Loading...
1/*
2 * Copyright (c) 2006 Damien Bergamini <damien.bergamini@free.fr>
3 * Copyright (c) 2006 Sam Leffler, Errno Consulting
4 * Copyright (c) 2007 Christoph Hellwig <hch@lst.de>
5 * Copyright (c) 2008-2009 Weongyo Jeong <weongyo@freebsd.org>
6 * Copyright (c) 2012 Pontus Fuchs <pontus.fuchs@gmail.com>
7 *
8 * Permission to use, copy, modify, and/or distribute this software for any
9 * purpose with or without fee is hereby granted, provided that the above
10 * copyright notice and this permission notice appear in all copies.
11 *
12 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
13 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
14 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
15 * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
16 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
17 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
18 * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
19 */
20
21/*
22 * This driver is based on the uath driver written by Damien Bergamini for
23 * OpenBSD, who did black-box analysis of the Windows binary driver to find
24 * out how the hardware works. It contains a lot magic numbers because of
25 * that and only has minimal functionality.
26 */
27#include <linux/compiler.h>
28#include <linux/kernel.h>
29#include <linux/module.h>
30#include <linux/list.h>
31#include <linux/completion.h>
32#include <linux/firmware.h>
33#include <linux/skbuff.h>
34#include <linux/usb.h>
35#include <net/mac80211.h>
36
37#include "ar5523.h"
38#include "ar5523_hw.h"
39
40/*
41 * Various supported device vendors/products.
42 * UB51: AR5005UG 802.11b/g, UB52: AR5005UX 802.11a/b/g
43 */
44
45static int ar5523_submit_rx_cmd(struct ar5523 *ar);
46static void ar5523_data_tx_pkt_put(struct ar5523 *ar);
47
48static void ar5523_read_reply(struct ar5523 *ar, struct ar5523_cmd_hdr *hdr,
49 struct ar5523_tx_cmd *cmd)
50{
51 int dlen, olen;
52 __be32 *rp;
53
54 dlen = be32_to_cpu(hdr->len) - sizeof(*hdr);
55
56 if (dlen < 0) {
57 WARN_ON(1);
58 goto out;
59 }
60
61 ar5523_dbg(ar, "Code = %d len = %d\n", be32_to_cpu(hdr->code) & 0xff,
62 dlen);
63
64 rp = (__be32 *)(hdr + 1);
65 if (dlen >= sizeof(u32)) {
66 olen = be32_to_cpu(rp[0]);
67 dlen -= sizeof(u32);
68 if (olen == 0) {
69 /* convention is 0 =>'s one word */
70 olen = sizeof(u32);
71 }
72 } else
73 olen = 0;
74
75 if (cmd->odata) {
76 if (cmd->olen < olen) {
77 ar5523_err(ar, "olen too small %d < %d\n",
78 cmd->olen, olen);
79 cmd->olen = 0;
80 cmd->res = -EOVERFLOW;
81 } else {
82 cmd->olen = olen;
83 memcpy(cmd->odata, &rp[1], olen);
84 cmd->res = 0;
85 }
86 }
87
88out:
89 complete(&cmd->done);
90}
91
92static void ar5523_cmd_rx_cb(struct urb *urb)
93{
94 struct ar5523 *ar = urb->context;
95 struct ar5523_tx_cmd *cmd = &ar->tx_cmd;
96 struct ar5523_cmd_hdr *hdr = ar->rx_cmd_buf;
97 int dlen;
98 u32 code, hdrlen;
99
100 if (urb->status) {
101 if (urb->status != -ESHUTDOWN)
102 ar5523_err(ar, "RX USB error %d.\n", urb->status);
103 goto skip;
104 }
105
106 if (urb->actual_length < sizeof(struct ar5523_cmd_hdr)) {
107 ar5523_err(ar, "RX USB too short.\n");
108 goto skip;
109 }
110
111 ar5523_dbg(ar, "%s code %02x priv %d\n", __func__,
112 be32_to_cpu(hdr->code) & 0xff, hdr->priv);
113
114 code = be32_to_cpu(hdr->code);
115 hdrlen = be32_to_cpu(hdr->len);
116
117 switch (code & 0xff) {
118 default:
119 /* reply to a read command */
120 if (hdr->priv != AR5523_CMD_ID) {
121 ar5523_err(ar, "Unexpected command id: %02x\n",
122 code & 0xff);
123 goto skip;
124 }
125 ar5523_read_reply(ar, hdr, cmd);
126 break;
127
128 case WDCMSG_DEVICE_AVAIL:
129 ar5523_dbg(ar, "WDCMSG_DEVICE_AVAIL\n");
130 cmd->res = 0;
131 cmd->olen = 0;
132 complete(&cmd->done);
133 break;
134
135 case WDCMSG_SEND_COMPLETE:
136 ar5523_dbg(ar, "WDCMSG_SEND_COMPLETE: %d pending\n",
137 atomic_read(&ar->tx_nr_pending));
138 if (!test_bit(AR5523_HW_UP, &ar->flags))
139 ar5523_dbg(ar, "Unexpected WDCMSG_SEND_COMPLETE\n");
140 else {
141 mod_timer(&ar->tx_wd_timer,
142 jiffies + AR5523_TX_WD_TIMEOUT);
143 ar5523_data_tx_pkt_put(ar);
144
145 }
146 break;
147
148 case WDCMSG_TARGET_START:
149 /* This command returns a bogus id so it needs special
150 handling */
151 dlen = hdrlen - sizeof(*hdr);
152 if (dlen != (int)sizeof(u32)) {
153 ar5523_err(ar, "Invalid reply to WDCMSG_TARGET_START");
154 return;
155 }
156 if (!cmd->odata) {
157 ar5523_err(ar, "Unexpected WDCMSG_TARGET_START reply");
158 return;
159 }
160 memcpy(cmd->odata, hdr + 1, sizeof(u32));
161 cmd->olen = sizeof(u32);
162 cmd->res = 0;
163 complete(&cmd->done);
164 break;
165
166 case WDCMSG_STATS_UPDATE:
167 ar5523_dbg(ar, "WDCMSG_STATS_UPDATE\n");
168 break;
169 }
170
171skip:
172 ar5523_submit_rx_cmd(ar);
173}
174
175static int ar5523_alloc_rx_cmd(struct ar5523 *ar)
176{
177 ar->rx_cmd_urb = usb_alloc_urb(0, GFP_KERNEL);
178 if (!ar->rx_cmd_urb)
179 return -ENOMEM;
180
181 ar->rx_cmd_buf = usb_alloc_coherent(ar->dev, AR5523_MAX_RXCMDSZ,
182 GFP_KERNEL,
183 &ar->rx_cmd_urb->transfer_dma);
184 if (!ar->rx_cmd_buf) {
185 usb_free_urb(ar->rx_cmd_urb);
186 return -ENOMEM;
187 }
188 return 0;
189}
190
191static void ar5523_cancel_rx_cmd(struct ar5523 *ar)
192{
193 usb_kill_urb(ar->rx_cmd_urb);
194}
195
196static void ar5523_free_rx_cmd(struct ar5523 *ar)
197{
198 usb_free_coherent(ar->dev, AR5523_MAX_RXCMDSZ,
199 ar->rx_cmd_buf, ar->rx_cmd_urb->transfer_dma);
200 usb_free_urb(ar->rx_cmd_urb);
201}
202
203static int ar5523_submit_rx_cmd(struct ar5523 *ar)
204{
205 int error;
206
207 usb_fill_bulk_urb(ar->rx_cmd_urb, ar->dev,
208 ar5523_cmd_rx_pipe(ar->dev), ar->rx_cmd_buf,
209 AR5523_MAX_RXCMDSZ, ar5523_cmd_rx_cb, ar);
210 ar->rx_cmd_urb->transfer_flags |= URB_NO_TRANSFER_DMA_MAP;
211
212 error = usb_submit_urb(ar->rx_cmd_urb, GFP_ATOMIC);
213 if (error) {
214 if (error != -ENODEV)
215 ar5523_err(ar, "error %d when submitting rx urb\n",
216 error);
217 return error;
218 }
219 return 0;
220}
221
222/*
223 * Command submitted cb
224 */
225static void ar5523_cmd_tx_cb(struct urb *urb)
226{
227 struct ar5523_tx_cmd *cmd = urb->context;
228 struct ar5523 *ar = cmd->ar;
229
230 if (urb->status) {
231 ar5523_err(ar, "Failed to TX command. Status = %d\n",
232 urb->status);
233 cmd->res = urb->status;
234 complete(&cmd->done);
235 return;
236 }
237
238 if (!(cmd->flags & AR5523_CMD_FLAG_READ)) {
239 cmd->res = 0;
240 complete(&cmd->done);
241 }
242}
243
244static void ar5523_cancel_tx_cmd(struct ar5523 *ar)
245{
246 usb_kill_urb(ar->tx_cmd.urb_tx);
247}
248
249static int ar5523_cmd(struct ar5523 *ar, u32 code, const void *idata,
250 int ilen, void *odata, int olen, int flags)
251{
252 struct ar5523_cmd_hdr *hdr;
253 struct ar5523_tx_cmd *cmd = &ar->tx_cmd;
254 int xferlen, error;
255
256 /* always bulk-out a multiple of 4 bytes */
257 xferlen = (sizeof(struct ar5523_cmd_hdr) + ilen + 3) & ~3;
258
259 hdr = cmd->buf_tx;
260 memset(hdr, 0, sizeof(struct ar5523_cmd_hdr));
261 hdr->len = cpu_to_be32(xferlen);
262 hdr->code = cpu_to_be32(code);
263 hdr->priv = AR5523_CMD_ID;
264
265 if (flags & AR5523_CMD_FLAG_MAGIC)
266 hdr->magic = cpu_to_be32(1 << 24);
267 if (ilen)
268 memcpy(hdr + 1, idata, ilen);
269
270 cmd->odata = odata;
271 cmd->olen = olen;
272 cmd->flags = flags;
273
274 ar5523_dbg(ar, "do cmd %02x\n", code);
275
276 usb_fill_bulk_urb(cmd->urb_tx, ar->dev, ar5523_cmd_tx_pipe(ar->dev),
277 cmd->buf_tx, xferlen, ar5523_cmd_tx_cb, cmd);
278 cmd->urb_tx->transfer_flags |= URB_NO_TRANSFER_DMA_MAP;
279
280 error = usb_submit_urb(cmd->urb_tx, GFP_KERNEL);
281 if (error) {
282 ar5523_err(ar, "could not send command 0x%x, error=%d\n",
283 code, error);
284 return error;
285 }
286
287 if (!wait_for_completion_timeout(&cmd->done, 2 * HZ)) {
288 ar5523_cancel_tx_cmd(ar);
289 cmd->odata = NULL;
290 ar5523_err(ar, "timeout waiting for command %02x reply\n",
291 code);
292 cmd->res = -ETIMEDOUT;
293 }
294 return cmd->res;
295}
296
297static int ar5523_cmd_write(struct ar5523 *ar, u32 code, const void *data,
298 int len, int flags)
299{
300 flags &= ~AR5523_CMD_FLAG_READ;
301 return ar5523_cmd(ar, code, data, len, NULL, 0, flags);
302}
303
304static int ar5523_cmd_read(struct ar5523 *ar, u32 code, const void *idata,
305 int ilen, void *odata, int olen, int flags)
306{
307 flags |= AR5523_CMD_FLAG_READ;
308 return ar5523_cmd(ar, code, idata, ilen, odata, olen, flags);
309}
310
311static int ar5523_config(struct ar5523 *ar, u32 reg, u32 val)
312{
313 struct ar5523_write_mac write;
314 int error;
315
316 write.reg = cpu_to_be32(reg);
317 write.len = cpu_to_be32(0); /* 0 = single write */
318 *(__be32 *)write.data = cpu_to_be32(val);
319
320 error = ar5523_cmd_write(ar, WDCMSG_TARGET_SET_CONFIG, &write,
321 3 * sizeof(u32), 0);
322 if (error != 0)
323 ar5523_err(ar, "could not write register 0x%02x\n", reg);
324 return error;
325}
326
327static int ar5523_config_multi(struct ar5523 *ar, u32 reg, const void *data,
328 int len)
329{
330 struct ar5523_write_mac write;
331 int error;
332
333 write.reg = cpu_to_be32(reg);
334 write.len = cpu_to_be32(len);
335 memcpy(write.data, data, len);
336
337 /* properly handle the case where len is zero (reset) */
338 error = ar5523_cmd_write(ar, WDCMSG_TARGET_SET_CONFIG, &write,
339 (len == 0) ? sizeof(u32) : 2 * sizeof(u32) + len, 0);
340 if (error != 0)
341 ar5523_err(ar, "could not write %d bytes to register 0x%02x\n",
342 len, reg);
343 return error;
344}
345
346static int ar5523_get_status(struct ar5523 *ar, u32 which, void *odata,
347 int olen)
348{
349 int error;
350 __be32 which_be;
351
352 which_be = cpu_to_be32(which);
353 error = ar5523_cmd_read(ar, WDCMSG_TARGET_GET_STATUS,
354 &which_be, sizeof(which_be), odata, olen, AR5523_CMD_FLAG_MAGIC);
355 if (error != 0)
356 ar5523_err(ar, "could not read EEPROM offset 0x%02x\n", which);
357 return error;
358}
359
360static int ar5523_get_capability(struct ar5523 *ar, u32 cap, u32 *val)
361{
362 int error;
363 __be32 cap_be, val_be;
364
365 cap_be = cpu_to_be32(cap);
366 error = ar5523_cmd_read(ar, WDCMSG_TARGET_GET_CAPABILITY, &cap_be,
367 sizeof(cap_be), &val_be, sizeof(__be32),
368 AR5523_CMD_FLAG_MAGIC);
369 if (error != 0) {
370 ar5523_err(ar, "could not read capability %u\n", cap);
371 return error;
372 }
373 *val = be32_to_cpu(val_be);
374 return error;
375}
376
377static int ar5523_get_devcap(struct ar5523 *ar)
378{
379#define GETCAP(x) do { \
380 error = ar5523_get_capability(ar, x, &cap); \
381 if (error != 0) \
382 return error; \
383 ar5523_info(ar, "Cap: " \
384 "%s=0x%08x\n", #x, cap); \
385} while (0)
386 int error;
387 u32 cap;
388
389 /* collect device capabilities */
390 GETCAP(CAP_TARGET_VERSION);
391 GETCAP(CAP_TARGET_REVISION);
392 GETCAP(CAP_MAC_VERSION);
393 GETCAP(CAP_MAC_REVISION);
394 GETCAP(CAP_PHY_REVISION);
395 GETCAP(CAP_ANALOG_5GHz_REVISION);
396 GETCAP(CAP_ANALOG_2GHz_REVISION);
397
398 GETCAP(CAP_REG_DOMAIN);
399 GETCAP(CAP_REG_CAP_BITS);
400 GETCAP(CAP_WIRELESS_MODES);
401 GETCAP(CAP_CHAN_SPREAD_SUPPORT);
402 GETCAP(CAP_COMPRESS_SUPPORT);
403 GETCAP(CAP_BURST_SUPPORT);
404 GETCAP(CAP_FAST_FRAMES_SUPPORT);
405 GETCAP(CAP_CHAP_TUNING_SUPPORT);
406 GETCAP(CAP_TURBOG_SUPPORT);
407 GETCAP(CAP_TURBO_PRIME_SUPPORT);
408 GETCAP(CAP_DEVICE_TYPE);
409 GETCAP(CAP_WME_SUPPORT);
410 GETCAP(CAP_TOTAL_QUEUES);
411 GETCAP(CAP_CONNECTION_ID_MAX);
412
413 GETCAP(CAP_LOW_5GHZ_CHAN);
414 GETCAP(CAP_HIGH_5GHZ_CHAN);
415 GETCAP(CAP_LOW_2GHZ_CHAN);
416 GETCAP(CAP_HIGH_2GHZ_CHAN);
417 GETCAP(CAP_TWICE_ANTENNAGAIN_5G);
418 GETCAP(CAP_TWICE_ANTENNAGAIN_2G);
419
420 GETCAP(CAP_CIPHER_AES_CCM);
421 GETCAP(CAP_CIPHER_TKIP);
422 GETCAP(CAP_MIC_TKIP);
423 return 0;
424}
425
426static int ar5523_set_ledsteady(struct ar5523 *ar, int lednum, int ledmode)
427{
428 struct ar5523_cmd_ledsteady led;
429
430 led.lednum = cpu_to_be32(lednum);
431 led.ledmode = cpu_to_be32(ledmode);
432
433 ar5523_dbg(ar, "set %s led %s (steady)\n",
434 (lednum == UATH_LED_LINK) ? "link" : "activity",
435 ledmode ? "on" : "off");
436 return ar5523_cmd_write(ar, WDCMSG_SET_LED_STEADY, &led, sizeof(led),
437 0);
438}
439
440static int ar5523_set_rxfilter(struct ar5523 *ar, u32 bits, u32 op)
441{
442 struct ar5523_cmd_rx_filter rxfilter;
443
444 rxfilter.bits = cpu_to_be32(bits);
445 rxfilter.op = cpu_to_be32(op);
446
447 ar5523_dbg(ar, "setting Rx filter=0x%x flags=0x%x\n", bits, op);
448 return ar5523_cmd_write(ar, WDCMSG_RX_FILTER, &rxfilter,
449 sizeof(rxfilter), 0);
450}
451
452static int ar5523_reset_tx_queues(struct ar5523 *ar)
453{
454 __be32 qid = cpu_to_be32(0);
455
456 ar5523_dbg(ar, "resetting Tx queue\n");
457 return ar5523_cmd_write(ar, WDCMSG_RELEASE_TX_QUEUE,
458 &qid, sizeof(qid), 0);
459}
460
461static int ar5523_set_chan(struct ar5523 *ar)
462{
463 struct ieee80211_conf *conf = &ar->hw->conf;
464
465 struct ar5523_cmd_reset reset;
466
467 memset(&reset, 0, sizeof(reset));
468 reset.flags |= cpu_to_be32(UATH_CHAN_2GHZ);
469 reset.flags |= cpu_to_be32(UATH_CHAN_OFDM);
470 reset.freq = cpu_to_be32(conf->chandef.chan->center_freq);
471 reset.maxrdpower = cpu_to_be32(50); /* XXX */
472 reset.channelchange = cpu_to_be32(1);
473 reset.keeprccontent = cpu_to_be32(0);
474
475 ar5523_dbg(ar, "set chan flags 0x%x freq %d\n",
476 be32_to_cpu(reset.flags),
477 conf->chandef.chan->center_freq);
478 return ar5523_cmd_write(ar, WDCMSG_RESET, &reset, sizeof(reset), 0);
479}
480
481static int ar5523_queue_init(struct ar5523 *ar)
482{
483 struct ar5523_cmd_txq_setup qinfo;
484
485 ar5523_dbg(ar, "setting up Tx queue\n");
486 qinfo.qid = cpu_to_be32(0);
487 qinfo.len = cpu_to_be32(sizeof(qinfo.attr));
488 qinfo.attr.priority = cpu_to_be32(0); /* XXX */
489 qinfo.attr.aifs = cpu_to_be32(3);
490 qinfo.attr.logcwmin = cpu_to_be32(4);
491 qinfo.attr.logcwmax = cpu_to_be32(10);
492 qinfo.attr.bursttime = cpu_to_be32(0);
493 qinfo.attr.mode = cpu_to_be32(0);
494 qinfo.attr.qflags = cpu_to_be32(1); /* XXX? */
495 return ar5523_cmd_write(ar, WDCMSG_SETUP_TX_QUEUE, &qinfo,
496 sizeof(qinfo), 0);
497}
498
499static int ar5523_switch_chan(struct ar5523 *ar)
500{
501 int error;
502
503 error = ar5523_set_chan(ar);
504 if (error) {
505 ar5523_err(ar, "could not set chan, error %d\n", error);
506 goto out_err;
507 }
508
509 /* reset Tx rings */
510 error = ar5523_reset_tx_queues(ar);
511 if (error) {
512 ar5523_err(ar, "could not reset Tx queues, error %d\n",
513 error);
514 goto out_err;
515 }
516 /* set Tx rings WME properties */
517 error = ar5523_queue_init(ar);
518 if (error)
519 ar5523_err(ar, "could not init wme, error %d\n", error);
520
521out_err:
522 return error;
523}
524
525static void ar5523_rx_data_put(struct ar5523 *ar,
526 struct ar5523_rx_data *data)
527{
528 unsigned long flags;
529 spin_lock_irqsave(&ar->rx_data_list_lock, flags);
530 list_move(&data->list, &ar->rx_data_free);
531 spin_unlock_irqrestore(&ar->rx_data_list_lock, flags);
532}
533
534static void ar5523_data_rx_cb(struct urb *urb)
535{
536 struct ar5523_rx_data *data = urb->context;
537 struct ar5523 *ar = data->ar;
538 struct ar5523_rx_desc *desc;
539 struct ar5523_chunk *chunk;
540 struct ieee80211_hw *hw = ar->hw;
541 struct ieee80211_rx_status *rx_status;
542 u32 rxlen;
543 int usblen = urb->actual_length;
544 int hdrlen, pad;
545
546 ar5523_dbg(ar, "%s\n", __func__);
547 /* sync/async unlink faults aren't errors */
548 if (urb->status) {
549 if (urb->status != -ESHUTDOWN)
550 ar5523_err(ar, "%s: USB err: %d\n", __func__,
551 urb->status);
552 goto skip;
553 }
554
555 if (usblen < AR5523_MIN_RXBUFSZ) {
556 ar5523_err(ar, "RX: wrong xfer size (usblen=%d)\n", usblen);
557 goto skip;
558 }
559
560 chunk = (struct ar5523_chunk *) data->skb->data;
561
562 if (((chunk->flags & UATH_CFLAGS_FINAL) == 0) ||
563 chunk->seqnum != 0) {
564 ar5523_dbg(ar, "RX: No final flag. s: %d f: %02x l: %d\n",
565 chunk->seqnum, chunk->flags,
566 be16_to_cpu(chunk->length));
567 goto skip;
568 }
569
570 /* Rx descriptor is located at the end, 32-bit aligned */
571 desc = (struct ar5523_rx_desc *)
572 (data->skb->data + usblen - sizeof(struct ar5523_rx_desc));
573
574 rxlen = be32_to_cpu(desc->len);
575 if (rxlen > ar->rxbufsz) {
576 ar5523_dbg(ar, "RX: Bad descriptor (len=%d)\n",
577 be32_to_cpu(desc->len));
578 goto skip;
579 }
580
581 if (!rxlen) {
582 ar5523_dbg(ar, "RX: rxlen is 0\n");
583 goto skip;
584 }
585
586 if (be32_to_cpu(desc->status) != 0) {
587 ar5523_dbg(ar, "Bad RX status (0x%x len = %d). Skip\n",
588 be32_to_cpu(desc->status), be32_to_cpu(desc->len));
589 goto skip;
590 }
591
592 skb_reserve(data->skb, sizeof(*chunk));
593 skb_put(data->skb, rxlen - sizeof(struct ar5523_rx_desc));
594
595 hdrlen = ieee80211_get_hdrlen_from_skb(data->skb);
596 if (!IS_ALIGNED(hdrlen, 4)) {
597 ar5523_dbg(ar, "eek, alignment workaround activated\n");
598 pad = ALIGN(hdrlen, 4) - hdrlen;
599 memmove(data->skb->data + pad, data->skb->data, hdrlen);
600 skb_pull(data->skb, pad);
601 skb_put(data->skb, pad);
602 }
603
604 rx_status = IEEE80211_SKB_RXCB(data->skb);
605 memset(rx_status, 0, sizeof(*rx_status));
606 rx_status->freq = be32_to_cpu(desc->channel);
607 rx_status->band = hw->conf.chandef.chan->band;
608 rx_status->signal = -95 + be32_to_cpu(desc->rssi);
609
610 ieee80211_rx_irqsafe(hw, data->skb);
611 data->skb = NULL;
612
613skip:
614 if (data->skb) {
615 dev_kfree_skb_irq(data->skb);
616 data->skb = NULL;
617 }
618
619 ar5523_rx_data_put(ar, data);
620 if (atomic_inc_return(&ar->rx_data_free_cnt) >=
621 AR5523_RX_DATA_REFILL_COUNT &&
622 test_bit(AR5523_HW_UP, &ar->flags))
623 queue_work(ar->wq, &ar->rx_refill_work);
624}
625
626static void ar5523_rx_refill_work(struct work_struct *work)
627{
628 struct ar5523 *ar = container_of(work, struct ar5523, rx_refill_work);
629 struct ar5523_rx_data *data;
630 unsigned long flags;
631 int error;
632
633 ar5523_dbg(ar, "%s\n", __func__);
634 do {
635 spin_lock_irqsave(&ar->rx_data_list_lock, flags);
636
637 if (!list_empty(&ar->rx_data_free))
638 data = (struct ar5523_rx_data *) ar->rx_data_free.next;
639 else
640 data = NULL;
641 spin_unlock_irqrestore(&ar->rx_data_list_lock, flags);
642
643 if (!data)
644 goto done;
645
646 data->skb = alloc_skb(ar->rxbufsz, GFP_KERNEL);
647 if (!data->skb) {
648 ar5523_err(ar, "could not allocate rx skbuff\n");
649 return;
650 }
651
652 usb_fill_bulk_urb(data->urb, ar->dev,
653 ar5523_data_rx_pipe(ar->dev), data->skb->data,
654 ar->rxbufsz, ar5523_data_rx_cb, data);
655
656 spin_lock_irqsave(&ar->rx_data_list_lock, flags);
657 list_move(&data->list, &ar->rx_data_used);
658 spin_unlock_irqrestore(&ar->rx_data_list_lock, flags);
659 atomic_dec(&ar->rx_data_free_cnt);
660
661 error = usb_submit_urb(data->urb, GFP_KERNEL);
662 if (error) {
663 kfree_skb(data->skb);
664 if (error != -ENODEV)
665 ar5523_err(ar, "Err sending rx data urb %d\n",
666 error);
667 ar5523_rx_data_put(ar, data);
668 atomic_inc(&ar->rx_data_free_cnt);
669 return;
670 }
671
672 } while (true);
673done:
674 return;
675}
676
677static void ar5523_cancel_rx_bufs(struct ar5523 *ar)
678{
679 struct ar5523_rx_data *data;
680 unsigned long flags;
681
682 do {
683 spin_lock_irqsave(&ar->rx_data_list_lock, flags);
684 if (!list_empty(&ar->rx_data_used))
685 data = (struct ar5523_rx_data *) ar->rx_data_used.next;
686 else
687 data = NULL;
688 spin_unlock_irqrestore(&ar->rx_data_list_lock, flags);
689
690 if (!data)
691 break;
692
693 usb_kill_urb(data->urb);
694 list_move(&data->list, &ar->rx_data_free);
695 atomic_inc(&ar->rx_data_free_cnt);
696 } while (data);
697}
698
699static void ar5523_free_rx_bufs(struct ar5523 *ar)
700{
701 struct ar5523_rx_data *data;
702
703 ar5523_cancel_rx_bufs(ar);
704 while (!list_empty(&ar->rx_data_free)) {
705 data = (struct ar5523_rx_data *) ar->rx_data_free.next;
706 list_del(&data->list);
707 usb_free_urb(data->urb);
708 }
709}
710
711static int ar5523_alloc_rx_bufs(struct ar5523 *ar)
712{
713 int i;
714
715 for (i = 0; i < AR5523_RX_DATA_COUNT; i++) {
716 struct ar5523_rx_data *data = &ar->rx_data[i];
717
718 data->ar = ar;
719 data->urb = usb_alloc_urb(0, GFP_KERNEL);
720 if (!data->urb)
721 goto err;
722 list_add_tail(&data->list, &ar->rx_data_free);
723 atomic_inc(&ar->rx_data_free_cnt);
724 }
725 return 0;
726
727err:
728 ar5523_free_rx_bufs(ar);
729 return -ENOMEM;
730}
731
732static void ar5523_data_tx_pkt_put(struct ar5523 *ar)
733{
734 atomic_dec(&ar->tx_nr_total);
735 if (!atomic_dec_return(&ar->tx_nr_pending)) {
736 del_timer(&ar->tx_wd_timer);
737 wake_up(&ar->tx_flush_waitq);
738 }
739
740 if (atomic_read(&ar->tx_nr_total) < AR5523_TX_DATA_RESTART_COUNT) {
741 ar5523_dbg(ar, "restart tx queue\n");
742 ieee80211_wake_queues(ar->hw);
743 }
744}
745
746static void ar5523_data_tx_cb(struct urb *urb)
747{
748 struct sk_buff *skb = urb->context;
749 struct ieee80211_tx_info *txi = IEEE80211_SKB_CB(skb);
750 struct ar5523_tx_data *data = (struct ar5523_tx_data *)
751 txi->driver_data;
752 struct ar5523 *ar = data->ar;
753 unsigned long flags;
754
755 ar5523_dbg(ar, "data tx urb completed: %d\n", urb->status);
756
757 spin_lock_irqsave(&ar->tx_data_list_lock, flags);
758 list_del(&data->list);
759 spin_unlock_irqrestore(&ar->tx_data_list_lock, flags);
760
761 if (urb->status) {
762 ar5523_dbg(ar, "%s: urb status: %d\n", __func__, urb->status);
763 ar5523_data_tx_pkt_put(ar);
764 ieee80211_free_txskb(ar->hw, skb);
765 } else {
766 skb_pull(skb, sizeof(struct ar5523_tx_desc) + sizeof(__be32));
767 ieee80211_tx_status_irqsafe(ar->hw, skb);
768 }
769 usb_free_urb(urb);
770}
771
772static void ar5523_tx(struct ieee80211_hw *hw,
773 struct ieee80211_tx_control *control,
774 struct sk_buff *skb)
775{
776 struct ieee80211_tx_info *txi = IEEE80211_SKB_CB(skb);
777 struct ar5523_tx_data *data = (struct ar5523_tx_data *)
778 txi->driver_data;
779 struct ar5523 *ar = hw->priv;
780 unsigned long flags;
781
782 ar5523_dbg(ar, "tx called\n");
783 if (atomic_inc_return(&ar->tx_nr_total) >= AR5523_TX_DATA_COUNT) {
784 ar5523_dbg(ar, "tx queue full\n");
785 ar5523_dbg(ar, "stop queues (tot %d pend %d)\n",
786 atomic_read(&ar->tx_nr_total),
787 atomic_read(&ar->tx_nr_pending));
788 ieee80211_stop_queues(hw);
789 }
790
791 spin_lock_irqsave(&ar->tx_data_list_lock, flags);
792 list_add_tail(&data->list, &ar->tx_queue_pending);
793 spin_unlock_irqrestore(&ar->tx_data_list_lock, flags);
794
795 ieee80211_queue_work(ar->hw, &ar->tx_work);
796}
797
798static void ar5523_tx_work_locked(struct ar5523 *ar)
799{
800 struct ar5523_tx_data *data;
801 struct ar5523_tx_desc *desc;
802 struct ar5523_chunk *chunk;
803 struct ieee80211_tx_info *txi;
804 struct urb *urb;
805 struct sk_buff *skb;
806 int error = 0, paylen;
807 u32 txqid;
808 unsigned long flags;
809
810 BUILD_BUG_ON(sizeof(struct ar5523_tx_data) >
811 IEEE80211_TX_INFO_DRIVER_DATA_SIZE);
812
813 ar5523_dbg(ar, "%s\n", __func__);
814 do {
815 spin_lock_irqsave(&ar->tx_data_list_lock, flags);
816 if (!list_empty(&ar->tx_queue_pending)) {
817 data = (struct ar5523_tx_data *)
818 ar->tx_queue_pending.next;
819 list_del(&data->list);
820 } else
821 data = NULL;
822 spin_unlock_irqrestore(&ar->tx_data_list_lock, flags);
823
824 if (!data)
825 break;
826
827 txi = container_of((void *)data, struct ieee80211_tx_info,
828 driver_data);
829 txqid = 0;
830
831 skb = container_of((void *)txi, struct sk_buff, cb);
832 paylen = skb->len;
833
834 urb = usb_alloc_urb(0, GFP_KERNEL);
835 if (!urb) {
836 ieee80211_free_txskb(ar->hw, skb);
837 continue;
838 }
839
840 data->ar = ar;
841 data->urb = urb;
842
843 desc = skb_push(skb, sizeof(*desc));
844 chunk = skb_push(skb, sizeof(*chunk));
845
846 chunk->seqnum = 0;
847 chunk->flags = UATH_CFLAGS_FINAL;
848 chunk->length = cpu_to_be16(skb->len);
849
850 desc->msglen = cpu_to_be32(skb->len);
851 desc->msgid = AR5523_DATA_ID;
852 desc->buflen = cpu_to_be32(paylen);
853 desc->type = cpu_to_be32(WDCMSG_SEND);
854 desc->flags = cpu_to_be32(UATH_TX_NOTIFY);
855
856 if (test_bit(AR5523_CONNECTED, &ar->flags))
857 desc->connid = cpu_to_be32(AR5523_ID_BSS);
858 else
859 desc->connid = cpu_to_be32(AR5523_ID_BROADCAST);
860
861 if (txi->flags & IEEE80211_TX_CTL_USE_MINRATE)
862 txqid |= UATH_TXQID_MINRATE;
863
864 desc->txqid = cpu_to_be32(txqid);
865
866 urb->transfer_flags = URB_ZERO_PACKET;
867 usb_fill_bulk_urb(urb, ar->dev, ar5523_data_tx_pipe(ar->dev),
868 skb->data, skb->len, ar5523_data_tx_cb, skb);
869
870 spin_lock_irqsave(&ar->tx_data_list_lock, flags);
871 list_add_tail(&data->list, &ar->tx_queue_submitted);
872 spin_unlock_irqrestore(&ar->tx_data_list_lock, flags);
873 mod_timer(&ar->tx_wd_timer, jiffies + AR5523_TX_WD_TIMEOUT);
874 atomic_inc(&ar->tx_nr_pending);
875
876 ar5523_dbg(ar, "TX Frame (%d pending)\n",
877 atomic_read(&ar->tx_nr_pending));
878 error = usb_submit_urb(urb, GFP_KERNEL);
879 if (error) {
880 ar5523_err(ar, "error %d when submitting tx urb\n",
881 error);
882 spin_lock_irqsave(&ar->tx_data_list_lock, flags);
883 list_del(&data->list);
884 spin_unlock_irqrestore(&ar->tx_data_list_lock, flags);
885 atomic_dec(&ar->tx_nr_pending);
886 ar5523_data_tx_pkt_put(ar);
887 usb_free_urb(urb);
888 ieee80211_free_txskb(ar->hw, skb);
889 }
890 } while (true);
891}
892
893static void ar5523_tx_work(struct work_struct *work)
894{
895 struct ar5523 *ar = container_of(work, struct ar5523, tx_work);
896
897 ar5523_dbg(ar, "%s\n", __func__);
898 mutex_lock(&ar->mutex);
899 ar5523_tx_work_locked(ar);
900 mutex_unlock(&ar->mutex);
901}
902
903static void ar5523_tx_wd_timer(struct timer_list *t)
904{
905 struct ar5523 *ar = from_timer(ar, t, tx_wd_timer);
906
907 ar5523_dbg(ar, "TX watchdog timer triggered\n");
908 ieee80211_queue_work(ar->hw, &ar->tx_wd_work);
909}
910
911static void ar5523_tx_wd_work(struct work_struct *work)
912{
913 struct ar5523 *ar = container_of(work, struct ar5523, tx_wd_work);
914
915 /* Occasionally the TX queues stop responding. The only way to
916 * recover seems to be to reset the dongle.
917 */
918
919 mutex_lock(&ar->mutex);
920 ar5523_err(ar, "TX queue stuck (tot %d pend %d)\n",
921 atomic_read(&ar->tx_nr_total),
922 atomic_read(&ar->tx_nr_pending));
923
924 ar5523_err(ar, "Will restart dongle.\n");
925 ar5523_cmd_write(ar, WDCMSG_TARGET_RESET, NULL, 0, 0);
926 mutex_unlock(&ar->mutex);
927}
928
929static void ar5523_flush_tx(struct ar5523 *ar)
930{
931 ar5523_tx_work_locked(ar);
932
933 /* Don't waste time trying to flush if USB is disconnected */
934 if (test_bit(AR5523_USB_DISCONNECTED, &ar->flags))
935 return;
936 if (!wait_event_timeout(ar->tx_flush_waitq,
937 !atomic_read(&ar->tx_nr_pending), AR5523_FLUSH_TIMEOUT))
938 ar5523_err(ar, "flush timeout (tot %d pend %d)\n",
939 atomic_read(&ar->tx_nr_total),
940 atomic_read(&ar->tx_nr_pending));
941}
942
943static void ar5523_free_tx_cmd(struct ar5523 *ar)
944{
945 struct ar5523_tx_cmd *cmd = &ar->tx_cmd;
946
947 usb_free_coherent(ar->dev, AR5523_MAX_RXCMDSZ, cmd->buf_tx,
948 cmd->urb_tx->transfer_dma);
949 usb_free_urb(cmd->urb_tx);
950}
951
952static int ar5523_alloc_tx_cmd(struct ar5523 *ar)
953{
954 struct ar5523_tx_cmd *cmd = &ar->tx_cmd;
955
956 cmd->ar = ar;
957 init_completion(&cmd->done);
958
959 cmd->urb_tx = usb_alloc_urb(0, GFP_KERNEL);
960 if (!cmd->urb_tx)
961 return -ENOMEM;
962 cmd->buf_tx = usb_alloc_coherent(ar->dev, AR5523_MAX_TXCMDSZ,
963 GFP_KERNEL,
964 &cmd->urb_tx->transfer_dma);
965 if (!cmd->buf_tx) {
966 usb_free_urb(cmd->urb_tx);
967 return -ENOMEM;
968 }
969 return 0;
970}
971
972/*
973 * This function is called periodically (every second) when associated to
974 * query device statistics.
975 */
976static void ar5523_stat_work(struct work_struct *work)
977{
978 struct ar5523 *ar = container_of(work, struct ar5523, stat_work.work);
979 int error;
980
981 ar5523_dbg(ar, "%s\n", __func__);
982 mutex_lock(&ar->mutex);
983
984 /*
985 * Send request for statistics asynchronously once a second. This
986 * seems to be important. Throughput is a lot better if this is done.
987 */
988 error = ar5523_cmd_write(ar, WDCMSG_TARGET_GET_STATS, NULL, 0, 0);
989 if (error)
990 ar5523_err(ar, "could not query stats, error %d\n", error);
991 mutex_unlock(&ar->mutex);
992 ieee80211_queue_delayed_work(ar->hw, &ar->stat_work, HZ);
993}
994
995/*
996 * Interface routines to the mac80211 stack.
997 */
998static int ar5523_start(struct ieee80211_hw *hw)
999{
1000 struct ar5523 *ar = hw->priv;
1001 int error;
1002 __be32 val;
1003
1004 ar5523_dbg(ar, "start called\n");
1005
1006 mutex_lock(&ar->mutex);
1007 val = cpu_to_be32(0);
1008 ar5523_cmd_write(ar, WDCMSG_BIND, &val, sizeof(val), 0);
1009
1010 /* set MAC address */
1011 ar5523_config_multi(ar, CFG_MAC_ADDR, &ar->hw->wiphy->perm_addr,
1012 ETH_ALEN);
1013
1014 /* XXX honor net80211 state */
1015 ar5523_config(ar, CFG_RATE_CONTROL_ENABLE, 0x00000001);
1016 ar5523_config(ar, CFG_DIVERSITY_CTL, 0x00000001);
1017 ar5523_config(ar, CFG_ABOLT, 0x0000003f);
1018 ar5523_config(ar, CFG_WME_ENABLED, 0x00000000);
1019
1020 ar5523_config(ar, CFG_SERVICE_TYPE, 1);
1021 ar5523_config(ar, CFG_TP_SCALE, 0x00000000);
1022 ar5523_config(ar, CFG_TPC_HALF_DBM5, 0x0000003c);
1023 ar5523_config(ar, CFG_TPC_HALF_DBM2, 0x0000003c);
1024 ar5523_config(ar, CFG_OVERRD_TX_POWER, 0x00000000);
1025 ar5523_config(ar, CFG_GMODE_PROTECTION, 0x00000000);
1026 ar5523_config(ar, CFG_GMODE_PROTECT_RATE_INDEX, 0x00000003);
1027 ar5523_config(ar, CFG_PROTECTION_TYPE, 0x00000000);
1028 ar5523_config(ar, CFG_MODE_CTS, 0x00000002);
1029
1030 error = ar5523_cmd_read(ar, WDCMSG_TARGET_START, NULL, 0,
1031 &val, sizeof(val), AR5523_CMD_FLAG_MAGIC);
1032 if (error) {
1033 ar5523_dbg(ar, "could not start target, error %d\n", error);
1034 goto err;
1035 }
1036 ar5523_dbg(ar, "WDCMSG_TARGET_START returns handle: 0x%x\n",
1037 be32_to_cpu(val));
1038
1039 ar5523_switch_chan(ar);
1040
1041 val = cpu_to_be32(TARGET_DEVICE_AWAKE);
1042 ar5523_cmd_write(ar, WDCMSG_SET_PWR_MODE, &val, sizeof(val), 0);
1043 /* XXX? check */
1044 ar5523_cmd_write(ar, WDCMSG_RESET_KEY_CACHE, NULL, 0, 0);
1045
1046 set_bit(AR5523_HW_UP, &ar->flags);
1047 queue_work(ar->wq, &ar->rx_refill_work);
1048
1049 /* enable Rx */
1050 ar5523_set_rxfilter(ar, 0, UATH_FILTER_OP_INIT);
1051 ar5523_set_rxfilter(ar,
1052 UATH_FILTER_RX_UCAST | UATH_FILTER_RX_MCAST |
1053 UATH_FILTER_RX_BCAST | UATH_FILTER_RX_BEACON,
1054 UATH_FILTER_OP_SET);
1055
1056 ar5523_set_ledsteady(ar, UATH_LED_ACTIVITY, UATH_LED_ON);
1057 ar5523_dbg(ar, "start OK\n");
1058
1059err:
1060 mutex_unlock(&ar->mutex);
1061 return error;
1062}
1063
1064static void ar5523_stop(struct ieee80211_hw *hw)
1065{
1066 struct ar5523 *ar = hw->priv;
1067
1068 ar5523_dbg(ar, "stop called\n");
1069
1070 cancel_delayed_work_sync(&ar->stat_work);
1071 mutex_lock(&ar->mutex);
1072 clear_bit(AR5523_HW_UP, &ar->flags);
1073
1074 ar5523_set_ledsteady(ar, UATH_LED_LINK, UATH_LED_OFF);
1075 ar5523_set_ledsteady(ar, UATH_LED_ACTIVITY, UATH_LED_OFF);
1076
1077 ar5523_cmd_write(ar, WDCMSG_TARGET_STOP, NULL, 0, 0);
1078
1079 del_timer_sync(&ar->tx_wd_timer);
1080 cancel_work_sync(&ar->tx_wd_work);
1081 cancel_work_sync(&ar->rx_refill_work);
1082 ar5523_cancel_rx_bufs(ar);
1083 mutex_unlock(&ar->mutex);
1084}
1085
1086static int ar5523_set_rts_threshold(struct ieee80211_hw *hw, u32 value)
1087{
1088 struct ar5523 *ar = hw->priv;
1089 int ret;
1090
1091 ar5523_dbg(ar, "set_rts_threshold called\n");
1092 mutex_lock(&ar->mutex);
1093
1094 ret = ar5523_config(ar, CFG_USER_RTS_THRESHOLD, value);
1095
1096 mutex_unlock(&ar->mutex);
1097 return ret;
1098}
1099
1100static void ar5523_flush(struct ieee80211_hw *hw, struct ieee80211_vif *vif,
1101 u32 queues, bool drop)
1102{
1103 struct ar5523 *ar = hw->priv;
1104
1105 ar5523_dbg(ar, "flush called\n");
1106 ar5523_flush_tx(ar);
1107}
1108
1109static int ar5523_add_interface(struct ieee80211_hw *hw,
1110 struct ieee80211_vif *vif)
1111{
1112 struct ar5523 *ar = hw->priv;
1113
1114 ar5523_dbg(ar, "add interface called\n");
1115
1116 if (ar->vif) {
1117 ar5523_dbg(ar, "invalid add_interface\n");
1118 return -EOPNOTSUPP;
1119 }
1120
1121 switch (vif->type) {
1122 case NL80211_IFTYPE_STATION:
1123 ar->vif = vif;
1124 break;
1125 default:
1126 return -EOPNOTSUPP;
1127 }
1128 return 0;
1129}
1130
1131static void ar5523_remove_interface(struct ieee80211_hw *hw,
1132 struct ieee80211_vif *vif)
1133{
1134 struct ar5523 *ar = hw->priv;
1135
1136 ar5523_dbg(ar, "remove interface called\n");
1137 ar->vif = NULL;
1138}
1139
1140static int ar5523_hwconfig(struct ieee80211_hw *hw, u32 changed)
1141{
1142 struct ar5523 *ar = hw->priv;
1143
1144 ar5523_dbg(ar, "config called\n");
1145 mutex_lock(&ar->mutex);
1146 if (changed & IEEE80211_CONF_CHANGE_CHANNEL) {
1147 ar5523_dbg(ar, "Do channel switch\n");
1148 ar5523_flush_tx(ar);
1149 ar5523_switch_chan(ar);
1150 }
1151 mutex_unlock(&ar->mutex);
1152 return 0;
1153}
1154
1155static int ar5523_get_wlan_mode(struct ar5523 *ar,
1156 struct ieee80211_bss_conf *bss_conf)
1157{
1158 struct ieee80211_supported_band *band;
1159 int bit;
1160 struct ieee80211_sta *sta;
1161 u32 sta_rate_set;
1162
1163 band = ar->hw->wiphy->bands[ar->hw->conf.chandef.chan->band];
1164 sta = ieee80211_find_sta(ar->vif, bss_conf->bssid);
1165 if (!sta) {
1166 ar5523_info(ar, "STA not found!\n");
1167 return WLAN_MODE_11b;
1168 }
1169 sta_rate_set = sta->deflink.supp_rates[ar->hw->conf.chandef.chan->band];
1170
1171 for (bit = 0; bit < band->n_bitrates; bit++) {
1172 if (sta_rate_set & 1) {
1173 int rate = band->bitrates[bit].bitrate;
1174 switch (rate) {
1175 case 60:
1176 case 90:
1177 case 120:
1178 case 180:
1179 case 240:
1180 case 360:
1181 case 480:
1182 case 540:
1183 return WLAN_MODE_11g;
1184 }
1185 }
1186 sta_rate_set >>= 1;
1187 }
1188 return WLAN_MODE_11b;
1189}
1190
1191static void ar5523_create_rateset(struct ar5523 *ar,
1192 struct ieee80211_bss_conf *bss_conf,
1193 struct ar5523_cmd_rateset *rs,
1194 bool basic)
1195{
1196 struct ieee80211_supported_band *band;
1197 struct ieee80211_sta *sta;
1198 int bit, i = 0;
1199 u32 sta_rate_set, basic_rate_set;
1200
1201 sta = ieee80211_find_sta(ar->vif, bss_conf->bssid);
1202 basic_rate_set = bss_conf->basic_rates;
1203 if (!sta) {
1204 ar5523_info(ar, "STA not found. Cannot set rates\n");
1205 sta_rate_set = bss_conf->basic_rates;
1206 } else
1207 sta_rate_set = sta->deflink.supp_rates[ar->hw->conf.chandef.chan->band];
1208
1209 ar5523_dbg(ar, "sta rate_set = %08x\n", sta_rate_set);
1210
1211 band = ar->hw->wiphy->bands[ar->hw->conf.chandef.chan->band];
1212 for (bit = 0; bit < band->n_bitrates; bit++) {
1213 BUG_ON(i >= AR5523_MAX_NRATES);
1214 ar5523_dbg(ar, "Considering rate %d : %d\n",
1215 band->bitrates[bit].hw_value, sta_rate_set & 1);
1216 if (sta_rate_set & 1) {
1217 rs->set[i] = band->bitrates[bit].hw_value;
1218 if (basic_rate_set & 1 && basic)
1219 rs->set[i] |= 0x80;
1220 i++;
1221 }
1222 sta_rate_set >>= 1;
1223 basic_rate_set >>= 1;
1224 }
1225
1226 rs->length = i;
1227}
1228
1229static int ar5523_set_basic_rates(struct ar5523 *ar,
1230 struct ieee80211_bss_conf *bss)
1231{
1232 struct ar5523_cmd_rates rates;
1233
1234 memset(&rates, 0, sizeof(rates));
1235 rates.connid = cpu_to_be32(2); /* XXX */
1236 rates.size = cpu_to_be32(sizeof(struct ar5523_cmd_rateset));
1237 ar5523_create_rateset(ar, bss, &rates.rateset, true);
1238
1239 return ar5523_cmd_write(ar, WDCMSG_SET_BASIC_RATE, &rates,
1240 sizeof(rates), 0);
1241}
1242
1243static int ar5523_create_connection(struct ar5523 *ar,
1244 struct ieee80211_vif *vif,
1245 struct ieee80211_bss_conf *bss)
1246{
1247 struct ar5523_cmd_create_connection create;
1248 int wlan_mode;
1249
1250 memset(&create, 0, sizeof(create));
1251 create.connid = cpu_to_be32(2);
1252 create.bssid = cpu_to_be32(0);
1253 /* XXX packed or not? */
1254 create.size = cpu_to_be32(sizeof(struct ar5523_cmd_rateset));
1255
1256 ar5523_create_rateset(ar, bss, &create.connattr.rateset, false);
1257
1258 wlan_mode = ar5523_get_wlan_mode(ar, bss);
1259 create.connattr.wlanmode = cpu_to_be32(wlan_mode);
1260
1261 return ar5523_cmd_write(ar, WDCMSG_CREATE_CONNECTION, &create,
1262 sizeof(create), 0);
1263}
1264
1265static int ar5523_write_associd(struct ar5523 *ar, struct ieee80211_vif *vif)
1266{
1267 struct ieee80211_bss_conf *bss = &vif->bss_conf;
1268 struct ar5523_cmd_set_associd associd;
1269
1270 memset(&associd, 0, sizeof(associd));
1271 associd.defaultrateix = cpu_to_be32(0); /* XXX */
1272 associd.associd = cpu_to_be32(vif->cfg.aid);
1273 associd.timoffset = cpu_to_be32(0x3b); /* XXX */
1274 memcpy(associd.bssid, bss->bssid, ETH_ALEN);
1275 return ar5523_cmd_write(ar, WDCMSG_WRITE_ASSOCID, &associd,
1276 sizeof(associd), 0);
1277}
1278
1279static void ar5523_bss_info_changed(struct ieee80211_hw *hw,
1280 struct ieee80211_vif *vif,
1281 struct ieee80211_bss_conf *bss,
1282 u64 changed)
1283{
1284 struct ar5523 *ar = hw->priv;
1285 int error;
1286
1287 ar5523_dbg(ar, "bss_info_changed called\n");
1288 mutex_lock(&ar->mutex);
1289
1290 if (!(changed & BSS_CHANGED_ASSOC))
1291 goto out_unlock;
1292
1293 if (vif->cfg.assoc) {
1294 error = ar5523_create_connection(ar, vif, bss);
1295 if (error) {
1296 ar5523_err(ar, "could not create connection\n");
1297 goto out_unlock;
1298 }
1299
1300 error = ar5523_set_basic_rates(ar, bss);
1301 if (error) {
1302 ar5523_err(ar, "could not set negotiated rate set\n");
1303 goto out_unlock;
1304 }
1305
1306 error = ar5523_write_associd(ar, vif);
1307 if (error) {
1308 ar5523_err(ar, "could not set association\n");
1309 goto out_unlock;
1310 }
1311
1312 /* turn link LED on */
1313 ar5523_set_ledsteady(ar, UATH_LED_LINK, UATH_LED_ON);
1314 set_bit(AR5523_CONNECTED, &ar->flags);
1315 ieee80211_queue_delayed_work(hw, &ar->stat_work, HZ);
1316
1317 } else {
1318 cancel_delayed_work(&ar->stat_work);
1319 clear_bit(AR5523_CONNECTED, &ar->flags);
1320 ar5523_set_ledsteady(ar, UATH_LED_LINK, UATH_LED_OFF);
1321 }
1322
1323out_unlock:
1324 mutex_unlock(&ar->mutex);
1325
1326}
1327
1328#define AR5523_SUPPORTED_FILTERS (FIF_ALLMULTI | \
1329 FIF_FCSFAIL | \
1330 FIF_OTHER_BSS)
1331
1332static void ar5523_configure_filter(struct ieee80211_hw *hw,
1333 unsigned int changed_flags,
1334 unsigned int *total_flags,
1335 u64 multicast)
1336{
1337 struct ar5523 *ar = hw->priv;
1338 u32 filter = 0;
1339
1340 ar5523_dbg(ar, "configure_filter called\n");
1341 mutex_lock(&ar->mutex);
1342 ar5523_flush_tx(ar);
1343
1344 *total_flags &= AR5523_SUPPORTED_FILTERS;
1345
1346 /* The filters seems strange. UATH_FILTER_RX_BCAST and
1347 * UATH_FILTER_RX_MCAST does not result in those frames being RXed.
1348 * The only way I have found to get [mb]cast frames seems to be
1349 * to set UATH_FILTER_RX_PROM. */
1350 filter |= UATH_FILTER_RX_UCAST | UATH_FILTER_RX_MCAST |
1351 UATH_FILTER_RX_BCAST | UATH_FILTER_RX_BEACON |
1352 UATH_FILTER_RX_PROM;
1353
1354 ar5523_set_rxfilter(ar, 0, UATH_FILTER_OP_INIT);
1355 ar5523_set_rxfilter(ar, filter, UATH_FILTER_OP_SET);
1356
1357 mutex_unlock(&ar->mutex);
1358}
1359
1360static const struct ieee80211_ops ar5523_ops = {
1361 .start = ar5523_start,
1362 .stop = ar5523_stop,
1363 .tx = ar5523_tx,
1364 .wake_tx_queue = ieee80211_handle_wake_tx_queue,
1365 .set_rts_threshold = ar5523_set_rts_threshold,
1366 .add_interface = ar5523_add_interface,
1367 .remove_interface = ar5523_remove_interface,
1368 .config = ar5523_hwconfig,
1369 .bss_info_changed = ar5523_bss_info_changed,
1370 .configure_filter = ar5523_configure_filter,
1371 .flush = ar5523_flush,
1372};
1373
1374static int ar5523_host_available(struct ar5523 *ar)
1375{
1376 struct ar5523_cmd_host_available setup;
1377
1378 /* inform target the host is available */
1379 setup.sw_ver_major = cpu_to_be32(ATH_SW_VER_MAJOR);
1380 setup.sw_ver_minor = cpu_to_be32(ATH_SW_VER_MINOR);
1381 setup.sw_ver_patch = cpu_to_be32(ATH_SW_VER_PATCH);
1382 setup.sw_ver_build = cpu_to_be32(ATH_SW_VER_BUILD);
1383 return ar5523_cmd_read(ar, WDCMSG_HOST_AVAILABLE,
1384 &setup, sizeof(setup), NULL, 0, 0);
1385}
1386
1387static int ar5523_get_devstatus(struct ar5523 *ar)
1388{
1389 u8 macaddr[ETH_ALEN];
1390 int error;
1391
1392 /* retrieve MAC address */
1393 error = ar5523_get_status(ar, ST_MAC_ADDR, macaddr, ETH_ALEN);
1394 if (error) {
1395 ar5523_err(ar, "could not read MAC address\n");
1396 return error;
1397 }
1398
1399 SET_IEEE80211_PERM_ADDR(ar->hw, macaddr);
1400
1401 error = ar5523_get_status(ar, ST_SERIAL_NUMBER,
1402 &ar->serial[0], sizeof(ar->serial));
1403 if (error) {
1404 ar5523_err(ar, "could not read device serial number\n");
1405 return error;
1406 }
1407 return 0;
1408}
1409
1410#define AR5523_SANE_RXBUFSZ 2000
1411
1412static int ar5523_get_max_rxsz(struct ar5523 *ar)
1413{
1414 int error;
1415 __be32 rxsize;
1416
1417 /* Get max rx size */
1418 error = ar5523_get_status(ar, ST_WDC_TRANSPORT_CHUNK_SIZE, &rxsize,
1419 sizeof(rxsize));
1420 if (error != 0) {
1421 ar5523_err(ar, "could not read max RX size\n");
1422 return error;
1423 }
1424
1425 ar->rxbufsz = be32_to_cpu(rxsize);
1426
1427 if (!ar->rxbufsz || ar->rxbufsz > AR5523_SANE_RXBUFSZ) {
1428 ar5523_err(ar, "Bad rxbufsz from device. Using %d instead\n",
1429 AR5523_SANE_RXBUFSZ);
1430 ar->rxbufsz = AR5523_SANE_RXBUFSZ;
1431 }
1432
1433 ar5523_dbg(ar, "Max RX buf size: %d\n", ar->rxbufsz);
1434 return 0;
1435}
1436
1437/*
1438 * This is copied from rtl818x, but we should probably move this
1439 * to common code as in OpenBSD.
1440 */
1441static const struct ieee80211_rate ar5523_rates[] = {
1442 { .bitrate = 10, .hw_value = 2, },
1443 { .bitrate = 20, .hw_value = 4 },
1444 { .bitrate = 55, .hw_value = 11, },
1445 { .bitrate = 110, .hw_value = 22, },
1446 { .bitrate = 60, .hw_value = 12, },
1447 { .bitrate = 90, .hw_value = 18, },
1448 { .bitrate = 120, .hw_value = 24, },
1449 { .bitrate = 180, .hw_value = 36, },
1450 { .bitrate = 240, .hw_value = 48, },
1451 { .bitrate = 360, .hw_value = 72, },
1452 { .bitrate = 480, .hw_value = 96, },
1453 { .bitrate = 540, .hw_value = 108, },
1454};
1455
1456static const struct ieee80211_channel ar5523_channels[] = {
1457 { .center_freq = 2412 },
1458 { .center_freq = 2417 },
1459 { .center_freq = 2422 },
1460 { .center_freq = 2427 },
1461 { .center_freq = 2432 },
1462 { .center_freq = 2437 },
1463 { .center_freq = 2442 },
1464 { .center_freq = 2447 },
1465 { .center_freq = 2452 },
1466 { .center_freq = 2457 },
1467 { .center_freq = 2462 },
1468 { .center_freq = 2467 },
1469 { .center_freq = 2472 },
1470 { .center_freq = 2484 },
1471};
1472
1473static int ar5523_init_modes(struct ar5523 *ar)
1474{
1475 BUILD_BUG_ON(sizeof(ar->channels) != sizeof(ar5523_channels));
1476 BUILD_BUG_ON(sizeof(ar->rates) != sizeof(ar5523_rates));
1477
1478 memcpy(ar->channels, ar5523_channels, sizeof(ar5523_channels));
1479 memcpy(ar->rates, ar5523_rates, sizeof(ar5523_rates));
1480
1481 ar->band.band = NL80211_BAND_2GHZ;
1482 ar->band.channels = ar->channels;
1483 ar->band.n_channels = ARRAY_SIZE(ar5523_channels);
1484 ar->band.bitrates = ar->rates;
1485 ar->band.n_bitrates = ARRAY_SIZE(ar5523_rates);
1486 ar->hw->wiphy->bands[NL80211_BAND_2GHZ] = &ar->band;
1487 return 0;
1488}
1489
1490/*
1491 * Load the MIPS R4000 microcode into the device. Once the image is loaded,
1492 * the device will detach itself from the bus and reattach later with a new
1493 * product Id (a la ezusb).
1494 */
1495static int ar5523_load_firmware(struct usb_device *dev)
1496{
1497 struct ar5523_fwblock *txblock, *rxblock;
1498 const struct firmware *fw;
1499 void *fwbuf;
1500 int len, offset;
1501 int foolen; /* XXX(hch): handle short transfers */
1502 int error = -ENXIO;
1503
1504 if (request_firmware(&fw, AR5523_FIRMWARE_FILE, &dev->dev)) {
1505 dev_err(&dev->dev, "no firmware found: %s\n",
1506 AR5523_FIRMWARE_FILE);
1507 return -ENOENT;
1508 }
1509
1510 txblock = kzalloc(sizeof(*txblock), GFP_KERNEL);
1511 if (!txblock)
1512 goto out;
1513
1514 rxblock = kmalloc(sizeof(*rxblock), GFP_KERNEL);
1515 if (!rxblock)
1516 goto out_free_txblock;
1517
1518 fwbuf = kmalloc(AR5523_MAX_FWBLOCK_SIZE, GFP_KERNEL);
1519 if (!fwbuf)
1520 goto out_free_rxblock;
1521
1522 txblock->flags = cpu_to_be32(AR5523_WRITE_BLOCK);
1523 txblock->total = cpu_to_be32(fw->size);
1524
1525 offset = 0;
1526 len = fw->size;
1527 while (len > 0) {
1528 int mlen = min(len, AR5523_MAX_FWBLOCK_SIZE);
1529
1530 txblock->remain = cpu_to_be32(len - mlen);
1531 txblock->len = cpu_to_be32(mlen);
1532
1533 /* send firmware block meta-data */
1534 error = usb_bulk_msg(dev, ar5523_cmd_tx_pipe(dev),
1535 txblock, sizeof(*txblock), &foolen,
1536 AR5523_CMD_TIMEOUT);
1537 if (error) {
1538 dev_err(&dev->dev,
1539 "could not send firmware block info\n");
1540 goto out_free_fwbuf;
1541 }
1542
1543 /* send firmware block data */
1544 memcpy(fwbuf, fw->data + offset, mlen);
1545 error = usb_bulk_msg(dev, ar5523_data_tx_pipe(dev),
1546 fwbuf, mlen, &foolen,
1547 AR5523_DATA_TIMEOUT);
1548 if (error) {
1549 dev_err(&dev->dev,
1550 "could not send firmware block data\n");
1551 goto out_free_fwbuf;
1552 }
1553
1554 /* wait for ack from firmware */
1555 error = usb_bulk_msg(dev, ar5523_cmd_rx_pipe(dev),
1556 rxblock, sizeof(*rxblock), &foolen,
1557 AR5523_CMD_TIMEOUT);
1558 if (error) {
1559 dev_err(&dev->dev,
1560 "could not read firmware answer\n");
1561 goto out_free_fwbuf;
1562 }
1563
1564 len -= mlen;
1565 offset += mlen;
1566 }
1567
1568 /*
1569 * Set the error to -ENXIO to make sure we continue probing for
1570 * a driver.
1571 */
1572 error = -ENXIO;
1573
1574 out_free_fwbuf:
1575 kfree(fwbuf);
1576 out_free_rxblock:
1577 kfree(rxblock);
1578 out_free_txblock:
1579 kfree(txblock);
1580 out:
1581 release_firmware(fw);
1582 return error;
1583}
1584
1585static int ar5523_probe(struct usb_interface *intf,
1586 const struct usb_device_id *id)
1587{
1588 struct usb_device *dev = interface_to_usbdev(intf);
1589 struct ieee80211_hw *hw;
1590 struct ar5523 *ar;
1591 int error = -ENOMEM;
1592
1593 /*
1594 * Load firmware if the device requires it. This will return
1595 * -ENXIO on success and we'll get called back afer the usb
1596 * id changes to indicate that the firmware is present.
1597 */
1598 if (id->driver_info & AR5523_FLAG_PRE_FIRMWARE)
1599 return ar5523_load_firmware(dev);
1600
1601
1602 hw = ieee80211_alloc_hw(sizeof(*ar), &ar5523_ops);
1603 if (!hw)
1604 goto out;
1605 SET_IEEE80211_DEV(hw, &intf->dev);
1606
1607 ar = hw->priv;
1608 ar->hw = hw;
1609 ar->dev = dev;
1610 mutex_init(&ar->mutex);
1611
1612 INIT_DELAYED_WORK(&ar->stat_work, ar5523_stat_work);
1613 timer_setup(&ar->tx_wd_timer, ar5523_tx_wd_timer, 0);
1614 INIT_WORK(&ar->tx_wd_work, ar5523_tx_wd_work);
1615 INIT_WORK(&ar->tx_work, ar5523_tx_work);
1616 INIT_LIST_HEAD(&ar->tx_queue_pending);
1617 INIT_LIST_HEAD(&ar->tx_queue_submitted);
1618 spin_lock_init(&ar->tx_data_list_lock);
1619 atomic_set(&ar->tx_nr_total, 0);
1620 atomic_set(&ar->tx_nr_pending, 0);
1621 init_waitqueue_head(&ar->tx_flush_waitq);
1622
1623 atomic_set(&ar->rx_data_free_cnt, 0);
1624 INIT_WORK(&ar->rx_refill_work, ar5523_rx_refill_work);
1625 INIT_LIST_HEAD(&ar->rx_data_free);
1626 INIT_LIST_HEAD(&ar->rx_data_used);
1627 spin_lock_init(&ar->rx_data_list_lock);
1628
1629 ar->wq = create_singlethread_workqueue("ar5523");
1630 if (!ar->wq) {
1631 ar5523_err(ar, "Could not create wq\n");
1632 goto out_free_ar;
1633 }
1634
1635 error = ar5523_alloc_rx_bufs(ar);
1636 if (error) {
1637 ar5523_err(ar, "Could not allocate rx buffers\n");
1638 goto out_free_wq;
1639 }
1640
1641 error = ar5523_alloc_rx_cmd(ar);
1642 if (error) {
1643 ar5523_err(ar, "Could not allocate rx command buffers\n");
1644 goto out_free_rx_bufs;
1645 }
1646
1647 error = ar5523_alloc_tx_cmd(ar);
1648 if (error) {
1649 ar5523_err(ar, "Could not allocate tx command buffers\n");
1650 goto out_free_rx_cmd;
1651 }
1652
1653 error = ar5523_submit_rx_cmd(ar);
1654 if (error) {
1655 ar5523_err(ar, "Failed to submit rx cmd\n");
1656 goto out_free_tx_cmd;
1657 }
1658
1659 /*
1660 * We're now ready to send/receive firmware commands.
1661 */
1662 error = ar5523_host_available(ar);
1663 if (error) {
1664 ar5523_err(ar, "could not initialize adapter\n");
1665 goto out_cancel_rx_cmd;
1666 }
1667
1668 error = ar5523_get_max_rxsz(ar);
1669 if (error) {
1670 ar5523_err(ar, "could not get caps from adapter\n");
1671 goto out_cancel_rx_cmd;
1672 }
1673
1674 error = ar5523_get_devcap(ar);
1675 if (error) {
1676 ar5523_err(ar, "could not get caps from adapter\n");
1677 goto out_cancel_rx_cmd;
1678 }
1679
1680 error = ar5523_get_devstatus(ar);
1681 if (error != 0) {
1682 ar5523_err(ar, "could not get device status\n");
1683 goto out_cancel_rx_cmd;
1684 }
1685
1686 ar5523_info(ar, "MAC/BBP AR5523, RF AR%c112\n",
1687 (id->driver_info & AR5523_FLAG_ABG) ? '5' : '2');
1688
1689 ar->vif = NULL;
1690 ieee80211_hw_set(hw, HAS_RATE_CONTROL);
1691 ieee80211_hw_set(hw, RX_INCLUDES_FCS);
1692 ieee80211_hw_set(hw, SIGNAL_DBM);
1693 hw->extra_tx_headroom = sizeof(struct ar5523_tx_desc) +
1694 sizeof(struct ar5523_chunk);
1695 hw->wiphy->interface_modes = BIT(NL80211_IFTYPE_STATION);
1696 hw->queues = 1;
1697
1698 error = ar5523_init_modes(ar);
1699 if (error)
1700 goto out_cancel_rx_cmd;
1701
1702 wiphy_ext_feature_set(hw->wiphy, NL80211_EXT_FEATURE_CQM_RSSI_LIST);
1703
1704 usb_set_intfdata(intf, hw);
1705
1706 error = ieee80211_register_hw(hw);
1707 if (error) {
1708 ar5523_err(ar, "could not register device\n");
1709 goto out_cancel_rx_cmd;
1710 }
1711
1712 ar5523_info(ar, "Found and initialized AR5523 device\n");
1713 return 0;
1714
1715out_cancel_rx_cmd:
1716 ar5523_cancel_rx_cmd(ar);
1717out_free_tx_cmd:
1718 ar5523_free_tx_cmd(ar);
1719out_free_rx_cmd:
1720 ar5523_free_rx_cmd(ar);
1721out_free_rx_bufs:
1722 ar5523_free_rx_bufs(ar);
1723out_free_wq:
1724 destroy_workqueue(ar->wq);
1725out_free_ar:
1726 ieee80211_free_hw(hw);
1727out:
1728 return error;
1729}
1730
1731static void ar5523_disconnect(struct usb_interface *intf)
1732{
1733 struct ieee80211_hw *hw = usb_get_intfdata(intf);
1734 struct ar5523 *ar = hw->priv;
1735
1736 ar5523_dbg(ar, "detaching\n");
1737 set_bit(AR5523_USB_DISCONNECTED, &ar->flags);
1738
1739 ieee80211_unregister_hw(hw);
1740
1741 ar5523_cancel_rx_cmd(ar);
1742 ar5523_free_tx_cmd(ar);
1743 ar5523_free_rx_cmd(ar);
1744 ar5523_free_rx_bufs(ar);
1745
1746 destroy_workqueue(ar->wq);
1747
1748 ieee80211_free_hw(hw);
1749 usb_set_intfdata(intf, NULL);
1750}
1751
1752#define AR5523_DEVICE_UG(vendor, device) \
1753 { USB_DEVICE((vendor), (device)) }, \
1754 { USB_DEVICE((vendor), (device) + 1), \
1755 .driver_info = AR5523_FLAG_PRE_FIRMWARE }
1756#define AR5523_DEVICE_UX(vendor, device) \
1757 { USB_DEVICE((vendor), (device)), \
1758 .driver_info = AR5523_FLAG_ABG }, \
1759 { USB_DEVICE((vendor), (device) + 1), \
1760 .driver_info = AR5523_FLAG_ABG|AR5523_FLAG_PRE_FIRMWARE }
1761
1762static const struct usb_device_id ar5523_id_table[] = {
1763 AR5523_DEVICE_UG(0x168c, 0x0001), /* Atheros / AR5523 */
1764 AR5523_DEVICE_UG(0x0cf3, 0x0001), /* Atheros2 / AR5523_1 */
1765 AR5523_DEVICE_UG(0x0cf3, 0x0003), /* Atheros2 / AR5523_2 */
1766 AR5523_DEVICE_UX(0x0cf3, 0x0005), /* Atheros2 / AR5523_3 */
1767 AR5523_DEVICE_UG(0x0d8e, 0x7801), /* Conceptronic / AR5523_1 */
1768 AR5523_DEVICE_UX(0x0d8e, 0x7811), /* Conceptronic / AR5523_2 */
1769 AR5523_DEVICE_UX(0x2001, 0x3a00), /* Dlink / DWLAG132 */
1770 AR5523_DEVICE_UG(0x2001, 0x3a02), /* Dlink / DWLG132 */
1771 AR5523_DEVICE_UX(0x2001, 0x3a04), /* Dlink / DWLAG122 */
1772 AR5523_DEVICE_UG(0x07d1, 0x3a07), /* D-Link / WUA-2340 rev A1 */
1773 AR5523_DEVICE_UG(0x1690, 0x0712), /* Gigaset / AR5523 */
1774 AR5523_DEVICE_UG(0x1690, 0x0710), /* Gigaset / SMCWUSBTG */
1775 AR5523_DEVICE_UG(0x129b, 0x160b), /* Gigaset / USB stick 108
1776 (CyberTAN Technology) */
1777 AR5523_DEVICE_UG(0x16ab, 0x7801), /* Globalsun / AR5523_1 */
1778 AR5523_DEVICE_UX(0x16ab, 0x7811), /* Globalsun / AR5523_2 */
1779 AR5523_DEVICE_UG(0x0d8e, 0x7802), /* Globalsun / AR5523_3 */
1780 AR5523_DEVICE_UX(0x0846, 0x4300), /* Netgear / WG111U */
1781 AR5523_DEVICE_UG(0x0846, 0x4250), /* Netgear / WG111T */
1782 AR5523_DEVICE_UG(0x0846, 0x5f00), /* Netgear / WPN111 */
1783 AR5523_DEVICE_UG(0x083a, 0x4506), /* SMC / EZ Connect
1784 SMCWUSBT-G2 */
1785 AR5523_DEVICE_UG(0x157e, 0x3006), /* Umedia / AR5523_1, TEW444UBEU*/
1786 AR5523_DEVICE_UX(0x157e, 0x3205), /* Umedia / AR5523_2 */
1787 AR5523_DEVICE_UG(0x1435, 0x0826), /* Wistronneweb / AR5523_1 */
1788 AR5523_DEVICE_UX(0x1435, 0x0828), /* Wistronneweb / AR5523_2 */
1789 AR5523_DEVICE_UG(0x0cde, 0x0012), /* Zcom / AR5523 */
1790 AR5523_DEVICE_UG(0x1385, 0x4250), /* Netgear3 / WG111T (2) */
1791 AR5523_DEVICE_UG(0x1385, 0x5f00), /* Netgear / WPN111 */
1792 AR5523_DEVICE_UG(0x1385, 0x5f02), /* Netgear / WPN111 */
1793 { }
1794};
1795MODULE_DEVICE_TABLE(usb, ar5523_id_table);
1796
1797static struct usb_driver ar5523_driver = {
1798 .name = "ar5523",
1799 .id_table = ar5523_id_table,
1800 .probe = ar5523_probe,
1801 .disconnect = ar5523_disconnect,
1802};
1803
1804module_usb_driver(ar5523_driver);
1805
1806MODULE_DESCRIPTION("Atheros AR5523 wireless driver");
1807MODULE_LICENSE("Dual BSD/GPL");
1808MODULE_FIRMWARE(AR5523_FIRMWARE_FILE);
1/*
2 * Copyright (c) 2006 Damien Bergamini <damien.bergamini@free.fr>
3 * Copyright (c) 2006 Sam Leffler, Errno Consulting
4 * Copyright (c) 2007 Christoph Hellwig <hch@lst.de>
5 * Copyright (c) 2008-2009 Weongyo Jeong <weongyo@freebsd.org>
6 * Copyright (c) 2012 Pontus Fuchs <pontus.fuchs@gmail.com>
7 *
8 * Permission to use, copy, modify, and/or distribute this software for any
9 * purpose with or without fee is hereby granted, provided that the above
10 * copyright notice and this permission notice appear in all copies.
11 *
12 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
13 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
14 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
15 * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
16 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
17 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
18 * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
19 */
20
21/*
22 * This driver is based on the uath driver written by Damien Bergamini for
23 * OpenBSD, who did black-box analysis of the Windows binary driver to find
24 * out how the hardware works. It contains a lot magic numbers because of
25 * that and only has minimal functionality.
26 */
27#include <linux/compiler.h>
28#include <linux/kernel.h>
29#include <linux/module.h>
30#include <linux/list.h>
31#include <linux/completion.h>
32#include <linux/firmware.h>
33#include <linux/skbuff.h>
34#include <linux/usb.h>
35#include <net/mac80211.h>
36
37#include "ar5523.h"
38#include "ar5523_hw.h"
39
40/*
41 * Various supported device vendors/products.
42 * UB51: AR5005UG 802.11b/g, UB52: AR5005UX 802.11a/b/g
43 */
44
45static int ar5523_submit_rx_cmd(struct ar5523 *ar);
46static void ar5523_data_tx_pkt_put(struct ar5523 *ar);
47
48static void ar5523_read_reply(struct ar5523 *ar, struct ar5523_cmd_hdr *hdr,
49 struct ar5523_tx_cmd *cmd)
50{
51 int dlen, olen;
52 __be32 *rp;
53
54 dlen = be32_to_cpu(hdr->len) - sizeof(*hdr);
55
56 if (dlen < 0) {
57 WARN_ON(1);
58 goto out;
59 }
60
61 ar5523_dbg(ar, "Code = %d len = %d\n", be32_to_cpu(hdr->code) & 0xff,
62 dlen);
63
64 rp = (__be32 *)(hdr + 1);
65 if (dlen >= sizeof(u32)) {
66 olen = be32_to_cpu(rp[0]);
67 dlen -= sizeof(u32);
68 if (olen == 0) {
69 /* convention is 0 =>'s one word */
70 olen = sizeof(u32);
71 }
72 } else
73 olen = 0;
74
75 if (cmd->odata) {
76 if (cmd->olen < olen) {
77 ar5523_err(ar, "olen to small %d < %d\n",
78 cmd->olen, olen);
79 cmd->olen = 0;
80 cmd->res = -EOVERFLOW;
81 } else {
82 cmd->olen = olen;
83 memcpy(cmd->odata, &rp[1], olen);
84 cmd->res = 0;
85 }
86 }
87
88out:
89 complete(&cmd->done);
90}
91
92static void ar5523_cmd_rx_cb(struct urb *urb)
93{
94 struct ar5523 *ar = urb->context;
95 struct ar5523_tx_cmd *cmd = &ar->tx_cmd;
96 struct ar5523_cmd_hdr *hdr = ar->rx_cmd_buf;
97 int dlen;
98 u32 code, hdrlen;
99
100 if (urb->status) {
101 if (urb->status != -ESHUTDOWN)
102 ar5523_err(ar, "RX USB error %d.\n", urb->status);
103 goto skip;
104 }
105
106 if (urb->actual_length < sizeof(struct ar5523_cmd_hdr)) {
107 ar5523_err(ar, "RX USB to short.\n");
108 goto skip;
109 }
110
111 ar5523_dbg(ar, "%s code %02x priv %d\n", __func__,
112 be32_to_cpu(hdr->code) & 0xff, hdr->priv);
113
114 code = be32_to_cpu(hdr->code);
115 hdrlen = be32_to_cpu(hdr->len);
116
117 switch (code & 0xff) {
118 default:
119 /* reply to a read command */
120 if (hdr->priv != AR5523_CMD_ID) {
121 ar5523_err(ar, "Unexpected command id: %02x\n",
122 code & 0xff);
123 goto skip;
124 }
125 ar5523_read_reply(ar, hdr, cmd);
126 break;
127
128 case WDCMSG_DEVICE_AVAIL:
129 ar5523_dbg(ar, "WDCMSG_DEVICE_AVAIL\n");
130 cmd->res = 0;
131 cmd->olen = 0;
132 complete(&cmd->done);
133 break;
134
135 case WDCMSG_SEND_COMPLETE:
136 ar5523_dbg(ar, "WDCMSG_SEND_COMPLETE: %d pending\n",
137 atomic_read(&ar->tx_nr_pending));
138 if (!test_bit(AR5523_HW_UP, &ar->flags))
139 ar5523_dbg(ar, "Unexpected WDCMSG_SEND_COMPLETE\n");
140 else {
141 mod_timer(&ar->tx_wd_timer,
142 jiffies + AR5523_TX_WD_TIMEOUT);
143 ar5523_data_tx_pkt_put(ar);
144
145 }
146 break;
147
148 case WDCMSG_TARGET_START:
149 /* This command returns a bogus id so it needs special
150 handling */
151 dlen = hdrlen - sizeof(*hdr);
152 if (dlen != (int)sizeof(u32)) {
153 ar5523_err(ar, "Invalid reply to WDCMSG_TARGET_START");
154 return;
155 }
156 memcpy(cmd->odata, hdr + 1, sizeof(u32));
157 cmd->olen = sizeof(u32);
158 cmd->res = 0;
159 complete(&cmd->done);
160 break;
161
162 case WDCMSG_STATS_UPDATE:
163 ar5523_dbg(ar, "WDCMSG_STATS_UPDATE\n");
164 break;
165 }
166
167skip:
168 ar5523_submit_rx_cmd(ar);
169}
170
171static int ar5523_alloc_rx_cmd(struct ar5523 *ar)
172{
173 ar->rx_cmd_urb = usb_alloc_urb(0, GFP_KERNEL);
174 if (!ar->rx_cmd_urb)
175 return -ENOMEM;
176
177 ar->rx_cmd_buf = usb_alloc_coherent(ar->dev, AR5523_MAX_RXCMDSZ,
178 GFP_KERNEL,
179 &ar->rx_cmd_urb->transfer_dma);
180 if (!ar->rx_cmd_buf) {
181 usb_free_urb(ar->rx_cmd_urb);
182 return -ENOMEM;
183 }
184 return 0;
185}
186
187static void ar5523_cancel_rx_cmd(struct ar5523 *ar)
188{
189 usb_kill_urb(ar->rx_cmd_urb);
190}
191
192static void ar5523_free_rx_cmd(struct ar5523 *ar)
193{
194 usb_free_coherent(ar->dev, AR5523_MAX_RXCMDSZ,
195 ar->rx_cmd_buf, ar->rx_cmd_urb->transfer_dma);
196 usb_free_urb(ar->rx_cmd_urb);
197}
198
199static int ar5523_submit_rx_cmd(struct ar5523 *ar)
200{
201 int error;
202
203 usb_fill_bulk_urb(ar->rx_cmd_urb, ar->dev,
204 ar5523_cmd_rx_pipe(ar->dev), ar->rx_cmd_buf,
205 AR5523_MAX_RXCMDSZ, ar5523_cmd_rx_cb, ar);
206 ar->rx_cmd_urb->transfer_flags |= URB_NO_TRANSFER_DMA_MAP;
207
208 error = usb_submit_urb(ar->rx_cmd_urb, GFP_ATOMIC);
209 if (error) {
210 if (error != -ENODEV)
211 ar5523_err(ar, "error %d when submitting rx urb\n",
212 error);
213 return error;
214 }
215 return 0;
216}
217
218/*
219 * Command submitted cb
220 */
221static void ar5523_cmd_tx_cb(struct urb *urb)
222{
223 struct ar5523_tx_cmd *cmd = urb->context;
224 struct ar5523 *ar = cmd->ar;
225
226 if (urb->status) {
227 ar5523_err(ar, "Failed to TX command. Status = %d\n",
228 urb->status);
229 cmd->res = urb->status;
230 complete(&cmd->done);
231 return;
232 }
233
234 if (!(cmd->flags & AR5523_CMD_FLAG_READ)) {
235 cmd->res = 0;
236 complete(&cmd->done);
237 }
238}
239
240static int ar5523_cmd(struct ar5523 *ar, u32 code, const void *idata,
241 int ilen, void *odata, int olen, int flags)
242{
243 struct ar5523_cmd_hdr *hdr;
244 struct ar5523_tx_cmd *cmd = &ar->tx_cmd;
245 int xferlen, error;
246
247 /* always bulk-out a multiple of 4 bytes */
248 xferlen = (sizeof(struct ar5523_cmd_hdr) + ilen + 3) & ~3;
249
250 hdr = (struct ar5523_cmd_hdr *)cmd->buf_tx;
251 memset(hdr, 0, sizeof(struct ar5523_cmd_hdr));
252 hdr->len = cpu_to_be32(xferlen);
253 hdr->code = cpu_to_be32(code);
254 hdr->priv = AR5523_CMD_ID;
255
256 if (flags & AR5523_CMD_FLAG_MAGIC)
257 hdr->magic = cpu_to_be32(1 << 24);
258 memcpy(hdr + 1, idata, ilen);
259
260 cmd->odata = odata;
261 cmd->olen = olen;
262 cmd->flags = flags;
263
264 ar5523_dbg(ar, "do cmd %02x\n", code);
265
266 usb_fill_bulk_urb(cmd->urb_tx, ar->dev, ar5523_cmd_tx_pipe(ar->dev),
267 cmd->buf_tx, xferlen, ar5523_cmd_tx_cb, cmd);
268 cmd->urb_tx->transfer_flags |= URB_NO_TRANSFER_DMA_MAP;
269
270 error = usb_submit_urb(cmd->urb_tx, GFP_KERNEL);
271 if (error) {
272 ar5523_err(ar, "could not send command 0x%x, error=%d\n",
273 code, error);
274 return error;
275 }
276
277 if (!wait_for_completion_timeout(&cmd->done, 2 * HZ)) {
278 cmd->odata = NULL;
279 ar5523_err(ar, "timeout waiting for command %02x reply\n",
280 code);
281 cmd->res = -ETIMEDOUT;
282 }
283 return cmd->res;
284}
285
286static int ar5523_cmd_write(struct ar5523 *ar, u32 code, const void *data,
287 int len, int flags)
288{
289 flags &= ~AR5523_CMD_FLAG_READ;
290 return ar5523_cmd(ar, code, data, len, NULL, 0, flags);
291}
292
293static int ar5523_cmd_read(struct ar5523 *ar, u32 code, const void *idata,
294 int ilen, void *odata, int olen, int flags)
295{
296 flags |= AR5523_CMD_FLAG_READ;
297 return ar5523_cmd(ar, code, idata, ilen, odata, olen, flags);
298}
299
300static int ar5523_config(struct ar5523 *ar, u32 reg, u32 val)
301{
302 struct ar5523_write_mac write;
303 int error;
304
305 write.reg = cpu_to_be32(reg);
306 write.len = cpu_to_be32(0); /* 0 = single write */
307 *(__be32 *)write.data = cpu_to_be32(val);
308
309 error = ar5523_cmd_write(ar, WDCMSG_TARGET_SET_CONFIG, &write,
310 3 * sizeof(u32), 0);
311 if (error != 0)
312 ar5523_err(ar, "could not write register 0x%02x\n", reg);
313 return error;
314}
315
316static int ar5523_config_multi(struct ar5523 *ar, u32 reg, const void *data,
317 int len)
318{
319 struct ar5523_write_mac write;
320 int error;
321
322 write.reg = cpu_to_be32(reg);
323 write.len = cpu_to_be32(len);
324 memcpy(write.data, data, len);
325
326 /* properly handle the case where len is zero (reset) */
327 error = ar5523_cmd_write(ar, WDCMSG_TARGET_SET_CONFIG, &write,
328 (len == 0) ? sizeof(u32) : 2 * sizeof(u32) + len, 0);
329 if (error != 0)
330 ar5523_err(ar, "could not write %d bytes to register 0x%02x\n",
331 len, reg);
332 return error;
333}
334
335static int ar5523_get_status(struct ar5523 *ar, u32 which, void *odata,
336 int olen)
337{
338 int error;
339 __be32 which_be;
340
341 which_be = cpu_to_be32(which);
342 error = ar5523_cmd_read(ar, WDCMSG_TARGET_GET_STATUS,
343 &which_be, sizeof(which_be), odata, olen, AR5523_CMD_FLAG_MAGIC);
344 if (error != 0)
345 ar5523_err(ar, "could not read EEPROM offset 0x%02x\n", which);
346 return error;
347}
348
349static int ar5523_get_capability(struct ar5523 *ar, u32 cap, u32 *val)
350{
351 int error;
352 __be32 cap_be, val_be;
353
354 cap_be = cpu_to_be32(cap);
355 error = ar5523_cmd_read(ar, WDCMSG_TARGET_GET_CAPABILITY, &cap_be,
356 sizeof(cap_be), &val_be, sizeof(__be32),
357 AR5523_CMD_FLAG_MAGIC);
358 if (error != 0) {
359 ar5523_err(ar, "could not read capability %u\n", cap);
360 return error;
361 }
362 *val = be32_to_cpu(val_be);
363 return error;
364}
365
366static int ar5523_get_devcap(struct ar5523 *ar)
367{
368#define GETCAP(x) do { \
369 error = ar5523_get_capability(ar, x, &cap); \
370 if (error != 0) \
371 return error; \
372 ar5523_info(ar, "Cap: " \
373 "%s=0x%08x\n", #x, cap); \
374} while (0)
375 int error;
376 u32 cap;
377
378 /* collect device capabilities */
379 GETCAP(CAP_TARGET_VERSION);
380 GETCAP(CAP_TARGET_REVISION);
381 GETCAP(CAP_MAC_VERSION);
382 GETCAP(CAP_MAC_REVISION);
383 GETCAP(CAP_PHY_REVISION);
384 GETCAP(CAP_ANALOG_5GHz_REVISION);
385 GETCAP(CAP_ANALOG_2GHz_REVISION);
386
387 GETCAP(CAP_REG_DOMAIN);
388 GETCAP(CAP_REG_CAP_BITS);
389 GETCAP(CAP_WIRELESS_MODES);
390 GETCAP(CAP_CHAN_SPREAD_SUPPORT);
391 GETCAP(CAP_COMPRESS_SUPPORT);
392 GETCAP(CAP_BURST_SUPPORT);
393 GETCAP(CAP_FAST_FRAMES_SUPPORT);
394 GETCAP(CAP_CHAP_TUNING_SUPPORT);
395 GETCAP(CAP_TURBOG_SUPPORT);
396 GETCAP(CAP_TURBO_PRIME_SUPPORT);
397 GETCAP(CAP_DEVICE_TYPE);
398 GETCAP(CAP_WME_SUPPORT);
399 GETCAP(CAP_TOTAL_QUEUES);
400 GETCAP(CAP_CONNECTION_ID_MAX);
401
402 GETCAP(CAP_LOW_5GHZ_CHAN);
403 GETCAP(CAP_HIGH_5GHZ_CHAN);
404 GETCAP(CAP_LOW_2GHZ_CHAN);
405 GETCAP(CAP_HIGH_2GHZ_CHAN);
406 GETCAP(CAP_TWICE_ANTENNAGAIN_5G);
407 GETCAP(CAP_TWICE_ANTENNAGAIN_2G);
408
409 GETCAP(CAP_CIPHER_AES_CCM);
410 GETCAP(CAP_CIPHER_TKIP);
411 GETCAP(CAP_MIC_TKIP);
412 return 0;
413}
414
415static int ar5523_set_ledsteady(struct ar5523 *ar, int lednum, int ledmode)
416{
417 struct ar5523_cmd_ledsteady led;
418
419 led.lednum = cpu_to_be32(lednum);
420 led.ledmode = cpu_to_be32(ledmode);
421
422 ar5523_dbg(ar, "set %s led %s (steady)\n",
423 (lednum == UATH_LED_LINK) ? "link" : "activity",
424 ledmode ? "on" : "off");
425 return ar5523_cmd_write(ar, WDCMSG_SET_LED_STEADY, &led, sizeof(led),
426 0);
427}
428
429static int ar5523_set_rxfilter(struct ar5523 *ar, u32 bits, u32 op)
430{
431 struct ar5523_cmd_rx_filter rxfilter;
432
433 rxfilter.bits = cpu_to_be32(bits);
434 rxfilter.op = cpu_to_be32(op);
435
436 ar5523_dbg(ar, "setting Rx filter=0x%x flags=0x%x\n", bits, op);
437 return ar5523_cmd_write(ar, WDCMSG_RX_FILTER, &rxfilter,
438 sizeof(rxfilter), 0);
439}
440
441static int ar5523_reset_tx_queues(struct ar5523 *ar)
442{
443 __be32 qid = cpu_to_be32(0);
444
445 ar5523_dbg(ar, "resetting Tx queue\n");
446 return ar5523_cmd_write(ar, WDCMSG_RELEASE_TX_QUEUE,
447 &qid, sizeof(qid), 0);
448}
449
450static int ar5523_set_chan(struct ar5523 *ar)
451{
452 struct ieee80211_conf *conf = &ar->hw->conf;
453
454 struct ar5523_cmd_reset reset;
455
456 memset(&reset, 0, sizeof(reset));
457 reset.flags |= cpu_to_be32(UATH_CHAN_2GHZ);
458 reset.flags |= cpu_to_be32(UATH_CHAN_OFDM);
459 reset.freq = cpu_to_be32(conf->chandef.chan->center_freq);
460 reset.maxrdpower = cpu_to_be32(50); /* XXX */
461 reset.channelchange = cpu_to_be32(1);
462 reset.keeprccontent = cpu_to_be32(0);
463
464 ar5523_dbg(ar, "set chan flags 0x%x freq %d\n",
465 be32_to_cpu(reset.flags),
466 conf->chandef.chan->center_freq);
467 return ar5523_cmd_write(ar, WDCMSG_RESET, &reset, sizeof(reset), 0);
468}
469
470static int ar5523_queue_init(struct ar5523 *ar)
471{
472 struct ar5523_cmd_txq_setup qinfo;
473
474 ar5523_dbg(ar, "setting up Tx queue\n");
475 qinfo.qid = cpu_to_be32(0);
476 qinfo.len = cpu_to_be32(sizeof(qinfo.attr));
477 qinfo.attr.priority = cpu_to_be32(0); /* XXX */
478 qinfo.attr.aifs = cpu_to_be32(3);
479 qinfo.attr.logcwmin = cpu_to_be32(4);
480 qinfo.attr.logcwmax = cpu_to_be32(10);
481 qinfo.attr.bursttime = cpu_to_be32(0);
482 qinfo.attr.mode = cpu_to_be32(0);
483 qinfo.attr.qflags = cpu_to_be32(1); /* XXX? */
484 return ar5523_cmd_write(ar, WDCMSG_SETUP_TX_QUEUE, &qinfo,
485 sizeof(qinfo), 0);
486}
487
488static int ar5523_switch_chan(struct ar5523 *ar)
489{
490 int error;
491
492 error = ar5523_set_chan(ar);
493 if (error) {
494 ar5523_err(ar, "could not set chan, error %d\n", error);
495 goto out_err;
496 }
497
498 /* reset Tx rings */
499 error = ar5523_reset_tx_queues(ar);
500 if (error) {
501 ar5523_err(ar, "could not reset Tx queues, error %d\n",
502 error);
503 goto out_err;
504 }
505 /* set Tx rings WME properties */
506 error = ar5523_queue_init(ar);
507 if (error)
508 ar5523_err(ar, "could not init wme, error %d\n", error);
509
510out_err:
511 return error;
512}
513
514static void ar5523_rx_data_put(struct ar5523 *ar,
515 struct ar5523_rx_data *data)
516{
517 unsigned long flags;
518 spin_lock_irqsave(&ar->rx_data_list_lock, flags);
519 list_move(&data->list, &ar->rx_data_free);
520 spin_unlock_irqrestore(&ar->rx_data_list_lock, flags);
521}
522
523static void ar5523_data_rx_cb(struct urb *urb)
524{
525 struct ar5523_rx_data *data = urb->context;
526 struct ar5523 *ar = data->ar;
527 struct ar5523_rx_desc *desc;
528 struct ar5523_chunk *chunk;
529 struct ieee80211_hw *hw = ar->hw;
530 struct ieee80211_rx_status *rx_status;
531 u32 rxlen;
532 int usblen = urb->actual_length;
533 int hdrlen, pad;
534
535 ar5523_dbg(ar, "%s\n", __func__);
536 /* sync/async unlink faults aren't errors */
537 if (urb->status) {
538 if (urb->status != -ESHUTDOWN)
539 ar5523_err(ar, "%s: USB err: %d\n", __func__,
540 urb->status);
541 goto skip;
542 }
543
544 if (usblen < AR5523_MIN_RXBUFSZ) {
545 ar5523_err(ar, "RX: wrong xfer size (usblen=%d)\n", usblen);
546 goto skip;
547 }
548
549 chunk = (struct ar5523_chunk *) data->skb->data;
550
551 if (((chunk->flags & UATH_CFLAGS_FINAL) == 0) ||
552 chunk->seqnum != 0) {
553 ar5523_dbg(ar, "RX: No final flag. s: %d f: %02x l: %d\n",
554 chunk->seqnum, chunk->flags,
555 be16_to_cpu(chunk->length));
556 goto skip;
557 }
558
559 /* Rx descriptor is located at the end, 32-bit aligned */
560 desc = (struct ar5523_rx_desc *)
561 (data->skb->data + usblen - sizeof(struct ar5523_rx_desc));
562
563 rxlen = be32_to_cpu(desc->len);
564 if (rxlen > ar->rxbufsz) {
565 ar5523_dbg(ar, "RX: Bad descriptor (len=%d)\n",
566 be32_to_cpu(desc->len));
567 goto skip;
568 }
569
570 if (!rxlen) {
571 ar5523_dbg(ar, "RX: rxlen is 0\n");
572 goto skip;
573 }
574
575 if (be32_to_cpu(desc->status) != 0) {
576 ar5523_dbg(ar, "Bad RX status (0x%x len = %d). Skip\n",
577 be32_to_cpu(desc->status), be32_to_cpu(desc->len));
578 goto skip;
579 }
580
581 skb_reserve(data->skb, sizeof(*chunk));
582 skb_put(data->skb, rxlen - sizeof(struct ar5523_rx_desc));
583
584 hdrlen = ieee80211_get_hdrlen_from_skb(data->skb);
585 if (!IS_ALIGNED(hdrlen, 4)) {
586 ar5523_dbg(ar, "eek, alignment workaround activated\n");
587 pad = ALIGN(hdrlen, 4) - hdrlen;
588 memmove(data->skb->data + pad, data->skb->data, hdrlen);
589 skb_pull(data->skb, pad);
590 skb_put(data->skb, pad);
591 }
592
593 rx_status = IEEE80211_SKB_RXCB(data->skb);
594 memset(rx_status, 0, sizeof(*rx_status));
595 rx_status->freq = be32_to_cpu(desc->channel);
596 rx_status->band = hw->conf.chandef.chan->band;
597 rx_status->signal = -95 + be32_to_cpu(desc->rssi);
598
599 ieee80211_rx_irqsafe(hw, data->skb);
600 data->skb = NULL;
601
602skip:
603 if (data->skb) {
604 dev_kfree_skb_irq(data->skb);
605 data->skb = NULL;
606 }
607
608 ar5523_rx_data_put(ar, data);
609 if (atomic_inc_return(&ar->rx_data_free_cnt) >=
610 AR5523_RX_DATA_REFILL_COUNT &&
611 test_bit(AR5523_HW_UP, &ar->flags))
612 queue_work(ar->wq, &ar->rx_refill_work);
613}
614
615static void ar5523_rx_refill_work(struct work_struct *work)
616{
617 struct ar5523 *ar = container_of(work, struct ar5523, rx_refill_work);
618 struct ar5523_rx_data *data;
619 unsigned long flags;
620 int error;
621
622 ar5523_dbg(ar, "%s\n", __func__);
623 do {
624 spin_lock_irqsave(&ar->rx_data_list_lock, flags);
625
626 if (!list_empty(&ar->rx_data_free))
627 data = (struct ar5523_rx_data *) ar->rx_data_free.next;
628 else
629 data = NULL;
630 spin_unlock_irqrestore(&ar->rx_data_list_lock, flags);
631
632 if (!data)
633 goto done;
634
635 data->skb = alloc_skb(ar->rxbufsz, GFP_KERNEL);
636 if (!data->skb) {
637 ar5523_err(ar, "could not allocate rx skbuff\n");
638 return;
639 }
640
641 usb_fill_bulk_urb(data->urb, ar->dev,
642 ar5523_data_rx_pipe(ar->dev), data->skb->data,
643 ar->rxbufsz, ar5523_data_rx_cb, data);
644
645 spin_lock_irqsave(&ar->rx_data_list_lock, flags);
646 list_move(&data->list, &ar->rx_data_used);
647 spin_unlock_irqrestore(&ar->rx_data_list_lock, flags);
648 atomic_dec(&ar->rx_data_free_cnt);
649
650 error = usb_submit_urb(data->urb, GFP_KERNEL);
651 if (error) {
652 kfree_skb(data->skb);
653 if (error != -ENODEV)
654 ar5523_err(ar, "Err sending rx data urb %d\n",
655 error);
656 ar5523_rx_data_put(ar, data);
657 atomic_inc(&ar->rx_data_free_cnt);
658 return;
659 }
660
661 } while (true);
662done:
663 return;
664}
665
666static void ar5523_cancel_rx_bufs(struct ar5523 *ar)
667{
668 struct ar5523_rx_data *data;
669 unsigned long flags;
670
671 do {
672 spin_lock_irqsave(&ar->rx_data_list_lock, flags);
673 if (!list_empty(&ar->rx_data_used))
674 data = (struct ar5523_rx_data *) ar->rx_data_used.next;
675 else
676 data = NULL;
677 spin_unlock_irqrestore(&ar->rx_data_list_lock, flags);
678
679 if (!data)
680 break;
681
682 usb_kill_urb(data->urb);
683 list_move(&data->list, &ar->rx_data_free);
684 atomic_inc(&ar->rx_data_free_cnt);
685 } while (data);
686}
687
688static void ar5523_free_rx_bufs(struct ar5523 *ar)
689{
690 struct ar5523_rx_data *data;
691
692 ar5523_cancel_rx_bufs(ar);
693 while (!list_empty(&ar->rx_data_free)) {
694 data = (struct ar5523_rx_data *) ar->rx_data_free.next;
695 list_del(&data->list);
696 usb_free_urb(data->urb);
697 }
698}
699
700static int ar5523_alloc_rx_bufs(struct ar5523 *ar)
701{
702 int i;
703
704 for (i = 0; i < AR5523_RX_DATA_COUNT; i++) {
705 struct ar5523_rx_data *data = &ar->rx_data[i];
706
707 data->ar = ar;
708 data->urb = usb_alloc_urb(0, GFP_KERNEL);
709 if (!data->urb)
710 goto err;
711 list_add_tail(&data->list, &ar->rx_data_free);
712 atomic_inc(&ar->rx_data_free_cnt);
713 }
714 return 0;
715
716err:
717 ar5523_free_rx_bufs(ar);
718 return -ENOMEM;
719}
720
721static void ar5523_data_tx_pkt_put(struct ar5523 *ar)
722{
723 atomic_dec(&ar->tx_nr_total);
724 if (!atomic_dec_return(&ar->tx_nr_pending)) {
725 del_timer(&ar->tx_wd_timer);
726 wake_up(&ar->tx_flush_waitq);
727 }
728
729 if (atomic_read(&ar->tx_nr_total) < AR5523_TX_DATA_RESTART_COUNT) {
730 ar5523_dbg(ar, "restart tx queue\n");
731 ieee80211_wake_queues(ar->hw);
732 }
733}
734
735static void ar5523_data_tx_cb(struct urb *urb)
736{
737 struct sk_buff *skb = urb->context;
738 struct ieee80211_tx_info *txi = IEEE80211_SKB_CB(skb);
739 struct ar5523_tx_data *data = (struct ar5523_tx_data *)
740 txi->driver_data;
741 struct ar5523 *ar = data->ar;
742 unsigned long flags;
743
744 ar5523_dbg(ar, "data tx urb completed: %d\n", urb->status);
745
746 spin_lock_irqsave(&ar->tx_data_list_lock, flags);
747 list_del(&data->list);
748 spin_unlock_irqrestore(&ar->tx_data_list_lock, flags);
749
750 if (urb->status) {
751 ar5523_dbg(ar, "%s: urb status: %d\n", __func__, urb->status);
752 ar5523_data_tx_pkt_put(ar);
753 ieee80211_free_txskb(ar->hw, skb);
754 } else {
755 skb_pull(skb, sizeof(struct ar5523_tx_desc) + sizeof(__be32));
756 ieee80211_tx_status_irqsafe(ar->hw, skb);
757 }
758 usb_free_urb(urb);
759}
760
761static void ar5523_tx(struct ieee80211_hw *hw,
762 struct ieee80211_tx_control *control,
763 struct sk_buff *skb)
764{
765 struct ieee80211_tx_info *txi = IEEE80211_SKB_CB(skb);
766 struct ar5523_tx_data *data = (struct ar5523_tx_data *)
767 txi->driver_data;
768 struct ar5523 *ar = hw->priv;
769 unsigned long flags;
770
771 ar5523_dbg(ar, "tx called\n");
772 if (atomic_inc_return(&ar->tx_nr_total) >= AR5523_TX_DATA_COUNT) {
773 ar5523_dbg(ar, "tx queue full\n");
774 ar5523_dbg(ar, "stop queues (tot %d pend %d)\n",
775 atomic_read(&ar->tx_nr_total),
776 atomic_read(&ar->tx_nr_pending));
777 ieee80211_stop_queues(hw);
778 }
779
780 spin_lock_irqsave(&ar->tx_data_list_lock, flags);
781 list_add_tail(&data->list, &ar->tx_queue_pending);
782 spin_unlock_irqrestore(&ar->tx_data_list_lock, flags);
783
784 ieee80211_queue_work(ar->hw, &ar->tx_work);
785}
786
787static void ar5523_tx_work_locked(struct ar5523 *ar)
788{
789 struct ar5523_tx_data *data;
790 struct ar5523_tx_desc *desc;
791 struct ar5523_chunk *chunk;
792 struct ieee80211_tx_info *txi;
793 struct urb *urb;
794 struct sk_buff *skb;
795 int error = 0, paylen;
796 u32 txqid;
797 unsigned long flags;
798
799 BUILD_BUG_ON(sizeof(struct ar5523_tx_data) >
800 IEEE80211_TX_INFO_DRIVER_DATA_SIZE);
801
802 ar5523_dbg(ar, "%s\n", __func__);
803 do {
804 spin_lock_irqsave(&ar->tx_data_list_lock, flags);
805 if (!list_empty(&ar->tx_queue_pending)) {
806 data = (struct ar5523_tx_data *)
807 ar->tx_queue_pending.next;
808 list_del(&data->list);
809 } else
810 data = NULL;
811 spin_unlock_irqrestore(&ar->tx_data_list_lock, flags);
812
813 if (!data)
814 break;
815
816 txi = container_of((void *)data, struct ieee80211_tx_info,
817 driver_data);
818 txqid = 0;
819
820 skb = container_of((void *)txi, struct sk_buff, cb);
821 paylen = skb->len;
822
823 urb = usb_alloc_urb(0, GFP_KERNEL);
824 if (!urb) {
825 ieee80211_free_txskb(ar->hw, skb);
826 continue;
827 }
828
829 data->ar = ar;
830 data->urb = urb;
831
832 desc = (struct ar5523_tx_desc *)skb_push(skb, sizeof(*desc));
833 chunk = (struct ar5523_chunk *)skb_push(skb, sizeof(*chunk));
834
835 chunk->seqnum = 0;
836 chunk->flags = UATH_CFLAGS_FINAL;
837 chunk->length = cpu_to_be16(skb->len);
838
839 desc->msglen = cpu_to_be32(skb->len);
840 desc->msgid = AR5523_DATA_ID;
841 desc->buflen = cpu_to_be32(paylen);
842 desc->type = cpu_to_be32(WDCMSG_SEND);
843 desc->flags = cpu_to_be32(UATH_TX_NOTIFY);
844
845 if (test_bit(AR5523_CONNECTED, &ar->flags))
846 desc->connid = cpu_to_be32(AR5523_ID_BSS);
847 else
848 desc->connid = cpu_to_be32(AR5523_ID_BROADCAST);
849
850 if (txi->flags & IEEE80211_TX_CTL_USE_MINRATE)
851 txqid |= UATH_TXQID_MINRATE;
852
853 desc->txqid = cpu_to_be32(txqid);
854
855 urb->transfer_flags = URB_ZERO_PACKET;
856 usb_fill_bulk_urb(urb, ar->dev, ar5523_data_tx_pipe(ar->dev),
857 skb->data, skb->len, ar5523_data_tx_cb, skb);
858
859 spin_lock_irqsave(&ar->tx_data_list_lock, flags);
860 list_add_tail(&data->list, &ar->tx_queue_submitted);
861 spin_unlock_irqrestore(&ar->tx_data_list_lock, flags);
862 mod_timer(&ar->tx_wd_timer, jiffies + AR5523_TX_WD_TIMEOUT);
863 atomic_inc(&ar->tx_nr_pending);
864
865 ar5523_dbg(ar, "TX Frame (%d pending)\n",
866 atomic_read(&ar->tx_nr_pending));
867 error = usb_submit_urb(urb, GFP_KERNEL);
868 if (error) {
869 ar5523_err(ar, "error %d when submitting tx urb\n",
870 error);
871 spin_lock_irqsave(&ar->tx_data_list_lock, flags);
872 list_del(&data->list);
873 spin_unlock_irqrestore(&ar->tx_data_list_lock, flags);
874 atomic_dec(&ar->tx_nr_pending);
875 ar5523_data_tx_pkt_put(ar);
876 usb_free_urb(urb);
877 ieee80211_free_txskb(ar->hw, skb);
878 }
879 } while (true);
880}
881
882static void ar5523_tx_work(struct work_struct *work)
883{
884 struct ar5523 *ar = container_of(work, struct ar5523, tx_work);
885
886 ar5523_dbg(ar, "%s\n", __func__);
887 mutex_lock(&ar->mutex);
888 ar5523_tx_work_locked(ar);
889 mutex_unlock(&ar->mutex);
890}
891
892static void ar5523_tx_wd_timer(unsigned long arg)
893{
894 struct ar5523 *ar = (struct ar5523 *) arg;
895
896 ar5523_dbg(ar, "TX watchdog timer triggered\n");
897 ieee80211_queue_work(ar->hw, &ar->tx_wd_work);
898}
899
900static void ar5523_tx_wd_work(struct work_struct *work)
901{
902 struct ar5523 *ar = container_of(work, struct ar5523, tx_wd_work);
903
904 /* Occasionally the TX queues stop responding. The only way to
905 * recover seems to be to reset the dongle.
906 */
907
908 mutex_lock(&ar->mutex);
909 ar5523_err(ar, "TX queue stuck (tot %d pend %d)\n",
910 atomic_read(&ar->tx_nr_total),
911 atomic_read(&ar->tx_nr_pending));
912
913 ar5523_err(ar, "Will restart dongle.\n");
914 ar5523_cmd_write(ar, WDCMSG_TARGET_RESET, NULL, 0, 0);
915 mutex_unlock(&ar->mutex);
916}
917
918static void ar5523_flush_tx(struct ar5523 *ar)
919{
920 ar5523_tx_work_locked(ar);
921
922 /* Don't waste time trying to flush if USB is disconnected */
923 if (test_bit(AR5523_USB_DISCONNECTED, &ar->flags))
924 return;
925 if (!wait_event_timeout(ar->tx_flush_waitq,
926 !atomic_read(&ar->tx_nr_pending), AR5523_FLUSH_TIMEOUT))
927 ar5523_err(ar, "flush timeout (tot %d pend %d)\n",
928 atomic_read(&ar->tx_nr_total),
929 atomic_read(&ar->tx_nr_pending));
930}
931
932static void ar5523_free_tx_cmd(struct ar5523 *ar)
933{
934 struct ar5523_tx_cmd *cmd = &ar->tx_cmd;
935
936 usb_free_coherent(ar->dev, AR5523_MAX_RXCMDSZ, cmd->buf_tx,
937 cmd->urb_tx->transfer_dma);
938 usb_free_urb(cmd->urb_tx);
939}
940
941static int ar5523_alloc_tx_cmd(struct ar5523 *ar)
942{
943 struct ar5523_tx_cmd *cmd = &ar->tx_cmd;
944
945 cmd->ar = ar;
946 init_completion(&cmd->done);
947
948 cmd->urb_tx = usb_alloc_urb(0, GFP_KERNEL);
949 if (!cmd->urb_tx)
950 return -ENOMEM;
951 cmd->buf_tx = usb_alloc_coherent(ar->dev, AR5523_MAX_TXCMDSZ,
952 GFP_KERNEL,
953 &cmd->urb_tx->transfer_dma);
954 if (!cmd->buf_tx) {
955 usb_free_urb(cmd->urb_tx);
956 return -ENOMEM;
957 }
958 return 0;
959}
960
961/*
962 * This function is called periodically (every second) when associated to
963 * query device statistics.
964 */
965static void ar5523_stat_work(struct work_struct *work)
966{
967 struct ar5523 *ar = container_of(work, struct ar5523, stat_work.work);
968 int error;
969
970 ar5523_dbg(ar, "%s\n", __func__);
971 mutex_lock(&ar->mutex);
972
973 /*
974 * Send request for statistics asynchronously once a second. This
975 * seems to be important. Throughput is a lot better if this is done.
976 */
977 error = ar5523_cmd_write(ar, WDCMSG_TARGET_GET_STATS, NULL, 0, 0);
978 if (error)
979 ar5523_err(ar, "could not query stats, error %d\n", error);
980 mutex_unlock(&ar->mutex);
981 ieee80211_queue_delayed_work(ar->hw, &ar->stat_work, HZ);
982}
983
984/*
985 * Interface routines to the mac80211 stack.
986 */
987static int ar5523_start(struct ieee80211_hw *hw)
988{
989 struct ar5523 *ar = hw->priv;
990 int error;
991 __be32 val;
992
993 ar5523_dbg(ar, "start called\n");
994
995 mutex_lock(&ar->mutex);
996 val = cpu_to_be32(0);
997 ar5523_cmd_write(ar, WDCMSG_BIND, &val, sizeof(val), 0);
998
999 /* set MAC address */
1000 ar5523_config_multi(ar, CFG_MAC_ADDR, &ar->hw->wiphy->perm_addr,
1001 ETH_ALEN);
1002
1003 /* XXX honor net80211 state */
1004 ar5523_config(ar, CFG_RATE_CONTROL_ENABLE, 0x00000001);
1005 ar5523_config(ar, CFG_DIVERSITY_CTL, 0x00000001);
1006 ar5523_config(ar, CFG_ABOLT, 0x0000003f);
1007 ar5523_config(ar, CFG_WME_ENABLED, 0x00000000);
1008
1009 ar5523_config(ar, CFG_SERVICE_TYPE, 1);
1010 ar5523_config(ar, CFG_TP_SCALE, 0x00000000);
1011 ar5523_config(ar, CFG_TPC_HALF_DBM5, 0x0000003c);
1012 ar5523_config(ar, CFG_TPC_HALF_DBM2, 0x0000003c);
1013 ar5523_config(ar, CFG_OVERRD_TX_POWER, 0x00000000);
1014 ar5523_config(ar, CFG_GMODE_PROTECTION, 0x00000000);
1015 ar5523_config(ar, CFG_GMODE_PROTECT_RATE_INDEX, 0x00000003);
1016 ar5523_config(ar, CFG_PROTECTION_TYPE, 0x00000000);
1017 ar5523_config(ar, CFG_MODE_CTS, 0x00000002);
1018
1019 error = ar5523_cmd_read(ar, WDCMSG_TARGET_START, NULL, 0,
1020 &val, sizeof(val), AR5523_CMD_FLAG_MAGIC);
1021 if (error) {
1022 ar5523_dbg(ar, "could not start target, error %d\n", error);
1023 goto err;
1024 }
1025 ar5523_dbg(ar, "WDCMSG_TARGET_START returns handle: 0x%x\n",
1026 be32_to_cpu(val));
1027
1028 ar5523_switch_chan(ar);
1029
1030 val = cpu_to_be32(TARGET_DEVICE_AWAKE);
1031 ar5523_cmd_write(ar, WDCMSG_SET_PWR_MODE, &val, sizeof(val), 0);
1032 /* XXX? check */
1033 ar5523_cmd_write(ar, WDCMSG_RESET_KEY_CACHE, NULL, 0, 0);
1034
1035 set_bit(AR5523_HW_UP, &ar->flags);
1036 queue_work(ar->wq, &ar->rx_refill_work);
1037
1038 /* enable Rx */
1039 ar5523_set_rxfilter(ar, 0, UATH_FILTER_OP_INIT);
1040 ar5523_set_rxfilter(ar,
1041 UATH_FILTER_RX_UCAST | UATH_FILTER_RX_MCAST |
1042 UATH_FILTER_RX_BCAST | UATH_FILTER_RX_BEACON,
1043 UATH_FILTER_OP_SET);
1044
1045 ar5523_set_ledsteady(ar, UATH_LED_ACTIVITY, UATH_LED_ON);
1046 ar5523_dbg(ar, "start OK\n");
1047
1048err:
1049 mutex_unlock(&ar->mutex);
1050 return error;
1051}
1052
1053static void ar5523_stop(struct ieee80211_hw *hw)
1054{
1055 struct ar5523 *ar = hw->priv;
1056
1057 ar5523_dbg(ar, "stop called\n");
1058
1059 cancel_delayed_work_sync(&ar->stat_work);
1060 mutex_lock(&ar->mutex);
1061 clear_bit(AR5523_HW_UP, &ar->flags);
1062
1063 ar5523_set_ledsteady(ar, UATH_LED_LINK, UATH_LED_OFF);
1064 ar5523_set_ledsteady(ar, UATH_LED_ACTIVITY, UATH_LED_OFF);
1065
1066 ar5523_cmd_write(ar, WDCMSG_TARGET_STOP, NULL, 0, 0);
1067
1068 del_timer_sync(&ar->tx_wd_timer);
1069 cancel_work_sync(&ar->tx_wd_work);
1070 cancel_work_sync(&ar->rx_refill_work);
1071 ar5523_cancel_rx_bufs(ar);
1072 mutex_unlock(&ar->mutex);
1073}
1074
1075static int ar5523_set_rts_threshold(struct ieee80211_hw *hw, u32 value)
1076{
1077 struct ar5523 *ar = hw->priv;
1078 int ret;
1079
1080 ar5523_dbg(ar, "set_rts_threshold called\n");
1081 mutex_lock(&ar->mutex);
1082
1083 ret = ar5523_config(ar, CFG_USER_RTS_THRESHOLD, value);
1084
1085 mutex_unlock(&ar->mutex);
1086 return ret;
1087}
1088
1089static void ar5523_flush(struct ieee80211_hw *hw, struct ieee80211_vif *vif,
1090 u32 queues, bool drop)
1091{
1092 struct ar5523 *ar = hw->priv;
1093
1094 ar5523_dbg(ar, "flush called\n");
1095 ar5523_flush_tx(ar);
1096}
1097
1098static int ar5523_add_interface(struct ieee80211_hw *hw,
1099 struct ieee80211_vif *vif)
1100{
1101 struct ar5523 *ar = hw->priv;
1102
1103 ar5523_dbg(ar, "add interface called\n");
1104
1105 if (ar->vif) {
1106 ar5523_dbg(ar, "invalid add_interface\n");
1107 return -EOPNOTSUPP;
1108 }
1109
1110 switch (vif->type) {
1111 case NL80211_IFTYPE_STATION:
1112 ar->vif = vif;
1113 break;
1114 default:
1115 return -EOPNOTSUPP;
1116 }
1117 return 0;
1118}
1119
1120static void ar5523_remove_interface(struct ieee80211_hw *hw,
1121 struct ieee80211_vif *vif)
1122{
1123 struct ar5523 *ar = hw->priv;
1124
1125 ar5523_dbg(ar, "remove interface called\n");
1126 ar->vif = NULL;
1127}
1128
1129static int ar5523_hwconfig(struct ieee80211_hw *hw, u32 changed)
1130{
1131 struct ar5523 *ar = hw->priv;
1132
1133 ar5523_dbg(ar, "config called\n");
1134 mutex_lock(&ar->mutex);
1135 if (changed & IEEE80211_CONF_CHANGE_CHANNEL) {
1136 ar5523_dbg(ar, "Do channel switch\n");
1137 ar5523_flush_tx(ar);
1138 ar5523_switch_chan(ar);
1139 }
1140 mutex_unlock(&ar->mutex);
1141 return 0;
1142}
1143
1144static int ar5523_get_wlan_mode(struct ar5523 *ar,
1145 struct ieee80211_bss_conf *bss_conf)
1146{
1147 struct ieee80211_supported_band *band;
1148 int bit;
1149 struct ieee80211_sta *sta;
1150 u32 sta_rate_set;
1151
1152 band = ar->hw->wiphy->bands[ar->hw->conf.chandef.chan->band];
1153 sta = ieee80211_find_sta(ar->vif, bss_conf->bssid);
1154 if (!sta) {
1155 ar5523_info(ar, "STA not found!\n");
1156 return WLAN_MODE_11b;
1157 }
1158 sta_rate_set = sta->supp_rates[ar->hw->conf.chandef.chan->band];
1159
1160 for (bit = 0; bit < band->n_bitrates; bit++) {
1161 if (sta_rate_set & 1) {
1162 int rate = band->bitrates[bit].bitrate;
1163 switch (rate) {
1164 case 60:
1165 case 90:
1166 case 120:
1167 case 180:
1168 case 240:
1169 case 360:
1170 case 480:
1171 case 540:
1172 return WLAN_MODE_11g;
1173 }
1174 }
1175 sta_rate_set >>= 1;
1176 }
1177 return WLAN_MODE_11b;
1178}
1179
1180static void ar5523_create_rateset(struct ar5523 *ar,
1181 struct ieee80211_bss_conf *bss_conf,
1182 struct ar5523_cmd_rateset *rs,
1183 bool basic)
1184{
1185 struct ieee80211_supported_band *band;
1186 struct ieee80211_sta *sta;
1187 int bit, i = 0;
1188 u32 sta_rate_set, basic_rate_set;
1189
1190 sta = ieee80211_find_sta(ar->vif, bss_conf->bssid);
1191 basic_rate_set = bss_conf->basic_rates;
1192 if (!sta) {
1193 ar5523_info(ar, "STA not found. Cannot set rates\n");
1194 sta_rate_set = bss_conf->basic_rates;
1195 } else
1196 sta_rate_set = sta->supp_rates[ar->hw->conf.chandef.chan->band];
1197
1198 ar5523_dbg(ar, "sta rate_set = %08x\n", sta_rate_set);
1199
1200 band = ar->hw->wiphy->bands[ar->hw->conf.chandef.chan->band];
1201 for (bit = 0; bit < band->n_bitrates; bit++) {
1202 BUG_ON(i >= AR5523_MAX_NRATES);
1203 ar5523_dbg(ar, "Considering rate %d : %d\n",
1204 band->bitrates[bit].hw_value, sta_rate_set & 1);
1205 if (sta_rate_set & 1) {
1206 rs->set[i] = band->bitrates[bit].hw_value;
1207 if (basic_rate_set & 1 && basic)
1208 rs->set[i] |= 0x80;
1209 i++;
1210 }
1211 sta_rate_set >>= 1;
1212 basic_rate_set >>= 1;
1213 }
1214
1215 rs->length = i;
1216}
1217
1218static int ar5523_set_basic_rates(struct ar5523 *ar,
1219 struct ieee80211_bss_conf *bss)
1220{
1221 struct ar5523_cmd_rates rates;
1222
1223 memset(&rates, 0, sizeof(rates));
1224 rates.connid = cpu_to_be32(2); /* XXX */
1225 rates.size = cpu_to_be32(sizeof(struct ar5523_cmd_rateset));
1226 ar5523_create_rateset(ar, bss, &rates.rateset, true);
1227
1228 return ar5523_cmd_write(ar, WDCMSG_SET_BASIC_RATE, &rates,
1229 sizeof(rates), 0);
1230}
1231
1232static int ar5523_create_connection(struct ar5523 *ar,
1233 struct ieee80211_vif *vif,
1234 struct ieee80211_bss_conf *bss)
1235{
1236 struct ar5523_cmd_create_connection create;
1237 int wlan_mode;
1238
1239 memset(&create, 0, sizeof(create));
1240 create.connid = cpu_to_be32(2);
1241 create.bssid = cpu_to_be32(0);
1242 /* XXX packed or not? */
1243 create.size = cpu_to_be32(sizeof(struct ar5523_cmd_rateset));
1244
1245 ar5523_create_rateset(ar, bss, &create.connattr.rateset, false);
1246
1247 wlan_mode = ar5523_get_wlan_mode(ar, bss);
1248 create.connattr.wlanmode = cpu_to_be32(wlan_mode);
1249
1250 return ar5523_cmd_write(ar, WDCMSG_CREATE_CONNECTION, &create,
1251 sizeof(create), 0);
1252}
1253
1254static int ar5523_write_associd(struct ar5523 *ar,
1255 struct ieee80211_bss_conf *bss)
1256{
1257 struct ar5523_cmd_set_associd associd;
1258
1259 memset(&associd, 0, sizeof(associd));
1260 associd.defaultrateix = cpu_to_be32(0); /* XXX */
1261 associd.associd = cpu_to_be32(bss->aid);
1262 associd.timoffset = cpu_to_be32(0x3b); /* XXX */
1263 memcpy(associd.bssid, bss->bssid, ETH_ALEN);
1264 return ar5523_cmd_write(ar, WDCMSG_WRITE_ASSOCID, &associd,
1265 sizeof(associd), 0);
1266}
1267
1268static void ar5523_bss_info_changed(struct ieee80211_hw *hw,
1269 struct ieee80211_vif *vif,
1270 struct ieee80211_bss_conf *bss,
1271 u32 changed)
1272{
1273 struct ar5523 *ar = hw->priv;
1274 int error;
1275
1276 ar5523_dbg(ar, "bss_info_changed called\n");
1277 mutex_lock(&ar->mutex);
1278
1279 if (!(changed & BSS_CHANGED_ASSOC))
1280 goto out_unlock;
1281
1282 if (bss->assoc) {
1283 error = ar5523_create_connection(ar, vif, bss);
1284 if (error) {
1285 ar5523_err(ar, "could not create connection\n");
1286 goto out_unlock;
1287 }
1288
1289 error = ar5523_set_basic_rates(ar, bss);
1290 if (error) {
1291 ar5523_err(ar, "could not set negotiated rate set\n");
1292 goto out_unlock;
1293 }
1294
1295 error = ar5523_write_associd(ar, bss);
1296 if (error) {
1297 ar5523_err(ar, "could not set association\n");
1298 goto out_unlock;
1299 }
1300
1301 /* turn link LED on */
1302 ar5523_set_ledsteady(ar, UATH_LED_LINK, UATH_LED_ON);
1303 set_bit(AR5523_CONNECTED, &ar->flags);
1304 ieee80211_queue_delayed_work(hw, &ar->stat_work, HZ);
1305
1306 } else {
1307 cancel_delayed_work(&ar->stat_work);
1308 clear_bit(AR5523_CONNECTED, &ar->flags);
1309 ar5523_set_ledsteady(ar, UATH_LED_LINK, UATH_LED_OFF);
1310 }
1311
1312out_unlock:
1313 mutex_unlock(&ar->mutex);
1314
1315}
1316
1317#define AR5523_SUPPORTED_FILTERS (FIF_ALLMULTI | \
1318 FIF_FCSFAIL | \
1319 FIF_OTHER_BSS)
1320
1321static void ar5523_configure_filter(struct ieee80211_hw *hw,
1322 unsigned int changed_flags,
1323 unsigned int *total_flags,
1324 u64 multicast)
1325{
1326 struct ar5523 *ar = hw->priv;
1327 u32 filter = 0;
1328
1329 ar5523_dbg(ar, "configure_filter called\n");
1330 mutex_lock(&ar->mutex);
1331 ar5523_flush_tx(ar);
1332
1333 *total_flags &= AR5523_SUPPORTED_FILTERS;
1334
1335 /* The filters seems strange. UATH_FILTER_RX_BCAST and
1336 * UATH_FILTER_RX_MCAST does not result in those frames being RXed.
1337 * The only way I have found to get [mb]cast frames seems to be
1338 * to set UATH_FILTER_RX_PROM. */
1339 filter |= UATH_FILTER_RX_UCAST | UATH_FILTER_RX_MCAST |
1340 UATH_FILTER_RX_BCAST | UATH_FILTER_RX_BEACON |
1341 UATH_FILTER_RX_PROM;
1342
1343 ar5523_set_rxfilter(ar, 0, UATH_FILTER_OP_INIT);
1344 ar5523_set_rxfilter(ar, filter, UATH_FILTER_OP_SET);
1345
1346 mutex_unlock(&ar->mutex);
1347}
1348
1349static const struct ieee80211_ops ar5523_ops = {
1350 .start = ar5523_start,
1351 .stop = ar5523_stop,
1352 .tx = ar5523_tx,
1353 .set_rts_threshold = ar5523_set_rts_threshold,
1354 .add_interface = ar5523_add_interface,
1355 .remove_interface = ar5523_remove_interface,
1356 .config = ar5523_hwconfig,
1357 .bss_info_changed = ar5523_bss_info_changed,
1358 .configure_filter = ar5523_configure_filter,
1359 .flush = ar5523_flush,
1360};
1361
1362static int ar5523_host_available(struct ar5523 *ar)
1363{
1364 struct ar5523_cmd_host_available setup;
1365
1366 /* inform target the host is available */
1367 setup.sw_ver_major = cpu_to_be32(ATH_SW_VER_MAJOR);
1368 setup.sw_ver_minor = cpu_to_be32(ATH_SW_VER_MINOR);
1369 setup.sw_ver_patch = cpu_to_be32(ATH_SW_VER_PATCH);
1370 setup.sw_ver_build = cpu_to_be32(ATH_SW_VER_BUILD);
1371 return ar5523_cmd_read(ar, WDCMSG_HOST_AVAILABLE,
1372 &setup, sizeof(setup), NULL, 0, 0);
1373}
1374
1375static int ar5523_get_devstatus(struct ar5523 *ar)
1376{
1377 u8 macaddr[ETH_ALEN];
1378 int error;
1379
1380 /* retrieve MAC address */
1381 error = ar5523_get_status(ar, ST_MAC_ADDR, macaddr, ETH_ALEN);
1382 if (error) {
1383 ar5523_err(ar, "could not read MAC address\n");
1384 return error;
1385 }
1386
1387 SET_IEEE80211_PERM_ADDR(ar->hw, macaddr);
1388
1389 error = ar5523_get_status(ar, ST_SERIAL_NUMBER,
1390 &ar->serial[0], sizeof(ar->serial));
1391 if (error) {
1392 ar5523_err(ar, "could not read device serial number\n");
1393 return error;
1394 }
1395 return 0;
1396}
1397
1398#define AR5523_SANE_RXBUFSZ 2000
1399
1400static int ar5523_get_max_rxsz(struct ar5523 *ar)
1401{
1402 int error;
1403 __be32 rxsize;
1404
1405 /* Get max rx size */
1406 error = ar5523_get_status(ar, ST_WDC_TRANSPORT_CHUNK_SIZE, &rxsize,
1407 sizeof(rxsize));
1408 if (error != 0) {
1409 ar5523_err(ar, "could not read max RX size\n");
1410 return error;
1411 }
1412
1413 ar->rxbufsz = be32_to_cpu(rxsize);
1414
1415 if (!ar->rxbufsz || ar->rxbufsz > AR5523_SANE_RXBUFSZ) {
1416 ar5523_err(ar, "Bad rxbufsz from device. Using %d instead\n",
1417 AR5523_SANE_RXBUFSZ);
1418 ar->rxbufsz = AR5523_SANE_RXBUFSZ;
1419 }
1420
1421 ar5523_dbg(ar, "Max RX buf size: %d\n", ar->rxbufsz);
1422 return 0;
1423}
1424
1425/*
1426 * This is copied from rtl818x, but we should probably move this
1427 * to common code as in OpenBSD.
1428 */
1429static const struct ieee80211_rate ar5523_rates[] = {
1430 { .bitrate = 10, .hw_value = 2, },
1431 { .bitrate = 20, .hw_value = 4 },
1432 { .bitrate = 55, .hw_value = 11, },
1433 { .bitrate = 110, .hw_value = 22, },
1434 { .bitrate = 60, .hw_value = 12, },
1435 { .bitrate = 90, .hw_value = 18, },
1436 { .bitrate = 120, .hw_value = 24, },
1437 { .bitrate = 180, .hw_value = 36, },
1438 { .bitrate = 240, .hw_value = 48, },
1439 { .bitrate = 360, .hw_value = 72, },
1440 { .bitrate = 480, .hw_value = 96, },
1441 { .bitrate = 540, .hw_value = 108, },
1442};
1443
1444static const struct ieee80211_channel ar5523_channels[] = {
1445 { .center_freq = 2412 },
1446 { .center_freq = 2417 },
1447 { .center_freq = 2422 },
1448 { .center_freq = 2427 },
1449 { .center_freq = 2432 },
1450 { .center_freq = 2437 },
1451 { .center_freq = 2442 },
1452 { .center_freq = 2447 },
1453 { .center_freq = 2452 },
1454 { .center_freq = 2457 },
1455 { .center_freq = 2462 },
1456 { .center_freq = 2467 },
1457 { .center_freq = 2472 },
1458 { .center_freq = 2484 },
1459};
1460
1461static int ar5523_init_modes(struct ar5523 *ar)
1462{
1463 BUILD_BUG_ON(sizeof(ar->channels) != sizeof(ar5523_channels));
1464 BUILD_BUG_ON(sizeof(ar->rates) != sizeof(ar5523_rates));
1465
1466 memcpy(ar->channels, ar5523_channels, sizeof(ar5523_channels));
1467 memcpy(ar->rates, ar5523_rates, sizeof(ar5523_rates));
1468
1469 ar->band.band = NL80211_BAND_2GHZ;
1470 ar->band.channels = ar->channels;
1471 ar->band.n_channels = ARRAY_SIZE(ar5523_channels);
1472 ar->band.bitrates = ar->rates;
1473 ar->band.n_bitrates = ARRAY_SIZE(ar5523_rates);
1474 ar->hw->wiphy->bands[NL80211_BAND_2GHZ] = &ar->band;
1475 return 0;
1476}
1477
1478/*
1479 * Load the MIPS R4000 microcode into the device. Once the image is loaded,
1480 * the device will detach itself from the bus and reattach later with a new
1481 * product Id (a la ezusb).
1482 */
1483static int ar5523_load_firmware(struct usb_device *dev)
1484{
1485 struct ar5523_fwblock *txblock, *rxblock;
1486 const struct firmware *fw;
1487 void *fwbuf;
1488 int len, offset;
1489 int foolen; /* XXX(hch): handle short transfers */
1490 int error = -ENXIO;
1491
1492 if (request_firmware(&fw, AR5523_FIRMWARE_FILE, &dev->dev)) {
1493 dev_err(&dev->dev, "no firmware found: %s\n",
1494 AR5523_FIRMWARE_FILE);
1495 return -ENOENT;
1496 }
1497
1498 txblock = kmalloc(sizeof(*txblock), GFP_KERNEL);
1499 if (!txblock)
1500 goto out;
1501
1502 rxblock = kmalloc(sizeof(*rxblock), GFP_KERNEL);
1503 if (!rxblock)
1504 goto out_free_txblock;
1505
1506 fwbuf = kmalloc(AR5523_MAX_FWBLOCK_SIZE, GFP_KERNEL);
1507 if (!fwbuf)
1508 goto out_free_rxblock;
1509
1510 memset(txblock, 0, sizeof(struct ar5523_fwblock));
1511 txblock->flags = cpu_to_be32(AR5523_WRITE_BLOCK);
1512 txblock->total = cpu_to_be32(fw->size);
1513
1514 offset = 0;
1515 len = fw->size;
1516 while (len > 0) {
1517 int mlen = min(len, AR5523_MAX_FWBLOCK_SIZE);
1518
1519 txblock->remain = cpu_to_be32(len - mlen);
1520 txblock->len = cpu_to_be32(mlen);
1521
1522 /* send firmware block meta-data */
1523 error = usb_bulk_msg(dev, ar5523_cmd_tx_pipe(dev),
1524 txblock, sizeof(*txblock), &foolen,
1525 AR5523_CMD_TIMEOUT);
1526 if (error) {
1527 dev_err(&dev->dev,
1528 "could not send firmware block info\n");
1529 goto out_free_fwbuf;
1530 }
1531
1532 /* send firmware block data */
1533 memcpy(fwbuf, fw->data + offset, mlen);
1534 error = usb_bulk_msg(dev, ar5523_data_tx_pipe(dev),
1535 fwbuf, mlen, &foolen,
1536 AR5523_DATA_TIMEOUT);
1537 if (error) {
1538 dev_err(&dev->dev,
1539 "could not send firmware block data\n");
1540 goto out_free_fwbuf;
1541 }
1542
1543 /* wait for ack from firmware */
1544 error = usb_bulk_msg(dev, ar5523_cmd_rx_pipe(dev),
1545 rxblock, sizeof(*rxblock), &foolen,
1546 AR5523_CMD_TIMEOUT);
1547 if (error) {
1548 dev_err(&dev->dev,
1549 "could not read firmware answer\n");
1550 goto out_free_fwbuf;
1551 }
1552
1553 len -= mlen;
1554 offset += mlen;
1555 }
1556
1557 /*
1558 * Set the error to -ENXIO to make sure we continue probing for
1559 * a driver.
1560 */
1561 error = -ENXIO;
1562
1563 out_free_fwbuf:
1564 kfree(fwbuf);
1565 out_free_rxblock:
1566 kfree(rxblock);
1567 out_free_txblock:
1568 kfree(txblock);
1569 out:
1570 release_firmware(fw);
1571 return error;
1572}
1573
1574static int ar5523_probe(struct usb_interface *intf,
1575 const struct usb_device_id *id)
1576{
1577 struct usb_device *dev = interface_to_usbdev(intf);
1578 struct ieee80211_hw *hw;
1579 struct ar5523 *ar;
1580 int error = -ENOMEM;
1581
1582 /*
1583 * Load firmware if the device requires it. This will return
1584 * -ENXIO on success and we'll get called back afer the usb
1585 * id changes to indicate that the firmware is present.
1586 */
1587 if (id->driver_info & AR5523_FLAG_PRE_FIRMWARE)
1588 return ar5523_load_firmware(dev);
1589
1590
1591 hw = ieee80211_alloc_hw(sizeof(*ar), &ar5523_ops);
1592 if (!hw)
1593 goto out;
1594 SET_IEEE80211_DEV(hw, &intf->dev);
1595
1596 ar = hw->priv;
1597 ar->hw = hw;
1598 ar->dev = dev;
1599 mutex_init(&ar->mutex);
1600
1601 INIT_DELAYED_WORK(&ar->stat_work, ar5523_stat_work);
1602 init_timer(&ar->tx_wd_timer);
1603 setup_timer(&ar->tx_wd_timer, ar5523_tx_wd_timer, (unsigned long) ar);
1604 INIT_WORK(&ar->tx_wd_work, ar5523_tx_wd_work);
1605 INIT_WORK(&ar->tx_work, ar5523_tx_work);
1606 INIT_LIST_HEAD(&ar->tx_queue_pending);
1607 INIT_LIST_HEAD(&ar->tx_queue_submitted);
1608 spin_lock_init(&ar->tx_data_list_lock);
1609 atomic_set(&ar->tx_nr_total, 0);
1610 atomic_set(&ar->tx_nr_pending, 0);
1611 init_waitqueue_head(&ar->tx_flush_waitq);
1612
1613 atomic_set(&ar->rx_data_free_cnt, 0);
1614 INIT_WORK(&ar->rx_refill_work, ar5523_rx_refill_work);
1615 INIT_LIST_HEAD(&ar->rx_data_free);
1616 INIT_LIST_HEAD(&ar->rx_data_used);
1617 spin_lock_init(&ar->rx_data_list_lock);
1618
1619 ar->wq = create_singlethread_workqueue("ar5523");
1620 if (!ar->wq) {
1621 ar5523_err(ar, "Could not create wq\n");
1622 goto out_free_ar;
1623 }
1624
1625 error = ar5523_alloc_rx_bufs(ar);
1626 if (error) {
1627 ar5523_err(ar, "Could not allocate rx buffers\n");
1628 goto out_free_wq;
1629 }
1630
1631 error = ar5523_alloc_rx_cmd(ar);
1632 if (error) {
1633 ar5523_err(ar, "Could not allocate rx command buffers\n");
1634 goto out_free_rx_bufs;
1635 }
1636
1637 error = ar5523_alloc_tx_cmd(ar);
1638 if (error) {
1639 ar5523_err(ar, "Could not allocate tx command buffers\n");
1640 goto out_free_rx_cmd;
1641 }
1642
1643 error = ar5523_submit_rx_cmd(ar);
1644 if (error) {
1645 ar5523_err(ar, "Failed to submit rx cmd\n");
1646 goto out_free_tx_cmd;
1647 }
1648
1649 /*
1650 * We're now ready to send/receive firmware commands.
1651 */
1652 error = ar5523_host_available(ar);
1653 if (error) {
1654 ar5523_err(ar, "could not initialize adapter\n");
1655 goto out_cancel_rx_cmd;
1656 }
1657
1658 error = ar5523_get_max_rxsz(ar);
1659 if (error) {
1660 ar5523_err(ar, "could not get caps from adapter\n");
1661 goto out_cancel_rx_cmd;
1662 }
1663
1664 error = ar5523_get_devcap(ar);
1665 if (error) {
1666 ar5523_err(ar, "could not get caps from adapter\n");
1667 goto out_cancel_rx_cmd;
1668 }
1669
1670 error = ar5523_get_devstatus(ar);
1671 if (error != 0) {
1672 ar5523_err(ar, "could not get device status\n");
1673 goto out_cancel_rx_cmd;
1674 }
1675
1676 ar5523_info(ar, "MAC/BBP AR5523, RF AR%c112\n",
1677 (id->driver_info & AR5523_FLAG_ABG) ? '5' : '2');
1678
1679 ar->vif = NULL;
1680 ieee80211_hw_set(hw, HAS_RATE_CONTROL);
1681 ieee80211_hw_set(hw, RX_INCLUDES_FCS);
1682 ieee80211_hw_set(hw, SIGNAL_DBM);
1683 hw->extra_tx_headroom = sizeof(struct ar5523_tx_desc) +
1684 sizeof(struct ar5523_chunk);
1685 hw->wiphy->interface_modes = BIT(NL80211_IFTYPE_STATION);
1686 hw->queues = 1;
1687
1688 error = ar5523_init_modes(ar);
1689 if (error)
1690 goto out_cancel_rx_cmd;
1691
1692 usb_set_intfdata(intf, hw);
1693
1694 error = ieee80211_register_hw(hw);
1695 if (error) {
1696 ar5523_err(ar, "could not register device\n");
1697 goto out_cancel_rx_cmd;
1698 }
1699
1700 ar5523_info(ar, "Found and initialized AR5523 device\n");
1701 return 0;
1702
1703out_cancel_rx_cmd:
1704 ar5523_cancel_rx_cmd(ar);
1705out_free_tx_cmd:
1706 ar5523_free_tx_cmd(ar);
1707out_free_rx_cmd:
1708 ar5523_free_rx_cmd(ar);
1709out_free_rx_bufs:
1710 ar5523_free_rx_bufs(ar);
1711out_free_wq:
1712 destroy_workqueue(ar->wq);
1713out_free_ar:
1714 ieee80211_free_hw(hw);
1715out:
1716 return error;
1717}
1718
1719static void ar5523_disconnect(struct usb_interface *intf)
1720{
1721 struct ieee80211_hw *hw = usb_get_intfdata(intf);
1722 struct ar5523 *ar = hw->priv;
1723
1724 ar5523_dbg(ar, "detaching\n");
1725 set_bit(AR5523_USB_DISCONNECTED, &ar->flags);
1726
1727 ieee80211_unregister_hw(hw);
1728
1729 ar5523_cancel_rx_cmd(ar);
1730 ar5523_free_tx_cmd(ar);
1731 ar5523_free_rx_cmd(ar);
1732 ar5523_free_rx_bufs(ar);
1733
1734 destroy_workqueue(ar->wq);
1735
1736 ieee80211_free_hw(hw);
1737 usb_set_intfdata(intf, NULL);
1738}
1739
1740#define AR5523_DEVICE_UG(vendor, device) \
1741 { USB_DEVICE((vendor), (device)) }, \
1742 { USB_DEVICE((vendor), (device) + 1), \
1743 .driver_info = AR5523_FLAG_PRE_FIRMWARE }
1744#define AR5523_DEVICE_UX(vendor, device) \
1745 { USB_DEVICE((vendor), (device)), \
1746 .driver_info = AR5523_FLAG_ABG }, \
1747 { USB_DEVICE((vendor), (device) + 1), \
1748 .driver_info = AR5523_FLAG_ABG|AR5523_FLAG_PRE_FIRMWARE }
1749
1750static struct usb_device_id ar5523_id_table[] = {
1751 AR5523_DEVICE_UG(0x168c, 0x0001), /* Atheros / AR5523 */
1752 AR5523_DEVICE_UG(0x0cf3, 0x0001), /* Atheros2 / AR5523_1 */
1753 AR5523_DEVICE_UG(0x0cf3, 0x0003), /* Atheros2 / AR5523_2 */
1754 AR5523_DEVICE_UX(0x0cf3, 0x0005), /* Atheros2 / AR5523_3 */
1755 AR5523_DEVICE_UG(0x0d8e, 0x7801), /* Conceptronic / AR5523_1 */
1756 AR5523_DEVICE_UX(0x0d8e, 0x7811), /* Conceptronic / AR5523_2 */
1757 AR5523_DEVICE_UX(0x2001, 0x3a00), /* Dlink / DWLAG132 */
1758 AR5523_DEVICE_UG(0x2001, 0x3a02), /* Dlink / DWLG132 */
1759 AR5523_DEVICE_UX(0x2001, 0x3a04), /* Dlink / DWLAG122 */
1760 AR5523_DEVICE_UG(0x07d1, 0x3a07), /* D-Link / WUA-2340 rev A1 */
1761 AR5523_DEVICE_UG(0x1690, 0x0712), /* Gigaset / AR5523 */
1762 AR5523_DEVICE_UG(0x1690, 0x0710), /* Gigaset / SMCWUSBTG */
1763 AR5523_DEVICE_UG(0x129b, 0x160b), /* Gigaset / USB stick 108
1764 (CyberTAN Technology) */
1765 AR5523_DEVICE_UG(0x16ab, 0x7801), /* Globalsun / AR5523_1 */
1766 AR5523_DEVICE_UX(0x16ab, 0x7811), /* Globalsun / AR5523_2 */
1767 AR5523_DEVICE_UG(0x0d8e, 0x7802), /* Globalsun / AR5523_3 */
1768 AR5523_DEVICE_UX(0x0846, 0x4300), /* Netgear / WG111U */
1769 AR5523_DEVICE_UG(0x0846, 0x4250), /* Netgear / WG111T */
1770 AR5523_DEVICE_UG(0x0846, 0x5f00), /* Netgear / WPN111 */
1771 AR5523_DEVICE_UG(0x157e, 0x3006), /* Umedia / AR5523_1 */
1772 AR5523_DEVICE_UX(0x157e, 0x3205), /* Umedia / AR5523_2 */
1773 AR5523_DEVICE_UG(0x157e, 0x3006), /* Umedia / TEW444UBEU */
1774 AR5523_DEVICE_UG(0x1435, 0x0826), /* Wistronneweb / AR5523_1 */
1775 AR5523_DEVICE_UX(0x1435, 0x0828), /* Wistronneweb / AR5523_2 */
1776 AR5523_DEVICE_UG(0x0cde, 0x0012), /* Zcom / AR5523 */
1777 AR5523_DEVICE_UG(0x1385, 0x4250), /* Netgear3 / WG111T (2) */
1778 AR5523_DEVICE_UG(0x1385, 0x5f00), /* Netgear / WPN111 */
1779 AR5523_DEVICE_UG(0x1385, 0x5f02), /* Netgear / WPN111 */
1780 { }
1781};
1782MODULE_DEVICE_TABLE(usb, ar5523_id_table);
1783
1784static struct usb_driver ar5523_driver = {
1785 .name = "ar5523",
1786 .id_table = ar5523_id_table,
1787 .probe = ar5523_probe,
1788 .disconnect = ar5523_disconnect,
1789};
1790
1791module_usb_driver(ar5523_driver);
1792
1793MODULE_LICENSE("Dual BSD/GPL");
1794MODULE_FIRMWARE(AR5523_FIRMWARE_FILE);