1 /******************************************************************************
3 * Copyright(c) 2003 - 2009 Intel Corporation. All rights reserved.
5 * Portions of this file are derived from the ipw3945 project, as well
6 * as portions of the ieee80211 subsystem header files.
8 * This program is free software; you can redistribute it and/or modify it
9 * under the terms of version 2 of the GNU General Public License as
10 * published by the Free Software Foundation.
12 * This program is distributed in the hope that it will be useful, but WITHOUT
13 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
14 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
17 * You should have received a copy of the GNU General Public License along with
18 * this program; if not, write to the Free Software Foundation, Inc.,
19 * 51 Franklin Street, Fifth Floor, Boston, MA 02110, USA
21 * The full GNU General Public License is included in this distribution in the
22 * file called LICENSE.
24 * Contact Information:
25 * Intel Linux Wireless <ilw@linux.intel.com>
26 * Intel Corporation, 5200 N.E. Elam Young Parkway, Hillsboro, OR 97124-6497
28 *****************************************************************************/
30 #include <linux/kernel.h>
31 #include <linux/module.h>
32 #include <linux/init.h>
33 #include <linux/pci.h>
34 #include <linux/dma-mapping.h>
35 #include <linux/delay.h>
36 #include <linux/skbuff.h>
37 #include <linux/netdevice.h>
38 #include <linux/wireless.h>
39 #include <linux/firmware.h>
40 #include <linux/etherdevice.h>
41 #include <linux/if_arp.h>
43 #include <net/ieee80211_radiotap.h>
44 #include <net/lib80211.h>
45 #include <net/mac80211.h>
47 #include <asm/div64.h>
49 #define DRV_NAME "iwl3945"
52 #include "iwl-3945-fh.h"
53 #include "iwl-commands.h"
55 #include "iwl-helpers.h"
60 * module name, copyright, version, etc.
63 #define DRV_DESCRIPTION \
64 "Intel(R) PRO/Wireless 3945ABG/BG Network Connection driver for Linux"
66 #ifdef CONFIG_IWL3945_DEBUG
72 #ifdef CONFIG_IWL3945_SPECTRUM_MEASUREMENT
78 #define IWL39_VERSION "1.2.26k" VD VS
79 #define DRV_COPYRIGHT "Copyright(c) 2003-2009 Intel Corporation"
80 #define DRV_AUTHOR "<ilw@linux.intel.com>"
81 #define DRV_VERSION IWL39_VERSION
84 MODULE_DESCRIPTION(DRV_DESCRIPTION);
85 MODULE_VERSION(DRV_VERSION);
86 MODULE_AUTHOR(DRV_COPYRIGHT " " DRV_AUTHOR);
87 MODULE_LICENSE("GPL");
89 /* module parameters */
90 struct iwl_mod_params iwl3945_mod_params = {
91 .num_of_queues = IWL39_MAX_NUM_QUEUES,
93 /* the rest are 0 by default */
96 /*************** STATION TABLE MANAGEMENT ****
97 * mac80211 should be examined to determine if sta_info is duplicating
98 * the functionality provided here
101 /**************************************************************/
102 #if 0 /* temporary disable till we add real remove station */
104 * iwl3945_remove_station - Remove driver's knowledge of station.
106 * NOTE: This does not remove station from device's station table.
108 static u8 iwl3945_remove_station(struct iwl_priv *priv, const u8 *addr, int is_ap)
110 int index = IWL_INVALID_STATION;
114 spin_lock_irqsave(&priv->sta_lock, flags);
118 else if (is_broadcast_ether_addr(addr))
119 index = priv->hw_params.bcast_sta_id;
121 for (i = IWL_STA_ID; i < priv->hw_params.max_stations; i++)
122 if (priv->stations_39[i].used &&
123 !compare_ether_addr(priv->stations_39[i].sta.sta.addr,
129 if (unlikely(index == IWL_INVALID_STATION))
132 if (priv->stations_39[index].used) {
133 priv->stations_39[index].used = 0;
134 priv->num_stations--;
137 BUG_ON(priv->num_stations < 0);
140 spin_unlock_irqrestore(&priv->sta_lock, flags);
146 * iwl3945_clear_stations_table - Clear the driver's station table
148 * NOTE: This does not clear or otherwise alter the device's station table.
150 static void iwl3945_clear_stations_table(struct iwl_priv *priv)
154 spin_lock_irqsave(&priv->sta_lock, flags);
156 priv->num_stations = 0;
157 memset(priv->stations_39, 0, sizeof(priv->stations_39));
159 spin_unlock_irqrestore(&priv->sta_lock, flags);
163 * iwl3945_add_station - Add station to station tables in driver and device
165 u8 iwl3945_add_station(struct iwl_priv *priv, const u8 *addr, int is_ap, u8 flags)
168 int index = IWL_INVALID_STATION;
169 struct iwl3945_station_entry *station;
170 unsigned long flags_spin;
173 spin_lock_irqsave(&priv->sta_lock, flags_spin);
176 else if (is_broadcast_ether_addr(addr))
177 index = priv->hw_params.bcast_sta_id;
179 for (i = IWL_STA_ID; i < priv->hw_params.max_stations; i++) {
180 if (!compare_ether_addr(priv->stations_39[i].sta.sta.addr,
186 if (!priv->stations_39[i].used &&
187 index == IWL_INVALID_STATION)
191 /* These two conditions has the same outcome but keep them separate
192 since they have different meaning */
193 if (unlikely(index == IWL_INVALID_STATION)) {
194 spin_unlock_irqrestore(&priv->sta_lock, flags_spin);
198 if (priv->stations_39[index].used &&
199 !compare_ether_addr(priv->stations_39[index].sta.sta.addr, addr)) {
200 spin_unlock_irqrestore(&priv->sta_lock, flags_spin);
204 IWL_DEBUG_ASSOC("Add STA ID %d: %pM\n", index, addr);
205 station = &priv->stations_39[index];
207 priv->num_stations++;
209 /* Set up the REPLY_ADD_STA command to send to device */
210 memset(&station->sta, 0, sizeof(struct iwl3945_addsta_cmd));
211 memcpy(station->sta.sta.addr, addr, ETH_ALEN);
212 station->sta.mode = 0;
213 station->sta.sta.sta_id = index;
214 station->sta.station_flags = 0;
216 if (priv->band == IEEE80211_BAND_5GHZ)
217 rate = IWL_RATE_6M_PLCP;
219 rate = IWL_RATE_1M_PLCP;
221 /* Turn on both antennas for the station... */
222 station->sta.rate_n_flags =
223 iwl3945_hw_set_rate_n_flags(rate, RATE_MCS_ANT_AB_MSK);
225 spin_unlock_irqrestore(&priv->sta_lock, flags_spin);
227 /* Add station to device's station table */
228 iwl3945_send_add_station(priv, &station->sta, flags);
233 int iwl3945_send_statistics_request(struct iwl_priv *priv)
237 struct iwl_host_cmd cmd = {
238 .id = REPLY_STATISTICS_CMD,
243 return iwl_send_cmd_sync(priv, &cmd);
247 * iwl3945_set_rxon_channel - Set the phymode and channel values in staging RXON
248 * @band: 2.4 or 5 GHz band
249 * @channel: Any channel valid for the requested band
251 * In addition to setting the staging RXON, priv->band is also set.
253 * NOTE: Does not commit to the hardware; it sets appropriate bit fields
254 * in the staging RXON flag structure based on the band
256 static int iwl3945_set_rxon_channel(struct iwl_priv *priv,
257 enum ieee80211_band band,
260 if (!iwl_get_channel_info(priv, band, channel)) {
261 IWL_DEBUG_INFO("Could not set channel to %d [%d]\n",
266 if ((le16_to_cpu(priv->staging39_rxon.channel) == channel) &&
267 (priv->band == band))
270 priv->staging39_rxon.channel = cpu_to_le16(channel);
271 if (band == IEEE80211_BAND_5GHZ)
272 priv->staging39_rxon.flags &= ~RXON_FLG_BAND_24G_MSK;
274 priv->staging39_rxon.flags |= RXON_FLG_BAND_24G_MSK;
278 IWL_DEBUG_INFO("Staging channel set to %d [%d]\n", channel, band);
284 * iwl3945_check_rxon_cmd - validate RXON structure is valid
286 * NOTE: This is really only useful during development and can eventually
287 * be #ifdef'd out once the driver is stable and folks aren't actively
290 static int iwl3945_check_rxon_cmd(struct iwl_priv *priv)
294 struct iwl3945_rxon_cmd *rxon = &priv->staging39_rxon;
296 if (rxon->flags & RXON_FLG_BAND_24G_MSK) {
297 error |= le32_to_cpu(rxon->flags &
298 (RXON_FLG_TGJ_NARROW_BAND_MSK |
299 RXON_FLG_RADAR_DETECT_MSK));
301 IWL_WARN(priv, "check 24G fields %d | %d\n",
304 error |= (rxon->flags & RXON_FLG_SHORT_SLOT_MSK) ?
305 0 : le32_to_cpu(RXON_FLG_SHORT_SLOT_MSK);
307 IWL_WARN(priv, "check 52 fields %d | %d\n",
309 error |= le32_to_cpu(rxon->flags & RXON_FLG_CCK_MSK);
311 IWL_WARN(priv, "check 52 CCK %d | %d\n",
314 error |= (rxon->node_addr[0] | rxon->bssid_addr[0]) & 0x1;
316 IWL_WARN(priv, "check mac addr %d | %d\n", counter++, error);
318 /* make sure basic rates 6Mbps and 1Mbps are supported */
319 error |= (((rxon->ofdm_basic_rates & IWL_RATE_6M_MASK) == 0) &&
320 ((rxon->cck_basic_rates & IWL_RATE_1M_MASK) == 0));
322 IWL_WARN(priv, "check basic rate %d | %d\n", counter++, error);
324 error |= (le16_to_cpu(rxon->assoc_id) > 2007);
326 IWL_WARN(priv, "check assoc id %d | %d\n", counter++, error);
328 error |= ((rxon->flags & (RXON_FLG_CCK_MSK | RXON_FLG_SHORT_SLOT_MSK))
329 == (RXON_FLG_CCK_MSK | RXON_FLG_SHORT_SLOT_MSK));
331 IWL_WARN(priv, "check CCK and short slot %d | %d\n",
334 error |= ((rxon->flags & (RXON_FLG_CCK_MSK | RXON_FLG_AUTO_DETECT_MSK))
335 == (RXON_FLG_CCK_MSK | RXON_FLG_AUTO_DETECT_MSK));
337 IWL_WARN(priv, "check CCK & auto detect %d | %d\n",
340 error |= ((rxon->flags & (RXON_FLG_AUTO_DETECT_MSK |
341 RXON_FLG_TGG_PROTECT_MSK)) == RXON_FLG_TGG_PROTECT_MSK);
343 IWL_WARN(priv, "check TGG and auto detect %d | %d\n",
346 if ((rxon->flags & RXON_FLG_DIS_DIV_MSK))
347 error |= ((rxon->flags & (RXON_FLG_ANT_B_MSK |
348 RXON_FLG_ANT_A_MSK)) == 0);
350 IWL_WARN(priv, "check antenna %d %d\n", counter++, error);
353 IWL_WARN(priv, "Tuning to channel %d\n",
354 le16_to_cpu(rxon->channel));
357 IWL_ERR(priv, "Not a valid rxon_assoc_cmd field values\n");
364 * iwl3945_full_rxon_required - check if full RXON (vs RXON_ASSOC) cmd is needed
365 * @priv: staging_rxon is compared to active_rxon
367 * If the RXON structure is changing enough to require a new tune,
368 * or is clearing the RXON_FILTER_ASSOC_MSK, then return 1 to indicate that
369 * a new tune (full RXON command, rather than RXON_ASSOC cmd) is required.
371 static int iwl3945_full_rxon_required(struct iwl_priv *priv)
374 /* These items are only settable from the full RXON command */
375 if (!(iwl3945_is_associated(priv)) ||
376 compare_ether_addr(priv->staging39_rxon.bssid_addr,
377 priv->active39_rxon.bssid_addr) ||
378 compare_ether_addr(priv->staging39_rxon.node_addr,
379 priv->active39_rxon.node_addr) ||
380 compare_ether_addr(priv->staging39_rxon.wlap_bssid_addr,
381 priv->active39_rxon.wlap_bssid_addr) ||
382 (priv->staging39_rxon.dev_type != priv->active39_rxon.dev_type) ||
383 (priv->staging39_rxon.channel != priv->active39_rxon.channel) ||
384 (priv->staging39_rxon.air_propagation !=
385 priv->active39_rxon.air_propagation) ||
386 (priv->staging39_rxon.assoc_id != priv->active39_rxon.assoc_id))
389 /* flags, filter_flags, ofdm_basic_rates, and cck_basic_rates can
390 * be updated with the RXON_ASSOC command -- however only some
391 * flag transitions are allowed using RXON_ASSOC */
393 /* Check if we are not switching bands */
394 if ((priv->staging39_rxon.flags & RXON_FLG_BAND_24G_MSK) !=
395 (priv->active39_rxon.flags & RXON_FLG_BAND_24G_MSK))
398 /* Check if we are switching association toggle */
399 if ((priv->staging39_rxon.filter_flags & RXON_FILTER_ASSOC_MSK) !=
400 (priv->active39_rxon.filter_flags & RXON_FILTER_ASSOC_MSK))
406 static int iwl3945_send_rxon_assoc(struct iwl_priv *priv)
409 struct iwl_rx_packet *res = NULL;
410 struct iwl3945_rxon_assoc_cmd rxon_assoc;
411 struct iwl_host_cmd cmd = {
412 .id = REPLY_RXON_ASSOC,
413 .len = sizeof(rxon_assoc),
414 .meta.flags = CMD_WANT_SKB,
417 const struct iwl3945_rxon_cmd *rxon1 = &priv->staging39_rxon;
418 const struct iwl3945_rxon_cmd *rxon2 = &priv->active39_rxon;
420 if ((rxon1->flags == rxon2->flags) &&
421 (rxon1->filter_flags == rxon2->filter_flags) &&
422 (rxon1->cck_basic_rates == rxon2->cck_basic_rates) &&
423 (rxon1->ofdm_basic_rates == rxon2->ofdm_basic_rates)) {
424 IWL_DEBUG_INFO("Using current RXON_ASSOC. Not resending.\n");
428 rxon_assoc.flags = priv->staging39_rxon.flags;
429 rxon_assoc.filter_flags = priv->staging39_rxon.filter_flags;
430 rxon_assoc.ofdm_basic_rates = priv->staging39_rxon.ofdm_basic_rates;
431 rxon_assoc.cck_basic_rates = priv->staging39_rxon.cck_basic_rates;
432 rxon_assoc.reserved = 0;
434 rc = iwl_send_cmd_sync(priv, &cmd);
438 res = (struct iwl_rx_packet *)cmd.meta.u.skb->data;
439 if (res->hdr.flags & IWL_CMD_FAILED_MSK) {
440 IWL_ERR(priv, "Bad return from REPLY_RXON_ASSOC command\n");
444 priv->alloc_rxb_skb--;
445 dev_kfree_skb_any(cmd.meta.u.skb);
451 * iwl3945_commit_rxon - commit staging_rxon to hardware
453 * The RXON command in staging_rxon is committed to the hardware and
454 * the active_rxon structure is updated with the new data. This
455 * function correctly transitions out of the RXON_ASSOC_MSK state if
456 * a HW tune is required based on the RXON structure changes.
458 static int iwl3945_commit_rxon(struct iwl_priv *priv)
460 /* cast away the const for active_rxon in this function */
461 struct iwl3945_rxon_cmd *active_rxon = (void *)&priv->active39_rxon;
464 if (!iwl_is_alive(priv))
467 /* always get timestamp with Rx frame */
468 priv->staging39_rxon.flags |= RXON_FLG_TSF2HOST_MSK;
471 priv->staging39_rxon.flags &=
472 ~(RXON_FLG_DIS_DIV_MSK | RXON_FLG_ANT_SEL_MSK);
473 priv->staging39_rxon.flags |= iwl3945_get_antenna_flags(priv);
475 rc = iwl3945_check_rxon_cmd(priv);
477 IWL_ERR(priv, "Invalid RXON configuration. Not committing.\n");
481 /* If we don't need to send a full RXON, we can use
482 * iwl3945_rxon_assoc_cmd which is used to reconfigure filter
483 * and other flags for the current radio configuration. */
484 if (!iwl3945_full_rxon_required(priv)) {
485 rc = iwl3945_send_rxon_assoc(priv);
487 IWL_ERR(priv, "Error setting RXON_ASSOC "
488 "configuration (%d).\n", rc);
492 memcpy(active_rxon, &priv->staging39_rxon, sizeof(*active_rxon));
497 /* If we are currently associated and the new config requires
498 * an RXON_ASSOC and the new config wants the associated mask enabled,
499 * we must clear the associated from the active configuration
500 * before we apply the new config */
501 if (iwl3945_is_associated(priv) &&
502 (priv->staging39_rxon.filter_flags & RXON_FILTER_ASSOC_MSK)) {
503 IWL_DEBUG_INFO("Toggling associated bit on current RXON\n");
504 active_rxon->filter_flags &= ~RXON_FILTER_ASSOC_MSK;
506 rc = iwl_send_cmd_pdu(priv, REPLY_RXON,
507 sizeof(struct iwl3945_rxon_cmd),
508 &priv->active39_rxon);
510 /* If the mask clearing failed then we set
511 * active_rxon back to what it was previously */
513 active_rxon->filter_flags |= RXON_FILTER_ASSOC_MSK;
514 IWL_ERR(priv, "Error clearing ASSOC_MSK on current "
515 "configuration (%d).\n", rc);
520 IWL_DEBUG_INFO("Sending RXON\n"
521 "* with%s RXON_FILTER_ASSOC_MSK\n"
524 ((priv->staging39_rxon.filter_flags &
525 RXON_FILTER_ASSOC_MSK) ? "" : "out"),
526 le16_to_cpu(priv->staging39_rxon.channel),
527 priv->staging_rxon.bssid_addr);
529 /* Apply the new configuration */
530 rc = iwl_send_cmd_pdu(priv, REPLY_RXON,
531 sizeof(struct iwl3945_rxon_cmd), &priv->staging39_rxon);
533 IWL_ERR(priv, "Error setting new configuration (%d).\n", rc);
537 memcpy(active_rxon, &priv->staging39_rxon, sizeof(*active_rxon));
539 iwl3945_clear_stations_table(priv);
541 /* If we issue a new RXON command which required a tune then we must
542 * send a new TXPOWER command or we won't be able to Tx any frames */
543 rc = priv->cfg->ops->lib->send_tx_power(priv);
545 IWL_ERR(priv, "Error setting Tx power (%d).\n", rc);
549 /* Add the broadcast address so we can send broadcast frames */
550 if (iwl3945_add_station(priv, iwl_bcast_addr, 0, 0) ==
551 IWL_INVALID_STATION) {
552 IWL_ERR(priv, "Error adding BROADCAST address for transmit.\n");
556 /* If we have set the ASSOC_MSK and we are in BSS mode then
557 * add the IWL_AP_ID to the station rate table */
558 if (iwl3945_is_associated(priv) &&
559 (priv->iw_mode == NL80211_IFTYPE_STATION))
560 if (iwl3945_add_station(priv, priv->active39_rxon.bssid_addr, 1, 0)
561 == IWL_INVALID_STATION) {
562 IWL_ERR(priv, "Error adding AP address for transmit\n");
566 /* Init the hardware's rate fallback order based on the band */
567 rc = iwl3945_init_hw_rate_table(priv);
569 IWL_ERR(priv, "Error setting HW rate table: %02X\n", rc);
576 static int iwl3945_send_bt_config(struct iwl_priv *priv)
578 struct iwl_bt_cmd bt_cmd = {
586 return iwl_send_cmd_pdu(priv, REPLY_BT_CONFIG,
587 sizeof(bt_cmd), &bt_cmd);
590 static int iwl3945_add_sta_sync_callback(struct iwl_priv *priv,
591 struct iwl_cmd *cmd, struct sk_buff *skb)
593 struct iwl_rx_packet *res = NULL;
596 IWL_ERR(priv, "Error: Response NULL in REPLY_ADD_STA.\n");
600 res = (struct iwl_rx_packet *)skb->data;
601 if (res->hdr.flags & IWL_CMD_FAILED_MSK) {
602 IWL_ERR(priv, "Bad return from REPLY_ADD_STA (0x%08X)\n",
607 switch (res->u.add_sta.status) {
608 case ADD_STA_SUCCESS_MSK:
614 /* We didn't cache the SKB; let the caller free it */
618 int iwl3945_send_add_station(struct iwl_priv *priv,
619 struct iwl3945_addsta_cmd *sta, u8 flags)
621 struct iwl_rx_packet *res = NULL;
623 struct iwl_host_cmd cmd = {
625 .len = sizeof(struct iwl3945_addsta_cmd),
630 if (flags & CMD_ASYNC)
631 cmd.meta.u.callback = iwl3945_add_sta_sync_callback;
633 cmd.meta.flags |= CMD_WANT_SKB;
635 rc = iwl_send_cmd(priv, &cmd);
637 if (rc || (flags & CMD_ASYNC))
640 res = (struct iwl_rx_packet *)cmd.meta.u.skb->data;
641 if (res->hdr.flags & IWL_CMD_FAILED_MSK) {
642 IWL_ERR(priv, "Bad return from REPLY_ADD_STA (0x%08X)\n",
648 switch (res->u.add_sta.status) {
649 case ADD_STA_SUCCESS_MSK:
650 IWL_DEBUG_INFO("REPLY_ADD_STA PASSED\n");
654 IWL_WARN(priv, "REPLY_ADD_STA failed\n");
659 priv->alloc_rxb_skb--;
660 dev_kfree_skb_any(cmd.meta.u.skb);
665 static int iwl3945_update_sta_key_info(struct iwl_priv *priv,
666 struct ieee80211_key_conf *keyconf,
670 __le16 key_flags = 0;
672 switch (keyconf->alg) {
674 key_flags |= STA_KEY_FLG_CCMP;
675 key_flags |= cpu_to_le16(
676 keyconf->keyidx << STA_KEY_FLG_KEYID_POS);
677 key_flags &= ~STA_KEY_FLG_INVALID;
684 spin_lock_irqsave(&priv->sta_lock, flags);
685 priv->stations_39[sta_id].keyinfo.alg = keyconf->alg;
686 priv->stations_39[sta_id].keyinfo.keylen = keyconf->keylen;
687 memcpy(priv->stations_39[sta_id].keyinfo.key, keyconf->key,
690 memcpy(priv->stations_39[sta_id].sta.key.key, keyconf->key,
692 priv->stations_39[sta_id].sta.key.key_flags = key_flags;
693 priv->stations_39[sta_id].sta.sta.modify_mask = STA_MODIFY_KEY_MASK;
694 priv->stations_39[sta_id].sta.mode = STA_CONTROL_MODIFY_MSK;
696 spin_unlock_irqrestore(&priv->sta_lock, flags);
698 IWL_DEBUG_INFO("hwcrypto: modify ucode station key info\n");
699 iwl3945_send_add_station(priv, &priv->stations_39[sta_id].sta, 0);
703 static int iwl3945_clear_sta_key_info(struct iwl_priv *priv, u8 sta_id)
707 spin_lock_irqsave(&priv->sta_lock, flags);
708 memset(&priv->stations_39[sta_id].keyinfo, 0, sizeof(struct iwl3945_hw_key));
709 memset(&priv->stations_39[sta_id].sta.key, 0,
710 sizeof(struct iwl4965_keyinfo));
711 priv->stations_39[sta_id].sta.key.key_flags = STA_KEY_FLG_NO_ENC;
712 priv->stations_39[sta_id].sta.sta.modify_mask = STA_MODIFY_KEY_MASK;
713 priv->stations_39[sta_id].sta.mode = STA_CONTROL_MODIFY_MSK;
714 spin_unlock_irqrestore(&priv->sta_lock, flags);
716 IWL_DEBUG_INFO("hwcrypto: clear ucode station key info\n");
717 iwl3945_send_add_station(priv, &priv->stations_39[sta_id].sta, 0);
721 static void iwl3945_clear_free_frames(struct iwl_priv *priv)
723 struct list_head *element;
725 IWL_DEBUG_INFO("%d frames on pre-allocated heap on clear.\n",
728 while (!list_empty(&priv->free_frames)) {
729 element = priv->free_frames.next;
731 kfree(list_entry(element, struct iwl3945_frame, list));
732 priv->frames_count--;
735 if (priv->frames_count) {
736 IWL_WARN(priv, "%d frames still in use. Did we lose one?\n",
738 priv->frames_count = 0;
742 static struct iwl3945_frame *iwl3945_get_free_frame(struct iwl_priv *priv)
744 struct iwl3945_frame *frame;
745 struct list_head *element;
746 if (list_empty(&priv->free_frames)) {
747 frame = kzalloc(sizeof(*frame), GFP_KERNEL);
749 IWL_ERR(priv, "Could not allocate frame!\n");
753 priv->frames_count++;
757 element = priv->free_frames.next;
759 return list_entry(element, struct iwl3945_frame, list);
762 static void iwl3945_free_frame(struct iwl_priv *priv, struct iwl3945_frame *frame)
764 memset(frame, 0, sizeof(*frame));
765 list_add(&frame->list, &priv->free_frames);
768 unsigned int iwl3945_fill_beacon_frame(struct iwl_priv *priv,
769 struct ieee80211_hdr *hdr,
773 if (!iwl3945_is_associated(priv) || !priv->ibss_beacon ||
774 ((priv->iw_mode != NL80211_IFTYPE_ADHOC) &&
775 (priv->iw_mode != NL80211_IFTYPE_AP)))
778 if (priv->ibss_beacon->len > left)
781 memcpy(hdr, priv->ibss_beacon->data, priv->ibss_beacon->len);
783 return priv->ibss_beacon->len;
786 static u8 iwl3945_rate_get_lowest_plcp(struct iwl_priv *priv)
792 if (priv->staging39_rxon.flags & RXON_FLG_BAND_24G_MSK)
793 rate_mask = priv->active_rate_basic & IWL_CCK_RATES_MASK;
795 rate_mask = priv->active_rate_basic & IWL_OFDM_RATES_MASK;
797 for (i = IWL_RATE_1M_INDEX; i != IWL_RATE_INVALID;
798 i = iwl3945_rates[i].next_ieee) {
799 if (rate_mask & (1 << i))
800 return iwl3945_rates[i].plcp;
803 /* No valid rate was found. Assign the lowest one */
804 if (priv->staging39_rxon.flags & RXON_FLG_BAND_24G_MSK)
805 return IWL_RATE_1M_PLCP;
807 return IWL_RATE_6M_PLCP;
810 static int iwl3945_send_beacon_cmd(struct iwl_priv *priv)
812 struct iwl3945_frame *frame;
813 unsigned int frame_size;
817 frame = iwl3945_get_free_frame(priv);
820 IWL_ERR(priv, "Could not obtain free frame buffer for beacon "
825 rate = iwl3945_rate_get_lowest_plcp(priv);
827 frame_size = iwl3945_hw_get_beacon_cmd(priv, frame, rate);
829 rc = iwl_send_cmd_pdu(priv, REPLY_TX_BEACON, frame_size,
832 iwl3945_free_frame(priv, frame);
837 static void iwl3945_unset_hw_params(struct iwl_priv *priv)
839 if (priv->shared_virt)
840 pci_free_consistent(priv->pci_dev,
841 sizeof(struct iwl3945_shared),
849 static int iwl3945_send_qos_params_command(struct iwl_priv *priv,
850 struct iwl_qosparam_cmd *qos)
853 return iwl_send_cmd_pdu(priv, REPLY_QOS_PARAM,
854 sizeof(struct iwl_qosparam_cmd), qos);
857 static void iwl3945_activate_qos(struct iwl_priv *priv, u8 force)
861 if (test_bit(STATUS_EXIT_PENDING, &priv->status))
864 spin_lock_irqsave(&priv->lock, flags);
865 priv->qos_data.def_qos_parm.qos_flags = 0;
867 if (priv->qos_data.qos_cap.q_AP.queue_request &&
868 !priv->qos_data.qos_cap.q_AP.txop_request)
869 priv->qos_data.def_qos_parm.qos_flags |=
870 QOS_PARAM_FLG_TXOP_TYPE_MSK;
872 if (priv->qos_data.qos_active)
873 priv->qos_data.def_qos_parm.qos_flags |=
874 QOS_PARAM_FLG_UPDATE_EDCA_MSK;
876 spin_unlock_irqrestore(&priv->lock, flags);
878 if (force || iwl3945_is_associated(priv)) {
879 IWL_DEBUG_QOS("send QoS cmd with QoS active %d \n",
880 priv->qos_data.qos_active);
882 iwl3945_send_qos_params_command(priv,
883 &(priv->qos_data.def_qos_parm));
888 * Power management (not Tx power!) functions
890 #define MSEC_TO_USEC 1024
893 /* default power management (not Tx power) table values */
895 static struct iwl_power_vec_entry range_0[IWL_POWER_MAX] = {
896 {{NOSLP, SLP_TOUT(0), SLP_TOUT(0), SLP_VEC(0, 0, 0, 0, 0)}, 0},
897 {{SLP, SLP_TOUT(200), SLP_TOUT(500), SLP_VEC(1, 2, 3, 4, 4)}, 0},
898 {{SLP, SLP_TOUT(200), SLP_TOUT(300), SLP_VEC(2, 4, 6, 7, 7)}, 0},
899 {{SLP, SLP_TOUT(50), SLP_TOUT(100), SLP_VEC(2, 6, 9, 9, 10)}, 0},
900 {{SLP, SLP_TOUT(50), SLP_TOUT(25), SLP_VEC(2, 7, 9, 9, 10)}, 1},
901 {{SLP, SLP_TOUT(25), SLP_TOUT(25), SLP_VEC(4, 7, 10, 10, 10)}, 1}
905 static struct iwl_power_vec_entry range_1[IWL_POWER_MAX] = {
906 {{NOSLP, SLP_TOUT(0), SLP_TOUT(0), SLP_VEC(0, 0, 0, 0, 0)}, 0},
907 {{SLP, SLP_TOUT(200), SLP_TOUT(500), SLP_VEC(1, 2, 3, 4, 0xFF)}, 0},
908 {{SLP, SLP_TOUT(200), SLP_TOUT(300), SLP_VEC(2, 4, 6, 7, 0xFF)}, 0},
909 {{SLP, SLP_TOUT(50), SLP_TOUT(100), SLP_VEC(2, 6, 9, 9, 0xFF)}, 0},
910 {{SLP, SLP_TOUT(50), SLP_TOUT(25), SLP_VEC(2, 7, 9, 9, 0xFF)}, 0},
911 {{SLP, SLP_TOUT(25), SLP_TOUT(25), SLP_VEC(4, 7, 10, 10, 0xFF)}, 0}
914 int iwl3945_power_init_handle(struct iwl_priv *priv)
917 struct iwl_power_mgr *pow_data;
918 int size = sizeof(struct iwl_power_vec_entry) * IWL_POWER_MAX;
921 IWL_DEBUG_POWER("Initialize power \n");
923 pow_data = &priv->power_data;
925 memset(pow_data, 0, sizeof(*pow_data));
927 pow_data->dtim_period = 1;
929 memcpy(&pow_data->pwr_range_0[0], &range_0[0], size);
930 memcpy(&pow_data->pwr_range_1[0], &range_1[0], size);
932 rc = pci_read_config_word(priv->pci_dev, PCI_LINK_CTRL, &pci_pm);
936 struct iwl_powertable_cmd *cmd;
938 IWL_DEBUG_POWER("adjust power command flags\n");
940 for (i = 0; i < IWL_POWER_MAX; i++) {
941 cmd = &pow_data->pwr_range_0[i].cmd;
944 cmd->flags &= ~IWL_POWER_PCI_PM_MSK;
946 cmd->flags |= IWL_POWER_PCI_PM_MSK;
952 static int iwl3945_update_power_cmd(struct iwl_priv *priv,
953 struct iwl_powertable_cmd *cmd, u32 mode)
955 struct iwl_power_mgr *pow_data;
956 struct iwl_power_vec_entry *range;
962 if (mode > IWL_POWER_INDEX_5) {
963 IWL_DEBUG_POWER("Error invalid power mode \n");
966 pow_data = &priv->power_data;
968 if (pow_data->dtim_period < 10)
969 range = &pow_data->pwr_range_0[0];
971 range = &pow_data->pwr_range_1[1];
973 memcpy(cmd, &range[mode].cmd, sizeof(struct iwl3945_powertable_cmd));
980 skip = !!range[mode].no_dtim;
984 __le32 slp_itrvl = cmd->sleep_interval[IWL_POWER_VEC_SIZE - 1];
985 max_sleep = (le32_to_cpu(slp_itrvl) / period) * period;
986 cmd->flags |= IWL_POWER_SLEEP_OVER_DTIM_MSK;
989 cmd->flags &= ~IWL_POWER_SLEEP_OVER_DTIM_MSK;
992 for (i = 0; i < IWL_POWER_VEC_SIZE; i++)
993 if (le32_to_cpu(cmd->sleep_interval[i]) > max_sleep)
994 cmd->sleep_interval[i] = cpu_to_le32(max_sleep);
996 IWL_DEBUG_POWER("Flags value = 0x%08X\n", cmd->flags);
997 IWL_DEBUG_POWER("Tx timeout = %u\n", le32_to_cpu(cmd->tx_data_timeout));
998 IWL_DEBUG_POWER("Rx timeout = %u\n", le32_to_cpu(cmd->rx_data_timeout));
999 IWL_DEBUG_POWER("Sleep interval vector = { %d , %d , %d , %d , %d }\n",
1000 le32_to_cpu(cmd->sleep_interval[0]),
1001 le32_to_cpu(cmd->sleep_interval[1]),
1002 le32_to_cpu(cmd->sleep_interval[2]),
1003 le32_to_cpu(cmd->sleep_interval[3]),
1004 le32_to_cpu(cmd->sleep_interval[4]));
1009 static int iwl3945_send_power_mode(struct iwl_priv *priv, u32 mode)
1011 u32 uninitialized_var(final_mode);
1013 struct iwl_powertable_cmd cmd;
1015 /* If on battery, set to 3,
1016 * if plugged into AC power, set to CAM ("continuously aware mode"),
1017 * else user level */
1019 case IWL39_POWER_BATTERY:
1020 final_mode = IWL_POWER_INDEX_3;
1022 case IWL39_POWER_AC:
1023 final_mode = IWL_POWER_MODE_CAM;
1030 iwl3945_update_power_cmd(priv, &cmd, final_mode);
1032 /* FIXME use get_hcmd_size 3945 command is 4 bytes shorter */
1033 rc = iwl_send_cmd_pdu(priv, POWER_TABLE_CMD,
1034 sizeof(struct iwl3945_powertable_cmd), &cmd);
1036 if (final_mode == IWL_POWER_MODE_CAM)
1037 clear_bit(STATUS_POWER_PMI, &priv->status);
1039 set_bit(STATUS_POWER_PMI, &priv->status);
1044 #define MAX_UCODE_BEACON_INTERVAL 1024
1045 #define INTEL_CONN_LISTEN_INTERVAL __constant_cpu_to_le16(0xA)
1047 static __le16 iwl3945_adjust_beacon_interval(u16 beacon_val)
1050 u16 beacon_factor = 0;
1053 (beacon_val + MAX_UCODE_BEACON_INTERVAL)
1054 / MAX_UCODE_BEACON_INTERVAL;
1055 new_val = beacon_val / beacon_factor;
1057 return cpu_to_le16(new_val);
1060 static void iwl3945_setup_rxon_timing(struct iwl_priv *priv)
1062 u64 interval_tm_unit;
1064 unsigned long flags;
1065 struct ieee80211_conf *conf = NULL;
1068 conf = ieee80211_get_hw_conf(priv->hw);
1070 spin_lock_irqsave(&priv->lock, flags);
1071 priv->rxon_timing.timestamp = cpu_to_le64(priv->timestamp);
1072 priv->rxon_timing.listen_interval = INTEL_CONN_LISTEN_INTERVAL;
1074 tsf = priv->timestamp;
1076 beacon_int = priv->beacon_int;
1077 spin_unlock_irqrestore(&priv->lock, flags);
1079 if (priv->iw_mode == NL80211_IFTYPE_STATION) {
1080 if (beacon_int == 0) {
1081 priv->rxon_timing.beacon_interval = cpu_to_le16(100);
1082 priv->rxon_timing.beacon_init_val = cpu_to_le32(102400);
1084 priv->rxon_timing.beacon_interval =
1085 cpu_to_le16(beacon_int);
1086 priv->rxon_timing.beacon_interval =
1087 iwl3945_adjust_beacon_interval(
1088 le16_to_cpu(priv->rxon_timing.beacon_interval));
1091 priv->rxon_timing.atim_window = 0;
1093 priv->rxon_timing.beacon_interval =
1094 iwl3945_adjust_beacon_interval(conf->beacon_int);
1095 /* TODO: we need to get atim_window from upper stack
1096 * for now we set to 0 */
1097 priv->rxon_timing.atim_window = 0;
1101 (le16_to_cpu(priv->rxon_timing.beacon_interval) * 1024);
1102 result = do_div(tsf, interval_tm_unit);
1103 priv->rxon_timing.beacon_init_val =
1104 cpu_to_le32((u32) ((u64) interval_tm_unit - result));
1107 ("beacon interval %d beacon timer %d beacon tim %d\n",
1108 le16_to_cpu(priv->rxon_timing.beacon_interval),
1109 le32_to_cpu(priv->rxon_timing.beacon_init_val),
1110 le16_to_cpu(priv->rxon_timing.atim_window));
1113 static int iwl3945_scan_initiate(struct iwl_priv *priv)
1115 if (!iwl_is_ready_rf(priv)) {
1116 IWL_DEBUG_SCAN("Aborting scan due to not ready.\n");
1120 if (test_bit(STATUS_SCANNING, &priv->status)) {
1121 IWL_DEBUG_SCAN("Scan already in progress.\n");
1125 if (test_bit(STATUS_SCAN_ABORTING, &priv->status)) {
1126 IWL_DEBUG_SCAN("Scan request while abort pending. "
1131 IWL_DEBUG_INFO("Starting scan...\n");
1132 if (priv->cfg->sku & IWL_SKU_G)
1133 priv->scan_bands |= BIT(IEEE80211_BAND_2GHZ);
1134 if (priv->cfg->sku & IWL_SKU_A)
1135 priv->scan_bands |= BIT(IEEE80211_BAND_5GHZ);
1136 set_bit(STATUS_SCANNING, &priv->status);
1137 priv->scan_start = jiffies;
1138 priv->scan_pass_start = priv->scan_start;
1140 queue_work(priv->workqueue, &priv->request_scan);
1145 static int iwl3945_set_rxon_hwcrypto(struct iwl_priv *priv, int hw_decrypt)
1147 struct iwl3945_rxon_cmd *rxon = &priv->staging39_rxon;
1150 rxon->filter_flags &= ~RXON_FILTER_DIS_DECRYPT_MSK;
1152 rxon->filter_flags |= RXON_FILTER_DIS_DECRYPT_MSK;
1157 static void iwl3945_set_flags_for_phymode(struct iwl_priv *priv,
1158 enum ieee80211_band band)
1160 if (band == IEEE80211_BAND_5GHZ) {
1161 priv->staging39_rxon.flags &=
1162 ~(RXON_FLG_BAND_24G_MSK | RXON_FLG_AUTO_DETECT_MSK
1163 | RXON_FLG_CCK_MSK);
1164 priv->staging39_rxon.flags |= RXON_FLG_SHORT_SLOT_MSK;
1166 /* Copied from iwl3945_bg_post_associate() */
1167 if (priv->assoc_capability & WLAN_CAPABILITY_SHORT_SLOT_TIME)
1168 priv->staging39_rxon.flags |= RXON_FLG_SHORT_SLOT_MSK;
1170 priv->staging39_rxon.flags &= ~RXON_FLG_SHORT_SLOT_MSK;
1172 if (priv->iw_mode == NL80211_IFTYPE_ADHOC)
1173 priv->staging39_rxon.flags &= ~RXON_FLG_SHORT_SLOT_MSK;
1175 priv->staging39_rxon.flags |= RXON_FLG_BAND_24G_MSK;
1176 priv->staging39_rxon.flags |= RXON_FLG_AUTO_DETECT_MSK;
1177 priv->staging39_rxon.flags &= ~RXON_FLG_CCK_MSK;
1182 * initialize rxon structure with default values from eeprom
1184 static void iwl3945_connection_init_rx_config(struct iwl_priv *priv,
1187 const struct iwl_channel_info *ch_info;
1189 memset(&priv->staging39_rxon, 0, sizeof(priv->staging39_rxon));
1192 case NL80211_IFTYPE_AP:
1193 priv->staging39_rxon.dev_type = RXON_DEV_TYPE_AP;
1196 case NL80211_IFTYPE_STATION:
1197 priv->staging39_rxon.dev_type = RXON_DEV_TYPE_ESS;
1198 priv->staging39_rxon.filter_flags = RXON_FILTER_ACCEPT_GRP_MSK;
1201 case NL80211_IFTYPE_ADHOC:
1202 priv->staging39_rxon.dev_type = RXON_DEV_TYPE_IBSS;
1203 priv->staging39_rxon.flags = RXON_FLG_SHORT_PREAMBLE_MSK;
1204 priv->staging39_rxon.filter_flags = RXON_FILTER_BCON_AWARE_MSK |
1205 RXON_FILTER_ACCEPT_GRP_MSK;
1208 case NL80211_IFTYPE_MONITOR:
1209 priv->staging39_rxon.dev_type = RXON_DEV_TYPE_SNIFFER;
1210 priv->staging39_rxon.filter_flags = RXON_FILTER_PROMISC_MSK |
1211 RXON_FILTER_CTL2HOST_MSK | RXON_FILTER_ACCEPT_GRP_MSK;
1214 IWL_ERR(priv, "Unsupported interface type %d\n", mode);
1219 /* TODO: Figure out when short_preamble would be set and cache from
1221 if (!hw_to_local(priv->hw)->short_preamble)
1222 priv->staging39_rxon.flags &= ~RXON_FLG_SHORT_PREAMBLE_MSK;
1224 priv->staging39_rxon.flags |= RXON_FLG_SHORT_PREAMBLE_MSK;
1227 ch_info = iwl_get_channel_info(priv, priv->band,
1228 le16_to_cpu(priv->active39_rxon.channel));
1231 ch_info = &priv->channel_info[0];
1234 * in some case A channels are all non IBSS
1235 * in this case force B/G channel
1237 if ((mode == NL80211_IFTYPE_ADHOC) && !(is_channel_ibss(ch_info)))
1238 ch_info = &priv->channel_info[0];
1240 priv->staging39_rxon.channel = cpu_to_le16(ch_info->channel);
1241 if (is_channel_a_band(ch_info))
1242 priv->band = IEEE80211_BAND_5GHZ;
1244 priv->band = IEEE80211_BAND_2GHZ;
1246 iwl3945_set_flags_for_phymode(priv, priv->band);
1248 priv->staging39_rxon.ofdm_basic_rates =
1249 (IWL_OFDM_RATES_MASK >> IWL_FIRST_OFDM_RATE) & 0xFF;
1250 priv->staging39_rxon.cck_basic_rates =
1251 (IWL_CCK_RATES_MASK >> IWL_FIRST_CCK_RATE) & 0xF;
1254 static int iwl3945_set_mode(struct iwl_priv *priv, int mode)
1256 if (mode == NL80211_IFTYPE_ADHOC) {
1257 const struct iwl_channel_info *ch_info;
1259 ch_info = iwl_get_channel_info(priv,
1261 le16_to_cpu(priv->staging39_rxon.channel));
1263 if (!ch_info || !is_channel_ibss(ch_info)) {
1264 IWL_ERR(priv, "channel %d not IBSS channel\n",
1265 le16_to_cpu(priv->staging39_rxon.channel));
1270 iwl3945_connection_init_rx_config(priv, mode);
1271 memcpy(priv->staging39_rxon.node_addr, priv->mac_addr, ETH_ALEN);
1273 iwl3945_clear_stations_table(priv);
1275 /* don't commit rxon if rf-kill is on*/
1276 if (!iwl_is_ready_rf(priv))
1279 cancel_delayed_work(&priv->scan_check);
1280 if (iwl_scan_cancel_timeout(priv, 100)) {
1281 IWL_WARN(priv, "Aborted scan still in progress after 100ms\n");
1282 IWL_DEBUG_MAC80211("leaving - scan abort failed.\n");
1286 iwl3945_commit_rxon(priv);
1291 static void iwl3945_build_tx_cmd_hwcrypto(struct iwl_priv *priv,
1292 struct ieee80211_tx_info *info,
1293 struct iwl_cmd *cmd,
1294 struct sk_buff *skb_frag,
1297 struct iwl3945_tx_cmd *tx = (struct iwl3945_tx_cmd *)cmd->cmd.payload;
1298 struct iwl3945_hw_key *keyinfo =
1299 &priv->stations_39[info->control.hw_key->hw_key_idx].keyinfo;
1301 switch (keyinfo->alg) {
1303 tx->sec_ctl = TX_CMD_SEC_CCM;
1304 memcpy(tx->key, keyinfo->key, keyinfo->keylen);
1305 IWL_DEBUG_TX("tx_cmd with AES hwcrypto\n");
1310 tx->sec_ctl = TX_CMD_SEC_TKIP;
1313 memcpy(tx->tkip_mic.byte, skb_frag->tail - 8,
1316 memset(tx->tkip_mic.byte, 0, 8);
1321 tx->sec_ctl = TX_CMD_SEC_WEP |
1322 (info->control.hw_key->hw_key_idx & TX_CMD_SEC_MSK) << TX_CMD_SEC_SHIFT;
1324 if (keyinfo->keylen == 13)
1325 tx->sec_ctl |= TX_CMD_SEC_KEY128;
1327 memcpy(&tx->key[3], keyinfo->key, keyinfo->keylen);
1329 IWL_DEBUG_TX("Configuring packet for WEP encryption "
1330 "with key %d\n", info->control.hw_key->hw_key_idx);
1334 IWL_ERR(priv, "Unknown encode alg %d\n", keyinfo->alg);
1340 * handle build REPLY_TX command notification.
1342 static void iwl3945_build_tx_cmd_basic(struct iwl_priv *priv,
1343 struct iwl_cmd *cmd,
1344 struct ieee80211_tx_info *info,
1345 struct ieee80211_hdr *hdr, u8 std_id)
1347 struct iwl3945_tx_cmd *tx = (struct iwl3945_tx_cmd *)cmd->cmd.payload;
1348 __le32 tx_flags = tx->tx_flags;
1349 __le16 fc = hdr->frame_control;
1350 u8 rc_flags = info->control.rates[0].flags;
1352 tx->stop_time.life_time = TX_CMD_LIFE_TIME_INFINITE;
1353 if (!(info->flags & IEEE80211_TX_CTL_NO_ACK)) {
1354 tx_flags |= TX_CMD_FLG_ACK_MSK;
1355 if (ieee80211_is_mgmt(fc))
1356 tx_flags |= TX_CMD_FLG_SEQ_CTL_MSK;
1357 if (ieee80211_is_probe_resp(fc) &&
1358 !(le16_to_cpu(hdr->seq_ctrl) & 0xf))
1359 tx_flags |= TX_CMD_FLG_TSF_MSK;
1361 tx_flags &= (~TX_CMD_FLG_ACK_MSK);
1362 tx_flags |= TX_CMD_FLG_SEQ_CTL_MSK;
1365 tx->sta_id = std_id;
1366 if (ieee80211_has_morefrags(fc))
1367 tx_flags |= TX_CMD_FLG_MORE_FRAG_MSK;
1369 if (ieee80211_is_data_qos(fc)) {
1370 u8 *qc = ieee80211_get_qos_ctl(hdr);
1371 tx->tid_tspec = qc[0] & 0xf;
1372 tx_flags &= ~TX_CMD_FLG_SEQ_CTL_MSK;
1374 tx_flags |= TX_CMD_FLG_SEQ_CTL_MSK;
1377 if (rc_flags & IEEE80211_TX_RC_USE_RTS_CTS) {
1378 tx_flags |= TX_CMD_FLG_RTS_MSK;
1379 tx_flags &= ~TX_CMD_FLG_CTS_MSK;
1380 } else if (rc_flags & IEEE80211_TX_RC_USE_CTS_PROTECT) {
1381 tx_flags &= ~TX_CMD_FLG_RTS_MSK;
1382 tx_flags |= TX_CMD_FLG_CTS_MSK;
1385 if ((tx_flags & TX_CMD_FLG_RTS_MSK) || (tx_flags & TX_CMD_FLG_CTS_MSK))
1386 tx_flags |= TX_CMD_FLG_FULL_TXOP_PROT_MSK;
1388 tx_flags &= ~(TX_CMD_FLG_ANT_SEL_MSK);
1389 if (ieee80211_is_mgmt(fc)) {
1390 if (ieee80211_is_assoc_req(fc) || ieee80211_is_reassoc_req(fc))
1391 tx->timeout.pm_frame_timeout = cpu_to_le16(3);
1393 tx->timeout.pm_frame_timeout = cpu_to_le16(2);
1395 tx->timeout.pm_frame_timeout = 0;
1396 #ifdef CONFIG_IWL3945_LEDS
1397 priv->rxtxpackets += le16_to_cpu(cmd->cmd.tx.len);
1401 tx->driver_txop = 0;
1402 tx->tx_flags = tx_flags;
1403 tx->next_frame_len = 0;
1407 * iwl3945_get_sta_id - Find station's index within station table
1409 static int iwl3945_get_sta_id(struct iwl_priv *priv, struct ieee80211_hdr *hdr)
1412 u16 fc = le16_to_cpu(hdr->frame_control);
1414 /* If this frame is broadcast or management, use broadcast station id */
1415 if (((fc & IEEE80211_FCTL_FTYPE) != IEEE80211_FTYPE_DATA) ||
1416 is_multicast_ether_addr(hdr->addr1))
1417 return priv->hw_params.bcast_sta_id;
1419 switch (priv->iw_mode) {
1421 /* If we are a client station in a BSS network, use the special
1422 * AP station entry (that's the only station we communicate with) */
1423 case NL80211_IFTYPE_STATION:
1426 /* If we are an AP, then find the station, or use BCAST */
1427 case NL80211_IFTYPE_AP:
1428 sta_id = iwl3945_hw_find_station(priv, hdr->addr1);
1429 if (sta_id != IWL_INVALID_STATION)
1431 return priv->hw_params.bcast_sta_id;
1433 /* If this frame is going out to an IBSS network, find the station,
1434 * or create a new station table entry */
1435 case NL80211_IFTYPE_ADHOC: {
1436 /* Create new station table entry */
1437 sta_id = iwl3945_hw_find_station(priv, hdr->addr1);
1438 if (sta_id != IWL_INVALID_STATION)
1441 sta_id = iwl3945_add_station(priv, hdr->addr1, 0, CMD_ASYNC);
1443 if (sta_id != IWL_INVALID_STATION)
1446 IWL_DEBUG_DROP("Station %pM not in station map. "
1447 "Defaulting to broadcast...\n",
1449 iwl_print_hex_dump(priv, IWL_DL_DROP, (u8 *) hdr, sizeof(*hdr));
1450 return priv->hw_params.bcast_sta_id;
1452 /* If we are in monitor mode, use BCAST. This is required for
1453 * packet injection. */
1454 case NL80211_IFTYPE_MONITOR:
1455 return priv->hw_params.bcast_sta_id;
1458 IWL_WARN(priv, "Unknown mode of operation: %d\n",
1460 return priv->hw_params.bcast_sta_id;
1465 * start REPLY_TX command process
1467 static int iwl3945_tx_skb(struct iwl_priv *priv, struct sk_buff *skb)
1469 struct ieee80211_hdr *hdr = (struct ieee80211_hdr *)skb->data;
1470 struct ieee80211_tx_info *info = IEEE80211_SKB_CB(skb);
1471 struct iwl3945_tx_cmd *tx;
1472 struct iwl_tx_queue *txq = NULL;
1473 struct iwl_queue *q = NULL;
1474 struct iwl_cmd *out_cmd = NULL;
1475 dma_addr_t phys_addr;
1476 dma_addr_t txcmd_phys;
1477 int txq_id = skb_get_queue_mapping(skb);
1478 u16 len, idx, len_org, hdr_len;
1485 u8 wait_write_ptr = 0;
1487 unsigned long flags;
1490 spin_lock_irqsave(&priv->lock, flags);
1491 if (iwl_is_rfkill(priv)) {
1492 IWL_DEBUG_DROP("Dropping - RF KILL\n");
1496 if ((ieee80211_get_tx_rate(priv->hw, info)->hw_value & 0xFF) == IWL_INVALID_RATE) {
1497 IWL_ERR(priv, "ERROR: No TX rate available.\n");
1501 unicast = !is_multicast_ether_addr(hdr->addr1);
1504 fc = hdr->frame_control;
1506 #ifdef CONFIG_IWL3945_DEBUG
1507 if (ieee80211_is_auth(fc))
1508 IWL_DEBUG_TX("Sending AUTH frame\n");
1509 else if (ieee80211_is_assoc_req(fc))
1510 IWL_DEBUG_TX("Sending ASSOC frame\n");
1511 else if (ieee80211_is_reassoc_req(fc))
1512 IWL_DEBUG_TX("Sending REASSOC frame\n");
1515 /* drop all data frame if we are not associated */
1516 if (ieee80211_is_data(fc) &&
1517 (priv->iw_mode != NL80211_IFTYPE_MONITOR) && /* packet injection */
1518 (!iwl3945_is_associated(priv) ||
1519 ((priv->iw_mode == NL80211_IFTYPE_STATION) && !priv->assoc_id))) {
1520 IWL_DEBUG_DROP("Dropping - !iwl3945_is_associated\n");
1524 spin_unlock_irqrestore(&priv->lock, flags);
1526 hdr_len = ieee80211_hdrlen(fc);
1528 /* Find (or create) index into station table for destination station */
1529 sta_id = iwl3945_get_sta_id(priv, hdr);
1530 if (sta_id == IWL_INVALID_STATION) {
1531 IWL_DEBUG_DROP("Dropping - INVALID STATION: %pM\n",
1536 IWL_DEBUG_RATE("station Id %d\n", sta_id);
1538 if (ieee80211_is_data_qos(fc)) {
1539 qc = ieee80211_get_qos_ctl(hdr);
1540 tid = qc[0] & IEEE80211_QOS_CTL_TID_MASK;
1541 seq_number = priv->stations_39[sta_id].tid[tid].seq_number &
1543 hdr->seq_ctrl = cpu_to_le16(seq_number) |
1545 __constant_cpu_to_le16(IEEE80211_SCTL_FRAG));
1549 /* Descriptor for chosen Tx queue */
1550 txq = &priv->txq[txq_id];
1553 spin_lock_irqsave(&priv->lock, flags);
1555 idx = get_cmd_index(q, q->write_ptr, 0);
1557 /* Set up driver data for this TFD */
1558 memset(&(txq->txb[q->write_ptr]), 0, sizeof(struct iwl_tx_info));
1559 txq->txb[q->write_ptr].skb[0] = skb;
1561 /* Init first empty entry in queue's array of Tx/cmd buffers */
1562 out_cmd = txq->cmd[idx];
1563 tx = (struct iwl3945_tx_cmd *)out_cmd->cmd.payload;
1564 memset(&out_cmd->hdr, 0, sizeof(out_cmd->hdr));
1565 memset(tx, 0, sizeof(*tx));
1568 * Set up the Tx-command (not MAC!) header.
1569 * Store the chosen Tx queue and TFD index within the sequence field;
1570 * after Tx, uCode's Tx response will return this value so driver can
1571 * locate the frame within the tx queue and do post-tx processing.
1573 out_cmd->hdr.cmd = REPLY_TX;
1574 out_cmd->hdr.sequence = cpu_to_le16((u16)(QUEUE_TO_SEQ(txq_id) |
1575 INDEX_TO_SEQ(q->write_ptr)));
1577 /* Copy MAC header from skb into command buffer */
1578 memcpy(tx->hdr, hdr, hdr_len);
1581 * Use the first empty entry in this queue's command buffer array
1582 * to contain the Tx command and MAC header concatenated together
1583 * (payload data will be in another buffer).
1584 * Size of this varies, due to varying MAC header length.
1585 * If end is not dword aligned, we'll have 2 extra bytes at the end
1586 * of the MAC header (device reads on dword boundaries).
1587 * We'll tell device about this padding later.
1589 len = sizeof(struct iwl3945_tx_cmd) +
1590 sizeof(struct iwl_cmd_header) + hdr_len;
1593 len = (len + 3) & ~3;
1600 /* Physical address of this Tx command's header (not MAC header!),
1601 * within command buffer array. */
1602 txcmd_phys = pci_map_single(priv->pci_dev,
1603 out_cmd, sizeof(struct iwl_cmd),
1605 pci_unmap_addr_set(&out_cmd->meta, mapping, txcmd_phys);
1606 pci_unmap_len_set(&out_cmd->meta, len, sizeof(struct iwl_cmd));
1607 /* Add buffer containing Tx command and MAC(!) header to TFD's
1609 txcmd_phys += offsetof(struct iwl_cmd, hdr);
1611 /* Add buffer containing Tx command and MAC(!) header to TFD's
1613 priv->cfg->ops->lib->txq_attach_buf_to_tfd(priv, txq,
1614 txcmd_phys, len, 1, 0);
1616 if (info->control.hw_key)
1617 iwl3945_build_tx_cmd_hwcrypto(priv, info, out_cmd, skb, 0);
1619 /* Set up TFD's 2nd entry to point directly to remainder of skb,
1620 * if any (802.11 null frames have no payload). */
1621 len = skb->len - hdr_len;
1623 phys_addr = pci_map_single(priv->pci_dev, skb->data + hdr_len,
1624 len, PCI_DMA_TODEVICE);
1625 priv->cfg->ops->lib->txq_attach_buf_to_tfd(priv, txq,
1630 /* Total # bytes to be transmitted */
1631 len = (u16)skb->len;
1632 tx->len = cpu_to_le16(len);
1634 /* TODO need this for burst mode later on */
1635 iwl3945_build_tx_cmd_basic(priv, out_cmd, info, hdr, sta_id);
1637 /* set is_hcca to 0; it probably will never be implemented */
1638 iwl3945_hw_build_tx_cmd_rate(priv, out_cmd, info, hdr, sta_id, 0);
1640 tx->tx_flags &= ~TX_CMD_FLG_ANT_A_MSK;
1641 tx->tx_flags &= ~TX_CMD_FLG_ANT_B_MSK;
1643 if (!ieee80211_has_morefrags(hdr->frame_control)) {
1644 txq->need_update = 1;
1646 priv->stations_39[sta_id].tid[tid].seq_number = seq_number;
1649 txq->need_update = 0;
1652 iwl_print_hex_dump(priv, IWL_DL_TX, tx, sizeof(*tx));
1654 iwl_print_hex_dump(priv, IWL_DL_TX, (u8 *)tx->hdr,
1655 ieee80211_hdrlen(fc));
1657 /* Tell device the write index *just past* this latest filled TFD */
1658 q->write_ptr = iwl_queue_inc_wrap(q->write_ptr, q->n_bd);
1659 rc = iwl_txq_update_write_ptr(priv, txq);
1660 spin_unlock_irqrestore(&priv->lock, flags);
1665 if ((iwl_queue_space(q) < q->high_mark)
1666 && priv->mac80211_registered) {
1667 if (wait_write_ptr) {
1668 spin_lock_irqsave(&priv->lock, flags);
1669 txq->need_update = 1;
1670 iwl_txq_update_write_ptr(priv, txq);
1671 spin_unlock_irqrestore(&priv->lock, flags);
1674 ieee80211_stop_queue(priv->hw, skb_get_queue_mapping(skb));
1680 spin_unlock_irqrestore(&priv->lock, flags);
1685 static void iwl3945_set_rate(struct iwl_priv *priv)
1687 const struct ieee80211_supported_band *sband = NULL;
1688 struct ieee80211_rate *rate;
1691 sband = iwl_get_hw_mode(priv, priv->band);
1693 IWL_ERR(priv, "Failed to set rate: unable to get hw mode\n");
1697 priv->active_rate = 0;
1698 priv->active_rate_basic = 0;
1700 IWL_DEBUG_RATE("Setting rates for %s GHz\n",
1701 sband->band == IEEE80211_BAND_2GHZ ? "2.4" : "5");
1703 for (i = 0; i < sband->n_bitrates; i++) {
1704 rate = &sband->bitrates[i];
1705 if ((rate->hw_value < IWL_RATE_COUNT) &&
1706 !(rate->flags & IEEE80211_CHAN_DISABLED)) {
1707 IWL_DEBUG_RATE("Adding rate index %d (plcp %d)\n",
1708 rate->hw_value, iwl3945_rates[rate->hw_value].plcp);
1709 priv->active_rate |= (1 << rate->hw_value);
1713 IWL_DEBUG_RATE("Set active_rate = %0x, active_rate_basic = %0x\n",
1714 priv->active_rate, priv->active_rate_basic);
1717 * If a basic rate is configured, then use it (adding IWL_RATE_1M_MASK)
1718 * otherwise set it to the default of all CCK rates and 6, 12, 24 for
1721 if (priv->active_rate_basic & IWL_CCK_BASIC_RATES_MASK)
1722 priv->staging39_rxon.cck_basic_rates =
1723 ((priv->active_rate_basic &
1724 IWL_CCK_RATES_MASK) >> IWL_FIRST_CCK_RATE) & 0xF;
1726 priv->staging39_rxon.cck_basic_rates =
1727 (IWL_CCK_BASIC_RATES_MASK >> IWL_FIRST_CCK_RATE) & 0xF;
1729 if (priv->active_rate_basic & IWL_OFDM_BASIC_RATES_MASK)
1730 priv->staging39_rxon.ofdm_basic_rates =
1731 ((priv->active_rate_basic &
1732 (IWL_OFDM_BASIC_RATES_MASK | IWL_RATE_6M_MASK)) >>
1733 IWL_FIRST_OFDM_RATE) & 0xFF;
1735 priv->staging39_rxon.ofdm_basic_rates =
1736 (IWL_OFDM_BASIC_RATES_MASK >> IWL_FIRST_OFDM_RATE) & 0xFF;
1739 static void iwl3945_radio_kill_sw(struct iwl_priv *priv, int disable_radio)
1741 unsigned long flags;
1743 if (!!disable_radio == test_bit(STATUS_RF_KILL_SW, &priv->status))
1746 IWL_DEBUG_RF_KILL("Manual SW RF KILL set to: RADIO %s\n",
1747 disable_radio ? "OFF" : "ON");
1749 if (disable_radio) {
1750 iwl_scan_cancel(priv);
1751 /* FIXME: This is a workaround for AP */
1752 if (priv->iw_mode != NL80211_IFTYPE_AP) {
1753 spin_lock_irqsave(&priv->lock, flags);
1754 iwl_write32(priv, CSR_UCODE_DRV_GP1_SET,
1755 CSR_UCODE_SW_BIT_RFKILL);
1756 spin_unlock_irqrestore(&priv->lock, flags);
1757 iwl_send_card_state(priv, CARD_STATE_CMD_DISABLE, 0);
1758 set_bit(STATUS_RF_KILL_SW, &priv->status);
1763 spin_lock_irqsave(&priv->lock, flags);
1764 iwl_write32(priv, CSR_UCODE_DRV_GP1_CLR, CSR_UCODE_SW_BIT_RFKILL);
1766 clear_bit(STATUS_RF_KILL_SW, &priv->status);
1767 spin_unlock_irqrestore(&priv->lock, flags);
1772 spin_lock_irqsave(&priv->lock, flags);
1773 iwl_read32(priv, CSR_UCODE_DRV_GP1);
1774 if (!iwl_grab_nic_access(priv))
1775 iwl_release_nic_access(priv);
1776 spin_unlock_irqrestore(&priv->lock, flags);
1778 if (test_bit(STATUS_RF_KILL_HW, &priv->status)) {
1779 IWL_DEBUG_RF_KILL("Can not turn radio back on - "
1780 "disabled by HW switch\n");
1785 queue_work(priv->workqueue, &priv->restart);
1789 void iwl3945_set_decrypted_flag(struct iwl_priv *priv, struct sk_buff *skb,
1790 u32 decrypt_res, struct ieee80211_rx_status *stats)
1793 le16_to_cpu(((struct ieee80211_hdr *)skb->data)->frame_control);
1795 if (priv->active39_rxon.filter_flags & RXON_FILTER_DIS_DECRYPT_MSK)
1798 if (!(fc & IEEE80211_FCTL_PROTECTED))
1801 IWL_DEBUG_RX("decrypt_res:0x%x\n", decrypt_res);
1802 switch (decrypt_res & RX_RES_STATUS_SEC_TYPE_MSK) {
1803 case RX_RES_STATUS_SEC_TYPE_TKIP:
1804 if ((decrypt_res & RX_RES_STATUS_DECRYPT_TYPE_MSK) ==
1805 RX_RES_STATUS_BAD_ICV_MIC)
1806 stats->flag |= RX_FLAG_MMIC_ERROR;
1807 case RX_RES_STATUS_SEC_TYPE_WEP:
1808 case RX_RES_STATUS_SEC_TYPE_CCMP:
1809 if ((decrypt_res & RX_RES_STATUS_DECRYPT_TYPE_MSK) ==
1810 RX_RES_STATUS_DECRYPT_OK) {
1811 IWL_DEBUG_RX("hw decrypt successfully!!!\n");
1812 stats->flag |= RX_FLAG_DECRYPTED;
1821 #ifdef CONFIG_IWL3945_SPECTRUM_MEASUREMENT
1823 #include "iwl-spectrum.h"
1825 #define BEACON_TIME_MASK_LOW 0x00FFFFFF
1826 #define BEACON_TIME_MASK_HIGH 0xFF000000
1827 #define TIME_UNIT 1024
1830 * extended beacon time format
1831 * time in usec will be changed into a 32-bit value in 8:24 format
1832 * the high 1 byte is the beacon counts
1833 * the lower 3 bytes is the time in usec within one beacon interval
1836 static u32 iwl3945_usecs_to_beacons(u32 usec, u32 beacon_interval)
1840 u32 interval = beacon_interval * 1024;
1842 if (!interval || !usec)
1845 quot = (usec / interval) & (BEACON_TIME_MASK_HIGH >> 24);
1846 rem = (usec % interval) & BEACON_TIME_MASK_LOW;
1848 return (quot << 24) + rem;
1851 /* base is usually what we get from ucode with each received frame,
1852 * the same as HW timer counter counting down
1855 static __le32 iwl3945_add_beacon_time(u32 base, u32 addon, u32 beacon_interval)
1857 u32 base_low = base & BEACON_TIME_MASK_LOW;
1858 u32 addon_low = addon & BEACON_TIME_MASK_LOW;
1859 u32 interval = beacon_interval * TIME_UNIT;
1860 u32 res = (base & BEACON_TIME_MASK_HIGH) +
1861 (addon & BEACON_TIME_MASK_HIGH);
1863 if (base_low > addon_low)
1864 res += base_low - addon_low;
1865 else if (base_low < addon_low) {
1866 res += interval + base_low - addon_low;
1871 return cpu_to_le32(res);
1874 static int iwl3945_get_measurement(struct iwl_priv *priv,
1875 struct ieee80211_measurement_params *params,
1878 struct iwl_spectrum_cmd spectrum;
1879 struct iwl_rx_packet *res;
1880 struct iwl_host_cmd cmd = {
1881 .id = REPLY_SPECTRUM_MEASUREMENT_CMD,
1882 .data = (void *)&spectrum,
1883 .meta.flags = CMD_WANT_SKB,
1885 u32 add_time = le64_to_cpu(params->start_time);
1887 int spectrum_resp_status;
1888 int duration = le16_to_cpu(params->duration);
1890 if (iwl3945_is_associated(priv))
1892 iwl3945_usecs_to_beacons(
1893 le64_to_cpu(params->start_time) - priv->last_tsf,
1894 le16_to_cpu(priv->rxon_timing.beacon_interval));
1896 memset(&spectrum, 0, sizeof(spectrum));
1898 spectrum.channel_count = cpu_to_le16(1);
1900 RXON_FLG_TSF2HOST_MSK | RXON_FLG_ANT_A_MSK | RXON_FLG_DIS_DIV_MSK;
1901 spectrum.filter_flags = MEASUREMENT_FILTER_FLAG;
1902 cmd.len = sizeof(spectrum);
1903 spectrum.len = cpu_to_le16(cmd.len - sizeof(spectrum.len));
1905 if (iwl3945_is_associated(priv))
1906 spectrum.start_time =
1907 iwl3945_add_beacon_time(priv->last_beacon_time,
1909 le16_to_cpu(priv->rxon_timing.beacon_interval));
1911 spectrum.start_time = 0;
1913 spectrum.channels[0].duration = cpu_to_le32(duration * TIME_UNIT);
1914 spectrum.channels[0].channel = params->channel;
1915 spectrum.channels[0].type = type;
1916 if (priv->active39_rxon.flags & RXON_FLG_BAND_24G_MSK)
1917 spectrum.flags |= RXON_FLG_BAND_24G_MSK |
1918 RXON_FLG_AUTO_DETECT_MSK | RXON_FLG_TGG_PROTECT_MSK;
1920 rc = iwl_send_cmd_sync(priv, &cmd);
1924 res = (struct iwl_rx_packet *)cmd.meta.u.skb->data;
1925 if (res->hdr.flags & IWL_CMD_FAILED_MSK) {
1926 IWL_ERR(priv, "Bad return from REPLY_RX_ON_ASSOC command\n");
1930 spectrum_resp_status = le16_to_cpu(res->u.spectrum.status);
1931 switch (spectrum_resp_status) {
1932 case 0: /* Command will be handled */
1933 if (res->u.spectrum.id != 0xff) {
1934 IWL_DEBUG_INFO("Replaced existing measurement: %d\n",
1935 res->u.spectrum.id);
1936 priv->measurement_status &= ~MEASUREMENT_READY;
1938 priv->measurement_status |= MEASUREMENT_ACTIVE;
1942 case 1: /* Command will not be handled */
1947 dev_kfree_skb_any(cmd.meta.u.skb);
1953 static void iwl3945_rx_reply_alive(struct iwl_priv *priv,
1954 struct iwl_rx_mem_buffer *rxb)
1956 struct iwl_rx_packet *pkt = (void *)rxb->skb->data;
1957 struct iwl_alive_resp *palive;
1958 struct delayed_work *pwork;
1960 palive = &pkt->u.alive_frame;
1962 IWL_DEBUG_INFO("Alive ucode status 0x%08X revision "
1964 palive->is_valid, palive->ver_type,
1965 palive->ver_subtype);
1967 if (palive->ver_subtype == INITIALIZE_SUBTYPE) {
1968 IWL_DEBUG_INFO("Initialization Alive received.\n");
1969 memcpy(&priv->card_alive_init, &pkt->u.alive_frame,
1970 sizeof(struct iwl_alive_resp));
1971 pwork = &priv->init_alive_start;
1973 IWL_DEBUG_INFO("Runtime Alive received.\n");
1974 memcpy(&priv->card_alive, &pkt->u.alive_frame,
1975 sizeof(struct iwl_alive_resp));
1976 pwork = &priv->alive_start;
1977 iwl3945_disable_events(priv);
1980 /* We delay the ALIVE response by 5ms to
1981 * give the HW RF Kill time to activate... */
1982 if (palive->is_valid == UCODE_VALID_OK)
1983 queue_delayed_work(priv->workqueue, pwork,
1984 msecs_to_jiffies(5));
1986 IWL_WARN(priv, "uCode did not respond OK.\n");
1989 static void iwl3945_rx_reply_add_sta(struct iwl_priv *priv,
1990 struct iwl_rx_mem_buffer *rxb)
1992 #ifdef CONFIG_IWLWIFI_DEBUG
1993 struct iwl_rx_packet *pkt = (void *)rxb->skb->data;
1996 IWL_DEBUG_RX("Received REPLY_ADD_STA: 0x%02X\n", pkt->u.status);
2000 static void iwl3945_rx_reply_error(struct iwl_priv *priv,
2001 struct iwl_rx_mem_buffer *rxb)
2003 struct iwl_rx_packet *pkt = (void *)rxb->skb->data;
2005 IWL_ERR(priv, "Error Reply type 0x%08X cmd %s (0x%02X) "
2006 "seq 0x%04X ser 0x%08X\n",
2007 le32_to_cpu(pkt->u.err_resp.error_type),
2008 get_cmd_string(pkt->u.err_resp.cmd_id),
2009 pkt->u.err_resp.cmd_id,
2010 le16_to_cpu(pkt->u.err_resp.bad_cmd_seq_num),
2011 le32_to_cpu(pkt->u.err_resp.error_info));
2014 #define TX_STATUS_ENTRY(x) case TX_STATUS_FAIL_ ## x: return #x
2016 static void iwl3945_rx_csa(struct iwl_priv *priv, struct iwl_rx_mem_buffer *rxb)
2018 struct iwl_rx_packet *pkt = (void *)rxb->skb->data;
2019 struct iwl3945_rxon_cmd *rxon = (void *)&priv->active39_rxon;
2020 struct iwl_csa_notification *csa = &(pkt->u.csa_notif);
2021 IWL_DEBUG_11H("CSA notif: channel %d, status %d\n",
2022 le16_to_cpu(csa->channel), le32_to_cpu(csa->status));
2023 rxon->channel = csa->channel;
2024 priv->staging39_rxon.channel = csa->channel;
2027 static void iwl3945_rx_spectrum_measure_notif(struct iwl_priv *priv,
2028 struct iwl_rx_mem_buffer *rxb)
2030 #ifdef CONFIG_IWL3945_SPECTRUM_MEASUREMENT
2031 struct iwl_rx_packet *pkt = (void *)rxb->skb->data;
2032 struct iwl_spectrum_notification *report = &(pkt->u.spectrum_notif);
2034 if (!report->state) {
2035 IWL_DEBUG(IWL_DL_11H | IWL_DL_INFO,
2036 "Spectrum Measure Notification: Start\n");
2040 memcpy(&priv->measure_report, report, sizeof(*report));
2041 priv->measurement_status |= MEASUREMENT_READY;
2045 static void iwl3945_rx_pm_sleep_notif(struct iwl_priv *priv,
2046 struct iwl_rx_mem_buffer *rxb)
2048 #ifdef CONFIG_IWL3945_DEBUG
2049 struct iwl_rx_packet *pkt = (void *)rxb->skb->data;
2050 struct iwl_sleep_notification *sleep = &(pkt->u.sleep_notif);
2051 IWL_DEBUG_RX("sleep mode: %d, src: %d\n",
2052 sleep->pm_sleep_mode, sleep->pm_wakeup_src);
2056 static void iwl3945_rx_pm_debug_statistics_notif(struct iwl_priv *priv,
2057 struct iwl_rx_mem_buffer *rxb)
2059 struct iwl_rx_packet *pkt = (void *)rxb->skb->data;
2060 IWL_DEBUG_RADIO("Dumping %d bytes of unhandled "
2061 "notification for %s:\n",
2062 le32_to_cpu(pkt->len), get_cmd_string(pkt->hdr.cmd));
2063 iwl_print_hex_dump(priv, IWL_DL_RADIO, pkt->u.raw,
2064 le32_to_cpu(pkt->len));
2067 static void iwl3945_bg_beacon_update(struct work_struct *work)
2069 struct iwl_priv *priv =
2070 container_of(work, struct iwl_priv, beacon_update);
2071 struct sk_buff *beacon;
2073 /* Pull updated AP beacon from mac80211. will fail if not in AP mode */
2074 beacon = ieee80211_beacon_get(priv->hw, priv->vif);
2077 IWL_ERR(priv, "update beacon failed\n");
2081 mutex_lock(&priv->mutex);
2082 /* new beacon skb is allocated every time; dispose previous.*/
2083 if (priv->ibss_beacon)
2084 dev_kfree_skb(priv->ibss_beacon);
2086 priv->ibss_beacon = beacon;
2087 mutex_unlock(&priv->mutex);
2089 iwl3945_send_beacon_cmd(priv);
2092 static void iwl3945_rx_beacon_notif(struct iwl_priv *priv,
2093 struct iwl_rx_mem_buffer *rxb)
2095 #ifdef CONFIG_IWL3945_DEBUG
2096 struct iwl_rx_packet *pkt = (void *)rxb->skb->data;
2097 struct iwl3945_beacon_notif *beacon = &(pkt->u.beacon_status);
2098 u8 rate = beacon->beacon_notify_hdr.rate;
2100 IWL_DEBUG_RX("beacon status %x retries %d iss %d "
2101 "tsf %d %d rate %d\n",
2102 le32_to_cpu(beacon->beacon_notify_hdr.status) & TX_STATUS_MSK,
2103 beacon->beacon_notify_hdr.failure_frame,
2104 le32_to_cpu(beacon->ibss_mgr_status),
2105 le32_to_cpu(beacon->high_tsf),
2106 le32_to_cpu(beacon->low_tsf), rate);
2109 if ((priv->iw_mode == NL80211_IFTYPE_AP) &&
2110 (!test_bit(STATUS_EXIT_PENDING, &priv->status)))
2111 queue_work(priv->workqueue, &priv->beacon_update);
2114 /* Service response to REPLY_SCAN_CMD (0x80) */
2115 static void iwl3945_rx_reply_scan(struct iwl_priv *priv,
2116 struct iwl_rx_mem_buffer *rxb)
2118 #ifdef CONFIG_IWL3945_DEBUG
2119 struct iwl_rx_packet *pkt = (void *)rxb->skb->data;
2120 struct iwl_scanreq_notification *notif =
2121 (struct iwl_scanreq_notification *)pkt->u.raw;
2123 IWL_DEBUG_RX("Scan request status = 0x%x\n", notif->status);
2127 /* Service SCAN_START_NOTIFICATION (0x82) */
2128 static void iwl3945_rx_scan_start_notif(struct iwl_priv *priv,
2129 struct iwl_rx_mem_buffer *rxb)
2131 struct iwl_rx_packet *pkt = (void *)rxb->skb->data;
2132 struct iwl_scanstart_notification *notif =
2133 (struct iwl_scanstart_notification *)pkt->u.raw;
2134 priv->scan_start_tsf = le32_to_cpu(notif->tsf_low);
2135 IWL_DEBUG_SCAN("Scan start: "
2137 "(TSF: 0x%08X:%08X) - %d (beacon timer %u)\n",
2139 notif->band ? "bg" : "a",
2141 notif->tsf_low, notif->status, notif->beacon_timer);
2144 /* Service SCAN_RESULTS_NOTIFICATION (0x83) */
2145 static void iwl3945_rx_scan_results_notif(struct iwl_priv *priv,
2146 struct iwl_rx_mem_buffer *rxb)
2148 #ifdef CONFIG_IWLWIFI_DEBUG
2149 struct iwl_rx_packet *pkt = (void *)rxb->skb->data;
2150 struct iwl_scanresults_notification *notif =
2151 (struct iwl_scanresults_notification *)pkt->u.raw;
2154 IWL_DEBUG_SCAN("Scan ch.res: "
2156 "(TSF: 0x%08X:%08X) - %d "
2157 "elapsed=%lu usec (%dms since last)\n",
2159 notif->band ? "bg" : "a",
2160 le32_to_cpu(notif->tsf_high),
2161 le32_to_cpu(notif->tsf_low),
2162 le32_to_cpu(notif->statistics[0]),
2163 le32_to_cpu(notif->tsf_low) - priv->scan_start_tsf,
2164 jiffies_to_msecs(elapsed_jiffies
2165 (priv->last_scan_jiffies, jiffies)));
2167 priv->last_scan_jiffies = jiffies;
2168 priv->next_scan_jiffies = 0;
2171 /* Service SCAN_COMPLETE_NOTIFICATION (0x84) */
2172 static void iwl3945_rx_scan_complete_notif(struct iwl_priv *priv,
2173 struct iwl_rx_mem_buffer *rxb)
2175 #ifdef CONFIG_IWLWIFI_DEBUG
2176 struct iwl_rx_packet *pkt = (void *)rxb->skb->data;
2177 struct iwl_scancomplete_notification *scan_notif = (void *)pkt->u.raw;
2180 IWL_DEBUG_SCAN("Scan complete: %d channels (TSF 0x%08X:%08X) - %d\n",
2181 scan_notif->scanned_channels,
2182 scan_notif->tsf_low,
2183 scan_notif->tsf_high, scan_notif->status);
2185 /* The HW is no longer scanning */
2186 clear_bit(STATUS_SCAN_HW, &priv->status);
2188 /* The scan completion notification came in, so kill that timer... */
2189 cancel_delayed_work(&priv->scan_check);
2191 IWL_DEBUG_INFO("Scan pass on %sGHz took %dms\n",
2192 (priv->scan_bands & BIT(IEEE80211_BAND_2GHZ)) ?
2194 jiffies_to_msecs(elapsed_jiffies
2195 (priv->scan_pass_start, jiffies)));
2197 /* Remove this scanned band from the list of pending
2198 * bands to scan, band G precedes A in order of scanning
2199 * as seen in iwl3945_bg_request_scan */
2200 if (priv->scan_bands & BIT(IEEE80211_BAND_2GHZ))
2201 priv->scan_bands &= ~BIT(IEEE80211_BAND_2GHZ);
2202 else if (priv->scan_bands & BIT(IEEE80211_BAND_5GHZ))
2203 priv->scan_bands &= ~BIT(IEEE80211_BAND_5GHZ);
2205 /* If a request to abort was given, or the scan did not succeed
2206 * then we reset the scan state machine and terminate,
2207 * re-queuing another scan if one has been requested */
2208 if (test_bit(STATUS_SCAN_ABORTING, &priv->status)) {
2209 IWL_DEBUG_INFO("Aborted scan completed.\n");
2210 clear_bit(STATUS_SCAN_ABORTING, &priv->status);
2212 /* If there are more bands on this scan pass reschedule */
2213 if (priv->scan_bands > 0)
2217 priv->last_scan_jiffies = jiffies;
2218 priv->next_scan_jiffies = 0;
2219 IWL_DEBUG_INFO("Setting scan to off\n");
2221 clear_bit(STATUS_SCANNING, &priv->status);
2223 IWL_DEBUG_INFO("Scan took %dms\n",
2224 jiffies_to_msecs(elapsed_jiffies(priv->scan_start, jiffies)));
2226 queue_work(priv->workqueue, &priv->scan_completed);
2231 priv->scan_pass_start = jiffies;
2232 queue_work(priv->workqueue, &priv->request_scan);
2235 /* Handle notification from uCode that card's power state is changing
2236 * due to software, hardware, or critical temperature RFKILL */
2237 static void iwl3945_rx_card_state_notif(struct iwl_priv *priv,
2238 struct iwl_rx_mem_buffer *rxb)
2240 struct iwl_rx_packet *pkt = (void *)rxb->skb->data;
2241 u32 flags = le32_to_cpu(pkt->u.card_state_notif.flags);
2242 unsigned long status = priv->status;
2244 IWL_DEBUG_RF_KILL("Card state received: HW:%s SW:%s\n",
2245 (flags & HW_CARD_DISABLED) ? "Kill" : "On",
2246 (flags & SW_CARD_DISABLED) ? "Kill" : "On");
2248 iwl_write32(priv, CSR_UCODE_DRV_GP1_SET,
2249 CSR_UCODE_DRV_GP1_BIT_CMD_BLOCKED);
2251 if (flags & HW_CARD_DISABLED)
2252 set_bit(STATUS_RF_KILL_HW, &priv->status);
2254 clear_bit(STATUS_RF_KILL_HW, &priv->status);
2257 if (flags & SW_CARD_DISABLED)
2258 set_bit(STATUS_RF_KILL_SW, &priv->status);
2260 clear_bit(STATUS_RF_KILL_SW, &priv->status);
2262 iwl_scan_cancel(priv);
2264 if ((test_bit(STATUS_RF_KILL_HW, &status) !=
2265 test_bit(STATUS_RF_KILL_HW, &priv->status)) ||
2266 (test_bit(STATUS_RF_KILL_SW, &status) !=
2267 test_bit(STATUS_RF_KILL_SW, &priv->status)))
2268 queue_work(priv->workqueue, &priv->rf_kill);
2270 wake_up_interruptible(&priv->wait_command_queue);
2274 * iwl3945_setup_rx_handlers - Initialize Rx handler callbacks
2276 * Setup the RX handlers for each of the reply types sent from the uCode
2279 * This function chains into the hardware specific files for them to setup
2280 * any hardware specific handlers as well.
2282 static void iwl3945_setup_rx_handlers(struct iwl_priv *priv)
2284 priv->rx_handlers[REPLY_ALIVE] = iwl3945_rx_reply_alive;
2285 priv->rx_handlers[REPLY_ADD_STA] = iwl3945_rx_reply_add_sta;
2286 priv->rx_handlers[REPLY_ERROR] = iwl3945_rx_reply_error;
2287 priv->rx_handlers[CHANNEL_SWITCH_NOTIFICATION] = iwl3945_rx_csa;
2288 priv->rx_handlers[SPECTRUM_MEASURE_NOTIFICATION] =
2289 iwl3945_rx_spectrum_measure_notif;
2290 priv->rx_handlers[PM_SLEEP_NOTIFICATION] = iwl3945_rx_pm_sleep_notif;
2291 priv->rx_handlers[PM_DEBUG_STATISTIC_NOTIFIC] =
2292 iwl3945_rx_pm_debug_statistics_notif;
2293 priv->rx_handlers[BEACON_NOTIFICATION] = iwl3945_rx_beacon_notif;
2296 * The same handler is used for both the REPLY to a discrete
2297 * statistics request from the host as well as for the periodic
2298 * statistics notifications (after received beacons) from the uCode.
2300 priv->rx_handlers[REPLY_STATISTICS_CMD] = iwl3945_hw_rx_statistics;
2301 priv->rx_handlers[STATISTICS_NOTIFICATION] = iwl3945_hw_rx_statistics;
2303 priv->rx_handlers[REPLY_SCAN_CMD] = iwl3945_rx_reply_scan;
2304 priv->rx_handlers[SCAN_START_NOTIFICATION] = iwl3945_rx_scan_start_notif;
2305 priv->rx_handlers[SCAN_RESULTS_NOTIFICATION] =
2306 iwl3945_rx_scan_results_notif;
2307 priv->rx_handlers[SCAN_COMPLETE_NOTIFICATION] =
2308 iwl3945_rx_scan_complete_notif;
2309 priv->rx_handlers[CARD_STATE_NOTIFICATION] = iwl3945_rx_card_state_notif;
2311 /* Set up hardware specific Rx handlers */
2312 iwl3945_hw_rx_handler_setup(priv);
2316 * iwl3945_cmd_queue_reclaim - Reclaim CMD queue entries
2317 * When FW advances 'R' index, all entries between old and new 'R' index
2318 * need to be reclaimed.
2320 static void iwl3945_cmd_queue_reclaim(struct iwl_priv *priv,
2321 int txq_id, int index)
2323 struct iwl_tx_queue *txq = &priv->txq[txq_id];
2324 struct iwl_queue *q = &txq->q;
2327 if ((index >= q->n_bd) || (iwl_queue_used(q, index) == 0)) {
2328 IWL_ERR(priv, "Read index for DMA queue txq id (%d), index %d, "
2329 "is out of range [0-%d] %d %d.\n", txq_id,
2330 index, q->n_bd, q->write_ptr, q->read_ptr);
2334 for (index = iwl_queue_inc_wrap(index, q->n_bd); q->read_ptr != index;
2335 q->read_ptr = iwl_queue_inc_wrap(q->read_ptr, q->n_bd)) {
2337 IWL_ERR(priv, "HCMD skipped: index (%d) %d %d\n", index,
2338 q->write_ptr, q->read_ptr);
2339 queue_work(priv->workqueue, &priv->restart);
2348 * iwl3945_tx_cmd_complete - Pull unused buffers off the queue and reclaim them
2349 * @rxb: Rx buffer to reclaim
2351 * If an Rx buffer has an async callback associated with it the callback
2352 * will be executed. The attached skb (if present) will only be freed
2353 * if the callback returns 1
2355 static void iwl3945_tx_cmd_complete(struct iwl_priv *priv,
2356 struct iwl_rx_mem_buffer *rxb)
2358 struct iwl_rx_packet *pkt = (struct iwl_rx_packet *)rxb->skb->data;
2359 u16 sequence = le16_to_cpu(pkt->hdr.sequence);
2360 int txq_id = SEQ_TO_QUEUE(sequence);
2361 int index = SEQ_TO_INDEX(sequence);
2362 int huge = !!(pkt->hdr.sequence & SEQ_HUGE_FRAME);
2364 struct iwl_cmd *cmd;
2366 if (WARN(txq_id != IWL_CMD_QUEUE_NUM,
2367 "wrong command queue %d, sequence 0x%X readp=%d writep=%d\n",
2369 priv->txq[IWL_CMD_QUEUE_NUM].q.read_ptr,
2370 priv->txq[IWL_CMD_QUEUE_NUM].q.write_ptr)) {
2371 iwl_print_hex_dump(priv, IWL_DL_INFO , rxb, 32);
2375 cmd_index = get_cmd_index(&priv->txq[IWL_CMD_QUEUE_NUM].q, index, huge);
2376 cmd = priv->txq[IWL_CMD_QUEUE_NUM].cmd[cmd_index];
2378 /* Input error checking is done when commands are added to queue. */
2379 if (cmd->meta.flags & CMD_WANT_SKB) {
2380 cmd->meta.source->u.skb = rxb->skb;
2382 } else if (cmd->meta.u.callback &&
2383 !cmd->meta.u.callback(priv, cmd, rxb->skb))
2386 iwl3945_cmd_queue_reclaim(priv, txq_id, index);
2388 if (!(cmd->meta.flags & CMD_ASYNC)) {
2389 clear_bit(STATUS_HCMD_ACTIVE, &priv->status);
2390 wake_up_interruptible(&priv->wait_command_queue);
2394 /************************** RX-FUNCTIONS ****************************/
2396 * Rx theory of operation
2398 * The host allocates 32 DMA target addresses and passes the host address
2399 * to the firmware at register IWL_RFDS_TABLE_LOWER + N * RFD_SIZE where N is
2403 * The host/firmware share two index registers for managing the Rx buffers.
2405 * The READ index maps to the first position that the firmware may be writing
2406 * to -- the driver can read up to (but not including) this position and get
2408 * The READ index is managed by the firmware once the card is enabled.
2410 * The WRITE index maps to the last position the driver has read from -- the
2411 * position preceding WRITE is the last slot the firmware can place a packet.
2413 * The queue is empty (no good data) if WRITE = READ - 1, and is full if
2416 * During initialization, the host sets up the READ queue position to the first
2417 * INDEX position, and WRITE to the last (READ - 1 wrapped)
2419 * When the firmware places a packet in a buffer, it will advance the READ index
2420 * and fire the RX interrupt. The driver can then query the READ index and
2421 * process as many packets as possible, moving the WRITE index forward as it
2422 * resets the Rx queue buffers with new memory.
2424 * The management in the driver is as follows:
2425 * + A list of pre-allocated SKBs is stored in iwl->rxq->rx_free. When
2426 * iwl->rxq->free_count drops to or below RX_LOW_WATERMARK, work is scheduled
2427 * to replenish the iwl->rxq->rx_free.
2428 * + In iwl3945_rx_replenish (scheduled) if 'processed' != 'read' then the
2429 * iwl->rxq is replenished and the READ INDEX is updated (updating the
2430 * 'processed' and 'read' driver indexes as well)
2431 * + A received packet is processed and handed to the kernel network stack,
2432 * detached from the iwl->rxq. The driver 'processed' index is updated.
2433 * + The Host/Firmware iwl->rxq is replenished at tasklet time from the rx_free
2434 * list. If there are no allocated buffers in iwl->rxq->rx_free, the READ
2435 * INDEX is not incremented and iwl->status(RX_STALLED) is set. If there
2436 * were enough free buffers and RX_STALLED is set it is cleared.
2441 * iwl3945_rx_replenish() Replenishes rx_free list from rx_used, and calls
2442 * iwl3945_rx_queue_restock
2443 * iwl3945_rx_queue_restock() Moves available buffers from rx_free into Rx
2444 * queue, updates firmware pointers, and updates
2445 * the WRITE index. If insufficient rx_free buffers
2446 * are available, schedules iwl3945_rx_replenish
2448 * -- enable interrupts --
2449 * ISR - iwl3945_rx() Detach iwl_rx_mem_buffers from pool up to the
2450 * READ INDEX, detaching the SKB from the pool.
2451 * Moves the packet buffer from queue to rx_used.
2452 * Calls iwl3945_rx_queue_restock to refill any empty
2459 * iwl3945_dma_addr2rbd_ptr - convert a DMA address to a uCode read buffer ptr
2461 static inline __le32 iwl3945_dma_addr2rbd_ptr(struct iwl_priv *priv,
2462 dma_addr_t dma_addr)
2464 return cpu_to_le32((u32)dma_addr);
2468 * iwl3945_rx_queue_restock - refill RX queue from pre-allocated pool
2470 * If there are slots in the RX queue that need to be restocked,
2471 * and we have free pre-allocated buffers, fill the ranks as much
2472 * as we can, pulling from rx_free.
2474 * This moves the 'write' index forward to catch up with 'processed', and
2475 * also updates the memory address in the firmware to reference the new
2478 static int iwl3945_rx_queue_restock(struct iwl_priv *priv)
2480 struct iwl_rx_queue *rxq = &priv->rxq;
2481 struct list_head *element;
2482 struct iwl_rx_mem_buffer *rxb;
2483 unsigned long flags;
2486 spin_lock_irqsave(&rxq->lock, flags);
2487 write = rxq->write & ~0x7;
2488 while ((iwl_rx_queue_space(rxq) > 0) && (rxq->free_count)) {
2489 /* Get next free Rx buffer, remove from free list */
2490 element = rxq->rx_free.next;
2491 rxb = list_entry(element, struct iwl_rx_mem_buffer, list);
2494 /* Point to Rx buffer via next RBD in circular buffer */
2495 rxq->bd[rxq->write] = iwl3945_dma_addr2rbd_ptr(priv, rxb->real_dma_addr);
2496 rxq->queue[rxq->write] = rxb;
2497 rxq->write = (rxq->write + 1) & RX_QUEUE_MASK;
2500 spin_unlock_irqrestore(&rxq->lock, flags);
2501 /* If the pre-allocated buffer pool is dropping low, schedule to
2503 if (rxq->free_count <= RX_LOW_WATERMARK)
2504 queue_work(priv->workqueue, &priv->rx_replenish);
2507 /* If we've added more space for the firmware to place data, tell it.
2508 * Increment device's write pointer in multiples of 8. */
2509 if ((write != (rxq->write & ~0x7))
2510 || (abs(rxq->write - rxq->read) > 7)) {
2511 spin_lock_irqsave(&rxq->lock, flags);
2512 rxq->need_update = 1;
2513 spin_unlock_irqrestore(&rxq->lock, flags);
2514 rc = iwl_rx_queue_update_write_ptr(priv, rxq);
2523 * iwl3945_rx_replenish - Move all used packet from rx_used to rx_free
2525 * When moving to rx_free an SKB is allocated for the slot.
2527 * Also restock the Rx queue via iwl3945_rx_queue_restock.
2528 * This is called as a scheduled work item (except for during initialization)
2530 static void iwl3945_rx_allocate(struct iwl_priv *priv)
2532 struct iwl_rx_queue *rxq = &priv->rxq;
2533 struct list_head *element;
2534 struct iwl_rx_mem_buffer *rxb;
2535 unsigned long flags;
2536 spin_lock_irqsave(&rxq->lock, flags);
2537 while (!list_empty(&rxq->rx_used)) {
2538 element = rxq->rx_used.next;
2539 rxb = list_entry(element, struct iwl_rx_mem_buffer, list);
2541 /* Alloc a new receive buffer */
2543 alloc_skb(priv->hw_params.rx_buf_size,
2544 __GFP_NOWARN | GFP_ATOMIC);
2546 if (net_ratelimit())
2547 IWL_CRIT(priv, ": Can not allocate SKB buffers\n");
2548 /* We don't reschedule replenish work here -- we will
2549 * call the restock method and if it still needs
2550 * more buffers it will schedule replenish */
2554 /* If radiotap head is required, reserve some headroom here.
2555 * The physical head count is a variable rx_stats->phy_count.
2556 * We reserve 4 bytes here. Plus these extra bytes, the
2557 * headroom of the physical head should be enough for the
2558 * radiotap head that iwl3945 supported. See iwl3945_rt.
2560 skb_reserve(rxb->skb, 4);
2562 priv->alloc_rxb_skb++;
2565 /* Get physical address of RB/SKB */
2566 rxb->real_dma_addr = pci_map_single(priv->pci_dev,
2568 priv->hw_params.rx_buf_size,
2569 PCI_DMA_FROMDEVICE);
2570 list_add_tail(&rxb->list, &rxq->rx_free);
2573 spin_unlock_irqrestore(&rxq->lock, flags);
2577 * this should be called while priv->lock is locked
2579 static void __iwl3945_rx_replenish(void *data)
2581 struct iwl_priv *priv = data;
2583 iwl3945_rx_allocate(priv);
2584 iwl3945_rx_queue_restock(priv);
2588 void iwl3945_rx_replenish(void *data)
2590 struct iwl_priv *priv = data;
2591 unsigned long flags;
2593 iwl3945_rx_allocate(priv);
2595 spin_lock_irqsave(&priv->lock, flags);
2596 iwl3945_rx_queue_restock(priv);
2597 spin_unlock_irqrestore(&priv->lock, flags);
2600 /* Convert linear signal-to-noise ratio into dB */
2601 static u8 ratio2dB[100] = {
2602 /* 0 1 2 3 4 5 6 7 8 9 */
2603 0, 0, 6, 10, 12, 14, 16, 17, 18, 19, /* 00 - 09 */
2604 20, 21, 22, 22, 23, 23, 24, 25, 26, 26, /* 10 - 19 */
2605 26, 26, 26, 27, 27, 28, 28, 28, 29, 29, /* 20 - 29 */
2606 29, 30, 30, 30, 31, 31, 31, 31, 32, 32, /* 30 - 39 */
2607 32, 32, 32, 33, 33, 33, 33, 33, 34, 34, /* 40 - 49 */
2608 34, 34, 34, 34, 35, 35, 35, 35, 35, 35, /* 50 - 59 */
2609 36, 36, 36, 36, 36, 36, 36, 37, 37, 37, /* 60 - 69 */
2610 37, 37, 37, 37, 37, 38, 38, 38, 38, 38, /* 70 - 79 */
2611 38, 38, 38, 38, 38, 39, 39, 39, 39, 39, /* 80 - 89 */
2612 39, 39, 39, 39, 39, 40, 40, 40, 40, 40 /* 90 - 99 */
2615 /* Calculates a relative dB value from a ratio of linear
2616 * (i.e. not dB) signal levels.
2617 * Conversion assumes that levels are voltages (20*log), not powers (10*log). */
2618 int iwl3945_calc_db_from_ratio(int sig_ratio)
2620 /* 1000:1 or higher just report as 60 dB */
2621 if (sig_ratio >= 1000)
2624 /* 100:1 or higher, divide by 10 and use table,
2625 * add 20 dB to make up for divide by 10 */
2626 if (sig_ratio >= 100)
2627 return 20 + (int)ratio2dB[sig_ratio/10];
2629 /* We shouldn't see this */
2633 /* Use table for ratios 1:1 - 99:1 */
2634 return (int)ratio2dB[sig_ratio];
2637 #define PERFECT_RSSI (-20) /* dBm */
2638 #define WORST_RSSI (-95) /* dBm */
2639 #define RSSI_RANGE (PERFECT_RSSI - WORST_RSSI)
2641 /* Calculate an indication of rx signal quality (a percentage, not dBm!).
2642 * See http://www.ces.clemson.edu/linux/signal_quality.shtml for info
2643 * about formulas used below. */
2644 int iwl3945_calc_sig_qual(int rssi_dbm, int noise_dbm)
2647 int degradation = PERFECT_RSSI - rssi_dbm;
2649 /* If we get a noise measurement, use signal-to-noise ratio (SNR)
2650 * as indicator; formula is (signal dbm - noise dbm).
2651 * SNR at or above 40 is a great signal (100%).
2652 * Below that, scale to fit SNR of 0 - 40 dB within 0 - 100% indicator.
2653 * Weakest usable signal is usually 10 - 15 dB SNR. */
2655 if (rssi_dbm - noise_dbm >= 40)
2657 else if (rssi_dbm < noise_dbm)
2659 sig_qual = ((rssi_dbm - noise_dbm) * 5) / 2;
2661 /* Else use just the signal level.
2662 * This formula is a least squares fit of data points collected and
2663 * compared with a reference system that had a percentage (%) display
2664 * for signal quality. */
2666 sig_qual = (100 * (RSSI_RANGE * RSSI_RANGE) - degradation *
2667 (15 * RSSI_RANGE + 62 * degradation)) /
2668 (RSSI_RANGE * RSSI_RANGE);
2672 else if (sig_qual < 1)
2679 * iwl3945_rx_handle - Main entry function for receiving responses from uCode
2681 * Uses the priv->rx_handlers callback function array to invoke
2682 * the appropriate handlers, including command responses,
2683 * frame-received notifications, and other notifications.
2685 static void iwl3945_rx_handle(struct iwl_priv *priv)
2687 struct iwl_rx_mem_buffer *rxb;
2688 struct iwl_rx_packet *pkt;
2689 struct iwl_rx_queue *rxq = &priv->rxq;
2692 unsigned long flags;
2696 /* uCode's read index (stored in shared DRAM) indicates the last Rx
2697 * buffer that the driver may process (last buffer filled by ucode). */
2698 r = le16_to_cpu(rxq->rb_stts->closed_rb_num) & 0x0FFF;
2701 if (iwl_rx_queue_space(rxq) > (RX_QUEUE_SIZE / 2))
2703 /* Rx interrupt, but nothing sent from uCode */
2705 IWL_DEBUG(IWL_DL_RX | IWL_DL_ISR, "r = %d, i = %d\n", r, i);
2708 rxb = rxq->queue[i];
2710 /* If an RXB doesn't have a Rx queue slot associated with it,
2711 * then a bug has been introduced in the queue refilling
2712 * routines -- catch it here */
2713 BUG_ON(rxb == NULL);
2715 rxq->queue[i] = NULL;
2717 pci_dma_sync_single_for_cpu(priv->pci_dev, rxb->real_dma_addr,
2718 priv->hw_params.rx_buf_size,
2719 PCI_DMA_FROMDEVICE);
2720 pkt = (struct iwl_rx_packet *)rxb->skb->data;
2722 /* Reclaim a command buffer only if this packet is a response
2723 * to a (driver-originated) command.
2724 * If the packet (e.g. Rx frame) originated from uCode,
2725 * there is no command buffer to reclaim.
2726 * Ucode should set SEQ_RX_FRAME bit if ucode-originated,
2727 * but apparently a few don't get set; catch them here. */
2728 reclaim = !(pkt->hdr.sequence & SEQ_RX_FRAME) &&
2729 (pkt->hdr.cmd != STATISTICS_NOTIFICATION) &&
2730 (pkt->hdr.cmd != REPLY_TX);
2732 /* Based on type of command response or notification,
2733 * handle those that need handling via function in
2734 * rx_handlers table. See iwl3945_setup_rx_handlers() */
2735 if (priv->rx_handlers[pkt->hdr.cmd]) {
2736 IWL_DEBUG(IWL_DL_HCMD | IWL_DL_RX | IWL_DL_ISR,
2737 "r = %d, i = %d, %s, 0x%02x\n", r, i,
2738 get_cmd_string(pkt->hdr.cmd), pkt->hdr.cmd);
2739 priv->rx_handlers[pkt->hdr.cmd] (priv, rxb);
2741 /* No handling needed */
2742 IWL_DEBUG(IWL_DL_HCMD | IWL_DL_RX | IWL_DL_ISR,
2743 "r %d i %d No handler needed for %s, 0x%02x\n",
2744 r, i, get_cmd_string(pkt->hdr.cmd),
2749 /* Invoke any callbacks, transfer the skb to caller, and
2750 * fire off the (possibly) blocking iwl_send_cmd()
2751 * as we reclaim the driver command queue */
2752 if (rxb && rxb->skb)
2753 iwl3945_tx_cmd_complete(priv, rxb);
2755 IWL_WARN(priv, "Claim null rxb?\n");
2758 /* For now we just don't re-use anything. We can tweak this
2759 * later to try and re-use notification packets and SKBs that
2760 * fail to Rx correctly */
2761 if (rxb->skb != NULL) {
2762 priv->alloc_rxb_skb--;
2763 dev_kfree_skb_any(rxb->skb);
2767 pci_unmap_single(priv->pci_dev, rxb->real_dma_addr,
2768 priv->hw_params.rx_buf_size,
2769 PCI_DMA_FROMDEVICE);
2770 spin_lock_irqsave(&rxq->lock, flags);
2771 list_add_tail(&rxb->list, &priv->rxq.rx_used);
2772 spin_unlock_irqrestore(&rxq->lock, flags);
2773 i = (i + 1) & RX_QUEUE_MASK;
2774 /* If there are a lot of unused frames,
2775 * restock the Rx queue so ucode won't assert. */
2780 __iwl3945_rx_replenish(priv);
2786 /* Backtrack one entry */
2788 iwl3945_rx_queue_restock(priv);
2791 #ifdef CONFIG_IWL3945_DEBUG
2792 static void iwl3945_print_rx_config_cmd(struct iwl_priv *priv,
2793 struct iwl3945_rxon_cmd *rxon)
2795 IWL_DEBUG_RADIO("RX CONFIG:\n");
2796 iwl_print_hex_dump(priv, IWL_DL_RADIO, (u8 *) rxon, sizeof(*rxon));
2797 IWL_DEBUG_RADIO("u16 channel: 0x%x\n", le16_to_cpu(rxon->channel));
2798 IWL_DEBUG_RADIO("u32 flags: 0x%08X\n", le32_to_cpu(rxon->flags));
2799 IWL_DEBUG_RADIO("u32 filter_flags: 0x%08x\n",
2800 le32_to_cpu(rxon->filter_flags));
2801 IWL_DEBUG_RADIO("u8 dev_type: 0x%x\n", rxon->dev_type);
2802 IWL_DEBUG_RADIO("u8 ofdm_basic_rates: 0x%02x\n",
2803 rxon->ofdm_basic_rates);
2804 IWL_DEBUG_RADIO("u8 cck_basic_rates: 0x%02x\n", rxon->cck_basic_rates);
2805 IWL_DEBUG_RADIO("u8[6] node_addr: %pM\n", rxon->node_addr);
2806 IWL_DEBUG_RADIO("u8[6] bssid_addr: %pM\n", rxon->bssid_addr);
2807 IWL_DEBUG_RADIO("u16 assoc_id: 0x%x\n", le16_to_cpu(rxon->assoc_id));
2811 static void iwl3945_enable_interrupts(struct iwl_priv *priv)
2813 IWL_DEBUG_ISR("Enabling interrupts\n");
2814 set_bit(STATUS_INT_ENABLED, &priv->status);
2815 iwl_write32(priv, CSR_INT_MASK, CSR_INI_SET_MASK);
2819 /* call this function to flush any scheduled tasklet */
2820 static inline void iwl_synchronize_irq(struct iwl_priv *priv)
2822 /* wait to make sure we flush pending tasklet*/
2823 synchronize_irq(priv->pci_dev->irq);
2824 tasklet_kill(&priv->irq_tasklet);
2828 static inline void iwl3945_disable_interrupts(struct iwl_priv *priv)
2830 clear_bit(STATUS_INT_ENABLED, &priv->status);
2832 /* disable interrupts from uCode/NIC to host */
2833 iwl_write32(priv, CSR_INT_MASK, 0x00000000);
2835 /* acknowledge/clear/reset any interrupts still pending
2836 * from uCode or flow handler (Rx/Tx DMA) */
2837 iwl_write32(priv, CSR_INT, 0xffffffff);
2838 iwl_write32(priv, CSR_FH_INT_STATUS, 0xffffffff);
2839 IWL_DEBUG_ISR("Disabled interrupts\n");
2842 static const char *desc_lookup(int i)
2850 return "BAD_CHECKSUM";
2852 return "NMI_INTERRUPT";
2856 return "FATAL_ERROR";
2862 #define ERROR_START_OFFSET (1 * sizeof(u32))
2863 #define ERROR_ELEM_SIZE (7 * sizeof(u32))
2865 static void iwl3945_dump_nic_error_log(struct iwl_priv *priv)
2868 u32 desc, time, count, base, data1;
2869 u32 blink1, blink2, ilink1, ilink2;
2872 base = le32_to_cpu(priv->card_alive.error_event_table_ptr);
2874 if (!iwl3945_hw_valid_rtc_data_addr(base)) {
2875 IWL_ERR(priv, "Not valid error log pointer 0x%08X\n", base);
2879 rc = iwl_grab_nic_access(priv);
2881 IWL_WARN(priv, "Can not read from adapter at this time.\n");
2885 count = iwl_read_targ_mem(priv, base);
2887 if (ERROR_START_OFFSET <= count * ERROR_ELEM_SIZE) {
2888 IWL_ERR(priv, "Start IWL Error Log Dump:\n");
2889 IWL_ERR(priv, "Status: 0x%08lX, count: %d\n",
2890 priv->status, count);
2893 IWL_ERR(priv, "Desc Time asrtPC blink2 "
2894 "ilink1 nmiPC Line\n");
2895 for (i = ERROR_START_OFFSET;
2896 i < (count * ERROR_ELEM_SIZE) + ERROR_START_OFFSET;
2897 i += ERROR_ELEM_SIZE) {
2898 desc = iwl_read_targ_mem(priv, base + i);
2900 iwl_read_targ_mem(priv, base + i + 1 * sizeof(u32));
2902 iwl_read_targ_mem(priv, base + i + 2 * sizeof(u32));
2904 iwl_read_targ_mem(priv, base + i + 3 * sizeof(u32));
2906 iwl_read_targ_mem(priv, base + i + 4 * sizeof(u32));
2908 iwl_read_targ_mem(priv, base + i + 5 * sizeof(u32));
2910 iwl_read_targ_mem(priv, base + i + 6 * sizeof(u32));
2913 "%-13s (#%d) %010u 0x%05X 0x%05X 0x%05X 0x%05X %u\n\n",
2914 desc_lookup(desc), desc, time, blink1, blink2,
2915 ilink1, ilink2, data1);
2918 iwl_release_nic_access(priv);
2922 #define EVENT_START_OFFSET (6 * sizeof(u32))
2925 * iwl3945_print_event_log - Dump error event log to syslog
2927 * NOTE: Must be called with iwl_grab_nic_access() already obtained!
2929 static void iwl3945_print_event_log(struct iwl_priv *priv, u32 start_idx,
2930 u32 num_events, u32 mode)
2933 u32 base; /* SRAM byte address of event log header */
2934 u32 event_size; /* 2 u32s, or 3 u32s if timestamp recorded */
2935 u32 ptr; /* SRAM byte address of log data */
2936 u32 ev, time, data; /* event log data */
2938 if (num_events == 0)
2941 base = le32_to_cpu(priv->card_alive.log_event_table_ptr);
2944 event_size = 2 * sizeof(u32);
2946 event_size = 3 * sizeof(u32);
2948 ptr = base + EVENT_START_OFFSET + (start_idx * event_size);
2950 /* "time" is actually "data" for mode 0 (no timestamp).
2951 * place event id # at far right for easier visual parsing. */
2952 for (i = 0; i < num_events; i++) {
2953 ev = iwl_read_targ_mem(priv, ptr);
2955 time = iwl_read_targ_mem(priv, ptr);
2959 IWL_ERR(priv, "0x%08x\t%04u\n", time, ev);
2961 data = iwl_read_targ_mem(priv, ptr);
2963 IWL_ERR(priv, "%010u\t0x%08x\t%04u\n", time, data, ev);
2968 static void iwl3945_dump_nic_event_log(struct iwl_priv *priv)
2971 u32 base; /* SRAM byte address of event log header */
2972 u32 capacity; /* event log capacity in # entries */
2973 u32 mode; /* 0 - no timestamp, 1 - timestamp recorded */
2974 u32 num_wraps; /* # times uCode wrapped to top of log */
2975 u32 next_entry; /* index of next entry to be written by uCode */
2976 u32 size; /* # entries that we'll print */
2978 base = le32_to_cpu(priv->card_alive.log_event_table_ptr);
2979 if (!iwl3945_hw_valid_rtc_data_addr(base)) {
2980 IWL_ERR(priv, "Invalid event log pointer 0x%08X\n", base);
2984 rc = iwl_grab_nic_access(priv);
2986 IWL_WARN(priv, "Can not read from adapter at this time.\n");
2990 /* event log header */
2991 capacity = iwl_read_targ_mem(priv, base);
2992 mode = iwl_read_targ_mem(priv, base + (1 * sizeof(u32)));
2993 num_wraps = iwl_read_targ_mem(priv, base + (2 * sizeof(u32)));
2994 next_entry = iwl_read_targ_mem(priv, base + (3 * sizeof(u32)));
2996 size = num_wraps ? capacity : next_entry;
2998 /* bail out if nothing in log */
3000 IWL_ERR(priv, "Start IWL Event Log Dump: nothing in log\n");
3001 iwl_release_nic_access(priv);
3005 IWL_ERR(priv, "Start IWL Event Log Dump: display count %d, wraps %d\n",
3008 /* if uCode has wrapped back to top of log, start at the oldest entry,
3009 * i.e the next one that uCode would fill. */
3011 iwl3945_print_event_log(priv, next_entry,
3012 capacity - next_entry, mode);
3014 /* (then/else) start at top of log */
3015 iwl3945_print_event_log(priv, 0, next_entry, mode);
3017 iwl_release_nic_access(priv);
3021 * iwl3945_irq_handle_error - called for HW or SW error interrupt from card
3023 static void iwl3945_irq_handle_error(struct iwl_priv *priv)
3025 /* Set the FW error flag -- cleared on iwl3945_down */
3026 set_bit(STATUS_FW_ERROR, &priv->status);
3028 /* Cancel currently queued command. */
3029 clear_bit(STATUS_HCMD_ACTIVE, &priv->status);
3031 #ifdef CONFIG_IWL3945_DEBUG
3032 if (priv->debug_level & IWL_DL_FW_ERRORS) {
3033 iwl3945_dump_nic_error_log(priv);
3034 iwl3945_dump_nic_event_log(priv);
3035 iwl3945_print_rx_config_cmd(priv, &priv->staging39_rxon);
3039 wake_up_interruptible(&priv->wait_command_queue);
3041 /* Keep the restart process from trying to send host
3042 * commands by clearing the INIT status bit */
3043 clear_bit(STATUS_READY, &priv->status);
3045 if (!test_bit(STATUS_EXIT_PENDING, &priv->status)) {
3046 IWL_DEBUG(IWL_DL_INFO | IWL_DL_FW_ERRORS,
3047 "Restarting adapter due to uCode error.\n");
3049 if (iwl3945_is_associated(priv)) {
3050 memcpy(&priv->recovery39_rxon, &priv->active39_rxon,
3051 sizeof(priv->recovery39_rxon));
3052 priv->error_recovering = 1;
3054 queue_work(priv->workqueue, &priv->restart);
3058 static void iwl3945_error_recovery(struct iwl_priv *priv)
3060 unsigned long flags;
3062 memcpy(&priv->staging39_rxon, &priv->recovery39_rxon,
3063 sizeof(priv->staging39_rxon));
3064 priv->staging39_rxon.filter_flags &= ~RXON_FILTER_ASSOC_MSK;
3065 iwl3945_commit_rxon(priv);
3067 iwl3945_add_station(priv, priv->bssid, 1, 0);
3069 spin_lock_irqsave(&priv->lock, flags);
3070 priv->assoc_id = le16_to_cpu(priv->staging39_rxon.assoc_id);
3071 priv->error_recovering = 0;
3072 spin_unlock_irqrestore(&priv->lock, flags);
3075 static void iwl3945_irq_tasklet(struct iwl_priv *priv)
3077 u32 inta, handled = 0;
3079 unsigned long flags;
3080 #ifdef CONFIG_IWL3945_DEBUG
3084 spin_lock_irqsave(&priv->lock, flags);
3086 /* Ack/clear/reset pending uCode interrupts.
3087 * Note: Some bits in CSR_INT are "OR" of bits in CSR_FH_INT_STATUS,
3088 * and will clear only when CSR_FH_INT_STATUS gets cleared. */
3089 inta = iwl_read32(priv, CSR_INT);
3090 iwl_write32(priv, CSR_INT, inta);
3092 /* Ack/clear/reset pending flow-handler (DMA) interrupts.
3093 * Any new interrupts that happen after this, either while we're
3094 * in this tasklet, or later, will show up in next ISR/tasklet. */
3095 inta_fh = iwl_read32(priv, CSR_FH_INT_STATUS);
3096 iwl_write32(priv, CSR_FH_INT_STATUS, inta_fh);
3098 #ifdef CONFIG_IWL3945_DEBUG
3099 if (priv->debug_level & IWL_DL_ISR) {
3100 /* just for debug */
3101 inta_mask = iwl_read32(priv, CSR_INT_MASK);
3102 IWL_DEBUG_ISR("inta 0x%08x, enabled 0x%08x, fh 0x%08x\n",
3103 inta, inta_mask, inta_fh);
3107 /* Since CSR_INT and CSR_FH_INT_STATUS reads and clears are not
3108 * atomic, make sure that inta covers all the interrupts that
3109 * we've discovered, even if FH interrupt came in just after
3110 * reading CSR_INT. */
3111 if (inta_fh & CSR39_FH_INT_RX_MASK)
3112 inta |= CSR_INT_BIT_FH_RX;
3113 if (inta_fh & CSR39_FH_INT_TX_MASK)
3114 inta |= CSR_INT_BIT_FH_TX;
3116 /* Now service all interrupt bits discovered above. */
3117 if (inta & CSR_INT_BIT_HW_ERR) {
3118 IWL_ERR(priv, "Microcode HW error detected. Restarting.\n");
3120 /* Tell the device to stop sending interrupts */
3121 iwl3945_disable_interrupts(priv);
3123 iwl3945_irq_handle_error(priv);
3125 handled |= CSR_INT_BIT_HW_ERR;
3127 spin_unlock_irqrestore(&priv->lock, flags);
3132 #ifdef CONFIG_IWL3945_DEBUG
3133 if (priv->debug_level & (IWL_DL_ISR)) {
3134 /* NIC fires this, but we don't use it, redundant with WAKEUP */
3135 if (inta & CSR_INT_BIT_SCD)
3136 IWL_DEBUG_ISR("Scheduler finished to transmit "
3137 "the frame/frames.\n");
3139 /* Alive notification via Rx interrupt will do the real work */
3140 if (inta & CSR_INT_BIT_ALIVE)
3141 IWL_DEBUG_ISR("Alive interrupt\n");
3144 /* Safely ignore these bits for debug checks below */
3145 inta &= ~(CSR_INT_BIT_SCD | CSR_INT_BIT_ALIVE);
3147 /* Error detected by uCode */
3148 if (inta & CSR_INT_BIT_SW_ERR) {
3149 IWL_ERR(priv, "Microcode SW error detected. "
3150 "Restarting 0x%X.\n", inta);
3151 iwl3945_irq_handle_error(priv);
3152 handled |= CSR_INT_BIT_SW_ERR;
3155 /* uCode wakes up after power-down sleep */
3156 if (inta & CSR_INT_BIT_WAKEUP) {
3157 IWL_DEBUG_ISR("Wakeup interrupt\n");
3158 iwl_rx_queue_update_write_ptr(priv, &priv->rxq);
3159 iwl_txq_update_write_ptr(priv, &priv->txq[0]);
3160 iwl_txq_update_write_ptr(priv, &priv->txq[1]);
3161 iwl_txq_update_write_ptr(priv, &priv->txq[2]);
3162 iwl_txq_update_write_ptr(priv, &priv->txq[3]);
3163 iwl_txq_update_write_ptr(priv, &priv->txq[4]);
3164 iwl_txq_update_write_ptr(priv, &priv->txq[5]);
3166 handled |= CSR_INT_BIT_WAKEUP;
3169 /* All uCode command responses, including Tx command responses,
3170 * Rx "responses" (frame-received notification), and other
3171 * notifications from uCode come through here*/
3172 if (inta & (CSR_INT_BIT_FH_RX | CSR_INT_BIT_SW_RX)) {
3173 iwl3945_rx_handle(priv);
3174 handled |= (CSR_INT_BIT_FH_RX | CSR_INT_BIT_SW_RX);
3177 if (inta & CSR_INT_BIT_FH_TX) {
3178 IWL_DEBUG_ISR("Tx interrupt\n");
3180 iwl_write32(priv, CSR_FH_INT_STATUS, (1 << 6));
3181 if (!iwl_grab_nic_access(priv)) {
3182 iwl_write_direct32(priv, FH39_TCSR_CREDIT
3183 (FH39_SRVC_CHNL), 0x0);
3184 iwl_release_nic_access(priv);
3186 handled |= CSR_INT_BIT_FH_TX;
3189 if (inta & ~handled)
3190 IWL_ERR(priv, "Unhandled INTA bits 0x%08x\n", inta & ~handled);
3192 if (inta & ~CSR_INI_SET_MASK) {
3193 IWL_WARN(priv, "Disabled INTA bits 0x%08x were pending\n",
3194 inta & ~CSR_INI_SET_MASK);
3195 IWL_WARN(priv, " with FH_INT = 0x%08x\n", inta_fh);
3198 /* Re-enable all interrupts */
3199 /* only Re-enable if disabled by irq */
3200 if (test_bit(STATUS_INT_ENABLED, &priv->status))
3201 iwl3945_enable_interrupts(priv);
3203 #ifdef CONFIG_IWL3945_DEBUG
3204 if (priv->debug_level & (IWL_DL_ISR)) {
3205 inta = iwl_read32(priv, CSR_INT);
3206 inta_mask = iwl_read32(priv, CSR_INT_MASK);
3207 inta_fh = iwl_read32(priv, CSR_FH_INT_STATUS);
3208 IWL_DEBUG_ISR("End inta 0x%08x, enabled 0x%08x, fh 0x%08x, "
3209 "flags 0x%08lx\n", inta, inta_mask, inta_fh, flags);
3212 spin_unlock_irqrestore(&priv->lock, flags);
3215 static irqreturn_t iwl3945_isr(int irq, void *data)
3217 struct iwl_priv *priv = data;
3218 u32 inta, inta_mask;
3223 spin_lock(&priv->lock);
3225 /* Disable (but don't clear!) interrupts here to avoid
3226 * back-to-back ISRs and sporadic interrupts from our NIC.
3227 * If we have something to service, the tasklet will re-enable ints.
3228 * If we *don't* have something, we'll re-enable before leaving here. */
3229 inta_mask = iwl_read32(priv, CSR_INT_MASK); /* just for debug */
3230 iwl_write32(priv, CSR_INT_MASK, 0x00000000);
3232 /* Discover which interrupts are active/pending */
3233 inta = iwl_read32(priv, CSR_INT);
3234 inta_fh = iwl_read32(priv, CSR_FH_INT_STATUS);
3236 /* Ignore interrupt if there's nothing in NIC to service.
3237 * This may be due to IRQ shared with another device,
3238 * or due to sporadic interrupts thrown from our NIC. */
3239 if (!inta && !inta_fh) {
3240 IWL_DEBUG_ISR("Ignore interrupt, inta == 0, inta_fh == 0\n");
3244 if ((inta == 0xFFFFFFFF) || ((inta & 0xFFFFFFF0) == 0xa5a5a5a0)) {
3245 /* Hardware disappeared */
3246 IWL_WARN(priv, "HARDWARE GONE?? INTA == 0x%08x\n", inta);
3250 IWL_DEBUG_ISR("ISR inta 0x%08x, enabled 0x%08x, fh 0x%08x\n",
3251 inta, inta_mask, inta_fh);
3253 inta &= ~CSR_INT_BIT_SCD;
3255 /* iwl3945_irq_tasklet() will service interrupts and re-enable them */
3256 if (likely(inta || inta_fh))
3257 tasklet_schedule(&priv->irq_tasklet);
3259 spin_unlock(&priv->lock);
3264 /* re-enable interrupts here since we don't have anything to service. */
3265 /* only Re-enable if disabled by irq */
3266 if (test_bit(STATUS_INT_ENABLED, &priv->status))
3267 iwl3945_enable_interrupts(priv);
3268 spin_unlock(&priv->lock);
3272 static int iwl3945_get_channels_for_scan(struct iwl_priv *priv,
3273 enum ieee80211_band band,
3274 u8 is_active, u8 n_probes,
3275 struct iwl3945_scan_channel *scan_ch)
3277 const struct ieee80211_channel *channels = NULL;
3278 const struct ieee80211_supported_band *sband;
3279 const struct iwl_channel_info *ch_info;
3280 u16 passive_dwell = 0;
3281 u16 active_dwell = 0;
3284 sband = iwl_get_hw_mode(priv, band);
3288 channels = sband->channels;
3290 active_dwell = iwl_get_active_dwell_time(priv, band, n_probes);
3291 passive_dwell = iwl_get_passive_dwell_time(priv, band);
3293 if (passive_dwell <= active_dwell)
3294 passive_dwell = active_dwell + 1;
3296 for (i = 0, added = 0; i < sband->n_channels; i++) {
3297 if (channels[i].flags & IEEE80211_CHAN_DISABLED)
3300 scan_ch->channel = channels[i].hw_value;
3302 ch_info = iwl_get_channel_info(priv, band, scan_ch->channel);
3303 if (!is_channel_valid(ch_info)) {
3304 IWL_DEBUG_SCAN("Channel %d is INVALID for this band.\n",
3309 scan_ch->active_dwell = cpu_to_le16(active_dwell);
3310 scan_ch->passive_dwell = cpu_to_le16(passive_dwell);
3311 /* If passive , set up for auto-switch
3312 * and use long active_dwell time.
3314 if (!is_active || is_channel_passive(ch_info) ||
3315 (channels[i].flags & IEEE80211_CHAN_PASSIVE_SCAN)) {
3316 scan_ch->type = 0; /* passive */
3317 if (IWL_UCODE_API(priv->ucode_ver) == 1)
3318 scan_ch->active_dwell = cpu_to_le16(passive_dwell - 1);
3320 scan_ch->type = 1; /* active */
3323 /* Set direct probe bits. These may be used both for active
3324 * scan channels (probes gets sent right away),
3325 * or for passive channels (probes get se sent only after
3326 * hearing clear Rx packet).*/
3327 if (IWL_UCODE_API(priv->ucode_ver) >= 2) {
3329 scan_ch->type |= IWL_SCAN_PROBE_MASK(n_probes);
3331 /* uCode v1 does not allow setting direct probe bits on
3332 * passive channel. */
3333 if ((scan_ch->type & 1) && n_probes)
3334 scan_ch->type |= IWL_SCAN_PROBE_MASK(n_probes);
3337 /* Set txpower levels to defaults */
3338 scan_ch->tpc.dsp_atten = 110;
3339 /* scan_pwr_info->tpc.dsp_atten; */
3341 /*scan_pwr_info->tpc.tx_gain; */
3342 if (band == IEEE80211_BAND_5GHZ)
3343 scan_ch->tpc.tx_gain = ((1 << 5) | (3 << 3)) | 3;
3345 scan_ch->tpc.tx_gain = ((1 << 5) | (5 << 3));
3346 /* NOTE: if we were doing 6Mb OFDM for scans we'd use
3348 * scan_ch->tpc.tx_gain = ((1 << 5) | (2 << 3)) | 3;
3352 IWL_DEBUG_SCAN("Scanning %d [%s %d]\n",
3354 (scan_ch->type & 1) ? "ACTIVE" : "PASSIVE",
3355 (scan_ch->type & 1) ?
3356 active_dwell : passive_dwell);
3362 IWL_DEBUG_SCAN("total channels to scan %d \n", added);
3366 static void iwl3945_init_hw_rates(struct iwl_priv *priv,
3367 struct ieee80211_rate *rates)
3371 for (i = 0; i < IWL_RATE_COUNT; i++) {
3372 rates[i].bitrate = iwl3945_rates[i].ieee * 5;
3373 rates[i].hw_value = i; /* Rate scaling will work on indexes */
3374 rates[i].hw_value_short = i;
3376 if ((i > IWL39_LAST_OFDM_RATE) || (i < IWL_FIRST_OFDM_RATE)) {
3378 * If CCK != 1M then set short preamble rate flag.
3380 rates[i].flags |= (iwl3945_rates[i].plcp == 10) ?
3381 0 : IEEE80211_RATE_SHORT_PREAMBLE;
3387 * iwl3945_init_geos - Initialize mac80211's geo/channel info based from eeprom
3389 #define IEEE80211_24GHZ_MAX_CHANNEL 14
3390 static int iwl3945_init_geos(struct iwl_priv *priv)
3392 struct iwl_channel_info *ch;
3393 struct ieee80211_supported_band *sband;
3394 struct ieee80211_channel *channels;
3395 struct ieee80211_channel *geo_ch;
3396 struct ieee80211_rate *rates;
3399 if (priv->bands[IEEE80211_BAND_2GHZ].n_bitrates ||
3400 priv->bands[IEEE80211_BAND_5GHZ].n_bitrates) {
3401 IWL_DEBUG_INFO("Geography modes already initialized.\n");
3402 set_bit(STATUS_GEO_CONFIGURED, &priv->status);
3406 channels = kzalloc(sizeof(struct ieee80211_channel) *
3407 priv->channel_count, GFP_KERNEL);
3411 rates = kzalloc((sizeof(struct ieee80211_rate) * (IWL_RATE_COUNT + 1)),
3418 /* 5.2GHz channels start after the 2.4GHz channels */
3419 sband = &priv->bands[IEEE80211_BAND_5GHZ];
3420 sband->channels = &channels[IEEE80211_24GHZ_MAX_CHANNEL];
3422 sband->bitrates = &rates[IWL_FIRST_OFDM_RATE];
3423 sband->n_bitrates = IWL_RATE_COUNT - IWL_FIRST_OFDM_RATE;
3425 sband = &priv->bands[IEEE80211_BAND_2GHZ];
3426 sband->channels = channels;
3428 sband->bitrates = rates;
3429 sband->n_bitrates = IWL_RATE_COUNT;
3431 priv->ieee_channels = channels;
3432 priv->ieee_rates = rates;
3434 iwl3945_init_hw_rates(priv, rates);
3436 for (i = 0; i < priv->channel_count; i++) {
3437 ch = &priv->channel_info[i];
3439 /* FIXME: might be removed if scan is OK*/
3440 if (!is_channel_valid(ch))
3443 if (is_channel_a_band(ch))
3444 sband = &priv->bands[IEEE80211_BAND_5GHZ];
3446 sband = &priv->bands[IEEE80211_BAND_2GHZ];
3448 geo_ch = &sband->channels[sband->n_channels++];
3450 geo_ch->center_freq = ieee80211_channel_to_frequency(ch->channel);
3451 geo_ch->max_power = ch->max_power_avg;
3452 geo_ch->max_antenna_gain = 0xff;
3453 geo_ch->hw_value = ch->channel;
3455 if (is_channel_valid(ch)) {
3456 if (!(ch->flags & EEPROM_CHANNEL_IBSS))
3457 geo_ch->flags |= IEEE80211_CHAN_NO_IBSS;
3459 if (!(ch->flags & EEPROM_CHANNEL_ACTIVE))
3460 geo_ch->flags |= IEEE80211_CHAN_PASSIVE_SCAN;
3462 if (ch->flags & EEPROM_CHANNEL_RADAR)
3463 geo_ch->flags |= IEEE80211_CHAN_RADAR;
3465 if (ch->max_power_avg > priv->tx_power_channel_lmt)
3466 priv->tx_power_channel_lmt =
3469 geo_ch->flags |= IEEE80211_CHAN_DISABLED;
3472 /* Save flags for reg domain usage */
3473 geo_ch->orig_flags = geo_ch->flags;
3475 IWL_DEBUG_INFO("Channel %d Freq=%d[%sGHz] %s flag=0%X\n",
3476 ch->channel, geo_ch->center_freq,
3477 is_channel_a_band(ch) ? "5.2" : "2.4",
3478 geo_ch->flags & IEEE80211_CHAN_DISABLED ?
3479 "restricted" : "valid",
3483 if ((priv->bands[IEEE80211_BAND_5GHZ].n_channels == 0) &&
3484 priv->cfg->sku & IWL_SKU_A) {
3485 IWL_INFO(priv, "Incorrectly detected BG card as ABG. "
3486 "Please send your PCI ID 0x%04X:0x%04X to maintainer.\n",
3487 priv->pci_dev->device, priv->pci_dev->subsystem_device);
3488 priv->cfg->sku &= ~IWL_SKU_A;
3491 IWL_INFO(priv, "Tunable channels: %d 802.11bg, %d 802.11a channels\n",
3492 priv->bands[IEEE80211_BAND_2GHZ].n_channels,
3493 priv->bands[IEEE80211_BAND_5GHZ].n_channels);
3495 if (priv->bands[IEEE80211_BAND_2GHZ].n_channels)
3496 priv->hw->wiphy->bands[IEEE80211_BAND_2GHZ] =
3497 &priv->bands[IEEE80211_BAND_2GHZ];
3498 if (priv->bands[IEEE80211_BAND_5GHZ].n_channels)
3499 priv->hw->wiphy->bands[IEEE80211_BAND_5GHZ] =
3500 &priv->bands[IEEE80211_BAND_5GHZ];
3502 set_bit(STATUS_GEO_CONFIGURED, &priv->status);
3508 * iwl3945_free_geos - undo allocations in iwl3945_init_geos
3510 static void iwl3945_free_geos(struct iwl_priv *priv)
3512 kfree(priv->ieee_channels);
3513 kfree(priv->ieee_rates);
3514 clear_bit(STATUS_GEO_CONFIGURED, &priv->status);
3517 /******************************************************************************
3519 * uCode download functions
3521 ******************************************************************************/
3523 static void iwl3945_dealloc_ucode_pci(struct iwl_priv *priv)
3525 iwl_free_fw_desc(priv->pci_dev, &priv->ucode_code);
3526 iwl_free_fw_desc(priv->pci_dev, &priv->ucode_data);
3527 iwl_free_fw_desc(priv->pci_dev, &priv->ucode_data_backup);
3528 iwl_free_fw_desc(priv->pci_dev, &priv->ucode_init);
3529 iwl_free_fw_desc(priv->pci_dev, &priv->ucode_init_data);
3530 iwl_free_fw_desc(priv->pci_dev, &priv->ucode_boot);
3534 * iwl3945_verify_inst_full - verify runtime uCode image in card vs. host,
3535 * looking at all data.
3537 static int iwl3945_verify_inst_full(struct iwl_priv *priv, __le32 *image, u32 len)
3544 IWL_DEBUG_INFO("ucode inst image size is %u\n", len);
3546 rc = iwl_grab_nic_access(priv);
3550 iwl_write_direct32(priv, HBUS_TARG_MEM_RADDR,
3551 IWL39_RTC_INST_LOWER_BOUND);
3554 for (; len > 0; len -= sizeof(u32), image++) {
3555 /* read data comes through single port, auto-incr addr */
3556 /* NOTE: Use the debugless read so we don't flood kernel log
3557 * if IWL_DL_IO is set */
3558 val = _iwl_read_direct32(priv, HBUS_TARG_MEM_RDAT);
3559 if (val != le32_to_cpu(*image)) {
3560 IWL_ERR(priv, "uCode INST section is invalid at "
3561 "offset 0x%x, is 0x%x, s/b 0x%x\n",
3562 save_len - len, val, le32_to_cpu(*image));
3570 iwl_release_nic_access(priv);
3573 IWL_DEBUG_INFO("ucode image in INSTRUCTION memory is good\n");
3580 * iwl3945_verify_inst_sparse - verify runtime uCode image in card vs. host,
3581 * using sample data 100 bytes apart. If these sample points are good,
3582 * it's a pretty good bet that everything between them is good, too.
3584 static int iwl3945_verify_inst_sparse(struct iwl_priv *priv, __le32 *image, u32 len)
3591 IWL_DEBUG_INFO("ucode inst image size is %u\n", len);
3593 rc = iwl_grab_nic_access(priv);
3597 for (i = 0; i < len; i += 100, image += 100/sizeof(u32)) {
3598 /* read data comes through single port, auto-incr addr */
3599 /* NOTE: Use the debugless read so we don't flood kernel log
3600 * if IWL_DL_IO is set */
3601 iwl_write_direct32(priv, HBUS_TARG_MEM_RADDR,
3602 i + IWL39_RTC_INST_LOWER_BOUND);
3603 val = _iwl_read_direct32(priv, HBUS_TARG_MEM_RDAT);
3604 if (val != le32_to_cpu(*image)) {
3605 #if 0 /* Enable this if you want to see details */
3606 IWL_ERR(priv, "uCode INST section is invalid at "
3607 "offset 0x%x, is 0x%x, s/b 0x%x\n",
3617 iwl_release_nic_access(priv);
3624 * iwl3945_verify_ucode - determine which instruction image is in SRAM,
3625 * and verify its contents
3627 static int iwl3945_verify_ucode(struct iwl_priv *priv)
3634 image = (__le32 *)priv->ucode_boot.v_addr;
3635 len = priv->ucode_boot.len;
3636 rc = iwl3945_verify_inst_sparse(priv, image, len);
3638 IWL_DEBUG_INFO("Bootstrap uCode is good in inst SRAM\n");
3642 /* Try initialize */
3643 image = (__le32 *)priv->ucode_init.v_addr;
3644 len = priv->ucode_init.len;
3645 rc = iwl3945_verify_inst_sparse(priv, image, len);
3647 IWL_DEBUG_INFO("Initialize uCode is good in inst SRAM\n");
3651 /* Try runtime/protocol */
3652 image = (__le32 *)priv->ucode_code.v_addr;
3653 len = priv->ucode_code.len;
3654 rc = iwl3945_verify_inst_sparse(priv, image, len);
3656 IWL_DEBUG_INFO("Runtime uCode is good in inst SRAM\n");
3660 IWL_ERR(priv, "NO VALID UCODE IMAGE IN INSTRUCTION SRAM!!\n");
3662 /* Since nothing seems to match, show first several data entries in
3663 * instruction SRAM, so maybe visual inspection will give a clue.
3664 * Selection of bootstrap image (vs. other images) is arbitrary. */
3665 image = (__le32 *)priv->ucode_boot.v_addr;
3666 len = priv->ucode_boot.len;
3667 rc = iwl3945_verify_inst_full(priv, image, len);
3672 static void iwl3945_nic_start(struct iwl_priv *priv)
3674 /* Remove all resets to allow NIC to operate */
3675 iwl_write32(priv, CSR_RESET, 0);
3679 * iwl3945_read_ucode - Read uCode images from disk file.
3681 * Copy into buffers for card to fetch via bus-mastering
3683 static int iwl3945_read_ucode(struct iwl_priv *priv)
3685 struct iwl_ucode *ucode;
3686 int ret = -EINVAL, index;
3687 const struct firmware *ucode_raw;
3688 /* firmware file name contains uCode/driver compatibility version */
3689 const char *name_pre = priv->cfg->fw_name_pre;
3690 const unsigned int api_max = priv->cfg->ucode_api_max;
3691 const unsigned int api_min = priv->cfg->ucode_api_min;
3695 u32 api_ver, inst_size, data_size, init_size, init_data_size, boot_size;
3697 /* Ask kernel firmware_class module to get the boot firmware off disk.
3698 * request_firmware() is synchronous, file is in memory on return. */
3699 for (index = api_max; index >= api_min; index--) {
3700 sprintf(buf, "%s%u%s", name_pre, index, ".ucode");
3701 ret = request_firmware(&ucode_raw, buf, &priv->pci_dev->dev);
3703 IWL_ERR(priv, "%s firmware file req failed: %d\n",
3710 if (index < api_max)
3711 IWL_ERR(priv, "Loaded firmware %s, "
3712 "which is deprecated. "
3713 " Please use API v%u instead.\n",
3715 IWL_DEBUG_INFO("Got firmware '%s' file (%zd bytes) from disk\n",
3716 buf, ucode_raw->size);
3724 /* Make sure that we got at least our header! */
3725 if (ucode_raw->size < sizeof(*ucode)) {
3726 IWL_ERR(priv, "File size way too small!\n");
3731 /* Data from ucode file: header followed by uCode images */
3732 ucode = (void *)ucode_raw->data;
3734 priv->ucode_ver = le32_to_cpu(ucode->ver);
3735 api_ver = IWL_UCODE_API(priv->ucode_ver);
3736 inst_size = le32_to_cpu(ucode->inst_size);
3737 data_size = le32_to_cpu(ucode->data_size);
3738 init_size = le32_to_cpu(ucode->init_size);
3739 init_data_size = le32_to_cpu(ucode->init_data_size);
3740 boot_size = le32_to_cpu(ucode->boot_size);
3742 /* api_ver should match the api version forming part of the
3743 * firmware filename ... but we don't check for that and only rely
3744 * on the API version read from firware header from here on forward */
3746 if (api_ver < api_min || api_ver > api_max) {
3747 IWL_ERR(priv, "Driver unable to support your firmware API. "
3748 "Driver supports v%u, firmware is v%u.\n",
3750 priv->ucode_ver = 0;
3754 if (api_ver != api_max)
3755 IWL_ERR(priv, "Firmware has old API version. Expected %u, "
3756 "got %u. New firmware can be obtained "
3757 "from http://www.intellinuxwireless.org.\n",
3760 IWL_INFO(priv, "loaded firmware version %u.%u.%u.%u\n",
3761 IWL_UCODE_MAJOR(priv->ucode_ver),
3762 IWL_UCODE_MINOR(priv->ucode_ver),
3763 IWL_UCODE_API(priv->ucode_ver),
3764 IWL_UCODE_SERIAL(priv->ucode_ver));
3766 IWL_DEBUG_INFO("f/w package hdr ucode version raw = 0x%x\n",
3768 IWL_DEBUG_INFO("f/w package hdr runtime inst size = %u\n", inst_size);
3769 IWL_DEBUG_INFO("f/w package hdr runtime data size = %u\n", data_size);
3770 IWL_DEBUG_INFO("f/w package hdr init inst size = %u\n", init_size);
3771 IWL_DEBUG_INFO("f/w package hdr init data size = %u\n", init_data_size);
3772 IWL_DEBUG_INFO("f/w package hdr boot inst size = %u\n", boot_size);
3775 /* Verify size of file vs. image size info in file's header */
3776 if (ucode_raw->size < sizeof(*ucode) +
3777 inst_size + data_size + init_size +
3778 init_data_size + boot_size) {
3780 IWL_DEBUG_INFO("uCode file size %d too small\n",
3781 (int)ucode_raw->size);
3786 /* Verify that uCode images will fit in card's SRAM */
3787 if (inst_size > IWL39_MAX_INST_SIZE) {
3788 IWL_DEBUG_INFO("uCode instr len %d too large to fit in\n",
3794 if (data_size > IWL39_MAX_DATA_SIZE) {
3795 IWL_DEBUG_INFO("uCode data len %d too large to fit in\n",
3800 if (init_size > IWL39_MAX_INST_SIZE) {
3801 IWL_DEBUG_INFO("uCode init instr len %d too large to fit in\n",
3806 if (init_data_size > IWL39_MAX_DATA_SIZE) {
3807 IWL_DEBUG_INFO("uCode init data len %d too large to fit in\n",
3812 if (boot_size > IWL39_MAX_BSM_SIZE) {
3813 IWL_DEBUG_INFO("uCode boot instr len %d too large to fit in\n",
3819 /* Allocate ucode buffers for card's bus-master loading ... */
3821 /* Runtime instructions and 2 copies of data:
3822 * 1) unmodified from disk
3823 * 2) backup cache for save/restore during power-downs */
3824 priv->ucode_code.len = inst_size;
3825 iwl_alloc_fw_desc(priv->pci_dev, &priv->ucode_code);
3827 priv->ucode_data.len = data_size;
3828 iwl_alloc_fw_desc(priv->pci_dev, &priv->ucode_data);
3830 priv->ucode_data_backup.len = data_size;
3831 iwl_alloc_fw_desc(priv->pci_dev, &priv->ucode_data_backup);
3833 if (!priv->ucode_code.v_addr || !priv->ucode_data.v_addr ||
3834 !priv->ucode_data_backup.v_addr)
3837 /* Initialization instructions and data */
3838 if (init_size && init_data_size) {
3839 priv->ucode_init.len = init_size;
3840 iwl_alloc_fw_desc(priv->pci_dev, &priv->ucode_init);
3842 priv->ucode_init_data.len = init_data_size;
3843 iwl_alloc_fw_desc(priv->pci_dev, &priv->ucode_init_data);
3845 if (!priv->ucode_init.v_addr || !priv->ucode_init_data.v_addr)
3849 /* Bootstrap (instructions only, no data) */
3851 priv->ucode_boot.len = boot_size;
3852 iwl_alloc_fw_desc(priv->pci_dev, &priv->ucode_boot);
3854 if (!priv->ucode_boot.v_addr)
3858 /* Copy images into buffers for card's bus-master reads ... */
3860 /* Runtime instructions (first block of data in file) */
3861 src = &ucode->data[0];
3862 len = priv->ucode_code.len;
3863 IWL_DEBUG_INFO("Copying (but not loading) uCode instr len %Zd\n", len);
3864 memcpy(priv->ucode_code.v_addr, src, len);
3865 IWL_DEBUG_INFO("uCode instr buf vaddr = 0x%p, paddr = 0x%08x\n",
3866 priv->ucode_code.v_addr, (u32)priv->ucode_code.p_addr);
3868 /* Runtime data (2nd block)
3869 * NOTE: Copy into backup buffer will be done in iwl3945_up() */
3870 src = &ucode->data[inst_size];
3871 len = priv->ucode_data.len;
3872 IWL_DEBUG_INFO("Copying (but not loading) uCode data len %Zd\n", len);
3873 memcpy(priv->ucode_data.v_addr, src, len);
3874 memcpy(priv->ucode_data_backup.v_addr, src, len);
3876 /* Initialization instructions (3rd block) */
3878 src = &ucode->data[inst_size + data_size];
3879 len = priv->ucode_init.len;
3880 IWL_DEBUG_INFO("Copying (but not loading) init instr len %Zd\n",
3882 memcpy(priv->ucode_init.v_addr, src, len);
3885 /* Initialization data (4th block) */
3886 if (init_data_size) {
3887 src = &ucode->data[inst_size + data_size + init_size];
3888 len = priv->ucode_init_data.len;
3889 IWL_DEBUG_INFO("Copying (but not loading) init data len %d\n",
3891 memcpy(priv->ucode_init_data.v_addr, src, len);
3894 /* Bootstrap instructions (5th block) */
3895 src = &ucode->data[inst_size + data_size + init_size + init_data_size];
3896 len = priv->ucode_boot.len;
3897 IWL_DEBUG_INFO("Copying (but not loading) boot instr len %d\n",
3899 memcpy(priv->ucode_boot.v_addr, src, len);
3901 /* We have our copies now, allow OS release its copies */
3902 release_firmware(ucode_raw);
3906 IWL_ERR(priv, "failed to allocate pci memory\n");
3908 iwl3945_dealloc_ucode_pci(priv);
3911 release_firmware(ucode_raw);
3919 * iwl3945_set_ucode_ptrs - Set uCode address location
3921 * Tell initialization uCode where to find runtime uCode.
3923 * BSM registers initially contain pointers to initialization uCode.
3924 * We need to replace them to load runtime uCode inst and data,
3925 * and to save runtime data when powering down.
3927 static int iwl3945_set_ucode_ptrs(struct iwl_priv *priv)
3932 unsigned long flags;
3934 /* bits 31:0 for 3945 */
3935 pinst = priv->ucode_code.p_addr;
3936 pdata = priv->ucode_data_backup.p_addr;
3938 spin_lock_irqsave(&priv->lock, flags);
3939 rc = iwl_grab_nic_access(priv);
3941 spin_unlock_irqrestore(&priv->lock, flags);
3945 /* Tell bootstrap uCode where to find image to load */
3946 iwl_write_prph(priv, BSM_DRAM_INST_PTR_REG, pinst);
3947 iwl_write_prph(priv, BSM_DRAM_DATA_PTR_REG, pdata);
3948 iwl_write_prph(priv, BSM_DRAM_DATA_BYTECOUNT_REG,
3949 priv->ucode_data.len);
3951 /* Inst byte count must be last to set up, bit 31 signals uCode
3952 * that all new ptr/size info is in place */
3953 iwl_write_prph(priv, BSM_DRAM_INST_BYTECOUNT_REG,
3954 priv->ucode_code.len | BSM_DRAM_INST_LOAD);
3956 iwl_release_nic_access(priv);
3958 spin_unlock_irqrestore(&priv->lock, flags);
3960 IWL_DEBUG_INFO("Runtime uCode pointers are set.\n");
3966 * iwl3945_init_alive_start - Called after REPLY_ALIVE notification received
3968 * Called after REPLY_ALIVE notification received from "initialize" uCode.
3970 * Tell "initialize" uCode to go ahead and load the runtime uCode.
3972 static void iwl3945_init_alive_start(struct iwl_priv *priv)
3974 /* Check alive response for "valid" sign from uCode */
3975 if (priv->card_alive_init.is_valid != UCODE_VALID_OK) {
3976 /* We had an error bringing up the hardware, so take it
3977 * all the way back down so we can try again */
3978 IWL_DEBUG_INFO("Initialize Alive failed.\n");
3982 /* Bootstrap uCode has loaded initialize uCode ... verify inst image.
3983 * This is a paranoid check, because we would not have gotten the
3984 * "initialize" alive if code weren't properly loaded. */
3985 if (iwl3945_verify_ucode(priv)) {
3986 /* Runtime instruction load was bad;
3987 * take it all the way back down so we can try again */
3988 IWL_DEBUG_INFO("Bad \"initialize\" uCode load.\n");
3992 /* Send pointers to protocol/runtime uCode image ... init code will
3993 * load and launch runtime uCode, which will send us another "Alive"
3995 IWL_DEBUG_INFO("Initialization Alive received.\n");
3996 if (iwl3945_set_ucode_ptrs(priv)) {
3997 /* Runtime instruction load won't happen;
3998 * take it all the way back down so we can try again */
3999 IWL_DEBUG_INFO("Couldn't set up uCode pointers.\n");
4005 queue_work(priv->workqueue, &priv->restart);
4010 static int iwl3945_mac_beacon_update(struct ieee80211_hw *hw,
4011 struct sk_buff *skb);
4014 * iwl3945_alive_start - called after REPLY_ALIVE notification received
4015 * from protocol/runtime uCode (initialization uCode's
4016 * Alive gets handled by iwl3945_init_alive_start()).
4018 static void iwl3945_alive_start(struct iwl_priv *priv)
4021 int thermal_spin = 0;
4024 IWL_DEBUG_INFO("Runtime Alive received.\n");
4026 if (priv->card_alive.is_valid != UCODE_VALID_OK) {
4027 /* We had an error bringing up the hardware, so take it
4028 * all the way back down so we can try again */
4029 IWL_DEBUG_INFO("Alive failed.\n");
4033 /* Initialize uCode has loaded Runtime uCode ... verify inst image.
4034 * This is a paranoid check, because we would not have gotten the
4035 * "runtime" alive if code weren't properly loaded. */
4036 if (iwl3945_verify_ucode(priv)) {
4037 /* Runtime instruction load was bad;
4038 * take it all the way back down so we can try again */
4039 IWL_DEBUG_INFO("Bad runtime uCode load.\n");
4043 iwl3945_clear_stations_table(priv);
4045 rc = iwl_grab_nic_access(priv);
4047 IWL_WARN(priv, "Can not read RFKILL status from adapter\n");
4051 rfkill = iwl_read_prph(priv, APMG_RFKILL_REG);
4052 IWL_DEBUG_INFO("RFKILL status: 0x%x\n", rfkill);
4053 iwl_release_nic_access(priv);
4056 clear_bit(STATUS_RF_KILL_HW, &priv->status);
4057 /* if RFKILL is not on, then wait for thermal
4058 * sensor in adapter to kick in */
4059 while (iwl3945_hw_get_temperature(priv) == 0) {
4065 IWL_DEBUG_INFO("Thermal calibration took %dus\n",
4068 set_bit(STATUS_RF_KILL_HW, &priv->status);
4070 /* After the ALIVE response, we can send commands to 3945 uCode */
4071 set_bit(STATUS_ALIVE, &priv->status);
4073 /* Clear out the uCode error bit if it is set */
4074 clear_bit(STATUS_FW_ERROR, &priv->status);
4076 if (iwl_is_rfkill(priv))
4079 ieee80211_wake_queues(priv->hw);
4081 priv->active_rate = priv->rates_mask;
4082 priv->active_rate_basic = priv->rates_mask & IWL_BASIC_RATES_MASK;
4084 iwl3945_send_power_mode(priv, IWL_POWER_LEVEL(priv->power_mode));
4086 if (iwl3945_is_associated(priv)) {
4087 struct iwl3945_rxon_cmd *active_rxon =
4088 (struct iwl3945_rxon_cmd *)(&priv->active39_rxon);
4090 memcpy(&priv->staging39_rxon, &priv->active39_rxon,
4091 sizeof(priv->staging39_rxon));
4092 active_rxon->filter_flags &= ~RXON_FILTER_ASSOC_MSK;
4094 /* Initialize our rx_config data */
4095 iwl3945_connection_init_rx_config(priv, priv->iw_mode);
4096 memcpy(priv->staging39_rxon.node_addr, priv->mac_addr, ETH_ALEN);
4099 /* Configure Bluetooth device coexistence support */
4100 iwl3945_send_bt_config(priv);
4102 /* Configure the adapter for unassociated operation */
4103 iwl3945_commit_rxon(priv);
4105 iwl3945_reg_txpower_periodic(priv);
4107 iwl3945_led_register(priv);
4109 IWL_DEBUG_INFO("ALIVE processing complete.\n");
4110 set_bit(STATUS_READY, &priv->status);
4111 wake_up_interruptible(&priv->wait_command_queue);
4113 if (priv->error_recovering)
4114 iwl3945_error_recovery(priv);
4116 /* reassociate for ADHOC mode */
4117 if (priv->vif && (priv->iw_mode == NL80211_IFTYPE_ADHOC)) {
4118 struct sk_buff *beacon = ieee80211_beacon_get(priv->hw,
4121 iwl3945_mac_beacon_update(priv->hw, beacon);
4127 queue_work(priv->workqueue, &priv->restart);
4130 static void iwl3945_cancel_deferred_work(struct iwl_priv *priv);
4132 static void __iwl3945_down(struct iwl_priv *priv)
4134 unsigned long flags;
4135 int exit_pending = test_bit(STATUS_EXIT_PENDING, &priv->status);
4136 struct ieee80211_conf *conf = NULL;
4138 IWL_DEBUG_INFO(DRV_NAME " is going down\n");
4140 conf = ieee80211_get_hw_conf(priv->hw);
4143 set_bit(STATUS_EXIT_PENDING, &priv->status);
4145 iwl3945_led_unregister(priv);
4146 iwl3945_clear_stations_table(priv);
4148 /* Unblock any waiting calls */
4149 wake_up_interruptible_all(&priv->wait_command_queue);
4151 /* Wipe out the EXIT_PENDING status bit if we are not actually
4152 * exiting the module */
4154 clear_bit(STATUS_EXIT_PENDING, &priv->status);
4156 /* stop and reset the on-board processor */
4157 iwl_write32(priv, CSR_RESET, CSR_RESET_REG_FLAG_NEVO_RESET);
4159 /* tell the device to stop sending interrupts */
4160 spin_lock_irqsave(&priv->lock, flags);
4161 iwl3945_disable_interrupts(priv);
4162 spin_unlock_irqrestore(&priv->lock, flags);
4163 iwl_synchronize_irq(priv);
4165 if (priv->mac80211_registered)
4166 ieee80211_stop_queues(priv->hw);
4168 /* If we have not previously called iwl3945_init() then
4169 * clear all bits but the RF Kill and SUSPEND bits and return */
4170 if (!iwl_is_init(priv)) {
4171 priv->status = test_bit(STATUS_RF_KILL_HW, &priv->status) <<
4173 test_bit(STATUS_RF_KILL_SW, &priv->status) <<
4175 test_bit(STATUS_GEO_CONFIGURED, &priv->status) <<
4176 STATUS_GEO_CONFIGURED |
4177 test_bit(STATUS_IN_SUSPEND, &priv->status) <<
4179 test_bit(STATUS_EXIT_PENDING, &priv->status) <<
4180 STATUS_EXIT_PENDING;
4184 /* ...otherwise clear out all the status bits but the RF Kill and
4185 * SUSPEND bits and continue taking the NIC down. */
4186 priv->status &= test_bit(STATUS_RF_KILL_HW, &priv->status) <<
4188 test_bit(STATUS_RF_KILL_SW, &priv->status) <<
4190 test_bit(STATUS_GEO_CONFIGURED, &priv->status) <<
4191 STATUS_GEO_CONFIGURED |
4192 test_bit(STATUS_IN_SUSPEND, &priv->status) <<
4194 test_bit(STATUS_FW_ERROR, &priv->status) <<
4196 test_bit(STATUS_EXIT_PENDING, &priv->status) <<
4197 STATUS_EXIT_PENDING;
4199 priv->cfg->ops->lib->apm_ops.reset(priv);
4200 spin_lock_irqsave(&priv->lock, flags);
4201 iwl_clear_bit(priv, CSR_GP_CNTRL, CSR_GP_CNTRL_REG_FLAG_MAC_ACCESS_REQ);
4202 spin_unlock_irqrestore(&priv->lock, flags);
4204 iwl3945_hw_txq_ctx_stop(priv);
4205 iwl3945_hw_rxq_stop(priv);
4207 spin_lock_irqsave(&priv->lock, flags);
4208 if (!iwl_grab_nic_access(priv)) {
4209 iwl_write_prph(priv, APMG_CLK_DIS_REG,
4210 APMG_CLK_VAL_DMA_CLK_RQT);
4211 iwl_release_nic_access(priv);
4213 spin_unlock_irqrestore(&priv->lock, flags);
4217 if (exit_pending || test_bit(STATUS_IN_SUSPEND, &priv->status))
4218 priv->cfg->ops->lib->apm_ops.stop(priv);
4220 priv->cfg->ops->lib->apm_ops.reset(priv);
4223 memset(&priv->card_alive, 0, sizeof(struct iwl_alive_resp));
4225 if (priv->ibss_beacon)
4226 dev_kfree_skb(priv->ibss_beacon);
4227 priv->ibss_beacon = NULL;
4229 /* clear out any free frames */
4230 iwl3945_clear_free_frames(priv);
4233 static void iwl3945_down(struct iwl_priv *priv)
4235 mutex_lock(&priv->mutex);
4236 __iwl3945_down(priv);
4237 mutex_unlock(&priv->mutex);
4239 iwl3945_cancel_deferred_work(priv);
4242 #define MAX_HW_RESTARTS 5
4244 static int __iwl3945_up(struct iwl_priv *priv)
4248 if (test_bit(STATUS_EXIT_PENDING, &priv->status)) {
4249 IWL_WARN(priv, "Exit pending; will not bring the NIC up\n");
4253 if (test_bit(STATUS_RF_KILL_SW, &priv->status)) {
4254 IWL_WARN(priv, "Radio disabled by SW RF kill (module "
4259 if (!priv->ucode_data_backup.v_addr || !priv->ucode_data.v_addr) {
4260 IWL_ERR(priv, "ucode not available for device bring up\n");
4264 /* If platform's RF_KILL switch is NOT set to KILL */
4265 if (iwl_read32(priv, CSR_GP_CNTRL) &
4266 CSR_GP_CNTRL_REG_FLAG_HW_RF_KILL_SW)
4267 clear_bit(STATUS_RF_KILL_HW, &priv->status);
4269 set_bit(STATUS_RF_KILL_HW, &priv->status);
4270 if (!test_bit(STATUS_IN_SUSPEND, &priv->status)) {
4271 IWL_WARN(priv, "Radio disabled by HW RF Kill switch\n");
4276 iwl_write32(priv, CSR_INT, 0xFFFFFFFF);
4278 rc = iwl3945_hw_nic_init(priv);
4280 IWL_ERR(priv, "Unable to int nic\n");
4284 /* make sure rfkill handshake bits are cleared */
4285 iwl_write32(priv, CSR_UCODE_DRV_GP1_CLR, CSR_UCODE_SW_BIT_RFKILL);
4286 iwl_write32(priv, CSR_UCODE_DRV_GP1_CLR,
4287 CSR_UCODE_DRV_GP1_BIT_CMD_BLOCKED);
4289 /* clear (again), then enable host interrupts */
4290 iwl_write32(priv, CSR_INT, 0xFFFFFFFF);
4291 iwl3945_enable_interrupts(priv);
4293 /* really make sure rfkill handshake bits are cleared */
4294 iwl_write32(priv, CSR_UCODE_DRV_GP1_CLR, CSR_UCODE_SW_BIT_RFKILL);
4295 iwl_write32(priv, CSR_UCODE_DRV_GP1_CLR, CSR_UCODE_SW_BIT_RFKILL);
4297 /* Copy original ucode data image from disk into backup cache.
4298 * This will be used to initialize the on-board processor's
4299 * data SRAM for a clean start when the runtime program first loads. */
4300 memcpy(priv->ucode_data_backup.v_addr, priv->ucode_data.v_addr,
4301 priv->ucode_data.len);
4303 /* We return success when we resume from suspend and rf_kill is on. */
4304 if (test_bit(STATUS_RF_KILL_HW, &priv->status))
4307 for (i = 0; i < MAX_HW_RESTARTS; i++) {
4309 iwl3945_clear_stations_table(priv);
4311 /* load bootstrap state machine,
4312 * load bootstrap program into processor's memory,
4313 * prepare to load the "initialize" uCode */
4314 priv->cfg->ops->lib->load_ucode(priv);
4318 "Unable to set up bootstrap uCode: %d\n", rc);
4322 /* start card; "initialize" will load runtime ucode */
4323 iwl3945_nic_start(priv);
4325 IWL_DEBUG_INFO(DRV_NAME " is coming up\n");
4330 set_bit(STATUS_EXIT_PENDING, &priv->status);
4331 __iwl3945_down(priv);
4332 clear_bit(STATUS_EXIT_PENDING, &priv->status);
4334 /* tried to restart and config the device for as long as our
4335 * patience could withstand */
4336 IWL_ERR(priv, "Unable to initialize device after %d attempts.\n", i);
4341 /*****************************************************************************
4343 * Workqueue callbacks
4345 *****************************************************************************/
4347 static void iwl3945_bg_init_alive_start(struct work_struct *data)
4349 struct iwl_priv *priv =
4350 container_of(data, struct iwl_priv, init_alive_start.work);
4352 if (test_bit(STATUS_EXIT_PENDING, &priv->status))
4355 mutex_lock(&priv->mutex);
4356 iwl3945_init_alive_start(priv);
4357 mutex_unlock(&priv->mutex);
4360 static void iwl3945_bg_alive_start(struct work_struct *data)
4362 struct iwl_priv *priv =
4363 container_of(data, struct iwl_priv, alive_start.work);
4365 if (test_bit(STATUS_EXIT_PENDING, &priv->status))
4368 mutex_lock(&priv->mutex);
4369 iwl3945_alive_start(priv);
4370 mutex_unlock(&priv->mutex);
4373 static void iwl3945_rfkill_poll(struct work_struct *data)
4375 struct iwl_priv *priv =
4376 container_of(data, struct iwl_priv, rfkill_poll.work);
4377 unsigned long status = priv->status;
4379 if (iwl_read32(priv, CSR_GP_CNTRL) & CSR_GP_CNTRL_REG_FLAG_HW_RF_KILL_SW)
4380 clear_bit(STATUS_RF_KILL_HW, &priv->status);
4382 set_bit(STATUS_RF_KILL_HW, &priv->status);
4384 if (test_bit(STATUS_RF_KILL_HW, &status) != test_bit(STATUS_RF_KILL_HW, &priv->status))
4385 queue_work(priv->workqueue, &priv->rf_kill);
4387 queue_delayed_work(priv->workqueue, &priv->rfkill_poll,
4388 round_jiffies_relative(2 * HZ));
4392 #define IWL_SCAN_CHECK_WATCHDOG (7 * HZ)
4393 static void iwl3945_bg_request_scan(struct work_struct *data)
4395 struct iwl_priv *priv =
4396 container_of(data, struct iwl_priv, request_scan);
4397 struct iwl_host_cmd cmd = {
4398 .id = REPLY_SCAN_CMD,
4399 .len = sizeof(struct iwl3945_scan_cmd),
4400 .meta.flags = CMD_SIZE_HUGE,
4403 struct iwl3945_scan_cmd *scan;
4404 struct ieee80211_conf *conf = NULL;
4406 enum ieee80211_band band;
4407 DECLARE_SSID_BUF(ssid);
4409 conf = ieee80211_get_hw_conf(priv->hw);
4411 mutex_lock(&priv->mutex);
4413 if (!iwl_is_ready(priv)) {
4414 IWL_WARN(priv, "request scan called when driver not ready.\n");
4418 /* Make sure the scan wasn't canceled before this queued work
4419 * was given the chance to run... */
4420 if (!test_bit(STATUS_SCANNING, &priv->status))
4423 /* This should never be called or scheduled if there is currently
4424 * a scan active in the hardware. */
4425 if (test_bit(STATUS_SCAN_HW, &priv->status)) {
4426 IWL_DEBUG_INFO("Multiple concurrent scan requests in parallel. "
4427 "Ignoring second request.\n");
4432 if (test_bit(STATUS_EXIT_PENDING, &priv->status)) {
4433 IWL_DEBUG_SCAN("Aborting scan due to device shutdown\n");
4437 if (test_bit(STATUS_SCAN_ABORTING, &priv->status)) {
4438 IWL_DEBUG_HC("Scan request while abort pending. Queuing.\n");
4442 if (iwl_is_rfkill(priv)) {
4443 IWL_DEBUG_HC("Aborting scan due to RF Kill activation\n");
4447 if (!test_bit(STATUS_READY, &priv->status)) {
4448 IWL_DEBUG_HC("Scan request while uninitialized. Queuing.\n");
4452 if (!priv->scan_bands) {
4453 IWL_DEBUG_HC("Aborting scan due to no requested bands\n");
4458 priv->scan = kmalloc(sizeof(struct iwl3945_scan_cmd) +
4459 IWL_MAX_SCAN_SIZE, GFP_KERNEL);
4466 memset(scan, 0, sizeof(struct iwl3945_scan_cmd) + IWL_MAX_SCAN_SIZE);
4468 scan->quiet_plcp_th = IWL_PLCP_QUIET_THRESH;
4469 scan->quiet_time = IWL_ACTIVE_QUIET_TIME;
4471 if (iwl3945_is_associated(priv)) {
4474 u32 suspend_time = 100;
4475 u32 scan_suspend_time = 100;
4476 unsigned long flags;
4478 IWL_DEBUG_INFO("Scanning while associated...\n");
4480 spin_lock_irqsave(&priv->lock, flags);
4481 interval = priv->beacon_int;
4482 spin_unlock_irqrestore(&priv->lock, flags);
4484 scan->suspend_time = 0;
4485 scan->max_out_time = cpu_to_le32(200 * 1024);
4487 interval = suspend_time;
4489 * suspend time format:
4490 * 0-19: beacon interval in usec (time before exec.)
4492 * 24-31: number of beacons (suspend between channels)
4495 extra = (suspend_time / interval) << 24;
4496 scan_suspend_time = 0xFF0FFFFF &
4497 (extra | ((suspend_time % interval) * 1024));
4499 scan->suspend_time = cpu_to_le32(scan_suspend_time);
4500 IWL_DEBUG_SCAN("suspend_time 0x%X beacon interval %d\n",
4501 scan_suspend_time, interval);
4504 /* We should add the ability for user to lock to PASSIVE ONLY */
4505 if (priv->one_direct_scan) {
4507 ("Kicking off one direct scan for '%s'\n",
4508 print_ssid(ssid, priv->direct_ssid,
4509 priv->direct_ssid_len));
4510 scan->direct_scan[0].id = WLAN_EID_SSID;
4511 scan->direct_scan[0].len = priv->direct_ssid_len;
4512 memcpy(scan->direct_scan[0].ssid,
4513 priv->direct_ssid, priv->direct_ssid_len);
4516 IWL_DEBUG_SCAN("Kicking off one indirect scan.\n");
4518 /* We don't build a direct scan probe request; the uCode will do
4519 * that based on the direct_mask added to each channel entry */
4520 scan->tx_cmd.tx_flags = TX_CMD_FLG_SEQ_CTL_MSK;
4521 scan->tx_cmd.sta_id = priv->hw_params.bcast_sta_id;
4522 scan->tx_cmd.stop_time.life_time = TX_CMD_LIFE_TIME_INFINITE;
4524 /* flags + rate selection */
4526 if (priv->scan_bands & BIT(IEEE80211_BAND_2GHZ)) {
4527 scan->flags = RXON_FLG_BAND_24G_MSK | RXON_FLG_AUTO_DETECT_MSK;
4528 scan->tx_cmd.rate = IWL_RATE_1M_PLCP;
4529 scan->good_CRC_th = 0;
4530 band = IEEE80211_BAND_2GHZ;
4531 } else if (priv->scan_bands & BIT(IEEE80211_BAND_5GHZ)) {
4532 scan->tx_cmd.rate = IWL_RATE_6M_PLCP;
4533 scan->good_CRC_th = IWL_GOOD_CRC_TH;
4534 band = IEEE80211_BAND_5GHZ;
4536 IWL_WARN(priv, "Invalid scan band count\n");
4540 scan->tx_cmd.len = cpu_to_le16(
4541 iwl_fill_probe_req(priv, band,
4542 (struct ieee80211_mgmt *)scan->data,
4543 IWL_MAX_SCAN_SIZE - sizeof(*scan)));
4545 /* select Rx antennas */
4546 scan->flags |= iwl3945_get_antenna_flags(priv);
4548 if (priv->iw_mode == NL80211_IFTYPE_MONITOR)
4549 scan->filter_flags = RXON_FILTER_PROMISC_MSK;
4551 scan->channel_count =
4552 iwl3945_get_channels_for_scan(priv, band, 1, /* active */
4554 (void *)&scan->data[le16_to_cpu(scan->tx_cmd.len)]);
4556 if (scan->channel_count == 0) {
4557 IWL_DEBUG_SCAN("channel count %d\n", scan->channel_count);
4561 cmd.len += le16_to_cpu(scan->tx_cmd.len) +
4562 scan->channel_count * sizeof(struct iwl3945_scan_channel);
4564 scan->len = cpu_to_le16(cmd.len);
4566 set_bit(STATUS_SCAN_HW, &priv->status);
4567 rc = iwl_send_cmd_sync(priv, &cmd);
4571 queue_delayed_work(priv->workqueue, &priv->scan_check,
4572 IWL_SCAN_CHECK_WATCHDOG);
4574 mutex_unlock(&priv->mutex);
4578 /* can not perform scan make sure we clear scanning
4579 * bits from status so next scan request can be performed.
4580 * if we dont clear scanning status bit here all next scan
4583 clear_bit(STATUS_SCAN_HW, &priv->status);
4584 clear_bit(STATUS_SCANNING, &priv->status);
4586 /* inform mac80211 scan aborted */
4587 queue_work(priv->workqueue, &priv->scan_completed);
4588 mutex_unlock(&priv->mutex);
4591 static void iwl3945_bg_up(struct work_struct *data)
4593 struct iwl_priv *priv = container_of(data, struct iwl_priv, up);
4595 if (test_bit(STATUS_EXIT_PENDING, &priv->status))
4598 mutex_lock(&priv->mutex);
4600 mutex_unlock(&priv->mutex);
4601 iwl_rfkill_set_hw_state(priv);
4604 static void iwl3945_bg_restart(struct work_struct *data)
4606 struct iwl_priv *priv = container_of(data, struct iwl_priv, restart);
4608 if (test_bit(STATUS_EXIT_PENDING, &priv->status))
4612 queue_work(priv->workqueue, &priv->up);
4615 static void iwl3945_bg_rx_replenish(struct work_struct *data)
4617 struct iwl_priv *priv =
4618 container_of(data, struct iwl_priv, rx_replenish);
4620 if (test_bit(STATUS_EXIT_PENDING, &priv->status))
4623 mutex_lock(&priv->mutex);
4624 iwl3945_rx_replenish(priv);
4625 mutex_unlock(&priv->mutex);
4628 #define IWL_DELAY_NEXT_SCAN (HZ*2)
4630 static void iwl3945_post_associate(struct iwl_priv *priv)
4633 struct ieee80211_conf *conf = NULL;
4635 if (priv->iw_mode == NL80211_IFTYPE_AP) {
4636 IWL_ERR(priv, "%s Should not be called in AP mode\n", __func__);
4641 IWL_DEBUG_ASSOC("Associated as %d to: %pM\n",
4642 priv->assoc_id, priv->active39_rxon.bssid_addr);
4644 if (test_bit(STATUS_EXIT_PENDING, &priv->status))
4647 if (!priv->vif || !priv->is_open)
4650 iwl_scan_cancel_timeout(priv, 200);
4652 conf = ieee80211_get_hw_conf(priv->hw);
4654 priv->staging39_rxon.filter_flags &= ~RXON_FILTER_ASSOC_MSK;
4655 iwl3945_commit_rxon(priv);
4657 memset(&priv->rxon_timing, 0, sizeof(struct iwl_rxon_time_cmd));
4658 iwl3945_setup_rxon_timing(priv);
4659 rc = iwl_send_cmd_pdu(priv, REPLY_RXON_TIMING,
4660 sizeof(priv->rxon_timing), &priv->rxon_timing);
4662 IWL_WARN(priv, "REPLY_RXON_TIMING failed - "
4663 "Attempting to continue.\n");
4665 priv->staging39_rxon.filter_flags |= RXON_FILTER_ASSOC_MSK;
4667 priv->staging39_rxon.assoc_id = cpu_to_le16(priv->assoc_id);
4669 IWL_DEBUG_ASSOC("assoc id %d beacon interval %d\n",
4670 priv->assoc_id, priv->beacon_int);
4672 if (priv->assoc_capability & WLAN_CAPABILITY_SHORT_PREAMBLE)
4673 priv->staging39_rxon.flags |= RXON_FLG_SHORT_PREAMBLE_MSK;
4675 priv->staging39_rxon.flags &= ~RXON_FLG_SHORT_PREAMBLE_MSK;
4677 if (priv->staging39_rxon.flags & RXON_FLG_BAND_24G_MSK) {
4678 if (priv->assoc_capability & WLAN_CAPABILITY_SHORT_SLOT_TIME)
4679 priv->staging39_rxon.flags |= RXON_FLG_SHORT_SLOT_MSK;
4681 priv->staging39_rxon.flags &= ~RXON_FLG_SHORT_SLOT_MSK;
4683 if (priv->iw_mode == NL80211_IFTYPE_ADHOC)
4684 priv->staging39_rxon.flags &= ~RXON_FLG_SHORT_SLOT_MSK;
4688 iwl3945_commit_rxon(priv);
4690 switch (priv->iw_mode) {
4691 case NL80211_IFTYPE_STATION:
4692 iwl3945_rate_scale_init(priv->hw, IWL_AP_ID);
4695 case NL80211_IFTYPE_ADHOC:
4698 iwl3945_add_station(priv, priv->bssid, 0, 0);
4699 iwl3945_sync_sta(priv, IWL_STA_ID,
4700 (priv->band == IEEE80211_BAND_5GHZ) ?
4701 IWL_RATE_6M_PLCP : IWL_RATE_1M_PLCP,
4703 iwl3945_rate_scale_init(priv->hw, IWL_STA_ID);
4704 iwl3945_send_beacon_cmd(priv);
4709 IWL_ERR(priv, "%s Should not be called in %d mode\n",
4710 __func__, priv->iw_mode);
4714 iwl3945_activate_qos(priv, 0);
4716 /* we have just associated, don't start scan too early */
4717 priv->next_scan_jiffies = jiffies + IWL_DELAY_NEXT_SCAN;
4720 static int iwl3945_mac_config(struct ieee80211_hw *hw, u32 changed);
4722 /*****************************************************************************
4724 * mac80211 entry point functions
4726 *****************************************************************************/
4728 #define UCODE_READY_TIMEOUT (2 * HZ)
4730 static int iwl3945_mac_start(struct ieee80211_hw *hw)
4732 struct iwl_priv *priv = hw->priv;
4735 IWL_DEBUG_MAC80211("enter\n");
4737 /* we should be verifying the device is ready to be opened */
4738 mutex_lock(&priv->mutex);
4740 memset(&priv->staging39_rxon, 0, sizeof(struct iwl3945_rxon_cmd));
4741 /* fetch ucode file from disk, alloc and copy to bus-master buffers ...
4742 * ucode filename and max sizes are card-specific. */
4744 if (!priv->ucode_code.len) {
4745 ret = iwl3945_read_ucode(priv);
4747 IWL_ERR(priv, "Could not read microcode: %d\n", ret);
4748 mutex_unlock(&priv->mutex);
4749 goto out_release_irq;
4753 ret = __iwl3945_up(priv);
4755 mutex_unlock(&priv->mutex);
4757 iwl_rfkill_set_hw_state(priv);
4760 goto out_release_irq;
4762 IWL_DEBUG_INFO("Start UP work.\n");
4764 if (test_bit(STATUS_IN_SUSPEND, &priv->status))
4767 /* Wait for START_ALIVE from ucode. Otherwise callbacks from
4768 * mac80211 will not be run successfully. */
4769 ret = wait_event_interruptible_timeout(priv->wait_command_queue,
4770 test_bit(STATUS_READY, &priv->status),
4771 UCODE_READY_TIMEOUT);
4773 if (!test_bit(STATUS_READY, &priv->status)) {
4775 "Wait for START_ALIVE timeout after %dms.\n",
4776 jiffies_to_msecs(UCODE_READY_TIMEOUT));
4778 goto out_release_irq;
4782 /* ucode is running and will send rfkill notifications,
4783 * no need to poll the killswitch state anymore */
4784 cancel_delayed_work(&priv->rfkill_poll);
4787 IWL_DEBUG_MAC80211("leave\n");
4792 IWL_DEBUG_MAC80211("leave - failed\n");
4796 static void iwl3945_mac_stop(struct ieee80211_hw *hw)
4798 struct iwl_priv *priv = hw->priv;
4800 IWL_DEBUG_MAC80211("enter\n");
4802 if (!priv->is_open) {
4803 IWL_DEBUG_MAC80211("leave - skip\n");
4809 if (iwl_is_ready_rf(priv)) {
4810 /* stop mac, cancel any scan request and clear
4811 * RXON_FILTER_ASSOC_MSK BIT
4813 mutex_lock(&priv->mutex);
4814 iwl_scan_cancel_timeout(priv, 100);
4815 mutex_unlock(&priv->mutex);
4820 flush_workqueue(priv->workqueue);
4822 /* start polling the killswitch state again */
4823 queue_delayed_work(priv->workqueue, &priv->rfkill_poll,
4824 round_jiffies_relative(2 * HZ));
4826 IWL_DEBUG_MAC80211("leave\n");
4829 static int iwl3945_mac_tx(struct ieee80211_hw *hw, struct sk_buff *skb)
4831 struct iwl_priv *priv = hw->priv;
4833 IWL_DEBUG_MAC80211("enter\n");
4835 IWL_DEBUG_TX("dev->xmit(%d bytes) at rate 0x%02x\n", skb->len,
4836 ieee80211_get_tx_rate(hw, IEEE80211_SKB_CB(skb))->bitrate);
4838 if (iwl3945_tx_skb(priv, skb))
4839 dev_kfree_skb_any(skb);
4841 IWL_DEBUG_MAC80211("leave\n");
4842 return NETDEV_TX_OK;
4845 static int iwl3945_mac_add_interface(struct ieee80211_hw *hw,
4846 struct ieee80211_if_init_conf *conf)
4848 struct iwl_priv *priv = hw->priv;
4849 unsigned long flags;
4851 IWL_DEBUG_MAC80211("enter: type %d\n", conf->type);
4854 IWL_DEBUG_MAC80211("leave - vif != NULL\n");
4858 spin_lock_irqsave(&priv->lock, flags);
4859 priv->vif = conf->vif;
4860 priv->iw_mode = conf->type;
4862 spin_unlock_irqrestore(&priv->lock, flags);
4864 mutex_lock(&priv->mutex);
4866 if (conf->mac_addr) {
4867 IWL_DEBUG_MAC80211("Set: %pM\n", conf->mac_addr);
4868 memcpy(priv->mac_addr, conf->mac_addr, ETH_ALEN);
4871 if (iwl_is_ready(priv))
4872 iwl3945_set_mode(priv, conf->type);
4874 mutex_unlock(&priv->mutex);
4876 IWL_DEBUG_MAC80211("leave\n");
4881 * iwl3945_mac_config - mac80211 config callback
4883 * We ignore conf->flags & IEEE80211_CONF_SHORT_SLOT_TIME since it seems to
4884 * be set inappropriately and the driver currently sets the hardware up to
4885 * use it whenever needed.
4887 static int iwl3945_mac_config(struct ieee80211_hw *hw, u32 changed)
4889 struct iwl_priv *priv = hw->priv;
4890 const struct iwl_channel_info *ch_info;
4891 struct ieee80211_conf *conf = &hw->conf;
4892 unsigned long flags;
4895 mutex_lock(&priv->mutex);
4896 IWL_DEBUG_MAC80211("enter to channel %d\n", conf->channel->hw_value);
4898 if (!iwl_is_ready(priv)) {
4899 IWL_DEBUG_MAC80211("leave - not ready\n");
4904 if (unlikely(!iwl3945_mod_params.disable_hw_scan &&
4905 test_bit(STATUS_SCANNING, &priv->status))) {
4906 IWL_DEBUG_MAC80211("leave - scanning\n");
4907 set_bit(STATUS_CONF_PENDING, &priv->status);
4908 mutex_unlock(&priv->mutex);
4912 spin_lock_irqsave(&priv->lock, flags);
4914 ch_info = iwl_get_channel_info(priv, conf->channel->band,
4915 conf->channel->hw_value);
4916 if (!is_channel_valid(ch_info)) {
4917 IWL_DEBUG_SCAN("Channel %d [%d] is INVALID for this band.\n",
4918 conf->channel->hw_value, conf->channel->band);
4919 IWL_DEBUG_MAC80211("leave - invalid channel\n");
4920 spin_unlock_irqrestore(&priv->lock, flags);
4925 iwl3945_set_rxon_channel(priv, conf->channel->band, conf->channel->hw_value);
4927 iwl3945_set_flags_for_phymode(priv, conf->channel->band);
4929 /* The list of supported rates and rate mask can be different
4930 * for each phymode; since the phymode may have changed, reset
4931 * the rate mask to what mac80211 lists */
4932 iwl3945_set_rate(priv);
4934 spin_unlock_irqrestore(&priv->lock, flags);
4936 #ifdef IEEE80211_CONF_CHANNEL_SWITCH
4937 if (conf->flags & IEEE80211_CONF_CHANNEL_SWITCH) {
4938 iwl3945_hw_channel_switch(priv, conf->channel);
4943 iwl3945_radio_kill_sw(priv, !conf->radio_enabled);
4945 if (!conf->radio_enabled) {
4946 IWL_DEBUG_MAC80211("leave - radio disabled\n");
4950 if (iwl_is_rfkill(priv)) {
4951 IWL_DEBUG_MAC80211("leave - RF kill\n");
4956 iwl3945_set_rate(priv);
4958 if (memcmp(&priv->active39_rxon,
4959 &priv->staging39_rxon, sizeof(priv->staging39_rxon)))
4960 iwl3945_commit_rxon(priv);
4962 IWL_DEBUG_INFO("No re-sending same RXON configuration.\n");
4964 IWL_DEBUG_MAC80211("leave\n");
4967 clear_bit(STATUS_CONF_PENDING, &priv->status);
4968 mutex_unlock(&priv->mutex);
4972 static void iwl3945_config_ap(struct iwl_priv *priv)
4976 if (test_bit(STATUS_EXIT_PENDING, &priv->status))
4979 /* The following should be done only at AP bring up */
4980 if (!(iwl3945_is_associated(priv))) {
4982 /* RXON - unassoc (to set timing command) */
4983 priv->staging39_rxon.filter_flags &= ~RXON_FILTER_ASSOC_MSK;
4984 iwl3945_commit_rxon(priv);
4987 memset(&priv->rxon_timing, 0, sizeof(struct iwl_rxon_time_cmd));
4988 iwl3945_setup_rxon_timing(priv);
4989 rc = iwl_send_cmd_pdu(priv, REPLY_RXON_TIMING,
4990 sizeof(priv->rxon_timing),
4991 &priv->rxon_timing);
4993 IWL_WARN(priv, "REPLY_RXON_TIMING failed - "
4994 "Attempting to continue.\n");
4996 /* FIXME: what should be the assoc_id for AP? */
4997 priv->staging39_rxon.assoc_id = cpu_to_le16(priv->assoc_id);
4998 if (priv->assoc_capability & WLAN_CAPABILITY_SHORT_PREAMBLE)
4999 priv->staging39_rxon.flags |=
5000 RXON_FLG_SHORT_PREAMBLE_MSK;
5002 priv->staging39_rxon.flags &=
5003 ~RXON_FLG_SHORT_PREAMBLE_MSK;
5005 if (priv->staging39_rxon.flags & RXON_FLG_BAND_24G_MSK) {
5006 if (priv->assoc_capability &
5007 WLAN_CAPABILITY_SHORT_SLOT_TIME)
5008 priv->staging39_rxon.flags |=
5009 RXON_FLG_SHORT_SLOT_MSK;
5011 priv->staging39_rxon.flags &=
5012 ~RXON_FLG_SHORT_SLOT_MSK;
5014 if (priv->iw_mode == NL80211_IFTYPE_ADHOC)
5015 priv->staging39_rxon.flags &=
5016 ~RXON_FLG_SHORT_SLOT_MSK;
5018 /* restore RXON assoc */
5019 priv->staging39_rxon.filter_flags |= RXON_FILTER_ASSOC_MSK;
5020 iwl3945_commit_rxon(priv);
5021 iwl3945_add_station(priv, iwl_bcast_addr, 0, 0);
5023 iwl3945_send_beacon_cmd(priv);
5025 /* FIXME - we need to add code here to detect a totally new
5026 * configuration, reset the AP, unassoc, rxon timing, assoc,
5027 * clear sta table, add BCAST sta... */
5030 static int iwl3945_mac_config_interface(struct ieee80211_hw *hw,
5031 struct ieee80211_vif *vif,
5032 struct ieee80211_if_conf *conf)
5034 struct iwl_priv *priv = hw->priv;
5040 if (priv->vif != vif) {
5041 IWL_DEBUG_MAC80211("leave - priv->vif != vif\n");
5045 /* handle this temporarily here */
5046 if (priv->iw_mode == NL80211_IFTYPE_ADHOC &&
5047 conf->changed & IEEE80211_IFCC_BEACON) {
5048 struct sk_buff *beacon = ieee80211_beacon_get(hw, vif);
5051 mutex_lock(&priv->mutex);
5052 rc = iwl3945_mac_beacon_update(hw, beacon);
5053 mutex_unlock(&priv->mutex);
5058 if (!iwl_is_alive(priv))
5061 mutex_lock(&priv->mutex);
5064 IWL_DEBUG_MAC80211("bssid: %pM\n", conf->bssid);
5067 * very dubious code was here; the probe filtering flag is never set:
5069 if (unlikely(test_bit(STATUS_SCANNING, &priv->status)) &&
5070 !(priv->hw->flags & IEEE80211_HW_NO_PROBE_FILTERING)) {
5073 if (priv->iw_mode == NL80211_IFTYPE_AP) {
5075 conf->bssid = priv->mac_addr;
5076 memcpy(priv->bssid, priv->mac_addr, ETH_ALEN);
5077 IWL_DEBUG_MAC80211("bssid was set to: %pM\n",
5080 if (priv->ibss_beacon)
5081 dev_kfree_skb(priv->ibss_beacon);
5083 priv->ibss_beacon = ieee80211_beacon_get(hw, vif);
5086 if (iwl_is_rfkill(priv))
5089 if (conf->bssid && !is_zero_ether_addr(conf->bssid) &&
5090 !is_multicast_ether_addr(conf->bssid)) {
5091 /* If there is currently a HW scan going on in the background
5092 * then we need to cancel it else the RXON below will fail. */
5093 if (iwl_scan_cancel_timeout(priv, 100)) {
5094 IWL_WARN(priv, "Aborted scan still in progress "
5096 IWL_DEBUG_MAC80211("leaving - scan abort failed.\n");
5097 mutex_unlock(&priv->mutex);
5100 memcpy(priv->staging39_rxon.bssid_addr, conf->bssid, ETH_ALEN);
5102 /* TODO: Audit driver for usage of these members and see
5103 * if mac80211 deprecates them (priv->bssid looks like it
5104 * shouldn't be there, but I haven't scanned the IBSS code
5105 * to verify) - jpk */
5106 memcpy(priv->bssid, conf->bssid, ETH_ALEN);
5108 if (priv->iw_mode == NL80211_IFTYPE_AP)
5109 iwl3945_config_ap(priv);
5111 rc = iwl3945_commit_rxon(priv);
5112 if ((priv->iw_mode == NL80211_IFTYPE_STATION) && rc)
5113 iwl3945_add_station(priv,
5114 priv->active39_rxon.bssid_addr, 1, 0);
5118 iwl_scan_cancel_timeout(priv, 100);
5119 priv->staging39_rxon.filter_flags &= ~RXON_FILTER_ASSOC_MSK;
5120 iwl3945_commit_rxon(priv);
5124 IWL_DEBUG_MAC80211("leave\n");
5125 mutex_unlock(&priv->mutex);
5130 static void iwl3945_configure_filter(struct ieee80211_hw *hw,
5131 unsigned int changed_flags,
5132 unsigned int *total_flags,
5133 int mc_count, struct dev_addr_list *mc_list)
5135 struct iwl_priv *priv = hw->priv;
5136 __le32 *filter_flags = &priv->staging39_rxon.filter_flags;
5138 IWL_DEBUG_MAC80211("Enter: changed: 0x%x, total: 0x%x\n",
5139 changed_flags, *total_flags);
5141 if (changed_flags & (FIF_OTHER_BSS | FIF_PROMISC_IN_BSS)) {
5142 if (*total_flags & (FIF_OTHER_BSS | FIF_PROMISC_IN_BSS))
5143 *filter_flags |= RXON_FILTER_PROMISC_MSK;
5145 *filter_flags &= ~RXON_FILTER_PROMISC_MSK;
5147 if (changed_flags & FIF_ALLMULTI) {
5148 if (*total_flags & FIF_ALLMULTI)
5149 *filter_flags |= RXON_FILTER_ACCEPT_GRP_MSK;
5151 *filter_flags &= ~RXON_FILTER_ACCEPT_GRP_MSK;
5153 if (changed_flags & FIF_CONTROL) {
5154 if (*total_flags & FIF_CONTROL)
5155 *filter_flags |= RXON_FILTER_CTL2HOST_MSK;
5157 *filter_flags &= ~RXON_FILTER_CTL2HOST_MSK;
5159 if (changed_flags & FIF_BCN_PRBRESP_PROMISC) {
5160 if (*total_flags & FIF_BCN_PRBRESP_PROMISC)
5161 *filter_flags |= RXON_FILTER_BCON_AWARE_MSK;
5163 *filter_flags &= ~RXON_FILTER_BCON_AWARE_MSK;
5166 /* We avoid iwl_commit_rxon here to commit the new filter flags
5167 * since mac80211 will call ieee80211_hw_config immediately.
5168 * (mc_list is not supported at this time). Otherwise, we need to
5169 * queue a background iwl_commit_rxon work.
5172 *total_flags &= FIF_OTHER_BSS | FIF_ALLMULTI | FIF_PROMISC_IN_BSS |
5173 FIF_BCN_PRBRESP_PROMISC | FIF_CONTROL;
5176 static void iwl3945_mac_remove_interface(struct ieee80211_hw *hw,
5177 struct ieee80211_if_init_conf *conf)
5179 struct iwl_priv *priv = hw->priv;
5181 IWL_DEBUG_MAC80211("enter\n");
5183 mutex_lock(&priv->mutex);
5185 if (iwl_is_ready_rf(priv)) {
5186 iwl_scan_cancel_timeout(priv, 100);
5187 priv->staging39_rxon.filter_flags &= ~RXON_FILTER_ASSOC_MSK;
5188 iwl3945_commit_rxon(priv);
5190 if (priv->vif == conf->vif) {
5192 memset(priv->bssid, 0, ETH_ALEN);
5194 mutex_unlock(&priv->mutex);
5196 IWL_DEBUG_MAC80211("leave\n");
5199 #define IWL_DELAY_NEXT_SCAN_AFTER_ASSOC (HZ*6)
5201 static void iwl3945_bss_info_changed(struct ieee80211_hw *hw,
5202 struct ieee80211_vif *vif,
5203 struct ieee80211_bss_conf *bss_conf,
5206 struct iwl_priv *priv = hw->priv;
5208 IWL_DEBUG_MAC80211("changes = 0x%X\n", changes);
5210 if (changes & BSS_CHANGED_ERP_PREAMBLE) {
5211 IWL_DEBUG_MAC80211("ERP_PREAMBLE %d\n",
5212 bss_conf->use_short_preamble);
5213 if (bss_conf->use_short_preamble)
5214 priv->staging39_rxon.flags |= RXON_FLG_SHORT_PREAMBLE_MSK;
5216 priv->staging39_rxon.flags &= ~RXON_FLG_SHORT_PREAMBLE_MSK;
5219 if (changes & BSS_CHANGED_ERP_CTS_PROT) {
5220 IWL_DEBUG_MAC80211("ERP_CTS %d\n", bss_conf->use_cts_prot);
5221 if (bss_conf->use_cts_prot && (priv->band != IEEE80211_BAND_5GHZ))
5222 priv->staging39_rxon.flags |= RXON_FLG_TGG_PROTECT_MSK;
5224 priv->staging39_rxon.flags &= ~RXON_FLG_TGG_PROTECT_MSK;
5227 if (changes & BSS_CHANGED_ASSOC) {
5228 IWL_DEBUG_MAC80211("ASSOC %d\n", bss_conf->assoc);
5229 /* This should never happen as this function should
5230 * never be called from interrupt context. */
5231 if (WARN_ON_ONCE(in_interrupt()))
5233 if (bss_conf->assoc) {
5234 priv->assoc_id = bss_conf->aid;
5235 priv->beacon_int = bss_conf->beacon_int;
5236 priv->timestamp = bss_conf->timestamp;
5237 priv->assoc_capability = bss_conf->assoc_capability;
5238 priv->power_data.dtim_period = bss_conf->dtim_period;
5239 priv->next_scan_jiffies = jiffies +
5240 IWL_DELAY_NEXT_SCAN_AFTER_ASSOC;
5241 mutex_lock(&priv->mutex);
5242 iwl3945_post_associate(priv);
5243 mutex_unlock(&priv->mutex);
5246 IWL_DEBUG_MAC80211("DISASSOC %d\n", bss_conf->assoc);
5248 } else if (changes && iwl3945_is_associated(priv) && priv->assoc_id) {
5249 IWL_DEBUG_MAC80211("Associated Changes %d\n", changes);
5250 iwl3945_send_rxon_assoc(priv);
5255 static int iwl3945_mac_hw_scan(struct ieee80211_hw *hw, u8 *ssid, size_t len)
5258 unsigned long flags;
5259 struct iwl_priv *priv = hw->priv;
5260 DECLARE_SSID_BUF(ssid_buf);
5262 IWL_DEBUG_MAC80211("enter\n");
5264 mutex_lock(&priv->mutex);
5265 spin_lock_irqsave(&priv->lock, flags);
5267 if (!iwl_is_ready_rf(priv)) {
5269 IWL_DEBUG_MAC80211("leave - not ready or exit pending\n");
5273 /* we don't schedule scan within next_scan_jiffies period */
5274 if (priv->next_scan_jiffies &&
5275 time_after(priv->next_scan_jiffies, jiffies)) {
5279 /* if we just finished scan ask for delay for a broadcast scan */
5280 if ((len == 0) && priv->last_scan_jiffies &&
5281 time_after(priv->last_scan_jiffies + IWL_DELAY_NEXT_SCAN,
5287 IWL_DEBUG_SCAN("direct scan for %s [%d]\n ",
5288 print_ssid(ssid_buf, ssid, len), (int)len);
5290 priv->one_direct_scan = 1;
5291 priv->direct_ssid_len = (u8)
5292 min((u8) len, (u8) IW_ESSID_MAX_SIZE);
5293 memcpy(priv->direct_ssid, ssid, priv->direct_ssid_len);
5295 priv->one_direct_scan = 0;
5297 rc = iwl3945_scan_initiate(priv);
5299 IWL_DEBUG_MAC80211("leave\n");
5302 spin_unlock_irqrestore(&priv->lock, flags);
5303 mutex_unlock(&priv->mutex);
5308 static int iwl3945_mac_set_key(struct ieee80211_hw *hw, enum set_key_cmd cmd,
5309 struct ieee80211_vif *vif,
5310 struct ieee80211_sta *sta,
5311 struct ieee80211_key_conf *key)
5313 struct iwl_priv *priv = hw->priv;
5318 IWL_DEBUG_MAC80211("enter\n");
5320 if (iwl3945_mod_params.sw_crypto) {
5321 IWL_DEBUG_MAC80211("leave - hwcrypto disabled\n");
5325 addr = sta ? sta->addr : iwl_bcast_addr;
5326 sta_id = iwl3945_hw_find_station(priv, addr);
5327 if (sta_id == IWL_INVALID_STATION) {
5328 IWL_DEBUG_MAC80211("leave - %pM not in station map.\n",
5333 mutex_lock(&priv->mutex);
5335 iwl_scan_cancel_timeout(priv, 100);
5339 ret = iwl3945_update_sta_key_info(priv, key, sta_id);
5341 iwl3945_set_rxon_hwcrypto(priv, 1);
5342 iwl3945_commit_rxon(priv);
5343 key->hw_key_idx = sta_id;
5344 IWL_DEBUG_MAC80211("set_key success, using hwcrypto\n");
5345 key->flags |= IEEE80211_KEY_FLAG_GENERATE_IV;
5349 ret = iwl3945_clear_sta_key_info(priv, sta_id);
5351 iwl3945_set_rxon_hwcrypto(priv, 0);
5352 iwl3945_commit_rxon(priv);
5353 IWL_DEBUG_MAC80211("disable hwcrypto key\n");
5360 IWL_DEBUG_MAC80211("leave\n");
5361 mutex_unlock(&priv->mutex);
5366 static int iwl3945_mac_conf_tx(struct ieee80211_hw *hw, u16 queue,
5367 const struct ieee80211_tx_queue_params *params)
5369 struct iwl_priv *priv = hw->priv;
5370 unsigned long flags;
5373 IWL_DEBUG_MAC80211("enter\n");
5375 if (!iwl_is_ready_rf(priv)) {
5376 IWL_DEBUG_MAC80211("leave - RF not ready\n");
5380 if (queue >= AC_NUM) {
5381 IWL_DEBUG_MAC80211("leave - queue >= AC_NUM %d\n", queue);
5385 q = AC_NUM - 1 - queue;
5387 spin_lock_irqsave(&priv->lock, flags);
5389 priv->qos_data.def_qos_parm.ac[q].cw_min = cpu_to_le16(params->cw_min);
5390 priv->qos_data.def_qos_parm.ac[q].cw_max = cpu_to_le16(params->cw_max);
5391 priv->qos_data.def_qos_parm.ac[q].aifsn = params->aifs;
5392 priv->qos_data.def_qos_parm.ac[q].edca_txop =
5393 cpu_to_le16((params->txop * 32));
5395 priv->qos_data.def_qos_parm.ac[q].reserved1 = 0;
5396 priv->qos_data.qos_active = 1;
5398 spin_unlock_irqrestore(&priv->lock, flags);
5400 mutex_lock(&priv->mutex);
5401 if (priv->iw_mode == NL80211_IFTYPE_AP)
5402 iwl3945_activate_qos(priv, 1);
5403 else if (priv->assoc_id && iwl3945_is_associated(priv))
5404 iwl3945_activate_qos(priv, 0);
5406 mutex_unlock(&priv->mutex);
5408 IWL_DEBUG_MAC80211("leave\n");
5412 static int iwl3945_mac_get_tx_stats(struct ieee80211_hw *hw,
5413 struct ieee80211_tx_queue_stats *stats)
5415 struct iwl_priv *priv = hw->priv;
5417 struct iwl_tx_queue *txq;
5418 struct iwl_queue *q;
5419 unsigned long flags;
5421 IWL_DEBUG_MAC80211("enter\n");
5423 if (!iwl_is_ready_rf(priv)) {
5424 IWL_DEBUG_MAC80211("leave - RF not ready\n");
5428 spin_lock_irqsave(&priv->lock, flags);
5430 for (i = 0; i < AC_NUM; i++) {
5431 txq = &priv->txq[i];
5433 avail = iwl_queue_space(q);
5435 stats[i].len = q->n_window - avail;
5436 stats[i].limit = q->n_window - q->high_mark;
5437 stats[i].count = q->n_window;
5440 spin_unlock_irqrestore(&priv->lock, flags);
5442 IWL_DEBUG_MAC80211("leave\n");
5447 static void iwl3945_mac_reset_tsf(struct ieee80211_hw *hw)
5449 struct iwl_priv *priv = hw->priv;
5450 unsigned long flags;
5452 mutex_lock(&priv->mutex);
5453 IWL_DEBUG_MAC80211("enter\n");
5455 iwl_reset_qos(priv);
5457 spin_lock_irqsave(&priv->lock, flags);
5459 priv->assoc_capability = 0;
5461 /* new association get rid of ibss beacon skb */
5462 if (priv->ibss_beacon)
5463 dev_kfree_skb(priv->ibss_beacon);
5465 priv->ibss_beacon = NULL;
5467 priv->beacon_int = priv->hw->conf.beacon_int;
5468 priv->timestamp = 0;
5469 if ((priv->iw_mode == NL80211_IFTYPE_STATION))
5470 priv->beacon_int = 0;
5472 spin_unlock_irqrestore(&priv->lock, flags);
5474 if (!iwl_is_ready_rf(priv)) {
5475 IWL_DEBUG_MAC80211("leave - not ready\n");
5476 mutex_unlock(&priv->mutex);
5480 /* we are restarting association process
5481 * clear RXON_FILTER_ASSOC_MSK bit
5483 if (priv->iw_mode != NL80211_IFTYPE_AP) {
5484 iwl_scan_cancel_timeout(priv, 100);
5485 priv->staging39_rxon.filter_flags &= ~RXON_FILTER_ASSOC_MSK;
5486 iwl3945_commit_rxon(priv);
5489 /* Per mac80211.h: This is only used in IBSS mode... */
5490 if (priv->iw_mode != NL80211_IFTYPE_ADHOC) {
5492 IWL_DEBUG_MAC80211("leave - not in IBSS\n");
5493 mutex_unlock(&priv->mutex);
5497 iwl3945_set_rate(priv);
5499 mutex_unlock(&priv->mutex);
5501 IWL_DEBUG_MAC80211("leave\n");
5505 static int iwl3945_mac_beacon_update(struct ieee80211_hw *hw, struct sk_buff *skb)
5507 struct iwl_priv *priv = hw->priv;
5508 unsigned long flags;
5510 IWL_DEBUG_MAC80211("enter\n");
5512 if (!iwl_is_ready_rf(priv)) {
5513 IWL_DEBUG_MAC80211("leave - RF not ready\n");
5517 if (priv->iw_mode != NL80211_IFTYPE_ADHOC) {
5518 IWL_DEBUG_MAC80211("leave - not IBSS\n");
5522 spin_lock_irqsave(&priv->lock, flags);
5524 if (priv->ibss_beacon)
5525 dev_kfree_skb(priv->ibss_beacon);
5527 priv->ibss_beacon = skb;
5531 IWL_DEBUG_MAC80211("leave\n");
5532 spin_unlock_irqrestore(&priv->lock, flags);
5534 iwl_reset_qos(priv);
5536 iwl3945_post_associate(priv);
5542 /*****************************************************************************
5546 *****************************************************************************/
5548 #ifdef CONFIG_IWL3945_DEBUG
5551 * The following adds a new attribute to the sysfs representation
5552 * of this device driver (i.e. a new file in /sys/bus/pci/drivers/iwl/)
5553 * used for controlling the debug level.
5555 * See the level definitions in iwl for details.
5557 static ssize_t show_debug_level(struct device *d,
5558 struct device_attribute *attr, char *buf)
5560 struct iwl_priv *priv = d->driver_data;
5562 return sprintf(buf, "0x%08X\n", priv->debug_level);
5564 static ssize_t store_debug_level(struct device *d,
5565 struct device_attribute *attr,
5566 const char *buf, size_t count)
5568 struct iwl_priv *priv = d->driver_data;
5572 ret = strict_strtoul(buf, 0, &val);
5574 IWL_INFO(priv, "%s is not in hex or decimal form.\n", buf);
5576 priv->debug_level = val;
5578 return strnlen(buf, count);
5581 static DEVICE_ATTR(debug_level, S_IWUSR | S_IRUGO,
5582 show_debug_level, store_debug_level);
5584 #endif /* CONFIG_IWL3945_DEBUG */
5586 static ssize_t show_temperature(struct device *d,
5587 struct device_attribute *attr, char *buf)
5589 struct iwl_priv *priv = (struct iwl_priv *)d->driver_data;
5591 if (!iwl_is_alive(priv))
5594 return sprintf(buf, "%d\n", iwl3945_hw_get_temperature(priv));
5597 static DEVICE_ATTR(temperature, S_IRUGO, show_temperature, NULL);
5599 static ssize_t show_tx_power(struct device *d,
5600 struct device_attribute *attr, char *buf)
5602 struct iwl_priv *priv = (struct iwl_priv *)d->driver_data;
5603 return sprintf(buf, "%d\n", priv->tx_power_user_lmt);
5606 static ssize_t store_tx_power(struct device *d,
5607 struct device_attribute *attr,
5608 const char *buf, size_t count)
5610 struct iwl_priv *priv = (struct iwl_priv *)d->driver_data;
5611 char *p = (char *)buf;
5614 val = simple_strtoul(p, &p, 10);
5616 IWL_INFO(priv, ": %s is not in decimal form.\n", buf);
5618 iwl3945_hw_reg_set_txpower(priv, val);
5623 static DEVICE_ATTR(tx_power, S_IWUSR | S_IRUGO, show_tx_power, store_tx_power);
5625 static ssize_t show_flags(struct device *d,
5626 struct device_attribute *attr, char *buf)
5628 struct iwl_priv *priv = (struct iwl_priv *)d->driver_data;
5630 return sprintf(buf, "0x%04X\n", priv->active39_rxon.flags);
5633 static ssize_t store_flags(struct device *d,
5634 struct device_attribute *attr,
5635 const char *buf, size_t count)
5637 struct iwl_priv *priv = (struct iwl_priv *)d->driver_data;
5638 u32 flags = simple_strtoul(buf, NULL, 0);
5640 mutex_lock(&priv->mutex);
5641 if (le32_to_cpu(priv->staging39_rxon.flags) != flags) {
5642 /* Cancel any currently running scans... */
5643 if (iwl_scan_cancel_timeout(priv, 100))
5644 IWL_WARN(priv, "Could not cancel scan.\n");
5646 IWL_DEBUG_INFO("Committing rxon.flags = 0x%04X\n",
5648 priv->staging39_rxon.flags = cpu_to_le32(flags);
5649 iwl3945_commit_rxon(priv);
5652 mutex_unlock(&priv->mutex);
5657 static DEVICE_ATTR(flags, S_IWUSR | S_IRUGO, show_flags, store_flags);
5659 static ssize_t show_filter_flags(struct device *d,
5660 struct device_attribute *attr, char *buf)
5662 struct iwl_priv *priv = (struct iwl_priv *)d->driver_data;
5664 return sprintf(buf, "0x%04X\n",
5665 le32_to_cpu(priv->active39_rxon.filter_flags));
5668 static ssize_t store_filter_flags(struct device *d,
5669 struct device_attribute *attr,
5670 const char *buf, size_t count)
5672 struct iwl_priv *priv = (struct iwl_priv *)d->driver_data;
5673 u32 filter_flags = simple_strtoul(buf, NULL, 0);
5675 mutex_lock(&priv->mutex);
5676 if (le32_to_cpu(priv->staging39_rxon.filter_flags) != filter_flags) {
5677 /* Cancel any currently running scans... */
5678 if (iwl_scan_cancel_timeout(priv, 100))
5679 IWL_WARN(priv, "Could not cancel scan.\n");
5681 IWL_DEBUG_INFO("Committing rxon.filter_flags = "
5682 "0x%04X\n", filter_flags);
5683 priv->staging39_rxon.filter_flags =
5684 cpu_to_le32(filter_flags);
5685 iwl3945_commit_rxon(priv);
5688 mutex_unlock(&priv->mutex);
5693 static DEVICE_ATTR(filter_flags, S_IWUSR | S_IRUGO, show_filter_flags,
5694 store_filter_flags);
5696 #ifdef CONFIG_IWL3945_SPECTRUM_MEASUREMENT
5698 static ssize_t show_measurement(struct device *d,
5699 struct device_attribute *attr, char *buf)
5701 struct iwl_priv *priv = dev_get_drvdata(d);
5702 struct iwl_spectrum_notification measure_report;
5703 u32 size = sizeof(measure_report), len = 0, ofs = 0;
5704 u8 *data = (u8 *)&measure_report;
5705 unsigned long flags;
5707 spin_lock_irqsave(&priv->lock, flags);
5708 if (!(priv->measurement_status & MEASUREMENT_READY)) {
5709 spin_unlock_irqrestore(&priv->lock, flags);
5712 memcpy(&measure_report, &priv->measure_report, size);
5713 priv->measurement_status = 0;
5714 spin_unlock_irqrestore(&priv->lock, flags);
5716 while (size && (PAGE_SIZE - len)) {
5717 hex_dump_to_buffer(data + ofs, size, 16, 1, buf + len,
5718 PAGE_SIZE - len, 1);
5720 if (PAGE_SIZE - len)
5724 size -= min(size, 16U);
5730 static ssize_t store_measurement(struct device *d,
5731 struct device_attribute *attr,
5732 const char *buf, size_t count)
5734 struct iwl_priv *priv = dev_get_drvdata(d);
5735 struct ieee80211_measurement_params params = {
5736 .channel = le16_to_cpu(priv->active39_rxon.channel),
5737 .start_time = cpu_to_le64(priv->last_tsf),
5738 .duration = cpu_to_le16(1),
5740 u8 type = IWL_MEASURE_BASIC;
5746 strncpy(buffer, buf, min(sizeof(buffer), count));
5747 channel = simple_strtoul(p, NULL, 0);
5749 params.channel = channel;
5752 while (*p && *p != ' ')
5755 type = simple_strtoul(p + 1, NULL, 0);
5758 IWL_DEBUG_INFO("Invoking measurement of type %d on "
5759 "channel %d (for '%s')\n", type, params.channel, buf);
5760 iwl3945_get_measurement(priv, ¶ms, type);
5765 static DEVICE_ATTR(measurement, S_IRUSR | S_IWUSR,
5766 show_measurement, store_measurement);
5767 #endif /* CONFIG_IWL3945_SPECTRUM_MEASUREMENT */
5769 static ssize_t store_retry_rate(struct device *d,
5770 struct device_attribute *attr,
5771 const char *buf, size_t count)
5773 struct iwl_priv *priv = dev_get_drvdata(d);
5775 priv->retry_rate = simple_strtoul(buf, NULL, 0);
5776 if (priv->retry_rate <= 0)
5777 priv->retry_rate = 1;
5782 static ssize_t show_retry_rate(struct device *d,
5783 struct device_attribute *attr, char *buf)
5785 struct iwl_priv *priv = dev_get_drvdata(d);
5786 return sprintf(buf, "%d", priv->retry_rate);
5789 static DEVICE_ATTR(retry_rate, S_IWUSR | S_IRUSR, show_retry_rate,
5792 static ssize_t store_power_level(struct device *d,
5793 struct device_attribute *attr,
5794 const char *buf, size_t count)
5796 struct iwl_priv *priv = dev_get_drvdata(d);
5800 mode = simple_strtoul(buf, NULL, 0);
5801 mutex_lock(&priv->mutex);
5803 if (!iwl_is_ready(priv)) {
5808 if ((mode < 1) || (mode > IWL39_POWER_LIMIT) ||
5809 (mode == IWL39_POWER_AC))
5810 mode = IWL39_POWER_AC;
5812 mode |= IWL_POWER_ENABLED;
5814 if (mode != priv->power_mode) {
5815 rc = iwl3945_send_power_mode(priv, IWL_POWER_LEVEL(mode));
5817 IWL_DEBUG_MAC80211("failed setting power mode.\n");
5820 priv->power_mode = mode;
5826 mutex_unlock(&priv->mutex);
5830 #define MAX_WX_STRING 80
5832 /* Values are in microsecond */
5833 static const s32 timeout_duration[] = {
5840 static const s32 period_duration[] = {
5848 static ssize_t show_power_level(struct device *d,
5849 struct device_attribute *attr, char *buf)
5851 struct iwl_priv *priv = dev_get_drvdata(d);
5852 int level = IWL_POWER_LEVEL(priv->power_mode);
5855 p += sprintf(p, "%d ", level);
5857 case IWL_POWER_MODE_CAM:
5858 case IWL39_POWER_AC:
5859 p += sprintf(p, "(AC)");
5861 case IWL39_POWER_BATTERY:
5862 p += sprintf(p, "(BATTERY)");
5866 "(Timeout %dms, Period %dms)",
5867 timeout_duration[level - 1] / 1000,
5868 period_duration[level - 1] / 1000);
5871 if (!(priv->power_mode & IWL_POWER_ENABLED))
5872 p += sprintf(p, " OFF\n");
5874 p += sprintf(p, " \n");
5880 static DEVICE_ATTR(power_level, S_IWUSR | S_IRUSR, show_power_level,
5883 static ssize_t show_channels(struct device *d,
5884 struct device_attribute *attr, char *buf)
5886 /* all this shit doesn't belong into sysfs anyway */
5890 static DEVICE_ATTR(channels, S_IRUSR, show_channels, NULL);
5892 static ssize_t show_statistics(struct device *d,
5893 struct device_attribute *attr, char *buf)
5895 struct iwl_priv *priv = dev_get_drvdata(d);
5896 u32 size = sizeof(struct iwl3945_notif_statistics);
5897 u32 len = 0, ofs = 0;
5898 u8 *data = (u8 *)&priv->statistics_39;
5901 if (!iwl_is_alive(priv))
5904 mutex_lock(&priv->mutex);
5905 rc = iwl3945_send_statistics_request(priv);
5906 mutex_unlock(&priv->mutex);
5910 "Error sending statistics request: 0x%08X\n", rc);
5914 while (size && (PAGE_SIZE - len)) {
5915 hex_dump_to_buffer(data + ofs, size, 16, 1, buf + len,
5916 PAGE_SIZE - len, 1);
5918 if (PAGE_SIZE - len)
5922 size -= min(size, 16U);
5928 static DEVICE_ATTR(statistics, S_IRUGO, show_statistics, NULL);
5930 static ssize_t show_antenna(struct device *d,
5931 struct device_attribute *attr, char *buf)
5933 struct iwl_priv *priv = dev_get_drvdata(d);
5935 if (!iwl_is_alive(priv))
5938 return sprintf(buf, "%d\n", priv->antenna);
5941 static ssize_t store_antenna(struct device *d,
5942 struct device_attribute *attr,
5943 const char *buf, size_t count)
5946 struct iwl_priv *priv = dev_get_drvdata(d);
5951 if (sscanf(buf, "%1i", &ant) != 1) {
5952 IWL_DEBUG_INFO("not in hex or decimal form.\n");
5956 if ((ant >= 0) && (ant <= 2)) {
5957 IWL_DEBUG_INFO("Setting antenna select to %d.\n", ant);
5958 priv->antenna = (enum iwl3945_antenna)ant;
5960 IWL_DEBUG_INFO("Bad antenna select value %d.\n", ant);
5966 static DEVICE_ATTR(antenna, S_IWUSR | S_IRUGO, show_antenna, store_antenna);
5968 static ssize_t show_status(struct device *d,
5969 struct device_attribute *attr, char *buf)
5971 struct iwl_priv *priv = (struct iwl_priv *)d->driver_data;
5972 if (!iwl_is_alive(priv))
5974 return sprintf(buf, "0x%08x\n", (int)priv->status);
5977 static DEVICE_ATTR(status, S_IRUGO, show_status, NULL);
5979 static ssize_t dump_error_log(struct device *d,
5980 struct device_attribute *attr,
5981 const char *buf, size_t count)
5983 char *p = (char *)buf;
5986 iwl3945_dump_nic_error_log((struct iwl_priv *)d->driver_data);
5988 return strnlen(buf, count);
5991 static DEVICE_ATTR(dump_errors, S_IWUSR, NULL, dump_error_log);
5993 static ssize_t dump_event_log(struct device *d,
5994 struct device_attribute *attr,
5995 const char *buf, size_t count)
5997 char *p = (char *)buf;
6000 iwl3945_dump_nic_event_log((struct iwl_priv *)d->driver_data);
6002 return strnlen(buf, count);
6005 static DEVICE_ATTR(dump_events, S_IWUSR, NULL, dump_event_log);
6007 /*****************************************************************************
6009 * driver setup and tear down
6011 *****************************************************************************/
6013 static void iwl3945_setup_deferred_work(struct iwl_priv *priv)
6015 priv->workqueue = create_workqueue(DRV_NAME);
6017 init_waitqueue_head(&priv->wait_command_queue);
6019 INIT_WORK(&priv->up, iwl3945_bg_up);
6020 INIT_WORK(&priv->restart, iwl3945_bg_restart);
6021 INIT_WORK(&priv->rx_replenish, iwl3945_bg_rx_replenish);
6022 INIT_WORK(&priv->rf_kill, iwl_bg_rf_kill);
6023 INIT_WORK(&priv->beacon_update, iwl3945_bg_beacon_update);
6024 INIT_DELAYED_WORK(&priv->init_alive_start, iwl3945_bg_init_alive_start);
6025 INIT_DELAYED_WORK(&priv->alive_start, iwl3945_bg_alive_start);
6026 INIT_DELAYED_WORK(&priv->rfkill_poll, iwl3945_rfkill_poll);
6027 INIT_WORK(&priv->scan_completed, iwl_bg_scan_completed);
6028 INIT_WORK(&priv->request_scan, iwl3945_bg_request_scan);
6029 INIT_WORK(&priv->abort_scan, iwl_bg_abort_scan);
6030 INIT_DELAYED_WORK(&priv->scan_check, iwl_bg_scan_check);
6032 iwl3945_hw_setup_deferred_work(priv);
6034 tasklet_init(&priv->irq_tasklet, (void (*)(unsigned long))
6035 iwl3945_irq_tasklet, (unsigned long)priv);
6038 static void iwl3945_cancel_deferred_work(struct iwl_priv *priv)
6040 iwl3945_hw_cancel_deferred_work(priv);
6042 cancel_delayed_work_sync(&priv->init_alive_start);
6043 cancel_delayed_work(&priv->scan_check);
6044 cancel_delayed_work(&priv->alive_start);
6045 cancel_work_sync(&priv->beacon_update);
6048 static struct attribute *iwl3945_sysfs_entries[] = {
6049 &dev_attr_antenna.attr,
6050 &dev_attr_channels.attr,
6051 &dev_attr_dump_errors.attr,
6052 &dev_attr_dump_events.attr,
6053 &dev_attr_flags.attr,
6054 &dev_attr_filter_flags.attr,
6055 #ifdef CONFIG_IWL3945_SPECTRUM_MEASUREMENT
6056 &dev_attr_measurement.attr,
6058 &dev_attr_power_level.attr,
6059 &dev_attr_retry_rate.attr,
6060 &dev_attr_statistics.attr,
6061 &dev_attr_status.attr,
6062 &dev_attr_temperature.attr,
6063 &dev_attr_tx_power.attr,
6064 #ifdef CONFIG_IWL3945_DEBUG
6065 &dev_attr_debug_level.attr,
6070 static struct attribute_group iwl3945_attribute_group = {
6071 .name = NULL, /* put in device directory */
6072 .attrs = iwl3945_sysfs_entries,
6075 static struct ieee80211_ops iwl3945_hw_ops = {
6076 .tx = iwl3945_mac_tx,
6077 .start = iwl3945_mac_start,
6078 .stop = iwl3945_mac_stop,
6079 .add_interface = iwl3945_mac_add_interface,
6080 .remove_interface = iwl3945_mac_remove_interface,
6081 .config = iwl3945_mac_config,
6082 .config_interface = iwl3945_mac_config_interface,
6083 .configure_filter = iwl3945_configure_filter,
6084 .set_key = iwl3945_mac_set_key,
6085 .get_tx_stats = iwl3945_mac_get_tx_stats,
6086 .conf_tx = iwl3945_mac_conf_tx,
6087 .reset_tsf = iwl3945_mac_reset_tsf,
6088 .bss_info_changed = iwl3945_bss_info_changed,
6089 .hw_scan = iwl3945_mac_hw_scan
6092 static int iwl3945_init_drv(struct iwl_priv *priv)
6095 struct iwl3945_eeprom *eeprom = (struct iwl3945_eeprom *)priv->eeprom;
6097 priv->retry_rate = 1;
6098 priv->ibss_beacon = NULL;
6100 spin_lock_init(&priv->lock);
6101 spin_lock_init(&priv->power_data.lock);
6102 spin_lock_init(&priv->sta_lock);
6103 spin_lock_init(&priv->hcmd_lock);
6105 INIT_LIST_HEAD(&priv->free_frames);
6107 mutex_init(&priv->mutex);
6109 /* Clear the driver's (not device's) station table */
6110 iwl3945_clear_stations_table(priv);
6112 priv->data_retry_limit = -1;
6113 priv->ieee_channels = NULL;
6114 priv->ieee_rates = NULL;
6115 priv->band = IEEE80211_BAND_2GHZ;
6117 priv->iw_mode = NL80211_IFTYPE_STATION;
6119 iwl_reset_qos(priv);
6121 priv->qos_data.qos_active = 0;
6122 priv->qos_data.qos_cap.val = 0;
6124 priv->rates_mask = IWL_RATES_MASK;
6125 /* If power management is turned on, default to AC mode */
6126 priv->power_mode = IWL39_POWER_AC;
6127 priv->tx_power_user_lmt = IWL_DEFAULT_TX_POWER;
6129 if (eeprom->version < EEPROM_3945_EEPROM_VERSION) {
6130 IWL_WARN(priv, "Unsupported EEPROM version: 0x%04X\n",
6135 ret = iwl_init_channel_map(priv);
6137 IWL_ERR(priv, "initializing regulatory failed: %d\n", ret);
6141 /* Set up txpower settings in driver for all channels */
6142 if (iwl3945_txpower_set_from_eeprom(priv)) {
6144 goto err_free_channel_map;
6147 ret = iwl3945_init_geos(priv);
6149 IWL_ERR(priv, "initializing geos failed: %d\n", ret);
6150 goto err_free_channel_map;
6155 err_free_channel_map:
6156 iwl_free_channel_map(priv);
6161 static int iwl3945_pci_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
6164 struct iwl_priv *priv;
6165 struct ieee80211_hw *hw;
6166 struct iwl_cfg *cfg = (struct iwl_cfg *)(ent->driver_data);
6167 struct iwl3945_eeprom *eeprom;
6168 unsigned long flags;
6170 /***********************
6171 * 1. Allocating HW data
6172 * ********************/
6174 /* mac80211 allocates memory for this device instance, including
6175 * space for this driver's private structure */
6176 hw = iwl_alloc_all(cfg, &iwl3945_hw_ops);
6178 printk(KERN_ERR DRV_NAME "Can not allocate network device\n");
6183 SET_IEEE80211_DEV(hw, &pdev->dev);
6185 if ((iwl3945_mod_params.num_of_queues > IWL39_MAX_NUM_QUEUES) ||
6186 (iwl3945_mod_params.num_of_queues < IWL_MIN_NUM_QUEUES)) {
6188 "invalid queues_num, should be between %d and %d\n",
6189 IWL_MIN_NUM_QUEUES, IWL39_MAX_NUM_QUEUES);
6195 * Disabling hardware scan means that mac80211 will perform scans
6196 * "the hard way", rather than using device's scan.
6198 if (iwl3945_mod_params.disable_hw_scan) {
6199 IWL_DEBUG_INFO("Disabling hw_scan\n");
6200 iwl3945_hw_ops.hw_scan = NULL;
6204 IWL_DEBUG_INFO("*** LOAD DRIVER ***\n");
6206 priv->pci_dev = pdev;
6208 #ifdef CONFIG_IWL3945_DEBUG
6209 priv->debug_level = iwl3945_mod_params.debug;
6210 atomic_set(&priv->restrict_refcnt, 0);
6212 hw->rate_control_algorithm = "iwl-3945-rs";
6213 hw->sta_data_size = sizeof(struct iwl3945_sta_priv);
6215 /* Select antenna (may be helpful if only one antenna is connected) */
6216 priv->antenna = (enum iwl3945_antenna)iwl3945_mod_params.antenna;
6218 /* Tell mac80211 our characteristics */
6219 hw->flags = IEEE80211_HW_SIGNAL_DBM |
6220 IEEE80211_HW_NOISE_DBM;
6222 hw->wiphy->interface_modes =
6223 BIT(NL80211_IFTYPE_STATION) |
6224 BIT(NL80211_IFTYPE_ADHOC);
6226 hw->wiphy->custom_regulatory = true;
6228 /* 4 EDCA QOS priorities */
6231 /***************************
6232 * 2. Initializing PCI bus
6233 * *************************/
6234 if (pci_enable_device(pdev)) {
6236 goto out_ieee80211_free_hw;
6239 pci_set_master(pdev);
6241 err = pci_set_dma_mask(pdev, DMA_32BIT_MASK);
6243 err = pci_set_consistent_dma_mask(pdev, DMA_32BIT_MASK);
6245 IWL_WARN(priv, "No suitable DMA available.\n");
6246 goto out_pci_disable_device;
6249 pci_set_drvdata(pdev, priv);
6250 err = pci_request_regions(pdev, DRV_NAME);
6252 goto out_pci_disable_device;
6254 /***********************
6255 * 3. Read REV Register
6256 * ********************/
6257 priv->hw_base = pci_iomap(pdev, 0, 0);
6258 if (!priv->hw_base) {
6260 goto out_pci_release_regions;
6263 IWL_DEBUG_INFO("pci_resource_len = 0x%08llx\n",
6264 (unsigned long long) pci_resource_len(pdev, 0));
6265 IWL_DEBUG_INFO("pci_resource_base = %p\n", priv->hw_base);
6267 /* We disable the RETRY_TIMEOUT register (0x41) to keep
6268 * PCI Tx retries from interfering with C3 CPU state */
6269 pci_write_config_byte(pdev, 0x41, 0x00);
6272 err = priv->cfg->ops->lib->apm_ops.init(priv);
6274 IWL_DEBUG_INFO("Failed to init APMG\n");
6278 /***********************
6280 * ********************/
6282 /* Read the EEPROM */
6283 err = iwl_eeprom_init(priv);
6285 IWL_ERR(priv, "Unable to init EEPROM\n");
6286 goto out_remove_sysfs;
6288 /* MAC Address location in EEPROM same for 3945/4965 */
6289 eeprom = (struct iwl3945_eeprom *)priv->eeprom;
6290 memcpy(priv->mac_addr, eeprom->mac_address, ETH_ALEN);
6291 IWL_DEBUG_INFO("MAC address: %pM\n", priv->mac_addr);
6292 SET_IEEE80211_PERM_ADDR(priv->hw, priv->mac_addr);
6294 /***********************
6295 * 5. Setup HW Constants
6296 * ********************/
6297 /* Device-specific setup */
6298 if (iwl3945_hw_set_hw_params(priv)) {
6299 IWL_ERR(priv, "failed to set hw settings\n");
6303 /***********************
6305 * ********************/
6307 err = iwl3945_init_drv(priv);
6309 IWL_ERR(priv, "initializing driver failed\n");
6313 IWL_INFO(priv, "Detected Intel Wireless WiFi Link %s\n",
6316 /***********************************
6317 * 7. Initialize Module Parameters
6318 * **********************************/
6320 /* Initialize module parameter values here */
6321 /* Disable radio (SW RF KILL) via parameter when loading driver */
6322 if (iwl3945_mod_params.disable) {
6323 set_bit(STATUS_RF_KILL_SW, &priv->status);
6324 IWL_DEBUG_INFO("Radio disabled.\n");
6328 /***********************
6330 * ********************/
6332 spin_lock_irqsave(&priv->lock, flags);
6333 iwl3945_disable_interrupts(priv);
6334 spin_unlock_irqrestore(&priv->lock, flags);
6336 pci_enable_msi(priv->pci_dev);
6338 err = request_irq(priv->pci_dev->irq, iwl3945_isr, IRQF_SHARED,
6341 IWL_ERR(priv, "Error allocating IRQ %d\n", priv->pci_dev->irq);
6342 goto out_disable_msi;
6345 err = sysfs_create_group(&pdev->dev.kobj, &iwl3945_attribute_group);
6347 IWL_ERR(priv, "failed to create sysfs device attributes\n");
6348 goto out_release_irq;
6351 iwl3945_set_rxon_channel(priv, IEEE80211_BAND_2GHZ, 6);
6352 iwl3945_setup_deferred_work(priv);
6353 iwl3945_setup_rx_handlers(priv);
6355 /*********************************
6356 * 9. Setup and Register mac80211
6357 * *******************************/
6359 err = ieee80211_register_hw(priv->hw);
6361 IWL_ERR(priv, "Failed to register network device: %d\n", err);
6362 goto out_remove_sysfs;
6365 priv->hw->conf.beacon_int = 100;
6366 priv->mac80211_registered = 1;
6368 err = iwl_rfkill_init(priv);
6370 IWL_ERR(priv, "Unable to initialize RFKILL system. "
6371 "Ignoring error: %d\n", err);
6373 /* Start monitoring the killswitch */
6374 queue_delayed_work(priv->workqueue, &priv->rfkill_poll,
6380 sysfs_remove_group(&pdev->dev.kobj, &iwl3945_attribute_group);
6382 iwl3945_free_geos(priv);
6385 free_irq(priv->pci_dev->irq, priv);
6386 destroy_workqueue(priv->workqueue);
6387 priv->workqueue = NULL;
6388 iwl3945_unset_hw_params(priv);
6390 pci_disable_msi(priv->pci_dev);
6392 pci_iounmap(pdev, priv->hw_base);
6393 out_pci_release_regions:
6394 pci_release_regions(pdev);
6395 out_pci_disable_device:
6396 pci_disable_device(pdev);
6397 pci_set_drvdata(pdev, NULL);
6398 out_ieee80211_free_hw:
6399 ieee80211_free_hw(priv->hw);
6404 static void __devexit iwl3945_pci_remove(struct pci_dev *pdev)
6406 struct iwl_priv *priv = pci_get_drvdata(pdev);
6407 unsigned long flags;
6412 IWL_DEBUG_INFO("*** UNLOAD DRIVER ***\n");
6414 set_bit(STATUS_EXIT_PENDING, &priv->status);
6416 if (priv->mac80211_registered) {
6417 ieee80211_unregister_hw(priv->hw);
6418 priv->mac80211_registered = 0;
6423 /* make sure we flush any pending irq or
6424 * tasklet for the driver
6426 spin_lock_irqsave(&priv->lock, flags);
6427 iwl3945_disable_interrupts(priv);
6428 spin_unlock_irqrestore(&priv->lock, flags);
6430 iwl_synchronize_irq(priv);
6432 sysfs_remove_group(&pdev->dev.kobj, &iwl3945_attribute_group);
6434 iwl_rfkill_unregister(priv);
6435 cancel_delayed_work(&priv->rfkill_poll);
6437 iwl3945_dealloc_ucode_pci(priv);
6440 iwl_rx_queue_free(priv, &priv->rxq);
6441 iwl3945_hw_txq_ctx_free(priv);
6443 iwl3945_unset_hw_params(priv);
6444 iwl3945_clear_stations_table(priv);
6446 /*netif_stop_queue(dev); */
6447 flush_workqueue(priv->workqueue);
6449 /* ieee80211_unregister_hw calls iwl3945_mac_stop, which flushes
6450 * priv->workqueue... so we can't take down the workqueue
6452 destroy_workqueue(priv->workqueue);
6453 priv->workqueue = NULL;
6455 free_irq(pdev->irq, priv);
6456 pci_disable_msi(pdev);
6458 pci_iounmap(pdev, priv->hw_base);
6459 pci_release_regions(pdev);
6460 pci_disable_device(pdev);
6461 pci_set_drvdata(pdev, NULL);
6463 iwl_free_channel_map(priv);
6464 iwl3945_free_geos(priv);
6466 if (priv->ibss_beacon)
6467 dev_kfree_skb(priv->ibss_beacon);
6469 ieee80211_free_hw(priv->hw);
6474 static int iwl3945_pci_suspend(struct pci_dev *pdev, pm_message_t state)
6476 struct iwl_priv *priv = pci_get_drvdata(pdev);
6478 if (priv->is_open) {
6479 set_bit(STATUS_IN_SUSPEND, &priv->status);
6480 iwl3945_mac_stop(priv->hw);
6483 pci_save_state(pdev);
6484 pci_disable_device(pdev);
6485 pci_set_power_state(pdev, PCI_D3hot);
6490 static int iwl3945_pci_resume(struct pci_dev *pdev)
6492 struct iwl_priv *priv = pci_get_drvdata(pdev);
6494 pci_set_power_state(pdev, PCI_D0);
6495 pci_enable_device(pdev);
6496 pci_restore_state(pdev);
6499 iwl3945_mac_start(priv->hw);
6501 clear_bit(STATUS_IN_SUSPEND, &priv->status);
6505 #endif /* CONFIG_PM */
6507 /*****************************************************************************
6509 * driver and module entry point
6511 *****************************************************************************/
6513 static struct pci_driver iwl3945_driver = {
6515 .id_table = iwl3945_hw_card_ids,
6516 .probe = iwl3945_pci_probe,
6517 .remove = __devexit_p(iwl3945_pci_remove),
6519 .suspend = iwl3945_pci_suspend,
6520 .resume = iwl3945_pci_resume,
6524 static int __init iwl3945_init(void)
6528 printk(KERN_INFO DRV_NAME ": " DRV_DESCRIPTION ", " DRV_VERSION "\n");
6529 printk(KERN_INFO DRV_NAME ": " DRV_COPYRIGHT "\n");
6531 ret = iwl3945_rate_control_register();
6533 printk(KERN_ERR DRV_NAME
6534 "Unable to register rate control algorithm: %d\n", ret);
6538 ret = pci_register_driver(&iwl3945_driver);
6540 printk(KERN_ERR DRV_NAME "Unable to initialize PCI module\n");
6541 goto error_register;
6547 iwl3945_rate_control_unregister();
6551 static void __exit iwl3945_exit(void)
6553 pci_unregister_driver(&iwl3945_driver);
6554 iwl3945_rate_control_unregister();
6557 MODULE_FIRMWARE(IWL3945_MODULE_FIRMWARE(IWL3945_UCODE_API_MAX));
6559 module_param_named(antenna, iwl3945_mod_params.antenna, int, 0444);
6560 MODULE_PARM_DESC(antenna, "select antenna (1=Main, 2=Aux, default 0 [both])");
6561 module_param_named(disable, iwl3945_mod_params.disable, int, 0444);
6562 MODULE_PARM_DESC(disable, "manually disable the radio (default 0 [radio on])");
6563 module_param_named(swcrypto, iwl3945_mod_params.sw_crypto, int, 0444);
6564 MODULE_PARM_DESC(swcrypto,
6565 "using software crypto (default 1 [software])\n");
6566 module_param_named(debug, iwl3945_mod_params.debug, uint, 0444);
6567 MODULE_PARM_DESC(debug, "debug output mask");
6568 module_param_named(disable_hw_scan, iwl3945_mod_params.disable_hw_scan, int, 0444);
6569 MODULE_PARM_DESC(disable_hw_scan, "disable hardware scanning (default 0)");
6571 module_param_named(queues_num, iwl3945_mod_params.num_of_queues, int, 0444);
6572 MODULE_PARM_DESC(queues_num, "number of hw queues.");
6574 module_exit(iwl3945_exit);
6575 module_init(iwl3945_init);
git.openpandora.org / pandora-kernel.git / blob