Loading...
Note: File does not exist in v6.8.
1/*
2 * Common code for mac80211 Prism54 drivers
3 *
4 * Copyright (c) 2006, Michael Wu <flamingice@sourmilk.net>
5 * Copyright (c) 2007-2009, Christian Lamparter <chunkeey@web.de>
6 * Copyright 2008, Johannes Berg <johannes@sipsolutions.net>
7 *
8 * Based on:
9 * - the islsm (softmac prism54) driver, which is:
10 * Copyright 2004-2006 Jean-Baptiste Note <jbnote@gmail.com>, et al.
11 * - stlc45xx driver
12 * Copyright (C) 2008 Nokia Corporation and/or its subsidiary(-ies).
13 *
14 * This program is free software; you can redistribute it and/or modify
15 * it under the terms of the GNU General Public License version 2 as
16 * published by the Free Software Foundation.
17 */
18
19#include <linux/init.h>
20#include <linux/firmware.h>
21#include <linux/etherdevice.h>
22
23#include <net/mac80211.h>
24
25#include "p54.h"
26#include "lmac.h"
27
28#ifdef P54_MM_DEBUG
29static void p54_dump_tx_queue(struct p54_common *priv)
30{
31 unsigned long flags;
32 struct ieee80211_tx_info *info;
33 struct p54_tx_info *range;
34 struct sk_buff *skb;
35 struct p54_hdr *hdr;
36 unsigned int i = 0;
37 u32 prev_addr;
38 u32 largest_hole = 0, free;
39
40 spin_lock_irqsave(&priv->tx_queue.lock, flags);
41 wiphy_debug(priv->hw->wiphy, "/ --- tx queue dump (%d entries) ---\n",
42 skb_queue_len(&priv->tx_queue));
43
44 prev_addr = priv->rx_start;
45 skb_queue_walk(&priv->tx_queue, skb) {
46 info = IEEE80211_SKB_CB(skb);
47 range = (void *) info->rate_driver_data;
48 hdr = (void *) skb->data;
49
50 free = range->start_addr - prev_addr;
51 wiphy_debug(priv->hw->wiphy,
52 "| [%02d] => [skb:%p skb_len:0x%04x "
53 "hdr:{flags:%02x len:%04x req_id:%04x type:%02x} "
54 "mem:{start:%04x end:%04x, free:%d}]\n",
55 i++, skb, skb->len,
56 le16_to_cpu(hdr->flags), le16_to_cpu(hdr->len),
57 le32_to_cpu(hdr->req_id), le16_to_cpu(hdr->type),
58 range->start_addr, range->end_addr, free);
59
60 prev_addr = range->end_addr;
61 largest_hole = max(largest_hole, free);
62 }
63 free = priv->rx_end - prev_addr;
64 largest_hole = max(largest_hole, free);
65 wiphy_debug(priv->hw->wiphy,
66 "\\ --- [free: %d], largest free block: %d ---\n",
67 free, largest_hole);
68 spin_unlock_irqrestore(&priv->tx_queue.lock, flags);
69}
70#endif /* P54_MM_DEBUG */
71
72/*
73 * So, the firmware is somewhat stupid and doesn't know what places in its
74 * memory incoming data should go to. By poking around in the firmware, we
75 * can find some unused memory to upload our packets to. However, data that we
76 * want the card to TX needs to stay intact until the card has told us that
77 * it is done with it. This function finds empty places we can upload to and
78 * marks allocated areas as reserved if necessary. p54_find_and_unlink_skb or
79 * p54_free_skb frees allocated areas.
80 */
81static int p54_assign_address(struct p54_common *priv, struct sk_buff *skb)
82{
83 struct sk_buff *entry, *target_skb = NULL;
84 struct ieee80211_tx_info *info;
85 struct p54_tx_info *range;
86 struct p54_hdr *data = (void *) skb->data;
87 unsigned long flags;
88 u32 last_addr = priv->rx_start;
89 u32 target_addr = priv->rx_start;
90 u16 len = priv->headroom + skb->len + priv->tailroom + 3;
91
92 info = IEEE80211_SKB_CB(skb);
93 range = (void *) info->rate_driver_data;
94 len = (range->extra_len + len) & ~0x3;
95
96 spin_lock_irqsave(&priv->tx_queue.lock, flags);
97 if (unlikely(skb_queue_len(&priv->tx_queue) == 32)) {
98 /*
99 * The tx_queue is now really full.
100 *
101 * TODO: check if the device has crashed and reset it.
102 */
103 spin_unlock_irqrestore(&priv->tx_queue.lock, flags);
104 return -EBUSY;
105 }
106
107 skb_queue_walk(&priv->tx_queue, entry) {
108 u32 hole_size;
109 info = IEEE80211_SKB_CB(entry);
110 range = (void *) info->rate_driver_data;
111 hole_size = range->start_addr - last_addr;
112
113 if (!target_skb && hole_size >= len) {
114 target_skb = entry->prev;
115 hole_size -= len;
116 target_addr = last_addr;
117 break;
118 }
119 last_addr = range->end_addr;
120 }
121 if (unlikely(!target_skb)) {
122 if (priv->rx_end - last_addr >= len) {
123 target_skb = priv->tx_queue.prev;
124 if (!skb_queue_empty(&priv->tx_queue)) {
125 info = IEEE80211_SKB_CB(target_skb);
126 range = (void *)info->rate_driver_data;
127 target_addr = range->end_addr;
128 }
129 } else {
130 spin_unlock_irqrestore(&priv->tx_queue.lock, flags);
131 return -ENOSPC;
132 }
133 }
134
135 info = IEEE80211_SKB_CB(skb);
136 range = (void *) info->rate_driver_data;
137 range->start_addr = target_addr;
138 range->end_addr = target_addr + len;
139 data->req_id = cpu_to_le32(target_addr + priv->headroom);
140 if (IS_DATA_FRAME(skb) &&
141 unlikely(GET_HW_QUEUE(skb) == P54_QUEUE_BEACON))
142 priv->beacon_req_id = data->req_id;
143
144 __skb_queue_after(&priv->tx_queue, target_skb, skb);
145 spin_unlock_irqrestore(&priv->tx_queue.lock, flags);
146 return 0;
147}
148
149static void p54_tx_pending(struct p54_common *priv)
150{
151 struct sk_buff *skb;
152 int ret;
153
154 skb = skb_dequeue(&priv->tx_pending);
155 if (unlikely(!skb))
156 return ;
157
158 ret = p54_assign_address(priv, skb);
159 if (unlikely(ret))
160 skb_queue_head(&priv->tx_pending, skb);
161 else
162 priv->tx(priv->hw, skb);
163}
164
165static void p54_wake_queues(struct p54_common *priv)
166{
167 unsigned long flags;
168 unsigned int i;
169
170 if (unlikely(priv->mode == NL80211_IFTYPE_UNSPECIFIED))
171 return ;
172
173 p54_tx_pending(priv);
174
175 spin_lock_irqsave(&priv->tx_stats_lock, flags);
176 for (i = 0; i < priv->hw->queues; i++) {
177 if (priv->tx_stats[i + P54_QUEUE_DATA].len <
178 priv->tx_stats[i + P54_QUEUE_DATA].limit)
179 ieee80211_wake_queue(priv->hw, i);
180 }
181 spin_unlock_irqrestore(&priv->tx_stats_lock, flags);
182}
183
184static int p54_tx_qos_accounting_alloc(struct p54_common *priv,
185 struct sk_buff *skb,
186 const u16 p54_queue)
187{
188 struct p54_tx_queue_stats *queue;
189 unsigned long flags;
190
191 if (WARN_ON(p54_queue >= P54_QUEUE_NUM))
192 return -EINVAL;
193
194 queue = &priv->tx_stats[p54_queue];
195
196 spin_lock_irqsave(&priv->tx_stats_lock, flags);
197 if (unlikely(queue->len >= queue->limit && IS_QOS_QUEUE(p54_queue))) {
198 spin_unlock_irqrestore(&priv->tx_stats_lock, flags);
199 return -ENOSPC;
200 }
201
202 queue->len++;
203 queue->count++;
204
205 if (unlikely(queue->len == queue->limit && IS_QOS_QUEUE(p54_queue))) {
206 u16 ac_queue = p54_queue - P54_QUEUE_DATA;
207 ieee80211_stop_queue(priv->hw, ac_queue);
208 }
209
210 spin_unlock_irqrestore(&priv->tx_stats_lock, flags);
211 return 0;
212}
213
214static void p54_tx_qos_accounting_free(struct p54_common *priv,
215 struct sk_buff *skb)
216{
217 if (IS_DATA_FRAME(skb)) {
218 unsigned long flags;
219
220 spin_lock_irqsave(&priv->tx_stats_lock, flags);
221 priv->tx_stats[GET_HW_QUEUE(skb)].len--;
222 spin_unlock_irqrestore(&priv->tx_stats_lock, flags);
223
224 if (unlikely(GET_HW_QUEUE(skb) == P54_QUEUE_BEACON)) {
225 if (priv->beacon_req_id == GET_REQ_ID(skb)) {
226 /* this is the active beacon set anymore */
227 priv->beacon_req_id = 0;
228 }
229 complete(&priv->beacon_comp);
230 }
231 }
232 p54_wake_queues(priv);
233}
234
235void p54_free_skb(struct ieee80211_hw *dev, struct sk_buff *skb)
236{
237 struct p54_common *priv = dev->priv;
238 if (unlikely(!skb))
239 return ;
240
241 skb_unlink(skb, &priv->tx_queue);
242 p54_tx_qos_accounting_free(priv, skb);
243 dev_kfree_skb_any(skb);
244}
245EXPORT_SYMBOL_GPL(p54_free_skb);
246
247static struct sk_buff *p54_find_and_unlink_skb(struct p54_common *priv,
248 const __le32 req_id)
249{
250 struct sk_buff *entry;
251 unsigned long flags;
252
253 spin_lock_irqsave(&priv->tx_queue.lock, flags);
254 skb_queue_walk(&priv->tx_queue, entry) {
255 struct p54_hdr *hdr = (struct p54_hdr *) entry->data;
256
257 if (hdr->req_id == req_id) {
258 __skb_unlink(entry, &priv->tx_queue);
259 spin_unlock_irqrestore(&priv->tx_queue.lock, flags);
260 p54_tx_qos_accounting_free(priv, entry);
261 return entry;
262 }
263 }
264 spin_unlock_irqrestore(&priv->tx_queue.lock, flags);
265 return NULL;
266}
267
268void p54_tx(struct p54_common *priv, struct sk_buff *skb)
269{
270 skb_queue_tail(&priv->tx_pending, skb);
271 p54_tx_pending(priv);
272}
273
274static int p54_rssi_to_dbm(struct p54_common *priv, int rssi)
275{
276 if (priv->rxhw != 5) {
277 return ((rssi * priv->cur_rssi->mul) / 64 +
278 priv->cur_rssi->add) / 4;
279 } else {
280 /*
281 * TODO: find the correct formula
282 */
283 return rssi / 2 - 110;
284 }
285}
286
287/*
288 * Even if the firmware is capable of dealing with incoming traffic,
289 * while dozing, we have to prepared in case mac80211 uses PS-POLL
290 * to retrieve outstanding frames from our AP.
291 * (see comment in net/mac80211/mlme.c @ line 1993)
292 */
293static void p54_pspoll_workaround(struct p54_common *priv, struct sk_buff *skb)
294{
295 struct ieee80211_hdr *hdr = (void *) skb->data;
296 struct ieee80211_tim_ie *tim_ie;
297 u8 *tim;
298 u8 tim_len;
299 bool new_psm;
300
301 /* only beacons have a TIM IE */
302 if (!ieee80211_is_beacon(hdr->frame_control))
303 return;
304
305 if (!priv->aid)
306 return;
307
308 /* only consider beacons from the associated BSSID */
309 if (compare_ether_addr(hdr->addr3, priv->bssid))
310 return;
311
312 tim = p54_find_ie(skb, WLAN_EID_TIM);
313 if (!tim)
314 return;
315
316 tim_len = tim[1];
317 tim_ie = (struct ieee80211_tim_ie *) &tim[2];
318
319 new_psm = ieee80211_check_tim(tim_ie, tim_len, priv->aid);
320 if (new_psm != priv->powersave_override) {
321 priv->powersave_override = new_psm;
322 p54_set_ps(priv);
323 }
324}
325
326static int p54_rx_data(struct p54_common *priv, struct sk_buff *skb)
327{
328 struct p54_rx_data *hdr = (struct p54_rx_data *) skb->data;
329 struct ieee80211_rx_status *rx_status = IEEE80211_SKB_RXCB(skb);
330 u16 freq = le16_to_cpu(hdr->freq);
331 size_t header_len = sizeof(*hdr);
332 u32 tsf32;
333 u8 rate = hdr->rate & 0xf;
334
335 /*
336 * If the device is in a unspecified state we have to
337 * ignore all data frames. Else we could end up with a
338 * nasty crash.
339 */
340 if (unlikely(priv->mode == NL80211_IFTYPE_UNSPECIFIED))
341 return 0;
342
343 if (!(hdr->flags & cpu_to_le16(P54_HDR_FLAG_DATA_IN_FCS_GOOD)))
344 return 0;
345
346 if (hdr->decrypt_status == P54_DECRYPT_OK)
347 rx_status->flag |= RX_FLAG_DECRYPTED;
348 if ((hdr->decrypt_status == P54_DECRYPT_FAIL_MICHAEL) ||
349 (hdr->decrypt_status == P54_DECRYPT_FAIL_TKIP))
350 rx_status->flag |= RX_FLAG_MMIC_ERROR;
351
352 rx_status->signal = p54_rssi_to_dbm(priv, hdr->rssi);
353 if (hdr->rate & 0x10)
354 rx_status->flag |= RX_FLAG_SHORTPRE;
355 if (priv->hw->conf.channel->band == IEEE80211_BAND_5GHZ)
356 rx_status->rate_idx = (rate < 4) ? 0 : rate - 4;
357 else
358 rx_status->rate_idx = rate;
359
360 rx_status->freq = freq;
361 rx_status->band = priv->hw->conf.channel->band;
362 rx_status->antenna = hdr->antenna;
363
364 tsf32 = le32_to_cpu(hdr->tsf32);
365 if (tsf32 < priv->tsf_low32)
366 priv->tsf_high32++;
367 rx_status->mactime = ((u64)priv->tsf_high32) << 32 | tsf32;
368 priv->tsf_low32 = tsf32;
369
370 rx_status->flag |= RX_FLAG_MACTIME_MPDU;
371
372 if (hdr->flags & cpu_to_le16(P54_HDR_FLAG_DATA_ALIGN))
373 header_len += hdr->align[0];
374
375 skb_pull(skb, header_len);
376 skb_trim(skb, le16_to_cpu(hdr->len));
377 if (unlikely(priv->hw->conf.flags & IEEE80211_CONF_PS))
378 p54_pspoll_workaround(priv, skb);
379
380 ieee80211_rx_irqsafe(priv->hw, skb);
381
382 ieee80211_queue_delayed_work(priv->hw, &priv->work,
383 msecs_to_jiffies(P54_STATISTICS_UPDATE));
384
385 return -1;
386}
387
388static void p54_rx_frame_sent(struct p54_common *priv, struct sk_buff *skb)
389{
390 struct p54_hdr *hdr = (struct p54_hdr *) skb->data;
391 struct p54_frame_sent *payload = (struct p54_frame_sent *) hdr->data;
392 struct ieee80211_tx_info *info;
393 struct p54_hdr *entry_hdr;
394 struct p54_tx_data *entry_data;
395 struct sk_buff *entry;
396 unsigned int pad = 0, frame_len;
397 int count, idx;
398
399 entry = p54_find_and_unlink_skb(priv, hdr->req_id);
400 if (unlikely(!entry))
401 return ;
402
403 frame_len = entry->len;
404 info = IEEE80211_SKB_CB(entry);
405 entry_hdr = (struct p54_hdr *) entry->data;
406 entry_data = (struct p54_tx_data *) entry_hdr->data;
407 priv->stats.dot11ACKFailureCount += payload->tries - 1;
408
409 /*
410 * Frames in P54_QUEUE_FWSCAN and P54_QUEUE_BEACON are
411 * generated by the driver. Therefore tx_status is bogus
412 * and we don't want to confuse the mac80211 stack.
413 */
414 if (unlikely(entry_data->hw_queue < P54_QUEUE_FWSCAN)) {
415 dev_kfree_skb_any(entry);
416 return ;
417 }
418
419 /*
420 * Clear manually, ieee80211_tx_info_clear_status would
421 * clear the counts too and we need them.
422 */
423 memset(&info->status.ampdu_ack_len, 0,
424 sizeof(struct ieee80211_tx_info) -
425 offsetof(struct ieee80211_tx_info, status.ampdu_ack_len));
426 BUILD_BUG_ON(offsetof(struct ieee80211_tx_info,
427 status.ampdu_ack_len) != 23);
428
429 if (entry_hdr->flags & cpu_to_le16(P54_HDR_FLAG_DATA_ALIGN))
430 pad = entry_data->align[0];
431
432 /* walk through the rates array and adjust the counts */
433 count = payload->tries;
434 for (idx = 0; idx < 4; idx++) {
435 if (count >= info->status.rates[idx].count) {
436 count -= info->status.rates[idx].count;
437 } else if (count > 0) {
438 info->status.rates[idx].count = count;
439 count = 0;
440 } else {
441 info->status.rates[idx].idx = -1;
442 info->status.rates[idx].count = 0;
443 }
444 }
445
446 if (!(info->flags & IEEE80211_TX_CTL_NO_ACK) &&
447 !(payload->status & P54_TX_FAILED))
448 info->flags |= IEEE80211_TX_STAT_ACK;
449 if (payload->status & P54_TX_PSM_CANCELLED)
450 info->flags |= IEEE80211_TX_STAT_TX_FILTERED;
451 info->status.ack_signal = p54_rssi_to_dbm(priv,
452 (int)payload->ack_rssi);
453
454 /* Undo all changes to the frame. */
455 switch (entry_data->key_type) {
456 case P54_CRYPTO_TKIPMICHAEL: {
457 u8 *iv = (u8 *)(entry_data->align + pad +
458 entry_data->crypt_offset);
459
460 /* Restore the original TKIP IV. */
461 iv[2] = iv[0];
462 iv[0] = iv[1];
463 iv[1] = (iv[0] | 0x20) & 0x7f; /* WEPSeed - 8.3.2.2 */
464
465 frame_len -= 12; /* remove TKIP_MMIC + TKIP_ICV */
466 break;
467 }
468 case P54_CRYPTO_AESCCMP:
469 frame_len -= 8; /* remove CCMP_MIC */
470 break;
471 case P54_CRYPTO_WEP:
472 frame_len -= 4; /* remove WEP_ICV */
473 break;
474 }
475
476 skb_trim(entry, frame_len);
477 skb_pull(entry, sizeof(*hdr) + pad + sizeof(*entry_data));
478 ieee80211_tx_status_irqsafe(priv->hw, entry);
479}
480
481static void p54_rx_eeprom_readback(struct p54_common *priv,
482 struct sk_buff *skb)
483{
484 struct p54_hdr *hdr = (struct p54_hdr *) skb->data;
485 struct p54_eeprom_lm86 *eeprom = (struct p54_eeprom_lm86 *) hdr->data;
486 struct sk_buff *tmp;
487
488 if (!priv->eeprom)
489 return ;
490
491 if (priv->fw_var >= 0x509) {
492 memcpy(priv->eeprom, eeprom->v2.data,
493 le16_to_cpu(eeprom->v2.len));
494 } else {
495 memcpy(priv->eeprom, eeprom->v1.data,
496 le16_to_cpu(eeprom->v1.len));
497 }
498
499 priv->eeprom = NULL;
500 tmp = p54_find_and_unlink_skb(priv, hdr->req_id);
501 dev_kfree_skb_any(tmp);
502 complete(&priv->eeprom_comp);
503}
504
505static void p54_rx_stats(struct p54_common *priv, struct sk_buff *skb)
506{
507 struct p54_hdr *hdr = (struct p54_hdr *) skb->data;
508 struct p54_statistics *stats = (struct p54_statistics *) hdr->data;
509 struct sk_buff *tmp;
510 u32 tsf32;
511
512 if (unlikely(priv->mode == NL80211_IFTYPE_UNSPECIFIED))
513 return ;
514
515 tsf32 = le32_to_cpu(stats->tsf32);
516 if (tsf32 < priv->tsf_low32)
517 priv->tsf_high32++;
518 priv->tsf_low32 = tsf32;
519
520 priv->stats.dot11RTSFailureCount = le32_to_cpu(stats->rts_fail);
521 priv->stats.dot11RTSSuccessCount = le32_to_cpu(stats->rts_success);
522 priv->stats.dot11FCSErrorCount = le32_to_cpu(stats->rx_bad_fcs);
523
524 priv->noise = p54_rssi_to_dbm(priv, le32_to_cpu(stats->noise));
525
526 tmp = p54_find_and_unlink_skb(priv, hdr->req_id);
527 dev_kfree_skb_any(tmp);
528}
529
530static void p54_rx_trap(struct p54_common *priv, struct sk_buff *skb)
531{
532 struct p54_hdr *hdr = (struct p54_hdr *) skb->data;
533 struct p54_trap *trap = (struct p54_trap *) hdr->data;
534 u16 event = le16_to_cpu(trap->event);
535 u16 freq = le16_to_cpu(trap->frequency);
536
537 switch (event) {
538 case P54_TRAP_BEACON_TX:
539 break;
540 case P54_TRAP_RADAR:
541 wiphy_info(priv->hw->wiphy, "radar (freq:%d MHz)\n", freq);
542 break;
543 case P54_TRAP_NO_BEACON:
544 if (priv->vif)
545 ieee80211_beacon_loss(priv->vif);
546 break;
547 case P54_TRAP_SCAN:
548 break;
549 case P54_TRAP_TBTT:
550 break;
551 case P54_TRAP_TIMER:
552 break;
553 case P54_TRAP_FAA_RADIO_OFF:
554 wiphy_rfkill_set_hw_state(priv->hw->wiphy, true);
555 break;
556 case P54_TRAP_FAA_RADIO_ON:
557 wiphy_rfkill_set_hw_state(priv->hw->wiphy, false);
558 break;
559 default:
560 wiphy_info(priv->hw->wiphy, "received event:%x freq:%d\n",
561 event, freq);
562 break;
563 }
564}
565
566static int p54_rx_control(struct p54_common *priv, struct sk_buff *skb)
567{
568 struct p54_hdr *hdr = (struct p54_hdr *) skb->data;
569
570 switch (le16_to_cpu(hdr->type)) {
571 case P54_CONTROL_TYPE_TXDONE:
572 p54_rx_frame_sent(priv, skb);
573 break;
574 case P54_CONTROL_TYPE_TRAP:
575 p54_rx_trap(priv, skb);
576 break;
577 case P54_CONTROL_TYPE_BBP:
578 break;
579 case P54_CONTROL_TYPE_STAT_READBACK:
580 p54_rx_stats(priv, skb);
581 break;
582 case P54_CONTROL_TYPE_EEPROM_READBACK:
583 p54_rx_eeprom_readback(priv, skb);
584 break;
585 default:
586 wiphy_debug(priv->hw->wiphy,
587 "not handling 0x%02x type control frame\n",
588 le16_to_cpu(hdr->type));
589 break;
590 }
591 return 0;
592}
593
594/* returns zero if skb can be reused */
595int p54_rx(struct ieee80211_hw *dev, struct sk_buff *skb)
596{
597 struct p54_common *priv = dev->priv;
598 u16 type = le16_to_cpu(*((__le16 *)skb->data));
599
600 if (type & P54_HDR_FLAG_CONTROL)
601 return p54_rx_control(priv, skb);
602 else
603 return p54_rx_data(priv, skb);
604}
605EXPORT_SYMBOL_GPL(p54_rx);
606
607static void p54_tx_80211_header(struct p54_common *priv, struct sk_buff *skb,
608 struct ieee80211_tx_info *info, u8 *queue,
609 u32 *extra_len, u16 *flags, u16 *aid,
610 bool *burst_possible)
611{
612 struct ieee80211_hdr *hdr = (struct ieee80211_hdr *)skb->data;
613
614 if (ieee80211_is_data_qos(hdr->frame_control))
615 *burst_possible = true;
616 else
617 *burst_possible = false;
618
619 if (!(info->flags & IEEE80211_TX_CTL_ASSIGN_SEQ))
620 *flags |= P54_HDR_FLAG_DATA_OUT_SEQNR;
621
622 if (info->flags & IEEE80211_TX_CTL_PSPOLL_RESPONSE)
623 *flags |= P54_HDR_FLAG_DATA_OUT_NOCANCEL;
624
625 if (info->flags & IEEE80211_TX_CTL_CLEAR_PS_FILT)
626 *flags |= P54_HDR_FLAG_DATA_OUT_NOCANCEL;
627
628 *queue = skb_get_queue_mapping(skb) + P54_QUEUE_DATA;
629
630 switch (priv->mode) {
631 case NL80211_IFTYPE_MONITOR:
632 /*
633 * We have to set P54_HDR_FLAG_DATA_OUT_PROMISC for
634 * every frame in promiscuous/monitor mode.
635 * see STSW45x0C LMAC API - page 12.
636 */
637 *aid = 0;
638 *flags |= P54_HDR_FLAG_DATA_OUT_PROMISC;
639 break;
640 case NL80211_IFTYPE_STATION:
641 *aid = 1;
642 break;
643 case NL80211_IFTYPE_AP:
644 case NL80211_IFTYPE_ADHOC:
645 case NL80211_IFTYPE_MESH_POINT:
646 if (info->flags & IEEE80211_TX_CTL_SEND_AFTER_DTIM) {
647 *aid = 0;
648 *queue = P54_QUEUE_CAB;
649 return;
650 }
651
652 if (unlikely(ieee80211_is_mgmt(hdr->frame_control))) {
653 if (ieee80211_is_probe_resp(hdr->frame_control)) {
654 *aid = 0;
655 *flags |= P54_HDR_FLAG_DATA_OUT_TIMESTAMP |
656 P54_HDR_FLAG_DATA_OUT_NOCANCEL;
657 return;
658 } else if (ieee80211_is_beacon(hdr->frame_control)) {
659 *aid = 0;
660
661 if (info->flags & IEEE80211_TX_CTL_INJECTED) {
662 /*
663 * Injecting beacons on top of a AP is
664 * not a good idea... nevertheless,
665 * it should be doable.
666 */
667
668 return;
669 }
670
671 *flags |= P54_HDR_FLAG_DATA_OUT_TIMESTAMP;
672 *queue = P54_QUEUE_BEACON;
673 *extra_len = IEEE80211_MAX_TIM_LEN;
674 return;
675 }
676 }
677
678 if (info->control.sta)
679 *aid = info->control.sta->aid;
680 break;
681 }
682}
683
684static u8 p54_convert_algo(u32 cipher)
685{
686 switch (cipher) {
687 case WLAN_CIPHER_SUITE_WEP40:
688 case WLAN_CIPHER_SUITE_WEP104:
689 return P54_CRYPTO_WEP;
690 case WLAN_CIPHER_SUITE_TKIP:
691 return P54_CRYPTO_TKIPMICHAEL;
692 case WLAN_CIPHER_SUITE_CCMP:
693 return P54_CRYPTO_AESCCMP;
694 default:
695 return 0;
696 }
697}
698
699void p54_tx_80211(struct ieee80211_hw *dev, struct sk_buff *skb)
700{
701 struct p54_common *priv = dev->priv;
702 struct ieee80211_tx_info *info = IEEE80211_SKB_CB(skb);
703 struct p54_tx_info *p54info;
704 struct p54_hdr *hdr;
705 struct p54_tx_data *txhdr;
706 unsigned int padding, len, extra_len = 0;
707 int i, j, ridx;
708 u16 hdr_flags = 0, aid = 0;
709 u8 rate, queue = 0, crypt_offset = 0;
710 u8 cts_rate = 0x20;
711 u8 rc_flags;
712 u8 calculated_tries[4];
713 u8 nrates = 0, nremaining = 8;
714 bool burst_allowed = false;
715
716 p54_tx_80211_header(priv, skb, info, &queue, &extra_len,
717 &hdr_flags, &aid, &burst_allowed);
718
719 if (p54_tx_qos_accounting_alloc(priv, skb, queue)) {
720 dev_kfree_skb_any(skb);
721 return;
722 }
723
724 padding = (unsigned long)(skb->data - (sizeof(*hdr) + sizeof(*txhdr))) & 3;
725 len = skb->len;
726
727 if (info->control.hw_key) {
728 crypt_offset = ieee80211_get_hdrlen_from_skb(skb);
729 if (info->control.hw_key->cipher == WLAN_CIPHER_SUITE_TKIP) {
730 u8 *iv = (u8 *)(skb->data + crypt_offset);
731 /*
732 * The firmware excepts that the IV has to have
733 * this special format
734 */
735 iv[1] = iv[0];
736 iv[0] = iv[2];
737 iv[2] = 0;
738 }
739 }
740
741 txhdr = (struct p54_tx_data *) skb_push(skb, sizeof(*txhdr) + padding);
742 hdr = (struct p54_hdr *) skb_push(skb, sizeof(*hdr));
743
744 if (padding)
745 hdr_flags |= P54_HDR_FLAG_DATA_ALIGN;
746 hdr->type = cpu_to_le16(aid);
747 hdr->rts_tries = info->control.rates[0].count;
748
749 /*
750 * we register the rates in perfect order, and
751 * RTS/CTS won't happen on 5 GHz
752 */
753 cts_rate = info->control.rts_cts_rate_idx;
754
755 memset(&txhdr->rateset, 0, sizeof(txhdr->rateset));
756
757 /* see how many rates got used */
758 for (i = 0; i < dev->max_rates; i++) {
759 if (info->control.rates[i].idx < 0)
760 break;
761 nrates++;
762 }
763
764 /* limit tries to 8/nrates per rate */
765 for (i = 0; i < nrates; i++) {
766 /*
767 * The magic expression here is equivalent to 8/nrates for
768 * all values that matter, but avoids division and jumps.
769 * Note that nrates can only take the values 1 through 4.
770 */
771 calculated_tries[i] = min_t(int, ((15 >> nrates) | 1) + 1,
772 info->control.rates[i].count);
773 nremaining -= calculated_tries[i];
774 }
775
776 /* if there are tries left, distribute from back to front */
777 for (i = nrates - 1; nremaining > 0 && i >= 0; i--) {
778 int tmp = info->control.rates[i].count - calculated_tries[i];
779
780 if (tmp <= 0)
781 continue;
782 /* RC requested more tries at this rate */
783
784 tmp = min_t(int, tmp, nremaining);
785 calculated_tries[i] += tmp;
786 nremaining -= tmp;
787 }
788
789 ridx = 0;
790 for (i = 0; i < nrates && ridx < 8; i++) {
791 /* we register the rates in perfect order */
792 rate = info->control.rates[i].idx;
793 if (info->band == IEEE80211_BAND_5GHZ)
794 rate += 4;
795
796 /* store the count we actually calculated for TX status */
797 info->control.rates[i].count = calculated_tries[i];
798
799 rc_flags = info->control.rates[i].flags;
800 if (rc_flags & IEEE80211_TX_RC_USE_SHORT_PREAMBLE) {
801 rate |= 0x10;
802 cts_rate |= 0x10;
803 }
804 if (rc_flags & IEEE80211_TX_RC_USE_RTS_CTS) {
805 burst_allowed = false;
806 rate |= 0x40;
807 } else if (rc_flags & IEEE80211_TX_RC_USE_CTS_PROTECT) {
808 rate |= 0x20;
809 burst_allowed = false;
810 }
811 for (j = 0; j < calculated_tries[i] && ridx < 8; j++) {
812 txhdr->rateset[ridx] = rate;
813 ridx++;
814 }
815 }
816
817 if (burst_allowed)
818 hdr_flags |= P54_HDR_FLAG_DATA_OUT_BURST;
819
820 /* TODO: enable bursting */
821 hdr->flags = cpu_to_le16(hdr_flags);
822 hdr->tries = ridx;
823 txhdr->rts_rate_idx = 0;
824 if (info->control.hw_key) {
825 txhdr->key_type = p54_convert_algo(info->control.hw_key->cipher);
826 txhdr->key_len = min((u8)16, info->control.hw_key->keylen);
827 memcpy(txhdr->key, info->control.hw_key->key, txhdr->key_len);
828 if (info->control.hw_key->cipher == WLAN_CIPHER_SUITE_TKIP) {
829 /* reserve space for the MIC key */
830 len += 8;
831 memcpy(skb_put(skb, 8), &(info->control.hw_key->key
832 [NL80211_TKIP_DATA_OFFSET_TX_MIC_KEY]), 8);
833 }
834 /* reserve some space for ICV */
835 len += info->control.hw_key->icv_len;
836 memset(skb_put(skb, info->control.hw_key->icv_len), 0,
837 info->control.hw_key->icv_len);
838 } else {
839 txhdr->key_type = 0;
840 txhdr->key_len = 0;
841 }
842 txhdr->crypt_offset = crypt_offset;
843 txhdr->hw_queue = queue;
844 txhdr->backlog = priv->tx_stats[queue].len - 1;
845 memset(txhdr->durations, 0, sizeof(txhdr->durations));
846 txhdr->tx_antenna = ((info->antenna_sel_tx == 0) ?
847 2 : info->antenna_sel_tx - 1) & priv->tx_diversity_mask;
848 if (priv->rxhw == 5) {
849 txhdr->longbow.cts_rate = cts_rate;
850 txhdr->longbow.output_power = cpu_to_le16(priv->output_power);
851 } else {
852 txhdr->normal.output_power = priv->output_power;
853 txhdr->normal.cts_rate = cts_rate;
854 }
855 if (padding)
856 txhdr->align[0] = padding;
857
858 hdr->len = cpu_to_le16(len);
859 /* modifies skb->cb and with it info, so must be last! */
860 p54info = (void *) info->rate_driver_data;
861 p54info->extra_len = extra_len;
862
863 p54_tx(priv, skb);
864}