2 * This file contains the major functions in WLAN
3 * driver. It includes init, exit, open, close and main
7 #include <linux/moduleparam.h>
8 #include <linux/delay.h>
9 #include <linux/etherdevice.h>
10 #include <linux/netdevice.h>
11 #include <linux/if_arp.h>
12 #include <linux/kthread.h>
14 #include <net/iw_handler.h>
15 #include <net/ieee80211.h>
26 #define DRIVER_RELEASE_VERSION "323.p0"
27 const char lbs_driver_version[] = "COMM-USB8388-" DRIVER_RELEASE_VERSION
34 /* Module parameters */
35 unsigned int lbs_debug;
36 EXPORT_SYMBOL_GPL(lbs_debug);
37 module_param_named(libertas_debug, lbs_debug, int, 0644);
40 #define LBS_TX_PWR_DEFAULT 20 /*100mW */
41 #define LBS_TX_PWR_US_DEFAULT 20 /*100mW */
42 #define LBS_TX_PWR_JP_DEFAULT 16 /*50mW */
43 #define LBS_TX_PWR_FR_DEFAULT 20 /*100mW */
44 #define LBS_TX_PWR_EMEA_DEFAULT 20 /*100mW */
46 /* Format { channel, frequency (MHz), maxtxpower } */
47 /* band: 'B/G', region: USA FCC/Canada IC */
48 static struct chan_freq_power channel_freq_power_US_BG[] = {
49 {1, 2412, LBS_TX_PWR_US_DEFAULT},
50 {2, 2417, LBS_TX_PWR_US_DEFAULT},
51 {3, 2422, LBS_TX_PWR_US_DEFAULT},
52 {4, 2427, LBS_TX_PWR_US_DEFAULT},
53 {5, 2432, LBS_TX_PWR_US_DEFAULT},
54 {6, 2437, LBS_TX_PWR_US_DEFAULT},
55 {7, 2442, LBS_TX_PWR_US_DEFAULT},
56 {8, 2447, LBS_TX_PWR_US_DEFAULT},
57 {9, 2452, LBS_TX_PWR_US_DEFAULT},
58 {10, 2457, LBS_TX_PWR_US_DEFAULT},
59 {11, 2462, LBS_TX_PWR_US_DEFAULT}
62 /* band: 'B/G', region: Europe ETSI */
63 static struct chan_freq_power channel_freq_power_EU_BG[] = {
64 {1, 2412, LBS_TX_PWR_EMEA_DEFAULT},
65 {2, 2417, LBS_TX_PWR_EMEA_DEFAULT},
66 {3, 2422, LBS_TX_PWR_EMEA_DEFAULT},
67 {4, 2427, LBS_TX_PWR_EMEA_DEFAULT},
68 {5, 2432, LBS_TX_PWR_EMEA_DEFAULT},
69 {6, 2437, LBS_TX_PWR_EMEA_DEFAULT},
70 {7, 2442, LBS_TX_PWR_EMEA_DEFAULT},
71 {8, 2447, LBS_TX_PWR_EMEA_DEFAULT},
72 {9, 2452, LBS_TX_PWR_EMEA_DEFAULT},
73 {10, 2457, LBS_TX_PWR_EMEA_DEFAULT},
74 {11, 2462, LBS_TX_PWR_EMEA_DEFAULT},
75 {12, 2467, LBS_TX_PWR_EMEA_DEFAULT},
76 {13, 2472, LBS_TX_PWR_EMEA_DEFAULT}
79 /* band: 'B/G', region: Spain */
80 static struct chan_freq_power channel_freq_power_SPN_BG[] = {
81 {10, 2457, LBS_TX_PWR_DEFAULT},
82 {11, 2462, LBS_TX_PWR_DEFAULT}
85 /* band: 'B/G', region: France */
86 static struct chan_freq_power channel_freq_power_FR_BG[] = {
87 {10, 2457, LBS_TX_PWR_FR_DEFAULT},
88 {11, 2462, LBS_TX_PWR_FR_DEFAULT},
89 {12, 2467, LBS_TX_PWR_FR_DEFAULT},
90 {13, 2472, LBS_TX_PWR_FR_DEFAULT}
93 /* band: 'B/G', region: Japan */
94 static struct chan_freq_power channel_freq_power_JPN_BG[] = {
95 {1, 2412, LBS_TX_PWR_JP_DEFAULT},
96 {2, 2417, LBS_TX_PWR_JP_DEFAULT},
97 {3, 2422, LBS_TX_PWR_JP_DEFAULT},
98 {4, 2427, LBS_TX_PWR_JP_DEFAULT},
99 {5, 2432, LBS_TX_PWR_JP_DEFAULT},
100 {6, 2437, LBS_TX_PWR_JP_DEFAULT},
101 {7, 2442, LBS_TX_PWR_JP_DEFAULT},
102 {8, 2447, LBS_TX_PWR_JP_DEFAULT},
103 {9, 2452, LBS_TX_PWR_JP_DEFAULT},
104 {10, 2457, LBS_TX_PWR_JP_DEFAULT},
105 {11, 2462, LBS_TX_PWR_JP_DEFAULT},
106 {12, 2467, LBS_TX_PWR_JP_DEFAULT},
107 {13, 2472, LBS_TX_PWR_JP_DEFAULT},
108 {14, 2484, LBS_TX_PWR_JP_DEFAULT}
112 * the structure for channel, frequency and power
114 struct region_cfp_table {
116 struct chan_freq_power *cfp_BG;
121 * the structure for the mapping between region and CFP
123 static struct region_cfp_table region_cfp_table[] = {
125 channel_freq_power_US_BG,
126 ARRAY_SIZE(channel_freq_power_US_BG),
129 {0x20, /*CANADA IC */
130 channel_freq_power_US_BG,
131 ARRAY_SIZE(channel_freq_power_US_BG),
134 {0x30, /*EU*/ channel_freq_power_EU_BG,
135 ARRAY_SIZE(channel_freq_power_EU_BG),
138 {0x31, /*SPAIN*/ channel_freq_power_SPN_BG,
139 ARRAY_SIZE(channel_freq_power_SPN_BG),
142 {0x32, /*FRANCE*/ channel_freq_power_FR_BG,
143 ARRAY_SIZE(channel_freq_power_FR_BG),
146 {0x40, /*JAPAN*/ channel_freq_power_JPN_BG,
147 ARRAY_SIZE(channel_freq_power_JPN_BG),
150 /*Add new region here */
154 * the table to keep region code
156 u16 lbs_region_code_to_index[MRVDRV_MAX_REGION_CODE] =
157 { 0x10, 0x20, 0x30, 0x31, 0x32, 0x40 };
160 * 802.11b/g supported bitrates (in 500Kb/s units)
162 u8 lbs_bg_rates[MAX_RATES] =
163 { 0x02, 0x04, 0x0b, 0x16, 0x0c, 0x12, 0x18, 0x24, 0x30, 0x48, 0x60, 0x6c,
167 * FW rate table. FW refers to rates by their index in this table, not by the
168 * rate value itself. Values of 0x00 are
169 * reserved positions.
171 static u8 fw_data_rates[MAX_RATES] =
172 { 0x02, 0x04, 0x0B, 0x16, 0x00, 0x0C, 0x12,
173 0x18, 0x24, 0x30, 0x48, 0x60, 0x6C, 0x00
177 * @brief use index to get the data rate
179 * @param idx The index of data rate
180 * @return data rate or 0
182 u32 lbs_fw_index_to_data_rate(u8 idx)
184 if (idx >= sizeof(fw_data_rates))
186 return fw_data_rates[idx];
190 * @brief use rate to get the index
192 * @param rate data rate
195 u8 lbs_data_rate_to_fw_index(u32 rate)
202 for (i = 0; i < sizeof(fw_data_rates); i++) {
203 if (rate == fw_data_rates[i])
210 * Attributes exported through sysfs
214 * @brief Get function for sysfs attribute anycast_mask
216 static ssize_t lbs_anycast_get(struct device *dev,
217 struct device_attribute *attr, char * buf)
219 struct lbs_private *priv = to_net_dev(dev)->priv;
220 struct cmd_ds_mesh_access mesh_access;
223 memset(&mesh_access, 0, sizeof(mesh_access));
225 ret = lbs_mesh_access(priv, CMD_ACT_MESH_GET_ANYCAST, &mesh_access);
229 return snprintf(buf, 12, "0x%X\n", le32_to_cpu(mesh_access.data[0]));
233 * @brief Set function for sysfs attribute anycast_mask
235 static ssize_t lbs_anycast_set(struct device *dev,
236 struct device_attribute *attr, const char * buf, size_t count)
238 struct lbs_private *priv = to_net_dev(dev)->priv;
239 struct cmd_ds_mesh_access mesh_access;
243 memset(&mesh_access, 0, sizeof(mesh_access));
244 sscanf(buf, "%x", &datum);
245 mesh_access.data[0] = cpu_to_le32(datum);
247 ret = lbs_mesh_access(priv, CMD_ACT_MESH_SET_ANYCAST, &mesh_access);
254 static int lbs_add_rtap(struct lbs_private *priv);
255 static void lbs_remove_rtap(struct lbs_private *priv);
256 static int lbs_add_mesh(struct lbs_private *priv);
257 static void lbs_remove_mesh(struct lbs_private *priv);
261 * Get function for sysfs attribute rtap
263 static ssize_t lbs_rtap_get(struct device *dev,
264 struct device_attribute *attr, char * buf)
266 struct lbs_private *priv = to_net_dev(dev)->priv;
267 return snprintf(buf, 5, "0x%X\n", priv->monitormode);
271 * Set function for sysfs attribute rtap
273 static ssize_t lbs_rtap_set(struct device *dev,
274 struct device_attribute *attr, const char * buf, size_t count)
277 struct lbs_private *priv = to_net_dev(dev)->priv;
279 sscanf(buf, "%x", &monitor_mode);
281 if (priv->monitormode == monitor_mode)
283 if (!priv->monitormode) {
284 if (priv->infra_open || priv->mesh_open)
286 if (priv->mode == IW_MODE_INFRA)
287 lbs_send_deauthentication(priv);
288 else if (priv->mode == IW_MODE_ADHOC)
289 lbs_stop_adhoc_network(priv);
292 priv->monitormode = monitor_mode;
296 if (!priv->monitormode)
298 priv->monitormode = 0;
299 lbs_remove_rtap(priv);
301 if (priv->currenttxskb) {
302 dev_kfree_skb_any(priv->currenttxskb);
303 priv->currenttxskb = NULL;
306 /* Wake queues, command thread, etc. */
307 lbs_host_to_card_done(priv);
310 lbs_prepare_and_send_command(priv,
311 CMD_802_11_MONITOR_MODE, CMD_ACT_SET,
312 CMD_OPTION_WAITFORRSP, 0, &priv->monitormode);
317 * lbs_rtap attribute to be exported per ethX interface
318 * through sysfs (/sys/class/net/ethX/lbs_rtap)
320 static DEVICE_ATTR(lbs_rtap, 0644, lbs_rtap_get, lbs_rtap_set );
323 * Get function for sysfs attribute mesh
325 static ssize_t lbs_mesh_get(struct device *dev,
326 struct device_attribute *attr, char * buf)
328 struct lbs_private *priv = to_net_dev(dev)->priv;
329 return snprintf(buf, 5, "0x%X\n", !!priv->mesh_dev);
333 * Set function for sysfs attribute mesh
335 static ssize_t lbs_mesh_set(struct device *dev,
336 struct device_attribute *attr, const char * buf, size_t count)
338 struct lbs_private *priv = to_net_dev(dev)->priv;
342 sscanf(buf, "%x", &enable);
344 if (enable == !!priv->mesh_dev)
347 ret = lbs_mesh_config(priv, enable, priv->curbssparams.channel);
354 lbs_remove_mesh(priv);
360 * lbs_mesh attribute to be exported per ethX interface
361 * through sysfs (/sys/class/net/ethX/lbs_mesh)
363 static DEVICE_ATTR(lbs_mesh, 0644, lbs_mesh_get, lbs_mesh_set);
366 * anycast_mask attribute to be exported per mshX interface
367 * through sysfs (/sys/class/net/mshX/anycast_mask)
369 static DEVICE_ATTR(anycast_mask, 0644, lbs_anycast_get, lbs_anycast_set);
371 static struct attribute *lbs_mesh_sysfs_entries[] = {
372 &dev_attr_anycast_mask.attr,
376 static struct attribute_group lbs_mesh_attr_group = {
377 .attrs = lbs_mesh_sysfs_entries,
381 * @brief This function opens the ethX or mshX interface
383 * @param dev A pointer to net_device structure
384 * @return 0 or -EBUSY if monitor mode active
386 static int lbs_dev_open(struct net_device *dev)
388 struct lbs_private *priv = (struct lbs_private *) dev->priv ;
391 lbs_deb_enter(LBS_DEB_NET);
393 spin_lock_irq(&priv->driver_lock);
395 if (priv->monitormode) {
400 if (dev == priv->mesh_dev) {
402 priv->mesh_connect_status = LBS_CONNECTED;
403 netif_carrier_on(dev);
405 priv->infra_open = 1;
407 if (priv->connect_status == LBS_CONNECTED)
408 netif_carrier_on(dev);
410 netif_carrier_off(dev);
413 if (!priv->tx_pending_len)
414 netif_wake_queue(dev);
417 spin_unlock_irq(&priv->driver_lock);
418 lbs_deb_leave_args(LBS_DEB_NET, "ret %d", ret);
423 * @brief This function closes the mshX interface
425 * @param dev A pointer to net_device structure
428 static int lbs_mesh_stop(struct net_device *dev)
430 struct lbs_private *priv = (struct lbs_private *) (dev->priv);
432 lbs_deb_enter(LBS_DEB_MESH);
433 spin_lock_irq(&priv->driver_lock);
436 priv->mesh_connect_status = LBS_DISCONNECTED;
438 netif_stop_queue(dev);
439 netif_carrier_off(dev);
441 spin_unlock_irq(&priv->driver_lock);
443 lbs_deb_leave(LBS_DEB_MESH);
448 * @brief This function closes the ethX interface
450 * @param dev A pointer to net_device structure
453 static int lbs_eth_stop(struct net_device *dev)
455 struct lbs_private *priv = (struct lbs_private *) dev->priv;
457 lbs_deb_enter(LBS_DEB_NET);
459 spin_lock_irq(&priv->driver_lock);
460 priv->infra_open = 0;
461 netif_stop_queue(dev);
462 spin_unlock_irq(&priv->driver_lock);
464 lbs_deb_leave(LBS_DEB_NET);
468 static void lbs_tx_timeout(struct net_device *dev)
470 struct lbs_private *priv = (struct lbs_private *) dev->priv;
472 lbs_deb_enter(LBS_DEB_TX);
474 lbs_pr_err("tx watch dog timeout\n");
476 dev->trans_start = jiffies;
478 if (priv->currenttxskb) {
479 priv->eventcause = 0x01000000;
480 lbs_send_tx_feedback(priv);
482 /* XX: Shouldn't we also call into the hw-specific driver
483 to kick it somehow? */
484 lbs_host_to_card_done(priv);
486 /* More often than not, this actually happens because the
487 firmware has crapped itself -- rather than just a very
488 busy medium. So send a harmless command, and if/when
489 _that_ times out, we'll kick it in the head. */
490 lbs_prepare_and_send_command(priv, CMD_802_11_RSSI, 0,
493 lbs_deb_leave(LBS_DEB_TX);
496 void lbs_host_to_card_done(struct lbs_private *priv)
500 lbs_deb_enter(LBS_DEB_THREAD);
502 spin_lock_irqsave(&priv->driver_lock, flags);
504 priv->dnld_sent = DNLD_RES_RECEIVED;
506 /* Wake main thread if commands are pending */
507 if (!priv->cur_cmd || priv->tx_pending_len > 0)
508 wake_up_interruptible(&priv->waitq);
510 spin_unlock_irqrestore(&priv->driver_lock, flags);
511 lbs_deb_leave(LBS_DEB_THREAD);
513 EXPORT_SYMBOL_GPL(lbs_host_to_card_done);
516 * @brief This function returns the network statistics
518 * @param dev A pointer to struct lbs_private structure
519 * @return A pointer to net_device_stats structure
521 static struct net_device_stats *lbs_get_stats(struct net_device *dev)
523 struct lbs_private *priv = (struct lbs_private *) dev->priv;
525 lbs_deb_enter(LBS_DEB_NET);
529 static int lbs_set_mac_address(struct net_device *dev, void *addr)
532 struct lbs_private *priv = (struct lbs_private *) dev->priv;
533 struct sockaddr *phwaddr = addr;
534 struct cmd_ds_802_11_mac_address cmd;
536 lbs_deb_enter(LBS_DEB_NET);
538 /* In case it was called from the mesh device */
541 cmd.hdr.size = cpu_to_le16(sizeof(cmd));
542 cmd.action = cpu_to_le16(CMD_ACT_SET);
543 memcpy(cmd.macadd, phwaddr->sa_data, ETH_ALEN);
545 ret = lbs_cmd_with_response(priv, CMD_802_11_MAC_ADDRESS, &cmd);
547 lbs_deb_net("set MAC address failed\n");
551 memcpy(priv->current_addr, phwaddr->sa_data, ETH_ALEN);
552 memcpy(dev->dev_addr, phwaddr->sa_data, ETH_ALEN);
554 memcpy(priv->mesh_dev->dev_addr, phwaddr->sa_data, ETH_ALEN);
557 lbs_deb_leave_args(LBS_DEB_NET, "ret %d", ret);
561 static int lbs_copy_multicast_address(struct lbs_private *priv,
562 struct net_device *dev)
565 struct dev_mc_list *mcptr = dev->mc_list;
567 for (i = 0; i < dev->mc_count; i++) {
568 memcpy(&priv->multicastlist[i], mcptr->dmi_addr, ETH_ALEN);
574 static void lbs_set_multicast_list(struct net_device *dev)
576 struct lbs_private *priv = dev->priv;
578 DECLARE_MAC_BUF(mac);
580 lbs_deb_enter(LBS_DEB_NET);
582 old_mac_control = priv->mac_control;
584 if (dev->flags & IFF_PROMISC) {
585 lbs_deb_net("enable promiscuous mode\n");
587 CMD_ACT_MAC_PROMISCUOUS_ENABLE;
589 ~(CMD_ACT_MAC_ALL_MULTICAST_ENABLE |
590 CMD_ACT_MAC_MULTICAST_ENABLE);
594 ~CMD_ACT_MAC_PROMISCUOUS_ENABLE;
596 if (dev->flags & IFF_ALLMULTI || dev->mc_count >
597 MRVDRV_MAX_MULTICAST_LIST_SIZE) {
598 lbs_deb_net( "enabling all multicast\n");
600 CMD_ACT_MAC_ALL_MULTICAST_ENABLE;
602 ~CMD_ACT_MAC_MULTICAST_ENABLE;
605 ~CMD_ACT_MAC_ALL_MULTICAST_ENABLE;
607 if (!dev->mc_count) {
608 lbs_deb_net("no multicast addresses, "
609 "disabling multicast\n");
611 ~CMD_ACT_MAC_MULTICAST_ENABLE;
616 CMD_ACT_MAC_MULTICAST_ENABLE;
618 priv->nr_of_multicastmacaddr =
619 lbs_copy_multicast_address(priv, dev);
621 lbs_deb_net("multicast addresses: %d\n",
624 for (i = 0; i < dev->mc_count; i++) {
625 lbs_deb_net("Multicast address %d: %s\n",
627 priv->multicastlist[i]));
629 /* send multicast addresses to firmware */
630 lbs_prepare_and_send_command(priv,
631 CMD_MAC_MULTICAST_ADR,
638 if (priv->mac_control != old_mac_control)
639 lbs_set_mac_control(priv);
641 lbs_deb_leave(LBS_DEB_NET);
645 * @brief This function handles the major jobs in the LBS driver.
646 * It handles all events generated by firmware, RX data received
647 * from firmware and TX data sent from kernel.
649 * @param data A pointer to lbs_thread structure
652 static int lbs_thread(void *data)
654 struct net_device *dev = data;
655 struct lbs_private *priv = dev->priv;
659 lbs_deb_enter(LBS_DEB_THREAD);
661 init_waitqueue_entry(&wait, current);
666 lbs_deb_thread( "main-thread 111: intcounter=%d currenttxskb=%p dnld_sent=%d\n",
667 priv->intcounter, priv->currenttxskb, priv->dnld_sent);
669 add_wait_queue(&priv->waitq, &wait);
670 set_current_state(TASK_INTERRUPTIBLE);
671 spin_lock_irq(&priv->driver_lock);
673 if (kthread_should_stop())
674 shouldsleep = 0; /* Bye */
675 else if (priv->surpriseremoved)
676 shouldsleep = 1; /* We need to wait until we're _told_ to die */
677 else if (priv->psstate == PS_STATE_SLEEP)
678 shouldsleep = 1; /* Sleep mode. Nothing we can do till it wakes */
679 else if (priv->intcounter)
680 shouldsleep = 0; /* Interrupt pending. Deal with it now */
681 else if (priv->cmd_timed_out)
682 shouldsleep = 0; /* Command timed out. Recover */
683 else if (!priv->fw_ready)
684 shouldsleep = 1; /* Firmware not ready. We're waiting for it */
685 else if (priv->dnld_sent)
686 shouldsleep = 1; /* Something is en route to the device already */
687 else if (priv->tx_pending_len > 0)
688 shouldsleep = 0; /* We've a packet to send */
689 else if (priv->cur_cmd)
690 shouldsleep = 1; /* Can't send a command; one already running */
691 else if (!list_empty(&priv->cmdpendingq))
692 shouldsleep = 0; /* We have a command to send */
694 shouldsleep = 1; /* No command */
697 lbs_deb_thread("main-thread sleeping... Conn=%d IntC=%d PS_mode=%d PS_State=%d\n",
698 priv->connect_status, priv->intcounter,
699 priv->psmode, priv->psstate);
700 spin_unlock_irq(&priv->driver_lock);
703 spin_unlock_irq(&priv->driver_lock);
705 lbs_deb_thread("main-thread 222 (waking up): intcounter=%d currenttxskb=%p dnld_sent=%d\n",
706 priv->intcounter, priv->currenttxskb, priv->dnld_sent);
708 set_current_state(TASK_RUNNING);
709 remove_wait_queue(&priv->waitq, &wait);
711 lbs_deb_thread("main-thread 333: intcounter=%d currenttxskb=%p dnld_sent=%d\n",
712 priv->intcounter, priv->currenttxskb, priv->dnld_sent);
714 if (kthread_should_stop()) {
715 lbs_deb_thread("main-thread: break from main thread\n");
719 if (priv->surpriseremoved) {
720 lbs_deb_thread("adapter removed; waiting to die...\n");
724 spin_lock_irq(&priv->driver_lock);
726 if (priv->intcounter) {
729 priv->intcounter = 0;
730 int_status = priv->hw_get_int_status(priv, &ireg);
733 lbs_deb_thread("main-thread: reading HOST_INT_STATUS_REG failed\n");
734 spin_unlock_irq(&priv->driver_lock);
737 priv->hisregcpy |= ireg;
740 lbs_deb_thread("main-thread 444: intcounter=%d currenttxskb=%p dnld_sent=%d\n",
741 priv->intcounter, priv->currenttxskb, priv->dnld_sent);
743 /* command response? */
744 if (priv->hisregcpy & MRVDRV_CMD_UPLD_RDY) {
745 lbs_deb_thread("main-thread: cmd response ready\n");
747 priv->hisregcpy &= ~MRVDRV_CMD_UPLD_RDY;
748 spin_unlock_irq(&priv->driver_lock);
749 lbs_process_rx_command(priv);
750 spin_lock_irq(&priv->driver_lock);
753 if (priv->cmd_timed_out && priv->cur_cmd) {
754 struct cmd_ctrl_node *cmdnode = priv->cur_cmd;
756 if (++priv->nr_retries > 10) {
757 lbs_pr_info("Excessive timeouts submitting command %x\n",
758 le16_to_cpu(cmdnode->cmdbuf->command));
759 lbs_complete_command(priv, cmdnode, -ETIMEDOUT);
760 priv->nr_retries = 0;
762 priv->cur_cmd = NULL;
763 lbs_pr_info("requeueing command %x due to timeout (#%d)\n",
764 le16_to_cpu(cmdnode->cmdbuf->command), priv->nr_retries);
766 /* Stick it back at the _top_ of the pending queue
767 for immediate resubmission */
768 list_add(&cmdnode->list, &priv->cmdpendingq);
771 priv->cmd_timed_out = 0;
774 if (priv->hisregcpy & MRVDRV_CARDEVENT) {
775 lbs_deb_thread("main-thread: Card Event Activity\n");
777 priv->hisregcpy &= ~MRVDRV_CARDEVENT;
779 if (priv->hw_read_event_cause(priv)) {
780 lbs_pr_alert("main-thread: hw_read_event_cause failed\n");
781 spin_unlock_irq(&priv->driver_lock);
784 spin_unlock_irq(&priv->driver_lock);
785 lbs_process_event(priv);
787 spin_unlock_irq(&priv->driver_lock);
792 /* Check if we need to confirm Sleep Request received previously */
793 if (priv->psstate == PS_STATE_PRE_SLEEP &&
794 !priv->dnld_sent && !priv->cur_cmd) {
795 if (priv->connect_status == LBS_CONNECTED) {
796 lbs_deb_thread("main_thread: PRE_SLEEP--intcounter=%d currenttxskb=%p dnld_sent=%d cur_cmd=%p, confirm now\n",
797 priv->intcounter, priv->currenttxskb, priv->dnld_sent, priv->cur_cmd);
799 lbs_ps_confirm_sleep(priv);
801 /* workaround for firmware sending
802 * deauth/linkloss event immediately
803 * after sleep request; remove this
804 * after firmware fixes it
806 priv->psstate = PS_STATE_AWAKE;
807 lbs_pr_alert("main-thread: ignore PS_SleepConfirm in non-connected state\n");
811 /* The PS state is changed during processing of Sleep Request
814 if ((priv->psstate == PS_STATE_SLEEP) ||
815 (priv->psstate == PS_STATE_PRE_SLEEP))
818 /* Execute the next command */
819 if (!priv->dnld_sent && !priv->cur_cmd)
820 lbs_execute_next_command(priv);
822 /* Wake-up command waiters which can't sleep in
823 * lbs_prepare_and_send_command
825 if (!list_empty(&priv->cmdpendingq))
826 wake_up_all(&priv->cmd_pending);
828 spin_lock_irq(&priv->driver_lock);
829 if (!priv->dnld_sent && priv->tx_pending_len > 0) {
830 int ret = priv->hw_host_to_card(priv, MVMS_DAT,
831 priv->tx_pending_buf,
832 priv->tx_pending_len);
834 lbs_deb_tx("host_to_card failed %d\n", ret);
835 priv->dnld_sent = DNLD_RES_RECEIVED;
837 priv->tx_pending_len = 0;
838 if (!priv->currenttxskb) {
839 /* We can wake the queues immediately if we aren't
840 waiting for TX feedback */
841 if (priv->connect_status == LBS_CONNECTED)
842 netif_wake_queue(priv->dev);
843 if (priv->mesh_dev &&
844 priv->mesh_connect_status == LBS_CONNECTED)
845 netif_wake_queue(priv->mesh_dev);
848 spin_unlock_irq(&priv->driver_lock);
851 del_timer(&priv->command_timer);
852 wake_up_all(&priv->cmd_pending);
854 lbs_deb_leave(LBS_DEB_THREAD);
858 static int lbs_suspend_callback(struct lbs_private *priv, unsigned long dummy,
859 struct cmd_header *cmd)
861 lbs_deb_enter(LBS_DEB_FW);
863 netif_device_detach(priv->dev);
865 netif_device_detach(priv->mesh_dev);
868 lbs_deb_leave(LBS_DEB_FW);
872 int lbs_suspend(struct lbs_private *priv)
874 struct cmd_header cmd;
877 lbs_deb_enter(LBS_DEB_FW);
879 if (priv->wol_criteria == 0xffffffff) {
880 lbs_pr_info("Suspend attempt without configuring wake params!\n");
884 memset(&cmd, 0, sizeof(cmd));
886 ret = __lbs_cmd(priv, CMD_802_11_HOST_SLEEP_ACTIVATE, &cmd,
887 sizeof(cmd), lbs_suspend_callback, 0);
889 lbs_pr_info("HOST_SLEEP_ACTIVATE failed: %d\n", ret);
891 lbs_deb_leave_args(LBS_DEB_FW, "ret %d", ret);
894 EXPORT_SYMBOL_GPL(lbs_suspend);
896 int lbs_resume(struct lbs_private *priv)
898 lbs_deb_enter(LBS_DEB_FW);
902 /* Firmware doesn't seem to give us RX packets any more
903 until we send it some command. Might as well update */
904 lbs_prepare_and_send_command(priv, CMD_802_11_RSSI, 0,
907 netif_device_attach(priv->dev);
909 netif_device_attach(priv->mesh_dev);
911 lbs_deb_leave(LBS_DEB_FW);
914 EXPORT_SYMBOL_GPL(lbs_resume);
917 * @brief This function downloads firmware image, gets
918 * HW spec from firmware and set basic parameters to
921 * @param priv A pointer to struct lbs_private structure
924 static int lbs_setup_firmware(struct lbs_private *priv)
928 lbs_deb_enter(LBS_DEB_FW);
931 * Read MAC address from HW
933 memset(priv->current_addr, 0xff, ETH_ALEN);
934 ret = lbs_update_hw_spec(priv);
940 lbs_set_mac_control(priv);
942 ret = lbs_get_data_rate(priv);
950 lbs_deb_leave_args(LBS_DEB_FW, "ret %d", ret);
955 * This function handles the timeout of command sending.
956 * It will re-send the same command again.
958 static void command_timer_fn(unsigned long data)
960 struct lbs_private *priv = (struct lbs_private *)data;
963 lbs_deb_enter(LBS_DEB_CMD);
964 spin_lock_irqsave(&priv->driver_lock, flags);
966 if (!priv->cur_cmd) {
967 lbs_pr_info("Command timer expired; no pending command\n");
971 lbs_pr_info("Command %x timed out\n", le16_to_cpu(priv->cur_cmd->cmdbuf->command));
973 priv->cmd_timed_out = 1;
974 wake_up_interruptible(&priv->waitq);
976 spin_unlock_irqrestore(&priv->driver_lock, flags);
977 lbs_deb_leave(LBS_DEB_CMD);
980 static void lbs_sync_channel_worker(struct work_struct *work)
982 struct lbs_private *priv = container_of(work, struct lbs_private,
985 lbs_deb_enter(LBS_DEB_MAIN);
986 if (lbs_update_channel(priv))
987 lbs_pr_info("Channel synchronization failed.");
988 lbs_deb_leave(LBS_DEB_MAIN);
992 static int lbs_init_adapter(struct lbs_private *priv)
997 lbs_deb_enter(LBS_DEB_MAIN);
999 /* Allocate buffer to store the BSSID list */
1000 bufsize = MAX_NETWORK_COUNT * sizeof(struct bss_descriptor);
1001 priv->networks = kzalloc(bufsize, GFP_KERNEL);
1002 if (!priv->networks) {
1003 lbs_pr_err("Out of memory allocating beacons\n");
1008 /* Initialize scan result lists */
1009 INIT_LIST_HEAD(&priv->network_free_list);
1010 INIT_LIST_HEAD(&priv->network_list);
1011 for (i = 0; i < MAX_NETWORK_COUNT; i++) {
1012 list_add_tail(&priv->networks[i].list,
1013 &priv->network_free_list);
1016 priv->lbs_ps_confirm_sleep.seqnum = cpu_to_le16(++priv->seqnum);
1017 priv->lbs_ps_confirm_sleep.command =
1018 cpu_to_le16(CMD_802_11_PS_MODE);
1019 priv->lbs_ps_confirm_sleep.size =
1020 cpu_to_le16(sizeof(struct PS_CMD_ConfirmSleep));
1021 priv->lbs_ps_confirm_sleep.action =
1022 cpu_to_le16(CMD_SUBCMD_SLEEP_CONFIRMED);
1024 memset(priv->current_addr, 0xff, ETH_ALEN);
1026 priv->connect_status = LBS_DISCONNECTED;
1027 priv->mesh_connect_status = LBS_DISCONNECTED;
1028 priv->secinfo.auth_mode = IW_AUTH_ALG_OPEN_SYSTEM;
1029 priv->mode = IW_MODE_INFRA;
1030 priv->curbssparams.channel = DEFAULT_AD_HOC_CHANNEL;
1031 priv->mac_control = CMD_ACT_MAC_RX_ON | CMD_ACT_MAC_TX_ON;
1032 priv->radioon = RADIO_ON;
1033 priv->auto_rate = 1;
1034 priv->capability = WLAN_CAPABILITY_SHORT_PREAMBLE;
1035 priv->psmode = LBS802_11POWERMODECAM;
1036 priv->psstate = PS_STATE_FULL_POWER;
1038 mutex_init(&priv->lock);
1040 setup_timer(&priv->command_timer, command_timer_fn,
1041 (unsigned long)priv);
1043 INIT_LIST_HEAD(&priv->cmdfreeq);
1044 INIT_LIST_HEAD(&priv->cmdpendingq);
1046 spin_lock_init(&priv->driver_lock);
1047 init_waitqueue_head(&priv->cmd_pending);
1049 /* Allocate the command buffers */
1050 if (lbs_allocate_cmd_buffer(priv)) {
1051 lbs_pr_err("Out of memory allocating command buffers\n");
1056 lbs_deb_leave_args(LBS_DEB_MAIN, "ret %d", ret);
1061 static void lbs_free_adapter(struct lbs_private *priv)
1063 lbs_deb_enter(LBS_DEB_MAIN);
1065 lbs_free_cmd_buffer(priv);
1066 del_timer(&priv->command_timer);
1067 kfree(priv->networks);
1068 priv->networks = NULL;
1070 lbs_deb_leave(LBS_DEB_MAIN);
1074 * @brief This function adds the card. it will probe the
1075 * card, allocate the lbs_priv and initialize the device.
1077 * @param card A pointer to card
1078 * @return A pointer to struct lbs_private structure
1080 struct lbs_private *lbs_add_card(void *card, struct device *dmdev)
1082 struct net_device *dev = NULL;
1083 struct lbs_private *priv = NULL;
1085 lbs_deb_enter(LBS_DEB_MAIN);
1087 /* Allocate an Ethernet device and register it */
1088 dev = alloc_etherdev(sizeof(struct lbs_private));
1090 lbs_pr_err("init ethX device failed\n");
1095 if (lbs_init_adapter(priv)) {
1096 lbs_pr_err("failed to initialize adapter structure.\n");
1097 goto err_init_adapter;
1102 priv->mesh_open = 0;
1103 priv->infra_open = 0;
1105 /* Setup the OS Interface to our functions */
1106 dev->open = lbs_dev_open;
1107 dev->hard_start_xmit = lbs_hard_start_xmit;
1108 dev->stop = lbs_eth_stop;
1109 dev->set_mac_address = lbs_set_mac_address;
1110 dev->tx_timeout = lbs_tx_timeout;
1111 dev->get_stats = lbs_get_stats;
1112 dev->watchdog_timeo = 5 * HZ;
1113 dev->ethtool_ops = &lbs_ethtool_ops;
1115 dev->wireless_handlers = (struct iw_handler_def *)&lbs_handler_def;
1117 dev->flags |= IFF_BROADCAST | IFF_MULTICAST;
1118 dev->set_multicast_list = lbs_set_multicast_list;
1120 SET_NETDEV_DEV(dev, dmdev);
1122 priv->rtap_net_dev = NULL;
1124 lbs_deb_thread("Starting main thread...\n");
1125 init_waitqueue_head(&priv->waitq);
1126 priv->main_thread = kthread_run(lbs_thread, dev, "lbs_main");
1127 if (IS_ERR(priv->main_thread)) {
1128 lbs_deb_thread("Error creating main thread.\n");
1129 goto err_init_adapter;
1132 priv->work_thread = create_singlethread_workqueue("lbs_worker");
1133 INIT_DELAYED_WORK(&priv->assoc_work, lbs_association_worker);
1134 INIT_DELAYED_WORK(&priv->scan_work, lbs_scan_worker);
1135 INIT_WORK(&priv->sync_channel, lbs_sync_channel_worker);
1137 sprintf(priv->mesh_ssid, "mesh");
1138 priv->mesh_ssid_len = 4;
1140 priv->wol_criteria = 0xffffffff;
1141 priv->wol_gpio = 0xff;
1146 lbs_free_adapter(priv);
1151 lbs_deb_leave_args(LBS_DEB_MAIN, "priv %p", priv);
1154 EXPORT_SYMBOL_GPL(lbs_add_card);
1157 int lbs_remove_card(struct lbs_private *priv)
1159 struct net_device *dev = priv->dev;
1160 union iwreq_data wrqu;
1162 lbs_deb_enter(LBS_DEB_MAIN);
1164 lbs_remove_mesh(priv);
1165 lbs_remove_rtap(priv);
1169 cancel_delayed_work(&priv->scan_work);
1170 cancel_delayed_work(&priv->assoc_work);
1171 destroy_workqueue(priv->work_thread);
1173 if (priv->psmode == LBS802_11POWERMODEMAX_PSP) {
1174 priv->psmode = LBS802_11POWERMODECAM;
1175 lbs_ps_wakeup(priv, CMD_OPTION_WAITFORRSP);
1178 memset(wrqu.ap_addr.sa_data, 0xaa, ETH_ALEN);
1179 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
1180 wireless_send_event(priv->dev, SIOCGIWAP, &wrqu, NULL);
1182 /* Stop the thread servicing the interrupts */
1183 priv->surpriseremoved = 1;
1184 kthread_stop(priv->main_thread);
1186 lbs_free_adapter(priv);
1191 lbs_deb_leave(LBS_DEB_MAIN);
1194 EXPORT_SYMBOL_GPL(lbs_remove_card);
1197 int lbs_start_card(struct lbs_private *priv)
1199 struct net_device *dev = priv->dev;
1202 lbs_deb_enter(LBS_DEB_MAIN);
1204 /* poke the firmware */
1205 ret = lbs_setup_firmware(priv);
1212 if (register_netdev(dev)) {
1213 lbs_pr_err("cannot register ethX device\n");
1216 if (device_create_file(&dev->dev, &dev_attr_lbs_rtap))
1217 lbs_pr_err("cannot register lbs_rtap attribute\n");
1219 lbs_update_channel(priv);
1221 /* 5.0.16p0 is known to NOT support any mesh */
1222 if (priv->fwrelease > 0x05001000) {
1223 /* Enable mesh, if supported, and work out which TLV it uses.
1224 0x100 + 291 is an unofficial value used in 5.110.20.pXX
1225 0x100 + 37 is the official value used in 5.110.21.pXX
1226 but we check them in that order because 20.pXX doesn't
1227 give an error -- it just silently fails. */
1229 /* 5.110.20.pXX firmware will fail the command if the channel
1230 doesn't match the existing channel. But only if the TLV
1231 is correct. If the channel is wrong, _BOTH_ versions will
1232 give an error to 0x100+291, and allow 0x100+37 to succeed.
1233 It's just that 5.110.20.pXX will not have done anything
1236 priv->mesh_tlv = 0x100 + 291;
1237 if (lbs_mesh_config(priv, 1, priv->curbssparams.channel)) {
1238 priv->mesh_tlv = 0x100 + 37;
1239 if (lbs_mesh_config(priv, 1, priv->curbssparams.channel))
1242 if (priv->mesh_tlv) {
1245 if (device_create_file(&dev->dev, &dev_attr_lbs_mesh))
1246 lbs_pr_err("cannot register lbs_mesh attribute\n");
1250 lbs_debugfs_init_one(priv, dev);
1252 lbs_pr_info("%s: Marvell WLAN 802.11 adapter\n", dev->name);
1257 lbs_deb_leave_args(LBS_DEB_MAIN, "ret %d", ret);
1260 EXPORT_SYMBOL_GPL(lbs_start_card);
1263 int lbs_stop_card(struct lbs_private *priv)
1265 struct net_device *dev = priv->dev;
1267 struct cmd_ctrl_node *cmdnode;
1268 unsigned long flags;
1270 lbs_deb_enter(LBS_DEB_MAIN);
1272 netif_stop_queue(priv->dev);
1273 netif_carrier_off(priv->dev);
1275 lbs_debugfs_remove_one(priv);
1276 device_remove_file(&dev->dev, &dev_attr_lbs_rtap);
1278 device_remove_file(&dev->dev, &dev_attr_lbs_mesh);
1280 /* Flush pending command nodes */
1281 spin_lock_irqsave(&priv->driver_lock, flags);
1282 list_for_each_entry(cmdnode, &priv->cmdpendingq, list) {
1283 cmdnode->result = -ENOENT;
1284 cmdnode->cmdwaitqwoken = 1;
1285 wake_up_interruptible(&cmdnode->cmdwait_q);
1287 spin_unlock_irqrestore(&priv->driver_lock, flags);
1289 unregister_netdev(dev);
1291 lbs_deb_leave_args(LBS_DEB_MAIN, "ret %d", ret);
1294 EXPORT_SYMBOL_GPL(lbs_stop_card);
1298 * @brief This function adds mshX interface
1300 * @param priv A pointer to the struct lbs_private structure
1301 * @return 0 if successful, -X otherwise
1303 static int lbs_add_mesh(struct lbs_private *priv)
1305 struct net_device *mesh_dev = NULL;
1308 lbs_deb_enter(LBS_DEB_MESH);
1310 /* Allocate a virtual mesh device */
1311 if (!(mesh_dev = alloc_netdev(0, "msh%d", ether_setup))) {
1312 lbs_deb_mesh("init mshX device failed\n");
1316 mesh_dev->priv = priv;
1317 priv->mesh_dev = mesh_dev;
1319 mesh_dev->open = lbs_dev_open;
1320 mesh_dev->hard_start_xmit = lbs_hard_start_xmit;
1321 mesh_dev->stop = lbs_mesh_stop;
1322 mesh_dev->get_stats = lbs_get_stats;
1323 mesh_dev->set_mac_address = lbs_set_mac_address;
1324 mesh_dev->ethtool_ops = &lbs_ethtool_ops;
1325 memcpy(mesh_dev->dev_addr, priv->dev->dev_addr,
1326 sizeof(priv->dev->dev_addr));
1328 SET_NETDEV_DEV(priv->mesh_dev, priv->dev->dev.parent);
1331 mesh_dev->wireless_handlers = (struct iw_handler_def *)&mesh_handler_def;
1333 /* Register virtual mesh interface */
1334 ret = register_netdev(mesh_dev);
1336 lbs_pr_err("cannot register mshX virtual interface\n");
1340 ret = sysfs_create_group(&(mesh_dev->dev.kobj), &lbs_mesh_attr_group);
1342 goto err_unregister;
1344 /* Everything successful */
1349 unregister_netdev(mesh_dev);
1352 free_netdev(mesh_dev);
1355 lbs_deb_leave_args(LBS_DEB_MESH, "ret %d", ret);
1359 static void lbs_remove_mesh(struct lbs_private *priv)
1361 struct net_device *mesh_dev;
1364 mesh_dev = priv->mesh_dev;
1368 lbs_deb_enter(LBS_DEB_MESH);
1369 netif_stop_queue(mesh_dev);
1370 netif_carrier_off(priv->mesh_dev);
1371 sysfs_remove_group(&(mesh_dev->dev.kobj), &lbs_mesh_attr_group);
1372 unregister_netdev(mesh_dev);
1373 priv->mesh_dev = NULL;
1374 free_netdev(mesh_dev);
1375 lbs_deb_leave(LBS_DEB_MESH);
1379 * @brief This function finds the CFP in
1380 * region_cfp_table based on region and band parameter.
1382 * @param region The region code
1383 * @param band The band
1384 * @param cfp_no A pointer to CFP number
1385 * @return A pointer to CFP
1387 struct chan_freq_power *lbs_get_region_cfp_table(u8 region, int *cfp_no)
1391 lbs_deb_enter(LBS_DEB_MAIN);
1393 end = ARRAY_SIZE(region_cfp_table);
1395 for (i = 0; i < end ; i++) {
1396 lbs_deb_main("region_cfp_table[i].region=%d\n",
1397 region_cfp_table[i].region);
1398 if (region_cfp_table[i].region == region) {
1399 *cfp_no = region_cfp_table[i].cfp_no_BG;
1400 lbs_deb_leave(LBS_DEB_MAIN);
1401 return region_cfp_table[i].cfp_BG;
1405 lbs_deb_leave_args(LBS_DEB_MAIN, "ret NULL");
1409 int lbs_set_regiontable(struct lbs_private *priv, u8 region, u8 band)
1414 struct chan_freq_power *cfp;
1417 lbs_deb_enter(LBS_DEB_MAIN);
1419 memset(priv->region_channel, 0, sizeof(priv->region_channel));
1421 cfp = lbs_get_region_cfp_table(region, &cfp_no);
1423 priv->region_channel[i].nrcfp = cfp_no;
1424 priv->region_channel[i].CFP = cfp;
1426 lbs_deb_main("wrong region code %#x in band B/G\n",
1431 priv->region_channel[i].valid = 1;
1432 priv->region_channel[i].region = region;
1433 priv->region_channel[i].band = band;
1436 lbs_deb_leave_args(LBS_DEB_MAIN, "ret %d", ret);
1441 * @brief This function handles the interrupt. it will change PS
1442 * state if applicable. it will wake up main_thread to handle
1443 * the interrupt event as well.
1445 * @param dev A pointer to net_device structure
1448 void lbs_interrupt(struct lbs_private *priv)
1450 lbs_deb_enter(LBS_DEB_THREAD);
1452 lbs_deb_thread("lbs_interrupt: intcounter=%d\n", priv->intcounter);
1454 if (priv->psstate == PS_STATE_SLEEP)
1455 priv->psstate = PS_STATE_AWAKE;
1456 wake_up_interruptible(&priv->waitq);
1458 lbs_deb_leave(LBS_DEB_THREAD);
1460 EXPORT_SYMBOL_GPL(lbs_interrupt);
1462 static int __init lbs_init_module(void)
1464 lbs_deb_enter(LBS_DEB_MAIN);
1466 lbs_deb_leave(LBS_DEB_MAIN);
1470 static void __exit lbs_exit_module(void)
1472 lbs_deb_enter(LBS_DEB_MAIN);
1473 lbs_debugfs_remove();
1474 lbs_deb_leave(LBS_DEB_MAIN);
1478 * rtap interface support fuctions
1481 static int lbs_rtap_open(struct net_device *dev)
1483 /* Yes, _stop_ the queue. Because we don't support injection */
1484 lbs_deb_enter(LBS_DEB_MAIN);
1485 netif_carrier_off(dev);
1486 netif_stop_queue(dev);
1487 lbs_deb_leave(LBS_DEB_LEAVE);
1491 static int lbs_rtap_stop(struct net_device *dev)
1493 lbs_deb_enter(LBS_DEB_MAIN);
1494 lbs_deb_leave(LBS_DEB_MAIN);
1498 static int lbs_rtap_hard_start_xmit(struct sk_buff *skb, struct net_device *dev)
1500 netif_stop_queue(dev);
1501 return NETDEV_TX_BUSY;
1504 static struct net_device_stats *lbs_rtap_get_stats(struct net_device *dev)
1506 struct lbs_private *priv = dev->priv;
1507 lbs_deb_enter(LBS_DEB_NET);
1508 return &priv->stats;
1512 static void lbs_remove_rtap(struct lbs_private *priv)
1514 lbs_deb_enter(LBS_DEB_MAIN);
1515 if (priv->rtap_net_dev == NULL)
1517 unregister_netdev(priv->rtap_net_dev);
1518 free_netdev(priv->rtap_net_dev);
1519 priv->rtap_net_dev = NULL;
1520 lbs_deb_leave(LBS_DEB_MAIN);
1523 static int lbs_add_rtap(struct lbs_private *priv)
1526 struct net_device *rtap_dev;
1528 lbs_deb_enter(LBS_DEB_MAIN);
1529 if (priv->rtap_net_dev) {
1534 rtap_dev = alloc_netdev(0, "rtap%d", ether_setup);
1535 if (rtap_dev == NULL) {
1540 memcpy(rtap_dev->dev_addr, priv->current_addr, ETH_ALEN);
1541 rtap_dev->type = ARPHRD_IEEE80211_RADIOTAP;
1542 rtap_dev->open = lbs_rtap_open;
1543 rtap_dev->stop = lbs_rtap_stop;
1544 rtap_dev->get_stats = lbs_rtap_get_stats;
1545 rtap_dev->hard_start_xmit = lbs_rtap_hard_start_xmit;
1546 rtap_dev->set_multicast_list = lbs_set_multicast_list;
1547 rtap_dev->priv = priv;
1549 ret = register_netdev(rtap_dev);
1551 free_netdev(rtap_dev);
1554 priv->rtap_net_dev = rtap_dev;
1557 lbs_deb_leave_args(LBS_DEB_MAIN, "ret %d", ret);
1562 module_init(lbs_init_module);
1563 module_exit(lbs_exit_module);
1565 MODULE_DESCRIPTION("Libertas WLAN Driver Library");
1566 MODULE_AUTHOR("Marvell International Ltd.");
1567 MODULE_LICENSE("GPL");