2 * This file contains the handling of command.
3 * It prepares command and sends it to firmware when it is ready.
6 #include <net/iw_handler.h>
7 #include <net/lib80211.h>
8 #include <linux/kfifo.h>
9 #include <linux/sched.h>
19 static struct cmd_ctrl_node *lbs_get_cmd_ctrl_node(struct lbs_private *priv);
23 * @brief Simple callback that copies response back into command
25 * @param priv A pointer to struct lbs_private structure
26 * @param extra A pointer to the original command structure for which
27 * 'resp' is a response
28 * @param resp A pointer to the command response
30 * @return 0 on success, error on failure
32 int lbs_cmd_copyback(struct lbs_private *priv, unsigned long extra,
33 struct cmd_header *resp)
35 struct cmd_header *buf = (void *)extra;
38 copy_len = min(le16_to_cpu(buf->size), le16_to_cpu(resp->size));
39 memcpy(buf, resp, copy_len);
42 EXPORT_SYMBOL_GPL(lbs_cmd_copyback);
45 * @brief Simple callback that ignores the result. Use this if
46 * you just want to send a command to the hardware, but don't
47 * care for the result.
50 * @param extra ignored
53 * @return 0 for success
55 static int lbs_cmd_async_callback(struct lbs_private *priv, unsigned long extra,
56 struct cmd_header *resp)
63 * @brief Checks whether a command is allowed in Power Save mode
65 * @param command the command ID
66 * @return 1 if allowed, 0 if not allowed
68 static u8 is_command_allowed_in_ps(u16 cmd)
80 * @brief Updates the hardware details like MAC address and regulatory region
82 * @param priv A pointer to struct lbs_private structure
84 * @return 0 on success, error on failure
86 int lbs_update_hw_spec(struct lbs_private *priv)
88 struct cmd_ds_get_hw_spec cmd;
92 lbs_deb_enter(LBS_DEB_CMD);
94 memset(&cmd, 0, sizeof(cmd));
95 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
96 memcpy(cmd.permanentaddr, priv->current_addr, ETH_ALEN);
97 ret = lbs_cmd_with_response(priv, CMD_GET_HW_SPEC, &cmd);
101 priv->fwcapinfo = le32_to_cpu(cmd.fwcapinfo);
103 /* The firmware release is in an interesting format: the patch
104 * level is in the most significant nibble ... so fix that: */
105 priv->fwrelease = le32_to_cpu(cmd.fwrelease);
106 priv->fwrelease = (priv->fwrelease << 8) |
107 (priv->fwrelease >> 24 & 0xff);
109 /* Some firmware capabilities:
110 * CF card firmware 5.0.16p0: cap 0x00000303
111 * USB dongle firmware 5.110.17p2: cap 0x00000303
113 lbs_pr_info("%pM, fw %u.%u.%up%u, cap 0x%08x\n",
115 priv->fwrelease >> 24 & 0xff,
116 priv->fwrelease >> 16 & 0xff,
117 priv->fwrelease >> 8 & 0xff,
118 priv->fwrelease & 0xff,
120 lbs_deb_cmd("GET_HW_SPEC: hardware interface 0x%x, hardware spec 0x%04x\n",
121 cmd.hwifversion, cmd.version);
123 /* Determine mesh_fw_ver from fwrelease and fwcapinfo */
124 /* 5.0.16p0 9.0.0.p0 is known to NOT support any mesh */
125 /* 5.110.22 have mesh command with 0xa3 command id */
126 /* 10.0.0.p0 FW brings in mesh config command with different id */
127 /* Check FW version MSB and initialize mesh_fw_ver */
128 if (MRVL_FW_MAJOR_REV(priv->fwrelease) == MRVL_FW_V5)
129 priv->mesh_fw_ver = MESH_FW_OLD;
130 else if ((MRVL_FW_MAJOR_REV(priv->fwrelease) >= MRVL_FW_V10) &&
131 (priv->fwcapinfo & MESH_CAPINFO_ENABLE_MASK))
132 priv->mesh_fw_ver = MESH_FW_NEW;
134 priv->mesh_fw_ver = MESH_NONE;
136 /* Clamp region code to 8-bit since FW spec indicates that it should
137 * only ever be 8-bit, even though the field size is 16-bit. Some firmware
138 * returns non-zero high 8 bits here.
140 * Firmware version 4.0.102 used in CF8381 has region code shifted. We
141 * need to check for this problem and handle it properly.
143 if (MRVL_FW_MAJOR_REV(priv->fwrelease) == MRVL_FW_V4)
144 priv->regioncode = (le16_to_cpu(cmd.regioncode) >> 8) & 0xFF;
146 priv->regioncode = le16_to_cpu(cmd.regioncode) & 0xFF;
148 for (i = 0; i < MRVDRV_MAX_REGION_CODE; i++) {
149 /* use the region code to search for the index */
150 if (priv->regioncode == lbs_region_code_to_index[i])
154 /* if it's unidentified region code, use the default (USA) */
155 if (i >= MRVDRV_MAX_REGION_CODE) {
156 priv->regioncode = 0x10;
157 lbs_pr_info("unidentified region code; using the default (USA)\n");
160 if (priv->current_addr[0] == 0xff)
161 memmove(priv->current_addr, cmd.permanentaddr, ETH_ALEN);
163 memcpy(priv->dev->dev_addr, priv->current_addr, ETH_ALEN);
165 memcpy(priv->mesh_dev->dev_addr, priv->current_addr, ETH_ALEN);
167 if (lbs_set_regiontable(priv, priv->regioncode, 0)) {
172 if (lbs_set_universaltable(priv, 0)) {
178 lbs_deb_leave(LBS_DEB_CMD);
182 int lbs_host_sleep_cfg(struct lbs_private *priv, uint32_t criteria,
183 struct wol_config *p_wol_config)
185 struct cmd_ds_host_sleep cmd_config;
188 cmd_config.hdr.size = cpu_to_le16(sizeof(cmd_config));
189 cmd_config.criteria = cpu_to_le32(criteria);
190 cmd_config.gpio = priv->wol_gpio;
191 cmd_config.gap = priv->wol_gap;
193 if (p_wol_config != NULL)
194 memcpy((uint8_t *)&cmd_config.wol_conf, (uint8_t *)p_wol_config,
195 sizeof(struct wol_config));
197 cmd_config.wol_conf.action = CMD_ACT_ACTION_NONE;
199 ret = lbs_cmd_with_response(priv, CMD_802_11_HOST_SLEEP_CFG, &cmd_config);
202 lbs_deb_cmd("Set WOL criteria to %x\n", criteria);
203 priv->wol_criteria = criteria;
205 memcpy((uint8_t *) p_wol_config,
206 (uint8_t *)&cmd_config.wol_conf,
207 sizeof(struct wol_config));
209 lbs_pr_info("HOST_SLEEP_CFG failed %d\n", ret);
214 EXPORT_SYMBOL_GPL(lbs_host_sleep_cfg);
216 static int lbs_cmd_802_11_ps_mode(struct cmd_ds_command *cmd,
219 struct cmd_ds_802_11_ps_mode *psm = &cmd->params.psmode;
221 lbs_deb_enter(LBS_DEB_CMD);
223 cmd->command = cpu_to_le16(CMD_802_11_PS_MODE);
224 cmd->size = cpu_to_le16(sizeof(struct cmd_ds_802_11_ps_mode) +
226 psm->action = cpu_to_le16(cmd_action);
227 psm->multipledtim = 0;
228 switch (cmd_action) {
229 case CMD_SUBCMD_ENTER_PS:
230 lbs_deb_cmd("PS command:" "SubCode- Enter PS\n");
232 psm->locallisteninterval = 0;
233 psm->nullpktinterval = 0;
235 cpu_to_le16(MRVDRV_DEFAULT_MULTIPLE_DTIM);
238 case CMD_SUBCMD_EXIT_PS:
239 lbs_deb_cmd("PS command:" "SubCode- Exit PS\n");
242 case CMD_SUBCMD_SLEEP_CONFIRMED:
243 lbs_deb_cmd("PS command: SubCode- sleep confirm\n");
250 lbs_deb_leave(LBS_DEB_CMD);
254 int lbs_cmd_802_11_inactivity_timeout(struct lbs_private *priv,
255 uint16_t cmd_action, uint16_t *timeout)
257 struct cmd_ds_802_11_inactivity_timeout cmd;
260 lbs_deb_enter(LBS_DEB_CMD);
262 cmd.hdr.command = cpu_to_le16(CMD_802_11_INACTIVITY_TIMEOUT);
263 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
265 cmd.action = cpu_to_le16(cmd_action);
267 if (cmd_action == CMD_ACT_SET)
268 cmd.timeout = cpu_to_le16(*timeout);
272 ret = lbs_cmd_with_response(priv, CMD_802_11_INACTIVITY_TIMEOUT, &cmd);
275 *timeout = le16_to_cpu(cmd.timeout);
277 lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
281 int lbs_cmd_802_11_sleep_params(struct lbs_private *priv, uint16_t cmd_action,
282 struct sleep_params *sp)
284 struct cmd_ds_802_11_sleep_params cmd;
287 lbs_deb_enter(LBS_DEB_CMD);
289 if (cmd_action == CMD_ACT_GET) {
290 memset(&cmd, 0, sizeof(cmd));
292 cmd.error = cpu_to_le16(sp->sp_error);
293 cmd.offset = cpu_to_le16(sp->sp_offset);
294 cmd.stabletime = cpu_to_le16(sp->sp_stabletime);
295 cmd.calcontrol = sp->sp_calcontrol;
296 cmd.externalsleepclk = sp->sp_extsleepclk;
297 cmd.reserved = cpu_to_le16(sp->sp_reserved);
299 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
300 cmd.action = cpu_to_le16(cmd_action);
302 ret = lbs_cmd_with_response(priv, CMD_802_11_SLEEP_PARAMS, &cmd);
305 lbs_deb_cmd("error 0x%x, offset 0x%x, stabletime 0x%x, "
306 "calcontrol 0x%x extsleepclk 0x%x\n",
307 le16_to_cpu(cmd.error), le16_to_cpu(cmd.offset),
308 le16_to_cpu(cmd.stabletime), cmd.calcontrol,
309 cmd.externalsleepclk);
311 sp->sp_error = le16_to_cpu(cmd.error);
312 sp->sp_offset = le16_to_cpu(cmd.offset);
313 sp->sp_stabletime = le16_to_cpu(cmd.stabletime);
314 sp->sp_calcontrol = cmd.calcontrol;
315 sp->sp_extsleepclk = cmd.externalsleepclk;
316 sp->sp_reserved = le16_to_cpu(cmd.reserved);
319 lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
323 int lbs_cmd_802_11_set_wep(struct lbs_private *priv, uint16_t cmd_action,
324 struct assoc_request *assoc)
326 struct cmd_ds_802_11_set_wep cmd;
329 lbs_deb_enter(LBS_DEB_CMD);
331 memset(&cmd, 0, sizeof(cmd));
332 cmd.hdr.command = cpu_to_le16(CMD_802_11_SET_WEP);
333 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
335 cmd.action = cpu_to_le16(cmd_action);
337 if (cmd_action == CMD_ACT_ADD) {
340 /* default tx key index */
341 cmd.keyindex = cpu_to_le16(assoc->wep_tx_keyidx &
342 CMD_WEP_KEY_INDEX_MASK);
344 /* Copy key types and material to host command structure */
345 for (i = 0; i < 4; i++) {
346 struct enc_key *pkey = &assoc->wep_keys[i];
350 cmd.keytype[i] = CMD_TYPE_WEP_40_BIT;
351 memmove(cmd.keymaterial[i], pkey->key, pkey->len);
352 lbs_deb_cmd("SET_WEP: add key %d (40 bit)\n", i);
354 case KEY_LEN_WEP_104:
355 cmd.keytype[i] = CMD_TYPE_WEP_104_BIT;
356 memmove(cmd.keymaterial[i], pkey->key, pkey->len);
357 lbs_deb_cmd("SET_WEP: add key %d (104 bit)\n", i);
362 lbs_deb_cmd("SET_WEP: invalid key %d, length %d\n",
369 } else if (cmd_action == CMD_ACT_REMOVE) {
370 /* ACT_REMOVE clears _all_ WEP keys */
372 /* default tx key index */
373 cmd.keyindex = cpu_to_le16(priv->wep_tx_keyidx &
374 CMD_WEP_KEY_INDEX_MASK);
375 lbs_deb_cmd("SET_WEP: remove key %d\n", priv->wep_tx_keyidx);
378 ret = lbs_cmd_with_response(priv, CMD_802_11_SET_WEP, &cmd);
380 lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
384 int lbs_cmd_802_11_enable_rsn(struct lbs_private *priv, uint16_t cmd_action,
387 struct cmd_ds_802_11_enable_rsn cmd;
390 lbs_deb_enter(LBS_DEB_CMD);
392 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
393 cmd.action = cpu_to_le16(cmd_action);
395 if (cmd_action == CMD_ACT_GET)
399 cmd.enable = cpu_to_le16(CMD_ENABLE_RSN);
401 cmd.enable = cpu_to_le16(CMD_DISABLE_RSN);
402 lbs_deb_cmd("ENABLE_RSN: %d\n", *enable);
405 ret = lbs_cmd_with_response(priv, CMD_802_11_ENABLE_RSN, &cmd);
406 if (!ret && cmd_action == CMD_ACT_GET)
407 *enable = le16_to_cpu(cmd.enable);
409 lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
413 static void set_one_wpa_key(struct MrvlIEtype_keyParamSet *keyparam,
416 lbs_deb_enter(LBS_DEB_CMD);
418 if (key->flags & KEY_INFO_WPA_ENABLED)
419 keyparam->keyinfo |= cpu_to_le16(KEY_INFO_WPA_ENABLED);
420 if (key->flags & KEY_INFO_WPA_UNICAST)
421 keyparam->keyinfo |= cpu_to_le16(KEY_INFO_WPA_UNICAST);
422 if (key->flags & KEY_INFO_WPA_MCAST)
423 keyparam->keyinfo |= cpu_to_le16(KEY_INFO_WPA_MCAST);
425 keyparam->type = cpu_to_le16(TLV_TYPE_KEY_MATERIAL);
426 keyparam->keytypeid = cpu_to_le16(key->type);
427 keyparam->keylen = cpu_to_le16(key->len);
428 memcpy(keyparam->key, key->key, key->len);
430 /* Length field doesn't include the {type,length} header */
431 keyparam->length = cpu_to_le16(sizeof(*keyparam) - 4);
432 lbs_deb_leave(LBS_DEB_CMD);
435 int lbs_cmd_802_11_key_material(struct lbs_private *priv, uint16_t cmd_action,
436 struct assoc_request *assoc)
438 struct cmd_ds_802_11_key_material cmd;
442 lbs_deb_enter(LBS_DEB_CMD);
444 cmd.action = cpu_to_le16(cmd_action);
445 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
447 if (cmd_action == CMD_ACT_GET) {
448 cmd.hdr.size = cpu_to_le16(S_DS_GEN + 2);
450 memset(cmd.keyParamSet, 0, sizeof(cmd.keyParamSet));
452 if (test_bit(ASSOC_FLAG_WPA_UCAST_KEY, &assoc->flags)) {
453 set_one_wpa_key(&cmd.keyParamSet[index],
454 &assoc->wpa_unicast_key);
458 if (test_bit(ASSOC_FLAG_WPA_MCAST_KEY, &assoc->flags)) {
459 set_one_wpa_key(&cmd.keyParamSet[index],
460 &assoc->wpa_mcast_key);
464 /* The common header and as many keys as we included */
465 cmd.hdr.size = cpu_to_le16(offsetof(typeof(cmd),
466 keyParamSet[index]));
468 ret = lbs_cmd_with_response(priv, CMD_802_11_KEY_MATERIAL, &cmd);
469 /* Copy the returned key to driver private data */
470 if (!ret && cmd_action == CMD_ACT_GET) {
471 void *buf_ptr = cmd.keyParamSet;
472 void *resp_end = &(&cmd)[1];
474 while (buf_ptr < resp_end) {
475 struct MrvlIEtype_keyParamSet *keyparam = buf_ptr;
477 uint16_t param_set_len = le16_to_cpu(keyparam->length);
478 uint16_t key_len = le16_to_cpu(keyparam->keylen);
479 uint16_t key_flags = le16_to_cpu(keyparam->keyinfo);
480 uint16_t key_type = le16_to_cpu(keyparam->keytypeid);
483 end = (void *)keyparam + sizeof(keyparam->type)
484 + sizeof(keyparam->length) + param_set_len;
486 /* Make sure we don't access past the end of the IEs */
490 if (key_flags & KEY_INFO_WPA_UNICAST)
491 key = &priv->wpa_unicast_key;
492 else if (key_flags & KEY_INFO_WPA_MCAST)
493 key = &priv->wpa_mcast_key;
497 /* Copy returned key into driver */
498 memset(key, 0, sizeof(struct enc_key));
499 if (key_len > sizeof(key->key))
501 key->type = key_type;
502 key->flags = key_flags;
504 memcpy(key->key, keyparam->key, key->len);
510 lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
515 * @brief Set an SNMP MIB value
517 * @param priv A pointer to struct lbs_private structure
518 * @param oid The OID to set in the firmware
519 * @param val Value to set the OID to
521 * @return 0 on success, error on failure
523 int lbs_set_snmp_mib(struct lbs_private *priv, u32 oid, u16 val)
525 struct cmd_ds_802_11_snmp_mib cmd;
528 lbs_deb_enter(LBS_DEB_CMD);
530 memset(&cmd, 0, sizeof (cmd));
531 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
532 cmd.action = cpu_to_le16(CMD_ACT_SET);
533 cmd.oid = cpu_to_le16((u16) oid);
536 case SNMP_MIB_OID_BSS_TYPE:
537 cmd.bufsize = cpu_to_le16(sizeof(u8));
538 cmd.value[0] = (val == IW_MODE_ADHOC) ? 2 : 1;
540 case SNMP_MIB_OID_11D_ENABLE:
541 case SNMP_MIB_OID_FRAG_THRESHOLD:
542 case SNMP_MIB_OID_RTS_THRESHOLD:
543 case SNMP_MIB_OID_SHORT_RETRY_LIMIT:
544 case SNMP_MIB_OID_LONG_RETRY_LIMIT:
545 cmd.bufsize = cpu_to_le16(sizeof(u16));
546 *((__le16 *)(&cmd.value)) = cpu_to_le16(val);
549 lbs_deb_cmd("SNMP_CMD: (set) unhandled OID 0x%x\n", oid);
554 lbs_deb_cmd("SNMP_CMD: (set) oid 0x%x, oid size 0x%x, value 0x%x\n",
555 le16_to_cpu(cmd.oid), le16_to_cpu(cmd.bufsize), val);
557 ret = lbs_cmd_with_response(priv, CMD_802_11_SNMP_MIB, &cmd);
560 lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
565 * @brief Get an SNMP MIB value
567 * @param priv A pointer to struct lbs_private structure
568 * @param oid The OID to retrieve from the firmware
569 * @param out_val Location for the returned value
571 * @return 0 on success, error on failure
573 int lbs_get_snmp_mib(struct lbs_private *priv, u32 oid, u16 *out_val)
575 struct cmd_ds_802_11_snmp_mib cmd;
578 lbs_deb_enter(LBS_DEB_CMD);
580 memset(&cmd, 0, sizeof (cmd));
581 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
582 cmd.action = cpu_to_le16(CMD_ACT_GET);
583 cmd.oid = cpu_to_le16(oid);
585 ret = lbs_cmd_with_response(priv, CMD_802_11_SNMP_MIB, &cmd);
589 switch (le16_to_cpu(cmd.bufsize)) {
591 if (oid == SNMP_MIB_OID_BSS_TYPE) {
592 if (cmd.value[0] == 2)
593 *out_val = IW_MODE_ADHOC;
595 *out_val = IW_MODE_INFRA;
597 *out_val = cmd.value[0];
600 *out_val = le16_to_cpu(*((__le16 *)(&cmd.value)));
603 lbs_deb_cmd("SNMP_CMD: (get) unhandled OID 0x%x size %d\n",
604 oid, le16_to_cpu(cmd.bufsize));
609 lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
614 * @brief Get the min, max, and current TX power
616 * @param priv A pointer to struct lbs_private structure
617 * @param curlevel Current power level in dBm
618 * @param minlevel Minimum supported power level in dBm (optional)
619 * @param maxlevel Maximum supported power level in dBm (optional)
621 * @return 0 on success, error on failure
623 int lbs_get_tx_power(struct lbs_private *priv, s16 *curlevel, s16 *minlevel,
626 struct cmd_ds_802_11_rf_tx_power cmd;
629 lbs_deb_enter(LBS_DEB_CMD);
631 memset(&cmd, 0, sizeof(cmd));
632 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
633 cmd.action = cpu_to_le16(CMD_ACT_GET);
635 ret = lbs_cmd_with_response(priv, CMD_802_11_RF_TX_POWER, &cmd);
637 *curlevel = le16_to_cpu(cmd.curlevel);
639 *minlevel = cmd.minlevel;
641 *maxlevel = cmd.maxlevel;
644 lbs_deb_leave(LBS_DEB_CMD);
649 * @brief Set the TX power
651 * @param priv A pointer to struct lbs_private structure
652 * @param dbm The desired power level in dBm
654 * @return 0 on success, error on failure
656 int lbs_set_tx_power(struct lbs_private *priv, s16 dbm)
658 struct cmd_ds_802_11_rf_tx_power cmd;
661 lbs_deb_enter(LBS_DEB_CMD);
663 memset(&cmd, 0, sizeof(cmd));
664 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
665 cmd.action = cpu_to_le16(CMD_ACT_SET);
666 cmd.curlevel = cpu_to_le16(dbm);
668 lbs_deb_cmd("SET_RF_TX_POWER: %d dBm\n", dbm);
670 ret = lbs_cmd_with_response(priv, CMD_802_11_RF_TX_POWER, &cmd);
672 lbs_deb_leave(LBS_DEB_CMD);
676 static int lbs_cmd_802_11_monitor_mode(struct cmd_ds_command *cmd,
677 u16 cmd_action, void *pdata_buf)
679 struct cmd_ds_802_11_monitor_mode *monitor = &cmd->params.monitor;
681 cmd->command = cpu_to_le16(CMD_802_11_MONITOR_MODE);
683 cpu_to_le16(sizeof(struct cmd_ds_802_11_monitor_mode) +
686 monitor->action = cpu_to_le16(cmd_action);
687 if (cmd_action == CMD_ACT_SET) {
689 cpu_to_le16((u16) (*(u32 *) pdata_buf));
695 static __le16 lbs_rate_to_fw_bitmap(int rate, int lower_rates_ok)
715 int i = lbs_data_rate_to_fw_index(rate);
717 ratemask = (0x1fef >> (12 - i));
720 return cpu_to_le16(ratemask);
723 int lbs_cmd_802_11_rate_adapt_rateset(struct lbs_private *priv,
726 struct cmd_ds_802_11_rate_adapt_rateset cmd;
729 lbs_deb_enter(LBS_DEB_CMD);
731 if (!priv->cur_rate && !priv->enablehwauto)
734 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
736 cmd.action = cpu_to_le16(cmd_action);
737 cmd.enablehwauto = cpu_to_le16(priv->enablehwauto);
738 cmd.bitmap = lbs_rate_to_fw_bitmap(priv->cur_rate, priv->enablehwauto);
739 ret = lbs_cmd_with_response(priv, CMD_802_11_RATE_ADAPT_RATESET, &cmd);
740 if (!ret && cmd_action == CMD_ACT_GET) {
741 priv->ratebitmap = le16_to_cpu(cmd.bitmap);
742 priv->enablehwauto = le16_to_cpu(cmd.enablehwauto);
745 lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
748 EXPORT_SYMBOL_GPL(lbs_cmd_802_11_rate_adapt_rateset);
751 * @brief Set the data rate
753 * @param priv A pointer to struct lbs_private structure
754 * @param rate The desired data rate, or 0 to clear a locked rate
756 * @return 0 on success, error on failure
758 int lbs_set_data_rate(struct lbs_private *priv, u8 rate)
760 struct cmd_ds_802_11_data_rate cmd;
763 lbs_deb_enter(LBS_DEB_CMD);
765 memset(&cmd, 0, sizeof(cmd));
766 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
769 cmd.action = cpu_to_le16(CMD_ACT_SET_TX_FIX_RATE);
770 cmd.rates[0] = lbs_data_rate_to_fw_index(rate);
771 if (cmd.rates[0] == 0) {
772 lbs_deb_cmd("DATA_RATE: invalid requested rate of"
777 lbs_deb_cmd("DATA_RATE: set fixed 0x%02X\n", cmd.rates[0]);
779 cmd.action = cpu_to_le16(CMD_ACT_SET_TX_AUTO);
780 lbs_deb_cmd("DATA_RATE: setting auto\n");
783 ret = lbs_cmd_with_response(priv, CMD_802_11_DATA_RATE, &cmd);
787 lbs_deb_hex(LBS_DEB_CMD, "DATA_RATE_RESP", (u8 *) &cmd, sizeof (cmd));
789 /* FIXME: get actual rates FW can do if this command actually returns
790 * all data rates supported.
792 priv->cur_rate = lbs_fw_index_to_data_rate(cmd.rates[0]);
793 lbs_deb_cmd("DATA_RATE: current rate is 0x%02x\n", priv->cur_rate);
796 lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
801 * @brief Get the radio channel
803 * @param priv A pointer to struct lbs_private structure
805 * @return The channel on success, error on failure
807 int lbs_get_channel(struct lbs_private *priv)
809 struct cmd_ds_802_11_rf_channel cmd;
812 lbs_deb_enter(LBS_DEB_CMD);
814 memset(&cmd, 0, sizeof(cmd));
815 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
816 cmd.action = cpu_to_le16(CMD_OPT_802_11_RF_CHANNEL_GET);
818 ret = lbs_cmd_with_response(priv, CMD_802_11_RF_CHANNEL, &cmd);
822 ret = le16_to_cpu(cmd.channel);
823 lbs_deb_cmd("current radio channel is %d\n", ret);
826 lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
830 int lbs_update_channel(struct lbs_private *priv)
834 /* the channel in f/w could be out of sync; get the current channel */
835 lbs_deb_enter(LBS_DEB_ASSOC);
837 ret = lbs_get_channel(priv);
839 priv->curbssparams.channel = ret;
842 lbs_deb_leave_args(LBS_DEB_ASSOC, "ret %d", ret);
847 * @brief Set the radio channel
849 * @param priv A pointer to struct lbs_private structure
850 * @param channel The desired channel, or 0 to clear a locked channel
852 * @return 0 on success, error on failure
854 int lbs_set_channel(struct lbs_private *priv, u8 channel)
856 struct cmd_ds_802_11_rf_channel cmd;
858 u8 old_channel = priv->curbssparams.channel;
862 lbs_deb_enter(LBS_DEB_CMD);
864 memset(&cmd, 0, sizeof(cmd));
865 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
866 cmd.action = cpu_to_le16(CMD_OPT_802_11_RF_CHANNEL_SET);
867 cmd.channel = cpu_to_le16(channel);
869 ret = lbs_cmd_with_response(priv, CMD_802_11_RF_CHANNEL, &cmd);
873 priv->curbssparams.channel = (uint8_t) le16_to_cpu(cmd.channel);
874 lbs_deb_cmd("channel switch from %d to %d\n", old_channel,
875 priv->curbssparams.channel);
878 lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
882 static int lbs_cmd_802_11_rssi(struct lbs_private *priv,
883 struct cmd_ds_command *cmd)
886 lbs_deb_enter(LBS_DEB_CMD);
887 cmd->command = cpu_to_le16(CMD_802_11_RSSI);
888 cmd->size = cpu_to_le16(sizeof(struct cmd_ds_802_11_rssi) + S_DS_GEN);
889 cmd->params.rssi.N = cpu_to_le16(DEFAULT_BCN_AVG_FACTOR);
891 /* reset Beacon SNR/NF/RSSI values */
892 priv->SNR[TYPE_BEACON][TYPE_NOAVG] = 0;
893 priv->SNR[TYPE_BEACON][TYPE_AVG] = 0;
894 priv->NF[TYPE_BEACON][TYPE_NOAVG] = 0;
895 priv->NF[TYPE_BEACON][TYPE_AVG] = 0;
896 priv->RSSI[TYPE_BEACON][TYPE_NOAVG] = 0;
897 priv->RSSI[TYPE_BEACON][TYPE_AVG] = 0;
899 lbs_deb_leave(LBS_DEB_CMD);
903 static int lbs_cmd_reg_access(struct cmd_ds_command *cmdptr,
904 u8 cmd_action, void *pdata_buf)
906 struct lbs_offset_value *offval;
908 lbs_deb_enter(LBS_DEB_CMD);
910 offval = (struct lbs_offset_value *)pdata_buf;
912 switch (le16_to_cpu(cmdptr->command)) {
913 case CMD_MAC_REG_ACCESS:
915 struct cmd_ds_mac_reg_access *macreg;
918 cpu_to_le16(sizeof (struct cmd_ds_mac_reg_access)
921 (struct cmd_ds_mac_reg_access *)&cmdptr->params.
924 macreg->action = cpu_to_le16(cmd_action);
925 macreg->offset = cpu_to_le16((u16) offval->offset);
926 macreg->value = cpu_to_le32(offval->value);
931 case CMD_BBP_REG_ACCESS:
933 struct cmd_ds_bbp_reg_access *bbpreg;
937 (struct cmd_ds_bbp_reg_access)
940 (struct cmd_ds_bbp_reg_access *)&cmdptr->params.
943 bbpreg->action = cpu_to_le16(cmd_action);
944 bbpreg->offset = cpu_to_le16((u16) offval->offset);
945 bbpreg->value = (u8) offval->value;
950 case CMD_RF_REG_ACCESS:
952 struct cmd_ds_rf_reg_access *rfreg;
956 (struct cmd_ds_rf_reg_access) +
959 (struct cmd_ds_rf_reg_access *)&cmdptr->params.
962 rfreg->action = cpu_to_le16(cmd_action);
963 rfreg->offset = cpu_to_le16((u16) offval->offset);
964 rfreg->value = (u8) offval->value;
973 lbs_deb_leave(LBS_DEB_CMD);
977 static int lbs_cmd_bt_access(struct cmd_ds_command *cmd,
978 u16 cmd_action, void *pdata_buf)
980 struct cmd_ds_bt_access *bt_access = &cmd->params.bt;
981 lbs_deb_enter_args(LBS_DEB_CMD, "action %d", cmd_action);
983 cmd->command = cpu_to_le16(CMD_BT_ACCESS);
984 cmd->size = cpu_to_le16(sizeof(struct cmd_ds_bt_access) + S_DS_GEN);
986 bt_access->action = cpu_to_le16(cmd_action);
988 switch (cmd_action) {
989 case CMD_ACT_BT_ACCESS_ADD:
990 memcpy(bt_access->addr1, pdata_buf, 2 * ETH_ALEN);
991 lbs_deb_hex(LBS_DEB_MESH, "BT_ADD: blinded MAC addr", bt_access->addr1, 6);
993 case CMD_ACT_BT_ACCESS_DEL:
994 memcpy(bt_access->addr1, pdata_buf, 1 * ETH_ALEN);
995 lbs_deb_hex(LBS_DEB_MESH, "BT_DEL: blinded MAC addr", bt_access->addr1, 6);
997 case CMD_ACT_BT_ACCESS_LIST:
998 bt_access->id = cpu_to_le32(*(u32 *) pdata_buf);
1000 case CMD_ACT_BT_ACCESS_RESET:
1002 case CMD_ACT_BT_ACCESS_SET_INVERT:
1003 bt_access->id = cpu_to_le32(*(u32 *) pdata_buf);
1005 case CMD_ACT_BT_ACCESS_GET_INVERT:
1010 lbs_deb_leave(LBS_DEB_CMD);
1014 static int lbs_cmd_fwt_access(struct cmd_ds_command *cmd,
1015 u16 cmd_action, void *pdata_buf)
1017 struct cmd_ds_fwt_access *fwt_access = &cmd->params.fwt;
1018 lbs_deb_enter_args(LBS_DEB_CMD, "action %d", cmd_action);
1020 cmd->command = cpu_to_le16(CMD_FWT_ACCESS);
1021 cmd->size = cpu_to_le16(sizeof(struct cmd_ds_fwt_access) + S_DS_GEN);
1025 memcpy(fwt_access, pdata_buf, sizeof(*fwt_access));
1027 memset(fwt_access, 0, sizeof(*fwt_access));
1029 fwt_access->action = cpu_to_le16(cmd_action);
1031 lbs_deb_leave(LBS_DEB_CMD);
1035 int lbs_mesh_access(struct lbs_private *priv, uint16_t cmd_action,
1036 struct cmd_ds_mesh_access *cmd)
1040 lbs_deb_enter_args(LBS_DEB_CMD, "action %d", cmd_action);
1042 cmd->hdr.command = cpu_to_le16(CMD_MESH_ACCESS);
1043 cmd->hdr.size = cpu_to_le16(sizeof(*cmd));
1044 cmd->hdr.result = 0;
1046 cmd->action = cpu_to_le16(cmd_action);
1048 ret = lbs_cmd_with_response(priv, CMD_MESH_ACCESS, cmd);
1050 lbs_deb_leave(LBS_DEB_CMD);
1054 static int __lbs_mesh_config_send(struct lbs_private *priv,
1055 struct cmd_ds_mesh_config *cmd,
1056 uint16_t action, uint16_t type)
1059 u16 command = CMD_MESH_CONFIG_OLD;
1061 lbs_deb_enter(LBS_DEB_CMD);
1064 * Command id is 0xac for v10 FW along with mesh interface
1065 * id in bits 14-13-12.
1067 if (priv->mesh_fw_ver == MESH_FW_NEW)
1068 command = CMD_MESH_CONFIG |
1069 (MESH_IFACE_ID << MESH_IFACE_BIT_OFFSET);
1071 cmd->hdr.command = cpu_to_le16(command);
1072 cmd->hdr.size = cpu_to_le16(sizeof(struct cmd_ds_mesh_config));
1073 cmd->hdr.result = 0;
1075 cmd->type = cpu_to_le16(type);
1076 cmd->action = cpu_to_le16(action);
1078 ret = lbs_cmd_with_response(priv, command, cmd);
1080 lbs_deb_leave(LBS_DEB_CMD);
1084 int lbs_mesh_config_send(struct lbs_private *priv,
1085 struct cmd_ds_mesh_config *cmd,
1086 uint16_t action, uint16_t type)
1090 if (!(priv->fwcapinfo & FW_CAPINFO_PERSISTENT_CONFIG))
1093 ret = __lbs_mesh_config_send(priv, cmd, action, type);
1097 /* This function is the CMD_MESH_CONFIG legacy function. It only handles the
1098 * START and STOP actions. The extended actions supported by CMD_MESH_CONFIG
1099 * are all handled by preparing a struct cmd_ds_mesh_config and passing it to
1100 * lbs_mesh_config_send.
1102 int lbs_mesh_config(struct lbs_private *priv, uint16_t action, uint16_t chan)
1104 struct cmd_ds_mesh_config cmd;
1105 struct mrvl_meshie *ie;
1106 DECLARE_SSID_BUF(ssid);
1108 memset(&cmd, 0, sizeof(cmd));
1109 cmd.channel = cpu_to_le16(chan);
1110 ie = (struct mrvl_meshie *)cmd.data;
1113 case CMD_ACT_MESH_CONFIG_START:
1114 ie->id = WLAN_EID_GENERIC;
1115 ie->val.oui[0] = 0x00;
1116 ie->val.oui[1] = 0x50;
1117 ie->val.oui[2] = 0x43;
1118 ie->val.type = MARVELL_MESH_IE_TYPE;
1119 ie->val.subtype = MARVELL_MESH_IE_SUBTYPE;
1120 ie->val.version = MARVELL_MESH_IE_VERSION;
1121 ie->val.active_protocol_id = MARVELL_MESH_PROTO_ID_HWMP;
1122 ie->val.active_metric_id = MARVELL_MESH_METRIC_ID;
1123 ie->val.mesh_capability = MARVELL_MESH_CAPABILITY;
1124 ie->val.mesh_id_len = priv->mesh_ssid_len;
1125 memcpy(ie->val.mesh_id, priv->mesh_ssid, priv->mesh_ssid_len);
1126 ie->len = sizeof(struct mrvl_meshie_val) -
1127 IW_ESSID_MAX_SIZE + priv->mesh_ssid_len;
1128 cmd.length = cpu_to_le16(sizeof(struct mrvl_meshie_val));
1130 case CMD_ACT_MESH_CONFIG_STOP:
1135 lbs_deb_cmd("mesh config action %d type %x channel %d SSID %s\n",
1136 action, priv->mesh_tlv, chan,
1137 print_ssid(ssid, priv->mesh_ssid, priv->mesh_ssid_len));
1139 return __lbs_mesh_config_send(priv, &cmd, action, priv->mesh_tlv);
1142 static int lbs_cmd_bcn_ctrl(struct lbs_private * priv,
1143 struct cmd_ds_command *cmd,
1146 struct cmd_ds_802_11_beacon_control
1147 *bcn_ctrl = &cmd->params.bcn_ctrl;
1149 lbs_deb_enter(LBS_DEB_CMD);
1151 cpu_to_le16(sizeof(struct cmd_ds_802_11_beacon_control)
1153 cmd->command = cpu_to_le16(CMD_802_11_BEACON_CTRL);
1155 bcn_ctrl->action = cpu_to_le16(cmd_action);
1156 bcn_ctrl->beacon_enable = cpu_to_le16(priv->beacon_enable);
1157 bcn_ctrl->beacon_period = cpu_to_le16(priv->beacon_period);
1159 lbs_deb_leave(LBS_DEB_CMD);
1163 static void lbs_queue_cmd(struct lbs_private *priv,
1164 struct cmd_ctrl_node *cmdnode)
1166 unsigned long flags;
1169 lbs_deb_enter(LBS_DEB_HOST);
1172 lbs_deb_host("QUEUE_CMD: cmdnode is NULL\n");
1175 if (!cmdnode->cmdbuf->size) {
1176 lbs_deb_host("DNLD_CMD: cmd size is zero\n");
1179 cmdnode->result = 0;
1181 /* Exit_PS command needs to be queued in the header always. */
1182 if (le16_to_cpu(cmdnode->cmdbuf->command) == CMD_802_11_PS_MODE) {
1183 struct cmd_ds_802_11_ps_mode *psm = (void *) &cmdnode->cmdbuf[1];
1185 if (psm->action == cpu_to_le16(CMD_SUBCMD_EXIT_PS)) {
1186 if (priv->psstate != PS_STATE_FULL_POWER)
1191 spin_lock_irqsave(&priv->driver_lock, flags);
1194 list_add_tail(&cmdnode->list, &priv->cmdpendingq);
1196 list_add(&cmdnode->list, &priv->cmdpendingq);
1198 spin_unlock_irqrestore(&priv->driver_lock, flags);
1200 lbs_deb_host("QUEUE_CMD: inserted command 0x%04x into cmdpendingq\n",
1201 le16_to_cpu(cmdnode->cmdbuf->command));
1204 lbs_deb_leave(LBS_DEB_HOST);
1207 static void lbs_submit_command(struct lbs_private *priv,
1208 struct cmd_ctrl_node *cmdnode)
1210 unsigned long flags;
1211 struct cmd_header *cmd;
1217 lbs_deb_enter(LBS_DEB_HOST);
1219 cmd = cmdnode->cmdbuf;
1221 spin_lock_irqsave(&priv->driver_lock, flags);
1222 priv->cur_cmd = cmdnode;
1223 priv->cur_cmd_retcode = 0;
1224 spin_unlock_irqrestore(&priv->driver_lock, flags);
1226 cmdsize = le16_to_cpu(cmd->size);
1227 command = le16_to_cpu(cmd->command);
1229 /* These commands take longer */
1230 if (command == CMD_802_11_SCAN || command == CMD_802_11_ASSOCIATE)
1233 lbs_deb_cmd("DNLD_CMD: command 0x%04x, seq %d, size %d\n",
1234 command, le16_to_cpu(cmd->seqnum), cmdsize);
1235 lbs_deb_hex(LBS_DEB_CMD, "DNLD_CMD", (void *) cmdnode->cmdbuf, cmdsize);
1237 ret = priv->hw_host_to_card(priv, MVMS_CMD, (u8 *) cmd, cmdsize);
1240 lbs_pr_info("DNLD_CMD: hw_host_to_card failed: %d\n", ret);
1241 /* Let the timer kick in and retry, and potentially reset
1242 the whole thing if the condition persists */
1246 /* Setup the timer after transmit command */
1247 mod_timer(&priv->command_timer, jiffies + timeo);
1249 lbs_deb_leave(LBS_DEB_HOST);
1253 * This function inserts command node to cmdfreeq
1254 * after cleans it. Requires priv->driver_lock held.
1256 static void __lbs_cleanup_and_insert_cmd(struct lbs_private *priv,
1257 struct cmd_ctrl_node *cmdnode)
1259 lbs_deb_enter(LBS_DEB_HOST);
1264 cmdnode->callback = NULL;
1265 cmdnode->callback_arg = 0;
1267 memset(cmdnode->cmdbuf, 0, LBS_CMD_BUFFER_SIZE);
1269 list_add_tail(&cmdnode->list, &priv->cmdfreeq);
1271 lbs_deb_leave(LBS_DEB_HOST);
1274 static void lbs_cleanup_and_insert_cmd(struct lbs_private *priv,
1275 struct cmd_ctrl_node *ptempcmd)
1277 unsigned long flags;
1279 spin_lock_irqsave(&priv->driver_lock, flags);
1280 __lbs_cleanup_and_insert_cmd(priv, ptempcmd);
1281 spin_unlock_irqrestore(&priv->driver_lock, flags);
1284 void lbs_complete_command(struct lbs_private *priv, struct cmd_ctrl_node *cmd,
1287 if (cmd == priv->cur_cmd)
1288 priv->cur_cmd_retcode = result;
1290 cmd->result = result;
1291 cmd->cmdwaitqwoken = 1;
1292 wake_up_interruptible(&cmd->cmdwait_q);
1294 if (!cmd->callback || cmd->callback == lbs_cmd_async_callback)
1295 __lbs_cleanup_and_insert_cmd(priv, cmd);
1296 priv->cur_cmd = NULL;
1299 int lbs_set_radio(struct lbs_private *priv, u8 preamble, u8 radio_on)
1301 struct cmd_ds_802_11_radio_control cmd;
1304 lbs_deb_enter(LBS_DEB_CMD);
1306 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
1307 cmd.action = cpu_to_le16(CMD_ACT_SET);
1309 /* Only v8 and below support setting the preamble */
1310 if (priv->fwrelease < 0x09000000) {
1312 case RADIO_PREAMBLE_SHORT:
1313 if (!(priv->capability & WLAN_CAPABILITY_SHORT_PREAMBLE))
1316 case RADIO_PREAMBLE_AUTO:
1317 case RADIO_PREAMBLE_LONG:
1318 cmd.control = cpu_to_le16(preamble);
1326 cmd.control |= cpu_to_le16(0x1);
1328 cmd.control &= cpu_to_le16(~0x1);
1329 priv->txpower_cur = 0;
1332 lbs_deb_cmd("RADIO_CONTROL: radio %s, preamble %d\n",
1333 radio_on ? "ON" : "OFF", preamble);
1335 priv->radio_on = radio_on;
1337 ret = lbs_cmd_with_response(priv, CMD_802_11_RADIO_CONTROL, &cmd);
1340 lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
1344 void lbs_set_mac_control(struct lbs_private *priv)
1346 struct cmd_ds_mac_control cmd;
1348 lbs_deb_enter(LBS_DEB_CMD);
1350 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
1351 cmd.action = cpu_to_le16(priv->mac_control);
1354 lbs_cmd_async(priv, CMD_MAC_CONTROL, &cmd.hdr, sizeof(cmd));
1356 lbs_deb_leave(LBS_DEB_CMD);
1360 * @brief This function prepare the command before send to firmware.
1362 * @param priv A pointer to struct lbs_private structure
1363 * @param cmd_no command number
1364 * @param cmd_action command action: GET or SET
1365 * @param wait_option wait option: wait response or not
1366 * @param cmd_oid cmd oid: treated as sub command
1367 * @param pdata_buf A pointer to informaion buffer
1370 int lbs_prepare_and_send_command(struct lbs_private *priv,
1373 u16 wait_option, u32 cmd_oid, void *pdata_buf)
1376 struct cmd_ctrl_node *cmdnode;
1377 struct cmd_ds_command *cmdptr;
1378 unsigned long flags;
1380 lbs_deb_enter(LBS_DEB_HOST);
1383 lbs_deb_host("PREP_CMD: priv is NULL\n");
1388 if (priv->surpriseremoved) {
1389 lbs_deb_host("PREP_CMD: card removed\n");
1394 cmdnode = lbs_get_cmd_ctrl_node(priv);
1396 if (cmdnode == NULL) {
1397 lbs_deb_host("PREP_CMD: cmdnode is NULL\n");
1399 /* Wake up main thread to execute next command */
1400 wake_up_interruptible(&priv->waitq);
1405 cmdnode->callback = NULL;
1406 cmdnode->callback_arg = (unsigned long)pdata_buf;
1408 cmdptr = (struct cmd_ds_command *)cmdnode->cmdbuf;
1410 lbs_deb_host("PREP_CMD: command 0x%04x\n", cmd_no);
1412 /* Set sequence number, command and INT option */
1414 cmdptr->seqnum = cpu_to_le16(priv->seqnum);
1416 cmdptr->command = cpu_to_le16(cmd_no);
1420 case CMD_802_11_PS_MODE:
1421 ret = lbs_cmd_802_11_ps_mode(cmdptr, cmd_action);
1424 case CMD_MAC_REG_ACCESS:
1425 case CMD_BBP_REG_ACCESS:
1426 case CMD_RF_REG_ACCESS:
1427 ret = lbs_cmd_reg_access(cmdptr, cmd_action, pdata_buf);
1430 case CMD_802_11_MONITOR_MODE:
1431 ret = lbs_cmd_802_11_monitor_mode(cmdptr,
1432 cmd_action, pdata_buf);
1435 case CMD_802_11_RSSI:
1436 ret = lbs_cmd_802_11_rssi(priv, cmdptr);
1439 case CMD_802_11_SET_AFC:
1440 case CMD_802_11_GET_AFC:
1442 cmdptr->command = cpu_to_le16(cmd_no);
1443 cmdptr->size = cpu_to_le16(sizeof(struct cmd_ds_802_11_afc) +
1446 memmove(&cmdptr->params.afc,
1447 pdata_buf, sizeof(struct cmd_ds_802_11_afc));
1452 case CMD_802_11D_DOMAIN_INFO:
1453 ret = lbs_cmd_802_11d_domain_info(priv, cmdptr,
1454 cmd_no, cmd_action);
1457 case CMD_802_11_TPC_CFG:
1458 cmdptr->command = cpu_to_le16(CMD_802_11_TPC_CFG);
1460 cpu_to_le16(sizeof(struct cmd_ds_802_11_tpc_cfg) +
1463 memmove(&cmdptr->params.tpccfg,
1464 pdata_buf, sizeof(struct cmd_ds_802_11_tpc_cfg));
1468 case CMD_802_11_LED_GPIO_CTRL:
1470 struct mrvl_ie_ledgpio *gpio =
1471 (struct mrvl_ie_ledgpio*)
1472 cmdptr->params.ledgpio.data;
1474 memmove(&cmdptr->params.ledgpio,
1476 sizeof(struct cmd_ds_802_11_led_ctrl));
1479 cpu_to_le16(CMD_802_11_LED_GPIO_CTRL);
1481 #define ACTION_NUMLED_TLVTYPE_LEN_FIELDS_LEN 8
1483 cpu_to_le16(le16_to_cpu(gpio->header.len)
1485 + ACTION_NUMLED_TLVTYPE_LEN_FIELDS_LEN);
1486 gpio->header.len = gpio->header.len;
1493 ret = lbs_cmd_bt_access(cmdptr, cmd_action, pdata_buf);
1496 case CMD_FWT_ACCESS:
1497 ret = lbs_cmd_fwt_access(cmdptr, cmd_action, pdata_buf);
1501 cmdptr->command = cpu_to_le16(CMD_GET_TSF);
1502 cmdptr->size = cpu_to_le16(sizeof(struct cmd_ds_get_tsf) +
1506 case CMD_802_11_BEACON_CTRL:
1507 ret = lbs_cmd_bcn_ctrl(priv, cmdptr, cmd_action);
1510 lbs_pr_err("PREP_CMD: unknown command 0x%04x\n", cmd_no);
1515 /* return error, since the command preparation failed */
1517 lbs_deb_host("PREP_CMD: command preparation failed\n");
1518 lbs_cleanup_and_insert_cmd(priv, cmdnode);
1523 cmdnode->cmdwaitqwoken = 0;
1525 lbs_queue_cmd(priv, cmdnode);
1526 wake_up_interruptible(&priv->waitq);
1528 if (wait_option & CMD_OPTION_WAITFORRSP) {
1529 lbs_deb_host("PREP_CMD: wait for response\n");
1531 wait_event_interruptible(cmdnode->cmdwait_q,
1532 cmdnode->cmdwaitqwoken);
1535 spin_lock_irqsave(&priv->driver_lock, flags);
1536 if (priv->cur_cmd_retcode) {
1537 lbs_deb_host("PREP_CMD: command failed with return code %d\n",
1538 priv->cur_cmd_retcode);
1539 priv->cur_cmd_retcode = 0;
1542 spin_unlock_irqrestore(&priv->driver_lock, flags);
1545 lbs_deb_leave_args(LBS_DEB_HOST, "ret %d", ret);
1550 * @brief This function allocates the command buffer and link
1551 * it to command free queue.
1553 * @param priv A pointer to struct lbs_private structure
1556 int lbs_allocate_cmd_buffer(struct lbs_private *priv)
1561 struct cmd_ctrl_node *cmdarray;
1563 lbs_deb_enter(LBS_DEB_HOST);
1565 /* Allocate and initialize the command array */
1566 bufsize = sizeof(struct cmd_ctrl_node) * LBS_NUM_CMD_BUFFERS;
1567 if (!(cmdarray = kzalloc(bufsize, GFP_KERNEL))) {
1568 lbs_deb_host("ALLOC_CMD_BUF: tempcmd_array is NULL\n");
1572 priv->cmd_array = cmdarray;
1574 /* Allocate and initialize each command buffer in the command array */
1575 for (i = 0; i < LBS_NUM_CMD_BUFFERS; i++) {
1576 cmdarray[i].cmdbuf = kzalloc(LBS_CMD_BUFFER_SIZE, GFP_KERNEL);
1577 if (!cmdarray[i].cmdbuf) {
1578 lbs_deb_host("ALLOC_CMD_BUF: ptempvirtualaddr is NULL\n");
1584 for (i = 0; i < LBS_NUM_CMD_BUFFERS; i++) {
1585 init_waitqueue_head(&cmdarray[i].cmdwait_q);
1586 lbs_cleanup_and_insert_cmd(priv, &cmdarray[i]);
1591 lbs_deb_leave_args(LBS_DEB_HOST, "ret %d", ret);
1596 * @brief This function frees the command buffer.
1598 * @param priv A pointer to struct lbs_private structure
1601 int lbs_free_cmd_buffer(struct lbs_private *priv)
1603 struct cmd_ctrl_node *cmdarray;
1606 lbs_deb_enter(LBS_DEB_HOST);
1608 /* need to check if cmd array is allocated or not */
1609 if (priv->cmd_array == NULL) {
1610 lbs_deb_host("FREE_CMD_BUF: cmd_array is NULL\n");
1614 cmdarray = priv->cmd_array;
1616 /* Release shared memory buffers */
1617 for (i = 0; i < LBS_NUM_CMD_BUFFERS; i++) {
1618 if (cmdarray[i].cmdbuf) {
1619 kfree(cmdarray[i].cmdbuf);
1620 cmdarray[i].cmdbuf = NULL;
1624 /* Release cmd_ctrl_node */
1625 if (priv->cmd_array) {
1626 kfree(priv->cmd_array);
1627 priv->cmd_array = NULL;
1631 lbs_deb_leave(LBS_DEB_HOST);
1636 * @brief This function gets a free command node if available in
1637 * command free queue.
1639 * @param priv A pointer to struct lbs_private structure
1640 * @return cmd_ctrl_node A pointer to cmd_ctrl_node structure or NULL
1642 static struct cmd_ctrl_node *lbs_get_cmd_ctrl_node(struct lbs_private *priv)
1644 struct cmd_ctrl_node *tempnode;
1645 unsigned long flags;
1647 lbs_deb_enter(LBS_DEB_HOST);
1652 spin_lock_irqsave(&priv->driver_lock, flags);
1654 if (!list_empty(&priv->cmdfreeq)) {
1655 tempnode = list_first_entry(&priv->cmdfreeq,
1656 struct cmd_ctrl_node, list);
1657 list_del(&tempnode->list);
1659 lbs_deb_host("GET_CMD_NODE: cmd_ctrl_node is not available\n");
1663 spin_unlock_irqrestore(&priv->driver_lock, flags);
1665 lbs_deb_leave(LBS_DEB_HOST);
1670 * @brief This function executes next command in command
1671 * pending queue. It will put firmware back to PS mode
1674 * @param priv A pointer to struct lbs_private structure
1677 int lbs_execute_next_command(struct lbs_private *priv)
1679 struct cmd_ctrl_node *cmdnode = NULL;
1680 struct cmd_header *cmd;
1681 unsigned long flags;
1684 /* Debug group is LBS_DEB_THREAD and not LBS_DEB_HOST, because the
1685 * only caller to us is lbs_thread() and we get even when a
1686 * data packet is received */
1687 lbs_deb_enter(LBS_DEB_THREAD);
1689 spin_lock_irqsave(&priv->driver_lock, flags);
1691 if (priv->cur_cmd) {
1692 lbs_pr_alert( "EXEC_NEXT_CMD: already processing command!\n");
1693 spin_unlock_irqrestore(&priv->driver_lock, flags);
1698 if (!list_empty(&priv->cmdpendingq)) {
1699 cmdnode = list_first_entry(&priv->cmdpendingq,
1700 struct cmd_ctrl_node, list);
1703 spin_unlock_irqrestore(&priv->driver_lock, flags);
1706 cmd = cmdnode->cmdbuf;
1708 if (is_command_allowed_in_ps(le16_to_cpu(cmd->command))) {
1709 if ((priv->psstate == PS_STATE_SLEEP) ||
1710 (priv->psstate == PS_STATE_PRE_SLEEP)) {
1712 "EXEC_NEXT_CMD: cannot send cmd 0x%04x in psstate %d\n",
1713 le16_to_cpu(cmd->command),
1718 lbs_deb_host("EXEC_NEXT_CMD: OK to send command "
1719 "0x%04x in psstate %d\n",
1720 le16_to_cpu(cmd->command), priv->psstate);
1721 } else if (priv->psstate != PS_STATE_FULL_POWER) {
1723 * 1. Non-PS command:
1724 * Queue it. set needtowakeup to TRUE if current state
1725 * is SLEEP, otherwise call lbs_ps_wakeup to send Exit_PS.
1726 * 2. PS command but not Exit_PS:
1728 * 3. PS command Exit_PS:
1729 * Set needtowakeup to TRUE if current state is SLEEP,
1730 * otherwise send this command down to firmware
1733 if (cmd->command != cpu_to_le16(CMD_802_11_PS_MODE)) {
1734 /* Prepare to send Exit PS,
1735 * this non PS command will be sent later */
1736 if ((priv->psstate == PS_STATE_SLEEP)
1737 || (priv->psstate == PS_STATE_PRE_SLEEP)
1739 /* w/ new scheme, it will not reach here.
1740 since it is blocked in main_thread. */
1741 priv->needtowakeup = 1;
1743 lbs_ps_wakeup(priv, 0);
1749 * PS command. Ignore it if it is not Exit_PS.
1750 * otherwise send it down immediately.
1752 struct cmd_ds_802_11_ps_mode *psm = (void *)&cmd[1];
1755 "EXEC_NEXT_CMD: PS cmd, action 0x%02x\n",
1758 cpu_to_le16(CMD_SUBCMD_EXIT_PS)) {
1760 "EXEC_NEXT_CMD: ignore ENTER_PS cmd\n");
1761 spin_lock_irqsave(&priv->driver_lock, flags);
1762 list_del(&cmdnode->list);
1763 lbs_complete_command(priv, cmdnode, 0);
1764 spin_unlock_irqrestore(&priv->driver_lock, flags);
1770 if ((priv->psstate == PS_STATE_SLEEP) ||
1771 (priv->psstate == PS_STATE_PRE_SLEEP)) {
1773 "EXEC_NEXT_CMD: ignore EXIT_PS cmd in sleep\n");
1774 spin_lock_irqsave(&priv->driver_lock, flags);
1775 list_del(&cmdnode->list);
1776 lbs_complete_command(priv, cmdnode, 0);
1777 spin_unlock_irqrestore(&priv->driver_lock, flags);
1778 priv->needtowakeup = 1;
1785 "EXEC_NEXT_CMD: sending EXIT_PS\n");
1788 spin_lock_irqsave(&priv->driver_lock, flags);
1789 list_del(&cmdnode->list);
1790 spin_unlock_irqrestore(&priv->driver_lock, flags);
1791 lbs_deb_host("EXEC_NEXT_CMD: sending command 0x%04x\n",
1792 le16_to_cpu(cmd->command));
1793 lbs_submit_command(priv, cmdnode);
1796 * check if in power save mode, if yes, put the device back
1799 if ((priv->psmode != LBS802_11POWERMODECAM) &&
1800 (priv->psstate == PS_STATE_FULL_POWER) &&
1801 ((priv->connect_status == LBS_CONNECTED) ||
1802 (priv->mesh_connect_status == LBS_CONNECTED))) {
1803 if (priv->secinfo.WPAenabled ||
1804 priv->secinfo.WPA2enabled) {
1805 /* check for valid WPA group keys */
1806 if (priv->wpa_mcast_key.len ||
1807 priv->wpa_unicast_key.len) {
1809 "EXEC_NEXT_CMD: WPA enabled and GTK_SET"
1810 " go back to PS_SLEEP");
1811 lbs_ps_sleep(priv, 0);
1815 "EXEC_NEXT_CMD: cmdpendingq empty, "
1816 "go back to PS_SLEEP");
1817 lbs_ps_sleep(priv, 0);
1824 lbs_deb_leave(LBS_DEB_THREAD);
1828 void lbs_send_iwevcustom_event(struct lbs_private *priv, s8 *str)
1830 union iwreq_data iwrq;
1833 lbs_deb_enter(LBS_DEB_WEXT);
1835 memset(&iwrq, 0, sizeof(union iwreq_data));
1836 memset(buf, 0, sizeof(buf));
1838 snprintf(buf, sizeof(buf) - 1, "%s", str);
1840 iwrq.data.length = strlen(buf) + 1 + IW_EV_LCP_LEN;
1842 /* Send Event to upper layer */
1843 lbs_deb_wext("event indication string %s\n", (char *)buf);
1844 lbs_deb_wext("event indication length %d\n", iwrq.data.length);
1845 lbs_deb_wext("sending wireless event IWEVCUSTOM for %s\n", str);
1847 wireless_send_event(priv->dev, IWEVCUSTOM, &iwrq, buf);
1849 lbs_deb_leave(LBS_DEB_WEXT);
1852 static void lbs_send_confirmsleep(struct lbs_private *priv)
1854 unsigned long flags;
1857 lbs_deb_enter(LBS_DEB_HOST);
1858 lbs_deb_hex(LBS_DEB_HOST, "sleep confirm", (u8 *) &confirm_sleep,
1859 sizeof(confirm_sleep));
1861 ret = priv->hw_host_to_card(priv, MVMS_CMD, (u8 *) &confirm_sleep,
1862 sizeof(confirm_sleep));
1864 lbs_pr_alert("confirm_sleep failed\n");
1868 spin_lock_irqsave(&priv->driver_lock, flags);
1870 /* We don't get a response on the sleep-confirmation */
1871 priv->dnld_sent = DNLD_RES_RECEIVED;
1873 /* If nothing to do, go back to sleep (?) */
1874 if (!__kfifo_len(priv->event_fifo) && !priv->resp_len[priv->resp_idx])
1875 priv->psstate = PS_STATE_SLEEP;
1877 spin_unlock_irqrestore(&priv->driver_lock, flags);
1880 lbs_deb_leave(LBS_DEB_HOST);
1883 void lbs_ps_sleep(struct lbs_private *priv, int wait_option)
1885 lbs_deb_enter(LBS_DEB_HOST);
1888 * PS is currently supported only in Infrastructure mode
1889 * Remove this check if it is to be supported in IBSS mode also
1892 lbs_prepare_and_send_command(priv, CMD_802_11_PS_MODE,
1893 CMD_SUBCMD_ENTER_PS, wait_option, 0, NULL);
1895 lbs_deb_leave(LBS_DEB_HOST);
1899 * @brief This function sends Exit_PS command to firmware.
1901 * @param priv A pointer to struct lbs_private structure
1902 * @param wait_option wait response or not
1905 void lbs_ps_wakeup(struct lbs_private *priv, int wait_option)
1909 lbs_deb_enter(LBS_DEB_HOST);
1911 Localpsmode = cpu_to_le32(LBS802_11POWERMODECAM);
1913 lbs_prepare_and_send_command(priv, CMD_802_11_PS_MODE,
1915 wait_option, 0, &Localpsmode);
1917 lbs_deb_leave(LBS_DEB_HOST);
1921 * @brief This function checks condition and prepares to
1922 * send sleep confirm command to firmware if ok.
1924 * @param priv A pointer to struct lbs_private structure
1925 * @param psmode Power Saving mode
1928 void lbs_ps_confirm_sleep(struct lbs_private *priv)
1930 unsigned long flags =0;
1933 lbs_deb_enter(LBS_DEB_HOST);
1935 spin_lock_irqsave(&priv->driver_lock, flags);
1936 if (priv->dnld_sent) {
1938 lbs_deb_host("dnld_sent was set\n");
1941 /* In-progress command? */
1942 if (priv->cur_cmd) {
1944 lbs_deb_host("cur_cmd was set\n");
1947 /* Pending events or command responses? */
1948 if (__kfifo_len(priv->event_fifo) || priv->resp_len[priv->resp_idx]) {
1950 lbs_deb_host("pending events or command responses\n");
1952 spin_unlock_irqrestore(&priv->driver_lock, flags);
1955 lbs_deb_host("sending lbs_ps_confirm_sleep\n");
1956 lbs_send_confirmsleep(priv);
1958 lbs_deb_host("sleep confirm has been delayed\n");
1961 lbs_deb_leave(LBS_DEB_HOST);
1966 * @brief Configures the transmission power control functionality.
1968 * @param priv A pointer to struct lbs_private structure
1969 * @param enable Transmission power control enable
1970 * @param p0 Power level when link quality is good (dBm).
1971 * @param p1 Power level when link quality is fair (dBm).
1972 * @param p2 Power level when link quality is poor (dBm).
1973 * @param usesnr Use Signal to Noise Ratio in TPC
1975 * @return 0 on success
1977 int lbs_set_tpc_cfg(struct lbs_private *priv, int enable, int8_t p0, int8_t p1,
1978 int8_t p2, int usesnr)
1980 struct cmd_ds_802_11_tpc_cfg cmd;
1983 memset(&cmd, 0, sizeof(cmd));
1984 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
1985 cmd.action = cpu_to_le16(CMD_ACT_SET);
1986 cmd.enable = !!enable;
1987 cmd.usesnr = !!usesnr;
1992 ret = lbs_cmd_with_response(priv, CMD_802_11_TPC_CFG, &cmd);
1998 * @brief Configures the power adaptation settings.
2000 * @param priv A pointer to struct lbs_private structure
2001 * @param enable Power adaptation enable
2002 * @param p0 Power level for 1, 2, 5.5 and 11 Mbps (dBm).
2003 * @param p1 Power level for 6, 9, 12, 18, 22, 24 and 36 Mbps (dBm).
2004 * @param p2 Power level for 48 and 54 Mbps (dBm).
2006 * @return 0 on Success
2009 int lbs_set_power_adapt_cfg(struct lbs_private *priv, int enable, int8_t p0,
2010 int8_t p1, int8_t p2)
2012 struct cmd_ds_802_11_pa_cfg cmd;
2015 memset(&cmd, 0, sizeof(cmd));
2016 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
2017 cmd.action = cpu_to_le16(CMD_ACT_SET);
2018 cmd.enable = !!enable;
2023 ret = lbs_cmd_with_response(priv, CMD_802_11_PA_CFG , &cmd);
2029 static struct cmd_ctrl_node *__lbs_cmd_async(struct lbs_private *priv,
2030 uint16_t command, struct cmd_header *in_cmd, int in_cmd_size,
2031 int (*callback)(struct lbs_private *, unsigned long, struct cmd_header *),
2032 unsigned long callback_arg)
2034 struct cmd_ctrl_node *cmdnode;
2036 lbs_deb_enter(LBS_DEB_HOST);
2038 if (priv->surpriseremoved) {
2039 lbs_deb_host("PREP_CMD: card removed\n");
2040 cmdnode = ERR_PTR(-ENOENT);
2044 cmdnode = lbs_get_cmd_ctrl_node(priv);
2045 if (cmdnode == NULL) {
2046 lbs_deb_host("PREP_CMD: cmdnode is NULL\n");
2048 /* Wake up main thread to execute next command */
2049 wake_up_interruptible(&priv->waitq);
2050 cmdnode = ERR_PTR(-ENOBUFS);
2054 cmdnode->callback = callback;
2055 cmdnode->callback_arg = callback_arg;
2057 /* Copy the incoming command to the buffer */
2058 memcpy(cmdnode->cmdbuf, in_cmd, in_cmd_size);
2060 /* Set sequence number, clean result, move to buffer */
2062 cmdnode->cmdbuf->command = cpu_to_le16(command);
2063 cmdnode->cmdbuf->size = cpu_to_le16(in_cmd_size);
2064 cmdnode->cmdbuf->seqnum = cpu_to_le16(priv->seqnum);
2065 cmdnode->cmdbuf->result = 0;
2067 lbs_deb_host("PREP_CMD: command 0x%04x\n", command);
2069 cmdnode->cmdwaitqwoken = 0;
2070 lbs_queue_cmd(priv, cmdnode);
2071 wake_up_interruptible(&priv->waitq);
2074 lbs_deb_leave_args(LBS_DEB_HOST, "ret %p", cmdnode);
2078 void lbs_cmd_async(struct lbs_private *priv, uint16_t command,
2079 struct cmd_header *in_cmd, int in_cmd_size)
2081 lbs_deb_enter(LBS_DEB_CMD);
2082 __lbs_cmd_async(priv, command, in_cmd, in_cmd_size,
2083 lbs_cmd_async_callback, 0);
2084 lbs_deb_leave(LBS_DEB_CMD);
2087 int __lbs_cmd(struct lbs_private *priv, uint16_t command,
2088 struct cmd_header *in_cmd, int in_cmd_size,
2089 int (*callback)(struct lbs_private *, unsigned long, struct cmd_header *),
2090 unsigned long callback_arg)
2092 struct cmd_ctrl_node *cmdnode;
2093 unsigned long flags;
2096 lbs_deb_enter(LBS_DEB_HOST);
2098 cmdnode = __lbs_cmd_async(priv, command, in_cmd, in_cmd_size,
2099 callback, callback_arg);
2100 if (IS_ERR(cmdnode)) {
2101 ret = PTR_ERR(cmdnode);
2106 wait_event_interruptible(cmdnode->cmdwait_q, cmdnode->cmdwaitqwoken);
2108 spin_lock_irqsave(&priv->driver_lock, flags);
2109 ret = cmdnode->result;
2111 lbs_pr_info("PREP_CMD: command 0x%04x failed: %d\n",
2114 __lbs_cleanup_and_insert_cmd(priv, cmdnode);
2115 spin_unlock_irqrestore(&priv->driver_lock, flags);
2118 lbs_deb_leave_args(LBS_DEB_HOST, "ret %d", ret);
2121 EXPORT_SYMBOL_GPL(__lbs_cmd);
projects / librecmc / linux-libre.git / blob