sc, *aes_tx_sc = NULL;
	struct tkip_sc *tkip_sc, *tkip_tx_sc = NULL;
	struct iwlagn_p1k_cache *rx_p1ks;
	u8 *rx_mic_key;
	struct ieee80211_key_seq seq;
	u32 cur_rx_iv32 = 0;
	u16 p1k[IWLAGN_P1K_SIZE];
	int ret, i;

2024
	mutex_lock(&priv->shrd->mutex);
J
Johannes Berg 已提交
2025 2026 2027 2028 2029 2030 2031 2032 2033 2034 2035 2036 2037 2038 2039 2040 2041 2042 2043 2044 2045 2046 2047 2048 2049 2050 2051 2052 2053 2054 2055 2056 2057 2058 2059 2060 2061 2062 2063 2064 2065 2066 2067 2068 2069 2070 2071 2072 2073 2074 2075 2076 2077 2078 2079 2080 2081 2082 2083 2084 2085 2086 2087 2088 2089 2090 2091 2092 2093 2094 2095 2096 2097 2098 2099 2100 2101 2102 2103 2104 2105 2106 2107 2108 2109 2110 2111 2112 2113 2114 2115 2116 2117 2118 2119 2120 2121 2122 2123 2124 2125 2126 2127 2128

	if ((key->cipher == WLAN_CIPHER_SUITE_WEP40 ||
	     key->cipher == WLAN_CIPHER_SUITE_WEP104) &&
	     !sta && !ctx->key_mapping_keys)
		ret = iwl_set_default_wep_key(priv, ctx, key);
	else
		ret = iwl_set_dynamic_key(priv, ctx, key, sta);

	if (ret) {
		IWL_ERR(priv, "Error setting key during suspend!\n");
		data->error = true;
	}

	switch (key->cipher) {
	case WLAN_CIPHER_SUITE_TKIP:
		if (sta) {
			tkip_sc = data->rsc_tsc->all_tsc_rsc.tkip.unicast_rsc;
			tkip_tx_sc = &data->rsc_tsc->all_tsc_rsc.tkip.tsc;

			rx_p1ks = data->tkip->rx_uni;

			ieee80211_get_key_tx_seq(key, &seq);
			tkip_tx_sc->iv16 = cpu_to_le16(seq.tkip.iv16);
			tkip_tx_sc->iv32 = cpu_to_le32(seq.tkip.iv32);

			ieee80211_get_tkip_p1k_iv(key, seq.tkip.iv32, p1k);
			iwlagn_convert_p1k(p1k, data->tkip->tx.p1k);

			memcpy(data->tkip->mic_keys.tx,
			       &key->key[NL80211_TKIP_DATA_OFFSET_TX_MIC_KEY],
			       IWLAGN_MIC_KEY_SIZE);

			rx_mic_key = data->tkip->mic_keys.rx_unicast;
		} else {
			tkip_sc = data->rsc_tsc->all_tsc_rsc.tkip.multicast_rsc;
			rx_p1ks = data->tkip->rx_multi;
			rx_mic_key = data->tkip->mic_keys.rx_mcast;
		}

		/*
		 * For non-QoS this relies on the fact that both the uCode and
		 * mac80211 use TID 0 (as they need to to avoid replay attacks)
		 * for checking the IV in the frames.
		 */
		for (i = 0; i < IWLAGN_NUM_RSC; i++) {
			ieee80211_get_key_rx_seq(key, i, &seq);
			tkip_sc[i].iv16 = cpu_to_le16(seq.tkip.iv16);
			tkip_sc[i].iv32 = cpu_to_le32(seq.tkip.iv32);
			/* wrapping isn't allowed, AP must rekey */
			if (seq.tkip.iv32 > cur_rx_iv32)
				cur_rx_iv32 = seq.tkip.iv32;
		}

		ieee80211_get_tkip_rx_p1k(key, data->bssid, cur_rx_iv32, p1k);
		iwlagn_convert_p1k(p1k, rx_p1ks[0].p1k);
		ieee80211_get_tkip_rx_p1k(key, data->bssid,
					  cur_rx_iv32 + 1, p1k);
		iwlagn_convert_p1k(p1k, rx_p1ks[1].p1k);

		memcpy(rx_mic_key,
		       &key->key[NL80211_TKIP_DATA_OFFSET_RX_MIC_KEY],
		       IWLAGN_MIC_KEY_SIZE);

		data->use_tkip = true;
		data->use_rsc_tsc = true;
		break;
	case WLAN_CIPHER_SUITE_CCMP:
		if (sta) {
			u8 *pn = seq.ccmp.pn;

			aes_sc = data->rsc_tsc->all_tsc_rsc.aes.unicast_rsc;
			aes_tx_sc = &data->rsc_tsc->all_tsc_rsc.aes.tsc;

			ieee80211_get_key_tx_seq(key, &seq);
			aes_tx_sc->pn = cpu_to_le64(
					(u64)pn[5] |
					((u64)pn[4] << 8) |
					((u64)pn[3] << 16) |
					((u64)pn[2] << 24) |
					((u64)pn[1] << 32) |
					((u64)pn[0] << 40));
		} else
			aes_sc = data->rsc_tsc->all_tsc_rsc.aes.multicast_rsc;

		/*
		 * For non-QoS this relies on the fact that both the uCode and
		 * mac80211 use TID 0 for checking the IV in the frames.
		 */
		for (i = 0; i < IWLAGN_NUM_RSC; i++) {
			u8 *pn = seq.ccmp.pn;

			ieee80211_get_key_rx_seq(key, i, &seq);
			aes_sc->pn = cpu_to_le64(
					(u64)pn[5] |
					((u64)pn[4] << 8) |
					((u64)pn[3] << 16) |
					((u64)pn[2] << 24) |
					((u64)pn[1] << 32) |
					((u64)pn[0] << 40));
		}
		data->use_rsc_tsc = true;
		break;
	}

2129
	mutex_unlock(&priv->shrd->mutex);
J
Johannes Berg 已提交
2130 2131 2132 2133 2134 2135 2136 2137 2138 2139 2140 2141 2142 2143 2144 2145 2146 2147 2148 2149 2150 2151 2152 2153
}

static int iwlagn_mac_suspend(struct ieee80211_hw *hw,
			      struct cfg80211_wowlan *wowlan)
{
	struct iwl_priv *priv = hw->priv;
	struct iwlagn_wowlan_wakeup_filter_cmd wakeup_filter_cmd;
	struct iwl_rxon_cmd rxon;
	struct iwl_rxon_context *ctx = &priv->contexts[IWL_RXON_CTX_BSS];
	struct iwlagn_wowlan_kek_kck_material_cmd kek_kck_cmd;
	struct iwlagn_wowlan_tkip_params_cmd tkip_cmd = {};
	struct wowlan_key_data key_data = {
		.ctx = ctx,
		.bssid = ctx->active.bssid_addr,
		.use_rsc_tsc = false,
		.tkip = &tkip_cmd,
		.use_tkip = false,
	};
	int ret, i;
	u16 seq;

	if (WARN_ON(!wowlan))
		return -EINVAL;

2154
	mutex_lock(&priv->shrd->mutex);
J
Johannes Berg 已提交
2155 2156 2157 2158 2159 2160 2161 2162 2163 2164 2165 2166 2167 2168 2169 2170 2171 2172 2173 2174 2175 2176 2177 2178 2179 2180 2181 2182

	/* Don't attempt WoWLAN when not associated, tear down instead. */
	if (!ctx->vif || ctx->vif->type != NL80211_IFTYPE_STATION ||
	    !iwl_is_associated_ctx(ctx)) {
		ret = 1;
		goto out;
	}

	key_data.rsc_tsc = kzalloc(sizeof(*key_data.rsc_tsc), GFP_KERNEL);
	if (!key_data.rsc_tsc) {
		ret = -ENOMEM;
		goto out;
	}

	memset(&wakeup_filter_cmd, 0, sizeof(wakeup_filter_cmd));

	/*
	 * We know the last used seqno, and the uCode expects to know that
	 * one, it will increment before TX.
	 */
	seq = le16_to_cpu(priv->last_seq_ctl) & IEEE80211_SCTL_SEQ;
	wakeup_filter_cmd.non_qos_seq = cpu_to_le16(seq);

	/*
	 * For QoS counters, we store the one to use next, so subtract 0x10
	 * since the uCode will add 0x10 before using the value.
	 */
	for (i = 0; i < 8; i++) {
2183
		seq = priv->shrd->tid_data[IWL_AP_ID][i].seq_number;
J
Johannes Berg 已提交
2184 2185 2186 2187 2188 2189 2190 2191 2192 2193 2194 2195 2196 2197 2198 2199 2200 2201 2202 2203 2204 2205 2206 2207 2208 2209 2210 2211 2212 2213 2214
		seq -= 0x10;
		wakeup_filter_cmd.qos_seq[i] = cpu_to_le16(seq);
	}

	if (wowlan->disconnect)
		wakeup_filter_cmd.enabled |=
			cpu_to_le32(IWLAGN_WOWLAN_WAKEUP_BEACON_MISS |
				    IWLAGN_WOWLAN_WAKEUP_LINK_CHANGE);
	if (wowlan->magic_pkt)
		wakeup_filter_cmd.enabled |=
			cpu_to_le32(IWLAGN_WOWLAN_WAKEUP_MAGIC_PACKET);
	if (wowlan->gtk_rekey_failure)
		wakeup_filter_cmd.enabled |=
			cpu_to_le32(IWLAGN_WOWLAN_WAKEUP_GTK_REKEY_FAIL);
	if (wowlan->eap_identity_req)
		wakeup_filter_cmd.enabled |=
			cpu_to_le32(IWLAGN_WOWLAN_WAKEUP_EAP_IDENT_REQ);
	if (wowlan->four_way_handshake)
		wakeup_filter_cmd.enabled |=
			cpu_to_le32(IWLAGN_WOWLAN_WAKEUP_4WAY_HANDSHAKE);
	if (wowlan->rfkill_release)
		wakeup_filter_cmd.enabled |=
			cpu_to_le32(IWLAGN_WOWLAN_WAKEUP_RFKILL);
	if (wowlan->n_patterns)
		wakeup_filter_cmd.enabled |=
			cpu_to_le32(IWLAGN_WOWLAN_WAKEUP_PATTERN_MATCH);

	iwl_scan_cancel_timeout(priv, 200);

	memcpy(&rxon, &ctx->active, sizeof(rxon));

2215
	iwl_trans_stop_device(trans(priv));
J
Johannes Berg 已提交
2216

2217
	priv->shrd->wowlan = true;
J
Johannes Berg 已提交
2218 2219 2220 2221 2222 2223 2224 2225 2226 2227 2228 2229 2230 2231 2232 2233 2234 2235 2236 2237 2238 2239 2240 2241 2242 2243 2244 2245 2246 2247

	ret = iwlagn_load_ucode_wait_alive(priv, &priv->ucode_wowlan,
					   IWL_UCODE_WOWLAN);
	if (ret)
		goto error;

	/* now configure WoWLAN ucode */
	ret = iwl_alive_start(priv);
	if (ret)
		goto error;

	memcpy(&ctx->staging, &rxon, sizeof(rxon));
	ret = iwlagn_commit_rxon(priv, ctx);
	if (ret)
		goto error;

	ret = iwl_power_update_mode(priv, true);
	if (ret)
		goto error;

	if (!iwlagn_mod_params.sw_crypto) {
		/* mark all keys clear */
		priv->ucode_key_table = 0;
		ctx->key_mapping_keys = 0;

		/*
		 * This needs to be unlocked due to lock ordering
		 * constraints. Since we're in the suspend path
		 * that isn't really a problem though.
		 */
2248
		mutex_unlock(&priv->shrd->mutex);
J
Johannes Berg 已提交
2249 2250 2251
		ieee80211_iter_keys(priv->hw, ctx->vif,
				    iwlagn_wowlan_program_keys,
				    &key_data);
2252
		mutex_lock(&priv->shrd->mutex);
J
Johannes Berg 已提交
2253 2254 2255 2256 2257 2258 2259 2260 2261 2262 2263 2264 2265 2266
		if (key_data.error) {
			ret = -EIO;
			goto error;
		}

		if (key_data.use_rsc_tsc) {
			struct iwl_host_cmd rsc_tsc_cmd = {
				.id = REPLY_WOWLAN_TSC_RSC_PARAMS,
				.flags = CMD_SYNC,
				.data[0] = key_data.rsc_tsc,
				.dataflags[0] = IWL_HCMD_DFL_NOCOPY,
				.len[0] = sizeof(*key_data.rsc_tsc),
			};

2267
			ret = iwl_trans_send_cmd(trans(priv), &rsc_tsc_cmd);
J
Johannes Berg 已提交
2268 2269 2270 2271 2272
			if (ret)
				goto error;
		}

		if (key_data.use_tkip) {
2273
			ret = iwl_trans_send_cmd_pdu(trans(priv),
J
Johannes Berg 已提交
2274 2275 2276 2277 2278 2279 2280 2281 2282 2283 2284 2285 2286 2287 2288
						 REPLY_WOWLAN_TKIP_PARAMS,
						 CMD_SYNC, sizeof(tkip_cmd),
						 &tkip_cmd);
			if (ret)
				goto error;
		}

		if (priv->have_rekey_data) {
			memset(&kek_kck_cmd, 0, sizeof(kek_kck_cmd));
			memcpy(kek_kck_cmd.kck, priv->kck, NL80211_KCK_LEN);
			kek_kck_cmd.kck_len = cpu_to_le16(NL80211_KCK_LEN);
			memcpy(kek_kck_cmd.kek, priv->kek, NL80211_KEK_LEN);
			kek_kck_cmd.kek_len = cpu_to_le16(NL80211_KEK_LEN);
			kek_kck_cmd.replay_ctr = priv->replay_ctr;

2289
			ret = iwl_trans_send_cmd_pdu(trans(priv),
J
Johannes Berg 已提交
2290 2291 2292 2293 2294 2295 2296 2297
						 REPLY_WOWLAN_KEK_KCK_MATERIAL,
						 CMD_SYNC, sizeof(kek_kck_cmd),
						 &kek_kck_cmd);
			if (ret)
				goto error;
		}
	}

2298
	ret = iwl_trans_send_cmd_pdu(trans(priv), REPLY_WOWLAN_WAKEUP_FILTER,
J
Johannes Berg 已提交
2299 2300 2301 2302 2303 2304 2305 2306 2307 2308 2309 2310
				 CMD_SYNC, sizeof(wakeup_filter_cmd),
				 &wakeup_filter_cmd);
	if (ret)
		goto error;

	ret = iwlagn_send_patterns(priv, wowlan);
	if (ret)
		goto error;

	device_set_wakeup_enable(priv->bus->dev, true);

	/* Now let the ucode operate on its own */
2311
	iwl_write32(bus(priv), CSR_UCODE_DRV_GP1_SET,
J
Johannes Berg 已提交
2312 2313 2314 2315 2316
			  CSR_UCODE_DRV_GP1_BIT_D3_CFG_COMPLETE);

	goto out;

 error:
2317
	priv->shrd->wowlan = false;
J
Johannes Berg 已提交
2318 2319 2320
	iwlagn_prepare_restart(priv);
	ieee80211_restart_hw(priv->hw);
 out:
2321
	mutex_unlock(&priv->shrd->mutex);
J
Johannes Berg 已提交
2322 2323 2324 2325 2326 2327 2328 2329 2330 2331 2332 2333 2334
	kfree(key_data.rsc_tsc);
	return ret;
}

static int iwlagn_mac_resume(struct ieee80211_hw *hw)
{
	struct iwl_priv *priv = hw->priv;
	struct iwl_rxon_context *ctx = &priv->contexts[IWL_RXON_CTX_BSS];
	struct ieee80211_vif *vif;
	unsigned long flags;
	u32 base, status = 0xffffffff;
	int ret = -EIO;

2335
	mutex_lock(&priv->shrd->mutex);
J
Johannes Berg 已提交
2336

2337
	iwl_write32(bus(priv), CSR_UCODE_DRV_GP1_CLR,
J
Johannes Berg 已提交
2338 2339 2340 2341
			  CSR_UCODE_DRV_GP1_BIT_D3_CFG_COMPLETE);

	base = priv->device_pointers.error_event_table;
	if (iwlagn_hw_valid_rtc_data_addr(base)) {
2342 2343
		spin_lock_irqsave(&bus(priv)->reg_lock, flags);
		ret = iwl_grab_nic_access_silent(bus(priv));
J
Johannes Berg 已提交
2344
		if (ret == 0) {
2345 2346 2347
			iwl_write32(bus(priv), HBUS_TARG_MEM_RADDR, base);
			status = iwl_read32(bus(priv), HBUS_TARG_MEM_RDAT);
			iwl_release_nic_access(bus(priv));
J
Johannes Berg 已提交
2348
		}
2349
		spin_unlock_irqrestore(&bus(priv)->reg_lock, flags);
J
Johannes Berg 已提交
2350 2351 2352 2353 2354 2355 2356 2357 2358 2359

#ifdef CONFIG_IWLWIFI_DEBUGFS
		if (ret == 0) {
			if (!priv->wowlan_sram)
				priv->wowlan_sram =
					kzalloc(priv->ucode_wowlan.data.len,
						GFP_KERNEL);

			if (priv->wowlan_sram)
				_iwl_read_targ_mem_words(
2360
					bus(priv), 0x800000, priv->wowlan_sram,
J
Johannes Berg 已提交
2361 2362 2363 2364 2365 2366 2367 2368
					priv->ucode_wowlan.data.len / 4);
		}
#endif
	}

	/* we'll clear ctx->vif during iwlagn_prepare_restart() */
	vif = ctx->vif;

2369
	priv->shrd->wowlan = false;
J
Johannes Berg 已提交
2370 2371 2372 2373 2374 2375 2376 2377 2378

	device_set_wakeup_enable(priv->bus->dev, false);

	iwlagn_prepare_restart(priv);

	memset((void *)&ctx->active, 0, sizeof(ctx->active));
	iwl_connection_init_rx_config(priv, ctx);
	iwlagn_set_rxon_chain(priv, ctx);

2379
	mutex_unlock(&priv->shrd->mutex);
J
Johannes Berg 已提交
2380 2381 2382 2383 2384

	ieee80211_resume_disconnect(vif);

	return 1;
}
2385
#endif
J
Johannes Berg 已提交
2386

2387
static void iwlagn_mac_tx(struct ieee80211_hw *hw, struct sk_buff *skb)
Z
Zhu Yi 已提交
2388
{
2389
	struct iwl_priv *priv = hw->priv;
Z
Zhu Yi 已提交
2390

2391
	IWL_DEBUG_MACDUMP(priv, "enter\n");
Z
Zhu Yi 已提交
2392

2393
	IWL_DEBUG_TX(priv, "dev->xmit(%d bytes) at rate 0x%02x\n", skb->len,
2394
		     ieee80211_get_tx_rate(hw, IEEE80211_SKB_CB(skb))->bitrate);
Z
Zhu Yi 已提交
2395

2396
	if (iwlagn_tx_skb(priv, skb))
Z
Zhu Yi 已提交
2397 2398
		dev_kfree_skb_any(skb);

2399
	IWL_DEBUG_MACDUMP(priv, "leave\n");
Z
Zhu Yi 已提交
2400 2401
}

2402 2403 2404 2405 2406
static void iwlagn_mac_update_tkip_key(struct ieee80211_hw *hw,
				       struct ieee80211_vif *vif,
				       struct ieee80211_key_conf *keyconf,
				       struct ieee80211_sta *sta,
				       u32 iv32, u16 *phase1key)
2407
{
2408
	struct iwl_priv *priv = hw->priv;
2409

J
Johannes Berg 已提交
2410
	iwl_update_tkip_key(priv, vif, keyconf, sta, iv32, phase1key);
2411 2412
}

2413 2414 2415 2416
static int iwlagn_mac_set_key(struct ieee80211_hw *hw, enum set_key_cmd cmd,
			      struct ieee80211_vif *vif,
			      struct ieee80211_sta *sta,
			      struct ieee80211_key_conf *key)
Z
Zhu Yi 已提交
2417
{
2418
	struct iwl_priv *priv = hw->priv;
2419
	struct iwl_vif_priv *vif_priv = (void *)vif->drv_priv;
2420
	struct iwl_rxon_context *ctx = vif_priv->ctx;
2421 2422
	int ret;
	bool is_default_wep_key = false;
Z
Zhu Yi 已提交
2423

2424
	IWL_DEBUG_MAC80211(priv, "enter\n");
Z
Zhu Yi 已提交
2425

D
Don Fry 已提交
2426
	if (iwlagn_mod_params.sw_crypto) {
2427
		IWL_DEBUG_MAC80211(priv, "leave - hwcrypto disabled\n");
Z
Zhu Yi 已提交
2428 2429 2430
		return -EOPNOTSUPP;
	}

J
Johannes Berg 已提交
2431
	/*
J
Johannes Berg 已提交
2432 2433 2434 2435 2436
	 * We could program these keys into the hardware as well, but we
	 * don't expect much multicast traffic in IBSS and having keys
	 * for more stations is probably more useful.
	 *
	 * Mark key TX-only and return 0.
J
Johannes Berg 已提交
2437 2438
	 */
	if (vif->type == NL80211_IFTYPE_ADHOC &&
J
Johannes Berg 已提交
2439 2440 2441 2442
	    !(key->flags & IEEE80211_KEY_FLAG_PAIRWISE)) {
		key->hw_key_idx = WEP_INVALID_OFFSET;
		return 0;
	}
J
Johannes Berg 已提交
2443

J
Johannes Berg 已提交
2444 2445 2446
	/* If they key was TX-only, accept deletion */
	if (cmd == DISABLE_KEY && key->hw_key_idx == WEP_INVALID_OFFSET)
		return 0;
Z
Zhu Yi 已提交
2447

2448
	mutex_lock(&priv->shrd->mutex);
2449
	iwl_scan_cancel_timeout(priv, 100);
2450

J
Johannes Berg 已提交
2451 2452
	BUILD_BUG_ON(WEP_INVALID_OFFSET == IWLAGN_HW_KEY_DEFAULT);

J
Johannes Berg 已提交
2453 2454
	/*
	 * If we are getting WEP group key and we didn't receive any key mapping
2455 2456
	 * so far, we are in legacy wep mode (group key only), otherwise we are
	 * in 1X mode.
J
Johannes Berg 已提交
2457 2458
	 * In legacy wep mode, we use another host command to the uCode.
	 */
2459
	if ((key->cipher == WLAN_CIPHER_SUITE_WEP40 ||
J
Johannes Berg 已提交
2460
	     key->cipher == WLAN_CIPHER_SUITE_WEP104) && !sta) {
2461
		if (cmd == SET_KEY)
2462
			is_default_wep_key = !ctx->key_mapping_keys;
2463
		else
2464
			is_default_wep_key =
J
Johannes Berg 已提交
2465
				key->hw_key_idx == IWLAGN_HW_KEY_DEFAULT;
2466
	}
2467

J
Johannes Berg 已提交
2468

Z
Zhu Yi 已提交
2469
	switch (cmd) {
2470
	case SET_KEY:
J
Johannes Berg 已提交
2471
		if (is_default_wep_key) {
2472
			ret = iwl_set_default_wep_key(priv, vif_priv->ctx, key);
J
Johannes Berg 已提交
2473 2474 2475 2476 2477 2478 2479 2480 2481 2482 2483
			break;
		}
		ret = iwl_set_dynamic_key(priv, vif_priv->ctx, key, sta);
		if (ret) {
			/*
			 * can't add key for RX, but we don't need it
			 * in the device for TX so still return 0
			 */
			ret = 0;
			key->hw_key_idx = WEP_INVALID_OFFSET;
		}
2484

2485
		IWL_DEBUG_MAC80211(priv, "enable hwcrypto key\n");
Z
Zhu Yi 已提交
2486 2487
		break;
	case DISABLE_KEY:
2488
		if (is_default_wep_key)
2489
			ret = iwl_remove_default_wep_key(priv, ctx, key);
2490
		else
J
Johannes Berg 已提交
2491
			ret = iwl_remove_dynamic_key(priv, ctx, key, sta);
2492

2493
		IWL_DEBUG_MAC80211(priv, "disable hwcrypto key\n");
Z
Zhu Yi 已提交
2494 2495
		break;
	default:
2496
		ret = -EINVAL;
Z
Zhu Yi 已提交
2497 2498
	}

2499
	mutex_unlock(&priv->shrd->mutex);
2500
	IWL_DEBUG_MAC80211(priv, "leave\n");
Z
Zhu Yi 已提交
2501

2502
	return ret;
Z
Zhu Yi 已提交
2503 2504
}

2505 2506 2507 2508 2509
static int iwlagn_mac_ampdu_action(struct ieee80211_hw *hw,
				   struct ieee80211_vif *vif,
				   enum ieee80211_ampdu_mlme_action action,
				   struct ieee80211_sta *sta, u16 tid, u16 *ssn,
				   u8 buf_size)
2510 2511
{
	struct iwl_priv *priv = hw->priv;
2512
	int ret = -EINVAL;
2513
	struct iwl_station_priv *sta_priv = (void *) sta->drv_priv;
2514
	struct iwl_rxon_context *ctx =  iwl_rxon_ctx_from_vif(vif);
2515

2516
	IWL_DEBUG_HT(priv, "A-MPDU action on addr %pM tid %d\n",
J
Johannes Berg 已提交
2517
		     sta->addr, tid);
2518

2519
	if (!(priv->cfg->sku & EEPROM_SKU_CAP_11N_ENABLE))
2520 2521
		return -EACCES;

2522
	mutex_lock(&priv->shrd->mutex);
2523

2524 2525
	switch (action) {
	case IEEE80211_AMPDU_RX_START:
2526
		IWL_DEBUG_HT(priv, "start Rx\n");
2527 2528
		ret = iwl_sta_rx_agg_start(priv, sta, tid, *ssn);
		break;
2529
	case IEEE80211_AMPDU_RX_STOP:
2530
		IWL_DEBUG_HT(priv, "stop Rx\n");
2531
		ret = iwl_sta_rx_agg_stop(priv, sta, tid);
2532
		if (test_bit(STATUS_EXIT_PENDING, &priv->shrd->status))
2533 2534
			ret = 0;
		break;
2535
	case IEEE80211_AMPDU_TX_START:
2536
		IWL_DEBUG_HT(priv, "start Tx\n");
2537
		ret = iwlagn_tx_agg_start(priv, vif, sta, tid, ssn);
W
Wey-Yi Guy 已提交
2538
		if (ret == 0) {
W
Wey-Yi Guy 已提交
2539 2540 2541
			priv->agg_tids_count++;
			IWL_DEBUG_HT(priv, "priv->agg_tids_count = %u\n",
				     priv->agg_tids_count);
W
Wey-Yi Guy 已提交
2542
		}
2543
		break;
2544
	case IEEE80211_AMPDU_TX_STOP:
2545
		IWL_DEBUG_HT(priv, "stop Tx\n");
2546
		ret = iwlagn_tx_agg_stop(priv, vif, sta, tid);
W
Wey-Yi Guy 已提交
2547 2548 2549 2550
		if ((ret == 0) && (priv->agg_tids_count > 0)) {
			priv->agg_tids_count--;
			IWL_DEBUG_HT(priv, "priv->agg_tids_count = %u\n",
				     priv->agg_tids_count);
W
Wey-Yi Guy 已提交
2551
		}
2552
		if (test_bit(STATUS_EXIT_PENDING, &priv->shrd->status))
2553
			ret = 0;
2554 2555
		if (priv->cfg->ht_params &&
		    priv->cfg->ht_params->use_rts_for_aggregation) {
J
Johannes Berg 已提交
2556 2557 2558 2559 2560
			/*
			 * switch off RTS/CTS if it was previously enabled
			 */
			sta_priv->lq_sta.lq.general_params.flags &=
				~LINK_QUAL_FLAGS_SET_STA_TLC_RTS_MSK;
2561 2562
			iwl_send_lq_cmd(priv, iwl_rxon_ctx_from_vif(vif),
					&sta_priv->lq_sta.lq, CMD_ASYNC, false);
J
Johannes Berg 已提交
2563
		}
2564
		break;
2565
	case IEEE80211_AMPDU_TX_OPERATIONAL:
2566 2567
		buf_size = min_t(int, buf_size, LINK_QUAL_AGG_FRAME_LIMIT_DEF);

2568
		iwl_trans_tx_agg_setup(trans(priv), ctx->ctxid, iwl_sta_id(sta),
2569
				tid, buf_size);
2570

2571 2572 2573 2574 2575 2576 2577 2578 2579 2580 2581 2582 2583 2584 2585 2586 2587 2588 2589 2590
		/*
		 * If the limit is 0, then it wasn't initialised yet,
		 * use the default. We can do that since we take the
		 * minimum below, and we don't want to go above our
		 * default due to hardware restrictions.
		 */
		if (sta_priv->max_agg_bufsize == 0)
			sta_priv->max_agg_bufsize =
				LINK_QUAL_AGG_FRAME_LIMIT_DEF;

		/*
		 * Even though in theory the peer could have different
		 * aggregation reorder buffer sizes for different sessions,
		 * our ucode doesn't allow for that and has a global limit
		 * for each station. Therefore, use the minimum of all the
		 * aggregation sessions and our default value.
		 */
		sta_priv->max_agg_bufsize =
			min(sta_priv->max_agg_bufsize, buf_size);

2591 2592
		if (priv->cfg->ht_params &&
		    priv->cfg->ht_params->use_rts_for_aggregation) {
2593 2594 2595 2596
			/*
			 * switch to RTS/CTS if it is the prefer protection
			 * method for HT traffic
			 */
J
Johannes Berg 已提交
2597 2598 2599

			sta_priv->lq_sta.lq.general_params.flags |=
				LINK_QUAL_FLAGS_SET_STA_TLC_RTS_MSK;
2600
		}
2601 2602 2603 2604 2605 2606

		sta_priv->lq_sta.lq.agg_params.agg_frame_cnt_limit =
			sta_priv->max_agg_bufsize;

		iwl_send_lq_cmd(priv, iwl_rxon_ctx_from_vif(vif),
				&sta_priv->lq_sta.lq, CMD_ASYNC, false);
2607 2608 2609

		IWL_INFO(priv, "Tx aggregation enabled on ra = %pM tid = %d\n",
			 sta->addr, tid);
2610
		ret = 0;
2611 2612
		break;
	}
2613
	mutex_unlock(&priv->shrd->mutex);
2614 2615

	return ret;
2616
}
2617

2618 2619 2620
static int iwlagn_mac_sta_add(struct ieee80211_hw *hw,
			      struct ieee80211_vif *vif,
			      struct ieee80211_sta *sta)
2621 2622 2623
{
	struct iwl_priv *priv = hw->priv;
	struct iwl_station_priv *sta_priv = (void *)sta->drv_priv;
2624
	struct iwl_vif_priv *vif_priv = (void *)vif->drv_priv;
2625
	bool is_ap = vif->type == NL80211_IFTYPE_STATION;
2626 2627 2628 2629 2630
	int ret;
	u8 sta_id;

	IWL_DEBUG_INFO(priv, "received request to add station %pM\n",
			sta->addr);
2631
	mutex_lock(&priv->shrd->mutex);
2632 2633 2634
	IWL_DEBUG_INFO(priv, "proceeding to add station %pM\n",
			sta->addr);
	sta_priv->common.sta_id = IWL_INVALID_STATION;
2635 2636 2637 2638 2639

	atomic_set(&sta_priv->pending_frames, 0);
	if (vif->type == NL80211_IFTYPE_AP)
		sta_priv->client = true;

2640
	ret = iwl_add_station_common(priv, vif_priv->ctx, sta->addr,
2641
				     is_ap, sta, &sta_id);
2642 2643 2644 2645
	if (ret) {
		IWL_ERR(priv, "Unable to add station %pM (%d)\n",
			sta->addr, ret);
		/* Should we return success if return code is EEXIST ? */
2646
		mutex_unlock(&priv->shrd->mutex);
2647 2648 2649
		return ret;
	}

J
Johannes Berg 已提交
2650 2651
	sta_priv->common.sta_id = sta_id;

2652
	/* Initialize rate scaling */
2653
	IWL_DEBUG_INFO(priv, "Initializing rate scaling for station %pM\n",
2654 2655
		       sta->addr);
	iwl_rs_rate_init(priv, sta, sta_id);
2656
	mutex_unlock(&priv->shrd->mutex);
2657

J
Johannes Berg 已提交
2658
	return 0;
2659 2660
}

2661 2662
static void iwlagn_mac_channel_switch(struct ieee80211_hw *hw,
				struct ieee80211_channel_switch *ch_switch)
2663 2664 2665 2666
{
	struct iwl_priv *priv = hw->priv;
	const struct iwl_channel_info *ch_info;
	struct ieee80211_conf *conf = &hw->conf;
2667
	struct ieee80211_channel *channel = ch_switch->channel;
2668
	struct iwl_ht_config *ht_conf = &priv->current_ht_config;
2669 2670 2671 2672 2673 2674 2675 2676 2677
	/*
	 * MULTI-FIXME
	 * When we add support for multiple interfaces, we need to
	 * revisit this. The channel switch command in the device
	 * only affects the BSS context, but what does that really
	 * mean? And what if we get a CSA on the second interface?
	 * This needs a lot of work.
	 */
	struct iwl_rxon_context *ctx = &priv->contexts[IWL_RXON_CTX_BSS];
2678 2679 2680 2681
	u16 ch;

	IWL_DEBUG_MAC80211(priv, "enter\n");

2682
	mutex_lock(&priv->shrd->mutex);
2683

2684
	if (iwl_is_rfkill(priv->shrd))
2685
		goto out;
2686

2687 2688 2689
	if (test_bit(STATUS_EXIT_PENDING, &priv->shrd->status) ||
	    test_bit(STATUS_SCANNING, &priv->shrd->status) ||
	    test_bit(STATUS_CHANNEL_SWITCH_PENDING, &priv->shrd->status))
2690
		goto out;
2691

2692
	if (!iwl_is_associated_ctx(ctx))
2693
		goto out;
2694

2695
	if (!priv->cfg->lib->set_channel_switch)
2696
		goto out;
2697

2698 2699 2700 2701 2702 2703 2704 2705 2706
	ch = channel->hw_value;
	if (le16_to_cpu(ctx->active.channel) == ch)
		goto out;

	ch_info = iwl_get_channel_info(priv, channel->band, ch);
	if (!is_channel_valid(ch_info)) {
		IWL_DEBUG_MAC80211(priv, "invalid channel\n");
		goto out;
	}
2707

2708
	spin_lock_irq(&priv->shrd->lock);
2709

2710
	priv->current_ht_config.smps = conf->smps_mode;
2711

2712 2713 2714 2715 2716 2717 2718 2719 2720 2721 2722 2723 2724 2725 2726
	/* Configure HT40 channels */
	ctx->ht.enabled = conf_is_ht(conf);
	if (ctx->ht.enabled) {
		if (conf_is_ht40_minus(conf)) {
			ctx->ht.extension_chan_offset =
				IEEE80211_HT_PARAM_CHA_SEC_BELOW;
			ctx->ht.is_40mhz = true;
		} else if (conf_is_ht40_plus(conf)) {
			ctx->ht.extension_chan_offset =
				IEEE80211_HT_PARAM_CHA_SEC_ABOVE;
			ctx->ht.is_40mhz = true;
		} else {
			ctx->ht.extension_chan_offset =
				IEEE80211_HT_PARAM_CHA_SEC_NONE;
			ctx->ht.is_40mhz = false;
2727
		}
2728 2729 2730 2731 2732 2733 2734 2735 2736 2737
	} else
		ctx->ht.is_40mhz = false;

	if ((le16_to_cpu(ctx->staging.channel) != ch))
		ctx->staging.flags = 0;

	iwl_set_rxon_channel(priv, channel, ctx);
	iwl_set_rxon_ht(priv, ht_conf);
	iwl_set_flags_for_band(priv, ctx, channel->band, ctx->vif);

2738
	spin_unlock_irq(&priv->shrd->lock);
2739 2740 2741 2742 2743 2744

	iwl_set_rate(priv);
	/*
	 * at this point, staging_rxon has the
	 * configuration for channel switch
	 */
2745
	set_bit(STATUS_CHANNEL_SWITCH_PENDING, &priv->shrd->status);
2746
	priv->switch_channel = cpu_to_le16(ch);
2747
	if (priv->cfg->lib->set_channel_switch(priv, ch_switch)) {
2748
		clear_bit(STATUS_CHANNEL_SWITCH_PENDING, &priv->shrd->status);
2749 2750
		priv->switch_channel = 0;
		ieee80211_chswitch_done(ctx->vif, false);
2751
	}
2752

2753
out:
2754
	mutex_unlock(&priv->shrd->mutex);
2755 2756 2757
	IWL_DEBUG_MAC80211(priv, "leave\n");
}

2758 2759 2760 2761
static void iwlagn_configure_filter(struct ieee80211_hw *hw,
				    unsigned int changed_flags,
				    unsigned int *total_flags,
				    u64 multicast)
J
Johannes Berg 已提交
2762 2763 2764
{
	struct iwl_priv *priv = hw->priv;
	__le32 filter_or = 0, filter_nand = 0;
2765
	struct iwl_rxon_context *ctx;
J
Johannes Berg 已提交
2766 2767 2768 2769 2770 2771 2772 2773 2774 2775 2776 2777

#define CHK(test, flag)	do { \
	if (*total_flags & (test))		\
		filter_or |= (flag);		\
	else					\
		filter_nand |= (flag);		\
	} while (0)

	IWL_DEBUG_MAC80211(priv, "Enter: changed: 0x%x, total: 0x%x\n",
			changed_flags, *total_flags);

	CHK(FIF_OTHER_BSS | FIF_PROMISC_IN_BSS, RXON_FILTER_PROMISC_MSK);
J
Johannes Berg 已提交
2778 2779
	/* Setting _just_ RXON_FILTER_CTL2HOST_MSK causes FH errors */
	CHK(FIF_CONTROL, RXON_FILTER_CTL2HOST_MSK | RXON_FILTER_PROMISC_MSK);
J
Johannes Berg 已提交
2780 2781 2782 2783
	CHK(FIF_BCN_PRBRESP_PROMISC, RXON_FILTER_BCON_AWARE_MSK);

#undef CHK

2784
	mutex_lock(&priv->shrd->mutex);
J
Johannes Berg 已提交
2785

2786 2787 2788
	for_each_context(priv, ctx) {
		ctx->staging.filter_flags &= ~filter_nand;
		ctx->staging.filter_flags |= filter_or;
2789 2790 2791 2792 2793

		/*
		 * Not committing directly because hardware can perform a scan,
		 * but we'll eventually commit the filter flags change anyway.
		 */
2794
	}
J
Johannes Berg 已提交
2795

2796
	mutex_unlock(&priv->shrd->mutex);
J
Johannes Berg 已提交
2797 2798 2799 2800 2801 2802 2803 2804 2805 2806 2807

	/*
	 * Receiving all multicast frames is always enabled by the
	 * default flags setup in iwl_connection_init_rx_config()
	 * since we currently do not support programming multicast
	 * filters into the device.
	 */
	*total_flags &= FIF_OTHER_BSS | FIF_ALLMULTI | FIF_PROMISC_IN_BSS |
			FIF_BCN_PRBRESP_PROMISC | FIF_CONTROL;
}

2808
static void iwlagn_mac_flush(struct ieee80211_hw *hw, bool drop)
2809 2810 2811
{
	struct iwl_priv *priv = hw->priv;

2812
	mutex_lock(&priv->shrd->mutex);
2813 2814
	IWL_DEBUG_MAC80211(priv, "enter\n");

2815
	if (test_bit(STATUS_EXIT_PENDING, &priv->shrd->status)) {
2816 2817 2818
		IWL_DEBUG_TX(priv, "Aborting flush due to device shutdown\n");
		goto done;
	}
2819
	if (iwl_is_rfkill(priv->shrd)) {
2820 2821 2822 2823 2824 2825 2826 2827 2828 2829
		IWL_DEBUG_TX(priv, "Aborting flush due to RF Kill\n");
		goto done;
	}

	/*
	 * mac80211 will not push any more frames for transmit
	 * until the flush is completed
	 */
	if (drop) {
		IWL_DEBUG_MAC80211(priv, "send flush command\n");
2830
		if (iwlagn_txfifo_flush(priv, IWL_DROP_ALL)) {
2831 2832 2833 2834 2835
			IWL_ERR(priv, "flush request fail\n");
			goto done;
		}
	}
	IWL_DEBUG_MAC80211(priv, "wait transmit/flush all frames\n");
2836
	iwl_trans_wait_tx_queue_empty(trans(priv));
2837
done:
2838
	mutex_unlock(&priv->shrd->mutex);
2839 2840 2841
	IWL_DEBUG_MAC80211(priv, "leave\n");
}

2842
void iwlagn_disable_roc(struct iwl_priv *priv)
2843 2844 2845
{
	struct iwl_rxon_context *ctx = &priv->contexts[IWL_RXON_CTX_PAN];

2846
	lockdep_assert_held(&priv->shrd->mutex);
2847

2848
	if (!priv->hw_roc_setup)
2849 2850
		return;

2851
	ctx->staging.dev_type = RXON_DEV_TYPE_P2P;
2852 2853
	ctx->staging.filter_flags &= ~RXON_FILTER_ASSOC_MSK;

W
Wey-Yi Guy 已提交
2854
	priv->hw_roc_channel = NULL;
2855

2856 2857
	memset(ctx->staging.node_addr, 0, ETH_ALEN);

2858
	iwlagn_commit_rxon(priv, ctx);
2859 2860

	ctx->is_active = false;
2861
	priv->hw_roc_setup = false;
2862 2863
}

2864
static void iwlagn_disable_roc_work(struct work_struct *work)
2865 2866
{
	struct iwl_priv *priv = container_of(work, struct iwl_priv,
2867
					     hw_roc_disable_work.work);
2868

2869
	mutex_lock(&priv->shrd->mutex);
2870
	iwlagn_disable_roc(priv);
2871
	mutex_unlock(&priv->shrd->mutex);
2872 2873 2874 2875 2876 2877 2878 2879
}

static int iwl_mac_remain_on_channel(struct ieee80211_hw *hw,
				     struct ieee80211_channel *channel,
				     enum nl80211_channel_type channel_type,
				     int duration)
{
	struct iwl_priv *priv = hw->priv;
2880
	struct iwl_rxon_context *ctx = &priv->contexts[IWL_RXON_CTX_PAN];
2881 2882 2883 2884 2885
	int err = 0;

	if (!(priv->valid_contexts & BIT(IWL_RXON_CTX_PAN)))
		return -EOPNOTSUPP;

2886
	if (!(ctx->interface_modes & BIT(NL80211_IFTYPE_P2P_CLIENT)))
2887 2888
		return -EOPNOTSUPP;

2889
	mutex_lock(&priv->shrd->mutex);
2890

2891 2892 2893 2894 2895 2896 2897 2898 2899
	/*
	 * TODO: Remove this hack! Firmware needs to be updated
	 * to allow longer off-channel periods in scanning for
	 * this use case, based on a flag (and we'll need an API
	 * flag in the firmware when it has that).
	 */
	if (iwl_is_associated(priv, IWL_RXON_CTX_BSS) && duration > 80)
		duration = 80;

2900
	if (test_bit(STATUS_SCAN_HW, &priv->shrd->status)) {
2901 2902 2903 2904
		err = -EBUSY;
		goto out;
	}

W
Wey-Yi Guy 已提交
2905 2906
	priv->hw_roc_channel = channel;
	priv->hw_roc_chantype = channel_type;
2907 2908 2909 2910 2911 2912 2913 2914 2915 2916 2917 2918 2919 2920 2921 2922 2923 2924 2925 2926 2927 2928 2929 2930 2931 2932
	priv->hw_roc_duration = duration;
	cancel_delayed_work(&priv->hw_roc_disable_work);

	if (!ctx->is_active) {
		ctx->is_active = true;
		ctx->staging.dev_type = RXON_DEV_TYPE_P2P;
		memcpy(ctx->staging.node_addr,
		       priv->contexts[IWL_RXON_CTX_BSS].staging.node_addr,
		       ETH_ALEN);
		memcpy(ctx->staging.bssid_addr,
		       priv->contexts[IWL_RXON_CTX_BSS].staging.node_addr,
		       ETH_ALEN);
		err = iwlagn_commit_rxon(priv, ctx);
		if (err)
			goto out;
		ctx->staging.filter_flags |= RXON_FILTER_ASSOC_MSK |
					     RXON_FILTER_PROMISC_MSK |
					     RXON_FILTER_CTL2HOST_MSK;

		err = iwlagn_commit_rxon(priv, ctx);
		if (err) {
			iwlagn_disable_roc(priv);
			goto out;
		}
		priv->hw_roc_setup = true;
	}
2933

2934 2935 2936
	err = iwl_scan_initiate(priv, ctx->vif, IWL_SCAN_ROC, channel->band);
	if (err)
		iwlagn_disable_roc(priv);
2937 2938

 out:
2939
	mutex_unlock(&priv->shrd->mutex);
2940 2941 2942 2943 2944 2945 2946 2947 2948 2949 2950

	return err;
}

static int iwl_mac_cancel_remain_on_channel(struct ieee80211_hw *hw)
{
	struct iwl_priv *priv = hw->priv;

	if (!(priv->valid_contexts & BIT(IWL_RXON_CTX_PAN)))
		return -EOPNOTSUPP;

2951
	mutex_lock(&priv->shrd->mutex);
2952
	iwl_scan_cancel_timeout(priv, priv->hw_roc_duration);
2953
	iwlagn_disable_roc(priv);
2954
	mutex_unlock(&priv->shrd->mutex);
2955 2956 2957 2958

	return 0;
}

Z
Zhu Yi 已提交
2959 2960 2961 2962 2963 2964
/*****************************************************************************
 *
 * driver setup and teardown
 *
 *****************************************************************************/

2965
static void iwl_setup_deferred_work(struct iwl_priv *priv)
Z
Zhu Yi 已提交
2966
{
2967
	priv->shrd->workqueue = create_singlethread_workqueue(DRV_NAME);
Z
Zhu Yi 已提交
2968 2969 2970

	init_waitqueue_head(&priv->wait_command_queue);

2971 2972
	INIT_WORK(&priv->restart, iwl_bg_restart);
	INIT_WORK(&priv->beacon_update, iwl_bg_beacon_update);
2973
	INIT_WORK(&priv->run_time_calib_work, iwl_bg_run_time_calib_work);
2974
	INIT_WORK(&priv->tx_flush, iwl_bg_tx_flush);
2975
	INIT_WORK(&priv->bt_full_concurrency, iwl_bg_bt_full_concurrency);
2976
	INIT_WORK(&priv->bt_runtime_config, iwl_bg_bt_runtime_config);
2977 2978
	INIT_DELAYED_WORK(&priv->hw_roc_disable_work,
			  iwlagn_disable_roc_work);
2979 2980

	iwl_setup_scan_deferred_work(priv);
C
Christoph Hellwig 已提交
2981

2982 2983
	if (priv->cfg->lib->bt_setup_deferred_work)
		priv->cfg->lib->bt_setup_deferred_work(priv);
2984 2985 2986

	init_timer(&priv->statistics_periodic);
	priv->statistics_periodic.data = (unsigned long)priv;
2987
	priv->statistics_periodic.function = iwl_bg_statistics_periodic;
Z
Zhu Yi 已提交
2988

2989 2990 2991 2992
	init_timer(&priv->ucode_trace);
	priv->ucode_trace.data = (unsigned long)priv;
	priv->ucode_trace.function = iwl_bg_ucode_trace;

2993 2994 2995
	init_timer(&priv->watchdog);
	priv->watchdog.data = (unsigned long)priv;
	priv->watchdog.function = iwl_bg_watchdog;
Z
Zhu Yi 已提交
2996 2997
}

2998
static void iwl_cancel_deferred_work(struct iwl_priv *priv)
Z
Zhu Yi 已提交
2999
{
3000 3001
	if (priv->cfg->lib->cancel_deferred_work)
		priv->cfg->lib->cancel_deferred_work(priv);
Z
Zhu Yi 已提交
3002

3003
	cancel_work_sync(&priv->run_time_calib_work);
Z
Zhu Yi 已提交
3004
	cancel_work_sync(&priv->beacon_update);
3005 3006 3007

	iwl_cancel_scan_deferred_work(priv);

3008
	cancel_work_sync(&priv->bt_full_concurrency);
3009
	cancel_work_sync(&priv->bt_runtime_config);
3010
	cancel_delayed_work_sync(&priv->hw_roc_disable_work);
3011

3012
	del_timer_sync(&priv->statistics_periodic);
3013
	del_timer_sync(&priv->ucode_trace);
Z
Zhu Yi 已提交
3014 3015
}

3016 3017 3018 3019 3020 3021 3022 3023 3024 3025 3026 3027 3028 3029 3030 3031 3032 3033 3034 3035 3036 3037 3038 3039 3040
static void iwl_init_hw_rates(struct iwl_priv *priv,
			      struct ieee80211_rate *rates)
{
	int i;

	for (i = 0; i < IWL_RATE_COUNT_LEGACY; i++) {
		rates[i].bitrate = iwl_rates[i].ieee * 5;
		rates[i].hw_value = i; /* Rate scaling will work on indexes */
		rates[i].hw_value_short = i;
		rates[i].flags = 0;
		if ((i >= IWL_FIRST_CCK_RATE) && (i <= IWL_LAST_CCK_RATE)) {
			/*
			 * If CCK != 1M then set short preamble rate flag.
			 */
			rates[i].flags |=
				(iwl_rates[i].plcp == IWL_RATE_1M_PLCP) ?
					0 : IEEE80211_RATE_SHORT_PREAMBLE;
		}
	}
}

static int iwl_init_drv(struct iwl_priv *priv)
{
	int ret;

3041
	spin_lock_init(&priv->shrd->sta_lock);
3042

3043
	mutex_init(&priv->shrd->mutex);
3044 3045 3046 3047 3048 3049

	priv->ieee_channels = NULL;
	priv->ieee_rates = NULL;
	priv->band = IEEE80211_BAND_2GHZ;

	priv->iw_mode = NL80211_IFTYPE_STATION;
J
Johannes Berg 已提交
3050
	priv->current_ht_config.smps = IEEE80211_SMPS_STATIC;
3051
	priv->missed_beacon_threshold = IWL_MISSED_BEACON_THRESHOLD_DEF;
W
Wey-Yi Guy 已提交
3052
	priv->agg_tids_count = 0;
3053

3054 3055 3056 3057 3058
	/* initialize force reset */
	priv->force_reset[IWL_RF_RESET].reset_duration =
		IWL_DELAY_NEXT_FORCE_RF_RESET;
	priv->force_reset[IWL_FW_RESET].reset_duration =
		IWL_DELAY_NEXT_FORCE_FW_RELOAD;
3059

3060 3061
	priv->rx_statistics_jiffies = jiffies;

3062
	/* Choose which receivers/antennas to use */
W
Wey-Yi Guy 已提交
3063
	iwlagn_set_rxon_chain(priv, &priv->contexts[IWL_RXON_CTX_BSS]);
3064 3065 3066

	iwl_init_scan_params(priv);

3067
	/* init bt coex */
3068 3069
	if (priv->cfg->bt_params &&
	    priv->cfg->bt_params->advanced_bt_coexist) {
W
Wey-Yi Guy 已提交
3070 3071 3072
		priv->kill_ack_mask = IWLAGN_BT_KILL_ACK_MASK_DEFAULT;
		priv->kill_cts_mask = IWLAGN_BT_KILL_CTS_MASK_DEFAULT;
		priv->bt_valid = IWLAGN_BT_ALL_VALID_MSK;
3073 3074 3075 3076 3077
		priv->bt_on_thresh = BT_ON_THRESHOLD_DEF;
		priv->bt_duration = BT_DURATION_LIMIT_DEF;
		priv->dynamic_frag_thresh = BT_FRAG_THRESHOLD_DEF;
	}

3078 3079 3080 3081 3082 3083
	ret = iwl_init_channel_map(priv);
	if (ret) {
		IWL_ERR(priv, "initializing regulatory failed: %d\n", ret);
		goto err;
	}

W
Wey-Yi Guy 已提交
3084
	ret = iwl_init_geos(priv);
3085 3086 3087 3088 3089 3090 3091 3092 3093 3094 3095 3096 3097 3098 3099 3100 3101
	if (ret) {
		IWL_ERR(priv, "initializing geos failed: %d\n", ret);
		goto err_free_channel_map;
	}
	iwl_init_hw_rates(priv, priv->ieee_rates);

	return 0;

err_free_channel_map:
	iwl_free_channel_map(priv);
err:
	return ret;
}

static void iwl_uninit_drv(struct iwl_priv *priv)
{
	iwl_calib_free_results(priv);
W
Wey-Yi Guy 已提交
3102
	iwl_free_geos(priv);
3103
	iwl_free_channel_map(priv);
3104 3105
	if (priv->tx_cmd_pool)
		kmem_cache_destroy(priv->tx_cmd_pool);
3106
	kfree(priv->scan_cmd);
3107
	kfree(priv->beacon_cmd);
J
Johannes Berg 已提交
3108 3109 3110
#ifdef CONFIG_IWLWIFI_DEBUGFS
	kfree(priv->wowlan_sram);
#endif
3111 3112
}

W
Wey-Yi Guy 已提交
3113
static void iwl_mac_rssi_callback(struct ieee80211_hw *hw,
3114 3115 3116 3117
			   enum ieee80211_rssi_event rssi_event)
{
	struct iwl_priv *priv = hw->priv;

3118
	mutex_lock(&priv->shrd->mutex);
3119 3120 3121 3122 3123 3124 3125 3126 3127 3128 3129 3130 3131 3132

	if (priv->cfg->bt_params &&
			priv->cfg->bt_params->advanced_bt_coexist) {
		if (rssi_event == RSSI_EVENT_LOW)
			priv->bt_enable_pspoll = true;
		else if (rssi_event == RSSI_EVENT_HIGH)
			priv->bt_enable_pspoll = false;

		iwlagn_send_advance_bt_config(priv);
	} else {
		IWL_DEBUG_MAC80211(priv, "Advanced BT coex disabled,"
				"ignoring RSSI callback\n");
	}

3133
	mutex_unlock(&priv->shrd->mutex);
3134 3135
}

3136
struct ieee80211_ops iwlagn_hw_ops = {
3137 3138 3139
	.tx = iwlagn_mac_tx,
	.start = iwlagn_mac_start,
	.stop = iwlagn_mac_stop,
3140
#ifdef CONFIG_PM
J
Johannes Berg 已提交
3141 3142
	.suspend = iwlagn_mac_suspend,
	.resume = iwlagn_mac_resume,
3143
#endif
3144 3145
	.add_interface = iwl_mac_add_interface,
	.remove_interface = iwl_mac_remove_interface,
3146
	.change_interface = iwl_mac_change_interface,
3147
	.config = iwlagn_mac_config,
J
Johannes Berg 已提交
3148
	.configure_filter = iwlagn_configure_filter,
3149 3150
	.set_key = iwlagn_mac_set_key,
	.update_tkip_key = iwlagn_mac_update_tkip_key,
J
Johannes Berg 已提交
3151
	.set_rekey_data = iwlagn_mac_set_rekey_data,
3152
	.conf_tx = iwl_mac_conf_tx,
3153 3154
	.bss_info_changed = iwlagn_bss_info_changed,
	.ampdu_action = iwlagn_mac_ampdu_action,
3155
	.hw_scan = iwl_mac_hw_scan,
3156
	.sta_notify = iwlagn_mac_sta_notify,
3157 3158
	.sta_add = iwlagn_mac_sta_add,
	.sta_remove = iwl_mac_sta_remove,
3159 3160
	.channel_switch = iwlagn_mac_channel_switch,
	.flush = iwlagn_mac_flush,
3161
	.tx_last_beacon = iwl_mac_tx_last_beacon,
3162 3163
	.remain_on_channel = iwl_mac_remain_on_channel,
	.cancel_remain_on_channel = iwl_mac_cancel_remain_on_channel,
3164
	.rssi_callback = iwl_mac_rssi_callback,
3165
	CFG80211_TESTMODE_CMD(iwl_testmode_cmd)
3166
	CFG80211_TESTMODE_DUMP(iwl_testmode_dump)
Z
Zhu Yi 已提交
3167 3168
};

J
Johannes Berg 已提交
3169
static u32 iwl_hw_detect(struct iwl_priv *priv)
3170
{
3171
	return iwl_read32(bus(priv), CSR_HW_REV);
3172 3173
}

3174 3175 3176 3177
/* Size of one Rx buffer in host DRAM */
#define IWL_RX_BUF_SIZE_4K (4 * 1024)
#define IWL_RX_BUF_SIZE_8K (8 * 1024)

3178 3179
static int iwl_set_hw_params(struct iwl_priv *priv)
{
D
Don Fry 已提交
3180
	if (iwlagn_mod_params.amsdu_size_8K)
3181 3182
		hw_params(priv).rx_page_order =
			get_order(IWL_RX_BUF_SIZE_8K);
3183
	else
3184 3185
		hw_params(priv).rx_page_order =
			get_order(IWL_RX_BUF_SIZE_4K);
3186

D
Don Fry 已提交
3187
	if (iwlagn_mod_params.disable_11n)
3188
		priv->cfg->sku &= ~EEPROM_SKU_CAP_11N_ENABLE;
3189

3190 3191 3192 3193 3194 3195 3196
	hw_params(priv).num_ampdu_queues =
		priv->cfg->base_params->num_of_ampdu_queues;
	hw_params(priv).shadow_reg_enable =
		priv->cfg->base_params->shadow_reg_enable;
	hw_params(priv).sku =
		priv->cfg->sku;

3197
	/* Device-specific setup */
3198
	return priv->cfg->lib->set_hw_params(priv);
3199 3200
}

3201 3202 3203 3204 3205 3206 3207 3208 3209 3210 3211 3212 3213 3214 3215 3216 3217 3218 3219 3220 3221 3222
/* This function both allocates and initializes hw and priv. */
static struct ieee80211_hw *iwl_alloc_all(struct iwl_cfg *cfg)
{
	struct iwl_priv *priv;
	/* mac80211 allocates memory for this device instance, including
	 *   space for this driver's private structure */
	struct ieee80211_hw *hw;

	hw = ieee80211_alloc_hw(sizeof(struct iwl_priv), &iwlagn_hw_ops);
	if (hw == NULL) {
		pr_err("%s: Can not allocate network device\n",
		       cfg->name);
		goto out;
	}

	priv = hw->priv;
	priv->hw = hw;

out:
	return hw;
}

3223 3224
int iwl_probe(struct iwl_bus *bus, const struct iwl_trans_ops *trans_ops,
		struct iwl_cfg *cfg)
3225 3226 3227 3228
{
	int err = 0;
	struct iwl_priv *priv;
	struct ieee80211_hw *hw;
3229
	u16 num_mac;
3230 3231 3232 3233 3234 3235 3236 3237
	u32 hw_rev;

	/************************
	 * 1. Allocating HW data
	 ************************/
	hw = iwl_alloc_all(cfg);
	if (!hw) {
		err = -ENOMEM;
3238 3239 3240
		goto out;
	}

3241
	priv = hw->priv;
3242
	priv->bus = bus;
3243 3244 3245 3246
	priv->shrd = &priv->_shrd;
	priv->shrd->bus = bus;
	priv->shrd->priv = priv;
	bus_set_drv_data(priv->bus, priv->shrd);
3247

3248 3249 3250 3251 3252 3253
	priv->shrd->trans = trans_ops->alloc(priv->shrd);
	if (priv->shrd->trans == NULL) {
		err = -ENOMEM;
		goto out_free_traffic_mem;
	}

3254
	/* At this point both hw and priv are allocated. */
3255

3256
	SET_IEEE80211_DEV(hw, priv->bus->dev);
Z
Zhu Yi 已提交
3257

3258
	IWL_DEBUG_INFO(priv, "*** LOAD DRIVER ***\n");
T
Tomas Winkler 已提交
3259
	priv->cfg = cfg;
3260

3261 3262
	/* is antenna coupling more than 35dB ? */
	priv->bt_ant_couple_ok =
3263 3264 3265
		(iwlagn_mod_params.ant_coupling >
			IWL_BT_ANTENNA_COUPLING_THRESHOLD) ?
			true : false;
3266

3267
	/* enable/disable bt channel inhibition */
3268
	priv->bt_ch_announce = iwlagn_mod_params.bt_ch_announce;
3269 3270
	IWL_DEBUG_INFO(priv, "BT channel inhibition is %s\n",
		       (priv->bt_ch_announce) ? "On" : "Off");
3271

3272 3273
	if (iwl_alloc_traffic_mem(priv))
		IWL_ERR(priv, "Not enough memory to generate traffic log\n");
Z
Zhu Yi 已提交
3274

3275
	/* these spin locks will be used in apm_ops.init and EEPROM access
M
Mohamed Abbas 已提交
3276 3277
	 * we should init now
	 */
3278
	spin_lock_init(&bus(priv)->reg_lock);
3279
	spin_lock_init(&priv->shrd->lock);
3280 3281 3282 3283 3284 3285

	/*
	 * stop and reset the on-board processor just in case it is in a
	 * strange state ... like being left stranded by a primary kernel
	 * and this is now the kdump kernel trying to start up
	 */
3286
	iwl_write32(bus(priv), CSR_RESET, CSR_RESET_REG_FLAG_NEVO_RESET);
3287

3288 3289 3290
	/***********************
	 * 3. Read REV register
	 ***********************/
J
Johannes Berg 已提交
3291
	hw_rev = iwl_hw_detect(priv);
3292
	IWL_INFO(priv, "Detected %s, REV=0x%X\n",
J
Johannes Berg 已提交
3293
		priv->cfg->name, hw_rev);
3294

3295
	err = iwl_trans_request_irq(trans(priv));
3296
	if (err)
3297
		goto out_free_trans;
3298

3299
	if (iwl_trans_prepare_card_hw(trans(priv))) {
3300
		err = -EIO;
M
Mohamed Abbas 已提交
3301
		IWL_WARN(priv, "Failed, HW not ready\n");
3302
		goto out_free_trans;
M
Mohamed Abbas 已提交
3303 3304
	}

T
Tomas Winkler 已提交
3305 3306 3307
	/*****************
	 * 4. Read EEPROM
	 *****************/
3308
	/* Read the EEPROM */
J
Johannes Berg 已提交
3309
	err = iwl_eeprom_init(priv, hw_rev);
3310
	if (err) {
3311
		IWL_ERR(priv, "Unable to init EEPROM\n");
3312
		goto out_free_trans;
3313
	}
3314 3315
	err = iwl_eeprom_check_version(priv);
	if (err)
3316
		goto out_free_eeprom;
3317

3318 3319 3320 3321
	err = iwl_eeprom_check_sku(priv);
	if (err)
		goto out_free_eeprom;

3322
	/* extract MAC Address */
3323 3324 3325 3326 3327 3328 3329 3330 3331 3332 3333
	iwl_eeprom_get_mac(priv, priv->addresses[0].addr);
	IWL_DEBUG_INFO(priv, "MAC address: %pM\n", priv->addresses[0].addr);
	priv->hw->wiphy->addresses = priv->addresses;
	priv->hw->wiphy->n_addresses = 1;
	num_mac = iwl_eeprom_query16(priv, EEPROM_NUM_MAC_ADDRESS);
	if (num_mac > 1) {
		memcpy(priv->addresses[1].addr, priv->addresses[0].addr,
		       ETH_ALEN);
		priv->addresses[1].addr[5]++;
		priv->hw->wiphy->n_addresses++;
	}
3334 3335 3336 3337

	/************************
	 * 5. Setup HW constants
	 ************************/
3338
	if (iwl_set_hw_params(priv)) {
3339
		err = -ENOENT;
3340
		IWL_ERR(priv, "failed to set hw parameters\n");
3341
		goto out_free_eeprom;
3342 3343 3344
	}

	/*******************
T
Tomas Winkler 已提交
3345
	 * 6. Setup priv
3346
	 *******************/
Z
Zhu Yi 已提交
3347

T
Tomas Winkler 已提交
3348
	err = iwl_init_drv(priv);
3349
	if (err)
R
Ron Rindjunsky 已提交
3350
		goto out_free_eeprom;
3351
	/* At this point both hw and priv are initialized. */
3352 3353

	/********************
3354
	 * 7. Setup services
3355
	 ********************/
3356
	iwl_setup_deferred_work(priv);
3357
	iwl_setup_rx_handlers(priv);
3358
	iwl_testmode_init(priv);
3359

J
Johannes Berg 已提交
3360
	/*********************************************
3361
	 * 8. Enable interrupts
J
Johannes Berg 已提交
3362
	 *********************************************/
T
Tomas Winkler 已提交
3363

3364
	iwl_enable_rfkill_int(priv);
3365 3366

	/* If platform's RF_KILL switch is NOT set to KILL */
3367 3368
	if (iwl_read32(bus(priv),
			CSR_GP_CNTRL) & CSR_GP_CNTRL_REG_FLAG_HW_RF_KILL_SW)
3369
		clear_bit(STATUS_RF_KILL_HW, &priv->shrd->status);
3370
	else
3371
		set_bit(STATUS_RF_KILL_HW, &priv->shrd->status);
T
Tomas Winkler 已提交
3372

J
Johannes Berg 已提交
3373
	wiphy_rfkill_set_hw_state(priv->hw->wiphy,
3374
		test_bit(STATUS_RF_KILL_HW, &priv->shrd->status));
3375

3376
	iwl_power_initialize(priv);
3377
	iwl_tt_initialize(priv);
J
Johannes Berg 已提交
3378

W
Wey-Yi Guy 已提交
3379
	init_completion(&priv->firmware_loading_complete);
3380

3381
	err = iwl_request_firmware(priv, true);
J
Johannes Berg 已提交
3382
	if (err)
3383
		goto out_destroy_workqueue;
J
Johannes Berg 已提交
3384

Z
Zhu Yi 已提交
3385 3386
	return 0;

3387
out_destroy_workqueue:
3388 3389
	destroy_workqueue(priv->shrd->workqueue);
	priv->shrd->workqueue = NULL;
T
Tomas Winkler 已提交
3390
	iwl_uninit_drv(priv);
3391
out_free_eeprom:
3392
	iwl_eeprom_free(priv);
3393
out_free_trans:
3394
	iwl_trans_free(trans(priv));
3395
out_free_traffic_mem:
3396
	iwl_free_traffic_mem(priv);
3397
	ieee80211_free_hw(priv->hw);
3398
out:
Z
Zhu Yi 已提交
3399 3400 3401
	return err;
}

3402
void __devexit iwl_remove(struct iwl_priv * priv)
Z
Zhu Yi 已提交
3403
{
W
Wey-Yi Guy 已提交
3404
	wait_for_completion(&priv->firmware_loading_complete);
3405

3406
	IWL_DEBUG_INFO(priv, "*** UNLOAD DRIVER ***\n");
Z
Zhu Yi 已提交
3407

3408
	iwl_dbgfs_unregister(priv);
3409
	sysfs_remove_group(&priv->bus->dev->kobj,
3410
			   &iwl_attribute_group);
3411

3412 3413
	/* ieee80211_unregister_hw call wil cause iwl_mac_stop to
	 * to be called and iwl_down since we are removing the device
3414 3415
	 * we need to set STATUS_EXIT_PENDING bit.
	 */
3416
	set_bit(STATUS_EXIT_PENDING, &priv->shrd->status);
3417

W
Wey-Yi Guy 已提交
3418
	iwl_testmode_cleanup(priv);
3419 3420
	iwl_leds_exit(priv);

3421 3422 3423 3424 3425
	if (priv->mac80211_registered) {
		ieee80211_unregister_hw(priv->hw);
		priv->mac80211_registered = 0;
	}

3426 3427
	iwl_tt_exit(priv);

3428 3429
	/*This will stop the queues, move the device to low power state */
	iwl_trans_stop_device(trans(priv));
3430

3431
	iwl_dealloc_ucode(priv);
Z
Zhu Yi 已提交
3432

3433
	iwl_eeprom_free(priv);
Z
Zhu Yi 已提交
3434

M
Mohamed Abbas 已提交
3435
	/*netif_stop_queue(dev); */
3436
	flush_workqueue(priv->shrd->workqueue);
M
Mohamed Abbas 已提交
3437

3438
	/* ieee80211_unregister_hw calls iwl_mac_stop, which flushes
3439
	 * priv->shrd->workqueue... so we can't take down the workqueue
Z
Zhu Yi 已提交
3440
	 * until now... */
3441 3442
	destroy_workqueue(priv->shrd->workqueue);
	priv->shrd->workqueue = NULL;
3443
	iwl_free_traffic_mem(priv);
Z
Zhu Yi 已提交
3444

3445
	iwl_trans_free(trans(priv));
3446

3447
	bus_set_drv_data(priv->bus, NULL);
Z
Zhu Yi 已提交
3448

T
Tomas Winkler 已提交
3449
	iwl_uninit_drv(priv);
Z
Zhu Yi 已提交
3450

3451
	dev_kfree_skb(priv->beacon_skb);
Z
Zhu Yi 已提交
3452 3453 3454 3455 3456 3457 3458 3459 3460 3461

	ieee80211_free_hw(priv->hw);
}


/*****************************************************************************
 *
 * driver and module entry point
 *
 *****************************************************************************/
3462
static int __init iwl_init(void)
Z
Zhu Yi 已提交
3463 3464 3465
{

	int ret;
3466 3467
	pr_info(DRV_DESCRIPTION ", " DRV_VERSION "\n");
	pr_info(DRV_COPYRIGHT "\n");
3468

3469
	ret = iwlagn_rate_control_register();
3470
	if (ret) {
3471
		pr_err("Unable to register rate control algorithm: %d\n", ret);
3472 3473 3474
		return ret;
	}

3475
	ret = iwl_pci_register_driver();
Z
Zhu Yi 已提交
3476

3477 3478
	if (ret)
		goto error_register;
Z
Zhu Yi 已提交
3479
	return ret;
3480 3481

error_register:
3482
	iwlagn_rate_control_unregister();
3483
	return ret;
Z
Zhu Yi 已提交
3484 3485
}

3486
static void __exit iwl_exit(void)
Z
Zhu Yi 已提交
3487
{
3488
	iwl_pci_unregister_driver();
3489
	iwlagn_rate_control_unregister();
Z
Zhu Yi 已提交
3490 3491
}

3492 3493
module_exit(iwl_exit);
module_init(iwl_init);
3494 3495

#ifdef CONFIG_IWLWIFI_DEBUG
3496 3497
module_param_named(debug, iwlagn_mod_params.debug_level, uint,
		   S_IRUGO | S_IWUSR);
3498 3499 3500
MODULE_PARM_DESC(debug, "debug output mask");
#endif

3501 3502 3503 3504 3505 3506 3507 3508 3509 3510 3511
module_param_named(swcrypto, iwlagn_mod_params.sw_crypto, int, S_IRUGO);
MODULE_PARM_DESC(swcrypto, "using crypto in software (default 0 [hardware])");
module_param_named(queues_num, iwlagn_mod_params.num_of_queues, int, S_IRUGO);
MODULE_PARM_DESC(queues_num, "number of hw queues.");
module_param_named(11n_disable, iwlagn_mod_params.disable_11n, int, S_IRUGO);
MODULE_PARM_DESC(11n_disable, "disable 11n functionality");
module_param_named(amsdu_size_8K, iwlagn_mod_params.amsdu_size_8K,
		   int, S_IRUGO);
MODULE_PARM_DESC(amsdu_size_8K, "enable 8K amsdu size");
module_param_named(fw_restart, iwlagn_mod_params.restart_fw, int, S_IRUGO);
MODULE_PARM_DESC(fw_restart, "restart firmware in case of error");
3512

3513 3514 3515
module_param_named(ucode_alternative,
		   iwlagn_mod_params.wanted_ucode_alternative,
		   int, S_IRUGO);
3516 3517
MODULE_PARM_DESC(ucode_alternative,
		 "specify ucode alternative to use from ucode file");
3518

3519 3520
module_param_named(antenna_coupling, iwlagn_mod_params.ant_coupling,
		   int, S_IRUGO);
3521 3522
MODULE_PARM_DESC(antenna_coupling,
		 "specify antenna coupling in dB (defualt: 0 dB)");
3523

3524 3525
module_param_named(bt_ch_inhibition, iwlagn_mod_params.bt_ch_announce,
		   bool, S_IRUGO);
3526
MODULE_PARM_DESC(bt_ch_inhibition,
3527
		 "Enable BT channel inhibition (default: enable)");
3528 3529 3530 3531 3532 3533

module_param_named(plcp_check, iwlagn_mod_params.plcp_check, bool, S_IRUGO);
MODULE_PARM_DESC(plcp_check, "Check plcp health (default: 1 [enabled])");

module_param_named(ack_check, iwlagn_mod_params.ack_check, bool, S_IRUGO);
MODULE_PARM_DESC(ack_check, "Check ack health (default: 0 [disabled])");
3534

3535 3536 3537 3538
module_param_named(wd_disable, iwlagn_mod_params.wd_disable, bool, S_IRUGO);
MODULE_PARM_DESC(wd_disable,
		"Disable stuck queue watchdog timer (default: 0 [enabled])");

3539 3540 3541 3542 3543 3544 3545 3546 3547 3548 3549 3550 3551 3552 3553 3554 3555 3556 3557
/*
 * set bt_coex_active to true, uCode will do kill/defer
 * every time the priority line is asserted (BT is sending signals on the
 * priority line in the PCIx).
 * set bt_coex_active to false, uCode will ignore the BT activity and
 * perform the normal operation
 *
 * User might experience transmit issue on some platform due to WiFi/BT
 * co-exist problem. The possible behaviors are:
 *   Able to scan and finding all the available AP
 *   Not able to associate with any AP
 * On those platforms, WiFi communication can be restored by set
 * "bt_coex_active" module parameter to "false"
 *
 * default: bt_coex_active = true (BT_COEX_ENABLE)
 */
module_param_named(bt_coex_active, iwlagn_mod_params.bt_coex_active,
		bool, S_IRUGO);
MODULE_PARM_DESC(bt_coex_active, "enable wifi/bt co-exist (default: enable)");
3558 3559 3560 3561

module_param_named(led_mode, iwlagn_mod_params.led_mode, int, S_IRUGO);
MODULE_PARM_DESC(led_mode, "0=system default, "
		"1=On(RF On)/Off(RF Off), 2=blinking (default: 0)");
3562

3563 3564 3565 3566 3567
module_param_named(power_save, iwlagn_mod_params.power_save,
		bool, S_IRUGO);
MODULE_PARM_DESC(power_save,
		 "enable WiFi power management (default: disable)");

3568 3569 3570 3571 3572
module_param_named(power_level, iwlagn_mod_params.power_level,
		int, S_IRUGO);
MODULE_PARM_DESC(power_level,
		 "default power save level (range from 1 - 5, default: 1)");

3573 3574 3575 3576 3577
module_param_named(auto_agg, iwlagn_mod_params.auto_agg,
		bool, S_IRUGO);
MODULE_PARM_DESC(auto_agg,
		 "enable agg w/o check traffic load (default: enable)");

3578 3579 3580 3581 3582 3583 3584 3585 3586
/*
 * For now, keep using power level 1 instead of automatically
 * adjusting ...
 */
module_param_named(no_sleep_autoadjust, iwlagn_mod_params.no_sleep_autoadjust,
		bool, S_IRUGO);
MODULE_PARM_DESC(no_sleep_autoadjust,
		 "don't automatically adjust sleep level "
		 "according to maximum network latency (default: true)");